last executing test programs: 1m32.01736015s ago: executing program 0 (id=10774): setsockopt$auto(0xffffffffffffffff, 0x29, 0x37, &(0x7f0000000080)='\x15!\xa8^J/\xddCx4!\x00\xd3\x8f\x1e\x1b\xc3 \xe2\xa8\xd6\xd9\xc0\xa2\x0f\x88\xb1e\x8a\xd8?\xfe\xda\xc4\xef\xff(i\xc6@\x91[\vBj\x0eQ\xce\x16\'C\x8cYA\x92u\xd5\xb8\\\x82,\xe2=y\x9bR\xbcn\xa0c\x16~\x86\"t\xde\x14\xe4\xa5\xfe\xb5', 0x110) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x109401, 0x0) ioctl$auto(r0, 0x540a, 0x0) ioctl$auto_TIOCSTI2(r0, 0x5412, &(0x7f0000000080)) 1m31.877655535s ago: executing program 0 (id=10777): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = memfd_create$auto(0x0, 0x9) write$auto(0x3, 0x0, 0xfffffdf2) fchown$auto(r0, 0x0, 0x0) 1m31.122349891s ago: executing program 3 (id=10787): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) r0 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0) ioctl$auto_VHOST_SET_FEATURES2(r0, 0x4008af00, 0x0) 1m30.563916262s ago: executing program 3 (id=10796): socket(0x28, 0x5, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001400c72da808bf9779d790fb28"], 0x2c}, 0x1, 0x0, 0x0, 0x4000014}, 0x400c000) r0 = socket(0x10, 0x2, 0x4) write$auto(r0, &(0x7f0000000000)='-\x00', 0x2fb) 1m30.485120891s ago: executing program 0 (id=10797): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0xa, 0x0) clock_nanosleep$auto(0x8, 0x0, 0x0, &(0x7f00000000c0)={0x7fffffffffffffff, 0x6}) 1m29.942353661s ago: executing program 1 (id=10805): r0 = socket(0x11, 0x80003, 0x300) r1 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(r0, 0x8, 0x6) io_uring_setup$auto(0xd364, &(0x7f0000000000)={0x400, 0x10002, 0x7f, 0x7, 0x6, 0x5, r1, [], {0x2, 0x4, 0x6, 0x2, 0x40, 0x4, 0x7, 0x7, 0x80000000}, {0x7, 0x1ff, 0x80000001, 0x8, 0x6b, 0x9, 0x0, 0xfffffffa, 0xb1}}) 1m29.809900162s ago: executing program 2 (id=10807): mmap$auto(0x0, 0x2020006, 0x1000000000000007, 0xeb1, 0x0, 0x1008000) socket(0x29, 0x2, 0x0) open_tree_attr$auto(0xffffffffffffff9c, 0x0, 0x100, &(0x7f00000000c0)={0x3, 0x0, 0x7fff, @raw=0x5}, 0x8) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 1m29.78631208s ago: executing program 1 (id=10808): r0 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000100), 0x60423, 0x0) unshare$auto(0x40000080) listen$auto(0x3, 0x81) ioctl$auto_SIOCGIFHWADDR(r0, 0x8927, &(0x7f0000000040)) 1m29.696482886s ago: executing program 3 (id=10809): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x1, 0x8000) setreuid$auto(0x15, 0x5) setrlimit$auto(0x8, 0x0) mlock$auto(0x81, 0xffff) 1m29.633691867s ago: executing program 2 (id=10810): mmap$auto(0x0, 0x40009, 0x6, 0x9b72, 0x7, 0x28000) mincore$auto(0x1000, 0x8001, 0x0) fcntl$auto(0x8000000000000001, 0x7, 0x8) fcntl$auto(0x8000000000000001, 0x25, 0x8) 1m29.575410484s ago: executing program 3 (id=10811): sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0xfffffffffffffeaf, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf25030000000800030004020000060007000080000008000200", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a00010000000000000000000a00010000000000000000000600070001"], 0x68}, 0x1, 0x0, 0x0, 0x4000080}, 0x40090) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="f2000000", @ANYBLOB='.\x00', @ANYRES16], 0x1ac}, 0x1, 0x0, 0x0, 0x24040840}, 0x94) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x12000001, &(0x7f0000000080)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000000c0), 0x8, 0xa507}, 0x800}, 0x7, 0x4008) 1m29.492787677s ago: executing program 2 (id=10812): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmmsg$auto(0xffffffffffffffff, &(0x7f00000001c0)={{0x0, 0x1aa, 0x0, 0x6, 0x0, 0x0, 0x1002}, 0x5}, 0x2, 0x100) bpf$auto(0xf7fff011, &(0x7f0000000000)=@test={0xffffffffffffffff, 0x4, 0xfaae, 0x468, 0x9, 0x2, 0x8, 0x3, 0x4, 0x1ff, 0x40000000005, 0xb5, 0x4, 0x806, 0xd9f1}, 0xa3) writev$auto(0xca, &(0x7f0000000080)={&(0x7f0000000040), 0x1}, 0x200) 1m29.421603052s ago: executing program 3 (id=10813): socket(0xa, 0x5, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) mincore$auto(0x1000, 0x8001, 0x0) setsockopt$auto(0x3, 0x10000000084, 0x2, 0x0, 0x8) 1m29.327426302s ago: executing program 2 (id=10814): r0 = socket(0x1d, 0x2, 0x7) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r1}, 0x6a) sendto$auto(r0, 0x0, 0xc, 0xfffffff8, &(0x7f0000000440)=@tipc=@nameseq={0x1d, 0x1, 0x2, {0x2, 0x0, 0x4}}, 0x36) 1m29.322394156s ago: executing program 0 (id=10815): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001a40), r0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001a80)={'wg2\x00', 0x0}) sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(r0, &(0x7f0000002f40)={0x0, 0x0, &(0x7f0000002f00)={&(0x7f0000001ac0)={0x2c, r1, 0x1, 0x70bd2b, 0x25dfdbfc, {}, [@ETHTOOL_A_CABLE_TEST_TDR_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}]}, @ETHTOOL_A_CABLE_TEST_TDR_CFG={0xc, 0x2, 0x0, 0x1, [@typed={0x8, 0x2, 0x0, 0x0, @fd}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x24040000}, 0x0) 1m29.303051666s ago: executing program 1 (id=10816): close_range$auto(0x0, 0xfffffffffffff000, 0x2) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_taskstats(&(0x7f0000000d80), r0) sendmsg$auto_CGROUPSTATS_CMD_GET(r0, &(0x7f0000000e40)={0x0, 0x0, &(0x7f0000000e00)={&(0x7f0000000dc0)={0x1c, r1, 0x1, 0x70bd29, 0x25dfdbff, {}, [@CGROUPSTATS_CMD_ATTR_FD={0x8, 0x1, r0}]}, 0x1c}}, 0x20000004) 1m29.18775469s ago: executing program 3 (id=10817): socket(0xa, 0x1, 0x84) listen$auto(0x3, 0x81) accept$auto(0x3, 0xffffffffffffffff, 0xffffffffffffffff) shutdown$auto(0x200000003, 0x1) 1m29.134169439s ago: executing program 2 (id=10818): mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) io_uring_setup$auto(0x1, 0x0) r0 = socket(0x200000000000011, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x89b0, &(0x7f0000000080)={'bond0\x00'}) 1m29.115171284s ago: executing program 1 (id=10819): msgctl$auto_MSG_STAT(0x5, 0xb, 0x0) r0 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f00000004c0), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_TIPC_NL_LINK_GET(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000003e40)={&(0x7f0000001980)={0x64, r0, 0x1, 0x70bd28, 0x25dfdbff, {}, [@TIPC_NLA_LINK={0x50, 0x4, 0x0, 0x1, [@nested={0x4c, 0x1, 0x0, 0x1, [@nested={0x48, 0x22, 0x0, 0x1, [@typed={0x4, 0xbe}, @nested={0x2d, 0x135, 0x0, 0x1, [@typed={0x8, 0x6f, 0x0, 0x0, @uid=0xee00}, @generic="bdf73dd94862512e1938edde789070c6204b3f3377d79fbaf204e6d4e802de6848"]}, @nested={0x4, 0x9d}, @typed={0x8, 0x88, 0x0, 0x0, @uid}, @nested={0x4, 0x1c, 0x0, 0x1, [@generic]}]}]}]}]}, 0x64}}, 0x8040) 1m29.075223876s ago: executing program 0 (id=10820): r0 = socket(0x15, 0x5, 0x0) sendmsg$auto_NL802154_CMD_SET_SEC_PARAMS(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000d80)=ANY=[@ANYBLOB="05000000", @ANYRES16=0x0, @ANYBLOB="010025bd7000ffdbdf25150000000500120010000000080027000c000000380b2b80330b248004008080ba89ebda4be9067b59c90d50dab4ba175b1b13d15e19ee0f5bf6c6d2095efcc719c8e137b7ec6062c6c768e512acd0f1208ee2be2b891868abd1934bd95a54945e649a2afd1272f72e8fffb57e3ba1c8fb306ce2ba95180cf54dcca46ab950e626ff31022afd57f1306ee00962cb60c30a9946d642a00256ed0006ec8364307874f7c763c6e9af0222943721fb4fa5b1cecfe3a908b1fd515dad1e0ca0998fa55ca4bbf9412855250567f1b98186d8597ab6fb715cef224b510a7ccc4cae047b6d4ab94775e1158d87be4806455bbd76baaa3a656ed5f316b17a5a27a6ec9904006d80460a8e80b634a4b1ce57b5a586e945eb157cc566d02bed93630b901c93d3fde23606aa3e80e4d0644fef266741cf5f2879924594cd388ed548e2dea74f9d72af19edad4a810af64d79eaa131b2afaca3f428fd83499d9c7a99dfd9a24cbd9bf5b0f0446521fcf1f416f83791795dc86d63c7a05e38c547e208be35b17fb8aa1fa57ea4ac59aac09a5bfb9f08a6d02e58d5040324f4241a9eb63d5a1e48cff0ed3e97c4af9506ca950ce9d115d242277c614a27a77df014ced1df35f069b42113bc6bf5427f9c1ba6924ec8bafc11ba6d9303461e92e3c3e1b4d5b2954d259654ee2bab0385e3b106c4a93525200ce6e3f1e9f6d4b87b61583abced950ff97dade7ebde309c78d4f1ddbff5cb5c3fd141cbb4e56a97183f705019716cf6d6f300c9677b6f14b2b8d708b675b5c4f2357d9c22dd6bba1195ba295a5f713ac28f043cc671fc7b43fb9b40bf17766c79d698dd68d0e385e926971a18a3c3687c3c8202b806432be62b3030a2c9e31da55a6cd98165f7439f9a09508b8c4b9c5ea32aaf1f7c4246ea8700aaccaf476d9cd5e3b2340d17f13ba40c8fdaf4aa4c4b8763fd86d35bda9aab03e3a252d7e4aea01cdad1fad040b29a9e92ee1fd8c010c30b4cc69917cee531e42efa59c735fe8159a292f57fa7a4600e6833032846d87a515d9803770eb4db6712bce7b51fc2f0eff8a292023a8c7c1544c6e53012f9fe13aa8caf795caccfa4ff2321116a86938e2b782e7a57fe5cbff8df11b0bc86d691a7a8df0cc9486c4898e8bafd0b374798ecdba9af994890465f435d5e6408dd9ddd96df1673098864522e964b565d69882198a999ee41c980dafdf3538400c81ad57dc970a72b75d75850913452021a4dfe885342c4e5c33dbcd801b10866908de67b13c5dc4fb51dce74dae4c4c27413c00b50c8e18d1dcfe28974fee5df4cefd05f7e8e21e8881ef7300ca75af8ef7c8cfa0a1cf8771444e3bd449f957fa4500c1f371ccc31a7b196ca809935887d26d3ed24d2dc16c83aa263abd880df1d27d8463e4f29673fbb0a073caaf975314f5660bdf89c285291a46ddb2f8410b02e86bc522808052288fe16dbb7733976605ed2342c69717ba18334138bc68c994ffa20bbad1672a4ee0dc19a0ec177f36995edc671ef8d29211e4b7d0723a18c36c398df2e924a4f55ef95687e6a4aebcf86d36a9791d561c2203fc4a545d30a5173ffc84612c333a73fd0c84f92554294cfbbe86088e79bc6f1c9bc880b4502e4b47af767f47dbccbf4318ec6a33ee42cafc3e6ced6720adf772de614a754c7b0d93208cb0bdd285e8ff9ffe078bb782a57a14204784880a3379af47423967bf134933d350324a845e7aca06245efec7dd272177bbb663bf83c23161cf7d8b32d45502f6bbc6416720652aa197556c3cf5be55e2f8ace74ce95feb288f681d92ed529bb9892472c3633f744bfde252c8b00808d92daa2a3b4771eee9cc83745c326f8ea02119b55a99bddfc498948e53ce2efa0635276810d2211e9e0e63bc850029865d525cbf43cde05009dca149084d9569a1abb0e5f941bd5c67a77685e965b354dc744617960e642512f2cd86236c9a1791f446e822b86518185d668e7e93daec7b1a9f53034aeabc7c7bf52deefbf5e2a90b085c41c0f528ff2cf81dbc1c28ed95ad75fd65c0e0d793d7111dce84883cbf60cd55e025b824d84e141d54da72111ea2fed1fd8f3c9cf47763ee47a7988d5021ac661641ee95ea9c9d57dd2f8e537f3cb71830a6c1608dadf6beb7339961811f8da34f8fb7b5190f9c146942fda73801812ed6bffa1a60c80e5fd6528e045b40fa78c10f37797d93f827539aa389d59c48254397ff7b72325465d18b04acac619d9d5f80d46b57d28a76fbe83203ecacb91328b145ebbe356178a1eb1c09101fe785c98aab93485ae7b4217412b7ea31fdd965eaaf78d3ab4eec8bc689062b738c002fd94f9cd18bbc5285c57854f9092e85d90ec205f43fcc9d27cd6041fb73ed3164e7f2cb3ea694b89a1879f8cbcdbffdab4b277d0fa3dba5061952d266b2f3821f79cd2b3bf107c6250e711c9ddba407c9ed323d2dfda23d5a4088f8199d1cbb311a1b051da8d792299f471f0ca7fd7925695acaf01e7ad022d96dfb30e66d551fb37522baf2ea71cc5a6416124ee2138c3f2fb5cca4b71eb9d3571deebc898b62406f416caa3fcd732f9661548d8b7ec74bc94d9dcc92b0048abc2b358c0007a905c9513affbd873a368e0b5872a2f4cdc4bb8602ad3ec77cba3e150c8993f5fc88ac7e6b2642f4660486d5823482aae8f90ee7913abdb064398cebe5946c2920d7d99935571f9b1eeb4529373538e699dda91425660a1010a4cf7e9a10713f57fa1d601467ec51ad5153bd94582320ff55380ca7efefacf62f822b948cb3b93f68978f248639c51ac97e3f56bcca9990839ee01df9773b22cf261310d4b3c6b03ef54a9a848c10d1252d0412a8f01ff61bd6978112d6b69e2f71e02a04f43f3a1a8259f7e83c26fc5bc703a8b6d3d325f08b08f9dc10b8f654871386ef94d2493463f7f3d0b20bf93be475b0ed9e870aaedd63b8d08877651bace68300e3a1b0a5d1a3da2b246fef82de3b57eca440ae7a7656ff31ae74cad3a80f1ae615f2747589d4859ec1981a6a5176168db86ab5f6930d4679762956e408d2268cad53aa10727c8b8952114b17c352782dc9afc120535bcb99bcf1161397f19ac4d288677e48f0e6bfdcf5f852a8bc1b432399f0ade5db9585e09e4cc96a63dd7bddecbbaae880678f94111108d76c5d825629a3eee16b2a6362c59ba3cf99a2e2bcfa62d010706bca5c0d009b141f1c3f6a9cc58234f97a5721a3ee31772877ffda5507f8e7053e15cb60df08184dbdd9f2af7a618781fdd39d32404f3e2dc6ac48f35ce31bc70a019235b7776114ef2ae75ebf7b7191e5a61e1c5c82340e12dd98cf9125a3fb1c8062a206ac2aa98e708a190b1b70d1c2450b47394d8e1f21c541b3f4139d2159e9a37acf2ee9ba5e0cf99221a43b46793cad7b7b71784032a0092abb25380fa77646f948ed456d6fa1fb749f736e10491e39569c073308ee782562a59a719e4b8910f737a41ee0644db9905d22f44bae257749b03667b535af492012ad1c50f1d88a46a2c3aeeca86026c6e5ca8289bb153ff85aade4bd00b9bb87017d7816c24a0e71b0d0dcf6dedbc956c81bf445d665da7cb1c009be2f8d7eb286e2e2595166b8df0541ff0b80ab20d9ba30058ef52dc2c1905133bcca7193320811e0bc083798b80bce7e84ea9135d976fbc339b0814cb4f4dd9a71f9a2f1a78da4c60c1671b6ef41798646a702fd9eeb67bd250df336f0c1889c54be82bfc4238d6568ca0e7bf7a3005126d605a867b47f2c96fd6a92a9cf463270a9e2df32c6959c2f272b48a6b76fe7393dc12713c99888e0d03ffdac04f5d3c87e5343bc1a6127484b6d7e18e97a329ae582b8c3dd1be170cff9fdebcadfb339c67a303e15d6f779da6fbd91b401ac8e32fe1a0f16b5aa52ca7801d12aaba5c57945b3d0e768370e031d268b101df06ceaca597ca754d933b08f3b248548d267cbb16430c5110cdaf5b36bc2cf6a7c24f143277f606cbe77ef320505986fa5dc876e87ec74a2c06d0e893ed3da67cd814f209b3720e98d1b2f6afd245bcb682167978b98b9976c2ef41c8e4d5018fca6b1643fc"], 0xb5c}, 0x1, 0x0, 0x0, 0x20000000}, 0x48880) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "abe6de3d6468fe8000"}, 0x55) getsockname$auto(r0, &(0x7f0000000040)=@l2tp={0x2, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}, 0x1}, &(0x7f0000000080)=0x400) 1m28.989599653s ago: executing program 1 (id=10821): socket(0x11, 0x3, 0x8) io_submit$auto(0x2, 0x7f, &(0x7f0000000040)=&(0x7f0000000000)={0x2, 0xb, 0x8, 0x3, 0x2, 0x3b, 0xfffffffffffffc00, 0x2, 0x1001, 0x0, 0x6}) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptydc\x00', 0x80502, 0x0) writev$auto(0xc8, &(0x7f00000028c0)={&(0x7f0000000000), 0x200}, 0x9) 1m28.987021225s ago: executing program 0 (id=10822): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) semctl$auto(0x201, 0xfffffffffffffffa, 0x3, 0x0) r0 = socket(0xa, 0x2, 0x0) setsockopt$auto_SO_WIFI_STATUS(r0, 0x0, 0x29, 0x0, 0xbff) 1m28.886077385s ago: executing program 1 (id=10823): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) io_uring_setup$auto(0x67, 0x0) r0 = socket(0x2, 0x1, 0x0) getsockopt$auto(r0, 0x6, 0x23, 0x0, &(0x7f0000000100)=0x3b) 1m28.880357785s ago: executing program 2 (id=10824): r0 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_WIPHY(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000440)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="13002cbd7040450e531c87abd4f908000300", @ANYRES32=r2, @ANYBLOB="0800610002000000080062"], 0x2c}, 0x1, 0x0, 0x0, 0x24004080}, 0x20040894) 0s ago: executing program 32 (id=10822): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) semctl$auto(0x201, 0xfffffffffffffffa, 0x3, 0x0) r0 = socket(0xa, 0x2, 0x0) setsockopt$auto_SO_WIFI_STATUS(r0, 0x0, 0x29, 0x0, 0xbff) kernel console output (not intermixed with test programs): tem resumption [ 255.334057][T14100] syz.0.3938 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000 [ 255.528012][T14100] CPU: 0 UID: 0 PID: 14100 Comm: syz.0.3938 Tainted: G U I syzkaller #0 PREEMPT(full) [ 255.528040][T14100] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND [ 255.528046][T14100] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 255.528065][T14100] Call Trace: [ 255.528070][T14100] [ 255.528075][T14100] dump_stack_lvl+0x100/0x190 [ 255.528098][T14100] dump_header+0xfb/0x606 [ 255.528113][T14100] oom_kill_process.cold+0xd/0x321 [ 255.528130][T14100] out_of_memory+0x340/0x14f0 [ 255.528153][T14100] ? __pfx_out_of_memory+0x10/0x10 [ 255.528176][T14100] mem_cgroup_out_of_memory+0xc6/0x130 [ 255.528192][T14100] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 255.528206][T14100] ? find_held_lock+0x2b/0x80 [ 255.528223][T14100] ? do_raw_spin_unlock+0x145/0x1e0 [ 255.528246][T14100] ? _raw_spin_unlock+0x28/0x50 [ 255.528265][T14100] try_charge_memcg+0x652/0xc90 [ 255.528289][T14100] ? __pfx_try_charge_memcg+0x10/0x10 [ 255.528313][T14100] ? find_held_lock+0x2b/0x80 [ 255.528326][T14100] ? rcu_read_unlock+0x17/0x60 [ 255.528346][T14100] ? rcu_read_unlock+0x17/0x60 [ 255.528369][T14100] charge_memcg+0xa6/0x280 [ 255.528388][T14100] mem_cgroup_swapin_charge_folio+0xeb/0x470 [ 255.528413][T14100] __read_swap_cache_async+0x449/0x610 [ 255.528432][T14100] ? __pfx___read_swap_cache_async+0x10/0x10 [ 255.528448][T14100] ? rcu_is_watching+0x12/0xc0 [ 255.528462][T14100] ? finish_task_switch.isra.0+0x204/0xb70 [ 255.528483][T14100] ? lockdep_hardirqs_on+0x78/0x100 [ 255.528499][T14100] ? finish_task_switch.isra.0+0x204/0xb70 [ 255.528518][T14100] swap_cluster_readahead+0x414/0x770 [ 255.528533][T14100] ? __schedule+0xff6/0x5e10 [ 255.528551][T14100] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 255.528568][T14100] ? __lock_acquire+0x4a5/0x2630 [ 255.528592][T14100] ? update_load_avg+0x234/0x2090 [ 255.528614][T14100] ? get_vma_policy+0x23f/0x3b0 [ 255.528637][T14100] swapin_readahead+0x14b/0x12e0 [ 255.528659][T14100] ? __pfx_swapin_readahead+0x10/0x10 [ 255.528675][T14100] ? find_held_lock+0x2b/0x80 [ 255.528689][T14100] ? swap_cache_get_folio+0x272/0x920 [ 255.528707][T14100] ? swap_cache_get_folio+0x272/0x920 [ 255.528720][T14100] ? swap_cache_get_folio+0x1f/0x920 [ 255.528733][T14100] ? swap_cache_get_folio+0x2a2/0x920 [ 255.528749][T14100] ? __pfx_swap_cache_get_folio+0x10/0x10 [ 255.528763][T14100] ? __pfx_get_swap_device+0x10/0x10 [ 255.528787][T14100] ? do_swap_page+0x9ba/0x6810 [ 255.528800][T14100] do_swap_page+0x9ba/0x6810 [ 255.528818][T14100] ? __lock_acquire+0x4a5/0x2630 [ 255.528839][T14100] ? tick_program_event+0xb0/0x140 [ 255.528855][T14100] ? __pfx_do_swap_page+0x10/0x10 [ 255.528872][T14100] ? __pfx_default_wake_function+0x10/0x10 [ 255.528889][T14100] ? rcu_is_watching+0x12/0xc0 [ 255.528902][T14100] ? __free_object+0x2a8/0x400 [ 255.528920][T14100] ? rcu_is_watching+0x12/0xc0 [ 255.528934][T14100] ? ___pte_offset_map+0x179/0x310 [ 255.528956][T14100] __handle_mm_fault+0x18b9/0x2b50 [ 255.528976][T14100] ? reacquire_held_locks+0xce/0x1e0 [ 255.528995][T14100] ? __pfx___handle_mm_fault+0x10/0x10 [ 255.529014][T14100] ? lock_vma_under_rcu+0x17c/0x5a0 [ 255.529034][T14100] ? get_timespec64+0x136/0x1b0 [ 255.529057][T14100] handle_mm_fault+0x36d/0xa20 [ 255.529076][T14100] do_user_addr_fault+0x5a3/0x12f0 [ 255.529098][T14100] exc_page_fault+0x6f/0xd0 [ 255.529113][T14100] asm_exc_page_fault+0x26/0x30 [ 255.529127][T14100] RIP: 0033:0x7fa65735b58e [ 255.529141][T14100] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 255.529154][T14100] RSP: 002b:00007ffff078c7b8 EFLAGS: 00010246 [ 255.529166][T14100] RAX: 0000000000000000 RBX: 000055557b302500 RCX: 00007fa65735b58e [ 255.529175][T14100] RDX: 00007ffff078c810 RSI: 0000000000000000 RDI: 0000000000000000 [ 255.529183][T14100] RBP: 00007fa657617da0 R08: 0000000000000000 R09: 0000000000000000 [ 255.529192][T14100] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000003e54c [ 255.529200][T14100] R13: 00007fa65761609c R14: 000000000003e307 R15: 00007fa657616090 [ 255.529219][T14100] [ 257.090426][T14168] batman_adv: Routing algorithm '7' is not supported [ 257.312038][T14100] memory: usage 472kB, limit 3072kB, failcnt 5328 [ 257.337726][T14100] memory+swap: usage 600kB, limit 9007199254740988kB, failcnt 0 [ 257.372861][T14100] kmem: usage 400kB, limit 9007199254740988kB, failcnt 0 [ 257.414318][T14100] Memory cgroup stats for /syz0: [ 257.414474][T14100] cache 0 [ 257.457454][T14100] rss 0 [ 257.470008][T14100] rss_huge 0 [ 257.488904][T14100] shmem 0 [ 257.500032][T14100] mapped_file 