last executing test programs: 6.310585889s ago: executing program 1 (id=6868): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) close_range$auto(0x0, 0xffffeffe, 0x2) socket$nl_generic(0x10, 0x3, 0x10) io_uring_setup$auto(0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) bpf$auto(0x0, &(0x7f0000000000)=@link_update={r0, @new_prog_fd=0x4, 0x4, @old_map_fd=r1}, 0xa3) bpf$auto(0x3, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0xc) 6.175639516s ago: executing program 1 (id=6869): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) close_range$auto(0x0, 0x5, 0x0) socket$nl_generic(0x10, 0x3, 0x10) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) getsockname$auto(r0, 0x0, 0x0) socket(0x28, 0x800, 0x7) 4.043497922s ago: executing program 1 (id=6881): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) name_to_handle_at$auto(0x1010, &(0x7f00000001c0)='/\x00', &(0x7f0000000000)={0x0, 0x75c0237c}, 0x0, 0x200) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) setsockopt$auto(0x3, 0x10000000084, 0xa, 0x0, 0x20) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 3.821844001s ago: executing program 1 (id=6884): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socket(0x10, 0x2, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0xa, 0x3, 0xc, 0x5, 0x0, 0x3, 0x6, 0x10000000000002, 0x6c8, 0x5, 0x20000000003, 0x5, 0xb0, 0x7, 0x10000002, 0x3, 0x5, 0x7, 0x0, 0x0, 0x42, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, [0x0, 0x20000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000000000, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2]}, 0x1fe, 0x40081) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x800}, 0x40000) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0xc20f0000, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x8) r1 = socket(0x10, 0x2, 0x0) bind$auto(r1, &(0x7f0000000000)=@generic={0x10, "a500acb75c9cedd1b5e9a0d76293"}, 0x68) sendmsg$auto_NET_DM_CMD_STATS_GET(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x84}, 0x1, 0x0, 0x0, 0x8001}, 0x40080) 3.699059571s ago: executing program 3 (id=6885): openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x2, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/net/sit0/ifindex\x00', 0x80000, 0x0) read$auto(r0, 0x0, 0x20) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x202, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x2) r2 = openat$auto_memtype_fops_memtype(0xffffffffffffff9c, &(0x7f0000000000), 0xa8680, 0x0) pread64$auto(r2, 0x0, 0x40b6, 0x8000000001) 3.474892921s ago: executing program 1 (id=6886): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0xa, 0x0) r0 = socket(0x2, 0x3, 0x6) lsm_list_modules$auto(0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) open(&(0x7f0000000040)='./file0\x00', 0x8643, 0x15e) ioctl$sock_SIOCGIFINDEX(r0, 0x401c5820, 0x0) rename$auto(&(0x7f0000000480)='./file0\x00', 0x0) 3.434259246s ago: executing program 3 (id=6887): r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000001080)='/dev/v4l-touch5\x00', 0x103040, 0x0) read$auto_v4l2_fops_v4l2_dev(r0, &(0x7f00000010c0)=""/22, 0x16) socket(0x2, 0xa, 0x1) r1 = bpf$auto(0x0, 0x0, 0x10) mmap$auto(0x0, 0x2009, 0xfffffffffffffffa, 0x8000200008011, r1, 0x8000) mmap$auto(0x0, 0x8, 0xdf, 0xeb1, 0x0, 0x8000) r2 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000880)='/dev/input/event0\x00', 0x40100, 0x0) ioctl$auto_EVIOCGMASK(r2, 0x80104592, 0x0) close_range$auto(0x2, 0x8, 0x0) 3.29687231s ago: executing program 2 (id=6888): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2b, 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) fsconfig$auto(0xffffffffffffffff, 0x8, 0x0, 0x0, 0x0) prctl$auto_PR_GET_TID_ADDRESS(0x28, 0x2, 0x0, 0x0, 0x40) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mbind$auto(0x0, 0x2091d1, 0x1, 0x0, 0x6, 0x2) madvise$auto_MADV_GUARD_INSTALL(0x0, 0x2021000, 0x66) syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000280), r0) 3.296049482s ago: executing program 1 (id=6896): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) futex$auto(0x0, 0x6, 0x7f, 0x0, 0x0, 0xdd) madvise$auto(0x0, 0x2003ee, 0x15) futex$auto(0x0, 0x7, 0x8, 0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) timer_create$auto(0x3, 0x0, 0x0) rt_sigprocmask$auto(0x0, &(0x7f0000000000)={0xfffffffffffffe01}, 0x0, 0x8) timer_settime$auto(0x0, 0x3, &(0x7f00000000c0)={{0x0, 0x400}, {0x0, 0x87}}, 0x0) mmap$auto(0x0, 0x5, 0xfff, 0x44eb2, 0x10006, 0x300000000000) 3.222435389s ago: executing program 3 (id=6889): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x40000008000) close_range$auto(0x2, 0x8, 0x0) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) fanotify_init$auto(0x65, 0x2) pipe$auto(0x0) dup2$auto(0x5, 0x4) splice$auto(0x4, 0x0, 0x2, 0x0, 0x80000001, 0x9) close_range$auto(0x0, 0x5, 0x0) write$auto(0x6, 0x0, 0x100000001) 2.767223426s ago: executing program 3 (id=6890): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) close_range$auto(0x0, 0x5, 0x0) socket$nl_generic(0x10, 0x3, 0x10) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) getsockname$auto(r0, 0x0, 0x0) socket(0x28, 0x800, 0x7) 2.399738379s ago: executing program 0 (id=6891): r0 = socket(0x11, 0x3, 0x9) capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48}) mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) capset$auto(0x0, 0x0) close_range$auto(0x2, 0x8000, 0x0) open(0x0, 0xa22c0, 0x155) r1 = socket(0x11, 0x80003, 0x3ff) setsockopt$auto(r1, 0x107, 0xf, 0x0, 0x6) sendmmsg$auto(r0, &(0x7f00000006c0)={{&(0x7f0000000000), 0x5ac, &(0x7f00000000c0)={&(0x7f0000000080)="4c0300006b", 0x49}, 0x2, 0x0, 0x5, 0x1}, 0x5}, 0x2, 0x100) 2.246067545s ago: executing program 0 (id=6892): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macsec0\x00'}) ioctl$auto_PPPIOCSMRU(r0, 0xc004743e, 0x0) capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48}) ioctl$auto_PPPIOCSPASS(r0, 0x40107447, &(0x7f0000000040)={0x6, 0x0}) ioctl$auto_PPPIOCSPASS(r0, 0x40107447, &(0x7f00000000c0)={0x9, &(0x7f0000000000)={0x28, 0xf3, 0xb0, @raw=0xfffff038}}) write$auto(r0, 0x0, 0x6) 1.686390721s ago: executing program 2 (id=6893): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) pselect6$auto(0x9, &(0x7f0000000000)={[0x8, 0x4, 0x0, 0x6, 0x8001, 0xfffffffffffff000, 0xfff, 0x9, 0xcf1, 0x100000003, 0x8000000000000001, 0x0, 0x2f, 0x4002, 0x8000000000000002, 0xfffffffffffffffe]}, 0x0, 0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x0) msgctl$auto_MSG_INFO(0x10, 0xc, 0x0) sendmmsg$auto(0x3, 0x0, 0x3, 0x0) 1.61813225s ago: executing program 0 (id=6894): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x5, 0x0) r0 = socket(0xa, 0x801, 0x84) lsm_list_modules$auto(0x0, 0x0, 0x0) setsockopt$auto(r0, 0x1, 0x3f, 0x0, 0xb) sendto$auto(0x3, 0x0, 0x2000f, 0x101, &(0x7f0000000000)=@in={0x2, 0x4e22, @rand_addr=0x64010100}, 0x1c) listen$auto(0x3, 0x81) accept$auto(0x3, 0x0, 0x0) 1.431991365s ago: executing program 0 (id=6895): bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x2, 0x4, 0x3, 0x2, 0x8, 0x3, 0xe3, 0x400000000a, 0x200000003}, 0x6f1) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x14fa02, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0x400000000e31, 0xffffffffffffffff, 0x0) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x0, 0x0) pread64$auto(r1, 0x0, 0xd, 0x6e9) getrandom$auto(0x0, 0x6000000, 0x3) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84L\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xff\a\x00\x00\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x19, 0x4, 0x4, 0x880b, 0x8, 0xd, 0x66b, 0x4, 0x7ff}, 0x6f4) 1.408675728s ago: executing program 2 (id=6897): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) name_to_handle_at$auto(0x1010, &(0x7f00000001c0)='/\x00', &(0x7f0000000000)={0x0, 0x75c0237c}, 0x0, 0x200) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) setsockopt$auto(0x3, 0x10000000084, 0xa, 0x0, 0x20) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 1.135154068s ago: executing program 3 (id=6898): r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) write$auto(r0, &(0x7f0000000040)='/dev/dsp\x00', 0x1) openat$auto_udf_dir_operations_udfdecl(0xffffffffffffff9c, 0x0, 0xa000, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x4, 0x300000000000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x201, 0x0) write$auto(0x3, 0x0, 0xfffffdef) clone$auto(0x1, 0x8, 0x0, 0x0, 0x9) mbind$auto(0xf000, 0x8000000000000002, 0x100000000, 0x0, 0x6, 0x2) 446.487535ms ago: executing program 2 (id=6900): set_mempolicy$auto(0x6, &(0x7f0000000000)=0x7f, 0x9) mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0) ioctl$auto_PPPIOCSMRU(r0, 0xc004743e, 0x0) ioctl$auto_PPPIOCSPASS(r0, 0x40107447, &(0x7f0000000040)={0x6, 0x0}) sysfs$auto(0x2, 0x4d, 0x0) r1 = fsopen$auto(0x0, 0x1) fsconfig$auto_EROFS_MOUNT_DAX_NEVER(r1, 0x4, &(0x7f0000000100)='\x00', &(0x7f0000000140), 0xffffff9c) ioctl$auto_PPPIOCSPASS(r0, 0x40107447, &(0x7f00000000c0)={0x9, &(0x7f0000000000)={0x28, 0xf3, 0xb0, @raw=0xfffff000}}) 418.684267ms ago: executing program 0 (id=6901): socket(0x10, 0x2, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000229bd70090000004a0003000000000008"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) r0 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0x2000, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmsg$auto_BATADV_CMD_GET_MCAST_FLAGS(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r0, @ANYBLOB="8b632abd7000fedbdf250a"], 0x1c}, 0x1, 0x0, 0x0, 0x14}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="18"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 271.334775ms ago: executing program 0 (id=6902): openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x10d801, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) unshare$auto(0x40000080) madvise$auto(0x0, 0xffffffffffff0005, 0x17) io_setup$auto(0x1, 0x0) set_mempolicy_home_node$auto(0xb67, 0x7, 0x9, 0x7f) socket$nl_generic(0x10, 0x3, 0x10) ioctl$auto(0x3, 0xae41, 0xffffffffffffffff) 232.689459ms ago: executing program 2 (id=6903): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) open(0x0, 0x22240, 0x154) r0 = socket(0x10, 0x2, 0xf) close_range$auto(0x0, 0xffffeffe, 0x2) pipe$auto(0x0) socket(0xa, 0x3, 0x8) pipe$auto(0x0) bpf$auto(0x0, &(0x7f0000000080)=@bpf_attr_4={0x1e, r0, 0xffffffff}, 0xd) bpf$auto(0x1, &(0x7f0000000080)=@bpf_attr_3={0x5, 0x0, 0x702955be, 0x5c, 0x4, 0x9, 0x80, 0xe4, 0xfffff800, "0566c8ee7c78a925488276d7697a12bd", 0x0, 0x2, 0xffffffffffffffff, 0x7, 0x9, 0x4, 0x7, 0x10001, 0x0, 0x8001, @attach_prog_fd, 0x7e, 0x4, 0x1, 0x5, 0x3}, 0x5) 134.703642ms ago: executing program 3 (id=6904): mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x1, 0x0) socket(0x2, 0x801, 0x106) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty12\x00', 0x101840, 0x0) r1 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) clone$auto(0x0, 0x0, 0x0, 0x0, 0x2) ioctl$auto(r0, 0x541c, r1) 0s ago: executing program 2 (id=6905): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1400, 0x0) mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x8e051, r0, 0x0) ioctl$auto_tracing_buffers_fops_trace(r0, 0x5220, 0x0) ioctl$auto(0xffffffffffffffff, 0xc0585611, 0xffffffffffffffff) close_range$auto(0x2, 0x8, 0x0) write$auto(0xffffffffffffffff, 0x0, 0x1e1) kernel console output (not intermixed with test programs): =SOFTLOCKUP [ 657.760918][T19754] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 657.760927][T19754] Call Trace: [ 657.760933][T19754] [ 657.760939][T19754] dump_stack_lvl+0x100/0x190 [ 657.760967][T19754] should_fail_ex.cold+0x5/0xa [ 657.760985][T19754] should_failslab+0xc2/0x120 [ 657.761007][T19754] __kmalloc_cache_noprof+0x7a/0x6f0 [ 657.761023][T19754] ? tomoyo_init_log+0x1a0/0x20c0 [ 657.761047][T19754] tomoyo_init_log+0x1a0/0x20c0 [ 657.761066][T19754] ? __pfx_format_decode+0x10/0x10 [ 657.761084][T19754] ? number+0x983/0xc90 [ 657.761105][T19754] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 657.761132][T19754] ? __pfx_tomoyo_init_log+0x10/0x10 [ 657.761158][T19754] tomoyo_write_log2+0x2ed/0xbc0 [ 657.761180][T19754] tomoyo_supervisor+0x15e/0x1340 [ 657.761206][T19754] ? __pfx_tomoyo_supervisor+0x10/0x10 [ 657.761230][T19754] ? tomoyo_realpath_from_path+0x19c/0x690 [ 657.761256][T19754] ? tomoyo_realpath_from_path+0x19c/0x690 [ 657.761275][T19754] ? kfree+0x1f6/0x6b0 [ 657.761292][T19754] ? tomoyo_check_path_number_acl+0x1e6/0x2f0 [ 657.761315][T19754] tomoyo_path_number_perm+0x445/0x580 [ 657.761333][T19754] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 657.761350][T19754] ? futex_wait+0x125/0x380 [ 657.761387][T19754] ? find_held_lock+0x2b/0x80 [ 657.761408][T19754] ? __fget_files+0x215/0x3d0 [ 657.761427][T19754] ? hook_file_ioctl_common+0x146/0x410 [ 657.761448][T19754] ? __fget_files+0x21f/0x3d0 [ 657.761471][T19754] security_file_ioctl+0xd3/0x230 [ 657.761489][T19754] __x64_sys_ioctl+0xb7/0x210 [ 657.761508][T19754] do_syscall_64+0x106/0xf80 [ 657.761526][T19754] ? clear_bhb_loop+0x40/0x90 [ 657.761544][T19754] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 657.761559][T19754] RIP: 0033:0x7f410c19bf79 [ 657.761573][T19754] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 657.761587][T19754] RSP: 002b:00007f410d06a028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 657.761602][T19754] RAX: ffffffffffffffda RBX: 00007f410c416090 RCX: 00007f410c19bf79 [ 657.761612][T19754] RDX: 0000000000000000 RSI: 0000000000001261 RDI: 0000000000000003 [ 657.761621][T19754] RBP: 00007f410c2327e0 R08: 0000000000000000 R09: 0000000000000000 [ 657.761630][T19754] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 657.761639][T19754] R13: 00007f410c416128 R14: 00007f410c416090 R15: 00007ffdaf3eb6f8 [ 657.761671][T19754] [ 658.143694][T19762] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5227'. [ 658.154319][T19762] netlink: 13 bytes leftover after parsing attributes in process `syz.3.5227'. [ 658.163353][T19762] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5227'. [ 661.861889][T19866] netlink: 346 bytes leftover after parsing attributes in process `syz.1.5269'. [ 662.480655][T19888] netlink: 222 bytes leftover after parsing attributes in process `syz.0.5278'. [ 662.594047][T19891] [U] [ 662.596783][T19891] [U] [ 662.599460][T19891] [U] [ 662.602130][T19891] [U] [ 662.606580][T19891] [U] [ 662.609307][T19891] [U] [ 662.612064][T19891] [U] [ 662.614732][T19891] [U] [ 662.618840][T19891] [U] [ 662.621546][T19891] [U] [ 662.624217][T19891] [U] [ 662.626887][T19891] [U] [ 662.630315][T19891] [U] [ 662.633001][T19891] [U] [ 662.635670][T19891] [U] [ 662.638340][T19891] [U] [ 662.641797][T19891] [U] [ 662.644478][T19891] [U] [ 662.647153][T19891] [U] [ 662.649823][T19891] [U] [ 662.654232][T19891] [U] [ 662.656928][T19891] [U] [ 662.659598][T19891] [U] [ 662.662300][T19891] [U] [ 662.670943][T19891] [U] [ 662.673654][T19891] [U] [ 662.676352][T19891] [U] [ 662.679039][T19891] [U] [ 662.683241][T19891] [U] [ 662.685940][T19891] [U] [ 662.688613][T19891] [U] [ 662.691285][T19891] [U] [ 662.694720][T19891] [U] [ 662.697493][T19891] [U] [ 662.700193][T19891] [U] [ 662.702872][T19891] [U] [ 662.706324][T19891] [U] [ 662.709026][T19891] [U] [ 662.711706][T19891] [U] [ 662.714381][T19891] [U] [ 662.718917][T19891] [U] [ 662.721618][T19891] [U] [ 662.724298][T19891] [U] [ 662.726968][T19891] [U] [ 662.730432][T19891] [U] [ 662.733114][T19891] [U] [ 662.735792][T19891] [U] [ 662.738466][T19891] [U] [ 662.741908][T19891] [U] [ 662.744600][T19891] [U] [ 662.747281][T19891] [U] [ 662.749949][T19891] [U] [ 662.753692][T19891] [U] [ 662.756384][T19891] [U] [ 662.759056][T19891] [U] [ 662.761739][T19891] [U] [ 662.765276][T19891] [U] [ 662.767966][T19891] [U] [ 662.770656][T19891] [U] [ 662.773342][T19891] [U] [ 662.777402][T19891] [U] [ 662.780095][T19891] [U] [ 662.782766][T19891] [U] [ 662.785444][T19891] [U] [ 662.791083][T19891] [U] [ 662.793786][T19891] [U] [ 662.796454][T19891] [U] [ 662.799135][T19891] [U] [ 662.803515][T19891] [U] [ 662.806220][T19891] [U] [ 662.808888][T19891] [U] [ 662.811554][T19891] [U] [ 662.814966][T19891] [U] [ 662.817648][T19891] [U] [ 662.820320][T19891] [U] [ 662.822995][T19891] [U] [ 662.826371][T19891] [U] [ 662.829075][T19891] [U] [ 662.831799][T19891] [U] [ 662.834487][T19891] [U] [ 662.838462][T19891] [U] [ 662.841189][T19891] [U] [ 662.843861][T19891] [U] [ 662.846534][T19891] [U] [ 662.849955][T19891] [U] [ 662.852637][T19891] [U] [ 662.855303][T19891] [U] [ 662.857972][T19891] [U] [ 662.861691][T19891] [U] [ 662.864376][T19891] [U] [ 662.867044][T19891] [U] [ 662.869715][T19891] [U] [ 662.873124][T19891] [U] [ 662.875804][T19891] [U] [ 662.878471][T19891] [U] [ 662.881140][T19891] [U] [ 662.888447][T19891] [U] [ 662.891134][T19891] [U] [ 662.893805][T19891] [U] [ 662.896478][T19891] [U] [ 662.901570][T19891] [U] [ 662.904264][T19891] [U] [ 662.906935][T19891] [U] [ 662.909605][T19891] [U] [ 662.913094][T19891] [U] [ 662.915787][T19891] [U] [ 662.918460][T19891] [U] [ 662.921126][T19891] [U] [ 662.924503][T19891] [U] [ 662.927184][T19891] [U] [ 662.930073][T19891] [U] [ 662.932749][T19891] [U] [ 662.936243][T19891] [U] [ 662.938930][T19891] [U] [ 662.941601][T19891] [U] [ 662.944271][T19891] [U] [ 662.947894][T19891] [U] [ 662.950575][T19891] [U] [ 662.953242][T19891] [U] [ 662.955912][T19891] [U] [ 662.966495][T19891] [U] [ 662.969211][T19891] [U] [ 