last executing test programs: 14.257539421s ago: executing program 3 (id=1264): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x14fa02, 0x0) mmap$auto(0x0, 0x810004, 0x400000000ffb, 0x8000000008011, 0x3, 0x8000) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) r1 = socket(0xa, 0x3, 0x3a) close$auto(r1) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(r1, 0x8, 0x0, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) r2 = open(0x0, 0x0, 0x408) getdents$auto(r2, 0x0, 0x400018) sendfile$auto(0x3, 0x3, 0x0, 0x400000000006) preadv2$auto(r0, &(0x7f0000000080)={0x0, 0x80000000}, 0x6, 0xffffffffffffffff, 0x4, 0x2e) 11.848621333s ago: executing program 3 (id=1269): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) close_range$auto(0x2, 0x8, 0x0) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x17) close_range$auto(0xffffffffffffffff, 0x8, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) syz_genetlink_get_family_id$auto_nbd(0x0, 0xffffffffffffffff) madvise$auto(0x0, 0x2003f2, 0x15) madvise$auto(0x0, 0x200007, 0x19) msgrcv$auto(0x0, 0x0, 0x4, 0x9, 0x3) msgctl$auto(0x0, 0x1, 0x0) 10.977055479s ago: executing program 1 (id=1272): mmap$auto(0x2, 0x2020009, 0x3, 0x20000000000eb1, 0xfffffffffffffffa, 0x8000) r0 = socket(0x2, 0x2, 0x0) connect$auto(r0, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x52) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000440), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) open(0x0, 0x161342, 0x100) setdomainname$auto(0x0, 0x7) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) mremap$auto(0x200000000000, 0x40000000004, 0xdc98, 0x3, 0x100000000) close_range$auto(0x2, 0x8, 0x0) memfd_create$auto(0x0, 0xe) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r1, &(0x7f0000000180)='\x05\x00\x00\x00', 0x80000005) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) 10.564457457s ago: executing program 1 (id=1274): openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x40080, 0x0) unshare$auto(0x40000080) mmap$auto(0x0, 0x2020089, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) r0 = socket(0x1d, 0x2, 0x7) r1 = socket(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r2}, 0x6a) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'vcan0\x00', 0x0}) connect$auto(0x3, &(0x7f00000018c0)=@can={0x1d, r3}, 0x18) sendmmsg$auto(0x3, 0x0, 0x9a4, 0xffff) 9.165467318s ago: executing program 3 (id=1275): openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vbi22\x00', 0x100, 0x0) r0 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) syz_genetlink_get_family_id$auto_nl802154(0x0, 0xffffffffffffffff) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x20342, 0x0) mmap$auto(0x0, 0x10001, 0xdf, 0x9b71, 0xffffffffffffffff, 0x0) socket(0xa, 0x1, 0x100) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f0000000180)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8\xa6\xb6\xaa\x96/OX\xba\x02\xc5\xc6B\x1d}Y\xbc@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf\xd6f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8', 0x100000a3d6) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x10000000000001ff, 0x9, 0xd3e, 0x20, 0x9687, 0x100000000000003, 0x3c2a19d5, 0x6, 0x3, 0x62, 0x8, 0x7, 0x6d3f, 0x6, 0xa, 0xfffffffffffffffe]}, 0x0) sendmsg$auto_NL80211_CMD_LEAVE_MESH(r0, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={0x0}, 0x1, 0x0, 0x0, 0x4048010}, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000380)={[0x1ff, 0x7, 0xfffffffffffffffb, 0x1000001, 0x4, 0x3, 0x3, 0x3, 0xffffffffffffffff, 0x3, 0x80000000003fffff, 0x3, 0x6d3c, 0x3, 0x2, 0x8000000000000006]}, 0x0) close_range$auto(0x2, 0xa, 0x0) 8.03541742s ago: executing program 3 (id=1276): socket$nl_generic(0x10, 0x3, 0x10) unshare$auto(0x40000080) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r0, 0x0, 0x100000a3d9) listen$auto(0x3, 0x81) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x2003f2, 0x15) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r1, 0x0, 0x24048004) madvise$auto(0x0, 0x200007, 0x19) open_by_handle_at$auto(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x1b}, 0x403) 8.03248093s ago: executing program 1 (id=1278): openat$auto_ftrace_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f00000008c0)='/sys/kernel/tracing/events/vmalloc/purge_vmap_area_lazy/enable\x00', 0x2, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) sendmsg$auto_SMC_NETLINK_GET_DEV_SMCR(0xffffffffffffffff, 0x0, 0x40) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) unshare$auto(0x40000080) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x43102, 0x0) sendmsg$auto_ETHTOOL_MSG_LINKINFO_SET(0xffffffffffffffff, 0x0, 0x2000c840) madvise$auto(0x110c230000, 0x1, 0x9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000000000008000) io_setup$auto(0x7ffe, 0x0) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) 7.522026893s ago: executing program 2 (id=1281): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x14fa02, 0x0) mmap$auto(0x0, 0x810004, 0x400000000ffb, 0x8000000008011, 0x3, 0x8000) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) r1 = socket(0xa, 0x3, 0x3a) close$auto(r1) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(r1, 0x8, 0x0, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) r2 = open(0x0, 0x0, 0x408) getdents$auto(r2, 0x0, 0x400018) sendfile$auto(0x3, 0x3, 0x0, 0x400000000006) preadv2$auto(r0, &(0x7f0000000080)={0x0, 0x80000000}, 0x6, 0xffffffffffffffff, 0x4, 0x2e) 6.398957845s ago: executing program 3 (id=1283): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) close_range$auto(0x0, 0xffffeffe, 0x2) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000002c80)='/proc/thread-self/net/rpc/nfsd.fh/channel\x00', 0x80, 0x0) socket(0x2, 0x801, 0x106) pipe$auto(0x0) unshare$auto(0x40000080) setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x4, &(0x7f00000002c0)={0x0, 0xffeb}, 0x1, 0x0, 0x5, 0x7}, 0x8}, 0xffffffff, 0xb00) 4.857186631s ago: executing program 3 (id=1285): mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x14fa02, 0x0) getsockopt$auto(0xffffffffffffffff, 0x84, 0x18, 0x0, 0x0) mmap$auto(0x0, 0x810004, 0x400000000fff, 0x8000000008011, 0x3, 0x8000) r0 = socket(0xa, 0x3, 0x3a) close$auto(r0) io_uring_register$auto(r0, 0x8, 0x0, 0x0) write$auto(0x3, 0x0, 0xfffffdef) write$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffffff, 0x0, 0x0) write$auto(0x3, 0x0, 0xfffffdef) sendfile$auto(0x3, 0x3, 0x0, 0x400000000006) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x801, 0x4f46, 0x6) 4.853695683s ago: executing program 2 (id=1287): unshare$auto(0x40000080) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008012, 0xffffffffffffffff, 0x8000) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x480302, 0x0) ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x10001) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000240)={0x0, 0x7}, 0x2) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/class/zram-control/hot_add\x00', 0x0, 0x0) unshare$auto(0x40000080) 3.865391514s ago: executing program 0 (id=1288): close_range$auto(0x2, 0x8, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xa001, 0x0) bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_5={@target_ifindex, 0x7f, 0x99, 0x8, 0x1, @relative_fd, 0xd}, 0x3) mmap$auto(0x0, 0x5, 0xdf, 0x9b72, 0x7, 0x28000) socketpair$auto(0x1e, 0x5, 0x200000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x55) socket(0x2, 0x3, 0xa) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x8) connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @multicast1}, 0x55) recvmmsg$auto(0xffffffffffffffff, &(0x7f0000000100)={{0x0, 0xbb, 0x0, 0x8, &(0x7f0000000040), 0x81, 0x9}, 0xfffffffb}, 0x5, 0x6586, 0x0) sendmsg$auto_NL802154_CMD_DEL_INTERFACE(0xffffffffffffffff, &(0x7f0000000000)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x20050001}, 0x80) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 3.640649353s ago: executing program 0 (id=1289): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xa, 0x8000) socket(0x10, 0x2, 0x0) r0 = socket(0x18, 0x2, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'veth0\x00'}) close_range$auto(0x0, 0xffffffffffffffff, 0x2) socket(0xa, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x801, 0x84) r2 = socket(0x18, 0x5, 0x1) connect$auto(r2, &(0x7f0000000000)=@in={0x2, 0x100}, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x80047437, 0x0) 3.35332616s ago: executing program 2 (id=1290): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/system/machinecheck/machinecheck0/bank6\x00', 0x2101, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x11, 0x80003, 0x300) r0 = socket(0x10, 0x2, 0x4) sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x4c894}, 0x20008800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=ANY=[@ANYRES32=r0, @ANYRES64], 0x38}}, 0x40008c0) close_range$auto(0x2, 0x8, 0x0) fanotify_init$auto(0x65, 0x2) socket(0x1d, 0x2, 0x2) connect$auto(0x3, 0x0, 0x53) socket(0x10, 0x3, 0x6) socketpair$auto(0x1e, 0xb, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0x38}, 0x6, 0x0, 0x4, 0x9}, 0x9}, 0x6, 0x1f00) 3.198441264s ago: executing program 0 (id=1291): timer_create$auto(0x0, 0x0, 0x0) mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) r0 = socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) sendmsg$auto_NL80211_CMD_LEAVE_OCB(r0, 0x0, 0x0) mmap$auto(0xfffffffffffffffc, 0xfffffffffffffc00, 0x58235b0e, 0x40eb1, 0x401, 0x4004300000000002) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc2902, 0x0) ioctl$auto_UI_SET_FFBIT(r0, 0x4004556b, 0x0) socket(0x2, 0x1, 0x106) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80302, 0x0) write$auto(0x3, 0x0, 0xffd8) mbind$auto(0x8000, 0xfa9d, 0x5, &(0x7f0000000280)=0x20000000000000fb, 0x3, 0x1) set_mempolicy_home_node$auto(0x0, 0x2010001, 0x0, 0x0) 3.096044796s ago: executing program 2 (id=1292): unshare$auto(0x40000080) listen$auto(0x3, 0xfffffffe) socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) sendmmsg$auto(0x3, 0x0, 0x3, 0x0) recvfrom$auto(0x4, 0x0, 0x101d0, 0x3ffffd, 0x0, 0x0) madvise$auto(0x0, 0x2003f2, 0x15) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) r0 = socket(0x2, 0x80002, 0x73) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff) sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)={0x3c, r2, 0x1, 0x70bd2d, 0x25dfdbf6, {}, [@L2TP_ATTR_PEER_CONN_ID={0x8, 0xa, 0x8}, @L2TP_ATTR_PROTO_VERSION={0x5, 0x7, 0x3b}, @L2TP_ATTR_CONN_ID={0x8, 0x9, 0x11e789c}, @L2TP_ATTR_ENCAP_TYPE={0x6}, @L2TP_ATTR_FD={0x8, 0x17, r0}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x48080) 2.70736278s ago: executing program 1 (id=1293): mmap$auto(0x0, 0x10000, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) unshare$auto(0x40000080) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) r0 = open$auto(&(0x7f0000000080)='./file0\x00', 0x5, 0x7e) fsconfig$auto_SHMEM_HUGE_NEVER(r0, 0x101, &(0x7f00000000c0)='\\\x00', &(0x7f0000000180)="4ca8df5cbd8c0367e15bc31bf91391c10d40529964be81134527ab1e3b54fd0e4ba23cf1d449c180ec53b15002ee040468e0c82384a0563e37f8360b2f8286ea8cb826641ed56f376743", 0x0) getpriority$auto_PRIO_USER(0x2, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$auto_TIPC_NL_BEARER_DISABLE(r1, &(0x7f0000002740)={0x0, 0x0, &(0x7f0000002700)={&(0x7f0000003a80)=ANY=[@ANYBLOB="03040000", @ANYRES16=r2, @ANYBLOB="010429bd7000fddbdf2502000000"], 0x14}, 0x1, 0x0, 0x0, 0x2400c001}, 0x8000) pipe2$auto(0x0, 0x80) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x109981, 0x0) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) 1.460387221s ago: executing program 1 (id=1295): socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000002740), 0xffffffffffffffff) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) process_vm_readv$auto(0x0, 0x0, 0x1, 0x0, 0x6, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x2003f2, 0x15) ioctl$auto_BLKALIGNOFF(0xffffffffffffffff, 0x127a, 0x0) madvise$auto(0x0, 0x1010001, 0x100000003) madvise$auto(0x1000, 0x400050, 0x9) openat$auto_tracing_err_log_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/error_log\x00', 0xb01, 0x0) write$auto(0x1, 0x0, 0x80000000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) munmap$auto(0x8000, 0xffffffff) 1.390343395s ago: executing program 0 (id=1296): socket(0x2, 0x5, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) connect$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x0, @rand_addr=0xe0}, 0x55) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x3, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4000894}, 0x4000000) r0 = bpf$auto(0x0, &(0x7f00000001c0)=@test={0xffffffffffffffff, 0xffff, 0xfffff0b6, 0xffff, 0x84, 0xac1, 0x2, 0x36242398, 0xfffff5b2, 0x3bb, 0x8000007, 0xffff, 0x6, 0x81, 0x68198}, 0x6f3) sendmsg$auto_ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000001700)={0x0, 0x0, &(0x7f00000016c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="d4000000", @ANYRES16=0x0, @ANYBLOB="100027bd7000fbdbdf2518000000200001800247eea41fac000014000200766574683100000000000000000000000800070063fbffff0500060001000000840002803d00488013b37090badc49d6dc93876646d25a4d297d01cd3b7da38d12889cc50d505f353dc42d0a3c0a14c7b46428910708003600", @ANYRES32=0x0, @ANYBLOB="0400b3800000003d003b800400a4800c009a00008000000000000004008680c16ab1b1b39dcaa14b6af7dcc011b43cf706e562811c62b28a702b72e0a87126700294f2350000000c000180080003"], 0xd4}, 0x1, 0x0, 0x0, 0x20000010}, 0x20008000) rt_tgsigqueueinfo$auto(0x3, 0x96, 0x803, &(0x7f0000000180)={@siginfo_0_0={0x8, 0x7, 0x8000, @_sigpoll={0x8000000000000000, r0}}}) sendmsg$auto_ETHTOOL_MSG_WOL_SET(0xffffffffffffffff, &(0x7f0000002cc0)={0x0, 