0 [ 257.503499][T14100] dirty 0 [ 257.506414][T14100] writeback 0 [ 257.509676][T14100] workingset_refault_anon 248 [ 257.571031][T14100] workingset_refault_file 1276 [ 257.589992][T14100] swap 155648 [ 257.609912][T14100] swapcached 49152 [ 257.620439][T14100] pgpgin 46070 [ 257.623908][T14100] pgpgout 46569 [ 257.661218][T14100] pgfault 102617 [ 257.664823][T14100] pgmajfault 123 [ 257.668349][T14100] inactive_anon 49152 [ 257.698218][T14100] active_anon 0 [ 257.723426][T14100] inactive_file 0 [ 257.727099][T14100] active_file 0 [ 257.758137][T14100] unevictable 0 [ 257.776484][T14100] hierarchical_memory_limit 3145728 [ 257.799433][T14100] hierarchical_memsw_limit 9223372036854771712 [ 257.830246][T14100] total_cache 0 [ 257.833717][T14100] total_rss 0 [ 257.862125][T14100] total_rss_huge 0 [ 257.865896][T14100] total_shmem 0 [ 257.898676][T14100] total_mapped_file 0 [ 257.914220][T14100] total_dirty 0 [ 257.917700][T14100] total_writeback 0 [ 257.945608][T14100] total_workingset_refault_anon 248 [ 257.976871][T14100] total_workingset_refault_file 1276 [ 258.000211][T14100] total_swap 155648 [ 258.010963][T14100] total_swapcached 49152 [ 258.030359][T14100] total_pgpgin 46070 [ 258.034269][T14100] total_pgpgout 46569 [ 258.062962][T14100] total_pgfault 102617 [ 258.067046][T14100] total_pgmajfault 123 [ 258.105379][T14100] total_inactive_anon 49152 [ 258.127116][T14100] total_active_anon 0 [ 258.151578][T14100] total_inactive_file 0 [ 258.155745][T14100] total_active_file 0 [ 258.183606][T14100] total_unevictable 0 [ 258.187614][T14100] anon_cost 367 [ 258.221414][T14100] file_cost 0 [ 258.234059][T14100] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.3938,pid=14100,uid=0 [ 258.300710][T14100] Memory cgroup out of memory: Killed process 14100 (syz.0.3938) total-vm:104376kB, anon-rss:1304kB, file-rss:21512kB, shmem-rss:0kB, UID:0 pgtables:120kB oom_score_adj:1000 [ 258.389244][T14224] : Can't lookup blockdev [ 259.261360][T14259] aoe: invalid device specification [ 261.066536][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 261.075853][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 264.380853][T14482] random: crng reseeded on system resumption [ 264.591272][T14493] i8042 aux 00:02: in use; can't configure [ 266.177430][T14575] QAT: Stopping all acceleration devices. [ 266.875766][T14612] delete_channel: no stack [ 269.089117][T14688] sd 0:0:1:0: PR command failed: 1026 [ 269.094617][T14688] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 269.186969][T14688] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 270.841552][T14754] ecryptfs_parse_packet_length: Error parsing packet length [ 270.887102][T14754] ecryptfs_miscdev_write: Error parsing packet length; rc = [-22] [ 273.642973][T14866] ecryptfs_miscdev_write: Invalid packet size [192] [ 273.722084][T14869] syz.0.4314: vmalloc error: size 18446744073709551615, exceeds total pages, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 273.788366][T14869] CPU: 0 UID: 0 PID: 14869 Comm: syz.0.4314 Tainted: G U I L syzkaller #0 PREEMPT(full) [ 273.788398][T14869] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 273.788405][T14869] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 273.788413][T14869] Call Trace: [ 273.788419][T14869] [ 273.788425][T14869] dump_stack_lvl+0x100/0x190 [ 273.788460][T14869] warn_alloc.cold+0x95/0x1c1 [ 273.788486][T14869] ? __pfx_warn_alloc+0x10/0x10 [ 273.788517][T14869] __vmalloc_node_range_noprof+0x1252/0x1530 [ 273.788532][T14869] ? __pfx___might_resched+0x10/0x10 [ 273.788555][T14869] ? rcu_is_watching+0x12/0xc0 [ 273.788569][T14869] ? trace_contention_end+0xd6/0x110 [ 273.788589][T14869] ? dvb_dvr_do_ioctl+0x15d/0x270 [ 273.788609][T14869] ? dvb_dvr_do_ioctl+0x7e/0x270 [ 273.788626][T14869] ? find_held_lock+0x2b/0x80 [ 273.788639][T14869] ? tomoyo_path_number_perm+0x28f/0x580 [ 273.788660][T14869] ? tomoyo_path_number_perm+0x28f/0x580 [ 273.788681][T14869] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 273.788709][T14869] ? tomoyo_path_number_perm+0x188/0x580 [ 273.788731][T14869] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 273.788755][T14869] ? dvb_dvr_do_ioctl+0x15d/0x270 [ 273.788772][T14869] __vmalloc_node_noprof+0xad/0xf0 [ 273.788794][T14869] ? dvb_dvr_do_ioctl+0x15d/0x270 [ 273.788815][T14869] dvb_dvr_do_ioctl+0x15d/0x270 [ 273.788836][T14869] dvb_usercopy+0x167/0x340 [ 273.788853][T14869] ? __pfx_dvb_dvr_do_ioctl+0x10/0x10 [ 273.788872][T14869] ? __pfx_dvb_usercopy+0x10/0x10 [ 273.788896][T14869] ? __fget_files+0x21f/0x3d0 [ 273.788916][T14869] dvb_dvr_ioctl+0x29/0x40 [ 273.788932][T14869] ? __pfx_dvb_dvr_ioctl+0x10/0x10 [ 273.788949][T14869] __x64_sys_ioctl+0x18e/0x210 [ 273.788973][T14869] do_syscall_64+0xc9/0xf80 [ 273.788992][T14869] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 273.789006][T14869] RIP: 0033:0x7fa65739acb9 [ 273.789019][T14869] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 273.789033][T14869] RSP: 002b:00007fa65819d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 273.789047][T14869] RAX: ffffffffffffffda RBX: 00007fa657615fa0 RCX: 00007fa65739acb9 [ 273.789056][T14869] RDX: ffffffffffffffff RSI: 0000000000006f2d RDI: 0000000000000003 [ 273.789065][T14869] RBP: 00007fa657408bf7 R08: 0000000000000000 R09: 0000000000000000 [ 273.789073][T14869] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 273.789082][T14869] R13: 00007fa657616038 R14: 00007fa657615fa0 R15: 00007ffff078c6d8 [ 273.789102][T14869] [ 273.789108][T14869] Mem-Info: [ 274.407946][T14893] cifs: Unknown parameter '‰ƒДещŒ)Ќ Up†ЕЬЂ{ДМV ]7ž62']пЮЈЩњ!ВgЩЪЎЫ7њ9НѓfMИ<*yЂsEщhющ”' [ 274.447898][T14893] CIFS mount error: No usable UNC path provided in device string! [ 274.447898][T14893] [ 274.462991][T14893] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 274.560584][T14869] active_anon:4245 inactive_anon:1333 isolated_anon:0 [ 274.560584][T14869] active_file:19053 inactive_file:37213 isolated_file:0 [ 274.560584][T14869] unevictable:768 dirty:86 writeback:0 [ 274.560584][T14869] slab_reclaimable:11117 slab_unreclaimable:92344 [ 274.560584][T14869] mapped:24033 shmem:1357 pagetables:1030 [ 274.560584][T14869] sec_pagetables:0 bounce:0 [ 274.560584][T14869] kernel_misc_reclaimable:0 [ 274.560584][T14869] free:1323842 free_pcp:16306 free_cma:0 [ 274.843074][T14869] Node 0 active_anon:16980kB inactive_anon:5436kB active_file:76080kB inactive_file:148720kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:96124kB dirty:448kB writeback:0kB shmem:3892kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:2048kB kernel_stack:11392kB pagetables:4036kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 274.979491][T14918] vhci_hcd vhci_hcd.2: invalid port number 16 [ 274.998185][T14869] Node 1 active_anon:0kB inactive_anon:0kB active_file:132kB inactive_file:132kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:8kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:32kB pagetables:136kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 275.032867][T14918] vhci_hcd vhci_hcd.2: invalid port number 16 [ 275.137740][T14869] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 275.277638][T14869] lowmem_reserve[]: 0 2480 2481 2481 2481 [ 275.292727][T14869] Node 0 DMA32 free:1382636kB boost:0kB min:34320kB low:42900kB high:51480kB reserved_highatomic:0KB free_highatomic:0KB active_anon:16980kB inactive_anon:5304kB active_file:76080kB inactive_file:148720kB unevictable:1536kB writepending:532kB zspages:0kB present:3129332kB managed:2539584kB mlocked:0kB bounce:0kB free_pcp:56060kB local_pcp:56060kB free_cma:0kB [ 275.445254][T14869] lowmem_reserve[]: 0 0 1 1 1 [ 275.468086][T14869] Node 0 Normal free:12kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 275.617117][T14869] lowmem_reserve[]: 0 0 0 0 0 [ 275.627286][T14869] Node 1 Normal free:3906768kB boost:0kB min:55560kB low:69448kB high:83336kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:132kB inactive_file:132kB unevictable:1536kB writepending:0kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 275.789355][T14869] lowmem_reserve[]: 0 0 0 0 0 [ 275.794173][T14869] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 275.861655][T14869] Node 0 DMA32: 5153*4kB (UM) 2587*8kB (UM) 1663*16kB (UME) 952*32kB (UME) 607*64kB (UME) 504*128kB (UME) 356*256kB (UME) 236*512kB (UM) 160*1024kB (UME) 63*2048kB (UME) 165*4096kB (UM) = 1382412kB [ 275.954661][T14869] Node 0 Normal: 1*4kB (U) 1*8kB (U) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 12kB [ 276.009359][T14869] Node 1 Normal: 208*4kB (UME) 38*8kB (UME) 38*16kB (UME) 244*32kB (UME) 116*64kB (UME) 31*128kB (UME) 17*256kB (UME) 3*512kB (UM) 5*1024kB (UME) 4*2048kB (UE) 944*4096kB (UM) = 3906768kB [ 276.110942][T14869] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 276.145365][T14869] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 276.201296][T14869] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 276.249365][T14869] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 276.289550][T14869] 57661 total pagecache pages [ 276.294244][T14869] 2 pages in swap cache [ 276.298397][T14869] Free swap = 124988kB [ 276.348583][T14869] Total swap = 124996kB [ 276.359280][T14869] 2097051 pages RAM [ 276.363135][T14869] 0 pages HighMem/MovableOnly [ 276.367791][T14869] 430193 pages reserved [ 276.416617][T14869] 0 pages cma reserved [ 277.063421][T15016] random: crng reseeded on system resumption [ 279.088223][T15134] [U] ^\ [ 282.240222][T15308] bonding: no command found in bonding_masters - use +ifname or -ifname [ 283.319629][T15381] ptp ptp0: only physical clock in use now [ 283.498349][T15389] process 'syz.3.4545' launched '/dev/fd/3' with NULL argv: empty string added [ 285.902830][ T5833] Bluetooth: hci1: unexpected event 0x3e length: 0 < 1 [ 287.157463][T15588] ecryptfs_miscdev_write: Error while inspecting packet size [ 287.185326][T15593] Setting dangerous option i915.mitigations - tainting kernel [ 287.478797][T15608] program syz.2.4654 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 290.227081][ T5898] usb usb38-port5: attempt power cycle [ 290.520533][T15751] queue_state_write: operation too long [ 290.550725][T15751] queue_state_write: use 'run', 'start' or 'kick' [ 290.817099][ T5898] usb usb38-port5: unable to enumerate USB device [ 292.587785][T15881] vhci_hcd vhci_hcd.2: invalid port number 16 [ 292.614636][T15881] vhci_hcd vhci_hcd.2: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub [ 293.076981][ T30] audit: type=1800 audit(6064059637.034:21): pid=15906 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.4787" name="features" dev="configfs" ino=39733 res=0 errno=0 [ 294.388442][T15985] Setting dangerous option i915.mitigations - tainting kernel [ 294.433836][T15985] Bad "i915.mitigations=ЮзкCmУЂUQќF\Їо ", 'ЮзкCmУЂUQќF\Їо' is unknown [ 297.044622][T16132] block2mtd: too many arguments [ 297.776664][T16172] rnbd_client L202: map_device: Unknown parameter or missing value '7' [ 299.475492][ T30] audit: type=1400 audit(6064059643.431:22): apparmor="DENIED" operation="setprocattr" info="exec" error=-22 profile="unconfined" pid=16256 comm="syz.0.4961" [ 300.404065][T16310] i2c i2c-0: new_device: Invalid device name [ 300.773749][T16329] QAT: failed to copy from user cfg_data. [ 300.985584][T16341] aoe: can't write to that file. [ 301.519094][T16369] ima: policy update failed [ 301.541036][ T30] audit: type=1802 audit(6064059645.490:23): pid=16369 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.5016" res=0 errno=0 [ 301.568724][T16372] qrtr: Invalid version 0 [ 302.164909][T16405] bond0: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0) [ 303.483577][T16475] uvcvideo: [Deprecated]: nodrop parameter will be eventually removed. [ 303.495359][T16477] nvme_fcloop: unknown parameter or missing value 'й›Њ' [ 303.648657][T16483] Kernel: The 'panic_print' parameter is now deprecated. Please use 'panic_sys_info' and 'panic_console_replay' instead. [ 303.903357][T16496] random: crng reseeded on system resumption [ 304.087692][T16507] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 304.467113][T16523] bond0: option mode: unable to set because the bond device is up [ 304.486604][T16525] block nbd0: NBD_DISCONNECT [ 306.580534][ T5833] Bluetooth: hci1: unexpected subevent 0x0c length: 118 > 5 [ 309.301977][T16792] bonding: no command found in bonding_masters - use +ifname or -ifname [ 309.620008][T16809] usbip-vudc usbip-vudc.0: gadget not bound [ 310.314175][T16839] Malformed UNC in devname [ 310.314175][T16839] [ 310.349086][T16839] CIFS: VFS: Malformed UNC in devname [ 313.272544][T16981] dlm: plock device version mismatch: kernel (1.2.0), user (1489226698.240317300.1121487582) [ 313.644235][T16999] deleting an unspecified loop device is not supported. [ 313.971646][T17014] vhci_hcd vhci_hcd.0: invalid port number 16 [ 314.940993][T17066] syz_tun: tun_chr_ioctl cmd 35111 [ 315.137263][T17077] scsi_dev_info_list_add_str: bad dev info string 'ё' '' '' [ 315.454857][T17093] bond0: invalid ARP target specified [ 318.620609][T17248] vhci_hcd vhci_hcd.2: invalid port number 16 [ 318.626713][T17248] vhci_hcd vhci_hcd.2: invalid port number 16 [ 319.574609][T17288] nfsd: Unknown parameter '^Bд-' [ 320.822758][T17343] bdi 43:192: the stable_pages_required attribute has been removed. Use the stable_writes queue attribute instead. [ 322.019942][T17391] udc dummy_udc.0: soft-connect without a gadget driver [ 322.538079][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 322.545019][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 323.226493][T17442] ecryptfs_miscdev_write: memdup_user returned error [-14] [ 323.443027][T17450] syz.1.5530 uses obsolete (PF_INET,SOCK_PACKET) [ 324.153439][T16919] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18 [ 324.293918][T17497] syz_tun: tun_chr_ioctl cmd 2147767511 [ 324.385084][T17506] Format for unlinking a device is "netnsfd:ifidx" (int uint). [ 324.637279][T17513] kafs: addr_prefs: Too many elements in string [ 324.820041][T17520] kAFS: Invalid Command on /proc/fs/afs/cells file [ 326.214543][T17029] Bluetooth: hci1: command 0x0406 tx timeout [ 327.149430][T17631] cifs: Unknown parameter 'no+ 1Ї• ж`бјrъsFn)ШјaѕH†šФПЁh`рины9kЄA}€žŠ1\D@‹Ч.СфZдCg^‚' [ 327.203603][T17631] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 327.334006][T17631] CIFS mount error: No usable UNC path provided in device string! [ 327.334006][T17631] [ 327.385928][T17631] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 328.295430][T17029] Bluetooth: hci1: command 0x0406 tx timeout [ 330.467023][T17772] rnbd_client L213: map_device: Parameters missing [ 330.786053][T17786] block2mtd: illegal erase size [ 330.969229][T16919] Bluetooth: hci2: unexpected subevent 0x04 length: 122 > 11 [ 331.406779][T17814] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet. [ 331.646670][T17825] [ 332.917267][T17873] usb usb36: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 332.967554][T17876] i2c i2c-0: new_device: Missing parameters [ 332.989808][T17873] vhci_hcd vhci_hcd.1: default hub control req: 0000 v0000 i0000 l0 [ 333.221391][T16919] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 334.590285][T17953] block2mtd: error: cannot open device /sys/module/block2mtd/parameters/block2mtd [ 334.982230][T17967] busy [ 335.258790][T16919] Bluetooth: hci2: command 0x0c1a tx timeout [ 335.841960][T18004] ima: policy update failed [ 335.846613][ T30] audit: type=1802 audit(6064059679.783:24): pid=18004 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.5772" res=0 errno=0 [ 337.149000][T18051] ptrace attach of "./syz-executor exec"[5830] was attempted by ""[18051] [ 337.341534][T16919] Bluetooth: hci2: command 0x0c1a tx timeout [ 340.958767][T18133] bond0: invalid ARP target specified [ 341.180355][T18144] kAFS: unparsable volume name [ 344.469787][T17478] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260 [ 344.469815][T17478] Bluetooth: hci3: unexpected subevent 0x0e length: 725 > 15 [ 344.485108][T17478] Bluetooth: hci3: Unable to find connection for dst 00:a2:f2:94:be:c8 sid 0x4f [ 344.524534][T18202] syz_tun: tun_chr_ioctl cmd 1074025675 [ 344.548560][T18202] syz_tun: persist enabled [ 345.466771][T16924] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 346.432702][T18268] zram0: detected capacity change from 0 to 16 [ 346.955023][T18292] bond0: no command found in slaves file - use +ifname or -ifname [ 348.397670][T16777] syz.0.5200 (16777) used greatest stack depth: 16968 bytes left [ 349.446060][T18405] usb usb24: usbfs: process 18405 (syz.2.5959) did not claim interface 0 before use [ 351.034374][T18478] kafs: addr_prefs: Invalid Command [ 351.326143][T18490] : Can't lookup blockdev [ 353.258057][T18550] block2mtd: illegal erase size [ 354.428851][T18585] syz_tun: tun_chr_ioctl cmd 2147767506 [ 356.007556][ T30] audit: type=1800 audit(6064059699.923:25): pid=18644 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.6077" name="dbroot" dev="configfs" ino=48216 res=0 errno=0 [ 356.711470][ T30] audit: type=1800 audit(6064059700.642:26): pid=18668 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.6089" name="lu_gp_id" dev="configfs" ino=48300 res=0 errno=0 [ 356.739217][T18668] kstrtoul() returned -22 for lu_gp_id [ 356.920712][T18676] bond0: no command found in slaves file - use +ifname or -ifname [ 357.332734][ T30] audit: type=1806 audit(6064059701.262:27): xattr="." res=0 [ 357.760324][T18716] ICMPv6: process `syz.2.6113' is using deprecated sysctl (syscall) net.ipv6.neigh.wg1.retrans_time - use net.ipv6.neigh.wg1.retrans_time_ms instead [ 358.738310][T18767] ima: policy update failed [ 358.765693][ T30] audit: type=1802 audit(6064059702.691:28): pid=18767 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.6139" res=0 errno=0 [ 359.619575][T18806] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 360.641472][T18871] blkio.reset_stats is deprecated [ 360.779358][T18879] Line length is too long: Should be less than 4094 [ 360.948127][T18888] bond0: invalid ARP target specified [ 361.319787][T18906] QAT: failed to copy from user. [ 362.041795][T18943] [U]  [ 363.268837][T19015] misc userio: Invalid payload size [ 367.715074][T19262] kafs: addr_prefs: Invalid Command [ 368.177924][T19288] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888000000000 pfn:0x78416 [ 368.226550][T19288] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 368.254280][T19288] raw: 00fff00000000000 0000000000000000 dead000000000122 0000000000000000 [ 368.290619][T19288] raw: ffff888000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 368.337569][T19288] page dumped because: unmovable page [ 368.381239][T19288] page_owner tracks the page as allocated [ 368.411460][T19288] page last allocated via order 0, migratetype Unmovable, gfp_mask 0xcc0(GFP_KERNEL), pid 5829, tgid 5829 (syz-executor), ts 97729232725, free_ts 97725274341 [ 368.505426][T19288] post_alloc_hook+0x1e1/0x250 [ 368.516600][T19288] get_page_from_freelist+0xe3d/0x2e10 [ 368.547553][T19288] __alloc_frozen_pages_noprof+0x26c/0x2410 [ 368.573407][T19288] alloc_pages_bulk_noprof+0x777/0x1500 [ 368.606900][T19288] __kasan_populate_vmalloc+0xf0/0x210 [ 368.635015][T19288] alloc_vmap_area+0x935/0x2a00 [ 368.665505][T19288] __get_vm_area_node+0x1ca/0x330 [ 368.697563][T19288] __vmalloc_node_range_noprof+0x213/0x1530 [ 368.721530][T19288] __vmalloc_node_noprof+0xad/0xf0 [ 368.750064][T19288] do_ipt_get_ctl+0x632/0xa10 [ 368.774499][T19288] nf_getsockopt+0x7c/0xe0 [ 368.799648][T19288] ip_getsockopt+0x192/0x1e0 [ 368.820128][T19288] tcp_getsockopt+0xa1/0x110 [ 368.864823][T19288] do_sock_getsockopt+0x259/0x3d0 [ 368.885072][T19288] __sys_getsockopt+0x133/0x1d0 [ 368.914692][T19288] __x64_sys_getsockopt+0xbd/0x160 [ 368.929952][T19309] usbcore.quirks: string doesn't fit in 127 chars. [ 368.938151][T19288] page last free pid 23 tgid 23 stack trace: [ 368.959337][T19288] __free_frozen_pages+0x822/0x1130 [ 368.998989][T19288] tlb_remove_table_rcu+0x2b2/0x390 [ 369.035810][T19288] rcu_core+0x7c0/0x15c0 [ 369.040095][T19288] handle_softirqs+0x1ea/0x910 [ 369.044887][T19288] run_ksoftirqd+0x38/0x60 [ 369.075551][T19288] smpboot_thread_fn+0x3d3/0xaa0 [ 369.100440][ T30] audit: type=1800 audit(4294967303.930:29): pid=19314 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.6406" name="dbroot" dev="configfs" ino=50337 res=0 errno=0 [ 369.133987][T19288] kthread+0x3b3/0x730 [ 369.142110][T19288] ret_from_fork+0x754/0xaf0 [ 369.161515][T19288] ret_from_fork_asm+0x1a/0x30 [ 371.206625][T19410] mmap: syz.0.6453 (19410) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 372.007383][T19446] : Can't lookup blockdev [ 373.274379][T19518] usb usb4: usbfs: process 19518 (syz.2.6506) did not claim interface 0 before use [ 375.363073][T19617] usb usb13: check_ctrlrecip: process 19617 (syz.2.6551) requesting ep 01 but needs 81 [ 375.395333][T19617] usb usb13: usbfs: process 19617 (syz.2.6551) did not claim interface 0 before use [ 375.709680][ T30] audit: type=1800 audit(4294967310.537:30): pid=19629 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.6557" name="members" dev="configfs" ino=51341 res=0 errno=0 [ 381.253914][T19869] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6662'. [ 381.868159][T19896] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 381.874874][T19896] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 383.315055][T19954] openvswitch: netlink: Message has 4 unknown bytes. [ 383.393360][T19958] Zero length message leads to an empty skb [ 383.860957][T19973] device-mapper: ioctl: dm_ctl_ioctl: unknown command 0xfffffd1f [ 384.015180][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 384.023621][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 385.537416][T20051] .