662.971884][T19891] [U] [ 662.974554][T19891] [U] [ 663.000535][T19891] [U] [ 663.003251][T19891] [U] [ 663.005928][T19891] [U] [ 663.008611][T19891] [U] [ 663.011295][T19891] [U] [ 663.072470][T19891] [U] [ 663.075190][T19891] [U] [ 663.077867][T19891] [U] [ 663.080547][T19891] [U] [ 663.141659][T19891] [U] [ 663.144378][T19891] [U] [ 663.147051][T19891] [U] [ 663.149744][T19891] [U] [ 663.201915][T19891] [U] [ 663.204627][T19891] [U] [ 663.207300][T19891] [U] [ 663.209966][T19891] [U] [ 663.227275][T19891] [U] [ 663.229987][T19891] [U] [ 663.232656][T19891] [U] [ 663.235325][T19891] [U] [ 663.267551][T19891] [U] [ 663.270293][T19891] [U] [ 663.272966][T19891] [U] [ 663.275632][T19891] [U] [ 663.319711][T19891] [U] [ 663.322432][T19891] [U] [ 663.325116][T19891] [U] [ 663.327796][T19891] [U] [ 663.386233][T19891] [U] [ 663.388955][T19891] [U] [ 663.391624][T19891] [U] [ 663.394291][T19891] [U] [ 663.428133][T19891] [U] [ 663.430891][T19891] [U] [ 663.433559][T19891] [U] [ 663.436226][T19891] [U] [ 663.484079][T19891] [U] [ 665.408055][T19955] random: crng reseeded on system resumption [ 666.115826][ T29] audit: type=1800 audit(4294967806.540:26): pid=19978 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.5309" name="members" dev="configfs" ino=69605 res=0 errno=0 [ 666.668367][T19994] netlink: 326 bytes leftover after parsing attributes in process `syz.0.5314'. [ 666.871209][T19997] FAULT_INJECTION: forcing a failure. [ 666.871209][T19997] name failslab, interval 1, probability 0, space 0, times 0 [ 666.909616][T19997] CPU: 0 UID: 0 PID: 19997 Comm: syz.0.5315 Tainted: G U L syzkaller #0 PREEMPT(full) [ 666.909644][T19997] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 666.909651][T19997] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 666.909661][T19997] Call Trace: [ 666.909668][T19997] [ 666.909676][T19997] dump_stack_lvl+0x100/0x190 [ 666.909705][T19997] should_fail_ex.cold+0x5/0xa [ 666.909723][T19997] should_failslab+0xc2/0x120 [ 666.909747][T19997] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 666.909767][T19997] ? __kernfs_new_node+0xd2/0x960 [ 666.909787][T19997] __kernfs_new_node+0xd2/0x960 [ 666.909805][T19997] ? __pfx___kernfs_new_node+0x10/0x10 [ 666.909825][T19997] ? find_held_lock+0x2b/0x80 [ 666.909847][T19997] ? kernfs_root+0xee/0x2a0 [ 666.909861][T19997] ? kernfs_root+0xee/0x2a0 [ 666.909880][T19997] kernfs_new_node+0x11b/0x1a0 [ 666.909901][T19997] __kernfs_create_file+0x53/0x350 [ 666.909928][T19997] sysfs_add_file_mode_ns+0x207/0x3c0 [ 666.909956][T19997] sysfs_merge_group+0x194/0x340 [ 666.909973][T19997] ? __pfx_sysfs_merge_group+0x10/0x10 [ 666.909993][T19997] ? __pfx_dev_add_physical_location+0x10/0x10 [ 666.910011][T19997] ? bus_to_subsys+0x114/0x150 [ 666.910033][T19997] dpm_sysfs_add+0x237/0x280 [ 666.910051][T19997] device_add+0x9ef/0x1950 [ 666.910070][T19997] ? __pfx_device_add+0x10/0x10 [ 666.910094][T19997] __add_disk+0x518/0xe40 [ 666.910111][T19997] ? find_held_lock+0x2b/0x80 [ 666.910134][T19997] add_disk_fwnode+0x3d4/0x5c0 [ 666.910152][T19997] zram_add+0x4d2/0x610 [ 666.910171][T19997] ? __pfx_zram_add+0x10/0x10 [ 666.910203][T19997] ? find_held_lock+0x2b/0x80 [ 666.910223][T19997] ? sysfs_file_kobj+0xe4/0x290 [ 666.910247][T19997] ? __pfx_hot_add_show+0x10/0x10 [ 666.910266][T19997] hot_add_show+0x21/0x80 [ 666.910285][T19997] class_attr_show+0x72/0xa0 [ 666.910302][T19997] ? __pfx_class_attr_show+0x10/0x10 [ 666.910318][T19997] sysfs_kf_seq_show+0x217/0x3a0 [ 666.910343][T19997] seq_read_iter+0x32f/0x1270 [ 666.910371][T19997] kernfs_fop_read_iter+0x46c/0x610 [ 666.910391][T19997] ? rw_verify_area+0xce/0x6d0 [ 666.910408][T19997] ? __pfx_kernfs_fop_read_iter+0x10/0x10 [ 666.910430][T19997] vfs_read+0x825/0xb30 [ 666.910460][T19997] ? __pfx_vfs_read+0x10/0x10 [ 666.910494][T19997] ksys_read+0x12a/0x250 [ 666.910514][T19997] ? __pfx_ksys_read+0x10/0x10 [ 666.910540][T19997] do_syscall_64+0x106/0xf80 [ 666.910559][T19997] ? clear_bhb_loop+0x40/0x90 [ 666.910577][T19997] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 666.910594][T19997] RIP: 0033:0x7fcab779bf79 [ 666.910608][T19997] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 666.910622][T19997] RSP: 002b:00007fcab871a028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 666.910638][T19997] RAX: ffffffffffffffda RBX: 00007fcab7a15fa0 RCX: 00007fcab779bf79 [ 666.910649][T19997] RDX: 0000000000001000 RSI: 0000200000000ec0 RDI: 0000000000000005 [ 666.910658][T19997] RBP: 00007fcab78327e0 R08: 0000000000000000 R09: 0000000000000000 [ 666.910667][T19997] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 666.910676][T19997] R13: 00007fcab7a16038 R14: 00007fcab7a15fa0 R15: 00007ffd3118b428 [ 666.910698][T19997] [ 667.568464][T20005] netlink: 342 bytes leftover after parsing attributes in process `syz.3.5318'. [ 669.384949][T20048] zswap: compressor not available [ 670.435612][T20083] ERROR: Out of memory at tomoyo_memory_ok. [ 672.419024][T20134] netlink: 334 bytes leftover after parsing attributes in process `syz.2.5361'. [ 672.583821][T20137] netlink: 146 bytes leftover after parsing attributes in process `syz.2.5362'. [ 672.958827][T20145] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5364'. [ 673.008467][T20145] netlink: 354 bytes leftover after parsing attributes in process `syz.2.5364'. [ 674.420292][T20185] netlink: 'syz.2.5380': attribute type 27 has an invalid length. [ 674.440853][T20182] zram: Added device: zram1 [ 674.453861][T20185] netlink: 334 bytes leftover after parsing attributes in process `syz.2.5380'. [ 675.425093][T20203] sp0: Synchronizing with TNC [ 675.933929][T20216] FAULT_INJECTION: forcing a failure. [ 675.933929][T20216] name failslab, interval 1, probability 0, space 0, times 0 [ 676.023615][T20199] Process accounting resumed [ 676.030519][T20216] CPU: 0 UID: 0 PID: 20216 Comm: syz.1.5391 Tainted: G U L syzkaller #0 PREEMPT(full) [ 676.030547][T20216] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 676.030553][T20216] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 676.030563][T20216] Call Trace: [ 676.030568][T20216] [ 676.030575][T20216] dump_stack_lvl+0x100/0x190 [ 676.030602][T20216] should_fail_ex.cold+0x5/0xa [ 676.030621][T20216] should_failslab+0xc2/0x120 [ 676.030643][T20216] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 676.030662][T20216] ? __kernfs_new_node+0xd2/0x960 [ 676.030683][T20216] __kernfs_new_node+0xd2/0x960 [ 676.030700][T20216] ? __pfx___kernfs_new_node+0x10/0x10 [ 676.030721][T20216] ? find_held_lock+0x2b/0x80 [ 676.030744][T20216] ? kernfs_root+0xee/0x2a0 [ 676.030758][T20216] ? kernfs_root+0xee/0x2a0 [ 676.030777][T20216] kernfs_new_node+0x11b/0x1a0 [ 676.030798][T20216] __kernfs_create_file+0x53/0x350 [ 676.030821][T20216] sysfs_add_file_mode_ns+0x207/0x3c0 [ 676.030849][T20216] sysfs_merge_group+0x194/0x340 [ 676.030866][T20216] ? __pfx_sysfs_merge_group+0x10/0x10 [ 676.030884][T20216] ? __pfx_dev_add_physical_location+0x10/0x10 [ 676.030902][T20216] ? bus_to_subsys+0x114/0x150 [ 676.030924][T20216] dpm_sysfs_add+0x237/0x280 [ 676.030942][T20216] device_add+0x9ef/0x1950 [ 676.030962][T20216] ? __pfx_device_add+0x10/0x10 [ 676.030988][T20216] __add_disk+0x518/0xe40 [ 676.031004][T20216] ? find_held_lock+0x2b/0x80 [ 676.031028][T20216] add_disk_fwnode+0x3d4/0x5c0 [ 676.031046][T20216] zram_add+0x4d2/0x610 [ 676.031065][T20216] ? __pfx_zram_add+0x10/0x10 [ 676.031097][T20216] ? find_held_lock+0x2b/0x80 [ 676.031118][T20216] ? sysfs_file_kobj+0xe4/0x290 [ 676.031142][T20216] ? __pfx_hot_add_show+0x10/0x10 [ 676.031161][T20216] hot_add_show+0x21/0x80 [ 676.031180][T20216] class_attr_show+0x72/0xa0 [ 676.031197][T20216] ? __pfx_class_attr_show+0x10/0x10 [ 676.031213][T20216] sysfs_kf_seq_show+0x217/0x3a0 [ 676.031239][T20216] seq_read_iter+0x32f/0x1270 [ 676.031267][T20216] kernfs_fop_read_iter+0x46c/0x610 [ 676.031288][T20216] ? rw_verify_area+0xce/0x6d0 [ 676.031305][T20216] ? __pfx_kernfs_fop_read_iter+0x10/0x10 [ 676.031327][T20216] vfs_read+0x825/0xb30 [ 676.031349][T20216] ? __pfx_vfs_read+0x10/0x10 [ 676.031382][T20216] ksys_read+0x12a/0x250 [ 676.031401][T20216] ? __pfx_ksys_read+0x10/0x10 [ 676.031426][T20216] do_syscall_64+0x106/0xf80 [ 676.031444][T20216] ? clear_bhb_loop+0x40/0x90 [ 676.031463][T20216] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 676.031484][T20216] RIP: 0033:0x7f410c19bf79 [ 676.031499][T20216] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 676.031514][T20216] RSP: 002b:00007f410d08b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 676.031529][T20216] RAX: ffffffffffffffda RBX: 00007f410c415fa0 RCX: 00007f410c19bf79 [ 676.031540][T20216] RDX: 0000000000001000 RSI: 0000200000000ec0 RDI: 0000000000000005 [ 676.031553][T20216] RBP: 00007f410c2327e0 R08: 0000000000000000 R09: 0000000000000000 [ 676.031562][T20216] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 676.031571][T20216] R13: 00007f410c416038 R14: 00007f410c415fa0 R15: 00007ffdaf3eb6f8 [ 676.031591][T20216] [ 678.138876][T20280] FAULT_INJECTION: forcing a failure. [ 678.138876][T20280] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 678.206853][T20280] CPU: 0 UID: 0 PID: 20280 Comm: syz.1.5410 Tainted: G U L syzkaller #0 PREEMPT(full) [ 678.206883][T20280] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 678.206889][T20280] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 678.206898][T20280] Call Trace: [ 678.206904][T20280] [ 678.206910][T20280] dump_stack_lvl+0x100/0x190 [ 678.206937][T20280] should_fail_ex.cold+0x5/0xa [ 678.206953][T20280] ? prepare_alloc_pages+0x16d/0x5f0 [ 678.206979][T20280] should_fail_alloc_page+0xeb/0x140 [ 678.207002][T20280] prepare_alloc_pages+0x1f0/0x5f0 [ 678.207026][T20280] ? arch_stack_walk+0xa6/0xf0 [ 678.207042][T20280] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 678.207067][T20280] ? stack_trace_save+0x8e/0xc0 [ 678.207090][T20280] ? __pfx_stack_trace_save+0x10/0x10 [ 678.207113][T20280] ? stack_depot_save_flags+0x27/0x9d0 [ 678.207131][T20280] ? __lock_acquire+0x4a5/0x2630 [ 678.207150][T20280] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 678.207173][T20280] ? kasan_save_stack+0x3f/0x50 [ 678.207192][T20280] ? kasan_save_stack+0x30/0x50 [ 678.207217][T20280] ? __kasan_slab_alloc+0x89/0x90 [ 678.207238][T20280] ? __pmd_alloc+0xbf/0x9c0 [ 678.207252][T20280] ? copy_page_range+0x4531/0x6570 [ 678.207268][T20280] ? dup_mmap+0xc00/0x1db0 [ 678.207282][T20280] ? copy_process+0x73d1/0x7a10 [ 678.207299][T20280] ? kernel_clone+0xfc/0x9a0 [ 678.207314][T20280] ? __do_sys_clone+0xd9/0x120 [ 678.207330][T20280] ? do_syscall_64+0x106/0xf80 [ 678.207349][T20280] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 678.207373][T20280] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 678.207397][T20280] ? policy_nodemask+0xed/0x4f0 [ 678.207422][T20280] alloc_pages_mpol+0x1fb/0x550 [ 678.207444][T20280] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 678.207471][T20280] alloc_pages_noprof+0x131/0x390 [ 678.207494][T20280] pte_alloc_one+0x1e/0x3e0 [ 678.207510][T20280] __pte_alloc+0x6d/0x3f0 [ 678.207531][T20280] ? __pfx___pte_alloc+0x10/0x10 [ 678.207552][T20280] ? _raw_spin_unlock+0x28/0x50 [ 678.207568][T20280] ? __pmd_alloc+0x6aa/0x9c0 [ 678.207584][T20280] copy_page_range+0x3e51/0x6570 [ 678.207623][T20280] ? __pfx_copy_page_range+0x10/0x10 [ 678.207644][T20280] ? mas_store+0x666/0xac0 [ 678.207667][T20280] ? __pfx_mas_store+0x10/0x10 [ 678.207692][T20280] ? __pfx___vma_start_write+0x10/0x10 [ 678.207714][T20280] dup_mmap+0xc00/0x1db0 [ 678.207736][T20280] ? __pfx_dup_mmap+0x10/0x10 [ 678.207749][T20280] ? rcu_is_watching+0x12/0xc0 [ 678.207782][T20280] copy_process+0x73d1/0x7a10 [ 678.207809][T20280] ? __pfx_copy_process+0x10/0x10 [ 678.207825][T20280] ? find_held_lock+0x2b/0x80 [ 678.207850][T20280] ? futex_private_hash_put+0x107/0x1c0 [ 678.207870][T20280] kernel_clone+0xfc/0x9a0 [ 678.207888][T20280] ? __pfx_kernel_clone+0x10/0x10 [ 678.207915][T20280] __do_sys_clone+0xd9/0x120 [ 678.207932][T20280] ? __pfx___do_sys_clone+0x10/0x10 [ 678.207965][T20280] do_syscall_64+0x106/0xf80 [ 678.207983][T20280] ? clear_bhb_loop+0x40/0x90 [ 678.208001][T20280] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 678.208016][T20280] RIP: 0033:0x7f410c19bf79 [ 678.208031][T20280] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 678.208046][T20280] RSP: 002b:00007f410d08afd8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 678.208062][T20280] RAX: ffffffffffffffda RBX: 00007f410c415fa0 RCX: 00007f410c19bf79 [ 678.208072][T20280] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000004001000 [ 678.208082][T20280] RBP: 00007f410c2327e0 R08: 0000000000000000 R09: 0000000000000000 [ 678.208091][T20280] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 678.208101][T20280] R13: 00007f410c416038 R14: 00007f410c415fa0 R15: 00007ffdaf3eb6f8 [ 678.208121][T20280] [ 679.419814][ T5832] Bluetooth: hci0: unexpected event 0x1c length: 725 > 5 [ 680.015064][T20339] type: 65536 invalid [ 680.231854][T20344] FAULT_INJECTION: forcing a failure. [ 680.231854][T20344] name failslab, interval 1, probability 0, space 0, times 0 [ 680.286381][T20344] CPU: 0 UID: 0 PID: 20344 Comm: syz.1.5427 Tainted: G U L syzkaller #0 PREEMPT(full) [ 680.286411][T20344] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 680.286417][T20344] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 680.286426][T20344] Call Trace: [ 680.286432][T20344] [ 680.286438][T20344] dump_stack_lvl+0x100/0x190 [ 680.286465][T20344] should_fail_ex.cold+0x5/0xa [ 680.286486][T20344] ? constrain_params_by_rules+0x175/0xcc0 [ 680.286504][T20344] should_failslab+0xc2/0x120 [ 680.286528][T20344] __kmalloc_noprof+0xe0/0x850 [ 680.286546][T20344] ? unwind_get_return_address+0x59/0xa0 [ 680.286565][T20344] constrain_params_by_rules+0x175/0xcc0 [ 680.286587][T20344] ? stack_trace_save+0x8e/0xc0 [ 680.286612][T20344] ? __pfx_constrain_params_by_rules+0x10/0x10 [ 680.286633][T20344] ? __kasan_kmalloc+0xaa/0xb0 [ 680.286651][T20344] ? snd_pcm_oss_change_params_locked+0x81c/0x39f0 [ 680.286666][T20344] ? snd_pcm_oss_make_ready_locked+0xb7/0x130 [ 680.286680][T20344] ? snd_pcm_oss_sync+0x265/0x840 [ 680.286701][T20344] ? snd_interval_refine+0x2d0/0x580 [ 680.286723][T20344] snd_pcm_hw_refine+0x7e7/0xad0 [ 680.286743][T20344] ? __pfx_snd_pcm_hw_refine+0x10/0x10 [ 680.286769][T20344] ? snd_interval_refine+0x2d0/0x580 [ 680.286790][T20344] snd_pcm_oss_change_params_locked+0xdb3/0x39f0 [ 680.286813][T20344] ? snd_pcm_oss_sync+0x243/0x840 [ 680.286827][T20344] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 680.286845][T20344] ? __pfx___mutex_lock+0x10/0x10 [ 680.286876][T20344] snd_pcm_oss_make_ready_locked+0xb7/0x130 [ 680.286893][T20344] snd_pcm_oss_sync+0x265/0x840 [ 680.286911][T20344] snd_pcm_oss_release+0x238/0x300 [ 680.286926][T20344] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 680.286942][T20344] __fput+0x3ff/0xb40 [ 680.286960][T20344] task_work_run+0x150/0x240 [ 680.286981][T20344] ? __pfx_task_work_run+0x10/0x10 [ 680.287006][T20344] exit_to_user_mode_loop+0x100/0x4a0 [ 680.287026][T20344] do_syscall_64+0x668/0xf80 [ 680.287045][T20344] ? clear_bhb_loop+0x40/0x90 [ 680.287070][T20344] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 680.287086][T20344] RIP: 0033:0x7f410c19bf79 [ 680.287100][T20344] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 680.287116][T20344] RSP: 002b:00007f410d08b028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 680.287132][T20344] RAX: 0000000000000000 RBX: 00007f410c415fa0 RCX: 00007f410c19bf79 [ 680.287142][T20344] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 680.287151][T20344] RBP: 00007f410c2327e0 R08: 0000000000000000 R09: 0000000000000000 [ 680.287160][T20344] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 680.287169][T20344] R13: 00007f410c416038 R14: 00007f410c415fa0 R15: 00007ffdaf3eb6f8 [ 680.287189][T20344] [ 681.744379][T20366] netlink: 'syz.1.5436': attribute type 4 has an invalid length. [ 681.973691][T20370] FAULT_INJECTION: forcing a failure. [ 681.973691][T20370] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 682.008032][T20374] ERROR: Out of memory at tomoyo_memory_ok. [ 682.119786][T20382] FAULT_INJECTION: forcing a failure. [ 682.119786][T20382] name failslab, interval 1, probability 0, space 0, times 0 [ 682.136572][T20370] CPU: 0 UID: 0 PID: 20370 Comm: syz.0.5438 Tainted: G U L syzkaller #0 PREEMPT(full) [ 682.136601][T20370] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 682.136607][T20370] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 682.136617][T20370] Call Trace: [ 682.136622][T20370] [ 682.136628][T20370] dump_stack_lvl+0x100/0x190 [ 682.136656][T20370] should_fail_ex.cold+0x5/0xa [ 682.136672][T20370] ? prepare_alloc_pages+0x16d/0x5f0 [ 682.136697][T20370] should_fail_alloc_page+0xeb/0x140 [ 682.136720][T20370] prepare_alloc_pages+0x1f0/0x5f0 [ 682.136746][T20370] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 682.136769][T20370] ? __lock_acquire+0x4a5/0x2630 [ 682.136792][T20370] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 682.136813][T20370] ? do_raw_spin_lock+0x128/0x260 [ 682.136833][T20370] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 682.136853][T20370] ? find_held_lock+0x2b/0x80 [ 682.136880][T20370] ? __lock_acquire+0x4a5/0x2630 [ 682.136897][T20370] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 682.136920][T20370] ? policy_nodemask+0xed/0x4f0 [ 682.136944][T20370] alloc_pages_mpol+0x1fb/0x550 [ 682.136966][T20370] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 682.136987][T20370] ? __folio_batch_add_and_move+0x5e5/0xc60 [ 682.137007][T20370] ? __folio_batch_add_and_move+0x5e5/0xc60 [ 682.137030][T20370] folio_alloc_mpol_noprof+0x36/0x340 [ 682.137046][T20370] shmem_alloc_folio+0x135/0x160 [ 682.137064][T20370] shmem_alloc_and_add_folio+0x371/0xd40 [ 682.137095][T20370] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 682.137117][T20370] ? shmem_allowable_huge_orders+0x2bd/0x400 [ 682.137136][T20370] ? __bpf_trace_sched_util_est_se_tp+0xb0/0xc0 [ 682.137163][T20370] shmem_get_folio_gfp+0x6ab/0x1900 [ 682.137187][T20370] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 682.137208][T20370] ? __pfx___might_resched+0x10/0x10 [ 682.137227][T20370] ? noop_dirty_folio+0xfd/0x160 [ 682.137251][T20370] shmem_fallocate+0x6d7/0x1060 [ 682.137279][T20370] ? __pfx_shmem_fallocate+0x10/0x10 [ 682.137304][T20370] ? __lock_acquire+0x4a5/0x2630 [ 682.137323][T20370] ? __lock_acquire+0x4a5/0x2630 [ 682.137351][T20370] ? __pfx_shmem_fallocate+0x10/0x10 [ 682.137371][T20370] vfs_fallocate+0x576/0x10d0 [ 682.137394][T20370] ? __pfx_vfs_fallocate+0x10/0x10 [ 682.137420][T20370] __x64_sys_fallocate+0xd5/0x140 [ 682.137444][T20370] do_syscall_64+0x106/0xf80 [ 682.137462][T20370] ? clear_bhb_loop+0x40/0x90 [ 682.137482][T20370] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 682.137497][T20370] RIP: 0033:0x7fcab779bf79 [ 682.137511][T20370] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 682.137527][T20370] RSP: 002b:00007fcab871a028 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 682.137541][T20370] RAX: ffffffffffffffda RBX: 00007fcab7a15fa0 RCX: 00007fcab779bf79 [ 682.137551][T20370] RDX: 0000000000000007 RSI: 0000000000000000 RDI: 0000000000000005 [ 682.137559][T20370] RBP: 00007fcab78327e0 R08: 0000000000000000 R09: 0000000000000000 [ 682.137568][T20370] R10: 00000000004cbd5d R11: 0000000000000246 R12: 0000000000000000 [ 682.137577][T20370] R13: 00007fcab7a16038 R14: 00007fcab7a15fa0 R15: 00007ffd3118b428 [ 682.137601][T20370] [ 682.465719][T20382] CPU: 0 UID: 0 PID: 20382 Comm: syz.1.5442 Tainted: G U L syzkaller #0 PREEMPT(full) [ 682.465749][T20382] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 682.465755][T20382] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 682.465764][T20382] Call Trace: [ 682.465770][T20382] [ 682.465776][T20382] dump_stack_lvl+0x100/0x190 [ 682.465803][T20382] should_fail_ex.cold+0x5/0xa [ 682.465822][T20382] should_failslab+0xc2/0x120 [ 682.465854][T20382] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 682.465874][T20382] ? __d_alloc+0x34/0xa80 [ 682.465900][T20382] __d_alloc+0x34/0xa80 [ 682.465920][T20382] ? __pfx_stack_trace_save+0x10/0x10 [ 682.465945][T20382] d_alloc_parallel+0x111/0x14e0 [ 682.465965][T20382] ? kasan_save_stack+0x3f/0x50 [ 682.465983][T20382] ? kasan_save_stack+0x30/0x50 [ 682.466000][T20382] ? kasan_save_track+0x14/0x30 [ 682.466019][T20382] ? __kasan_slab_free+0x5f/0x80 [ 682.466038][T20382] ? path_openat+0x1be/0x31a0 [ 682.466061][T20382] ? __pfx_d_alloc_parallel+0x10/0x10 [ 682.466081][T20382] ? lockdep_init_map_type+0x5c/0x250 [ 682.466100][T20382] ? lockdep_init_map_type+0x5c/0x250 [ 682.466121][T20382] __lookup_slow+0x193/0x460 [ 682.466138][T20382] ? __pfx___lookup_slow+0x10/0x10 [ 682.466169][T20382] lookup_slow+0x50/0x70 [ 682.466185][T20382] link_path_walk+0x1377/0x1cc0 [ 682.466210][T20382] path_openat+0x1be/0x31a0 [ 682.466230][T20382] ? kasan_save_stack+0x3f/0x50 [ 682.466248][T20382] ? kasan_save_stack+0x30/0x50 [ 682.466265][T20382] ? kasan_save_track+0x14/0x30 [ 682.466283][T20382] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 682.466307][T20382] ? __pfx_path_openat+0x10/0x10 [ 682.466335][T20382] do_file_open+0x20e/0x430 [ 682.466357][T20382] ? __pfx_do_file_open+0x10/0x10 [ 682.466385][T20382] ? __pfx_kfree_link+0x10/0x10 [ 682.466411][T20382] ? alloc_fd+0x476/0x790 [ 682.466434][T20382] ? do_getname+0x191/0x390 [ 682.466450][T20382] do_sys_openat2+0x10d/0x1e0 [ 682.466467][T20382] ? __pfx_do_sys_openat2+0x10/0x10 [ 682.466492][T20382] __x64_sys_openat+0x12d/0x210 [ 682.466508][T20382] ? __pfx___x64_sys_openat+0x10/0x10 [ 682.466532][T20382] do_syscall_64+0x106/0xf80 [ 682.466550][T20382] ? clear_bhb_loop+0x40/0x90 [ 682.466573][T20382] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 682.466588][T20382] RIP: 0033:0x7f410c15c84e [ 682.466602][T20382] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 682.466618][T20382] RSP: 002b:00007f410d08aec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 682.466633][T20382] RAX: ffffffffffffffda RBX: 00007f410d08b6c0 RCX: 00007f410c15c84e [ 682.466643][T20382] RDX: 0000000000000002 RSI: 00007f410d08af90 RDI: ffffffffffffff9c [ 682.466653][T20382] RBP: 00007f410c2327e0 R08: 0000000000000000 R09: 0000000000000000 [ 682.466662][T20382] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 682.466671][T20382] R13: 00007f410c416038 R14: 00007f410c415fa0 R15: 00007ffdaf3eb6f8 [ 682.466692][T20382] [ 685.531070][T20454] sp0: Synchronizing with TNC [ 685.841824][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 685.848264][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 686.358751][T20467] FAULT_INJECTION: forcing a failure. [ 686.358751][T20467] name failslab, interval 1, probability 0, space 0, times 0 [ 686.417857][T20467] CPU: 0 UID: 0 PID: 20467 Comm: syz.1.5474 Tainted: G U L syzkaller #0 PREEMPT(full) [ 686.417885][T20467] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 686.417891][T20467] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 686.417901][T20467] Call Trace: [ 686.417908][T20467] [ 686.417914][T20467] dump_stack_lvl+0x100/0x190 [ 686.417941][T20467] should_fail_ex.cold+0x5/0xa [ 686.417959][T20467] should_failslab+0xc2/0x120 [ 686.417982][T20467] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 686.418002][T20467] ? security_inode_alloc+0x3b/0x2c0 [ 686.418018][T20467] ? lockdep_init_map_type+0x5c/0x250 [ 686.418040][T20467] security_inode_alloc+0x3b/0x2c0 [ 686.418056][T20467] inode_init_always_gfp+0xced/0x1040 [ 686.418081][T20467] alloc_inode+0x8e/0x250 [ 686.418097][T20467] new_inode+0x22/0x1c0 [ 686.418115][T20467] proc_pid_make_inode+0x22/0x160 [ 686.418131][T20467] proc_ns_dir_lookup+0x25b/0x390 [ 686.418149][T20467] lookup_open.isra.0+0x631/0x11b0 [ 686.418172][T20467] ? __pfx_lookup_open.isra.0+0x10/0x10 [ 686.418201][T20467] ? mnt_get_write_access+0x1e9/0x2f0 [ 686.418221][T20467] path_openat+0xa98/0x31a0 [ 686.418248][T20467] ? __pfx_path_openat+0x10/0x10 [ 686.418276][T20467] do_file_open+0x20e/0x430 [ 686.418298][T20467] ? __pfx_do_file_open+0x10/0x10 [ 686.418326][T20467] ? __pfx_kfree_link+0x10/0x10 [ 686.418348][T20467] ? alloc_fd+0x476/0x790 [ 686.418370][T20467] ? do_getname+0x191/0x390 [ 686.418387][T20467] do_sys_openat2+0x10d/0x1e0 [ 686.418403][T20467] ? __pfx_do_sys_openat2+0x10/0x10 [ 686.418427][T20467] __x64_sys_openat+0x12d/0x210 [ 686.418443][T20467] ? __pfx___x64_sys_openat+0x10/0x10 [ 686.418467][T20467] do_syscall_64+0x106/0xf80 [ 686.418486][T20467] ? clear_bhb_loop+0x40/0x90 [ 686.418504][T20467] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 686.418520][T20467] RIP: 0033:0x7f410c15c84e [ 686.418534][T20467] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 686.418549][T20467] RSP: 002b:00007f410d08aec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 686.418564][T20467] RAX: ffffffffffffffda RBX: 00007f410d08b6c0 RCX: 00007f410c15c84e [ 686.418574][T20467] RDX: 0000000000000002 RSI: 00007f410d08af90 RDI: ffffffffffffff9c [ 686.418583][T20467] RBP: 00007f410c2327e0 R08: 0000000000000000 R09: 0000000000000000 [ 686.418592][T20467] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 686.418601][T20467] R13: 00007f410c416038 R14: 00007f410c415fa0 R15: 00007ffdaf3eb6f8 [ 686.418621][T20467] [ 687.410277][T20483] netlink: 234 bytes leftover after parsing attributes in process `syz.0.5479'. [ 689.026609][T20508] netlink: 330 bytes leftover after parsing attributes in process `syz.3.5488'. [ 689.610959][T20521] netlink: 338 bytes leftover after parsing attributes in process `syz.3.5491'. [ 689.729858][T20521] netlink: 342 bytes leftover after parsing attributes in process `syz.3.5491'. [ 690.563265][T20532] netlink: 342 bytes leftover after parsing attributes in process `syz.1.5495'. [ 690.645436][T20534] netlink: 342 bytes leftover after parsing attributes in process `syz.1.5495'. [ 690.711353][T20532] IPv6: NLM_F_CREATE should be specified when creating new route [ 690.777867][T20534] IPv6: NLM_F_CREATE should be specified when creating new route [ 690.824160][T20532] IPv6: Can't replace route, no match found [ 690.876820][T20534] IPv6: Can't replace route, no match found [ 693.145378][T20572] ERROR: Out of memory at tomoyo_memory_ok. [ 694.078375][T20579] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 694.200527][T20579] MDS CPU bug present and SMT on, data leak possible. See https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/mds.html for more details. [ 694.256097][T20579] TAA CPU bug present and SMT on, data leak possible. See https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/tsx_async_abort.html for more details. [ 694.357808][T20579] MMIO Stale Data CPU bug present and SMT on, data leak possible. See https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/processor_mmio_stale_data.html for more details. [ 694.578599][T20595] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 694.834002][T20597] netlink: 'syz.2.5515': attribute type 4 has an invalid length. [ 694.843071][T20597] netlink: 314 bytes leftover after parsing attributes in process `syz.2.5515'. [ 695.196566][T20610] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5520'. [ 695.218839][T20612] ERROR: Out of memory at tomoyo_memory_ok. [ 695.222550][T20610] netlink: 354 bytes leftover after parsing attributes in process `syz.2.5520'. [ 695.988439][T20634] netlink: 334 bytes leftover after parsing attributes in process `syz.2.5531'. [ 696.100606][T20636] netlink: 28 bytes leftover after parsing attributes in process `syz.0.5532'. [ 696.132265][T20636] bridge0: port 2(bridge_slave_1) entered disabled state [ 696.179867][T20639] netlink: 'syz.2.5533': attribute type 19 has an invalid length. [ 696.187747][T20639] netlink: 334 bytes leftover after parsing attributes in process `syz.2.5533'. [ 696.201601][T20636] bridge_slave_1 (unregistering): left allmulticast mode [ 696.218752][T20636] bridge_slave_1 (unregistering): left promiscuous mode [ 696.240594][T20636] bridge0: port 2(bridge_slave_1) entered disabled state [ 698.471269][T20678] FAULT_INJECTION: forcing a failure. [ 698.471269][T20678] name failslab, interval 1, probability 0, space 0, times 0 [ 698.553511][T20678] CPU: 0 UID: 0 PID: 20678 Comm: syz.1.5546 Tainted: G U L syzkaller #0 PREEMPT(full) [ 698.553562][T20678] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 698.553573][T20678] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 698.553591][T20678] Call Trace: [ 698.553601][T20678] [ 698.553611][T20678] dump_stack_lvl+0x100/0x190 [ 698.553661][T20678] should_fail_ex.cold+0x5/0xa [ 698.553694][T20678] ? constrain_params_by_rules+0x175/0xcc0 [ 698.553728][T20678] should_failslab+0xc2/0x120 [ 698.553771][T20678] __kmalloc_noprof+0xe0/0x850 [ 698.553808][T20678] ? lockdep_hardirqs_on+0x78/0x100 [ 698.553848][T20678] constrain_params_by_rules+0x175/0xcc0 [ 698.553898][T20678] ? __pfx_constrain_params_by_rules+0x10/0x10 [ 698.553960][T20678] ? __pfx_constrain_params_by_rules+0x10/0x10 [ 698.554012][T20678] ? snd_interval_refine+0x2d0/0x580 [ 698.554056][T20678] snd_pcm_hw_refine+0x7e7/0xad0 [ 698.554096][T20678] ? __pfx_snd_pcm_hw_refine+0x10/0x10 [ 698.554137][T20678] ? __pfx_snd_pcm_hw_refine+0x10/0x10 [ 698.554177][T20678] ? snd_pcm_hw_param_value+0x27b/0x5b0 [ 698.554210][T20678] snd_pcm_hw_param_first+0x2b0/0x680 [ 698.554248][T20678] snd_pcm_hw_params+0x496/0x1cb0 [ 698.554290][T20678] ? __pfx_snd_pcm_hw_params+0x10/0x10 [ 698.554326][T20678] ? snd_pcm_hw_param_near.constprop.0+0x578/0x850 [ 698.554388][T20678] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 698.554444][T20678] snd_pcm_kernel_ioctl+0x167/0x2e0 [ 698.554483][T20678] snd_pcm_oss_change_params_locked+0x1973/0x39f0 [ 698.554532][T20678] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 698.554573][T20678] ? __pfx___mutex_lock+0x10/0x10 [ 698.554634][T20678] snd_pcm_oss_make_ready_locked+0xb7/0x130 [ 698.554669][T20678] snd_pcm_oss_sync+0x265/0x840 [ 698.554704][T20678] snd_pcm_oss_release+0x238/0x300 [ 698.554734][T20678] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 698.554764][T20678] __fput+0x3ff/0xb40 [ 698.554800][T20678] task_work_run+0x150/0x240 [ 698.554840][T20678] ? __pfx_task_work_run+0x10/0x10 [ 698.554889][T20678] exit_to_user_mode_loop+0x100/0x4a0 [ 698.554927][T20678] do_syscall_64+0x668/0xf80 [ 698.554959][T20678] ? clear_bhb_loop+0x40/0x90 [ 698.554992][T20678] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 698.555021][T20678] RIP: 0033:0x7f410c19bf79 [ 698.555047][T20678] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 698.555076][T20678] RSP: 002b:00007f410d08b028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 698.555104][T20678] RAX: 0000000000000000 RBX: 00007f410c415fa0 RCX: 00007f410c19bf79 [ 698.555123][T20678] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 698.555138][T20678] RBP: 00007f410c2327e0 R08: 0000000000000000 R09: 0000000000000000 [ 698.555156][T20678] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 698.555171][T20678] R13: 00007f410c416038 R14: 00007f410c415fa0 R15: 00007ffdaf3eb6f8 [ 698.555211][T20678] [ 699.701077][T20699] FAULT_INJECTION: forcing a failure. [ 699.701077][T20699] name failslab, interval 1, probability 0, space 0, times 0 [ 699.717379][T20699] CPU: 0 UID: 0 PID: 20699 Comm: syz.0.5555 Tainted: G U L syzkaller #0 PREEMPT(full) [ 699.717427][T20699] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 699.717437][T20699] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 699.717452][T20699] Call Trace: [ 699.717461][T20699] [ 699.717471][T20699] dump_stack_lvl+0x100/0x190 [ 699.717516][T20699] should_fail_ex.cold+0x5/0xa [ 699.717547][T20699] should_failslab+0xc2/0x120 [ 699.717587][T20699] __kmalloc_cache_noprof+0x7a/0x6f0 [ 699.717615][T20699] ? copy_mount_options+0x55/0x190 [ 699.717657][T20699] copy_mount_options+0x55/0x190 [ 699.717693][T20699] __x64_sys_mount+0x1ab/0x310 [ 699.717725][T20699] ? __pfx___x64_sys_mount+0x10/0x10 [ 699.717767][T20699] do_syscall_64+0x106/0xf80 [ 699.717804][T20699] ? clear_bhb_loop+0x40/0x90 [ 699.717841][T20699] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 699.717872][T20699] RIP: 0033:0x7fcab779bf79 [ 699.717897][T20699] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 699.717927][T20699] RSP: 002b:00007fcab871a028 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 699.717954][T20699] RAX: ffffffffffffffda RBX: 00007fcab7a15fa0 RCX: 00007fcab779bf79 [ 699.717974][T20699] RDX: 0000200000000240 RSI: 0000000000000000 RDI: 0000200000000180 [ 699.717993][T20699] RBP: 00007fcab78327e0 R08: 0000200000000280 R09: 0000000000000000 [ 699.718012][T20699] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000000 [ 699.718030][T20699] R13: 00007fcab7a16038 R14: 00007fcab7a15fa0 R15: 00007ffd3118b428 [ 699.718069][T20699] [ 700.284294][T20715] netlink: 342 bytes leftover after parsing attributes in process `syz.0.5560'. [ 700.302303][T20715] IPv6: NLM_F_CREATE should be specified when creating new route [ 700.315619][T20715] IPv6: Can't replace route, no match found [ 700.326249][T20715] netlink: 342 bytes leftover after parsing attributes in process `syz.0.5560'. [ 700.335760][T20715] IPv6: Can't replace route, no match found [ 700.712366][T20720] netlink: 342 bytes leftover after parsing attributes in process `syz.2.5562'. [ 701.082635][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 701.371445][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 701.396443][T20753] netlink: 342 bytes leftover after parsing attributes in process `syz.3.5570'. [ 701.416551][T20753] IPv6: NLM_F_CREATE should be specified when creating new route [ 701.431217][T20753] IPv6: Can't replace route, no match found [ 701.443291][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 701.454657][T20753] netlink: 342 bytes leftover after parsing attributes in process `syz.3.5570'. [ 701.485088][T20753] IPv6: Can't replace route, no match found [ 702.789662][T20806] netlink: 'syz.2.5583': attribute type 16 has an invalid length. [ 702.824739][T20806] netlink: 50 bytes leftover after parsing attributes in process `syz.2.5583'. [ 702.940032][T20806] netlink: 'syz.2.5583': attribute type 16 has an invalid length. [ 702.973850][T20806] netlink: 50 bytes leftover after parsing attributes in process `syz.2.5583'. [ 703.733964][T20836] ERROR: Out of memory at tomoyo_memory_ok. [ 704.205777][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 704.302084][T20859] ERROR: Out of memory at tomoyo_memory_ok. [ 