last executing test programs: 12.389083184s ago: executing program 3 (id=1594): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0x80a40, 0x9e) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB='&\x00', @ANYBLOB="5de1"], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40000) read$auto(r0, &(0x7f0000000080)='MJC802154_HWSIM\x00\xcb\x0fX\xc7\xfdx!\xf7\xb5T\x04\xad\x96\xf4\xbc\xca\xa52UWT1\a\x00\x00?\x00\x00\x007\xc9\xa6\x8a', 0x1060) r1 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x101001, 0x0) ioctl$auto_UI_DEV_SETUP(r1, 0x405c5503, &(0x7f00000000c0)={{0x9, 0xf2cf, 0x8, 0x80}, "6a034a07c7b82d90b69a39e32576f893fba86c9dd051a0094a3836d61c9100fefbbabea6ef9368c7996e841f3f1561d4992f726b0a6c36b0b2fd1678e816201cf562367fe6596824588a2e3d84ba165f", 0xa}) ioctl$auto_UI_DEV_CREATE(r1, 0x5501, 0x0) writev$auto(r1, &(0x7f0000000340)={0x0, 0x18}, 0x8) ioctl$auto_UI_SET_FFBIT(r1, 0x4004556b, &(0x7f0000000140)=0xc0000) read$auto_snapshot_fops_user(0xffffffffffffffff, 0x0, 0x0) syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000600), 0xffffffffffffffff) sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x6) socket(0xa, 0x1, 0x100) 10.882002369s ago: executing program 3 (id=1604): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/loop10\x00', 0x4c481, 0x0) mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0x8000000000000003, 0x8000) r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/bus/usb/028/001\x00', 0xa801, 0x0) ioctl$auto_USBDEVFS_SUBMITURB32(r0, 0x802c550a, &(0x7f0000000300)=ANY=[@ANYBLOB="020000060000e6ff040000000100400008"]) ioctl$auto(r0, 0x4004550c, 0xffffffffffffffff) (async) ioctl$auto(r0, 0x4004550c, 0xffffffffffffffff) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) (async) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) r1 = io_uring_setup$auto(0xc, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) dup$auto(0xffffffffffffffff) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = socket(0x10, 0x2, 0x0) openat$auto_split_huge_pages_fops_huge_memory(0xffffffffffffff9c, &(0x7f0000000000), 0x80101, 0x0) (async) openat$auto_split_huge_pages_fops_huge_memory(0xffffffffffffff9c, &(0x7f0000000000), 0x80101, 0x0) close_range$auto(0xffffffffffffffff, r2, 0x0) socket(0xa, 0x1, 0x84) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vbi5\x00', 0xc0501, 0x0) (async) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vbi5\x00', 0xc0501, 0x0) write$auto_split_huge_pages_fops_huge_memory(r1, &(0x7f00000000c0)="900c0be1db7c40ebc099f4da577f1b63a9d595dd0fe59cbb69d9e8ca0f9140a89aedca2152909e1f8ff08913af110600014b61d74aa8dd2e53030b1275672e5aa55e452199fe210002f22514c0507721efe2a00501ab468d3d385053b47712d698229dd928b5c29ba8e6f787fbdbb16691a658d52aff666f2b2fe34edbd29407", 0x48) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r3, &(0x7f0000000080)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x958b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x40008000001f, 0x7, 0x6d3e, 0x8009, 0x2, 0x10000]}, 0x0) (async) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x958b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x40008000001f, 0x7, 0x6d3e, 0x8009, 0x2, 0x10000]}, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/rose11/threaded\x00', 0x214181, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r4, 0x0, 0x0) (async) write$auto_kernfs_file_fops_kernfs_internal(r4, 0x0, 0x0) open(&(0x7f0000000800)='./file0\x00', 0x20000, 0x15e) (async) r5 = open(&(0x7f0000000800)='./file0\x00', 0x20000, 0x15e) fcntl$auto(r5, 0x400, 0x1) (async) fcntl$auto(r5, 0x400, 0x1) open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x155) mmap$auto(0x0, 0x400008, 0x3, 0x9b72, 0x2, 0x8000) 9.392947575s ago: executing program 0 (id=1609): socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_ETHTOOL_MSG_PHY_GET(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x14, 0x0, 0x200, 0x70bd2b, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x4000810}, 0x20008004) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[@ANYBLOB="1b000000", @ANYBLOB="1e0027"], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000) r0 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) 9.245640741s ago: executing program 0 (id=1610): openat$auto_uhid_fops_uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2201, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r0 = socket(0xa, 0x3, 0x3a) semctl$auto_IPC_INFO(0x1000, 0x9, 0x3, 0xb) ioctl$auto(r0, 0x8916, 0x1) 9.215993141s ago: executing program 2 (id=1611): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) unshare$auto(0x40000080) mmap$auto(0x0, 0x9, 0x72, 0x8b72, 0x2, 0x8000) r0 = socket(0x15, 0x5, 0x0) getsockopt$auto(r0, 0x114, 0x2720, 0xfffffffffffffffc, 0x0) mbind$auto(0x0, 0x100000004, 0x100000300, 0x0, 0x6, 0x2) madvise$auto(0x0, 0x20499d, 0x9) syz_genetlink_get_family_id$auto_nfsd(0x0, 0xffffffffffffffff) socket(0x29, 0x2, 0x0) openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcsa1\x00', 0x101041, 0x0) r1 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/input/event1\x00', 0x34d802, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x80400, 0x0) close_range$auto(0x2, r2, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/fs/ext4/sda1/err_ratelimit_burst\x00', 0x103841, 0x0) write$auto(r3, &(0x7f0000000100)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3C', 0x4) r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x88000, 0x0) ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r4) ioctl$auto_KVM_GET_MSRS(r2, 0xc008ae88, &(0x7f0000000040)={0x7}) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x810006, 0xffb, 0x8000000008011, 0x3, 0x0) r5 = openat$auto_proc_pid_smaps_operations_internal(0xffffffffffffff9c, 0x0, 0x42000, 0x0) read$auto_proc_pid_smaps_operations_internal(r5, &(0x7f00000002c0)=""/190, 0xfffffe39) write$auto(r1, 0x0, 0x8) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_OVS_VPORT_CMD_NEW(r6, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)={0x14, r7, 0x1, 0x70bd2c, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x4040010}, 0x800) read$auto(0x3, 0x0, 0x7fffffff) 8.85309795s ago: executing program 0 (id=1612): r0 = socket(0x27, 0xa, 0x0) r1 = openat$auto_proc_pid_smaps_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/thread-self/smaps\x00', 0x12d080, 0x0) close_range$auto(r0, r1, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000140), 0x40000, 0x0) mmap$auto(0x2, 0x20009, 0x4000000000df, 0x100000011, r2, 0x1) r3 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0) ioctl$auto_PPPIOCSMRU(r3, 0xc004743e, 0x0) syz_genetlink_get_family_id$auto_ovs_vport(0x0, 0xffffffffffffffff) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) openat$auto_tun_fops_tun(0xffffffffffffff9c, 0x0, 0x2002, 0x0) socket(0x29, 0x2, 0x0) r4 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D1\x00', 0x84000, 0x0) select$auto(0x8, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x0, 0xd, 0x2, 0x9487, 0x3, 0x15f4da0a, 0x1, 0x3, 0x62, 0x80000001, 0x4, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffa]}, 0x0) write$auto(r5, 0x0, 0x100000a3d9) utimes$auto(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x10001, 0x1}) r6 = getpid() socket(0xa, 0x2, 0x0) close_range$auto(0x2, 0x8, 0x0) r7 = ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(0x3, 0xaece, 0xffffffffffffffff) read$auto_proc_pid_smaps_operations_internal(r1, 0x0, 0x43) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="72010000", @ANYBLOB="120027", @ANYRES16], 0x1ac}, 0x1, 0x0, 0x0, 0x4000054}, 0x40000) msgctl$auto_IPC_RMID(0xe, 0x0, &(0x7f0000000600)={{0xffffff6d, 0x0, 0xffffffffffffffff, 0x4b, 0x5, 0x90f, 0x10}, &(0x7f00000003c0)=0x7, &(0x7f00000005c0)=0x7f, 0x8000, 0x3a73, 0x5ef2bc3e, 0x2, 0x80, 0x80, 0x5, 0x104, @inferred, @inferred=r6}) r8 = prctl$auto(0x3e, 0xb, 0x0, 0x1, 0x0) io_uring_register$auto_IORING_UNREGISTER_FILES(r2, 0x3, &(0x7f00000001c0)="d0ece2f3f34ae6c5961a7898093c8da9d4ac8e3216a3a4b49129063b89555ce6040d2b1854cc81621efe61a131479e25eb743fa4acac1335ba50888273", 0x9) mmap$auto(0x80000001, 0x7, 0x1000000df, 0xeb1, r4, 0x8000) r9 = socketpair$auto(0x1, 0x2, 0x3, 0x0) ioctl$auto_BLKTRACESETUP(r7, 0xc0481273, &(0x7f0000000340)={"ebdefb4fdbbd4c55d84e6724cf69b09cb31e6e8cabb63beed410a5e0aeb21fdf", 0x4, 0x7ff, 0x6, 0x8001, 0x5, r6}) epoll_ctl$auto(r9, 0x550, r8, &(0x7f0000000180)={0xffffff9f, 0x7}) 8.504124289s ago: executing program 3 (id=1613): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty0\x00', 0x102, 0x0) close_range$auto(0xffffffffffffffff, r0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x123000, 0x0) close_range$auto(0xffffffffffffffff, 0x8, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto_KVM_GET_MSRS(r1, 0x4068aea3, &(0x7f0000000080)={0xdc}) msgctl$auto_MSG_INFO(0x5, 0xc, &(0x7f0000000280)={{0x9, 0xffffffffffffffff, 0xffffffffffffffff, 0x6, 0x287f, 0x2, 0x3}, 0x0, 0x0, 0x7fffffff, 0x9, 0xb, 0xffffffff, 0xfffffffffffffffe, 0x1, 0xfc2, 0x26f, @inferred, @raw=0x9}) setresgid$auto(r3, 0xffffffffffffffff, r3) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) fanotify_init$auto(0x5, 0x2000000000002) socket$nl_generic(0x10, 0x3, 0x10) socket(0x26, 0x80805, 0x0) clone$auto(0x20003b4b, 0xa, 0x0, 0x0, 0x10) ioctl$auto(0x3, 0xff02, 0x0) socket(0x2, 0x3, 0xa) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x9, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) socket(0x11, 0x3, 0x2) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0x6, 0xeb1, 0xffffffffffffffff, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_tracing_saved_tgids_fops_trace(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/tracing/saved_tgids\x00', 0x109100, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttynull\x00', 0x201, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyz7\x00', 0x48f41, 0x0) 8.386514131s ago: executing program 1 (id=1614): r0 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000001cc0), 0x101440, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000140)={{0x3, 0xffffff2c, 0x10001, 0x8, 0xffffff98}, 0x6, 0x8001, "7558773f8cab0038cec94a366679d5e614d8fa9131d880b065ef33b4eddd5aca37afdda6b3942c1b05a4a746bddaa3c3e9416ff0768df32d020cadf60009e0bb", "f43abe13bd78888829019ad764acf6afa95e59d326d57e6c23c991a60f3d48fd32dbb998b40accadd0101b1717ab98639d7023f36c921c06f88f8ae8c00000ea55f4bd2067c7d292a2e01b6ffb274267", 0xffffffffffffffff, 0x8, 0x7, 0xbe, 0x1, "2e6f75b7431f004435205e6044494fd9be3657ce398e7ce58a7da9e7f2161bc1"}) 8.294282769s ago: executing program 1 (id=1615): openat$auto_force_wakeup_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/bluetooth/hci3/force_wakeup\x00', 0x317a82, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/ib_srp/parameters/reconnect_delay\x00', 0x20681, 0x0) r1 = socket(0xa, 0x3, 0x2f) fremovexattr$auto(r1, &(0x7f0000000180)='c\x00') r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/sit0/flags\x00', 0x8c2, 0x0) write$auto(r2, &(0x7f00000000c0)='1\x00\xc7k\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00j(=\xd1<\xf9\x96\x10>\xb9\x05\xbe\xc8v\x81-ILplM\x98\x88J\xfd\x17\xc8K\xdd\x89;T@d\xa3_\xfcb8\x7fA\x11\xba\xefL\xe1L\x8aE}\x1emW-\xf5\x94\xdak\x81\xe4\x1e\x1dS\xf2~>\xb1\xc6\xd1\xee\xc8\x19e\xc1w\xf05%\xd76]\x0f\v\x01\xa4(\xec\xd3\xca\a\x15&nv\xc1}\xfcD\x00'/124, 0x85) openat$auto_ipsec_dbg_fops_ipsec(0xffffffffffffff9c, &(0x7f00000005c0)='/sys/kernel/debug/netdevsim/netdevsim2/ports/2/ipsec\x00', 0x6f0140, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/usbcore/parameters/quirks\x00', 0xc0202, 0x0) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000011c0), 0xa2741, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/nfc/nfc0/rfkill0/name\x00', 0x0, 0x0) read$auto(r3, 0x0, 0x20) write$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f00000000c0)='-7', 0x2) r4 = prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0xdd, 0x0) r5 = socket(0xb, 0x1, 0xffffffc0) r6 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(r5, 0x0, 0xc000) write$auto(r6, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d7) write$auto(0xffffffffffffffff, &(0x7f00000001c0)='c', 0x5) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x10, 0x2, 0xffffffff) mmap$auto(0x0, 0xe983, 0xdf, 0x4000000000ebe, r4, 0x8000) statx$auto(0xffffff9c, 0x0, 0x1000, 0x803, 0x0) madvise$auto(0x7, 0x9, 0xff3) r7 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv6/conf/bond_slave_1/disable_policy\x00', 0x202, 0x0) sendfile$auto(r7, r7, 0x0, 0x3) close_range$auto(0x2, 0x8, 0x0) r8 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$auto_KVM_CREATE_VM(r8, 0xae01, 0x0) ioctl$auto(0x3, 0xc208ae62, 0x38) 7.911265744s ago: executing program 0 (id=1616): unshare$auto(0x40000080) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) listen$auto(0x3, 0x81) mmap$auto(0x0, 0x2020009, 0x9, 0xeb1, r1, 0x8000) keyctl$auto(0x1f, 0x1, 0x6, 0x0, 0x3ff) madvise$auto(0x0, 0x2003f2, 0x15) r2 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000340), 0xffffffffffffffff) r5 = openat$auto_proc_uid_map_operations_base(0xffffffffffffff9c, &(0x7f00000013c0)='/proc/self/uid_map\x00', 0x8006, 0x0) write$auto_proc_uid_map_operations_base(r5, 0x0, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000200)=ANY=[@ANYBLOB="a800", @ANYRES16=r4, @ANYBLOB="01002cbd7000fddbdf2502000000810004006e66736600d8efe42d132b72f30c54315aa74a5b8103cf2ddf901f8fc81365e252374483326ace7da356b7a16f5ce613bc0ce3aeb87ed3d22b4a27c3ecc90c70c861befe60a7a9414b446427a001f61379e8caf4519e032a5dda1e1174e2d575772b93fc046cd3a674866b80d91473ece248c03d28f9398a63a785998700000008000300850000000800010002000000"], 0xa8}}, 0x4000) madvise$auto(0x0, 0x200007, 0x19) openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/thread-self/pagemap\x00', 0x404001, 0x0) mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0xb74, 0x66a) madvise$auto(0x0, 0xffffffffffff0001, 0x15) socket(0x1a, 0x6, 0xa) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x54) mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) mq_timedsend$auto(r2, &(0x7f0000000040)='/proc/thread-self/pagemap\x00', 0x7f, 0x3ff, &(0x7f00000002c0)={0x6, 0x81}) bpf$auto(0xfffffffe, &(0x7f00000001c0)=@query={@target_fd, 0x8, 0x3, 0x5, 0xff, @prog_cnt=0x4, 0x0, 0x5, 0x80000000000006, 0xd9, 0xffffffff}, 0x6f2) 7.817032744s ago: executing program 2 (id=1617): r0 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card0\x00', 0x20800, 0x0) ioctl$auto(r0, 0xb21064a7, 0x20000a) io_uring_setup$auto(0xb, &(0x7f0000000100)={0x3, 0x7, 0x9, 0x1, 0x2, 0x82, 0xffffffffffffffff, [0xfffffff7, 0xaa6, 0x3], {0x3, 0x1, 0x1, 0xd6d, 0x6, 0x1, 0x10, 0x10, 0x9}, {0x7, 0xcc9, 0x9, 0xa, 0x81, 0x9, 0x63, 0x43, 0x4}}) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'vcan0\x00'}) r1 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0) ioctl$auto_TUNSETCARRIER(0xffffffffffffffff, 0x400454e2, &(0x7f0000000080)=0x6e) ioctl$auto_FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000080)) 7.627686272s ago: executing program 2 (id=1618): r0 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000001cc0), 0x101440, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000140)={{0x3, 0xffffff2c, 0x10001, 0x8, 0xffffff98}, 0x6, 0x8001, "7558773f8cab0038cec94a366679d5e614d8fa9131d880b065ef33b4eddd5aca37afdda6b3942c1b05a4a746bddaa3c3e9416ff0768df32d020cadf60009e0bb", "f43abe13bd78888829019ad764acf6afa95e59d326d57e6c23c991a60f3d48fd32dbb998b40accadd0101b1717ab98639d7023f36c921c06f88f8ae8c00000ea55f4bd2067c7d292a2e01b6ffb274267", 0xffffffffffffffff, 0x8, 0x7, 0xbe, 0x1, "2e6f75b7431f004435205e6044494fd9be3657ce398e7ce58a7da9e7f2161bc1"}) (fail_nth: 1) 6.978333503s ago: executing program 1 (id=1619): r0 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000001cc0), 0x101440, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000140)={{0x0, 0xffffff2c, 0x10001, 0x8, 0xffffff98}, 0x6, 0x8001, "7558773f8cab0038cec94a366679d5e614d8fa9131d880b065ef33b4eddd5aca37afdda6b3942c1b05a4a746bddaa3c3e9416ff0768df32d020cadf60009e0bb", "f43abe13bd78888829019ad764acf6afa95e59d326d57e6c23c991a60f3d48fd32dbb998b40accadd0101b1717ab98639d7023f36c921c06f88f8ae8c00000ea55f4bd2067c7d292a2e01b6ffb274267", 0x3, 0x4, 0xffffffffffffffff, 0xbf, 0x1, "2e6f75b7431f004435205e6044494fd9be3657ce398e7ce58a7da9e7f2161bc1"}) r1 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x101800, 0x0) ioctl$auto_VHOST_SET_FEATURES2(r1, 0x4008af00, &(0x7f0000000040)=0x3) 6.87476654s ago: executing program 0 (id=1620): socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000000580), r0) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/loop2\x00', 0x24040, 0x0) ioctl$auto_BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000240)={"ef65ce6c00cf81000000ffffffffffffff291d000000000700", 0x3ff, 0x408, 0xffc, 0x400004, 0x200000000040000d}) ioctl$auto_BLKTRACETEARDOWN(r1, 0x1276, 0x0) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) unshare$auto(0x40000080) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) openat$auto_tun_fops_tun(0xffffffffffffff9c, 0x0, 0x2002, 0x0) mmap$auto(0x1002, 0xc, 0x4, 0x200000eb0, 0x401, 0x4) sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x8) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x640043, 0x0) select$auto(0x1000000d, 0x0, 0x0, 0x0, 0x0) openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/debug/tracing/set_event_notrace_pid\x00', 0x582, 0x0) getpid() mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) writev$auto(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000400)="1c06d8daf2d2355d3efc15343a8d2012f3d927d88432eda86a3f499e13913a593ab01f6b3c62f171d3", 0xf2d}, 0x9) sendmsg$auto_THERMAL_GENL_CMD_CDEV_GET(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000340)={&(0x7f00000002c0)=ANY=[@ANYBLOB='p\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000226bd7000fcdbdf250600000008000600660f0000080208000900000008000300070000000c000a002b7b28292a5c2a252e000d002f7379732f6b65726e656c2f74726163696e672f7365745f6576656e745f6e6f74726163655f7069640000000800080006000000"], 0x70}, 0x1, 0x0, 0x0, 0x4000}, 0x40810) mmap$auto(0xfffffffffffffffe, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r2 = open(&(0x7f0000000100)='.