last executing test programs: 4.191570407s ago: executing program 3 (id=4799): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x22004840}, 0x4001) sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)={0xfffffffffffffda7, 0x0, 0x300, 0x70bd2c, 0x25dfdbfe, {}, [@BATADV_ATTR_THROUGHPUT_OVERRIDE={0x0, 0x3b, 0xeb57}, @BATADV_ATTR_TT_TTVN={0x5, 0x11, 0xee}]}, 0x24}, 0x1, 0x0, 0x0, 0x4c894}, 0x4008800) sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000000040)={0x14, 0x0, 0x1, 0x70bd2c, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x20008810) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB='!'], 0x1ac}, 0x1, 0x0, 0x0, 0x44}, 0x40090) r0 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r0, &(0x7f0000000080)={{0x0, 0x8002, &(0x7f00000002c0)={0x0, 0xc4}, 0x2, 0x0, 0x0, 0x1}, 0x5}, 0x3, 0x0) 3.598897636s ago: executing program 2 (id=4802): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) close_range$auto(0x2, 0xa, 0xfffffffc) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x0, 0x0) r0 = openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0) read$auto_rng_chrdev_ops_core(r0, &(0x7f0000000040)=""/4096, 0xfffffe82) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) 3.555680288s ago: executing program 3 (id=4811): close_range$auto(0x2, 0x8, 0x0) openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000340), 0x189400, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/cgroup.threads\x00', 0x80302, 0x0) r0 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$auto_VHOST_SET_OWNER(r0, 0xaf01, 0x5) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) close_range$auto(0x2, 0x8, 0x0) 2.572468495s ago: executing program 2 (id=4804): socket$nl_generic(0x10, 0x3, 0x10) keyctl$auto(0x15, 0xffffffffffffffff, 0x8, 0x5, 0x4) mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x9, 0xc00000072, 0x8b72, 0x1000000002, 0x8000) mmap$auto(0x0, 0x2, 0x3, 0xeb6, 0xffffffffffffffff, 0x8000) getrandom$auto(0x0, 0x6000000, 0x3) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) 2.572330689s ago: executing program 3 (id=4805): close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto_KVM_GET_MSRS(r0, 0xaec7, 0x0) 2.571689398s ago: executing program 0 (id=4813): mmap$auto(0x0, 0x2000d, 0x4000000200df, 0xeb1, 0x404, 0x8000) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/neigh/vlan1/base_reachable_time\x00', 0x40400, 0x0) read$auto(r0, 0x0, 0x1ff) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x8002, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x3}, 0x3) r2 = open(0x0, 0x4242, 0xe1d2b27bdc14aabc) fallocate$auto(r2, 0x0, 0x7, 0x4cbd5d) 1.98823713s ago: executing program 0 (id=4807): openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, 0x0, 0x1000, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) bpf$auto(0x2, 0x0, 0x1) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x2003ec, 0x14) 1.888323728s ago: executing program 3 (id=4808): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0xb, 0x0, 0x5, 0x3, 0x2000000000210006, 0x0, 0x7, 0x5, 0x2, 0x7, 0xaf, 0x9, 0x2, 0x3, 0x105, 0x7, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8]}, 0x1fe, 0x81) sendmsg$auto_NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000001f40)={0x0, 0x0, &(0x7f0000001f00)={&(0x7f0000000180)=ANY=[@ANYBLOB='*', @ANYRES16, @ANYBLOB="010029bd"], 0x28}, 0x1, 0x0, 0x0, 0x4000}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1300"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 1.638205213s ago: executing program 1 (id=4809): close_range$auto(0x2, 0x8, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff001, 0x2) socket(0x29, 0x5, 0x0) r1 = open(&(0x7f00000000c0)='./cgroup\x00', 0x80400, 0xb5d1af1605322dd2) open_by_handle_at$auto(r1, &(0x7f0000001280)={0x8, 0x2, "0200000000000000"}, 0x6) sendfile$auto(r0, r0, 0x0, 0x2) 1.425643098s ago: executing program 0 (id=4810): openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/input/event1\x00', 0x34d802, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000180), 0x109802, 0x0) close_range$auto(0x2, r0, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x88000, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_GET_MSRS(r0, 0xc008ae88, &(0x7f0000000040)={0x7, 0x0, [{0x400000f5, 0x2, 0x6}]}) 1.406396397s ago: executing program 3 (id=4812): close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto_KVM_GET_MSRS(r0, 0x4068aea3, &(0x7f0000000440)={0xce}) 1.390065134s ago: executing program 1 (id=4814): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/zram0\x00', 0x6e642, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r0 = socket(0xa, 0x801, 0x84) r1 = socket(0xa, 0x5, 0x84) getsockopt$auto(r1, 0x84, 0x9, 0x0, &(0x7f0000000000)=0x9b) ppoll$auto(0x0, 0x7f, 0x0, 0x0, 0x8) setsockopt$auto(r0, 0x10000000084, 0x9, 0x0, 0x9c) 1.308146939s ago: executing program 2 (id=4815): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), r0) sendmsg$auto_ETHTOOL_MSG_TSINFO_GET(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)={0x34, r1, 0x1, 0x70bd27, 0x25dfdbfd, {}, [@ETHTOOL_A_TSINFO_HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x5}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x20040840}, 0x40000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000000008000) r2 = openat$auto_iommufd_fops_main(0xffffffffffffff9c, &(0x7f0000000000), 0x80001, 0x0) recvfrom$auto(0x3, 0x0, 0x800000000e, 0xfffff4a4, 0x0, 0xfffffffffffffffd) ioctl$auto(r2, 0x3b8b, 0x38) 1.119432375s ago: executing program 1 (id=4816): mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) socket(0x2b, 0x1, 0x1) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0xe, 0x9, 0x5, 0x14, 0x944, 0x1ffe4, 0x3, 0x6, 0x4, 0x9, 0x400005, 0x4000fff, 0x8000007, 0x8001, 0xd, 0x5, 0x3, 0x4, 0x7, 0x20, 0x309, 0x8, 0x0, 0x7fffffff, 0x3, 0x0, 0x0, 0x78, 0x0, 0x0, [0x0, 0x0, 0x0, 0x200, 0x9, 0x0, 0x0, 0x4, 0xffffffffffffffff, 0x0, 0x0, 0x4000000000000, 0x2000000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x82, 0x800000000002, 0x9, 0x0, 0xbec, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x10, 0xfffffffffffffffe, 0xffffffffffffd059, 0x0, 0x0, 0x0, 0x2961, 0x0, 0x2]}, 0x2001fb, 0x7f) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) r0 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x1f00, &(0x7f0000000100)={0x0, 0xfdef}, 0x2, 0x0, 0x7, 0xa505}, 0x700}, 0x7, 0x4008) 1.097320384s ago: executing program 2 (id=4817): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x3fd, 0x0) r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/controlC2\x00', 0xc0002, 0x0) ioctl$auto_XFS_IOC_ALLOCSP64(0xffffffffffffffff, 0x40305824, &(0x7f00000000c0)={0x926e, 0xc, 0xac1a346, 0x1, 0x0, 0xffffffffffffffff}) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc1105517, &(0x7f0000000200)={{@inferred, 0x1, 0xfffffffb, 0x400008, "3112d58500a8b47148e22af9ffb683dbede3d0bf828bbf100000e5e2f96ee50484b075ad15e48d00", @inferred=r1}, 0x2, 0x4, 0x4, @raw=0xfd, @enumerated={0x3, 0x7b01b24b, "9b53874f8b6e6e9ccb720ab291f8ad8f7282c4f6eb68854a06effcb1fa6185fa03c83b2066af766c696f472e66be74bdf73005027f0ce81be88dfb30644bdefc", 0xfffffffffffffffc, 0x9}, "7a9fc199a16a2311eacf2fc7ae1da978dc3e8090d70925450ece0bb32777702b07552d00000059a200"}) rt_sigqueueinfo$auto(0x0, 0xffff7b6f, &(0x7f0000000000)={@siginfo_0_0={0xf9, 0x14, 0x1, @_sigpoll={0xd}}}) r2 = socket(0x11, 0x3, 0x9) sendmmsg$auto(r2, &(0x7f00000001c0)={{&(0x7f0000000000), 0x5ac, &(0x7f0000000100)={&(0x7f0000000200), 0x22}, 0x5, 0x0, 0x5, 0xe}, 0x5}, 0x2, 0x100) 1.025612229s ago: executing program 3 (id=4818): socket(0x2, 0x3, 0xa) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x9, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0x6, 0xeb1, 0xffffffffffffffff, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0x400008, 0xdf, 0x38, 0xffffffffffffffff, 0x8000) 1.001972377s ago: executing program 0 (id=4819): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) prctl$auto_PR_GET_CHILD_SUBREAPER(0x25, 0x6, 0xfffffffffffffffe, 0x5, 0xfffffffffffff9fe) statmount$auto(0x0, &(0x7f0000000180)={0xb896, 0x1, 0x9, 0x400000, 0x22, 0x940, 0x1ffde, 0x0, 0x4, 0x7, 0xa, 0x6, 0xfffffffffffffffe, 0x8000000000000001, 0xb0, 0x7, 0x2, 0x3, 0x5, 0x7, 0xfffff7fe, 0x5, 0x2, 0x1000, 0x7, 0x9, 0x0, 0x1, 0x4, 0x0, 0xfffffffe, [0x0, 0x7fffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffeffa, 0x400000000, 0x0, 0x4, 0x1, 0x0, 0x0, 0x1000000, 0x0, 0x0, 0x0, 0x1, 0x4, 0x0, 0x0, 0x7, 0xffffffffff, 0x1, 0x0, 0x3, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb, 0x5757, 0x80000000000000, 0x2, 0x1, 0x8000000000000, 0x53d, 0x0, 0x0, 0x2]}, 0x7, 0x281) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) r0 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x900, &(0x7f0000000100)={0x0, 0xfc6}, 0x2, 0x0, 0x7, 0xa505}, 0x2}, 0x407, 0x4008) 863.172482ms ago: executing program 2 (id=4820): socket(0x10, 0x2, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x7, 0x0, 0x5, 0x3, 0x2000000000210006, 0x0, 0x7, 0x5, 0x2, 0x7, 0xaf, 0x9, 0x2, 0x3, 0x105, 0x7, 0x0, 0x0, 0x2}, 0x1fe, 0x81) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sendmsg$auto_NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000001f40)={0x0, 0x0, &(0x7f0000001f00)={&(0x7f0000000180)=ANY=[@ANYBLOB='*', @ANYRES16, @ANYBLOB="010029bd"], 0x28}, 0x1, 0x0, 0x0, 0x4000}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x400c890}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1300"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 676.345529ms ago: executing program 1 (id=4821): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/workqueue/cpumask_requested\x00', 0x0, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) r0 = getpid() process_vm_readv$auto(r0, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0) r1 = socket(0xa, 0x1, 0x84) setsockopt$auto(r1, 0x0, 0x40, 0x0, 0x6f7250c4) 384.891132ms ago: executing program 1 (id=4822): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x10, 0x2, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00022abd6c00fbdbdf250200000008000300000000000800010047c7e2"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="10002cbd7000fddbdf251c"], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a0027"], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 303.384359ms ago: executing program 0 (id=4823): mmap$auto(0x0, 0x20009, 0x2000000df, 0xeb1, 0x401, 0x8000) r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x2, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x801, 0x84) openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0) r1 = epoll_create$auto(0x8800001) epoll_ctl$auto(r1, 0x1, r0, 0x0) 179.665166ms ago: executing program 1 (id=4824): mmap$auto(0x0, 0x40008a, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) close_range$auto(0x0, 0x5, 0x0) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/020/001\x00', 0x209403, 0x0) r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0xc0482, 0x0) write$auto_sg_fops_sg(r0, 0x0, 0x0) dup2$auto(0x0, 0x3) 114.898451ms ago: executing program 0 (id=4825): mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/cpu1/online\x00', 0x62, 0x0) write$auto(r0, &(0x7f00000007c0)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef`\xd8\x9c\xf7?:\x1a\xc62\x911e\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\b};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xff\x7f\xd0UV\x11\xcb\xdd\x81\xbe\xde\f/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2|%\xbf\x02trg\x9a\xe7\x00\x85Z\x06?\x12\x98\x0f)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1;\xe4pd$\xd7\x1b\v\x82\r\f\xd0Hq\xd9\r\x88#\x89\x8d\xcd\x1e\x87N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8HR+\a\xb7R\t\n+\x7f\xd5H\x90G=\x9a\r\xb10\x1b\xf8\v\x11\v\xbb\xc8^\xa4\xe2\x05\x91|\x123\xc3:\xfd\xee\x04a\xc8\x12\xce\xa2\x12\xcb\x8c\x87f\xebGQ\xe9\x96\xd5E\x13a\xb7\x057\x1c&\xe0\x94\xa7\xfb\x9d;\xfa\xb1\x1b4a,\'\xb2Ym\xe1:\xbf\x8cs\x06\xa3u\x8d!\n\x80-\x9a\xbb;\xf4\xf3\xe1\x97\xfc8\xff\xa7\\\x8b\xf9\x95\x10$\xef\x1a #b\xfb\xfe\xe9\x06fK0\xdd\x84T,\xfa\xb5\x00\x83d\xbba\xd7\x7f\x00\x00\x00AN\x9d\xcb\x96\xc7\xe8\xe6\x8bC\xeb\xc7EZ\xc8\x1a\x81.f\tZ-sZ\x13n\xec\xa9\xbf\xd0$\xb9\xd8\x00\x00\x00\x00\x00\x00\x00\x00\x00\xec\xbd_r\xf16\xec\xf3\xbb[.\xf3\xef\xf8\x16x\x9e\xb3*:/L\xa0Kg\xf0\xa2\x84\xa3o\xcc\x9e\xd3\xeb\xd3(\xaa\x93g~\x01\x81\x1eV\xf1L\xfc\xad\xa9#O\xe4\x12\xd3\xbda\xbc\x9a\x9f+9\'\xc4\x13\xf0\xc88\x1d80?\xc2\a\af\xdc?-&\xedAd\x9c\xe5&\xb9\x14\xe1\x85 \xbf\x18\xfc:#\xcf\x7ffT\xefPb\xe1\xfa]\xcc\x8a\xe3\x99\x98u\x9bj>\x9d\xc2\x1fk\x87\x92\xfb(U\xa8\xcd4+\xf6e5],\xec\x84 \x1b\x10d\x1b@\x84X\xa1\xa8\xd7\xccO\xb0Qq\x1a\xa4<\\\x0e\xa4\x7f^\x1a|\xfd\xe6#\x00\x9e\x1d\x00k\x84\x1b\xa3\xb1O\xe0IzJRO\xf4,\xe5\xdb\x03CA\x13Q\x84\xbb\x88\xb4\xe3\xba\xf0/\xd0\x04\ny\a\x8d\x12h\xe22\xcb\"\xce\x00\x00', 0x5) ioctl$auto_USBDEVFS_CLAIMINTERFACE(0xffffffffffffffff, 0x8004550f, 0x0) r1 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/oom_adj\x00', 0x48402, 0x0) read$auto(r1, 0x0, 0x1f40) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) 0s ago: executing program 2 (id=4826): ioctl$auto_BLKFLSBUF(0xffffffffffffffff, 0x1261, 0x0) syz_genetlink_get_family_id$auto_macsec(0x0, 0xffffffffffffffff) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) ioctl$auto(0x3, 0x80047437, 0x10000000000402) r0 = openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) read$auto_mISDN_fops_timerdev(r0, &(0x7f0000001a00)=""/4097, 0x1001) ioctl$auto_IMADDTIMER(r0, 0x80044940, 0x0) kernel console output (not intermixed with test programs): .483311][T14271] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3144'. [ 440.571224][T14271] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3144'. [ 441.237314][T14287] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(16) [ 441.279520][T14287] device-mapper: ioctl: Invalid data size in the ioctl structure: 0 [ 443.328522][T14329] netlink: 334 bytes leftover after parsing attributes in process `syz.0.3169'. [ 445.687899][T14374] netlink: 342 bytes leftover after parsing attributes in process `syz.3.3186'. [ 447.477510][T14429] netlink: 342 bytes leftover after parsing attributes in process `syz.0.3205'. [ 449.708689][T14502] syz.0.3230 uses obsolete (PF_INET,SOCK_PACKET) [ 450.937601][T14530] netlink: 334 bytes leftover after parsing attributes in process `syz.3.3242'. [ 451.026190][T14537] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3244'. [ 451.297699][T14550] snd_aloop snd_aloop.0: Parsing timer source '^ˆ^¨µÆ ¿­—‹Y«òkùTd5ëj5)J‚ñ fy¿DÉ=j"ß>׌æɧ@ÓpÏ=Àh¥1Ú“•Ã@±k' failed with -22 [ 452.071151][T14569] FAULT_INJECTION: forcing a failure. [ 452.071151][T14569] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 452.095454][T14569] CPU: 0 UID: 0 PID: 14569 Comm: syz.1.3252 Tainted: G L syzkaller #0 PREEMPT(full) [ 452.095510][T14569] Tainted: [L]=SOFTLOCKUP [ 452.095523][T14569] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 452.095543][T14569] Call Trace: [ 452.095553][T14569] [ 452.095566][T14569] dump_stack_lvl+0x100/0x190 [ 452.095626][T14569] should_fail_ex.cold+0x5/0xa [ 452.095660][T14569] ? page_copy_sane+0x17c/0x2d0 [ 452.095719][T14569] copy_folio_from_iter_atomic+0x427/0x1e70 [ 452.095762][T14569] ? rcu_is_watching+0x12/0xc0 [ 452.095827][T14569] ? __pfx_copy_folio_from_iter_atomic+0x10/0x10 [ 452.095886][T14569] ? shmem_write_begin+0x1ba/0x420 [ 452.095943][T14569] ? __pfx_shmem_write_begin+0x10/0x10 [ 452.096007][T14569] ? balance_dirty_pages_ratelimited_flags+0x91/0x1170 [ 452.096057][T14569] generic_perform_write+0x4cb/0xa40 [ 452.096122][T14569] ? __pfx_generic_perform_write+0x10/0x10 [ 452.096178][T14569] ? file_update_time_flags+0x373/0x500 [ 452.096226][T14569] shmem_file_write_iter+0x10e/0x140 [ 452.096266][T14569] vfs_write+0x6ac/0x1070 [ 452.096323][T14569] ? __pfx_shmem_file_write_iter+0x10/0x10 [ 452.096373][T14569] ? __pfx_vfs_write+0x10/0x10 [ 452.096456][T14569] ksys_write+0x12a/0x250 [ 452.096510][T14569] ? __pfx_ksys_write+0x10/0x10 [ 452.096579][T14569] do_syscall_64+0x106/0xf80 [ 452.096619][T14569] ? clear_bhb_loop+0x40/0x90 [ 452.096663][T14569] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 452.096700][T14569] RIP: 0033:0x7f6f0b79c799 [ 452.096729][T14569] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 452.096763][T14569] RSP: 002b:00007f6f0c6d9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 452.096795][T14569] RAX: ffffffffffffffda RBX: 00007f6f0ba16090 RCX: 00007f6f0b79c799 [ 452.096819][T14569] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003 [ 452.096840][T14569] RBP: 00007f6f0b832bd9 R08: 0000000000000000 R09: 0000000000000000 [ 452.096861][T14569] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 452.096879][T14569] R13: 00007f6f0ba16128 R14: 00007f6f0ba16090 R15: 00007ffdc9981b18 [ 452.096918][T14569] [ 452.880743][T14586] netlink: 'syz.0.3261': attribute type 4 has an invalid length. [ 453.976733][T14607] usb usb3: usbfs: interface 0 claimed by hub while 'syz.3.3269' sets config #0 [ 454.889186][T14627] mmap: syz.1.3277 (14627) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 454.922598][T14627] bridge0: port 3(netdevsim1) entered blocking state [ 454.941569][T14627] bridge0: port 3(netdevsim1) entered disabled state [ 454.970555][T14627] netdevsim netdevsim1 netdevsim1: entered allmulticast mode [ 454.989166][T14627] netdevsim netdevsim1 netdevsim1: entered promiscuous mode [ 455.006754][T14627] bridge0: port 3(netdevsim1) entered blocking state [ 455.013841][T14627] bridge0: port 3(netdevsim1) entered forwarding state [ 455.285962][T14637] netlink: 302 bytes leftover after parsing attributes in process `syz.2.3281'. [ 455.506043][T14645] FAULT_INJECTION: forcing a failure. [ 455.506043][T14645] name failslab, interval 1, probability 0, space 0, times 0 [ 455.521330][T14645] CPU: 0 UID: 0 PID: 14645 Comm: syz.1.3284 Tainted: G L syzkaller #0 PREEMPT(full) [ 455.521390][T14645] Tainted: [L]=SOFTLOCKUP [ 455.521402][T14645] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 455.521423][T14645] Call Trace: [ 455.521434][T14645] [ 455.521456][T14645] dump_stack_lvl+0x100/0x190 [ 455.521518][T14645] should_fail_ex.cold+0x5/0xa [ 455.521557][T14645] ? tomoyo_init_log+0x1224/0x20c0 [ 455.521593][T14645] should_failslab+0xc2/0x120 [ 455.521628][T14645] __kmalloc_noprof+0xe0/0x850 [ 455.521688][T14645] tomoyo_init_log+0x1224/0x20c0 [ 455.521736][T14645] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 455.521807][T14645] ? __pfx_tomoyo_init_log+0x10/0x10 [ 455.521857][T14645] tomoyo_write_log2+0x2ed/0xbc0 [ 455.521901][T14645] tomoyo_supervisor+0x15e/0x1340 [ 455.521953][T14645] ? __pfx_tomoyo_supervisor+0x10/0x10 [ 455.522023][T14645] ? kasan_quarantine_put+0x104/0x240 [ 455.522079][T14645] ? tomoyo_check_path_acl+0x141/0x210 [ 455.522133][T14645] ? tomoyo_check_acl+0x1f7/0x410 [ 455.522188][T14645] tomoyo_path_permission+0x270/0x3b0 [ 455.522247][T14645] tomoyo_check_open_permission+0x37f/0x3c0 [ 455.522304][T14645] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 455.522401][T14645] ? do_raw_spin_lock+0x128/0x260 [ 455.522461][T14645] ? path_get+0x61/0x80 [ 455.522502][T14645] tomoyo_file_open+0x6b/0x90 [ 455.522547][T14645] security_file_open+0xb5/0x1e0 [ 455.522584][T14645] do_dentry_open+0x5aa/0x1660 [ 455.522620][T14645] ? security_inode_permission+0xbf/0x250 [ 455.522681][T14645] vfs_open+0x82/0x3f0 [ 455.522728][T14645] path_openat+0x208c/0x31a0 [ 455.522776][T14645] ? __pfx_path_openat+0x10/0x10 [ 455.522826][T14645] do_file_open+0x20e/0x430 [ 455.522864][T14645] ? __pfx_do_file_open+0x10/0x10 [ 455.522931][T14645] ? alloc_fd+0x476/0x790 [ 455.522967][T14645] ? do_getname+0x191/0x390 [ 455.523014][T14645] do_sys_openat2+0x10d/0x1e0 [ 455.523059][T14645] ? __pfx_do_sys_openat2+0x10/0x10 [ 455.523106][T14645] ? __fget_files+0x21f/0x3d0 [ 455.523171][T14645] __x64_sys_openat+0x12d/0x210 [ 455.523218][T14645] ? __pfx___x64_sys_openat+0x10/0x10 [ 455.523278][T14645] do_syscall_64+0x106/0xf80 [ 455.523317][T14645] ? clear_bhb_loop+0x40/0x90 [ 455.523360][T14645] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 455.523394][T14645] RIP: 0033:0x7f6f0b79c799 [ 455.523424][T14645] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 455.523465][T14645] RSP: 