704.944309][T20873] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5607'. [ 704.956297][T20873] netlink: 25 bytes leftover after parsing attributes in process `syz.1.5607'. [ 705.369358][T20884] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5609'. [ 705.572773][T20888] netlink: 346 bytes leftover after parsing attributes in process `syz.1.5618'. [ 705.796912][T20897] input: f¬ as /devices/virtual/input/input17 [ 706.570082][T20895] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 706.580830][T20895] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 706.590920][T20895] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 706.599481][T20895] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 706.809433][T20921] syz.0.5623 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 706.994129][ T0] NOHZ tick-stop error: local softirq work is pending, handler #300!!! [ 707.141733][T20902] Process accounting paused [ 707.165122][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 707.284791][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 707.439953][T20941] netlink: 338 bytes leftover after parsing attributes in process `syz.0.5632'. [ 707.466465][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 707.924478][ T5832] Bluetooth: hci1: command 0x0406 tx timeout [ 708.644745][ T5832] Bluetooth: hci0: command 0x0406 tx timeout [ 708.644833][T18147] Bluetooth: hci3: command 0x2016 tx timeout [ 708.652256][ T5832] Bluetooth: hci2: command 0x0406 tx timeout [ 710.687821][T21027] sp0: Synchronizing with TNC [ 712.637094][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 712.648712][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 713.200015][T21094] netlink: 146 bytes leftover after parsing attributes in process `syz.2.5681'. [ 713.905032][T21101] netlink: 'syz.1.5693': attribute type 1 has an invalid length. [ 713.913057][T21101] netlink: 314 bytes leftover after parsing attributes in process `syz.1.5693'. [ 714.793553][T21121] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5692'. [ 714.849260][T21123] netlink: 17 bytes leftover after parsing attributes in process `syz.3.5692'. [ 715.445915][T21127] ERROR: Out of memory at tomoyo_memory_ok. [ 716.747399][T21157] netlink: 'syz.2.5702': attribute type 20 has an invalid length. [ 716.769346][T21157] netlink: 330 bytes leftover after parsing attributes in process `syz.2.5702'. [ 716.778434][T21157] IPv6: NLM_F_CREATE should be specified when creating new route [ 719.160701][T21197] FAULT_INJECTION: forcing a failure. [ 719.160701][T21197] name failslab, interval 1, probability 0, space 0, times 0 [ 719.181357][T21197] CPU: 0 UID: 0 PID: 21197 Comm: syz.0.5719 Tainted: G U L syzkaller #0 PREEMPT(full) [ 719.181419][T21197] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 719.181432][T21197] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 719.181450][T21197] Call Trace: [ 719.181460][T21197] [ 719.181472][T21197] dump_stack_lvl+0x100/0x190 [ 719.181521][T21197] should_fail_ex.cold+0x5/0xa [ 719.181556][T21197] should_failslab+0xc2/0x120 [ 719.181600][T21197] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 719.181638][T21197] ? __kernfs_new_node+0xd2/0x960 [ 719.181676][T21197] __kernfs_new_node+0xd2/0x960 [ 719.181710][T21197] ? __pfx___kernfs_new_node+0x10/0x10 [ 719.181750][T21197] ? find_held_lock+0x2b/0x80 [ 719.181792][T21197] ? kernfs_root+0xee/0x2a0 [ 719.181819][T21197] ? kernfs_root+0xee/0x2a0 [ 719.181857][T21197] kernfs_new_node+0x11b/0x1a0 [ 719.181898][T21197] __kernfs_create_file+0x53/0x350 [ 719.181941][T21197] sysfs_add_file_mode_ns+0x207/0x3c0 [ 719.181996][T21197] internal_create_group+0x593/0xf40 [ 719.182037][T21197] ? __pfx_internal_create_group+0x10/0x10 [ 719.182076][T21197] ? kernfs_create_link+0x1bd/0x240 [ 719.182122][T21197] internal_create_groups+0x9d/0x150 [ 719.182164][T21197] device_add+0x77a/0x1950 [ 719.182204][T21197] ? __pfx_device_add+0x10/0x10 [ 719.182235][T21197] ? __pfx___might_resched+0x10/0x10 [ 719.182272][T21197] ? lockdep_hardirqs_on+0x78/0x100 [ 719.182323][T21197] __add_disk+0x518/0xe40 [ 719.182364][T21197] add_disk_fwnode+0x118/0x5c0 [ 719.182400][T21197] loop_add+0x90b/0xb60 [ 719.182439][T21197] ? __pfx_loop_add+0x10/0x10 [ 719.182502][T21197] ? find_held_lock+0x2b/0x80 [ 719.182543][T21197] ? __fget_files+0x215/0x3d0 [ 719.182586][T21197] loop_control_ioctl+0xae/0x620 [ 719.182628][T21197] ? __pfx_loop_control_ioctl+0x10/0x10 [ 719.182673][T21197] ? __pfx_loop_control_ioctl+0x10/0x10 [ 719.182716][T21197] __x64_sys_ioctl+0x18e/0x210 [ 719.182755][T21197] do_syscall_64+0x106/0xf80 [ 719.182791][T21197] ? clear_bhb_loop+0x40/0x90 [ 719.182829][T21197] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 719.182859][T21197] RIP: 0033:0x7fcab779bf79 [ 719.182885][T21197] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 719.182914][T21197] RSP: 002b:00007fcab871a028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 719.182942][T21197] RAX: ffffffffffffffda RBX: 00007fcab7a15fa0 RCX: 00007fcab779bf79 [ 719.182963][T21197] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000005 [ 719.182981][T21197] RBP: 00007fcab78327e0 R08: 0000000000000000 R09: 0000000000000000 [ 719.182999][T21197] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 719.183017][T21197] R13: 00007fcab7a16038 R14: 00007fcab7a15fa0 R15: 00007ffd3118b428 [ 719.183057][T21197] [ 720.338083][T21213] netlink: 342 bytes leftover after parsing attributes in process `syz.2.5724'. [ 720.367633][T21213] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 720.374980][T21213] IPv6: NLM_F_CREATE should be set when creating new route [ 720.382355][T21213] IPv6: NLM_F_CREATE should be set when creating new route [ 721.351489][T21244] netlink: 346 bytes leftover after parsing attributes in process `syz.3.5733'. [ 721.555696][T21247] netlink: 334 bytes leftover after parsing attributes in process `syz.3.5734'. [ 721.733415][T21251] netlink: 504 bytes leftover after parsing attributes in process `syz.3.5736'. [ 721.762639][T21251] netlink: 504 bytes leftover after parsing attributes in process `syz.3.5736'. [ 722.987789][T21271] FAULT_INJECTION: forcing a failure. [ 722.987789][T21271] name failslab, interval 1, probability 0, space 0, times 0 [ 723.001918][T21271] CPU: 0 UID: 0 PID: 21271 Comm: syz.1.5742 Tainted: G U L syzkaller #0 PREEMPT(full) [ 723.001968][T21271] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 723.001980][T21271] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 723.001997][T21271] Call Trace: [ 723.002006][T21271] [ 723.002019][T21271] dump_stack_lvl+0x100/0x190 [ 723.002069][T21271] should_fail_ex.cold+0x5/0xa [ 723.002106][T21271] should_failslab+0xc2/0x120 [ 723.002148][T21271] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 723.002185][T21271] ? __kernfs_new_node+0xd2/0x960 [ 723.002223][T21271] __kernfs_new_node+0xd2/0x960 [ 723.002258][T21271] ? __pfx___kernfs_new_node+0x10/0x10 [ 723.002298][T21271] ? find_held_lock+0x2b/0x80 [ 723.002340][T21271] ? kernfs_root+0xee/0x2a0 [ 723.002367][T21271] ? kernfs_root+0xee/0x2a0 [ 723.002406][T21271] kernfs_new_node+0x11b/0x1a0 [ 723.002445][T21271] __kernfs_create_file+0x53/0x350 [ 723.002490][T21271] sysfs_add_file_mode_ns+0x207/0x3c0 [ 723.002542][T21271] internal_create_group+0x593/0xf40 [ 723.002583][T21271] ? __pfx_internal_create_group+0x10/0x10 [ 723.002621][T21271] ? kernfs_create_link+0x1bd/0x240 [ 723.002666][T21271] internal_create_groups+0x9d/0x150 [ 723.002702][T21271] device_add+0x77a/0x1950 [ 723.002740][T21271] ? __pfx_device_add+0x10/0x10 [ 723.002780][T21271] ? __pfx___might_resched+0x10/0x10 [ 723.002819][T21271] ? lockdep_hardirqs_on+0x78/0x100 [ 723.002871][T21271] __add_disk+0x518/0xe40 [ 723.002910][T21271] add_disk_fwnode+0x118/0x5c0 [ 723.002946][T21271] loop_add+0x90b/0xb60 [ 723.002986][T21271] ? __pfx_loop_add+0x10/0x10 [ 723.003048][T21271] ? find_held_lock+0x2b/0x80 [ 723.003088][T21271] ? __fget_files+0x215/0x3d0 [ 723.003127][T21271] loop_control_ioctl+0xae/0x620 [ 723.003164][T21271] ? __pfx_loop_control_ioctl+0x10/0x10 [ 723.003205][T21271] ? __pfx_loop_control_ioctl+0x10/0x10 [ 723.003246][T21271] __x64_sys_ioctl+0x18e/0x210 [ 723.003281][T21271] do_syscall_64+0x106/0xf80 [ 723.003312][T21271] ? clear_bhb_loop+0x40/0x90 [ 723.003348][T21271] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 723.003375][T21271] RIP: 0033:0x7f410c19bf79 [ 723.003400][T21271] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 723.003426][T21271] RSP: 002b:00007f410d08b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 723.003453][T21271] RAX: ffffffffffffffda RBX: 00007f410c415fa0 RCX: 00007f410c19bf79 [ 723.003473][T21271] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000005 [ 723.003489][T21271] RBP: 00007f410c2327e0 R08: 0000000000000000 R09: 0000000000000000 [ 723.003505][T21271] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 723.003520][T21271] R13: 00007f410c416038 R14: 00007f410c415fa0 R15: 00007ffdaf3eb6f8 [ 723.003556][T21271] [ 723.680427][T21286] netlink: 342 bytes leftover after parsing attributes in process `syz.0.5750'. [ 723.689958][T21286] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 723.697297][T21286] IPv6: NLM_F_CREATE should be set when creating new route [ 723.704656][T21286] IPv6: NLM_F_CREATE should be set when creating new route [ 723.847506][T21290] FAULT_INJECTION: forcing a failure. [ 723.847506][T21290] name failslab, interval 1, probability 0, space 0, times 0 [ 723.870207][T21290] CPU: 0 UID: 0 PID: 21290 Comm: syz.0.5752 Tainted: G U L syzkaller #0 PREEMPT(full) [ 723.870259][T21290] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 723.870270][T21290] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 723.870285][T21290] Call Trace: [ 723.870294][T21290] [ 723.870305][T21290] dump_stack_lvl+0x100/0x190 [ 723.870351][T21290] should_fail_ex.cold+0x5/0xa [ 723.870383][T21290] should_failslab+0xc2/0x120 [ 723.870436][T21290] __kmalloc_cache_noprof+0x7a/0x6f0 [ 723.870469][T21290] ? snd_seq_fifo_new+0x42/0x270 [ 723.870505][T21290] ? _raw_spin_unlock_irq+0x2e/0x50 [ 723.870542][T21290] ? __pfx_snd_seq_open+0x10/0x10 [ 723.870577][T21290] snd_seq_fifo_new+0x42/0x270 [ 723.870608][T21290] snd_seq_open+0x3fe/0x590 [ 723.870647][T21290] ? __pfx_snd_seq_open+0x10/0x10 [ 723.870681][T21290] snd_open+0x22d/0x4c0 [ 723.870721][T21290] ? __pfx_snd_open+0x10/0x10 [ 723.870760][T21290] chrdev_open+0x234/0x6a0 [ 723.870795][T21290] ? __pfx_apparmor_file_open+0x10/0x10 [ 723.870821][T21290] ? __pfx_chrdev_open+0x10/0x10 [ 723.870857][T21290] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 723.870906][T21290] do_dentry_open+0x6d8/0x1660 [ 723.870943][T21290] ? __pfx_chrdev_open+0x10/0x10 [ 723.870991][T21290] vfs_open+0x82/0x3f0 [ 723.871025][T21290] path_openat+0x208c/0x31a0 [ 723.871077][T21290] ? __pfx_path_openat+0x10/0x10 [ 723.871133][T21290] do_file_open+0x20e/0x430 [ 723.871182][T21290] ? __pfx_do_file_open+0x10/0x10 [ 723.871271][T21290] ? alloc_fd+0x476/0x790 [ 723.871315][T21290] ? do_getname+0x191/0x390 [ 723.871346][T21290] do_sys_openat2+0x10d/0x1e0 [ 723.871377][T21290] ? __pfx_do_sys_openat2+0x10/0x10 [ 723.871424][T21290] __x64_sys_openat+0x12d/0x210 [ 723.871457][T21290] ? __pfx___x64_sys_openat+0x10/0x10 [ 723.871503][T21290] do_syscall_64+0x106/0xf80 [ 723.871539][T21290] ? clear_bhb_loop+0x40/0x90 [ 723.871574][T21290] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 723.871601][T21290] RIP: 0033:0x7fcab779bf79 [ 723.871625][T21290] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 723.871654][T21290] RSP: 002b:00007fcab871a028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 723.871686][T21290] RAX: ffffffffffffffda RBX: 00007fcab7a15fa0 RCX: 00007fcab779bf79 [ 723.871706][T21290] RDX: 00000000001e3800 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 723.871725][T21290] RBP: 00007fcab78327e0 R08: 0000000000000000 R09: 0000000000000000 [ 723.871744][T21290] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 723.871760][T21290] R13: 00007fcab7a16038 R14: 00007fcab7a15fa0 R15: 00007ffd3118b428 [ 723.871800][T21290] [ 724.175459][T21292] netlink: 'syz.3.5753': attribute type 21 has an invalid length. [ 724.183487][T21292] netlink: 334 bytes leftover after parsing attributes in process `syz.3.5753'. [ 724.486690][T21305] netlink: 146 bytes leftover after parsing attributes in process `syz.2.5759'. [ 724.755824][T21312] netlink: 146 bytes leftover after parsing attributes in process `syz.2.5761'. [ 724.865923][T21321] netlink: 146 bytes leftover after parsing attributes in process `syz.1.5763'. [ 726.570501][T21365] ERROR: Out of memory at tomoyo_memory_ok. [ 727.149986][T21367] blktrace: Concurrent blktraces are not allowed on sda1 [ 730.222442][T21437] serio: Serial port ttyS2 [ 730.882718][T21455] ref_tracker: memory allocation failure, unreliable refcount tracker. [ 731.227133][T21465] netlink: 146 bytes leftover after parsing attributes in process `syz.3.5813'. [ 732.774667][T21499] futex_wake_op: syz.2.5825 tries to shift op by -2048; fix this program [ 732.848554][T21499] futex_wake_op: syz.2.5825 tries to shift op by -2048; fix this program [ 732.897653][T21502] 0x000000000001-0x000000020000 : "" [ 732.939093][T21504] FAULT_INJECTION: forcing a failure. [ 732.939093][T21504] name failslab, interval 1, probability 0, space 0, times 0 [ 732.952730][T21504] CPU: 0 UID: 0 PID: 21504 Comm: syz.0.5827 Tainted: G U L syzkaller #0 PREEMPT(full) [ 732.952778][T21504] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 732.952790][T21504] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 732.952808][T21504] Call Trace: [ 732.952817][T21504] [ 732.952829][T21504] dump_stack_lvl+0x100/0x190 [ 732.952877][T21504] should_fail_ex.cold+0x5/0xa [ 732.952910][T21504] should_failslab+0xc2/0x120 [ 732.952956][T21504] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 732.952994][T21504] ? hugetlbfs_alloc_inode+0x8c/0x1d0 [ 732.953041][T21504] hugetlbfs_alloc_inode+0x8c/0x1d0 [ 732.953076][T21504] ? __pfx_hugetlbfs_alloc_inode+0x10/0x10 [ 732.953113][T21504] alloc_inode+0x68/0x250 [ 732.953147][T21504] new_inode+0x22/0x1c0 [ 732.953181][T21504] hugetlbfs_get_inode+0x313/0x750 [ 732.953218][T21504] ? do_raw_spin_unlock+0x145/0x1e0 [ 732.953262][T21504] hugetlb_file_setup+0x15b/0x5b0 [ 732.953303][T21504] memfd_alloc_file+0x61/0x580 [ 732.953341][T21504] __do_sys_memfd_create+0x23c/0x3d0 [ 732.953377][T21504] do_syscall_64+0x106/0xf80 [ 732.953413][T21504] ? clear_bhb_loop+0x40/0x90 [ 732.953450][T21504] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 732.953489][T21504] RIP: 0033:0x7fcab779bf79 [ 732.953513][T21504] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 732.953543][T21504] RSP: 002b:00007fcab871a028 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 732.953570][T21504] RAX: ffffffffffffffda RBX: 00007fcab7a15fa0 RCX: 00007fcab779bf79 [ 732.953590][T21504] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000200000000300 [ 732.953608][T21504] RBP: 00007fcab78327e0 R08: 0000000000000000 R09: 0000000000000000 [ 732.953626][T21504] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 732.953644][T21504] R13: 00007fcab7a16038 R14: 00007fcab7a15fa0 R15: 00007ffd3118b428 [ 732.953682][T21504] [ 733.270305][T21502] ftl_cs: FTL header corrupt! [ 733.412524][T21506] ERROR: Out of memory at tomoyo_memory_ok. [ 735.295139][ C1] vcan0: j1939_tp_rxtimer: 0xffff88803308d800: rx timeout, send abort [ 735.306400][ C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88803308d800: 0x0ffff: (3) A timeout occurred and this is the connection abort to close the session. [ 736.104573][T21568] FAULT_INJECTION: forcing a failure. [ 736.104573][T21568] name failslab, interval 1, probability 0, space 0, times 0 [ 736.148860][T21568] CPU: 1 UID: 0 PID: 21568 Comm: syz.1.5849 Tainted: G U L syzkaller #0 PREEMPT(full) [ 736.148911][T21568] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 736.148924][T21568] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 736.148942][T21568] Call Trace: [ 736.148953][T21568] [ 736.148965][T21568] dump_stack_lvl+0x100/0x190 [ 736.149014][T21568] should_fail_ex.cold+0x5/0xa [ 736.149048][T21568] should_failslab+0xc2/0x120 [ 736.149098][T21568] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 736.149136][T21568] ? __anon_vma_prepare+0x344/0x5e0 [ 736.149178][T21568] __anon_vma_prepare+0x344/0x5e0 [ 736.149209][T21568] ? __pfx___pte_alloc+0x10/0x10 [ 736.149258][T21568] __vmf_anon_prepare+0x11f/0x250 [ 736.149306][T21568] do_anonymous_page+0x552/0x1fb0 [ 736.149342][T21568] ? do_raw_spin_unlock+0x145/0x1e0 [ 736.149393][T21568] ? __pmd_alloc+0x6aa/0x9c0 [ 736.149425][T21568] __handle_mm_fault+0x1d42/0x2b60 [ 736.149466][T21568] ? mt_find+0x45e/0x8e0 [ 736.149507][T21568] ? __pfx___handle_mm_fault+0x10/0x10 [ 736.149538][T21568] ? __pfx_mt_find+0x10/0x10 [ 736.149607][T21568] handle_mm_fault+0x36d/0xa20 [ 736.149649][T21568] __get_user_pages+0xf9c/0x34d0 [ 736.149708][T21568] ? __pfx___get_user_pages+0x10/0x10 [ 736.149764][T21568] populate_vma_page_range+0x267/0x3f0 [ 736.149796][T21568] ? __pfx_populate_vma_page_range+0x10/0x10 [ 736.149825][T21568] ? __pfx_find_vma_intersection+0x10/0x10 [ 736.149870][T21568] ? do_mmap+0x93f/0x12f0 [ 736.149918][T21568] __mm_populate+0x107/0x3a0 [ 736.149949][T21568] ? __pfx___mm_populate+0x10/0x10 [ 736.149998][T21568] ? up_write+0x290/0x4f0 [ 736.150041][T21568] vm_mmap_pgoff+0x37f/0x470 [ 736.150092][T21568] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 736.150134][T21568] ? __pfx___might_resched+0x10/0x10 [ 736.150172][T21568] ? blkcg_maybe_throttle_current+0x5df/0xeb0 [ 736.150219][T21568] ? __x64_sys_futex+0x34f/0x4d0 [ 736.150257][T21568] ? __x64_sys_futex+0x358/0x4d0 [ 736.150302][T21568] ksys_mmap_pgoff+0x7d/0x5b0 [ 736.150351][T21568] __x64_sys_mmap+0x125/0x190 [ 736.150405][T21568] do_syscall_64+0x106/0xf80 [ 736.150443][T21568] ? clear_bhb_loop+0x40/0x90 [ 736.150478][T21568] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 736.150508][T21568] RIP: 0033:0x7f410c19bf79 [ 736.150535][T21568] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 736.150563][T21568] RSP: 002b:00007f410d08b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 736.150592][T21568] RAX: ffffffffffffffda RBX: 00007f410c415fa0 RCX: 00007f410c19bf79 [ 736.150610][T21568] RDX: 00000000000000df RSI: 0000000000040009 RDI: 0000000000000000 [ 736.150625][T21568] RBP: 00007f410c2327e0 R08: 0000000000000007 R09: 0000000000028000 [ 736.150640][T21568] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 736.150655][T21568] R13: 00007f410c416038 R14: 00007f410c415fa0 R15: 00007ffdaf3eb6f8 [ 736.150687][T21568] [ 736.151929][T21572] netlink: 342 bytes leftover after parsing attributes in process `syz.2.5851'. [ 736.210662][T21573] netlink: 342 bytes leftover after parsing attributes in process `syz.2.5851'. [ 736.570796][T21578] random: crng reseeded on system resumption [ 736.593504][T21578] FAULT_INJECTION: forcing a failure. [ 736.593504][T21578] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 736.623611][T21578] CPU: 1 UID: 0 PID: 21578 Comm: syz.0.5854 Tainted: G U L syzkaller #0 PREEMPT(full) [ 736.623663][T21578] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 736.623675][T21578] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 736.623694][T21578] Call Trace: [ 736.623704][T21578] [ 736.623714][T21578] dump_stack_lvl+0x100/0x190 [ 736.623764][T21578] should_fail_ex.cold+0x5/0xa [ 736.623794][T21578] ? prepare_alloc_pages+0x16d/0x5f0 [ 736.623842][T21578] should_fail_alloc_page+0xeb/0x140 [ 736.623887][T21578] prepare_alloc_pages+0x1f0/0x5f0 [ 736.623939][T21578] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 736.623980][T21578] ? __alloc_frozen_pages_noprof+0x2b1/0x2ba0 [ 736.624031][T21578] ? stack_trace_save+0x8e/0xc0 [ 736.624087][T21578] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 736.624126][T21578] ? stack_depot_save_flags+0x27/0x9d0 [ 736.624165][T21578] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 736.624207][T21578] ? kasan_save_stack+0x3f/0x50 [ 736.624243][T21578] ? kasan_save_stack+0x30/0x50 [ 736.624278][T21578] ? kasan_save_track+0x14/0x30 [ 736.624322][T21578] ? do_sys_openat2+0x10d/0x1e0 [ 736.624351][T21578] ? __x64_sys_openat+0x12d/0x210 [ 736.624380][T21578] ? do_syscall_64+0x106/0xf80 [ 736.624416][T21578] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 736.624447][T21578] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 736.624488][T21578] ? policy_nodemask+0xed/0x4f0 [ 736.624533][T21578] alloc_pages_mpol+0x1fb/0x550 [ 736.624576][T21578] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 736.624620][T21578] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 736.624668][T21578] alloc_pages_noprof+0x131/0x390 [ 736.624713][T21578] get_zeroed_page_noprof+0x18/0xb0 [ 736.624757][T21578] get_image_page+0x18/0x1a0 [ 736.624800][T21578] alloc_rtree_node+0x3c/0xb0 [ 736.624843][T21578] memory_bm_create+0x65e/0xba0 [ 736.624902][T21578] create_basic_memory_bitmaps+0xbd/0x350 [ 736.624954][T21578] snapshot_open+0x230/0x2a0 [ 736.624983][T21578] ? __pfx_snapshot_open+0x10/0x10 [ 736.625015][T21578] misc_open+0x26d/0x450 [ 736.625049][T21578] ? __pfx_misc_open+0x10/0x10 [ 736.625091][T21578] chrdev_open+0x234/0x6a0 [ 736.625133][T21578] ? __pfx_apparmor_file_open+0x10/0x10 [ 736.625164][T21578] ? __pfx_chrdev_open+0x10/0x10 [ 736.625207][T21578] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 736.625257][T21578] do_dentry_open+0x6d8/0x1660 [ 736.625297][T21578] ? __pfx_chrdev_open+0x10/0x10 [ 736.625346][T21578] vfs_open+0x82/0x3f0 [ 736.625381][T21578] path_openat+0x208c/0x31a0 [ 736.625436][T21578] ? __pfx_path_openat+0x10/0x10 [ 736.625491][T21578] do_file_open+0x20e/0x430 [ 736.625534][T21578] ? __pfx_do_file_open+0x10/0x10 [ 736.625596][T21578] ? alloc_fd+0x476/0x790 [ 736.625640][T21578] ? do_getname+0x191/0x390 [ 736.625673][T21578] do_sys_openat2+0x10d/0x1e0 [ 736.625704][T21578] ? __pfx_do_sys_openat2+0x10/0x10 [ 736.625738][T21578] ? find_held_lock+0x2b/0x80 [ 736.625791][T21578] __x64_sys_openat+0x12d/0x210 [ 736.625824][T21578] ? __pfx___x64_sys_openat+0x10/0x10 [ 736.625867][T21578] do_syscall_64+0x106/0xf80 [ 736.625904][T21578] ? clear_bhb_loop+0x40/0x90 [ 736.625940][T21578] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 736.625971][T21578] RIP: 0033:0x7fcab779bf79 [ 736.625996][T21578] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 736.626025][T21578] RSP: 002b:00007fcab871a028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 736.626053][T21578] RAX: ffffffffffffffda RBX: 00007fcab7a15fa0 RCX: 00007fcab779bf79 [ 736.626082][T21578] RDX: 0000000000008001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 736.626101][T21578] RBP: 00007fcab78327e0 R08: 0000000000000000 R09: 0000000000000000 [ 736.626120][T21578] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 736.626138][T21578] R13: 00007fcab7a16038 R14: 00007fcab7a15fa0 R15: 00007ffd3118b428 [ 736.626178][T21578] [ 737.300332][T21588] netlink: 334 bytes leftover after parsing attributes in process `syz.3.5858'. [ 737.487969][T21582] Process accounting resumed [ 737.778662][T21591] zswap: compressor not available [ 738.163678][T21608] ERROR: Out of memory at tomoyo_memory_ok. [ 740.674505][T21647] netlink: 322 bytes leftover after parsing attributes in process `syz.3.5873'. [ 740.681969][T21649] netlink: 330 bytes leftover after parsing attributes in process `syz.2.5874'. [ 740.836644][T21653] netlink: 334 bytes leftover after parsing attributes in process `syz.1.5875'. [ 744.071551][T21687] netlink: 146 bytes leftover after parsing attributes in process `syz.3.5888'. [ 744.433995][T21697] netlink: 186 bytes leftover after parsing attributes in process `syz.3.5890'. [ 744.690892][T21705] raw_sendmsg: syz.3.5896 forgot to set AF_INET. Fix it! [ 744.703022][T21706] futex_wake_op: syz.1.5895 tries to shift op by -2048; fix this program [ 744.721564][T21706] futex_wake_op: syz.1.5895 tries to shift op by -2048; fix this program [ 744.745588][T21706] 0x000000000001-0x000000020000 : "" [ 744.807118][T21706] ftl_cs: FTL header corrupt! [ 744.952154][T21708] ERROR: Out of memory at tomoyo_memory_ok. [ 746.188510][T21727] random: crng reseeded on system resumption [ 746.346676][T21734] netlink: 330 bytes leftover after parsing attributes in process `syz.3.5904'. [ 746.613118][T21738] zswap: compressor not available [ 747.309689][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 747.316221][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 747.698220][T21765] zswap: compressor not available [ 748.809930][T21820] netlink: 334 bytes leftover after parsing attributes in process `syz.3.5934'. [ 749.062301][T21832] netlink: 342 bytes leftover after parsing attributes in process `syz.3.5938'. [ 749.330114][T21838] ERROR: Out of memory at tomoyo_memory_ok. [ 749.498068][T21844] netlink: 334 bytes leftover after parsing attributes in process `syz.3.5940'. [ 749.831392][T21853] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5942'. [ 749.867662][T21853] netlink: 25 bytes leftover after parsing attributes in process `syz.0.5942'. [ 750.072102][T21863] FAULT_INJECTION: forcing a failure. [ 750.072102][T21863] name failslab, interval 1, probability 0, space 0, times 0 [ 750.115427][T21863] CPU: 0 UID: 0 PID: 21863 Comm: syz.1.5945 Tainted: G U L syzkaller #0 PREEMPT(full) [ 750.115480][T21863] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 750.115492][T21863] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 750.115511][T21863] Call Trace: [ 750.115521][T21863] [ 750.115533][T21863] dump_stack_lvl+0x100/0x190 [ 750.115582][T21863] should_fail_ex.cold+0x5/0xa [ 750.115625][T21863] should_failslab+0xc2/0x120 [ 750.115669][T21863] __kmalloc_cache_noprof+0x7a/0x6f0 [ 750.115700][T21863] ? snd_timer_user_open+0x6b/0x180 [ 750.115736][T21863] ? __pfx_snd_timer_user_open+0x10/0x10 [ 750.115769][T21863] snd_timer_user_open+0x6b/0x180 [ 750.115800][T21863] snd_open+0x22d/0x4c0 [ 750.115843][T21863] ? __pfx_snd_open+0x10/0x10 [ 750.115883][T21863] chrdev_open+0x234/0x6a0 [ 750.115923][T21863] ? __pfx_apparmor_file_open+0x10/0x10 [ 750.115953][T21863] ? __pfx_chrdev_open+0x10/0x10 [ 750.115993][T21863] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 750.116034][T21863] do_dentry_open+0x6d8/0x1660 [ 750.116070][T21863] ? __pfx_chrdev_open+0x10/0x10 [ 750.116114][T21863] vfs_open+0x82/0x3f0 [ 750.116148][T21863] path_openat+0x208c/0x31a0 [ 750.116201][T21863] ? __pfx_path_openat+0x10/0x10 [ 750.116255][T21863] do_file_open+0x20e/0x430 [ 750.116299][T21863] ? __pfx_do_file_open+0x10/0x10 [ 750.116366][T21863] ? alloc_fd+0x476/0x790 [ 750.116410][T21863] ? do_getname+0x191/0x390 [ 750.116443][T21863] do_sys_openat2+0x10d/0x1e0 [ 750.116481][T21863] ? __pfx_do_sys_openat2+0x10/0x10 [ 750.116516][T21863] ? __fget_files+0x21f/0x3d0 [ 750.116563][T21863] __x64_sys_openat+0x12d/0x210 [ 750.116597][T21863] ? __pfx___x64_sys_openat+0x10/0x10 [ 750.116651][T21863] do_syscall_64+0x106/0xf80 [ 750.116689][T21863] ? clear_bhb_loop+0x40/0x90 [ 750.116725][T21863] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 750.116755][T21863] RIP: 0033:0x7f410c19bf79 [ 750.116780][T21863] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 750.116809][T21863] RSP: 002b:00007f410d08b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 750.116838][T21863] RAX: ffffffffffffffda RBX: 00007f410c415fa0 RCX: 00007f410c19bf79 [ 750.116859][T21863] RDX: 0000000000000000 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 750.116876][T21863] RBP: 00007f410c2327e0 R08: 0000000000000000 R09: 0000000000000000 [ 750.116894][T21863] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 750.116910][T21863] R13: 00007f410c416038 R14: 00007f410c415fa0 R15: 00007ffdaf3eb6f8 [ 750.116949][T21863] [ 751.723832][T21893] netlink: 318 bytes leftover after parsing attributes in process `syz.2.5952'. [ 755.640840][T21993] ima: policy update failed [ 755.645659][ T29] audit: type=1802 audit(4294977742.035:27): pid=21993 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.5988" res=0 errno=0 [ 756.688288][T22007] netlink: 342 bytes leftover after parsing attributes in process `syz.2.5993'. [ 758.170344][T22048] netlink: 338 bytes leftover after parsing attributes in process `syz.1.6006'. [ 758.202819][T22048] bridge0: port 3(bond0) entered disabled state [ 758.209610][T22048] bridge0: port 2(bridge_slave_1) entered disabled state [ 758.217025][T22048] bridge0: port 1(bridge_slave_0) entered disabled state [ 758.360198][T22057] netlink: 21 bytes leftover after parsing attributes in process `syz.1.6008'. [ 758.817387][T22064] ERROR: Out of memory at tomoyo_memory_ok. [ 759.558000][T22087] sd 0:0:1:0: device reset [ 759.707241][T22091] netlink: 'syz.0.6018': attribute type 4 has an invalid length. [ 759.715111][T22091] netlink: 314 bytes leftover after parsing attributes in process `syz.0.6018'. [ 759.725107][T22091] IPv6: Can't replace route, no match found [ 760.458369][T22113] ERROR: Out of memory at tomoyo_memory_ok. [ 762.291264][T22160] FAULT_INJECTION: forcing a failure. [ 762.291264][T22160] name failslab, interval 1, probability 0, space 0, times 0 [ 762.346176][T22160] CPU: 0 UID: 0 PID: 22160 Comm: syz.1.6032 Tainted: G U L syzkaller #0 PREEMPT(full) [ 762.346223][T22160] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 762.346234][T22160] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 762.346250][T22160] Call Trace: [ 762.346259][T22160] [ 762.346270][T22160] dump_stack_lvl+0x100/0x190 [ 762.346313][T22160] should_fail_ex.cold+0x5/0xa [ 762.346343][T22160] ? __register_sysctl_table+0xbe4/0x1650 [ 762.346375][T22160] should_failslab+0xc2/0x120 [ 762.346413][T22160] __kmalloc_noprof+0xe0/0x850 [ 762.346453][T22160] __register_sysctl_table+0xbe4/0x1650 [ 762.346497][T22160] ? __pfx___register_sysctl_table+0x10/0x10 [ 762.346526][T22160] ? is_module_address+0x69/0xf0 [ 762.346555][T22160] ? register_net_sysctl_sz+0x222/0x430 [ 762.346599][T22160] __devinet_sysctl_register+0x1b9/0x360 [ 762.346647][T22160] ? trace_kmalloc+0x101/0x130 [ 762.346685][T22160] ? __pfx___devinet_sysctl_register+0x10/0x10 [ 762.346728][T22160] ? __asan_memcpy+0x3c/0x60 [ 762.346759][T22160] devinet_init_net+0x303/0x8d0 [ 762.346798][T22160] ? __pfx_devinet_init_net+0x10/0x10 [ 762.346833][T22160] ops_init+0x1e2/0x5f0 [ 762.346869][T22160] setup_net+0x118/0x3a0 [ 762.346902][T22160] ? __pfx_setup_net+0x10/0x10 [ 762.346932][T22160] ? lockdep_init_map_type+0x5c/0x250 [ 762.346963][T22160] ? mutex_init_lockep+0x110/0x150 [ 762.346999][T22160] copy_net_ns+0x46f/0x7c0 [ 762.347036][T22160] create_new_namespaces+0x3ea/0xac0 [ 762.347082][T22160] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 762.347111][T22160] ksys_unshare+0x455/0xab0 [ 762.347143][T22160] ? __pfx_ksys_unshare+0x10/0x10 [ 762.347204][T22160] __x64_sys_unshare+0x31/0x40 [ 762.347234][T22160] do_syscall_64+0x106/0xf80 [ 762.347267][T22160] ? clear_bhb_loop+0x40/0x90 [ 762.347298][T22160] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 762.347323][T22160] RIP: 0033:0x7f410c19bf79 [ 762.347344][T22160] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 762.347369][T22160] RSP: 002b:00007f410d08b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 762.347394][T22160] RAX: ffffffffffffffda RBX: 00007f410c415fa0 RCX: 00007f410c19bf79 [ 762.347412][T22160] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 762.347429][T22160] RBP: 00007f410c2327e0 R08: 0000000000000000 R09: 0000000000000000 [ 762.347445][T22160] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 762.347461][T22160] R13: 00007f410c416038 R14: 00007f410c415fa0 R15: 00007ffdaf3eb6f8 [ 762.347495][T22160] [ 762.361662][T22160] sysctl could not get directory: /net/ipv4 -12 [ 764.486471][T22194] i2c i2c-0: Invalid 7-bit I2C address 0x00 [ 764.882443][T22208] netlink: 28 bytes leftover after parsing attributes in process `syz.3.6050'. [ 764.931731][T22210] FAULT_INJECTION: forcing a failure. [ 764.931731][T22210] name failslab, interval 1, probability 0, space 0, times 0 [ 764.979069][T22210] CPU: 1 UID: 0 PID: 22210 Comm: syz.0.6051 Tainted: G U L syzkaller #0 PREEMPT(full) [ 764.979130][T22210] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 764.979141][T22210] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 764.979159][T22210] Call Trace: [ 764.979169][T22210] [ 764.979181][T22210] dump_stack_lvl+0x100/0x190 [ 764.979228][T22210] should_fail_ex.cold+0x5/0xa [ 764.979261][T22210] should_failslab+0xc2/0x120 [ 764.979305][T22210] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 764.979341][T22210] ? alloc_empty_file+0x55/0x1c0 [ 764.979371][T22210] ? __pfx_stack_trace_save+0x10/0x10 [ 764.979420][T22210] alloc_empty_file+0x55/0x1c0 [ 764.979451][T22210] path_openat+0xe8/0x31a0 [ 764.979486][T22210] ? kasan_save_stack+0x3f/0x50 [ 764.979521][T22210] ? kasan_save_stack+0x30/0x50 [ 764.979556][T22210] ? kasan_save_track+0x14/0x30 [ 764.979592][T22210] ? __kasan_slab_alloc+0x89/0x90 [ 764.979630][T22210] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 764.979666][T22210] ? do_getname+0x35/0x390 [ 764.979692][T22210] ? do_sys_openat2+0xc5/0x1e0 [ 764.979722][T22210] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 764.979756][T22210] ? __pfx_path_openat+0x10/0x10 [ 764.979811][T22210] do_file_open+0x20e/0x430 [ 764.979854][T22210] ? __pfx_do_file_open+0x10/0x10 [ 764.979921][T22210] ? alloc_fd+0x476/0x790 [ 764.979964][T22210] ? do_getname+0x191/0x390 [ 764.979996][T22210] do_sys_openat2+0x10d/0x1e0 [ 764.980028][T22210] ? __pfx_do_sys_openat2+0x10/0x10 [ 764.980081][T22210] __x64_sys_openat+0x12d/0x210 [ 764.980115][T22210] ? __pfx___x64_sys_openat+0x10/0x10 [ 764.980146][T22210] ? ksys_write+0x1ac/0x250 [ 764.980198][T22210] do_syscall_64+0x106/0xf80 [ 764.980235][T22210] ? clear_bhb_loop+0x40/0x90 [ 764.980271][T22210] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 764.980303][T22210] RIP: 0033:0x7fcab775c84e [ 764.980328][T22210] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 764.980359][T22210] RSP: 002b:00007fcab8719ec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 764.980388][T22210] RAX: ffffffffffffffda RBX: 00007fcab871a6c0 RCX: 00007fcab775c84e [ 764.980408][T22210] RDX: 0000000000000002 RSI: 00007fcab8719f90 RDI: ffffffffffffff9c [ 764.980427][T22210] RBP: 00007fcab78327e0 R08: 0000000000000000 R09: 0000000000000000 [ 764.980444][T22210] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 764.980462][T22210] R13: 00007fcab7a16038 R14: 00007fcab7a15fa0 R15: 00007ffd3118b428 [ 764.980500][T22210] [ 766.372610][T22234] netlink: 