last executing test programs: 2m28.386810054s ago: executing program 2 (id=5978): socket(0x10, 0x80805, 0x0) mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0xffffffffffffffff, 0x28000) openat$auto_nsim_pp_hold_fops_netdev(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/netdevsim/netdevsim1/ports/3/pp_hold\x00', 0x101001, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x2440, 0x0) read$auto(r0, 0x0, 0x20) select$auto(0x9, 0x0, 0x0, &(0x7f0000000040)={[0xfffffffffffffffd, 0x0, 0xa, 0x40007fff, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x20000000000003, 0x8000400, 0x7, 0x7, 0x2, 0x93, 0x400000001, 0x2]}, 0x0) writev$auto(0x3, &(0x7f0000000080)={0x0, 0x1}, 0x3) bind$auto(0x3, &(0x7f0000000040)=@xdp={0x2c, 0x9, 0x0, 0x37}, 0x9) 2m28.214694743s ago: executing program 2 (id=5979): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0fee66508c411b43a79907"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='U'], 0x1ac}}, 0x20000040) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc6}, 0x1, 0x0, 0x2, 0x9}, 0x7}, 0x3, 0x0) 2m28.033348628s ago: executing program 2 (id=5980): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x1, 0x0) r0 = socket(0xa, 0x801, 0x106) setsockopt$auto(r0, 0x6, 0x24, 0x0, 0x9) write$auto(0x3, 0x0, 0xfffffdef) shutdown$auto(0x200000003, 0x2) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) 2m27.741751405s ago: executing program 2 (id=5983): close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x3, 0x6) lsm_list_modules$auto(0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x401c5820, 0x0) mkdir$auto(0x0, 0x353) 2m27.31098034s ago: executing program 2 (id=5986): sendmsg$auto_NL80211_CMD_GET_MPATH(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x41811}, 0x20000000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto_KVM_GET_MSRS(r0, 0x4068aea3, &(0x7f0000000080)={0xc0}) 2m26.111932596s ago: executing program 2 (id=5992): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) truncate$auto(&(0x7f0000000040)='./cgroup.cpu/cgroup.procs\x00', 0x6) syz_genetlink_get_family_id$auto_seg6(0x0, 0xffffffffffffffff) bind$auto(0xffffffffffffffff, &(0x7f0000000040)=@generic={0xa, "2c551d000000fe8000"}, 0x66) 2m25.788573345s ago: executing program 32 (id=5992): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) truncate$auto(&(0x7f0000000040)='./cgroup.cpu/cgroup.procs\x00', 0x6) syz_genetlink_get_family_id$auto_seg6(0x0, 0xffffffffffffffff) bind$auto(0xffffffffffffffff, &(0x7f0000000040)=@generic={0xa, "2c551d000000fe8000"}, 0x66) 2.640214931s ago: executing program 3 (id=7237): io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7ffffffc, 0x8, 0x3000, 0x6, 0x7, 0x400b, 0xffffffffffffffff, [], {0x7, 0x6, 0x8c48, 0x29a, 0x9, 0x80, 0x104, 0x6, 0x4}, {0x100, 0x1, 0x101, 0x80000001, 0x2, 0x24, 0xfe000000, 0x8, 0x3}}) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x0, 0xffffffffffffffff, 0x2) socketpair$auto(0x1, 0x8, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_generic(0x10, 0x3, 0x10) fcntl$auto(0x8000000000000001, 0x26, 0x0) fcntl$auto(r0, 0x7, 0x4) mmap$auto(0x0, 0x400005, 0xe1, 0x9a72, 0xffffffffffffffff, 0x8000) close_range$auto(0x2, 0x8, 0x0) 2.477095149s ago: executing program 0 (id=7239): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/input/event0\x00', 0x40000, 0x0) ioctl$auto_EVIOCGRAB(r0, 0x40044590, &(0x7f0000000000)=0x5) r1 = setfsuid$auto(0xee01) setresuid$auto(0x0, r1, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x400000003) close_range$auto(0x2, 0x8, 0x0) 2.340668859s ago: executing program 1 (id=7241): mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4) open$dir(&(0x7f00000001c0)='./file0\x00', 0x201, 0x14) openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000040), 0x481, 0x0) open(&(0x7f00000002c0)='./file0\x00', 0x200, 0x1c7) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D2\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0x8, 0x0, 0x0, &(0x7f00000002c0)={[0x1fe, 0x7, 0xd, 0x1, 0x948d, 0x1ff, 0x15f4da07, 0x3, 0x8003, 0x65, 0x8000001f, 0x1000, 0x100000000006d3e, 0x9, 0x1, 0x8]}, 0x0) select$auto(0x9, &(0x7f00000000c0)={[0xeeda, 0x7, 0x100000001, 0x9, 0x6, 0x1ff, 0x6, 0x7, 0x4, 0x0, 0x4000000000003, 0x4303, 0x1, 0x9a8c, 0x9, 0x10001]}, 0x0, 0x0, &(0x7f0000000280)={0x6, 0xcb}) 2.313612894s ago: executing program 3 (id=7243): socket(0x11, 0x80003, 0x300) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) setsockopt$auto_SO_OOBINLINE(0xffffffffffffffff, 0x3, 0xa, 0x0, 0x2) close_range$auto(0x2, 0xa, 0x0) socket(0x18, 0xa, 0x1) socket(0xa, 0x2, 0x0) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) 2.180511358s ago: executing program 0 (id=7244): mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0x1, 0x0) close_range$auto(0x2, 0x8, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0xa, 0x2, 0x73) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) socket(0x1, 0x1, 0x0) bind$auto(0x3, 0x0, 0x6b) listen$auto(0x3, 0x81) accept$auto(0x3, 0x0, 0x0) 2.163015232s ago: executing program 4 (id=7245): syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0xa, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1e, 0x4, 0x0) r0 = socket(0x1e, 0x4, 0x0) get_robust_list$auto(0x0, 0x0, 0x0) setsockopt$auto(r0, 0x10f, 0x87, 0x0, 0x14) setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) 1.864152869s ago: executing program 1 (id=7246): r0 = socket(0x15, 0x5, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) getsockopt$auto(r0, 0x114, 0x271e, 0xfffffffffffffffc, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0xa, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/net/lapb4/ifalias\x00', 0x1a1842, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty51\x00', 0x40001, 0x0) write$auto(0x3, 0x0, 0xfdef) ioctl$auto(0x3, 0x540a, r1) 1.838237639s ago: executing program 4 (id=7247): sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x7, 0x800008000) close_range$auto(0x2, 0x8, 0x0) r0 = socket(0x29, 0x2, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000) recvmmsg$auto(r1, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0) ioctl$auto(r0, 0x8934, 0x24) 1.619811346s ago: executing program 3 (id=7248): socket(0x10, 0x2, 0x4) mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2a, 0x2, 0x4) r0 = socket(0x1d, 0x2, 0x7) r1 = socket(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) bind$auto(r0, &(0x7f0000000000)=@can={0x1d, r2}, 0x6a) connect$auto(0x3, &(0x7f00000018c0)=@can={0x1d, r3}, 0x18) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x3f0000f5) 1.428395715s ago: executing program 1 (id=7249): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0xa, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) socket(0x1e, 0x805, 0x0) sysfs$auto(0x2, 0x15, 0x0) fsopen$auto(0x0, 0x1) fsconfig$auto(r0, 0x1, &(0x7f0000000200)='I\xee\"\xe3\xb7\xcfD\xe5\xb1\x05\x1e#\xff1<\xd9h[e\xdf\xc0M\xa2\x00\v\x97\xb5\xd4\x94\x99u\x9e\xf4O\x1a\xb1\x05\xb8\xcb\x96\fd\xa3\xf9&\xc9~\x10\x06X\a\xc8\xb7\x97\xc7M\x83\'^\xc9\x9e\xccAsv\xce8sw\v\xac\xcd\xa2B\xf8.\xce\xe6n\xfe\xd6\xc8^W>Rz`C+\x0e\x8c<\xc5\x8f\xe6\x0f\x14\xfa\x9ea4>\xd8O[{\xede\xfd\xbc\xc7\xbd4_\xbc\xc6\x06\xe5h\x9e\xf5/4\xe8\xcfc\x95\xbb~\xd9.\xb3\x84\xb8K\xa7\xca\xda\xc8\x11u\xa1\x1d\x9d\xe1%\xc0m\xf6%1\xba\xe7^\xed0\xdc\x86\xeaG)?p,Up \xe9\b\x14\xaf\xbf\xd9\xc3,\xb8\x17\x10\x9f\x92\x95@),A\xb4\x92Q\x86\xbe\xed=p\x1b\x9d\xd4\x99_]K\xce.\x00\x00\x00\x8eDv\x0fl\xed\x93ey\xf9\x19\xf0\x9d\xf5\xfe\xed\xc7Q\xc0ZJ\xc9*7\xf2\x1a\xa7\xb3\xc6v\v\xe1u\x16:\x15\xefel\xf0\x8c/\xa2\x95\xc1\xacd\xc9\a\xe5\x888F\xaa\xce\x94\xa2zsx\xea\x96\x7f~]\xdbj\xd1#\x94K\xcf\x11l\xe5Z\xec\xa6B\x90\xb6\xa3`\x88\xd4\x87\x17\x8a\xedFx\x95#\x83\x99\x00\xc6Z\x1au\x8e\xa7}\xa7\xe9\x83X\xa3\xad\xe2T\xea\xa0\xba\xd7R8T\x00\x8e0h\x8ck4\x15\xf3sh0\xd3\x1e\xedU@\xab\xc0g\xeeT\xc5\x8d\x9b\x188x)\xf0i]\xdcf\xdd\xf9\xffA\"ZQ\x8d\x15\xff\xf3WYX\x8a/\xb36\x1d\x8e7\xb2d3\xe8\xf4\x1e3\xec\xfe\xbf\xbbo\xbb\xd2Z\x89:\xa2\xc8n8k\xa8\xba\xa5E\x9f\xbe>3,\xcb\xa2\xa7q \xe2', &(0x7f0000000280), 0x0) read$auto(0x3, 0x0, 0x7) 1.24173202s ago: executing program 1 (id=7250): close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) write$auto(0xffffffffffffffff, &(0x7f0000000080)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbbOO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\b\xc1\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(', 0xa) socket(0x25, 0x1, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0) r1 = getpid() openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/dri/vkms/clients\x00', 0x2100, 0x0) pipe2$auto(&(0x7f00000000c0), 0x0) process_vm_readv$auto(r1, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0) ioctl$auto(r0, 0x40246f4c, 0x38) 1.218888773s ago: executing program 0 (id=7251): mmap$auto(0x0, 0x20009, 0x10000000000df, 0x4eb2, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x155) socket(0x2, 0x80802, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(0x3, 0x0, 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0xe000) close_range$auto(0x2, 0x8000, 0x0) 1.199518575s ago: executing program 3 (id=7252): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/neigh/vlan1/base_reachable_time\x00', 0x40400, 0x0) read$auto(r0, 0x0, 0x1ff) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0C0F:00/status\x00', 0xa140, 0x0) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x8002, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) socket$nl_generic(0x10, 0x3, 0x10) r3 = socket(0xa, 0x2, 0x3a) setsockopt$auto(r3, 0x29, 0x13, 0x0, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000240)=""/122, 0x7a) 1.091595988s ago: executing program 0 (id=7253): openat$auto_show_traces_fops_trace(0xffffffffffffff9c, 0x0, 0x826c0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) socket(0x2b, 0x1, 0x0) write$auto_seq_oss_f_ops_seq_oss(0xffffffffffffffff, &(0x7f0000000040)="5f74ab2fc43781e047140a5cbc3ac5229b90633d9cddda9efb1f2c3d5d1e63f3fb5acf079b9336319d009cb514679a42eaca52b81c166d19625d173c26ece6542f2fb29712f4fb9072fc432b4cf3e6f5a7f3c9f91ee88ba5fa11d48fd3658e8f44f8423b4cd02bbec912ed34f9f4b19b03d4c62b24ede44c0c76c34edf7bde061903c2ee4c64110ac668239fa53ba42933ae74c3d173663248ff0945dd2e405e0d378b5a8e4643a7bc3b35a7248431450ca8901467ea6dc5d86de1e90f869f6a04ac10043676f3b2c7f1339b2d7468133fb8447d17846b6b78079ecc31d7d0f74caa4a3db1ac4d312bfdb34bd331f1f771a2396108561a52153d63a7b2a3a077a7e4c1a22bcb23e1f3e511fee310baa67904d2aad4d6671e8b77c7720e37e84e0efecb60a35f188cbe8b8b2fb3967b78aa482aabb103f23083baa9b2ae653731d5993db4054233dea4af25795e12eb4d6b046bdeea6adce8626e0def15dd32b0ec16a8", 0x163) r1 = socket(0x10, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000003b40)={'xfrm0\x00', 0x0}) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="000226bd7000fedbdf25030000000800030000020000060007000080000008000200", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a00010000000000000000000a000500000000000000000008000200", @ANYRES32], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x4000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYRES16=r2], 0x1ac}}, 0x40001) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4040044}, 0x40000) sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x60, &(0x7f0000000000)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f0000000080), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) 1.006085707s ago: executing program 0 (id=7254): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x8000000000000010, 0x401, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc0002, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) socket(0x1e, 0x4, 0x0) pipe2$auto(0x0, 0x80) writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1) socket(0x10, 0x2, 0x6) r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace$auto(0x10, r0, 0x4, 0x7ff) ptrace$auto(0xf, r0, 0x1, 0x4053) 1.003173499s ago: executing program 1 (id=7255): close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/net/nr14/proto_down\x00', 0x82942, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0xa0801, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = socketcall$auto(0x8000, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae89, &(0x7f00000000c0)={0xdd, 0x0, [{0x1d9, 0x400, 0xfffffffffffffffe}]}) 784.725432ms ago: executing program 4 (id=7256): close_range$auto(0x2, 0x8, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) r0 = socket(0x10, 0x2, 0x4) close_range$auto(0x2, 0x8, 0x0) open(&(0x7f0000000100)='.\x00', 0x0, 0x0) socket(0x10, 0x2, 0xc) sendmsg$auto_TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000003780)={0x0, 0x0, &(0x7f0000003740)={&(0x7f0000000000)=ANY=[@ANYBLOB="b1000000", @ANYRES16, @ANYBLOB="0100"], 0x20}, 0x1, 0x0, 0x0, 0x41}, 0x40080) r1 = socket(0x10, 0x2, 0xc) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000", @ANYRES8=r1, @ANYBLOB="01"], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x4080) write$auto(r0, &(0x7f0000000000)='-\x00', 0xfdef) 695.545684ms ago: executing program 1 (id=7257): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000180)=@in={0x2, 0x3, @multicast1}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @empty}, 0x51) r0 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) statx$auto(r0, 0x0, 0x401006, 0x4015, 0x0) setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88) write$auto(0x3, 0x0, 0xfdef) 603.41847ms ago: executing program 0 (id=7258): r0 = socket(0x2, 0x5, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x41}}, 0x6a) listen$auto(0x3, 0x81) read$auto(r0, 0x0, 0x7) close_range$auto(0x2, r0, 0x0) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @local}, 0x6a) listen$auto(0x3, 0x81) close_range$auto(0x2, 0xa, 0x0) 578.643094ms ago: executing program 4 (id=7259): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) signalfd$auto(0xffffffffffffffff, 0x0, 0x8) r0 = epoll_create$auto(0x3e) epoll_ctl$auto(r0, 0x1, 0x8000000000000000, 0x0) timer_create$auto(0x3, 0x0, 0x0) rt_sigprocmask$auto(0x0, &(0x7f0000000000)={0xfffffffffffffe01}, 0x0, 0x8) timer_settime$auto(0x0, 0x3, &(0x7f00000000c0)={{0x0, 0x400}, {0x0, 0x87}}, 0x0) sendmsg$auto_SEG6_CMD_GET_TUNSRC(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20004000}, 0x4) ppoll$auto(&(0x7f0000000140)={0xffffffffffffffff, 0x3ff, 0x4}, 0x7f, 0x0, 0x0, 0x8) 528.036138ms ago: executing program 3 (id=7260): ioctl$auto_TUNGETIFF2(0xffffffffffffffff, 0x800454d2, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) rseq$auto(0x0, 0x8000, 0x0, 0x6) mmap$auto(0x0, 0x400008, 0xdf, 0x12, 0x2, 0x8000) socket(0x2, 0x1, 0x106) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) write$auto(0x1, 0x0, 0x80000000) socket$nl_generic(0x10, 0x3, 0x10) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) 397.30903ms ago: executing program 4 (id=7261): mmap$auto(0x0, 0x400008, 0xdf, 0x38, 0xffffffffffffffff, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1e, 0x4, 0x0) socket(0x1e, 0x4, 0x0) io_uring_setup$auto(0xa, 0x0) read$auto(0x4, 0x0, 0xfdef) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) socket(0x2, 0x5, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/tty/ptyte/power/runtime_status\x00', 0x80000, 0x0) 696.582µs ago: executing program 3 (id=7262): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = io_uring_setup$auto(0x6, 0x0) ioctl$auto_TUNGETIFF(r0, 0x800454d2, &(0x7f0000000100)=0x798) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1400, 0x0) mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x8e051, r1, 0x0) ioctl$auto_tracing_buffers_fops_trace(r1, 0x5220, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) write$auto(0xffffffffffffffff, 0x0, 0x1e1) 0s ago: executing program 4 (id=7270): mmap$auto(0x0, 0x20009, 0x4000000000cf, 0xeb1, 0xffffffffffffffff, 0x8000) r0 = socket(0x2b, 0x1, 0x0) io_uring_setup$auto(0x6, 0x0) clock_adjtime$auto(0x4, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(0x3, &(0x7f00000018c0)=@in={0x2, 0x300, @loopback=0xac14140a}, 0x55) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x1ed240, 0xae) socket(0x2, 0x3, 0xa) kernel console output (not intermixed with test programs): me failslab, interval 1, probability 393216, space 0, times 0 [ 722.659288][T22727] CPU: 0 UID: 0 PID: 22727 Comm: syz.4.6258 Tainted: G U L syzkaller #0 PREEMPT(full) [ 722.659342][T22727] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 722.659354][T22727] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 722.659373][T22727] Call Trace: [ 722.659382][T22727] [ 722.659395][T22727] dump_stack_lvl+0x100/0x190 [ 722.659439][T22727] should_fail_ex.cold+0x5/0xa [ 722.659487][T22727] should_failslab+0xc2/0x120 [ 722.659528][T22727] ? sk_prot_alloc+0x10b/0x2a0 [ 722.659558][T22727] __kmalloc_noprof+0xf6/0x9c0 [ 722.659600][T22727] ? sk_prot_alloc+0x10b/0x2a0 [ 722.659629][T22727] ? find_held_lock+0x2b/0x80 [ 722.659664][T22727] sk_prot_alloc+0x10b/0x2a0 [ 722.659699][T22727] sk_alloc+0x36/0xe80 [ 722.659742][T22727] tap_open+0x2ed/0x1180 [ 722.659776][T22727] ? __pfx_tap_open+0x10/0x10 [ 722.659806][T22727] chrdev_open+0x234/0x6a0 [ 722.659843][T22727] ? __pfx_apparmor_file_open+0x10/0x10 [ 722.659882][T22727] ? __pfx_chrdev_open+0x10/0x10 [ 722.659920][T22727] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 722.659965][T22727] do_dentry_open+0x73e/0x1570 [ 722.660000][T22727] ? __pfx_chrdev_open+0x10/0x10 [ 722.660038][T22727] ? security_inode_permission+0xbf/0x250 [ 722.660088][T22727] vfs_open+0x82/0x3f0 [ 722.660135][T22727] path_openat+0x21dc/0x3120 [ 722.660183][T22727] ? __pfx_path_openat+0x10/0x10 [ 722.660233][T22727] do_filp_open+0x1f7/0x420 [ 722.660271][T22727] ? __pfx_do_filp_open+0x10/0x10 [ 722.660334][T22727] ? _raw_spin_unlock+0x28/0x50 [ 722.660364][T22727] ? alloc_fd+0x476/0x790 [ 722.660407][T22727] do_sys_openat2+0x12e/0x220 [ 722.660452][T22727] ? __pfx_do_sys_openat2+0x10/0x10 [ 722.660499][T22727] ? find_held_lock+0x2b/0x80 [ 722.660538][T22727] __x64_sys_openat+0x12d/0x210 [ 722.660582][T22727] ? __pfx___x64_sys_openat+0x10/0x10 [ 722.660623][T22727] ? xfd_validate_state+0x129/0x190 [ 722.660692][T22727] do_syscall_64+0xc9/0xf80 [ 722.660728][T22727] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 722.660753][T22727] RIP: 0033:0x7fab92d9aeb9 [ 722.660775][T22727] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 722.660799][T22727] RSP: 002b:00007fab93ced028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 722.660826][T22727] RAX: ffffffffffffffda RBX: 00007fab93015fa0 RCX: 00007fab92d9aeb9 [ 722.660844][T22727] RDX: 0000000000000801 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 722.660859][T22727] RBP: 00007fab92e08c1f R08: 0000000000000000 R09: 0000000000000000 [ 722.660875][T22727] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 722.660889][T22727] R13: 00007fab93016038 R14: 00007fab93015fa0 R15: 00007ffee63600c8 [ 722.660924][T22727] [ 723.741878][T22744] FAULT_INJECTION: forcing a failure. [ 723.741878][T22744] name failslab, interval 1, probability 393216, space 0, times 0 [ 723.808159][T22744] CPU: 1 UID: 0 PID: 22744 Comm: syz.0.6264 Tainted: G U L syzkaller #0 PREEMPT(full) [ 723.808213][T22744] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 723.808226][T22744] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 723.808243][T22744] Call Trace: [ 723.808253][T22744] [ 723.808264][T22744] dump_stack_lvl+0x100/0x190 [ 723.808319][T22744] should_fail_ex.cold+0x5/0xa [ 723.808367][T22744] should_failslab+0xc2/0x120 [ 723.808410][T22744] kmem_cache_alloc_noprof+0x83/0x780 [ 723.808449][T22744] ? __kernfs_new_node+0xd2/0x960 [ 723.808496][T22744] ? __kernfs_new_node+0xd2/0x960 [ 723.808533][T22744] __kernfs_new_node+0xd2/0x960 [ 723.808577][T22744] ? __pfx___kernfs_new_node+0x10/0x10 [ 723.808627][T22744] ? find_held_lock+0x2b/0x80 [ 723.808657][T22744] ? kernfs_root+0xee/0x2a0 [ 723.808694][T22744] ? kernfs_root+0xee/0x2a0 [ 723.808742][T22744] kernfs_new_node+0x11b/0x1a0 [ 723.808797][T22744] __kernfs_create_file+0x53/0x350 [ 723.808835][T22744] sysfs_add_file_mode_ns+0x207/0x3c0 [ 723.808884][T22744] sysfs_merge_group+0x194/0x340 [ 723.808928][T22744] ? __pfx_sysfs_merge_group+0x10/0x10 [ 723.808975][T22744] ? __pfx_dev_add_physical_location+0x10/0x10 [ 723.809015][T22744] ? bus_to_subsys+0x114/0x150 [ 723.809065][T22744] dpm_sysfs_add+0x237/0x280 [ 723.809106][T22744] device_add+0x9ef/0x1950 [ 723.809150][T22744] ? __pfx_device_add+0x10/0x10 [ 723.809189][T22744] ? lockdep_init_map_type+0x5c/0x250 [ 723.809231][T22744] ? __init_waitqueue_head+0xca/0x150 [ 723.809285][T22744] rfkill_register+0x1ad/0xb30 [ 723.809328][T22744] nfc_register_device+0x11f/0x3e0 [ 723.809372][T22744] nci_register_device+0x7f1/0xb80 [ 723.809406][T22744] ? __pfx_nci_register_device+0x10/0x10 [ 723.809443][T22744] ? lockdep_init_map_type+0x5c/0x250 [ 723.809490][T22744] virtual_ncidev_open+0x141/0x220 [ 723.809545][T22744] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 723.809590][T22744] misc_open+0x26d/0x450 [ 723.809629][T22744] ? __pfx_misc_open+0x10/0x10 [ 723.809670][T22744] chrdev_open+0x234/0x6a0 [ 723.809705][T22744] ? __pfx_apparmor_file_open+0x10/0x10 [ 723.809749][T22744] ? __pfx_chrdev_open+0x10/0x10 [ 723.809787][T22744] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 723.809830][T22744] do_dentry_open+0x73e/0x1570 [ 723.809864][T22744] ? __pfx_chrdev_open+0x10/0x10 [ 723.809901][T22744] ? security_inode_permission+0xbf/0x250 [ 723.809950][T22744] vfs_open+0x82/0x3f0 [ 723.809997][T22744] path_openat+0x21dc/0x3120 [ 723.810046][T22744] ? __pfx_path_openat+0x10/0x10 [ 723.810095][T22744] do_filp_open+0x1f7/0x420 [ 723.810133][T22744] ? __pfx_do_filp_open+0x10/0x10 [ 723.810196][T22744] ? _raw_spin_unlock+0x28/0x50 [ 723.810225][T22744] ? alloc_fd+0x476/0x790 [ 723.810269][T22744] do_sys_openat2+0x12e/0x220 [ 723.810322][T22744] ? __pfx_do_sys_openat2+0x10/0x10 [ 723.810370][T22744] ? find_held_lock+0x2b/0x80 [ 723.810409][T22744] __x64_sys_openat+0x12d/0x210 [ 723.810457][T22744] ? __pfx___x64_sys_openat+0x10/0x10 [ 723.810499][T22744] ? xfd_validate_state+0x129/0x190 [ 723.810557][T22744] do_syscall_64+0xc9/0xf80 [ 723.810595][T22744] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 723.810625][T22744] RIP: 0033:0x7f018b99aeb9 [ 723.810650][T22744] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 723.810678][T22744] RSP: 002b:00007f0189bf6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 723.810707][T22744] RAX: ffffffffffffffda RBX: 00007f018bc15fa0 RCX: 00007f018b99aeb9 [ 723.810727][T22744] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 723.810747][T22744] RBP: 00007f018ba08c1f R08: 0000000000000000 R09: 0000000000000000 [ 723.810765][T22744] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 723.810782][T22744] R13: 00007f018bc16038 R14: 00007f018bc15fa0 R15: 00007ffc582dfbb8 [ 723.810822][T22744] [ 724.411317][T22754] netlink: 252 bytes leftover after parsing attributes in process `syz.4.6265'. [ 724.567826][T22758] netlink: 342 bytes leftover after parsing attributes in process `syz.3.6268'. [ 724.590464][T22758] netlink: 146 bytes leftover after parsing attributes in process `syz.3.6268'. [ 726.611743][T22826] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6295'. [ 726.629455][T22826] netlink: 25 bytes leftover after parsing attributes in process `syz.3.6295'. [ 727.010426][T22839] FAULT_INJECTION: forcing a failure. [ 727.010426][T22839] name failslab, interval 1, probability 393216, space 0, times 0 [ 727.024761][T22839] CPU: 1 UID: 0 PID: 22839 Comm: syz.4.6299 Tainted: G U L syzkaller #0 PREEMPT(full) [ 727.024813][T22839] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 727.024824][T22839] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 727.024842][T22839] Call Trace: [ 727.024853][T22839] [ 727.024865][T22839] dump_stack_lvl+0x100/0x190 [ 727.024908][T22839] should_fail_ex.cold+0x5/0xa [ 727.024958][T22839] should_failslab+0xc2/0x120 [ 727.024998][T22839] ? vhost_dev_set_owner+0x287/0xa30 [ 727.025032][T22839] __kmalloc_noprof+0xf6/0x9c0 [ 727.025074][T22839] ? vhost_dev_set_owner+0x287/0xa30 [ 727.025110][T22839] vhost_dev_set_owner+0x287/0xa30 [ 727.025160][T22839] vhost_dev_ioctl+0x521/0xe20 [ 727.025196][T22839] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 727.025232][T22839] ? do_vfs_ioctl+0x226/0x13e0 [ 727.025297][T22839] ? __pfx_vhost_dev_ioctl+0x10/0x10 [ 727.025350][T22839] vhost_vsock_dev_ioctl+0x320/0xb30 [ 727.025385][T22839] ? hook_file_ioctl_common+0x146/0x410 [ 727.025430][T22839] ? __pfx_vhost_vsock_dev_ioctl+0x10/0x10 [ 727.025471][T22839] ? __fget_files+0x21f/0x3d0 [ 727.025510][T22839] ? __pfx_vhost_vsock_dev_ioctl+0x10/0x10 [ 727.025549][T22839] __x64_sys_ioctl+0x18e/0x210 [ 727.025597][T22839] do_syscall_64+0xc9/0xf80 [ 727.025637][T22839] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 727.025668][T22839] RIP: 0033:0x7fab92d9aeb9 [ 727.025697][T22839] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 727.025725][T22839] RSP: 002b:00007fab93ced028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 727.025754][T22839] RAX: ffffffffffffffda RBX: 00007fab93015fa0 RCX: 00007fab92d9aeb9 [ 727.025775][T22839] RDX: 0000000000000000 RSI: 000000000000af01 RDI: 0000000000000003 [ 727.025793][T22839] RBP: 00007fab92e08c1f R08: 0000000000000000 R09: 0000000000000000 [ 727.025812][T22839] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 727.025830][T22839] R13: 00007fab93016038 R14: 00007fab93015fa0 R15: 00007ffee63600c8 [ 727.025871][T22839] [ 727.508272][T22849] futex_wake_op: syz.3.6302 tries to shift op by -2048; fix this program [ 727.534739][T22849] futex_wake_op: syz.3.6302 tries to shift op by -2048; fix this program [ 727.568666][T22849] 0x000000000001-0x000000020000 : "" [ 727.611537][T22849] ftl_cs: FTL header corrupt! [ 727.791127][T22853] ERROR: Out of memory at tomoyo_memory_ok. [ 727.866338][ T30] audit: type=1800 audit(4294977667.903:28): pid=22858 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.6305" name="dbroot" dev="configfs" ino=79572 res=0 errno=0 [ 728.612795][T22875] binder: 22873:22875 ioctl c0306201 2000000000c0 returned -14 [ 728.882978][T22843] kexec: Could not allocate control_code_buffer [ 729.539505][T22889] futex_wake_op: syz.0.6325 tries to shift op by -2048; fix this program [ 729.548947][T22889] futex_wake_op: syz.0.6325 tries to shift op by -2048; fix this program [ 729.818560][T22898] zswap: compressor not available [ 730.690795][T22922] sg_write: data in/out 100663260/90 bytes for SCSI command 0x0-- guessing data in; [ 730.690795][T22922] program syz.4.6332 not setting count and/or reply_len properly [ 730.900958][T22933] netlink: 146 bytes leftover after parsing attributes in process `syz.0.6334'. [ 730.919305][T22936] netlink: 'syz.1.6335': attribute type 33 has an invalid length. [ 730.928116][T22936] netlink: 322 bytes leftover after parsing attributes in process `syz.1.6335'. [ 731.438930][T20382] Bluetooth: hci0: ISO packet for unknown connection handle 0 [ 731.773915][T22960] Page cache invalidation failure on direct I/O. Possible data corruption due to collision with buffered I/O! [ 731.827313][T22960] File: /dev/ram5 PID: 22960 Comm: syz.3.6342 [ 732.478445][T22974] input: jJǸ-9%vJ86 as /devices/virtual/input/input17 [ 732.497471][ T5181] ERROR: Out of memory at tomoyo_memory_ok. [ 732.526855][T22979] netlink: 21 bytes leftover after parsing attributes in process `syz.1.6350'. [ 732.663379][T22980] ERROR: Out of memory at tomoyo_memory_ok. [ 732.917900][T22990] netlink: 146 bytes leftover after parsing attributes in process `syz.0.6354'. [ 733.080447][T22997] netlink: 330 bytes leftover after parsing attributes in process `syz.4.6356'. [ 733.319154][T23004] futex_wake_op: syz.4.6358 tries to shift op by -2048; fix this program [ 733.333640][T23004] futex_wake_op: syz.4.6358 tries to shift op by -2048; fix this program [ 733.348129][T23004] 0x000000000001-0x000000020000 : "" [ 733.365527][T23004] ftl_cs: FTL header corrupt! [ 733.428931][T20382] Bluetooth: hci0: Unable to find connection for big 0xd2 [ 733.440948][T23006] ERROR: Out of memory at tomoyo_memory_ok. [ 734.847897][T23060] zswap: compressor not available [ 736.066284][T23090] binder: 23089:23090 ioctl c0306201 2000000000c0 returned -14 [ 736.254269][T23095] sp0: Synchronizing with TNC [ 736.559820][T23109] netlink: 'syz.3.6395': attribute type 1 has an invalid length. [ 736.585538][T23109] netlink: 306 bytes leftover after parsing attributes in process `syz.3.6395'. [ 737.096491][T23122] netlink: 'syz.4.6399': attribute type 1 has an invalid length. [ 737.117483][T23122] netlink: 306 bytes leftover after parsing attributes in process `syz.4.6399'. [ 737.133005][T23122] netlink: 'syz.4.6399': attribute type 1 has an invalid length. [ 737.147627][T23122] netlink: 306 bytes leftover after parsing attributes in process `syz.4.6399'. [ 738.192015][T23141] FAULT_INJECTION: forcing a failure. [ 738.192015][T23141] name failslab, interval 1, probability 393216, space 0, times 0 [ 738.236521][T23141] CPU: 1 UID: 0 PID: 23141 Comm: syz.1.6407 Tainted: G U L syzkaller #0 PREEMPT(full) [ 738.236574][T23141] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 738.236586][T23141] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 738.236605][T23141] Call Trace: [ 738.236616][T23141] [ 738.236628][T23141] dump_stack_lvl+0x100/0x190 [ 738.236670][T23141] should_fail_ex.cold+0x5/0xa [ 738.236718][T23141] should_failslab+0xc2/0x120 [ 738.236761][T23141] __kmalloc_cache_noprof+0x80/0x810 [ 738.236794][T23141] ? __do_sys_timerfd_create+0xee/0x3f0 [ 738.236843][T23141] ? __do_sys_timerfd_create+0xee/0x3f0 [ 738.236884][T23141] __do_sys_timerfd_create+0xee/0x3f0 [ 738.236926][T23141] ? do_syscall_64+0x94/0xf80 [ 738.236963][T23141] do_syscall_64+0xc9/0xf80 [ 738.236999][T23141] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 738.237029][T23141] RIP: 0033:0x7f483b59aeb9 [ 738.237053][T23141] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 738.237082][T23141] RSP: 002b:00007f483c4a9028 EFLAGS: 00000246 ORIG_RAX: 000000000000011b [ 738.237110][T23141] RAX: ffffffffffffffda RBX: 00007f483b815fa0 RCX: 00007f483b59aeb9 [ 738.237129][T23141] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000009 [ 738.237143][T23141] RBP: 00007f483b608c1f R08: 0000000000000000 R09: 0000000000000000 [ 738.237158][T23141] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 738.237173][T23141] R13: 00007f483b816038 R14: 00007f483b815fa0 R15: 00007ffff4a71ea8 [ 738.237205][T23141] [ 739.348511][T23160] netlink: 354 bytes leftover after parsing attributes in process `syz.1.6414'. [ 739.480240][T23162] netlink: 146 bytes leftover after parsing attributes in process `syz.3.6415'. [ 739.970318][T23171] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6420'. [ 739.996140][T23171] netlink: 13 bytes leftover after parsing attributes in process `syz.3.6420'. [ 740.729324][T23188] FAULT_INJECTION: forcing a failure. [ 740.729324][T23188] name failslab, interval 1, probability 393216, space 0, times 0 [ 740.744180][T23188] CPU: 1 UID: 0 PID: 23188 Comm: syz.0.6421 Tainted: G U L syzkaller #0 PREEMPT(full) [ 740.744233][T23188] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 740.744246][T23188] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 740.744264][T23188] Call Trace: [ 740.744273][T23188] [ 740.744284][T23188] dump_stack_lvl+0x100/0x190 [ 740.744326][T23188] should_fail_ex.cold+0x5/0xa [ 740.744375][T23188] should_failslab+0xc2/0x120 [ 740.744416][T23188] kmem_cache_alloc_lru_noprof+0x8e/0x7d0 [ 740.744455][T23188] ? dquot_alloc_inode+0x51b/0xb10 [ 740.744498][T23188] ? __d_alloc+0x34/0xa80 [ 740.744540][T23188] ? __d_alloc+0x34/0xa80 [ 740.744585][T23188] __d_alloc+0x34/0xa80 [ 740.744624][T23188] d_alloc_pseudo+0x1c/0xc0 [ 740.744647][T23188] alloc_file_pseudo+0xcf/0x230 [ 740.744690][T23188] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 740.744748][T23188] __shmem_file_setup+0x1a3/0x330 [ 740.744783][T23188] shmem_zero_setup+0x93/0x1b0 [ 740.744824][T23188] __mmap_region+0x2101/0x2820 [ 740.744864][T23188] ? __pfx___mmap_region+0x10/0x10 [ 740.744905][T23188] ? find_held_lock+0x2b/0x80 [ 740.744933][T23188] ? trace_ignore_this_task+0x56/0x100 [ 740.744966][T23188] ? trace_ignore_this_task+0x56/0x100 [ 740.745011][T23188] ? finish_task_switch.isra.0+0x1ff/0xb70 [ 740.745045][T23188] ? finish_task_switch.isra.0+0x1ff/0xb70 [ 740.745095][T23188] ? __schedule+0xff6/0x5e10 [ 740.745123][T23188] ? trace_ignore_this_task+0x56/0x100 [ 740.745154][T23188] ? trace_ignore_this_task+0x56/0x100 [ 740.745233][T23188] ? mm_get_unmapped_area_vmflags+0xd7/0x130 [ 740.745279][T23188] ? rcu_is_watching+0x12/0xc0 [ 740.745316][T23188] mmap_region+0x180/0x3e0 [ 740.745359][T23188] do_mmap+0xc63/0x12f0 [ 740.745409][T23188] ? __pfx_do_mmap+0x10/0x10 [ 740.745452][T23188] ? __pfx_down_write_killable+0x10/0x10 [ 740.745500][T23188] vm_mmap_pgoff+0x29e/0x470 [ 740.745550][T23188] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 740.745602][T23188] ? __x64_sys_futex+0x34f/0x4d0 [ 740.745641][T23188] ? __x64_sys_futex+0x358/0x4d0 [ 740.745686][T23188] ksys_mmap_pgoff+0x7d/0x5b0 [ 740.745742][T23188] __x64_sys_mmap+0x125/0x190 [ 740.745777][T23188] do_syscall_64+0xc9/0xf80 [ 740.745816][T23188] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 740.745846][T23188] RIP: 0033:0x7f018b99aeb9 [ 740.745870][T23188] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 740.745897][T23188] RSP: 002b:00007f0189bf6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 740.745925][T23188] RAX: ffffffffffffffda RBX: 00007f018bc15fa0 RCX: 00007f018b99aeb9 [ 740.745946][T23188] RDX: 0000000000000003 RSI: 0000000002020009 RDI: 0000000000000000 [ 740.745964][T23188] RBP: 00007f018ba08c1f R08: fffffffffffffffa R09: 0000000000008000 [ 740.745981][T23188] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 740.745999][T23188] R13: 00007f018bc16038 R14: 00007f018bc15fa0 R15: 00007ffc582dfbb8 [ 740.746039][T23188] [ 741.205487][T23195] usb usb3: usbfs: interface 0 claimed by hub while 'syz.4.6429' sets config #3 [ 741.459379][T20382] Bluetooth: hci1: Malformed LE Event: 0x0b [ 741.785705][T23206] zswap: compressor not available [ 741.851683][T23209] sd 0:0:1:0: PR command failed: 1026 [ 741.857155][T23209] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 741.877776][T23209] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 742.172219][T23228] netlink: 'syz.3.6436': attribute type 5 has an invalid length. [ 742.216912][T23228] netlink: 314 bytes leftover after parsing attributes in process `syz.3.6436'. [ 743.494353][T23257] futex_wake_op: syz.1.6441 tries to shift op by -2048; fix this program [ 743.531507][T23257] futex_wake_op: syz.1.6441 tries to shift op by -2048; fix this program [ 743.591834][T23257] 0x000000000001-0x000000020000 : "" [ 743.616216][T23257] ftl_cs: FTL header corrupt! [ 743.813780][T23261] ERROR: Out of memory at tomoyo_memory_ok. [ 743.956653][T23263] ERROR: Out of memory at tomoyo_memory_ok. [ 744.930431][T23284] FAULT_INJECTION: forcing a failure. [ 744.930431][T23284] name failslab, interval 1, probability 393216, space 0, times 0 [ 744.948238][T23284] CPU: 1 UID: 0 PID: 23284 Comm: syz.4.6449 Tainted: G U L syzkaller #0 PREEMPT(full) [ 744.948291][T23284] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 744.948303][T23284] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 744.948322][T23284] Call Trace: [ 744.948333][T23284] [ 744.948345][T23284] dump_stack_lvl+0x100/0x190 [ 744.948401][T23284] should_fail_ex.cold+0x5/0xa [ 744.948451][T23284] should_failslab+0xc2/0x120 [ 744.948491][T23284] ? lsm_blob_alloc+0x68/0x90 [ 744.948522][T23284] __kmalloc_noprof+0xf6/0x9c0 [ 744.948553][T23284] ? sk_prot_alloc+0x10b/0x2a0 [ 744.948591][T23284] ? lsm_blob_alloc+0x68/0x90 [ 744.948623][T23284] lsm_blob_alloc+0x68/0x90 [ 744.948654][T23284] security_sk_alloc+0x2d/0x290 [ 744.948693][T23284] sk_prot_alloc+0x12a/0x2a0 [ 744.948726][T23284] sk_alloc+0x36/0xe80 [ 744.948772][T23284] xsk_create+0x117/0x760 [ 744.948821][T23284] __sock_create+0x339/0x860 [ 744.948863][T23284] __sys_socket+0x14d/0x260 [ 744.948898][T23284] ? __pfx___sys_socket+0x10/0x10 [ 744.948930][T23284] ? xfd_validate_state+0x129/0x190 [ 744.948984][T23284] __x64_sys_socket+0x72/0xb0 [ 744.949018][T23284] ? lockdep_hardirqs_on+0x78/0x100 [ 744.949052][T23284] do_syscall_64+0xc9/0xf80 [ 744.949089][T23284] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 744.949119][T23284] RIP: 0033:0x7fab92d9aeb9 [ 744.949143][T23284] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 744.949172][T23284] RSP: 002b:00007fab93ced028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 744.949199][T23284] RAX: ffffffffffffffda RBX: 00007fab93015fa0 RCX: 00007fab92d9aeb9 [ 744.949219][T23284] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 000000000000002c [ 744.949237][T23284] RBP: 00007fab92e08c1f R08: 0000000000000000 R09: 0000000000000000 [ 744.949255][T23284] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 744.949272][T23284] R13: 00007fab93016038 R14: 00007fab93015fa0 R15: 00007ffee63600c8 [ 744.949309][T23284] [ 745.267399][T23287] netlink: 25 bytes leftover after parsing attributes in process `syz.0.6451'. [ 745.444036][T23290] random: crng reseeded on system resumption [ 745.493100][T23290] RDS: rds_bind could not find a transport for fe80::736d:2f73:7461:626c, load rds_tcp or rds_rdma? [ 745.657437][T23298] mkiss: ax0: crc mode is auto. [ 745.968175][T23300] input: jJǸ-9%vJ86 as /devices/virtual/input/input18 [ 745.989559][ T5181] ERROR: Out of memory at tomoyo_memory_ok. [ 746.603863][T23304] netlink: 'syz.3.6457': attribute type 1 has an invalid length. [ 746.673019][T23304] netlink: 314 bytes leftover after parsing attributes in process `syz.3.6457'. [ 747.690978][T23330] zswap: compressor  not available [ 747.835974][T23337] netlink: 'syz.4.6468': attribute type 10 has an invalid length. [ 747.857233][T23337] netlink: 330 bytes leftover after parsing attributes in process `syz.4.6468'. [ 748.096527][T23342] kvm: kvm [23340]: vcpu2, guest rIP: 0xfff0 Unhandled WRMSR(0x4000000e) = 0x4 [ 748.745321][T23358] ERROR: Out of memory at tomoyo_memory_ok. [ 748.934610][T23367] netlink: 314 bytes leftover after parsing attributes in process `syz.3.6480'. [ 749.732493][T23378] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x79000 [ 749.749494][T23378] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 749.757137][T23378] raw: 00fff00000000000 0000000000000000 dead000000000122 0000000000000000 [ 749.766901][T23378] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 749.779714][T23378] page dumped because: unmovable page [ 749.791115][T23378] page_owner tracks the page as allocated [ 749.801540][T23378] page last allocated via order 0, migratetype Unmovable, gfp_mask 0xcc0(GFP_KERNEL), pid 5823, tgid 5823 (syz-executor), ts 84822789597, free_ts 73089053130 [ 749.818293][T23378] post_alloc_hook+0x1e1/0x250 [ 749.826645][T23378] get_page_from_freelist+0xe3d/0x2e10 [ 749.832593][T23378] __alloc_frozen_pages_noprof+0x26c/0x2410 [ 749.841811][T23378] alloc_pages_bulk_noprof+0x777/0x1500 [ 749.854635][T23378] __kasan_populate_vmalloc+0xf0/0x210 [ 749.877686][T23378] alloc_vmap_area+0x935/0x2a00 [ 749.904425][T23378] __get_vm_area_node+0x1ca/0x330 [ 749.909538][T23378] __vmalloc_node_range_noprof+0x213/0x1530 [ 749.934378][T23378] vmalloc_user_noprof+0x9e/0xe0 [ 749.954382][T23378] kcov_ioctl+0x4c/0x720 [ 749.958694][T23378] __x64_sys_ioctl+0x18e/0x210 [ 749.971354][T23378] do_syscall_64+0xc9/0xf80 [ 749.986043][T23378] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 749.998636][T23378] page last free pid 5793 tgid 5793 stack trace: [ 750.005860][T23378] __free_frozen_pages+0x822/0x1130 [ 750.011677][T23378] __folio_put+0x3b4/0x540 [ 750.016975][T23378] anon_pipe_buf_release+0x40c/0x530 [ 750.022541][T23378] anon_pipe_read+0x5cd/0x1200 [ 750.027920][T23378] vfs_read+0x957/0xb30 [ 750.032251][T23378] ksys_read+0x1f8/0x250 [ 750.037409][T23378] do_syscall_64+0xc9/0xf80 [ 750.042134][T23378] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 750.807671][T23409] mkiss: ax0: crc mode is auto. [ 751.167184][T23419] FAULT_INJECTION: forcing a failure. [ 751.167184][T23419] name failslab, interval 1, probability 393216, space 0, times 0 [ 751.197092][T23419] CPU: 0 UID: 0 PID: 23419 Comm: syz.3.6501 Tainted: G U L syzkaller #0 PREEMPT(full) [ 751.197144][T23419] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 751.197156][T23419] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 751.197175][T23419] Call Trace: [ 751.197184][T23419] [ 751.197196][T23419] dump_stack_lvl+0x100/0x190 [ 751.197239][T23419] should_fail_ex.cold+0x5/0xa [ 751.197286][T23419] should_failslab+0xc2/0x120 [ 751.197328][T23419] kmem_cache_alloc_noprof+0x83/0x780 [ 751.197366][T23419] ? kasan_save_stack+0x30/0x50 [ 751.197401][T23419] ? kvm_vm_ioctl+0x390/0x4020 [ 751.197446][T23419] ? kvm_vm_ioctl+0x390/0x4020 [ 751.197483][T23419] kvm_vm_ioctl+0x390/0x4020 [ 751.197533][T23419] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 751.197592][T23419] ? kasan_quarantine_put+0x104/0x240 [ 751.197626][T23419] ? lockdep_hardirqs_on+0x78/0x100 [ 751.197666][T23419] ? find_held_lock+0x2b/0x80 [ 751.197696][T23419] ? tomoyo_path_number_perm+0x28f/0x580 [ 751.197738][T23419] ? tomoyo_path_number_perm+0x28f/0x580 [ 751.197795][T23419] ? tomoyo_path_number_perm+0x188/0x580 [ 751.197840][T23419] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 751.197882][T23419] ? futex_wait+0x125/0x380 [ 751.197921][T23419] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 751.197956][T23419] ? do_vfs_ioctl+0x226/0x13e0 [ 751.198002][T23419] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 751.198055][T23419] ? find_held_lock+0x2b/0x80 [ 751.198083][T23419] ? hook_file_ioctl_common+0x146/0x410 [ 751.198134][T23419] ? __fget_files+0x21f/0x3d0 [ 751.198172][T23419] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 751.198212][T23419] __x64_sys_ioctl+0x18e/0x210 [ 751.198260][T23419] do_syscall_64+0xc9/0xf80 [ 751.198298][T23419] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 751.198328][T23419] RIP: 0033:0x7fd69019aeb9 [ 751.198351][T23419] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 751.198378][T23419] RSP: 002b:00007fd6910ed028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 751.198406][T23419] RAX: ffffffffffffffda RBX: 00007fd690415fa0 RCX: 00007fd69019aeb9 [ 751.198427][T23419] RDX: 0000000000000002 RSI: 000000000000ae41 RDI: 0000000000000003 [ 751.198443][T23419] RBP: 00007fd690208c1f R08: 0000000000000000 R09: 0000000000000000 [ 751.198461][T23419] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 751.198478][T23419] R13: 00007fd690416038 R14: 00007fd690415fa0 R15: 00007ffea8428928 [ 751.198516][T23419] [ 751.589832][T23426] ERROR: Out of memory at tomoyo_memory_ok. [ 751.752608][T23434] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6508'. [ 751.765987][T23434] netlink: 13 bytes leftover after parsing attributes in process `syz.3.6508'. [ 751.785530][T23434] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6508'. [ 752.299277][T23446] netlink: 342 bytes leftover after parsing attributes in process `syz.1.6511'. [ 752.362196][T23446] netlink: 'syz.1.6511': attribute type 3 has an invalid length. [ 752.389663][T23446] netlink: 290 bytes leftover after parsing attributes in process `syz.1.6511'. [ 752.401597][T23451] zswap: compressor  not available [ 752.498062][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 752.504447][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 753.566001][T23480] netlink: 'syz.1.6522': attribute type 33 has an invalid length. [ 753.586720][T23480] netlink: 322 bytes leftover after parsing attributes in process `syz.1.6522'. [ 754.301171][T23506] netlink: 326 bytes leftover after parsing attributes in process `syz.3.6532'. [ 754.408119][T23509] netlink: 25 bytes leftover after parsing attributes in process `syz.3.6533'. [ 754.508486][T23511] netlink: 342 bytes leftover after parsing attributes in process `syz.4.6534'. [ 754.531124][T23511] IPv6: NLM_F_CREATE should be specified when creating new route [ 754.547578][T23511] IPv6: Can't replace route, no match found [ 754.554871][T23511] netlink: 342 bytes leftover after parsing attributes in process `syz.4.6534'. [ 754.577009][T23511] IPv6: Can't replace route, no match found [ 755.151785][T23522] ERROR: Out of memory at tomoyo_memory_ok. [ 756.248831][T23557] netlink: 146 bytes leftover after parsing attributes in process `syz.4.6550'. [ 756.530968][T23566] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6553'. [ 756.574462][T23566] netlink: 354 bytes leftover after parsing attributes in process `syz.3.6553'. [ 758.271667][T23597] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 758.277871][T23597] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 758.290009][T23597] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 758.308820][T23597] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 758.324912][T23597] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 758.339986][T23597] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 758.367646][T23597] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 759.250197][T23640] netlink: 338 bytes leftover after parsing attributes in process `syz.0.6579'. [ 759.528066][T20382] Bluetooth: hci0: command 0x0406 tx timeout [ 759.898866][T23660] random: crng reseeded on system resumption [ 759.909714][T23660] FAULT_INJECTION: forcing a failure. [ 759.909714][T23660] name failslab, interval 1, probability 393216, space 0, times 0 [ 759.924960][T23660] CPU: 1 UID: 0 PID: 23660 Comm: syz.1.6587 Tainted: G U L syzkaller #0 PREEMPT(full) [ 759.925011][T23660] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 759.925023][T23660] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 759.925040][T23660] Call Trace: [ 759.925050][T23660] [ 759.925061][T23660] dump_stack_lvl+0x100/0x190 [ 759.925104][T23660] should_fail_ex.cold+0x5/0xa [ 759.925153][T23660] should_failslab+0xc2/0x120 [ 759.925199][T23660] __kmalloc_cache_noprof+0x80/0x810 [ 759.925240][T23660] ? create_basic_memory_bitmaps+0x9d/0x350 [ 759.925276][T23660] ? __pfx_blocking_notifier_call_chain_robust+0x10/0x10 [ 759.925327][T23660] ? create_basic_memory_bitmaps+0x9d/0x350 [ 759.925358][T23660] create_basic_memory_bitmaps+0x9d/0x350 [ 759.925398][T23660] snapshot_open+0x230/0x2a0 [ 759.925431][T23660] ? __pfx_snapshot_open+0x10/0x10 [ 759.925467][T23660] misc_open+0x26d/0x450 [ 759.925500][T23660] ? __pfx_misc_open+0x10/0x10 [ 759.925533][T23660] chrdev_open+0x234/0x6a0 [ 759.925566][T23660] ? __pfx_apparmor_file_open+0x10/0x10 [ 759.925602][T23660] ? __pfx_chrdev_open+0x10/0x10 [ 759.925641][T23660] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 759.925684][T23660] do_dentry_open+0x73e/0x1570 [ 759.925718][T23660] ? __pfx_chrdev_open+0x10/0x10 [ 759.925751][T23660] ? security_inode_permission+0xbf/0x250 [ 759.925782][T23660] vfs_open+0x82/0x3f0 [ 759.925806][T23660] path_openat+0x21dc/0x3120 [ 759.925830][T23660] ? __pfx_path_openat+0x10/0x10 [ 759.925855][T23660] do_filp_open+0x1f7/0x420 [ 759.925874][T23660] ? __pfx_do_filp_open+0x10/0x10 [ 759.925905][T23660] ? _raw_spin_unlock+0x28/0x50 [ 759.925921][T23660] ? alloc_fd+0x476/0x790 [ 759.925943][T23660] do_sys_openat2+0x12e/0x220 [ 759.925966][T23660] ? __pfx_do_sys_openat2+0x10/0x10 [ 759.925994][T23660] ? __fget_files+0x21f/0x3d0 [ 759.926015][T23660] __x64_sys_openat+0x12d/0x210 [ 759.926038][T23660] ? __pfx___x64_sys_openat+0x10/0x10 [ 759.926068][T23660] do_syscall_64+0xc9/0xf80 [ 759.926088][T23660] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 759.926104][T23660] RIP: 0033:0x7f483b59aeb9 [ 759.926117][T23660] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 759.926132][T23660] RSP: 002b:00007f483c4a9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 759.926148][T23660] RAX: ffffffffffffffda RBX: 00007f483b815fa0 RCX: 00007f483b59aeb9 [ 759.926158][T23660] RDX: 0000000000101001 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 759.926168][T23660] RBP: 00007f483b608c1f R08: 0000000000000000 R09: 0000000000000000 [ 759.926177][T23660] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 759.926186][T23660] R13: 00007f483b816038 R14: 00007f483b815fa0 R15: 00007ffff4a71ea8 [ 759.926207][T23660] [ 760.320171][T20390] Bluetooth: hci2: command 0x0406 tx timeout [ 760.327809][T20382] Bluetooth: hci3: command 0x0406 tx timeout [ 760.366559][T23671] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 760.399959][T20382] Bluetooth: hci1: command 0x0c1a tx timeout [ 760.624188][T23674] zswap: compressor not available [ 760.945807][T23692] netlink: 330 bytes leftover after parsing attributes in process `syz.1.6598'. [ 761.867492][T23713] zswap: compressor not available [ 761.923939][T23711] FAULT_INJECTION: forcing a failure. [ 761.923939][T23711] name failslab, interval 1, probability 393216, space 0, times 0 [ 762.092750][T23711] CPU: 0 UID: 0 PID: 23711 Comm: syz.1.6604 Tainted: G U L syzkaller #0 PREEMPT(full) [ 762.092810][T23711] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 762.092821][T23711] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 762.092838][T23711] Call Trace: [ 762.092847][T23711] [ 762.092856][T23711] dump_stack_lvl+0x100/0x190 [ 762.092899][T23711] should_fail_ex.cold+0x5/0xa [ 762.092948][T23711] should_failslab+0xc2/0x120 [ 762.092991][T23711] __kmalloc_cache_noprof+0x80/0x810 [ 762.093023][T23711] ? trace_kmem_cache_alloc+0x80/0xb0 [ 762.093063][T23711] ? kmem_cache_alloc_noprof+0x2ff/0x780 [ 762.093101][T23711] ? copy_net_ns+0x135/0x7c0 [ 762.093138][T23711] ? copy_net_ns+0x135/0x7c0 [ 762.093167][T23711] copy_net_ns+0x135/0x7c0 [ 762.093194][T23711] ? copy_cgroup_ns+0x71/0x970 [ 762.093234][T23711] create_new_namespaces+0x3ea/0xab0 [ 762.093277][T23711] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 762.093314][T23711] ksys_unshare+0x455/0xab0 [ 762.093358][T23711] ? __pfx_ksys_unshare+0x10/0x10 [ 762.093399][T23711] ? xfd_validate_state+0x129/0x190 [ 762.093457][T23711] __x64_sys_unshare+0x31/0x40 [ 762.093498][T23711] do_syscall_64+0xc9/0xf80 [ 762.093537][T23711] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 762.093568][T23711] RIP: 0033:0x7f483b59aeb9 [ 762.093592][T23711] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 762.093620][T23711] RSP: 002b:00007f483c488028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 762.093649][T23711] RAX: ffffffffffffffda RBX: 00007f483b816090 RCX: 00007f483b59aeb9 [ 762.093671][T23711] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 762.093690][T23711] RBP: 00007f483b608c1f R08: 0000000000000000 R09: 0000000000000000 [ 762.093708][T23711] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 762.093726][T23711] R13: 00007f483b816128 R14: 00007f483b816090 R15: 00007ffff4a71ea8 [ 762.093766][T23711] [ 762.520796][T20382] Bluetooth: hci2: command 0x0406 tx timeout [ 762.526955][T20382] Bluetooth: hci1: command 0x0c1a tx timeout [ 762.810376][T23734] netlink: 330 bytes leftover after parsing attributes in process `syz.1.6617'. [ 762.870296][T23734] \: renamed from lo [ 763.160482][T23744] FAULT_INJECTION: forcing a failure. [ 763.160482][T23744] name failslab, interval 1, probability 393216, space 0, times 0 [ 763.210605][T23744] CPU: 1 UID: 0 PID: 23744 Comm: syz.1.6611 Tainted: G U L syzkaller #0 PREEMPT(full) [ 763.210660][T23744] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 763.210671][T23744] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 763.210690][T23744] Call Trace: [ 763.210700][T23744] [ 763.210714][T23744] dump_stack_lvl+0x100/0x190 [ 763.210757][T23744] should_fail_ex.cold+0x5/0xa [ 763.210806][T23744] should_failslab+0xc2/0x120 [ 763.210848][T23744] __kmalloc_node_noprof+0xfb/0x9e0 [ 763.210887][T23744] ? lockdep_init_map_type+0x5c/0x250 [ 763.210936][T23744] ? blk_mq_alloc_tag_set+0x476/0x1260 [ 763.210978][T23744] ? blk_mq_alloc_tag_set+0x476/0x1260 [ 763.211008][T23744] blk_mq_alloc_tag_set+0x476/0x1260 [ 763.211042][T23744] ? __pfx_idr_alloc+0x10/0x10 [ 763.211081][T23744] loop_add+0x3b7/0xb60 [ 763.211123][T23744] ? __pfx_loop_add+0x10/0x10 [ 763.211180][T23744] ? find_held_lock+0x2b/0x80 [ 763.211203][T23744] ? hook_file_ioctl_common+0x146/0x410 [ 763.211241][T23744] loop_control_ioctl+0xae/0x620 [ 763.211268][T23744] ? __pfx_loop_control_ioctl+0x10/0x10 [ 763.211300][T23744] ? __pfx_loop_control_ioctl+0x10/0x10 [ 763.211331][T23744] __x64_sys_ioctl+0x18e/0x210 [ 763.211379][T23744] do_syscall_64+0xc9/0xf80 [ 763.211417][T23744] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 763.211447][T23744] RIP: 0033:0x7f483b59aeb9 [ 763.211471][T23744] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 763.211499][T23744] RSP: 002b:00007f483c4a9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 763.211526][T23744] RAX: ffffffffffffffda RBX: 00007f483b815fa0 RCX: 00007f483b59aeb9 [ 763.211547][T23744] RDX: 0000000000000fd3 RSI: 0000000000004c80 RDI: 0000000000000003 [ 763.211565][T23744] RBP: 00007f483b608c1f R08: 0000000000000000 R09: 0000000000000000 [ 763.211584][T23744] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 763.211601][T23744] R13: 00007f483b816038 R14: 00007f483b815fa0 R15: 00007ffff4a71ea8 [ 763.211639][T23744] [ 763.951746][T23749] zswap: compressor  not available [ 764.150850][T23757] kvm: user requested TSC rate below hardware speed [ 