\x00', 0x595002, 0x408) ioctl$auto_TIOCNOTTY(r2, 0x5422, &(0x7f0000000480)="9a14661f8a1af9a8115e4120fcb3bdf57f6e2fb2fb39a85d6163461b96536f090a5279fe28582282f8773a8b80db8eedea6d3c93ca47e4362d31e04329c6b8689c3ce7b8ae11d81fb0943c5ac3c4f3926ab610d54e05e1c2058fc1cc87a2ef79c955056a8bbb3065b73fc59bd603d43b3d3ba7bb90169d9fe0b045162f7bfaf04de328a5aa836df9f85ce417abf6c9b49ec269b20f657bb386279923c1aaf982b9d4aa4b120ead65") socket(0x23, 0x80805, 0x0) linkat$auto(r2, 0x0, 0xffffffffffffff9c, &(0x7f0000000080)='&&\x00', 0x1000) mknod$auto(&(0x7f0000000540)=':,/file0\x00', 0x903, 0x6862) utimes$auto(&(0x7f00000000c0)=':,\x00', 0x0) 6.791576088s ago: executing program 3 (id=1621): openat$auto_uhid_fops_uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2201, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r0 = socket(0xa, 0x3, 0x3a) semctl$auto_IPC_INFO(0x1000, 0x9, 0x3, 0xb) ioctl$auto(r0, 0x8916, 0x1) 6.779869574s ago: executing program 1 (id=1622): close_range$auto(0x0, 0x5, 0x0) r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000001080)='/dev/v4l-touch5\x00', 0x103040, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/pci0000:00/pci_bus/0000:00/rescan\x00', 0xc2801, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'veth1_to_bridge\x00'}) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/midi2\x00', 0x2, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001400"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000) r3 = socket(0x10, 0x2, 0x4) write$auto(r3, &(0x7f0000000000)='-\x00', 0x2fb) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x10, 0x2, 0x0) sendmmsg$auto(0x3, 0x0, 0x3, 0x0) write$auto(r1, 0x0, 0x6) futex$auto(0x0, 0x8c, 0x1, 0x0, 0x0, 0x1) read$auto_v4l2_fops_v4l2_dev(r0, &(0x7f00000010c0)=""/22, 0x16) 6.618999107s ago: executing program 2 (id=1623): ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'vcan0\x00'}) r0 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0) r1 = ioctl$auto_TUNSETCARRIER(0xffffffffffffffff, 0x400454e2, &(0x7f0000000080)=0x21) sendmsg$auto_NFC_CMD_LLC_SDREQ(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)={0x14, 0x0, 0x400, 0x70bd2c, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x44000}, 0x4000840) ioctl$auto_FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000080)) mmap$auto(0x0, 0x20006, 0xdf, 0xeb1, 0x401, 0x8000) r2 = socket(0xa, 0x2, 0x0) setsockopt$auto(r2, 0x0, 0x30, 0x0, 0x568) r3 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cec10\x00', 0x40, 0x0) ioctl$auto_CEC_TRANSMIT(r3, 0xc0386105, &(0x7f0000000040)={0x8, 0x9, 0x3, 0x1, 0x1, 0x1, "f7808e10c58eb0b274851a20fd834fd9", 0x3a, 0x8, 0xf5, 0x3, 0x81, 0x8e, 0x6}) 6.61703473s ago: executing program 1 (id=1624): r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'wg0\x00', 0x0}) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'syz_tun\x00', 0x0}) r4 = socket(0xa, 0x3, 0x6) bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_5={@target_ifindex=r3, 0x7f, 0x99, 0x8, 0x1, @relative_fd=r4, 0xd}, 0x92) sendmsg$auto_NET_SHAPER_CMD_GET(r0, &(0x7f0000000280)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000140)={0xb8, 0x0, 0x300, 0x70bd2d, 0x25dfdbfd, {}, [@NET_SHAPER_A_IFINDEX={0x8, 0x8, r1}, @NET_SHAPER_A_HANDLE={0x14, 0x1, 0x0, 0x1, [@NET_SHAPER_A_HANDLE_ID={0x8, 0x2, 0x1}, @NET_SHAPER_A_HANDLE_ID={0x8, 0x2, 0x5}]}, @NET_SHAPER_A_HANDLE={0x1c, 0x1, 0x0, 0x1, [@NET_SHAPER_A_HANDLE_SCOPE={0x8}, @NET_SHAPER_A_HANDLE_ID={0x8, 0x2, 0x8}, @NET_SHAPER_A_HANDLE_SCOPE={0x8, 0x1, 0x4}]}, @NET_SHAPER_A_HANDLE={0x4}, @NET_SHAPER_A_IFINDEX={0x8, 0x8, r3}, @NET_SHAPER_A_HANDLE={0x24, 0x1, 0x0, 0x1, [@NET_SHAPER_A_HANDLE_SCOPE={0x8, 0x1, 0x401}, @NET_SHAPER_A_HANDLE_SCOPE={0x8, 0x1, 0x80}, @NET_SHAPER_A_HANDLE_SCOPE={0x8, 0x1, 0x4}, @NET_SHAPER_A_HANDLE_ID={0x8, 0x2, 0x10001}]}, @NET_SHAPER_A_HANDLE={0x3c, 0x1, 0x0, 0x1, [@NET_SHAPER_A_HANDLE_SCOPE={0x8}, @NET_SHAPER_A_HANDLE_ID={0x8, 0x2, 0x2}, @NET_SHAPER_A_HANDLE_ID={0x8, 0x2, 0x8}, @NET_SHAPER_A_HANDLE_ID={0x8, 0x2, 0x80000001}, @NET_SHAPER_A_HANDLE_ID={0x8, 0x2, 0x5fe8}, @NET_SHAPER_A_HANDLE_SCOPE={0x8, 0x1, 0x2}, @NET_SHAPER_A_HANDLE_ID={0x8, 0x2, 0x73ab}]}]}, 0xb8}, 0x1, 0x0, 0x0, 0x4}, 0x20044001) r5 = syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000001140), 0xffffffffffffffff) sendmsg$auto_WG_CMD_SET_DEVICE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)={0x1c, r5, 0x1, 0x70bd26, 0x25dfdbfd, {}, [@WGDEVICE_A_IFINDEX={0x8, 0x1, r1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x30000}, 0x810) 6.443786131s ago: executing program 1 (id=1625): mmap$auto(0x0, 0x2000c, 0x800000000de, 0xe31, 0x40000000000a5, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x10001) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/input/event1\x00', 0x34d802, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000180), 0x109802, 0x0) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) sendmsg$auto_IPVS_CMD_SET_DEST(0xffffffffffffffff, 0x0, 0x4044000) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008012, r2, 0x8000) mmap$auto(0x0, 0x2000a, 0x10000000000e3, 0xeb2, 0x401, 0x8000) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) mlock$auto(0x7c88, 0x7fff) close_range$auto(0x2, r1, 0x0) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x88000, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r4 = socket(0xa, 0x1, 0x84) getsockopt$auto(r4, 0x0, 0x53, 0x0, &(0x7f0000000040)=0x28) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000010c0)='./cgroup.net/blkio.bfq.dequeue\x00', 0x8ad00, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f00000000c0)=""/4096, 0x1000) ioctl$auto(0x3, 0xae41, r3) ioctl$auto_KVM_GET_MSRS(r1, 0xc008ae88, &(0x7f0000000040)={0x7, 0x0, [{0x40000081, 0x2, 0x6}]}) r6 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r6, &(0x7f0000000240)={0x0, 0x7}, 0x2) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/loop7\x00', 0x14be02, 0x0) openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000040)='/proc/uptime\x00', 0x28c40, 0x0) dup2$auto(0x5, 0x4) userfaultfd$auto(0x1) pselect6$auto(0x5, &(0x7f0000000400)={[0x8, 0x3, 0x0, 0x5, 0x8001, 0x6, 0xac, 0x2000009, 0x3, 0xffffffff, 0x7fffffffffffffff, 0x0, 0x8000001000, 0x2, 0x8, 0x3ff]}, 0x0, 0x0, 0x0, 0x0) splice$auto(0x4, 0x0, 0x2, 0x0, 0x80000001, 0x9) openat$nci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) 6.431383431s ago: executing program 2 (id=1626): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/platform/mac802154_hwsim/ieee802154/phy1/net/wpan1/queues/rx-0/rps_flow_cnt\x00', 0xc0302, 0x0) r1 = openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000140), 0x180b03, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) ioctl$auto_SNDCTL_DSP_SPEED(0xffffffffffffffff, 0xc0045002, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) recvmmsg$auto(r1, 0x0, 0x18100, 0x1c, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) connect$auto(0x3, 0x0, 0x81) pread64$auto(0xffffffffffffffff, 0x0, 0x400100000001, 0x1ff) io_uring_setup$auto(0x2, 0x0) r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) statmount$auto(0x0, 0x0, 0x1fe, 0xd) sysfs$auto(0x2, 0xd, 0x0) r4 = fsopen$auto(0x0, 0x1) fsconfig$auto(r4, 0x8, 0x0, 0x0, 0x0) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/speed\x00', 0x0, 0x0) read$auto(r5, &(0x7f0000000100)='\xcb%)\x00', 0x7) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_OVS_VPORT_CMD_NEW(r6, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB='4 \x00\x00', @ANYRES16=r7, @ANYBLOB="01002cbd7000ffdbdf250100000004000480060003002a00000004000500080002000200000008000800", @ANYRES32=0x0, @ANYBLOB], 0x34}, 0x1, 0x0, 0x0, 0x4040010}, 0x800) sendmsg$auto_OVS_VPORT_CMD_GET(r3, 0x0, 0x20040085) close_range$auto(0x2, 0x8, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2ab42, 0x0) fsetxattr$auto(0xffffffffffffffff, 0x0, 0x0, 0x8, 0x0) ioctl$auto_SNAPSHOT_ALLOC_SWAP_PAGE(r1, 0x80083314, 0x0) sendfile$auto(r0, r0, 0x0, 0x3) mmap$auto(0x0, 0x400020009, 0x4000000000df, 0xebd, 0x401, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x40, 0x0, 0x100, 0x70bd26, 0x25dfdbfc, {}, [@NL80211_ATTR_TX_RATES={0x4}, @NL80211_ATTR_EPCS={0x4}, @NL80211_ATTR_CRIT_PROT_ID={0x6, 0xb3, 0x84c5}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "f9a604a3951aa500b02ad66c14c7525af5734a6206649ee9"}]}, 0x40}, 0x1, 0x0, 0x0, 0x4000000}, 0x200440c4) 6.192866444s ago: executing program 3 (id=1627): r0 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card0\x00', 0x20800, 0x0) ioctl$auto(r0, 0xb21064a7, 0x20000a) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'vcan0\x00'}) r1 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0) ioctl$auto_TUNSETCARRIER(0xffffffffffffffff, 0x400454e2, &(0x7f0000000080)=0x6e) ioctl$auto_FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000080)) 5.741511597s ago: executing program 0 (id=1628): sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, 0x0, 0x40090) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x100, 0x0) prctl$auto(0x23, 0x40, 0x2008, 0x0, 0x0) open(0x0, 0x161342, 0x130) mmap$auto(0x9, 0x200, 0x4, 0x18, 0x3, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r1, 0x0, 0x20) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) bpf$auto(0x0, 0x0, 0x6f4) write$auto(r0, &(0x7f0000000040)='7\x00\\\xa0\x01\x00\x01\x00\x00\x00\x00\x00\xc7k', 0x81) openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, 0x0, 0x80080, 0x0) r3 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x40080, 0x0) ioctl$auto_UI_DEV_SETUP(r3, 0x405c5503, &(0x7f0000000400)={{0xc, 0x23, 0xa6, 0x83}, "66ac010005000000000068d190eb0d4a4cada7272464294b9183349eef4c1f028fdcc8ecc66fdd02316f064ebd893007abb4c0bbc3b822f66eaf240963110d61771552c03de65800", 0x2}) ioctl$auto_UI_DEV_CREATE(r3, 0x5501, 0xffffffe4) 5.565776193s ago: executing program 2 (id=1629): unshare$auto(0x40000080) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) listen$auto(0x3, 0x81) mmap$auto(0x0, 0x2020009, 0x9, 0xeb1, r1, 0x8000) keyctl$auto(0x1f, 0x1, 0x6, 0x0, 0x3ff) madvise$auto(0x0, 0x2003f2, 0x15) r2 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000340), 0xffffffffffffffff) r5 = openat$auto_proc_uid_map_operations_base(0xffffffffffffff9c, &(0x7f00000013c0)='/proc/self/uid_map\x00', 0x8006, 0x0) write$auto_proc_uid_map_operations_base(r5, 0x0, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000200)=ANY=[@ANYBLOB="a80000", @ANYRES16=r4, @ANYBLOB="01002cbd7000fddbdf2502000000810004006e66736600d8efe42d132b72f30c54315aa74a5b8103cf2ddf901f8fc81365e252374483326ace7da356b7a16f5ce613bc0ce3aeb87ed3d22b4a27c3ecc90c70c861befe60a7a9414b446427a001f61379e8caf4519e032a5dda1e1174e2d575772b93fc046cd3a674866b80d91473ece248c03d28f9398a63a785998700000008000300850000000800010002000000"], 0xa8}}, 0x4000) madvise$auto(0x0, 0x200007, 0x19) openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/thread-self/pagemap\x00', 0x404001, 0x0) mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0xb74, 0x66a) madvise$auto(0x0, 0xffffffffffff0001, 0x15) socket(0x1a, 0x6, 0xa) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x54) mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) mq_timedsend$auto(r2, &(0x7f0000000040)='/proc/thread-self/pagemap\x00', 0x7f, 0x3ff, &(0x7f00000002c0)={0x6, 0x81}) bpf$auto(0xfffffffe, &(0x7f00000001c0)=@query={@target_fd, 0x8, 0x3, 0x5, 0xff, @prog_cnt=0x4, 0x0, 0x5, 0x80000000000006, 0xd9, 0xffffffff}, 0x6f2) 0s ago: executing program 3 (id=1630): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) socket(0x2, 0x1, 0x0) r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/pid\x00') ioctl$auto(r0, 0x8004b709, 0x1) shutdown$auto(0x200000003, 0x2) select$auto(0xe, 0x0, 0x0, &(0x7f0000000200)={[0x8, 0xffffffffffffff49, 0x5, 0x5, 0x800000000004, 0x1, 0x5, 0x19, 0x10, 0x5, 0x3, 0x4000000000008, 0xfffffffffffffffa, 0xab, 0x0, 0x9]}, &(0x7f0000000040)={0x0, 0x7}) r1 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/ieee80211/phy1/aql_txq_limit\x00', 0x822, 0x0) write$auto(r1, 0x0, 0x5) kernel console output (not intermixed with test programs): .653848][T11603] ? vrm_set_new_addr+0x204/0x290 [ 459.653869][T11603] mremap_to+0x1b7/0x450 [ 459.653890][T11603] do_mremap+0xb76/0x2130 [ 459.653918][T11603] ? __pfx_do_mremap+0x10/0x10 [ 459.653943][T11603] ? ksys_write+0x190/0x250 [ 459.653960][T11603] __do_sys_mremap+0x126/0x170 [ 459.653981][T11603] ? __pfx___do_sys_mremap+0x10/0x10 [ 459.654006][T11603] ? __x64_sys_futex+0x34f/0x4d0 [ 459.654033][T11603] ? syscall_user_dispatch+0x76/0x130 [ 459.654055][T11603] do_syscall_64+0x106/0xf80 [ 459.654085][T11603] ? clear_bhb_loop+0x40/0x90 [ 459.654104][T11603] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 459.654120][T11603] RIP: 0033:0x7f7f8cd9c799 [ 459.654133][T11603] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 459.654148][T11603] RSP: 002b:00007f7f8dbeb028 EFLAGS: 00000246 ORIG_RAX: 0000000000000019 [ 459.654163][T11603] RAX: ffffffffffffffda RBX: 00007f7f8d016180 RCX: 00007f7f8cd9c799 [ 459.654173][T11603] RDX: 0000000000000004 RSI: 0000000000000004 RDI: 0000200000000000 [ 459.654182][T11603] RBP: 00007f7f8ce32c99 R08: 0000000100000000 R09: 0000000000000000 [ 459.654191][T11603] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 459.654200][T11603] R13: 00007f7f8d016218 R14: 00007f7f8d016180 R15: 00007ffe049926a8 [ 459.654220][T11603] [ 459.952474][T11574] debugfs: out of free dentries, can not create directory 'netdev:wlan1' [ 460.120442][T11617] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1234'. [ 460.311158][T11620] can: request_module (can-proto-0) failed. [ 462.284011][T11671] FAULT_INJECTION: forcing a failure. [ 462.284011][T11671] name failslab, interval 1, probability 0, space 0, times 0 [ 462.380919][T11671] CPU: 0 UID: 0 PID: 11671 Comm: syz.1.1244 Tainted: G U L syzkaller #0 PREEMPT(full) [ 462.380947][T11671] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 462.380953][T11671] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 462.380963][T11671] Call Trace: [ 462.380968][T11671] [ 462.380975][T11671] dump_stack_lvl+0x100/0x190 [ 462.381003][T11671] should_fail_ex.cold+0x5/0xa [ 462.381021][T11671] ? tomoyo_realpath_from_path+0xb6/0x690 [ 462.381041][T11671] should_failslab+0xc2/0x120 [ 462.381057][T11671] __kmalloc_noprof+0xe0/0x850 [ 462.381083][T11671] tomoyo_realpath_from_path+0xb6/0x690 [ 462.381106][T11671] tomoyo_path_number_perm+0x23c/0x580 [ 462.381121][T11671] ? tomoyo_path_number_perm+0x22e/0x580 [ 462.381138][T11671] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 462.381153][T11671] ? futex_wake+0x1ad/0x530 [ 462.381192][T11671] ? find_held_lock+0x2b/0x80 [ 462.381205][T11671] ? __fget_files+0x215/0x3d0 [ 462.381218][T11671] ? hook_file_ioctl_common+0x146/0x410 [ 462.381242][T11671] ? __fget_files+0x21f/0x3d0 [ 462.381259][T11671] security_file_ioctl+0xd3/0x230 [ 462.381277][T11671] __x64_sys_ioctl+0xb7/0x210 [ 462.381301][T11671] do_syscall_64+0x106/0xf80 [ 462.381321][T11671] ? clear_bhb_loop+0x40/0x90 [ 462.381339][T11671] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 462.381354][T11671] RIP: 0033:0x7f02d599c799 [ 462.381367][T11671] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 462.381381][T11671] RSP: 002b:00007f02d6938028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 462.381396][T11671] RAX: ffffffffffffffda RBX: 00007f02d5c15fa0 RCX: 00007f02d599c799 [ 462.381405][T11671] RDX: 0000000000000000 RSI: 000000008001af85 RDI: 0000000000000003 [ 462.381414][T11671] RBP: 00007f02d5a32c99 R08: 0000000000000000 R09: 0000000000000000 [ 462.381422][T11671] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 462.381431][T11671] R13: 00007f02d5c16038 R14: 00007f02d5c15fa0 R15: 00007ffdbcfb0b48 [ 462.381451][T11671] [ 462.608913][T11671] ERROR: Out of memory at tomoyo_realpath_from_path. [ 462.978433][T11673] zswap: compressor not available [ 463.124972][T11696] FAULT_INJECTION: forcing a failure. [ 463.124972][T11696] name failslab, interval 1, probability 0, space 0, times 0 [ 463.193558][T11696] CPU: 0 UID: 0 PID: 11696 Comm: syz.2.1251 Tainted: G U L syzkaller #0 PREEMPT(full) [ 463.193585][T11696] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 463.193591][T11696] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 463.193599][T11696] Call Trace: [ 463.193604][T11696] [ 463.193610][T11696] dump_stack_lvl+0x100/0x190 [ 463.193636][T11696] should_fail_ex.cold+0x5/0xa [ 463.193654][T11696] should_failslab+0xc2/0x120 [ 463.193669][T11696] __kvmalloc_node_noprof+0xfa/0xa00 [ 463.193690][T11696] ? __v4l2_subdev_state_alloc+0x2c4/0x410 [ 463.193801][T11696] ? lockdep_init_map_type+0x5c/0x250 [ 463.193823][T11696] __v4l2_subdev_state_alloc+0x2c4/0x410 [ 463.193841][T11696] subdev_open+0xa6/0x510 [ 463.193858][T11696] v4l2_open+0x1d2/0x490 [ 463.193925][T11696] ? __pfx_v4l2_open+0x10/0x10 [ 463.193945][T11696] chrdev_open+0x234/0x6a0 [ 463.193960][T11696] ? __pfx_apparmor_file_open+0x10/0x10 [ 463.193982][T11696] ? __pfx_chrdev_open+0x10/0x10 [ 463.193997][T11696] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 463.194016][T11696] do_dentry_open+0x6d8/0x1660 [ 463.194030][T11696] ? __pfx_chrdev_open+0x10/0x10 [ 463.194048][T11696] vfs_open+0x82/0x3f0 [ 463.194067][T11696] path_openat+0x208c/0x31a0 [ 463.194086][T11696] ? stack_depot_save_flags+0x27/0x9d0 [ 463.194104][T11696] ? __pfx_path_openat+0x10/0x10 [ 463.194120][T11696] ? kasan_save_stack+0x3f/0x50 [ 463.194139][T11696] ? kasan_save_stack+0x30/0x50 [ 463.194158][T11696] ? kasan_save_track+0x14/0x30 [ 463.194177][T11696] ? __kasan_slab_alloc+0x89/0x90 [ 463.194189][T11696] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 463.194208][T11696] ? do_getname+0x35/0x390 [ 463.194226][T11696] do_file_open+0x20e/0x430 [ 463.194241][T11696] ? __pfx_do_file_open+0x10/0x10 [ 463.194274][T11696] ? find_held_lock+0x2b/0x80 [ 463.194286][T11696] ? __might_fault+0xc5/0x140 [ 463.194304][T11696] ? __might_fault+0xc5/0x140 [ 463.194324][T11696] file_open_name+0x198/0x3b0 [ 463.194341][T11696] ? __pfx_file_open_name+0x10/0x10 [ 463.194363][T11696] ? do_getname+0x191/0x390 [ 463.194380][T11696] acct_on+0xa4/0x9e0 [ 463.194401][T11696] ? __pfx_acct_on+0x10/0x10 [ 463.194420][T11696] ? bpf_lsm_capable+0x9/0x10 [ 463.194434][T11696] ? security_capable+0x80/0x260 [ 463.194456][T11696] __x64_sys_acct+0x81/0x1e0 [ 463.194474][T11696] ? lockdep_hardirqs_on+0x78/0x100 [ 463.194493][T11696] do_syscall_64+0x106/0xf80 [ 463.194511][T11696] ? clear_bhb_loop+0x40/0x90 [ 463.194528][T11696] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 463.194542][T11696] RIP: 0033:0x7fa3b519c799 [ 463.194555][T11696] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 463.194568][T11696] RSP: 002b:00007fa3b602e028 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3 [ 463.194582][T11696] RAX: ffffffffffffffda RBX: 00007fa3b5415fa0 RCX: 00007fa3b519c799 [ 463.194591][T11696] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000100 [ 463.194600][T11696] RBP: 00007fa3b5232c99 R08: 0000000000000000 R09: 0000000000000000 [ 463.194608][T11696] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 463.194616][T11696] R13: 00007fa3b5416038 R14: 00007fa3b5415fa0 R15: 00007fffdd6ae8c8 [ 463.194635][T11696] [ 464.776589][T11725] can: request_module (can-proto-4) failed. [ 465.229467][T11745] block2mtd: illegal erase size [ 465.429473][T11747] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1259'. [ 466.033825][T11762] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1264'. [ 466.084784][T11757] ERROR: Out of memory at tomoyo_memory_ok. [ 466.143074][T11757] ERROR: Domain ' /sbin/init /etc/init.d/rcS /etc/init.d/S50sshd /sbin/start-stop-daemon /usr/sbin/sshd /usr/libexec/sshd-session /bin/sh /root/syz-executor /root/syz-executor /newroot/318/file0' not defined. [ 467.134414][T11797] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1271'. [ 467.347683][T11801] program syz.0.1272 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 470.603574][T11877] zswap: compressor not available [ 470.703501][T11906] FAULT_INJECTION: forcing a failure. [ 470.703501][T11906] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 