0x0, &(0x7f0000002c80)={&(0x7f0000000180)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYBLOB="010027bd"], 0x2c}, 0x1, 0x0, 0x0, 0x4801}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="12"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 1.182491445s ago: executing program 2 (id=1297): mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) io_uring_setup$auto(0x406, 0x0) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0x5, 0x0) openat$auto_ep0_operations_inode(0xffffffffffffff9c, &(0x7f0000000000), 0x8a001, 0x0) epoll_create$auto(0x20003f) memfd_secret$auto(0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) fcntl$auto(r0, 0x410, 0x0) mknod$auto(&(0x7f0000000080)='./file0\x00', 0x8, 0x6) close_range$auto(0x2, 0xa, 0x0) 788.606213ms ago: executing program 2 (id=1298): sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000) bpf$auto(0x1, &(0x7f0000000000)=@batch={0xfffffffffffffffb, 0x44, 0x4, 0x9, 0x80100, 0xffffffffffffffff, 0x2, 0x9}, 0x4) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x29, 0x2, 0x0) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x1ac}}, 0x40000) recvmmsg$auto(r0, 0x0, 0xfffffff9, 0x10, 0x0) rseq$auto(0x0, 0x8000, 0x0, 0x6) io_uring_setup$auto(0x2, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x5, 0x84) socket(0xa, 0x3, 0x3a) setsockopt$auto(0x400000000000003, 0x29, 0xd4, 0x0, 0x4) 603.309404ms ago: executing program 1 (id=1299): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x106) bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) socket(0x21, 0x2, 0x0) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) setsockopt$auto(0x3, 0x0, 0x28, 0xfffffffffffffffc, 0x70) write$auto(0x3, 0x0, 0x1) write$auto(0x3, 0x0, 0xfffffdef) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) 234.102337ms ago: executing program 0 (id=1300): r0 = openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/buffer_size_kb\x00', 0x90000, 0x0) mmap$auto(0x1, 0x20000005, 0x2, 0x214, r0, 0x4) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/cpu/cpuidle/current_driver\x00', 0x8100, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000500)=""/193, 0xc1) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x40842, 0x0) mmap$auto(0x0, 0xe983, 0x6, 0xeb1, 0xffffffffffffffff, 0x8000) r2 = epoll_create$auto(0x5806) r3 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/radio18\x00', 0x18a041, 0x0) epoll_ctl$auto(r2, 0x1, r3, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x14fa02, 0x0) sendfile$auto(0x3, r4, 0x0, 0x400000000006) close_range$auto(0x0, 0x5, 0x0) 0s ago: executing program 0 (id=1301): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x0, 0x0, 0x2, 0x0, 0x7, 0xa507}, 0x800}, 0x7, 0x8) read$auto(r0, 0x0, 0x20) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x22, 0x2, 0x4) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x100, 0x0) io_uring_setup$auto(0x6, 0x0) kernel console output (not intermixed with test programs): 6090] netlink: 17 bytes leftover after parsing attributes in process `syz.2.56'. [ 111.402422][ T6125] netlink: 25 bytes leftover after parsing attributes in process `syz.2.69'. [ 115.507920][ T6180] ubi0: attaching mtd0 [ 115.542763][ T6180] ubi0: scanning is finished [ 115.554317][ T6180] ubi0: empty MTD device detected [ 116.392225][ T6180] ubi0 error: ubi_attach_mtd_dev: cannot spawn "ubi_bgt0d", error -4 [ 116.715764][ T6194] syz.2.91 uses obsolete (PF_INET,SOCK_PACKET) [ 117.867619][ T6220] netlink: 342 bytes leftover after parsing attributes in process `syz.3.102'. [ 118.491621][ T6235] netlink: 'syz.1.106': attribute type 28 has an invalid length. [ 118.524882][ T6235] netlink: 'syz.1.106': attribute type 3 has an invalid length. [ 118.535505][ T6235] netlink: 306 bytes leftover after parsing attributes in process `syz.1.106'. [ 119.366918][ T6250] netlink: 'syz.0.112': attribute type 11 has an invalid length. [ 120.047303][ T6263] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 120.243680][ T6267] FAULT_INJECTION: forcing a failure. [ 120.243680][ T6267] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 120.262569][ T6267] CPU: 1 UID: 0 PID: 6267 Comm: syz.1.117 Not tainted syzkaller #0 PREEMPT(full) [ 120.262608][ T6267] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 120.262624][ T6267] Call Trace: [ 120.262633][ T6267] [ 120.262644][ T6267] dump_stack_lvl+0x100/0x190 [ 120.262697][ T6267] should_fail_ex.cold+0x5/0xa [ 120.262727][ T6267] ? prepare_alloc_pages+0x16d/0x5f0 [ 120.262762][ T6267] should_fail_alloc_page+0xeb/0x140 [ 120.262795][ T6267] prepare_alloc_pages+0x1f0/0x5f0 [ 120.262834][ T6267] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 120.262892][ T6267] ? rcu_is_watching+0x12/0xc0 [ 120.262928][ T6267] ? trace_mm_page_alloc+0x163/0x1d0 [ 120.262965][ T6267] ? __alloc_frozen_pages_noprof+0x2b1/0x2bc0 [ 120.263011][ T6267] ? orc_sort_cmp+0xd1/0x120 [ 120.263047][ T6267] ? arch_stack_walk+0xa6/0xf0 [ 120.263084][ T6267] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 120.263150][ T6267] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 120.263197][ T6267] ? stack_depot_save_flags+0x27/0x9d0 [ 120.263239][ T6267] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 120.263285][ T6267] ? pcpu_create_chunk+0x254/0x730 [ 120.263334][ T6267] ? kasan_save_stack+0x3f/0x50 [ 120.263382][ T6267] ? kasan_save_stack+0x30/0x50 [ 120.263443][ T6267] alloc_pages_bulk_noprof+0x657/0x1390 [ 120.263494][ T6267] ? policy_nodemask+0xed/0x4f0 [ 120.263530][ T6267] ? __pfx_alloc_pages_bulk_noprof+0x10/0x10 [ 120.263603][ T6267] __kasan_populate_vmalloc+0xf0/0x210 [ 120.263660][ T6267] pcpu_get_vm_areas+0x2df1/0x55d0 [ 120.263723][ T6267] ? __pfx_pcpu_get_vm_areas+0x10/0x10 [ 120.263762][ T6267] pcpu_create_chunk+0x254/0x730 [ 120.263794][ T6267] pcpu_alloc_noprof+0x1896/0x1c20 [ 120.263835][ T6267] bpf_map_alloc_percpu+0x9a/0xf0 [ 120.263862][ T6267] ? __pfx_bpf_map_alloc_percpu+0x10/0x10 [ 120.263889][ T6267] ? __pfx___might_resched+0x10/0x10 [ 120.263908][ T6267] ? __bpf_map_area_alloc+0x13a/0x200 [ 120.263929][ T6267] htab_map_alloc+0x1054/0x14e0 [ 120.263957][ T6267] ? ns_capable+0xd2/0xf0 [ 120.263978][ T6267] ? __pfx_htab_map_mem_usage+0x10/0x10 [ 120.264001][ T6267] map_create+0x84e/0x2ba0 [ 120.264024][ T6267] ? futex_unqueue+0x13d/0x2c0 [ 120.264042][ T6267] ? __futex_wait+0x256/0x300 [ 120.264071][ T6267] ? __pfx_map_create+0x10/0x10 [ 120.264095][ T6267] ? __might_fault+0xc5/0x140 [ 120.264120][ T6267] ? __might_fault+0xc5/0x140 [ 120.264153][ T6267] __sys_bpf+0x2091/0x4b90 [ 120.264175][ T6267] ? __pfx___sys_bpf+0x10/0x10 [ 120.264191][ T6267] ? __pfx_futex_wait+0x10/0x10 [ 120.264217][ T6267] ? do_writev+0x214/0x340 [ 120.264250][ T6267] ? do_futex+0x192/0x350 [ 120.264280][ T6267] ? xfd_validate_state+0x129/0x190 [ 120.264316][ T6267] __x64_sys_bpf+0x7b/0xc0 [ 120.264342][ T6267] ? lockdep_hardirqs_on+0x78/0x100 [ 120.264373][ T6267] do_syscall_64+0x10b/0xf80 [ 120.264399][ T6267] ? clear_bhb_loop+0x40/0x90 [ 120.264429][ T6267] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 120.264448][ T6267] RIP: 0033:0x7fb0d5d9c819 [ 120.264465][ T6267] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 120.264483][ T6267] RSP: 002b:00007fb0d6c2b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 120.264501][ T6267] RAX: ffffffffffffffda RBX: 00007fb0d6016180 RCX: 00007fb0d5d9c819 [ 120.264513][ T6267] RDX: 00000000000000a3 RSI: 0000200000000780 RDI: 0000000000000000 [ 120.264523][ T6267] RBP: 00007fb0d5e32c91 R08: 0000000000000000 R09: 0000000000000000 [ 120.264534][ T6267] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 120.264545][ T6267] R13: 00007fb0d6016218 R14: 00007fb0d6016180 R15: 00007ffd85a136d8 [ 120.264568][ T6267] [ 121.545864][ T6281] netlink: 252 bytes leftover after parsing attributes in process `syz.0.126'. [ 121.575833][ T6281] netlink: 252 bytes leftover after parsing attributes in process `syz.0.126'. [ 122.192436][ T5841] Bluetooth: hci0: unexpected subevent 0x01 length: 3 < 18 [ 123.951866][ T6333] FAULT_INJECTION: forcing a failure. [ 123.951866][ T6333] name failslab, interval 1, probability 0, space 0, times 0 [ 123.999482][ T6333] CPU: 0 UID: 0 PID: 6333 Comm: syz.1.141 Tainted: G L syzkaller #0 PREEMPT(full) [ 123.999532][ T6333] Tainted: [L]=SOFTLOCKUP [ 123.999541][ T6333] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 123.999559][ T6333] Call Trace: [ 123.999567][ T6333] [ 123.999576][ T6333] dump_stack_lvl+0x100/0x190 [ 123.999622][ T6333] should_fail_ex.cold+0x5/0xa [ 123.999658][ T6333] should_failslab+0xc2/0x120 [ 123.999690][ T6333] __kmalloc_cache_noprof+0x7a/0x6f0 [ 123.999726][ T6333] ? refill_pi_state_cache+0x91/0x260 [ 123.999777][ T6333] refill_pi_state_cache+0x91/0x260 [ 123.999814][ T6333] futex_lock_pi+0x16d/0x7a0 [ 123.999851][ T6333] ? __pfx_futex_lock_pi+0x10/0x10 [ 123.999930][ T6333] ? __pfx_futex_wake_mark+0x10/0x10 [ 123.999975][ T6333] ? __get_user_nocheck_8+0x20/0x20 [ 124.000012][ T6333] ? do_vfs_ioctl+0x226/0x13e0 [ 124.000056][ T6333] do_futex+0x18a/0x350 [ 124.000083][ T6333] ? __pfx_do_futex+0x10/0x10 [ 124.000112][ T6333] ? find_held_lock+0x2b/0x80 [ 124.000405][ T6333] __x64_sys_futex+0x34f/0x4d0 [ 124.000442][ T6333] ? __pfx___x64_sys_futex+0x10/0x10 [ 124.000475][ T6333] ? rcu_is_watching+0x12/0xc0 [ 124.000507][ T6333] do_syscall_64+0x10b/0xf80 [ 124.000546][ T6333] ? clear_bhb_loop+0x40/0x90 [ 124.000580][ T6333] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 124.000608][ T6333] RIP: 0033:0x7fb0d5d9c819 [ 124.000632][ T6333] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 124.000658][ T6333] RSP: 002b:00007fb0d6c4c028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 124.000685][ T6333] RAX: ffffffffffffffda RBX: 00007fb0d6016090 RCX: 00007fb0d5d9c819 [ 124.000702][ T6333] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000 [ 124.000716][ T6333] RBP: 00007fb0d5e32c91 R08: 0000000000000000 R09: 000000008000fff5 [ 124.000732][ T6333] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 124.000747][ T6333] R13: 00007fb0d6016128 R14: 00007fb0d6016090 R15: 00007ffd85a136d8 [ 124.000784][ T6333] [ 124.981005][ T6357] netlink: 28 bytes leftover after parsing attributes in process `syz.0.147'. [ 126.140037][ T6381] warning: `syz.0.153' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 127.480990][ T6396] netlink: 202 bytes leftover after parsing attributes in process `syz.1.157'. [ 127.749661][ T6403] netlink: 13 bytes leftover after parsing attributes in process `syz.0.160'. [ 128.043246][ T6409] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 128.386102][ T6420] netlink: 206 bytes leftover after parsing attributes in process `syz.1.166'. [ 128.861545][ T6429] netlink: 'syz.2.168': attribute type 10 has an invalid length. [ 128.872373][ T6429] netlink: 'syz.2.168': attribute type 13 has an invalid length. [ 129.213222][ T6437] netlink: 'syz.1.173': attribute type 1 has an invalid length. [ 129.222037][ T6437] netlink: 330 bytes leftover after parsing attributes in process `syz.1.173'. [ 130.323241][ T6461] netlink: 25 bytes leftover after parsing attributes in process `syz.3.182'. [ 130.663963][ T6469] netlink: 202 bytes leftover after parsing attributes in process `syz.3.186'. [ 131.099337][ T6480] sp0: Synchronizing with TNC [ 132.043000][ T6501] FAULT_INJECTION: forcing a failure. [ 132.043000][ T6501] name failslab, interval 1, probability 0, space 0, times 0 [ 132.103848][ T6501] CPU: 1 UID: 0 PID: 6501 Comm: syz.0.197 Tainted: G L syzkaller #0 PREEMPT(full) [ 132.103899][ T6501] Tainted: [L]=SOFTLOCKUP [ 132.103910][ T6501] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 132.103927][ T6501] Call Trace: [ 132.103937][ T6501] [ 132.103949][ T6501] dump_stack_lvl+0x100/0x190 [ 132.104020][ T6501] should_fail_ex.cold+0x5/0xa [ 132.104060][ T6501] should_failslab+0xc2/0x120 [ 132.104094][ T6501] __kmalloc_cache_noprof+0x7a/0x6f0 [ 132.104134][ T6501] ? drm_master_create+0x43/0x4d0 [ 132.104177][ T6501] drm_master_create+0x43/0x4d0 [ 132.104217][ T6501] drm_new_set_master+0xcc/0x430 [ 132.104254][ T6501] drm_master_open+0x194/0x200 [ 132.104291][ T6501] drm_open_helper+0x42b/0x540 [ 132.104330][ T6501] drm_open+0x1a0/0x3e0 [ 132.104362][ T6501] ? __pfx_drm_open+0x10/0x10 [ 132.104394][ T6501] drm_stub_open+0x20f/0x380 [ 132.104429][ T6501] ? __pfx_drm_stub_open+0x10/0x10 [ 132.104461][ T6501] chrdev_open+0x234/0x6a0 [ 132.104492][ T6501] ? __pfx_apparmor_file_open+0x10/0x10 [ 132.104526][ T6501] ? __pfx_chrdev_open+0x10/0x10 [ 132.104559][ T6501] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 132.104615][ T6501] do_dentry_open+0x6d8/0x1660 [ 132.104647][ T6501] ? __pfx_chrdev_open+0x10/0x10 [ 132.104688][ T6501] vfs_open+0x82/0x3f0 [ 132.104732][ T6501] path_openat+0x208c/0x31a0 [ 132.104780][ T6501] ? __pfx_path_openat+0x10/0x10 [ 132.104838][ T6501] do_file_open+0x20e/0x430 [ 132.104874][ T6501] ? __pfx_do_file_open+0x10/0x10 [ 132.104937][ T6501] ? alloc_fd+0x476/0x790 [ 132.104981][ T6501] ? do_getname+0x191/0x390 [ 132.105026][ T6501] do_sys_openat2+0x10d/0x1e0 [ 132.105068][ T6501] ? __pfx_do_sys_openat2+0x10/0x10 [ 132.105113][ T6501] ? __fget_files+0x21f/0x3d0 [ 132.105151][ T6501] __x64_sys_openat+0x12d/0x210 [ 132.105194][ T6501] ? __pfx___x64_sys_openat+0x10/0x10 [ 132.105241][ T6501] ? rcu_is_watching+0x12/0xc0 [ 132.105284][ T6501] do_syscall_64+0x10b/0xf80 [ 132.105328][ T6501] ? clear_bhb_loop+0x40/0x90 [ 132.105365][ T6501] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 132.105396][ T6501] RIP: 0033:0x7f776d19c819 [ 132.105422][ T6501] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 