^: entered promiscuous mode [ 385.886637][T20065] nbd: couldn't find a device at index 35644 [ 386.555860][T20096] tipc: Enabling of bearer <@):^\/\> rejected, media not registered [ 387.408615][T20136] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 700010007 [ 387.917167][T20152] netlink: Unknown conntrack attr (type=257, max=9) [ 388.349852][T20171] .^: entered promiscuous mode [ 389.720895][T20192] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 389.776576][T20215] usb usb26: usbfs: interface 0 claimed by hub while 'syz.1.6817' resets device [ 390.581571][T20252] .^: entered promiscuous mode [ 390.938635][T20293] MTRR 1 not used [ 391.422366][T20312] netlink: Setting conntrack mark requires 'commit' flag. [ 391.760603][T20331] smc: net device dummy0 applied user defined pnetid DUMMY0 [ 391.810155][T20335] netlink: 16 bytes leftover after parsing attributes in process `syz.1.6861'. [ 392.313832][T20356] openvswitch: netlink: IP tunnel dst address not specified [ 393.040774][T20393] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 393.379937][T20414] smc: net device dummy0 applied user defined pnetid DUMMY0 [ 394.471954][ T30] audit: type=1800 audit(4294967329.287:31): pid=20461 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.6922" name="lu_gp_id" dev="configfs" ino=54372 res=0 errno=0 [ 395.749149][T20513] tipc: Started in network mode [ 395.770781][T20513] tipc: Node identity ffffffff, cluster identity 4711 [ 395.777563][T20513] tipc: Node number set to 4294967295 [ 395.978514][ T30] audit: type=1800 audit(4294967330.787:32): pid=20529 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.6953" name="lu_gp_id" dev="configfs" ino=54580 res=0 errno=0 [ 397.251365][T20593] ucma_write: process 3550 (syz.3.6985) changed security contexts after opening file descriptor, this is not allowed. [ 398.661417][T20670] netlink: 'syz.0.7010': attribute type 1 has an invalid length. [ 401.491244][T20802] netlink: NAT attribute type 6 has unexpected length (4 != 2) [ 402.070313][T20829] ksmbd: Unknown IPC event: 14, ignore. [ 402.269174][T20833] netlink: 'syz.2.7086': attribute type 1 has an invalid length. [ 402.342568][T20833] nbd: error processing sock list [ 403.076826][T17478] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 403.280626][T20893] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 404.443332][T20933] netlink: 'syz.2.7122': attribute type 1 has an invalid length. [ 404.787162][T20944] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 405.204523][T20961] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7137'. [ 407.611253][T17478] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 408.344232][T21104] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 408.655014][T21115] netlink: 'syz.0.7199': attribute type 11 has an invalid length. [ 408.703428][T21115] netlink: 'syz.0.7199': attribute type 11 has an invalid length. [ 409.606247][T21155] netlink: 338 bytes leftover after parsing attributes in process `syz.0.7214'. [ 409.666871][T21155] netlink: 338 bytes leftover after parsing attributes in process `syz.0.7214'. [ 409.858854][T21165] openvswitch: netlink: IPv6 tunnel dst address is zero [ 409.880808][T21167] netlink: del zone limit has 8 unknown bytes [ 410.833963][T21212] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7240'. [ 411.525242][T21240] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 412.038992][T21264] netlink: 'syz.3.7265': attribute type 8 has an invalid length. [ 412.052125][T21265] netlink: 2 bytes leftover after parsing attributes in process `syz.0.7266'. [ 412.417501][T21280] openvswitch: netlink: Flow key attribute not present in set flow. [ 413.075636][T21307] netlink: 'syz.3.7287': attribute type 2 has an invalid length. [ 413.459975][T17478] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18 [ 413.984638][T21363] openvswitch: netlink: IP tunnel dst address not specified [ 414.153448][T21373] netlink: 'syz.3.7306': attribute type 1 has an invalid length. [ 414.200572][T21373] netlink: 33 bytes leftover after parsing attributes in process `syz.3.7306'. [ 414.334676][T21379] tc_dump_action: action bad kind [ 415.421136][T17478] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18 [ 417.275958][T21553] netlink: zone id is out of range [ 417.308220][T21553] netlink: zone id is out of range [ 417.330427][T21553] netlink: zone id is out of range [ 417.358348][T21553] netlink: zone id is out of range [ 417.365285][T21558] openvswitch: netlink: Key type 29 is not supported [ 417.380153][T21553] netlink: zone id is out of range [ 417.406331][T21553] netlink: zone id is out of range [ 417.436339][T21553] netlink: zone id is out of range [ 417.453372][T21553] netlink: zone id is out of range [ 417.478837][T21553] netlink: zone id is out of range [ 418.700214][ T30] audit: type=1326 audit(4294967315.849:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21613 comm="syz.3.7403" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f505999acb9 code=0x0 [ 419.314177][T21660] nfs: Unknown parameter 'nl802154' [ 419.753957][T21678] sctp: [Deprecated]: syz.0.7421 (pid 21678) Use of int in max_burst socket option deprecated. [ 419.753957][T21678] Use struct sctp_assoc_value instead [ 421.611576][T17478] Bluetooth: hci1: unexpected event 0x3e length: 508 > 260 [ 421.611600][T17478] Bluetooth: hci1: unexpected subevent 0x02 length: 507 > 260 [ 421.629720][T17478] Bluetooth: hci1: Dropping invalid advertising data [ 421.636496][T17478] Bluetooth: hci1: unknown advertising packet type: 0xe9 [ 421.636517][T17478] Bluetooth: hci1: Dropping invalid advertising data [ 421.659271][T17478] Bluetooth: hci1: Malformed LE Event: 0x02 [ 421.970997][T17478] Bluetooth: hci2: unexpected event 0x36 length: 123 > 7 [ 422.482648][T21818] net_ratelimit: 50 callbacks suppressed [ 422.482666][T21818] netlink: Conntrack attr has 16 unknown bytes [ 425.235022][T17478] Bluetooth: hci3: unexpected event 0x3e length: 508 > 260 [ 425.235054][T17478] Bluetooth: hci3: unexpected subevent 0x02 length: 507 > 260 [ 425.251219][T17478] Bluetooth: hci3: Dropping invalid advertising data [ 425.257934][T17478] Bluetooth: hci3: unknown advertising packet type: 0xe9 [ 425.257959][T17478] Bluetooth: hci3: Dropping invalid advertising data [ 425.272189][T17478] Bluetooth: hci3: Malformed LE Event: 0x02 [ 427.151009][T17478] Bluetooth: hci2: unexpected event 0x3e length: 508 > 260 [ 427.151035][T17478] Bluetooth: hci2: unexpected subevent 0x02 length: 507 > 260 [ 427.166504][T17478] Bluetooth: hci2: Dropping invalid advertising data [ 427.175778][T17478] Bluetooth: hci2: unknown advertising packet type: 0xe9 [ 427.175801][T17478] Bluetooth: hci2: Dropping invalid advertising data [ 427.191373][T17478] Bluetooth: hci2: Malformed LE Event: 0x02 [ 427.642969][T22107] openvswitch: netlink: Flow key attr not present in new flow. [ 428.626035][T22160] netlink: 'syz.3.7614': attribute type 10 has an invalid length. [ 428.923706][T22174] netlink: 'syz.1.7621': attribute type 2 has an invalid length. [ 429.907400][T22221] openvswitch: netlink: ERSPAN option length err (len 256, max 255). [ 430.270071][T22238] ======================================================= [ 430.270071][T22238] WARNING: The mand mount option has been deprecated and [ 430.270071][T22238] and is ignored by this kernel. Remove the mand [ 430.270071][T22238] option from the mount to silence this warning. [ 430.270071][T22238] ======================================================= [ 431.305893][T22289] vhci_hcd vhci_hcd.1: default hub control req: 4002 v0000 i0000 l0 [ 431.489841][T22297] nbd: must specify a size in bytes for the device [ 432.708838][T22366] openvswitch: netlink: Multiple metadata blocks provided [ 433.067532][T22378] netlink: 'syz.3.7716': attribute type 1 has an invalid length. [ 433.425612][T22395] openvswitch: netlink: IP tunnel dst address not specified [ 435.463793][T22490] &#$@\]\-: entered promiscuous mode [ 435.949225][T22516] rtc_cmos 00:00: Alarms can be up to one day in the future [ 436.125471][T22527] ima: policy update failed [ 436.174628][ T30] audit: type=1802 audit(4294967333.299:34): pid=22527 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.7788" res=0 errno=0 [ 436.361648][T22535] HSR: entered promiscuous mode [ 436.632174][T17478] Bluetooth: hci0: unexpected event 0x3e length: 508 > 260 [ 436.632199][T17478] Bluetooth: hci0: unexpected subevent 0x02 length: 507 > 260 [ 436.647203][T17478] Bluetooth: hci0: Dropping invalid advertising data [ 436.653990][T17478] Bluetooth: hci0: unknown advertising packet type: 0xe9 [ 436.654008][T17478] Bluetooth: hci0: Dropping invalid advertising data [ 436.667767][T17478] Bluetooth: hci0: Malformed LE Event: 0x02 [ 436.858413][ T10] rtc_cmos 00:00: Alarms can be up to one day in the future [ 436.881286][ T10] rtc_cmos 00:00: Alarms can be up to one day in the future [ 436.907842][ T10] rtc_cmos 00:00: Alarms can be up to one day in the future [ 436.926859][ T10] rtc_cmos 00:00: Alarms can be up to one day in the future [ 436.946684][ T10] rtc rtc0: __rtc_set_alarm: err=-22 [ 438.419236][T22629] netlink: 'syz.3.7823': attribute type 11 has an invalid length. [ 438.452338][T22629] netlink: 'syz.3.7823': attribute type 11 has an invalid length. [ 438.480459][T22629] netlink: 'syz.3.7823': attribute type 11 has an invalid length. [ 439.950869][T22695] openvswitch: netlink: IP tunnel attribute has 8 unknown bytes. [ 439.969231][T22696] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 440.611401][T22722] FAULT_INJECTION: forcing a failure. [ 440.611401][T22722] name failslab, interval 1, probability 0, space 0, times 0 [ 440.665075][T22722] CPU: 0 UID: 0 PID: 22722 Comm: syz.2.7868 Tainted: G U I L syzkaller #0 PREEMPT(full) [ 440.665107][T22722] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 440.665114][T22722] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 440.665126][T22722] Call Trace: [ 440.665131][T22722] [ 440.665137][T22722] dump_stack_lvl+0x100/0x190 [ 440.665161][T22722] should_fail_ex.cold+0x5/0xa [ 440.665192][T22722] should_failslab+0xc2/0x120 [ 440.665212][T22722] ? tomoyo_encode2+0xfb/0x3c0 [ 440.665226][T22722] __kmalloc_noprof+0xf6/0x9c0 [ 440.665246][T22722] ? tomoyo_encode2+0xfb/0x3c0 [ 440.665258][T22722] tomoyo_encode2+0xfb/0x3c0 [ 440.665275][T22722] tomoyo_encode+0x29/0x50 [ 440.665289][T22722] tomoyo_mount_acl+0x14c/0x8b0 [ 440.665310][T22722] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 440.665328][T22722] ? is_bpf_text_address+0x94/0x1a0 [ 440.665352][T22722] ? __pfx_tomoyo_mount_acl+0x10/0x10 [ 440.665372][T22722] ? unwind_get_return_address+0x59/0xa0 [ 440.665409][T22722] ? tomoyo_domain+0xb2/0x150 [ 440.665425][T22722] ? tomoyo_profile+0x47/0x60 [ 440.665442][T22722] tomoyo_mount_permission+0x214/0x460 [ 440.665463][T22722] ? tomoyo_mount_permission+0x1f6/0x460 [ 440.665486][T22722] ? __pfx_tomoyo_mount_permission+0x10/0x10 [ 440.665519][T22722] security_sb_mount+0xdd/0x270 [ 440.665539][T22722] path_mount+0x158/0x23c0 [ 440.665557][T22722] ? rcu_is_watching+0x12/0xc0 [ 440.665574][T22722] ? __pfx_path_mount+0x10/0x10 [ 440.665592][T22722] ? kmem_cache_free+0x143/0x720 [ 440.665607][T22722] ? strncpy_from_user+0x19d/0x2d0 [ 440.665625][T22722] ? putname+0xf5/0x1a0 [ 440.665645][T22722] ? putname+0xf5/0x1a0 [ 440.665661][T22722] ? putname+0xfa/0x1a0 [ 440.665680][T22722] ? __x64_sys_mount+0x293/0x310 [ 440.665698][T22722] __x64_sys_mount+0x293/0x310 [ 440.665716][T22722] ? __pfx___x64_sys_mount+0x10/0x10 [ 440.665740][T22722] do_syscall_64+0xc9/0xf80 [ 440.665759][T22722] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 440.665774][T22722] RIP: 0033:0x7f504619acb9 [ 440.665786][T22722] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 440.665800][T22722] RSP: 002b:00007f50443f6028 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 440.665818][T22722] RAX: ffffffffffffffda RBX: 00007f5046415fa0 RCX: 00007f504619acb9 [ 440.665828][T22722] RDX: 00002000000001c0 RSI: 00002000000000c0 RDI: 0000000000000000 [ 440.665836][T22722] RBP: 00007f5046208bf7 R08: 0000000000000000 R09: 0000000000000000 [ 440.665845][T22722] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000000 [ 440.665853][T22722] R13: 00007f5046416038 R14: 00007f5046415fa0 R15: 00007ffc68049868 [ 440.665872][T22722] [ 441.488424][T22761] openvswitch: netlink: Tunnel attr 242 out of range max 16 [ 441.511194][T22763] openvswitch: netlink: Duplicate key (type 15). [ 441.601112][T22766] FAULT_INJECTION: forcing a failure. [ 441.601112][T22766] name failslab, interval 1, probability 0, space 0, times 0 [ 441.614399][T22766] CPU: 0 UID: 0 PID: 22766 Comm: syz.1.7887 Tainted: G U I L syzkaller #0 PREEMPT(full) [ 441.614429][T22766] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 441.614436][T22766] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 441.614445][T22766] Call Trace: [ 441.614452][T22766] [ 441.614459][T22766] dump_stack_lvl+0x100/0x190 [ 441.614483][T22766] should_fail_ex.cold+0x5/0xa [ 441.614508][T22766] should_failslab+0xc2/0x120 [ 441.614528][T22766] kmem_cache_alloc_noprof+0x83/0x780 [ 441.614548][T22766] ? radix_tree_node_alloc.constprop.0+0x66/0x340 [ 441.614575][T22766] ? radix_tree_node_alloc.constprop.0+0x66/0x340 [ 441.614596][T22766] radix_tree_node_alloc.constprop.0+0x66/0x340 [ 441.614621][T22766] idr_get_free+0x52e/0xa00 [ 441.614642][T22766] idr_alloc_u32+0x1ac/0x320 [ 441.614658][T22766] ? __pfx_idr_alloc_u32+0x10/0x10 [ 441.614675][T22766] ? lock_acquire+0x17c/0x330 [ 441.614697][T22766] idr_alloc_cyclic+0x10b/0x230 [ 441.614713][T22766] ? __pfx_idr_alloc_cyclic+0x10/0x10 [ 441.614727][T22766] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 441.614753][T22766] map_create+0x14d8/0x2ba0 [ 441.614766][T22766] ? futex_unqueue+0x13d/0x2c0 [ 441.614785][T22766] ? __futex_wait+0x256/0x300 [ 441.614802][T22766] ? __pfx_map_create+0x10/0x10 [ 441.614838][T22766] ? __might_fault+0xc5/0x140 [ 441.614855][T22766] ? __might_fault+0xc5/0x140 [ 441.614878][T22766] __sys_bpf+0xcec/0x5050 [ 441.614897][T22766] ? __pfx___sys_bpf+0x10/0x10 [ 441.614914][T22766] ? __pfx_futex_wait+0x10/0x10 [ 441.614931][T22766] ? ksys_write+0x190/0x250 [ 441.614951][T22766] ? do_futex+0x192/0x350 [ 441.614979][T22766] ? fput+0x79/0x100 [ 441.614997][T22766] ? xfd_validate_state+0x129/0x190 [ 441.615023][T22766] __x64_sys_bpf+0x7b/0xc0 [ 441.615043][T22766] ? lockdep_hardirqs_on+0x78/0x100 [ 441.615059][T22766] do_syscall_64+0xc9/0xf80 [ 441.615076][T22766] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 441.615092][T22766] RIP: 0033:0x7f2e1db9acb9 [ 441.615105][T22766] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 441.615119][T22766] RSP: 002b:00007f2e1bdf6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 441.615134][T22766] RAX: ffffffffffffffda RBX: 00007f2e1de15fa0 RCX: 00007f2e1db9acb9 [ 441.615144][T22766] RDX: 0000000000000010 RSI: 0000200000000100 RDI: 0000000000000000 [ 441.615153][T22766] RBP: 00007f2e1dc08bf7 R08: 0000000000000000 R09: 0000000000000000 [ 441.615162][T22766] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 441.615170][T22766] R13: 00007f2e1de16038 R14: 00007f2e1de15fa0 R15: 00007fff16cf6b58 [ 441.615190][T22766] [ 441.919469][T22770] netlink: 206 bytes leftover after parsing attributes in process `syz.3.7889'. [ 442.943300][T22805] __vm_enough_memory: pid: 22805, comm: syz.3.7901, bytes: 4398046511104 not enough memory for the allocation [ 443.138310][T22809] nbd: couldn't find device at index 33904 [ 444.104040][T22838] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7916'. [ 444.299611][T22844] capability: warning: `syz.3.7920' uses 32-bit capabilities (legacy support in use) [ 445.241365][T22883] netlink: 16 bytes leftover after parsing attributes in process `syz.0.7937'. [ 445.461012][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 445.470028][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 446.703702][T22955] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !PjE љrѕЃв„yљ*›"Єl-§ЄєyТ–њ„ [ 447.750728][T23001] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7988'. [ 448.098019][T23015] netlink: 'syz.3.7995': attribute type 1 has an invalid length. [ 448.189305][T23019] debugfs: '!PjE љrѕЃв„yљ*›"Єl-§ЄєyТ–њ„LЭƒїгФ]' already exists in 'ieee80211' [ 449.124589][T23062] netlink: zone id is out of range [ 449.310032][T23076] netlink: 'syz.1.8021': attribute type 1 has an invalid length. [ 449.710141][T23092] netlink: NAT attribute has 4 unknown bytes [ 450.324774][T23113] netlink: 'syz.0.8038': attribute type 11 has an invalid length. [ 450.689774][T23127] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8046'. [ 450.819414][T23133] netlink: 'syz.0.8049': attribute type 11 has an invalid length. [ 450.843130][T23133] netlink: 'syz.0.8049': attribute type 11 has an invalid length. [ 450.880802][T23133] netlink: 'syz.0.8049': attribute type 11 has an invalid length. [ 451.070827][T23145] netlink: 'syz.3.8055': attribute type 1 has an invalid length. [ 452.347771][T23210] ptrace attach of "./syz-executor exec"[5830] was attempted by ""[23210] [ 452.785501][T23230] sctp: [Deprecated]: syz.2.8096 (pid 23230) Use of int in max_burst socket option deprecated. [ 452.785501][T23230] Use struct sctp_assoc_value instead [ 453.870033][T23284] FAULT_INJECTION: forcing a failure. [ 453.870033][T23284] name failslab, interval 1, probability 0, space 0, times 0 [ 453.931573][T23284] CPU: 0 UID: 0 PID: 23284 Comm: syz.2.8122 Tainted: G U I L syzkaller #0 PREEMPT(full) [ 453.931606][T23284] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 453.931613][T23284] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 453.931622][T23284] Call Trace: [ 453.931628][T23284] [ 453.931634][T23284] dump_stack_lvl+0x100/0x190 [ 453.931657][T23284] should_fail_ex.cold+0x5/0xa [ 453.931682][T23284] should_failslab+0xc2/0x120 [ 453.931704][T23284] kmem_cache_alloc_lru_noprof+0x8e/0x7d0 [ 453.931724][T23284] ? __d_alloc+0x34/0xa80 [ 453.931744][T23284] ? __d_alloc+0x34/0xa80 [ 453.931760][T23284] ? __pfx_inode_set_ctime_current+0x10/0x10 [ 453.931777][T23284] __d_alloc+0x34/0xa80 [ 453.931792][T23284] ? new_inode+0x15a/0x1c0 [ 453.931813][T23284] d_alloc_pseudo+0x1c/0xc0 [ 453.931835][T23284] alloc_file_pseudo+0xcf/0x230 [ 453.931865][T23284] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 453.931887][T23284] ? hugetlbfs_get_inode+0x36e/0x6f0 [ 453.931905][T23284] hugetlb_file_setup+0x2a8/0x5b0 [ 453.931922][T23284] ksys_mmap_pgoff+0x185/0x5b0 [ 453.931945][T23284] __x64_sys_mmap+0x125/0x190 [ 453.931961][T23284] do_syscall_64+0xc9/0xf80 [ 453.931979][T23284] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 453.931993][T23284] RIP: 0033:0x7f504619acb9 [ 453.932006][T23284] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 453.932020][T23284] RSP: 002b:00007f50443f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 453.932034][T23284] RAX: ffffffffffffffda RBX: 00007f5046415fa0 RCX: 00007f504619acb9 [ 453.932044][T23284] RDX: 00004000000000df RSI: 0000000000000004 RDI: 0000000000000000 [ 453.932052][T23284] RBP: 00007f5046208bf7 R08: 0000000000000401 R09: 0000300000000000 [ 453.932061][T23284] R10: 0000000000040eb1 R11: 0000000000000246 R12: 0000000000000000 [ 453.932069][T23284] R13: 00007f5046416038 R14: 00007f5046415fa0 R15: 00007ffc68049868 [ 453.932088][T23284] [ 454.420638][T17478] Bluetooth: hci0: unexpected event 0x2c length: 42 > 17 [ 454.462582][T23306] Т: entered promiscuous mode [ 454.740289][T23320] netlink: 'syz.2.8139': attribute type 1 has an invalid length. [ 455.929129][T23369] netlink: 'syz.0.8160': attribute type 2 has an invalid length. [ 456.722414][T23389] netlink: Failed to add  helper -22 [ 457.036995][T23346] kexec: Could not allocate control_code_buffer [ 457.173620][T23412] netlink: 'syz.1.8182': attribute type 2 has an invalid length. [ 457.310080][T23418] netlink: 'syz.2.8185': attribute type 1 has an invalid length. [ 458.659999][T23485] NFSD: Failed to start, no listeners configured. [ 459.327100][T17478] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 459.334864][T17478] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci2/hci2:0' [ 459.344263][T17478] CPU: 0 UID: 0 PID: 17478 Comm: kworker/u12:2 Tainted: G U I L syzkaller #0 PREEMPT(full) [ 459.344292][T17478] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 459.344299][T17478] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 459.344314][T17478] Workqueue: hci2 hci_rx_work [ 459.344337][T17478] Call Trace: [ 459.344342][T17478] [ 459.344349][T17478] dump_stack_lvl+0x100/0x190 [ 459.344369][T17478] sysfs_warn_dup.cold+0x1c/0x28 [ 459.344390][T17478] sysfs_create_dir_ns+0x24b/0x2b0 [ 459.344409][T17478] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 459.344427][T17478] ? find_held_lock+0x2b/0x80 [ 459.344441][T17478] ? kobject_add_internal+0x25f/0x930 [ 459.344460][T17478] ? kobject_add_internal+0x25f/0x930 [ 459.344480][T17478] ? do_raw_spin_unlock+0x145/0x1e0 [ 459.344502][T17478] kobject_add_internal+0x2c8/0x930 [ 459.344524][T17478] kobject_add+0x16a/0x1e0 [ 459.344542][T17478] ? __pfx_kobject_add+0x10/0x10 [ 459.344559][T17478] ? class_to_subsys+0x10f/0x150 [ 459.344582][T17478] ? kobject_put+0xb9/0x640 [ 459.344597][T17478] ? _raw_spin_unlock+0x28/0x50 [ 459.344616][T17478] device_add+0x294/0x1950 [ 459.344635][T17478] ? __pfx_dev_set_name+0x10/0x10 [ 459.344657][T17478] ? __pfx_device_add+0x10/0x10 [ 459.344676][T17478] ? mgmt_send_event_skb+0x2fb/0x460 [ 459.344698][T17478] hci_conn_add_sysfs+0x1a3/0x260 [ 459.344719][T17478] le_conn_complete_evt+0x11cb/0x1f40 [ 459.344741][T17478] ? __pfx_le_conn_complete_evt+0x10/0x10 [ 459.344757][T17478] ? __pfx_bt_warn+0x10/0x10 [ 459.344783][T17478] hci_le_conn_complete_evt+0x23c/0x3a0 [ 459.344802][T17478] ? skb_pull_data+0x15f/0x1e0 [ 459.344820][T17478] hci_le_meta_evt+0x34a/0x5f0 [ 459.344839][T17478] ? __pfx_hci_le_conn_complete_evt+0x10/0x10 [ 459.344859][T17478] hci_event_packet+0x682/0x11c0 [ 459.344877][T17478] ? __pfx_hci_le_meta_evt+0x10/0x10 [ 459.344897][T17478] ? __pfx_hci_event_packet+0x10/0x10 [ 459.344916][T17478] ? kcov_remote_start+0x374/0x660 [ 459.344930][T17478] ? lockdep_hardirqs_on+0x78/0x100 [ 459.344950][T17478] hci_rx_work+0x451/0xfc0 [ 459.344971][T17478] process_one_work+0x9c2/0x1840 [ 459.344999][T17478] ? __pfx_process_one_work+0x10/0x10 [ 459.345051][T17478] ? assign_work+0x19c/0x250 [ 459.345074][T17478] worker_thread+0x5da/0xe40 [ 459.345103][T17478] ? kthread+0x17d/0x730 [ 459.345123][T17478] ? __pfx_worker_thread+0x10/0x10 [ 459.345142][T17478] kthread+0x3b3/0x730 [ 459.345162][T17478] ? __pfx_kthread+0x10/0x10 [ 459.345181][T17478] ? ret_from_fork+0x79/0xaf0 [ 459.345194][T17478] ? ret_from_fork+0x79/0xaf0 [ 459.345207][T17478] ? rcu_is_watching+0x12/0xc0 [ 459.345221][T17478] ? __pfx_kthread+0x10/0x10 [ 459.345241][T17478] ret_from_fork+0x754/0xaf0 [ 459.345256][T17478] ? __pfx_ret_from_fork+0x10/0x10 [ 459.345271][T17478] ? __switch_to+0x7b9/0x10c0 [ 459.345288][T17478] ? __pfx_kthread+0x10/0x10 [ 459.345308][T17478] ret_from_fork_asm+0x1a/0x30 [ 459.345339][T17478] [ 459.345362][T17478] kobject: kobject_add_internal failed for hci2:0 with -EEXIST, don't try to register things with the same name in the same directory. [ 459.671613][T17478] Bluetooth: hci2: failed to register connection device [ 460.149196][T23545] netlink: Unknown NAT attribute (type=262, max=9) [ 460.721083][T23579] perf: Dynamic interrupt throttling disabled, can hang your system! [ 461.595828][T23623] openvswitch: netlink: VXLAN extension 64 out of range max 1 [ 461.644019][T23622] NFSD: Failed to start, no listeners configured. [ 461.691464][T16919] Bluetooth: hci2: command 0x0c1a tx timeout [ 461.829836][T23641] openvswitch: netlink: Flow actions attr not present in new flow. [ 461.975404][T23647] IPVS: length: 131 != 8 [ 462.232788][T17478] Bluetooth: hci3: ACL packet too small [ 462.267819][T23660] netlink: ct_mark mask cannot be 0 [ 463.427703][T23720] Invalid ELF header magic: != ELF [ 463.771219][T16919] Bluetooth: hci2: command 0x0c1a tx timeout [ 465.560088][T23816] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8364'. [ 465.932535][T23831] syz_tun: tun_chr_ioctl cmd 1074025694 [ 466.110210][T23835] netlink: 'syz.2.8373': attribute type 1 has an invalid length. [ 467.012652][T23887] netlink: NAT attribute has 4 unknown bytes [ 467.432832][T23911] netlink: zone id is out of range [ 467.872815][T23928] usb usb3: usbfs: interface 0 claimed by hub while 'syz.1.8417' sets config #0 [ 467.896396][T23931] netlink: 16 bytes leftover after parsing attributes in process `syz.3.8418'. [ 468.211660][T23945] netlink: 148 bytes leftover after parsing attributes in process `syz.1.8425'. [ 468.338072][T23951] netlink: 'syz.0.8428': attribute type 1 has an invalid length. [ 469.318250][T24004] openvswitch: netlink: IP tunnel dst address not specified [ 469.768507][T24029] CIFS mount error: No usable UNC path provided in device string! [ 469.768507][T24029] [ 469.827127][T24029] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 472.341831][T17478] Bluetooth: hci1: unexpected subevent 0x18 length: 123 > 19 [ 472.349261][T17478] Bluetooth: hci1: Unable to find connection for dst f9:56:cc:cc:70:a9 sid 0x00 [ 473.492733][T24221] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 475.001477][T24332] netlink: 'syz.1.8580': attribute type 1 has an invalid length. [ 476.443838][T24398] nbd: illegal input index -1073741824 [ 478.047353][T24463] openvswitch: netlink: Key 15 has unexpected len 16 expected 4 [ 478.324190][T24472] netlink: 'syz.1.8650': attribute type 2 has an invalid length. [ 478.362366][T24472] netlink: 8 bytes leftover after parsing attributes in process `syz.1.8650'. [ 478.619250][T24477] NFSD: Failed to start, no listeners configured. [ 478.693994][T24486] nbd: must specify an index to disconnect [ 479.090476][T24506] openvswitch: netlink: VXLAN extension message has 4 unknown bytes. [ 479.644852][T24532] netlink: 20 bytes leftover after parsing attributes in process `syz.2.8675'. [ 479.694709][T24532] netlink: 20 bytes leftover after parsing attributes in process `syz.2.8675'. [ 482.760218][T24677] random: crng reseeded on system resumption [ 482.776674][T24675] delete_channel: no stack [ 482.900043][T24679] syz.0.8742 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 483.083487][T24685] delete_channel: no stack [ 483.655638][T24715] openvswitch: netlink: Geneve opt len 1 is not a multiple of 4. [ 484.421400][T24745] vhci_hcd vhci_hcd.1: default hub control req: 8003 v0000 i0000 l0 [ 484.611769][ T30] audit: type=1326 audit(4294967335.820:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24748 comm="syz.1.8775" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f2e1db9acb9 code=0x0 [ 485.909074][T24792] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 485.915960][T24792] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 486.929250][T24829] netlink: 'syz.1.8811': attribute type 1 has an invalid length. [ 488.339358][T24877] FAULT_INJECTION: forcing a failure. [ 488.339358][T24877] name failslab, interval 1, probability 0, space 0, times 0 [ 488.399992][T24877] CPU: 0 UID: 0 PID: 24877 Comm: syz.1.8834 Tainted: G U I L syzkaller #0 PREEMPT(full) [ 488.400024][T24877] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 488.400031][T24877] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 488.400040][T24877] Call Trace: [ 488.400046][T24877] [ 488.400052][T24877] dump_stack_lvl+0x100/0x190 [ 488.400075][T24877] should_fail_ex.cold+0x5/0xa [ 488.400106][T24877] should_failslab+0xc2/0x120 [ 488.400128][T24877] __kmalloc_cache_noprof+0x80/0x810 [ 488.400144][T24877] ? call_usermodehelper_setup+0xaf/0x360 [ 488.400158][T24877] ? __kmalloc_node_track_caller_noprof+0x373/0x9d0 [ 488.400177][T24877] ? __pfx_free_modprobe_argv+0x10/0x10 [ 488.400199][T24877] ? call_usermodehelper_setup+0xaf/0x360 [ 488.400213][T24877] call_usermodehelper_setup+0xaf/0x360 [ 488.400230][T24877] __request_module+0x3c7/0x650 [ 488.400257][T24877] ? __pfx___request_module+0x10/0x10 [ 488.400292][T24877] ? find_held_lock+0x2b/0x80 [ 488.400306][T24877] ? inet_create+0xa72/0x1060 [ 488.400333][T24877] inet_create+0xd45/0x1060 [ 488.400350][T24877] ? inet_create+0x94/0x1060 [ 488.400369][T24877] __sock_create+0x339/0x860 [ 488.400390][T24877] __sys_socket+0x14d/0x260 [ 488.400405][T24877] ? fput+0x79/0x100 [ 488.400423][T24877] ? __pfx___sys_socket+0x10/0x10 [ 488.400438][T24877] ? xfd_validate_state+0x129/0x190 [ 488.400464][T24877] __x64_sys_socket+0x72/0xb0 [ 488.400480][T24877] ? lockdep_hardirqs_on+0x78/0x100 [ 488.400496][T24877] do_syscall_64+0xc9/0xf80 [ 488.400513][T24877] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 488.400528][T24877] RIP: 0033:0x7f2e1db9acb9 [ 488.400541][T24877] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 488.400554][T24877] RSP: 002b:00007f2e1bdf6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 488.400569][T24877] RAX: ffffffffffffffda RBX: 00007f2e1de15fa0 RCX: 00007f2e1db9acb9 [ 488.400578][T24877] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000002 [ 488.400587][T24877] RBP: 00007f2e1dc08bf7 R08: 0000000000000000 R09: 0000000000000000 [ 488.400596][T24877] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 488.400604][T24877] R13: 00007f2e1de16038 R14: 00007f2e1de15fa0 R15: 00007fff16cf6b58 [ 488.400624][T24877] [ 489.079384][T24896] NFSD: Failed to start, no listeners configured. [ 489.246546][T24910] openvswitch: netlink: Key type 261 is out of range max 32 [ 489.333338][T24914] netlink: 'syz.3.8846': attribute type 1 has an invalid length. [ 490.158351][T24948] openvswitch: netlink: IP tunnel dst address not specified [ 490.689069][T24969] netlink: ct family unspecified [ 491.948023][T25027] netlink: 'syz.2.8899': attribute type 1 has an invalid length. [ 492.269445][T25043] nbd: illegal input index 37139 [ 492.632107][T25054] openvswitch: netlink: Message has 4 unknown bytes. [ 493.889062][T25095] NFSD: Failed to start, no listeners configured. [ 494.216279][T25111] netlink: 'syz.2.8937': attribute type 1 has an invalid length. [ 494.826154][T25130] smc: net device dummy0 erased user defined pnetid DUMMY0 [ 495.513643][ T30] audit: type=1326 audit(4294967346.720:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25149 comm="syz.1.8956" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f2e1db9acb9 code=0x0 [ 495.949212][T25165] No such timeout policy "" [ 495.964239][T25165] netlink: Failed to associated timeout policy '' [ 496.147833][T25169] netlink: zone id is out of range [ 496.172396][T25169] netlink: zone id is out of range [ 496.200526][T25169] netlink: zone id is out of range [ 496.226058][T25169] netlink: zone id is out of range [ 496.253882][T25169] netlink: zone id is out of range [ 496.278973][T25169] netlink: zone id is out of range [ 496.308523][T25169] netlink: zone id is out of range [ 496.340046][T25169] netlink: zone id is out of range [ 497.792447][T25223] net_ratelimit: 20 callbacks suppressed [ 497.792464][T25223] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 500.245737][T25327] openvswitch: netlink: VXLAN extension 0 has unexpected len 4 expected 0 [ 501.453045][T25387] netlink: 'syz.2.9063': attribute type 11 has an invalid length. [ 501.493909][T25387] netlink: 'syz.2.9063': attribute type 11 has an invalid length. [ 501.517580][T25387] netlink: 'syz.2.9063': attribute type 11 has an invalid length. [ 501.570378][T25387] netlink: 'syz.2.9063': attribute type 11 has an invalid length. [ 501.613138][T25386] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 502.589942][T25430] netlink: 4 bytes leftover after parsing attributes in process `syz.0.9083'. [ 502.783636][T25441] netlink: Conntrack attr type has unexpected length (type=3, length=0, expected=8) [ 504.535643][T25529] netlink: 4 bytes leftover after parsing attributes in process `syz.2.9131'. [ 505.104258][T25564] openvswitch: netlink: Duplicate or invalid key (type 0). [ 505.154955][T25568] openvswitch: netlink: Geneve option length err (len 256, max 255). [ 506.094298][T25611] netlink: 'syz.3.9167': attribute type 11 has an invalid length. [ 506.134576][T25611] netlink: 'syz.3.9167': attribute type 11 has an invalid length. [ 506.170559][T25611] netlink: 'syz.3.9167': attribute type 11 has an invalid length. [ 506.200623][T25611] netlink: 'syz.3.9167': attribute type 11 has an invalid length. [ 506.905825][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 506.912246][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 509.523291][T25744] netlink: 28 bytes leftover after parsing attributes in process `syz.1.9231'. [ 509.572407][T25748] netlink: 29 bytes leftover after parsing attributes in process `syz.1.9231'. [ 509.603024][T25746] netlink: 'syz.2.9230': attribute type 11 has an invalid length. [ 510.484758][T25793] nvme_fcloop: unknown parameter or missing value 'Њ' [ 511.983568][T25856] netlink: 'syz.0.9270': attribute type 11 has an invalid length. [ 512.029733][T25856] netlink: 'syz.0.9270': attribute type 11 has an invalid length. [ 512.038170][T25856] netlink: 'syz.0.9270': attribute type 11 has an invalid length. [ 512.093087][T25856] netlink: 'syz.0.9270': attribute type 11 has an invalid length. [ 512.535539][T25877] netlink: set zone limit has 8 unknown bytes [ 512.768901][T25889] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 513.191316][T25907] netlink: 'syz.3.9291': attribute type 1 has an invalid length. [ 513.449483][T25914] vhci_hcd vhci_hcd.2: invalid port number 16 [ 513.476254][T25914] vhci_hcd vhci_hcd.2: invalid port number 16 [ 513.969711][T25923] netlink: 'syz.2.9300': attribute type 2 has an invalid length. [ 516.600383][T26030] vivid-007: ================= START STATUS ================= [ 516.636200][T26030] vivid-007: Generate PTS: true [ 516.658447][T26030] vivid-007: Generate SCR: true [ 516.728564][T26030] tpg source WxH: 320x240 (Y'CbCr) [ 516.747604][T26030] tpg field: 1 [ 516.768016][T26030] tpg crop: (0,0)/320x240 [ 516.795199][T26030] tpg compose: (0,0)/320x240 [ 516.825122][T26030] tpg colorspace: 8 [ 516.834637][T26030] tpg transfer function: 0/0 [ 516.870796][T26030] tpg Y'CbCr encoding: 0/0 [ 516.880929][T26030] tpg quantization: 0/0 [ 516.913541][T26030] tpg RGB range: 0/2 [ 516.928310][T26030] vivid-007: ================== END STATUS ================== [ 518.160157][T26120] sctp: [Deprecated]: syz.3.9371 (pid 26120) Use of int in maxseg socket option. [ 518.160157][T26120] Use struct sctp_assoc_value instead [ 518.477681][T26131] netlink: 8 bytes leftover after parsing attributes in process `syz.0.9376'. [ 518.750563][T26144] ptrace attach of "./syz-executor exec"[5835] was attempted by "./syz-executor exec"[26144] [ 519.062344][T26156] input: jJЧИ-Жš9у%vј“ћЈlаQ  J86ж‘ as /devices/virtual/input/input43 [ 520.435757][T26209] FAULT_INJECTION: forcing a failure. [ 520.435757][T26209] name failslab, interval 1, probability 0, space 0, times 0 [ 520.494766][T26209] CPU: 0 UID: 0 PID: 26209 Comm: syz.2.9409 Tainted: G U I L syzkaller #0 PREEMPT(full) [ 520.494797][T26209] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 