470.717500][T11878] workqueue: Failed to create a rescuer kthread for wq "nfc6_nci_tx_wq": -EINTR [ 470.773358][T11906] CPU: 0 UID: 0 PID: 11906 Comm: syz.2.1292 Tainted: G U L syzkaller #0 PREEMPT(full) [ 470.773390][T11906] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 470.773396][T11906] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 470.773405][T11906] Call Trace: [ 470.773412][T11906] [ 470.773419][T11906] dump_stack_lvl+0x100/0x190 [ 470.773447][T11906] should_fail_ex.cold+0x5/0xa [ 470.773462][T11906] ? prepare_alloc_pages+0x16d/0x5f0 [ 470.773481][T11906] should_fail_alloc_page+0xeb/0x140 [ 470.773497][T11906] prepare_alloc_pages+0x1f0/0x5f0 [ 470.773517][T11906] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 470.773543][T11906] ? __lock_acquire+0x4a5/0x2630 [ 470.773566][T11906] ? __lock_acquire+0x4a5/0x2630 [ 470.773585][T11906] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 470.773627][T11906] ? lock_acquire+0x1cf/0x380 [ 470.773647][T11906] ? find_held_lock+0x2b/0x80 [ 470.773660][T11906] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 470.773686][T11906] ? policy_nodemask+0xed/0x4f0 [ 470.773703][T11906] alloc_pages_mpol+0x1fb/0x550 [ 470.773720][T11906] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 470.773735][T11906] ? __page_table_check_ptes_set+0x1b5/0x4e0 [ 470.773751][T11906] ? __pfx___page_table_check_ptes_set+0x10/0x10 [ 470.773769][T11906] alloc_pages_noprof+0x131/0x390 [ 470.773786][T11906] pte_alloc_one+0x1c/0x3d0 [ 470.773802][T11906] __pte_alloc+0x6d/0x3e0 [ 470.773817][T11906] ? __pfx___pte_alloc+0x10/0x10 [ 470.773836][T11906] do_anonymous_page+0x13cc/0x1fb0 [ 470.773862][T11906] __handle_mm_fault+0x1d42/0x2b60 [ 470.773887][T11906] ? __pfx___handle_mm_fault+0x10/0x10 [ 470.773906][T11906] ? folio_mark_accessed+0xf3/0x1040 [ 470.773921][T11906] ? __pfx_folio_mark_accessed+0x10/0x10 [ 470.773936][T11906] ? find_held_lock+0x2b/0x80 [ 470.773961][T11906] handle_mm_fault+0x36d/0xa20 [ 470.773984][T11906] __get_user_pages+0xf9c/0x34d0 [ 470.774006][T11906] ? register_lock_class+0x40/0x560 [ 470.774023][T11906] ? __kmalloc_noprof+0x301/0x850 [ 470.774043][T11906] ? __pfx___get_user_pages+0x10/0x10 [ 470.774058][T11906] ? do_syscall_64+0x106/0xf80 [ 470.774084][T11906] __gup_longterm_locked+0x87d/0x16f0 [ 470.774104][T11906] ? __lock_acquire+0x4a5/0x2630 [ 470.774126][T11906] ? __pfx___gup_longterm_locked+0x10/0x10 [ 470.774155][T11906] pin_user_pages_remote+0xed/0x140 [ 470.774173][T11906] ? __pfx_pin_user_pages_remote+0x10/0x10 [ 470.774198][T11906] process_vm_rw_core.constprop.0+0x412/0x950 [ 470.774224][T11906] ? preempt_schedule_thunk+0x16/0x30 [ 470.774246][T11906] ? __pfx_process_vm_rw_core.constprop.0+0x10/0x10 [ 470.774270][T11906] ? import_ubuf+0x1b6/0x220 [ 470.774295][T11906] ? iovec_from_user+0xda/0x140 [ 470.774313][T11906] process_vm_rw+0x226/0x2d0 [ 470.774337][T11906] ? __pfx_process_vm_rw+0x10/0x10 [ 470.774357][T11906] ? __pfx_futex_wake+0x10/0x10 [ 470.774383][T11906] ? __lock_acquire+0x4a5/0x2630 [ 470.774407][T11906] ? do_raw_spin_lock+0x128/0x260 [ 470.774427][T11906] ? find_held_lock+0x2b/0x80 [ 470.774448][T11906] ? xfd_validate_state+0x129/0x190 [ 470.774471][T11906] __x64_sys_process_vm_readv+0xe2/0x1c0 [ 470.774494][T11906] ? do_syscall_64+0x95/0xf80 [ 470.774513][T11906] ? lockdep_hardirqs_on+0x78/0x100 [ 470.774532][T11906] do_syscall_64+0x106/0xf80 [ 470.774551][T11906] ? clear_bhb_loop+0x40/0x90 [ 470.774569][T11906] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 470.774584][T11906] RIP: 0033:0x7fa3b519c799 [ 470.774605][T11906] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 470.774620][T11906] RSP: 002b:00007fa3b602e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000136 [ 470.774636][T11906] RAX: ffffffffffffffda RBX: 00007fa3b5415fa0 RCX: 00007fa3b519c799 [ 470.774646][T11906] RDX: 0000000000000001 RSI: 0000200000000000 RDI: 0000000000000540 [ 470.774655][T11906] RBP: 00007fa3b5232c99 R08: 0000000000000006 R09: 0000000000000000 [ 470.774665][T11906] R10: 0000200000000280 R11: 0000000000000246 R12: 0000000000000000 [ 470.774674][T11906] R13: 00007fa3b5416038 R14: 00007fa3b5415fa0 R15: 00007fffdd6ae8c8 [ 470.774694][T11906] [ 471.702678][T11912] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1293'. [ 472.023872][T11910] zswap: compressor not available [ 472.054774][T11912] debugfs: '!PjE r҄y*"l-y–L̓]' already exists in 'ieee80211' [ 472.267518][T11864] Process accounting paused [ 472.386768][T11925] zswap: compressor not available [ 472.392618][T11927] sysfs: cannot create duplicate filename '/class/ieee80211/!PjE r҄y*"l-y–L̓]' [ 472.415263][T11927] CPU: 0 UID: 0 PID: 11927 Comm: syz.1.1297 Tainted: G U L syzkaller #0 PREEMPT(full) [ 472.415291][T11927] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 472.415296][T11927] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 472.415305][T11927] Call Trace: [ 472.415310][T11927] [ 472.415317][T11927] dump_stack_lvl+0x100/0x190 [ 472.415344][T11927] sysfs_warn_dup.cold+0x1c/0x28 [ 472.415394][T11927] sysfs_do_create_link_sd+0x113/0x140 [ 472.415415][T11927] sysfs_create_link+0x61/0xc0 [ 472.415434][T11927] device_add+0x675/0x1950 [ 472.415453][T11927] ? __pfx_device_add+0x10/0x10 [ 472.415468][T11927] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 472.415492][T11927] ? ieee80211_set_bitrate_flags+0x41b/0x6b0 [ 472.415566][T11927] wiphy_register+0x1e5b/0x2d30 [ 472.415586][T11927] ? __rtnl_unlock+0xb9/0xf0 [ 472.415636][T11927] ? netdev_run_todo+0x7a0/0x12c0 [ 472.415660][T11927] ? __pfx_wiphy_register+0x10/0x10 [ 472.415681][T11927] ? __asan_memset+0x23/0x50 [ 472.415700][T11927] ? minstrel_ht_alloc+0x5e6/0x7f0 [ 472.415755][T11927] ieee80211_register_hw+0x2cfd/0x4140 [ 472.415807][T11927] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 472.415828][T11927] ? __pfx___debug_object_init+0x10/0x10 [ 472.415897][T11927] ? find_held_lock+0x2b/0x80 [ 472.415912][T11927] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 472.415935][T11927] ? __hrtimer_setup+0x178/0x280 [ 472.415960][T11927] mac80211_hwsim_new_radio+0x2847/0x57d0 [ 472.416054][T11927] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 472.416082][T11927] hwsim_new_radio_nl+0xc1f/0x1340 [ 472.416105][T11927] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 472.416133][T11927] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1a0/0x280 [ 472.416149][T11927] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x280 [ 472.416168][T11927] genl_family_rcv_msg_doit+0x214/0x300 [ 472.416185][T11927] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 472.416200][T11927] ? genl_get_cmd+0x3ef/0x720 [ 472.416217][T11927] ? bpf_lsm_capable+0x9/0x10 [ 472.416231][T11927] ? security_capable+0x80/0x260 [ 472.416253][T11927] ? ns_capable+0xd2/0xf0 [ 472.416268][T11927] genl_rcv_msg+0x560/0x800 [ 472.416284][T11927] ? __pfx_genl_rcv_msg+0x10/0x10 [ 472.416299][T11927] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 472.416327][T11927] netlink_rcv_skb+0x159/0x420 [ 472.416347][T11927] ? __pfx_genl_rcv_msg+0x10/0x10 [ 472.416362][T11927] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 472.416391][T11927] ? netlink_deliver_tap+0x1ae/0xcc0 [ 472.416413][T11927] genl_rcv+0x28/0x40 [ 472.416425][T11927] netlink_unicast+0x5aa/0x870 [ 472.416448][T11927] ? __pfx_netlink_unicast+0x10/0x10 [ 472.416467][T11927] ? __pfx___might_resched+0x10/0x10 [ 472.416488][T11927] ? __lock_acquire+0x4a5/0x2630 [ 472.416511][T11927] netlink_sendmsg+0x8b0/0xda0 [ 472.416534][T11927] ? __pfx_netlink_sendmsg+0x10/0x10 [ 472.416553][T11927] ? __import_iovec+0x1d2/0x640 [ 472.416571][T11927] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 472.416596][T11927] ____sys_sendmsg+0x9e1/0xb70 [ 472.416609][T11927] ? __pfx_netlink_sendmsg+0x10/0x10 [ 472.416631][T11927] ? __pfx_____sys_sendmsg+0x10/0x10 [ 472.416649][T11927] ? try_to_wake_up+0x644/0x1a80 [ 472.416667][T11927] ___sys_sendmsg+0x190/0x1e0 [ 472.416684][T11927] ? __pfx____sys_sendmsg+0x10/0x10 [ 472.416699][T11927] ? futex_private_hash_put+0x107/0x1c0 [ 472.416738][T11927] __sys_sendmsg+0x170/0x220 [ 472.416758][T11927] ? __pfx___sys_sendmsg+0x10/0x10 [ 472.416777][T11927] ? __x64_sys_futex+0x34f/0x4d0 [ 472.416806][T11927] do_syscall_64+0x106/0xf80 [ 472.416824][T11927] ? clear_bhb_loop+0x40/0x90 [ 472.416842][T11927] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 472.416856][T11927] RIP: 0033:0x7f02d599c799 [ 472.416870][T11927] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 472.416883][T11927] RSP: 002b:00007f02d6917028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 472.416898][T11927] RAX: ffffffffffffffda RBX: 00007f02d5c16090 RCX: 00007f02d599c799 [ 472.416907][T11927] RDX: 0000000000040800 RSI: 00002000000000c0 RDI: 0000000000000006 [ 472.416916][T11927] RBP: 00007f02d5a32c99 R08: 0000000000000000 R09: 0000000000000000 [ 472.416924][T11927] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 472.416932][T11927] R13: 00007f02d5c16128 R14: 00007f02d5c16090 R15: 00007ffdbcfb0b48 [ 472.416952][T11927] [ 473.907128][T11947] HfR: entered promiscuous mode [ 474.363906][T11963] ptrace attach of "./syz-executor exec"[5824] was attempted by "./syz-executor exec"[11963] [ 474.719784][T11974] program syz.3.1311 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 475.455118][T11988] zswap: compressor not available [ 475.542111][T11991] debugfs: '!PjE r҄y*"l-y–L̓]' already exists in 'ieee80211' [ 476.654757][T12023] ERROR: Out of memory at tomoyo_memory_ok. [ 476.705772][T12000] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 476.723374][T12000] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 476.757549][T12000] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 476.799603][T12000] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 476.839272][T12000] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 476.866346][T12000] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 477.355351][T12043] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1326'. [ 477.547084][T12051] Setting dangerous option i915.mitigations - tainting kernel [ 477.964441][ T51] Bluetooth: hci1: command 0x0406 tx timeout [ 478.767092][ T51] Bluetooth: hci2: command 0x0406 tx timeout [ 478.844752][ T51] Bluetooth: hci3: command 0x0406 tx timeout [ 478.850810][ T5836] Bluetooth: hci0: command 0x0406 tx timeout [ 478.959372][T12098] FAULT_INJECTION: forcing a failure. [ 478.959372][T12098] name failslab, interval 1, probability 0, space 0, times 0 [ 479.025169][T12098] CPU: 0 UID: 0 PID: 12098 Comm: syz.3.1338 Tainted: G U L syzkaller #0 PREEMPT(full) [ 479.025200][T12098] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 479.025206][T12098] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 479.025215][T12098] Call Trace: [ 479.025221][T12098] [ 479.025227][T12098] dump_stack_lvl+0x100/0x190 [ 479.025255][T12098] should_fail_ex.cold+0x5/0xa [ 479.025273][T12098] should_failslab+0xc2/0x120 [ 479.025289][T12098] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 479.025320][T12098] ? security_inode_alloc+0x3b/0x2c0 [ 479.025335][T12098] ? lockdep_init_map_type+0x5c/0x250 [ 479.025357][T12098] security_inode_alloc+0x3b/0x2c0 [ 479.025372][T12098] inode_init_always_gfp+0xced/0x1040 [ 479.025391][T12098] alloc_inode+0x8e/0x250 [ 479.025411][T12098] new_inode+0x22/0x1c0 [ 479.025431][T12098] shmem_get_inode+0x212/0x1040 [ 479.025452][T12098] ? __pfx_shmem_get_inode+0x10/0x10 [ 479.025470][T12098] ? rcu_is_watching+0x12/0xc0 [ 479.025490][T12098] ? percpu_counter_add_batch+0xb9/0x230 [ 479.025584][T12098] __shmem_file_setup+0x3ac/0x490 [ 479.025605][T12098] ? __pfx___shmem_file_setup+0x10/0x10 [ 479.025629][T12098] ? vm_area_alloc+0x1f/0x160 [ 479.025651][T12098] shmem_zero_setup+0x96/0x1b0 [ 479.025675][T12098] __mmap_region+0x2198/0x29e0 [ 479.025700][T12098] ? __pfx___mmap_region+0x10/0x10 [ 479.025718][T12098] ? process_measurement+0x1f4/0x2350 [ 479.025751][T12098] ? __lock_acquire+0x4a5/0x2630 [ 479.025768][T12098] ? update_cfs_rq_load_avg+0x51/0x550 [ 479.025792][T12098] ? find_held_lock+0x2b/0x80 [ 479.025805][T12098] ? finish_task_switch.isra.0+0x200/0xb80 [ 479.025821][T12098] ? finish_task_switch.isra.0+0x200/0xb80 [ 479.025843][T12098] ? trace_sched_exit_tp+0x13a/0x180 [ 479.025861][T12098] ? __schedule+0x1000/0x6120 [ 479.025904][T12098] ? rcu_is_watching+0x12/0xc0 [ 479.025924][T12098] ? cap_capable+0x107/0x460 [ 479.025950][T12098] mmap_region+0x180/0x3e0 [ 479.025975][T12098] do_mmap+0xc63/0x12f0 [ 479.025995][T12098] ? __pfx_do_mmap+0x10/0x10 [ 479.026011][T12098] ? __pfx_down_write_killable+0x10/0x10 [ 479.026037][T12098] vm_mmap_pgoff+0x29e/0x470 [ 479.026057][T12098] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 479.026074][T12098] ? do_futex+0x192/0x350 [ 479.026093][T12098] ? __pfx_do_futex+0x10/0x10 [ 479.026115][T12098] ksys_mmap_pgoff+0xe1/0x650 [ 479.026130][T12098] ? __x64_sys_futex+0x34f/0x4d0 [ 479.026148][T12098] ? __x64_sys_futex+0x358/0x4d0 [ 479.026166][T12098] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 479.026182][T12098] ? xfd_validate_state+0x129/0x190 [ 479.026206][T12098] __x64_sys_mmap+0x125/0x190 [ 479.026229][T12098] do_syscall_64+0x106/0xf80 [ 479.026247][T12098] ? clear_bhb_loop+0x40/0x90 [ 479.026266][T12098] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 479.026281][T12098] RIP: 0033:0x7f688939c799 [ 479.026303][T12098] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 479.026319][T12098] RSP: 002b:00007f68875d5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 479.026335][T12098] RAX: ffffffffffffffda RBX: 00007f6889616090 RCX: 00007f688939c799 [ 479.026345][T12098] RDX: 0000000000000003 RSI: 0000000002020009 RDI: 0000000000000000 [ 479.026354][T12098] RBP: 00007f6889432c99 R08: fffffffffffffffa R09: 0000000000008000 [ 479.026364][T12098] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 479.026372][T12098] R13: 00007f6889616128 R14: 00007f6889616090 R15: 00007ffc2ea92c48 [ 479.026392][T12098] [ 479.641675][T12112] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1344'. [ 479.740884][T12107] can: request_module (can-proto-0) failed. [ 480.848375][ T5836] Bluetooth: hci2: command 0x0406 tx timeout [ 480.925599][ T5836] Bluetooth: hci3: command 0x0406 tx timeout [ 481.758238][T12162] vivid-007: ================= START STATUS ================= [ 481.797740][T12162] vivid-007: Generate PTS: true [ 481.823546][T12162] vivid-007: Generate SCR: true [ 481.847168][T12162] tpg source WxH: 320x240 (Y'CbCr) [ 481.907904][T12162] tpg field: 1 [ 481.931550][T12162] tpg crop: (0,0)/320x240 [ 481.935957][T12162] tpg compose: (0,0)/320x240 [ 481.980188][T12162] tpg colorspace: 8 [ 482.014677][T12162] tpg transfer function: 0/0 [ 482.041916][T12162] tpg Y'CbCr encoding: 0/0 [ 482.060841][T12162] tpg quantization: 0/0 [ 482.089965][T12162] tpg RGB range: 0/2 [ 482.124354][T12162] vivid-007: ================== END STATUS ================== [ 483.249030][T12188] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1359'. [ 484.068399][T12210] vivid-007: ================= START STATUS ================= [ 484.108560][T12210] vivid-007: Generate PTS: true [ 484.128543][T12210] vivid-007: Generate SCR: true [ 484.154051][T12210] tpg source WxH: 320x240 (Y'CbCr) [ 484.180676][T12210] tpg field: 1 [ 484.232823][T12210] tpg crop: (0,0)/320x240 [ 484.271329][T12210] tpg compose: (0,0)/320x240 [ 484.303443][T12193] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 484.334079][T12210] tpg colorspace: 8 [ 484.364739][T12193] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 484.386804][T12210] tpg transfer function: 0/0 [ 484.430561][T12193] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 484.463369][T12210] tpg Y'CbCr encoding: 0/0 [ 484.470840][T12193] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 484.491778][T12193] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 484.509853][T12210] tpg quantization: 0/0 [ 484.550082][T12210] tpg RGB range: 0/2 [ 484.582639][T12210] vivid-007: ================== END STATUS ================== [ 484.922559][T12230] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 484.972306][T12230] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 485.007281][T12230] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 485.036868][T12230] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 485.067994][T12230] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 486.929193][ T5836] Bluetooth: hci1: command 0x0406 tx timeout [ 487.009481][ T5836] Bluetooth: hci2: command 0x0406 tx timeout [ 487.088746][ T5836] Bluetooth: hci3: command 0x0406 tx timeout [ 487.094800][ T51] Bluetooth: hci0: command 0x0406 tx timeout [ 487.143800][T12286] ERROR: Out of memory at tomoyo_memory_ok. [ 487.549255][T12300] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 488.628019][T12324] FAULT_INJECTION: forcing a failure. [ 488.628019][T12324] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 488.714903][T12324] CPU: 0 UID: 0 PID: 12324 Comm: syz.2.1392 Tainted: G U L syzkaller #0 PREEMPT(full) [ 488.714932][T12324] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 488.714938][T12324] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 488.714948][T12324] Call Trace: [ 488.714953][T12324] [ 488.714959][T12324] dump_stack_lvl+0x100/0x190 [ 488.714988][T12324] should_fail_ex.cold+0x5/0xa [ 488.715004][T12324] ? prepare_alloc_pages+0x16d/0x5f0 [ 488.715029][T12324] should_fail_alloc_page+0xeb/0x140 [ 488.715047][T12324] prepare_alloc_pages+0x1f0/0x5f0 [ 488.715068][T12324] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 488.715096][T12324] ? kasan_save_stack+0x3f/0x50 [ 488.715117][T12324] ? kasan_save_stack+0x30/0x50 [ 488.715137][T12324] ? kasan_save_track+0x14/0x30 [ 488.715157][T12324] ? __kasan_slab_alloc+0x89/0x90 [ 488.715170][T12324] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 488.715190][T12324] ? ptlock_alloc+0x1f/0x70 [ 488.715208][T12324] ? __pte_alloc+0x6d/0x3e0 [ 488.715225][T12324] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 488.715250][T12324] ? __pfx_css_rstat_updated+0x10/0x10 [ 488.715271][T12324] ? lock_acquire+0x1cf/0x380 [ 488.715290][T12324] ? find_held_lock+0x2b/0x80 [ 488.715303][T12324] ? page_table_check_set+0x49a/0xa10 [ 488.715317][T12324] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 488.715341][T12324] ? policy_nodemask+0xed/0x4f0 [ 488.715357][T12324] alloc_pages_mpol+0x1fb/0x550 [ 488.715374][T12324] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 488.715394][T12324] folio_alloc_mpol_noprof+0x36/0x340 [ 488.715413][T12324] vma_alloc_folio_noprof+0xed/0x1d0 [ 488.715430][T12324] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 488.715453][T12324] do_anonymous_page+0xb3a/0x1fb0 [ 488.715479][T12324] __handle_mm_fault+0x1d42/0x2b60 [ 488.715504][T12324] ? __pfx___handle_mm_fault+0x10/0x10 [ 488.715524][T12324] ? pte_offset_map_lock+0x174/0x320 [ 488.715540][T12324] ? find_held_lock+0x2b/0x80 [ 488.715559][T12324] ? follow_page_pte+0x5b3/0x1400 [ 488.715579][T12324] handle_mm_fault+0x36d/0xa20 [ 488.715601][T12324] __get_user_pages+0xf9c/0x34d0 [ 488.715625][T12324] ? __pfx___get_user_pages+0x10/0x10 [ 488.715646][T12324] populate_vma_page_range+0x267/0x3f0 [ 488.715670][T12324] ? __pfx_populate_vma_page_range+0x10/0x10 [ 488.715688][T12324] ? __pfx_find_vma_intersection+0x10/0x10 [ 488.715705][T12324] ? do_mmap+0x93f/0x12f0 [ 488.715723][T12324] __mm_populate+0x107/0x3a0 [ 488.715742][T12324] ? __pfx___mm_populate+0x10/0x10 [ 488.715761][T12324] ? up_write+0x290/0x4f0 [ 488.715785][T12324] vm_mmap_pgoff+0x37f/0x470 [ 488.715804][T12324] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 488.715821][T12324] ? do_futex+0x192/0x350 [ 488.715841][T12324] ? __pfx_do_futex+0x10/0x10 [ 488.715858][T12324] ? __pfx_do_sys_openat2+0x10/0x10 [ 488.715881][T12324] ksys_mmap_pgoff+0xe1/0x650 [ 488.715897][T12324] ? __x64_sys_futex+0x34f/0x4d0 [ 488.715915][T12324] ? __x64_sys_futex+0x358/0x4d0 [ 488.715933][T12324] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 488.715952][T12324] ? xfd_validate_state+0x129/0x190 [ 488.715976][T12324] __x64_sys_mmap+0x125/0x190 [ 488.715999][T12324] do_syscall_64+0x106/0xf80 [ 488.716019][T12324] ? clear_bhb_loop+0x40/0x90 [ 488.716044][T12324] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 488.716059][T12324] RIP: 0033:0x7fa3b519c799 [ 488.716073][T12324] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 488.716087][T12324] RSP: 002b:00007fa3b602e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 488.716102][T12324] RAX: ffffffffffffffda RBX: 00007fa3b5415fa0 RCX: 00007fa3b519c799 [ 488.716112][T12324] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 488.716120][T12324] RBP: 00007fa3b5232c99 R08: 0000000000000002 R09: 0000000000008000 [ 488.716129][T12324] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 488.716137][T12324] R13: 00007fa3b5416038 R14: 00007fa3b5415fa0 R15: 00007fffdd6ae8c8 [ 488.716156][T12324] [ 489.249086][ T5836] Bluetooth: hci2: command 0x0406 tx timeout [ 489.263351][ T13] netdevsim netdevsim1335 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 489.698849][T12324] Invalid ELF header magic: != ELF [ 490.042958][T12329] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 490.049509][T12329] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 490.076745][T12329] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 490.098714][T12329] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 490.140591][T12342] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1398'. [ 490.152296][T12329] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 490.362518][T12349] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1401'. [ 490.726190][T12356] bonding: no command found in bonding_masters - use +ifname or -ifname [ 491.412126][ T51] Bluetooth: hci1: command 0x0406 tx timeout [ 491.431193][T12378] program syz.3.1409 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 491.849174][T12393] vivid-007: ================= START STATUS ================= [ 491.885096][T12393] vivid-007: Generate PTS: true [ 491.909914][T12393] vivid-007: Generate SCR: true [ 491.939814][T12393] tpg source WxH: 320x240 (Y'CbCr) [ 492.004779][T12393] tpg field: 1 [ 492.033180][T12393] tpg crop: (0,0)/320x240 [ 492.052460][ T51] Bluetooth: hci2: command 0x0406 tx timeout [ 492.096323][T12393] tpg compose: (0,0)/320x240 [ 492.131272][ T51] Bluetooth: hci0: command 0x0406 tx timeout [ 492.167791][T12393] tpg colorspace: 8 [ 492.213008][ T51] Bluetooth: hci3: command 0x0406 tx timeout [ 492.240437][T12393] tpg transfer function: 0/0 [ 492.323613][T12393] tpg Y'CbCr encoding: 0/0 [ 492.389839][T12393] tpg quantization: 0/0 [ 492.430389][T12393] tpg RGB range: 0/2 [ 492.476880][T12393] vivid-007: ================== END STATUS ================== [ 492.633914][T12408] vivid-007: ================= START STATUS ================= [ 492.687965][T12408] vivid-007: Generate PTS: true [ 492.713979][T12408] vivid-007: Generate SCR: true [ 492.755583][T12408] tpg source WxH: 320x240 (Y'CbCr) [ 492.802488][T12408] tpg field: 1 [ 492.827169][T12408] tpg crop: (0,0)/320x240 [ 492.854089][T12408] tpg compose: (0,0)/320x240 [ 492.884308][T12408] tpg colorspace: 8 [ 492.913052][T12408] tpg transfer function: 0/0 [ 492.993263][T12408] tpg Y'CbCr encoding: 0/0 [ 493.005902][T12408] tpg quantization: 0/0 [ 493.044595][T12408] tpg RGB range: 0/2 [ 493.124932][T12408] vivid-007: ================== END STATUS ================== [ 493.835895][T12434] FAULT_INJECTION: forcing a failure. [ 493.835895][T12434] name failslab, interval 1, probability 0, space 0, times 0 [ 493.886066][T12434] CPU: 0 UID: 0 PID: 12434 Comm: syz.1.1422 Tainted: G U L syzkaller #0 PREEMPT(full) [ 493.886092][T12434] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 493.886098][T12434] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 493.886106][T12434] Call Trace: [ 493.886111][T12434] [ 493.886116][T12434] dump_stack_lvl+0x100/0x190 [ 493.886143][T12434] should_fail_ex.cold+0x5/0xa [ 493.886165][T12434] ? tomoyo_encode2+0xfb/0x3c0 [ 493.886183][T12434] should_failslab+0xc2/0x120 [ 493.886198][T12434] __kmalloc_noprof+0xe0/0x850 [ 493.886222][T12434] tomoyo_encode2+0xfb/0x3c0 [ 493.886242][T12434] tomoyo_encode+0x29/0x50 [ 493.886258][T12434] tomoyo_realpath_from_path+0x18c/0x690 [ 493.886280][T12434] tomoyo_path_number_perm+0x23c/0x580 [ 493.886295][T12434] ? tomoyo_path_number_perm+0x22e/0x580 [ 493.886311][T12434] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 493.886344][T12434] ? find_held_lock+0x2b/0x80 [ 493.886357][T12434] ? __fget_files+0x215/0x3d0 [ 493.886370][T12434] ? hook_file_ioctl_common+0x146/0x410 [ 493.886393][T12434] ? __fget_files+0x21f/0x3d0 [ 493.886412][T12434] security_file_ioctl+0xd3/0x230 [ 493.886429][T12434] __x64_sys_ioctl+0xb7/0x210 [ 493.886450][T12434] do_syscall_64+0x106/0xf80 [ 493.886469][T12434] ? clear_bhb_loop+0x40/0x90 [ 493.886486][T12434] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 493.886500][T12434] RIP: 0033:0x7f02d599c799 [ 493.886512][T12434] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 493.886526][T12434] RSP: 002b:00007f02d6938028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 493.886540][T12434] RAX: ffffffffffffffda RBX: 00007f02d5c15fa0 RCX: 00007f02d599c799 [ 493.886549][T12434] RDX: 0000200000000000 RSI: 00000000000089fc RDI: 0000000000000003 [ 493.886557][T12434] RBP: 00007f02d6938090 R08: 0000000000000000 R09: 0000000000000000 [ 493.886565][T12434] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 493.886573][T12434] R13: 00007f02d5c16038 R14: 00007f02d5c15fa0 R15: 00007ffdbcfb0b48 [ 493.886592][T12434] [ 493.886606][T12434] ERROR: Out of memory at tomoyo_realpath_from_path. [ 494.162344][ T51] Bluetooth: hci2: command 0x0406 tx timeout [ 494.232241][T12439] FAULT_INJECTION: forcing a failure. [ 494.232241][T12439] name failslab, interval 1, probability 0, space 0, times 0 [ 494.259219][T12439] CPU: 0 UID: 0 PID: 12439 Comm: syz.0.1424 Tainted: G U L syzkaller #0 PREEMPT(full) [ 494.259246][T12439] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 494.259251][T12439] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 494.259260][T12439] Call Trace: [ 494.259265][T12439] [ 494.259270][T12439] dump_stack_lvl+0x100/0x190 [ 494.259296][T12439] should_fail_ex.cold+0x5/0xa [ 494.259313][T12439] ? tomoyo_encode2+0xfb/0x3c0 [ 494.259331][T12439] should_failslab+0xc2/0x120 [ 494.259353][T12439] __kmalloc_noprof+0xe0/0x850 [ 494.259373][T12439] ? d_absolute_path+0x136/0x1b0 [ 494.259394][T12439] tomoyo_encode2+0xfb/0x3c0 [ 494.259414][T12439] tomoyo_encode+0x29/0x50 [ 494.259430][T12439] tomoyo_realpath_from_path+0x18c/0x690 [ 494.259452][T12439] tomoyo_path_number_perm+0x23c/0x580 [ 494.259467][T12439] ? tomoyo_path_number_perm+0x22e/0x580 [ 494.259483][T12439] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 494.259524][T12439] ? find_held_lock+0x2b/0x80 [ 494.259538][T12439] ? __fget_files+0x215/0x3d0 [ 494.259550][T12439] ? hook_file_ioctl_common+0x146/0x410 [ 494.259570][T12439] ? __fget_files+0x21f/0x3d0 [ 494.259586][T12439] security_file_ioctl+0xd3/0x230 [ 494.259603][T12439] __x64_sys_ioctl+0xb7/0x210 [ 494.259623][T12439] do_syscall_64+0x106/0xf80 [ 494.259642][T12439] ? clear_bhb_loop+0x40/0x90 [ 494.259660][T12439] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 494.259674][T12439] RIP: 0033:0x7f7f8cd9c799 [ 494.259686][T12439] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 494.259699][T12439] RSP: 002b:00007f7f8dc2d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 494.259713][T12439] RAX: ffffffffffffffda RBX: 00007f7f8d015fa0 RCX: 00007f7f8cd9c799 [ 494.259723][T12439] RDX: 0000200000000480 RSI: 000000000000227d RDI: 0000000000000003 [ 494.259731][T12439] RBP: 00007f7f8dc2d090 R08: 0000000000000000 R09: 0000000000000000 [ 494.259740][T12439] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 494.259748][T12439] R13: 00007f7f8d016038 R14: 00007f7f8d015fa0 R15: 00007ffe049926a8 [ 494.259767][T12439] [ 494.259781][T12439] ERROR: Out of memory at tomoyo_realpath_from_path. [ 495.053403][T12458] Unable to find swap-space signature [ 495.098726][T12452] FAULT_INJECTION: forcing a failure. [ 495.098726][T12452] name failslab, interval 1, probability 0, space 0, times 0 [ 495.145472][T12452] CPU: 0 UID: 0 PID: 12452 Comm: syz.0.1427 Tainted: G U L syzkaller #0 PREEMPT(full) [ 495.145504][T12452] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 495.145509][T12452] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 495.145517][T12452] Call Trace: [ 495.145523][T12452] [ 495.145528][T12452] dump_stack_lvl+0x100/0x190 [ 495.145554][T12452] should_fail_ex.cold+0x5/0xa [ 495.145571][T12452] should_failslab+0xc2/0x120 [ 495.145593][T12452] kmem_cache_alloc_node_noprof+0x81/0x6f0 [ 495.145615][T12452] ? __alloc_skb+0x140/0x710 [ 495.145636][T12452] __alloc_skb+0x140/0x710 [ 495.145652][T12452] ? __alloc_skb+0x5b7/0x710 [ 495.145669][T12452] ? __pfx___alloc_skb+0x10/0x10 [ 495.145691][T12452] ? __pfx___might_resched+0x10/0x10 [ 495.145711][T12452] ? __lock_acquire+0x4a5/0x2630 [ 495.145731][T12452] netlink_alloc_large_skb+0x69/0x150 [ 495.145754][T12452] netlink_sendmsg+0x680/0xda0 [ 495.145776][T12452] ? __pfx_netlink_sendmsg+0x10/0x10 [ 495.145795][T12452] ? __import_iovec+0x1d2/0x640 [ 495.145814][T12452] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 495.145838][T12452] ____sys_sendmsg+0x9e1/0xb70 [ 495.145851][T12452] ? __pfx_netlink_sendmsg+0x10/0x10 [ 495.145872][T12452] ? __pfx_____sys_sendmsg+0x10/0x10 [ 495.145894][T12452] ___sys_sendmsg+0x190/0x1e0 [ 495.145911][T12452] ? __pfx____sys_sendmsg+0x10/0x10 [ 495.145959][T12452] __sys_sendmsg+0x170/0x220 [ 495.145983][T12452] ? __pfx___sys_sendmsg+0x10/0x10 [ 495.146018][T12452] do_syscall_64+0x106/0xf80 [ 495.146037][T12452] ? clear_bhb_loop+0x40/0x90 [ 495.146054][T12452] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 495.146069][T12452] RIP: 0033:0x7f7f8cd9c799 [ 495.146082][T12452] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 495.146096][T12452] RSP: 002b:00007f7f8dc2d028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 495.146111][T12452] RAX: ffffffffffffffda RBX: 00007f7f8d015fa0 RCX: 00007f7f8cd9c799 [ 495.146120][T12452] RDX: 0000000020000000 RSI: 0000200000000140 RDI: 0000000000000003 [ 495.146128][T12452] RBP: 00007f7f8dc2d090 R08: 0000000000000000 R09: 0000000000000000 [ 495.146136][T12452] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 495.146144][T12452] R13: 00007f7f8d016038 R14: 00007f7f8d015fa0 R15: 00007ffe049926a8 [ 495.146162][T12452] [ 495.482176][T12466] Unable to find swap-space signature [ 495.836371][T12485] FAULT_INJECTION: forcing a failure. [ 495.836371][T12485] name failslab, interval 1, probability 0, space 0, times 0 [ 495.936629][T12485] CPU: 0 UID: 0 PID: 12485 Comm: syz.2.1435 Tainted: G U L syzkaller #0 PREEMPT(full) [ 495.936658][T12485] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 495.936664][T12485] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 495.936672][T12485] Call Trace: [ 495.936678][T12485] [ 495.936683][T12485] dump_stack_lvl+0x100/0x190 [ 495.936709][T12485] should_fail_ex.cold+0x5/0xa [ 495.936727][T12485] should_failslab+0xc2/0x120 [ 495.936742][T12485] __kmalloc_cache_noprof+0x7a/0x6f0 [ 495.936760][T12485] ? percpu_ref_init+0xec/0x3f0 [ 495.936786][T12485] ? __pfx_swap_users_ref_free+0x10/0x10 [ 495.936806][T12485] percpu_ref_init+0xec/0x3f0 [ 495.936829][T12485] __do_sys_swapon+0x127/0x3800 [ 495.936854][T12485] ? __fget_files+0x21f/0x3d0 [ 495.936879][T12485] ? fput+0x79/0x100 [ 495.936894][T12485] ? ksys_write+0x1ac/0x250 [ 495.936907][T12485] ? __pfx___do_sys_swapon+0x10/0x10 [ 495.936932][T12485] do_syscall_64+0x106/0xf80 [ 495.936951][T12485] ? clear_bhb_loop+0x40/0x90 [ 495.936968][T12485] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 495.936982][T12485] RIP: 0033:0x7fa3b519c799 [ 495.936995][T12485] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 495.937008][T12485] RSP: 002b:00007fa3b600d028 EFLAGS: 00000246 ORIG_RAX: 00000000000000a7 [ 495.937022][T12485] RAX: ffffffffffffffda RBX: 00007fa3b5416090 RCX: 00007fa3b519c799 [ 495.937031][T12485] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000000 [ 495.937040][T12485] RBP: 00007fa3b600d090 R08: 0000000000000000 R09: 0000000000000000 [ 495.937048][T12485] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 495.937056][T12485] R13: 00007fa3b5416128 R14: 00007fa3b5416090 R15: 00007fffdd6ae8c8 [ 495.937074][T12485] [ 496.217892][T12491] FAULT_INJECTION: forcing a failure. [ 496.217892][T12491] name failslab, interval 1, probability 0, space 0, times 0 [ 496.231175][T12491] CPU: 0 UID: 0 PID: 12491 Comm: syz.2.1437 Tainted: G U L syzkaller #0 PREEMPT(full) [ 496.231199][T12491] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 496.231205][T12491] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 496.231214][T12491] Call Trace: [ 496.231219][T12491] [ 496.231224][T12491] dump_stack_lvl+0x100/0x190 [ 496.231250][T12491] should_fail_ex.cold+0x5/0xa [ 496.231267][T12491] ? tomoyo_encode2+0xfb/0x3c0 [ 496.231285][T12491] should_failslab+0xc2/0x120 [ 496.231300][T12491] __kmalloc_noprof+0xe0/0x850 [ 496.231320][T12491] ? d_absolute_path+0x136/0x1b0 [ 496.231342][T12491] tomoyo_encode2+0xfb/0x3c0 [ 496.231361][T12491] tomoyo_encode+0x29/0x50 [ 496.231377][T12491] tomoyo_realpath_from_path+0x18c/0x690 [ 496.231399][T12491] tomoyo_path_number_perm+0x23c/0x580 [ 496.231414][T12491] ? tomoyo_path_number_perm+0x22e/0x580 [ 496.231430][T12491] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 496.231463][T12491] ? find_held_lock+0x2b/0x80 [ 496.231476][T12491] ? __fget_files+0x215/0x3d0 [ 496.231489][T12491] ? hook_file_ioctl_common+0x146/0x410 [ 496.231508][T12491] ? __fget_files+0x21f/0x3d0 [ 496.231524][T12491] security_file_ioctl+0xd3/0x230 [ 496.231540][T12491] __x64_sys_ioctl+0xb7/0x210 [ 496.231560][T12491] do_syscall_64+0x106/0xf80 [ 496.231579][T12491] ? clear_bhb_loop+0x40/0x90 [ 496.231596][T12491] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 496.231610][T12491] RIP: 0033:0x7fa3b519c799 [ 496.231623][T12491] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 496.231637][T12491] RSP: 002b:00007fa3b602e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 496.231650][T12491] RAX: ffffffffffffffda RBX: 00007fa3b5415fa0 RCX: 00007fa3b519c799 [ 496.231660][T12491] RDX: 0000200000000080 RSI: 0000000000004601 RDI: 0000000000000003 [ 496.231668][T12491] RBP: 00007fa3b602e090 R08: 0000000000000000 R09: 0000000000000000 [ 496.231676][T12491] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 496.231684][T12491] R13: 00007fa3b5416038 R14: 00007fa3b5415fa0 R15: 00007fffdd6ae8c8 [ 496.231703][T12491] [ 496.231716][T12491] ERROR: Out of memory at tomoyo_realpath_from_path. [ 496.615237][T12494] netlink: 'syz.0.1438': attribute type 1 has an invalid length. [ 497.348570][T12516] FAULT_INJECTION: forcing a failure. [ 497.348570][T12516] name failslab, interval 1, probability 0, space 0, times 0 [ 497.404948][T12516] CPU: 0 UID: 0 PID: 12516 Comm: syz.1.1444 Tainted: G U L syzkaller #0 PREEMPT(full) [ 497.404976][T12516] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 497.404982][T12516] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 497.404991][T12516] Call Trace: [ 497.404996][T12516] [ 497.405003][T12516] dump_stack_lvl+0x100/0x190 [ 497.405031][T12516] should_fail_ex.cold+0x5/0xa [ 497.405050][T12516] should_failslab+0xc2/0x120 [ 497.405065][T12516] __kmalloc_cache_noprof+0x7a/0x6f0 [ 497.405084][T12516] ? pty_common_install+0x10e/0xb30 [ 497.405182][T12516] pty_common_install+0x10e/0xb30 [ 497.405203][T12516] ? __pfx_pty_unix98_install+0x10/0x10 [ 497.405246][T12516] tty_init_dev.part.0+0x9e/0x470 [ 497.405271][T12516] tty_init_dev+0x60/0x80 [ 497.405294][T12516] ptmx_open+0x15e/0x3c0 [ 497.405311][T12516] ? __pfx_ptmx_open+0x10/0x10 [ 497.405328][T12516] chrdev_open+0x234/0x6a0 [ 497.405343][T12516] ? __pfx_apparmor_file_open+0x10/0x10 [ 497.405366][T12516] ? __pfx_chrdev_open+0x10/0x10 [ 497.405382][T12516] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 497.405402][T12516] do_dentry_open+0x6d8/0x1660 [ 497.405418][T12516] ? __pfx_chrdev_open+0x10/0x10 [ 497.405438][T12516] vfs_open+0x82/0x3f0 [ 497.405458][T12516] path_openat+0x208c/0x31a0 [ 497.405479][T12516] ? __pfx_path_openat+0x10/0x10 [ 497.405501][T12516] do_file_open+0x20e/0x430 [ 497.405518][T12516] ? __pfx_do_file_open+0x10/0x10 [ 497.405546][T12516] ? alloc_fd+0x476/0x790 [ 497.405562][T12516] ? do_getname+0x191/0x390 [ 497.405582][T12516] do_sys_openat2+0x10d/0x1e0 [ 497.405600][T12516] ? __pfx_do_sys_openat2+0x10/0x10 [ 497.405620][T12516] ? __fget_files+0x21f/0x3d0 [ 497.405638][T12516] __x64_sys_openat+0x12d/0x210 [ 497.405657][T12516] ? __pfx___x64_sys_openat+0x10/0x10 [ 497.405691][T12516] do_syscall_64+0x106/0xf80 [ 497.405711][T12516] ? clear_bhb_loop+0x40/0x90 [ 497.405730][T12516] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 497.405745][T12516] RIP: 0033:0x7f02d599c799 [ 497.405758][T12516] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 497.405773][T12516] RSP: 002b:00007f02d6938028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 497.405788][T12516] RAX: ffffffffffffffda RBX: 00007f02d5c15fa0 RCX: 00007f02d599c799 [ 497.405798][T12516] RDX: 0000000000000000 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 497.405807][T12516] RBP: 00007f02d5a32c99 R08: 0000000000000000 R09: 0000000000000000 [ 497.405816][T12516] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 497.405825][T12516] R13: 00007f02d5c16038 R14: 00007f02d5c15fa0 R15: 00007ffdbcfb0b48 [ 497.405845][T12516] [ 497.835067][T12527] FAULT_INJECTION: forcing a failure. [ 497.835067][T12527] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 497.848571][T12527] CPU: 0 UID: 0 PID: 12527 Comm: syz.0.1447 Tainted: G U L syzkaller #0 PREEMPT(full) [ 497.848598][T12527] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 497.848604][T12527] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 