002b:00007f6f0c6fa028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 455.523499][T14645] RAX: ffffffffffffffda RBX: 00007f6f0ba15fa0 RCX: 00007f6f0b79c799 [ 455.523522][T14645] RDX: 0000000000080080 RSI: 0000200000000280 RDI: ffffffffffffff9c [ 455.523545][T14645] RBP: 00007f6f0b832bd9 R08: 0000000000000000 R09: 0000000000000000 [ 455.523567][T14645] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 455.523588][T14645] R13: 00007f6f0ba16038 R14: 00007f6f0ba15fa0 R15: 00007ffdc9981b18 [ 455.523633][T14645] [ 456.575293][T14658] netlink: 326 bytes leftover after parsing attributes in process `syz.2.3292'. [ 456.761817][T14664] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 457.172917][T14681] device-mapper: ioctl: name not supplied when creating device [ 457.530524][T14689] ptrace attach of "./syz-executor exec"[5823] was attempted by ""[14689] [ 457.726612][T14693] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888078005800 pfn:0x78000 [ 457.738504][T14693] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 457.747280][T14693] flags: 0xfff00000000240(workingset|head|node=0|zone=1|lastcpupid=0x7ff) [ 457.756161][T14693] page_type: f5(slab) [ 457.760218][T14693] raw: 00fff00000000240 ffff88813fe3cdc0 ffffea0000dcf610 ffffea0001d28810 [ 457.785423][T14693] raw: ffff888078005800 0000000800100004 00000000f5000000 0000000000000000 [ 457.794236][T14693] head: 00fff00000000240 ffff88813fe3cdc0 ffffea0000dcf610 ffffea0001d28810 [ 457.815701][T14693] head: ffff888078005800 0000000800100004 00000000f5000000 0000000000000000 [ 457.824535][T14693] head: 00fff00000000003 ffffea0001e00001 00000000ffffffff 00000000ffffffff [ 457.857525][T14693] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008 [ 457.895884][T14693] page dumped because: unmovable page [ 457.901401][T14693] page_owner tracks the page as allocated [ 457.910642][ T5176] ERROR: Out of memory at tomoyo_memory_ok. [ 457.936961][T14693] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x52820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 35, tgid 35 (kworker/u8:2), ts 113632225053, free_ts 113602587756 [ 457.985577][T14693] post_alloc_hook+0x153/0x170 [ 457.990480][T14693] get_page_from_freelist+0x111d/0x3140 [ 457.996175][T14693] __alloc_frozen_pages_noprof+0x27c/0x2ba0 [ 458.002602][T14693] alloc_pages_mpol+0x1fb/0x550 [ 458.035413][T14693] new_slab+0x43a/0x6d0 [ 458.039686][T14693] ___slab_alloc+0x2a0/0x850 [ 458.044367][T14693] __kmalloc_noprof+0x460/0x850 [ 458.081542][T14693] ieee802_11_parse_elems_full+0x177/0x3720 [ 458.090067][T14693] ieee80211_inform_bss+0x159/0x1150 [ 458.097462][T14693] cfg80211_inform_single_bss_data+0x898/0x1e20 [ 458.108872][T14693] cfg80211_inform_bss_data+0x237/0x3a00 [ 458.115161][T14693] cfg80211_inform_bss_frame_data+0x247/0x790 [ 458.141928][T14693] ieee80211_bss_info_update+0x310/0xab0 [ 458.165435][T14693] ieee80211_ibss_rx_queued_mgmt+0x1919/0x2f80 [ 458.171912][T14693] ieee80211_iface_work+0xbff/0x13d0 [ 458.196600][T14693] cfg80211_wiphy_work+0x446/0x5c0 [ 458.206961][T14693] page last free pid 5838 tgid 5838 stack trace: [ 458.213518][T14693] __free_frozen_pages+0x7e1/0x10d0 [ 458.221149][T14693] qlist_free_all+0x47/0xe0 [ 458.226874][T14693] kasan_quarantine_reduce+0x1a0/0x1f0 [ 458.235658][T14693] __kasan_slab_alloc+0x69/0x90 [ 458.241181][T14693] __kmalloc_noprof+0x2b9/0x850 [ 458.246969][T14693] tomoyo_realpath_from_path+0xb6/0x690 [ 458.252902][T14693] tomoyo_check_open_permission+0x2af/0x3c0 [ 458.288704][T14703] kvm: kvm [14702]: vcpu2, guest rIP: 0xfff0 Unhandled RDMSR(0x40000004) [ 458.299544][T14693] tomoyo_file_open+0x6b/0x90 [ 458.309783][T14693] security_file_open+0xb5/0x1e0 [ 458.320928][T14693] do_dentry_open+0x5aa/0x1660 [ 458.326415][T14693] vfs_open+0x82/0x3f0 [ 458.330579][T14693] path_openat+0x208c/0x31a0 [ 458.335241][T14693] do_file_open+0x20e/0x430 [ 458.346689][T14693] do_sys_openat2+0x10d/0x1e0 [ 458.351576][T14693] __x64_sys_openat+0x12d/0x210 [ 458.357033][T14693] do_syscall_64+0x106/0xf80 [ 461.192930][T14775] netlink: 334 bytes leftover after parsing attributes in process `syz.1.3333'. [ 462.406606][T14804] zswap: compressor not available [ 462.680953][T14796] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 462.735059][T14796] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 462.757294][T14796] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 462.811961][T14796] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 463.617371][T14835] netlink: 'syz.3.3353': attribute type 27 has an invalid length. [ 463.662543][T14835] netlink: 334 bytes leftover after parsing attributes in process `syz.3.3353'. [ 463.941159][T14842] bond0: option all_slaves_active: invalid value (7) [ 464.106003][ T5833] Bluetooth: hci1: command 0x0406 tx timeout [ 464.187482][T14846] netlink: 334 bytes leftover after parsing attributes in process `syz.3.3358'. [ 464.488990][T14850] snd_aloop snd_aloop.0: Parsing timer source '^ˆ^¨µÆ ¿­—‹Y«òkùTd5ëj5)J‚ñ fy¿DÉ=j"ß>׌æɧ@ÓpÏ=Àh¥1Ú“•Ã@±k' failed with -22 [ 464.745474][ T5833] Bluetooth: hci3: command 0x2016 tx timeout [ 464.828661][ T5833] Bluetooth: hci0: command 0x0c1a tx timeout [ 464.834892][ T5833] Bluetooth: hci2: command 0x0406 tx timeout [ 464.843844][T14853] bridge0: port 3(netdevsim1) entered blocking state [ 464.850891][T14853] bridge0: port 3(netdevsim1) entered disabled state [ 464.860328][T14853] netdevsim netdevsim0 netdevsim1: entered allmulticast mode [ 464.877795][T14853] netdevsim netdevsim0 netdevsim1: entered promiscuous mode [ 464.940415][T14853] bridge0: port 3(netdevsim1) entered blocking state [ 464.947411][T14853] bridge0: port 3(netdevsim1) entered forwarding state [ 466.098672][T14889] netlink: 342 bytes leftover after parsing attributes in process `syz.2.3369'. [ 466.994626][T14922] netlink: 326 bytes leftover after parsing attributes in process `syz.3.3379'. [ 467.762456][T14938] netlink: 334 bytes leftover after parsing attributes in process `syz.3.3384'. [ 467.772203][T14938] netlink: 334 bytes leftover after parsing attributes in process `syz.3.3384'. [ 468.008323][T14946] FAULT_INJECTION: forcing a failure. [ 468.008323][T14946] name failslab, interval 1, probability 0, space 0, times 0 [ 468.035161][T14946] CPU: 1 UID: 0 PID: 14946 Comm: syz.1.3388 Tainted: G L syzkaller #0 PREEMPT(full) [ 468.035212][T14946] Tainted: [L]=SOFTLOCKUP [ 468.035223][T14946] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 468.035242][T14946] Call Trace: [ 468.035252][T14946] [ 468.035262][T14946] dump_stack_lvl+0x100/0x190 [ 468.035324][T14946] should_fail_ex.cold+0x5/0xa [ 468.035364][T14946] should_failslab+0xc2/0x120 [ 468.035400][T14946] kmem_cache_alloc_node_noprof+0x81/0x6f0 [ 468.035452][T14946] ? __alloc_skb+0x140/0x710 [ 468.035492][T14946] __alloc_skb+0x140/0x710 [ 468.035529][T14946] ? __alloc_skb+0x5b7/0x710 [ 468.035560][T14946] ? __pfx___alloc_skb+0x10/0x10 [ 468.035589][T14946] ? is_bpf_text_address+0x8a/0x1a0 [ 468.035634][T14946] ? is_bpf_text_address+0x8a/0x1a0 [ 468.035678][T14946] ? bpf_ksym_find+0x124/0x1c0 [ 468.035716][T14946] alloc_skb_with_frags+0xe0/0x810 [ 468.035753][T14946] ? __lock_acquire+0x4a5/0x2630 [ 468.035797][T14946] ? arch_stack_walk+0xa6/0xf0 [ 468.035828][T14946] sock_alloc_send_pskb+0x801/0x980 [ 468.035869][T14946] ? __pfx_sock_alloc_send_pskb+0x10/0x10 [ 468.035905][T14946] ? __lock_acquire+0x4a5/0x2630 [ 468.035948][T14946] __ip_append_data+0x2291/0x46d0 [ 468.035993][T14946] ? __pfx_udplite_getfrag+0x10/0x10 [ 468.036113][T14946] ? ip_dst_mtu_maybe_forward.constprop.0+0x3df/0x750 [ 468.036168][T14946] ? ip_dst_mtu_maybe_forward.constprop.0+0x3e9/0x750 [ 468.036213][T14946] ? __pfx___ip_append_data+0x10/0x10 [ 468.036257][T14946] ip_make_skb+0x28b/0x310 [ 468.036298][T14946] ? __pfx_udplite_getfrag+0x10/0x10 [ 468.036347][T14946] ? __pfx_ip_make_skb+0x10/0x10 [ 468.036404][T14946] ? udp_sendmsg+0x17b6/0x2890 [ 468.036436][T14946] udp_sendmsg+0x17b6/0x2890 [ 468.036475][T14946] ? __pfx_udplite_getfrag+0x10/0x10 [ 468.036533][T14946] ? __pfx_udp_sendmsg+0x10/0x10 [ 468.036567][T14946] ? update_cfs_rq_load_avg+0x51/0x550 [ 468.036627][T14946] ? update_cfs_rq_load_avg+0x51/0x550 [ 468.036671][T14946] ? lock_acquire+0x1cf/0x380 [ 468.036712][T14946] udpv6_sendmsg+0x156c/0x2f60 [ 468.036790][T14946] ? rcu_is_watching+0x12/0xc0 [ 468.036834][T14946] ? aa_label_sk_perm+0x194/0x5f0 [ 468.036893][T14946] ? __pfx_udpv6_sendmsg+0x10/0x10 [ 468.036947][T14946] ? __pfx___might_resched+0x10/0x10 [ 468.037005][T14946] ? __pfx_aa_sk_perm+0x10/0x10 [ 468.037060][T14946] ? __pfx_udpv6_sendmsg+0x10/0x10 [ 468.037092][T14946] ? inet6_sendmsg+0x105/0x140 [ 468.037171][T14946] inet6_sendmsg+0x105/0x140 [ 468.037205][T14946] sock_write_iter+0x437/0x610 [ 468.037250][T14946] ? __pfx_sock_write_iter+0x10/0x10 [ 468.037304][T14946] ? bpf_lsm_file_permission+0x9/0x10 [ 468.037348][T14946] ? security_file_permission+0x76/0x210 [ 468.037378][T14946] ? rw_verify_area+0xce/0x6d0 [ 468.037421][T14946] vfs_write+0x6ac/0x1070 [ 468.037467][T14946] ? __pfx_sock_write_iter+0x10/0x10 [ 468.037511][T14946] ? __pfx_vfs_write+0x10/0x10 [ 468.037566][T14946] ? find_held_lock+0x2b/0x80 [ 468.037613][T14946] ksys_write+0x1f8/0x250 [ 468.037658][T14946] ? __pfx_ksys_write+0x10/0x10 [ 468.037712][T14946] do_syscall_64+0x106/0xf80 [ 468.037747][T14946] ? clear_bhb_loop+0x40/0x90 [ 468.037783][T14946] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 468.037814][T14946] RIP: 0033:0x7f6f0b79c799 [ 468.037840][T14946] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 468.037870][T14946] RSP: 002b:00007f6f0c6fa028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 468.037899][T14946] RAX: ffffffffffffffda RBX: 00007f6f0ba15fa0 RCX: 00007f6f0b79c799 [ 468.037919][T14946] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000003 [ 468.037936][T14946] RBP: 00007f6f0b832bd9 R08: 0000000000000000 R09: 0000000000000000 [ 468.037953][T14946] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 468.037970][T14946] R13: 00007f6f0ba16038 R14: 00007f6f0ba15fa0 R15: 00007ffdc9981b18 [ 468.038007][T14946] [ 468.577655][T14952] sg_write: data in/out 81/90 bytes for SCSI command 0x0-- guessing data in; [ 468.577655][T14952] program syz.3.3392 not setting count and/or reply_len properly [ 468.961227][T14966] vcan0: tx drop: invalid da for name 0x000000000000003f [ 469.851428][T14998] netlink: 25 bytes leftover after parsing attributes in process `syz.0.3409'. [ 470.636560][T15014] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3414'. [ 470.648719][T15014] netlink: 25 bytes leftover after parsing attributes in process `syz.2.3414'. [ 470.836590][T15017] netlink: 350 bytes leftover after parsing attributes in process `syz.2.3416'. [ 471.957991][T15046] base or size exceeds the MTRR width [ 472.047368][T15051] netlink: 'syz.0.3429': attribute type 14 has an invalid length. [ 472.068682][T15051] netlink: 330 bytes leftover after parsing attributes in process `syz.0.3429'. [ 472.160806][T15055] FAULT_INJECTION: forcing a failure. [ 472.160806][T15055] name failslab, interval 1, probability 0, space 0, times 0 [ 472.194173][T15055] CPU: 0 UID: 0 PID: 15055 Comm: syz.1.3430 Tainted: G L syzkaller #0 PREEMPT(full) [ 472.194233][T15055] Tainted: [L]=SOFTLOCKUP [ 472.194246][T15055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 472.194268][T15055] Call Trace: [ 472.194278][T15055] [ 472.194291][T15055] dump_stack_lvl+0x100/0x190 [ 472.194350][T15055] should_fail_ex.cold+0x5/0xa [ 472.194394][T15055] should_failslab+0xc2/0x120 [ 472.194430][T15055] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 472.194482][T15055] ? __pmd_alloc+0xbf/0x9c0 [ 472.194531][T15055] __pmd_alloc+0xbf/0x9c0 [ 472.194569][T15055] ? mt_find+0x687/0x8e0 [ 472.194624][T15055] huge_pte_alloc+0x5ee/0x730 [ 472.194675][T15055] hugetlb_fault+0x363/0x1450 [ 472.194727][T15055] ? __pfx_hugetlb_fault+0x10/0x10 [ 472.194788][T15055] ? find_vma+0xbf/0x140 [ 472.194818][T15055] ? __pfx_find_vma+0x10/0x10 [ 472.194857][T15055] handle_mm_fault+0x5f1/0xa20 [ 472.194914][T15055] do_user_addr_fault+0x74c/0x12f0 [ 472.194986][T15055] exc_page_fault+0x6f/0xd0 [ 472.195029][T15055] asm_exc_page_fault+0x26/0x30 [ 472.195064][T15055] RIP: 0010:__put_user_4+0xd/0x20 [ 472.195105][T15055] Code: 66 89 01 31 c9 0f 01 ca e9 c0 d0 03 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca e9 97 d0 03 00 0f 1f 80 00 00 00 00 90 90 90 [ 472.195137][T15055] RSP: 0018:ffffc90003a87e58 EFLAGS: 00050202 [ 472.195163][T15055] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000007 [ 472.195183][T15055] RDX: 0000000000000000 RSI: ffffffff8255f251 RDI: ffff88807850245c [ 472.195204][T15055] RBP: 0000000000000002 R08: 0000000000000001 R09: 00000000000001ca [ 472.195223][T15055] R10: 0000000000000200 R11: 0000000000000000 R12: 1ffff92000750fce [ 472.195245][T15055] R13: 0000000000000007 R14: 0000000000000000 R15: dffffc0000000000 [ 472.195280][T15055] ? __might_fault+0x111/0x140 [ 472.195338][T15055] __do_sys_prctl+0xd67/0x2330 [ 472.195392][T15055] ? __pfx___do_sys_prctl+0x10/0x10 [ 472.195456][T15055] do_syscall_64+0x106/0xf80 [ 472.195495][T15055] ? clear_bhb_loop+0x40/0x90 [ 472.195536][T15055] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 472.195571][T15055] RIP: 0033:0x7f6f0b79c799 [ 472.195607][T15055] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 472.195642][T15055] RSP: 002b:00007f6f0c6fa028 EFLAGS: 00000246 ORIG_RAX: 000000000000009d [ 472.195674][T15055] RAX: ffffffffffffffda RBX: 00007f6f0ba15fa0 RCX: 00007f6f0b79c799 [ 472.195697][T15055] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000002 [ 472.195718][T15055] RBP: 00007f6f0b832bd9 R08: 0000000000000001 R09: 0000000000000000 [ 472.195740][T15055] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000 [ 472.195761][T15055] R13: 00007f6f0ba16038 R14: 00007f6f0ba15fa0 R15: 00007ffdc9981b18 [ 472.195808][T15055] [ 472.686804][T15066] netlink: 330 bytes leftover after parsing attributes in process `syz.1.3435'. [ 472.850814][T15074] netlink: 334 bytes leftover after parsing attributes in process `syz.3.3440'. [ 473.467079][T15095] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3447'. [ 473.489446][T15095] netlink: 17 bytes leftover after parsing attributes in process `syz.0.3447'. [ 474.419279][T15123] netlink: 146 bytes leftover after parsing attributes in process `syz.2.3459'. [ 474.920155][T15137] __nla_validate_parse: 1 callbacks suppressed [ 474.920185][T15137] netlink: 342 bytes leftover after parsing attributes in process `syz.2.3465'. [ 475.097434][T15141] FAULT_INJECTION: forcing a failure. [ 475.097434][T15141] name failslab, interval 1, probability 0, space 0, times 0 [ 475.115467][T15141] CPU: 1 UID: 0 PID: 15141 Comm: syz.2.3466 Tainted: G L syzkaller #0 PREEMPT(full) [ 475.115521][T15141] Tainted: [L]=SOFTLOCKUP [ 475.115534][T15141] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 475.115556][T15141] Call Trace: [ 475.115567][T15141] [ 475.115581][T15141] dump_stack_lvl+0x100/0x190 [ 475.115643][T15141] should_fail_ex.cold+0x5/0xa [ 475.115684][T15141] ? tomoyo_init_log+0x1224/0x20c0 [ 475.115721][T15141] should_failslab+0xc2/0x120 [ 475.115757][T15141] __kmalloc_noprof+0xe0/0x850 [ 475.115832][T15141] tomoyo_init_log+0x1224/0x20c0 [ 475.115880][T15141] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 475.115946][T15141] ? __pfx_tomoyo_init_log+0x10/0x10 [ 475.115995][T15141] tomoyo_write_log2+0x2ed/0xbc0 [ 475.116040][T15141] tomoyo_supervisor+0x15e/0x1340 [ 475.116093][T15141] ? __pfx_tomoyo_supervisor+0x10/0x10 [ 475.116164][T15141] ? kasan_quarantine_put+0x104/0x240 [ 475.116222][T15141] ? tomoyo_check_path_acl+0x141/0x210 [ 475.116278][T15141] ? tomoyo_check_acl+0x1f7/0x410 [ 475.116335][T15141] tomoyo_path_permission+0x270/0x3b0 [ 475.116392][T15141] tomoyo_check_open_permission+0x34d/0x3c0 [ 475.116449][T15141] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 475.116547][T15141] ? do_raw_spin_lock+0x128/0x260 [ 475.116600][T15141] ? path_get+0x61/0x80 [ 475.116642][T15141] tomoyo_file_open+0x6b/0x90 [ 475.116689][T15141] security_file_open+0xb5/0x1e0 [ 475.116727][T15141] do_dentry_open+0x5aa/0x1660 [ 475.116773][T15141] ? security_inode_permission+0xbf/0x250 [ 475.116836][T15141] vfs_open+0x82/0x3f0 [ 475.116886][T15141] path_openat+0x208c/0x31a0 [ 475.116936][T15141] ? __pfx_path_openat+0x10/0x10 [ 475.116988][T15141] do_file_open+0x20e/0x430 [ 475.117027][T15141] ? __pfx_do_file_open+0x10/0x10 [ 475.117094][T15141] ? alloc_fd+0x476/0x790 [ 475.117132][T15141] ? do_getname+0x191/0x390 [ 475.117179][T15141] do_sys_openat2+0x10d/0x1e0 [ 475.117225][T15141] ? __pfx_do_sys_openat2+0x10/0x10 [ 475.117285][T15141] __x64_sys_openat+0x12d/0x210 [ 475.117331][T15141] ? __pfx___x64_sys_openat+0x10/0x10 [ 475.117393][T15141] do_syscall_64+0x106/0xf80 [ 475.117463][T15141] ? clear_bhb_loop+0x40/0x90 [ 475.117508][T15141] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 475.117545][T15141] RIP: 0033:0x7f85d339c799 [ 475.117575][T15141] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 475.117609][T15141] RSP: 002b:00007f85d428e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 475.117643][T15141] RAX: ffffffffffffffda RBX: 00007f85d3615fa0 RCX: 00007f85d339c799 [ 475.117666][T15141] RDX: 0000000000000002 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 475.117688][T15141] RBP: 00007f85d3432bd9 R08: 0000000000000000 R09: 0000000000000000 [ 475.117708][T15141] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 475.117729][T15141] R13: 00007f85d3616038 R14: 00007f85d3615fa0 R15: 00007ffe4353c208 [ 475.117783][T15141] [ 476.335537][T15163] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 477.091906][T15182] vivid-007: ================= START STATUS ================= [ 477.158219][T15182] vivid-007: Generate PTS: true [ 477.179114][T15182] vivid-007: Generate SCR: true [ 477.225863][T15182] tpg source WxH: 320x240 (Y'CbCr) [ 477.231539][T15182] tpg field: 1 [ 477.234992][T15182] tpg crop: (0,0)/320x240 [ 477.245968][T15182] tpg compose: (0,0)/320x240 [ 477.253334][T15182] tpg colorspace: 8 [ 477.285823][T15182] tpg transfer function: 0/0 [ 477.290600][T15182] tpg Y'CbCr encoding: 0/0 [ 477.325729][T15182] tpg quantization: 0/0 [ 477.330069][T15182] tpg RGB range: 0/2 [ 477.334018][T15182] vivid-007: ================== END STATUS ================== [ 478.013051][T15210] netlink: 'syz.1.3492': attribute type 19 has an invalid length. [ 478.031650][T15203] zswap: compressor not available [ 478.037277][T15205] overlayfs: "check_copy_up" module option is obsolete [ 478.045004][T15210] netlink: 334 bytes leftover after parsing attributes in process `syz.1.3492'. [ 478.451748][T15225] ERROR: Out of memory at tomoyo_memory_ok. [ 478.464102][T15225] ERROR: Domain ' /sbin/init /etc/init.d/rcS /etc/init.d/S50sshd /sbin/start-stop-daemon /usr/sbin/sshd /usr/libexec/sshd-session /bin/sh /root/syz-executor /root/syz-executor /newroot/871/file0' not defined. [ 479.026751][T15250] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3508'. [ 479.038584][T15250] netlink: 'syz.2.3508': attribute type 7 has an invalid length. [ 480.942205][T15313] random: crng reseeded on system resumption [ 481.024914][T15313] hub 1-0:1.0: USB hub found [ 481.040160][T15313] hub 1-0:1.0: 1 port detected [ 481.518684][T15329] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3539'. [ 481.660889][T15335] netlink: 198 bytes leftover after parsing attributes in process `syz.2.3541'. [ 482.233501][T15356] FAULT_INJECTION: forcing a failure. [ 482.233501][T15356] name failslab, interval 1, probability 0, space 0, times 0 [ 482.250762][T15356] CPU: 1 UID: 0 PID: 15356 Comm: syz.2.3551 Tainted: G L syzkaller #0 PREEMPT(full) [ 482.250818][T15356] Tainted: [L]=SOFTLOCKUP [ 482.250831][T15356] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 482.250852][T15356] Call Trace: [ 482.250863][T15356] [ 482.250876][T15356] dump_stack_lvl+0x100/0x190 [ 482.250935][T15356] should_fail_ex.cold+0x5/0xa [ 482.250975][T15356] should_failslab+0xc2/0x120 [ 482.251011][T15356] __kmalloc_cache_noprof+0x7a/0x6f0 [ 482.251085][T15356] ? alloc_tty_struct+0x96/0x8c0 [ 482.251232][T15356] ? ptmx_open+0x102/0x3c0 [ 482.251302][T15356] alloc_tty_struct+0x96/0x8c0 [ 482.251348][T15356] ? __mutex_unlock_slowpath+0x15c/0x790 [ 482.251395][T15356] ? __pfx_alloc_tty_struct+0x10/0x10 [ 482.251444][T15356] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 482.251500][T15356] tty_init_dev.part.0+0x20/0x470 [ 482.251548][T15356] tty_init_dev+0x60/0x80 [ 482.251593][T15356] ptmx_open+0x15e/0x3c0 [ 482.251626][T15356] ? __pfx_ptmx_open+0x10/0x10 [ 482.251659][T15356] chrdev_open+0x234/0x6a0 [ 482.251695][T15356] ? __pfx_apparmor_file_open+0x10/0x10 [ 482.251747][T15356] ? __pfx_chrdev_open+0x10/0x10 [ 482.251783][T15356] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 482.251830][T15356] do_dentry_open+0x6d8/0x1660 [ 482.251863][T15356] ? __pfx_chrdev_open+0x10/0x10 [ 482.251909][T15356] vfs_open+0x82/0x3f0 [ 482.251956][T15356] path_openat+0x208c/0x31a0 [ 482.252007][T15356] ? __pfx_path_openat+0x10/0x10 [ 482.252068][T15356] do_file_open+0x20e/0x430 [ 482.252106][T15356] ? __pfx_do_file_open+0x10/0x10 [ 482.252179][T15356] ? alloc_fd+0x476/0x790 [ 482.252217][T15356] ? do_getname+0x191/0x390 [ 482.252263][T15356] do_sys_openat2+0x10d/0x1e0 [ 482.252309][T15356] ? __pfx_do_sys_openat2+0x10/0x10 [ 482.252358][T15356] ? __fget_files+0x21f/0x3d0 [ 482.252423][T15356] __x64_sys_openat+0x12d/0x210 [ 482.252470][T15356] ? __pfx___x64_sys_openat+0x10/0x10 [ 482.252533][T15356] do_syscall_64+0x106/0xf80 [ 482.252574][T15356] ? clear_bhb_loop+0x40/0x90 [ 482.252619][T15356] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 482.252657][T15356] RIP: 0033:0x7f85d339c799 [ 482.252686][T15356] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 482.252721][T15356] RSP: 002b:00007f85d428e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 482.252754][T15356] RAX: ffffffffffffffda RBX: 00007f85d3615fa0 RCX: 00007f85d339c799 [ 482.252776][T15356] RDX: 0000000000000000 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 482.252798][T15356] RBP: 00007f85d3432bd9 R08: 0000000000000000 R09: 0000000000000000 [ 482.252820][T15356] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 482.252840][T15356] R13: 00007f85d3616038 R14: 00007f85d3615fa0 R15: 00007ffe4353c208 [ 482.252885][T15356] [ 482.993417][T15367] netlink: 338 bytes leftover after parsing attributes in process `syz.0.3555'. [ 485.069378][T15410] netlink: 'syz.0.3573': attribute type 64 has an invalid length. [ 485.088868][T15410] netlink: 74 bytes leftover after parsing attributes in process `syz.0.3573'. [ 486.933636][T15449] mkiss: ax0: crc mode is auto. [ 487.320408][T15460] netlink: 342 bytes leftover after parsing attributes in process `syz.1.3591'. [ 488.080159][T15477] FAULT_INJECTION: forcing a failure. [ 488.080159][T15477] name failslab, interval 1, probability 0, space 0, times 0 [ 488.093753][T15477] CPU: 0 UID: 0 PID: 15477 Comm: syz.0.3598 Tainted: G L syzkaller #0 PREEMPT(full) [ 488.093810][T15477] Tainted: [L]=SOFTLOCKUP [ 488.093839][T15477] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 488.093861][T15477] Call Trace: [ 488.093872][T15477] [ 488.093885][T15477] dump_stack_lvl+0x100/0x190 [ 488.093946][T15477] should_fail_ex.cold+0x5/0xa [ 488.093985][T15477] ? tomoyo_init_log+0x1224/0x20c0 [ 488.094021][T15477] should_failslab+0xc2/0x120 [ 488.094058][T15477] __kmalloc_noprof+0xe0/0x850 [ 488.094120][T15477] tomoyo_init_log+0x1224/0x20c0 [ 488.094168][T15477] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 488.094234][T15477] ? __pfx_tomoyo_init_log+0x10/0x10 [ 488.094283][T15477] tomoyo_write_log2+0x2ed/0xbc0 [ 488.094328][T15477] tomoyo_supervisor+0x15e/0x1340 [ 488.094380][T15477] ? __pfx_tomoyo_supervisor+0x10/0x10 [ 488.094445][T15477] ? kasan_quarantine_put+0x104/0x240 [ 488.094502][T15477] ? tomoyo_check_path_acl+0x141/0x210 [ 488.094558][T15477] ? tomoyo_check_acl+0x1f7/0x410 [ 488.094613][T15477] tomoyo_path_permission+0x270/0x3b0 [ 488.094672][T15477] tomoyo_check_open_permission+0x37f/0x3c0 [ 488.094730][T15477] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 488.094827][T15477] ? do_raw_spin_lock+0x128/0x260 [ 488.094891][T15477] ? path_get+0x61/0x80 [ 488.094934][T15477] tomoyo_file_open+0x6b/0x90 [ 488.094980][T15477] security_file_open+0xb5/0x1e0 [ 488.095016][T15477] do_dentry_open+0x5aa/0x1660 [ 488.095052][T15477] ? security_inode_permission+0xbf/0x250 [ 488.095114][T15477] vfs_open+0x82/0x3f0 [ 488.095162][T15477] path_openat+0x208c/0x31a0 [ 488.095211][T15477] ? __pfx_path_openat+0x10/0x10 [ 488.095263][T15477] do_file_open+0x20e/0x430 [ 488.095303][T15477] ? __pfx_do_file_open+0x10/0x10 [ 488.095361][T15477] ? alloc_fd+0x476/0x790 [ 488.095394][T15477] ? do_getname+0x191/0x390 [ 488.095440][T15477] do_sys_openat2+0x10d/0x1e0 [ 488.095485][T15477] ? __pfx_do_sys_openat2+0x10/0x10 [ 488.095543][T15477] ? __fget_files+0x21f/0x3d0 [ 488.095608][T15477] __x64_sys_openat+0x12d/0x210 [ 488.095656][T15477] ? __pfx___x64_sys_openat+0x10/0x10 [ 488.095719][T15477] do_syscall_64+0x106/0xf80 [ 488.095761][T15477] ? clear_bhb_loop+0x40/0x90 [ 488.095805][T15477] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 488.095849][T15477] RIP: 0033:0x7fedc119c799 [ 488.095879][T15477] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 488.095914][T15477] RSP: 002b:00007fedc2010028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 488.095946][T15477] RAX: ffffffffffffffda RBX: 00007fedc1415fa0 RCX: 00007fedc119c799 [ 488.095968][T15477] RDX: 0000000000060000 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 488.095991][T15477] RBP: 00007fedc1232bd9 R08: 0000000000000000 R09: 0000000000000000 [ 488.096012][T15477] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 488.096033][T15477] R13: 00007fedc1416038 R14: 00007fedc1415fa0 R15: 00007ffec5761238 [ 488.096079][T15477] [ 489.157272][T15490] FAULT_INJECTION: forcing a failure. [ 489.157272][T15490] name failslab, interval 1, probability 0, space 0, times 0 [ 489.226326][T15490] CPU: 0 UID: 0 PID: 15490 Comm: syz.2.3603 Tainted: G L syzkaller #0 PREEMPT(full) [ 489.226375][T15490] Tainted: [L]=SOFTLOCKUP [ 489.226385][T15490] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 489.226404][T15490] Call Trace: [ 489.226415][T15490] [ 489.226429][T15490] dump_stack_lvl+0x100/0x190 [ 489.226489][T15490] should_fail_ex.cold+0x5/0xa [ 489.226531][T15490] should_failslab+0xc2/0x120 [ 489.226568][T15490] __kmalloc_cache_noprof+0x7a/0x6f0 [ 489.226614][T15490] ? snd_seq_prioq_new+0x3f/0x110 [ 489.226759][T15490] snd_seq_prioq_new+0x3f/0x110 [ 489.226797][T15490] snd_seq_queue_alloc+0x12b/0x590 [ 489.226840][T15490] snd_seq_ioctl_create_queue+0xa9/0x370 [ 489.226934][T15490] call_seq_client_ctl+0xa3/0x130 [ 489.226986][T15490] snd_seq_kernel_client_ctl+0x77/0xd0 [ 489.227037][T15490] alloc_seq_queue+0xdb/0x180 [ 489.227088][T15490] ? __pfx_alloc_seq_queue+0x10/0x10 [ 489.227162][T15490] ? mark_held_locks+0x40/0x70 [ 489.227203][T15490] ? _raw_spin_unlock_irq+0x23/0x50 [ 489.227240][T15490] ? lockdep_hardirqs_on+0x78/0x100 [ 489.227286][T15490] snd_seq_oss_open+0x2b2/0xa10 [ 489.227350][T15490] odev_open+0x79/0xc0 [ 489.227388][T15490] ? __pfx_odev_open+0x10/0x10 [ 489.227428][T15490] soundcore_open+0x2e3/0x5a0 [ 489.227559][T15490] ? __pfx_soundcore_open+0x10/0x10 [ 489.227598][T15490] chrdev_open+0x234/0x6a0 [ 489.227667][T15490] ? __pfx_apparmor_file_open+0x10/0x10 [ 489.227710][T15490] ? __pfx_chrdev_open+0x10/0x10 [ 489.227744][T15490] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 489.227781][T15490] do_dentry_open+0x6d8/0x1660 [ 489.227809][T15490] ? __pfx_chrdev_open+0x10/0x10 [ 489.227843][T15490] vfs_open+0x82/0x3f0 [ 489.227881][T15490] path_openat+0x208c/0x31a0 [ 489.227920][T15490] ? __pfx_path_openat+0x10/0x10 [ 489.227959][T15490] do_file_open+0x20e/0x430 [ 489.227990][T15490] ? __pfx_do_file_open+0x10/0x10 [ 489.228050][T15490] ? alloc_fd+0x476/0x790 [ 489.228087][T15490] ? do_getname+0x191/0x390 [ 489.228125][T15490] do_sys_openat2+0x10d/0x1e0 [ 489.228161][T15490] ? __pfx_do_sys_openat2+0x10/0x10 [ 489.228199][T15490] ? __fget_files+0x21f/0x3d0 [ 489.228250][T15490] __x64_sys_openat+0x12d/0x210 [ 489.228287][T15490] ? __pfx___x64_sys_openat+0x10/0x10 [ 489.228356][T15490] do_syscall_64+0x106/0xf80 [ 489.228389][T15490] ? clear_bhb_loop+0x40/0x90 [ 489.228425][T15490] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 489.228456][T15490] RIP: 0033:0x7f85d339c799 [ 489.228481][T15490] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 489.228511][T15490] RSP: 002b:00007f85d428e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 489.228540][T15490] RAX: ffffffffffffffda RBX: 00007f85d3615fa0 RCX: 00007f85d339c799 [ 489.228560][T15490] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 489.228578][T15490] RBP: 00007f85d3432bd9 R08: 0000000000000000 R09: 0000000000000000 [ 489.228595][T15490] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 489.228612][T15490] R13: 00007f85d3616038 R14: 00007f85d3615fa0 R15: 00007ffe4353c208 [ 489.228649][T15490] [ 490.060610][T15497] capability: warning: `syz.1.3605' uses 32-bit capabilities (legacy support in use) [ 490.463684][T15504] ACPI: Enabling force_remove is not supported anymore. Please report to linux-acpi@vger.kernel.org if you depend on this functionality [ 491.152518][T15520] netlink: 330 bytes leftover after parsing attributes in process `syz.3.3613'. [ 491.437737][T15533] netlink: 338 bytes leftover after parsing attributes in process `syz.2.3618'. [ 491.541388][T15537] netlink: 'syz.3.3619': attribute type 28 has an invalid length. [ 491.568475][T15537] netlink: 334 bytes leftover after parsing attributes in process `syz.3.3619'. [ 492.274227][T15550] netlink: 198 bytes leftover after parsing attributes in process `syz.1.3625'. [ 492.844458][T15573] netlink: 330 bytes leftover after parsing attributes in process `syz.0.3632'. [ 493.351535][T15583] netlink: 334 bytes leftover after parsing attributes in process `syz.0.3636'. [ 493.450270][T15587] [U] [ 493.453564][T15587] [U] [ 493.456341][T15587] [U] [ 493.459117][T15587] [U] [ 493.475816][T15587] [U] [ 493.478726][T15587] [U] [ 493.481488][T15587] [U] [ 493.484246][T15587] [U] [ 493.512239][T15587] [U] [ 493.515053][T15587] [U] [ 493.517998][T15587] [U] [ 493.520771][T15587] [U] [ 493.532845][T15587] [U] [ 493.535652][T15587] [U] [ 493.538406][T15587] [U] [ 493.541167][T15587] [U] [ 493.545896][T15591] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3637'. [ 493.557764][T15587] [U] [ 493.560576][T15587] [U] [ 493.563416][T15587] [U] [ 493.566244][T15587] [U] [ 493.570827][T15587] [U] [ 493.573605][T15587] [U] [ 493.576541][T15587] [U] [ 493.579329][T15587] [U] [ 493.583958][T15591] hsr_slave_0: left promiscuous mode [ 493.589323][T15587] [U] [ 493.589413][T15587] [U] [ 493.589469][T15587] [U] [ 493.589523][T15587] [U] [ 493.615644][T15587] [U] [ 493.618544][T15587] [U] [ 493.621344][T15587] [U] [ 493.624092][T15587] [U] [ 493.635250][T15587] [U] [ 493.638191][T15587] [U] [ 493.641113][T15587] [U] [ 493.643968][T15587] [U] [ 493.659073][T15587] [U] [ 493.662059][T15587] [U] [ 493.664820][T15587] [U] [ 493.667593][T15587] [U] [ 493.684537][T15587] [U] [ 493.687351][T15587] [U] [ 493.690108][T15587] [U] [ 493.693471][T15587] [U] [ 493.695838][T15591] hsr_slave_1: left promiscuous mode [ 493.718165][T15587] [U] [ 493.721073][T15587] [U] [ 493.723839][T15587] [U] [ 493.726605][T15587] [U] [ 493.732723][T15587] [U] [ 493.735530][T15587] [U] [ 493.738292][T15587] [U] [ 493.741116][T15587] [U] [ 493.745046][T15587] [U] [ 493.747820][T15587] [U] [ 493.750591][T15587] [U] [ 493.753443][T15587] [U] [ 493.762467][T15587] [U] [ 493.765276][T15587] [U] [ 493.768828][T15587] [U] [ 493.771601][T15587] [U] [ 493.775538][T15587] [U] [ 493.778327][T15587] [U] [ 493.781351][T15587] [U] [ 493.784223][T15587] [U] [ 493.808276][T15595] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3641'. [ 493.820335][T15587] [U] [ 493.823141][T15587] [U] [ 493.825962][T15587] [U] [ 493.828746][T15587] [U] [ 493.885540][T15587] [U] [ 493.888455][T15587] [U] [ 493.891237][T15587] [U] [ 493.893989][T15587] [U] [ 493.920043][T15587] [U] [ 493.922883][T15587] [U] [ 493.925666][T15587] [U] [ 493.928436][T15587] [U] [ 493.958334][T15587] [U] [ 493.961151][T15587] [U] [ 493.963948][T15587] [U] [ 493.966724][T15587] [U] [ 493.981969][T15587] [U] [ 493.984870][T15587] [U] [ 493.987667][T15587] [U] [ 493.990511][T15587] [U] [ 494.023555][T15587] [U] [ 494.026389][T15587] [U] [ 494.029237][T15587] [U] [ 494.032147][T15587] [U] [ 494.095987][T15587] [U] [ 494.098807][T15587] [U] [ 494.101576][T15587] [U] [ 494.104432][T15587] [U] [ 494.146906][T15587] [U] [ 494.149734][T15587] [U] [ 494.152595][T15587] [U] [ 494.155376][T15587] [U] [ 494.182779][T15587] [U] [ 494.185669][T15587] [U] [ 494.188466][T15587] [U] [ 494.191224][T15587] [U] [ 494.212215][T15587] [U] [ 494.215061][T15587] [U] [ 494.217837][T15587] [U] [ 494.220598][T15587] [U] [ 494.243613][T15587] [U] [ 494.246685][T15587] [U] [ 494.249452][T15587] [U] [ 494.252241][T15587] [U] [ 494.274362][T15587] [U] [ 494.277156][T15587] [U] [ 494.280011][T15587] [U] [ 494.282864][T15587] [U] [ 494.308862][T15587] [U] [ 494.311905][T15587] [U] [ 494.315361][T15587] [U] [ 494.318126][T15587] [U] [ 494.339210][T15587] [U] [ 495.371684][T15629] netlink: 25 bytes leftover after parsing attributes in process `syz.1.3661'. [ 497.574614][T15680] netlink: 'syz.0.3675': attribute type 4 has an invalid length. [ 498.221805][T15695] netlink: 342 bytes leftover after parsing attributes in process `syz.1.3681'. [ 498.820034][T15717] netlink: 21 bytes leftover after parsing attributes in process `syz.3.3690'. [ 499.106798][T15730] netlink: 342 bytes leftover after parsing attributes in process `syz.2.3696'. [ 499.505562][T15744] FAULT_INJECTION: forcing a failure. [ 499.505562][T15744] name failslab, interval 1, probability 0, space 0, times 0 [ 499.521767][T15744] CPU: 0 UID: 0 PID: 15744 Comm: syz.1.3701 Tainted: G L syzkaller #0 PREEMPT(full) [ 499.521824][T15744] Tainted: [L]=SOFTLOCKUP [ 499.521836][T15744] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 499.521857][T15744] Call Trace: [ 499.521867][T15744] [ 499.521880][T15744] dump_stack_lvl+0x100/0x190 [ 499.521939][T15744] should_fail_ex.cold+0x5/0xa [ 499.521981][T15744] should_failslab+0xc2/0x120 [ 499.522017][T15744] __kmalloc_cache_noprof+0x7a/0x6f0 [ 499.522064][T15744] ? wakeup_source_device_create+0x46/0x2e0 [ 499.522229][T15744] wakeup_source_device_create+0x46/0x2e0 [ 499.522301][T15744] wakeup_source_sysfs_add+0x1c/0x90 [ 499.522367][T15744] wakeup_source_register+0x154/0x3e0 [ 499.522439][T15744] ep_create_wakeup_source+0x1df/0x2e0 [ 499.522500][T15744] ? __pfx_ep_create_wakeup_source+0x10/0x10 [ 499.522571][T15744] ? do_epoll_ctl+0x1012/0x36a0 [ 499.522605][T15744] ? do_epoll_ctl+0x1012/0x36a0 [ 499.522651][T15744] do_epoll_ctl+0x1eee/0x36a0 [ 499.522710][T15744] ? __pfx_do_epoll_ctl+0x10/0x10 [ 499.522743][T15744] ? find_held_lock+0x2b/0x80 [ 499.522775][T15744] ? __might_fault+0xc5/0x140 [ 499.522823][T15744] ? __might_fault+0xc5/0x140 [ 499.522887][T15744] ? __x64_sys_epoll_ctl+0x15c/0x1e0 [ 499.522922][T15744] __x64_sys_epoll_ctl+0x15c/0x1e0 [ 499.522967][T15744] ? __pfx___x64_sys_epoll_ctl+0x10/0x10 [ 499.523017][T15744] do_syscall_64+0x106/0xf80 [ 499.523061][T15744] ? clear_bhb_loop+0x40/0x90 [ 499.523104][T15744] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 499.523142][T15744] RIP: 0033:0x7f6f0b79c799 [ 499.523171][T15744] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 499.523206][T15744] RSP: 002b:00007f6f0c6fa028 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9 [ 499.523246][T15744] RAX: ffffffffffffffda RBX: 00007f6f0ba15fa0 RCX: 00007f6f0b79c799 [ 499.523269][T15744] RDX: 0000000000000003 RSI: 0000000000000001 RDI: 0000000000000004 [ 499.523290][T15744] RBP: 00007f6f0b832bd9 R08: 0000000000000000 R09: 0000000000000000 [ 499.523312][T15744] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 499.523333][T15744] R13: 00007f6f0ba16038 R14: 00007f6f0ba15fa0 R15: 00007ffdc9981b18 [ 499.523379][T15744] [ 501.791132][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 501.797787][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 502.758326][T15799] netlink: 86 bytes leftover after parsing attributes in process `syz.0.3723'. [ 503.637163][T15834] netlink: 322 bytes leftover after parsing attributes in process `syz.2.3733'. [ 505.279857][T15894] zswap: compressor  not available [ 505.292920][T15900] Kernel: The 'panic_print' parameter is now deprecated. Please use 'panic_sys_info' and 'panic_console_replay' instead. [ 506.210247][T15915] FAULT_INJECTION: forcing a failure. [ 506.210247][T15915] name fail_futex, interval 1, probability 0, space 0, times 1 [ 506.236535][T15915] CPU: 0 UID: 0 PID: 15915 Comm: syz.1.3761 Tainted: G L syzkaller #0 PREEMPT(full) [ 506.236594][T15915] Tainted: [L]=SOFTLOCKUP [ 506.236607][T15915] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 506.236627][T15915] Call Trace: [ 506.236639][T15915] [ 506.236652][T15915] dump_stack_lvl+0x100/0x190 [ 506.236713][T15915] should_fail_ex.cold+0x5/0xa [ 506.236755][T15915] get_futex_key+0x1d2/0x1620 [ 506.236826][T15915] ? __pfx_get_futex_key+0x10/0x10 [ 506.236871][T15915] ? lock_acquire+0x1cf/0x380 [ 506.236923][T15915] futex_wake+0xea/0x530 [ 506.236973][T15915] ? proc_fail_nth_write+0x9f/0x220 [ 506.237016][T15915] ? find_held_lock+0x2b/0x80 [ 506.237049][T15915] ? __pfx_futex_wake+0x10/0x10 [ 506.237106][T15915] ? ksys_write+0x190/0x250 [ 506.237161][T15915] ? ksys_write+0x190/0x250 [ 506.237223][T15915] do_futex+0x32b/0x350 [ 506.237269][T15915] ? __pfx_do_futex+0x10/0x10 [ 506.237323][T15915] __x64_sys_futex+0x34f/0x4d0 [ 506.237376][T15915] ? fput+0x79/0x100 [ 506.237413][T15915] ? __pfx___x64_sys_futex+0x10/0x10 [ 506.237457][T15915] ? ksys_write+0x1ac/0x250 [ 506.237522][T15915] ? __pfx_ksys_write+0x10/0x10 [ 506.237589][T15915] do_syscall_64+0x106/0xf80 [ 506.237630][T15915] ? clear_bhb_loop+0x40/0x90 [ 506.237674][T15915] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 506.237711][T15915] RIP: 0033:0x7f6f0b79c799 [ 506.237740][T15915] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 506.237776][T15915] RSP: 002b:00007f6f0c6d90e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 506.237809][T15915] RAX: ffffffffffffffda RBX: 00007f6f0ba16098 RCX: 00007f6f0b79c799 [ 506.237833][T15915] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f6f0ba1609c [ 506.237855][T15915] RBP: 00007f6f0ba16090 R08: 0000000000000000 R09: 0000000000000000 [ 506.237876][T15915] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 506.237898][T15915] R13: 00007f6f0ba16128 R14: 00007ffdc9981a30 R15: 00007ffdc9981b18 [ 506.237942][T15915] [ 506.784216][T15924] netlink: set zone limit has 8 unknown bytes [ 506.865084][T15924] netlink: set zone limit has 8 unknown bytes [ 507.519855][T15955] netlink: 'syz.3.3777': attribute type 4 has an invalid length. [ 508.730952][T15994] netlink: 334 bytes leftover after parsing attributes in process `syz.0.3792'. [ 508.920450][T15999] FAULT_INJECTION: forcing a failure. [ 508.920450][T15999] name fail_futex, interval 1, probability 0, space 0, times 0 [ 508.956007][T15999] CPU: 0 UID: 0 PID: 15999 Comm: syz.2.3793 Tainted: G L syzkaller #0 PREEMPT(full) [ 508.956063][T15999] Tainted: [L]=SOFTLOCKUP [ 508.956076][T15999] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 508.956097][T15999] Call Trace: [ 508.956107][T15999] [ 508.956120][T15999] dump_stack_lvl+0x100/0x190 [ 508.956177][T15999] should_fail_ex.cold+0x5/0xa [ 508.956219][T15999] get_futex_key+0x1d2/0x1620 [ 508.956268][T15999] ? __pfx_get_futex_key+0x10/0x10 [ 508.956307][T15999] ? rcu_is_watching+0x12/0xc0 [ 508.956360][T15999] ? vfs_writev+0x1d5/0xe10 [ 508.956409][T15999] ? kfree+0x2ec/0x6b0 [ 508.956453][T15999] ? rw_verify_area+0xce/0x6d0 [ 508.956512][T15999] futex_wake+0xea/0x530 [ 508.956569][T15999] ? __pfx_futex_wake+0x10/0x10 [ 508.956641][T15999] do_futex+0x32b/0x350 [ 508.956688][T15999] ? __pfx_do_futex+0x10/0x10 [ 508.956747][T15999] ? __fget_files+0x21f/0x3d0 [ 508.956811][T15999] __x64_sys_futex+0x34f/0x4d0 [ 508.956863][T15999] ? __pfx___x64_sys_futex+0x10/0x10 [ 508.956911][T15999] ? __pfx_do_writev+0x10/0x10 [ 