764.561981][T20390] Bluetooth: hci1: command 0x0c1a tx timeout [ 764.932103][T23769] zswap: compressor not available [ 765.798764][T23800] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6630'. [ 765.850538][T23802] netlink: 17 bytes leftover after parsing attributes in process `syz.4.6630'. [ 766.048053][T23808] sd 0:0:1:0: device reset [ 766.336198][T23813] ERROR: Out of memory at tomoyo_memory_ok. [ 767.454775][T23846] netlink: 330 bytes leftover after parsing attributes in process `syz.0.6648'. [ 767.641257][T23853] FAULT_INJECTION: forcing a failure. [ 767.641257][T23853] name failslab, interval 1, probability 393216, space 0, times 0 [ 767.709573][T23853] CPU: 1 UID: 0 PID: 23853 Comm: syz.3.6652 Tainted: G U L syzkaller #0 PREEMPT(full) [ 767.709626][T23853] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 767.709639][T23853] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 767.709657][T23853] Call Trace: [ 767.709668][T23853] [ 767.709681][T23853] dump_stack_lvl+0x100/0x190 [ 767.709723][T23853] should_fail_ex.cold+0x5/0xa [ 767.709772][T23853] should_failslab+0xc2/0x120 [ 767.709814][T23853] __kmalloc_cache_noprof+0x80/0x810 [ 767.709848][T23853] ? alloc_pipe_info+0x10e/0x590 [ 767.709882][T23853] ? evm_inode_alloc_security+0x44/0xc0 [ 767.709922][T23853] ? alloc_pipe_info+0x10e/0x590 [ 767.709957][T23853] alloc_pipe_info+0x10e/0x590 [ 767.709997][T23853] create_pipe_files+0x8c/0x970 [ 767.710037][T23853] do_pipe2+0xbd/0x1e0 [ 767.710073][T23853] ? __pfx_do_pipe2+0x10/0x10 [ 767.710107][T23853] ? xfd_validate_state+0x129/0x190 [ 767.710165][T23853] __x64_sys_pipe+0x33/0x50 [ 767.710200][T23853] do_syscall_64+0xc9/0xf80 [ 767.710239][T23853] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 767.710266][T23853] RIP: 0033:0x7fd69019aeb9 [ 767.710290][T23853] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 767.710320][T23853] RSP: 002b:00007fd6910ed028 EFLAGS: 00000246 ORIG_RAX: 0000000000000016 [ 767.710348][T23853] RAX: ffffffffffffffda RBX: 00007fd690415fa0 RCX: 00007fd69019aeb9 [ 767.710369][T23853] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 767.710386][T23853] RBP: 00007fd690208c1f R08: 0000000000000000 R09: 0000000000000000 [ 767.710405][T23853] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 767.710422][T23853] R13: 00007fd690416038 R14: 00007fd690415fa0 R15: 00007ffea8428928 [ 767.710461][T23853] [ 767.948078][T23850] FAULT_INJECTION: forcing a failure. [ 767.948078][T23850] name failslab, interval 1, probability 393216, space 0, times 0 [ 767.961263][T23850] CPU: 1 UID: 0 PID: 23850 Comm: syz.1.6650 Tainted: G U L syzkaller #0 PREEMPT(full) [ 767.961317][T23850] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 767.961330][T23850] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 767.961349][T23850] Call Trace: [ 767.961359][T23850] [ 767.961371][T23850] dump_stack_lvl+0x100/0x190 [ 767.961416][T23850] should_fail_ex.cold+0x5/0xa [ 767.961464][T23850] should_failslab+0xc2/0x120 [ 767.961506][T23850] __kmalloc_cache_noprof+0x80/0x810 [ 767.961539][T23850] ? __pfx_inc_ucount+0x10/0x10 [ 767.961578][T23850] ? copy_time_ns+0xf6/0x800 [ 767.961617][T23850] ? copy_time_ns+0xf6/0x800 [ 767.961649][T23850] copy_time_ns+0xf6/0x800 [ 767.961680][T23850] ? copy_cgroup_ns+0x71/0x970 [ 767.961720][T23850] create_new_namespaces+0x48a/0xab0 [ 767.961763][T23850] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 767.961802][T23850] ksys_unshare+0x455/0xab0 [ 767.961845][T23850] ? __pfx_ksys_unshare+0x10/0x10 [ 767.961886][T23850] ? xfd_validate_state+0x129/0x190 [ 767.961943][T23850] __x64_sys_unshare+0x31/0x40 [ 767.961983][T23850] do_syscall_64+0xc9/0xf80 [ 767.962028][T23850] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 767.962059][T23850] RIP: 0033:0x7f483b59aeb9 [ 767.962084][T23850] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 767.962113][T23850] RSP: 002b:00007f483c4a9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 767.962143][T23850] RAX: ffffffffffffffda RBX: 00007f483b815fa0 RCX: 00007f483b59aeb9 [ 767.962164][T23850] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000080 [ 767.962182][T23850] RBP: 00007f483b608c1f R08: 0000000000000000 R09: 0000000000000000 [ 767.962201][T23850] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 767.962218][T23850] R13: 00007f483b816038 R14: 00007f483b815fa0 R15: 00007ffff4a71ea8 [ 767.962264][T23850] [ 768.468518][T23867] netlink: 326 bytes leftover after parsing attributes in process `syz.4.6657'. [ 768.870682][T23885] FAULT_INJECTION: forcing a failure. [ 768.870682][T23885] name failslab, interval 1, probability 393216, space 0, times 0 [ 768.928205][T23885] CPU: 1 UID: 0 PID: 23885 Comm: syz.0.6663 Tainted: G U L syzkaller #0 PREEMPT(full) [ 768.928258][T23885] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 768.928270][T23885] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 768.928288][T23885] Call Trace: [ 768.928297][T23885] [ 768.928308][T23885] dump_stack_lvl+0x100/0x190 [ 768.928350][T23885] should_fail_ex.cold+0x5/0xa [ 768.928397][T23885] should_failslab+0xc2/0x120 [ 768.928446][T23885] kmem_cache_alloc_noprof+0x83/0x780 [ 768.928485][T23885] ? do_epoll_ctl+0x2434/0x36a0 [ 768.928524][T23885] ? do_epoll_ctl+0x2434/0x36a0 [ 768.928557][T23885] do_epoll_ctl+0x2434/0x36a0 [ 768.928606][T23885] ? __pfx_do_epoll_ctl+0x10/0x10 [ 768.928641][T23885] ? find_held_lock+0x2b/0x80 [ 768.928668][T23885] ? __might_fault+0xc5/0x140 [ 768.928714][T23885] ? __x64_sys_epoll_ctl+0x15c/0x1e0 [ 768.928755][T23885] __x64_sys_epoll_ctl+0x15c/0x1e0 [ 768.928791][T23885] ? __pfx___x64_sys_epoll_ctl+0x10/0x10 [ 768.928839][T23885] do_syscall_64+0xc9/0xf80 [ 768.928879][T23885] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 768.928909][T23885] RIP: 0033:0x7f018b99aeb9 [ 768.928932][T23885] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 768.928960][T23885] RSP: 002b:00007f0189bd5028 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9 [ 768.928988][T23885] RAX: ffffffffffffffda RBX: 00007f018bc16090 RCX: 00007f018b99aeb9 [ 768.929008][T23885] RDX: 0000000000000005 RSI: 0000000000000001 RDI: 0000000000000006 [ 768.929027][T23885] RBP: 00007f018ba08c1f R08: 0000000000000000 R09: 0000000000000000 [ 768.929045][T23885] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 768.929063][T23885] R13: 00007f018bc16128 R14: 00007f018bc16090 R15: 00007ffc582dfbb8 [ 768.929102][T23885] [ 769.393258][T23895] netlink: 'syz.0.6669': attribute type 4 has an invalid length. [ 769.414205][T23895] netlink: 314 bytes leftover after parsing attributes in process `syz.0.6669'. [ 769.433924][T23895] IPv6: NLM_F_CREATE should be specified when creating new route [ 769.442177][T23895] IPv6: Can't replace route, no match found [ 769.878052][T23908] FAULT_INJECTION: forcing a failure. [ 769.878052][T23908] name failslab, interval 1, probability 393216, space 0, times 0 [ 769.902288][T23897] FAULT_INJECTION: forcing a failure. [ 769.902288][T23897] name failslab, interval 1, probability 393216, space 0, times 0 [ 769.945248][T23908] CPU: 1 UID: 0 PID: 23908 Comm: syz.4.6672 Tainted: G U L syzkaller #0 PREEMPT(full) [ 769.945299][T23908] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 769.945320][T23908] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 769.945339][T23908] Call Trace: [ 769.945349][T23908] [ 769.945361][T23908] dump_stack_lvl+0x100/0x190 [ 769.945403][T23908] should_fail_ex.cold+0x5/0xa [ 769.945459][T23908] should_failslab+0xc2/0x120 [ 769.945502][T23908] __kmalloc_cache_noprof+0x80/0x810 [ 769.945535][T23908] ? vkms_plane_duplicate_state+0x45/0x130 [ 769.945573][T23908] ? ww_mutex_lock+0x37/0x160 [ 769.945615][T23908] ? vkms_plane_duplicate_state+0x45/0x130 [ 769.945652][T23908] vkms_plane_duplicate_state+0x45/0x130 [ 769.945690][T23908] drm_atomic_get_plane_state+0x279/0x760 [ 769.945732][T23908] drm_client_modeset_commit_atomic+0x237/0x7e0 [ 769.945775][T23908] ? trace_contention_end+0xd6/0x110 [ 769.945817][T23908] ? __mutex_lock+0x26a/0x1b90 [ 769.945858][T23908] ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10 [ 769.945902][T23908] ? drm_master_internal_acquire+0x21/0x80 [ 769.945982][T23908] drm_client_modeset_commit_locked+0x14d/0x580 [ 769.946031][T23908] drm_client_modeset_commit+0x4f/0x80 [ 769.946074][T23908] __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160 [ 769.946121][T23908] drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0 [ 769.946166][T23908] drm_fbdev_client_restore+0x1b/0x30 [ 769.946204][T23908] ? __pfx_drm_fbdev_client_restore+0x10/0x10 [ 769.946237][T23908] drm_client_dev_restore+0x205/0x2a0 [ 769.946284][T23908] drm_release+0x2c6/0x360 [ 769.946329][T23908] ? __pfx_drm_release+0x10/0x10 [ 769.946366][T23908] __fput+0x3ff/0xb40 [ 769.946415][T23908] task_work_run+0x150/0x240 [ 769.946460][T23908] ? __pfx_task_work_run+0x10/0x10 [ 769.946516][T23908] exit_to_user_mode_loop+0x100/0x4b0 [ 769.946557][T23908] ? rcu_is_watching+0x12/0xc0 [ 769.946589][T23908] do_syscall_64+0x4ea/0xf80 [ 769.946629][T23908] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 769.946659][T23908] RIP: 0033:0x7fab92d9aeb9 [ 769.946682][T23908] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 769.946710][T23908] RSP: 002b:00007fab93ced028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 769.946738][T23908] RAX: 0000000000000000 RBX: 00007fab93015fa0 RCX: 00007fab92d9aeb9 [ 769.946757][T23908] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 769.946775][T23908] RBP: 00007fab92e08c1f R08: 0000000000000000 R09: 0000000000000000 [ 769.946794][T23908] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 769.946812][T23908] R13: 00007fab93016038 R14: 00007fab93015fa0 R15: 00007ffee63600c8 [ 769.946855][T23908] [ 770.357954][T23897] CPU: 0 UID: 0 PID: 23897 Comm: syz.1.6665 Tainted: G U L syzkaller #0 PREEMPT(full) [ 770.358040][T23897] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 770.358053][T23897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 770.358071][T23897] Call Trace: [ 770.358081][T23897] [ 770.358094][T23897] dump_stack_lvl+0x100/0x190 [ 770.358136][T23897] should_fail_ex.cold+0x5/0xa [ 770.358185][T23897] should_failslab+0xc2/0x120 [ 770.358228][T23897] __kmalloc_node_track_caller_noprof+0xf9/0x9d0 [ 770.358270][T23897] ? v9fs_init_fs_context+0xf1/0x590 [ 770.358309][T23897] ? kstrdup+0x51/0xe0 [ 770.358344][T23897] kstrdup+0x51/0xe0 [ 770.358383][T23897] v9fs_init_fs_context+0xf1/0x590 [ 770.358416][T23897] ? __pfx_v9fs_init_fs_context+0x10/0x10 [ 770.358447][T23897] alloc_fs_context+0x61f/0xf50 [ 770.358493][T23897] __x64_sys_fsopen+0xed/0x220 [ 770.358538][T23897] do_syscall_64+0xc9/0xf80 [ 770.358578][T23897] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 770.358608][T23897] RIP: 0033:0x7f483b59aeb9 [ 770.358633][T23897] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 770.358662][T23897] RSP: 002b:00007f483c4a9028 EFLAGS: 00000246 ORIG_RAX: 00000000000001ae [ 770.358691][T23897] RAX: ffffffffffffffda RBX: 00007f483b815fa0 RCX: 00007f483b59aeb9 [ 770.358711][T23897] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000 [ 770.358728][T23897] RBP: 00007f483b608c1f R08: 0000000000000000 R09: 0000000000000000 [ 770.358747][T23897] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 770.358764][T23897] R13: 00007f483b816038 R14: 00007f483b815fa0 R15: 00007ffff4a71ea8 [ 770.358804][T23897] [ 771.062204][T23929] netlink: 25 bytes leftover after parsing attributes in process `syz.3.6683'. [ 771.139664][T23932] netlink: 342 bytes leftover after parsing attributes in process `syz.4.6684'. [ 771.603776][T23951] netlink: 326 bytes leftover after parsing attributes in process `syz.3.6692'. [ 771.854408][T23960] FAULT_INJECTION: forcing a failure. [ 771.854408][T23960] name failslab, interval 1, probability 393216, space 0, times 0 [ 771.862150][T23961] sp0: Synchronizing with TNC [ 771.940872][T23963] FAULT_INJECTION: forcing a failure. [ 771.940872][T23963] name failslab, interval 1, probability 393216, space 0, times 0 [ 771.953143][T23960] CPU: 1 UID: 0 PID: 23960 Comm: syz.1.6694 Tainted: G U L syzkaller #0 PREEMPT(full) [ 771.953193][T23960] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 771.953204][T23960] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 771.953222][T23960] Call Trace: [ 771.953232][T23960] [ 771.953243][T23960] dump_stack_lvl+0x100/0x190 [ 771.953283][T23960] should_fail_ex.cold+0x5/0xa [ 771.953329][T23960] should_failslab+0xc2/0x120 [ 771.953369][T23960] kmem_cache_alloc_noprof+0x83/0x780 [ 771.953407][T23960] ? ptlock_alloc+0x1f/0x70 [ 771.953442][T23960] ? ptlock_alloc+0x1f/0x70 [ 771.953469][T23960] ptlock_alloc+0x1f/0x70 [ 771.953498][T23960] pte_alloc_one+0x84/0x3e0 [ 771.953535][T23960] __pte_alloc+0x6d/0x3f0 [ 771.953570][T23960] ? __pfx___pte_alloc+0x10/0x10 [ 771.953609][T23960] ? _raw_spin_unlock+0x28/0x50 [ 771.953637][T23960] ? __pmd_alloc+0x6aa/0x9c0 [ 771.953683][T23960] move_page_tables+0x24eb/0x43e0 [ 771.953735][T23960] ? __pfx_move_page_tables+0x10/0x10 [ 771.953796][T23960] copy_vma_and_data+0x25c/0x7c0 [ 771.953833][T23960] ? __pfx_copy_vma_and_data+0x10/0x10 [ 771.953881][T23960] ? find_held_lock+0x2b/0x80 [ 771.953909][T23960] ? move_vma+0x50c/0x1990 [ 771.953946][T23960] ? move_vma+0x50c/0x1990 [ 771.953978][T23960] ? __vm_enough_memory+0x184/0x390 [ 771.954029][T23960] move_vma+0x51e/0x1990 [ 771.954064][T23960] ? __pfx_move_vma+0x10/0x10 [ 771.954094][T23960] ? mm_get_unmapped_area_vmflags+0xd7/0x130 [ 771.954133][T23960] ? cap_mmap_addr+0x4b/0x120 [ 771.954163][T23960] ? bpf_lsm_mmap_addr+0x9/0x10 [ 771.954197][T23960] ? security_mmap_addr+0x71/0x1e0 [ 771.954238][T23960] ? __get_unmapped_area+0x255/0x3e0 [ 771.954282][T23960] ? vrm_set_new_addr+0x204/0x290 [ 771.954318][T23960] mremap_to+0x1b7/0x450 [ 771.954352][T23960] do_mremap+0xb76/0x2130 [ 771.954401][T23960] ? __pfx_do_mremap+0x10/0x10 [ 771.954442][T23960] ? ksys_write+0x190/0x250 [ 771.954483][T23960] __do_sys_mremap+0x126/0x170 [ 771.954517][T23960] ? __pfx___do_sys_mremap+0x10/0x10 [ 771.954560][T23960] ? __x64_sys_futex+0x34f/0x4d0 [ 771.954620][T23960] do_syscall_64+0xc9/0xf80 [ 771.954655][T23960] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 771.954689][T23960] RIP: 0033:0x7f483b59aeb9 [ 771.954713][T23960] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 771.954741][T23960] RSP: 002b:00007f483c4a9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000019 [ 771.954768][T23960] RAX: ffffffffffffffda RBX: 00007f483b815fa0 RCX: 00007f483b59aeb9 [ 771.954787][T23960] RDX: 0000000000000004 RSI: 0000000000000004 RDI: 0000200000000000 [ 771.954805][T23960] RBP: 00007f483b608c1f R08: 0000000100000000 R09: 0000000000000000 [ 771.954824][T23960] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 771.954841][T23960] R13: 00007f483b816038 R14: 00007f483b815fa0 R15: 00007ffff4a71ea8 [ 771.954880][T23960] [ 772.149949][T23968] netlink: 330 bytes leftover after parsing attributes in process `syz.1.6698'. [ 772.194904][T23963] CPU: 0 UID: 0 PID: 23963 Comm: syz.4.6696 Tainted: G U L syzkaller #0 PREEMPT(full) [ 772.194952][T23963] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 772.194964][T23963] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 772.194982][T23963] Call Trace: [ 772.194993][T23963] [ 772.195004][T23963] dump_stack_lvl+0x100/0x190 [ 772.195044][T23963] should_fail_ex.cold+0x5/0xa [ 772.195091][T23963] should_failslab+0xc2/0x120 [ 772.195131][T23963] __kmalloc_cache_noprof+0x80/0x810 [ 772.195172][T23963] ? rcu_is_watching+0x12/0xc0 [ 772.195200][T23963] ? snd_virmidi_input_open+0xc8/0x4d0 [ 772.195241][T23963] ? snd_virmidi_input_open+0xc8/0x4d0 [ 772.195274][T23963] snd_virmidi_input_open+0xc8/0x4d0 [ 772.195312][T23963] open_substream+0x480/0x9e0 [ 772.195352][T23963] rawmidi_open_priv+0x524/0x6f0 [ 772.195397][T23963] snd_rawmidi_open+0x4c9/0xba0 [ 772.195444][T23963] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 772.195489][T23963] ? __pfx_default_wake_function+0x10/0x10 [ 772.195522][T23963] ? soundcore_open+0x231/0x5a0 [ 772.195551][T23963] ? soundcore_open+0x231/0x5a0 [ 772.195584][T23963] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 772.195626][T23963] soundcore_open+0x2e3/0x5a0 [ 772.195659][T23963] ? __pfx_soundcore_open+0x10/0x10 [ 772.195689][T23963] chrdev_open+0x234/0x6a0 [ 772.195722][T23963] ? __pfx_apparmor_file_open+0x10/0x10 [ 772.195759][T23963] ? __pfx_chrdev_open+0x10/0x10 [ 772.195796][T23963] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 772.195838][T23963] do_dentry_open+0x73e/0x1570 [ 772.195872][T23963] ? __pfx_chrdev_open+0x10/0x10 [ 772.195906][T23963] ? security_inode_permission+0xbf/0x250 [ 772.195954][T23963] vfs_open+0x82/0x3f0 [ 772.195998][T23963] path_openat+0x21dc/0x3120 [ 772.196045][T23963] ? __pfx_path_openat+0x10/0x10 [ 772.196091][T23963] do_filp_open+0x1f7/0x420 [ 772.196128][T23963] ? __pfx_do_filp_open+0x10/0x10 [ 772.196194][T23963] ? _raw_spin_unlock+0x28/0x50 [ 772.196223][T23963] ? alloc_fd+0x476/0x790 [ 772.196265][T23963] do_sys_openat2+0x12e/0x220 [ 772.196309][T23963] ? __pfx_do_sys_openat2+0x10/0x10 [ 772.196364][T23963] __x64_sys_openat+0x12d/0x210 [ 772.196408][T23963] ? __pfx___x64_sys_openat+0x10/0x10 [ 772.196448][T23963] ? xfd_validate_state+0x129/0x190 [ 772.196504][T23963] do_syscall_64+0xc9/0xf80 [ 772.196541][T23963] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 772.196570][T23963] RIP: 0033:0x7fab92d9aeb9 [ 772.196593][T23963] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 772.196619][T23963] RSP: 002b:00007fab93ced028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 772.196647][T23963] RAX: ffffffffffffffda RBX: 00007fab93015fa0 RCX: 00007fab92d9aeb9 [ 772.196667][T23963] RDX: 0000000000000800 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 