132.105449][ T6501] RSP: 002b:00007f776e0c0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 132.105478][ T6501] RAX: ffffffffffffffda RBX: 00007f776d415fa0 RCX: 00007f776d19c819 [ 132.105499][ T6501] RDX: 0000000000028900 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 132.105518][ T6501] RBP: 00007f776d232c91 R08: 0000000000000000 R09: 0000000000000000 [ 132.105536][ T6501] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 132.105552][ T6501] R13: 00007f776d416038 R14: 00007f776d415fa0 R15: 00007ffc78e65f68 [ 132.105592][ T6501] [ 132.439185][ T6507] netlink: 252 bytes leftover after parsing attributes in process `syz.2.199'. [ 132.501409][ T6507] netlink: 252 bytes leftover after parsing attributes in process `syz.2.199'. [ 133.288489][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.296144][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 134.398420][ T6538] FAULT_INJECTION: forcing a failure. [ 134.398420][ T6538] name fail_futex, interval 1, probability 0, space 0, times 1 [ 134.447686][ T6538] CPU: 1 UID: 0 PID: 6538 Comm: syz.2.207 Tainted: G L syzkaller #0 PREEMPT(full) [ 134.447741][ T6538] Tainted: [L]=SOFTLOCKUP [ 134.447753][ T6538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 134.447770][ T6538] Call Trace: [ 134.447781][ T6538] [ 134.447792][ T6538] dump_stack_lvl+0x100/0x190 [ 134.447850][ T6538] should_fail_ex.cold+0x5/0xa [ 134.447889][ T6538] get_futex_key+0x295/0x1510 [ 134.447946][ T6538] ? __pfx_get_futex_key+0x10/0x10 [ 134.447996][ T6538] ? kasan_save_track+0x14/0x30 [ 134.448044][ T6538] ? __kasan_kmalloc+0xaa/0xb0 [ 134.448095][ T6538] futex_lock_pi+0x1d2/0x7a0 [ 134.448139][ T6538] ? __pfx_futex_lock_pi+0x10/0x10 [ 134.448194][ T6538] ? __pfx_try_to_wake_up+0x10/0x10 [ 134.448254][ T6538] ? futex_private_hash_put+0x107/0x1c0 [ 134.448308][ T6538] ? __pfx_futex_wake_mark+0x10/0x10 [ 134.448356][ T6538] ? __get_user_nocheck_8+0x20/0x20 [ 134.448399][ T6538] ? do_vfs_ioctl+0x226/0x13e0 [ 134.448449][ T6538] do_futex+0x18a/0x350 [ 134.448479][ T6538] ? __pfx_do_futex+0x10/0x10 [ 134.448511][ T6538] ? find_held_lock+0x2b/0x80 [ 134.448552][ T6538] __x64_sys_futex+0x34f/0x4d0 [ 134.448590][ T6538] ? __pfx___x64_sys_futex+0x10/0x10 [ 134.448631][ T6538] ? rcu_is_watching+0x12/0xc0 [ 134.448671][ T6538] do_syscall_64+0x10b/0xf80 [ 134.448716][ T6538] ? clear_bhb_loop+0x40/0x90 [ 134.448754][ T6538] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 134.448787][ T6538] RIP: 0033:0x7fcf6bd9c819 [ 134.448813][ T6538] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 134.448843][ T6538] RSP: 002b:00007fcf6cc7b028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 134.448873][ T6538] RAX: ffffffffffffffda RBX: 00007fcf6c016090 RCX: 00007fcf6bd9c819 [ 134.448893][ T6538] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000 [ 134.448910][ T6538] RBP: 00007fcf6be32c91 R08: 0000000000000000 R09: 000000008000fff5 [ 134.448929][ T6538] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 134.448947][ T6538] R13: 00007fcf6c016128 R14: 00007fcf6c016090 R15: 00007fffcffae708 [ 134.448985][ T6538] [ 135.358662][ T6545] netlink: 252 bytes leftover after parsing attributes in process `syz.1.210'. [ 135.400150][ T6545] netlink: 252 bytes leftover after parsing attributes in process `syz.1.210'. [ 135.469033][ T6523] kexec: Could not allocate control_code_buffer [ 138.436526][ T6599] FAULT_INJECTION: forcing a failure. [ 138.436526][ T6599] name failslab, interval 1, probability 0, space 0, times 0 [ 138.476147][ T6599] CPU: 1 UID: 0 PID: 6599 Comm: syz.2.226 Tainted: G L syzkaller #0 PREEMPT(full) [ 138.476195][ T6599] Tainted: [L]=SOFTLOCKUP [ 138.476207][ T6599] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 138.476223][ T6599] Call Trace: [ 138.476232][ T6599] [ 138.476243][ T6599] dump_stack_lvl+0x100/0x190 [ 138.476295][ T6599] should_fail_ex.cold+0x5/0xa [ 138.476335][ T6599] should_failslab+0xc2/0x120 [ 138.476369][ T6599] __kmalloc_cache_noprof+0x7a/0x6f0 [ 138.476409][ T6599] ? percpu_ref_init+0xec/0x3f0 [ 138.476464][ T6599] ? __pfx_free_ioctx_reqs+0x10/0x10 [ 138.476499][ T6599] percpu_ref_init+0xec/0x3f0 [ 138.476546][ T6599] ? __init_waitqueue_head+0xca/0x150 [ 138.476587][ T6599] ioctx_alloc+0x3ee/0x21a0 [ 138.476638][ T6599] ? find_held_lock+0x2b/0x80 [ 138.476678][ T6599] ? __pfx_ioctx_alloc+0x10/0x10 [ 138.476725][ T6599] __x64_sys_io_setup+0xc9/0x220 [ 138.476766][ T6599] do_syscall_64+0x10b/0xf80 [ 138.476810][ T6599] ? clear_bhb_loop+0x40/0x90 [ 138.476848][ T6599] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 138.476886][ T6599] RIP: 0033:0x7fcf6bd9c819 [ 138.476914][ T6599] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 138.477068][ T6599] RSP: 002b:00007fcf6cc9c028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce [ 138.477099][ T6599] RAX: ffffffffffffffda RBX: 00007fcf6c015fa0 RCX: 00007fcf6bd9c819 [ 138.477120][ T6599] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000007ffe [ 138.477139][ T6599] RBP: 00007fcf6be32c91 R08: 0000000000000000 R09: 0000000000000000 [ 138.477157][ T6599] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 138.477173][ T6599] R13: 00007fcf6c016038 R14: 00007fcf6c015fa0 R15: 00007fffcffae708 [ 138.477213][ T6599] [ 139.235182][ T6606] netlink: 'syz.2.228': attribute type 28 has an invalid length. [ 139.250400][ T6609] FAULT_INJECTION: forcing a failure. [ 139.250400][ T6609] name failslab, interval 1, probability 0, space 0, times 0 [ 139.258449][ T6606] netlink: 'syz.2.228': attribute type 3 has an invalid length. [ 139.273278][ T6609] CPU: 1 UID: 0 PID: 6609 Comm: syz.3.227 Tainted: G L syzkaller #0 PREEMPT(full) [ 139.273321][ T6609] Tainted: [L]=SOFTLOCKUP [ 139.273332][ T6609] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 139.273347][ T6609] Call Trace: [ 139.273356][ T6609] [ 139.273365][ T6609] dump_stack_lvl+0x100/0x190 [ 139.273430][ T6609] should_fail_ex.cold+0x5/0xa [ 139.273465][ T6609] should_failslab+0xc2/0x120 [ 139.273495][ T6609] __kmalloc_cache_noprof+0x7a/0x6f0 [ 139.273532][ T6609] ? refill_pi_state_cache+0x91/0x260 [ 139.273571][ T6609] refill_pi_state_cache+0x91/0x260 [ 139.273602][ T6609] futex_lock_pi+0x16d/0x7a0 [ 139.273639][ T6609] ? __pfx_futex_lock_pi+0x10/0x10 [ 139.273708][ T6609] ? __pfx_futex_wake_mark+0x10/0x10 [ 139.273746][ T6609] ? __get_user_nocheck_8+0x20/0x20 [ 139.273781][ T6609] ? do_vfs_ioctl+0x226/0x13e0 [ 139.273822][ T6609] do_futex+0x18a/0x350 [ 139.273850][ T6609] ? __pfx_do_futex+0x10/0x10 [ 139.273880][ T6609] ? find_held_lock+0x2b/0x80 [ 139.273918][ T6609] __x64_sys_futex+0x34f/0x4d0 [ 139.273951][ T6609] ? __pfx___x64_sys_futex+0x10/0x10 [ 139.273984][ T6609] ? rcu_is_watching+0x12/0xc0 [ 139.274017][ T6609] do_syscall_64+0x10b/0xf80 [ 139.274053][ T6609] ? clear_bhb_loop+0x40/0x90 [ 139.274087][ T6609] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 139.274114][ T6609] RIP: 0033:0x7f29f579c819 [ 139.274149][ T6609] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 139.274176][ T6609] RSP: 002b:00007f29f39f6028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 139.274205][ T6609] RAX: ffffffffffffffda RBX: 00007f29f5a16090 RCX: 00007f29f579c819 [ 139.274223][ T6609] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000 [ 139.274240][ T6609] RBP: 00007f29f5832c91 R08: 0000000000000000 R09: 000000008000fff5 [ 139.274257][ T6609] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 139.274275][ T6609] R13: 00007f29f5a16128 R14: 00007f29f5a16090 R15: 00007fffc580e488 [ 139.274314][ T6609] [ 139.290951][ T6606] netlink: 306 bytes leftover after parsing attributes in process `syz.2.228'. [ 142.460201][ T6648] FAULT_INJECTION: forcing a failure. [ 142.460201][ T6648] name failslab, interval 1, probability 0, space 0, times 0 [ 142.507045][ T6648] CPU: 0 UID: 0 PID: 6648 Comm: syz.1.236 Tainted: G L syzkaller #0 PREEMPT(full) [ 142.507095][ T6648] Tainted: [L]=SOFTLOCKUP [ 142.507106][ T6648] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 142.507122][ T6648] Call Trace: [ 142.507132][ T6648] [ 142.507152][ T6648] dump_stack_lvl+0x100/0x190 [ 142.507208][ T6648] should_fail_ex.cold+0x5/0xa [ 142.507236][ T6648] should_failslab+0xc2/0x120 [ 142.507256][ T6648] __kmalloc_cache_noprof+0x7a/0x6f0 [ 142.507280][ T6648] ? percpu_ref_init+0xec/0x3f0 [ 142.507312][ T6648] ? __pfx_free_ioctx_reqs+0x10/0x10 [ 142.507332][ T6648] percpu_ref_init+0xec/0x3f0 [ 142.507359][ T6648] ? __init_waitqueue_head+0xca/0x150 [ 142.507382][ T6648] ioctx_alloc+0x3ee/0x21a0 [ 142.507411][ T6648] ? find_held_lock+0x2b/0x80 [ 142.507432][ T6648] ? __pfx_ioctx_alloc+0x10/0x10 [ 142.507459][ T6648] __x64_sys_io_setup+0xc9/0x220 [ 142.507491][ T6648] do_syscall_64+0x10b/0xf80 [ 142.507527][ T6648] ? clear_bhb_loop+0x40/0x90 [ 142.507549][ T6648] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 142.507567][ T6648] RIP: 0033:0x7fb0d5d9c819 [ 142.507583][ T6648] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 142.507600][ T6648] RSP: 002b:00007fb0d6c6d028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce [ 142.507618][ T6648] RAX: ffffffffffffffda RBX: 00007fb0d6015fa0 RCX: 00007fb0d5d9c819 [ 142.507630][ T6648] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000007ffe [ 142.507642][ T6648] RBP: 00007fb0d5e32c91 R08: 0000000000000000 R09: 0000000000000000 [ 142.507659][ T6648] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 142.507676][ T6648] R13: 00007fb0d6016038 R14: 00007fb0d6015fa0 R15: 00007ffd85a136d8 [ 142.507713][ T6648] [ 145.278383][ T6682] netlink: 25 bytes leftover after parsing attributes in process `syz.1.248'. [ 145.611108][ T6689] netlink: 504 bytes leftover after parsing attributes in process `syz.1.250'. [ 146.815934][ T6703] syz.3.255 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 146.851753][ T6703] FAULT_INJECTION: forcing a failure. [ 146.851753][ T6703] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 146.887183][ T6703] CPU: 1 UID: 0 PID: 6703 Comm: syz.3.255 Tainted: G L syzkaller #0 PREEMPT(full) [ 146.887248][ T6703] Tainted: [L]=SOFTLOCKUP [ 146.887259][ T6703] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 146.887277][ T6703] Call Trace: [ 146.887286][ T6703] [ 146.887297][ T6703] dump_stack_lvl+0x100/0x190 [ 146.887350][ T6703] should_fail_ex.cold+0x5/0xa [ 146.887380][ T6703] ? prepare_alloc_pages+0x16d/0x5f0 [ 146.887416][ T6703] should_fail_alloc_page+0xeb/0x140 [ 146.887449][ T6703] prepare_alloc_pages+0x1f0/0x5f0 [ 146.887480][ T6703] ? __pfx_stack_trace_save+0x10/0x10 [ 146.887518][ T6703] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 146.887574][ T6703] ? __lock_acquire+0x4a5/0x2630 [ 146.887618][ T6703] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 146.887657][ T6703] ? __lock_acquire+0x4a5/0x2630 [ 146.887713][ T6703] ? find_held_lock+0x2b/0x80 [ 146.887741][ T6703] ? is_bpf_text_address+0x8a/0x1a0 [ 146.887784][ T6703] ? is_bpf_text_address+0x8a/0x1a0 [ 146.887815][ T6703] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 146.887853][ T6703] ? policy_nodemask+0xed/0x4f0 [ 146.887886][ T6703] alloc_pages_mpol+0x1fb/0x540 [ 146.887916][ T6703] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 146.887941][ T6703] ? arch_stack_walk+0xa6/0xf0 [ 146.887984][ T6703] folio_alloc_mpol_noprof+0x36/0x260 [ 146.888019][ T6703] shmem_alloc_folio+0x135/0x160 [ 146.888055][ T6703] shmem_alloc_and_add_folio+0x371/0xd40 [ 146.888103][ T6703] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 146.888146][ T6703] ? shmem_allowable_huge_orders+0x2bd/0x400 [ 146.888201][ T6703] shmem_get_folio_gfp+0x6ab/0x1900 [ 146.888249][ T6703] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 146.888291][ T6703] ? filemap_map_pages+0x9c1/0x2140 [ 146.888328][ T6703] ? __lock_acquire+0x4a5/0x2630 [ 146.888374][ T6703] shmem_fault+0x1f9/0xa20 [ 146.888415][ T6703] ? __pfx_shmem_fault+0x10/0x10 [ 146.888455][ T6703] ? __pfx_filemap_map_pages+0x10/0x10 [ 146.888494][ T6703] ? find_held_lock+0x2b/0x80 [ 146.888526][ T6703] __do_fault+0x10b/0x440 [ 146.888550][ T6703] do_fault+0xa99/0x1750 [ 146.888577][ T6703] ? __pmd_alloc+0x3fb/0x950 [ 146.888609][ T6703] __handle_mm_fault+0x187d/0x2a00 [ 146.888647][ T6703] ? mt_find+0x45e/0x8e0 [ 146.888670][ T6703] ? __pfx___handle_mm_fault+0x10/0x10 [ 146.888701][ T6703] ? __pfx_mt_find+0x10/0x10 [ 146.888739][ T6703] ? find_vma+0xbf/0x140 [ 146.888770][ T6703] ? __pfx_find_vma+0x10/0x10 [ 146.888797][ T6703] handle_mm_fault+0x36d/0xa20 [ 146.888838][ T6703] do_user_addr_fault+0x74c/0x12f0 [ 146.888871][ T6703] ? trace_page_fault_kernel+0x7a/0x200 [ 146.888900][ T6703] exc_page_fault+0x6f/0xd0 [ 146.888939][ T6703] asm_exc_page_fault+0x26/0x30 [ 146.888964][ T6703] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 146.888993][ T6703] Code: cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 146.889015][ T6703] RSP: 0018:ffffc90003b4fcc8 EFLAGS: 00050202 [ 146.889038][ T6703] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000078 [ 146.889052][ T6703] RDX: 0000000000000001 RSI: 0000000000000000 RDI: ffffc90003b4fdb0 [ 146.889066][ T6703] RBP: 0000000000000078 R08: 0000000000000001 R09: fffff52000769fc4 [ 146.889081][ T6703] R10: ffffc90003b4fe27 R11: 0000000000000000 R12: 0000000000000000 [ 146.889094][ T6703] R13: ffffc90003b4fdb0 R14: 0000000000000000 R15: dffffc0000000000 [ 146.889125][ T6703] _copy_from_user+0x98/0xd0 [ 146.889155][ T6703] io_uring_setup+0xc0/0x160 [ 146.889188][ T6703] ? ksys_write+0x190/0x250 [ 146.889212][ T6703] ? __pfx_io_uring_setup+0x10/0x10 [ 146.889257][ T6703] ? do_futex+0x192/0x350 [ 146.889282][ T6703] ? __pfx_do_futex+0x10/0x10 [ 146.889323][ T6703] ? xfd_validate_state+0x129/0x190 [ 146.889346][ T6703] ? ksys_write+0x1ac/0x250 [ 146.889377][ T6703] __x64_sys_io_uring_setup+0xc2/0x170 [ 146.889412][ T6703] do_syscall_64+0x10b/0xf80 [ 146.889446][ T6703] ? clear_bhb_loop+0x40/0x90 [ 146.889476][ T6703] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 146.889500][ T6703] RIP: 0033:0x7f29f579c819 [ 146.889521][ T6703] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 146.889542][ T6703] RSP: 002b:00007f29f657f028 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 146.889562][ T6703] RAX: ffffffffffffffda RBX: 00007f29f5a15fa0 RCX: 00007f29f579c819 [ 146.889576][ T6703] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004 [ 146.889589][ T6703] RBP: 00007f29f5832c91 R08: 0000000000000000 R09: 0000000000000000 [ 146.889602][ T6703] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 146.889615][ T6703] R13: 00007f29f5a16038 R14: 00007f29f5a15fa0 R15: 00007fffc580e488 [ 146.889646][ T6703] [ 149.108677][ T6729] netlink: 28 bytes leftover after parsing attributes in process `syz.1.263'. [ 149.273241][ T6729] hsr_slave_1 (unregistering): left promiscuous mode [ 149.494577][ T6741] FAULT_INJECTION: forcing a failure. [ 149.494577][ T6741] name failslab, interval 1, probability 0, space 0, times 0 [ 149.542951][ T6741] CPU: 0 UID: 0 PID: 6741 Comm: syz.0.266 Tainted: G L syzkaller #0 PREEMPT(full) [ 149.543002][ T6741] Tainted: [L]=SOFTLOCKUP [ 149.543012][ T6741] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 149.543029][ T6741] Call Trace: [ 149.543040][ T6741] [ 149.543051][ T6741] dump_stack_lvl+0x100/0x190 [ 149.543111][ T6741] should_fail_ex.cold+0x5/0xa [ 149.543147][ T6741] ? __alloc_empty_sheaf+0x35/0x50 [ 149.543187][ T6741] should_failslab+0xc2/0x120 [ 149.543217][ T6741] __kmalloc_noprof+0xe0/0x850 [ 149.543259][ T6741] ? __pcs_replace_empty_main+0x13a/0x650 [ 149.543300][ T6741] ? __pcs_replace_empty_main+0x13a/0x650 [ 149.543351][ T6741] __alloc_empty_sheaf+0x35/0x50 [ 149.543393][ T6741] __pcs_replace_empty_main+0x3e8/0x650 [ 149.543439][ T6741] kmem_cache_alloc_lru_noprof+0x485/0x6e0 [ 149.543483][ T6741] ? aio_alloc_inode+0x25/0x70 [ 149.543513][ T6741] ? rcu_is_cpu_rrupt_from_idle+0x1d0/0x270 [ 149.543552][ T6741] ? pcpu_alloc_noprof+0xe36/0x1c20 [ 149.543599][ T6741] ? __pfx_aio_alloc_inode+0x10/0x10 [ 149.543632][ T6741] aio_alloc_inode+0x25/0x70 [ 149.543658][ T6741] alloc_inode+0x68/0x250 [ 149.543698][ T6741] alloc_anon_inode+0x2a/0x3e0 [ 149.543742][ T6741] ioctx_alloc+0x4dc/0x21a0 [ 149.543790][ T6741] ? find_held_lock+0x2b/0x80 [ 149.543827][ T6741] ? __pfx_ioctx_alloc+0x10/0x10 [ 149.543873][ T6741] __x64_sys_io_setup+0xc9/0x220 [ 149.543913][ T6741] do_syscall_64+0x10b/0xf80 [ 149.543958][ T6741] ? clear_bhb_loop+0x40/0x90 [ 149.543994][ T6741] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 149.544024][ T6741] RIP: 0033:0x7f776d19c819 [ 149.544052][ T6741] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 149.544081][ T6741] RSP: 002b:00007f776e0c0028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce [ 149.544112][ T6741] RAX: ffffffffffffffda RBX: 00007f776d415fa0 RCX: 00007f776d19c819 [ 149.544131][ T6741] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000007ffe [ 149.544150][ T6741] RBP: 00007f776d232c91 R08: 0000000000000000 R09: 0000000000000000 [ 149.544168][ T6741] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 149.544185][ T6741] R13: 00007f776d416038 R14: 00007f776d415fa0 R15: 00007ffc78e65f68 [ 149.544226][ T6741] [ 149.955195][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 152.296456][ T6772] FAULT_INJECTION: forcing a failure. [ 152.296456][ T6772] name failslab, interval 1, probability 0, space 0, times 0 [ 152.334918][ T6772] CPU: 1 UID: 0 PID: 6772 Comm: syz.3.274 Tainted: G L syzkaller #0 PREEMPT(full) [ 152.334970][ T6772] Tainted: [L]=SOFTLOCKUP [ 152.334980][ T6772] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 152.334995][ T6772] Call Trace: [ 152.335006][ T6772] [ 152.335018][ T6772] dump_stack_lvl+0x100/0x190 [ 152.335074][ T6772] should_fail_ex.cold+0x5/0xa [ 152.335114][ T6772] should_failslab+0xc2/0x120 [ 152.335146][ T6772] __kmalloc_node_track_caller_noprof+0xe3/0x850 [ 152.335195][ T6772] ? kasprintf+0xc7/0x100 [ 152.335230][ T6772] ? do_dentry_open+0x6d8/0x1660 [ 152.335256][ T6772] ? vfs_open+0x82/0x3f0 [ 152.335289][ T6772] ? path_openat+0x208c/0x31a0 [ 152.335327][ T6772] kvasprintf+0xbc/0x150 [ 152.335366][ T6772] ? __pfx_kvasprintf+0x10/0x10 [ 152.335420][ T6772] kasprintf+0xc7/0x100 [ 152.335457][ T6772] ? __pfx_kasprintf+0x10/0x10 [ 152.335498][ T6772] ? rcu_is_watching+0x12/0xc0 [ 152.335533][ T6772] ? lockdep_init_map_type+0x5c/0x250 [ 152.335587][ T6772] drm_debugfs_clients_add+0x48/0x210 [ 152.335638][ T6772] drm_file_alloc+0x5c6/0xb40 [ 152.335676][ T6772] drm_open_helper+0x1fc/0x540 [ 152.335710][ T6772] drm_open+0x1a0/0x3e0 [ 152.335752][ T6772] ? __pfx_drm_open+0x10/0x10 [ 152.335783][ T6772] drm_stub_open+0x20f/0x380 [ 152.335817][ T6772] ? __pfx_drm_stub_open+0x10/0x10 [ 152.335850][ T6772] chrdev_open+0x234/0x6a0 [ 152.335888][ T6772] ? __pfx_apparmor_file_open+0x10/0x10 [ 152.335925][ T6772] ? __pfx_chrdev_open+0x10/0x10 [ 152.335973][ T6772] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 152.336015][ T6772] do_dentry_open+0x6d8/0x1660 [ 152.336044][ T6772] ? __pfx_chrdev_open+0x10/0x10 [ 152.336086][ T6772] vfs_open+0x82/0x3f0 [ 152.336124][ T6772] path_openat+0x208c/0x31a0 [ 152.336165][ T6772] ? __pfx_path_openat+0x10/0x10 [ 152.336211][ T6772] do_file_open+0x20e/0x430 [ 152.336247][ T6772] ? __pfx_do_file_open+0x10/0x10 [ 152.336307][ T6772] ? alloc_fd+0x476/0x790 [ 152.336343][ T6772] ? do_getname+0x191/0x390 [ 152.336386][ T6772] do_sys_openat2+0x10d/0x1e0 [ 152.336428][ T6772] ? __pfx_do_sys_openat2+0x10/0x10 [ 152.336472][ T6772] ? __fget_files+0x21f/0x3d0 [ 152.336510][ T6772] __x64_sys_openat+0x12d/0x210 [ 152.336553][ T6772] ? __pfx___x64_sys_openat+0x10/0x10 [ 152.336603][ T6772] ? rcu_is_watching+0x12/0xc0 [ 152.336642][ T6772] do_syscall_64+0x10b/0xf80 [ 152.336687][ T6772] ? clear_bhb_loop+0x40/0x90 [ 152.336725][ T6772] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 152.336766][ T6772] RIP: 0033:0x7f29f579c819 [ 152.336790][ T6772] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 152.336819][ T6772] RSP: 002b:00007f29f39f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 152.336846][ T6772] RAX: ffffffffffffffda RBX: 00007f29f5a16090 RCX: 00007f29f579c819 [ 152.336864][ T6772] RDX: 0000000000000000 RSI: 0000200000000140 RDI: ffffffffffffff9c [ 152.336882][ T6772] RBP: 00007f29f5832c91 R08: 0000000000000000 R09: 0000000000000000 [ 152.336899][ T6772] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 152.336917][ T6772] R13: 00007f29f5a16128 R14: 00007f29f5a16090 R15: 00007fffc580e488 [ 152.336957][ T6772] [ 153.091759][ T6784] netlink: 4 bytes leftover after parsing attributes in process `syz.1.277'. [ 153.145809][ T6786] netlink: 25 bytes leftover after parsing attributes in process `syz.1.277'. [ 153.896897][ T6805] vcan0: tx drop: invalid sa for name 0x00000000000000fd [ 154.305532][ T6816] FAULT_INJECTION: forcing a failure. [ 154.305532][ T6816] name failslab, interval 1, probability 0, space 0, times 0 [ 154.411198][ T6816] CPU: 1 UID: 0 PID: 6816 Comm: syz.1.290 Tainted: G L syzkaller #0 PREEMPT(full) [ 154.411248][ T6816] Tainted: [L]=SOFTLOCKUP [ 154.411260][ T6816] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 154.411275][ T6816] Call Trace: [ 154.411282][ T6816] [ 154.411289][ T6816] dump_stack_lvl+0x100/0x190 [ 154.411326][ T6816] should_fail_ex.cold+0x5/0xa [ 154.411350][ T6816] should_failslab+0xc2/0x120 [ 154.411370][ T6816] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 154.411399][ T6816] ? __d_alloc+0x34/0xa80 [ 154.411424][ T6816] __d_alloc+0x34/0xa80 [ 154.411446][ T6816] d_alloc+0x4a/0x1e0 [ 154.411468][ T6816] lookup_one_qstr_excl+0x171/0x250 [ 154.411494][ T6816] start_dirop+0x59/0xb0 [ 154.411511][ T6816] simple_start_creating+0xf9/0x110 [ 154.411528][ T6816] ? __pfx_simple_start_creating+0x10/0x10 [ 154.411547][ T6816] ? mntput+0x70/0xa0 [ 154.411573][ T6816] ? simple_pin_fs+0xa3/0x190 [ 154.411601][ T6816] debugfs_start_creating.part.0+0x82/0x170 [ 154.411624][ T6816] debugfs_create_dir+0x72/0x440 [ 154.411646][ T6816] drm_debugfs_clients_add+0x6f/0x210 [ 154.411684][ T6816] drm_file_alloc+0x5c6/0xb40 [ 154.411707][ T6816] drm_open_helper+0x1fc/0x540 [ 154.411730][ T6816] drm_open+0x1a0/0x3e0 [ 154.411749][ T6816] ? __pfx_drm_open+0x10/0x10 [ 154.411767][ T6816] drm_stub_open+0x20f/0x380 [ 154.411786][ T6816] ? __pfx_drm_stub_open+0x10/0x10 [ 154.411809][ T6816] chrdev_open+0x234/0x6a0 [ 154.411839][ T6816] ? __pfx_apparmor_file_open+0x10/0x10 [ 154.411873][ T6816] ? __pfx_chrdev_open+0x10/0x10 [ 154.411908][ T6816] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 154.411959][ T6816] do_dentry_open+0x6d8/0x1660 [ 154.411981][ T6816] ? __pfx_chrdev_open+0x10/0x10 [ 154.412005][ T6816] vfs_open+0x82/0x3f0 [ 154.412032][ T6816] path_openat+0x208c/0x31a0 [ 154.412060][ T6816] ? __pfx_path_openat+0x10/0x10 [ 154.412102][ T6816] do_file_open+0x20e/0x430 [ 154.412124][ T6816] ? __pfx_do_file_open+0x10/0x10 [ 154.412176][ T6816] ? alloc_fd+0x476/0x790 [ 154.412210][ T6816] ? do_getname+0x191/0x390 [ 154.412247][ T6816] do_sys_openat2+0x10d/0x1e0 [ 154.412287][ T6816] ? __pfx_do_sys_openat2+0x10/0x10 [ 154.412327][ T6816] ? __fget_files+0x21f/0x3d0 [ 154.412364][ T6816] __x64_sys_openat+0x12d/0x210 [ 154.412575][ T6816] ? __pfx___x64_sys_openat+0x10/0x10 [ 154.412609][ T6816] ? rcu_is_watching+0x12/0xc0 [ 154.412633][ T6816] do_syscall_64+0x10b/0xf80 [ 154.412660][ T6816] ? clear_bhb_loop+0x40/0x90 [ 154.412681][ T6816] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 154.412700][ T6816] RIP: 0033:0x7fb0d5d9c819 [ 154.412806][ T6816] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 154.412824][ T6816] RSP: 002b:00007fb0d6c4c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 154.412843][ T6816] RAX: ffffffffffffffda RBX: 00007fb0d6016090 RCX: 00007fb0d5d9c819 [ 154.412855][ T6816] RDX: 0000000000000000 RSI: 0000200000000140 RDI: ffffffffffffff9c [ 154.412867][ T6816] RBP: 00007fb0d5e32c91 R08: 0000000000000000 R09: 0000000000000000 [ 154.412878][ T6816] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 154.412888][ T6816] R13: 00007fb0d6016128 R14: 00007fb0d6016090 R15: 00007ffd85a136d8 [ 154.412913][ T6816] [ 155.030699][ T6822] FAULT_INJECTION: forcing a failure. [ 155.030699][ T6822] name failslab, interval 1, probability 0, space 0, times 0 [ 155.048419][ T6822] CPU: 1 UID: 0 PID: 6822 Comm: syz.0.291 Tainted: G L syzkaller #0 PREEMPT(full) [ 155.048466][ T6822] Tainted: [L]=SOFTLOCKUP [ 155.048477][ T6822] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 155.048493][ T6822] Call Trace: [ 155.048504][ T6822] [ 155.048514][ T6822] dump_stack_lvl+0x100/0x190 [ 155.048572][ T6822] should_fail_ex.cold+0x5/0xa [ 155.048613][ T6822] should_failslab+0xc2/0x120 [ 155.048644][ T6822] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 155.048699][ T6822] ? security_inode_alloc+0x3b/0x2c0 [ 155.048737][ T6822] ? lockdep_init_map_type+0x5c/0x250 [ 155.048792][ T6822] security_inode_alloc+0x3b/0x2c0 [ 155.048839][ T6822] inode_init_always_gfp+0xcc0/0x1000 [ 155.048878][ T6822] alloc_inode+0x8e/0x250 [ 155.048920][ T6822] sock_alloc+0x44/0x280 [ 155.048963][ T6822] ? security_socket_create+0x7f/0x250 [ 155.049001][ T6822] sock_create_lite+0x82/0x120 [ 155.049039][ T6822] __netlink_kernel_create+0xbd/0x750 [ 155.049080][ T6822] ? __pfx___netlink_kernel_create+0x10/0x10 [ 155.049115][ T6822] ? find_held_lock+0x2b/0x80 [ 155.049151][ T6822] ? audit_net_init+0x190/0x440 [ 155.049181][ T6822] ? audit_net_init+0x190/0x440 [ 155.049217][ T6822] audit_net_init+0x1ae/0x440 [ 155.049249][ T6822] ? __pfx_audit_net_init+0x10/0x10 [ 155.049278][ T6822] ? rcu_is_watching+0x12/0xc0 [ 155.049313][ T6822] ? __pfx_audit_receive+0x10/0x10 [ 155.049345][ T6822] ? __pfx_audit_multicast_bind+0x10/0x10 [ 155.049378][ T6822] ? __pfx_audit_multicast_unbind+0x10/0x10 [ 155.049416][ T6822] ? __kmalloc_noprof+0x320/0x850 [ 155.049465][ T6822] ? __pfx_audit_net_init+0x10/0x10 [ 155.049493][ T6822] ops_init+0x1e2/0x5f0 [ 155.049530][ T6822] setup_net+0x118/0x3a0 [ 155.049562][ T6822] ? __pfx_setup_net+0x10/0x10 [ 155.049594][ T6822] ? mutex_init_lockdep+0xf1/0x120 [ 155.049629][ T6822] copy_net_ns+0x46f/0x7c0 [ 155.049668][ T6822] create_new_namespaces+0x3ea/0xac0 [ 155.049712][ T6822] unshare_nsproxy_namespaces+0xf2/0x220 [ 155.049753][ T6822] ksys_unshare+0x438/0xab0 [ 155.049797][ T6822] ? __pfx_ksys_unshare+0x10/0x10 [ 155.049837][ T6822] ? xfd_validate_state+0x129/0x190 [ 155.049879][ T6822] __x64_sys_unshare+0x31/0x40 [ 155.049920][ T6822] do_syscall_64+0x10b/0xf80 [ 155.049973][ T6822] ? clear_bhb_loop+0x40/0x90 [ 155.050010][ T6822] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 155.050040][ T6822] RIP: 0033:0x7f776d19c819 [ 155.050065][ T6822] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 155.050093][ T6822] RSP: 002b:00007f776e0c0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 155.050121][ T6822] RAX: ffffffffffffffda RBX: 00007f776d415fa0 RCX: 00007f776d19c819 [ 155.050141][ T6822] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 155.050159][ T6822] RBP: 00007f776d232c91 R08: 0000000000000000 R09: 0000000000000000 [ 155.050177][ T6822] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 155.050194][ T6822] R13: 00007f776d416038 R14: 00007f776d415fa0 R15: 00007ffc78e65f68 [ 155.050235][ T6822] [ 155.050280][ T6822] audit: cannot initialize netlink socket in namespace [ 155.411521][ T6824] netlink: 4 bytes leftover after parsing attributes in process `syz.3.292'. [ 155.422479][ T6824] netlink: 25 bytes leftover after parsing attributes in process `syz.3.292'. [ 156.160985][ T6842] vcan0: tx drop: invalid sa for name 0x00000000000000fd [ 162.046912][ T6936] netlink: 'syz.3.326': attribute type 15 has an invalid length. [ 162.069643][ T6936] netlink: 'syz.3.326': attribute type 16 has an invalid length. [ 162.090177][ T6936] netlink: 194 bytes leftover after parsing attributes in process `syz.3.326'. [ 163.669695][ T5841] Bluetooth: hci1: unexpected subevent 0x18 length: 123 > 19 [ 163.677687][ T5841] Bluetooth: hci1: Unable to find connection for dst f9:56:cc:cc:70:a9 sid 0x00 [ 163.697154][ T6952] binder: 6951:6952 ioctl c0306201 200000000000 returned -11 [ 164.875244][ T6973] netlink: 306 bytes leftover after parsing attributes in process `syz.1.338'. [ 165.136919][ T6985] openvswitch: netlink: Unknown VXLAN extension attribute 0 [ 165.178855][ T6985] mmap: syz.1.341 (6985) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 165.888203][ T5841] Bluetooth: hci2: unexpected subevent 0x18 length: 123 > 19 [ 165.889712][ T6992] binder: 6989:6992 ioctl c0306201 200000000000 returned -11 [ 165.896971][ T5841] Bluetooth: hci2: Unable to find connection for dst f9:56:cc:cc:70:a9 sid 0x00 [ 170.247014][ T7061] netlink: 12 bytes leftover after parsing attributes in process `syz.1.361'. [ 171.260757][ T7089] vcan0: tx drop: invalid sa for name 0x00000000000000fd [ 171.463863][ T7097] vivid-007: ================= START STATUS ================= [ 171.500483][ T7097] vivid-007: Generate PTS: true [ 171.511066][ T7097] vivid-007: Generate SCR: true [ 171.517845][ T7097] tpg source WxH: 320x240 (Y'CbCr) [ 171.523134][ T7097] tpg field: 1 [ 171.529845][ T7097] tpg crop: (0,0)/320x240 [ 171.534751][ T7097] tpg compose: (0,0)/320x240 [ 171.539715][ T7097] tpg colorspace: 8 [ 171.562638][ T7097] tpg transfer function: 0/0 [ 171.571077][ T7097] tpg Y'CbCr encoding: 0/0 [ 171.577309][ T7097] tpg quantization: 0/0 [ 171.586067][ T7097] tpg RGB range: 0/2 [ 171.595972][ T7097] vivid-007: ================== END STATUS ================== [ 171.800567][ C1] sd 0:0:1:0: [sda] tag#4112 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s [ 171.811771][ C1] sd 0:0:1:0: [sda] tag#4112 CDB: Read(6) 08 00 00 00 09 00 00 00 00 00 00 00 [ 172.000608][ T7111] netlink: 186 bytes leftover after parsing attributes in process `syz.3.378'. [ 172.039285][ T7111] netlink: 186 bytes leftover after parsing attributes in process `syz.3.378'. [ 172.213034][ T7116] netlink: 54 bytes leftover after parsing attributes in process `syz.0.381'. [ 172.428962][ T7127] netlink: 'syz.0.385': attribute type 10 has an invalid length. [ 172.444759][ T7127] netlink: 230 bytes leftover after parsing attributes in process `syz.0.385'. [ 173.952589][ T7157] netlink: 306 bytes leftover after parsing attributes in process `syz.2.401'. [ 174.385087][ T7160] netlink: 54 bytes leftover after parsing attributes in process `syz.2.395'. [ 174.708170][ T7176] vivid-007: ================= START STATUS ================= [ 174.727197][ T7176] vivid-007: Generate PTS: true [ 174.748965][ T7176] vivid-007: Generate SCR: true [ 174.763984][ T7176] tpg source WxH: 320x240 (Y'CbCr) [ 174.773175][ T7176] tpg field: 1 [ 174.788809][ T7176] tpg crop: (0,0)/320x240 [ 174.800849][ T7176] tpg compose: (0,0)/320x240 [ 174.812477][ T7176] tpg colorspace: 8 [ 174.826572][ T7176] tpg transfer function: 0/0 [ 174.846957][ T7176] tpg Y'CbCr encoding: 0/0 [ 174.887178][ T7176] tpg quantization: 0/0 [ 174.900955][ T7176] tpg RGB range: 0/2 [ 174.916233][ T7176] vivid-007: ================== END STATUS ================== [ 176.674261][ T7207] netlink: 306 bytes leftover after parsing attributes in process `syz.3.407'. [ 179.099665][ T7238] netlink: 12 bytes leftover after parsing attributes in process `syz.0.418'. [ 179.764644][ T7249] netlink: 54 bytes leftover after parsing attributes in process `syz.3.420'. [ 180.594101][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 181.117957][ T7270] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed [ 181.154992][ T7270] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff) [ 181.501812][ T7278] vcan0: tx drop: invalid sa for name 0x00000000000000fd [ 181.945494][ T7290] netlink: 334 bytes leftover after parsing attributes in process `syz.2.434'. [ 182.092559][ T7292] netlink: 54 bytes leftover after parsing attributes in process `syz.1.433'. [ 186.697883][ T7380] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed [ 186.713516][ T7380] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff) [ 187.456770][ T7394] netlink: 202 bytes leftover after parsing attributes in process `syz.0.459'. [ 194.734367][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.748694][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 198.156841][ T7554] netlink: 28 bytes leftover after parsing attributes in process `syz.2.496'. [ 198.361748][ T7554] bridge_slave_1: left allmulticast mode [ 198.384587][ T7554] bridge_slave_1: left promiscuous mode [ 198.409497][ T7554] bridge0: port 2(bridge_slave_1) entered disabled state [ 198.494739][ T7554] bridge_slave_0: left allmulticast mode [ 198.533196][ T7554] bridge_slave_0: left promiscuous mode [ 198.555266][ T7554] bridge0: port 1(bridge_slave_0) entered disabled state [ 200.425749][ T7578] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 200.688834][ T7578] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 200.850322][ T7578] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 200.977157][ T7578] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 201.501891][ T7596] FAULT_INJECTION: forcing a failure. [ 201.501891][ T7596] name failslab, interval 1, probability 0, space 0, times 0 [ 201.597914][ T7596] CPU: 0 UID: 0 PID: 7596 Comm: syz.0.514 Tainted: G L syzkaller #0 PREEMPT(full) [ 201.597964][ T7596] Tainted: [L]=SOFTLOCKUP [ 201.597974][ T7596] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 201.597989][ T7596] Call Trace: [ 201.597998][ T7596] [ 201.598010][ T7596] dump_stack_lvl+0x100/0x190 [ 201.598067][ T7596] should_fail_ex.cold+0x5/0xa [ 201.598104][ T7596] ? tomoyo_encode2+0xfb/0x3c0 [ 201.598144][ T7596] should_failslab+0xc2/0x120 [ 201.598175][ T7596] __kmalloc_noprof+0xe0/0x850 [ 201.598219][ T7596] ? d_absolute_path+0x136/0x1b0 [ 201.598284][ T7596] tomoyo_encode2+0xfb/0x3c0 [ 201.598337][ T7596] tomoyo_encode+0x29/0x50 [ 201.598382][ T7596] tomoyo_realpath_from_path+0x18c/0x690 [ 201.598441][ T7596] tomoyo_path_perm+0x276/0x460 [ 201.598478][ T7596] ? tomoyo_path_perm+0x262/0x460 [ 201.598522][ T7596] ? __pfx_tomoyo_path_perm+0x10/0x10 [ 201.598606][ T7596] ? __pfx_ima_file_check+0x10/0x10 [ 201.598640][ T7596] ? hook_file_truncate+0xc3/0x240 [ 201.598688][ T7596] security_file_truncate+0xb5/0x1e0 [ 201.598733][ T7596] path_openat+0x1c6e/0x31a0 [ 201.598776][ T7596] ? __pfx_path_openat+0x10/0x10 [ 201.598822][ T7596] do_file_open+0x20e/0x430 [ 201.598857][ T7596] ? __pfx_do_file_open+0x10/0x10 [ 201.598919][ T7596] ? alloc_fd+0x476/0x790 [ 201.598955][ T7596] ? do_getname+0x191/0x390 [ 201.598995][ T7596] do_sys_openat2+0x10d/0x1e0 [ 201.599035][ T7596] ? __pfx_do_sys_openat2+0x10/0x10 [ 201.599077][ T7596] ? __fget_files+0x21f/0x3d0 [ 201.599115][ T7596] __x64_sys_openat+0x12d/0x210 [ 201.599156][ T7596] ? __pfx___x64_sys_openat+0x10/0x10 [ 201.599199][ T7596] ? rcu_is_watching+0x12/0xc0 [ 201.599250][ T7596] do_syscall_64+0x10b/0xf80 [ 201.599293][ T7596] ? clear_bhb_loop+0x40/0x90 [ 201.599332][ T7596] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 201.599362][ T7596] RIP: 0033:0x7f776d19c819 [ 201.599386][ T7596] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 201.599414][ T7596] RSP: 002b:00007f776e09f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 201.599444][ T7596] RAX: ffffffffffffffda RBX: 00007f776d416090 RCX: 00007f776d19c819 [ 201.599464][ T7596] RDX: 00000000000c0202 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 201.599482][ T7596] RBP: 00007f776d232c91 R08: 0000000000000000 R09: 0000000000000000 [ 201.599500][ T7596] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 201.599517][ T7596] R13: 00007f776d416128 R14: 00007f776d416090 R15: 00007ffc78e65f68 [ 201.599559][ T7596] [ 201.777659][ T7596] ERROR: Out of memory at tomoyo_realpath_from_path. [ 203.362538][ T7632] netlink: 138 bytes leftover after parsing attributes in process `syz.0.525'. [ 203.582002][ T7639] netlink: 28 bytes leftover after parsing attributes in process `syz.0.519'. [ 203.608554][ T7639] bridge_slave_1: left allmulticast mode [ 203.627203][ T7639] bridge_slave_1: left promiscuous mode [ 203.643191][ T7639] bridge0: port 2(bridge_slave_1) entered disabled state [ 203.689944][ T7639] bridge_slave_0: left allmulticast mode [ 203.710482][ T7639] bridge_slave_0: left promiscuous mode [ 203.727266][ T7639] bridge0: port 1(bridge_slave_0) entered disabled state [ 205.964500][ T7677] netlink: 28 bytes leftover after parsing attributes in process `syz.3.533'. [ 205.997634][ T7677] bridge_slave_1: left allmulticast mode [ 206.011755][ T7677] bridge_slave_1: left promiscuous mode [ 206.029821][ T7677] bridge0: port 2(bridge_slave_1) entered disabled state [ 206.060972][ T7677] bridge_slave_0: left allmulticast mode [ 206.067041][ T7677] bridge_slave_0: left promiscuous mode [ 206.090513][ T7677] bridge0: port 1(bridge_slave_0) entered disabled state [ 209.191288][ T7727] netlink: 334 bytes leftover after parsing attributes in process `syz.0.550'. [ 211.822214][ T7760] netlink: 4 bytes leftover after parsing attributes in process `syz.0.548'. [ 215.911228][ T7814] netlink: 350 bytes leftover after parsing attributes in process `syz.3.564'. [ 217.295406][ T5841] Bluetooth: hci0: command 0x0406 tx timeout [ 217.295435][ T5147] Bluetooth: hci1: command 0x0406 tx timeout [ 217.305076][ T5841] Bluetooth: hci2: command 0x0406 tx timeout [ 217.308292][ T5836] Bluetooth: hci3: command 0x0406 tx timeout [ 219.957613][ T7875] netlink: 4 bytes leftover after parsing attributes in process `syz.1.581'. [ 221.087657][ T7889] netlink: 334 bytes leftover after parsing attributes in process `syz.1.584'. [ 224.461643][ T7938] netlink: 4 bytes leftover after parsing attributes in process `syz.3.594'. [ 225.148883][ T7947] netlink: 4 bytes leftover after parsing attributes in process `syz.1.600'. [ 226.183457][ T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!! [ 226.449318][ T7967] netlink: 252 bytes leftover after parsing attributes in process `syz.2.606'. [ 226.514528][ T7967] netlink: 252 bytes leftover after parsing attributes in process `syz.2.606'. [ 229.205449][ T7990] FAULT_INJECTION: forcing a failure. [ 229.205449][ T7990] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 229.268334][ T7990] CPU: 1 UID: 0 PID: 7990 Comm: syz.1.619 Tainted: G L syzkaller #0 PREEMPT(full) [ 229.268383][ T7990] Tainted: [L]=SOFTLOCKUP [ 229.268393][ T7990] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 229.268415][ T7990] Call Trace: [ 229.268426][ T7990] [ 229.268436][ T7990] dump_stack_lvl+0x100/0x190 [ 229.268490][ T7990] should_fail_ex.cold+0x5/0xa [ 229.268523][ T7990] ? prepare_alloc_pages+0x16d/0x5f0 [ 229.268562][ T7990] should_fail_alloc_page+0xeb/0x140 [ 229.268598][ T7990] prepare_alloc_pages+0x1f0/0x5f0 [ 229.268640][ T7990] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 229.268709][ T7990] ? rcu_is_watching+0x12/0xc0 [ 229.268743][ T7990] ? trace_mm_page_alloc+0x163/0x1d0 [ 229.268781][ T7990] ? __alloc_frozen_pages_noprof+0x2b1/0x2bc0 [ 229.268831][ T7990] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 229.268883][ T7990] ? __pfx_stack_trace_save+0x10/0x10 [ 229.268922][ T7990] ? stack_depot_save_flags+0x27/0x9d0 [ 229.268964][ T7990] ? is_bpf_text_address+0x8a/0x1a0 [ 229.269004][ T7990] ? is_bpf_text_address+0x8a/0x1a0 [ 229.269048][ T7990] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 229.269090][ T7990] ? kasan_save_stack+0x3f/0x50 [ 229.269134][ T7990] ? kasan_save_stack+0x30/0x50 [ 229.269178][ T7990] ? kasan_save_track+0x14/0x30 [ 229.269225][ T7990] ? kmem_cache_alloc_node_noprof+0x25a/0x6f0 [ 229.269272][ T7990] ? __get_vm_area_node+0x1ca/0x330 [ 229.269302][ T7990] ? get_vm_area_caller+0x71/0xa0 [ 229.269335][ T7990] ? vmap+0x131/0x2f0 [ 229.269365][ T7990] ? ringbuf_map_alloc+0x3a1/0x8b0 [ 229.269411][ T7990] ? map_create+0x84e/0x2ba0 [ 229.269451][ T7990] ? __sys_bpf+0x2091/0x4b90 [ 229.269476][ T7990] ? __x64_sys_bpf+0x7b/0xc0 [ 229.269501][ T7990] ? do_syscall_64+0x10b/0xf80 [ 229.269538][ T7990] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 229.269576][ T7990] alloc_pages_bulk_noprof+0x657/0x1390 [ 229.269629][ T7990] ? policy_nodemask+0xed/0x4f0 [ 229.269675][ T7990] ? __pfx_alloc_pages_bulk_noprof+0x10/0x10 [ 229.269752][ T7990] __kasan_populate_vmalloc+0xf0/0x210 [ 229.269808][ T7990] alloc_vmap_area+0x95d/0x2b70 [ 229.269858][ T7990] ? __pfx_alloc_vmap_area+0x10/0x10 [ 229.269899][ T7990] __get_vm_area_node+0x1ca/0x330 [ 229.269936][ T7990] ? ringbuf_map_alloc+0x3a1/0x8b0 [ 229.269984][ T7990] get_vm_area_caller+0x71/0xa0 [ 229.270035][ T7990] ? ringbuf_map_alloc+0x3a1/0x8b0 [ 229.270084][ T7990] vmap+0x131/0x2f0 [ 229.270117][ T7990] ? __pfx_vmap+0x10/0x10 [ 229.270162][ T7990] ringbuf_map_alloc+0x3a1/0x8b0 [ 229.270218][ T7990] ? __pfx_ringbuf_map_mem_usage+0x10/0x10 [ 229.270268][ T7990] map_create+0x84e/0x2ba0 [ 229.270309][ T7990] ? futex_unqueue+0x13d/0x2c0 [ 229.270340][ T7990] ? __futex_wait+0x256/0x300 [ 229.270387][ T7990] ? __pfx_map_create+0x10/0x10 [ 229.270428][ T7990] ? __might_fault+0xc5/0x140 [ 229.270470][ T7990] ? __might_fault+0xc5/0x140 [ 229.270528][ T7990] __sys_bpf+0x2091/0x4b90 [ 229.270562][ T7990] ? __pfx___sys_bpf+0x10/0x10 [ 229.270587][ T7990] ? __pfx_futex_wait+0x10/0x10 [ 229.270630][ T7990] ? errseq_sample+0x51/0x70 [ 229.270672][ T7990] ? file_init_path+0x48e/0x670 [ 229.270715][ T7990] ? do_futex+0x192/0x350 [ 229.270767][ T7990] ? xfd_validate_state+0x129/0x190 [ 229.270809][ T7990] __x64_sys_bpf+0x7b/0xc0 [ 229.270838][ T7990] ? lockdep_hardirqs_on+0x78/0x100 [ 229.270883][ T7990] do_syscall_64+0x10b/0xf80 [ 229.270926][ T7990] ? clear_bhb_loop+0x40/0x90 [ 229.270963][ T7990] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 229.270995][ T7990] RIP: 0033:0x7fb0d5d9c819 [ 229.271021][ T7990] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 229.271049][ T7990] RSP: 002b:00007fb0d6c6d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 229.271079][ T7990] RAX: ffffffffffffffda RBX: 00007fb0d6015fa0 RCX: 00007fb0d5d9c819 [ 229.271099][ T7990] RDX: 0000000000000010 RSI: 00002000000000c0 RDI: 0000000000000000 [ 229.271117][ T7990] RBP: 00007fb0d5e32c91 R08: 0000000000000000 R09: 0000000000000000 [ 229.271135][ T7990] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 229.271152][ T7990] R13: 00007fb0d6016038 R14: 00007fb0d6015fa0 R15: 00007ffd85a136d8 [ 229.271191][ T7990] [ 230.513977][ T8007] netlink: 4 bytes leftover after parsing attributes in process `syz.2.612'. [ 232.137765][ T8032] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78000 [ 232.174359][ T8032] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 232.191388][ T8031] netlink: 346 bytes leftover after parsing attributes in process `syz.3.624'. [ 232.219894][ T8032] memcg:ffff8880374da881 [ 232.237884][ T8032] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 232.258470][ T8032] page_type: f5(slab) [ 232.275047][ T8032] raw: 00fff00000000040 ffff88813fe9f500 dead000000000100 dead000000000122 [ 232.303442][ T8032] raw: 0000000000000000 0000000800040004 00000000f5000000 ffff8880374da881 [ 232.330531][ T8032] head: 00fff00000000040 ffff88813fe9f500 dead000000000100 dead000000000122 [ 232.362459][ T8032] head: 0000000000000000 0000000800040004 00000000f5000000 ffff8880374da881 [ 232.388678][ T8032] head: 00fff00000000003 fffffffffffffe01 00000000ffffffff 00000000ffffffff [ 232.399399][ T8032] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008 [ 232.413028][ T8032] page dumped because: unmovable page [ 232.419243][ T8032] page_owner tracks the page as allocated [ 232.445794][ T8032] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5199, tgid 5199 (udevd), ts 54205679075, free_ts 54191447468 [ 232.468395][ T8032] post_alloc_hook+0x153/0x170 [ 232.475472][ T8032] get_page_from_freelist+0x11a6/0x33b0 [ 232.481450][ T8032] __alloc_frozen_pages_noprof+0x27c/0x2bc0 [ 232.488883][ T8032] new_slab+0xa6/0x6c0 [ 232.496105][ T8032] refill_objects+0x277/0x420 [ 232.501166][ T8032] __pcs_replace_empty_main+0x375/0x650 [ 232.510785][ T8032] __kvmalloc_node_noprof+0x7da/0xa00 [ 232.518355][ T8032] seq_read_iter+0x819/0x1270 [ 232.523452][ T8032] kernfs_fop_read_iter+0x46c/0x610 [ 232.529133][ T8032] vfs_read+0x825/0xb30 [ 232.533886][ T8032] ksys_read+0x12a/0x250 [ 232.538312][ T8032] do_syscall_64+0x10b/0xf80 [ 232.543306][ T8032] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 232.550119][ T8032] page last free pid 5205 tgid 5205 stack trace: [ 232.557220][ T8032] __free_frozen_pages+0x747/0x1040 [ 232.562808][ T8032] qlist_free_all+0x47/0xf0 [ 232.568172][ T8032] kasan_quarantine_reduce+0x1a0/0x1f0 [ 232.574505][ T8032] __kasan_slab_alloc+0x69/0x90 [ 232.579848][ T8032] kmem_cache_alloc_noprof+0x241/0x6e0 [ 232.586163][ T8032] do_getname+0x35/0x390 [ 232.591166][ T8032] do_sys_openat2+0xc5/0x1e0 [ 232.596478][ T8032] __x64_sys_openat+0x12d/0x210 [ 232.601787][ T8032] do_syscall_64+0x10b/0xf80 [ 232.609268][ T8032] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 235.785437][ T8067] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78000 [ 235.797853][ T8067] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 235.809730][ T8067] memcg:ffff8880374da881 [ 235.815159][ T8067] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 235.823116][ T8067] page_type: f5(slab) [ 235.827856][ T8067] raw: 00fff00000000040 ffff88813fe9f500 dead000000000100 dead000000000122 [ 235.843101][ T8067] raw: 0000000000000000 0000000800040004 00000000f5000000 ffff8880374da881 [ 235.855179][ T8067] head: 00fff00000000040 ffff88813fe9f500 dead000000000100 dead000000000122 [ 235.864892][ T8067] head: 0000000000000000 0000000800040004 00000000f5000000 ffff8880374da881 [ 235.900656][ T8067] head: 00fff00000000003 fffffffffffffe01 00000000ffffffff 00000000ffffffff [ 235.926049][ T8067] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008 [ 235.950772][ T8067] page dumped because: unmovable page [ 235.967614][ T8067] page_owner tracks the page as allocated [ 235.978088][ T8067] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5199, tgid 5199 (udevd), ts 54205679075, free_ts 54191447468 [ 236.023061][ T8067] post_alloc_hook+0x153/0x170 [ 236.039207][ T8067] get_page_from_freelist+0x11a6/0x33b0 [ 236.053569][ T8067] __alloc_frozen_pages_noprof+0x27c/0x2bc0 [ 236.060194][ T8067] new_slab+0xa6/0x6c0 [ 236.070437][ T8067] refill_objects+0x277/0x420 [ 236.080619][ T8067] __pcs_replace_empty_main+0x375/0x650 [ 236.093070][ T8067] __kvmalloc_node_noprof+0x7da/0xa00 [ 236.099242][ T8067] seq_read_iter+0x819/0x1270 [ 236.104729][ T8067] kernfs_fop_read_iter+0x46c/0x610 [ 236.110321][ T8067] vfs_read+0x825/0xb30 [ 236.116132][ T8067] ksys_read+0x12a/0x250 [ 236.121392][ T8067] do_syscall_64+0x10b/0xf80 [ 236.137049][ T8067] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 236.159443][ T8067] page last free pid 5205 tgid 5205 stack trace: [ 236.173519][ T8067] __free_frozen_pages+0x747/0x1040 [ 236.185728][ T8067] qlist_free_all+0x47/0xf0 [ 236.195629][ T8067] kasan_quarantine_reduce+0x1a0/0x1f0 [ 236.201485][ T8067] __kasan_slab_alloc+0x69/0x90 [ 236.207225][ T8067] kmem_cache_alloc_noprof+0x241/0x6e0 [ 236.213070][ T8067] do_getname+0x35/0x390 [ 236.218014][ T8067] do_sys_openat2+0xc5/0x1e0 [ 236.223156][ T8067] __x64_sys_openat+0x12d/0x210 [ 236.242815][ T8067] do_syscall_64+0x10b/0xf80 [ 236.260400][ T8067] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 236.917708][ T8084] sp0: Synchronizing with TNC [ 241.567530][ T8149] FAULT_INJECTION: forcing a failure. [ 241.567530][ T8149] name failslab, interval 1, probability 0, space 0, times 0 [ 241.615665][ T8149] CPU: 1 UID: 0 PID: 8149 Comm: syz.2.658 Tainted: G L syzkaller #0 PREEMPT(full) [ 241.615705][ T8149] Tainted: [L]=SOFTLOCKUP [ 241.615712][ T8149] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 241.615722][ T8149] Call Trace: [ 241.615728][ T8149] [ 241.615735][ T8149] dump_stack_lvl+0x100/0x190 [ 241.615770][ T8149] should_fail_ex.cold+0x5/0xa [ 241.615793][ T8149] should_failslab+0xc2/0x120 [ 241.615813][ T8149] kmem_cache_alloc_node_noprof+0x81/0x6f0 [ 241.615841][ T8149] ? alloc_vmap_area+0x640/0x2b70 [ 241.615863][ T8149] alloc_vmap_area+0x640/0x2b70 [ 241.615889][ T8149] ? __pfx_alloc_vmap_area+0x10/0x10 [ 241.615913][ T8149] __get_vm_area_node+0x1ca/0x330 [ 241.615935][ T8149] ? ringbuf_map_alloc+0x3a1/0x8b0 [ 241.615964][ T8149] get_vm_area_caller+0x71/0xa0 [ 241.615984][ T8149] ? ringbuf_map_alloc+0x3a1/0x8b0 [ 241.616013][ T8149] vmap+0x131/0x2f0 [ 241.616031][ T8149] ? __pfx_vmap+0x10/0x10 [ 241.616056][ T8149] ringbuf_map_alloc+0x3a1/0x8b0 [ 241.616088][ T8149] ? __pfx_ringbuf_map_mem_usage+0x10/0x10 [ 241.616116][ T8149] map_create+0x84e/0x2ba0 [ 241.616139][ T8149] ? futex_unqueue+0x13d/0x2c0 [ 241.616156][ T8149] ? __futex_wait+0x256/0x300 [ 241.616183][ T8149] ? __pfx_map_create+0x10/0x10 [ 241.616207][ T8149] ? __might_fault+0xc5/0x140 [ 241.616231][ T8149] ? __might_fault+0xc5/0x140 [ 241.616264][ T8149] __sys_bpf+0x2091/0x4b90 [ 241.616283][ T8149] ? __pfx___sys_bpf+0x10/0x10 [ 241.616299][ T8149] ? __pfx_futex_wait+0x10/0x10 [ 241.616326][ T8149] ? errseq_sample+0x51/0x70 [ 241.616346][ T8149] ? file_init_path+0x48e/0x670 [ 241.616370][ T8149] ? do_futex+0x192/0x350 [ 241.616399][ T8149] ? xfd_validate_state+0x129/0x190 [ 241.616422][ T8149] __x64_sys_bpf+0x7b/0xc0 [ 241.616438][ T8149] ? lockdep_hardirqs_on+0x78/0x100 [ 241.616466][ T8149] do_syscall_64+0x10b/0xf80 [ 241.616505][ T8149] ? clear_bhb_loop+0x40/0x90 [ 241.616538][ T8149] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 241.616567][ T8149] RIP: 0033:0x7fcf6bd9c819 [ 241.616593][ T8149] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 241.616621][ T8149] RSP: 002b:00007fcf6cc9c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 241.616648][ T8149] RAX: ffffffffffffffda RBX: 00007fcf6c015fa0 RCX: 00007fcf6bd9c819 [ 241.616678][ T8149] RDX: 0000000000000010 RSI: 00002000000000c0 RDI: 0000000000000000 [ 241.616696][ T8149] RBP: 00007fcf6be32c91 R08: 0000000000000000 R09: 0000000000000000 [ 241.616712][ T8149] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 241.616730][ T8149] R13: 00007fcf6c016038 R14: 00007fcf6c015fa0 R15: 00007fffcffae708 [ 241.616769][ T8149] [ 244.128217][ T8187] FAULT_INJECTION: forcing a failure. [ 244.128217][ T8187] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 244.153671][ T8187] CPU: 1 UID: 0 PID: 8187 Comm: syz.0.668 Tainted: G L syzkaller #0 PREEMPT(full) [ 244.153724][ T8187] Tainted: [L]=SOFTLOCKUP [ 244.153734][ T8187] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 244.153750][ T8187] Call Trace: [ 244.153760][ T8187] [ 244.153770][ T8187] dump_stack_lvl+0x100/0x190 [ 244.153823][ T8187] should_fail_ex.cold+0x5/0xa [ 244.153855][ T8187] ? prepare_alloc_pages+0x16d/0x5f0 [ 244.153894][ T8187] should_fail_alloc_page+0xeb/0x140 [ 244.153928][ T8187] prepare_alloc_pages+0x1f0/0x5f0 [ 244.153963][ T8187] ? arch_stack_walk+0xa6/0xf0 [ 244.154004][ T8187] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 244.154054][ T8187] ? stack_trace_save+0x8e/0xc0 [ 244.154090][ T8187] ? __pfx_stack_trace_save+0x10/0x10 [ 244.154127][ T8187] ? stack_depot_save_flags+0x27/0x9d0 [ 244.154167][ T8187] ? is_bpf_text_address+0x8a/0x1a0 [ 244.154205][ T8187] ? is_bpf_text_address+0x8a/0x1a0 [ 244.154250][ T8187] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 244.154293][ T8187] ? kasan_save_stack+0x3f/0x50 [ 244.154330][ T8187] ? kasan_save_stack+0x30/0x50 [ 244.154367][ T8187] ? kasan_save_track+0x14/0x30 [ 244.154409][ T8187] ? kmem_cache_alloc_node_noprof+0x25a/0x6f0 [ 244.154452][ T8187] ? __get_vm_area_node+0x1ca/0x330 [ 244.154483][ T8187] ? get_vm_area_caller+0x71/0xa0 [ 244.154514][ T8187] ? vmap+0x131/0x2f0 [ 244.154543][ T8187] ? ringbuf_map_alloc+0x3a1/0x8b0 [ 244.154587][ T8187] ? map_create+0x84e/0x2ba0 [ 244.154628][ T8187] ? __sys_bpf+0x2091/0x4b90 [ 244.154662][ T8187] ? __x64_sys_bpf+0x7b/0xc0 [ 244.154687][ T8187] ? do_syscall_64+0x10b/0xf80 [ 244.154729][ T8187] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 244.154770][ T8187] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 244.154811][ T8187] ? policy_nodemask+0xed/0x4f0 [ 244.154843][ T8187] alloc_pages_mpol+0x1fb/0x540 [ 244.154873][ T8187] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 244.154915][ T8187] alloc_pages_noprof+0x1a/0x160 [ 244.154948][ T8187] get_free_pages_noprof+0x10/0xb0 [ 244.154972][ T8187] __kasan_populate_vmalloc+0xa0/0x210 [ 244.155022][ T8187] alloc_vmap_area+0x95d/0x2b70 [ 244.155067][ T8187] ? __pfx_alloc_vmap_area+0x10/0x10 [ 244.155108][ T8187] __get_vm_area_node+0x1ca/0x330 [ 244.155144][ T8187] ? ringbuf_map_alloc+0x3a1/0x8b0 [ 244.155193][ T8187] get_vm_area_caller+0x71/0xa0 [ 244.155224][ T8187] ? ringbuf_map_alloc+0x3a1/0x8b0 [ 244.155269][ T8187] vmap+0x131/0x2f0 [ 244.155297][ T8187] ? __pfx_vmap+0x10/0x10 [ 244.155340][ T8187] ringbuf_map_alloc+0x3a1/0x8b0 [ 244.155393][ T8187] ? __pfx_ringbuf_map_mem_usage+0x10/0x10 [ 244.155439][ T8187] map_create+0x84e/0x2ba0 [ 244.155478][ T8187] ? futex_unqueue+0x13d/0x2c0 [ 244.155507][ T8187] ? __futex_wait+0x256/0x300 [ 244.155552][ T8187] ? __pfx_map_create+0x10/0x10 [ 244.155593][ T8187] ? __might_fault+0xc5/0x140 [ 244.155638][ T8187] ? __might_fault+0xc5/0x140 [ 244.155693][ T8187] __sys_bpf+0x2091/0x4b90 [ 244.155726][ T8187] ? __pfx___sys_bpf+0x10/0x10 [ 244.155755][ T8187] ? __pfx_futex_wait+0x10/0x10 [ 244.155801][ T8187] ? errseq_sample+0x51/0x70 [ 244.155838][ T8187] ? file_init_path+0x48e/0x670 [ 244.155880][ T8187] ? do_futex+0x192/0x350 [ 244.155929][ T8187] ? __sys_socket+0xac/0x260 [ 244.155969][ T8187] ? __x64_sys_close_range+0x30f/0x5d0 [ 244.156004][ T8187] ? __pfx___x64_sys_futex+0x10/0x10 [ 244.156037][ T8187] ? __pfx___x64_sys_close_range+0x10/0x10 [ 244.156078][ T8187] __x64_sys_bpf+0x7b/0xc0 [ 244.156106][ T8187] ? lockdep_hardirqs_on+0x78/0x100 [ 244.156151][ T8187] do_syscall_64+0x10b/0xf80 [ 244.156194][ T8187] ? clear_bhb_loop+0x40/0x90 [ 244.156232][ T8187] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 244.156262][ T8187] RIP: 0033:0x7f776d19c819 [ 244.156289][ T8187] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 244.156315][ T8187] RSP: 002b:00007f776e0c0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 244.156341][ T8187] RAX: ffffffffffffffda RBX: 