508.956975][T15999] do_syscall_64+0x106/0xf80 [ 508.957024][T15999] ? clear_bhb_loop+0x40/0x90 [ 508.957073][T15999] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 508.957110][T15999] RIP: 0033:0x7f85d339c799 [ 508.957139][T15999] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 508.957173][T15999] RSP: 002b:00007f85d428e0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 508.957206][T15999] RAX: ffffffffffffffda RBX: 00007f85d3615fa8 RCX: 00007f85d339c799 [ 508.957229][T15999] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f85d3615fac [ 508.957252][T15999] RBP: 00007f85d3615fa0 R08: 0000000000000000 R09: 0000000000000000 [ 508.957274][T15999] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 508.957296][T15999] R13: 00007f85d3616038 R14: 00007ffe4353c120 R15: 00007ffe4353c208 [ 508.957342][T15999] [ 510.931065][T16048] netlink: 346 bytes leftover after parsing attributes in process `syz.1.3811'. [ 511.318991][T16057] netlink: 334 bytes leftover after parsing attributes in process `syz.2.3815'. [ 511.345619][T16059] netlink: 146 bytes leftover after parsing attributes in process `syz.1.3816'. [ 511.498912][T16063] netlink: 338 bytes leftover after parsing attributes in process `syz.1.3817'. [ 512.500688][T16105] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3834'. [ 512.510847][T16105] macsec0: entered promiscuous mode [ 512.516826][T16105] macsec0: entered allmulticast mode [ 512.522889][T16105] veth1_macvtap: entered allmulticast mode [ 512.651876][T16110] syz.0.3835 (16110): /proc/16107/oom_adj is deprecated, please use /proc/16107/oom_score_adj instead. [ 515.506929][T16155] netlink: 74 bytes leftover after parsing attributes in process `syz.2.3851'. [ 515.652874][T16167] netlink: 142 bytes leftover after parsing attributes in process `syz.0.3854'. [ 517.790543][T16202] ima: policy update failed [ 517.855657][ T29] audit: type=1802 audit(1772544640.866:15): pid=16202 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.3867" res=0 errno=0 [ 518.420876][T16216] FAULT_INJECTION: forcing a failure. [ 518.420876][T16216] name failslab, interval 1, probability 0, space 0, times 0 [ 518.435320][T16216] CPU: 1 UID: 0 PID: 16216 Comm: syz.2.3874 Tainted: G L syzkaller #0 PREEMPT(full) [ 518.435369][T16216] Tainted: [L]=SOFTLOCKUP [ 518.435380][T16216] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 518.435399][T16216] Call Trace: [ 518.435408][T16216] [ 518.435419][T16216] dump_stack_lvl+0x100/0x190 [ 518.435472][T16216] should_fail_ex.cold+0x5/0xa [ 518.435507][T16216] should_failslab+0xc2/0x120 [ 518.435537][T16216] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 518.435579][T16216] ? security_file_alloc+0x34/0x2c0 [ 518.435608][T16216] ? trace_kmem_cache_alloc+0xf3/0x120 [ 518.435645][T16216] security_file_alloc+0x34/0x2c0 [ 518.435675][T16216] init_file+0x95/0x480 [ 518.435708][T16216] alloc_empty_file+0x73/0x1c0 [ 518.435743][T16216] alloc_file_pseudo+0x13a/0x230 [ 518.435781][T16216] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 518.435816][T16216] ? inode_init_always_gfp+0xd0e/0x1040 [ 518.435874][T16216] sock_alloc_file+0x50/0x210 [ 518.435912][T16216] do_accept+0x242/0x530 [ 518.435938][T16216] ? 0xffffffff81000000 [ 518.435960][T16216] ? do_raw_spin_lock+0x128/0x260 [ 518.436004][T16216] ? __pfx_do_accept+0x10/0x10 [ 518.436051][T16216] ? 0xffffffff81000000 [ 518.436071][T16216] __sys_accept4+0x108/0x200 [ 518.436099][T16216] ? __pfx___sys_accept4+0x10/0x10 [ 518.436136][T16216] __x64_sys_accept+0x74/0xb0 [ 518.436173][T16216] ? lockdep_hardirqs_on+0x78/0x100 [ 518.436207][T16216] do_syscall_64+0x106/0xf80 [ 518.436242][T16216] ? clear_bhb_loop+0x40/0x90 [ 518.436282][T16216] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 518.436312][T16216] RIP: 0033:0x7f85d339c799 [ 518.436335][T16216] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 518.436363][T16216] RSP: 002b:00007f85d428e028 EFLAGS: 00000246 ORIG_RAX: 000000000000002b [ 518.436391][T16216] RAX: ffffffffffffffda RBX: 00007f85d3615fa0 RCX: 00007f85d339c799 [ 518.436410][T16216] RDX: ffffffff81000000 RSI: ffffffffffffffff RDI: 0000000000000003 [ 518.436429][T16216] RBP: 00007f85d3432bd9 R08: 0000000000000000 R09: 0000000000000000 [ 518.436445][T16216] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 518.436462][T16216] R13: 00007f85d3616038 R14: 00007f85d3615fa0 R15: 00007ffe4353c208 [ 518.436490][T16216] ? 0xffffffff81000000 [ 518.436517][T16216] [ 519.291696][T16237] netlink: 130 bytes leftover after parsing attributes in process `syz.3.3882'. [ 519.832347][ T29] audit: type=1800 audit(1772544642.846:16): pid=16242 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.3884" name="dbroot" dev="configfs" ino=50335 res=0 errno=0 [ 519.869994][T16242] db_root: cannot open: 0 [ 520.725240][T16265] input: jJǸ-J86Ö‘ as /devices/virtual/input/input11 [ 522.581458][T16297] netlink: 334 bytes leftover after parsing attributes in process `syz.1.3894'. [ 522.821670][ T5833] Bluetooth: hci1: Malformed LE Event: 0x0b [ 524.110184][T16331] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 525.763801][T16377] netlink: 146 bytes leftover after parsing attributes in process `syz.3.3928'. [ 525.899393][T16379] netlink: 334 bytes leftover after parsing attributes in process `syz.3.3929'. [ 526.957433][T16395] netlink: 342 bytes leftover after parsing attributes in process `syz.1.3943'. [ 528.599739][ T5833] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260 [ 528.599782][ T5833] Bluetooth: hci3: unexpected subevent 0x0e length: 725 > 15 [ 528.615645][ T5833] Bluetooth: hci3: Unable to find connection for dst 00:a2:f2:94:be:c8 sid 0x4f [ 529.747410][T16448] netlink: 146 bytes leftover after parsing attributes in process `syz.0.3955'. [ 531.246541][T16476] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3966'. [ 531.317535][T16480] netlink: 5 bytes leftover after parsing attributes in process `syz.3.3966'. [ 531.404346][T16480] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3966'. [ 534.334604][T16516] netlink: 110 bytes leftover after parsing attributes in process `syz.1.3979'. [ 535.075858][T16537] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 535.442714][T16549] netlink: 342 bytes leftover after parsing attributes in process `syz.1.3993'. [ 535.782991][T16556] netlink: 342 bytes leftover after parsing attributes in process `syz.1.3996'. [ 537.630850][T16598] netlink: 342 bytes leftover after parsing attributes in process `syz.2.4012'. [ 537.912122][T16604] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4014'. [ 538.076740][T16604] netlink: 13 bytes leftover after parsing attributes in process `syz.2.4014'. [ 538.095426][T16604] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4014'. [ 538.632401][T16620] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4020'. [ 539.170855][T16638] netlink: 146 bytes leftover after parsing attributes in process `syz.2.4026'. [ 539.324829][T16646] netlink: 'syz.2.4028': attribute type 4 has an invalid length. [ 539.740881][T16642] ERROR: Out of memory at tomoyo_memory_ok. [ 540.611960][T16662] netlink: 334 bytes leftover after parsing attributes in process `syz.3.4034'. [ 540.798328][T16666] netlink: 342 bytes leftover after parsing attributes in process `syz.1.4037'. [ 540.835554][T16666] IPv6: NLM_F_CREATE should be specified when creating new route [ 540.847218][T16666] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 540.855192][T16666] IPv6: NLM_F_CREATE should be set when creating new route [ 540.862782][T16666] IPv6: NLM_F_CREATE should be set when creating new route [ 540.939218][T16672] netlink: 330 bytes leftover after parsing attributes in process `syz.0.4048'. [ 542.141416][T16703] netlink: 'syz.0.4052': attribute type 4 has an invalid length. [ 542.165462][T16703] netlink: 314 bytes leftover after parsing attributes in process `syz.0.4052'. [ 543.812331][T16748] netlink: 'syz.1.4069': attribute type 27 has an invalid length. [ 543.822011][T16748] netlink: 334 bytes leftover after parsing attributes in process `syz.1.4069'. [ 544.144760][T16759] FAULT_INJECTION: forcing a failure. [ 544.144760][T16759] name failslab, interval 1, probability 0, space 0, times 0 [ 544.159668][T16759] CPU: 1 UID: 0 PID: 16759 Comm: syz.0.4074 Tainted: G L syzkaller #0 PREEMPT(full) [ 544.159722][T16759] Tainted: [L]=SOFTLOCKUP [ 544.159734][T16759] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 544.159756][T16759] Call Trace: [ 544.159767][T16759] [ 544.159781][T16759] dump_stack_lvl+0x100/0x190 [ 544.159841][T16759] should_fail_ex.cold+0x5/0xa [ 544.159890][T16759] should_failslab+0xc2/0x120 [ 544.159927][T16759] __kmalloc_cache_noprof+0x7a/0x6f0 [ 544.159981][T16759] ? tomoyo_write_log2+0x333/0xbc0 [ 544.160030][T16759] tomoyo_write_log2+0x333/0xbc0 [ 544.160075][T16759] tomoyo_supervisor+0x15e/0x1340 [ 544.160126][T16759] ? __pfx_tomoyo_supervisor+0x10/0x10 [ 544.160193][T16759] ? kasan_quarantine_put+0x104/0x240 [ 544.160252][T16759] ? tomoyo_check_path_acl+0x141/0x210 [ 544.160307][T16759] ? tomoyo_check_acl+0x1f7/0x410 [ 544.160362][T16759] tomoyo_path_permission+0x270/0x3b0 [ 544.160421][T16759] tomoyo_check_open_permission+0x37f/0x3c0 [ 544.160478][T16759] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 544.160575][T16759] ? do_raw_spin_lock+0x128/0x260 [ 544.160629][T16759] ? path_get+0x61/0x80 [ 544.160672][T16759] tomoyo_file_open+0x6b/0x90 [ 544.160719][T16759] security_file_open+0xb5/0x1e0 [ 544.160754][T16759] do_dentry_open+0x5aa/0x1660 [ 544.160790][T16759] ? security_inode_permission+0xbf/0x250 [ 544.160858][T16759] vfs_open+0x82/0x3f0 [ 544.160907][T16759] path_openat+0x208c/0x31a0 [ 544.160972][T16759] ? __pfx_path_openat+0x10/0x10 [ 544.161019][T16759] do_file_open+0x20e/0x430 [ 544.161054][T16759] ? __pfx_do_file_open+0x10/0x10 [ 544.161115][T16759] ? alloc_fd+0x476/0x790 [ 544.161153][T16759] ? do_getname+0x191/0x390 [ 544.161197][T16759] do_sys_openat2+0x10d/0x1e0 [ 544.161239][T16759] ? __pfx_do_sys_openat2+0x10/0x10 [ 544.161296][T16759] __x64_sys_openat+0x12d/0x210 [ 544.161339][T16759] ? __pfx___x64_sys_openat+0x10/0x10 [ 544.161397][T16759] do_syscall_64+0x106/0xf80 [ 544.161436][T16759] ? clear_bhb_loop+0x40/0x90 [ 544.161476][T16759] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 544.161511][T16759] RIP: 0033:0x7fedc119c799 [ 544.161539][T16759] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 544.161573][T16759] RSP: 002b:00007fedc2010028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 544.161606][T16759] RAX: ffffffffffffffda RBX: 00007fedc1415fa0 RCX: 00007fedc119c799 [ 544.161655][T16759] RDX: 0000000000020803 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 544.161678][T16759] RBP: 00007fedc1232bd9 R08: 0000000000000000 R09: 0000000000000000 [ 544.161698][T16759] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 544.161719][T16759] R13: 00007fedc1416038 R14: 00007fedc1415fa0 R15: 00007ffec5761238 [ 544.161762][T16759] [ 544.330224][T16761] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4076'. [ 545.061423][T16779] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 546.337622][T16816] netlink: 342 bytes leftover after parsing attributes in process `syz.2.4096'. [ 546.401045][T16818] netlink: 302 bytes leftover after parsing attributes in process `syz.3.4097'. [ 546.500986][T16822] netlink: 146 bytes leftover after parsing attributes in process `syz.0.4099'. [ 546.929929][T16831] netlink: 146 bytes leftover after parsing attributes in process `syz.0.4102'. [ 548.856727][T16867] zswap: compressor not available [ 549.533448][T16880] netlink: 342 bytes leftover after parsing attributes in process `syz.1.4118'. [ 549.565622][T16886] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4117'. [ 549.589961][T16884] phram: not enough arguments [ 550.176231][T16899] zswap: compressor not available [ 550.734995][T16920] FAULT_INJECTION: forcing a failure. [ 550.734995][T16920] name failslab, interval 1, probability 0, space 0, times 0 [ 550.805193][T16920] CPU: 1 UID: 0 PID: 16920 Comm: syz.2.4131 Tainted: G L syzkaller #0 PREEMPT(full) [ 550.805244][T16920] Tainted: [L]=SOFTLOCKUP [ 550.805270][T16920] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 550.805290][T16920] Call Trace: [ 550.805302][T16920] [ 550.805315][T16920] dump_stack_lvl+0x100/0x190 [ 550.805369][T16920] should_fail_ex.cold+0x5/0xa [ 550.805404][T16920] should_failslab+0xc2/0x120 [ 550.805435][T16920] __kmalloc_cache_noprof+0x7a/0x6f0 [ 550.805472][T16920] ? __io_uring_add_tctx_node+0x16f/0x3b0 [ 550.805604][T16920] ? alloc_file_pseudo+0x1a5/0x230 [ 550.805647][T16920] __io_uring_add_tctx_node+0x16f/0x3b0 [ 550.805698][T16920] ? __pfx___io_uring_add_tctx_node+0x10/0x10 [ 550.805745][T16920] ? __anon_inode_getfile+0x17c/0x280 [ 550.805783][T16920] io_uring_setup.cold+0x1a25/0x1d09 [ 550.805838][T16920] ? __pfx_io_uring_setup+0x10/0x10 [ 550.805890][T16920] ? __pfx_do_futex+0x10/0x10 [ 550.805945][T16920] ? xfd_validate_state+0x129/0x190 [ 550.805997][T16920] __x64_sys_io_uring_setup+0xc2/0x170 [ 550.806032][T16920] do_syscall_64+0x106/0xf80 [ 550.806066][T16920] ? clear_bhb_loop+0x40/0x90 [ 550.806101][T16920] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 550.806131][T16920] RIP: 0033:0x7f85d339c799 [ 550.806156][T16920] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 550.806185][T16920] RSP: 002b:00007f85d428e028 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 550.806215][T16920] RAX: ffffffffffffffda RBX: 00007f85d3615fa0 RCX: 00007f85d339c799 [ 550.806234][T16920] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006 [ 550.806261][T16920] RBP: 00007f85d3432bd9 R08: 0000000000000000 R09: 0000000000000000 [ 550.806279][T16920] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 550.806296][T16920] R13: 00007f85d3616038 R14: 00007f85d3615fa0 R15: 00007ffe4353c208 [ 550.806334][T16920] [ 551.642882][T16933] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4135'. [ 551.911485][T16937] FAULT_INJECTION: forcing a failure. [ 551.911485][T16937] name failslab, interval 1, probability 0, space 0, times 0 [ 551.955572][T16937] CPU: 0 UID: 0 PID: 16937 Comm: syz.1.4136 Tainted: G L syzkaller #0 PREEMPT(full) [ 551.955626][T16937] Tainted: [L]=SOFTLOCKUP [ 551.955639][T16937] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 551.955659][T16937] Call Trace: [ 551.955670][T16937] [ 551.955682][T16937] dump_stack_lvl+0x100/0x190 [ 551.955741][T16937] should_fail_ex.cold+0x5/0xa [ 551.955781][T16937] ? tomoyo_init_log+0x1224/0x20c0 [ 551.955817][T16937] should_failslab+0xc2/0x120 [ 551.955853][T16937] __kmalloc_noprof+0xe0/0x850 [ 551.955912][T16937] tomoyo_init_log+0x1224/0x20c0 [ 551.955959][T16937] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 551.956024][T16937] ? __pfx_tomoyo_init_log+0x10/0x10 [ 551.956073][T16937] tomoyo_write_log2+0x2ed/0xbc0 [ 551.956117][T16937] tomoyo_supervisor+0x15e/0x1340 [ 551.956184][T16937] ? __pfx_tomoyo_supervisor+0x10/0x10 [ 551.956249][T16937] ? kasan_quarantine_put+0x104/0x240 [ 551.956306][T16937] ? tomoyo_check_path_acl+0x141/0x210 [ 551.956362][T16937] ? tomoyo_check_acl+0x1f7/0x410 [ 551.956417][T16937] tomoyo_path_permission+0x270/0x3b0 [ 551.956474][T16937] tomoyo_check_open_permission+0x37f/0x3c0 [ 551.956531][T16937] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 551.956628][T16937] ? do_raw_spin_lock+0x128/0x260 [ 551.956683][T16937] ? path_get+0x61/0x80 [ 551.956720][T16937] tomoyo_file_open+0x6b/0x90 [ 551.956758][T16937] security_file_open+0xb5/0x1e0 [ 551.956789][T16937] do_dentry_open+0x5aa/0x1660 [ 551.956823][T16937] ? security_inode_permission+0xbf/0x250 [ 551.956876][T16937] vfs_open+0x82/0x3f0 [ 551.956915][T16937] path_openat+0x208c/0x31a0 [ 551.956956][T16937] ? __pfx_path_openat+0x10/0x10 [ 551.956997][T16937] do_file_open+0x20e/0x430 [ 551.957029][T16937] ? __pfx_do_file_open+0x10/0x10 [ 551.957083][T16937] ? alloc_fd+0x476/0x790 [ 551.957113][T16937] ? do_getname+0x191/0x390 [ 551.957162][T16937] do_sys_openat2+0x10d/0x1e0 [ 551.957200][T16937] ? __pfx_do_sys_openat2+0x10/0x10 [ 551.957240][T16937] ? __fget_files+0x21f/0x3d0 [ 551.957294][T16937] __x64_sys_openat+0x12d/0x210 [ 551.957333][T16937] ? __pfx___x64_sys_openat+0x10/0x10 [ 551.957387][T16937] do_syscall_64+0x106/0xf80 [ 551.957420][T16937] ? clear_bhb_loop+0x40/0x90 [ 551.957455][T16937] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 551.957486][T16937] RIP: 0033:0x7f6f0b79c799 [ 551.957511][T16937] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 551.957540][T16937] RSP: 002b:00007f6f0c6fa028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 551.957568][T16937] RAX: ffffffffffffffda RBX: 00007f6f0ba15fa0 RCX: 00007f6f0b79c799 [ 551.957587][T16937] RDX: 0000000000129800 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 551.957606][T16937] RBP: 00007f6f0b832bd9 R08: 0000000000000000 R09: 0000000000000000 [ 551.957623][T16937] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 551.957642][T16937] R13: 00007f6f0ba16038 R14: 00007f6f0ba15fa0 R15: 00007ffdc9981b18 [ 551.957681][T16937] [ 553.440076][T16955] zswap: compressor not available [ 553.747498][T16965] snd_aloop snd_aloop.0: Parsing timer source '^ˆ^¨µÆ ¿­—‹Y«òkùTd5ëj5)J‚ñ fy¿DÉ=j"ß>׌æɧ@ÓpÏ=Àh¥1Ú“•Ã@±k' failed with -22 [ 554.083108][T16976] FAULT_INJECTION: forcing a failure. [ 554.083108][T16976] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 554.107700][T16976] CPU: 0 UID: 0 PID: 16976 Comm: syz.0.4151 Tainted: G L syzkaller #0 PREEMPT(full) [ 554.107756][T16976] Tainted: [L]=SOFTLOCKUP [ 554.107769][T16976] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 554.107788][T16976] Call Trace: [ 554.107799][T16976] [ 554.107811][T16976] dump_stack_lvl+0x100/0x190 [ 554.107871][T16976] should_fail_ex.cold+0x5/0xa [ 554.107916][T16976] ? prepare_alloc_pages+0x16d/0x5f0 [ 554.107962][T16976] should_fail_alloc_page+0xeb/0x140 [ 554.108000][T16976] prepare_alloc_pages+0x1f0/0x5f0 [ 554.108043][T16976] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 554.108109][T16976] ? __lock_acquire+0x4a5/0x2630 [ 554.108157][T16976] ? css_rstat_updated+0x1ce/0x5a0 [ 554.108197][T16976] ? __pfx_css_rstat_updated+0x10/0x10 [ 554.108235][T16976] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 554.108286][T16976] ? __lock_acquire+0x4a5/0x2630 [ 554.108337][T16976] ? rcu_is_watching+0x12/0xc0 [ 554.108393][T16976] ? __lock_acquire+0x4a5/0x2630 [ 554.108430][T16976] ? __lock_acquire+0x4a5/0x2630 [ 554.108464][T16976] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 554.108514][T16976] ? policy_nodemask+0xed/0x4f0 [ 554.108545][T16976] alloc_pages_mpol+0x1fb/0x550 [ 554.108576][T16976] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 554.108606][T16976] ? find_held_lock+0x2b/0x80 [ 554.108632][T16976] ? filemap_get_entry+0x1a7/0x3b0 [ 554.108681][T16976] ? filemap_get_entry+0x1a7/0x3b0 [ 554.108736][T16976] folio_alloc_noprof+0x22/0x330 [ 554.108777][T16976] filemap_alloc_folio_noprof.part.0+0x377/0x450 [ 554.108818][T16976] ? __pfx_filemap_get_entry+0x10/0x10 [ 554.108868][T16976] ? filemap_add_folio+0x114/0x690 [ 554.108932][T16976] ? __pfx_filemap_alloc_folio_noprof.part.0+0x10/0x10 [ 554.108980][T16976] ? rcu_is_watching+0x12/0xc0 [ 554.109037][T16976] __filemap_get_folio_mpol+0x6a4/0xe70 [ 554.109106][T16976] ioctx_alloc+0x7e4/0x21d0 [ 554.109163][T16976] ? __pfx_ioctx_alloc+0x10/0x10 [ 554.109215][T16976] __x64_sys_io_setup+0xc9/0x220 [ 554.109258][T16976] do_syscall_64+0x106/0xf80 [ 554.109300][T16976] ? clear_bhb_loop+0x40/0x90 [ 554.109346][T16976] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 554.109383][T16976] RIP: 0033:0x7fedc119c799 [ 554.109413][T16976] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 554.109450][T16976] RSP: 002b:00007fedc2010028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce [ 554.109485][T16976] RAX: ffffffffffffffda RBX: 00007fedc1415fa0 RCX: 00007fedc119c799 [ 554.109508][T16976] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000ffff [ 554.109527][T16976] RBP: 00007fedc1232bd9 R08: 0000000000000000 R09: 0000000000000000 [ 554.109549][T16976] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 554.109569][T16976] R13: 00007fedc1416038 