326 bytes leftover after parsing attributes in process `syz.3.6060'. [ 766.407489][T22234] bridge0: port 2(bridge_slave_1) entered disabled state [ 766.414942][T22234] bridge0: port 1(bridge_slave_0) entered disabled state [ 766.421487][T22237] netlink: 338 bytes leftover after parsing attributes in process `syz.1.6061'. [ 767.744822][T22274] Process accounting paused [ 768.389765][T22292] binder: 22291:22292 ioctl c0306201 2000000000c0 returned -14 [ 768.579979][T22302] netlink: 'syz.1.6075': attribute type 10 has an invalid length. [ 768.611701][T22302] netlink: 330 bytes leftover after parsing attributes in process `syz.1.6075'. [ 769.175714][T22318] netlink: 'syz.1.6081': attribute type 1 has an invalid length. [ 769.189368][T22318] netlink: 'syz.1.6081': attribute type 6 has an invalid length. [ 769.408017][T22328] netlink: 326 bytes leftover after parsing attributes in process `syz.2.6085'. [ 769.431431][T22328] bridge0: port 3(bond0) entered disabled state [ 769.437949][T22328] bridge0: port 2(bridge_slave_1) entered disabled state [ 769.445221][T22328] bridge0: port 1(bridge_slave_0) entered disabled state [ 770.256326][T22342] ERROR: Out of memory at tomoyo_memory_ok. [ 770.818539][T22365] netlink: 330 bytes leftover after parsing attributes in process `syz.3.6101'. [ 770.994584][T22371] netlink: 326 bytes leftover after parsing attributes in process `syz.0.6104'. [ 771.012920][T22371] bridge0: port 3(netdevsim1) entered disabled state [ 771.019993][T22371] bridge0: port 1(bridge_slave_0) entered disabled state [ 771.167148][T22377] netlink: 354 bytes leftover after parsing attributes in process `syz.3.6107'. [ 771.193871][T22379] binder: 22378:22379 ioctl c0306201 2000000000c0 returned -14 [ 771.608865][T22391] ERROR: Out of memory at tomoyo_memory_ok. [ 771.721227][T22401] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6114'. [ 771.731697][T22401] netlink: 354 bytes leftover after parsing attributes in process `syz.1.6114'. [ 771.940872][T22407] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6115'. [ 771.962331][T22407] netlink: 13 bytes leftover after parsing attributes in process `syz.0.6115'. [ 772.504255][T22430] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6124'. [ 775.494573][T22515] netlink: 342 bytes leftover after parsing attributes in process `syz.2.6159'. [ 775.543779][T22518] netlink: 326 bytes leftover after parsing attributes in process `syz.1.6152'. [ 777.563614][T22584] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 777.807334][T22595] kvm: kvm [22594]: vcpu2, guest rIP: 0xfff0 Unhandled RDMSR(0x40000012) [ 778.547731][T22617] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6194'. [ 778.558835][T22617] netlink: 25 bytes leftover after parsing attributes in process `syz.3.6194'. [ 778.670808][ T29] audit: type=1800 audit(4294978788.055:28): pid=22620 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.6196" name="dbroot" dev="configfs" ino=82720 res=0 errno=0 [ 778.765284][T22623] FAULT_INJECTION: forcing a failure. [ 778.765284][T22623] name failslab, interval 1, probability 0, space 0, times 0 [ 778.786903][T22623] CPU: 0 UID: 0 PID: 22623 Comm: syz.1.6197 Tainted: G U L syzkaller #0 PREEMPT(full) [ 778.786950][T22623] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 778.786961][T22623] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 778.786977][T22623] Call Trace: [ 778.786986][T22623] [ 778.786997][T22623] dump_stack_lvl+0x100/0x190 [ 778.787043][T22623] should_fail_ex.cold+0x5/0xa [ 778.787076][T22623] should_failslab+0xc2/0x120 [ 778.787120][T22623] __kmalloc_cache_noprof+0x7a/0x6f0 [ 778.787150][T22623] ? try_delay_free_filter+0x45/0x2b0 [ 778.787187][T22623] ? __pfx_create_filter+0x10/0x10 [ 778.787232][T22623] try_delay_free_filter+0x45/0x2b0 [ 778.787273][T22623] apply_event_filter+0x31d/0x500 [ 778.787312][T22623] ? __pfx_apply_event_filter+0x10/0x10 [ 778.787358][T22623] event_filter_write+0x16d/0x290 [ 778.787390][T22623] vfs_write+0x2aa/0x1070 [ 778.787431][T22623] ? __pfx_event_filter_write+0x10/0x10 [ 778.787464][T22623] ? __pfx_vfs_write+0x10/0x10 [ 778.787500][T22623] ? __fget_files+0x215/0x3d0 [ 778.787547][T22623] ? __fget_files+0x21f/0x3d0 [ 778.787593][T22623] ksys_write+0x12a/0x250 [ 778.787628][T22623] ? __pfx_ksys_write+0x10/0x10 [ 778.787674][T22623] do_syscall_64+0x106/0xf80 [ 778.787710][T22623] ? clear_bhb_loop+0x40/0x90 [ 778.787747][T22623] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 778.787777][T22623] RIP: 0033:0x7f410c19bf79 [ 778.787802][T22623] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 778.787831][T22623] RSP: 002b:00007f410d08b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 778.787859][T22623] RAX: ffffffffffffffda RBX: 00007f410c415fa0 RCX: 00007f410c19bf79 [ 778.787887][T22623] RDX: 00000000000005c8 RSI: 0000000000000000 RDI: 0000000000000003 [ 778.787905][T22623] RBP: 00007f410c2327e0 R08: 0000000000000000 R09: 0000000000000000 [ 778.787924][T22623] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 778.787942][T22623] R13: 00007f410c416038 R14: 00007f410c415fa0 R15: 00007ffdaf3eb6f8 [ 778.787983][T22623] [ 779.101899][T22629] netlink: 354 bytes leftover after parsing attributes in process `syz.3.6200'. [ 779.609667][T22648] netlink: 28 bytes leftover after parsing attributes in process `syz.0.6207'. [ 779.619179][T22648] ipvlan0: entered promiscuous mode [ 779.624450][T22648] ipvlan0: entered allmulticast mode [ 779.636974][T22648] veth0_vlan: entered allmulticast mode [ 779.659165][T22646] ERROR: Out of memory at tomoyo_memory_ok. [ 779.947275][T22652] netlink: 314 bytes leftover after parsing attributes in process `syz.0.6210'. [ 780.086293][T22658] FAULT_INJECTION: forcing a failure. [ 780.086293][T22658] name failslab, interval 1, probability 0, space 0, times 0 [ 780.099923][T22658] CPU: 0 UID: 0 PID: 22658 Comm: syz.0.6212 Tainted: G U L syzkaller #0 PREEMPT(full) [ 780.099970][T22658] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 780.099982][T22658] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 780.100000][T22658] Call Trace: [ 780.100010][T22658] [ 780.100021][T22658] dump_stack_lvl+0x100/0x190 [ 780.100069][T22658] should_fail_ex.cold+0x5/0xa [ 780.100102][T22658] should_failslab+0xc2/0x120 [ 780.100145][T22658] __kmalloc_cache_noprof+0x7a/0x6f0 [ 780.100178][T22658] ? try_delay_free_filter+0x45/0x2b0 [ 780.100218][T22658] ? __pfx_create_filter+0x10/0x10 [ 780.100267][T22658] try_delay_free_filter+0x45/0x2b0 [ 780.100308][T22658] apply_event_filter+0x31d/0x500 [ 780.100352][T22658] ? __pfx_apply_event_filter+0x10/0x10 [ 780.100405][T22658] event_filter_write+0x16d/0x290 [ 780.100438][T22658] vfs_write+0x2aa/0x1070 [ 780.100488][T22658] ? __pfx_event_filter_write+0x10/0x10 [ 780.100524][T22658] ? __pfx_vfs_write+0x10/0x10 [ 780.100563][T22658] ? __fget_files+0x215/0x3d0 [ 780.100612][T22658] ? __fget_files+0x21f/0x3d0 [ 780.100662][T22658] ksys_write+0x12a/0x250 [ 780.100701][T22658] ? __pfx_ksys_write+0x10/0x10 [ 780.100750][T22658] do_syscall_64+0x106/0xf80 [ 780.100787][T22658] ? clear_bhb_loop+0x40/0x90 [ 780.100822][T22658] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 780.100851][T22658] RIP: 0033:0x7fcab779bf79 [ 780.100875][T22658] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 780.100901][T22658] RSP: 002b:00007fcab871a028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 780.100926][T22658] RAX: ffffffffffffffda RBX: 00007fcab7a15fa0 RCX: 00007fcab779bf79 [ 780.100944][T22658] RDX: 00000000000005c8 RSI: 0000000000000000 RDI: 0000000000000003 [ 780.100960][T22658] RBP: 00007fcab78327e0 R08: 0000000000000000 R09: 0000000000000000 [ 780.100978][T22658] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 780.100995][T22658] R13: 00007fcab7a16038 R14: 00007fcab7a15fa0 R15: 00007ffd3118b428 [ 780.101034][T22658] [ 780.438558][T22665] netlink: 186 bytes leftover after parsing attributes in process `syz.0.6216'. [ 780.572996][T22669] ERROR: Out of memory at tomoyo_memory_ok. [ 780.751902][T22671] netlink: 342 bytes leftover after parsing attributes in process `syz.1.6218'. [ 780.986726][T22683] netlink: 12 bytes leftover after parsing attributes in process `syz.0.6223'. [ 780.997291][T22683] unsupported nlmsg_type 40 [ 781.097198][T22685] netlink: 146 bytes leftover after parsing attributes in process `syz.3.6225'. [ 781.597886][T22703] ERROR: Out of memory at tomoyo_memory_ok. [ 781.730636][T22708] [U] [ 781.733497][T22708] [U] [ 781.736224][T22708] [U] [ 781.738950][T22708] [U] [ 781.761393][T22708] [U] [ 781.764156][T22708] [U] [ 781.766883][T22708] [U] [ 781.769607][T22708] [U] [ 781.787529][T22706] [U] [ 782.716875][T22722] ERROR: Out of memory at tomoyo_memory_ok. [ 783.663948][T22745] ERROR: Out of memory at tomoyo_memory_ok. [ 784.243170][T22764] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 784.268497][T22764] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 784.281599][T22764] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 784.301535][T22764] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 784.505210][T22766] sp0: Synchronizing with TNC [ 785.205391][T22789] syz.0.6264 (22789): /proc/22789/oom_adj is deprecated, please use /proc/22789/oom_score_adj instead. [ 786.005279][T22812] netlink: 342 bytes leftover after parsing attributes in process `syz.2.6272'. [ 786.173939][T22819] mkiss: ax0: crc mode is auto. [ 786.283545][ T5832] Bluetooth: hci3: command 0x2016 tx timeout [ 786.289669][ T5832] Bluetooth: hci2: command 0x0406 tx timeout [ 786.298152][T20965] Bluetooth: hci1: command 0x0406 tx timeout [ 786.363571][T20965] Bluetooth: hci0: command 0x0406 tx timeout [ 786.927475][T22840] netlink: 346 bytes leftover after parsing attributes in process `syz.3.6281'. [ 787.808396][T22862] netlink: 'syz.0.6290': attribute type 1 has an invalid length. [ 787.878200][T22862] netlink: 306 bytes leftover after parsing attributes in process `syz.0.6290'. [ 788.918844][T22892] netlink: 54 bytes leftover after parsing attributes in process `syz.1.6301'. [ 789.137307][T22897] netlink: 28 bytes leftover after parsing attributes in process `syz.1.6302'. [ 789.146582][T22897] ipvlan0: entered promiscuous mode [ 789.151791][T22897] ipvlan0: entered allmulticast mode [ 789.198252][T22897] veth0_vlan: entered allmulticast mode [ 789.789804][T22909] netlink: 25 bytes leftover after parsing attributes in process `syz.0.6315'. [ 789.885741][T22911] ERROR: Out of memory at tomoyo_memory_ok. [ 789.904810][T22913] binder: 22912:22913 ioctl 40046210 0 returned -14 [ 790.428778][T22928] netlink: 330 bytes leftover after parsing attributes in process `syz.1.6316'. [ 790.438011][T22928] –õ\­: renamed from lo (while UP) [ 792.189705][T22962] ERROR: Out of memory at tomoyo_memory_ok. [ 792.766311][T22982] kvm: kvm [22981]: vcpu2, guest rIP: 0xfff0 Unhandled WRMSR(0x4000000e) = 0x4 [ 793.601354][T22997] zswap: compressor û not available [ 793.835317][T23009] ERROR: Out of memory at tomoyo_memory_ok. [ 794.187943][T23021] FAULT_INJECTION: forcing a failure. [ 794.187943][T23021] name failslab, interval 1, probability 0, space 0, times 0 [ 794.227647][T23021] CPU: 0 UID: 0 PID: 23021 Comm: syz.1.6348 Tainted: G U L syzkaller #0 PREEMPT(full) [ 794.227700][T23021] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 794.227713][T23021] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 794.227732][T23021] Call Trace: [ 794.227742][T23021] [ 794.227755][T23021] dump_stack_lvl+0x100/0x190 [ 794.227805][T23021] should_fail_ex.cold+0x5/0xa [ 794.227840][T23021] should_failslab+0xc2/0x120 [ 794.227885][T23021] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 794.227924][T23021] ? __d_alloc+0x34/0xa80 [ 794.227968][T23021] ? make_vfsgid+0xf1/0x140 [ 794.228016][T23021] __d_alloc+0x34/0xa80 [ 794.228059][T23021] ? bpf_lsm_inode_permission+0x9/0x10 [ 794.228101][T23021] d_alloc+0x4a/0x1e0 [ 794.228148][T23021] vfs_tmpfile+0x148/0x9a0 [ 794.228199][T23021] path_openat+0x164e/0x31a0 [ 794.228239][T23021] ? kasan_save_stack+0x3f/0x50 [ 794.228276][T23021] ? kasan_save_stack+0x30/0x50 [ 794.228312][T23021] ? __kasan_slab_alloc+0x89/0x90 [ 794.228350][T23021] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 794.228386][T23021] ? do_getname+0x35/0x390 [ 794.228416][T23021] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 794.228451][T23021] ? __pfx_path_openat+0x10/0x10 [ 794.228507][T23021] do_file_open+0x20e/0x430 [ 794.228551][T23021] ? __pfx_do_file_open+0x10/0x10 [ 794.228620][T23021] ? _raw_spin_unlock+0x28/0x50 [ 794.228653][T23021] ? alloc_fd+0x476/0x790 [ 794.228703][T23021] do_sys_openat2+0x10d/0x1e0 [ 794.228737][T23021] ? __pfx_do_sys_openat2+0x10/0x10 [ 794.228770][T23021] ? __fget_files+0x21f/0x3d0 [ 794.228819][T23021] __x64_sys_open+0xfe/0x1d0 [ 794.228850][T23021] ? __pfx___x64_sys_open+0x10/0x10 [ 794.228897][T23021] do_syscall_64+0x106/0xf80 [ 794.228934][T23021] ? clear_bhb_loop+0x40/0x90 [ 794.228969][T23021] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 794.229007][T23021] RIP: 0033:0x7f410c19bf79 [ 794.229033][T23021] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 794.229064][T23021] RSP: 002b:00007f410d08b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 794.229092][T23021] RAX: ffffffffffffffda RBX: 00007f410c415fa0 RCX: 00007f410c19bf79 [ 794.229113][T23021] RDX: 0000000000000408 RSI: 0000000000591002 RDI: 0000200000000100 [ 794.229133][T23021] RBP: 00007f410c2327e0 R08: 0000000000000000 R09: 0000000000000000 [ 794.229152][T23021] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 794.229170][T23021] R13: 00007f410c416038 R14: 00007f410c415fa0 R15: 00007ffdaf3eb6f8 [ 794.229212][T23021] [ 794.854230][T23029] netlink: 290 bytes leftover after parsing attributes in process `syz.3.6353'. [ 794.903660][T23031] netlink: 342 bytes leftover after parsing attributes in process `syz.2.6355'. [ 795.754690][T23051] ERROR: Out of memory at tomoyo_memory_ok. [ 796.067449][T23053] zswap: compressor  not available [ 796.502497][T23071] FAULT_INJECTION: forcing a failure. [ 796.502497][T23071] name failslab, interval 1, probability 0, space 0, times 0 [ 796.549952][T23071] CPU: 1 UID: 0 PID: 23071 Comm: syz.1.6370 Tainted: G U L syzkaller #0 PREEMPT(full) [ 796.550003][T23071] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 796.550015][T23071] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 796.550033][T23071] Call Trace: [ 796.550044][T23071] [ 796.550056][T23071] dump_stack_lvl+0x100/0x190 [ 796.550103][T23071] should_fail_ex.cold+0x5/0xa [ 796.550137][T23071] should_failslab+0xc2/0x120 [ 796.550179][T23071] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 796.550214][T23071] ? __proc_create+0x2cb/0x8c0 [ 796.550255][T23071] __proc_create+0x2cb/0x8c0 [ 796.550291][T23071] ? __pfx___proc_create+0x10/0x10 [ 796.550327][T23071] ? _raw_write_unlock+0x28/0x50 [ 796.550366][T23071] proc_create_reg+0x75/0x170 [ 796.550404][T23071] proc_create_data+0x86/0x110 [ 796.550438][T23071] ? __pfx_proc_create_data+0x10/0x10 [ 796.550472][T23071] ? cache_register_net+0x137/0x5e0 [ 796.550508][T23071] ? cache_register_net+0x137/0x5e0 [ 796.550552][T23071] cache_register_net+0x1e0/0x5e0 [ 796.550593][T23071] gss_svc_init_net+0x14e/0x640 [ 796.550626][T23071] ? __pfx_canbcm_pernet_init+0x10/0x10 [ 796.550665][T23071] ? __pfx_rpcsec_gss_init_net+0x10/0x10 [ 796.550701][T23071] ops_init+0x1e2/0x5f0 [ 796.550752][T23071] setup_net+0x118/0x3a0 [ 796.550790][T23071] ? __pfx_setup_net+0x10/0x10 [ 796.550827][T23071] ? lockdep_init_map_type+0x5c/0x250 [ 796.550862][T23071] ? mutex_init_lockep+0x110/0x150 [ 796.550905][T23071] copy_net_ns+0x46f/0x7c0 [ 796.550948][T23071] create_new_namespaces+0x3ea/0xac0 [ 796.550998][T23071] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 796.551024][T23071] ksys_unshare+0x455/0xab0 [ 796.551052][T23071] ? __pfx_ksys_unshare+0x10/0x10 [ 796.551098][T23071] __x64_sys_unshare+0x31/0x40 [ 796.551129][T23071] do_syscall_64+0x106/0xf80 [ 796.551163][T23071] ? clear_bhb_loop+0x40/0x90 [ 796.551197][T23071] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 796.551225][T23071] RIP: 0033:0x7f410c19bf79 [ 796.551249][T23071] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 796.551278][T23071] RSP: 002b:00007f410d08b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 796.551308][T23071] RAX: ffffffffffffffda RBX: 00007f410c415fa0 RCX: 00007f410c19bf79 [ 796.551328][T23071] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 796.551346][T23071] RBP: 00007f410c2327e0 R08: 0000000000000000 R09: 0000000000000000 [ 796.551364][T23071] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 796.551382][T23071] R13: 00007f410c416038 R14: 00007f410c415fa0 R15: 00007ffdaf3eb6f8 [ 796.551422][T23071] [ 797.597287][T23096] futex_wake_op: syz.0.6375 tries to shift op by -2048; fix this program [ 797.689508][T23096] futex_wake_op: syz.0.6375 tries to shift op by -2048; fix this program [ 797.730590][T23102] netlink: 330 bytes leftover after parsing attributes in process `syz.1.6379'. [ 797.966036][T23108] netlink: 326 bytes leftover after parsing attributes in process `syz.0.6382'. [ 798.452398][T23091] Process accounting resumed [ 798.977743][T23134] netlink: 146 bytes leftover after parsing attributes in process `syz.0.6392'. [ 799.705287][T23160] FAULT_INJECTION: forcing a