520.494804][T26209] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 520.494813][T26209] Call Trace: [ 520.494818][T26209] [ 520.494824][T26209] dump_stack_lvl+0x100/0x190 [ 520.494847][T26209] should_fail_ex.cold+0x5/0xa [ 520.494872][T26209] should_failslab+0xc2/0x120 [ 520.494893][T26209] __kvmalloc_node_noprof+0x101/0xac0 [ 520.494912][T26209] ? io_uring_setup.cold+0x171/0x1a89 [ 520.494935][T26209] ? io_uring_setup.cold+0x171/0x1a89 [ 520.494952][T26209] io_uring_setup.cold+0x171/0x1a89 [ 520.494972][T26209] ? __pfx_io_uring_setup+0x10/0x10 [ 520.494991][T26209] ? do_futex+0x192/0x350 [ 520.495011][T26209] ? __pfx_do_futex+0x10/0x10 [ 520.495047][T26209] ? xfd_validate_state+0x129/0x190 [ 520.495070][T26209] ? __task_pid_nr_ns+0x1f5/0x500 [ 520.495094][T26209] __x64_sys_io_uring_setup+0xc2/0x170 [ 520.495113][T26209] do_syscall_64+0xc9/0xf80 [ 520.495131][T26209] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 520.495147][T26209] RIP: 0033:0x7f504619acb9 [ 520.495160][T26209] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 520.495173][T26209] RSP: 002b:00007f50443f6028 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 520.495188][T26209] RAX: ffffffffffffffda RBX: 00007f5046415fa0 RCX: 00007f504619acb9 [ 520.495198][T26209] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000059 [ 520.495207][T26209] RBP: 00007f5046208bf7 R08: 0000000000000000 R09: 0000000000000000 [ 520.495216][T26209] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 520.495224][T26209] R13: 00007f5046416038 R14: 00007f5046415fa0 R15: 00007ffc68049868 [ 520.495250][T26209] [ 521.000019][T26218] usb usb15: usbfs: process 26218 (syz.2.9413) did not claim interface 0 before use [ 521.240427][T26230] FAULT_INJECTION: forcing a failure. [ 521.240427][T26230] name failslab, interval 1, probability 0, space 0, times 0 [ 521.275875][T26230] CPU: 0 UID: 0 PID: 26230 Comm: syz.2.9419 Tainted: G U I L syzkaller #0 PREEMPT(full) [ 521.275907][T26230] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 521.275920][T26230] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 521.275929][T26230] Call Trace: [ 521.275934][T26230] [ 521.275940][T26230] dump_stack_lvl+0x100/0x190 [ 521.275963][T26230] should_fail_ex.cold+0x5/0xa [ 521.275988][T26230] should_failslab+0xc2/0x120 [ 521.276008][T26230] kmem_cache_alloc_noprof+0x83/0x780 [ 521.276026][T26230] ? mas_wr_store_type+0xb21/0x2200 [ 521.276042][T26230] ? mas_alloc_nodes+0x280/0x390 [ 521.276058][T26230] ? mas_alloc_nodes+0x280/0x390 [ 521.276069][T26230] mas_alloc_nodes+0x280/0x390 [ 521.276084][T26230] mas_preallocate+0x39c/0xf10 [ 521.276105][T26230] ? __pfx_mas_preallocate+0x10/0x10 [ 521.276130][T26230] ? lockdep_init_map_type+0x5c/0x250 [ 521.276152][T26230] __mmap_region+0x1201/0x2820 [ 521.276172][T26230] ? __pfx___mmap_region+0x10/0x10 [ 521.276202][T26230] ? finish_task_switch.isra.0+0x204/0xb70 [ 521.276218][T26230] ? lockdep_hardirqs_on+0x78/0x100 [ 521.276234][T26230] ? finish_task_switch.isra.0+0x204/0xb70 [ 521.276285][T26230] ? rcu_is_watching+0x12/0xc0 [ 521.276304][T26230] mmap_region+0x180/0x3e0 [ 521.276324][T26230] do_mmap+0xc63/0x12f0 [ 521.276348][T26230] ? __pfx_do_mmap+0x10/0x10 [ 521.276369][T26230] ? __pfx_down_write_killable+0x10/0x10 [ 521.276391][T26230] vm_mmap_pgoff+0x29e/0x470 [ 521.276415][T26230] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 521.276440][T26230] ? __x64_sys_futex+0x34f/0x4d0 [ 521.276458][T26230] ? __x64_sys_futex+0x358/0x4d0 [ 521.276479][T26230] ksys_mmap_pgoff+0x7d/0x5b0 [ 521.276503][T26230] __x64_sys_mmap+0x125/0x190 [ 521.276519][T26230] do_syscall_64+0xc9/0xf80 [ 521.276537][T26230] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 521.276551][T26230] RIP: 0033:0x7f504619acb9 [ 521.276564][T26230] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 521.276577][T26230] RSP: 002b:00007f50443f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 521.276592][T26230] RAX: ffffffffffffffda RBX: 00007f5046415fa0 RCX: 00007f504619acb9 [ 521.276601][T26230] RDX: 00000000000000df RSI: 0000000000400009 RDI: 0000000000000000 [ 521.276610][T26230] RBP: 00007f5046208bf7 R08: 8000000000000003 R09: 0000000000008000 [ 521.276618][T26230] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 521.276627][T26230] R13: 00007f5046416038 R14: 00007f5046415fa0 R15: 00007ffc68049868 [ 521.276646][T26230] [ 522.283120][T26249] FAULT_INJECTION: forcing a failure. [ 522.283120][T26249] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 522.377021][T26249] CPU: 0 UID: 0 PID: 26249 Comm: syz.1.9427 Tainted: G U I L syzkaller #0 PREEMPT(full) [ 522.377064][T26249] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 522.377072][T26249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 522.377081][T26249] Call Trace: [ 522.377086][T26249] [ 522.377092][T26249] dump_stack_lvl+0x100/0x190 [ 522.377116][T26249] should_fail_ex.cold+0x5/0xa [ 522.377138][T26249] ? prepare_alloc_pages+0x16d/0x5f0 [ 522.377160][T26249] should_fail_alloc_page+0xeb/0x140 [ 522.377182][T26249] prepare_alloc_pages+0x1f0/0x5f0 [ 522.377207][T26249] __alloc_frozen_pages_noprof+0x193/0x2410 [ 522.377224][T26249] ? mark_held_locks+0x40/0x70 [ 522.377242][T26249] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 522.377257][T26249] ? lockdep_hardirqs_on+0x78/0x100 [ 522.377273][T26249] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 522.377287][T26249] ? stack_depot_save_flags+0x3f8/0x9c0 [ 522.377310][T26249] ? __alloc_frozen_pages_noprof+0x2a0/0x2410 [ 522.377329][T26249] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 522.377345][T26249] ? kasan_save_track+0x14/0x30 [ 522.377362][T26249] ? kmem_cache_alloc_noprof+0x2ad/0x780 [ 522.377385][T26249] ? __handle_mm_fault+0xa99/0x2b50 [ 522.377400][T26249] ? handle_mm_fault+0x36d/0xa20 [ 522.377414][T26249] ? fixup_user_fault+0x199/0x510 [ 522.377433][T26249] ? fault_in_user_writeable+0x70/0xe0 [ 522.377451][T26249] ? futex_lock_pi+0x682/0x7b0 [ 522.377471][T26249] ? do_futex+0x18a/0x350 [ 522.377488][T26249] ? __x64_sys_futex+0x34f/0x4d0 [ 522.377514][T26249] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 522.377531][T26249] ? policy_nodemask+0xed/0x4f0 [ 522.377552][T26249] alloc_pages_mpol+0x1fb/0x550 [ 522.377572][T26249] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 522.377597][T26249] ? __pfx_filemap_map_pages+0x10/0x10 [ 522.377614][T26249] alloc_pages_noprof+0x131/0x390 [ 522.377634][T26249] pte_alloc_one+0x1e/0x3e0 [ 522.377659][T26249] __do_fault+0x359/0x550 [ 522.377680][T26249] ? __pfx_filemap_map_pages+0x10/0x10 [ 522.377697][T26249] do_fault+0x2db/0x1990 [ 522.377719][T26249] ? __pmd_alloc+0x6aa/0x9c0 [ 522.377749][T26249] __handle_mm_fault+0x1807/0x2b50 [ 522.377768][T26249] ? mt_find+0x45e/0x8e0 [ 522.377787][T26249] ? __pfx___handle_mm_fault+0x10/0x10 [ 522.377802][T26249] ? __pfx_mt_find+0x10/0x10 [ 522.377817][T26249] ? __lock_acquire+0x4a5/0x2630 [ 522.377845][T26249] ? find_vma+0xbf/0x140 [ 522.377864][T26249] ? __pfx_find_vma+0x10/0x10 [ 522.377885][T26249] handle_mm_fault+0x36d/0xa20 [ 522.377905][T26249] fixup_user_fault+0x199/0x510 [ 522.377928][T26249] fault_in_user_writeable+0x70/0xe0 [ 522.377947][T26249] futex_lock_pi+0x682/0x7b0 [ 522.377971][T26249] ? __pfx_futex_lock_pi+0x10/0x10 [ 522.377991][T26249] ? preempt_schedule_common+0x42/0xc0 [ 522.378007][T26249] ? preempt_schedule_thunk+0x16/0x30 [ 522.378028][T26249] ? __pfx_try_to_wake_up+0x10/0x10 [ 522.378052][T26249] ? futex_private_hash_put+0x107/0x1c0 [ 522.378073][T26249] ? __pfx_futex_wake_mark+0x10/0x10 [ 522.378099][T26249] ? ksys_write+0x190/0x250 [ 522.378115][T26249] ? ksys_write+0x190/0x250 [ 522.378133][T26249] do_futex+0x18a/0x350 [ 522.378154][T26249] ? __pfx_do_futex+0x10/0x10 [ 522.378178][T26249] __x64_sys_futex+0x34f/0x4d0 [ 522.378199][T26249] ? fput+0x79/0x100 [ 522.378217][T26249] ? __pfx___x64_sys_futex+0x10/0x10 [ 522.378235][T26249] ? xfd_validate_state+0x129/0x190 [ 522.378264][T26249] do_syscall_64+0xc9/0xf80 [ 522.378282][T26249] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 522.378297][T26249] RIP: 0033:0x7f2e1db9acb9 [ 522.378310][T26249] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 522.378324][T26249] RSP: 002b:00007f2e1bdf6028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 522.378339][T26249] RAX: ffffffffffffffda RBX: 00007f2e1de15fa0 RCX: 00007f2e1db9acb9 [ 522.378348][T26249] RDX: 0000000000000008 RSI: 0000000000000086 RDI: 0000000000000000 [ 522.378357][T26249] RBP: 00007f2e1dc08bf7 R08: 0000000000000000 R09: 0000000000000007 [ 522.378366][T26249] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 522.378376][T26249] R13: 00007f2e1de16038 R14: 00007f2e1de15fa0 R15: 00007fff16cf6b58 [ 522.378395][T26249] [ 524.060522][T26278] netlink: 8 bytes leftover after parsing attributes in process `syz.3.9442'. [ 524.841079][T26326] netlink: 'syz.2.9452': attribute type 1 has an invalid length. [ 527.284911][T26363] kexec: Could not allocate control_code_buffer [ 528.961673][T26487] zswap: compressor not available [ 529.251924][T26527] bridge0: port 3(bond0) entered blocking state [ 529.285697][T26527] bridge0: port 3(bond0) entered disabled state [ 529.315744][T26527] bond0: entered allmulticast mode [ 529.339790][T26527] bond_slave_0: entered allmulticast mode [ 529.369761][T26527] bond_slave_1: entered allmulticast mode [ 529.398423][T26527] bond0: entered promiscuous mode [ 529.431563][T26527] bond_slave_0: entered promiscuous mode [ 529.457091][T26527] bond_slave_1: entered promiscuous mode [ 529.481742][T26529] zswap: compressor not available [ 529.497804][T26527] bridge0: port 3(bond0) entered blocking state [ 529.504746][T26527] bridge0: port 3(bond0) entered forwarding state [ 529.982942][T26547] netlink: 4 bytes leftover after parsing attributes in process `syz.3.9527'. [ 530.023875][T26547] netlink: 4 bytes leftover after parsing attributes in process `syz.3.9527'. [ 531.671622][T26642] netlink: 8 bytes leftover after parsing attributes in process `syz.1.9555'. [ 531.881263][T26663] bridge0: port 3(ipvlan0) entered blocking state [ 531.909398][T26663] bridge0: port 3(ipvlan0) entered disabled state [ 531.940974][T26663] ipvlan0: entered allmulticast mode [ 531.962065][T26663] veth0_vlan: entered allmulticast mode [ 531.986878][T26663] ipvlan0: left allmulticast mode [ 532.008375][T26663] veth0_vlan: left allmulticast mode [ 533.389253][T26766] openvswitch: netlink: IP tunnel TTL not specified. [ 537.716922][T26991] zswap: compressor not available [ 537.742109][T27007] phram: not enough arguments [ 538.086489][T27021] bridge0: port 3(hsr0) entered blocking state [ 538.093948][T27021] bridge0: port 3(hsr0) entered disabled state [ 538.100966][T27021] hsr0: entered allmulticast mode [ 538.106440][T27021] hsr_slave_0: entered allmulticast mode [ 538.113067][T27021] hsr_slave_1: entered allmulticast mode [ 538.126173][T27021] hsr0: entered promiscuous mode [ 538.138997][T27021] bridge0: port 3(hsr0) entered blocking state [ 538.145413][T27021] bridge0: port 3(hsr0) entered forwarding state [ 538.237114][T27024] smc: net device dummy0 applied user defined pnetid DUMMY0 [ 538.954949][T27077] bridge0: port 4(syz_tun) entered blocking state [ 538.977963][T27077] bridge0: port 4(syz_tun) entered disabled state [ 539.003737][T27077] syz_tun: entered allmulticast mode [ 539.025595][T27077] syz_tun: entered promiscuous mode [ 539.046459][T27077] bridge0: port 4(syz_tun) entered blocking state [ 539.053121][T27077] bridge0: port 4(syz_tun) entered forwarding state [ 540.870904][T27152] netlink: 16 bytes leftover after parsing attributes in process `syz.0.9703'. [ 542.053658][T27221] bridge0: port 3(syz_tun) entered blocking state [ 542.093489][T27221] bridge0: port 3(syz_tun) entered disabled state [ 542.125763][T27221] syz_tun: entered allmulticast mode [ 542.160412][T27221] syz_tun: entered promiscuous mode [ 542.190664][T27221] bridge0: port 3(syz_tun) entered blocking state [ 542.197184][T27221] bridge0: port 3(syz_tun) entered forwarding state [ 542.368901][T27230] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 542.375357][T27230] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 543.226652][T27263] could not allocate digest TFM handle [ 544.447472][T27251] kexec: Could not allocate control_code_buffer [ 544.599506][T27330] bridge0: port 3(syz_tun) entered blocking state [ 544.633138][T27330] bridge0: port 3(syz_tun) entered disabled state [ 544.670462][T27330] syz_tun: entered allmulticast mode [ 544.681814][T27330] syz_tun: entered promiscuous mode [ 544.701420][T27330] bridge0: port 3(syz_tun) entered blocking state [ 544.707959][T27330] bridge0: port 3(syz_tun) entered forwarding state [ 545.407893][T27376] netlink: 186 bytes leftover after parsing attributes in process `syz.2.9772'. [ 546.636539][T27427] bridge0: port 4(veth1_macvtap) entered blocking state [ 546.662999][T27427] bridge0: port 4(veth1_macvtap) entered disabled state [ 546.687199][T27427] veth1_macvtap: entered allmulticast mode [ 546.710451][T27427] veth1_macvtap: left allmulticast mode [ 547.892328][T27531] cifs: Unknown parameter 'T.ŸмлцЈХМc[Ÿаъ€$тцЕШ)ќБUѓУ‘nEѓ-Ъ™ОlЎік-КŒ -О_€™ЏдхсЊ5Z фoхщЂmžаfwYЭhК*/џxDlнЉŠзэgеkЧAэГљЯ7Эии9’єXіa/fъ_џARЃˆ™‘ШxM ‚vЌ—pџБ$^;єиq‡3БЋЃnьЁЕ-6Љ+e„k„ОёЧ<Аkœcд)n.ќeMЭїNaЈtЎаSMЮЦ1,™њuЭъ*й‹1‡4M++jГˆзЙч:|:/Г+'Šm/њC [ 547.892328][T27531] ж!‰їSЛ—gƒ‡Œа@ЮЊMLюнTОw.‡œlЩЭОе_-:Qїy•KЖNНяMz>‘l*[чG˜ЇмCАŠH‚žИЎFx^ЩФ’Љ’Pktkыyџј§vћМe' [ 548.076056][T27531] CIFS mount error: No usable UNC path provided in device string! [ 548.076056][T27531] [ 548.122813][T27531] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 548.734959][T27587] FAULT_INJECTION: forcing a failure. [ 548.734959][T27587] name failslab, interval 1, probability 0, space 0, times 0 [ 548.798494][T27587] CPU: 0 UID: 0 PID: 27587 Comm: syz.1.9822 Tainted: G U I L syzkaller #0 PREEMPT(full) [ 548.798527][T27587] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 548.798534][T27587] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 548.798543][T27587] Call Trace: [ 548.798549][T27587] [ 548.798555][T27587] dump_stack_lvl+0x100/0x190 [ 548.798578][T27587] should_fail_ex.cold+0x5/0xa [ 548.798603][T27587] should_failslab+0xc2/0x120 [ 548.798624][T27587] kmem_cache_alloc_noprof+0x83/0x780 [ 548.798642][T27587] ? create_new_namespaces+0x30/0xab0 [ 548.798662][T27587] ? create_new_namespaces+0x30/0xab0 [ 548.798677][T27587] create_new_namespaces+0x30/0xab0 [ 548.798692][T27587] ? bpf_lsm_capable+0x9/0x10 [ 548.798704][T27587] ? security_capable+0x80/0x260 [ 548.798724][T27587] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 548.798742][T27587] ksys_unshare+0x455/0xab0 [ 548.798763][T27587] ? __pfx_ksys_unshare+0x10/0x10 [ 548.798783][T27587] ? xfd_validate_state+0x129/0x190 [ 548.798812][T27587] __x64_sys_unshare+0x31/0x40 [ 548.798831][T27587] do_syscall_64+0xc9/0xf80 [ 548.798850][T27587] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 548.798865][T27587] RIP: 0033:0x7f2e1db9acb9 [ 548.798877][T27587] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 548.798891][T27587] RSP: 002b:00007f2e1bdf6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 548.798906][T27587] RAX: ffffffffffffffda RBX: 00007f2e1de15fa0 RCX: 00007f2e1db9acb9 [ 548.798916][T27587] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 548.798924][T27587] RBP: 00007f2e1dc08bf7 R08: 0000000000000000 R09: 0000000000000000 [ 548.798933][T27587] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 548.798941][T27587] R13: 00007f2e1de16038 R14: 00007f2e1de15fa0 R15: 00007fff16cf6b58 [ 548.798960][T27587] [ 549.001036][T27436] syz.0.9798 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 549.012811][T27436] CPU: 0 UID: 0 PID: 27436 Comm: syz.0.9798 Tainted: G U I L syzkaller #0 PREEMPT(full) [ 549.012840][T27436] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 549.012846][T27436] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 549.012855][T27436] Call Trace: [ 549.012860][T27436] [ 549.012866][T27436] dump_stack_lvl+0x100/0x190 [ 549.012889][T27436] dump_header+0xfb/0x606 [ 549.012904][T27436] oom_kill_process.cold+0xd/0x321 [ 549.012921][T27436] out_of_memory+0x340/0x14f0 [ 549.012943][T27436] ? __pfx_out_of_memory+0x10/0x10 [ 549.012967][T27436] mem_cgroup_out_of_memory+0xc6/0x130 [ 549.012983][T27436] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 549.012996][T27436] ? find_held_lock+0x2b/0x80 [ 549.013015][T27436] ? do_raw_spin_unlock+0x145/0x1e0 [ 549.013038][T27436] ? _raw_spin_unlock+0x28/0x50 [ 549.013054][T27436] try_charge_memcg+0x652/0xc90 [ 549.013085][T27436] ? __pfx_try_charge_memcg+0x10/0x10 [ 549.013109][T27436] ? find_held_lock+0x2b/0x80 [ 549.013122][T27436] ? rcu_read_unlock+0x17/0x60 [ 549.013143][T27436] ? rcu_read_unlock+0x17/0x60 [ 549.013165][T27436] charge_memcg+0xa6/0x280 [ 549.013185][T27436] mem_cgroup_swapin_charge_folio+0xeb/0x470 [ 549.013210][T27436] __read_swap_cache_async+0x449/0x610 [ 549.013229][T27436] ? __pfx___read_swap_cache_async+0x10/0x10 [ 549.013245][T27436] ? rcu_is_watching+0x12/0xc0 [ 549.013259][T27436] ? finish_task_switch.isra.0+0x204/0xb70 [ 549.013276][T27436] ? lockdep_hardirqs_on+0x78/0x100 [ 549.013292][T27436] ? finish_task_switch.isra.0+0x204/0xb70 [ 549.013311][T27436] swap_cluster_readahead+0x541/0x770 [ 549.013326][T27436] ? __schedule+0xff6/0x5e10 [ 549.013343][T27436] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 549.013360][T27436] ? __lock_acquire+0x4a5/0x2630 [ 549.013379][T27436] ? __lock_acquire+0x4a5/0x2630 [ 549.013405][T27436] ? get_vma_policy+0x23f/0x3b0 [ 549.013432][T27436] swapin_readahead+0x14b/0x12e0 [ 549.013459][T27436] ? __pfx_swapin_readahead+0x10/0x10 [ 549.013475][T27436] ? find_held_lock+0x2b/0x80 [ 549.013490][T27436] ? swap_cache_get_folio+0x272/0x920 [ 549.013507][T27436] ? swap_cache_get_folio+0x272/0x920 [ 549.013520][T27436] ? swap_cache_get_folio+0x1f/0x920 [ 549.013534][T27436] ? swap_cache_get_folio+0x2a2/0x920 [ 549.013550][T27436] ? __pfx_swap_cache_get_folio+0x10/0x10 [ 549.013564][T27436] ? __pfx_get_swap_device+0x10/0x10 [ 549.013587][T27436] ? do_swap_page+0x9ba/0x6810 [ 549.013601][T27436] do_swap_page+0x9ba/0x6810 [ 549.013618][T27436] ? __lock_acquire+0x4a5/0x2630 [ 549.013642][T27436] ? __pfx_do_swap_page+0x10/0x10 [ 549.013659][T27436] ? __pfx_default_wake_function+0x10/0x10 [ 549.013681][T27436] ? rcu_is_watching+0x12/0xc0 [ 549.013694][T27436] ? ___pte_offset_map+0x179/0x310 [ 549.013717][T27436] __handle_mm_fault+0x18b9/0x2b50 [ 549.013736][T27436] ? reacquire_held_locks+0xce/0x1e0 [ 549.013756][T27436] ? __pfx___handle_mm_fault+0x10/0x10 [ 549.013775][T27436] ? lock_vma_under_rcu+0x17c/0x5a0 [ 549.013801][T27436] handle_mm_fault+0x36d/0xa20 [ 549.013821][T27436] do_user_addr_fault+0x5a3/0x12f0 [ 549.013843][T27436] exc_page_fault+0x6f/0xd0 [ 549.013859][T27436] asm_exc_page_fault+0x26/0x30 [ 549.013873][T27436] RIP: 0033:0x7fa65726f417 [ 549.013885][T27436] Code: 74 28 25 ff 0f 00 00 83 f0 3d 8d 04 c0 89 c3 c1 eb 04 31 c3 69 db 2d eb d4 27 89 d8 c1 e8 0f 31 c3 81 e3 