497.848612][T12527] Call Trace: [ 497.848619][T12527] [ 497.848624][T12527] dump_stack_lvl+0x100/0x190 [ 497.848657][T12527] should_fail_ex.cold+0x5/0xa [ 497.848675][T12527] _copy_from_user+0x2e/0xd0 [ 497.848692][T12527] simple_attr_write_xsigned.isra.0+0x10e/0x310 [ 497.848718][T12527] ? __pfx_simple_attr_write_xsigned.isra.0+0x10/0x10 [ 497.848747][T12527] debugfs_attr_write+0x74/0xb0 [ 497.848770][T12527] vfs_write+0x2aa/0x1070 [ 497.848784][T12527] ? __pfx_debugfs_attr_write+0x10/0x10 [ 497.848805][T12527] ? __pfx_vfs_write+0x10/0x10 [ 497.848826][T12527] ? __fget_files+0x215/0x3d0 [ 497.848843][T12527] ? __fget_files+0x21f/0x3d0 [ 497.848861][T12527] ksys_write+0x12a/0x250 [ 497.848874][T12527] ? __pfx_ksys_write+0x10/0x10 [ 497.848892][T12527] do_syscall_64+0x106/0xf80 [ 497.848911][T12527] ? clear_bhb_loop+0x40/0x90 [ 497.848928][T12527] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 497.848942][T12527] RIP: 0033:0x7f7f8cd9c799 [ 497.848956][T12527] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 497.848969][T12527] RSP: 002b:00007f7f8dc2d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 497.848983][T12527] RAX: ffffffffffffffda RBX: 00007f7f8d015fa0 RCX: 00007f7f8cd9c799 [ 497.848992][T12527] RDX: 0000000000040400 RSI: 0000200000000080 RDI: 0000000000000003 [ 497.849001][T12527] RBP: 00007f7f8dc2d090 R08: 0000000000000000 R09: 0000000000000000 [ 497.849009][T12527] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 497.849017][T12527] R13: 00007f7f8d016038 R14: 00007f7f8d015fa0 R15: 00007ffe049926a8 [ 497.849036][T12527] [ 498.116333][T12531] FAULT_INJECTION: forcing a failure. [ 498.116333][T12531] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 498.130370][T12531] CPU: 0 UID: 0 PID: 12531 Comm: syz.1.1451 Tainted: G U L syzkaller #0 PREEMPT(full) [ 498.130396][T12531] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 498.130402][T12531] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 498.130411][T12531] Call Trace: [ 498.130418][T12531] [ 498.130424][T12531] dump_stack_lvl+0x100/0x190 [ 498.130450][T12531] should_fail_ex.cold+0x5/0xa [ 498.130464][T12531] ? prepare_alloc_pages+0x16d/0x5f0 [ 498.130482][T12531] should_fail_alloc_page+0xeb/0x140 [ 498.130502][T12531] prepare_alloc_pages+0x1f0/0x5f0 [ 498.130521][T12531] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 498.130546][T12531] ? __lock_acquire+0x4a5/0x2630 [ 498.130570][T12531] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 498.130592][T12531] ? do_raw_spin_lock+0x128/0x260 [ 498.130612][T12531] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 498.130631][T12531] ? find_held_lock+0x2b/0x80 [ 498.130650][T12531] ? __lock_acquire+0x4a5/0x2630 [ 498.130667][T12531] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 498.130690][T12531] ? policy_nodemask+0xed/0x4f0 [ 498.130723][T12531] alloc_pages_mpol+0x1fb/0x550 [ 498.130740][T12531] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 498.130758][T12531] ? __folio_batch_add_and_move+0x5e5/0xc60 [ 498.130783][T12531] ? __folio_batch_add_and_move+0x5e5/0xc60 [ 498.130810][T12531] folio_alloc_mpol_noprof+0x36/0x340 [ 498.130827][T12531] shmem_alloc_folio+0x135/0x160 [ 498.130847][T12531] shmem_alloc_and_add_folio+0x371/0xd40 [ 498.130872][T12531] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 498.130893][T12531] ? shmem_allowable_huge_orders+0x2bd/0x400 [ 498.130913][T12531] ? __bpf_trace_sched_exit_tp+0x90/0xc0 [ 498.130936][T12531] shmem_get_folio_gfp+0x6ab/0x1900 [ 498.130961][T12531] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 498.130983][T12531] ? __pfx___might_resched+0x10/0x10 [ 498.131002][T12531] ? noop_dirty_folio+0xfd/0x160 [ 498.131020][T12531] shmem_fallocate+0x6d7/0x1060 [ 498.131048][T12531] ? __pfx_shmem_fallocate+0x10/0x10 [ 498.131067][T12531] ? aa_file_perm+0x7f3/0x14d0 [ 498.131088][T12531] ? proc_fail_nth_write+0x9f/0x220 [ 498.131107][T12531] ? __lock_acquire+0x4a5/0x2630 [ 498.131139][T12531] ? __pfx_shmem_fallocate+0x10/0x10 [ 498.131159][T12531] vfs_fallocate+0x576/0x10d0 [ 498.131175][T12531] ? __pfx_vfs_fallocate+0x10/0x10 [ 498.131194][T12531] __x64_sys_fallocate+0xd5/0x140 [ 498.131211][T12531] do_syscall_64+0x106/0xf80 [ 498.131230][T12531] ? clear_bhb_loop+0x40/0x90 [ 498.131247][T12531] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 498.131262][T12531] RIP: 0033:0x7f02d599c799 [ 498.131275][T12531] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 498.131289][T12531] RSP: 002b:00007f02d6938028 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 498.131303][T12531] RAX: ffffffffffffffda RBX: 00007f02d5c15fa0 RCX: 00007f02d599c799 [ 498.131312][T12531] RDX: 0000000000000007 RSI: 0000000000000000 RDI: 0000000000000003 [ 498.131320][T12531] RBP: 00007f02d6938090 R08: 0000000000000000 R09: 0000000000000000 [ 498.131329][T12531] R10: 00000000004cbd5d R11: 0000000000000246 R12: 0000000000000001 [ 498.131337][T12531] R13: 00007f02d5c16038 R14: 00007f02d5c15fa0 R15: 00007ffdbcfb0b48 [ 498.131360][T12531] [ 498.513208][T12536] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1452'. [ 498.803493][T12539] usbip-vudc usbip-vudc.0: gadget not bound [ 498.861997][ T29] audit: type=1326 audit(1773675048.321:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12542 comm="syz.2.1446" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fa3b519c799 code=0x0 [ 499.085802][T12548] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 499.733240][T12568] FAULT_INJECTION: forcing a failure. [ 499.733240][T12568] name failslab, interval 1, probability 0, space 0, times 0 [ 499.869375][T12568] CPU: 0 UID: 0 PID: 12568 Comm: syz.0.1461 Tainted: G U L syzkaller #0 PREEMPT(full) [ 499.869405][T12568] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 499.869411][T12568] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 499.869420][T12568] Call Trace: [ 499.869425][T12568] [ 499.869432][T12568] dump_stack_lvl+0x100/0x190 [ 499.869462][T12568] should_fail_ex.cold+0x5/0xa [ 499.869482][T12568] should_failslab+0xc2/0x120 [ 499.869499][T12568] __kmalloc_cache_noprof+0x7a/0x6f0 [ 499.869520][T12568] ? alloc_tty_struct+0x96/0x8c0 [ 499.869548][T12568] alloc_tty_struct+0x96/0x8c0 [ 499.869570][T12568] ? __pfx_alloc_tty_struct+0x10/0x10 [ 499.869598][T12568] pty_common_install+0x1c7/0xb30 [ 499.869620][T12568] ? __pfx_pty_unix98_install+0x10/0x10 [ 499.869639][T12568] tty_init_dev.part.0+0x9e/0x470 [ 499.869662][T12568] tty_init_dev+0x60/0x80 [ 499.869684][T12568] ptmx_open+0x15e/0x3c0 [ 499.869700][T12568] ? __pfx_ptmx_open+0x10/0x10 [ 499.869716][T12568] chrdev_open+0x234/0x6a0 [ 499.869731][T12568] ? __pfx_apparmor_file_open+0x10/0x10 [ 499.869756][T12568] ? __pfx_chrdev_open+0x10/0x10 [ 499.869772][T12568] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 499.869796][T12568] do_dentry_open+0x6d8/0x1660 [ 499.869811][T12568] ? __pfx_chrdev_open+0x10/0x10 [ 499.869830][T12568] vfs_open+0x82/0x3f0 [ 499.869852][T12568] path_openat+0x208c/0x31a0 [ 499.869874][T12568] ? __pfx_path_openat+0x10/0x10 [ 499.869896][T12568] do_file_open+0x20e/0x430 [ 499.869913][T12568] ? __pfx_do_file_open+0x10/0x10 [ 499.869942][T12568] ? alloc_fd+0x476/0x790 [ 499.869959][T12568] ? do_getname+0x191/0x390 [ 499.869978][T12568] do_sys_openat2+0x10d/0x1e0 [ 499.869997][T12568] ? __pfx_do_sys_openat2+0x10/0x10 [ 499.870017][T12568] ? __fget_files+0x21f/0x3d0 [ 499.870035][T12568] __x64_sys_openat+0x12d/0x210 [ 499.870054][T12568] ? __pfx___x64_sys_openat+0x10/0x10 [ 499.870080][T12568] do_syscall_64+0x106/0xf80 [ 499.870109][T12568] ? clear_bhb_loop+0x40/0x90 [ 499.870128][T12568] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 499.870144][T12568] RIP: 0033:0x7f7f8cd9c799 [ 499.870158][T12568] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 499.870172][T12568] RSP: 002b:00007f7f8dc2d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 499.870188][T12568] RAX: ffffffffffffffda RBX: 00007f7f8d015fa0 RCX: 00007f7f8cd9c799 [ 499.870197][T12568] RDX: 0000000000000000 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 499.870207][T12568] RBP: 00007f7f8ce32c99 R08: 0000000000000000 R09: 0000000000000000 [ 499.870217][T12568] R10: 0000000000001f00 R11: 0000000000000246 R12: 0000000000000000 [ 499.870226][T12568] R13: 00007f7f8d016038 R14: 00007f7f8d015fa0 R15: 00007ffe049926a8 [ 499.870246][T12568] [ 500.433281][T12565] mmap: syz.1.1460 (12565) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 500.661551][T12576] FAULT_INJECTION: forcing a failure. [ 500.661551][T12576] name failslab, interval 1, probability 0, space 0, times 0 [ 500.732653][T12576] CPU: 0 UID: 0 PID: 12576 Comm: syz.0.1463 Tainted: G U L syzkaller #0 PREEMPT(full) [ 500.732680][T12576] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 500.732685][T12576] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 500.732694][T12576] Call Trace: [ 500.732699][T12576] [ 500.732705][T12576] dump_stack_lvl+0x100/0x190 [ 500.732731][T12576] should_fail_ex.cold+0x5/0xa [ 500.732748][T12576] should_failslab+0xc2/0x120 [ 500.732763][T12576] __kmalloc_cache_noprof+0x7a/0x6f0 [ 500.732782][T12576] ? genl_start+0x1e8/0x970 [ 500.732797][T12576] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x280 [ 500.732816][T12576] genl_start+0x1e8/0x970 [ 500.732835][T12576] __netlink_dump_start+0x60e/0x990 [ 500.732859][T12576] genl_family_rcv_msg_dumpit+0x1e2/0x2e0 [ 500.732876][T12576] ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10 [ 500.732895][T12576] ? rcu_is_watching+0x12/0xc0 [ 500.732916][T12576] ? __pfx_genl_start+0x10/0x10 [ 500.732928][T12576] ? __pfx_genl_dumpit+0x10/0x10 [ 500.732941][T12576] ? __pfx_genl_done+0x10/0x10 [ 500.732955][T12576] ? bpf_lsm_capable+0x9/0x10 [ 500.732970][T12576] ? security_capable+0x80/0x260 [ 500.732992][T12576] ? ns_capable+0xd2/0xf0 [ 500.733012][T12576] genl_rcv_msg+0x471/0x800 [ 500.733029][T12576] ? __pfx_genl_rcv_msg+0x10/0x10 [ 500.733044][T12576] ? __pfx_nl80211_vendor_cmd_dump+0x10/0x10 [ 500.733133][T12576] netlink_rcv_skb+0x159/0x420 [ 500.733153][T12576] ? __pfx_genl_rcv_msg+0x10/0x10 [ 500.733169][T12576] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 500.733196][T12576] ? netlink_deliver_tap+0x1ae/0xcc0 [ 500.733218][T12576] genl_rcv+0x28/0x40 [ 500.733230][T12576] netlink_unicast+0x5aa/0x870 [ 500.733254][T12576] ? __pfx_netlink_unicast+0x10/0x10 [ 500.733281][T12576] netlink_sendmsg+0x8b0/0xda0 [ 500.733304][T12576] ? __pfx_netlink_sendmsg+0x10/0x10 [ 500.733324][T12576] ? __import_iovec+0x1d2/0x640 [ 500.733346][T12576] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 500.733371][T12576] ____sys_sendmsg+0x9e1/0xb70 [ 500.733385][T12576] ? __pfx_netlink_sendmsg+0x10/0x10 [ 500.733408][T12576] ? __pfx_____sys_sendmsg+0x10/0x10 [ 500.733431][T12576] ___sys_sendmsg+0x190/0x1e0 [ 500.733454][T12576] ? __pfx____sys_sendmsg+0x10/0x10 [ 500.733493][T12576] __sys_sendmsg+0x170/0x220 [ 500.733513][T12576] ? __pfx___sys_sendmsg+0x10/0x10 [ 500.733544][T12576] do_syscall_64+0x106/0xf80 [ 500.733564][T12576] ? clear_bhb_loop+0x40/0x90 [ 500.733581][T12576] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 500.733596][T12576] RIP: 0033:0x7f7f8cd9c799 [ 500.733609][T12576] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 500.733624][T12576] RSP: 002b:00007f7f8dc2d028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 500.733638][T12576] RAX: ffffffffffffffda RBX: 00007f7f8d015fa0 RCX: 00007f7f8cd9c799 [ 500.733648][T12576] RDX: 0000000000000080 RSI: 0000200000001780 RDI: 0000000000000003 [ 500.733656][T12576] RBP: 00007f7f8dc2d090 R08: 0000000000000000 R09: 0000000000000000 [ 500.733665][T12576] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 500.733673][T12576] R13: 00007f7f8d016038 R14: 00007f7f8d015fa0 R15: 00007ffe049926a8 [ 500.733695][T12576] [ 501.646276][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 501.652600][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 502.350803][T12596] Process accounting resumed [ 502.357933][T12601] process 'syz.3.1470' launched './file0' with NULL argv: empty string added [ 502.483225][T12601] ERROR: Out of memory at tomoyo_memory_ok. [ 502.807191][T12615] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1474'. [ 506.781873][T12694] FAULT_INJECTION: forcing a failure. [ 506.781873][T12694] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 506.857896][T12694] CPU: 0 UID: 0 PID: 12694 Comm: syz.2.1490 Tainted: G U L syzkaller #0 PREEMPT(full) [ 506.857925][T12694] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 506.857931][T12694] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 506.857940][T12694] Call Trace: [ 506.857946][T12694] [ 506.857952][T12694] dump_stack_lvl+0x100/0x190 [ 506.857978][T12694] should_fail_ex.cold+0x5/0xa [ 506.857995][T12694] _copy_to_user+0x32/0xd0 [ 506.858014][T12694] simple_read_from_buffer+0xcb/0x170 [ 506.858037][T12694] proc_fail_nth_read+0x1af/0x230 [ 506.858057][T12694] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 506.858075][T12694] ? rw_verify_area+0xce/0x6d0 [ 506.858095][T12694] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 506.858111][T12694] vfs_read+0x1e4/0xb30 [ 506.858136][T12694] ? __pfx_vfs_read+0x10/0x10 [ 506.858155][T12694] ? __fget_files+0x215/0x3d0 [ 506.858173][T12694] ? __fget_files+0x21f/0x3d0 [ 506.858191][T12694] ksys_read+0x12a/0x250 [ 506.858204][T12694] ? __pfx_ksys_read+0x10/0x10 [ 506.858222][T12694] do_syscall_64+0x106/0xf80 [ 506.858241][T12694] ? clear_bhb_loop+0x40/0x90 [ 506.858259][T12694] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 506.858273][T12694] RIP: 0033:0x7fa3b515cfce [ 506.858286][T12694] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 506.858300][T12694] RSP: 002b:00007fa3b600cfe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 506.858316][T12694] RAX: ffffffffffffffda RBX: 00007fa3b600d6c0 RCX: 00007fa3b515cfce [ 506.858325][T12694] RDX: 000000000000000f RSI: 00007fa3b600d0a0 RDI: 0000000000000004 [ 506.858334][T12694] RBP: 00007fa3b600d090 R08: 0000000000000000 R09: 0000000000000000 [ 506.858343][T12694] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 506.858352][T12694] R13: 00007fa3b5416128 R14: 00007fa3b5416090 R15: 00007fffdd6ae8c8 [ 506.858371][T12694] [ 508.343700][T12730] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1497'. [ 509.452944][T12758] Zero length message leads to an empty skb [ 510.396291][T12778] FAULT_INJECTION: forcing a failure. [ 510.396291][T12778] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 510.436877][T12778] CPU: 0 UID: 0 PID: 12778 Comm: syz.2.1506 Tainted: G U L syzkaller #0 PREEMPT(full) [ 510.436905][T12778] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 510.436911][T12778] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 510.436919][T12778] Call Trace: [ 510.436925][T12778] [ 510.436930][T12778] dump_stack_lvl+0x100/0x190 [ 510.436956][T12778] should_fail_ex.cold+0x5/0xa [ 510.436971][T12778] ? prepare_alloc_pages+0x16d/0x5f0 [ 510.436990][T12778] should_fail_alloc_page+0xeb/0x140 [ 510.437006][T12778] prepare_alloc_pages+0x1f0/0x5f0 [ 510.437025][T12778] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 510.437047][T12778] ? ima_match_policy+0x8c4/0x2350 [ 510.437137][T12778] ? ima_match_policy+0x8c4/0x2350 [ 510.437155][T12778] ? __lock_acquire+0x4a5/0x2630 [ 510.437178][T12778] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 510.437211][T12778] ? __lock_acquire+0x4a5/0x2630 [ 510.437228][T12778] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 510.437252][T12778] ? policy_nodemask+0xed/0x4f0 [ 510.437269][T12778] alloc_pages_mpol+0x1fb/0x550 [ 510.437285][T12778] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 510.437300][T12778] ? find_held_lock+0x2b/0x80 [ 510.437317][T12778] alloc_pages_noprof+0x131/0x390 [ 510.437333][T12778] __pmd_alloc+0x3b/0x950 [ 510.437352][T12778] __handle_mm_fault+0xa99/0x2b60 [ 510.437373][T12778] ? mt_find+0x45e/0x8e0 [ 510.437395][T12778] ? __pfx___handle_mm_fault+0x10/0x10 [ 510.437413][T12778] ? __pfx_mt_find+0x10/0x10 [ 510.437443][T12778] ? find_vma+0xbf/0x140 [ 510.437456][T12778] ? __pfx_find_vma+0x10/0x10 [ 510.437471][T12778] handle_mm_fault+0x36d/0xa20 [ 510.437494][T12778] do_user_addr_fault+0x74c/0x12f0 [ 510.437521][T12778] exc_page_fault+0x6f/0xd0 [ 510.437541][T12778] asm_exc_page_fault+0x26/0x30 [ 510.437555][T12778] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 510.437571][T12778] Code: 93 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 e9 cf 93 04 00 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 510.437585][T12778] RSP: 0018:ffffc900048ffb70 EFLAGS: 00050206 [ 510.437598][T12778] RAX: 0000000000000001 RBX: 0000000000000043 RCX: 0000000000000043 [ 510.437607][T12778] RDX: 0000000000000001 RSI: ffff88803712d400 RDI: 0000000000000000 [ 510.437616][T12778] RBP: 0000000000000000 R08: 0000000000000000 R09: ffffed1006e25a88 [ 510.437625][T12778] R10: ffff88803712d442 R11: 0000000000000000 R12: ffff88803712d400 [ 510.437633][T12778] R13: 0000000000000043 R14: 00007ffffffff000 R15: 0000000000000000 [ 510.437652][T12778] _copy_to_user+0xa4/0xd0 [ 510.437670][T12778] mon_text_copy_to_user+0xce/0x1a0 [ 510.437689][T12778] mon_text_read_u+0x57b/0xbd0 [ 510.437713][T12778] ? __debugfs_file_get+0x1fc/0x860 [ 510.437733][T12778] ? __pfx_mon_text_read_u+0x10/0x10 [ 510.437752][T12778] full_proxy_read+0x135/0x1a0 [ 510.437771][T12778] ? __pfx_full_proxy_read+0x10/0x10 [ 510.437790][T12778] vfs_read+0x1e4/0xb30 [ 510.437815][T12778] ? __pfx_vfs_read+0x10/0x10 [ 510.437834][T12778] ? find_held_lock+0x2b/0x80 [ 510.437846][T12778] ? __fget_files+0x215/0x3d0 [ 510.437860][T12778] ? __fget_files+0x215/0x3d0 [ 510.437877][T12778] ? __fget_files+0x21f/0x3d0 [ 510.437895][T12778] __x64_sys_pread64+0x1eb/0x250 [ 510.437912][T12778] ? __pfx___x64_sys_pread64+0x10/0x10 [ 510.437932][T12778] do_syscall_64+0x106/0xf80 [ 510.437950][T12778] ? clear_bhb_loop+0x40/0x90 [ 510.437967][T12778] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 510.437982][T12778] RIP: 0033:0x7fa3b519c799 [ 510.437994][T12778] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 510.438008][T12778] RSP: 002b:00007fa3b602e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000011 [ 510.438021][T12778] RAX: ffffffffffffffda RBX: 00007fa3b5415fa0 RCX: 00007fa3b519c799 [ 510.438030][T12778] RDX: 0000000000000084 RSI: 0000000000000000 RDI: 0000000000000003 [ 510.438039][T12778] RBP: 00007fa3b602e090 R08: 0000000000000000 R09: 0000000000000000 [ 510.438047][T12778] R10: 000000000000000c R11: 0000000000000246 R12: 0000000000000001 [ 510.438056][T12778] R13: 00007fa3b5416038 R14: 00007fa3b5415fa0 R15: 00007fffdd6ae8c8 [ 510.438075][T12778] [ 513.512468][T12836] netlink: 17 bytes leftover after parsing attributes in process `syz.2.1521'. [ 515.480133][T12885] FAULT_INJECTION: forcing a failure. [ 515.480133][T12885] name failslab, interval 1, probability 0, space 0, times 0 [ 515.663950][T12885] CPU: 0 UID: 0 PID: 12885 Comm: syz.3.1532 Tainted: G U L syzkaller #0 PREEMPT(full) [ 515.663978][T12885] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 