772.196686][T23963] RBP: 00007fab92e08c1f R08: 0000000000000000 R09: 0000000000000000 [ 772.196704][T23963] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 772.196721][T23963] R13: 00007fab93016038 R14: 00007fab93015fa0 R15: 00007ffee63600c8 [ 772.196759][T23963] [ 773.641700][T24003] sp0: Synchronizing with TNC [ 775.191313][T24045] FAULT_INJECTION: forcing a failure. [ 775.191313][T24045] name failslab, interval 1, probability 393216, space 0, times 0 [ 775.204594][T24045] CPU: 1 UID: 0 PID: 24045 Comm: syz.1.6736 Tainted: G U L syzkaller #0 PREEMPT(full) [ 775.204641][T24045] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 775.204652][T24045] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 775.204669][T24045] Call Trace: [ 775.204677][T24045] [ 775.204686][T24045] dump_stack_lvl+0x100/0x190 [ 775.204725][T24045] should_fail_ex.cold+0x5/0xa [ 775.204772][T24045] should_failslab+0xc2/0x120 [ 775.204814][T24045] kmem_cache_alloc_noprof+0x83/0x780 [ 775.204865][T24045] ? alloc_empty_file+0x55/0x1c0 [ 775.204913][T24045] ? alloc_empty_file+0x55/0x1c0 [ 775.204953][T24045] alloc_empty_file+0x55/0x1c0 [ 775.204993][T24045] alloc_file_clone+0x5f/0x110 [ 775.205041][T24045] create_pipe_files+0x40e/0x970 [ 775.205083][T24045] do_pipe2+0xbd/0x1e0 [ 775.205118][T24045] ? __pfx_do_pipe2+0x10/0x10 [ 775.205149][T24045] ? xfd_validate_state+0x129/0x190 [ 775.205194][T24045] __x64_sys_pipe+0x33/0x50 [ 775.205226][T24045] do_syscall_64+0xc9/0xf80 [ 775.205266][T24045] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 775.205293][T24045] RIP: 0033:0x7f483b59aeb9 [ 775.205315][T24045] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 775.205341][T24045] RSP: 002b:00007f483c4a9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000016 [ 775.205367][T24045] RAX: ffffffffffffffda RBX: 00007f483b815fa0 RCX: 00007f483b59aeb9 [ 775.205387][T24045] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 775.205403][T24045] RBP: 00007f483b608c1f R08: 0000000000000000 R09: 0000000000000000 [ 775.205419][T24045] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 775.205435][T24045] R13: 00007f483b816038 R14: 00007f483b815fa0 R15: 00007ffff4a71ea8 [ 775.205472][T24045] [ 775.739017][T24059] zswap: compressor not available [ 776.944143][T24088] FAULT_INJECTION: forcing a failure. [ 776.944143][T24088] name failslab, interval 1, probability 393216, space 0, times 0 [ 776.961584][T24088] CPU: 0 UID: 0 PID: 24088 Comm: syz.3.6743 Tainted: G U L syzkaller #0 PREEMPT(full) [ 776.961638][T24088] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 776.961655][T24088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 776.961672][T24088] Call Trace: [ 776.961682][T24088] [ 776.961693][T24088] dump_stack_lvl+0x100/0x190 [ 776.961736][T24088] should_fail_ex.cold+0x5/0xa [ 776.961787][T24088] should_failslab+0xc2/0x120 [ 776.961829][T24088] kmem_cache_alloc_noprof+0x83/0x780 [ 776.961866][T24088] ? __pfx_map_id_range_down+0x10/0x10 [ 776.961897][T24088] ? security_inode_alloc+0x3b/0x2c0 [ 776.961945][T24088] ? security_inode_alloc+0x3b/0x2c0 [ 776.961983][T24088] security_inode_alloc+0x3b/0x2c0 [ 776.962024][T24088] inode_init_always_gfp+0xced/0x1040 [ 776.962065][T24088] alloc_inode+0x8e/0x250 [ 776.962107][T24088] path_from_stashed+0x25b/0x750 [ 776.962152][T24088] ns_get_path+0x60/0x80 [ 776.962187][T24088] proc_ns_get_link+0x121/0x230 [ 776.962227][T24088] ? __pfx_proc_ns_get_link+0x10/0x10 [ 776.962270][T24088] ? atime_needs_update+0x8b/0x6b0 [ 776.962319][T24088] pick_link+0xd17/0x13c0 [ 776.962347][T24088] ? __pfx_proc_ns_get_link+0x10/0x10 [ 776.962391][T24088] step_into_slowpath+0x6c2/0xf50 [ 776.962428][T24088] ? __pfx_step_into_slowpath+0x10/0x10 [ 776.962457][T24088] ? find_held_lock+0x2b/0x80 [ 776.962500][T24088] path_openat+0xf95/0x3120 [ 776.962547][T24088] ? __pfx_path_openat+0x10/0x10 [ 776.962596][T24088] do_filp_open+0x1f7/0x420 [ 776.962634][T24088] ? __pfx_do_filp_open+0x10/0x10 [ 776.962702][T24088] ? _raw_spin_unlock+0x28/0x50 [ 776.962734][T24088] ? alloc_fd+0x476/0x790 [ 776.962776][T24088] do_sys_openat2+0x12e/0x220 [ 776.962822][T24088] ? __pfx_do_sys_openat2+0x10/0x10 [ 776.962882][T24088] __x64_sys_openat+0x12d/0x210 [ 776.962928][T24088] ? __pfx___x64_sys_openat+0x10/0x10 [ 776.962972][T24088] ? xfd_validate_state+0x129/0x190 [ 776.963035][T24088] do_syscall_64+0xc9/0xf80 [ 776.963074][T24088] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 776.963104][T24088] RIP: 0033:0x7fd69015b78e [ 776.963129][T24088] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 776.963158][T24088] RSP: 002b:00007fd6910ecec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 776.963187][T24088] RAX: ffffffffffffffda RBX: 00007fd6910ed6c0 RCX: 00007fd69015b78e [ 776.963208][T24088] RDX: 0000000000000002 RSI: 00007fd6910ecf90 RDI: ffffffffffffff9c [ 776.963228][T24088] RBP: 00007fd690208c1f R08: 0000000000000000 R09: 0000000000000000 [ 776.963247][T24088] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 776.963265][T24088] R13: 00007fd690416038 R14: 00007fd690415fa0 R15: 00007ffea8428928 [ 776.963305][T24088] [ 777.434643][T24096] ERROR: Out of memory at tomoyo_memory_ok. [ 777.475469][T24099] netlink: 'syz.3.6747': attribute type 1 has an invalid length. [ 777.488512][T24099] netlink: 306 bytes leftover after parsing attributes in process `syz.3.6747'. [ 777.801219][T24114] FAULT_INJECTION: forcing a failure. [ 777.801219][T24114] name failslab, interval 1, probability 393216, space 0, times 0 [ 777.823961][T24114] CPU: 0 UID: 0 PID: 24114 Comm: syz.1.6751 Tainted: G U L syzkaller #0 PREEMPT(full) [ 777.824008][T24114] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 777.824019][T24114] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 777.824036][T24114] Call Trace: [ 777.824045][T24114] [ 777.824056][T24114] dump_stack_lvl+0x100/0x190 [ 777.824095][T24114] should_fail_ex.cold+0x5/0xa [ 777.824141][T24114] should_failslab+0xc2/0x120 [ 777.824179][T24114] kmem_cache_alloc_noprof+0x83/0x780 [ 777.824218][T24114] ? do_epoll_ctl+0x2434/0x36a0 [ 777.824260][T24114] ? do_epoll_ctl+0x2434/0x36a0 [ 777.824293][T24114] do_epoll_ctl+0x2434/0x36a0 [ 777.824340][T24114] ? __pfx_do_epoll_ctl+0x10/0x10 [ 777.824372][T24114] ? find_held_lock+0x2b/0x80 [ 777.824400][T24114] ? __might_fault+0xc5/0x140 [ 777.824447][T24114] ? __x64_sys_epoll_ctl+0x15c/0x1e0 [ 777.824483][T24114] __x64_sys_epoll_ctl+0x15c/0x1e0 [ 777.824520][T24114] ? __pfx___x64_sys_epoll_ctl+0x10/0x10 [ 777.824563][T24114] do_syscall_64+0xc9/0xf80 [ 777.824607][T24114] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 777.824636][T24114] RIP: 0033:0x7f483b59aeb9 [ 777.824658][T24114] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 777.824684][T24114] RSP: 002b:00007f483c488028 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9 [ 777.824710][T24114] RAX: ffffffffffffffda RBX: 00007f483b816090 RCX: 00007f483b59aeb9 [ 777.824730][T24114] RDX: 0000000000000005 RSI: 0000000000000001 RDI: 0000000000000006 [ 777.824746][T24114] RBP: 00007f483b608c1f R08: 0000000000000000 R09: 0000000000000000 [ 777.824762][T24114] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 777.824779][T24114] R13: 00007f483b816128 R14: 00007f483b816090 R15: 00007ffff4a71ea8 [ 777.824817][T24114] [ 778.627158][T24129] netlink: 25 bytes leftover after parsing attributes in process `syz.1.6756'. [ 778.932937][T24137] netlink: zone id is out of range [ 778.963497][T24137] netlink: zone id is out of range [ 779.018248][T24141] netlink: 28 bytes leftover after parsing attributes in process `syz.0.6761'. [ 779.099676][T24137] netlink: set zone limit has 8 unknown bytes [ 779.881032][T24155] netlink: 354 bytes leftover after parsing attributes in process `syz.1.6765'. [ 780.146924][T24166] netlink: 186 bytes leftover after parsing attributes in process `syz.4.6770'. [ 780.740270][T24183] FAULT_INJECTION: forcing a failure. [ 780.740270][T24183] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 780.759962][T24183] CPU: 1 UID: 0 PID: 24183 Comm: syz.3.6776 Tainted: G U L syzkaller #0 PREEMPT(full) [ 780.760015][T24183] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 780.760027][T24183] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 780.760046][T24183] Call Trace: [ 780.760055][T24183] [ 780.760067][T24183] dump_stack_lvl+0x100/0x190 [ 780.760111][T24183] should_fail_ex.cold+0x5/0xa [ 780.760155][T24183] ? prepare_alloc_pages+0x16d/0x5f0 [ 780.760203][T24183] should_fail_alloc_page+0xeb/0x140 [ 780.760247][T24183] prepare_alloc_pages+0x1f0/0x5f0 [ 780.760298][T24183] __alloc_frozen_pages_noprof+0x193/0x2410 [ 780.760349][T24183] ? __pfx_stack_trace_save+0x10/0x10 [ 780.760386][T24183] ? stack_depot_save_flags+0x27/0x9c0 [ 780.760440][T24183] ? kasan_save_stack+0x3f/0x50 [ 780.760474][T24183] ? kasan_save_stack+0x30/0x50 [ 780.760509][T24183] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 780.760544][T24183] ? __pmd_alloc+0xbf/0x9c0 [ 780.760586][T24183] ? copy_vma_and_data+0x25c/0x7c0 [ 780.760620][T24183] ? mremap_to+0x1b7/0x450 [ 780.760650][T24183] ? do_mremap+0xb76/0x2130 [ 780.760681][T24183] ? __do_sys_mremap+0x126/0x170 [ 780.760713][T24183] ? do_syscall_64+0xc9/0xf80 [ 780.760746][T24183] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 780.760791][T24183] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 780.760827][T24183] ? policy_nodemask+0xed/0x4f0 [ 780.760869][T24183] alloc_pages_mpol+0x1fb/0x550 [ 780.760911][T24183] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 780.760962][T24183] alloc_pages_noprof+0x131/0x390 [ 780.761005][T24183] pte_alloc_one+0x1e/0x3e0 [ 780.761044][T24183] __pte_alloc+0x6d/0x3f0 [ 780.761082][T24183] ? __pfx___pte_alloc+0x10/0x10 [ 780.761123][T24183] ? _raw_spin_unlock+0x28/0x50 [ 780.761152][T24183] ? __pmd_alloc+0x6aa/0x9c0 [ 780.761199][T24183] move_page_tables+0x24eb/0x43e0 [ 780.761253][T24183] ? __pfx_move_page_tables+0x10/0x10 [ 780.761311][T24183] ? lock_acquire+0x17c/0x330 [ 780.761359][T24183] copy_vma_and_data+0x25c/0x7c0 [ 780.761399][T24183] ? __pfx_copy_vma_and_data+0x10/0x10 [ 780.761451][T24183] ? find_held_lock+0x2b/0x80 [ 780.761479][T24183] ? move_vma+0x50c/0x1990 [ 780.761511][T24183] ? move_vma+0x50c/0x1990 [ 780.761543][T24183] ? __vm_enough_memory+0x184/0x390 [ 780.761594][T24183] move_vma+0x51e/0x1990 [ 780.761634][T24183] ? __pfx_move_vma+0x10/0x10 [ 780.761672][T24183] ? mm_get_unmapped_area_vmflags+0xd7/0x130 [ 780.761717][T24183] ? cap_mmap_addr+0x4b/0x120 [ 780.761752][T24183] ? bpf_lsm_mmap_addr+0x9/0x10 [ 780.761791][T24183] ? security_mmap_addr+0x71/0x1e0 [ 780.761837][T24183] ? __get_unmapped_area+0x255/0x3e0 [ 780.761884][T24183] ? vrm_set_new_addr+0x204/0x290 [ 780.761921][T24183] mremap_to+0x1b7/0x450 [ 780.761956][T24183] do_mremap+0xb76/0x2130 [ 780.762005][T24183] ? __pfx_do_mremap+0x10/0x10 [ 780.762045][T24183] ? irqentry_exit+0x180/0x670 [ 780.762078][T24183] ? lockdep_hardirqs_on+0x78/0x100 [ 780.762112][T24183] ? irqentry_exit+0x180/0x670 [ 780.762151][T24183] __do_sys_mremap+0x126/0x170 [ 780.762187][T24183] ? __pfx___do_sys_mremap+0x10/0x10 [ 780.762223][T24183] ? __x64_sys_futex+0x18f/0x4d0 [ 780.762263][T24183] ? __x64_sys_futex+0x19d/0x4d0 [ 780.762312][T24183] ? __x64_sys_futex+0x34f/0x4d0 [ 780.762376][T24183] do_syscall_64+0xc9/0xf80 [ 780.762416][T24183] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 780.762446][T24183] RIP: 0033:0x7fd69019aeb9 [ 780.762470][T24183] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 780.762499][T24183] RSP: 002b:00007fd6910ed028 EFLAGS: 00000246 ORIG_RAX: 0000000000000019 [ 780.762528][T24183] RAX: ffffffffffffffda RBX: 00007fd690415fa0 RCX: 00007fd69019aeb9 [ 780.762548][T24183] RDX: 0000000000000004 RSI: 0000000000000004 RDI: 0000200000000000 [ 780.762566][T24183] RBP: 00007fd690208c1f R08: 0000000100000000 R09: 0000000000000000 [ 780.762584][T24183] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 780.762602][T24183] R13: 00007fd690416038 R14: 00007fd690415fa0 R15: 00007ffea8428928 [ 780.762641][T24183] [ 781.798829][T24201] FAULT_INJECTION: forcing a failure. [ 781.798829][T24201] name failslab, interval 1, probability 393216, space 0, times 0 [ 781.817835][T24201] CPU: 0 UID: 0 PID: 24201 Comm: syz.3.6783 Tainted: G U L syzkaller #0 PREEMPT(full) [ 781.817885][T24201] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 781.817897][T24201] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 781.817915][T24201] Call Trace: [ 781.817926][T24201] [ 781.817937][T24201] dump_stack_lvl+0x100/0x190 [ 781.817978][T24201] should_fail_ex.cold+0x5/0xa [ 781.818028][T24201] should_failslab+0xc2/0x120 [ 781.818070][T24201] __kmalloc_cache_noprof+0x80/0x810 [ 781.818104][T24201] ? try_delay_free_filter+0x45/0x2a0 [ 781.818156][T24201] ? try_delay_free_filter+0x45/0x2a0 [ 781.818197][T24201] try_delay_free_filter+0x45/0x2a0 [ 781.818251][T24201] apply_event_filter+0x31d/0x500 [ 781.818278][T24201] ? __pfx_apply_event_filter+0x10/0x10 [ 781.818317][T24201] event_filter_write+0x16d/0x290 [ 781.818357][T24201] vfs_write+0x2aa/0x1070 [ 781.818394][T24201] ? __pfx_event_filter_write+0x10/0x10 [ 781.818434][T24201] ? __pfx_vfs_write+0x10/0x10 [ 781.818465][T24201] ? find_held_lock+0x2b/0x80 [ 781.818495][T24201] ? __fget_files+0x215/0x3d0 [ 781.818534][T24201] ? __fget_files+0x21f/0x3d0 [ 781.818577][T24201] ksys_write+0x12a/0x250 [ 781.818611][T24201] ? __pfx_ksys_write+0x10/0x10 [ 781.818655][T24201] do_syscall_64+0xc9/0xf80 [ 781.818695][T24201] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 781.818725][T24201] RIP: 0033:0x7fd69019aeb9 [ 781.818755][T24201] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 781.818785][T24201] RSP: 002b:00007fd6910ed028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 781.818814][T24201] RAX: ffffffffffffffda RBX: 00007fd690415fa0 RCX: 00007fd69019aeb9 [ 781.818835][T24201] RDX: 00000000000005c8 RSI: 0000000000000000 RDI: 0000000000000003 [ 781.818852][T24201] RBP: 00007fd690208c1f R08: 0000000000000000 R09: 0000000000000000 [ 781.818870][T24201] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 781.818888][T24201] R13: 00007fd690416038 R14: 00007fd690415fa0 R15: 00007ffea8428928 [ 781.818928][T24201] [ 783.307462][T24226] netlink: 12 bytes leftover after parsing attributes in process `syz.3.6792'. [ 783.367970][T24226] unsupported nlmsg_type 40 [ 783.430272][T24230] netlink: 25 bytes leftover after parsing attributes in process `syz.0.6793'. [ 783.796991][T24240] i2c i2c-0: Invalid 7-bit I2C address 0x00 [ 784.995399][T24262] netlink: 290 bytes leftover after parsing attributes in process `syz.4.6806'. [ 785.590676][T24268] netlink: 342 bytes leftover after parsing attributes in process `syz.0.6809'. [ 786.457033][T24320] netlink: 346 bytes leftover after parsing attributes in process `syz.3.6820'. [ 787.078800][T24339] input: f as /devices/virtual/input/input20 [ 787.132906][ T5181] ERROR: Out of memory at tomoyo_memory_ok. [ 787.240976][ T30] audit: type=1800 audit(4294998117.240:29): pid=24347 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.6829" name="features" dev="configfs" ino=91954 res=0 errno=0 [ 787.482426][T24360] netlink: 248 bytes leftover after parsing attributes in process `syz.1.6834'. [ 787.506867][T24361] netlink: 17 bytes leftover after parsing attributes in process `syz.3.6835'. [ 787.573953][T24364] netlink: 342 bytes leftover after parsing attributes in process `syz.1.6837'. [ 787.583815][T24364] IPv6: NLM_F_REPLACE set, but no existing node found! [ 787.720556][T24370] input: f as /devices/virtual/input/input21 [ 787.979296][T24373] netlink: 346 bytes leftover after parsing attributes in process `syz.1.6840'. [ 788.191702][T24380] netlink: 342 bytes leftover after parsing attributes in process `syz.4.6843'. [ 788.567475][T24388] ERROR: Out of memory at tomoyo_memory_ok. [ 788.746302][T24397] FAULT_INJECTION: forcing a failure. [ 788.746302][T24397] name failslab, interval 1, probability 393216, space 0, times 0 [ 788.759918][T24397] CPU: 0 UID: 0 PID: 24397 Comm: syz.4.6850 Tainted: G U L syzkaller #0 PREEMPT(full) [ 788.759966][T24397] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 788.759977][T24397] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 788.759996][T24397] Call Trace: [ 788.760006][T24397] [ 788.760017][T24397] dump_stack_lvl+0x100/0x190 [ 788.760059][T24397] should_fail_ex.cold+0x5/0xa [ 788.760108][T24397] should_failslab+0xc2/0x120 [ 788.760150][T24397] __kmalloc_cache_noprof+0x80/0x810 [ 788.760182][T24397] ? pty_common_install+0xdf/0xb30 [ 788.760222][T24397] ? pty_common_install+0xdf/0xb30 [ 788.760254][T24397] pty_common_install+0xdf/0xb30 [ 788.760293][T24397] ? __pfx_pty_unix98_install+0x10/0x10 [ 788.760329][T24397] tty_init_dev.part.0+0x9e/0x470 [ 788.760360][T24397] tty_init_dev+0x60/0x80 [ 788.760388][T24397] ptmx_open+0x15e/0x3c0 [ 788.760424][T24397] ? __pfx_ptmx_open+0x10/0x10 [ 788.760457][T24397] chrdev_open+0x234/0x6a0 [ 788.760491][T24397] ? __pfx_apparmor_file_open+0x10/0x10 [ 788.760528][T24397] ? __pfx_chrdev_open+0x10/0x10 [ 788.760567][T24397] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 788.760620][T24397] do_dentry_open+0x73e/0x1570 [ 788.760656][T24397] ? __pfx_chrdev_open+0x10/0x10 [ 788.760693][T24397] ? security_inode_permission+0xbf/0x250 [ 788.760741][T24397] vfs_open+0x82/0x3f0 [ 788.760787][T24397] path_openat+0x21dc/0x3120 [ 788.760832][T24397] ? __pfx_path_openat+0x10/0x10 [ 788.760879][T24397] do_filp_open+0x1f7/0x420 [ 788.760916][T24397] ? __pfx_do_filp_open+0x10/0x10 [ 788.760977][T24397] ? _raw_spin_unlock+0x28/0x50 [ 788.761008][T24397] ? alloc_fd+0x476/0x790 [ 788.761053][T24397] do_sys_openat2+0x12e/0x220 [ 788.761109][T24397] ? __pfx_do_sys_openat2+0x10/0x10 [ 788.761156][T24397] ? find_held_lock+0x2b/0x80 [ 788.761195][T24397] __x64_sys_openat+0x12d/0x210 [ 788.761242][T24397] ? __pfx___x64_sys_openat+0x10/0x10 [ 788.761284][T24397] ? xfd_validate_state+0x129/0x190 [ 788.761342][T24397] do_syscall_64+0xc9/0xf80 [ 788.761379][T24397] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 788.761409][T24397] RIP: 0033:0x7fab92d9aeb9 [ 788.761435][T24397] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 788.761465][T24397] RSP: 002b:00007fab93ced028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 788.761495][T24397] RAX: ffffffffffffffda RBX: 00007fab93015fa0 RCX: 00007fab92d9aeb9 [ 788.761515][T24397] RDX: 0000000000000000 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 788.761534][T24397] RBP: 00007fab92e08c1f R08: 0000000000000000 R09: 0000000000000000 [ 788.761553][T24397] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 788.761571][T24397] R13: 00007fab93016038 R14: 00007fab93015fa0 R15: 00007ffee63600c8 [ 788.761619][T24397] [ 789.492565][T24416] FAULT_INJECTION: forcing a failure. [ 789.492565][T24416] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 789.507388][T24416] CPU: 0 UID: 0 PID: 24416 Comm: syz.0.6853 Tainted: G U L syzkaller #0 PREEMPT(full) [ 789.507435][T24416] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 789.507445][T24416] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 789.507462][T24416] Call Trace: [ 789.507471][T24416] [ 789.507481][T24416] dump_stack_lvl+0x100/0x190 [ 789.507522][T24416] should_fail_ex.cold+0x5/0xa [ 789.507570][T24416] _copy_to_iter+0x5a4/0x1720 [ 789.507618][T24416] ? __pfx__copy_to_iter+0x10/0x10 [ 789.507663][T24416] ? folio_mark_accessed+0xf3/0x1040 [ 789.507701][T24416] ? __pfx_filemap_get_pages+0x10/0x10 [ 789.507739][T24416] ? __pfx_folio_mark_accessed+0x10/0x10 [ 789.507786][T24416] copy_page_to_iter+0x12a/0x1e0 [ 789.507833][T24416] filemap_read+0x7a9/0x10a0 [ 789.507887][T24416] ? __pfx_filemap_read+0x10/0x10 [ 789.507943][T24416] ? __pfx_down_read+0x10/0x10 [ 789.507979][T24416] ? __pfx_aa_file_perm+0x10/0x10 [ 789.508003][T24416] ? futex_unqueue+0x133/0x2c0 [ 789.508042][T24416] blkdev_read_iter+0x2c4/0x4f0 [ 789.508078][T24416] ? copy_iovec_from_user+0x102/0x140 [ 789.508119][T24416] do_iter_readv_writev+0x60d/0x920 [ 789.508151][T24416] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 789.508179][T24416] ? common_file_perm+0x1ab/0x4f0 [ 789.508225][T24416] ? bpf_lsm_file_permission+0x9/0x10 [ 789.508274][T24416] ? security_file_permission+0x76/0x210 [ 789.508318][T24416] ? rw_verify_area+0xce/0x6d0 [ 789.508348][T24416] vfs_readv+0x4d3/0x8d0 [ 789.508388][T24416] ? __pfx_vfs_readv+0x10/0x10 [ 789.508414][T24416] ? __pfx_futex_wait+0x10/0x10 [ 789.508436][T24416] ? lockdep_hardirqs_on+0x78/0x100 [ 789.508493][T24416] ? __fget_files+0x21f/0x3d0 [ 789.508531][T24416] ? do_readv+0x13e/0x340 [ 789.508559][T24416] do_readv+0x13e/0x340 [ 789.508589][T24416] ? __pfx_do_readv+0x10/0x10 [ 789.508617][T24416] ? xfd_validate_state+0x129/0x190 [ 789.508666][T24416] __x64_sys_preadv2+0x11f/0x160 [ 789.508703][T24416] do_syscall_64+0xc9/0xf80 [ 789.508739][T24416] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 789.508764][T24416] RIP: 0033:0x7f018b99aeb9 [ 789.508786][T24416] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 789.508813][T24416] RSP: 002b:00007f0189bb4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000147 [ 789.508842][T24416] RAX: ffffffffffffffda RBX: 00007f018bc16180 RCX: 00007f018b99aeb9 [ 789.508862][T24416] RDX: 0000000000000006 RSI: 0000200000000080 RDI: 0000000000000006 [ 789.508880][T24416] RBP: 00007f018ba08c1f R08: 0000000000000004 R09: 000000000000002e [ 789.508898][T24416] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 789.508915][T24416] R13: 00007f018bc16218 R14: 00007f018bc16180 R15: 00007ffc582dfbb8 [ 789.508955][T24416] [ 790.414895][T24434] netlink: 342 bytes leftover after parsing attributes in process `syz.4.6864'. [ 791.306306][T24455] zswap: compressor not available [ 792.339790][T24487] ERROR: Out of memory at tomoyo_memory_ok. [ 793.142713][T24510] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6890'. [ 793.889080][T24533] sd 0:0:1:0: PR command failed: 1026 [ 793.890558][T24539] serio: Serial port pty6 [ 793.894533][T24533] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 793.894587][T24533] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 793.987556][T24537] sp0: Synchronizing with TNC [ 794.680003][T24563] kvm: kvm [24561]: vcpu2, guest rIP: 0xfff0 Unhandled WRMSR(0xc0010015) = 0x4 [ 794.986612][T24570] netlink: 334 bytes leftover after parsing attributes in process `syz.4.6913'. [ 795.815289][T24586] zswap: compressor not available [ 796.381769][T24606] netlink: 326 bytes leftover after parsing attributes in process `syz.0.6925'. [ 796.944779][T24626] netlink: 12 bytes leftover after parsing attributes in process `syz.0.6931'. [ 797.450092][T24634] netlink: 338 bytes leftover after parsing attributes in process `syz.0.6933'. [ 797.719294][T24634] netlink: 338 bytes leftover after parsing attributes in process `syz.0.6933'. [ 797.731302][T24635] netlink: 134 bytes leftover after parsing attributes in process `syz.0.6933'. [ 798.473468][T24652] kvm: kvm [24651]: vcpu2, guest rIP: 0xfff0 Unhandled WRMSR(0xc1) = 0x2 [ 798.898624][T24663] nvme_fabrics: missing parameter 'transport=%s' [ 798.906000][T24663] nvme_fabrics: missing parameter 'nqn=%s' [ 799.493547][T24683] zero sized request [ 799.707161][T24688] ERROR: Out of memory at tomoyo_memory_ok. [ 799.894689][T24696] mkiss: ax0: crc mode is auto. [ 800.164448][T24703] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6960'. [ 800.219015][T24703] netlink: 13 bytes leftover after parsing attributes in process `syz.1.6960'. [ 800.306271][T24701] netlink: set zone limit has 8 unknown bytes [ 803.419426][T24794] netlink: 'syz.3.6992': attribute type 17 has an invalid length. [ 803.427554][T24794] netlink: 326 bytes leftover after parsing attributes in process `syz.3.6992'. [ 803.479050][T24802] netlink: 'syz.0.6996': attribute type 1 has an invalid length. [ 803.501365][T24802] netlink: 'syz.0.6996': attribute type 6 has an invalid length. [ 803.909493][T24817] FAULT_INJECTION: forcing a failure. [ 803.909493][T24817] name failslab, interval 1, probability 393216, space 0, times 0 [ 803.941228][T24817] CPU: 1 UID: 0 PID: 24817 Comm: syz.4.7001 Tainted: G U L syzkaller #0 PREEMPT(full) [ 803.941286][T24817] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 803.941297][T24817] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 803.941315][T24817] Call Trace: [ 803.941329][T24817] [ 803.941339][T24817] dump_stack_lvl+0x100/0x190 [ 803.941377][T24817] should_fail_ex.cold+0x5/0xa [ 803.941424][T24817] should_failslab+0xc2/0x120 [ 803.941464][T24817] ? process_preds+0x44a/0x1e10 [ 803.941505][T24817] __kmalloc_noprof+0xf6/0x9c0 [ 803.941547][T24817] ? process_preds+0x44a/0x1e10 [ 803.941588][T24817] process_preds+0x44a/0x1e10 [ 803.941638][T24817] ? create_filter_start.constprop.0+0x134/0x310 [ 803.941690][T24817] create_filter+0x140/0x210 [ 803.941736][T24817] ? __pfx_create_filter+0x10/0x10 [ 803.941780][T24817] ? __pfx___mutex_lock+0x10/0x10 [ 803.941818][T24817] ? find_held_lock+0x2b/0x80 [ 803.941852][T24817] apply_event_filter+0x220/0x500 [ 803.941881][T24817] ? __pfx_apply_event_filter+0x10/0x10 [ 803.941931][T24817] event_filter_write+0x16d/0x290 [ 803.941972][T24817] vfs_write+0x2aa/0x1070 [ 803.942007][T24817] ? __pfx_event_filter_write+0x10/0x10 [ 803.942047][T24817] ? __pfx_vfs_write+0x10/0x10 [ 803.942077][T24817] ? find_held_lock+0x2b/0x80 [ 803.942107][T24817] ? __fget_files+0x215/0x3d0 [ 803.942146][T24817] ? __fget_files+0x21f/0x3d0 [ 803.942188][T24817] ksys_write+0x12a/0x250 [ 803.942220][T24817] ? __pfx_ksys_write+0x10/0x10 [ 803.942263][T24817] do_syscall_64+0xc9/0xf80 [ 803.942301][T24817] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 803.942329][T24817] RIP: 0033:0x7fab92d9aeb9 [ 803.942353][T24817] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 803.942377][T24817] RSP: 002b:00007fab93ced028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 803.942403][T24817] RAX: ffffffffffffffda RBX: 00007fab93015fa0 RCX: 00007fab92d9aeb9 [ 803.942422][T24817] RDX: 00000000000005c8 RSI: 0000000000000000 RDI: 0000000000000003 [ 803.942439][T24817] RBP: 00007fab92e08c1f R08: 0000000000000000 R09: 0000000000000000 [ 803.942457][T24817] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 803.942474][T24817] R13: 00007fab93016038 R14: 00007fab93015fa0 R15: 00007ffee63600c8 [ 803.942513][T24817] [ 804.521000][T24839] FAULT_INJECTION: forcing a failure. [ 804.521000][T24839] name failslab, interval 1, probability 393216, space 0, times 0 [ 804.535283][T24839] CPU: 0 UID: 0 PID: 24839 Comm: syz.4.7011 Tainted: G U L syzkaller #0 PREEMPT(full) [ 804.535336][T24839] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 804.535349][T24839] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 804.535368][T24839] Call Trace: [ 804.535378][T24839] [ 804.535390][T24839] dump_stack_lvl+0x100/0x190 [ 804.535430][T24839] should_fail_ex.cold+0x5/0xa [ 804.535480][T24839] should_failslab+0xc2/0x120 [ 804.535522][T24839] kmem_cache_alloc_lru_noprof+0x8e/0x7d0 [ 804.535573][T24839] ? start_dirop+0x79/0xb0 [ 804.535606][T24839] ? alloc_inode+0x68/0x250 [ 804.535655][T24839] ? __pfx_debugfs_alloc_inode+0x10/0x10 [ 804.535689][T24839] ? alloc_inode+0x68/0x250 [ 804.535729][T24839] alloc_inode+0x68/0x250 [ 804.535771][T24839] new_inode+0x22/0x1c0 [ 804.535817][T24839] __debugfs_create_file+0x105/0x4f0 [ 804.535859][T24839] debugfs_create_file_full+0x41/0x60 [ 804.535909][T24839] binder_open+0xa27/0xe50 [ 804.535957][T24839] ? __pfx_apparmor_file_open+0x10/0x10 [ 804.535997][T24839] ? __pfx_binder_open+0x10/0x10 [ 804.536044][T24839] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 804.536089][T24839] do_dentry_open+0x73e/0x1570 [ 804.536125][T24839] ? __pfx_binder_open+0x10/0x10 [ 804.536169][T24839] ? security_inode_permission+0xbf/0x250 [ 804.536220][T24839] vfs_open+0x82/0x3f0 [ 804.536268][T24839] path_openat+0x21dc/0x3120 [ 804.536317][T24839] ? __pfx_path_openat+0x10/0x10 [ 804.536366][T24839] do_filp_open+0x1f7/0x420 [ 804.536406][T24839] ? __pfx_do_filp_open+0x10/0x10 [ 804.536469][T24839] ? _raw_spin_unlock+0x28/0x50 [ 804.536499][T24839] ? alloc_fd+0x476/0x790 [ 804.536544][T24839] do_sys_openat2+0x12e/0x220 [ 804.536588][T24839] ? __pfx_do_sys_openat2+0x10/0x10 [ 804.536650][T24839] __x64_sys_openat+0x12d/0x210 [ 804.536697][T24839] ? __pfx___x64_sys_openat+0x10/0x10 [ 804.536741][T24839] ? xfd_validate_state+0x129/0x190 [ 804.536801][T24839] do_syscall_64+0xc9/0xf80 [ 804.536840][T24839] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 804.536870][T24839] RIP: 0033:0x7fab92d9aeb9 [ 804.536900][T24839] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 804.536930][T24839] RSP: 002b:00007fab93ced028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 804.536959][T24839] RAX: ffffffffffffffda RBX: 00007fab93015fa0 RCX: 00007fab92d9aeb9 [ 804.536980][T24839] RDX: 0000000000000040 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 804.536999][T24839] RBP: 00007fab92e08c1f R08: 0000000000000000 R09: 0000000000000000 [ 804.537018][T24839] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 804.537037][T24839] R13: 00007fab93016038 R14: 00007fab93015fa0 R15: 00007ffee63600c8 [ 804.537078][T24839] [ 804.537429][T24839] debugfs: out of free dentries, can not create file '24838' [ 804.973072][T24852] netlink: 28 bytes leftover after parsing attributes in process `syz.3.7016'. [ 805.002382][T24852] veth1_vlan: entered allmulticast mode [ 805.198253][T24865] mkiss: ax0: crc mode is auto. [ 805.371246][T24872] FAULT_INJECTION: forcing a failure. [ 805.371246][T24872] name failslab, interval 1, probability 393216, space 0, times 0 [ 805.387810][T24872] CPU: 0 UID: 0 PID: 24872 Comm: syz.4.7024 Tainted: G U L syzkaller #0 PREEMPT(full) [ 805.387859][T24872] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 805.387871][T24872] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 805.387888][T24872] Call Trace: [ 805.387898][T24872] [ 805.387908][T24872] dump_stack_lvl+0x100/0x190 [ 805.387950][T24872] should_fail_ex.cold+0x5/0xa [ 805.387996][T24872] should_failslab+0xc2/0x120 [ 805.388036][T24872] __kmalloc_cache_noprof+0x80/0x810 [ 805.388065][T24872] ? __get_fs_type+0x12c/0x170 [ 805.388104][T24872] ? alloc_fs_context+0x57/0xf50 [ 805.388148][T24872] ? alloc_fs_context+0x57/0xf50 [ 805.388185][T24872] alloc_fs_context+0x57/0xf50 [ 805.388229][T24872] path_mount+0xdbd/0x23c0 [ 805.388273][T24872] ? __pfx_path_mount+0x10/0x10 [ 805.388312][T24872] ? kmem_cache_free+0x143/0x720 [ 805.388344][T24872] ? strncpy_from_user+0x19d/0x2d0 [ 805.388383][T24872] ? putname+0xf5/0x1a0 [ 805.388427][T24872] ? putname+0xf5/0x1a0 [ 805.388460][T24872] ? putname+0xfa/0x1a0 [ 805.388500][T24872] ? __x64_sys_mount+0x293/0x310 [ 805.388538][T24872] __x64_sys_mount+0x293/0x310 [ 805.388577][T24872] ? __pfx___x64_sys_mount+0x10/0x10 [ 805.388626][T24872] do_syscall_64+0xc9/0xf80 [ 805.388664][T24872] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 805.388694][T24872] RIP: 0033:0x7fab92d9aeb9 [ 805.388721][T24872] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 805.388755][T24872] RSP: 002b:00007fab93ced028 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 805.388783][T24872] RAX: ffffffffffffffda RBX: 00007fab93015fa0 RCX: 00007fab92d9aeb9 [ 805.388810][T24872] RDX: 0000200000000000 RSI: 0000200000000040 RDI: 0000000000000000 [ 805.388829][T24872] RBP: 00007fab92e08c1f R08: 0000200000001580 R09: 0000000000000000 [ 805.388848][T24872] R10: 0000000000008000 R11: 0000000000000246 R12: 0000000000000000 [ 805.388867][T24872] R13: 00007fab93016038 R14: 00007fab93015fa0 R15: 00007ffee63600c8 [ 805.388905][T24872] [ 805.675122][T24878] netlink: 342 bytes leftover after parsing attributes in process `syz.1.7027'. [ 805.687929][T24878] netlink: 306 bytes leftover after parsing attributes in process `syz.1.7027'. [ 805.910028][T24890] netlink: 'syz.4.7031': attribute type 32 has an invalid length. [ 805.959067][T24890] netlink: 'syz.4.7031': attribute type 32 has an invalid length. [ 806.221634][T24904] FAULT_INJECTION: forcing a failure. [ 806.221634][T24904] name failslab, interval 1, probability 393216, space 0, times 0 [ 806.253567][T24904] CPU: 1 UID: 0 PID: 24904 Comm: syz.1.7036 Tainted: G U L syzkaller #0 PREEMPT(full) [ 806.253620][T24904] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 806.253633][T24904] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 806.253652][T24904] Call Trace: [ 806.253662][T24904] [ 806.253674][T24904] dump_stack_lvl+0x100/0x190 [ 806.253722][T24904] should_fail_ex.cold+0x5/0xa [ 806.253772][T24904] should_failslab+0xc2/0x120 [ 806.253814][T24904] ? nfc_llcp_build_tlv+0x105/0x250 [ 806.253850][T24904] __kmalloc_noprof+0xf6/0x9c0 [ 806.253879][T24904] ? do_raw_spin_lock+0x128/0x260 [ 806.253934][T24904] ? nfc_llcp_build_tlv+0x105/0x250 [ 806.253967][T24904] nfc_llcp_build_tlv+0x105/0x250 [ 806.254001][T24904] ? lockdep_hardirqs_on+0x78/0x100 [ 806.254040][T24904] nfc_llcp_build_gb.isra.0+0x11e/0x3f0 [ 806.254076][T24904] ? __pfx_nfc_llcp_build_gb.isra.0+0x10/0x10 [ 806.254121][T24904] ? lockdep_init_map_type+0x5c/0x250 [ 806.254161][T24904] ? lockdep_init_map_type+0x5c/0x250 [ 806.254204][T24904] nfc_llcp_register_device+0x600/0xa60 [ 806.254244][T24904] nfc_register_device+0x6d/0x3e0 [ 806.254284][T24904] nci_register_device+0x7f1/0xb80 [ 806.254317][T24904] ? __pfx_nci_register_device+0x10/0x10 [ 806.254352][T24904] ? lockdep_init_map_type+0x5c/0x250 [ 806.254398][T24904] virtual_ncidev_open+0x141/0x220 [ 806.254445][T24904] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 806.254489][T24904] misc_open+0x26d/0x450 [ 806.254525][T24904] ? __pfx_misc_open+0x10/0x10 [ 806.254558][T24904] chrdev_open+0x234/0x6a0 [ 806.254594][T24904] ? __pfx_apparmor_file_open+0x10/0x10 [ 806.254631][T24904] ? __pfx_chrdev_open+0x10/0x10 [ 806.254694][T24904] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 806.254738][T24904] do_dentry_open+0x73e/0x1570 [ 806.254774][T24904] ? __pfx_chrdev_open+0x10/0x10 [ 806.254810][T24904] ? security_inode_permission+0xbf/0x250 [ 806.254858][T24904] vfs_open+0x82/0x3f0 [ 806.254905][T24904] path_openat+0x21dc/0x3120 [ 806.254953][T24904] ? __pfx_path_openat+0x10/0x10 [ 806.255002][T24904] do_filp_open+0x1f7/0x420 [ 806.255039][T24904] ? __pfx_do_filp_open+0x10/0x10 [ 806.255102][T24904] ? _raw_spin_unlock+0x28/0x50 [ 806.255131][T24904] ? alloc_fd+0x476/0x790 [ 806.255176][T24904] do_sys_openat2+0x12e/0x220 [ 806.255221][T24904] ? __pfx_do_sys_openat2+0x10/0x10 [ 806.255267][T24904] ? find_held_lock+0x2b/0x80 [ 806.255306][T24904] __x64_sys_openat+0x12d/0x210 [ 806.255351][T24904] ? __pfx___x64_sys_openat+0x10/0x10 [ 806.255394][T24904] ? xfd_validate_state+0x129/0x190 [ 806.255452][T24904] do_syscall_64+0xc9/0xf80 [ 806.255491][T24904] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 806.255521][T24904] RIP: 0033:0x7f483b59aeb9 [ 806.255545][T24904] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 806.255574][T24904] RSP: 002b:00007f483c4a9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 806.255603][T24904] RAX: ffffffffffffffda RBX: 00007f483b815fa0 RCX: 00007f483b59aeb9 [ 806.255619][T24904] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 806.255637][T24904] RBP: 00007f483b608c1f R08: 0000000000000000 R09: 0000000000000000 [ 806.255656][T24904] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 806.255673][T24904] R13: 00007f483b816038 R14: 00007f483b815fa0 R15: 00007ffff4a71ea8 [ 806.255716][T24904] [ 807.072728][T24917] netlink: 350 bytes leftover after parsing