failure. [ 799.705287][T23160] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 799.740031][T23160] CPU: 1 UID: 0 PID: 23160 Comm: syz.0.6403 Tainted: G U L syzkaller #0 PREEMPT(full) [ 799.740086][T23160] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 799.740096][T23160] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 799.740112][T23160] Call Trace: [ 799.740123][T23160] [ 799.740134][T23160] dump_stack_lvl+0x100/0x190 [ 799.740179][T23160] should_fail_ex.cold+0x5/0xa [ 799.740206][T23160] ? prepare_alloc_pages+0x16d/0x5f0 [ 799.740256][T23160] should_fail_alloc_page+0xeb/0x140 [ 799.740299][T23160] prepare_alloc_pages+0x1f0/0x5f0 [ 799.740337][T23160] ? arch_stack_walk+0xa6/0xf0 [ 799.740368][T23160] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 799.740425][T23160] ? stack_trace_save+0x8e/0xc0 [ 799.740469][T23160] ? __pfx_stack_trace_save+0x10/0x10 [ 799.740514][T23160] ? stack_depot_save_flags+0x27/0x9d0 [ 799.740550][T23160] ? __lock_acquire+0x4a5/0x2630 [ 799.740587][T23160] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 799.740624][T23160] ? kasan_save_stack+0x3f/0x50 [ 799.740656][T23160] ? kasan_save_stack+0x30/0x50 [ 799.740690][T23160] ? __kasan_slab_alloc+0x89/0x90 [ 799.740727][T23160] ? __pmd_alloc+0xbf/0x9c0 [ 799.740749][T23160] ? copy_page_range+0x4531/0x6570 [ 799.740780][T23160] ? dup_mmap+0xc00/0x1db0 [ 799.740802][T23160] ? copy_process+0x73d1/0x7a10 [ 799.740830][T23160] ? kernel_clone+0xfc/0x9a0 [ 799.740858][T23160] ? __do_sys_clone+0xd9/0x120 [ 799.740888][T23160] ? do_syscall_64+0x106/0xf80 [ 799.740925][T23160] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 799.740971][T23160] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 799.741016][T23160] ? policy_nodemask+0xed/0x4f0 [ 799.741062][T23160] alloc_pages_mpol+0x1fb/0x550 [ 799.741107][T23160] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 799.741160][T23160] alloc_pages_noprof+0x131/0x390 [ 799.741206][T23160] pte_alloc_one+0x1e/0x3e0 [ 799.741238][T23160] __pte_alloc+0x6d/0x3f0 [ 799.741280][T23160] ? __pfx___pte_alloc+0x10/0x10 [ 799.741322][T23160] ? _raw_spin_unlock+0x28/0x50 [ 799.741354][T23160] ? __pmd_alloc+0x6aa/0x9c0 [ 799.741393][T23160] copy_page_range+0x3e51/0x6570 [ 799.741472][T23160] ? __pfx_copy_page_range+0x10/0x10 [ 799.741515][T23160] ? mas_store+0x666/0xac0 [ 799.741561][T23160] ? __pfx_mas_store+0x10/0x10 [ 799.741613][T23160] ? __pfx___vma_start_write+0x10/0x10 [ 799.741656][T23160] dup_mmap+0xc00/0x1db0 [ 799.741699][T23160] ? __pfx_dup_mmap+0x10/0x10 [ 799.741724][T23160] ? rcu_is_watching+0x12/0xc0 [ 799.741790][T23160] copy_process+0x73d1/0x7a10 [ 799.741843][T23160] ? __pfx_copy_process+0x10/0x10 [ 799.741875][T23160] ? find_held_lock+0x2b/0x80 [ 799.741924][T23160] ? futex_private_hash_put+0x107/0x1c0 [ 799.741963][T23160] kernel_clone+0xfc/0x9a0 [ 799.741997][T23160] ? __pfx_kernel_clone+0x10/0x10 [ 799.742052][T23160] __do_sys_clone+0xd9/0x120 [ 799.742086][T23160] ? __pfx___do_sys_clone+0x10/0x10 [ 799.742153][T23160] do_syscall_64+0x106/0xf80 [ 799.742189][T23160] ? clear_bhb_loop+0x40/0x90 [ 799.742225][T23160] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 799.742256][T23160] RIP: 0033:0x7fcab779bf79 [ 799.742282][T23160] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 799.742312][T23160] RSP: 002b:00007fcab8719fd8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 799.742341][T23160] RAX: ffffffffffffffda RBX: 00007fcab7a15fa0 RCX: 00007fcab779bf79 [ 799.742362][T23160] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000004001000 [ 799.742392][T23160] RBP: 00007fcab78327e0 R08: 0000000000000000 R09: 0000000000000000 [ 799.742411][T23160] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 799.742429][T23160] R13: 00007fcab7a16038 R14: 00007fcab7a15fa0 R15: 00007ffd3118b428 [ 799.742470][T23160] [ 799.751973][T23162] netlink: 342 bytes leftover after parsing attributes in process `syz.3.6404'. [ 800.577517][T23180] FAULT_INJECTION: forcing a failure. [ 800.577517][T23180] name failslab, interval 1, probability 0, space 0, times 0 [ 800.628283][T23180] CPU: 0 UID: 0 PID: 23180 Comm: syz.1.6410 Tainted: G U L syzkaller #0 PREEMPT(full) [ 800.628344][T23180] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 800.628356][T23180] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 800.628374][T23180] Call Trace: [ 800.628385][T23180] [ 800.628396][T23180] dump_stack_lvl+0x100/0x190 [ 800.628446][T23180] should_fail_ex.cold+0x5/0xa [ 800.628479][T23180] should_failslab+0xc2/0x120 [ 800.628523][T23180] __kmalloc_cache_noprof+0x7a/0x6f0 [ 800.628555][T23180] ? ovs_ct_limit_cmd_set+0x30a/0xa70 [ 800.628606][T23180] ovs_ct_limit_cmd_set+0x30a/0xa70 [ 800.628656][T23180] ? __pfx_ovs_ct_limit_cmd_set+0x10/0x10 [ 800.628700][T23180] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x290 [ 800.628746][T23180] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1b4/0x290 [ 800.628799][T23180] genl_family_rcv_msg_doit+0x214/0x300 [ 800.628847][T23180] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 800.628891][T23180] ? genl_get_cmd+0x3ef/0x720 [ 800.628940][T23180] ? bpf_lsm_capable+0x9/0x10 [ 800.628982][T23180] ? security_capable+0x80/0x260 [ 800.629027][T23180] ? ns_capable+0xd2/0xf0 [ 800.629076][T23180] genl_rcv_msg+0x560/0x800 [ 800.629125][T23180] ? __pfx_genl_rcv_msg+0x10/0x10 [ 800.629166][T23180] ? __pfx_ovs_ct_limit_cmd_set+0x10/0x10 [ 800.629216][T23180] netlink_rcv_skb+0x159/0x420 [ 800.629253][T23180] ? __pfx_genl_rcv_msg+0x10/0x10 [ 800.629304][T23180] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 800.629369][T23180] ? netlink_deliver_tap+0x1ae/0xcc0 [ 800.629413][T23180] genl_rcv+0x28/0x40 [ 800.629453][T23180] netlink_unicast+0x5aa/0x870 [ 800.629498][T23180] ? __pfx_netlink_unicast+0x10/0x10 [ 800.629535][T23180] ? __asan_memset+0x23/0x50 [ 800.629568][T23180] ? __build_skb_around+0x278/0x390 [ 800.629601][T23180] ? is_vmalloc_addr+0x86/0xa0 [ 800.629641][T23180] netlink_sendmsg+0x8b0/0xda0 [ 800.629687][T23180] ? __pfx_netlink_sendmsg+0x10/0x10 [ 800.629725][T23180] ? __import_iovec+0x1d2/0x640 [ 800.629763][T23180] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 800.629814][T23180] ____sys_sendmsg+0xa54/0xc30 [ 800.629862][T23180] ? __pfx_____sys_sendmsg+0x10/0x10 [ 800.629915][T23180] ? __pfx_futex_wake_mark+0x10/0x10 [ 800.629963][T23180] ___sys_sendmsg+0x190/0x1e0 [ 800.629995][T23180] ? __pfx____sys_sendmsg+0x10/0x10 [ 800.630058][T23180] ? do_futex+0x192/0x350 [ 800.630097][T23180] __sys_sendmsg+0x170/0x220 [ 800.630135][T23180] ? __pfx___sys_sendmsg+0x10/0x10 [ 800.630171][T23180] ? __x64_sys_futex+0x34f/0x4d0 [ 800.630227][T23180] do_syscall_64+0x106/0xf80 [ 800.630262][T23180] ? clear_bhb_loop+0x40/0x90 [ 800.630296][T23180] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 800.630335][T23180] RIP: 0033:0x7f410c19bf79 [ 800.630362][T23180] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 800.630392][T23180] RSP: 002b:00007f410d08b028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 800.630420][T23180] RAX: ffffffffffffffda RBX: 00007f410c415fa0 RCX: 00007f410c19bf79 [ 800.630441][T23180] RDX: 0000000000000004 RSI: 0000200000000100 RDI: 0000000000000000 [ 800.630460][T23180] RBP: 00007f410c2327e0 R08: 0000000000000000 R09: 0000000000000000 [ 800.630478][T23180] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 800.630496][T23180] R13: 00007f410c416038 R14: 00007f410c415fa0 R15: 00007ffdaf3eb6f8 [ 800.630532][T23180] [ 801.485314][T23188] netlink: 342 bytes leftover after parsing attributes in process `syz.3.6414'. [ 801.590696][T23188] netlink: 146 bytes leftover after parsing attributes in process `syz.3.6414'. [ 801.719906][T23195] netlink: 17 bytes leftover after parsing attributes in process `syz.1.6417'. [ 801.958296][T23198] ERROR: Out of memory at tomoyo_memory_ok. [ 802.045955][T23205] kvm: user requested TSC rate below hardware speed [ 802.986367][T23227] netlink: 346 bytes leftover after parsing attributes in process `syz.3.6429'. [ 803.427867][T23235] ERROR: Out of memory at tomoyo_memory_ok. [ 804.990399][T23275] ERROR: Out of memory at tomoyo_memory_ok. [ 805.076137][T23278] ERROR: Out of memory at tomoyo_memory_ok. [ 806.768361][T23319] ERROR: Out of memory at tomoyo_memory_ok. [ 807.894792][T23349] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 807.901585][T23349] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 807.914417][T23349] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 807.929584][T23349] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 808.301772][T23361] ERROR: Out of memory at tomoyo_memory_ok. [ 808.738232][T23371] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 808.744312][T23371] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 808.773261][T23371] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 808.785609][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 808.796162][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 808.830902][T23371] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 810.105772][T23407] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 810.124785][T23407] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 810.143762][T23407] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 810.163205][T23407] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 810.504996][T23420] netlink: 342 bytes leftover after parsing attributes in process `syz.1.6503'. [ 810.514385][T23420] IPv6: NLM_F_REPLACE set, but no existing node found! [ 811.050963][T23439] netlink: 12 bytes leftover after parsing attributes in process `syz.0.6512'. [ 811.401381][T23450] netlink: 342 bytes leftover after parsing attributes in process `syz.0.6515'. [ 811.412443][T23450] netlink: 214 bytes leftover after parsing attributes in process `syz.0.6515'. [ 811.547910][T23456] random: crng reseeded on system resumption [ 811.966638][T23470] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 812.006573][T23470] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 812.012485][T23467] sd 0:0:1:0: PR command failed: 1026 [ 812.026914][T23470] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 812.031412][T23467] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 812.035495][T23470] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 812.106503][T23467] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 812.203309][T23478] netlink: 354 bytes leftover after parsing attributes in process `syz.3.6526'. [ 812.589448][T23490] netlink: 330 bytes leftover after parsing attributes in process `syz.1.6528'. [ 812.886707][T23494] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 812.893227][T23494] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 812.906922][T23494] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 812.917009][T23494] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 813.166646][T23504] netlink: 334 bytes leftover after parsing attributes in process `syz.1.6535'. [ 814.939808][ T5832] Bluetooth: hci0: command 0x0406 tx timeout [ 814.939825][T20965] Bluetooth: hci3: command 0x2016 tx timeout [ 814.939861][T20965] Bluetooth: hci2: command 0x0406 tx timeout [ 814.945847][ T5832] Bluetooth: hci1: command 0x0406 tx timeout [ 814.970875][T23544] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 815.009398][T23545] netlink: 146 bytes leftover after parsing attributes in process `syz.3.6551'. [ 815.147312][T23552] kvm: kvm [23551]: vcpu2, guest rIP: 0xfff0 Unhandled RDMSR(0x40000085) [ 816.116042][T23592] ERROR: Out of memory at tomoyo_memory_ok. [ 816.601747][T23604] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6573'. [ 816.630990][T23604] netlink: 25 bytes leftover after parsing attributes in process `syz.1.6573'. [ 816.684873][T23606] sg_write: data in/out 100663260/90 bytes for SCSI command 0x0-- guessing data in; [ 816.684873][T23606] program syz.3.6574 not setting count and/or reply_len properly [ 816.838949][T23602] netlink: 342 bytes leftover after parsing attributes in process `syz.0.6571'. [ 816.883624][T23602] netlink: 'syz.0.6571': attribute type 3 has an invalid length. [ 816.924570][T23602] netlink: 306 bytes leftover after parsing attributes in process `syz.0.6571'. [ 817.284420][T23617] netlink: 'syz.1.6578': attribute type 1 has an invalid length. [ 817.292364][T23617] netlink: 314 bytes leftover after parsing attributes in process `syz.1.6578'. [ 817.480673][T23628] netlink: 342 bytes leftover after parsing attributes in process `syz.3.6582'. [ 817.511413][T23628] netlink: 146 bytes leftover after parsing attributes in process `syz.3.6582'. [ 821.160051][T23698] FAULT_INJECTION: forcing a failure. [ 821.160051][T23698] name failslab, interval 1, probability 0, space 0, times 0 [ 821.191453][T23698] CPU: 0 UID: 0 PID: 23698 Comm: syz.0.6609 Tainted: G U L syzkaller #0 PREEMPT(full) [ 821.191507][T23698] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 821.191518][T23698] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 821.191533][T23698] Call Trace: [ 821.191542][T23698] [ 821.191554][T23698] dump_stack_lvl+0x100/0x190 [ 821.191602][T23698] should_fail_ex.cold+0x5/0xa [ 821.191637][T23698] should_failslab+0xc2/0x120 [ 821.191682][T23698] __kmalloc_cache_noprof+0x7a/0x6f0 [ 821.191714][T23698] ? alloc_pipe_info+0x10e/0x590 [ 821.191755][T23698] ? security_inode_alloc+0xcf/0x2c0 [ 821.191792][T23698] alloc_pipe_info+0x10e/0x590 [ 821.191838][T23698] create_pipe_files+0x8c/0x970 [ 821.191885][T23698] do_pipe2+0xbd/0x1e0 [ 821.191923][T23698] ? __pfx_do_pipe2+0x10/0x10 [ 821.191968][T23698] __x64_sys_pipe+0x33/0x50 [ 821.192007][T23698] do_syscall_64+0x106/0xf80 [ 821.192043][T23698] ? clear_bhb_loop+0x40/0x90 [ 821.192079][T23698] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 821.192111][T23698] RIP: 0033:0x7fcab779bf79 [ 821.192137][T23698] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 821.192166][T23698] RSP: 002b:00007fcab871a028 EFLAGS: 00000246 ORIG_RAX: 0000000000000016 [ 821.192194][T23698] RAX: ffffffffffffffda RBX: 00007fcab7a15fa0 RCX: 00007fcab779bf79 [ 821.192214][T23698] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 821.192232][T23698] RBP: 00007fcab78327e0 R08: 0000000000000000 R09: 0000000000000000 [ 821.192250][T23698] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 821.192268][T23698] R13: 00007fcab7a16038 R14: 00007fcab7a15fa0 R15: 00007ffd3118b428 [ 821.192306][T23698] [ 821.990647][T23714] netlink: 146 bytes leftover after parsing attributes in process `syz.0.6615'. [ 822.071213][T23718] netlink: 'syz.2.6617': attribute type 33 has an invalid length. [ 822.104739][T23718] netlink: 322 bytes leftover after parsing attributes in process `syz.2.6617'. [ 822.240893][T23726] delete_channel: no stack [ 825.153657][T23808] ptrace attach of "./syz-executor exec"[6402] was attempted by "                                                                                                                                                                                                                                                [ 825.160951][T23811] FAULT_INJECTION: forcing a failure. [ 825.160951][T23811] name failslab, interval 1, probability 0, space 0, times 0 [ 825.274735][T23811] CPU: 0 UID: 0 PID: 23811 Comm: syz.1.6655 Tainted: G U L syzkaller #0 PREEMPT(full) [ 825.274788][T23811] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 825.274801][T23811] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 825.274819][T23811] Call Trace: [ 825.274830][T23811] [ 825.274843][T23811] dump_stack_lvl+0x100/0x190 [ 825.274892][T23811] should_fail_ex.cold+0x5/0xa [ 825.274926][T23811] ? process_preds+0x4bc/0x1e10 [ 825.274963][T23811] should_failslab+0xc2/0x120 [ 825.275008][T23811] __kmalloc_noprof+0xe0/0x850 [ 825.275053][T23811] process_preds+0x4bc/0x1e10 [ 825.275101][T23811] ? create_filter_start.constprop.0+0x134/0x310 [ 825.275147][T23811] create_filter+0x140/0x210 [ 825.275188][T23811] ? __pfx_create_filter+0x10/0x10 [ 825.275231][T23811] ? find_held_lock+0x2b/0x80 [ 825.275278][T23811] apply_event_filter+0x220/0x500 [ 825.275320][T23811] ? __pfx_apply_event_filter+0x10/0x10 [ 825.275372][T23811] event_filter_write+0x16d/0x290 [ 825.275405][T23811] vfs_write+0x2aa/0x1070 [ 825.275445][T23811] ? __pfx_event_filter_write+0x10/0x10 [ 825.275479][T23811] ? __pfx_vfs_write+0x10/0x10 [ 825.275517][T23811] ? __fget_files+0x215/0x3d0 [ 825.275565][T23811] ? __fget_files+0x21f/0x3d0 [ 825.275616][T23811] ksys_write+0x12a/0x250 [ 825.275655][T23811] ? __pfx_ksys_write+0x10/0x10 [ 825.275712][T23811] do_syscall_64+0x106/0xf80 [ 825.275751][T23811] ? clear_bhb_loop+0x40/0x90 [ 825.275788][T23811] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 825.275820][T23811] RIP: 0033:0x7f410c19bf79 [ 825.275845][T23811] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 825.275875][T23811] RSP: 002b:00007f410d08b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 825.275903][T23811] RAX: ffffffffffffffda RBX: 00007f410c415fa0 RCX: 00007f410c19bf79 [ 825.275924][T23811] RDX: 00000000000005c8 RSI: 0000000000000000 RDI: 0000000000000003 [ 825.275942][T23811] RBP: 00007f410c2327e0 R08: 0000000000000000 R09: 0000000000000000 [ 825.275959][T23811] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 825.275978][T23811] R13: 00007f410c416038 R14: 