R14: 00007fedc1415fa0 R15: 00007ffec5761238 [ 554.109614][T16976] [ 555.306425][T17003] netlink: 'syz.3.4163': attribute type 19 has an invalid length. [ 555.314521][T17003] netlink: 334 bytes leftover after parsing attributes in process `syz.3.4163'. [ 555.591459][T17005] syz.0.4164 (17005) used greatest stack depth: 17000 bytes left [ 555.728541][T17018] netlink: 342 bytes leftover after parsing attributes in process `syz.0.4170'. [ 556.230883][T17033] netlink: 334 bytes leftover after parsing attributes in process `syz.0.4175'. [ 557.963571][T17072] netlink: 342 bytes leftover after parsing attributes in process `syz.3.4190'. [ 558.117785][T17075] netlink: 342 bytes leftover after parsing attributes in process `syz.3.4192'. [ 558.307039][T17080] netlink: 342 bytes leftover after parsing attributes in process `syz.3.4194'. [ 558.536709][T17086] netlink: 342 bytes leftover after parsing attributes in process `syz.1.4196'. [ 558.913839][T17059] kexec: Could not allocate control_code_buffer [ 560.200414][T17125] netlink: 'syz.2.4210': attribute type 21 has an invalid length. [ 560.216010][T17125] netlink: 334 bytes leftover after parsing attributes in process `syz.2.4210'. [ 560.815738][T17136] random: crng reseeded on system resumption [ 560.993471][T17136] hub 1-0:1.0: USB hub found [ 561.039533][T17136] hub 1-0:1.0: 1 port detected [ 561.141557][T17142] input: jJǸ-J86Ö‘ as /devices/virtual/input/input12 [ 561.568716][T17145] snd_aloop snd_aloop.0: Parsing timer source '^ˆ^¨µÆ ¿­—‹Y«òkùTd5ëj5)J‚ñ fy¿DÉ=j"ß>׌æɧ@ÓpÏ=Àh¥1Ú“•Ã@±k' failed with -22 [ 561.656775][T17148] netlink: 334 bytes leftover after parsing attributes in process `syz.1.4219'. [ 561.980199][T17156] netlink: 342 bytes leftover after parsing attributes in process `syz.0.4221'. [ 562.065689][T17155] mkiss: ax0: crc mode is auto. [ 562.286849][T17159] FAULT_INJECTION: forcing a failure. [ 562.286849][T17159] name failslab, interval 1, probability 0, space 0, times 0 [ 562.345470][T17159] CPU: 0 UID: 0 PID: 17159 Comm: syz.0.4224 Tainted: G L syzkaller #0 PREEMPT(full) [ 562.345524][T17159] Tainted: [L]=SOFTLOCKUP [ 562.345537][T17159] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 562.345558][T17159] Call Trace: [ 562.345571][T17159] [ 562.345584][T17159] dump_stack_lvl+0x100/0x190 [ 562.345643][T17159] should_fail_ex.cold+0x5/0xa [ 562.345683][T17159] ? lsm_blob_alloc+0x68/0x90 [ 562.345723][T17159] should_failslab+0xc2/0x120 [ 562.345759][T17159] __kmalloc_noprof+0xe0/0x850 [ 562.345810][T17159] ? down_write_nested+0x14f/0x200 [ 562.345868][T17159] lsm_blob_alloc+0x68/0x90 [ 562.345915][T17159] security_sb_alloc+0x25/0x240 [ 562.345964][T17159] alloc_super+0x24c/0xd20 [ 562.346030][T17159] ? __pfx_mqueue_fill_super+0x10/0x10 [ 562.346183][T17159] sget_fc+0x117/0xc70 [ 562.346233][T17159] ? __pfx_set_anon_super_fc+0x10/0x10 [ 562.346281][T17159] ? __pfx_mqueue_fill_super+0x10/0x10 [ 562.346325][T17159] get_tree_nodev+0x28/0x190 [ 562.346381][T17159] mqueue_get_tree+0xf1/0x130 [ 562.346424][T17159] vfs_get_tree+0x92/0x320 [ 562.346471][T17159] fc_mount_longterm+0x1a/0x270 [ 562.346522][T17159] mq_init_ns+0x482/0x820 [ 562.346604][T17159] copy_ipcs+0x3dd/0x7e0 [ 562.346654][T17159] create_new_namespaces+0x20a/0xac0 [ 562.346697][T17159] ? security_capable+0x80/0x260 [ 562.346749][T17159] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 562.346790][T17159] ksys_unshare+0x473/0xad0 [ 562.346835][T17159] ? __pfx_ksys_unshare+0x10/0x10 [ 562.346895][T17159] __x64_sys_unshare+0x31/0x40 [ 562.346937][T17159] do_syscall_64+0x106/0xf80 [ 562.346977][T17159] ? clear_bhb_loop+0x40/0x90 [ 562.347029][T17159] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 562.347066][T17159] RIP: 0033:0x7fedc119c799 [ 562.347095][T17159] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 562.347129][T17159] RSP: 002b:00007fedc2010028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 562.347168][T17159] RAX: ffffffffffffffda RBX: 00007fedc1415fa0 RCX: 00007fedc119c799 [ 562.347191][T17159] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000006c000000 [ 562.347212][T17159] RBP: 00007fedc1232bd9 R08: 0000000000000000 R09: 0000000000000000 [ 562.347233][T17159] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 562.347253][T17159] R13: 00007fedc1416038 R14: 00007fedc1415fa0 R15: 00007ffec5761238 [ 562.347299][T17159] [ 563.237628][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 563.244028][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 563.651113][T17181] netlink: 322 bytes leftover after parsing attributes in process `syz.0.4232'. [ 563.815743][T17186] netlink: 'syz.1.4233': attribute type 29 has an invalid length. [ 563.823661][T17186] netlink: 334 bytes leftover after parsing attributes in process `syz.1.4233'. [ 565.217171][T17211] netlink: 334 bytes leftover after parsing attributes in process `syz.2.4243'. [ 568.018345][T17275] netlink: 334 bytes leftover after parsing attributes in process `syz.3.4268'. [ 568.421296][T17286] netlink: 'syz.3.4272': attribute type 4 has an invalid length. [ 568.430052][T17286] netlink: 314 bytes leftover after parsing attributes in process `syz.3.4272'. [ 569.225724][ T5833] Bluetooth: hci1: SCO packet for unknown connection handle 0 [ 569.990953][T17315] netlink: 342 bytes leftover after parsing attributes in process `syz.2.4280'. [ 570.215656][T17317] phram: not enough arguments [ 570.309243][T17315] netlink: 342 bytes leftover after parsing attributes in process `syz.2.4280'. [ 570.319741][T17319] sg_write: data in/out 65500/90 bytes for SCSI command 0x0-- guessing data in; [ 570.319741][T17319] program syz.0.4282 not setting count and/or reply_len properly [ 571.586098][T17350] kvm: kvm [17349]: vcpu2, guest rIP: 0xfff0 Unhandled WRMSR(0x11e) = 0x1 [ 571.861242][T17354] FAULT_INJECTION: forcing a failure. [ 571.861242][T17354] name failslab, interval 1, probability 0, space 0, times 0 [ 571.905409][T17354] CPU: 1 UID: 0 PID: 17354 Comm: syz.2.4297 Tainted: G L syzkaller #0 PREEMPT(full) [ 571.905468][T17354] Tainted: [L]=SOFTLOCKUP [ 571.905481][T17354] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 571.905506][T17354] Call Trace: [ 571.905518][T17354] [ 571.905531][T17354] dump_stack_lvl+0x100/0x190 [ 571.905599][T17354] should_fail_ex.cold+0x5/0xa [ 571.905637][T17354] ? tomoyo_init_log+0x1224/0x20c0 [ 571.905673][T17354] should_failslab+0xc2/0x120 [ 571.905709][T17354] __kmalloc_noprof+0xe0/0x850 [ 571.905768][T17354] tomoyo_init_log+0x1224/0x20c0 [ 571.905812][T17354] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 571.905885][T17354] ? __pfx_tomoyo_init_log+0x10/0x10 [ 571.905934][T17354] tomoyo_write_log2+0x2ed/0xbc0 [ 571.905978][T17354] tomoyo_supervisor+0x15e/0x1340 [ 571.906032][T17354] ? __pfx_tomoyo_supervisor+0x10/0x10 [ 571.906106][T17354] ? kasan_quarantine_put+0x104/0x240 [ 571.906160][T17354] ? tomoyo_check_path_acl+0x141/0x210 [ 571.906214][T17354] ? tomoyo_check_acl+0x1f7/0x410 [ 571.906267][T17354] tomoyo_path_permission+0x270/0x3b0 [ 571.906327][T17354] tomoyo_check_open_permission+0x37f/0x3c0 [ 571.906381][T17354] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 571.906476][T17354] ? do_raw_spin_lock+0x128/0x260 [ 571.906522][T17354] ? path_get+0x61/0x80 [ 571.906557][T17354] tomoyo_file_open+0x6b/0x90 [ 571.906597][T17354] security_file_open+0xb5/0x1e0 [ 571.906627][T17354] do_dentry_open+0x5aa/0x1660 [ 571.906658][T17354] ? security_inode_permission+0xbf/0x250 [ 571.906709][T17354] vfs_open+0x82/0x3f0 [ 571.906752][T17354] path_openat+0x208c/0x31a0 [ 571.906797][T17354] ? __pfx_path_openat+0x10/0x10 [ 571.906847][T17354] do_file_open+0x20e/0x430 [ 571.906884][T17354] ? __pfx_do_file_open+0x10/0x10 [ 571.906949][T17354] ? alloc_fd+0x476/0x790 [ 571.906986][T17354] ? do_getname+0x191/0x390 [ 571.907033][T17354] do_sys_openat2+0x10d/0x1e0 [ 571.907087][T17354] ? __pfx_do_sys_openat2+0x10/0x10 [ 571.907133][T17354] ? __fget_files+0x21f/0x3d0 [ 571.907197][T17354] __x64_sys_openat+0x12d/0x210 [ 571.907241][T17354] ? __pfx___x64_sys_openat+0x10/0x10 [ 571.907301][T17354] do_syscall_64+0x106/0xf80 [ 571.907340][T17354] ? clear_bhb_loop+0x40/0x90 [ 571.907384][T17354] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 571.907418][T17354] RIP: 0033:0x7f85d339c799 [ 571.907445][T17354] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 571.907478][T17354] RSP: 002b:00007f85d428e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 571.907512][T17354] RAX: ffffffffffffffda RBX: 00007f85d3615fa0 RCX: 00007f85d339c799 [ 571.907537][T17354] RDX: 1a6b75d638929210 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 571.907559][T17354] RBP: 00007f85d3432bd9 R08: 0000000000000000 R09: 0000000000000000 [ 571.907580][T17354] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 571.907601][T17354] R13: 00007f85d3616038 R14: 00007f85d3615fa0 R15: 00007ffe4353c208 [ 571.907646][T17354] [ 572.438342][T17359] netlink: 342 bytes leftover after parsing attributes in process `syz.2.4299'. [ 572.543893][T17359] netlink: 342 bytes leftover after parsing attributes in process `syz.2.4299'. [ 573.471011][T17379] netlink: 334 bytes leftover after parsing attributes in process `syz.0.4307'. [ 574.141467][T17405] netlink: 334 bytes leftover after parsing attributes in process `syz.3.4317'. [ 574.371636][T17413] futex_wake_op: syz.1.4321 tries to shift op by -2048; fix this program [ 574.393284][T17413] futex_wake_op: syz.1.4321 tries to shift op by -2048; fix this program [ 574.885721][T17427] netlink: 'syz.2.4325': attribute type 27 has an invalid length. [ 574.908987][T17427] netlink: 334 bytes leftover after parsing attributes in process `syz.2.4325'. [ 575.204082][T17438] netlink: 334 bytes leftover after parsing attributes in process `syz.0.4330'. [ 575.235762][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 575.246097][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 575.633054][T17443] netlink: 330 bytes leftover after parsing attributes in process `syz.1.4332'. [ 575.932977][T17450] netlink: 'syz.0.4334': attribute type 27 has an invalid length. [ 575.958147][T17450] netlink: 334 bytes leftover after parsing attributes in process `syz.0.4334'. [ 576.086814][T17454] random: crng reseeded on system resumption [ 576.214277][T17454] hub 1-0:1.0: USB hub found [ 576.219521][T17458] FAULT_INJECTION: forcing a failure. [ 576.219521][T17458] name failslab, interval 1, probability 0, space 0, times 0 [ 576.232815][T17454] hub 1-0:1.0: 1 port detected [ 576.262358][T17458] CPU: 1 UID: 0 PID: 17458 Comm: syz.0.4339 Tainted: G L syzkaller #0 PREEMPT(full) [ 576.262415][T17458] Tainted: [L]=SOFTLOCKUP [ 576.262427][T17458] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 576.262447][T17458] Call Trace: [ 576.262459][T17458] [ 576.262472][T17458] dump_stack_lvl+0x100/0x190 [ 576.262532][T17458] should_fail_ex.cold+0x5/0xa [ 576.262575][T17458] should_failslab+0xc2/0x120 [ 576.262614][T17458] __kmalloc_cache_noprof+0x7a/0x6f0 [ 576.262661][T17458] ? key_user_lookup+0x1a3/0x5a0 [ 576.262706][T17458] key_user_lookup+0x1a3/0x5a0 [ 576.262743][T17458] ? __pfx_key_user_lookup+0x10/0x10 [ 576.262783][T17458] ? assoc_array_walk+0x1e1/0x5b0 [ 576.262833][T17458] key_alloc+0x18b/0x1310 [ 576.262882][T17458] ? __pfx_key_alloc+0x10/0x10 [ 576.262928][T17458] keyring_alloc+0x44/0xc0 [ 576.262979][T17458] keyctl_get_persistent+0x6c7/0x8b0 [ 576.263020][T17458] ? __pfx_keyctl_get_persistent+0x10/0x10 [ 576.263060][T17458] ? __x64_sys_futex+0x34f/0x4d0 [ 576.263099][T17458] ? __x64_sys_futex+0x358/0x4d0 [ 576.263142][T17458] ? xfd_validate_state+0x129/0x190 [ 576.263194][T17458] __do_sys_keyctl+0x3b2/0x5a0 [ 576.263240][T17458] do_syscall_64+0x106/0xf80 [ 576.263276][T17458] ? clear_bhb_loop+0x40/0x90 [ 576.263314][T17458] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 576.263350][T17458] RIP: 0033:0x7fedc119c799 [ 576.263375][T17458] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 576.263406][T17458] RSP: 002b:00007fedc2010028 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 576.263435][T17458] RAX: ffffffffffffffda RBX: 00007fedc1415fa0 RCX: 00007fedc119c799 [ 576.263455][T17458] RDX: 7fffffffffffffff RSI: 000000000000ee00 RDI: 0000000000000016 [ 576.263476][T17458] RBP: 00007fedc1232bd9 R08: 000000000000000c R09: 0000000000000000 [ 576.263498][T17458] R10: 00000000000099a7 R11: 0000000000000246 R12: 0000000000000000 [ 576.263519][T17458] R13: 00007fedc1416038 R14: 00007fedc1415fa0 R15: 00007ffec5761238 [ 576.263563][T17458] [ 577.276008][T17477] FAULT_INJECTION: forcing a failure. [ 577.276008][T17477] name failslab, interval 1, probability 0, space 0, times 0 [ 577.349114][T17477] CPU: 1 UID: 0 PID: 17477 Comm: syz.0.4344 Tainted: G L syzkaller #0 PREEMPT(full) [ 577.349174][T17477] Tainted: [L]=SOFTLOCKUP [ 577.349187][T17477] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 577.349209][T17477] Call Trace: [ 577.349220][T17477] [ 577.349233][T17477] dump_stack_lvl+0x100/0x190 [ 577.349295][T17477] should_fail_ex.cold+0x5/0xa [ 577.349336][T17477] should_failslab+0xc2/0x120 [ 577.349372][T17477] __kmalloc_cache_noprof+0x7a/0x6f0 [ 577.349416][T17477] ? tomoyo_init_log+0x1a0/0x20c0 [ 577.349461][T17477] tomoyo_init_log+0x1a0/0x20c0 [ 577.349499][T17477] ? __pfx_format_decode+0x10/0x10 [ 577.349562][T17477] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 577.349628][T17477] ? __pfx_tomoyo_init_log+0x10/0x10 [ 577.349678][T17477] tomoyo_write_log2+0x2ed/0xbc0 [ 577.349724][T17477] tomoyo_supervisor+0x15e/0x1340 [ 577.349776][T17477] ? __pfx_tomoyo_supervisor+0x10/0x10 [ 577.349842][T17477] ? kasan_quarantine_put+0x104/0x240 [ 577.349902][T17477] ? tomoyo_check_path_acl+0x141/0x210 [ 577.349957][T17477] ? tomoyo_check_acl+0x1f7/0x410 [ 577.350013][T17477] tomoyo_path_permission+0x270/0x3b0 [ 577.350082][T17477] tomoyo_check_open_permission+0x37f/0x3c0 [ 577.350144][T17477] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 577.350244][T17477] ? do_raw_spin_lock+0x128/0x260 [ 577.350299][T17477] ? path_get+0x61/0x80 [ 577.350341][T17477] tomoyo_file_open+0x6b/0x90 [ 577.350386][T17477] security_file_open+0xb5/0x1e0 [ 577.350422][T17477] do_dentry_open+0x5aa/0x1660 [ 577.350459][T17477] ? security_inode_permission+0xbf/0x250 [ 577.350522][T17477] vfs_open+0x82/0x3f0 [ 577.350570][T17477] path_openat+0x208c/0x31a0 [ 577.350620][T17477] ? __pfx_path_openat+0x10/0x10 [ 577.350670][T17477] do_file_open+0x20e/0x430 [ 577.350708][T17477] ? __pfx_do_file_open+0x10/0x10 [ 577.350777][T17477] ? alloc_fd+0x476/0x790 [ 577.350813][T17477] ? do_getname+0x191/0x390 [ 577.350860][T17477] do_sys_openat2+0x10d/0x1e0 [ 577.350906][T17477] ? __pfx_do_sys_openat2+0x10/0x10 [ 577.350954][T17477] ? __fget_files+0x21f/0x3d0 [ 577.351018][T17477] __x64_sys_openat+0x12d/0x210 [ 577.351081][T17477] ? __pfx___x64_sys_openat+0x10/0x10 [ 577.351145][T17477] do_syscall_64+0x106/0xf80 [ 577.351185][T17477] ? clear_bhb_loop+0x40/0x90 [ 577.351229][T17477] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 577.351265][T17477] RIP: 0033:0x7fedc119c799 [ 577.351294][T17477] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 577.351329][T17477] RSP: 002b:00007fedc2010028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 577.351364][T17477] RAX: ffffffffffffffda RBX: 00007fedc1415fa0 RCX: 00007fedc119c799 [ 577.351387][T17477] RDX: 0000000000042000 RSI: 0000200000000280 RDI: ffffffffffffff9c [ 577.351409][T17477] RBP: 00007fedc1232bd9 R08: 0000000000000000 R09: 0000000000000000 [ 577.351432][T17477] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 577.351452][T17477] R13: 00007fedc1416038 R14: 00007fedc1415fa0 R15: 00007ffec5761238 [ 577.351498][T17477] [ 580.246738][T17526] netlink: 342 bytes leftover after parsing attributes in process `syz.0.4364'. [ 580.974191][T17540] netlink: 334 bytes leftover after parsing attributes in process `syz.2.4370'. [ 582.980937][T17580] : renamed from dummy0 (while UP) [ 583.604572][T17610] netlink: 334 bytes leftover after parsing attributes in process `syz.1.4397'. [ 583.783608][T17616] veth1_to_batadv: entered promiscuous mode [ 583.795754][T17616] veth1_to_batadv: left promiscuous mode [ 584.103051][T17626] FAULT_INJECTION: forcing a failure. [ 584.103051][T17626] name failslab, interval 1, probability 0, space 0, times 0 [ 584.133941][T17626] CPU: 0 UID: 0 PID: 17626 Comm: syz.0.4404 Tainted: G L syzkaller #0 PREEMPT(full) [ 584.133995][T17626] Tainted: [L]=SOFTLOCKUP [ 584.134008][T17626] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 584.134031][T17626] Call Trace: [ 584.134042][T17626] [ 584.134057][T17626] dump_stack_lvl+0x100/0x190 [ 584.134121][T17626] should_fail_ex.cold+0x5/0xa [ 584.134162][T17626] should_failslab+0xc2/0x120 [ 584.134208][T17626] __kmalloc_cache_noprof+0x7a/0x6f0 [ 584.134255][T17626] ? __kthread_create_on_node+0xce/0x3f0 [ 584.134296][T17626] ? lockdep_init_map_type+0x5c/0x250 [ 584.134350][T17626] ? __pfx_tomoyo_gc_thread+0x10/0x10 [ 584.134407][T17626] __kthread_create_on_node+0xce/0x3f0 [ 584.134449][T17626] ? __pfx___kthread_create_on_node+0x10/0x10 [ 584.134510][T17626] ? __pfx_tomoyo_gc_thread+0x10/0x10 [ 584.134564][T17626] kthread_create_on_node+0xc7/0x100 [ 584.134603][T17626] ? __pfx_kthread_create_on_node+0x10/0x10 [ 584.134645][T17626] ? lockdep_hardirqs_on+0x78/0x100 [ 584.134688][T17626] ? find_held_lock+0x2b/0x80 [ 584.134719][T17626] ? tomoyo_notify_gc+0xc6/0x480 [ 584.134783][T17626] tomoyo_notify_gc+0x102/0x480 [ 584.134836][T17626] ? ima_iint_find+0xe9/0x130 [ 584.134963][T17626] ? __pfx_tomoyo_release+0x10/0x10 [ 584.135003][T17626] tomoyo_release+0x31/0x40 [ 584.135039][T17626] __fput+0x3ff/0xb40 [ 584.135089][T17626] task_work_run+0x150/0x240 [ 584.135139][T17626] ? __pfx_task_work_run+0x10/0x10 [ 584.135210][T17626] exit_to_user_mode_loop+0x100/0x4a0 [ 584.135261][T17626] do_syscall_64+0x668/0xf80 [ 584.135299][T17626] ? clear_bhb_loop+0x40/0x90 [ 584.135340][T17626] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 584.135374][T17626] RIP: 0033:0x7fedc119c799 [ 584.135402][T17626] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 584.135435][T17626] RSP: 002b:00007fedc2010028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 584.135468][T17626] RAX: 0000000000000000 RBX: 00007fedc1415fa0 RCX: 00007fedc119c799 [ 584.135489][T17626] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 584.135509][T17626] RBP: 00007fedc1232bd9 R08: 0000000000000000 R09: 0000000000000000 [ 584.135531][T17626] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 584.135551][T17626] R13: 00007fedc1416038 R14: 00007fedc1415fa0 R15: 00007ffec5761238 [ 584.135595][T17626] [ 584.793951][T17637] netlink: 342 bytes leftover after parsing attributes in process `syz.0.4409'. [ 586.477172][T17680] sg_write: data in/out 1886744398/84 bytes for SCSI command 0x72-- guessing data in; [ 586.477172][T17680] program syz.1.4422 not setting count and/or reply_len properly [ 586.935189][T17690] snd_aloop snd_aloop.0: Parsing timer source '^ˆ^¨µÆ ¿­—‹Y«òkùTd5ëj5)J‚ñ fy¿DÉ=j"ß>׌æɧ@ÓpÏ=Àh¥1Ú“•Ã@±k' failed with -22 [ 587.550097][T17706] netlink: 334 bytes leftover after parsing attributes in process `syz.3.4433'. [ 588.098328][T17718] netlink: 334 bytes leftover after parsing attributes in process `syz.1.4437'. [ 588.240001][T17725] netlink: 334 bytes leftover after parsing attributes in process `syz.1.4437'. [ 588.850795][T17730] netlink: 330 bytes leftover after parsing attributes in process `syz.0.4440'. [ 588.882421][T17730] IPv6: NLM_F_CREATE should be specified when creating new route [ 590.052539][T17758] veth1_to_batadv: entered promiscuous mode [ 590.080046][T17758] veth1_to_batadv: left promiscuous mode [ 590.867410][T17775] snd_aloop snd_aloop.0: Parsing timer source '^ˆ^¨µÆ ¿­—‹Y«òkùTd5ëj5)J‚ñ fy¿DÉ=j"ß>׌æɧ@ÓpÏ=Àh¥1Ú“•Ã@±k' failed with -22 [ 590.932779][T17775] snd_aloop snd_aloop.0: Parsing timer source '^ˆ^¨µÆ ¿­—‹Y«òkùTd5ëj5)J‚ñ fy¿DÉ=j"ß>׌æɧ@ÓpÏ=Àh¥1Ú“•Ã@±k' failed with -22 [ 591.078248][T17772] netlink: 342 bytes leftover after parsing attributes in process `syz.0.4465'. [ 591.349037][T17786] netlink: 334 bytes leftover after parsing attributes in process `syz.0.4461'. [ 591.859100][T17795] netlink: 'syz.0.4466': attribute