attributes in process `syz.0.7039'. [ 807.384752][T24929] netlink: 'syz.1.7043': attribute type 27 has an invalid length. [ 807.403565][T24929] netlink: 'syz.1.7043': attribute type 28 has an invalid length. [ 807.413616][T24929] netlink: 'syz.1.7043': attribute type 29 has an invalid length. [ 807.421492][T24929] netlink: 'syz.1.7043': attribute type 30 has an invalid length. [ 807.459195][T24929] netlink: 'syz.1.7043': attribute type 31 has an invalid length. [ 807.474163][T24929] netlink: 18 bytes leftover after parsing attributes in process `syz.1.7043'. [ 807.698424][T24940] netlink: 266 bytes leftover after parsing attributes in process `syz.1.7048'. [ 807.825964][T24942] FAULT_INJECTION: forcing a failure. [ 807.825964][T24942] name failslab, interval 1, probability 393216, space 0, times 0 [ 807.841380][T24942] CPU: 0 UID: 0 PID: 24942 Comm: syz.0.7049 Tainted: G U L syzkaller #0 PREEMPT(full) [ 807.841435][T24942] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 807.841448][T24942] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 807.841466][T24942] Call Trace: [ 807.841477][T24942] [ 807.841488][T24942] dump_stack_lvl+0x100/0x190 [ 807.841531][T24942] should_fail_ex.cold+0x5/0xa [ 807.841579][T24942] should_failslab+0xc2/0x120 [ 807.841622][T24942] __kvmalloc_node_noprof+0x101/0xac0 [ 807.841662][T24942] ? alloc_fdtable+0x110/0x2d0 [ 807.841701][T24942] ? alloc_fdtable+0x110/0x2d0 [ 807.841730][T24942] alloc_fdtable+0x110/0x2d0 [ 807.841764][T24942] dup_fd+0x995/0xd10 [ 807.841812][T24942] ? map_id_range_down+0x2bc/0x3b0 [ 807.841848][T24942] ksys_unshare+0x78f/0xab0 [ 807.841894][T24942] ? __pfx_ksys_unshare+0x10/0x10 [ 807.841935][T24942] ? xfd_validate_state+0x129/0x190 [ 807.841991][T24942] __x64_sys_unshare+0x31/0x40 [ 807.842031][T24942] do_syscall_64+0xc9/0xf80 [ 807.842070][T24942] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 807.842100][T24942] RIP: 0033:0x7f018b99aeb9 [ 807.842122][T24942] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 807.842148][T24942] RSP: 002b:00007f0189bf6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 807.842174][T24942] RAX: ffffffffffffffda RBX: 00007f018bc15fa0 RCX: 00007f018b99aeb9 [ 807.842193][T24942] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000008000400 [ 807.842209][T24942] RBP: 00007f018ba08c1f R08: 0000000000000000 R09: 0000000000000000 [ 807.842224][T24942] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 807.842241][T24942] R13: 00007f018bc16038 R14: 00007f018bc15fa0 R15: 00007ffc582dfbb8 [ 807.842276][T24942] [ 808.916931][T24947] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 808.923081][T24947] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 808.929586][T24947] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 808.935766][T24947] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 809.285215][T24965] FAULT_INJECTION: forcing a failure. [ 809.285215][T24965] name failslab, interval 1, probability 393216, space 0, times 0 [ 809.303866][T24965] CPU: 0 UID: 0 PID: 24965 Comm: syz.0.7057 Tainted: G U L syzkaller #0 PREEMPT(full) [ 809.303919][T24965] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 809.303932][T24965] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 809.303950][T24965] Call Trace: [ 809.303960][T24965] [ 809.303972][T24965] dump_stack_lvl+0x100/0x190 [ 809.304016][T24965] should_fail_ex.cold+0x5/0xa [ 809.304060][T24965] should_failslab+0xc2/0x120 [ 809.304100][T24965] ? lsm_blob_alloc+0x68/0x90 [ 809.304130][T24965] __kmalloc_noprof+0xf6/0x9c0 [ 809.304161][T24965] ? __pfx_perf_event_init_task+0x10/0x10 [ 809.304214][T24965] ? lsm_blob_alloc+0x68/0x90 [ 809.304243][T24965] lsm_blob_alloc+0x68/0x90 [ 809.304274][T24965] security_task_alloc+0x2a/0x260 [ 809.304304][T24965] copy_process+0x25cc/0x7890 [ 809.304343][T24965] ? __pfx___futex_wait+0x10/0x10 [ 809.304384][T24965] ? __pfx_copy_process+0x10/0x10 [ 809.304437][T24965] kernel_clone+0xfc/0x930 [ 809.304471][T24965] ? __pfx_futex_wait+0x10/0x10 [ 809.304500][T24965] ? __pfx_kernel_clone+0x10/0x10 [ 809.304554][T24965] __do_sys_clone+0xd9/0x120 [ 809.304594][T24965] ? __pfx___do_sys_clone+0x10/0x10 [ 809.304647][T24965] ? xfd_validate_state+0x129/0x190 [ 809.304711][T24965] do_syscall_64+0xc9/0xf80 [ 809.304749][T24965] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 809.304778][T24965] RIP: 0033:0x7f018b99aeb9 [ 809.304802][T24965] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 809.304831][T24965] RSP: 002b:00007f0189bf6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 809.304857][T24965] RAX: ffffffffffffffda RBX: 00007f018bc15fa0 RCX: 00007f018b99aeb9 [ 809.304878][T24965] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000001 [ 809.304895][T24965] RBP: 00007f018ba08c1f R08: 0000000000000000 R09: 0000000000000000 [ 809.304913][T24965] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 809.304929][T24965] R13: 00007f018bc16038 R14: 00007f018bc15fa0 R15: 00007ffc582dfbb8 [ 809.304965][T24965] [ 809.518413][T24969] FAULT_INJECTION: forcing a failure. [ 809.518413][T24969] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 809.531720][T24969] CPU: 1 UID: 0 PID: 24969 Comm: syz.3.7058 Tainted: G U L syzkaller #0 PREEMPT(full) [ 809.531769][T24969] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 809.531782][T24969] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 809.531797][T24969] Call Trace: [ 809.531807][T24969] [ 809.531817][T24969] dump_stack_lvl+0x100/0x190 [ 809.531857][T24969] should_fail_ex.cold+0x5/0xa [ 809.531904][T24969] _copy_from_user+0x2e/0xd0 [ 809.531947][T24969] dma_heap_ioctl+0x16d/0x5e0 [ 809.531991][T24969] ? __pfx_dma_heap_ioctl+0x10/0x10 [ 809.532034][T24969] ? find_held_lock+0x2b/0x80 [ 809.532083][T24969] ? __pfx_dma_heap_ioctl+0x10/0x10 [ 809.532133][T24969] __x64_sys_ioctl+0x18e/0x210 [ 809.532182][T24969] do_syscall_64+0xc9/0xf80 [ 809.532221][T24969] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 809.532250][T24969] RIP: 0033:0x7fd69019aeb9 [ 809.532273][T24969] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 809.532299][T24969] RSP: 002b:00007fd6910ed028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 809.532326][T24969] RAX: ffffffffffffffda RBX: 00007fd690415fa0 RCX: 00007fd69019aeb9 [ 809.532346][T24969] RDX: 0000000000000000 RSI: ffffffffffdffe00 RDI: 0000000000000005 [ 809.532365][T24969] RBP: 00007fd690208c1f R08: 0000000000000000 R09: 0000000000000000 [ 809.532394][T24969] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 809.532411][T24969] R13: 00007fd690416038 R14: 00007fd690415fa0 R15: 00007ffea8428928 [ 809.532450][T24969] [ 809.888159][T20390] Bluetooth: hci0: unexpected event 0x06 length: 440 > 3 [ 810.007427][T24983] sp0: Synchronizing with TNC [ 810.129678][T24983] sp0: Synchronizing with TNC [ 810.185918][T20390] Bluetooth: hci0: command 0x0406 tx timeout [ 810.816648][T25001] ERROR: Out of memory at tomoyo_memory_ok. [ 810.974669][T25003] netlink: 330 bytes leftover after parsing attributes in process `syz.1.7070'. [ 810.985013][T20382] Bluetooth: hci3: command 0x0406 tx timeout [ 810.991206][T20382] Bluetooth: hci2: command 0x0406 tx timeout [ 810.999958][T20390] Bluetooth: hci1: command 0x0c1a tx timeout [ 811.093527][T25003] gretap0: refused to change device tx_queue_len [ 811.794105][T25032] netlink: 25 bytes leftover after parsing attributes in process `syz.4.7080'. [ 812.222639][T25046] netlink: 28 bytes leftover after parsing attributes in process `syz.0.7084'. [ 812.285730][T25046] veth1_vlan: entered allmulticast mode [ 812.403938][T25052] Falling back ldisc for pty66. [ 812.548734][T25055] FAULT_INJECTION: forcing a failure. [ 812.548734][T25055] name fail_futex, interval 1, probability 0, space 0, times 0 [ 812.595137][T25055] CPU: 0 UID: 0 PID: 25055 Comm: syz.0.7087 Tainted: G U L syzkaller #0 PREEMPT(full) [ 812.595198][T25055] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 812.595212][T25055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 812.595231][T25055] Call Trace: [ 812.595241][T25055] [ 812.595252][T25055] dump_stack_lvl+0x100/0x190 [ 812.595293][T25055] should_fail_ex.cold+0x5/0xa [ 812.595337][T25055] ? kasan_save_stack+0x3f/0x50 [ 812.595378][T25055] get_futex_key+0x1d2/0x1620 [ 812.595420][T25055] ? __pfx_get_futex_key+0x10/0x10 [ 812.595471][T25055] futex_wake+0xea/0x530 [ 812.595520][T25055] ? __pfx_futex_wake+0x10/0x10 [ 812.595575][T25055] ? proc_id_connector+0x2ed/0x650 [ 812.595628][T25055] do_futex+0x32b/0x350 [ 812.595666][T25055] ? __pfx_do_futex+0x10/0x10 [ 812.595703][T25055] ? find_held_lock+0x2b/0x80 [ 812.595736][T25055] __x64_sys_futex+0x34f/0x4d0 [ 812.595782][T25055] ? __pfx___x64_sys_futex+0x10/0x10 [ 812.595823][T25055] ? __sys_setresgid+0x645/0x12f0 [ 812.595862][T25055] do_syscall_64+0xc9/0xf80 [ 812.595901][T25055] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 812.595932][T25055] RIP: 0033:0x7f018b99aeb9 [ 812.595956][T25055] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 812.595984][T25055] RSP: 002b:00007f0189bf60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 812.596013][T25055] RAX: ffffffffffffffda RBX: 00007f018bc15fa8 RCX: 00007f018b99aeb9 [ 812.596034][T25055] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f018bc15fac [ 812.596054][T25055] RBP: 00007f018bc15fa0 R08: 0000000000000000 R09: 0000000000000000 [ 812.596073][T25055] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 812.596092][T25055] R13: 00007f018bc16038 R14: 00007ffc582dfad0 R15: 00007ffc582dfbb8 [ 812.596130][T25055] [ 813.156007][T25072] netlink: 330 bytes leftover after parsing attributes in process `syz.4.7094'. [ 813.169558][T25072] : renamed from bridge_slave_1 (while UP) [ 813.208929][T25072] bridge0: port 2() entered disabled state [ 813.839440][T25098] FAULT_INJECTION: forcing a failure. [ 813.839440][T25098] name failslab, interval 1, probability 393216, space 0, times 0 [ 813.854571][T25102] netlink: 342 bytes leftover after parsing attributes in process `syz.0.7105'. [ 813.864110][T25101] FAULT_INJECTION: forcing a failure. [ 813.864110][T25101] name failslab, interval 1, probability 393216, space 0, times 0 [ 813.878388][T25098] CPU: 1 UID: 0 PID: 25098 Comm: syz.3.7106 Tainted: G U L syzkaller #0 PREEMPT(full) [ 813.878435][T25098] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 813.878446][T25098] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 813.878462][T25098] Call Trace: [ 813.878471][T25098] [ 813.878482][T25098] dump_stack_lvl+0x100/0x190 [ 813.878524][T25098] should_fail_ex.cold+0x5/0xa [ 813.878569][T25098] should_failslab+0xc2/0x120 [ 813.878607][T25098] ? constrain_params_by_rules+0x175/0xcc0 [ 813.878641][T25098] __kmalloc_noprof+0xf6/0x9c0 [ 813.878664][T25098] ? kernel_text_address+0x8d/0x100 [ 813.878707][T25098] ? __kernel_text_address+0xd/0x30 [ 813.878754][T25098] ? constrain_params_by_rules+0x175/0xcc0 [ 813.878791][T25098] constrain_params_by_rules+0x175/0xcc0 [ 813.878837][T25098] ? stack_trace_save+0x8e/0xc0 [ 813.878874][T25098] ? __pfx_constrain_params_by_rules+0x10/0x10 [ 813.878914][T25098] ? put_cpu_partial+0xfc/0x310 [ 813.878948][T25098] ? __kasan_kmalloc+0xaa/0xb0 [ 813.878977][T25098] ? snd_pcm_oss_change_params_locked+0x247/0x39f0 [ 813.879010][T25098] ? snd_pcm_oss_make_ready+0xeb/0x1b0 [ 813.879053][T25098] ? snd_pcm_oss_sync+0x1de/0x840 [ 813.879096][T25098] ? rcu_is_watching+0x12/0xc0 [ 813.879122][T25098] ? snd_interval_refine+0x2d0/0x580 [ 813.879153][T25098] snd_pcm_hw_refine+0x7e7/0xad0 [ 813.879197][T25098] ? __pfx_snd_pcm_hw_refine+0x10/0x10 [ 813.879244][T25098] ? __asan_memset+0x23/0x50 [ 813.879272][T25098] ? _snd_pcm_hw_param_min+0x1ea/0x670 [ 813.879308][T25098] snd_pcm_oss_change_params_locked+0x2594/0x39f0 [ 813.879346][T25098] ? __mutex_lock+0x26a/0x1b90 [ 813.879389][T25098] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 813.879423][T25098] ? __pfx___mutex_lock+0x10/0x10 [ 813.879478][T25098] snd_pcm_oss_make_ready+0xeb/0x1b0 [ 813.879515][T25098] snd_pcm_oss_sync+0x1de/0x840 [ 813.879554][T25098] snd_pcm_oss_release+0x238/0x300 [ 813.879588][T25098] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 813.879622][T25098] __fput+0x3ff/0xb40 [ 813.879665][T25098] task_work_run+0x150/0x240 [ 813.879706][T25098] ? __pfx_task_work_run+0x10/0x10 [ 813.879755][T25098] exit_to_user_mode_loop+0x100/0x4b0 [ 813.879793][T25098] ? rcu_is_watching+0x12/0xc0 [ 813.879821][T25098] do_syscall_64+0x4ea/0xf80 [ 813.879856][T25098] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 813.879882][T25098] RIP: 0033:0x7fd69019aeb9 [ 813.879904][T25098] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 813.879929][T25098] RSP: 002b:00007fd6910ed028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 813.879955][T25098] RAX: 0000000000000000 RBX: 00007fd690415fa0 RCX: 00007fd69019aeb9 [ 813.879974][T25098] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 813.879989][T25098] RBP: 00007fd690208c1f R08: 0000000000000000 R09: 0000000000000000 [ 813.880007][T25098] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 813.880029][T25098] R13: 00007fd690416038 R14: 00007fd690415fa0 R15: 00007ffea8428928 [ 813.880067][T25098] [ 813.880084][T25101] CPU: 0 UID: 0 PID: 25101 Comm: syz.4.7107 Tainted: G U L syzkaller #0 PREEMPT(full) [ 813.880128][T25101] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 813.880139][T25101] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 813.880155][T25101] Call Trace: [ 813.880163][T25101] [ 813.880174][T25101] dump_stack_lvl+0x100/0x190 [ 813.880211][T25101] should_fail_ex.cold+0x5/0xa [ 813.880254][T25101] should_failslab+0xc2/0x120 [ 813.880299][T25101] __kmalloc_cache_noprof+0x80/0x810 [ 813.880326][T25101] ? apply_wqattrs_prepare+0x136/0xbb0 [ 813.880363][T25101] ? apply_wqattrs_prepare+0x136/0xbb0 [ 813.880392][T25101] apply_wqattrs_prepare+0x136/0xbb0 [ 813.880432][T25101] apply_workqueue_attrs_locked+0x64/0xe0 [ 813.880464][T25101] __alloc_workqueue+0xe25/0x1880 [ 813.880503][T25101] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 813.880541][T25101] alloc_workqueue_noprof+0xd2/0x200 [ 813.880579][T25101] ? __pfx_alloc_workqueue_noprof+0x10/0x10 [ 813.880629][T25101] ? __pfx___debug_object_init+0x10/0x10 [ 813.880676][T25101] nci_register_device+0x511/0xb80 [ 813.880709][T25101] ? __pfx_nci_register_device+0x10/0x10 [ 813.880746][T25101] ? lockdep_init_map_type+0x5c/0x250 [ 813.880794][T25101] virtual_ncidev_open+0x141/0x220 [ 813.880840][T25101] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 813.880885][T25101] misc_open+0x26d/0x450 [ 813.880920][T25101] ? __pfx_misc_open+0x10/0x10 [ 813.880953][T25101] chrdev_open+0x234/0x6a0 [ 813.880989][T25101] ? __pfx_apparmor_file_open+0x10/0x10 [ 813.881027][T25101] ? __pfx_chrdev_open+0x10/0x10 [ 813.881064][T25101] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 813.881109][T25101] do_dentry_open+0x73e/0x1570 [ 813.881143][T25101] ? __pfx_chrdev_open+0x10/0x10 [ 813.881180][T25101] ? security_inode_permission+0xbf/0x250 [ 813.881229][T25101] vfs_open+0x82/0x3f0 [ 813.881284][T25101] path_openat+0x21dc/0x3120 [ 813.881354][T25101] ? __pfx_path_openat+0x10/0x10 [ 813.881406][T25101] do_filp_open+0x1f7/0x420 [ 813.881444][T25101] ? __pfx_do_filp_open+0x10/0x10 [ 813.881507][T25101] ? _raw_spin_unlock+0x28/0x50 [ 813.881537][T25101] ? alloc_fd+0x476/0x790 [ 813.881581][T25101] do_sys_openat2+0x12e/0x220 [ 813.881626][T25101] ? __pfx_do_sys_openat2+0x10/0x10 [ 813.881672][T25101] ? __fput+0x68a/0xb40 [ 813.881720][T25101] __x64_sys_openat+0x12d/0x210 [ 813.881765][T25101] ? __pfx___x64_sys_openat+0x10/0x10 [ 813.881808][T25101] ? xfd_validate_state+0x129/0x190 [ 813.881866][T25101] do_syscall_64+0xc9/0xf80 [ 813.881905][T25101] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 813.881935][T25101] RIP: 0033:0x7fab92d9aeb9 [ 813.881959][T25101] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 813.881987][T25101] RSP: 002b:00007fab93ced028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 813.882015][T25101] RAX: ffffffffffffffda RBX: 00007fab93015fa0 RCX: 00007fab92d9aeb9 [ 813.882034][T25101] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 813.882054][T25101] RBP: 00007fab92e08c1f R08: 0000000000000000 R09: 0000000000000000 [ 813.882071][T25101] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 813.882089][T25101] R13: 00007fab93016038 R14: 00007fab93015fa0 R15: 00007ffee63600c8 [ 813.882129][T25101] [ 814.508381][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 814.514842][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 814.783523][T25006] block nbd2: Receive control failed (result -32) [ 816.963960][T25147] netlink: 330 bytes leftover after parsing attributes in process `syz.3.7123'. [ 816.985363][T25147] : renamed from bridge_slave_1 (while UP) [ 817.125312][ C0] vcan0: j1939_tp_rxtimer: 0xffff88805e75f400: rx timeout, send abort [ 817.133770][ C0] vcan0: j1939_tp_rxtimer: 0xffff88804c100c00: rx timeout, send abort [ 817.142361][ C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88805e75f400: 0x00000: (3) A timeout occurred and this is the connection abort to close the session. [ 817.156797][ C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88804c100c00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session. [ 817.317248][T25154] netlink: 266 bytes leftover after parsing attributes in process `syz.4.7125'. [ 817.345717][T25154] IPv6: NLM_F_CREATE should be specified when creating new route [ 817.386268][T25158] netlink: 28 bytes leftover after parsing attributes in process `syz.3.7127'. [ 817.712619][T25168] Falling back ldisc for pty66. [ 817.833176][T25006] block nbd3: Receive control failed (result -32) [ 817.913914][T25180] netlink: 342 bytes leftover after parsing attributes in process `syz.1.7138'. [ 