00007f410c415fa0 R15: 00007ffdaf3eb6f8 [ 825.276019][T23811] [ 826.289433][T23834] random: crng reseeded on system resumption [ 826.312828][T23834] RDS: rds_bind could not find a transport for fe80::736d:2f73:7461:626c, load rds_tcp or rds_rdma? [ 826.587471][T23842] sd 0:0:1:0: PR command failed: 1026 [ 826.592949][T23842] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 826.600104][T23842] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 826.907869][T23850] FAULT_INJECTION: forcing a failure. [ 826.907869][T23850] name failslab, interval 1, probability 0, space 0, times 0 [ 826.925275][T23850] CPU: 1 UID: 0 PID: 23850 Comm: syz.1.6669 Tainted: G U L syzkaller #0 PREEMPT(full) [ 826.925325][T23850] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 826.925338][T23850] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 826.925356][T23850] Call Trace: [ 826.925367][T23850] [ 826.925378][T23850] dump_stack_lvl+0x100/0x190 [ 826.925427][T23850] should_fail_ex.cold+0x5/0xa [ 826.925462][T23850] should_failslab+0xc2/0x120 [ 826.925505][T23850] __kmalloc_node_track_caller_noprof+0xe3/0x850 [ 826.925555][T23850] ? v9fs_init_fs_context+0xf1/0x590 [ 826.925593][T23850] kstrdup+0x51/0xe0 [ 826.925632][T23850] v9fs_init_fs_context+0xf1/0x590 [ 826.925667][T23850] alloc_fs_context+0x60c/0xf40 [ 826.925719][T23850] __x64_sys_fsopen+0xed/0x220 [ 826.925751][T23850] do_syscall_64+0x106/0xf80 [ 826.925791][T23850] ? clear_bhb_loop+0x40/0x90 [ 826.925828][T23850] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 826.925858][T23850] RIP: 0033:0x7f410c19bf79 [ 826.925883][T23850] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 826.925912][T23850] RSP: 002b:00007f410d08b028 EFLAGS: 00000246 ORIG_RAX: 00000000000001ae [ 826.925941][T23850] RAX: ffffffffffffffda RBX: 00007f410c415fa0 RCX: 00007f410c19bf79 [ 826.925961][T23850] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000 [ 826.925978][T23850] RBP: 00007f410c2327e0 R08: 0000000000000000 R09: 0000000000000000 [ 826.925997][T23850] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 826.926014][T23850] R13: 00007f410c416038 R14: 00007f410c415fa0 R15: 00007ffdaf3eb6f8 [ 826.926057][T23850] [ 827.390659][T23860] netlink: 25 bytes leftover after parsing attributes in process `syz.3.6672'. [ 827.412755][T23857] ERROR: Out of memory at tomoyo_memory_ok. [ 828.583023][T23892] Process accounting paused [ 828.726490][T23900] Loading of unsigned module is rejected [ 828.998542][T23908] sp0: Synchronizing with TNC [ 829.257427][T23916] FAULT_INJECTION: forcing a failure. [ 829.257427][T23916] name failslab, interval 1, probability 0, space 0, times 0 [ 829.298618][T23916] CPU: 0 UID: 0 PID: 23916 Comm: syz.0.6693 Tainted: G U L syzkaller #0 PREEMPT(full) [ 829.298669][T23916] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 829.298682][T23916] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 829.298700][T23916] Call Trace: [ 829.298709][T23916] [ 829.298721][T23916] dump_stack_lvl+0x100/0x190 [ 829.298771][T23916] should_fail_ex.cold+0x5/0xa [ 829.298805][T23916] should_failslab+0xc2/0x120 [ 829.298849][T23916] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 829.298882][T23916] ? __kernfs_new_node+0xd2/0x960 [ 829.298913][T23916] ? kstrdup+0xb3/0xe0 [ 829.298956][T23916] __kernfs_new_node+0xd2/0x960 [ 829.298982][T23916] ? path_openat+0x208c/0x31a0 [ 829.299020][T23916] ? do_file_open+0x20e/0x430 [ 829.299060][T23916] ? do_syscall_64+0x106/0xf80 [ 829.299095][T23916] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 829.299125][T23916] ? __pfx___kernfs_new_node+0x10/0x10 [ 829.299163][T23916] ? find_held_lock+0x2b/0x80 [ 829.299204][T23916] ? kernfs_root+0xee/0x2a0 [ 829.299232][T23916] ? kernfs_root+0xee/0x2a0 [ 829.299264][T23916] kernfs_new_node+0x11b/0x1a0 [ 829.299303][T23916] kernfs_create_dir_ns+0x4c/0x1a0 [ 829.299337][T23916] sysfs_create_dir_ns+0x13a/0x2b0 [ 829.299366][T23916] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 829.299393][T23916] ? find_held_lock+0x2b/0x80 [ 829.299433][T23916] ? kobject_add_internal+0x25f/0x930 [ 829.299475][T23916] ? kobject_add_internal+0x25f/0x930 [ 829.299520][T23916] ? do_raw_spin_unlock+0x145/0x1e0 [ 829.299562][T23916] kobject_add_internal+0x2c8/0x930 [ 829.299621][T23916] kobject_init_and_add+0x121/0x180 [ 829.299664][T23916] ? __pfx_kobject_init_and_add+0x10/0x10 [ 829.299707][T23916] ? kernfs_remove_by_name_ns+0xb9/0xf0 [ 829.299752][T23916] ? up_write+0x290/0x4f0 [ 829.299796][T23916] sysfs_slab_add+0x18f/0x1f0 [ 829.299838][T23916] do_kmem_cache_create+0x472/0x540 [ 829.299885][T23916] __kmem_cache_create_args+0x386/0x420 [ 829.299922][T23916] mon_text_open+0x333/0x510 [ 829.299952][T23916] ? __pfx_mon_text_open+0x10/0x10 [ 829.299983][T23916] ? __pfx_mon_text_ctor+0x10/0x10 [ 829.300012][T23916] ? __pfx_apparmor_file_open+0x10/0x10 [ 829.300038][T23916] ? lockdown_is_locked_down+0x3d/0x140 [ 829.300081][T23916] ? bpf_lsm_locked_down+0x9/0x10 [ 829.300149][T23916] ? __pfx_mon_text_open+0x10/0x10 [ 829.300175][T23916] full_proxy_open_regular+0x1b6/0x370 [ 829.300225][T23916] do_dentry_open+0x6d8/0x1660 [ 829.300265][T23916] ? __pfx_full_proxy_open_regular+0x10/0x10 [ 829.300320][T23916] vfs_open+0x82/0x3f0 [ 829.300354][T23916] path_openat+0x208c/0x31a0 [ 829.300405][T23916] ? __pfx_path_openat+0x10/0x10 [ 829.300459][T23916] do_file_open+0x20e/0x430 [ 829.300503][T23916] ? __pfx_do_file_open+0x10/0x10 [ 829.300571][T23916] ? alloc_fd+0x476/0x790 [ 829.300623][T23916] ? do_getname+0x191/0x390 [ 829.300656][T23916] do_sys_openat2+0x10d/0x1e0 [ 829.300685][T23916] ? __pfx_do_sys_openat2+0x10/0x10 [ 829.300717][T23916] ? __fget_files+0x21f/0x3d0 [ 829.300760][T23916] __x64_sys_openat+0x12d/0x210 [ 829.300789][T23916] ? __pfx___x64_sys_openat+0x10/0x10 [ 829.300833][T23916] do_syscall_64+0x106/0xf80 [ 829.300867][T23916] ? clear_bhb_loop+0x40/0x90 [ 829.300898][T23916] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 829.300925][T23916] RIP: 0033:0x7fcab779bf79 [ 829.300949][T23916] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 829.300977][T23916] RSP: 002b:00007fcab871a028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 829.301005][T23916] RAX: ffffffffffffffda RBX: 00007fcab7a15fa0 RCX: 00007fcab779bf79 [ 829.301024][T23916] RDX: 0000000000040000 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 829.301042][T23916] RBP: 00007fcab78327e0 R08: 0000000000000000 R09: 0000000000000000 [ 829.301060][T23916] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 829.301077][T23916] R13: 00007fcab7a16038 R14: 00007fcab7a15fa0 R15: 00007ffd3118b428 [ 829.301116][T23916] [ 829.301215][T23916] kobject: kobject_add_internal failed for mon_text_ffff88805de99800 (error: -12 parent: slab) [ 829.753088][T23916] SLUB: Unable to add cache mon_text_ffff88805de99800 to sysfs [ 830.379018][T23937] ERROR: Out of memory at tomoyo_memory_ok. [ 830.857859][T23929] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 830.863999][T23929] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 830.874910][T23929] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 830.882056][T23929] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 830.976254][T23949] netlink: 248 bytes leftover after parsing attributes in process `syz.3.6704'. [ 831.488107][T23965] serio: Serial port pty6 [ 832.146450][ T5832] Bluetooth: hci1: command 0x0406 tx timeout [ 832.521056][T23980] sp0: Synchronizing with TNC [ 832.866894][ T5832] Bluetooth: hci2: command 0x0406 tx timeout [ 832.895638][T23999] netlink: 342 bytes leftover after parsing attributes in process `syz.0.6720'. [ 832.923474][T23991] zswap: compressor û not available [ 832.948062][ T5832] Bluetooth: hci0: command 0x0406 tx timeout [ 832.954317][ T5832] Bluetooth: hci3: command 0x2016 tx timeout [ 833.142947][T24003] futex_wake_op: syz.0.6722 tries to shift op by -1; fix this program [ 833.248594][T24010] random: crng reseeded on system resumption [ 833.403473][T24015] netlink: 342 bytes leftover after parsing attributes in process `syz.0.6724'. [ 834.507790][T24046] netlink: 25 bytes leftover after parsing attributes in process `syz.3.6735'. [ 835.309562][T24060] netlink: 342 bytes leftover after parsing attributes in process `syz.1.6738'. [ 835.826177][T24061] zswap: compressor û not available [ 836.342712][T24088] netlink: 'syz.3.6748': attribute type 1 has an invalid length. [ 836.360297][T24088] netlink: 306 bytes leftover after parsing attributes in process `syz.3.6748'. [ 836.389673][T24088] netlink: 'syz.3.6748': attribute type 1 has an invalid length. [ 836.413151][T24088] netlink: 306 bytes leftover after parsing attributes in process `syz.3.6748'. [ 837.370029][T24110] netlink: 146 bytes leftover after parsing attributes in process `syz.2.6757'. [ 837.868249][T24117] netlink: 252 bytes leftover after parsing attributes in process `syz.0.6766'. [ 837.877790][T24117] unsupported nla_type 65535 [ 838.086489][T24116] mkiss: ax0: crc mode is auto. [ 838.098464][T24120] zswap: compressor û not available [ 838.383449][T24097] kexec: Could not allocate control_code_buffer [ 838.519132][T24137] ERROR: Out of memory at tomoyo_memory_ok. [ 838.529091][T24139] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 838.647356][T24144] futex_wake_op: syz.2.6767 tries to shift op by -2048; fix this program [ 838.671241][T24144] futex_wake_op: syz.2.6767 tries to shift op by -2048; fix this program [ 838.935058][T24154] netlink: 25 bytes leftover after parsing attributes in process `syz.0.6770'. [ 839.251818][T24164] netlink: 346 bytes leftover after parsing attributes in process `syz.2.6776'. [ 839.500407][T24175] mkiss: ax0: crc mode is auto. [ 839.528266][T24178] futex_wake_op: syz.1.6780 tries to shift op by -2048; fix this program [ 839.537309][T24178] futex_wake_op: syz.1.6780 tries to shift op by -2048; fix this program [ 839.779046][T24187] zswap: compressor not available [ 840.177024][T24203] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 840.909976][T24222] zswap: compressor not available [ 841.118616][T24231] netlink: 'syz.3.6802': attribute type 33 has an invalid length. [ 841.436767][ T5832] Bluetooth: hci2: Unable to find connection for big 0xd2 [ 841.461427][T24246] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6807'. [ 841.473915][T24246] netlink: 13 bytes leftover after parsing attributes in process `syz.1.6807'. [ 841.501477][T24246] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6807'. [ 841.722963][T24252] qrtr: Invalid version 0 [ 843.074642][T24283] netlink: 326 bytes leftover after parsing attributes in process `syz.0.6820'. [ 844.492161][ T5832] Bluetooth: hci3: ISO packet for unknown connection handle 0 [ 845.460701][T24341] zswap: compressor not available [ 846.742573][T24367] netlink: 330 bytes leftover after parsing attributes in process `syz.0.6856'. [ 847.440423][T24387] random: crng reseeded on system resumption [ 849.673634][T24423] ERROR: Out of memory at tomoyo_memory_ok. [ 851.306859][T24460] netlink: 28 bytes leftover after parsing attributes in process `syz.1.6884'. [ 854.722071][T24514] netlink: 342 bytes leftover after parsing attributes in process `syz.0.6901'. [ 854.732163][T24514] IPv6: NLM_F_REPLACE set, but no existing node found! [ 855.246284][T24526] ------------[ cut here ]------------ [ 855.252683][T24526] Reader on commit with 12925 missed events [ 855.252706][T24526] WARNING: kernel/trace/ring_buffer.c:7409 at ring_buffer_map_get_reader+0x63c/0x880, CPU#1: syz.2.6905/24526 [ 855.270295][T24526] Modules linked in: [ 855.275100][T24526] CPU: 1 UID: 0 PID: 24526 Comm: syz.2.6905 Tainted: G U L syzkaller #0 PREEMPT(full) [ 855.286097][T24526] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 855.291316][T24526] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 855.301404][T24526] RIP: 0010:ring_buffer_map_get_reader+0x63f/0x880 [ 855.308407][T24526] Code: 48 c1 ea 03 80 3c 02 00 0f 85 4f 02 00 00 4c 3b a3 a0 00 00 00 0f 85 7b 19 17 ff e8 5b d7 fb ff 48 8d 3d 04 11 d1 0e 4c 89 fe <67> 48 0f b9 3a e9 e0 fc ff ff 4c 8b 7c 24 58 4c 8b 74 24 60 e8 38 [ 855.328061][T24526] RSP: 0018:ffffc9000e6cfd90 EFLAGS: 00010083 [ 855.334146][T24526] RAX: 00000000000007ba RBX: ffff88813fe9d000 RCX: ffffc90003b79000 [ 855.342110][T24526] RDX: 0000000000080000 RSI: 000000000000327d RDI: ffffffff90dd3190 [ 855.350082][T24526] RBP: ffff888034fed980 R08: 0000000000000007 R09: 0000000000000000 [ 855.358057][T24526] R10: 000000000000327d R11: ffff88813fe9d0b0 R12: ffff888034fed980 [ 855.366025][T24526] R13: dffffc0000000000 R14: ffff88813fe9d0a8 R15: 000000000000327d [ 855.373999][T24526] FS: 00007fa48a2906c0(0000) GS:ffff88812445a000(0000) knlGS:0000000000000000 [ 855.382946][T24526] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 855.389523][T24526] CR2: 0000001b34d09ff8 CR3: 000000003262c000 CR4: 00000000003526f0 [ 855.397484][T24526] Call Trace: [ 855.400759][T24526] [ 855.403684][T24526] ? __pfx_ring_buffer_map_get_reader+0x10/0x10 [ 855.409924][T24526] ? __fget_files+0x21f/0x3d0 [ 855.414597][T24526] tracing_buffers_ioctl+0x30d/0x400 [ 855.419876][T24526] ? __pfx_tracing_buffers_ioctl+0x10/0x10 [ 855.425676][T24526] __x64_sys_ioctl+0x18e/0x210 [ 855.430438][T24526] do_syscall_64+0x106/0xf80 [ 855.435028][T24526] ? clear_bhb_loop+0x40/0x90 [ 855.439705][T24526] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 855.445599][T24526] RIP: 0033:0x7fa48939bf79 [ 855.450008][T24526] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 855.469702][T24526] RSP: 002b:00007fa48a290028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 855.478121][T24526] RAX: ffffffffffffffda RBX: 00007fa489615fa0 RCX: 00007fa48939bf79 [ 855.486114][T24526] RDX: 0000000000000000 RSI: 0000000000005220 RDI: 0000000000000002 [ 855.494156][T24526] RBP: 00007fa4894327e0 R08: 0000000000000000 R09: 0000000000000000 [ 855.502108][T24526] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 855.510064][T24526] R13: 00007fa489616038 R14: 00007fa489615fa0 R15: 00007ffd59c64378 [ 855.518029][T24526] [ 855.521032][T24526] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 855.528291][T24526] CPU: 1 UID: 0 PID: 24526 Comm: syz.2.6905 Tainted: G U L syzkaller #0 PREEMPT(full) [ 855.539226][T24526] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 855.544398][T24526] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 855.554440][T24526] Call Trace: [ 855.557708][T24526] [ 855.560630][T24526] dump_stack_lvl+0x100/0x190 [ 855.565305][T24526] vpanic+0x552/0x970 [ 855.569280][T24526] ? __pfx_vpanic+0x10/0x10 [ 855.573779][T24526] panic+0xd1/0xe0 [ 855.577496][T24526] ? __pfx_panic+0x10/0x10 [ 855.581911][T24526] check_panic_on_warn.cold+0x19/0x34 [ 855.587291][T24526] ? ring_buffer_map_get_reader+0x63c/0x880 [ 855.593188][T24526] __warn.cold+0x191/0x348 [ 855.597604][T24526] __report_bug+0x296/0x3d0 [ 855.602102][T24526] ? ring_buffer_map_get_reader+0x63c/0x880 [ 855.607988][T24526] ? __pfx___report_bug+0x10/0x10 [ 855.612996][T24526] ? rcu_is_watching+0x12/0xc0 [ 855.617757][T24526] ? rb_set_head_page+0x1e6/0x2f0 [ 855.622766][T24526] report_bug_entry+0xe1/0x290 [ 855.627516][T24526] ? ring_buffer_map_get_reader+0x63f/0x880 [ 855.633419][T24526] handle_bug+0x1c9/0x2a0 [ 855.637740][T24526] exc_invalid_op+0x17/0x50 [ 855.642232][T24526] asm_exc_invalid_op+0x1a/0x20 [ 855.647066][T24526] RIP: 0010:ring_buffer_map_get_reader+0x63f/0x880 [ 855.653564][T24526] Code: 48 c1 ea 03 80 3c 02 00 0f 85 4f 02 00 00 4c 3b a3 a0 00 00 00 0f 85 7b 19 17 ff e8 5b d7 fb ff 48 8d 3d 04 11 d1 0e 4c 89 fe <67> 48 0f b9 3a e9 e0 fc ff ff 4c 8b 7c 24 58 4c 8b 74 24 60 e8 38 [ 855.673266][T24526] RSP: 0018:ffffc9000e6cfd90 EFLAGS: 00010083 [ 855.679327][T24526] RAX: 00000000000007ba RBX: ffff88813fe9d000 RCX: ffffc90003b79000 [ 855.687310][T24526] RDX: 0000000000080000 RSI: 000000000000327d RDI: ffffffff90dd3190 [ 855.695280][T24526] RBP: ffff888034fed980 R08: 0000000000000007 R09: 0000000000000000 [ 855.703241][T24526] R10: 000000000000327d R11: ffff88813fe9d0b0 R12: ffff888034fed980 [ 855.711199][T24526] R13: dffffc0000000000 R14: ffff88813fe9d0a8 R15: 000000000000327d [ 855.719178][T24526] ? __pfx_ring_buffer_map_get_reader+0x10/0x10 [ 855.725419][T24526] ? __fget_files+0x21f/0x3d0 [ 855.730087][T24526] tracing_buffers_ioctl+0x30d/0x400 [ 855.735405][T24526] ? __pfx_tracing_buffers_ioctl+0x10/0x10 [ 855.741195][T24526] __x64_sys_ioctl+0x18e/0x210 [ 855.745946][T24526] do_syscall_64+0x106/0xf80 [ 855.750534][T24526] ? clear_bhb_loop+0x40/0x90 [ 855.755204][T24526] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 855.761091][T24526] RIP: 0033:0x7fa48939bf79 [ 855.765499][T24526] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 855.785124][T24526] RSP: 002b:00007fa48a290028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 855.793548][T24526] RAX: ffffffffffffffda RBX: 00007fa489615fa0 RCX: 00007fa48939bf79 [ 855.801519][T24526] RDX: 0000000000000000 RSI: 0000000000005220 RDI: 0000000000000002 [ 855.809561][T24526] RBP: 00007fa4894327e0 R08: 0000000000000000 R09: 0000000000000000 [ 855.817515][T24526] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 855.825464][T24526] R13: 00007fa489616038 R14: 00007fa489615fa0 R15: 00007ffd59c64378 [ 855.833430][T24526] [ 855.836889][T24526] Kernel Offset: disabled [ 855.841210][T24526] Rebooting in 86400 seconds..