type 1 has an invalid length. [ 591.876656][T17795] netlink: 318 bytes leftover after parsing attributes in process `syz.0.4466'. [ 592.679340][T17816] netlink: 330 bytes leftover after parsing attributes in process `syz.0.4476'. [ 592.919135][T17811] ERROR: Out of memory at tomoyo_memory_ok. [ 593.089301][T17822] netlink: 74 bytes leftover after parsing attributes in process `syz.0.4479'. [ 593.795690][T17842] ovs_: entered promiscuous mode [ 593.997232][T17845] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4487'. [ 595.387070][T17877] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4499'. [ 595.407092][T17877] netlink: 13 bytes leftover after parsing attributes in process `syz.0.4499'. [ 595.680177][T17883] netlink: 330 bytes leftover after parsing attributes in process `syz.3.4502'. [ 596.132807][T17893] FAULT_INJECTION: forcing a failure. [ 596.132807][T17893] name failslab, interval 1, probability 0, space 0, times 0 [ 596.155664][T17893] CPU: 1 UID: 0 PID: 17893 Comm: syz.0.4506 Tainted: G L syzkaller #0 PREEMPT(full) [ 596.155750][T17893] Tainted: [L]=SOFTLOCKUP [ 596.155764][T17893] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 596.155785][T17893] Call Trace: [ 596.155796][T17893] [ 596.155820][T17893] dump_stack_lvl+0x100/0x190 [ 596.155899][T17893] should_fail_ex.cold+0x5/0xa [ 596.155939][T17893] should_failslab+0xc2/0x120 [ 596.155981][T17893] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 596.156032][T17893] ? security_file_alloc+0x34/0x2c0 [ 596.156067][T17893] ? trace_kmem_cache_alloc+0xf3/0x120 [ 596.156131][T17893] security_file_alloc+0x34/0x2c0 [ 596.156168][T17893] init_file+0x95/0x480 [ 596.156207][T17893] alloc_empty_file+0x73/0x1c0 [ 596.156247][T17893] alloc_file_pseudo+0x13a/0x230 [ 596.156292][T17893] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 596.156335][T17893] ? tipc_sk_finish_conn+0x600/0x7a0 [ 596.156496][T17893] sock_alloc_file+0x50/0x210 [ 596.156545][T17893] __sys_socketpair+0x321/0x5b0 [ 596.156602][T17893] ? __pfx___sys_socketpair+0x10/0x10 [ 596.156657][T17893] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 596.156694][T17893] ? xfd_validate_state+0x129/0x190 [ 596.156753][T17893] __x64_sys_socketpair+0x96/0x100 [ 596.156809][T17893] ? lockdep_hardirqs_on+0x78/0x100 [ 596.156849][T17893] do_syscall_64+0x106/0xf80 [ 596.156887][T17893] ? clear_bhb_loop+0x40/0x90 [ 596.156929][T17893] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 596.156973][T17893] RIP: 0033:0x7fedc119c799 [ 596.157002][T17893] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 596.157037][T17893] RSP: 002b:00007fedc2010028 EFLAGS: 00000246 ORIG_RAX: 0000000000000035 [ 596.157072][T17893] RAX: ffffffffffffffda RBX: 00007fedc1415fa0 RCX: 00007fedc119c799 [ 596.157095][T17893] RDX: 8000000000000000 RSI: 0000000000000005 RDI: 000000000000001e [ 596.157118][T17893] RBP: 00007fedc1232bd9 R08: 0000000000000000 R09: 0000000000000000 [ 596.157140][T17893] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 596.157162][T17893] R13: 00007fedc1416038 R14: 00007fedc1415fa0 R15: 00007ffec5761238 [ 596.157207][T17893] [ 597.905755][T17931] netlink: 'syz.3.4520': attribute type 16 has an invalid length. [ 597.925009][T17931] netlink: 306 bytes leftover after parsing attributes in process `syz.3.4520'. [ 598.155536][T17935] futex_wake_op: syz.3.4521 tries to shift op by -2048; fix this program [ 598.260279][T17939] snd_aloop snd_aloop.0: Parsing timer source '^ˆ^¨µÆ ¿­—‹Y«òkùTd5ëj5)J‚ñ fy¿DÉ=j"ß>׌æɧ@ÓpÏ=Àh¥1Ú“•Ã@±k' failed with -22 [ 598.324773][T17939] snd_aloop snd_aloop.0: Parsing timer source '^ˆ^¨µÆ ¿­—‹Y«òkùTd5ëj5)J‚ñ fy¿DÉ=j"ß>׌æɧ@ÓpÏ=Àh¥1Ú“•Ã@±k' failed with -22 [ 600.426218][T17989] netlink: 342 bytes leftover after parsing attributes in process `syz.1.4541'. [ 601.269697][T17997] netlink: 'syz.0.4544': attribute type 16 has an invalid length. [ 601.278456][T17997] netlink: 306 bytes leftover after parsing attributes in process `syz.0.4544'. [ 601.354405][T17999] FAULT_INJECTION: forcing a failure. [ 601.354405][T17999] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 601.378298][T17999] CPU: 1 UID: 0 PID: 17999 Comm: syz.2.4545 Tainted: G L syzkaller #0 PREEMPT(full) [ 601.378352][T17999] Tainted: [L]=SOFTLOCKUP [ 601.378363][T17999] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 601.378385][T17999] Call Trace: [ 601.378395][T17999] [ 601.378408][T17999] dump_stack_lvl+0x100/0x190 [ 601.378466][T17999] should_fail_ex.cold+0x5/0xa [ 601.378499][T17999] ? prepare_alloc_pages+0x16d/0x5f0 [ 601.378543][T17999] should_fail_alloc_page+0xeb/0x140 [ 601.378581][T17999] prepare_alloc_pages+0x1f0/0x5f0 [ 601.378618][T17999] ? arch_stack_walk+0xa6/0xf0 [ 601.378657][T17999] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 601.378713][T17999] ? __lock_acquire+0x4a5/0x2630 [ 601.378766][T17999] ? stack_trace_save+0x8e/0xc0 [ 601.378807][T17999] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 601.378860][T17999] ? __lock_acquire+0x4a5/0x2630 [ 601.378919][T17999] ? __lock_acquire+0x4a5/0x2630 [ 601.378971][T17999] ? __lock_acquire+0x4a5/0x2630 [ 601.379016][T17999] ? find_held_lock+0x2b/0x80 [ 601.379046][T17999] ? local_lock_release+0x99/0x130 [ 601.379082][T17999] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 601.379141][T17999] ? policy_nodemask+0xed/0x4f0 [ 601.379180][T17999] alloc_pages_mpol+0x1fb/0x550 [ 601.379216][T17999] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 601.379252][T17999] ? obj_cgroup_charge_account+0x46d/0x640 [ 601.379299][T17999] alloc_pages_noprof+0x131/0x390 [ 601.379338][T17999] pgd_alloc+0x4d/0x640 [ 601.379373][T17999] ? mutex_init_lockep+0x110/0x150 [ 601.379425][T17999] mm_init+0x6da/0x10d0 [ 601.379464][T17999] copy_process+0x73b9/0x7a10 [ 601.379524][T17999] ? __pfx_copy_process+0x10/0x10 [ 601.379585][T17999] kernel_clone+0xfc/0x9a0 [ 601.379621][T17999] ? __pfx_futex_wait+0x10/0x10 [ 601.379682][T17999] ? __pfx_kernel_clone+0x10/0x10 [ 601.379746][T17999] __do_sys_clone+0xd9/0x120 [ 601.379786][T17999] ? __pfx___do_sys_clone+0x10/0x10 [ 601.379827][T17999] ? __fget_files+0x21f/0x3d0 [ 601.379924][T17999] do_syscall_64+0x106/0xf80 [ 601.379967][T17999] ? clear_bhb_loop+0x40/0x90 [ 601.380010][T17999] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 601.380046][T17999] RIP: 0033:0x7f85d339c799 [ 601.380075][T17999] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 601.380110][T17999] RSP: 002b:00007f85d428e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 601.380142][T17999] RAX: ffffffffffffffda RBX: 00007f85d3615fa0 RCX: 00007f85d339c799 [ 601.380164][T17999] RDX: 00002000000002c0 RSI: 0000000000000003 RDI: 0000000000001000 [ 601.380185][T17999] RBP: 00007f85d3432bd9 R08: 0000000000000003 R09: 0000000000000000 [ 601.380206][T17999] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 601.380227][T17999] R13: 00007f85d3616038 R14: 00007f85d3615fa0 R15: 00007ffe4353c208 [ 601.380271][T17999] [ 601.867257][T18006] : renamed from team0 (while UP) [ 602.037386][T18011] snd_aloop snd_aloop.0: Parsing timer source '^ˆ^¨µÆ ¿­—‹Y«òkùTd5ëj5)J‚ñ fy¿DÉ=j"ß>׌æɧ@ÓpÏ=Àh¥1Ú“•Ã@±k' failed with -22 [ 602.524482][T18026] netlink: 342 bytes leftover after parsing attributes in process `syz.0.4557'. [ 603.450766][T18054] netlink: 334 bytes leftover after parsing attributes in process `syz.0.4567'. [ 604.142206][T18072] FAULT_INJECTION: forcing a failure. [ 604.142206][T18072] name failslab, interval 1, probability 0, space 0, times 0 [ 604.169380][T18072] CPU: 1 UID: 0 PID: 18072 Comm: syz.1.4572 Tainted: G L syzkaller #0 PREEMPT(full) [ 604.169435][T18072] Tainted: [L]=SOFTLOCKUP [ 604.169446][T18072] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 604.169467][T18072] Call Trace: [ 604.169478][T18072] [ 604.169492][T18072] dump_stack_lvl+0x100/0x190 [ 604.169552][T18072] should_fail_ex.cold+0x5/0xa [ 604.169600][T18072] ? tomoyo_init_log+0x1224/0x20c0 [ 604.169636][T18072] should_failslab+0xc2/0x120 [ 604.169672][T18072] __kmalloc_noprof+0xe0/0x850 [ 604.169732][T18072] tomoyo_init_log+0x1224/0x20c0 [ 604.169780][T18072] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 604.169846][T18072] ? __pfx_tomoyo_init_log+0x10/0x10 [ 604.169895][T18072] tomoyo_write_log2+0x2ed/0xbc0 [ 604.169940][T18072] tomoyo_supervisor+0x15e/0x1340 [ 604.169993][T18072] ? __pfx_tomoyo_supervisor+0x10/0x10 [ 604.170059][T18072] ? kasan_quarantine_put+0x104/0x240 [ 604.170116][T18072] ? tomoyo_check_path_acl+0x141/0x210 [ 604.170170][T18072] ? tomoyo_check_acl+0x1f7/0x410 [ 604.170222][T18072] tomoyo_path_permission+0x270/0x3b0 [ 604.170279][T18072] tomoyo_check_open_permission+0x37f/0x3c0 [ 604.170337][T18072] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 604.170433][T18072] ? do_raw_spin_lock+0x128/0x260 [ 604.170487][T18072] ? path_get+0x61/0x80 [ 604.170528][T18072] tomoyo_file_open+0x6b/0x90 [ 604.170592][T18072] security_file_open+0xb5/0x1e0 [ 604.170630][T18072] do_dentry_open+0x5aa/0x1660 [ 604.170664][T18072] ? security_inode_permission+0xbf/0x250 [ 604.170724][T18072] vfs_open+0x82/0x3f0 [ 604.170769][T18072] path_openat+0x208c/0x31a0 [ 604.170814][T18072] ? __pfx_path_openat+0x10/0x10 [ 604.170862][T18072] do_file_open+0x20e/0x430 [ 604.170898][T18072] ? __pfx_do_file_open+0x10/0x10 [ 604.170960][T18072] ? alloc_fd+0x476/0x790 [ 604.170995][T18072] ? do_getname+0x191/0x390 [ 604.171039][T18072] do_sys_openat2+0x10d/0x1e0 [ 604.171081][T18072] ? __pfx_do_sys_openat2+0x10/0x10 [ 604.171127][T18072] ? __fget_files+0x21f/0x3d0 [ 604.171190][T18072] __x64_sys_openat+0x12d/0x210 [ 604.171235][T18072] ? __pfx___x64_sys_openat+0x10/0x10 [ 604.171297][T18072] do_syscall_64+0x106/0xf80 [ 604.171336][T18072] ? clear_bhb_loop+0x40/0x90 [ 604.171377][T18072] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 604.171412][T18072] RIP: 0033:0x7f6f0b79c799 [ 604.171440][T18072] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 604.171473][T18072] RSP: 002b:00007f6f0c6fa028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 604.171505][T18072] RAX: ffffffffffffffda RBX: 00007f6f0ba15fa0 RCX: 00007f6f0b79c799 [ 604.171529][T18072] RDX: 1a6b75d638929210 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 604.171551][T18072] RBP: 00007f6f0b832bd9 R08: 0000000000000000 R09: 0000000000000000 [ 604.171572][T18072] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 604.171602][T18072] R13: 00007f6f0ba16038 R14: 00007f6f0ba15fa0 R15: 00007ffdc9981b18 [ 604.171647][T18072] [ 605.340013][T18096] netlink: 334 bytes leftover after parsing attributes in process `syz.0.4581'. [ 606.579944][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 608.972389][T18187] random: crng reseeded on system resumption [ 611.473833][T18251] netlink: 334 bytes leftover after parsing attributes in process `syz.2.4624'. [ 612.346511][T18265] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(905090050.201326592.142606592), cmd(16) [ 612.402361][T18266] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(905090050.201326592.142606592), cmd(2) [ 614.692904][T18320] netlink: 342 bytes leftover after parsing attributes in process `syz.2.4646'. [ 617.293740][T18393] netlink: 342 bytes leftover after parsing attributes in process `syz.1.4663'. [ 617.336385][T18393] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 617.356860][T18393] netlink: 342 bytes leftover after parsing attributes in process `syz.1.4663'. [ 617.356962][T18393] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 618.296133][T18416] random: crng reseeded on system resumption [ 618.479724][T18420] netlink: 504 bytes leftover after parsing attributes in process `syz.3.4671'. [ 620.454740][T18457] zswap: compressor 000 not available [ 620.757145][T18468] netlink: 'syz.0.4686': attribute type 4 has an invalid length. [ 620.768361][T18468] netlink: 'syz.0.4686': attribute type 4 has an invalid length. [ 620.983335][T18470] sg_read: process 2896 (syz.0.4687) changed security contexts after opening file descriptor, this is not allowed. [ 621.604748][T18481] process 'syz.0.4691' launched '/dev/fd/3' with NULL argv: empty string added [ 621.719222][T18487] FAULT_INJECTION: forcing a failure. [ 621.719222][T18487] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 621.739115][T18487] CPU: 0 UID: 0 PID: 18487 Comm: syz.0.4693 Tainted: G L syzkaller #0 PREEMPT(full) [ 621.739172][T18487] Tainted: [L]=SOFTLOCKUP [ 621.739184][T18487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 621.739205][T18487] Call Trace: [ 621.739216][T18487] [ 621.739229][T18487] dump_stack_lvl+0x100/0x190 [ 621.739290][T18487] should_fail_ex.cold+0x5/0xa [ 621.739324][T18487] ? prepare_alloc_pages+0x16d/0x5f0 [ 621.739368][T18487] should_fail_alloc_page+0xeb/0x140 [ 621.739406][T18487] prepare_alloc_pages+0x1f0/0x5f0 [ 621.739453][T18487] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 621.739510][T18487] ? ima_match_policy+0x8c4/0x2350 [ 621.739566][T18487] ? ima_match_policy+0x8c4/0x2350 [ 621.739621][T18487] ? css_rstat_updated+0x1ce/0x5a0 [ 621.739661][T18487] ? __pfx_css_rstat_updated+0x10/0x10 [ 621.739701][T18487] ? __lock_acquire+0x4a5/0x2630 [ 621.739749][T18487] ? rcu_is_watching+0x12/0xc0 [ 621.739806][T18487] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 621.739858][T18487] ? __lock_acquire+0x4a5/0x2630 [ 621.739917][T18487] ? look_up_lock_class+0x55/0x120 [ 621.739963][T18487] ? register_lock_class+0x40/0x560 [ 621.740018][T18487] ? lock_acquire+0x1cf/0x380 [ 621.740071][T18487] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 621.740134][T18487] ? policy_nodemask+0xed/0x4f0 [ 621.740174][T18487] alloc_pages_mpol+0x1fb/0x550 [ 621.740213][T18487] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 621.740250][T18487] ? __pfx___pollwait+0x10/0x10 [ 621.740302][T18487] ? mark_held_locks+0x40/0x70 [ 621.740351][T18487] alloc_pages_noprof+0x131/0x390 [ 621.740388][T18487] ? __pfx___pollwait+0x10/0x10 [ 621.740438][T18487] get_free_pages_noprof+0x10/0xb0 [ 621.740472][T18487] __pollwait+0x29a/0x470 [ 621.740523][T18487] ? __pfx___pollwait+0x10/0x10 [ 621.740576][T18487] ? __pfx___pollwait+0x10/0x10 [ 621.740626][T18487] vb2_poll+0x8c/0xe0 [ 621.740766][T18487] vb2_fop_poll+0x10e/0x350 [ 621.740818][T18487] ? __pfx_vb2_fop_poll+0x10/0x10 [ 621.740865][T18487] v4l2_poll+0x15f/0x220 [ 621.740919][T18487] ? __pfx_v4l2_poll+0x10/0x10 [ 621.740964][T18487] do_sys_poll+0x6e5/0xeb0 [ 621.741017][T18487] ? lockdep_hardirqs_on+0x78/0x100 [ 621.741074][T18487] ? __pfx_do_sys_poll+0x10/0x10 [ 621.741129][T18487] ? __lock_acquire+0x4a5/0x2630 [ 621.741212][T18487] ? futex_unqueue+0x13d/0x2c0 [ 621.741255][T18487] ? __pfx___pollwait+0x10/0x10 [ 621.741314][T18487] ? __pfx_pollwake+0x10/0x10 [ 621.741370][T18487] ? __pfx_pollwake+0x10/0x10 [ 621.741425][T18487] ? __pfx_pollwake+0x10/0x10 [ 621.741480][T18487] ? __pfx_pollwake+0x10/0x10 [ 621.741536][T18487] ? __pfx_pollwake+0x10/0x10 [ 621.741591][T18487] ? __pfx_pollwake+0x10/0x10 [ 621.741647][T18487] ? __pfx_pollwake+0x10/0x10 [ 621.741704][T18487] ? __pfx_pollwake+0x10/0x10 [ 621.741760][T18487] ? __pfx_pollwake+0x10/0x10 [ 621.741817][T18487] ? do_futex+0x192/0x350 [ 621.741861][T18487] ? set_user_sigmask+0x1e1/0x270 [ 621.741927][T18487] ? __pfx_set_user_sigmask+0x10/0x10 [ 621.741995][T18487] __x64_sys_ppoll+0x2b5/0x350 [ 621.742059][T18487] ? __pfx___x64_sys_ppoll+0x10/0x10 [ 621.742133][T18487] do_syscall_64+0x106/0xf80 [ 621.742174][T18487] ? clear_bhb_loop+0x40/0x90 [ 621.742218][T18487] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 621.742254][T18487] RIP: 0033:0x7fedc119c799 [ 621.742284][T18487] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 621.742319][T18487] RSP: 002b:00007fedc2010028 EFLAGS: 00000246 ORIG_RAX: 000000000000010f [ 621.742354][T18487] RAX: ffffffffffffffda RBX: 00007fedc1415fa0 RCX: 00007fedc119c799 [ 621.742377][T18487] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000200000000200 [ 621.742398][T18487] RBP: 00007fedc1232bd9 R08: 0000000000000008 R09: 0000000000000000 [ 621.742419][T18487] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 621.742438][T18487] R13: 00007fedc1416038 R14: 00007fedc1415fa0 R15: 00007ffec5761238 [ 621.742484][T18487] [ 622.303601][T18492] random: crng reseeded on system resumption [ 622.656436][T18500] FAULT_INJECTION: forcing a failure. [ 622.656436][T18500] name failslab, interval 1, probability 0, space 0, times 0 [ 622.686765][T18500] CPU: 1 UID: 0 PID: 18500 Comm: syz.2.4706 Tainted: G L syzkaller #0 PREEMPT(full) [ 622.686818][T18500] Tainted: [L]=SOFTLOCKUP [ 622.686831][T18500] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 622.686851][T18500] Call Trace: [ 622.686862][T18500] [ 622.686874][T18500] dump_stack_lvl+0x100/0x190 [ 622.686930][T18500] should_fail_ex.cold+0x5/0xa [ 622.686971][T18500] should_failslab+0xc2/0x120 [ 622.687008][T18500] __kmalloc_cache_noprof+0x7a/0x6f0 [ 622.687053][T18500] ? vim2m_open+0xad/0x830 [ 622.687197][T18500] vim2m_open+0xad/0x830 [ 622.687247][T18500] v4l2_open+0x1d2/0x490 [ 622.687294][T18500] ? __pfx_v4l2_open+0x10/0x10 [ 622.687340][T18500] chrdev_open+0x234/0x6a0 [ 622.687374][T18500] ? __pfx_apparmor_file_open+0x10/0x10 [ 622.687427][T18500] ? __pfx_chrdev_open+0x10/0x10 [ 622.687465][T18500] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 622.687513][T18500] do_dentry_open+0x6d8/0x1660 [ 622.687545][T18500] ? __pfx_chrdev_open+0x10/0x10 [ 622.687590][T18500] vfs_open+0x82/0x3f0 [ 622.687636][T18500] path_openat+0x208c/0x31a0 [ 622.687686][T18500] ? __pfx_path_openat+0x10/0x10 [ 622.687737][T18500] do_file_open+0x20e/0x430 [ 622.687775][T18500] ? __pfx_do_file_open+0x10/0x10 [ 622.687842][T18500] ? alloc_fd+0x476/0x790 [ 622.687879][T18500] ? do_getname+0x191/0x390 [ 622.687925][T18500] do_sys_openat2+0x10d/0x1e0 [ 622.687980][T18500] ? __pfx_do_sys_openat2+0x10/0x10 [ 622.688042][T18500] __x64_sys_openat+0x12d/0x210 [ 622.688082][T18500] ? __pfx___x64_sys_openat+0x10/0x10 [ 622.688134][T18500] do_syscall_64+0x106/0xf80 [ 622.688168][T18500] ? clear_bhb_loop+0x40/0x90 [ 622.688204][T18500] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 622.688234][T18500] RIP: 0033:0x7f85d339c799 [ 622.688266][T18500] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 622.688296][T18500] RSP: 002b:00007f85d428e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 622.688324][T18500] RAX: ffffffffffffffda RBX: 00007f85d3615fa0 RCX: 00007f85d339c799 [ 622.688342][T18500] RDX: 000000000002aa01 RSI: 0000200000000180 RDI: ffffffffffffff9c [ 622.688361][T18500] RBP: 00007f85d3432bd9 R08: 0000000000000000 R09: 0000000000000000 [ 622.688379][T18500] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 622.688396][T18500] R13: 00007f85d3616038 R14: 00007f85d3615fa0 R15: 00007ffe4353c208 [ 622.688433][T18500] [ 624.681706][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 624.688318][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 625.141580][T18550] netlink: 'syz.1.4713': attribute type 22 has an invalid length. [ 625.149793][T18550] netlink: 330 bytes leftover after parsing attributes in process `syz.1.4713'. [ 627.757190][T18622] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff) [ 629.072283][T18668] netlink: 146 bytes leftover after parsing attributes in process `syz.0.4751'. [ 629.526606][T18676] snd_aloop snd_aloop.0: Parsing timer source '^ˆ^¨µÆ ¿­—‹Y«òkùTd5ëj5)J‚ñ fy¿DÉ=j"ß>׌æɧ@ÓpÏ=Àh¥1Ú“•Ã@±k' failed with -22 [ 629.608395][T18676] FAULT_INJECTION: forcing a failure. [ 629.608395][T18676] name fail_futex, interval 1, probability 0, space 0, times 0 [ 629.647238][T18676] CPU: 0 UID: 0 PID: 18676 Comm: syz.0.4753 Tainted: G L syzkaller #0 PREEMPT(full) [ 629.647293][T18676] Tainted: [L]=SOFTLOCKUP [ 629.647305][T18676] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 629.647327][T18676] Call Trace: [ 629.647337][T18676] [ 629.647349][T18676] dump_stack_lvl+0x100/0x190 [ 629.647407][T18676] should_fail_ex.cold+0x5/0xa [ 629.647448][T18676] get_futex_key+0x1d2/0x1620 [ 629.647495][T18676] ? __pfx_get_futex_key+0x10/0x10 [ 629.647551][T18676] futex_wake+0xea/0x530 [ 629.647609][T18676] ? __pfx_futex_wake+0x10/0x10 [ 629.647662][T18676] ? __call_rcu_common.constprop.0+0x3f0/0x9b0 [ 629.647724][T18676] do_futex+0x32b/0x350 [ 629.647769][T18676] ? __pfx_do_futex+0x10/0x10 [ 629.647812][T18676] ? __pfx___might_resched+0x10/0x10 [ 629.647861][T18676] ? blkcg_maybe_throttle_current+0x5df/0xeb0 [ 629.647922][T18676] __x64_sys_futex+0x34f/0x4d0 [ 629.647968][T18676] ? __pfx___x64_sys_futex+0x10/0x10 [ 629.648023][T18676] do_syscall_64+0x106/0xf80 [ 629.648058][T18676] ? clear_bhb_loop+0x40/0x90 [ 629.648095][T18676] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 629.648127][T18676] RIP: 0033:0x7fedc119c799 [ 629.648151][T18676] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 629.648180][T18676] RSP: 002b:00007fedc20100e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 629.648209][T18676] RAX: ffffffffffffffda RBX: 00007fedc1415fa8 RCX: 00007fedc119c799 [ 629.648230][T18676] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fedc1415fac [ 629.648249][T18676] RBP: 00007fedc1415fa0 R08: 0000000000000000 R09: 0000000000000000 [ 629.648267][T18676] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 629.648285][T18676] R13: 00007fedc1416038 R14: 00007ffec5761150 R15: 00007ffec5761238 [ 629.648325][T18676] [ 630.636558][T18701] netlink: 346 bytes leftover after parsing attributes in process `syz.1.4758'. [ 630.792285][T18707] netlink: 342 bytes leftover after parsing attributes in process `syz.1.4759'. [ 631.048936][T18711] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4769'. [ 632.373858][T18736] smpboot: CPU 1 is now offline [ 632.481692][T18738] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 632.544500][T18738] MDS CPU bug present and SMT on, data leak possible. See https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/mds.html for more details. [ 632.562234][T18738] TAA CPU bug present and SMT on, data leak possible. See https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/tsx_async_abort.html for more details. [ 632.604094][T18738] MMIO Stale Data CPU bug present and SMT on, data leak possible. See https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/processor_mmio_stale_data.html for more details. [ 632.965149][T18758] netlink: 146 bytes leftover after parsing attributes in process `syz.3.4780'. [ 633.263211][T18764] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4781'. [ 633.680172][T18774] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4785'. [ 634.614256][T18790] [U] [ 634.617252][T18790] [U] [ 634.619999][T18790] [U] [ 634.622916][T18790] [U] [ 634.629255][T18790] [U] [ 634.632413][T18790] [U] [ 634.635229][T18790] [U] [ 634.638527][T18790] [U] [ 634.654192][T18790] [U] [ 634.657070][T18790] [U] [ 634.659855][T18790] [U] [ 634.662632][T18790] [U] [ 634.719056][T18790] [U] [ 634.721830][T18790] [U] [ 634.724588][T18790] [U] [ 634.727343][T18790] [U] [ 634.785736][T18790] [U] [ 634.788723][T18790] [U] [ 634.791583][T18790] [U] [ 634.794368][T18790] [U] [ 634.828953][T18790] [U] [ 634.831742][T18790] [U] [ 634.834511][T18790] [U] [ 634.837275][T18790] [U] [ 634.882611][T18790] [U] [ 634.885417][T18790] [U] [ 634.888182][T18790] [U] [ 634.891037][T18790] [U] [ 634.923780][T18790] [U] [ 634.926629][T18790] [U] [ 634.929414][T18790] [U] [ 634.932177][T18790] [U] [ 634.955832][T18790] [U] [ 634.958731][T18790] [U] [ 634.961499][T18790] [U] [ 634.964283][T18790] [U] [ 635.006212][T18790] [U] [ 635.009031][T18790] [U] [ 635.011886][T18790] [U] [ 635.014658][T18790] [U] [ 635.048981][T18790] [U] [ 635.051793][T18790] [U] [ 635.054693][T18790] [U] [ 635.057461][T18790] [U] [ 635.093529][T18790] [U] [ 635.096348][T18790] [U] [ 635.099112][T18790] [U] [ 635.101964][T18790] [U] [ 635.106935][T18790] [U] [ 635.109744][T18790] [U] [ 635.112866][T18790] [U] [ 635.115662][T18790] [U] [ 635.165761][T18790] [U] [ 635.168642][T18790] [U] [ 635.171409][T18790] [U] [ 635.174181][T18790] [U] [ 635.189897][T18790] [U] [ 635.192704][T18790] [U] [ 635.195464][T18790] [U] [ 635.198220][T18790] [U] [ 635.228250][T18790] [U] [ 635.231105][T18790] [U] [ 635.233880][T18790] [U] [ 635.236643][T18790] [U] [ 635.240032][T18790] [U] [ 635.242811][T18790] [U] [ 635.245578][T18790] [U] [ 635.248341][T18790] [U] [ 635.269049][T18790] [U] [ 635.271858][T18790] [U] [ 635.274715][T18790] [U] [ 635.277573][T18790] [U] [ 635.281212][T18790] [U] [ 635.284082][T18790] [U] [ 635.287214][T18790] [U] [ 635.289976][T18790] [U] [ 635.293325][T18790] [U] [ 635.296120][T18790] [U] [ 635.298890][T18790] [U] [ 635.301650][T18790] [U] [ 635.317345][T18790] [U] [ 635.320207][T18790] [U] [ 635.322999][T18790] [U] [ 635.325850][T18790] [U] [ 635.380459][T18790] [U] [ 635.383265][T18790] [U] [ 635.386025][T18790] [U] [ 635.389046][T18790] [U] [ 635.405690][T18790] [U] [ 635.408494][T18790] [U] [ 635.411360][T18790] [U] [ 635.414182][T18790] [U] [ 635.417538][T18790] [U] [ 635.420396][T18790] [U] [ 635.423170][T18790] [U] [ 635.425948][T18790] [U] [ 635.436388][T18790] [U] [ 635.439400][T18790] [U] [ 635.442163][T18790] [U] [ 635.444921][T18790] [U] [ 635.457259][T18790] [U] [ 635.460066][T18790] [U] [ 635.462994][T18790] [U] [ 635.465760][T18790] [U] [ 635.495734][T18790] [U] [ 635.498550][T18790] [U] [ 635.501312][T18790] [U] [ 635.504237][T18790] [U] [ 635.517776][T18790] [U] [ 635.586867][T18808] netlink: 342 bytes leftover after parsing attributes in process `syz.1.4798'. [ 635.718131][T18812] FAULT_INJECTION: forcing a failure. [ 635.718131][T18812] name failslab, interval 1, probability 0, space 0, times 0 [ 635.737951][T18810] netlink: 334 bytes leftover after parsing attributes in process `syz.3.4799'. [ 635.784590][T18812] CPU: 1 UID: 0 PID: 18812 Comm: syz.0.4800 Tainted: G L syzkaller #0 PREEMPT(full) [ 635.784646][T18812] Tainted: [L]=SOFTLOCKUP [ 635.784659][T18812] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 635.784679][T18812] Call Trace: [ 635.784690][T18812] [ 635.784703][T18812] dump_stack_lvl+0x100/0x190 [ 635.784763][T18812] should_fail_ex.cold+0x5/0xa [ 635.784814][T18812] should_failslab+0xc2/0x120 [ 635.784850][T18812] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 635.784901][T18812] ? security_inode_alloc+0x3b/0x2c0 [ 635.784950][T18812] ? lockdep_init_map_type+0x5c/0x250 [ 635.784999][T18812] security_inode_alloc+0x3b/0x2c0 [ 635.785048][T18812] inode_init_always_gfp+0xced/0x1040 [ 635.785110][T18812] alloc_inode+0x8e/0x250 [ 635.785152][T18812] path_from_stashed+0x25b/0x750 [ 635.785195][T18812] ns_get_path+0x60/0x80 [ 635.785231][T18812] proc_ns_get_link+0x121/0x230 [ 635.785279][T18812] ? __pfx_proc_ns_get_link+0x10/0x10 [ 635.785329][T18812] ? atime_needs_update+0x8b/0x6b0 [ 635.785382][T18812] pick_link+0xd17/0x13c0 [ 635.785429][T18812] ? __pfx_proc_ns_get_link+0x10/0x10 [ 635.785481][T18812] step_into_slowpath+0x9ba/0xf90 [ 635.785542][T18812] ? __pfx_step_into_slowpath+0x10/0x10 [ 635.785593][T18812] ? find_held_lock+0x2b/0x80 [ 635.785640][T18812] path_openat+0xf95/0x31a0 [ 635.785689][T18812] ? __pfx_path_openat+0x10/0x10 [ 635.785739][T18812] do_file_open+0x20e/0x430 [ 635.785778][T18812] ? __pfx_do_file_open+0x10/0x10 [ 635.785852][T18812] ? alloc_fd+0x476/0x790 [ 635.785889][T18812] ? do_getname+0x191/0x390 [ 635.785936][T18812] do_sys_openat2+0x10d/0x1e0 [ 635.785982][T18812] ? __pfx_do_sys_openat2+0x10/0x10 [ 635.786043][T18812] __x64_sys_openat+0x12d/0x210 [ 635.786089][T18812] ? __pfx___x64_sys_openat+0x10/0x10 [ 635.786141][T18812] ? do_user_addr_fault+0x8d6/0x12f0 [ 635.786206][T18812] do_syscall_64+0x106/0xf80 [ 635.786245][T18812] ? clear_bhb_loop+0x40/0x90 [ 635.786287][T18812] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 635.786324][T18812] RIP: 0033:0x7fedc115cfce [ 635.786352][T18812] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 635.786385][T18812] RSP: 002b:00007fedc200fec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 635.786416][T18812] RAX: ffffffffffffffda RBX: 00007fedc20106c0 RCX: 00007fedc115cfce [ 635.786436][T18812] RDX: 0000000000000002 RSI: 00007fedc200ff90 RDI: ffffffffffffff9c [ 635.786458][T18812] RBP: 00007fedc1232bd9 R08: 0000000000000000 R09: 0000000000000000 [ 635.786479][T18812] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 635.786500][T18812] R13: 00007fedc1416038 R14: 00007fedc1415fa0 R15: 00007ffec5761238 [ 635.786544][T18812] [ 637.314628][T18845] FAULT_INJECTION: forcing a failure. [ 637.314628][T18845] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 637.342523][T18845] CPU: 1 UID: 0 PID: 18845 Comm: syz.0.4813 Tainted: G L syzkaller #0 PREEMPT(full) [ 637.342578][T18845] Tainted: [L]=SOFTLOCKUP [ 637.342626][T18845] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 637.342647][T18845] Call Trace: [ 637.342657][T18845] [ 637.342670][T18845] dump_stack_lvl+0x100/0x190 [ 637.342726][T18845] should_fail_ex.cold+0x5/0xa [ 637.342759][T18845] ? prepare_alloc_pages+0x16d/0x5f0 [ 637.342802][T18845] should_fail_alloc_page+0xeb/0x140 [ 637.342839][T18845] prepare_alloc_pages+0x1f0/0x5f0 [ 637.342884][T18845] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 637.342945][T18845] ? __lock_acquire+0x4a5/0x2630 [ 637.343000][T18845] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 637.343054][T18845] ? do_raw_spin_lock+0x128/0x260 [ 637.343105][T18845] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 637.343155][T18845] ? find_held_lock+0x2b/0x80 [ 637.343198][T18845] ? __lock_acquire+0x4a5/0x2630 [ 637.343240][T18845] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 637.343297][T18845] ? policy_nodemask+0xed/0x4f0 [ 637.343335][T18845] alloc_pages_mpol+0x1fb/0x550 [ 637.343371][T18845] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 637.343406][T18845] ? __folio_batch_add_and_move+0x5e5/0xc60 [ 637.343457][T18845] ? __folio_batch_add_and_move+0x5e5/0xc60 [ 637.343518][T18845] folio_alloc_mpol_noprof+0x36/0x340 [ 637.343562][T18845] shmem_alloc_folio+0x135/0x160 [ 637.343612][T18845] shmem_alloc_and_add_folio+0x371/0xd40 [ 637.343674][T18845] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 637.343728][T18845] ? shmem_allowable_huge_orders+0x2bd/0x400 [ 637.343778][T18845] ? __lock_acquire+0x400/0x2630 [ 637.343828][T18845] shmem_get_folio_gfp+0x6ab/0x1900 [ 637.343889][T18845] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 637.343942][T18845] ? __pfx___might_resched+0x10/0x10 [ 637.343990][T18845] ? noop_dirty_folio+0xfd/0x160 [ 637.344028][T18845] shmem_fallocate+0x6d7/0x1060 [ 637.344097][T18845] ? __pfx_shmem_fallocate+0x10/0x10 [ 637.344146][T18845] ? aa_file_perm+0x7f3/0x14d0 [ 637.344195][T18845] ? __lock_acquire+0x4a5/0x2630 [ 637.344268][T18845] ? __pfx_shmem_fallocate+0x10/0x10 [ 637.344318][T18845] vfs_fallocate+0x576/0x10d0 [ 637.344355][T18845] ? __pfx_vfs_fallocate+0x10/0x10 [ 637.344399][T18845] __x64_sys_fallocate+0xd5/0x140 [ 637.344437][T18845] do_syscall_64+0x106/0xf80 [ 637.344475][T18845] ? clear_bhb_loop+0x40/0x90 [ 637.344516][T18845] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 637.344550][T18845] RIP: 0033:0x7fedc119c799 [ 637.344578][T18845] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 637.344617][T18845] RSP: 002b:00007fedc2010028 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 637.344649][T18845] RAX: ffffffffffffffda RBX: 00007fedc1415fa0 RCX: 00007fedc119c799 [ 637.344671][T18845] RDX: 0000000000000007 RSI: 0000000000000000 RDI: 0000000000000005 [ 637.344691][T18845] RBP: 00007fedc1232bd9 R08: 0000000000000000 R09: 0000000000000000 [ 637.344712][T18845] R10: 00000000004cbd5d R11: 0000000000000246 R12: 0000000000000000 [ 637.344732][T18845] R13: 00007fedc1416038 R14: 00007fedc1415fa0 R15: 00007ffec5761238 [ 637.344776][T18845] [ 638.078170][T18857] netlink: 'syz.3.4808': attribute type 33 has an invalid length. [ 638.086319][T18857] netlink: 322 bytes leftover after parsing attributes in process `syz.3.4808'. [ 638.196539][T18857] netlink: 'syz.3.4808': attribute type 33 has an invalid length. [ 638.232709][T18857] netlink: 322 bytes leftover after parsing attributes in process `syz.3.4808'. [ 638.708814][T18876] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4816'. [ 638.747077][T18876] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 638.754562][T18876] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 638.803763][T18876] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 638.840467][T18876] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 639.117762][T18883] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4819'. [ 639.213293][T18883] bond0: (slave bond_slave_1): Releasing backup interface [ 639.457922][T18895] netlink: 334 bytes leftover after parsing attributes in process `syz.1.4822'. [ 639.502818][T18896] netlink: 'syz.2.4820': attribute type 33 has an invalid length. [ 639.524679][T18896] netlink: 322 bytes leftover after parsing attributes in process `syz.2.4820'. [ 639.814859][T18900] smpboot: CPU 1 is now offline [ 639.932000][T18903] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 639.975803][T18884] ------------[ cut here ]------------ [ 639.976945][T18884] [ 639.976956][T18884] ====================================================== [ 639.976968][T18884] WARNING: possible circular locking dependency detected [ 639.976984][T18884] syzkaller #0 Tainted: G L [ 639.977000][T18884] ------------------------------------------------------ [ 639.977010][T18884] syz.3.4818/18884 is trying to acquire lock: [ 639.977026][T18884] ffffffff8e6f53c0 (console_owner){-.-.}-{0:0}, at: console_lock_spinning_enable+0x61/0x80 [ 639.977117][T18884] [ 639.977117][T18884] but task is already holding lock: [ 639.977126][T18884] ffff8880b843b2e0 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x88/0x140 [ 639.977187][T18884] [ 639.977187][T18884] which lock already depends on the new lock. [ 639.977187][T18884] [ 639.977197][T18884] [ 639.977197][T18884] the existing dependency chain (in reverse order) is: [ 639.977206][T18884] [ 639.977206][T18884] -> #4 (&rq->__lock){-.-.}-{2:2}: [ 639.977243][T18884] _raw_spin_lock_nested+0x31/0x40 [ 639.977271][T18884] raw_spin_rq_lock_nested+0x2c/0x140 [ 639.977298][T18884] _task_rq_lock+0xcf/0x490 [ 639.977325][T18884] cgroup_move_task+0x81/0x2b0 [ 639.977354][T18884] css_set_move_task+0x285/0x600 [ 639.977381][T18884] cgroup_post_fork+0x202/0x9b0 [ 639.977416][T18884] copy_process+0x5f26/0x7a10 [ 639.977448][T18884] kernel_clone+0xfc/0x9a0 [ 639.977477][T18884] user_mode_thread+0xcc/0x110 [ 639.977509][T18884] rest_init+0x21/0x260 [ 639.977548][T18884] start_kernel+0x47f/0x480 [ 639.977610][T18884] x86_64_start_reservations+0x24/0x30 [ 639.977704][T18884] x86_64_start_kernel+0x12b/0x130 [ 639.977744][T18884] common_startup_64+0x13e/0x148 [ 639.977780][T18884] [ 639.977780][T18884] -> #3 (&p->pi_lock){-.-.}-{2:2}: [ 639.977818][T18884] _raw_spin_lock_irqsave+0x3a/0x60 [ 639.977847][T18884] try_to_wake_up+0xb2/0x1a80 [ 639.977871][T18884] autoremove_wake_function+0x16/0x150 [ 639.977904][T18884] __wake_up_common+0x135/0x1f0 [ 639.977940][T18884] __wake_up+0x31/0x60 [ 639.977968][T18884] tty_port_default_wakeup+0x47/0x60 [ 639.978007][T18884] serial8250_tx_chars+0x68f/0x860 [ 639.978095][T18884] serial8250_handle_irq+0x73e/0xcb0 [ 639.978136][T18884] serial8250_default_handle_irq+0x9e/0x270 [ 639.978178][T18884] serial8250_interrupt+0xf8/0x1d0 [ 639.978223][T18884] __handle_irq_event_percpu+0x232/0x8e0 [ 639.978271][T18884] handle_irq_event+0xab/0x1e0 [ 639.978318][T18884] handle_edge_irq+0x375/0x970 [ 639.978361][T18884] __common_interrupt+0xd8/0x2f0 [ 639.978398][T18884] common_interrupt+0xb9/0xe0 [ 639.978441][T18884] asm_common_interrupt+0x26/0x40 [ 639.978471][T18884] copy_page_range+0x12a4/0x6570 [ 639.978508][T18884] dup_mmap+0xd25/0x2180 [ 639.978538][T18884] copy_process+0x73d7/0x7a10 [ 639.978569][T18884] kernel_clone+0xfc/0x9a0 [ 639.978600][T18884] __do_sys_clone+0xd9/0x120 [ 639.978631][T18884] do_syscall_64+0x106/0xf80 [ 639.978663][T18884] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 639.978693][T18884] [ 639.978693][T18884] -> #2 (&tty->write_wait){-.-.}-{3:3}: [ 639.978730][T18884] _raw_spin_lock_irqsave+0x3a/0x60 [ 639.978757][T18884] __wake_up+0x1c/0x60 [ 639.978791][T18884] tty_port_default_wakeup+0x47/0x60 [ 639.978829][T18884] serial8250_tx_chars+0x68f/0x860 [ 639.978866][T18884] serial8250_handle_irq+0x73e/0xcb0 [ 639.978906][T18884] serial8250_default_handle_irq+0x9e/0x270 [ 639.978947][T18884] serial8250_interrupt+0xf8/0x1d0 [ 639.978992][T18884] __handle_irq_event_percpu+0x232/0x8e0 [ 639.979039][T18884] handle_irq_event+0xab/0x1e0 [ 639.979083][T18884] handle_edge_irq+0x375/0x970 [ 639.979126][T18884] __common_interrupt+0xd8/0x2f0 [ 639.979163][T18884] common_interrupt+0xb9/0xe0 [ 639.979204][T18884] asm_common_interrupt+0x26/0x40 [ 639.979233][T18884] _raw_spin_unlock_irqrestore+0x31/0x80 [ 639.979263][T18884] uart_write+0x29d/0xb20 [ 639.979298][T18884] n_tty_write+0x44f/0x12d0 [ 639.979340][T18884] file_tty_write.isra.0+0x4d2/0x890 [ 639.979375][T18884] redirected_tty_write+0xd4/0x120 [ 639.979409][T18884] vfs_write+0x6ac/0x1070 [ 639.979453][T18884] ksys_write+0x12a/0x250 [ 639.979496][T18884] do_syscall_64+0x106/0xf80 [ 639.979528][T18884] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 639.979558][T18884] [ 639.979558][T18884] -> #1 (&port_lock_key){-.-.}-{3:3}: [ 639.979594][T18884] _raw_spin_lock_irqsave+0x3a/0x60 [ 639.979622][T18884] serial8250_console_write+0x17e/0x1900 [ 639.979665][T18884] console_flush_one_record+0x790/0xe50 [ 639.979711][T18884] console_unlock+0x103/0x260 [ 639.979754][T18884] vprintk_emit+0x407/0x6b0 [ 639.979805][T18884] _printk+0xcf/0x110 [ 639.979831][T18884] register_console.cold+0xc0/0x248 [ 639.979860][T18884] univ8250_console_init+0x6f/0x80 [ 639.979917][T18884] console_init+0x423/0x620 [ 639.979961][T18884] start_kernel+0x305/0x480 [ 639.979995][T18884] x86_64_start_reservations+0x24/0x30 [ 639.980035][T18884] x86_64_start_kernel+0x12b/0x130 [ 639.980074][T18884] common_startup_64+0x13e/0x148 [ 639.980101][T18884] [ 639.980101][T18884] -> #0 (console_owner){-.-.}-{0:0}: [ 639.980138][T18884] __lock_acquire+0x14b8/0x2630 [ 639.980173][T18884] lock_acquire+0x1cf/0x380 [ 639.980206][T18884] console_lock_spinning_enable+0x72/0x80 [ 639.980251][T18884] console_flush_one_record+0x739/0xe50 [ 639.980298][T18884] console_unlock+0x103/0x260 [ 639.980343][T18884] vprintk_emit+0x407/0x6b0 [ 639.980390][T18884] _printk+0xcf/0x110 [ 639.980416][T18884] __report_bug.cold+0x15/0x137 [ 639.980456][T18884] report_bug+0xb2/0x220 [ 639.980516][T18884] handle_bug+0x16a/0x2a0 [ 639.980553][T18884] exc_invalid_op+0x17/0x50 [ 639.980592][T18884] asm_exc_invalid_op+0x1a/0x20 [ 639.980620][T18884] update_rq_clock+0x40a/0xd20 [ 639.980648][T18884] __schedule+0x1b7d/0x6120 [ 639.980676][T18884] preempt_schedule_irq+0x50/0x90 [ 639.980707][T18884] irqentry_exit+0x17b/0x670 [ 639.980740][T18884] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 639.980779][T18884] __kmalloc_cache_noprof+0x224/0x6f0 [ 639.980818][T18884] ref_tracker_alloc+0x190/0x590 [ 639.980850][T18884] dst_init+0xda/0x5b0 [ 639.980902][T18884] dst_alloc+0xbb/0x1a0 [ 639.980928][T18884] rt_dst_alloc+0x35/0x3a0 [ 639.980965][T18884] ip_route_output_key_hash_rcu+0x87a/0x2870 [ 639.981013][T18884] ip_route_output_key_hash+0x118/0x2b0 [ 639.981060][T18884] ip_route_output_flow+0x27/0x150 [ 639.981107][T18884] raw_sendmsg+0xb1d/0x3800 [ 639.981152][T18884] inet_sendmsg+0x11c/0x140 [ 639.981221][T18884] ____sys_sendmsg+0x9ad/0xc30 [ 639.981264][T18884] ___sys_sendmsg+0x190/0x1e0 [ 639.981308][T18884] __sys_sendmmsg+0x205/0x430 [ 639.981341][T18884] __x64_sys_sendmmsg+0x9c/0x100 [ 639.981375][T18884] do_syscall_64+0x106/0xf80 [ 639.981408][T18884] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 639.981438][T18884] [ 639.981438][T18884] other info that might help us debug this: [ 639.981438][T18884] [ 639.981449][T18884] Chain exists of: [ 639.981449][T18884] console_owner --> &p->pi_lock --> &rq->__lock [ 639.981449][T18884] [ 639.981493][T18884] Possible unsafe locking scenario: [ 639.981493][T18884] [ 639.981502][T18884] CPU0 CPU1 [ 639.981511][T18884] ---- ---- [ 639.981520][T18884] lock(&rq->__lock); [ 639.981539][T18884] lock(&p->pi_lock); [ 639.981559][T18884] lock(&rq->__lock); [ 639.981587][T18884] lock(console_owner); [ 639.981606][T18884] [ 639.981606][T18884] *** DEADLOCK *** [ 639.981606][T18884] [ 639.981613][T18884] 4 locks held by syz.3.4818/18884: [ 639.981631][T18884] #0: ffffffff8e7e9220 (rcu_read_lock){....