515.663984][T12885] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 515.663993][T12885] Call Trace: [ 515.663999][T12885] [ 515.664005][T12885] dump_stack_lvl+0x100/0x190 [ 515.664031][T12885] should_fail_ex.cold+0x5/0xa [ 515.664049][T12885] should_failslab+0xc2/0x120 [ 515.664064][T12885] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 515.664084][T12885] ? __pmd_alloc+0xbf/0x950 [ 515.664104][T12885] __pmd_alloc+0xbf/0x950 [ 515.664121][T12885] __handle_mm_fault+0xa99/0x2b60 [ 515.664143][T12885] ? mt_find+0x45e/0x8e0 [ 515.664165][T12885] ? __pfx___handle_mm_fault+0x10/0x10 [ 515.664182][T12885] ? __pfx_mt_find+0x10/0x10 [ 515.664221][T12885] ? find_vma+0xbf/0x140 [ 515.664235][T12885] ? __pfx_find_vma+0x10/0x10 [ 515.664250][T12885] handle_mm_fault+0x36d/0xa20 [ 515.664272][T12885] do_user_addr_fault+0x74c/0x12f0 [ 515.664300][T12885] exc_page_fault+0x6f/0xd0 [ 515.664320][T12885] asm_exc_page_fault+0x26/0x30 [ 515.664334][T12885] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 515.664350][T12885] Code: 93 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 e9 cf 93 04 00 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 515.664364][T12885] RSP: 0018:ffffc90004acfcf0 EFLAGS: 00050206 [ 515.664376][T12885] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000090 [ 515.664385][T12885] RDX: 0000000000000001 RSI: 0000000000000000 RDI: ffff88802a4e4900 [ 515.664394][T12885] RBP: 0000000000000090 R08: 0000000000000001 R09: ffffed100549c931 [ 515.664403][T12885] R10: ffff88802a4e498f R11: 0000000000000000 R12: 0000000000000000 [ 515.664412][T12885] R13: ffff88802a4e4900 R14: 0000000000000090 R15: 0000000000000090 [ 515.664431][T12885] _copy_from_user+0x98/0xd0 [ 515.664449][T12885] sctp_setsockopt+0x8cc/0xb370 [ 515.664467][T12885] ? __pfx_aa_sk_perm+0x10/0x10 [ 515.664485][T12885] ? __pfx_sctp_setsockopt+0x10/0x10 [ 515.664502][T12885] ? aa_sock_opt_perm+0xfe/0x1b0 [ 515.664522][T12885] ? sock_common_setsockopt+0x2e/0xf0 [ 515.664545][T12885] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 515.664569][T12885] do_sock_setsockopt+0xf3/0x1d0 [ 515.664593][T12885] __sys_setsockopt+0x119/0x190 [ 515.664616][T12885] __x64_sys_setsockopt+0xbd/0x160 [ 515.664633][T12885] ? do_syscall_64+0x95/0xf80 [ 515.664651][T12885] ? lockdep_hardirqs_on+0x78/0x100 [ 515.664670][T12885] do_syscall_64+0x106/0xf80 [ 515.664687][T12885] ? clear_bhb_loop+0x40/0x90 [ 515.664705][T12885] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 515.664719][T12885] RIP: 0033:0x7f688939c799 [ 515.664732][T12885] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 515.664745][T12885] RSP: 002b:00007f68875f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 515.664758][T12885] RAX: ffffffffffffffda RBX: 00007f6889615fa0 RCX: 00007f688939c799 [ 515.664767][T12885] RDX: 0000000000000011 RSI: 0000010000000084 RDI: 0000000000000003 [ 515.664775][T12885] RBP: 00007f68875f6090 R08: 0000000000000090 R09: 0000000000000000 [ 515.664784][T12885] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 515.664792][T12885] R13: 00007f6889616038 R14: 00007f6889615fa0 R15: 00007ffc2ea92c48 [ 515.664811][T12885] [ 517.676250][T12910] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input19 [ 517.797714][T12910] FAULT_INJECTION: forcing a failure. [ 517.797714][T12910] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 517.916413][T12910] CPU: 0 UID: 0 PID: 12910 Comm: syz.1.1536 Tainted: G U L syzkaller #0 PREEMPT(full) [ 517.916443][T12910] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 517.916450][T12910] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 517.916459][T12910] Call Trace: [ 517.916466][T12910] [ 517.916472][T12910] dump_stack_lvl+0x100/0x190 [ 517.916501][T12910] should_fail_ex.cold+0x5/0xa [ 517.916516][T12910] ? prepare_alloc_pages+0x16d/0x5f0 [ 517.916536][T12910] should_fail_alloc_page+0xeb/0x140 [ 517.916553][T12910] prepare_alloc_pages+0x1f0/0x5f0 [ 517.916573][T12910] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 517.916598][T12910] ? rcu_is_watching+0x12/0xc0 [ 517.916620][T12910] ? trace_mm_page_alloc+0x17a/0x1d0 [ 517.916637][T12910] ? __alloc_frozen_pages_noprof+0x2b1/0x2ba0 [ 517.916661][T12910] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 517.916687][T12910] ? find_held_lock+0x2b/0x80 [ 517.916701][T12910] ? is_bpf_text_address+0x8a/0x1a0 [ 517.916722][T12910] ? is_bpf_text_address+0x8a/0x1a0 [ 517.916745][T12910] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 517.916762][T12910] ? is_bpf_text_address+0x94/0x1a0 [ 517.916788][T12910] ? kernel_text_address+0x8d/0x100 [ 517.916811][T12910] ? __kernel_text_address+0xd/0x30 [ 517.916832][T12910] ? unwind_get_return_address+0x59/0xa0 [ 517.916882][T12910] alloc_pages_bulk_noprof+0x782/0x1490 [ 517.916920][T12910] ? __pfx_alloc_pages_bulk_noprof+0x10/0x10 [ 517.916944][T12910] ? kasan_save_stack+0x30/0x50 [ 517.916971][T12910] ? alloc_pages_noprof+0x233/0x390 [ 517.916989][T12910] __kasan_populate_vmalloc+0xf0/0x210 [ 517.917015][T12910] alloc_vmap_area+0x95d/0x2bd0 [ 517.917039][T12910] ? __pfx_alloc_vmap_area+0x10/0x10 [ 517.917059][T12910] __get_vm_area_node+0x1ca/0x330 [ 517.917079][T12910] __vmalloc_node_range_noprof+0x213/0x1530 [ 517.917098][T12910] ? kernel_clone+0xfc/0x9a0 [ 517.917114][T12910] ? find_held_lock+0x2b/0x80 [ 517.917127][T12910] ? local_lock_release+0x99/0x130 [ 517.917144][T12910] ? local_lock_release+0x99/0x130 [ 517.917163][T12910] ? kernel_clone+0xfc/0x9a0 [ 517.917180][T12910] ? find_held_lock+0x2b/0x80 [ 517.917193][T12910] ? rcu_read_unlock+0x17/0x60 [ 517.917208][T12910] ? rcu_read_unlock+0x17/0x60 [ 517.917224][T12910] ? obj_cgroup_charge_account+0x46d/0x640 [ 517.917241][T12910] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 517.917260][T12910] ? __memcg_slab_post_alloc_hook+0x51b/0x990 [ 517.917280][T12910] ? rcu_is_watching+0x12/0xc0 [ 517.917301][T12910] ? trace_kmem_cache_alloc+0xf3/0x120 [ 517.917319][T12910] ? kernel_clone+0xfc/0x9a0 [ 517.917334][T12910] __vmalloc_node_noprof+0xad/0xf0 [ 517.917352][T12910] ? kernel_clone+0xfc/0x9a0 [ 517.917370][T12910] copy_process+0x5ec/0x7a40 [ 517.917388][T12910] ? __pfx___futex_wait+0x10/0x10 [ 517.917412][T12910] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 517.917432][T12910] ? lockdep_hardirqs_on+0x78/0x100 [ 517.917458][T12910] ? __pfx_copy_process+0x10/0x10 [ 517.917477][T12910] ? find_held_lock+0x2b/0x80 [ 517.917499][T12910] kernel_clone+0xfc/0x9a0 [ 517.917515][T12910] ? __pfx_futex_wait+0x10/0x10 [ 517.917538][T12910] ? __pfx_kernel_clone+0x10/0x10 [ 517.917565][T12910] __do_sys_clone+0xd9/0x120 [ 517.917582][T12910] ? __pfx___do_sys_clone+0x10/0x10 [ 517.917608][T12910] ? arch_syscall_is_vdso_sigreturn+0xb6/0x200 [ 517.917628][T12910] ? syscall_user_dispatch+0x76/0x130 [ 517.917659][T12910] do_syscall_64+0x106/0xf80 [ 517.917680][T12910] ? clear_bhb_loop+0x40/0x90 [ 517.917699][T12910] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 517.917714][T12910] RIP: 0033:0x7f02d599c799 [ 517.917728][T12910] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 517.917743][T12910] RSP: 002b:00007f02d6917028 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 517.917758][T12910] RAX: ffffffffffffffda RBX: 00007f02d5c16090 RCX: 00007f02d599c799 [ 517.917768][T12910] RDX: 0000200000000080 RSI: 000000000000000b RDI: 0000000000000008 [ 517.917778][T12910] RBP: 00007f02d5a32c99 R08: 0000000000000002 R09: 0000000000000000 [ 517.917788][T12910] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000000 [ 517.917798][T12910] R13: 00007f02d5c16128 R14: 00007f02d5c16090 R15: 00007ffdbcfb0b48 [ 517.917818][T12910] [ 518.548436][T12910] syz.1.1536: vmalloc error: size 32768, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 518.919402][T12910] CPU: 0 UID: 0 PID: 12910 Comm: syz.1.1536 Tainted: G U L syzkaller #0 PREEMPT(full) [ 518.919432][T12910] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 518.919438][T12910] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 518.919449][T12910] Call Trace: [ 518.919455][T12910] [ 518.919461][T12910] dump_stack_lvl+0x100/0x190 [ 518.919490][T12910] warn_alloc.cold+0x95/0x1c1 [ 518.919549][T12910] ? __pfx_warn_alloc+0x10/0x10 [ 518.919571][T12910] ? lockdep_hardirqs_on+0x78/0x100 [ 518.919594][T12910] ? __get_vm_area_node+0x2c5/0x330 [ 518.919615][T12910] ? __get_vm_area_node+0x208/0x330 [ 518.919636][T12910] __vmalloc_node_range_noprof+0xbf4/0x1530 [ 518.919654][T12910] ? find_held_lock+0x2b/0x80 [ 518.919668][T12910] ? local_lock_release+0x99/0x130 [ 518.919685][T12910] ? local_lock_release+0x99/0x130 [ 518.919704][T12910] ? kernel_clone+0xfc/0x9a0 [ 518.919721][T12910] ? find_held_lock+0x2b/0x80 [ 518.919735][T12910] ? rcu_read_unlock+0x17/0x60 [ 518.919750][T12910] ? rcu_read_unlock+0x17/0x60 [ 518.919766][T12910] ? obj_cgroup_charge_account+0x46d/0x640 [ 518.919783][T12910] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 518.919803][T12910] ? __memcg_slab_post_alloc_hook+0x51b/0x990 [ 518.919823][T12910] ? rcu_is_watching+0x12/0xc0 [ 518.919844][T12910] ? trace_kmem_cache_alloc+0xf3/0x120 [ 518.919862][T12910] ? kernel_clone+0xfc/0x9a0 [ 518.919884][T12910] __vmalloc_node_noprof+0xad/0xf0 [ 518.919903][T12910] ? kernel_clone+0xfc/0x9a0 [ 518.919922][T12910] copy_process+0x5ec/0x7a40 [ 518.919941][T12910] ? __pfx___futex_wait+0x10/0x10 [ 518.919962][T12910] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 518.919981][T12910] ? lockdep_hardirqs_on+0x78/0x100 [ 518.920005][T12910] ? __pfx_copy_process+0x10/0x10 [ 518.920023][T12910] ? find_held_lock+0x2b/0x80 [ 518.920044][T12910] kernel_clone+0xfc/0x9a0 [ 518.920060][T12910] ? __pfx_futex_wait+0x10/0x10 [ 518.920081][T12910] ? __pfx_kernel_clone+0x10/0x10 [ 518.920109][T12910] __do_sys_clone+0xd9/0x120 [ 518.920126][T12910] ? __pfx___do_sys_clone+0x10/0x10 [ 518.920152][T12910] ? arch_syscall_is_vdso_sigreturn+0xb6/0x200 [ 518.920171][T12910] ? syscall_user_dispatch+0x76/0x130 [ 518.920194][T12910] do_syscall_64+0x106/0xf80 [ 518.920213][T12910] ? clear_bhb_loop+0x40/0x90 [ 518.920231][T12910] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 518.920246][T12910] RIP: 0033:0x7f02d599c799 [ 518.920261][T12910] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 518.920276][T12910] RSP: 002b:00007f02d6917028 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 518.920291][T12910] RAX: ffffffffffffffda RBX: 00007f02d5c16090 RCX: 00007f02d599c799 [ 518.920301][T12910] RDX: 0000200000000080 RSI: 000000000000000b RDI: 0000000000000008 [ 518.920311][T12910] RBP: 00007f02d5a32c99 R08: 0000000000000002 R09: 0000000000000000 [ 518.920321][T12910] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000000 [ 518.920331][T12910] R13: 00007f02d5c16128 R14: 00007f02d5c16090 R15: 00007ffdbcfb0b48 [ 518.920351][T12910] [ 518.920370][T12910] Mem-Info: [ 519.409156][T12936] synth uevent: /devices/virtual/tty/ttyz1: unknown uevent action string [ 519.428298][T12936] tty ttyz1: uevent: failed to send synthetic uevent: -22 [ 519.758476][T12910] active_anon:12227 inactive_anon:1651 isolated_anon:0 [ 519.758476][T12910] active_file:21764 inactive_file:39650 isolated_file:0 [ 519.758476][T12910] unevictable:768 dirty:800 writeback:0 [ 519.758476][T12910] slab_reclaimable:11967 slab_unreclaimable:92904 [ 519.758476][T12910] mapped:26294 shmem:2087 pagetables:1362 [ 519.758476][T12910] sec_pagetables:0 bounce:0 [ 519.758476][T12910] kernel_misc_reclaimable:0 [ 519.758476][T12910] free:1290703 free_pcp:31144 free_cma:0 [ 519.994581][T12910] Node 0 active_anon:48896kB inactive_anon:15140kB active_file:87084kB inactive_file:158428kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:108340kB dirty:3200kB writeback:0kB shmem:12976kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:11488kB pagetables:5424kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 520.133385][T12910] Node 1 active_anon:0kB inactive_anon:0kB active_file:4kB inactive_file:140kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:32kB pagetables:160kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 520.291000][T12910] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 520.460112][T12910] lowmem_reserve[]: 0 2477 2478 2478 2478 [ 520.490058][T12910] Node 0 DMA32 free:1259064kB boost:0kB min:34304kB low:42880kB high:51456kB reserved_highatomic:0KB free_highatomic:0KB active_anon:48896kB inactive_anon:29408kB active_file:87084kB inactive_file:158428kB unevictable:1536kB writepending:3200kB zspages:464kB present:3129332kB managed:2537384kB mlocked:0kB bounce:0kB free_pcp:60412kB local_pcp:60412kB free_cma:0kB [ 520.645503][T12910] lowmem_reserve[]: 0 0 1 1 1 [ 520.666968][T12910] Node 0 Normal free:4kB boost:0kB min:12kB low:12kB high:12kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1060kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 520.768671][T12910] lowmem_reserve[]: 0 0 0 0 0 [ 520.804031][T12910] Node 1 Normal free:3883668kB boost:0kB min:55580kB low:69472kB high:83364kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:4kB inactive_file:140kB unevictable:1536kB writepending:0kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:41940kB local_pcp:41940kB free_cma:0kB [ 520.932868][T12910] lowmem_reserve[]: 0 0 0 0 0 [ 520.951135][T12910] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 520.997280][T12910] Node 0 DMA32: 5785*4kB (UME) 4503*8kB (UME) 2376*16kB (UME) 841*32kB (UME) 413*64kB (UME) 681*128kB (UM) 357*256kB (UME) 119*512kB (UME) 64*1024kB (UM) 6*2048kB (UME) 193*4096kB (UM) = 1258364kB [ 521.059543][T12910] Node 0 Normal: 1*4kB (U) 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 4kB [ 521.101014][T12910] Node 1 Normal: 3*4kB (UM) 13*8kB (UM) 6*16kB (UM) 4*32kB (UM) 5*64kB (UM) 4*128kB (UM) 2*256kB (UM) 2*512kB (UM) 2*1024kB (UM) 0*2048kB 947*4096kB (M) = 3883668kB [ 521.155460][T12910] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 521.235841][T12910] Node 0 hugepages_total=5 hugepages_free=5 hugepages_surp=0 hugepages_size=2048kB [ 521.263548][T12910] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 521.305260][T12910] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 521.375875][T12910] 75554 total pagecache pages [ 521.386566][T12910] 51 pages in swap cache [ 521.416410][T12910] Free swap = 124880kB [ 521.436943][T12910] Total swap = 124996kB [ 521.466725][T12910] 2097051 pages RAM [ 521.478886][T12910] 0 pages HighMem/MovableOnly [ 521.515946][T12910] 430825 pages reserved [ 521.526138][T12910] 0 pages cma reserved [ 521.675018][T12987] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1557'. [ 521.839569][T12992] random: crng reseeded on system resumption [ 524.082987][T13054] netlink: 672 bytes leftover after parsing attributes in process `syz.0.1573'. [ 524.638435][T13073] random: crng reseeded on system resumption [ 526.124652][ T5865] Process accounting resumed [ 526.694114][T13116] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input20 [ 527.620100][T13122] FAULT_INJECTION: forcing a failure. [ 527.620100][T13122] name failslab, interval 1, probability 0, space 0, times 0 [ 527.659007][T13122] CPU: 0 UID: 0 PID: 13122 Comm: syz.0.1589 Tainted: G U L syzkaller #0 PREEMPT(full) [ 527.659038][T13122] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 527.659044][T13122] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 527.659053][T13122] Call Trace: [ 527.659059][T13122] [ 527.659066][T13122] dump_stack_lvl+0x100/0x190 [ 527.659100][T13122] should_fail_ex.cold+0x5/0xa [ 527.659122][T13122] should_failslab+0xc2/0x120 [ 527.659139][T13122] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 527.659161][T13122] ? alloc_empty_file+0x55/0x1c0 [ 527.659183][T13122] alloc_empty_file+0x55/0x1c0 [ 527.659202][T13122] alloc_file_pseudo+0x13a/0x230 [ 527.659221][T13122] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 527.659240][T13122] ? alloc_fd+0x476/0x790 [ 527.659257][T13122] sock_alloc_file+0x50/0x210 [ 527.659282][T13122] __sys_socket+0x1c0/0x260 [ 527.659299][T13122] ? __pfx___sys_socket+0x10/0x10 [ 527.659321][T13122] __x64_sys_socket+0x72/0xb0 [ 527.659338][T13122] ? lockdep_hardirqs_on+0x78/0x100 [ 527.659360][T13122] do_syscall_64+0x106/0xf80 [ 527.659380][T13122] ? clear_bhb_loop+0x40/0x90 [ 527.659398][T13122] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 527.659414][T13122] RIP: 0033:0x7f7f8cd9c799 [ 527.659428][T13122] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 527.659443][T13122] RSP: 002b:00007f7f8dc2d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 527.659458][T13122] RAX: ffffffffffffffda RBX: 00007f7f8d015fa0 RCX: 00007f7f8cd9c799 [ 527.659468][T13122] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 527.659477][T13122] RBP: 00007f7f8ce32c99 R08: 0000000000000000 R09: 0000000000000000 [ 527.659486][T13122] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 527.659495][T13122] R13: 00007f7f8d016038 R14: 00007f7f8d015fa0 R15: 00007ffe049926a8 [ 527.659515][T13122] [ 528.807045][T13130] netlink: 334 bytes leftover after parsing attributes in process `syz.1.1592'. [ 528.873795][T13130] FAULT_INJECTION: forcing a failure. [ 528.873795][T13130] name failslab, interval 1, probability 0, space 0, times 0 [ 528.873825][T13130] CPU: 0 UID: 0 PID: 13130 Comm: syz.1.1592 Tainted: G U L syzkaller #0 PREEMPT(full) [ 528.873850][T13130] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 528.873856][T13130] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 528.873866][T13130] Call Trace: [ 528.873871][T13130] [ 528.873878][T13130] dump_stack_lvl+0x100/0x190 [ 528.873916][T13130] should_fail_ex.cold+0x5/0xa [ 528.873935][T13130] should_failslab+0xc2/0x120 [ 528.873952][T13130] __kmalloc_node_track_caller_noprof+0xe3/0x850 [ 528.873975][T13130] ? kvasprintf_const+0x66/0x1a0 [ 528.874071][T13130] kvasprintf+0xbc/0x150 [ 528.874091][T13130] ? __pfx_kvasprintf+0x10/0x10 [ 528.874110][T13130] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 528.874134][T13130] ? lockdep_init_map_type+0x5c/0x250 [ 528.874157][T13130] kvasprintf_const+0x66/0x1a0 [ 528.874176][T13130] kobject_set_name_vargs+0x5a/0x140 [ 528.874192][T13130] device_create_groups_vargs+0x1b1/0x270 [ 528.874216][T13130] device_create+0xed/0x130 [ 528.874235][T13130] ? __pfx_device_create+0x10/0x10 [ 528.874258][T13130] ? is_console_locked+0x9/0x20 [ 528.874274][T13130] ? con_is_visible+0x65/0x150 [ 528.874292][T13130] ? csi_J+0x57e/0xad0 [ 528.874316][T13130] vcs_make_sysfs+0x32/0x80 [ 528.874333][T13130] vc_allocate+0x539/0x880 [ 528.874353][T13130] ? __pfx_vc_allocate+0x10/0x10 [ 528.874378][T13130] con_install+0xa1/0x620 [ 528.874399][T13130] ? __pfx_con_install+0x10/0x10 [ 528.874422][T13130] ? __pfx_con_install+0x10/0x10 [ 528.874442][T13130] tty_init_dev.part.0+0x9e/0x470 [ 528.874466][T13130] tty_open+0xa63/0xfa0 [ 528.874490][T13130] ? __pfx_tty_open+0x10/0x10 [ 528.874510][T13130] ? chrdev_open+0x10b/0x6a0 [ 528.874524][T13130] ? chrdev_open+0x10b/0x6a0 [ 528.874542][T13130] ? __pfx_tty_open+0x10/0x10 [ 528.874563][T13130] chrdev_open+0x234/0x6a0 [ 528.874577][T13130] ? __pfx_apparmor_file_open+0x10/0x10 [ 528.874601][T13130] ? __pfx_chrdev_open+0x10/0x10 [ 528.874617][T13130] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 528.874637][T13130] do_dentry_open+0x6d8/0x1660 [ 528.874652][T13130] ? __pfx_chrdev_open+0x10/0x10 [ 528.874672][T13130] vfs_open+0x82/0x3f0 [ 528.874693][T13130] path_openat+0x208c/0x31a0 [ 528.874715][T13130] ? __pfx_path_openat+0x10/0x10 [ 528.874738][T13130] do_file_open+0x20e/0x430 [ 528.874755][T13130] ? __pfx_do_file_open+0x10/0x10 [ 528.874784][T13130] ? alloc_fd+0x476/0x790 [ 528.874801][T13130] ? do_getname+0x191/0x390 [ 528.874821][T13130] do_sys_openat2+0x10d/0x1e0 [ 528.874840][T13130] ? __pfx_do_sys_openat2+0x10/0x10 [ 528.874867][T13130] __x64_sys_openat+0x12d/0x210 [ 528.874893][T13130] ? __pfx___x64_sys_openat+0x10/0x10 [ 528.874922][T13130] do_syscall_64+0x106/0xf80 [ 528.874944][T13130] ? clear_bhb_loop+0x40/0x90 [ 528.874962][T13130] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 528.874978][T13130] RIP: 0033:0x7f02d599c799 [ 528.874992][T13130] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 528.875007][T13130] RSP: 002b:00007f02d6938028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 528.875021][T13130] RAX: ffffffffffffffda RBX: 00007f02d5c15fa0 RCX: 00007f02d599c799 [ 528.875032][T13130] RDX: 0000000000000000 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 528.875043][T13130] RBP: 00007f02d5a32c99 R08: 0000000000000000 R09: 0000000000000000 [ 528.875057][T13130] R10: 00000000000000f0 R11: 0000000000000246 R12: 0000000000000000 [ 528.875070][T13130] R13: 00007f02d5c16038 R14: 00007f02d5c15fa0 R15: 00007ffdbcfb0b48 [ 528.875091][T13130] [ 529.502287][T13125] ERROR: Out of memory at tomoyo_memory_ok. [ 530.413406][T13137] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input21 [ 532.945064][T13192] Process accounting paused [ 534.883959][T13262] FAULT_INJECTION: forcing a failure. [ 534.883959][T13262] name failslab, interval 1, probability 0, space 0, times 0 [ 534.946956][T13262] CPU: 0 UID: 0 PID: 13262 Comm: syz.2.1618 Tainted: G U L syzkaller #0 PREEMPT(full) [ 534.946983][T13262] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 534.946989][T13262] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 534.946998][T13262] Call Trace: [ 534.947003][T13262] [ 534.947009][T13262] dump_stack_lvl+0x100/0x190 [ 534.947036][T13262] should_fail_ex.cold+0x5/0xa [ 534.947053][T13262] ? tomoyo_realpath_from_path+0xb6/0x690 [ 534.947072][T13262] should_failslab+0xc2/0x120 [ 534.947088][T13262] __kmalloc_noprof+0xe0/0x850 [ 534.947112][T13262] tomoyo_realpath_from_path+0xb6/0x690 [ 534.947135][T13262] tomoyo_path_number_perm+0x23c/0x580 [ 534.947150][T13262] ? tomoyo_path_number_perm+0x22e/0x580 [ 534.947166][T13262] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 534.947201][T13262] ? find_held_lock+0x2b/0x80 [ 534.947215][T13262] ? __fget_files+0x215/0x3d0 [ 534.947227][T13262] ? hook_file_ioctl_common+0x146/0x410 [ 534.947247][T13262] ? __fget_files+0x21f/0x3d0 [ 534.947264][T13262] security_file_ioctl+0xd3/0x230 [ 534.947282][T13262] __x64_sys_ioctl+0xb7/0x210 [ 534.947303][T13262] do_syscall_64+0x106/0xf80 [ 534.947323][T13262] ? clear_bhb_loop+0x40/0x90 [ 534.947340][T13262] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 534.947355][T13262] RIP: 0033:0x7fa3b519c799 [ 534.947369][T13262] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 534.947383][T13262] RSP: 002b:00007fa3b602e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 534.947397][T13262] RAX: ffffffffffffffda RBX: 00007fa3b5415fa0 RCX: 00007fa3b519c799 [ 534.947407][T13262] RDX: 0000200000000140 RSI: 00000000c0f85403 RDI: 0000000000000003 [ 534.947422][T13262] RBP: 00007fa3b602e090 R08: 0000000000000000 R09: 0000000000000000 [ 534.947430][T13262] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 534.947439][T13262] R13: 00007fa3b5416038 R14: 00007fa3b5415fa0 R15: 00007fffdd6ae8c8 [ 534.947458][T13262] [ 534.947465][T13262] ERROR: Out of memory at tomoyo_realpath_from_path. [ 536.033183][T13284] random: crng reseeded on system resumption [ 536.890383][T13299] input: f as /devices/virtual/input/input22 [ 536.924010][T13299] FAULT_INJECTION: forcing a failure. [ 536.924010][T13299] name failslab, interval 1, probability 0, space 0, times 0 [ 536.989992][T13299] CPU: 0 UID: 0 PID: 13299 Comm: syz.0.1628 Tainted: G U L syzkaller #0 PREEMPT(full) [ 536.990022][T13299] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 536.990029][T13299] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 536.990038][T13299] Call Trace: [ 536.990046][T13299] [ 536.990054][T13299] dump_stack_lvl+0x100/0x190 [ 536.990083][T13299] should_fail_ex.cold+0x5/0xa [ 536.990102][T13299] should_failslab+0xc2/0x120 [ 536.990119][T13299] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 536.990141][T13299] ? __kernfs_new_node+0xd2/0x960 [ 536.990166][T13299] __kernfs_new_node+0xd2/0x960 [ 536.990188][T13299] ? __pfx___kernfs_new_node+0x10/0x10 [ 536.990214][T13299] ? find_held_lock+0x2b/0x80 [ 536.990229][T13299] ? kernfs_root+0xee/0x2a0 [ 536.990248][T13299] ? kernfs_root+0xee/0x2a0 [ 536.990272][T13299] kernfs_new_node+0x11b/0x1a0 [ 536.990298][T13299] __kernfs_create_file+0x53/0x350 [ 536.990317][T13299] sysfs_add_file_mode_ns+0x207/0x3c0 [ 536.990351][T13299] sysfs_create_file_ns+0x145/0x1e0 [ 536.990371][T13299] ? __pfx_sysfs_create_file_ns+0x10/0x10 [ 536.990394][T13299] ? mark_held_locks+0x40/0x70 [ 536.990416][T13299] device_create_file+0xf2/0x1d0 [ 536.990438][T13299] device_add+0xa74/0x1950 [ 536.990458][T13299] ? __pfx_device_add+0x10/0x10 [ 536.990478][T13299] ? kobject_get+0xbb/0x150 [ 536.990503][T13299] cdev_device_add+0x12b/0x270 [ 536.990520][T13299] evdev_connect+0x3a8/0x4b0 [ 536.990548][T13299] input_attach_handler.isra.0+0x177/0x1e0 [ 536.990574][T13299] input_register_device.cold+0x139/0x375 [ 536.990596][T13299] uinput_ioctl_handler.isra.0+0x8d8/0x1d10 [ 536.990615][T13299] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 536.990635][T13299] ? __pfx_uinput_ioctl_handler.isra.0+0x10/0x10 [ 536.990658][T13299] ? find_held_lock+0x2b/0x80 [ 536.990671][T13299] ? __fget_files+0x215/0x3d0 [ 536.990694][T13299] ? __pfx_uinput_ioctl+0x10/0x10 [ 536.990712][T13299] __x64_sys_ioctl+0x18e/0x210 [ 536.990734][T13299] do_syscall_64+0x106/0xf80 [ 536.990754][T13299] ? clear_bhb_loop+0x40/0x90 [ 536.990772][T13299] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 536.990788][T13299] RIP: 0033:0x7f7f8cd9c799 [ 536.990805][T13299] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 536.990825][T13299] RSP: 002b:00007f7f8dc2d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 536.990840][T13299] RAX: ffffffffffffffda RBX: 00007f7f8d015fa0 RCX: 00007f7f8cd9c799 [ 536.990851][T13299] RDX: 00000000ffffffe4 RSI: 0000000000005501 RDI: 0000000000000006 [ 536.990861][T13299] RBP: 00007f7f8ce32c99 R08: 0000000000000000 R09: 0000000000000000 [ 536.990870][T13299] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 536.990880][T13299] R13: 00007f7f8d016038 R14: 00007f7f8d015fa0 R15: 00007ffe049926a8 [ 536.990900][T13299] [ 537.434601][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 537.446968][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 537.459194][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 537.471416][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 537.483596][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 537.495773][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 537.507940][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 537.520109][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 537.532295][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 537.544452][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 542.446399][ C0] net_ratelimit: 34925 callbacks suppressed [ 542.446416][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 542.464615][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 542.476824][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 542.489042][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 542.501239][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 542.513432][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 542.525621][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 542.537957][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 542.550323][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 542.562592][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 543.726643][ C0] sched: DL replenish lagged too much [ 547.458945][ C0] net_ratelimit: 7177 callbacks suppressed [ 547.458963][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 547.477601][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 547.490411][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 547.503133][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 547.515834][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 547.528610][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 547.541425][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 547.554336][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 547.567246][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 547.580096][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 552.471314][ C0] net_ratelimit: 7160 callbacks suppressed [ 552.471331][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 552.490002][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 552.502770][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 552.515517][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 552.528226][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 552.540976][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 552.553759][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 552.566487][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 552.579292][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 552.592074][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 557.483873][ C0] net_ratelimit: 7119 callbacks suppressed [ 557.483896][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 557.502790][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 557.515581][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 557.528489][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 557.541471][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 557.554352][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 557.567236][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 557.580066][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 557.592823][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 557.607799][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 562.496899][ C0] net_ratelimit: 7062 callbacks suppressed [ 562.496916][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 562.515552][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 562.528406][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 562.541161][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 562.553893][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 562.566645][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 562.579378][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 562.592072][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 562.604767][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 562.617508][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 563.223451][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 564.363533][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 567.508928][ C0] net_ratelimit: 7106 callbacks suppressed [ 567.508947][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 567.527587][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 567.540386][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 567.553140][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 567.565890][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 567.578657][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 567.591341][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 567.604073][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 567.616796][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 567.629537][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 572.521644][ C0] net_ratelimit: 7041 callbacks suppressed [ 572.521662][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 572.541910][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 572.554723][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 572.567520][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 572.580371][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 572.593099][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 572.606387][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 572.619198][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 572.631938][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 572.644661][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 577.533821][ C0] net_ratelimit: 7081 callbacks suppressed [ 577.533838][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 577.552528][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 577.565849][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 577.578787][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 577.591549][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 577.604368][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 577.617186][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 577.629996][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 577.642797][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 577.655579][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 582.546670][ C0] net_ratelimit: 7286 callbacks suppressed [ 582.546692][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 582.565315][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 582.578200][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 582.591027][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 582.603783][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 582.616752][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 582.629601][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 582.642374][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 582.655384][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 582.668400][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 587.559051][ C0] net_ratelimit: 10070 callbacks suppressed [ 587.559069][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 587.578348][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:fa:d1:a1:14:c4:ea, vlan:0) [ 587.590970][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 587.604288][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:fa:d1:a1:14:c4:ea, vlan:0) [ 587.616979][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 587.630217][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:fa:d1:a1:14:c4:ea, vlan:0) [ 587.642745][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 587.655320][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:fa:d1:a1:14:c4:ea, vlan:0) [ 587.667868][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 587.680479][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:fa:d1:a1:14:c4:ea, vlan:0) [ 592.571474][ C0] net_ratelimit: 10616 callbacks suppressed [ 592.571491][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 592.590021][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:fa:d1:a1:14:c4:ea, vlan:0) [ 592.602636][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 592.615717][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:fa:d1:a1:14:c4:ea, vlan:0) [ 592.628801][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 592.641442][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:fa:d1:a1:14:c4:ea, vlan:0) [ 592.654014][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 592.666549][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:fa:d1:a1:14:c4:ea, vlan:0) [ 592.679348][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 592.692413][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:fa:d1:a1:14:c4:ea, vlan:0) [ 597.583902][ C0] net_ratelimit: 10452 callbacks suppressed [ 597.583920][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 597.605237][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:fa:d1:a1:14:c4:ea, vlan:0) [ 597.618237][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 597.630777][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:fa:d1:a1:14:c4:ea, vlan:0) [ 597.643888][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 597.656913][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:fa:d1:a1:14:c4:ea, vlan:0) [ 597.669564][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 597.684197][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:fa:d1:a1:14:c4:ea, vlan:0) [ 597.701662][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 597.715856][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:fa:d1:a1:14:c4:ea, vlan:0) [ 602.596474][ C0] net_ratelimit: 10785 callbacks suppressed [ 602.596492][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:fa:d1:a1:14:c4:ea, vlan:0) [ 602.614986][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 602.627568][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:fa:d1:a1:14:c4:ea, vlan:0) [ 602.640147][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 602.652732][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:fa:d1:a1:14:c4:ea, vlan:0) [ 602.665261][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 602.677808][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:fa:d1:a1:14:c4:ea, vlan:0) [ 602.690392][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 602.703007][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:fa:d1:a1:14:c4:ea, vlan:0) [ 602.715808][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 607.608977][ C0] net_ratelimit: 13668 callbacks suppressed [ 607.608995][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 607.627160][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 607.639809][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:fa:d1:a1:14:c4:ea, vlan:0) [ 607.652328][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 607.664534][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 607.676757][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 607.689376][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:fa:d1:a1:14:c4:ea, vlan:0) [ 607.702057][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 607.714298][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 607.726503][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 612.621669][ C0] net_ratelimit: 14844 callbacks suppressed [ 612.621687][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:fa:d1:a1:14:c4:ea, vlan:0) [ 612.640387][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 612.653099][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 612.665476][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 612.678024][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:fa:d1:a1:14:c4:ea, vlan:0) [ 