ff 0f 00 00 48 31 d3 <80> 3d 2a 2c 3a 00 00 0f 84 1c 01 00 00 4c 89 f6 48 8b 0d 0a 2c 3a [ 549.013898][T27436] RSP: 002b:00007ffff078c770 EFLAGS: 00010286 [ 549.013910][T27436] RAX: 0000000000013208 RBX: ffffffff84a14eb2 RCX: 0000001b3120e9c0 [ 549.013920][T27436] RDX: ffffffff84a14b0a RSI: 0000000000000008 RDI: 00007fa656dff008 [ 549.013928][T27436] RBP: 0000000000000024 R08: 00007fa657600000 R09: 00007fa657602000 [ 549.013937][T27436] R10: 0000000084a1450e R11: 0000000000000000 R12: 00007fa657616038 [ 549.013946][T27436] R13: 0000000000000024 R14: ffffffff84a14b0a R15: 00007fa658145720 [ 549.013955][T27436] ? apparmor_capable+0x5a/0x4e0 [ 549.013975][T27436] ? apparmor_capable+0x402/0x4e0 [ 549.013995][T27436] ? apparmor_capable+0x5a/0x4e0 [ 549.014017][T27436] [ 549.014023][T27436] memory: usage 3072kB, limit 3072kB, failcnt 150151 [ 550.481647][T27436] memory+swap: usage 20296kB, limit 9007199254740988kB, failcnt 0 [ 550.522226][T27634] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable [ 550.596222][T27436] kmem: usage 3012kB, limit 9007199254740988kB, failcnt 0 [ 550.650523][T27436] Memory cgroup stats for /syz0: [ 550.650637][T27436] cache 0 [ 550.659862][T27637] netlink: 334 bytes leftover after parsing attributes in process `syz.3.9845'. [ 550.787054][T27436] rss 0 [ 550.807805][T27436] rss_huge 0 [ 550.857056][T27436] shmem 0 [ 550.903556][T27436] mapped_file 0 [ 550.945746][T27436] dirty 0 [ 550.948795][T27436] writeback 4096 [ 550.952338][T27436] workingset_refault_anon 5402 [ 551.048749][T27436] workingset_refault_file 49318 [ 551.110142][T27436] swap 17666048 [ 551.171807][T27436] swapcached 4096 [ 551.193678][T27436] pgpgin 289013 [ 551.207539][T27436] pgpgout 298256 [ 551.211102][T27436] pgfault 284923 [ 551.239104][T27436] pgmajfault 3775 [ 551.243111][T27436] inactive_anon 4096 [ 551.272438][T27436] active_anon 0 [ 551.294483][T27436] inactive_file 0 [ 551.301615][T27436] active_file 0 [ 551.316989][T27436] unevictable 0 [ 551.330848][T27436] hierarchical_memory_limit 3145728 [ 551.351756][T27436] hierarchical_memsw_limit 9223372036854771712 [ 551.370039][T27436] total_cache 0 [ 551.382320][T27436] total_rss 0 [ 551.397806][T27436] total_rss_huge 0 [ 551.409095][T27436] total_shmem 0 [ 551.424469][T27436] total_mapped_file 0 [ 551.433898][T27436] total_dirty 0 [ 551.447416][T27436] total_writeback 4096 [ 551.484296][T27436] total_workingset_refault_anon 5402 [ 551.503738][T27436] total_workingset_refault_file 49318 [ 551.509124][T27436] total_swap 17666048 [ 551.548555][T27436] total_swapcached 4096 [ 551.552726][T27436] total_pgpgin 289013 [ 551.589219][T27436] total_pgpgout 298256 [ 551.606465][T27436] total_pgfault 284923 [ 551.610577][T27436] total_pgmajfault 3775 [ 551.660239][T27436] total_inactive_anon 4096 [ 551.668187][T27436] total_active_anon 0 [ 551.672514][T27436] total_inactive_file 0 [ 551.710961][T27436] total_active_file 0 [ 551.729774][T27436] total_unevictable 0 [ 551.755107][T27436] anon_cost 374 [ 551.758615][T27436] file_cost 4 [ 551.761890][T27436] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.9798,pid=27436,uid=0 [ 551.834889][T27686] input: fЌ as /devices/virtual/input/input44 [ 551.852370][T27436] Memory cgroup out of memory: Killed process 27436 (syz.0.9798) total-vm:104508kB, anon-rss:1336kB, file-rss:22600kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:0 [ 552.095476][T27699] tunl0: entered allmulticast mode [ 555.372974][T27838] netlink: 342 bytes leftover after parsing attributes in process `syz.3.9925'. [ 556.372532][T17478] Bluetooth: hci1: Malformed HCI Event [ 556.502752][T27394] syz.0.9780 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0 [ 556.614486][T27394] CPU: 0 UID: 0 PID: 27394 Comm: syz.0.9780 Tainted: G U I L syzkaller #0 PREEMPT(full) [ 556.614516][T27394] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 556.614523][T27394] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 556.614532][T27394] Call Trace: [ 556.614537][T27394] [ 556.614543][T27394] dump_stack_lvl+0x100/0x190 [ 556.614566][T27394] dump_header+0xfb/0x606 [ 556.614582][T27394] oom_kill_process.cold+0xd/0x321 [ 556.614598][T27394] out_of_memory+0x340/0x14f0 [ 556.614621][T27394] ? __pfx_out_of_memory+0x10/0x10 [ 556.614644][T27394] mem_cgroup_out_of_memory+0xc6/0x130 [ 556.614670][T27394] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 556.614684][T27394] ? find_held_lock+0x2b/0x80 [ 556.614702][T27394] ? do_raw_spin_unlock+0x145/0x1e0 [ 556.614724][T27394] ? _raw_spin_unlock+0x28/0x50 [ 556.614740][T27394] try_charge_memcg+0x652/0xc90 [ 556.614764][T27394] ? __pfx_try_charge_memcg+0x10/0x10 [ 556.614784][T27394] ? find_held_lock+0x2b/0x80 [ 556.614797][T27394] ? rcu_read_unlock+0x17/0x60 [ 556.614818][T27394] ? rcu_read_unlock+0x17/0x60 [ 556.614844][T27394] charge_memcg+0xa6/0x280 [ 556.614864][T27394] __mem_cgroup_charge+0x2b/0x1e0 [ 556.614887][T27394] shmem_alloc_and_add_folio+0x451/0xd40 [ 556.614910][T27394] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 556.614929][T27394] ? shmem_allowable_huge_orders+0x2bd/0x400 [ 556.614951][T27394] shmem_get_folio_gfp+0x6ab/0x1900 [ 556.614973][T27394] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 556.614996][T27394] shmem_write_begin+0x1a4/0x420 [ 556.615016][T27394] ? __pfx_shmem_write_begin+0x10/0x10 [ 556.615039][T27394] ? balance_dirty_pages_ratelimited_flags+0x91/0x1170 [ 556.615066][T27394] generic_perform_write+0x292/0xa40 [ 556.615084][T27394] ? __pfx_shmem_file_write_iter+0x10/0x10 [ 556.615111][T27394] ? __pfx_generic_perform_write+0x10/0x10 [ 556.615132][T27394] ? file_update_time_flags+0x31f/0x510 [ 556.615155][T27394] ? __pfx_shmem_file_write_iter+0x10/0x10 [ 556.615175][T27394] shmem_file_write_iter+0x10e/0x140 [ 556.615198][T27394] __kernel_write_iter+0x2ac/0x920 [ 556.615216][T27394] ? __pfx___kernel_write_iter+0x10/0x10 [ 556.615233][T27394] ? __up_read+0x2c5/0x700 [ 556.615256][T27394] ? dump_user_range+0x73b/0xb50 [ 556.615272][T27394] ? copy_mc_enhanced_fast_string+0x6/0xf [ 556.615296][T27394] dump_user_range+0x3f9/0xb50 [ 556.615316][T27394] ? __pfx_dump_user_range+0x10/0x10 [ 556.615338][T27394] ? __pfx_writenote+0x10/0x10 [ 556.615359][T27394] elf_core_dump+0x2d16/0x3c60 [ 556.615387][T27394] ? __pfx_elf_core_dump+0x10/0x10 [ 556.615403][T27394] ? kasan_save_stack+0x30/0x50 [ 556.615420][T27394] ? kasan_save_track+0x14/0x30 [ 556.615436][T27394] ? __kasan_kmalloc+0xaa/0xb0 [ 556.615452][T27394] ? __kvmalloc_node_noprof+0x34d/0xac0 [ 556.615469][T27394] ? vfs_coredump+0x1f01/0x5530 [ 556.615483][T27394] ? arch_do_signal_or_restart+0x91/0x770 [ 556.615502][T27394] ? irqentry_exit+0x1f8/0x670 [ 556.615517][T27394] ? asm_exc_page_fault+0x26/0x30 [ 556.615535][T27394] ? 0xffffffffff600000 [ 556.615579][T27394] ? vfs_coredump+0x276c/0x5530 [ 556.615593][T27394] vfs_coredump+0x276c/0x5530 [ 556.615616][T27394] ? __pfx_vfs_coredump+0x10/0x10 [ 556.615631][T27394] ? __lock_acquire+0x4a5/0x2630 [ 556.615658][T27394] ? __lock_acquire+0x4a5/0x2630 [ 556.615679][T27394] ? lock_acquire+0x17c/0x330 [ 556.615702][T27394] ? lock_acquire+0x17c/0x330 [ 556.615724][T27394] ? bpf_ksym_find+0x124/0x1c0 [ 556.615742][T27394] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 556.615766][T27394] ? arch_stack_walk+0xa6/0xf0 [ 556.615793][T27394] ? stack_trace_save+0x8e/0xc0 [ 556.615809][T27394] ? __pfx_stack_trace_save+0x10/0x10 [ 556.615825][T27394] ? stack_depot_save_flags+0x27/0x9c0 [ 556.615849][T27394] ? __lock_acquire+0x4a5/0x2630 [ 556.615901][T27394] ? proc_coredump_connector+0x2d3/0x4f0 [ 556.615925][T27394] ? __pfx_proc_coredump_connector+0x10/0x10 [ 556.615953][T27394] ? rcu_is_watching+0x12/0xc0 [ 556.615970][T27394] get_signal+0x1f2a/0x21e0 [ 556.615995][T27394] ? __pfx_get_signal+0x10/0x10 [ 556.616012][T27394] ? bad_area_access_error+0xab/0x1d0 [ 556.616027][T27394] ? fixup_vdso_exception+0x2d1/0x370 [ 556.616055][T27394] arch_do_signal_or_restart+0x91/0x770 [ 556.616076][T27394] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 556.616102][T27394] ? do_user_addr_fault+0x8d6/0x12f0 [ 556.616122][T27394] irqentry_exit+0x1f8/0x670 [ 556.616140][T27394] asm_exc_page_fault+0x26/0x30 [ 556.616154][T27394] RIP: 0033:0x0 [ 556.616164][T27394] Code: Unable to access opcode bytes at 0xffffffffffffffd6. [ 556.616171][T27394] RSP: 002b:0000000000000010 EFLAGS: 00010217 [ 556.616183][T27394] RAX: 0000000000000000 RBX: 00007fa657615fa0 RCX: 00007fa65739acb9 [ 556.616192][T27394] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000001 [ 556.616201][T27394] RBP: 00007fa657408bf7 R08: 0000000000000009 R09: 0000000000000000 [ 556.616209][T27394] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 556.616218][T27394] R13: 00007fa657616038 R14: 00007fa657615fa0 R15: 00007ffff078c6d8 [ 556.616238][T27394] [ 558.053169][T27852] kexec: Could not allocate control_code_buffer [ 558.223929][T27881] Invalid ELF header len 5 [ 558.646269][T27394] memory: usage 3072kB, limit 3072kB, failcnt 156641 [ 558.725267][T27394] memory+swap: usage 32104kB, limit 9007199254740988kB, failcnt 0 [ 558.765939][T27394] kmem: usage 2340kB, limit 9007199254740988kB, failcnt 0 [ 558.807958][T27394] Memory cgroup stats for /syz0: [ 558.808164][T27394] cache 745472 [ 558.838961][T27394] rss 0 [ 558.863155][T27394] rss_huge 0 [ 558.881072][T27394] shmem 745472 [ 558.917994][T27394] mapped_file 0 [ 558.939430][T27394] dirty 0 [ 558.952788][T27394] writeback 0 [ 558.975774][T27394] workingset_refault_anon 5666 [ 559.003787][T27394] workingset_refault_file 51868 [ 559.029308][T27394] swap 29732864 [ 559.068348][T27394] swapcached 0 [ 559.075372][T27394] pgpgin 296699 [ 559.095123][T27394] pgpgout 305847 [ 559.106039][T27394] pgfault 287414 [ 559.137282][T27394] pgmajfault 3994 [ 559.153866][T27394] inactive_anon 0 [ 559.186950][T27394] active_anon 618496 [ 559.234190][T27394] inactive_file 0 [ 559.270332][T27394] active_file 0 [ 559.293189][T27394] unevictable 0 [ 559.323378][T27394] hierarchical_memory_limit 3145728 [ 559.362754][T27938] zswap: compressor not available [ 559.382927][T27394] hierarchical_memsw_limit 9223372036854771712 [ 559.410511][T27394] total_cache 745472 [ 559.429139][T27394] total_rss 0 [ 559.432546][T27394] total_rss_huge 0 [ 559.477821][T27394] total_shmem 745472 [ 559.529708][T27394] total_mapped_file 0 [ 559.558394][T27394] total_dirty 0 [ 559.561873][T27394] total_writeback 0 [ 559.624094][T27394] total_workingset_refault_anon 5666 [ 559.700509][T27394] total_workingset_refault_file 51868 [ 559.733152][T27394] total_swap 29732864 [ 559.737171][T27394] total_swapcached 0 [ 559.772686][T27394] total_pgpgin 296699 [ 559.776804][T27394] total_pgpgout 305847 [ 559.810999][T27394] total_pgfault 287414 [ 559.847677][T27394] total_pgmajfault 3994 [ 559.857520][T27394] total_inactive_anon 0 [ 559.878098][T27394] total_active_anon 618496 [ 559.882523][T27394] total_inactive_file 0 [ 559.886670][T27394] total_active_file 0 [ 559.948162][T27394] total_unevictable 0 [ 559.958217][T27394] anon_cost 383 [ 559.961692][T27394] file_cost 0 [ 559.964971][T27394] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.9780,pid=27394,uid=0 [ 560.069365][T27394] Memory cgroup out of memory: Killed process 27394 (syz.0.9780) total-vm:108340kB, anon-rss:1232kB, file-rss:31216kB, shmem-rss:0kB, UID:0 pgtables:132kB oom_score_adj:0 [ 560.274363][ T30] audit: type=1800 audit(4294967313.861:37): pid=27979 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.9978" name="SYSV00000008" dev="hugetlbfs" ino=0 res=0 errno=0 [ 561.093403][T17478] Bluetooth: hci2: unexpected event 0x2c length: 42 > 17 [ 561.093430][T17478] Bluetooth: hci2: Ignoring connect complete event for invalid link type [ 561.211359][ T30] audit: type=1804 audit(4294967314.791:38): pid=28020 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.9998" name="/newroot/2717/file0" dev="tmpfs" ino=13677 res=1 errno=0 [ 561.321732][T28026] netlink: 8 bytes leftover after parsing attributes in process `syz.3.10001'. [ 561.997433][T28054] FAULT_INJECTION: forcing a failure. [ 561.997433][T28054] name failslab, interval 1, probability 0, space 0, times 0 [ 562.047517][T28054] CPU: 0 UID: 0 PID: 28054 Comm: syz.1.10014 Tainted: G U I L syzkaller #0 PREEMPT(full) [ 562.047552][T28054] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 562.047559][T28054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 562.047569][T28054] Call Trace: [ 562.047574][T28054] [ 562.047580][T28054] dump_stack_lvl+0x100/0x190 [ 562.047604][T28054] should_fail_ex.cold+0x5/0xa [ 562.047629][T28054] should_failslab+0xc2/0x120 [ 562.047650][T28054] __kmalloc_cache_noprof+0x80/0x810 [ 562.047665][T28054] ? allocate_file_region_entries+0x15d/0x620 [ 562.047682][T28054] ? allocate_file_region_entries+0x1a0/0x620 [ 562.047697][T28054] ? allocate_file_region_entries+0x15d/0x620 [ 562.047717][T28054] ? allocate_file_region_entries+0x1a0/0x620 [ 562.047733][T28054] ? _raw_spin_unlock+0x28/0x50 [ 562.047747][T28054] allocate_file_region_entries+0x1a0/0x620 [ 562.047768][T28054] ? __pfx_allocate_file_region_entries+0x10/0x10 [ 562.047786][T28054] ? __x64_sys_mq_notify+0x100/0x170 [ 562.047811][T28054] region_chg+0x85/0x140 [ 562.047829][T28054] __vma_reservation_common+0x376/0x720 [ 562.047848][T28054] ? __pfx___vma_reservation_common+0x10/0x10 [ 562.047870][T28054] ? filemap_get_entry+0x1a7/0x3b0 [ 562.047896][T28054] alloc_hugetlb_folio+0x8db/0x1410 [ 562.047921][T28054] ? __pfx_alloc_hugetlb_folio+0x10/0x10 [ 562.047947][T28054] ? __filemap_get_folio_mpol+0x3ba/0xe70 [ 562.047966][T28054] ? __pmd_alloc+0x6a5/0x9c0 [ 562.047992][T28054] hugetlb_no_page+0xfa8/0x1ae0 [ 562.048016][T28054] ? huge_pte_alloc+0x4ce/0x730 [ 562.048040][T28054] hugetlb_fault+0x5df/0x14f0 [ 562.048056][T28054] ? __pfx_hugetlb_fault+0x10/0x10 [ 562.048086][T28054] ? find_vma+0xbf/0x140 [ 562.048105][T28054] ? __pfx_find_vma+0x10/0x10 [ 562.048126][T28054] handle_mm_fault+0x5f1/0xa20 [ 562.048145][T28054] do_user_addr_fault+0x74c/0x12f0 [ 562.048167][T28054] exc_page_fault+0x6f/0xd0 [ 562.048183][T28054] asm_exc_page_fault+0x26/0x30 [ 562.048197][T28054] RIP: 0010:rep_movs_alternative+0x30/0x90 [ 562.048219][T28054] Code: 83 f9 08 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 7d 7d 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 [ 562.048234][T28054] RSP: 0018:ffffc90003367d48 EFLAGS: 00050216 [ 562.048247][T28054] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000020 [ 562.048256][T28054] RDX: 0000000000000001 RSI: 0000000000000000 RDI: ffff8880308109c0 [ 562.048264][T28054] RBP: 0000000000000020 R08: 0000000000000001 R09: ffffed100610213b [ 562.048273][T28054] R10: ffff8880308109df R11: 0000000000000000 R12: 0000000000000000 [ 562.048282][T28054] R13: ffff8880308109c0 R14: 00000000ffffffff R15: ffff88807b33f8c0 [ 562.048302][T28054] _copy_from_user+0x98/0xd0 [ 562.048324][T28054] do_mq_notify+0x903/0x1110 [ 562.048341][T28054] ? find_held_lock+0x2b/0x80 [ 562.048356][T28054] ? __might_fault+0xc5/0x140 [ 562.048372][T28054] ? __pfx_do_mq_notify+0x10/0x10 [ 562.048395][T28054] __x64_sys_mq_notify+0x100/0x170 [ 562.048415][T28054] ? __pfx___x64_sys_mq_notify+0x10/0x10 [ 562.048440][T28054] ? rcu_is_watching+0x12/0xc0 [ 562.048455][T28054] do_syscall_64+0xc9/0xf80 [ 562.048473][T28054] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 562.048487][T28054] RIP: 0033:0x7f2e1db9acb9 [ 562.048500][T28054] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 562.048513][T28054] RSP: 002b:00007f2e1bdf6028 EFLAGS: 00000246 ORIG_RAX: 00000000000000f4 [ 562.048526][T28054] RAX: ffffffffffffffda RBX: 00007f2e1de15fa0 RCX: 00007f2e1db9acb9 [ 562.048536][T28054] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: ffffffffffffffff [ 562.048545][T28054] RBP: 00007f2e1dc08bf7 R08: 0000000000000000 R09: 0000000000000000 [ 562.048553][T28054] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 562.048562][T28054] R13: 00007f2e1de16038 R14: 00007f2e1de15fa0 R15: 00007fff16cf6b58 [ 562.048581][T28054] [ 562.871166][T28078] ovs_џўџў?: entered promiscuous mode [ 563.067536][T28092] netlink: 206 bytes leftover after parsing attributes in process `syz.3.10032'. [ 564.598679][T28153] xs_local_setup_socket: unhandled error (13) connecting to /var/run/rpcbind.sock [ 564.737987][T28094] kexec: Could not allocate control_code_buffer [ 565.625746][T28202] netlink: 100 bytes leftover after parsing attributes in process `syz.2.10077'. [ 566.247304][T28225] FAULT_INJECTION: forcing a failure. [ 566.247304][T28225] name failslab, interval 1, probability 0, space 0, times 0 [ 566.302328][T28225] CPU: 0 UID: 0 PID: 28225 Comm: syz.2.10090 Tainted: G U I L syzkaller #0 PREEMPT(full) [ 566.302361][T28225] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 566.302368][T28225] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 566.302378][T28225] Call Trace: [ 566.302384][T28225] [ 566.302389][T28225] dump_stack_lvl+0x100/0x190 [ 566.302412][T28225] should_fail_ex.cold+0x5/0xa [ 566.302437][T28225] should_failslab+0xc2/0x120 [ 566.302459][T28225] kmem_cache_alloc_noprof+0x83/0x780 [ 566.302478][T28225] ? do_fcntl_add_lease+0x9d/0x550 [ 566.302497][T28225] ? do_fcntl_add_lease+0x9d/0x550 [ 566.302510][T28225] do_fcntl_add_lease+0x9d/0x550 [ 566.302525][T28225] ? __pfx_do_fcntl_add_lease+0x10/0x10 [ 566.302538][T28225] ? __pfx_futex_wait+0x10/0x10 [ 566.302559][T28225] fcntl_setlease+0xfc/0x180 [ 566.302573][T28225] ? __pfx_fcntl_setlease+0x10/0x10 [ 566.302592][T28225] do_fcntl+0x1149/0x1670 [ 566.302614][T28225] ? __pfx_do_fcntl+0x10/0x10 [ 566.302632][T28225] ? __fget_files+0x215/0x3d0 [ 566.302654][T28225] ? tomoyo_file_fcntl+0x6c/0xc0 [ 566.302682][T28225] __x64_sys_fcntl+0x163/0x200 [ 566.302706][T28225] do_syscall_64+0xc9/0xf80 [ 566.302724][T28225] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 566.302739][T28225] RIP: 0033:0x7f504619acb9 [ 566.302751][T28225] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 566.302765][T28225] RSP: 002b:00007f50443f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000048 [ 566.302780][T28225] RAX: ffffffffffffffda RBX: 00007f5046415fa0 RCX: 00007f504619acb9 [ 566.302790][T28225] RDX: 9ec0000000000000 RSI: 0000000000000400 RDI: 0000000000000003 [ 566.302798][T28225] RBP: 00007f5046208bf7 R08: 0000000000000000 R09: 0000000000000000 [ 566.302807][T28225] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 566.302815][T28225] R13: 00007f5046416038 R14: 00007f5046415fa0 R15: 00007ffc68049868 [ 566.302834][T28225] [ 567.258173][T28251] device-mapper: ioctl: Unable to rename non-existent device, to uuid „ [ 568.351290][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 568.358872][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 568.681622][T28294] program syz.1.10120 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 569.033599][T28308] netlink: 8 bytes leftover after parsing attributes in process `syz.1.10127'. [ 569.044875][T28249] kexec: Could not allocate control_code_buffer [ 569.535231][T28324] netlink: Unknown conntrack attr (0) [ 570.634340][T28363] netlink: 8 bytes leftover after parsing attributes in process `syz.3.10152'. [ 571.291727][T28386] netlink: 338 bytes leftover after parsing attributes in process `syz.3.10163'. [ 571.504580][T28392] netlink: 'syz.1.10167': attribute type 2 has an invalid length. [ 573.590488][T28459] netlink: 16 bytes leftover after parsing attributes in process `syz.3.10197'. [ 573.822636][T28464] futex_wake_op: syz.2.10200 tries to shift op by -2048; fix this program [ 573.906184][T28464] futex_wake_op: syz.2.10200 tries to shift op by -2048; fix this program [ 573.976295][T28468] 0x000000000001-0x000000020000 : "" [ 574.125009][T28468] ftl_cs: FTL header corrupt! [ 576.483561][ T30] audit: type=1807 audit(4294967330.063:39): UNKNOWN=ђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџџџђџ [ 576.483868][ T30] audit: type=1802 audit(4294967330.063:40): pid=28534 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.1.10229" res=0 errno=0 [ 576.616674][T28533] ima: policy update failed [ 577.106513][ T30] audit: type=1802 audit(4294967330.233:41): pid=28533 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.10229" res=0 errno=0 [ 580.530799][T28641] bridge0: port 4(team0) entered blocking state [ 580.537099][T28641] bridge0: port 4(team0) entered disabled state [ 580.628483][T28641] team0: entered allmulticast mode [ 580.682474][T28641] team_slave_0: entered allmulticast mode [ 580.732196][T28641] team_slave_1: entered allmulticast mode [ 580.776028][T28641] team0: entered promiscuous mode [ 580.811420][T28641] team_slave_0: entered promiscuous mode [ 580.849228][T28641] team_slave_1: entered promiscuous mode [ 580.890489][T28641] bridge0: port 4(team0) entered blocking state [ 580.897071][T28641] bridge0: port 4(team0) entered forwarding state [ 580.926089][T28607] kexec: Could not allocate control_code_buffer [ 581.586627][T28665] FAULT_INJECTION: forcing a failure. [ 581.586627][T28665] name failslab, interval 1, probability 0, space 0, times 0 [ 581.636062][T28665] CPU: 0 UID: 0 PID: 28665 Comm: syz.1.10290 Tainted: G U I L syzkaller #0 PREEMPT(full) [ 581.636094][T28665] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 581.636102][T28665] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 581.636111][T28665] Call Trace: [ 581.636117][T28665] [ 581.636122][T28665] dump_stack_lvl+0x100/0x190 [ 581.636146][T28665] should_fail_ex.cold+0x5/0xa [ 581.636170][T28665] should_failslab+0xc2/0x120 [ 581.636192][T28665] kmem_cache_alloc_noprof+0x83/0x780 [ 581.636211][T28665] ? sk_prot_alloc+0x60/0x2a0 [ 581.636229][T28665] ? sk_prot_alloc+0x60/0x2a0 [ 581.636242][T28665] sk_prot_alloc+0x60/0x2a0 [ 581.636257][T28665] sk_alloc+0x36/0xe80 [ 581.636276][T28665] qrtr_create+0x84/0x1d0 [ 581.636294][T28665] __sock_create+0x339/0x860 [ 581.636313][T28665] __sys_socket+0x14d/0x260 [ 581.636329][T28665] ? fput+0x79/0x100 [ 581.636347][T28665] ? __pfx___sys_socket+0x10/0x10 [ 581.636362][T28665] ? xfd_validate_state+0x129/0x190 [ 581.636389][T28665] __x64_sys_socket+0x72/0xb0 [ 581.636404][T28665] ? lockdep_hardirqs_on+0x78/0x100 [ 581.636421][T28665] do_syscall_64+0xc9/0xf80 [ 581.636439][T28665] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 581.636454][T28665] RIP: 0033:0x7f2e1db9acb9 [ 581.636466][T28665] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 581.636480][T28665] RSP: 002b:00007f2e1bdf6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 581.636495][T28665] RAX: ffffffffffffffda RBX: 00007f2e1de15fa0 RCX: 00007f2e1db9acb9 [ 581.636505][T28665] RDX: 0000000000000001 RSI: 0000000000000002 RDI: 000000000000002a [ 581.636514][T28665] RBP: 00007f2e1dc08bf7 R08: 0000000000000000 R09: 0000000000000000 [ 581.636522][T28665] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 581.636530][T28665] R13: 00007f2e1de16038 R14: 00007f2e1de15fa0 R15: 00007fff16cf6b58 [ 581.636549][T28665] [ 582.158772][T28668] bridge_slave_1: left allmulticast mode [ 582.210637][T28668] bridge_slave_1: left promiscuous mode [ 582.296346][T28668] bridge0: port 2(bridge_slave_1) entered disabled state [ 584.762141][T28772] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 584.768863][T28772] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 584.930859][T28777] FAULT_INJECTION: forcing a failure. [ 584.930859][T28777] name failslab, interval 1, probability 0, space 0, times 0 [ 584.993902][T28777] CPU: 0 UID: 0 PID: 28777 Comm: syz.1.10333 Tainted: G U I L syzkaller #0 PREEMPT(full) [ 584.993934][T28777] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 584.993942][T28777] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 584.993952][T28777] Call Trace: [ 584.993957][T28777] [ 584.993963][T28777] dump_stack_lvl+0x100/0x190 [ 584.993987][T28777] should_fail_ex.cold+0x5/0xa [ 584.994013][T28777] should_failslab+0xc2/0x120 [ 584.994034][T28777] __kmalloc_cache_noprof+0x80/0x810 [ 584.994050][T28777] ? refill_pi_state_cache+0x91/0x260 [ 584.994075][T28777] ? refill_pi_state_cache+0x91/0x260 [ 584.994095][T28777] ? futex_unqueue+0x133/0x2c0 [ 584.994112][T28777] refill_pi_state_cache+0x91/0x260 [ 584.994135][T28777] futex_lock_pi+0x177/0x7b0 [ 584.994159][T28777] ? __pfx_futex_lock_pi+0x10/0x10 [ 584.994182][T28777] ? __pfx___futex_wait+0x10/0x10 [ 584.994211][T28777] ? __pfx_futex_wake_mark+0x10/0x10 [ 584.994239][T28777] ? do_vfs_ioctl+0x226/0x13e0 [ 584.994263][T28777] do_futex+0x18a/0x350 [ 584.994283][T28777] ? __pfx_do_futex+0x10/0x10 [ 584.994307][T28777] ? find_held_lock+0x2b/0x80 [ 584.994324][T28777] __x64_sys_futex+0x34f/0x4d0 [ 584.994345][T28777] ? __fget_files+0x21f/0x3d0 [ 584.994361][T28777] ? __pfx___x64_sys_futex+0x10/0x10 [ 584.994380][T28777] ? xfd_validate_state+0x129/0x190 [ 584.994408][T28777] do_syscall_64+0xc9/0xf80 [ 584.994427][T28777] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 584.994442][T28777] RIP: 0033:0x7f2e1db9acb9 [ 584.994455][T28777] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 584.994469][T28777] RSP: 002b:00007f2e1bdf6028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 584.994484][T28777] RAX: ffffffffffffffda RBX: 00007f2e1de15fa0 RCX: 00007f2e1db9acb9 [ 584.994494][T28777] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000 [ 584.994502][T28777] RBP: 00007f2e1dc08bf7 R08: 0000000000000000 R09: 000000008000fff5 [ 584.994511][T28777] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 584.994519][T28777] R13: 00007f2e1de16038 R14: 00007f2e1de15fa0 R15: 00007fff16cf6b58 [ 584.994538][T28777] [ 585.878792][T28768] syz.0.10324 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0 [ 585.914945][T28768] CPU: 0 UID: 0 PID: 28768 Comm: syz.0.10324 Tainted: G U I L syzkaller #0 PREEMPT(full) [ 585.914976][T28768] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 585.914983][T28768] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 585.914992][T28768] Call Trace: [ 585.914998][T28768] [ 585.915003][T28768] dump_stack_lvl+0x100/0x190 [ 585.915026][T28768] dump_header+0xfb/0x606 [ 585.915046][T28768] oom_kill_process.cold+0xd/0x321 [ 585.915065][T28768] out_of_memory+0x340/0x14f0 [ 585.915099][T28768] ? __pfx_out_of_memory+0x10/0x10 [ 585.915123][T28768] mem_cgroup_out_of_memory+0xc6/0x130 [ 585.915139][T28768] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 585.915154][T28768] ? find_held_lock+0x2b/0x80 [ 585.915172][T28768] ? do_raw_spin_unlock+0x145/0x1e0 [ 585.915195][T28768] ? _raw_spin_unlock+0x28/0x50 [ 585.915211][T28768] try_charge_memcg+0x652/0xc90 [ 585.915235][T28768] ? __pfx_try_charge_memcg+0x10/0x10 [ 585.915255][T28768] ? find_held_lock+0x2b/0x80 [ 585.915268][T28768] ? rcu_read_unlock+0x17/0x60 [ 585.915289][T28768] ? rcu_read_unlock+0x17/0x60 [ 585.915315][T28768] charge_memcg+0xa6/0x280 [ 585.915335][T28768] __mem_cgroup_charge+0x2b/0x1e0 [ 585.915357][T28768] do_anonymous_page+0xb38/0x1f40 [ 585.915381][T28768] __handle_mm_fault+0x1d3a/0x2b50 [ 585.915403][T28768] ? __pfx___handle_mm_fault+0x10/0x10 [ 585.915420][T28768] ? __pte_offset_map_lock+0x174/0x320 [ 585.915441][T28768] ? find_held_lock+0x2b/0x80 [ 585.915461][T28768] ? follow_page_pte+0x5b4/0x1410 [ 585.915487][T28768] handle_mm_fault+0x36d/0xa20 [ 585.915514][T28768] __get_user_pages+0xf9c/0x34d0 [ 585.915543][T28768] ? __pfx___get_user_pages+0x10/0x10 [ 585.915570][T28768] populate_vma_page_range+0x267/0x3f0 [ 585.915595][T28768] ? __pfx_populate_vma_page_range+0x10/0x10 [ 585.915618][T28768] ? __pfx_find_vma_intersection+0x10/0x10 [ 585.915640][T28768] ? do_mmap+0x93f/0x12f0 [ 585.915663][T28768] __mm_populate+0x107/0x3a0 [ 585.915686][T28768] ? __pfx___mm_populate+0x10/0x10 [ 585.915710][T28768] ? up_write+0x290/0x4f0 [ 585.915733][T28768] vm_mmap_pgoff+0x37f/0x470 [ 585.915758][T28768] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 585.915784][T28768] ? __x64_sys_futex+0x34f/0x4d0 [ 585.915804][T28768] ? __x64_sys_futex+0x358/0x4d0 [ 585.915826][T28768] ksys_mmap_pgoff+0x7d/0x5b0 [ 585.915851][T28768] __x64_sys_mmap+0x125/0x190 [ 585.915868][T28768] do_syscall_64+0xc9/0xf80 [ 585.915886][T28768] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 585.915902][T28768] RIP: 0033:0x7fa65739acb9 [ 585.915914][T28768] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 585.915929][T28768] RSP: 002b:00007fa65819d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 585.915944][T28768] RAX: ffffffffffffffda RBX: 00007fa657615fa0 RCX: 00007fa65739acb9 [ 585.915954][T28768] RDX: 0000000000000003 RSI: 0000000000400008 RDI: 0000000000000000 [ 585.915963][T28768] RBP: 00007fa657408bf7 R08: 0000000000000002 R09: 0000000000008000 [ 585.915973][T28768] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 585.915981][T28768] R13: 00007fa657616038 R14: 00007fa657615fa0 R15: 00007ffff078c6d8 [ 585.916001][T28768] [ 585.916007][T28768] memory: usage 3072kB, limit 3072kB, failcnt 175253 [ 586.824056][T28806] netlink: 4 bytes leftover after parsing attributes in process `syz.3.10347'. [ 587.212124][T28768] memory+swap: usage 86656kB, limit 9007199254740988kB, failcnt 0 [ 587.223010][T28818] netlink: 8 bytes leftover after parsing attributes in process `syz.3.10352'. [ 587.242442][T28768] kmem: usage 2588kB, limit 9007199254740988kB, failcnt 0 [ 587.381005][T28821] bridge0: port 4(veth0_to_bridge) entered blocking state [ 587.393578][T28768] Memory cgroup stats for /syz0: [ 587.393700][T28768] cache 466944 [ 587.409495][T28821] bridge0: port 4(veth0_to_bridge) entered disabled state [ 587.432261][T28821] veth0_to_bridge: entered allmulticast mode [ 587.444937][T28768] rss 4096 [ 587.459254][T28821] veth0_to_bridge: entered promiscuous mode [ 587.474256][T28768] rss_huge 0 [ 587.481427][T28821] bridge0: port 4(veth0_to_bridge) entered blocking state [ 587.488671][T28821] bridge0: port 4(veth0_to_bridge) entered forwarding state [ 587.503238][T28768] shmem 180224 [ 587.519775][T28768] mapped_file 53248 [ 587.545671][T28768] dirty 0 [ 587.567135][T28768] writeback 0 [ 587.620088][T28768] workingset_refault_anon 6405 [ 587.672856][T28768] workingset_refault_file 56341 [ 587.688830][T28828] openvswitch: netlink: IP tunnel TTL not specified. [ 587.718804][T28768] swap 85757952 [ 587.759793][T28768] swapcached 0 [ 587.787278][T28768] pgpgin 329363 [ 587.815901][T28768] pgpgout 338538 [ 587.840212][T28768] pgfault 304100 [ 587.880998][T28768] pgmajfault 4500 [ 587.913048][T28768] inactive_anon 180224 [ 587.959077][T28768] active_anon 4096 [ 587.992311][T28768] inactive_file 102400 [ 588.044618][T28768] active_file 176128 [ 588.073514][T28768] unevictable 8192 [ 588.108027][T28768] hierarchical_memory_limit 3145728 [ 588.160986][T28768] hierarchical_memsw_limit 9223372036854771712 [ 588.170916][T28843] netlink: 4 bytes leftover after parsing attributes in process `syz.1.10364'. [ 588.233552][T28768] total_cache 466944 [ 588.266693][T28768] total_rss 4096 [ 588.314011][T28768] total_rss_huge 0 [ 588.317750][T28768] total_shmem 180224 [ 588.375128][T28768] total_mapped_file 53248 [ 588.421741][T28768] total_dirty 0 [ 588.452641][T28768] total_writeback 0 [ 588.456549][T28768] total_workingset_refault_anon 6405 [ 588.461827][T28768] total_workingset_refault_file 56341 [ 588.584361][T28768] total_swap 85757952 [ 588.588365][T28768] total_swapcached 0 [ 588.649288][T28768] total_pgpgin 329363 [ 588.699426][T28768] total_pgpgout 338538 [ 588.741766][T28768] total_pgfault 304100 [ 588.772102][T28768] total_pgmajfault 4500 [ 588.810789][T28768] total_inactive_anon 180224 [ 588.862931][T28768] total_active_anon 4096 [ 588.867243][T28768] total_inactive_file 102400 [ 588.941097][T28768] total_active_file 176128 [ 588.993047][T28768] total_unevictable 8192 [ 588.997322][T28768] anon_cost 368 [ 589.000794][T28768] file_cost 6 [ 589.092723][T28768] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.10153,pid=28366,uid=0 [ 589.227908][T28768] Memory cgroup out of memory: Killed process 28366 (syz.0.10153) total-vm:135096kB, anon-rss:1336kB, file-rss:54784kB, shmem-rss:64kB, UID:0 pgtables:256kB oom_score_adj:0 [ 590.589613][T28922] netlink: 8 bytes leftover after parsing attributes in process `syz.1.10403'. [ 590.882108][T28929] netlink: 29 bytes leftover after parsing attributes in process `syz.2.10406'. [ 592.865000][T29051] netlink: 16 bytes leftover after parsing attributes in process `syz.3.10439'. [ 593.194422][T29060] netlink: 350 bytes leftover after parsing attributes in process `syz.2.10443'. [ 594.135356][T29101] netlink: 28 bytes leftover after parsing attributes in process `syz.0.10460'. [ 595.086458][T29130] netlink: 'syz.2.10474': attribute type 33 has an invalid length. [ 595.276303][T29140] sctp: [Deprecated]: syz.2.10479 (pid 29140) Use of int in maxseg socket option. [ 595.276303][T29140] Use struct sctp_assoc_value instead [ 595.351304][T29138] netlink: set zone limit has 8 unknown bytes [ 595.709792][T29153] 0x000000000001-0x0000fffffff1 : "" [ 595.738698][T29153] mtd: partition "" extends beyond the end of device "mtdram test device" -- size truncated to 0x1ffff [ 595.794134][T29153] ftl_cs: FTL header corrupt! [ 597.050902][T29195] netlink: 2468 bytes leftover after parsing attributes in process `syz.1.10500'. [ 601.224480][T29391] input: Жš9у%v”ћJ,6ж‘ as /devices/virtual/input/input45 [ 601.500786][T29424] netlink: 8 bytes leftover after parsing attributes in process `syz.1.10570'. [ 602.442732][T29468] zswap: compressor not available [ 603.160293][T29515] FAULT_INJECTION: forcing a failure. [ 603.160293][T29515] name failslab, interval 1, probability 0, space 0, times 0 [ 603.218651][T29515] CPU: 0 UID: 0 PID: 29515 Comm: syz.2.10598 Tainted: G U I L syzkaller #0 PREEMPT(full) [ 603.218683][T29515] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 603.218690][T29515] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 603.218700][T29515] Call Trace: [ 603.218705][T29515] [ 603.218710][T29515] dump_stack_lvl+0x100/0x190 [ 603.218735][T29515] should_fail_ex.cold+0x5/0xa [ 603.218760][T29515] should_failslab+0xc2/0x120 [ 603.218780][T29515] __kvmalloc_node_noprof+0x101/0xac0 [ 603.218799][T29515] ? vmemdup_user+0x2a/0xe0 [ 603.218823][T29515] ? vmemdup_user+0x2a/0xe0 [ 603.218839][T29515] vmemdup_user+0x2a/0xe0 [ 603.218858][T29515] path_setxattrat+0x296/0x3a0 [ 603.218876][T29515] ? __pfx_path_setxattrat+0x10/0x10 [ 603.218895][T29515] ? __pfx_poll_select_finish+0x10/0x10 [ 603.218926][T29515] ? xfd_validate_state+0x129/0x190 [ 603.218952][T29515] __x64_sys_fsetxattr+0xc5/0x140 [ 603.218969][T29515] ? do_syscall_64+0x94/0xf80 [ 603.218985][T29515] ? lockdep_hardirqs_on+0x78/0x100 [ 603.219001][T29515] do_syscall_64+0xc9/0xf80 [ 603.219018][T29515] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 603.219041][T29515] RIP: 0033:0x7f504619acb9 [ 603.219054][T29515] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 603.219069][T29515] RSP: 002b:00007f50443f6028 EFLAGS: 00000246 ORIG_RAX: 00000000000000be [ 603.219084][T29515] RAX: ffffffffffffffda RBX: 00007f5046415fa0 RCX: 00007f504619acb9 [ 603.219094][T29515] RDX: 0000000000000000 RSI: 0000200000002ac0 RDI: ffffffffffffffff [ 603.219104][T29515] RBP: 00007f5046208bf7 R08: 0000000000000000 R09: 0000000000000000 [ 603.219113][T29515] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000000 [ 603.219122][T29515] R13: 00007f5046416038 R14: 00007f5046415fa0 R15: 00007ffc68049868 [ 603.219141][T29515] [ 604.302063][T29555] aoe: copy from user failed [ 604.320894][T29555] aoe: could not set interface list: too many interfaces [ 605.587341][T29623] netlink: 342 bytes leftover after parsing attributes in process `syz.2.10650'. [ 605.600323][T29622] netlink: 12 bytes leftover after parsing attributes in process `syz.1.10649'. [ 605.826625][T29634] netlink: 8 bytes leftover after parsing attributes in process `syz.2.10655'. [ 606.134378][T17478] Bluetooth: hci2: unexpected event 0x03 length: 43 > 11 [ 606.366924][T29658] netlink: 'syz.3.10667': attribute type 1 has an invalid length. [ 606.439414][T29661] netlink: 4 bytes leftover after parsing attributes in process `syz.2.10668'. [ 606.468666][T29661] netlink: 4 bytes leftover after parsing attributes in process `syz.2.10668'. [ 607.610533][T29710] netlink: 12 bytes leftover after parsing attributes in process `syz.2.10690'. [ 608.062382][T29733] netlink: 'syz.0.10701': attribute type 3 has an invalid length. [ 608.089832][T29733] netlink: 332 bytes leftover after parsing attributes in process `syz.0.10701'. [ 608.194712][T29741] netlink: 21 bytes leftover after parsing attributes in process `syz.3.10704'. [ 608.966711][T29781] netlink: 342 bytes leftover after parsing attributes in process `syz.1.10724'. [ 610.038334][T29835] netlink: 'syz.1.10748': attribute type 1 has an invalid length. [ 610.186416][T29840] netlink: 8 bytes leftover after parsing attributes in process `syz.2.10751'. [ 612.735404][T29957] FAULT_INJECTION: forcing a failure. [ 612.735404][T29957] name failslab, interval 1, probability 0, space 0, times 0 [ 612.815551][T29957] CPU: 0 UID: 0 PID: 29957 Comm: syz.2.10794 Tainted: G U I L syzkaller #0 PREEMPT(full) [ 612.815583][T29957] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 612.815591][T29957] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 612.815600][T29957] Call Trace: [ 612.815605][T29957] [ 612.815611][T29957] dump_stack_lvl+0x100/0x190 [ 612.815634][T29957] should_fail_ex.cold+0x5/0xa [ 612.815659][T29957] should_failslab+0xc2/0x120 [ 612.815679][T29957] ? sk_prot_alloc+0x10b/0x2a0 [ 612.815693][T29957] __kmalloc_noprof+0xf6/0x9c0 [ 612.815706][T29957] ? security_inode_alloc+0x3b/0x2c0 [ 612.815732][T29957] ? sk_prot_alloc+0x10b/0x2a0 [ 612.815745][T29957] sk_prot_alloc+0x10b/0x2a0 [ 612.815760][T29957] sk_alloc+0x36/0xe80 [ 612.815780][T29957] xsk_create+0x117/0x760 [ 612.815803][T29957] __sock_create+0x339/0x860 [ 612.815823][T29957] __sys_socket+0x14d/0x260 [ 612.815839][T29957] ? __pfx___sys_socket+0x10/0x10 [ 612.815855][T29957] ? xfd_validate_state+0x129/0x190 [ 612.815882][T29957] __x64_sys_socket+0x72/0xb0 [ 612.815898][T29957] ? lockdep_hardirqs_on+0x78/0x100 [ 612.815914][T29957] do_syscall_64+0xc9/0xf80 [ 612.815932][T29957] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 612.815947][T29957] RIP: 0033:0x7f504619acb9 [ 612.815959][T29957] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 612.815973][T29957] RSP: 002b:00007f50443f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 612.815988][T29957] RAX: ffffffffffffffda RBX: 00007f5046415fa0 RCX: 00007f504619acb9 [ 612.815998][T29957] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 000000000000002c [ 612.816006][T29957] RBP: 00007f5046208bf7 R08: 0000000000000000 R09: 0000000000000000 [ 612.816015][T29957] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 612.816023][T29957] R13: 00007f5046416038 R14: 00007f5046415fa0 R15: 00007ffc68049868 [ 612.816042][T29957] [ 613.747767][T30015] netlink: 206 bytes leftover after parsing attributes in process `syz.3.10811'. [ 613.839120][T17478] Bluetooth: hci2: Received unexpected HCI Event 0x00 [ 620.142944][ C0] sched: DL replenish lagged too much [ 629.917323][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 634.471558][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 693.676306][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 696.046675][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 753.133423][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 760.400598][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 814.235973][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 840.870017][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 855.073262][ C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks: [ 855.080758][ C0] rcu: Tasks blocked on level-0 rcu_node (CPUs 0-1): P5829/1:b..l P5817/1:b..l P25689/1:b..l [ 855.091588][ C0] rcu: (detected by 0, t=10502 jiffies, g=125145, q=181 ncpus=1) [ 855.099427][ C0] task:syz.0.9202 state:R running task stack:28752 pid:25689 tgid:25689 ppid:5829 task_flags:0x40044c flags:0x00080002 [ 855.114150][ C0] Call Trace: [ 855.117428][ C0] [ 855.120345][ C0] ? __schedule+0xf65/0x5e10 [ 855.125095][ C0] __schedule+0xfe4/0x5e10 [ 855.129492][ C0] ? swap_entries_put_map+0x39e/0x710 [ 855.134872][ C0] ? swap_entries_put_map+0x39e/0x710 [ 855.140256][ C0] ? lock_acquire+0x17c/0x330 [ 855.144938][ C0] ? find_held_lock+0x2b/0x80 [ 855.149625][ C0] ? __pfx___schedule+0x10/0x10 [ 855.154479][ C0] ? preempt_schedule_thunk+0x16/0x30 [ 855.159839][ C0] preempt_schedule_common+0x42/0xc0 [ 855.165195][ C0] preempt_schedule_thunk+0x16/0x30 [ 855.170390][ C0] _raw_spin_unlock+0x3e/0x50 [ 855.175052][ C0] unmap_page_range+0x14ee/0x43e0 [ 855.180096][ C0] ? bpf_ksym_find+0x124/0x1c0 [ 855.184876][ C0] ? __pfx_unmap_page_range+0x10/0x10 [ 855.190286][ C0] ? mas_next_slot+0x1003/0x18b0 [ 855.195252][ C0] unmap_single_vma+0x153/0x240 [ 855.200358][ C0] unmap_vmas+0x218/0x470 [ 855.204700][ C0] ? __pfx_unmap_vmas+0x10/0x10 [ 855.209564][ C0] ? mas_next_slot+0x1003/0x18b0 [ 855.214517][ C0] exit_mmap+0x181/0xae0 [ 855.218779][ C0] ? __pfx_exit_mmap+0x10/0x10 [ 855.223537][ C0] ? __lock_acquire+0x4a5/0x2630 [ 855.228657][ C0] ? arch_uprobe_clear_state+0x107/0x150 [ 855.234652][ C0] __mmput+0x12a/0x410 [ 855.238830][ C0] mmput+0x67/0x80 [ 855.242568][ C0] do_exit+0x78a/0x2a30 [ 855.246738][ C0] ? __pfx_do_exit+0x10/0x10 [ 855.251415][ C0] ? cgroup_update_frozen_flag+0x107/0x210 [ 855.257397][ C0] ? find_held_lock+0x2b/0x80 [ 855.262330][ C0] ? get_signal+0x184f/0x21e0 [ 855.267025][ C0] do_group_exit+0xd5/0x2a0 [ 855.271538][ C0] get_signal+0x1ec7/0x21e0 [ 855.276040][ C0] ? __asan_memset+0x23/0x50 [ 855.280624][ C0] ? __pfx_get_signal+0x10/0x10 [ 855.285650][ C0] ? __pfx_hrtimer_wakeup+0x10/0x10 [ 855.290879][ C0] arch_do_signal_or_restart+0x91/0x770 [ 855.296427][ C0] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 855.302627][ C0] ? __x64_sys_clock_nanosleep+0x347/0x480 [ 855.308494][ C0] exit_to_user_mode_loop+0x86/0x4b0 [ 855.313771][ C0] ? rcu_is_watching+0x12/0xc0 [ 855.318957][ C0] do_syscall_64+0x4ea/0xf80 [ 855.323535][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 855.329413][ C0] RIP: 0033:0x7fa65735b58e [ 855.334749][ C0] RSP: 002b:00007fa65819cf58 EFLAGS: 00000246 ORIG_RAX: 00000000000000e6 [ 855.343157][ C0] RAX: fffffffffffffdfc RBX: 00007fa65819d6c0 RCX: 00007fa65735b58e [ 855.351139][ C0] RDX: 00007fa65819cfb0 RSI: 0000000000000000 RDI: 0000000000000000 [ 855.359107][ C0] RBP: 00007fa657408bf7 R08: 0000000000000000 R09: 0000000000000000 [ 855.367086][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 855.375040][ C0] R13: 00007fa657616038 R14: 00007fa657615fa0 R15: 00007ffff078c6d8 [ 855.383016][ C0] [ 855.386017][ C0] task:syz-executor state:R running task stack:22840 pid:5817 tgid:5817 ppid:5816 task_flags:0x400100 flags:0x00080000 [ 855.400452][ C0] Call Trace: [ 855.403732][ C0] [ 855.406675][ C0] ? __schedule+0xf65/0x5e10 [ 855.411272][ C0] __schedule+0xfe4/0x5e10 [ 855.415675][ C0] ? is_bpf_text_address+0x94/0x1a0 [ 855.421141][ C0] ? __pfx___schedule+0x10/0x10 [ 855.425975][ C0] ? mark_held_locks+0x40/0x70 [ 855.430722][ C0] preempt_schedule_irq+0x50/0x90 [ 855.435737][ C0] irqentry_exit+0x17b/0x670 [ 855.440578][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 855.446544][ C0] RIP: 0010:debug_lockdep_rcu_enabled+0x2b/0x40 [ 855.452769][ C0] Code: 0f 1e fa 8b 05 06 85 43 05 85 c0 74 20 8b 05 90 b4 43 05 85 c0 74 16 65 48 8b 05 48 d8 6f 08 8b 80 2c 0b 00 00 85 c0 0f 94 c0 <0f> b6 c0 e9 3d 28 03 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 90 [ 855.472368][ C0] RSP: 0018:ffffc90003fefb48 EFLAGS: 00000246 [ 855.478416][ C0] RAX: 0000000000000001 RBX: 0000000000090d32 RCX: 1ffff11027fff4ca [ 855.486559][ C0] RDX: dffffc0000000000 RSI: ffffffff827c255a RDI: ffff88813fffa650 [ 855.494532][ C0] RBP: ffff88801d300000 R08: 0000000000000006 R09: 0000000000001000 [ 855.502495][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 855.510811][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: ffffea0002434c80 [ 855.518870][ C0] ? __nr_to_section+0xaa/0x100 [ 855.523715][ C0] rcu_read_lock_held+0x9/0x50 [ 855.528461][ C0] lookup_page_ext+0x6e/0x100 [ 855.533148][ C0] __page_table_check_zero+0xe1/0x410 [ 855.538516][ C0] ? __reset_page_owner+0x144/0x190 [ 855.543802][ C0] __free_frozen_pages+0x802/0x1130 [ 855.549099][ C0] __put_partials+0x127/0x160 [ 855.553786][ C0] qlist_free_all+0x47/0xe0 [ 855.558290][ C0] kasan_quarantine_reduce+0x1a0/0x1f0 [ 855.563742][ C0] __kasan_slab_alloc+0x69/0x90 [ 855.568579][ C0] ? alloc_pipe_info+0x1ec/0x590 [ 855.573515][ C0] __kmalloc_noprof+0x300/0x9c0 [ 855.578352][ C0] ? alloc_pipe_info+0x1ec/0x590 [ 855.583270][ C0] alloc_pipe_info+0x1ec/0x590 [ 855.588018][ C0] create_pipe_files+0x8c/0x970 [ 855.592944][ C0] do_pipe2+0xbd/0x1e0 [ 855.597006][ C0] ? handle_mm_fault+0x3fb/0xa20 [ 855.601947][ C0] ? __pfx_do_pipe2+0x10/0x10 [ 855.606802][ C0] ? xfd_validate_state+0x129/0x190 [ 855.611999][ C0] __x64_sys_pipe2+0x54/0x80 [ 855.616579][ C0] do_syscall_64+0xc9/0xf80 [ 855.621068][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 855.626942][ C0] RIP: 0033:0x7f974d799ce9 [ 855.631694][ C0] RSP: 002b:00007fff0005d288 EFLAGS: 00000246 ORIG_RAX: 0000000000000125 [ 855.640136][ C0] RAX: ffffffffffffffda RBX: 000055556cc02ef0 RCX: 00007f974d799ce9 [ 855.648099][ C0] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 00007fff0005d298 [ 855.656056][ C0] RBP: 00007fff0005d860 R08: 00007f974d9e4cc0 R09: 0000000000000000 [ 855.664137][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fff0005d6a0 [ 855.672366][ C0] R13: 000055556cc03508 R14: 000055556cc06830 R15: 00007fff0005d3e0 [ 855.680346][ C0] [ 855.683361][ C0] task:syz-executor state:R running task stack:19224 pid:5829 tgid:5829 ppid:1 task_flags:0x40054c flags:0x00080003 [ 855.696844][ C0] Call Trace: [ 855.700130][ C0] [ 855.703333][ C0] ? __schedule+0xf65/0x5e10 [ 855.707935][ C0] __schedule+0xfe4/0x5e10 [ 855.712354][ C0] ? prepare_signal+0x154/0xe80 [ 855.717197][ C0] ? radix_tree_next_chunk+0x56b/0xad0 [ 855.722652][ C0] ? idr_get_next_ul+0x196/0x2e0 [ 855.727617][ C0] ? __pfx___schedule+0x10/0x10 [ 855.732557][ C0] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 855.738354][ C0] ? lockdep_hardirqs_on+0x78/0x100 [ 855.743755][ C0] ? preempt_schedule_thunk+0x16/0x30 [ 855.749139][ C0] preempt_schedule_common+0x42/0xc0 [ 855.754443][ C0] preempt_schedule_thunk+0x16/0x30 [ 855.759645][ C0] _raw_read_unlock+0x3e/0x50 [ 855.764309][ C0] zap_pid_ns_processes+0x259/0x6a0 [ 855.769495][ C0] ? do_raw_write_lock+0x11e/0x260 [ 855.774602][ C0] ? __pfx_zap_pid_ns_processes+0x10/0x10 [ 855.780477][ C0] ? do_exit+0x2168/0x2a30 [ 855.784888][ C0] ? do_exit+0x2168/0x2a30 [ 855.789289][ C0] ? rcu_is_watching+0x12/0xc0 [ 855.794050][ C0] do_exit+0x22da/0x2a30 [ 855.798366][ C0] ? debug_object_free+0x28d/0x550 [ 855.803560][ C0] ? __pfx_do_exit+0x10/0x10 [ 855.808158][ C0] ? do_raw_spin_lock+0x128/0x260 [ 855.813256][ C0] ? find_held_lock+0x2b/0x80 [ 855.818023][ C0] ? get_signal+0x7e0/0x21e0 [ 855.822596][ C0] do_group_exit+0xd5/0x2a0 [ 855.827086][ C0] get_signal+0x1ec7/0x21e0 [ 855.831763][ C0] ? __asan_memset+0x23/0x50 [ 855.836468][ C0] ? __pfx_get_signal+0x10/0x10 [ 855.841501][ C0] ? __pfx_hrtimer_wakeup+0x10/0x10 [ 855.846821][ C0] arch_do_signal_or_restart+0x91/0x770 [ 855.852373][ C0] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 855.858658][ C0] ? __x64_sys_clock_nanosleep+0x347/0x480 [ 855.864472][ C0] exit_to_user_mode_loop+0x86/0x4b0 [ 855.869764][ C0] ? rcu_is_watching+0x12/0xc0 [ 855.874522][ C0] do_syscall_64+0x4ea/0xf80 [ 855.879209][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 855.885111][ C0] RIP: 0033:0x7fa65735b58e [ 855.889522][ C0] RSP: 002b:00007ffff078c9b8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e6 [ 855.897938][ C0] RAX: 0000000000000000 RBX: 000055557b302500 RCX: 00007fa65735b58e [ 855.906509][ C0] RDX: 00007ffff078ca10 RSI: 0000000000000000 RDI: 0000000000000000 [ 855.914720][ C0] RBP: 00007ffff078ca7c R08: 0000000000000000 R09: 0000000000000000 [ 855.922699][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000000008f1 [ 855.931100][ C0] R13: 0000000000000064 R14: 0000000000095ec3 R15: 00007ffff078cad0 [ 855.939075][ C0] [ 855.942089][ C0] rcu: rcu_preempt kthread starved for 5472 jiffies! g125145 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0 [ 855.953364][ C0] rcu: Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior. [ 855.963354][ C0] rcu: RCU grace-period kthread stack dump: [ 855.969230][ C0] task:rcu_preempt state:R running task stack:28408 pid:16 tgid:16 ppid:2 task_flags:0x208040 flags:0x00080000 [ 855.982876][ C0] Call Trace: [ 855.986137][ C0] [ 855.989053][ C0] ? __schedule+0xf65/0x5e10 [ 855.993630][ C0] __schedule+0xfe4/0x5e10 [ 855.998030][ C0] ? __lock_acquire+0x4a5/0x2630 [ 856.002966][ C0] ? __pfx___schedule+0x10/0x10 [ 856.007902][ C0] ? find_held_lock+0x2b/0x80 [ 856.012563][ C0] ? schedule+0x2bf/0x390 [ 856.016875][ C0] schedule+0xdd/0x390 [ 856.020934][ C0] schedule_timeout+0x127/0x280 [ 856.026256][ C0] ? __pfx_schedule_timeout+0x10/0x10 [ 856.031646][ C0] ? __pfx_process_timeout+0x10/0x10 [ 856.036949][ C0] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 856.042918][ C0] ? prepare_to_swait_event+0xdf/0x4a0 [ 856.048464][ C0] rcu_gp_fqs_loop+0x1a9/0xb00 [ 856.054258][ C0] ? __pfx_rcu_gp_fqs_loop+0x10/0x10 [ 856.059529][ C0] ? prepare_to_swait_event+0xdf/0x4a0 [ 856.064988][ C0] ? __pfx_rcu_gp_init+0x10/0x10 [ 856.069996][ C0] ? __pfx_rcu_gp_cleanup+0x10/0x10 [ 856.075182][ C0] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 856.080977][ C0] rcu_gp_kthread+0x21e/0x320 [ 856.085646][ C0] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 856.090840][ C0] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 856.096643][ C0] ? __kthread_parkme+0x18c/0x230 [ 856.101773][ C0] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 856.106976][ C0] kthread+0x3b3/0x730 [ 856.111044][ C0] ? __pfx_kthread+0x10/0x10 [ 856.115622][ C0] ? ret_from_fork+0x79/0xaf0 [ 856.120638][ C0] ? ret_from_fork+0x79/0xaf0 [ 856.125301][ C0] ? rcu_is_watching+0x12/0xc0 [ 856.130052][ C0] ? __pfx_kthread+0x10/0x10 [ 856.134708][ C0] ret_from_fork+0x754/0xaf0 [ 856.139583][ C0] ? __pfx_ret_from_fork+0x10/0x10 [ 856.144691][ C0] ? __switch_to+0x7b9/0x10c0 [ 856.149355][ C0] ? __pfx_kthread+0x10/0x10 [ 856.153938][ C0] ret_from_fork_asm+0x1a/0x30 [ 856.158703][ C0] [ 856.161715][ C0] rcu: Stack dump where RCU GP kthread last ran: [ 856.168024][ C0] CPU: 0 UID: 0 PID: 3411 Comm: kworker/R-bat_e Tainted: G U I L syzkaller #0 PREEMPT(full) [ 856.179361][ C0] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 856.186895][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 856.196945][ C0] Workqueue: bat_events batadv_dat_purge [ 856.202741][ C0] RIP: 0010:unwind_next_frame+0x11de/0x1ea0 [ 856.208924][ C0] Code: ff ff 80 3d 96 92 e9 0e 00 0f 85 85 f1 ff ff e9 f0 bb 6a ff 48 b8 00 00 00 00 00 fc ff df 48 8b 14 24 48 c1 ea 03 80 3c 02 00 <0f> 85 02 09 00 00 48 89 c8 4d 8b 7d 38 48 ba 00 00 00 00 00 fc ff [ 856.228631][ C0] RSP: 0018:ffffc90000006ed8 EFLAGS: 00000246 [ 856.236395][ C0] RAX: dffffc0000000000 RBX: 0000000000000002 RCX: ffffffff91634dfa [ 856.244646][ C0] RDX: 1ffff92000000df0 RSI: 0000000000000001 RDI: ffffffff90d8f9d4 [ 856.252623][ C0] RBP: ffffc90000006f90 R08: ffffffff91634dfe R09: 0000000000000007 [ 856.260595][ C0] R10: 0000000000000200 R11: 0000000000016f75 R12: ffffc90000006f98 [ 856.268743][ C0] R13: ffffc90000006f48 R14: 0000000000000005 R15: 0000000000000000 [ 856.276709][ C0] FS: 0000000000000000(0000) GS:ffff8881245e5000(0000) knlGS:0000000000000000 [ 856.285824][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 856.292401][ C0] CR2: 00007fa65819d9a0 CR3: 0000000075e88000 CR4: 00000000003526f0 [ 856.300397][ C0] Call Trace: [ 856.303673][ C0] [ 856.306503][ C0] ? kasan_save_track+0x14/0x30 [ 856.311482][ C0] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 856.317672][ C0] arch_stack_walk+0x94/0xf0 [ 856.322712][ C0] ? kasan_save_track+0x14/0x30 [ 856.327666][ C0] stack_trace_save+0x8e/0xc0 [ 856.332343][ C0] ? __pfx_stack_trace_save+0x10/0x10 [ 856.337722][ C0] ? br_nf_hook_thresh+0x2a4/0x420 [ 856.343205][ C0] ? __pfx_br_forward_finish+0x10/0x10 [ 856.348690][ C0] kasan_save_stack+0x30/0x50 [ 856.353403][ C0] ? kasan_save_stack+0x30/0x50 [ 856.358280][ C0] ? kasan_save_track+0x14/0x30 [ 856.363152][ C0] kasan_save_track+0x14/0x30 [ 856.367834][ C0] __kasan_slab_alloc+0x89/0x90 [ 856.372697][ C0] kmem_cache_alloc_noprof+0x2ad/0x780 [ 856.378418][ C0] ? br_multicast_count+0x8d/0xbc0 [ 856.383522][ C0] ? skb_clone+0x190/0x400 [ 856.388532][ C0] ? skb_clone+0x190/0x400 [ 856.393561][ C0] skb_clone+0x190/0x400 [ 856.397792][ C0] maybe_deliver+0xd4/0x180 [ 856.402298][ C0] br_flood+0x193/0x650 [ 856.406620][ C0] br_handle_frame_finish+0xf57/0x1f00 [ 856.412257][ C0] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 856.418311][ C0] ? __local_bh_enable_ip+0x9e/0x120 [ 856.423728][ C0] ? ip6t_do_table+0xc1d/0x1c90 [ 856.428561][ C0] ? __pfx_ip6t_do_table+0x10/0x10 [ 856.433654][ C0] ? nf_hook_slow+0x167/0x220 [ 856.438597][ C0] br_nf_hook_thresh+0x30d/0x420 [ 856.444046][ C0] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 856.449947][ C0] ? __pfx_br_nf_hook_thresh+0x10/0x10 [ 856.455488][ C0] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 856.461408][ C0] ? __pfx_nf_nat_ipv6_in+0x10/0x10 [ 856.466621][ C0] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 856.472692][ C0] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 856.478678][ C0] br_nf_pre_routing_finish_ipv6+0x769/0xfb0 [ 856.484811][ C0] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 856.491237][ C0] br_nf_pre_routing_ipv6+0x39c/0x8b0 [ 856.496725][ C0] ? __pfx_br_nf_pre_routing_ipv6+0x10/0x10 [ 856.502618][ C0] ? lock_acquire+0x17c/0x330 [ 856.507311][ C0] ? __pfx_br_nf_pre_routing_finish_ipv6+0x10/0x10 [ 856.514167][ C0] ? net_generic+0xea/0x2a0 [ 856.518694][ C0] br_nf_pre_routing+0x93b/0x1510 [ 856.523751][ C0] br_handle_frame+0xa68/0x1510 [ 856.528717][ C0] ? __pfx_br_handle_frame+0x10/0x10 [ 856.534124][ C0] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 856.540180][ C0] ? __pfx_br_handle_frame+0x10/0x10 [ 856.545773][ C0] __netif_receive_skb_core.constprop.0+0x6d7/0x3460 [ 856.552481][ C0] ? kmem_cache_free+0x143/0x720 [ 856.557420][ C0] ? find_held_lock+0x2b/0x80 [ 856.562371][ C0] ? ipv6_chk_mcast_addr+0x2b0/0x9a0 [ 856.567852][ C0] ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10 [ 856.575333][ C0] ? kfree_skbmem+0x19a/0x210 [ 856.580001][ C0] ? kfree_skbmem+0x19f/0x210 [ 856.584664][ C0] ? sk_skb_reason_drop+0x114/0x1b0 [ 856.590062][ C0] ? ip6_mc_input+0x51a/0xf50 [ 856.595126][ C0] ? __pfx_ip6_mc_input+0x10/0x10 [ 856.600922][ C0] ? __lock_acquire+0x4a5/0x2630 [ 856.605981][ C0] ? process_backlog+0x32a/0x1580 [ 856.611160][ C0] __netif_receive_skb_one_core+0xb0/0x1e0 [ 856.616992][ C0] ? __pfx___netif_receive_skb_one_core+0x10/0x10 [ 856.623883][ C0] ? lock_acquire+0x17c/0x330 [ 856.628655][ C0] ? process_backlog+0x32a/0x1580 [ 856.633681][ C0] ? process_backlog+0x32a/0x1580 [ 856.638891][ C0] __netif_receive_skb+0x1f/0x120 [ 856.644018][ C0] process_backlog+0x37a/0x1580 [ 856.648897][ C0] __napi_poll.constprop.0+0xaf/0x450 [ 856.654279][ C0] net_rx_action+0xa40/0xf20 [ 856.658890][ C0] ? __pfx_net_rx_action+0x10/0x10 [ 856.664095][ C0] ? __pfx_find_held_lock+0x10/0x10 [ 856.669735][ C0] ? mark_held_locks+0x40/0x70 [ 856.674874][ C0] handle_softirqs+0x1ea/0x910 [ 856.679648][ C0] ? __pfx_handle_softirqs+0x10/0x10 [ 856.684937][ C0] ? __batadv_dat_purge.part.0+0x294/0x3c0 [ 856.690949][ C0] ? __pfx_batadv_dat_to_purge+0x10/0x10 [ 856.697122][ C0] do_softirq+0xac/0xe0 [ 856.701294][ C0] [ 856.704207][ C0] [ 856.707185][ C0] __local_bh_enable_ip+0xf8/0x120 [ 856.712280][ C0] __batadv_dat_purge.part.0+0x294/0x3c0 [ 856.717904][ C0] ? process_one_work+0x80b/0x1840 [ 856.723034][ C0] batadv_dat_purge+0x4b/0xa0 [ 856.727733][ C0] process_one_work+0x9c2/0x1840 [ 856.732708][ C0] ? __pfx_process_one_work+0x10/0x10 [ 856.738284][ C0] ? assign_work+0x19c/0x250 [ 856.743063][ C0] rescuer_thread+0x8f1/0xf40 [ 856.747874][ C0] ? rescuer_thread+0x118/0xf40 [ 856.752912][ C0] ? __pfx_rescuer_thread+0x10/0x10 [ 856.758110][ C0] ? __kthread_parkme+0x18c/0x230 [ 856.763120][ C0] ? kthread+0x17d/0x730 [ 856.767346][ C0] ? __pfx_rescuer_thread+0x10/0x10 [ 856.772600][ C0] kthread+0x3b3/0x730 [ 856.776675][ C0] ? __pfx_kthread+0x10/0x10 [ 856.781266][ C0] ? ret_from_fork+0x79/0xaf0 [ 856.785925][ C0] ? ret_from_fork+0x79/0xaf0 [ 856.790596][ C0] ? rcu_is_watching+0x12/0xc0 [ 856.795353][ C0] ? __pfx_kthread+0x10/0x10 [ 856.800032][ C0] ret_from_fork+0x754/0xaf0 [ 856.804644][ C0] ? __pfx_ret_from_fork+0x10/0x10 [ 856.809764][ C0] ? __switch_to+0x7b9/0x10c0 [ 856.814454][ C0] ? __pfx_kthread+0x10/0x10 [ 856.819061][ C0] ret_from_fork_asm+0x1a/0x30 [ 856.823851][ C0]