}-{1:3}, at: ip_route_output_key_hash+0xd6/0x2b0 [ 639.981719][T18884] #1: ffff8880b843b2e0 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x88/0x140 [ 639.981792][T18884] #2: ffffffff8e7d5800 (console_lock){+.+.}-{0:0}, at: _printk+0xcf/0x110 [ 639.981858][T18884] #3: ffffffff8e7d5878 (console_srcu){....}-{0:0}, at: console_flush_one_record+0xfd/0xe50 [ 639.981944][T18884] [ 639.981944][T18884] stack backtrace: [ 639.981963][T18884] CPU: 0 UID: 0 PID: 18884 Comm: syz.3.4818 Tainted: G L syzkaller #0 PREEMPT(full) [ 639.982007][T18884] Tainted: [L]=SOFTLOCKUP [ 639.982019][T18884] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 639.982038][T18884] Call Trace: [ 639.982049][T18884] [ 639.982061][T18884] dump_stack_lvl+0x100/0x190 [ 639.982105][T18884] print_circular_bug.cold+0x178/0x1c7 [ 639.982157][T18884] check_noncircular+0x146/0x160 [ 639.982197][T18884] __lock_acquire+0x14b8/0x2630 [ 639.982243][T18884] lock_acquire+0x1cf/0x380 [ 639.982280][T18884] ? console_lock_spinning_enable+0x61/0x80 [ 639.982329][T18884] ? console_lock_spinning_enable+0x4a/0x80 [ 639.982380][T18884] console_lock_spinning_enable+0x72/0x80 [ 639.982427][T18884] ? console_lock_spinning_enable+0x61/0x80 [ 639.982487][T18884] console_flush_one_record+0x739/0xe50 [ 639.982541][T18884] ? __pfx_console_flush_one_record+0x10/0x10 [ 639.982595][T18884] ? is_printk_cpu_sync_owner+0x32/0x40 [ 639.982629][T18884] console_unlock+0x103/0x260 [ 639.982678][T18884] ? __pfx_console_unlock+0x10/0x10 [ 639.982728][T18884] ? do_raw_spin_unlock+0x145/0x1e0 [ 639.982779][T18884] ? _printk+0xcf/0x110 [ 639.982810][T18884] vprintk_emit+0x407/0x6b0 [ 639.982860][T18884] ? __pfx_vprintk_emit+0x10/0x10 [ 639.982909][T18884] ? find_held_lock+0x2b/0x80 [ 639.982936][T18884] ? is_bpf_text_address+0x8a/0x1a0 [ 639.982986][T18884] _printk+0xcf/0x110 [ 639.983014][T18884] ? __pfx__printk+0x10/0x10 [ 639.983042][T18884] ? is_bpf_text_address+0x94/0x1a0 [ 639.983089][T18884] ? __kernel_text_address+0xd/0x30 [ 639.983135][T18884] ? unwind_get_return_address+0x59/0xa0 [ 639.983168][T18884] ? arch_stack_walk+0xa6/0xf0 [ 639.983196][T18884] ? __report_bug.cold+0x5/0x137 [ 639.983239][T18884] __report_bug.cold+0x15/0x137 [ 639.983279][T18884] ? update_rq_clock+0x40a/0xd20 [ 639.983311][T18884] ? __pfx___report_bug+0x10/0x10 [ 639.983341][T18884] ? stack_trace_save+0x8e/0xc0 [ 639.983373][T18884] ? __lock_acquire+0x4a5/0x2630 [ 639.983413][T18884] ? update_rq_clock+0x40a/0xd20 [ 639.983444][T18884] report_bug+0xb2/0x220 [ 639.983475][T18884] ? update_rq_clock+0x40a/0xd20 [ 639.983506][T18884] handle_bug+0x16a/0x2a0 [ 639.983547][T18884] exc_invalid_op+0x17/0x50 [ 639.983589][T18884] asm_exc_invalid_op+0x1a/0x20 [ 639.983619][T18884] RIP: 0010:update_rq_clock+0x40a/0xd20 [ 639.983653][T18884] Code: ab 48 0b 00 00 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e 41 5f e9 18 9f ba 09 a8 04 0f 84 df fc ff ff 90 0f 0b 90 e9 d6 fc ff ff 90 <0f> 0b 90 e9 92 fc ff ff 4c 8d 83 40 0b 00 00 48 b8 00 00 00 00 00 [ 639.983685][T18884] RSP: 0018:ffffc90005827050 EFLAGS: 00010046 [ 639.983709][T18884] RAX: 0000000000000000 RBX: ffff8880b853b280 RCX: 0000000000000001 [ 639.983729][T18884] RDX: 0000000000000046 RSI: ffffffff8de55850 RDI: ffffffff8c1af520 [ 639.983750][T18884] RBP: ffffc900058271f8 R08: 0000000000000001 R09: 0000000000000001 [ 639.983783][T18884] R10: ffffffff90d9b017 R11: 0000000000000000 R12: ffffffff90d9e3e4 [ 639.983804][T18884] R13: ffff8880b853c0c0 R14: ffff88801e6a1e80 R15: ffff8880b853b280 [ 639.983839][T18884] __schedule+0x1b7d/0x6120 [ 639.983870][T18884] ? __kernel_text_address+0xd/0x30 [ 639.983924][T18884] ? __pfx___schedule+0x10/0x10 [ 639.983957][T18884] ? rcu_is_watching+0x12/0xc0 [ 639.984005][T18884] preempt_schedule_irq+0x50/0x90 [ 639.984039][T18884] irqentry_exit+0x17b/0x670 [ 639.984074][T18884] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 639.984108][T18884] RIP: 0010:__kmalloc_cache_noprof+0x224/0x6f0 [ 639.984150][T18884] Code: 74 24 20 4d 85 f6 0f 84 50 01 00 00 45 89 ef 0f 1f 44 00 00 0f 1f 44 00 00 48 83 7b 40 00 0f 84 4c 02 00 00 8b 15 dc 45 72 0e <21> ea 0f 1f 44 00 00 44 8b 7b 1c 0f 1f 44 00 00 41 0f b6 cc 4c 89 [ 639.984182][T18884] RSP: 0018:ffffc90005827300 EFLAGS: 00000246 [ 639.984206][T18884] RAX: 0000000000000001 RBX: ffff88813fe3c780 RCX: 0000000000000000 [ 639.984226][T18884] RDX: 0000000003ffffff RSI: ffffffff8de7b8e8 RDI: 0000000000000001 [ 639.984247][T18884] RBP: 0000000000002920 R08: ffff88807adc7540 R09: 0000000000000000 [ 639.984267][T18884] R10: 0000000000000001 R11: 0000000800400037 R12: 0000000000000001 [ 639.984287][T18884] R13: 0000000000000020 R14: ffff88807adc7540 R15: 0000000000000020 [ 639.984316][T18884] ? ref_tracker_alloc+0x190/0x590 [ 639.984352][T18884] ref_tracker_alloc+0x190/0x590 [ 639.984384][T18884] ? __pfx_ref_tracker_alloc+0x10/0x10 [ 639.984423][T18884] ? rcu_is_watching+0x12/0xc0 [ 639.984468][T18884] ? trace_kmem_cache_alloc+0xf3/0x120 [ 639.984503][T18884] ? __kasan_slab_alloc+0x89/0x90 [ 639.984555][T18884] dst_init+0xda/0x5b0 [ 639.984583][T18884] dst_alloc+0xbb/0x1a0 [ 639.984613][T18884] rt_dst_alloc+0x35/0x3a0 [ 639.984650][T18884] ip_route_output_key_hash_rcu+0x87a/0x2870 [ 639.984705][T18884] ip_route_output_key_hash+0x118/0x2b0 [ 639.984754][T18884] ? __pfx_ip_route_output_key_hash+0x10/0x10 [ 639.984812][T18884] ? release_sock+0x21/0x220 [ 639.984850][T18884] ? find_held_lock+0x2b/0x80 [ 639.984879][T18884] ip_route_output_flow+0x27/0x150 [ 639.984930][T18884] raw_sendmsg+0xb1d/0x3800 [ 639.984982][T18884] ? __pfx_raw_sendmsg+0x10/0x10 [ 639.985027][T18884] ? __page_table_check_ptes_set+0x1b5/0x4e0 [ 639.985081][T18884] ? find_held_lock+0x2b/0x80 [ 639.985107][T18884] ? rcu_read_unlock+0x2d/0xb0 [ 639.985150][T18884] ? rcu_read_unlock+0x2d/0xb0 [ 639.985211][T18884] ? __import_iovec+0x1d2/0x640 [ 639.985242][T18884] ? __pfx_raw_sendmsg+0x10/0x10 [ 639.985289][T18884] inet_sendmsg+0x11c/0x140 [ 639.985335][T18884] ____sys_sendmsg+0x9ad/0xc30 [ 639.985382][T18884] ? __pfx_____sys_sendmsg+0x10/0x10 [ 639.985430][T18884] ? rcu_is_watching+0x12/0xc0 [ 639.985474][T18884] ? ___sys_sendmsg+0x19d/0x1e0 [ 639.985519][T18884] ? kfree+0x2ec/0x6b0 [ 639.985554][T18884] ? find_held_lock+0x2b/0x80 [ 639.985581][T18884] ? count_memcg_events_mm.constprop.0+0xfa/0x2a0 [ 639.985636][T18884] ___sys_sendmsg+0x190/0x1e0 [ 639.985683][T18884] ? __pfx____sys_sendmsg+0x10/0x10 [ 639.985728][T18884] ? do_user_addr_fault+0x7de/0x12f0 [ 639.985791][T18884] ? irqentry_exit+0x180/0x670 [ 639.985834][T18884] ? __pfx___might_resched+0x10/0x10 [ 639.985883][T18884] __sys_sendmmsg+0x205/0x430 [ 639.985921][T18884] ? __pfx___sys_sendmmsg+0x10/0x10 [ 639.985970][T18884] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 639.986006][T18884] ? kcov_ioctl+0x16a/0x720 [ 639.986056][T18884] __x64_sys_sendmmsg+0x9c/0x100 [ 639.986093][T18884] ? lockdep_hardirqs_on+0x78/0x100 [ 639.986127][T18884] do_syscall_64+0x106/0xf80 [ 639.986162][T18884] ? clear_bhb_loop+0x40/0x90 [ 639.986197][T18884] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 639.986228][T18884] RIP: 0033:0x7f2df579c799 [ 639.986253][T18884] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 639.986284][T18884] RSP: 002b:00007f2df39d5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 639.986313][T18884] RAX: ffffffffffffffda RBX: 00007f2df5a16090 RCX: 00007f2df579c799 [ 639.986334][T18884] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000003 [ 639.986354][T18884] RBP: 00007f2df5832bd9 R08: 0000000000000000 R09: 0000000000000000 [ 639.986374][T18884] R10: 0000000007000000 R11: 0000000000000246 R12: 0000000000000000 [ 639.986393][T18884] R13: 00007f2df5a16128 R14: 00007f2df5a16090 R15: 00007fff500abff8 [ 639.986423][T18884] [ 641.542310][T18884] debug_locks && !(lock_is_held(&(__rq_lockp(rq))->dep_map) != 0) [ 641.542333][T18884] WARNING: kernel/sched/sched.h:1600 at update_rq_clock+0x40a/0xd20, CPU#0: syz.3.4818/18884 [ 641.560468][T18884] Modules linked in: [ 641.564614][T18884] CPU: 0 UID: 0 PID: 18884 Comm: syz.3.4818 Tainted: G L syzkaller #0 PREEMPT(full) [ 641.575711][T18884] Tainted: [L]=SOFTLOCKUP [ 641.580081][T18884] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 641.590186][T18884] RIP: 0010:update_rq_clock+0x40a/0xd20 [ 641.595877][T18884] Code: ab 48 0b 00 00 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e 41 5f e9 18 9f ba 09 a8 04 0f 84 df fc ff ff 90 0f 0b 90 e9 d6 fc ff ff 90 <0f> 0b 90 e9 92 fc ff ff 4c 8d 83 40 0b 00 00 48 b8 00 00 00 00 00 [ 641.615988][T18884] RSP: 0018:ffffc90005827050 EFLAGS: 00010046 [ 641.622191][T18884] RAX: 0000000000000000 RBX: ffff8880b853b280 RCX: 0000000000000001 [ 641.630203][T18884] RDX: 0000000000000046 RSI: ffffffff8de55850 RDI: ffffffff8c1af520 [ 641.638446][T18884] RBP: ffffc900058271f8 R08: 0000000000000001 R09: 0000000000000001 [ 641.646562][T18884] R10: ffffffff90d9b017 R11: 0000000000000000 R12: ffffffff90d9e3e4 [ 641.655032][T18884] R13: ffff8880b853c0c0 R14: ffff88801e6a1e80 R15: ffff8880b853b280 [ 641.663328][T18884] FS: 00007f2df39d56c0(0000) GS:ffff88812434c000(0000) knlGS:0000000000000000 [ 641.672329][T18884] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 641.678958][T18884] CR2: 000000000000e038 CR3: 0000000071898000 CR4: 00000000003526f0 [ 641.687316][T18884] Call Trace: [ 641.690676][T18884] [ 641.693660][T18884] __schedule+0x1b7d/0x6120 [ 641.698232][T18884] ? __kernel_text_address+0xd/0x30 [ 641.703508][T18884] ? __pfx___schedule+0x10/0x10 [ 641.708403][T18884] ? rcu_is_watching+0x12/0xc0 [ 641.713229][T18884] preempt_schedule_irq+0x50/0x90 [ 641.718390][T18884] irqentry_exit+0x17b/0x670 [ 641.723051][T18884] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 641.729086][T18884] RIP: 0010:__kmalloc_cache_noprof+0x224/0x6f0 [ 641.735470][T18884] Code: 74 24 20 4d 85 f6 0f 84 50 01 00 00 45 89 ef 0f 1f 44 00 00 0f 1f 44 00 00 48 83 7b 40 00 0f 84 4c 02 00 00 8b 15 dc 45 72 0e <21> ea 0f 1f 44 00 00 44 8b 7b 1c 0f 1f 44 00 00 41 0f b6 cc 4c 89 [ 641.755363][T18884] RSP: 0018:ffffc90005827300 EFLAGS: 00000246 [ 641.761528][T18884] RAX: 0000000000000001 RBX: ffff88813fe3c780 RCX: 0000000000000000 [ 641.769698][T18884] RDX: 0000000003ffffff RSI: ffffffff8de7b8e8 RDI: 0000000000000001 [ 641.777974][T18884] RBP: 0000000000002920 R08: ffff88807adc7540 R09: 0000000000000000 [ 641.786164][T18884] R10: 0000000000000001 R11: 0000000800400037 R12: 0000000000000001 [ 641.794276][T18884] R13: 0000000000000020 R14: ffff88807adc7540 R15: 0000000000000020 [ 641.802310][T18884] ? ref_tracker_alloc+0x190/0x590 [ 641.807478][T18884] ref_tracker_alloc+0x190/0x590 [ 641.812465][T18884] ? __pfx_ref_tracker_alloc+0x10/0x10 [ 641.817978][T18884] ? rcu_is_watching+0x12/0xc0 [ 641.822824][T18884] ? trace_kmem_cache_alloc+0xf3/0x120 [ 641.828392][T18884] ? __kasan_slab_alloc+0x89/0x90 [ 641.833570][T18884] dst_init+0xda/0x5b0 [ 641.837705][T18884] dst_alloc+0xbb/0x1a0 [ 641.841901][T18884] rt_dst_alloc+0x35/0x3a0 [ 641.846375][T18884] ip_route_output_key_hash_rcu+0x87a/0x2870 [ 641.852702][T18884] ip_route_output_key_hash+0x118/0x2b0 [ 641.858662][T18884] ? __pfx_ip_route_output_key_hash+0x10/0x10 [ 641.864788][T18884] ? release_sock+0x21/0x220 [ 641.869430][T18884] ? find_held_lock+0x2b/0x80 [ 641.874492][T18884] ip_route_output_flow+0x27/0x150 [ 641.879669][T18884] raw_sendmsg+0xb1d/0x3800 [ 641.884323][T18884] ? __pfx_raw_sendmsg+0x10/0x10 [ 641.889323][T18884] ? __page_table_check_ptes_set+0x1b5/0x4e0 [ 641.895366][T18884] ? find_held_lock+0x2b/0x80 [ 641.900083][T18884] ? rcu_read_unlock+0x2d/0xb0 [ 641.904899][T18884] ? rcu_read_unlock+0x2d/0xb0 [ 641.909744][T18884] ? __import_iovec+0x1d2/0x640 [ 641.914656][T18884] ? __pfx_raw_sendmsg+0x10/0x10 [ 641.919828][T18884] inet_sendmsg+0x11c/0x140 [ 641.924398][T18884] ____sys_sendmsg+0x9ad/0xc30 [ 641.929272][T18884] ? __pfx_____sys_sendmsg+0x10/0x10 [ 641.934674][T18884] ? rcu_is_watching+0x12/0xc0 [ 641.939492][T18884] ? ___sys_sendmsg+0x19d/0x1e0 [ 641.944433][T18884] ? kfree+0x2ec/0x6b0 [ 641.948553][T18884] ? find_held_lock+0x2b/0x80 [ 641.953271][T18884] ? count_memcg_events_mm.constprop.0+0xfa/0x2a0 [ 641.959764][T18884] ___sys_sendmsg+0x190/0x1e0 [ 641.964500][T18884] ? __pfx____sys_sendmsg+0x10/0x10 [ 641.969842][T18884] ? do_user_addr_fault+0x7de/0x12f0 [ 641.975202][T18884] ? irqentry_exit+0x180/0x670 [ 641.980031][T18884] ? __pfx___might_resched+0x10/0x10 [ 641.985379][T18884] __sys_sendmmsg+0x205/0x430 [ 641.990106][T18884] ? __pfx___sys_sendmmsg+0x10/0x10 [ 641.995371][T18884] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 642.001501][T18884] ? kcov_ioctl+0x16a/0x720 [ 642.006188][T18884] __x64_sys_sendmmsg+0x9c/0x100 [ 642.011270][T18884] ? lockdep_hardirqs_on+0x78/0x100 [ 642.016530][T18884] do_syscall_64+0x106/0xf80 [ 642.021346][T18884] ? clear_bhb_loop+0x40/0x90 [ 642.026080][T18884] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 642.032023][T18884] RIP: 0033:0x7f2df579c799 [ 642.036481][T18884] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 642.056240][T18884] RSP: 002b:00007f2df39d5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 642.064702][T18884] RAX: ffffffffffffffda RBX: 00007f2df5a16090 RCX: 00007f2df579c799 [ 642.072797][T18884] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000003 [ 642.080800][T18884] RBP: 00007f2df5832bd9 R08: 0000000000000000 R09: 0000000000000000 [ 642.088808][T18884] R10: 0000000007000000 R11: 0000000000000246 R12: 0000000000000000 [ 642.096818][T18884] R13: 00007f2df5a16128 R14: 00007f2df5a16090 R15: 00007fff500abff8 [ 642.104835][T18884] [ 642.107887][T18884] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 642.115211][T18884] CPU: 0 UID: 0 PID: 18884 Comm: syz.3.4818 Tainted: G L syzkaller #0 PREEMPT(full) [ 642.126207][T18884] Tainted: [L]=SOFTLOCKUP [ 642.130658][T18884] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 642.140770][T18884] Call Trace: [ 642.144167][T18884] [ 642.147132][T18884] dump_stack_lvl+0x100/0x190 [ 642.151885][T18884] vpanic+0x552/0x970 [ 642.155907][T18884] ? __pfx_vpanic+0x10/0x10 [ 642.160451][T18884] ? lock_release+0x263/0x320 [ 642.165424][T18884] panic+0xd1/0xe0 [ 642.169283][T18884] ? __pfx_panic+0x10/0x10 [ 642.173755][T18884] check_panic_on_warn.cold+0x19/0x34 [ 642.179259][T18884] ? update_rq_clock+0x40a/0xd20 [ 642.184232][T18884] __warn.cold+0x191/0x348 [ 642.188702][T18884] __report_bug+0x296/0x3d0 [ 642.193243][T18884] ? update_rq_clock+0x40a/0xd20 [ 642.198232][T18884] ? __pfx___report_bug+0x10/0x10 [ 642.203298][T18884] ? stack_trace_save+0x8e/0xc0 [ 642.208278][T18884] ? __lock_acquire+0x4a5/0x2630 [ 642.213288][T18884] ? update_rq_clock+0x40a/0xd20 [ 642.218356][T18884] report_bug+0xb2/0x220 [ 642.222644][T18884] ? update_rq_clock+0x40a/0xd20 [ 642.227626][T18884] handle_bug+0x16a/0x2a0 [ 642.232011][T18884] exc_invalid_op+0x17/0x50 [ 642.236576][T18884] asm_exc_invalid_op+0x1a/0x20 [ 642.241917][T18884] RIP: 0010:update_rq_clock+0x40a/0xd20 [ 642.248981][T18884] Code: ab 48 0b 00 00 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e 41 5f e9 18 9f ba 09 a8 04 0f 84 df fc ff ff 90 0f 0b 90 e9 d6 fc ff ff 90 <0f> 0b 90 e9 92 fc ff ff 4c 8d 83 40 0b 00 00 48 b8 00 00 00 00 00 [ 642.268656][T18884] RSP: 0018:ffffc90005827050 EFLAGS: 00010046 [ 642.274766][T18884] RAX: 0000000000000000 RBX: ffff8880b853b280 RCX: 0000000000000001 [ 642.282880][T18884] RDX: 0000000000000046 RSI: ffffffff8de55850 RDI: ffffffff8c1af520 [ 642.291074][T18884] RBP: ffffc900058271f8 R08: 0000000000000001 R09: 0000000000000001 [ 642.299267][T18884] R10: ffffffff90d9b017 R11: 0000000000000000 R12: ffffffff90d9e3e4 [ 642.307317][T18884] R13: ffff8880b853c0c0 R14: ffff88801e6a1e80 R15: ffff8880b853b280 [ 642.315371][T18884] __schedule+0x1b7d/0x6120 [ 642.320029][T18884] ? __kernel_text_address+0xd/0x30 [ 642.325358][T18884] ? __pfx___schedule+0x10/0x10 [ 642.330441][T18884] ? rcu_is_watching+0x12/0xc0 [ 642.335275][T18884] preempt_schedule_irq+0x50/0x90 [ 642.340449][T18884] irqentry_exit+0x17b/0x670 [ 642.345119][T18884] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 642.351157][T18884] RIP: 0010:__kmalloc_cache_noprof+0x224/0x6f0 [ 642.357476][T18884] Code: 74 24 20 4d 85 f6 0f 84 50 01 00 00 45 89 ef 0f 1f 44 00 00 0f 1f 44 00 00 48 83 7b 40 00 0f 84 4c 02 00 00 8b 15 dc 45 72 0e <21> ea 0f 1f 44 00 00 44 8b 7b 1c 0f 1f 44 00 00 41 0f b6 cc 4c 89 [ 642.377133][T18884] RSP: 0018:ffffc90005827300 EFLAGS: 00000246 [ 642.383245][T18884] RAX: 0000000000000001 RBX: ffff88813fe3c780 RCX: 0000000000000000 [ 642.391509][T18884] RDX: 0000000003ffffff RSI: ffffffff8de7b8e8 RDI: 0000000000000001 [ 642.399642][T18884] RBP: 0000000000002920 R08: ffff88807adc7540 R09: 0000000000000000 [ 642.407661][T18884] R10: 0000000000000001 R11: 0000000800400037 R12: 0000000000000001 [ 642.416032][T18884] R13: 0000000000000020 R14: ffff88807adc7540 R15: 0000000000000020 [ 642.424075][T18884] ? ref_tracker_alloc+0x190/0x590 [ 642.429269][T18884] ref_tracker_alloc+0x190/0x590 [ 642.434285][T18884] ? __pfx_ref_tracker_alloc+0x10/0x10 [ 642.439827][T18884] ? rcu_is_watching+0x12/0xc0 [ 642.444683][T18884] ? trace_kmem_cache_alloc+0xf3/0x120 [ 642.450374][T18884] ? __kasan_slab_alloc+0x89/0x90 [ 642.455496][T18884] dst_init+0xda/0x5b0 [ 642.459627][T18884] dst_alloc+0xbb/0x1a0 [ 642.463834][T18884] rt_dst_alloc+0x35/0x3a0 [ 642.468314][T18884] ip_route_output_key_hash_rcu+0x87a/0x2870 [ 642.474383][T18884] ip_route_output_key_hash+0x118/0x2b0 [ 642.480040][T18884] ? __pfx_ip_route_output_key_hash+0x10/0x10 [ 642.486201][T18884] ? release_sock+0x21/0x220 [ 642.490842][T18884] ? find_held_lock+0x2b/0x80 [ 642.495562][T18884] ip_route_output_flow+0x27/0x150 [ 642.500933][T18884] raw_sendmsg+0xb1d/0x3800 [ 642.505546][T18884] ? __pfx_raw_sendmsg+0x10/0x10 [ 642.510758][T18884] ? __page_table_check_ptes_set+0x1b5/0x4e0 [ 642.517090][T18884] ? find_held_lock+0x2b/0x80 [ 642.521913][T18884] ? rcu_read_unlock+0x2d/0xb0 [ 642.526867][T18884] ? rcu_read_unlock+0x2d/0xb0 [ 642.532014][T18884] ? __import_iovec+0x1d2/0x640 [ 642.537197][T18884] ? __pfx_raw_sendmsg+0x10/0x10 [ 642.542204][T18884] inet_sendmsg+0x11c/0x140 [ 642.546808][T18884] ____sys_sendmsg+0x9ad/0xc30 [ 642.551716][T18884] ? __pfx_____sys_sendmsg+0x10/0x10 [ 642.557148][T18884] ? rcu_is_watching+0x12/0xc0 [ 642.561980][T18884] ? ___sys_sendmsg+0x19d/0x1e0 [ 642.566900][T18884] ? kfree+0x2ec/0x6b0 [ 642.571073][T18884] ? find_held_lock+0x2b/0x80 [ 642.575785][T18884] ? count_memcg_events_mm.constprop.0+0xfa/0x2a0 [ 642.582263][T18884] ___sys_sendmsg+0x190/0x1e0 [ 642.587013][T18884] ? __pfx____sys_sendmsg+0x10/0x10 [ 642.592282][T18884] ? do_user_addr_fault+0x7de/0x12f0 [ 642.597637][T18884] ? irqentry_exit+0x180/0x670 [ 642.602457][T18884] ? __pfx___might_resched+0x10/0x10 [ 642.607796][T18884] __sys_sendmmsg+0x205/0x430 [ 642.612711][T18884] ? __pfx___sys_sendmmsg+0x10/0x10 [ 642.618063][T18884] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 642.623918][T18884] ? kcov_ioctl+0x16a/0x720 [ 642.628510][T18884] __x64_sys_sendmmsg+0x9c/0x100 [ 642.633515][T18884] ? lockdep_hardirqs_on+0x78/0x100 [ 642.638886][T18884] do_syscall_64+0x106/0xf80 [ 642.643622][T18884] ? clear_bhb_loop+0x40/0x90 [ 642.648344][T18884] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 642.654278][T18884] RIP: 0033:0x7f2df579c799 [ 642.658740][T18884] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 642.678483][T18884] RSP: 002b:00007f2df39d5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 642.686951][T18884] RAX: ffffffffffffffda RBX: 00007f2df5a16090 RCX: 00007f2df579c799 [ 642.695088][T18884] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000003 [ 642.703192][T18884] RBP: 00007f2df5832bd9 R08: 0000000000000000 R09: 0000000000000000 [ 642.711197][T18884] R10: 0000000007000000 R11: 0000000000000246 R12: 0000000000000000 [ 642.719389][T18884] R13: 00007f2df5a16128 R14: 00007f2df5a16090 R15: 00007fff500abff8 [ 642.727525][T18884] [ 642.731206][T18884] Kernel Offset: disabled [ 642.735583][T18884] Rebooting in 86400 seconds..