612.690542][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 612.702720][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 612.714947][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 612.727431][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:fa:d1:a1:14:c4:ea, vlan:0) [ 612.739967][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 617.634056][ C0] net_ratelimit: 14866 callbacks suppressed [ 617.634079][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:fa:d1:a1:14:c4:ea, vlan:0) [ 617.652513][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 617.664743][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 617.679415][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 617.691955][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:fa:d1:a1:14:c4:ea, vlan:0) [ 617.704434][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 617.716662][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 617.728879][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 617.741442][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:fa:d1:a1:14:c4:ea, vlan:0) [ 617.754003][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 622.646551][ C0] net_ratelimit: 15688 callbacks suppressed [ 622.646570][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 622.664762][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 622.676978][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 622.689492][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:fa:d1:a1:14:c4:ea, vlan:0) [ 622.701758][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 622.714183][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 622.726537][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 622.738868][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 622.751520][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:fa:d1:a1:14:c4:ea, vlan:0) [ 622.763764][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 624.628714][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 625.339093][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 627.658877][ C0] net_ratelimit: 18700 callbacks suppressed [ 627.658893][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 627.676974][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 627.689224][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:fa:d1:a1:14:c4:ea, vlan:0) [ 627.701423][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 627.713803][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 627.726112][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 627.738408][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 627.750921][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 627.763002][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 627.775221][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:fa:d1:a1:14:c4:ea, vlan:0) [ 632.671656][ C0] net_ratelimit: 19929 callbacks suppressed [ 632.671679][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 632.689807][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 632.702033][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 632.714521][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 632.726620][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 632.738781][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 632.750994][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:fa:d1:a1:14:c4:ea, vlan:0) [ 632.763190][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 632.775613][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 632.787927][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 637.684041][ C0] net_ratelimit: 20398 callbacks suppressed [ 637.684059][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 637.702179][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 637.714414][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 637.726948][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 637.739006][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 637.751197][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 637.763416][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:fa:d1:a1:14:c4:ea, vlan:0) [ 637.775660][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 637.788031][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 637.800235][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 642.696444][ C0] net_ratelimit: 20394 callbacks suppressed [ 642.696463][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 642.715449][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 642.727687][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:fa:d1:a1:14:c4:ea, vlan:0) [ 642.739921][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 642.752289][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 642.764487][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 642.776754][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 642.789204][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 642.801290][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 642.813456][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 643.626791][ C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks: [ 643.633867][ C0] rcu: Tasks blocked on level-0 rcu_node (CPUs 0-1): P13281/1:b..l [ 643.642194][ C0] rcu: (detected by 0, t=10502 jiffies, g=65113, q=1487 ncpus=1) [ 643.649979][ C0] task:syz.1.1625 state:R running task stack:26536 pid:13281 tgid:13281 ppid:5824 task_flags:0x40004c flags:0x00080001 [ 643.664228][ C0] Call Trace: [ 643.667506][ C0] [ 643.670427][ C0] __schedule+0xfee/0x6120 [ 643.674878][ C0] ? do_raw_spin_lock+0x128/0x260 [ 643.679957][ C0] ? __lock_acquire+0x4a5/0x2630 [ 643.684903][ C0] ? __pfx___schedule+0x10/0x10 [ 643.689752][ C0] ? rcu_is_watching+0x12/0xc0 [ 643.694524][ C0] preempt_schedule_irq+0x50/0x90 [ 643.699542][ C0] irqentry_exit+0x17b/0x670 [ 643.704135][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 643.710116][ C0] RIP: 0010:find_lock_entries+0xc0f/0x1130 [ 643.715927][ C0] Code: fc ff df 48 89 d1 48 c1 e9 03 80 3c 01 00 0f 85 79 04 00 00 48 8b 02 31 ff 48 d1 e8 83 e0 01 89 c6 88 44 24 28 e8 a1 74 c5 ff <0f> b6 44 24 28 84 c0 0f 85 81 fd ff ff e8 3f 7a c5 ff 48 8b 44 24 [ 643.735532][ C0] RSP: 0018:ffffc9000484f4a8 EFLAGS: 00000293 [ 643.741598][ C0] RAX: 0000000000000000 RBX: ffffea0000e80f80 RCX: ffffffff82429e0f [ 643.749555][ C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff88807c630000 [ 643.757512][ C0] RBP: 1ffff92000909e9f R08: 0000000000000001 R09: 0000000000000000 [ 643.765466][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000643 [ 643.773415][ C0] R13: 0000000000000001 R14: dffffc0000000000 R15: ffffea0000e80f88 [ 643.781382][ C0] ? find_lock_entries+0xc0f/0x1130 [ 643.786576][ C0] ? find_lock_entries+0xc0f/0x1130 [ 643.791768][ C0] ? __pfx_find_lock_entries+0x10/0x10 [ 643.797217][ C0] ? __pfx___might_resched+0x10/0x10 [ 643.802502][ C0] ? folio_batch_remove_exceptionals+0x115/0x1a0 [ 643.808904][ C0] shmem_undo_range+0x212/0x1570 [ 643.813873][ C0] ? __pfx_shmem_undo_range+0x10/0x10 [ 643.819298][ C0] ? percpu_counter_add_batch+0xb9/0x230 [ 643.824972][ C0] shmem_evict_inode+0x39e/0xbd0 [ 643.829909][ C0] ? inode_wait_for_writeback+0x171/0x390 [ 643.835631][ C0] ? __pfx_shmem_evict_inode+0x10/0x10 [ 643.841081][ C0] ? __pfx_inode_wait_for_writeback+0x10/0x10 [ 643.847441][ C0] ? find_held_lock+0x2b/0x80 [ 643.852189][ C0] ? evict+0x37e/0xad0 [ 643.856244][ C0] ? evict+0x37e/0xad0 [ 643.860319][ C0] ? __pfx_shmem_evict_inode+0x10/0x10 [ 643.865774][ C0] evict+0x3c2/0xad0 [ 643.869657][ C0] ? find_held_lock+0x2b/0x80 [ 643.874319][ C0] ? __pfx_evict+0x10/0x10 [ 643.878723][ C0] ? iput.part.0+0x5fd/0xf50 [ 643.883306][ C0] iput.part.0+0x605/0xf50 [ 643.887723][ C0] ? __pfx_inode_just_drop+0x10/0x10 [ 643.893013][ C0] iput+0x35/0x40 [ 643.896630][ C0] dentry_unlink_inode+0x2a1/0x490 [ 643.902367][ C0] __dentry_kill+0x1d0/0x600 [ 643.906970][ C0] finish_dput+0x76/0x480 [ 643.911307][ C0] dput.part.0+0x456/0x570 [ 643.915974][ C0] dput+0x1f/0x30 [ 643.919596][ C0] __fput+0x519/0xb40 [ 643.923773][ C0] task_work_run+0x150/0x240 [ 643.928471][ C0] ? __pfx_task_work_run+0x10/0x10 [ 643.933601][ C0] ? do_raw_spin_unlock+0x145/0x1e0 [ 643.938800][ C0] do_exit+0x8b8/0x2b60 [ 643.942965][ C0] ? preempt_schedule_thunk+0x16/0x30 [ 643.948340][ C0] ? __pfx_do_exit+0x10/0x10 [ 643.952917][ C0] ? preempt_schedule_thunk+0x16/0x30 [ 643.958279][ C0] do_group_exit+0xd5/0x2a0 [ 643.962770][ C0] __x64_sys_exit_group+0x3e/0x50 [ 643.967781][ C0] x64_sys_call+0x102c/0x1530 [ 643.972441][ C0] do_syscall_64+0x106/0xf80 [ 643.977019][ C0] ? clear_bhb_loop+0x40/0x90 [ 643.981768][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 643.987641][ C0] RIP: 0033:0x7f02d599c799 [ 643.992038][ C0] RSP: 002b:00007ffdbcfb0e88 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 644.001070][ C0] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f02d599c799 [ 644.011026][ C0] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000 [ 644.019347][ C0] RBP: 00007ffdbcfb0eec R08: 0000000000000000 R09: 00000000000927c0 [ 644.027486][ C0] R10: 0000000000000006 R11: 0000000000000246 R12: 000000000000019d [ 644.035440][ C0] R13: 00000000000927c0 R14: 0000000000082d2d R15: 00007ffdbcfb0f40 [ 644.043406][ C0] [ 644.046429][ C0] rcu: rcu_preempt kthread starved for 310 jiffies! g65113 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0 [ 644.057444][ C0] rcu: Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior. [ 644.067922][ C0] rcu: RCU grace-period kthread stack dump: [ 644.073791][ C0] task:rcu_preempt state:R running task stack:27832 pid:16 tgid:16 ppid:2 task_flags:0x208040 flags:0x00080000 [ 644.087260][ C0] Call Trace: [ 644.090526][ C0] [ 644.093451][ C0] __schedule+0xfee/0x6120 [ 644.097859][ C0] ? __lock_acquire+0x4a5/0x2630 [ 644.103751][ C0] ? __pfx___schedule+0x10/0x10 [ 644.108587][ C0] ? find_held_lock+0x2b/0x80 [ 644.113250][ C0] ? schedule+0x2bf/0x390 [ 644.117591][ C0] schedule+0xdd/0x390 [ 644.121647][ C0] schedule_timeout+0x127/0x280 [ 644.126496][ C0] ? __pfx_schedule_timeout+0x10/0x10 [ 644.131853][ C0] ? __pfx_process_timeout+0x10/0x10 [ 644.137142][ C0] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 644.142935][ C0] ? prepare_to_swait_event+0xdf/0x4a0 [ 644.148383][ C0] rcu_gp_fqs_loop+0x1a9/0x900 [ 644.153130][ C0] ? __pfx_rcu_gp_fqs_loop+0x10/0x10 [ 644.158400][ C0] ? __pfx_rcu_gp_init+0x10/0x10 [ 644.163344][ C0] ? __pfx_rcu_gp_cleanup+0x10/0x10 [ 644.168526][ C0] ? rcu_is_watching+0x12/0xc0 [ 644.173835][ C0] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 644.179650][ C0] rcu_gp_kthread+0x179/0x230 [ 644.184320][ C0] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 644.189590][ C0] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 644.195442][ C0] ? __kthread_parkme+0x18c/0x230 [ 644.200469][ C0] ? kthread+0x13a/0x450 [ 644.204719][ C0] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 644.209906][ C0] kthread+0x370/0x450 [ 644.213984][ C0] ? __pfx_kthread+0x10/0x10 [ 644.218650][ C0] ret_from_fork+0x754/0xd80 [ 644.223249][ C0] ? __pfx_ret_from_fork+0x10/0x10 [ 644.228353][ C0] ? __switch_to+0x7b4/0x1120 [ 644.233014][ C0] ? __pfx_kthread+0x10/0x10 [ 644.237590][ C0] ret_from_fork_asm+0x1a/0x30 [ 644.242347][ C0] [ 644.245354][ C0] rcu: Stack dump where RCU GP kthread last ran: [ 644.251660][ C0] CPU: 0 UID: 0 PID: 1151 Comm: kworker/u8:9 Tainted: G U L syzkaller #0 PREEMPT(full) [ 644.262681][ C0] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 644.267853][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 644.277896][ C0] Workqueue: bat_events batadv_tt_purge [ 644.283516][ C0] RIP: 0010:__orc_find+0x86/0xf0 [ 644.288454][ C0] Code: f2 48 d1 fa 48 8d 5c 95 00 48 89 da 48 c1 ea 03 0f b6 34 0a 48 89 da 83 e2 07 83 c2 03 40 38 f2 7c 05 40 84 f6 75 4b 48 63 13 <48> 01 da 49 39 d5 73 af 4c 8d 63 fc 49 39 ec 73 b2 4d 29 f7 49 c1 [ 644.308051][ C0] RSP: 0018:ffffc90000006ef0 EFLAGS: 00000246 [ 644.314117][ C0] RAX: ffffffff918702c2 RBX: ffffffff90fbae60 RCX: dffffc0000000000 [ 644.322073][ C0] RDX: fffffffff177c9e9 RSI: 0000000000000000 RDI: ffffffff90fbae38 [ 644.330027][ C0] RBP: ffffffff90fbae38 R08: ffffffff91870346 R09: 0000000000000007 [ 644.337981][ C0] R10: 0000000000000200 R11: 0000000000017378 R12: ffffffff90fbae8c [ 644.345936][ C0] R13: ffffffff82737828 R14: ffffffff90fbae38 R15: ffffffff90fbae38 [ 644.353893][ C0] FS: 0000000000000000(0000) GS:ffff88812434a000(0000) knlGS:0000000000000000 [ 644.362803][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 644.369370][ C0] CR2: 00007f02cd400218 CR3: 000000000e598000 CR4: 00000000003526f0 [ 644.377410][ C0] Call Trace: [ 644.380686][ C0] [ 644.383516][ C0] ? __kasan_slab_alloc+0x88/0x90 [ 644.388540][ C0] unwind_next_frame+0x2ec/0x1ea0 [ 644.393566][ C0] ? __kasan_slab_alloc+0x89/0x90 [ 644.398576][ C0] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 644.404715][ C0] arch_stack_walk+0x94/0xf0 [ 644.409294][ C0] ? __kasan_slab_alloc+0x89/0x90 [ 644.414302][ C0] stack_trace_save+0x8e/0xc0 [ 644.418991][ C0] ? __pfx_stack_trace_save+0x10/0x10 [ 644.424454][ C0] ? __pfx_br_nf_hook_thresh+0x10/0x10 [ 644.429980][ C0] ? lock_acquire+0x1cf/0x380 [ 644.434646][ C0] kasan_save_stack+0x30/0x50 [ 644.439317][ C0] ? kasan_save_stack+0x30/0x50 [ 644.444154][ C0] ? kasan_save_track+0x14/0x30 [ 644.448993][ C0] ? __kasan_slab_alloc+0x89/0x90 [ 644.454110][ C0] kasan_save_track+0x14/0x30 [ 644.458794][ C0] __kasan_slab_alloc+0x89/0x90 [ 644.463654][ C0] kmem_cache_alloc_noprof+0x241/0x6e0 [ 644.469135][ C0] ? skb_clone+0x190/0x400 [ 644.473572][ C0] skb_clone+0x190/0x400 [ 644.477869][ C0] br_flood+0x35c/0x650 [ 644.482108][ C0] br_handle_frame_finish+0xff4/0x1f60 [ 644.487581][ C0] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 644.493467][ C0] ? __lock_acquire+0x4a5/0x2630 [ 644.498405][ C0] ? __pfx_ip6t_do_table+0x10/0x10 [ 644.503551][ C0] ? nf_hook_slow+0x167/0x220 [ 644.508268][ C0] br_nf_hook_thresh+0x30d/0x420 [ 644.513192][ C0] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 644.519076][ C0] ? __pfx_br_nf_hook_thresh+0x10/0x10 [ 644.524524][ C0] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 644.530406][ C0] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 644.536299][ C0] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 644.542183][ C0] br_nf_pre_routing_finish_ipv6+0x769/0xfb0 [ 644.548148][ C0] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 644.554031][ C0] br_nf_pre_routing_ipv6+0x39c/0x8b0 [ 644.559389][ C0] ? __pfx_br_nf_pre_routing_ipv6+0x10/0x10 [ 644.565271][ C0] ? lock_acquire+0x1cf/0x380 [ 644.569933][ C0] ? __pfx_br_nf_pre_routing_finish_ipv6+0x10/0x10 [ 644.576443][ C0] ? net_generic+0xea/0x2a0 [ 644.580956][ C0] br_nf_pre_routing+0x90d/0x1550 [ 644.585978][ C0] br_handle_frame+0xcdd/0x1520 [ 644.590819][ C0] ? __pfx_br_handle_frame+0x10/0x10 [ 644.596093][ C0] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 644.601993][ C0] ? __pfx_br_handle_frame+0x10/0x10 [ 644.607268][ C0] __netif_receive_skb_core.constprop.0+0x6c5/0x3550 [ 644.613936][ C0] ? mark_held_locks+0x40/0x70 [ 644.618693][ C0] ? kmem_cache_free+0x124/0x6a0 [ 644.623617][ C0] ? skb_release_data+0x7a0/0x9d0 [ 644.628630][ C0] ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10 [ 644.635726][ C0] ? kfree_skbmem+0x19f/0x210 [ 644.640387][ C0] ? sk_skb_reason_drop+0x114/0x1b0 [ 644.645594][ C0] ? ip6_mc_input+0x51a/0xf50 [ 644.650301][ C0] ? __pfx_ip6_mc_input+0x10/0x10 [ 644.655323][ C0] ? __lock_acquire+0x4a5/0x2630 [ 644.660285][ C0] ? process_backlog+0x32a/0x1580 [ 644.665317][ C0] __netif_receive_skb_one_core+0xb0/0x1e0 [ 644.671119][ C0] ? __pfx___netif_receive_skb_one_core+0x10/0x10 [ 644.677520][ C0] ? lock_acquire+0x1cf/0x380 [ 644.682182][ C0] ? process_backlog+0x32a/0x1580 [ 644.687192][ C0] ? process_backlog+0x32a/0x1580 [ 644.692197][ C0] __netif_receive_skb+0x1f/0x120 [ 644.697226][ C0] process_backlog+0x37a/0x1580 [ 644.702069][ C0] __napi_poll.constprop.0+0xaf/0x450 [ 644.707431][ C0] net_rx_action+0xa40/0xf20 [ 644.712061][ C0] ? __pfx_net_rx_action+0x10/0x10 [ 644.717184][ C0] ? find_held_lock+0x2b/0x80 [ 644.721849][ C0] ? try_to_wake_up+0x154/0x1a80 [ 644.726769][ C0] ? try_to_wake_up+0x154/0x1a80 [ 644.731711][ C0] ? kvm_sched_clock_read+0x11/0x20 [ 644.736918][ C0] ? sched_clock+0x38/0x60 [ 644.741328][ C0] ? sched_clock_cpu+0x6c/0x570 [ 644.746173][ C0] ? mark_held_locks+0x40/0x70 [ 644.750922][ C0] handle_softirqs+0x1eb/0x9e0 [ 644.755673][ C0] ? __pfx_handle_softirqs+0x10/0x10 [ 644.760945][ C0] ? batadv_tt_purge+0x25d/0xbd0 [ 644.765867][ C0] do_softirq+0xac/0xe0 [ 644.770007][ C0] [ 644.772918][ C0] [ 644.775832][ C0] __local_bh_enable_ip+0xf8/0x120 [ 644.780929][ C0] batadv_tt_purge+0x25d/0xbd0 [ 644.785679][ C0] ? __pfx_batadv_tt_purge+0x10/0x10 [ 644.790953][ C0] ? rcu_is_watching+0x12/0xc0 [ 644.795727][ C0] process_one_work+0xa23/0x19a0 [ 644.800685][ C0] ? __pfx_process_one_work+0x10/0x10 [ 644.806063][ C0] ? __pfx_batadv_tt_purge+0x10/0x10 [ 644.811333][ C0] worker_thread+0x5ef/0xe50 [ 644.815915][ C0] ? kthread+0x13a/0x450 [ 644.820148][ C0] ? __pfx_worker_thread+0x10/0x10 [ 644.825482][ C0] kthread+0x370/0x450 [ 644.829560][ C0] ? __pfx_kthread+0x10/0x10 [ 644.834144][ C0] ret_from_fork+0x754/0xd80 [ 644.838725][ C0] ? __pfx_ret_from_fork+0x10/0x10 [ 644.843875][ C0] ? __switch_to+0x7b4/0x1120 [ 644.848539][ C0] ? __pfx_kthread+0x10/0x10 [ 644.853118][ C0] ret_from_fork_asm+0x1a/0x30 [ 644.857878][ C0] [ 647.709041][ C0] net_ratelimit: 12733 callbacks suppressed [ 647.709059][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 647.727204][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 647.739393][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 647.751604][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:fa:d1:a1:14:c4:ea, vlan:0) [ 647.763827][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 647.776195][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 647.788395][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 647.800619][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 647.813097][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 647.825205][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 652.721474][ C0] net_ratelimit: 20626 callbacks suppressed [ 652.721495][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 652.739891][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 652.752153][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 652.764658][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:da:dd:c9:46:65:92, vlan:0) [ 652.777237][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 652.789343][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 652.801538][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 652.813745][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:fa:d1:a1:14:c4:ea, vlan:0) [ 652.826023][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 652.839001][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)