817.925917][T25180] netlink: 306 bytes leftover after parsing attributes in process `syz.1.7138'. [ 817.982534][T25183] FAULT_INJECTION: forcing a failure. [ 817.982534][T25183] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 817.998288][T25183] CPU: 1 UID: 0 PID: 25183 Comm: syz.4.7137 Tainted: G U L syzkaller #0 PREEMPT(full) [ 817.998342][T25183] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 817.998358][T25183] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 817.998373][T25183] Call Trace: [ 817.998382][T25183] [ 817.998392][T25183] dump_stack_lvl+0x100/0x190 [ 817.998431][T25183] should_fail_ex.cold+0x5/0xa [ 817.998473][T25183] ? prepare_alloc_pages+0x16d/0x5f0 [ 817.998527][T25183] should_fail_alloc_page+0xeb/0x140 [ 817.998572][T25183] prepare_alloc_pages+0x1f0/0x5f0 [ 817.998623][T25183] __alloc_frozen_pages_noprof+0x193/0x2410 [ 817.998667][T25183] ? rcu_is_watching+0x12/0xc0 [ 817.998697][T25183] ? trace_mm_page_alloc+0x10e/0x160 [ 817.998743][T25183] ? __alloc_frozen_pages_noprof+0x2a0/0x2410 [ 817.998783][T25183] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 817.998820][T25183] ? kasan_save_stack+0x30/0x50 [ 817.998854][T25183] ? kasan_save_track+0x14/0x30 [ 817.998896][T25183] ? __kasan_kmalloc+0xaa/0xb0 [ 817.998930][T25183] ? __kmalloc_noprof+0x347/0x9c0 [ 817.998958][T25183] ? vhost_dev_set_owner+0x287/0xa30 [ 817.998995][T25183] ? vhost_dev_ioctl+0x521/0xe20 [ 817.999028][T25183] ? vhost_vsock_dev_ioctl+0x320/0xb30 [ 817.999067][T25183] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 817.999112][T25183] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 817.999147][T25183] ? policy_nodemask+0xed/0x4f0 [ 817.999192][T25183] alloc_pages_mpol+0x1fb/0x550 [ 817.999236][T25183] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 817.999289][T25183] ___kmalloc_large_node+0x104/0x150 [ 817.999338][T25183] __kmalloc_large_node_noprof+0x1c/0x70 [ 817.999384][T25183] ? vhost_dev_set_owner+0x191/0xa30 [ 817.999422][T25183] __kmalloc_noprof+0x6b1/0x9c0 [ 817.999463][T25183] ? vhost_dev_set_owner+0x191/0xa30 [ 817.999498][T25183] vhost_dev_set_owner+0x191/0xa30 [ 817.999548][T25183] vhost_dev_ioctl+0x521/0xe20 [ 817.999583][T25183] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 817.999617][T25183] ? do_vfs_ioctl+0x226/0x13e0 [ 817.999661][T25183] ? __pfx_vhost_dev_ioctl+0x10/0x10 [ 817.999713][T25183] vhost_vsock_dev_ioctl+0x320/0xb30 [ 817.999746][T25183] ? hook_file_ioctl_common+0x146/0x410 [ 817.999793][T25183] ? __pfx_vhost_vsock_dev_ioctl+0x10/0x10 [ 817.999833][T25183] ? __fget_files+0x21f/0x3d0 [ 817.999897][T25183] ? __pfx_vhost_vsock_dev_ioctl+0x10/0x10 [ 817.999936][T25183] __x64_sys_ioctl+0x18e/0x210 [ 817.999986][T25183] do_syscall_64+0xc9/0xf80 [ 818.000028][T25183] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 818.000058][T25183] RIP: 0033:0x7fab92d9aeb9 [ 818.000083][T25183] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 818.000112][T25183] RSP: 002b:00007fab93ced028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 818.000141][T25183] RAX: ffffffffffffffda RBX: 00007fab93015fa0 RCX: 00007fab92d9aeb9 [ 818.000162][T25183] RDX: 0000000000000000 RSI: 000000000000af01 RDI: 0000000000000003 [ 818.000180][T25183] RBP: 00007fab92e08c1f R08: 0000000000000000 R09: 0000000000000000 [ 818.000198][T25183] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 818.000216][T25183] R13: 00007fab93016038 R14: 00007fab93015fa0 R15: 00007ffee63600c8 [ 818.000258][T25183] [ 818.693857][T25192] netlink: 330 bytes leftover after parsing attributes in process `syz.4.7141'. [ 820.945237][T25243] netlink: 318 bytes leftover after parsing attributes in process `syz.4.7161'. [ 821.664906][T25267] FAULT_INJECTION: forcing a failure. [ 821.664906][T25267] name failslab, interval 1, probability 393216, space 0, times 0 [ 821.705126][T25267] CPU: 1 UID: 0 PID: 25267 Comm: syz.3.7171 Tainted: G U L syzkaller #0 PREEMPT(full) [ 821.705181][T25267] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 821.705192][T25267] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 821.705209][T25267] Call Trace: [ 821.705220][T25267] [ 821.705231][T25267] dump_stack_lvl+0x100/0x190 [ 821.705272][T25267] should_fail_ex.cold+0x5/0xa [ 821.705323][T25267] should_failslab+0xc2/0x120 [ 821.705365][T25267] kmem_cache_alloc_node_noprof+0x8c/0x880 [ 821.705407][T25267] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 821.705438][T25267] ? alloc_unbound_pwq+0x3ff/0xdd0 [ 821.705476][T25267] ? alloc_unbound_pwq+0x3ff/0xdd0 [ 821.705506][T25267] alloc_unbound_pwq+0x3ff/0xdd0 [ 821.705555][T25267] apply_wqattrs_prepare+0x3aa/0xbb0 [ 821.705602][T25267] apply_workqueue_attrs_locked+0x64/0xe0 [ 821.705638][T25267] __alloc_workqueue+0xe25/0x1880 [ 821.705682][T25267] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 821.705721][T25267] alloc_workqueue_noprof+0xd2/0x200 [ 821.705758][T25267] ? __pfx_alloc_workqueue_noprof+0x10/0x10 [ 821.705807][T25267] ? __pfx___debug_object_init+0x10/0x10 [ 821.705855][T25267] nci_register_device+0x511/0xb80 [ 821.705888][T25267] ? __pfx_nci_register_device+0x10/0x10 [ 821.705924][T25267] ? lockdep_init_map_type+0x5c/0x250 [ 821.705971][T25267] virtual_ncidev_open+0x141/0x220 [ 821.706018][T25267] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 821.706062][T25267] misc_open+0x26d/0x450 [ 821.706097][T25267] ? __pfx_misc_open+0x10/0x10 [ 821.706130][T25267] chrdev_open+0x234/0x6a0 [ 821.706165][T25267] ? __pfx_apparmor_file_open+0x10/0x10 [ 821.706204][T25267] ? __pfx_chrdev_open+0x10/0x10 [ 821.706242][T25267] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 821.706284][T25267] do_dentry_open+0x73e/0x1570 [ 821.706319][T25267] ? __pfx_chrdev_open+0x10/0x10 [ 821.706360][T25267] ? security_inode_permission+0xbf/0x250 [ 821.706410][T25267] vfs_open+0x82/0x3f0 [ 821.706458][T25267] path_openat+0x21dc/0x3120 [ 821.706507][T25267] ? __pfx_path_openat+0x10/0x10 [ 821.706563][T25267] do_filp_open+0x1f7/0x420 [ 821.706602][T25267] ? __pfx_do_filp_open+0x10/0x10 [ 821.706665][T25267] ? _raw_spin_unlock+0x28/0x50 [ 821.706694][T25267] ? alloc_fd+0x476/0x790 [ 821.706738][T25267] do_sys_openat2+0x12e/0x220 [ 821.706782][T25267] ? __pfx_do_sys_openat2+0x10/0x10 [ 821.706828][T25267] ? __fput+0x68a/0xb40 [ 821.706876][T25267] __x64_sys_openat+0x12d/0x210 [ 821.706921][T25267] ? __pfx___x64_sys_openat+0x10/0x10 [ 821.706965][T25267] ? xfd_validate_state+0x129/0x190 [ 821.707023][T25267] do_syscall_64+0xc9/0xf80 [ 821.707061][T25267] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 821.707092][T25267] RIP: 0033:0x7fd69019aeb9 [ 821.707114][T25267] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 821.707142][T25267] RSP: 002b:00007fd6910ed028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 821.707171][T25267] RAX: ffffffffffffffda RBX: 00007fd690415fa0 RCX: 00007fd69019aeb9 [ 821.707191][T25267] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 821.707210][T25267] RBP: 00007fd690208c1f R08: 0000000000000000 R09: 0000000000000000 [ 821.707228][T25267] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 821.707245][T25267] R13: 00007fd690416038 R14: 00007fd690415fa0 R15: 00007ffea8428928 [ 821.707281][T25267] [ 822.252096][T25276] ERROR: Out of memory at tomoyo_memory_ok. [ 822.756328][T25290] netlink: 334 bytes leftover after parsing attributes in process `syz.1.7180'. [ 823.056036][T25304] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7187'. [ 823.073505][T25304] netlink: 13 bytes leftover after parsing attributes in process `syz.3.7187'. [ 823.565823][T25326] netlink: 330 bytes leftover after parsing attributes in process `syz.4.7194'. [ 824.332676][T25348] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 825.283376][T25374] mkiss: ax0: crc mode is auto. [ 825.359783][T25382] netlink: 118 bytes leftover after parsing attributes in process `syz.1.7213'. [ 825.559331][T25385] netlink: 338 bytes leftover after parsing attributes in process `syz.0.7214'. [ 825.750159][T25006] Bluetooth: hci2: unexpected event 0x06 length: 435 > 3 [ 826.726638][T25420] mkiss: ax0: crc mode is auto. [ 827.128864][T25432] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 827.285808][T25442] netlink: 326 bytes leftover after parsing attributes in process `syz.4.7238'. [ 828.703091][T25477] FAULT_INJECTION: forcing a failure. [ 828.703091][T25477] name failslab, interval 1, probability 393216, space 0, times 0 [ 828.744010][T25477] CPU: 0 UID: 0 PID: 25477 Comm: syz.3.7252 Tainted: G U L syzkaller #0 PREEMPT(full) [ 828.744063][T25477] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 828.744075][T25477] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 828.744094][T25477] Call Trace: [ 828.744104][T25477] [ 828.744116][T25477] dump_stack_lvl+0x100/0x190 [ 828.744159][T25477] should_fail_ex.cold+0x5/0xa [ 828.744207][T25477] should_failslab+0xc2/0x120 [ 828.744250][T25477] kmem_cache_alloc_noprof+0x83/0x780 [ 828.744290][T25477] ? acpi_ut_allocate_object_desc_dbg+0x86/0x240 [ 828.744333][T25477] ? acpi_ut_allocate_object_desc_dbg+0x86/0x240 [ 828.744369][T25477] acpi_ut_allocate_object_desc_dbg+0x86/0x240 [ 828.744410][T25477] acpi_ut_create_internal_object_dbg+0x51/0x260 [ 828.744451][T25477] acpi_ut_create_integer_object+0x46/0xe0 [ 828.744486][T25477] acpi_ps_execute_method+0x582/0xe90 [ 828.744538][T25477] acpi_ns_evaluate+0x640/0x1670 [ 828.744591][T25477] acpi_evaluate_object+0x420/0xe00 [ 828.744623][T25477] ? kernfs_fop_read_iter+0x46c/0x610 [ 828.744656][T25477] ? vfs_read+0x825/0xb30 [ 828.744684][T25477] ? ksys_read+0x12a/0x250 [ 828.744719][T25477] ? __pfx_acpi_evaluate_object+0x10/0x10 [ 828.744756][T25477] ? __pfx___might_resched+0x10/0x10 [ 828.744804][T25477] acpi_evaluate_integer+0xdf/0x220 [ 828.744832][T25477] ? __pfx_acpi_evaluate_integer+0x10/0x10 [ 828.744874][T25477] ? __pfx_status_show+0x10/0x10 [ 828.744920][T25477] status_show+0xa0/0x120 [ 828.744958][T25477] ? __pfx_status_show+0x10/0x10 [ 828.744998][T25477] dev_attr_show+0x52/0xa0 [ 828.745037][T25477] ? __pfx_dev_attr_show+0x10/0x10 [ 828.745073][T25477] sysfs_kf_seq_show+0x217/0x3a0 [ 828.745115][T25477] seq_read_iter+0x32f/0x1270 [ 828.745162][T25477] kernfs_fop_read_iter+0x46c/0x610 [ 828.745191][T25477] ? rw_verify_area+0xce/0x6d0 [ 828.745218][T25477] ? __pfx_kernfs_fop_read_iter+0x10/0x10 [ 828.745249][T25477] vfs_read+0x825/0xb30 [ 828.745281][T25477] ? __pfx_vfs_read+0x10/0x10 [ 828.745307][T25477] ? find_held_lock+0x2b/0x80 [ 828.745357][T25477] ksys_read+0x12a/0x250 [ 828.745388][T25477] ? __pfx_ksys_read+0x10/0x10 [ 828.745429][T25477] do_syscall_64+0xc9/0xf80 [ 828.745463][T25477] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 828.745491][T25477] RIP: 0033:0x7fd69019aeb9 [ 828.745517][T25477] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 828.745553][T25477] RSP: 002b:00007fd6910ed028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 828.745581][T25477] RAX: ffffffffffffffda RBX: 00007fd690415fa0 RCX: 00007fd69019aeb9 [ 828.745599][T25477] RDX: 000000000000007a RSI: 0000200000000240 RDI: 0000000000000004 [ 828.745618][T25477] RBP: 00007fd690208c1f R08: 0000000000000000 R09: 0000000000000000 [ 828.745638][T25477] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 828.745656][T25477] R13: 00007fd690416038 R14: 00007fd690415fa0 R15: 00007ffea8428928 [ 828.745696][T25477] [ 828.745737][T25477] ACPI Error: [ 828.772995][T25479] netlink: 334 bytes leftover after parsing attributes in process `syz.0.7253'. [ 829.074239][T25477] Could not allocate an object descriptor (20250807/utobject-180) [ 829.082210][T25477] ACPI Error: ffff88802f243000 walk still has a scope list (20250807/dswstate-694) [ 829.132941][T25487] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7256'. [ 829.143664][T25487] netlink: 25 bytes leftover after parsing attributes in process `syz.4.7256'. [ 829.969333][T25505] ------------[ cut here ]------------ [ 829.975721][T25505] Reader on commit with 10864 missed events [ 829.975757][T25505] WARNING: kernel/trace/ring_buffer.c:7391 at ring_buffer_map_get_reader+0x63c/0x880, CPU#0: syz.3.7262/25505 [ 829.993356][T25505] Modules linked in: [ 829.998113][T25505] CPU: 0 UID: 0 PID: 25505 Comm: syz.3.7262 Tainted: G U L syzkaller #0 PREEMPT(full) [ 830.009102][T25505] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 830.014310][T25505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 830.024395][T25505] RIP: 0010:ring_buffer_map_get_reader+0x63f/0x880 [ 830.030941][T25505] Code: 48 c1 ea 03 80 3c 02 00 0f 85 4f 02 00 00 4c 3b a3 a0 00 00 00 0f 85 5b d2 18 ff e8 4b e1 fb ff 48 8d 3d 94 da b0 0e 4c 89 fe <67> 48 0f b9 3a e9 e0 fc ff ff 4c 8b 7c 24 58 4c 8b 74 24 60 e8 28 [ 830.050582][T25505] RSP: 0018:ffffc90004c0fd98 EFLAGS: 00010087 [ 830.056691][T25505] RAX: 000000000000088e RBX: ffff88813fe28800 RCX: ffffc9000c3ab000 [ 830.064696][T25505] RDX: 0000000000080000 RSI: 0000000000002a70 RDI: ffffffff90bb4410 [ 830.072701][T25505] RBP: ffff88805a21f580 R08: 0000000000000007 R09: 0000000000000000 [ 830.080704][T25505] R10: 0000000000002a70 R11: ffff88813fe288b0 R12: ffff88805a21f580 [ 830.088706][T25505] R13: dffffc0000000000 R14: ffff88813fe288a8 R15: 0000000000002a70 [ 830.096709][T25505] FS: 00007fd6910ed6c0(0000) GS:ffff8881245e2000(0000) knlGS:0000000000000000 [ 830.105673][T25505] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 830.112287][T25505] CR2: 0000001b31308ff8 CR3: 000000001ff28000 CR4: 00000000003526f0 [ 830.120291][T25505] Call Trace: [ 830.123598][T25505] [ 830.126564][T25505] ? __pfx_ring_buffer_map_get_reader+0x10/0x10 [ 830.132860][T25505] ? __fget_files+0x21f/0x3d0 [ 830.137665][T25505] tracing_buffers_ioctl+0x30d/0x400 [ 830.142994][T25505] ? __pfx_tracing_buffers_ioctl+0x10/0x10 [ 830.148855][T25505] __x64_sys_ioctl+0x18e/0x210 [ 830.153702][T25505] do_syscall_64+0xc9/0xf80 [ 830.158264][T25505] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 830.164200][T25505] RIP: 0033:0x7fd69019aeb9 [ 830.168647][T25505] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 830.188287][T25505] RSP: 002b:00007fd6910ed028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 830.196743][T25505] RAX: ffffffffffffffda RBX: 00007fd690415fa0 RCX: 00007fd69019aeb9 [ 830.204731][T25505] RDX: 0000000000000000 RSI: 0000000000005220 RDI: 0000000000000002 [ 830.212706][T25505] RBP: 00007fd690208c1f R08: 0000000000000000 R09: 0000000000000000 [ 830.220698][T25505] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 830.228694][T25505] R13: 00007fd690416038 R14: 00007fd690415fa0 R15: 00007ffea8428928 [ 830.236730][T25505] [ 830.239768][T25505] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 830.247054][T25505] CPU: 0 UID: 0 PID: 25505 Comm: syz.3.7262 Tainted: G U L syzkaller #0 PREEMPT(full) [ 830.258092][T25505] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 830.263280][T25505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 830.273338][T25505] Call Trace: [ 830.276624][T25505] [ 830.279559][T25505] dump_stack_lvl+0x100/0x190 [ 830.284343][T25505] vpanic+0x20d/0x630 [ 830.288331][T25505] panic+0xd1/0xd1 [ 830.292059][T25505] ? __pfx_panic+0x10/0x10 [ 830.296500][T25505] check_panic_on_warn.cold+0x19/0x34 [ 830.301882][T25505] ? ring_buffer_map_get_reader+0x63c/0x880 [ 830.307785][T25505] __warn.cold+0x191/0x2f8 [ 830.312216][T25505] __report_bug+0x296/0x3d0 [ 830.316729][T25505] ? ring_buffer_map_get_reader+0x63c/0x880 [ 830.322639][T25505] ? __pfx___report_bug+0x10/0x10 [ 830.327693][T25505] ? rb_set_head_page+0x1e6/0x2f0 [ 830.332748][T25505] report_bug_entry+0xe1/0x290 [ 830.337529][T25505] ? ring_buffer_map_get_reader+0x63f/0x880 [ 830.343453][T25505] handle_bug+0x1c9/0x2a0 [ 830.347842][T25505] exc_invalid_op+0x17/0x50 [ 830.352386][T25505] asm_exc_invalid_op+0x1a/0x20 [ 830.357260][T25505] RIP: 0010:ring_buffer_map_get_reader+0x63f/0x880 [ 830.363872][T25505] Code: 48 c1 ea 03 80 3c 02 00 0f 85 4f 02 00 00 4c 3b a3 a0 00 00 00 0f 85 5b d2 18 ff e8 4b e1 fb ff 48 8d 3d 94 da b0 0e 4c 89 fe <67> 48 0f b9 3a e9 e0 fc ff ff 4c 8b 7c 24 58 4c 8b 74 24 60 e8 28 [ 830.383492][T25505] RSP: 0018:ffffc90004c0fd98 EFLAGS: 00010087 [ 830.389748][T25505] RAX: 000000000000088e RBX: ffff88813fe28800 RCX: ffffc9000c3ab000 [ 830.397725][T25505] RDX: 0000000000080000 RSI: 0000000000002a70 RDI: ffffffff90bb4410 [ 830.405702][T25505] RBP: ffff88805a21f580 R08: 0000000000000007 R09: 0000000000000000 [ 830.413700][T25505] R10: 0000000000002a70 R11: ffff88813fe288b0 R12: ffff88805a21f580 [ 830.421714][T25505] R13: dffffc0000000000 R14: ffff88813fe288a8 R15: 0000000000002a70 [ 830.429798][T25505] ? ring_buffer_map_get_reader+0x635/0x880 [ 830.435740][T25505] ? __pfx_ring_buffer_map_get_reader+0x10/0x10 [ 830.442008][T25505] ? __fget_files+0x21f/0x3d0 [ 830.446711][T25505] tracing_buffers_ioctl+0x30d/0x400 [ 830.452025][T25505] ? __pfx_tracing_buffers_ioctl+0x10/0x10 [ 830.457860][T25505] __x64_sys_ioctl+0x18e/0x210 [ 830.462655][T25505] do_syscall_64+0xc9/0xf80 [ 830.467184][T25505] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 830.473089][T25505] RIP: 0033:0x7fd69019aeb9 [ 830.477514][T25505] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 830.497138][T25505] RSP: 002b:00007fd6910ed028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 830.505572][T25505] RAX: ffffffffffffffda RBX: 00007fd690415fa0 RCX: 00007fd69019aeb9 [ 830.513557][T25505] RDX: 0000000000000000 RSI: 0000000000005220 RDI: 0000000000000002 [ 830.521539][T25505] RBP: 00007fd690208c1f R08: 0000000000000000 R09: 0000000000000000 [ 830.529517][T25505] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 830.537492][T25505] R13: 00007fd690416038 R14: 00007fd690415fa0 R15: 00007ffea8428928 [ 830.545489][T25505] [ 830.548633][T25505] Kernel Offset: disabled [ 830.552949][T25505] Rebooting in 86400 seconds..