00007f776d415fa0 RCX: 00007f776d19c819 [ 244.156361][ T8187] RDX: 0000000000000010 RSI: 00002000000000c0 RDI: 0000000000000000 [ 244.156379][ T8187] RBP: 00007f776d232c91 R08: 0000000000000000 R09: 0000000000000000 [ 244.156394][ T8187] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 244.156410][ T8187] R13: 00007f776d416038 R14: 00007f776d415fa0 R15: 00007ffc78e65f68 [ 244.156449][ T8187] [ 249.655561][ T5834] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260 [ 249.655602][ T5834] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260 [ 249.671814][ T5834] Bluetooth: hci1: Unknown advertising packet type: 0x7f [ 249.671852][ T5834] Bluetooth: hci1: adv larger than maximum supported [ 249.681600][ T5834] Bluetooth: hci1: adv larger than maximum supported [ 249.688860][ T5834] Bluetooth: hci1: Malformed LE Event: 0x0d [ 250.095848][ T8290] netlink: 'syz.0.697': attribute type 19 has an invalid length. [ 250.125810][ T8290] netlink: 226 bytes leftover after parsing attributes in process `syz.0.697'. [ 251.918017][ T8327] netlink: 146 bytes leftover after parsing attributes in process `syz.1.709'. [ 256.010518][ T8369] kexec: Could not allocate control_code_buffer [ 256.168365][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 256.175105][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 260.488672][ T8435] zswap: compressor not available [ 262.682657][ T8469] netlink: 'syz.2.745': attribute type 19 has an invalid length. [ 262.732307][ T8469] netlink: 226 bytes leftover after parsing attributes in process `syz.2.745'. [ 265.383989][ T8504] netlink: 28 bytes leftover after parsing attributes in process `syz.3.755'. [ 265.520273][ T8504] veth0_macvtap: left promiscuous mode [ 265.572958][ T8504] macvtap0: entered promiscuous mode [ 265.596619][ T8504] macvtap0: entered allmulticast mode [ 268.647774][ T8532] sp0: Synchronizing with TNC [ 269.201985][ T8550] program syz.0.776 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 269.938736][ T8557] zswap: compressor not available [ 270.301069][ T5834] Bluetooth: hci3: Malformed Event: 0x02 [ 270.490716][ T8569] netlink: 'syz.1.772': attribute type 19 has an invalid length. [ 270.531773][ T8569] netlink: 226 bytes leftover after parsing attributes in process `syz.1.772'. [ 271.162049][ T8572] zswap: compressor 000 not available [ 272.220158][ T8585] program syz.3.780 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 273.482810][ T8598] zswap: compressor not available [ 276.508435][ T8632] netlink: 4 bytes leftover after parsing attributes in process `syz.3.794'. [ 276.562508][ T8634] netlink: 25 bytes leftover after parsing attributes in process `syz.3.794'. [ 276.605113][ T8626] netlink: 62 bytes leftover after parsing attributes in process `syz.1.792'. [ 278.792336][ T8657] mkiss: ax0: crc mode is auto. [ 282.883317][ T8698] zswap: compressor 000 not available [ 285.932136][ T8743] zswap: compressor 000 not available [ 286.451514][ T8762] netlink: 28 bytes leftover after parsing attributes in process `syz.2.828'. [ 286.560483][ T8764] netlink: 28 bytes leftover after parsing attributes in process `syz.0.831'. [ 286.576950][ T8762] veth0_macvtap: left promiscuous mode [ 286.617213][ T8762] macvtap0: entered promiscuous mode [ 286.655640][ T8762] macvtap0: entered allmulticast mode [ 288.606641][ T8788] netlink: 246 bytes leftover after parsing attributes in process `syz.2.836'. [ 289.531995][ T8804] netlink: 28 bytes leftover after parsing attributes in process `syz.0.841'. [ 289.587561][ T8804] veth0_macvtap: left promiscuous mode [ 289.620440][ T8804] macvtap0: entered promiscuous mode [ 289.649559][ T8804] macvtap0: entered allmulticast mode [ 292.742562][ T8830] netlink: 62 bytes leftover after parsing attributes in process `syz.1.849'. [ 293.521340][ T8842] netlink: 330 bytes leftover after parsing attributes in process `syz.2.856'. [ 297.095826][ T8907] netlink: 504 bytes leftover after parsing attributes in process `syz.3.875'. [ 297.366272][ T8912] netlink: 246 bytes leftover after parsing attributes in process `syz.3.877'. [ 298.424193][ T8934] netlink: 330 bytes leftover after parsing attributes in process `syz.0.883'. [ 299.828316][ T8954] zswap: compressor not available [ 300.699362][ T8970] zswap: compressor û not available [ 301.097020][ T8982] FAULT_INJECTION: forcing a failure. [ 301.097020][ T8982] name failslab, interval 1, probability 0, space 0, times 0 [ 301.142816][ T8982] CPU: 1 UID: 0 PID: 8982 Comm: syz.2.896 Tainted: G L syzkaller #0 PREEMPT(full) [ 301.142876][ T8982] Tainted: [L]=SOFTLOCKUP [ 301.142888][ T8982] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 301.142906][ T8982] Call Trace: [ 301.142917][ T8982] [ 301.142929][ T8982] dump_stack_lvl+0x100/0x190 [ 301.142989][ T8982] should_fail_ex.cold+0x5/0xa [ 301.143028][ T8982] should_failslab+0xc2/0x120 [ 301.143062][ T8982] __kvmalloc_node_noprof+0xfa/0xa00 [ 301.143108][ T8982] ? snd_pcm_plugin_alloc+0x5ed/0x7e0 [ 301.143156][ T8982] ? kfree+0x1dd/0x6c0 [ 301.143195][ T8982] ? mark_held_locks+0x40/0x70 [ 301.143242][ T8982] snd_pcm_plugin_alloc+0x5ed/0x7e0 [ 301.143291][ T8982] snd_pcm_plug_alloc+0x146/0x320 [ 301.143332][ T8982] snd_pcm_oss_change_params_locked+0x1fb3/0x39f0 [ 301.143399][ T8982] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 301.143479][ T8982] snd_pcm_oss_get_active_substream+0x175/0x1d0 [ 301.143531][ T8982] snd_pcm_oss_ioctl+0x1bf1/0x3700 [ 301.143586][ T8982] ? __fget_files+0x215/0x3d0 [ 301.143613][ T8982] ? hook_file_ioctl_common+0x149/0x410 [ 301.143655][ T8982] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 301.143701][ T8982] ? __fget_files+0x21f/0x3d0 [ 301.143737][ T8982] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 301.143783][ T8982] __x64_sys_ioctl+0x18e/0x210 [ 301.143831][ T8982] do_syscall_64+0x10b/0xf80 [ 301.143876][ T8982] ? clear_bhb_loop+0x40/0x90 [ 301.143910][ T8982] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 301.143942][ T8982] RIP: 0033:0x7fcf6bd9c819 [ 301.143970][ T8982] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 301.143999][ T8982] RSP: 002b:00007fcf6cc9c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 301.144031][ T8982] RAX: ffffffffffffffda RBX: 00007fcf6c015fa0 RCX: 00007fcf6bd9c819 [ 301.144051][ T8982] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 0000000000000006 [ 301.144068][ T8982] RBP: 00007fcf6be32c91 R08: 0000000000000000 R09: 0000000000000000 [ 301.144086][ T8982] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 301.144102][ T8982] R13: 00007fcf6c016038 R14: 00007fcf6c015fa0 R15: 00007fffcffae708 [ 301.144143][ T8982] [ 303.908360][ T9032] process 'syz.3.907' launched '/dev/fd/3/./file0' with NULL argv: empty string added [ 306.943093][ T9048] netlink: 338 bytes leftover after parsing attributes in process `syz.3.910'. [ 307.164781][ T9052] random: crng reseeded on system resumption [ 308.383535][ T0] NOHZ tick-stop error: local softirq work is pending, handler #282!!! [ 309.150791][ T9100] netlink: 4 bytes leftover after parsing attributes in process `syz.1.932'. [ 309.212172][ T9101] netlink: 'syz.1.932': attribute type 1 has an invalid length. [ 309.287127][ T9101] netlink: 13 bytes leftover after parsing attributes in process `syz.1.932'. [ 309.607690][ T9110] netlink: 246 bytes leftover after parsing attributes in process `syz.0.942'. [ 310.906674][ T9127] kmem.tcp.limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 311.275353][ T9137] FAULT_INJECTION: forcing a failure. [ 311.275353][ T9137] name failslab, interval 1, probability 0, space 0, times 0 [ 311.318558][ T9137] CPU: 1 UID: 0 PID: 9137 Comm: syz.0.950 Tainted: G L syzkaller #0 PREEMPT(full) [ 311.318604][ T9137] Tainted: [L]=SOFTLOCKUP [ 311.318614][ T9137] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 311.318630][ T9137] Call Trace: [ 311.318640][ T9137] [ 311.318651][ T9137] dump_stack_lvl+0x100/0x190 [ 311.318709][ T9137] should_fail_ex.cold+0x5/0xa [ 311.318750][ T9137] should_failslab+0xc2/0x120 [ 311.318782][ T9137] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 311.318826][ T9137] ? security_file_alloc+0x34/0x2c0 [ 311.318867][ T9137] ? trace_kmem_cache_alloc+0xd5/0x100 [ 311.318914][ T9137] security_file_alloc+0x34/0x2c0 [ 311.318959][ T9137] init_file+0x95/0x480 [ 311.318998][ T9137] alloc_empty_file+0x79/0x1c0 [ 311.319039][ T9137] dentry_open+0x46/0xd0 [ 311.319079][ T9137] __do_sys_fsmount+0x90a/0xda0 [ 311.319115][ T9137] ? __pfx___do_sys_fsmount+0x10/0x10 [ 311.319157][ T9137] ? rcu_is_watching+0x12/0xc0 [ 311.319198][ T9137] do_syscall_64+0x10b/0xf80 [ 311.319260][ T9137] ? clear_bhb_loop+0x40/0x90 [ 311.319298][ T9137] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 311.319329][ T9137] RIP: 0033:0x7f776d19c819 [ 311.319356][ T9137] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 311.319385][ T9137] RSP: 002b:00007f776e09f028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b0 [ 311.319532][ T9137] RAX: ffffffffffffffda RBX: 00007f776d416090 RCX: 00007f776d19c819 [ 311.319553][ T9137] RDX: 0000000000200003 RSI: 0000000000000000 RDI: 0000000000000004 [ 311.319571][ T9137] RBP: 00007f776d232c91 R08: 0000000000000000 R09: 0000000000000000 [ 311.319589][ T9137] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 311.319607][ T9137] R13: 00007f776d416128 R14: 00007f776d416090 R15: 00007ffc78e65f68 [ 311.319649][ T9137] [ 312.245147][ T9146] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3315741749 (212207471936 ns) > initial count (94764848960 ns). Using initial count to start timer. [ 313.665456][ T9174] device-mapper: ioctl: Unable to rename non-existent device, to uuid „ [ 313.984247][ T9181] random: crng reseeded on system resumption [ 315.074247][ T9204] netlink: 4 bytes leftover after parsing attributes in process `syz.3.963'. [ 315.108751][ T9204] netlink: 'syz.3.963': attribute type 1 has an invalid length. [ 315.136623][ T9204] netlink: 13 bytes leftover after parsing attributes in process `syz.3.963'. [ 316.206949][ T9226] random: crng reseeded on system resumption [ 317.614528][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.621046][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 317.871453][ T9256] random: crng reseeded on system resumption [ 318.390124][ T9263] zswap: compressor not available [ 320.571082][ T9293] random: crng reseeded on system resumption [ 321.405167][ T9307] netlink: 4 bytes leftover after parsing attributes in process `syz.2.994'. [ 321.494384][ T9310] netlink: 25 bytes leftover after parsing attributes in process `syz.2.994'. [ 321.868315][ T9314] netlink: 4 bytes leftover after parsing attributes in process `syz.2.996'. [ 321.910517][ T9314] netlink: 25 bytes leftover after parsing attributes in process `syz.2.996'. [ 322.167306][ T9320] netlink: 28 bytes leftover after parsing attributes in process `syz.2.998'. [ 322.702195][ T9331] zswap: compressor not available [ 322.896649][ T9329] netlink: 186 bytes leftover after parsing attributes in process `syz.1.1000'. [ 322.936050][ T9329] netlink: 186 bytes leftover after parsing attributes in process `syz.1.1000'. [ 323.482268][ T9344] FAULT_INJECTION: forcing a failure. [ 323.482268][ T9344] name failslab, interval 1, probability 0, space 0, times 0 [ 323.568100][ T9344] CPU: 0 UID: 0 PID: 9344 Comm: syz.0.1003 Tainted: G L syzkaller #0 PREEMPT(full) [ 323.568153][ T9344] Tainted: [L]=SOFTLOCKUP [ 323.568164][ T9344] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 323.568191][ T9344] Call Trace: [ 323.568201][ T9344] [ 323.568213][ T9344] dump_stack_lvl+0x100/0x190 [ 323.568272][ T9344] should_fail_ex.cold+0x5/0xa [ 323.568311][ T9344] ? __register_sysctl_table+0xac/0x1650 [ 323.568345][ T9344] should_failslab+0xc2/0x120 [ 323.568372][ T9344] __kmalloc_noprof+0xe0/0x850 [ 323.568433][ T9344] __register_sysctl_table+0xac/0x1650 [ 323.568467][ T9344] ? is_module_address+0x5f/0xf0 [ 323.568503][ T9344] ? __pfx___register_sysctl_table+0x10/0x10 [ 323.568537][ T9344] ? is_module_address+0x69/0xf0 [ 323.568564][ T9344] ? register_net_sysctl_sz+0x222/0x430 [ 323.568598][ T9344] ? __asan_memcpy+0x3c/0x60 [ 323.568644][ T9344] ipv6_frags_init_net+0x217/0x350 [ 323.568679][ T9344] ? __pfx_ipv6_frags_init_net+0x10/0x10 [ 323.568751][ T9344] ops_init+0x1e2/0x5f0 [ 323.568798][ T9344] setup_net+0x118/0x3a0 [ 323.568829][ T9344] ? __pfx_setup_net+0x10/0x10 [ 323.568861][ T9344] ? mutex_init_lockdep+0xf1/0x120 [ 323.568908][ T9344] copy_net_ns+0x46f/0x7c0 [ 323.568949][ T9344] create_new_namespaces+0x3ea/0xac0 [ 323.569010][ T9344] unshare_nsproxy_namespaces+0xf2/0x220 [ 323.569055][ T9344] ksys_unshare+0x438/0xab0 [ 323.569112][ T9344] ? __pfx_ksys_unshare+0x10/0x10 [ 323.569149][ T9344] ? xfd_validate_state+0x129/0x190 [ 323.569205][ T9344] __x64_sys_unshare+0x31/0x40 [ 323.569248][ T9344] do_syscall_64+0x10b/0xf80 [ 323.569294][ T9344] ? clear_bhb_loop+0x40/0x90 [ 323.569331][ T9344] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 323.569363][ T9344] RIP: 0033:0x7f776d19c819 [ 323.569390][ T9344] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 323.569418][ T9344] RSP: 002b:00007f776e0c0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 323.569445][ T9344] RAX: ffffffffffffffda RBX: 00007f776d415fa0 RCX: 00007f776d19c819 [ 323.569466][ T9344] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 323.569483][ T9344] RBP: 00007f776d232c91 R08: 0000000000000000 R09: 0000000000000000 [ 323.569500][ T9344] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 323.569518][ T9344] R13: 00007f776d416038 R14: 00007f776d415fa0 R15: 00007ffc78e65f68 [ 323.569559][ T9344] [ 324.048401][ T5834] Bluetooth: hci2: unexpected event 0x1c length: 725 > 5 [ 327.426389][ T9392] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1015'. [ 327.450164][ T9392] netlink: 13 bytes leftover after parsing attributes in process `syz.0.1015'. [ 330.096415][ T9422] netlink: 354 bytes leftover after parsing attributes in process `syz.3.1023'. [ 330.318299][ T9423] zswap: compressor not available [ 330.640535][ T9438] netlink: 'syz.3.1024': attribute type 1 has an invalid length. [ 330.675861][ T9438] netlink: 'syz.3.1024': attribute type 1 has an invalid length. [ 331.823934][ T5834] Bluetooth: hci1: unexpected event 0x1c length: 725 > 5 [ 333.045255][ T9476] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1033'. [ 333.064032][ T9468] random: crng reseeded on system resumption [ 333.310343][ T9480] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3315741749 (212207471936 ns) > initial count (94764848960 ns). Using initial count to start timer. [ 335.604624][ T5834] Bluetooth: hci3: unexpected event 0x1c length: 725 > 5 [ 336.489762][ T9531] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3315741749 (212207471936 ns) > initial count (94764848960 ns). Using initial count to start timer. [ 336.669339][ T9529] zswap: compressor not available [ 336.957654][ T9548] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1050'. [ 337.052107][ T9548] netlink: 294 bytes leftover after parsing attributes in process `syz.2.1050'. [ 338.843763][ T5834] Bluetooth: hci0: unexpected event 0x1c length: 725 > 5 [ 340.318938][ T9594] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3315741749 (212207471936 ns) > initial count (94764848960 ns). Using initial count to start timer. [ 340.857367][ T9603] FAULT_INJECTION: forcing a failure. [ 340.857367][ T9603] name failslab, interval 1, probability 0, space 0, times 0 [ 340.870488][ T9603] CPU: 1 UID: 0 PID: 9603 Comm: syz.2.1063 Tainted: G L syzkaller #0 PREEMPT(full) [ 340.870539][ T9603] Tainted: [L]=SOFTLOCKUP [ 340.870551][ T9603] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 340.870568][ T9603] Call Trace: [ 340.870579][ T9603] [ 340.870591][ T9603] dump_stack_lvl+0x100/0x190 [ 340.870650][ T9603] should_fail_ex.cold+0x5/0xa [ 340.870690][ T9603] should_failslab+0xc2/0x120 [ 340.870724][ T9603] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 340.870770][ T9603] ? __proc_create+0x2cb/0x8c0 [ 340.870810][ T9603] __proc_create+0x2cb/0x8c0 [ 340.870844][ T9603] ? __pfx___proc_create+0x10/0x10 [ 340.870886][ T9603] ? mark_held_locks+0x40/0x70 [ 340.870936][ T9603] _proc_mkdir+0xb9/0x210 [ 340.870971][ T9603] ? __pfx__proc_mkdir+0x10/0x10 [ 340.871010][ T9603] ? sctp_defaults_init+0x720/0xd90 [ 340.871055][ T9603] sctp_proc_init+0x59/0x270 [ 340.871087][ T9603] ? __pfx_sctp_defaults_init+0x10/0x10 [ 340.871118][ T9603] sctp_defaults_init+0x758/0xd90 [ 340.871153][ T9603] ? __pfx_sctp_defaults_init+0x10/0x10 [ 340.871186][ T9603] ops_init+0x1e2/0x5f0 [ 340.871225][ T9603] setup_net+0x118/0x3a0 [ 340.871256][ T9603] ? __pfx_setup_net+0x10/0x10 [ 340.871287][ T9603] ? mutex_init_lockdep+0xf1/0x120 [ 340.871321][ T9603] copy_net_ns+0x46f/0x7c0 [ 340.871360][ T9603] create_new_namespaces+0x3ea/0xac0 [ 340.871404][ T9603] unshare_nsproxy_namespaces+0xf2/0x220 [ 340.871442][ T9603] ksys_unshare+0x438/0xab0 [ 340.871488][ T9603] ? __pfx_ksys_unshare+0x10/0x10 [ 340.871529][ T9603] ? xfd_validate_state+0x129/0x190 [ 340.871574][ T9603] __x64_sys_unshare+0x31/0x40 [ 340.871624][ T9603] do_syscall_64+0x10b/0xf80 [ 340.871669][ T9603] ? clear_bhb_loop+0x40/0x90 [ 340.871716][ T9603] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 340.871748][ T9603] RIP: 0033:0x7fcf6bd9c819 [ 340.871774][ T9603] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 340.871803][ T9603] RSP: 002b:00007fcf6cc9c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 340.871835][ T9603] RAX: ffffffffffffffda RBX: 00007fcf6c015fa0 RCX: 00007fcf6bd9c819 [ 340.871855][ T9603] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 340.871874][ T9603] RBP: 00007fcf6be32c91 R08: 0000000000000000 R09: 0000000000000000 [ 340.871892][ T9603] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 340.871910][ T9603] R13: 00007fcf6c016038 R14: 00007fcf6c015fa0 R15: 00007fffcffae708 [ 340.871952][ T9603] [ 342.105016][ T9619] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 342.163144][ T9619] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 342.983642][ T9237] syz.3.974 (9237) used greatest stack depth: 18896 bytes left [ 343.740703][ T9642] zswap: compressor not available [ 343.813452][ T0] NOHZ tick-stop error: local softirq work is pending, handler #202!!! [ 344.660007][ T9654] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1073'. [ 344.692426][ T9654] netlink: 13 bytes leftover after parsing attributes in process `syz.3.1073'. [ 347.023557][ T9690] FAULT_INJECTION: forcing a failure. [ 347.023557][ T9690] name failslab, interval 1, probability 0, space 0, times 0 [ 347.112531][ T9690] CPU: 0 UID: 0 PID: 9690 Comm: syz.1.1084 Tainted: G L syzkaller #0 PREEMPT(full) [ 347.112583][ T9690] Tainted: [L]=SOFTLOCKUP [ 347.112593][ T9690] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 347.112611][ T9690] Call Trace: [ 347.112621][ T9690] [ 347.112631][ T9690] dump_stack_lvl+0x100/0x190 [ 347.112691][ T9690] should_fail_ex.cold+0x5/0xa [ 347.112731][ T9690] should_failslab+0xc2/0x120 [ 347.112766][ T9690] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 347.112817][ T9690] ? __proc_create+0x2cb/0x8c0 [ 347.112859][ T9690] __proc_create+0x2cb/0x8c0 [ 347.112902][ T9690] ? __pfx___proc_create+0x10/0x10 [ 347.112945][ T9690] ? mark_held_locks+0x40/0x70 [ 347.112996][ T9690] _proc_mkdir+0xb9/0x210 [ 347.113033][ T9690] ? __pfx__proc_mkdir+0x10/0x10 [ 347.113075][ T9690] ? sctp_defaults_init+0x720/0xd90 [ 347.113120][ T9690] sctp_proc_init+0x59/0x270 [ 347.113153][ T9690] ? __pfx_sctp_defaults_init+0x10/0x10 [ 347.113185][ T9690] sctp_defaults_init+0x758/0xd90 [ 347.113220][ T9690] ? __pfx_sctp_defaults_init+0x10/0x10 [ 347.113253][ T9690] ops_init+0x1e2/0x5f0 [ 347.113292][ T9690] setup_net+0x118/0x3a0 [ 347.113323][ T9690] ? __pfx_setup_net+0x10/0x10 [ 347.113356][ T9690] ? mutex_init_lockdep+0xf1/0x120 [ 347.113389][ T9690] copy_net_ns+0x46f/0x7c0 [ 347.113426][ T9690] create_new_namespaces+0x3ea/0xac0 [ 347.113472][ T9690] unshare_nsproxy_namespaces+0xf2/0x220 [ 347.113515][ T9690] ksys_unshare+0x438/0xab0 [ 347.113564][ T9690] ? __pfx_ksys_unshare+0x10/0x10 [ 347.113606][ T9690] ? xfd_validate_state+0x129/0x190 [ 347.113652][ T9690] __x64_sys_unshare+0x31/0x40 [ 347.113696][ T9690] do_syscall_64+0x10b/0xf80 [ 347.113742][ T9690] ? clear_bhb_loop+0x40/0x90 [ 347.113781][ T9690] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 347.113814][ T9690] RIP: 0033:0x7fb0d5d9c819 [ 347.113841][ T9690] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 347.113880][ T9690] RSP: 002b:00007fb0d6c6d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 347.113911][ T9690] RAX: ffffffffffffffda RBX: 00007fb0d6015fa0 RCX: 00007fb0d5d9c819 [ 347.113932][ T9690] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 347.113949][ T9690] RBP: 00007fb0d5e32c91 R08: 0000000000000000 R09: 0000000000000000 [ 347.113967][ T9690] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 347.113984][ T9690] R13: 00007fb0d6016038 R14: 00007fb0d6015fa0 R15: 00007ffd85a136d8 [ 347.114024][ T9690] [ 348.138355][ T9700] netlink: 354 bytes leftover after parsing attributes in process `syz.3.1086'. [ 350.588024][ T9733] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1095'. [ 350.598593][ T9733] netlink: 25 bytes leftover after parsing attributes in process `syz.2.1095'. [ 351.468760][ T9741] FAULT_INJECTION: forcing a failure. [ 351.468760][ T9741] name failslab, interval 1, probability 0, space 0, times 0 [ 351.496680][ T9741] CPU: 1 UID: 0 PID: 9741 Comm: syz.3.1097 Tainted: G L syzkaller #0 PREEMPT(full) [ 351.496729][ T9741] Tainted: [L]=SOFTLOCKUP [ 351.496739][ T9741] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 351.496753][ T9741] Call Trace: [ 351.496763][ T9741] [ 351.496775][ T9741] dump_stack_lvl+0x100/0x190 [ 351.496827][ T9741] should_fail_ex.cold+0x5/0xa [ 351.496875][ T9741] should_failslab+0xc2/0x120 [ 351.496905][ T9741] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 351.496946][ T9741] ? seq_open+0x55/0x170 [ 351.496985][ T9741] ? __pfx_apparmor_file_open+0x10/0x10 [ 351.497026][ T9741] seq_open+0x55/0x170 [ 351.497063][ T9741] show_traces_open+0xbb/0x1c0 [ 351.497103][ T9741] do_dentry_open+0x6d8/0x1660 [ 351.497131][ T9741] ? __pfx_show_traces_open+0x10/0x10 [ 351.497179][ T9741] vfs_open+0x82/0x3f0 [ 351.497220][ T9741] path_openat+0x208c/0x31a0 [ 351.497264][ T9741] ? __pfx_path_openat+0x10/0x10 [ 351.497311][ T9741] do_file_open+0x20e/0x430 [ 351.497354][ T9741] ? __pfx_do_file_open+0x10/0x10 [ 351.497411][ T9741] ? alloc_fd+0x476/0x790 [ 351.497448][ T9741] ? do_getname+0x191/0x390 [ 351.497487][ T9741] do_sys_openat2+0x10d/0x1e0 [ 351.497526][ T9741] ? __pfx_do_sys_openat2+0x10/0x10 [ 351.497581][ T9741] __x64_sys_openat+0x12d/0x210 [ 351.497619][ T9741] ? __pfx___x64_sys_openat+0x10/0x10 [ 351.497663][ T9741] ? rcu_is_watching+0x12/0xc0 [ 351.497703][ T9741] do_syscall_64+0x10b/0xf80 [ 351.497745][ T9741] ? clear_bhb_loop+0x40/0x90 [ 351.497783][ T9741] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 351.497814][ T9741] RIP: 0033:0x7f29f579c819 [ 351.497841][ T9741] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 351.497878][ T9741] RSP: 002b:00007f29f657f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 351.497908][ T9741] RAX: ffffffffffffffda RBX: 00007f29f5a15fa0 RCX: 00007f29f579c819 [ 351.497929][ T9741] RDX: 0000000000008300 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 351.497948][ T9741] RBP: 00007f29f5832c91 R08: 0000000000000000 R09: 0000000000000000 [ 351.497966][ T9741] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 351.497983][ T9741] R13: 00007f29f5a16038 R14: 00007f29f5a15fa0 R15: 00007fffc580e488 [ 351.498020][ T9741] [ 351.835634][ T9744] netlink: 'syz.1.1098': attribute type 21 has an invalid length. [ 351.856457][ T9744] netlink: 334 bytes leftover after parsing attributes in process `syz.1.1098'. [ 353.442467][ T9779] netlink: 13 bytes leftover after parsing attributes in process `syz.0.1109'. [ 353.884718][ T9789] netlink: 25 bytes leftover after parsing attributes in process `syz.2.1110'. [ 355.017699][ T9811] netlink: 'syz.1.1117': attribute type 5 has an invalid length. [ 355.037747][ T9811] netlink: 'syz.1.1117': attribute type 1 has an invalid length. [ 355.058492][ T9811] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1117'. [ 355.083122][ T9811] netlink: 'syz.1.1117': attribute type 5 has an invalid length. [ 355.103176][ T9811] netlink: 'syz.1.1117': attribute type 1 has an invalid length. [ 355.141406][ T9811] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1117'. [ 355.517507][ T9821] netlink: 252 bytes leftover after parsing attributes in process `syz.1.1121'. [ 355.541803][ T9821] netlink: 252 bytes leftover after parsing attributes in process `syz.1.1121'. [ 356.344396][ T9830] FAULT_INJECTION: forcing a failure. [ 356.344396][ T9830] name failslab, interval 1, probability 0, space 0, times 0 [ 356.396160][ T9830] CPU: 1 UID: 0 PID: 9830 Comm: syz.2.1123 Tainted: G L syzkaller #0 PREEMPT(full) [ 356.396211][ T9830] Tainted: [L]=SOFTLOCKUP [ 356.396222][ T9830] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 356.396240][ T9830] Call Trace: [ 356.396250][ T9830] [ 356.396262][ T9830] dump_stack_lvl+0x100/0x190 [ 356.396318][ T9830] should_fail_ex.cold+0x5/0xa [ 356.396359][ T9830] should_failslab+0xc2/0x120 [ 356.396394][ T9830] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 356.396441][ T9830] ? alloc_inode+0x183/0x250 [ 356.396485][ T9830] ? find_inode_fast+0x1fa/0x910 [ 356.396533][ T9830] alloc_inode+0x183/0x250 [ 356.396576][ T9830] iget_locked+0x1d9/0x6d0 [ 356.396620][ T9830] ? __pfx_iget_locked+0x10/0x10 [ 356.396661][ T9830] ? kernfs_root+0xee/0x2a0 [ 356.396708][ T9830] ? kernfs_root+0xee/0x2a0 [ 356.396764][ T9830] kernfs_get_inode+0x46/0x470 [ 356.396809][ T9830] kernfs_iop_lookup+0x1a7/0x2d0 [ 356.396842][ T9830] __lookup_slow+0x251/0x460 [ 356.396885][ T9830] ? __pfx___lookup_slow+0x10/0x10 [ 356.396950][ T9830] ? __d_lookup+0x266/0x4a0 [ 356.397005][ T9830] lookup_slow+0x50/0x70 [ 356.397055][ T9830] link_path_walk+0x1377/0x1cc0 [ 356.397118][ T9830] path_openat+0x1be/0x31a0 [ 356.397149][ T9830] ? kasan_save_stack+0x3f/0x50 [ 356.397196][ T9830] ? kasan_save_stack+0x30/0x50 [ 356.397242][ T9830] ? kasan_save_track+0x14/0x30 [ 356.397289][ T9830] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 356.397344][ T9830] ? __pfx_path_openat+0x10/0x10 [ 356.397394][ T9830] do_file_open+0x20e/0x430 [ 356.397431][ T9830] ? __pfx_do_file_open+0x10/0x10 [ 356.397495][ T9830] ? alloc_fd+0x476/0x790 [ 356.397532][ T9830] ? do_getname+0x191/0x390 [ 356.397576][ T9830] do_sys_openat2+0x10d/0x1e0 [ 356.397619][ T9830] ? __pfx_do_sys_openat2+0x10/0x10 [ 356.397677][ T9830] __x64_sys_openat+0x12d/0x210 [ 356.397721][ T9830] ? __pfx___x64_sys_openat+0x10/0x10 [ 356.397761][ T9830] ? ksys_write+0x1ac/0x250 [ 356.397800][ T9830] ? rcu_is_watching+0x12/0xc0 [ 356.397842][ T9830] do_syscall_64+0x10b/0xf80 [ 356.397889][ T9830] ? clear_bhb_loop+0x40/0x90 [ 356.397928][ T9830] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 356.397960][ T9830] RIP: 0033:0x7fcf6bd9c819 [ 356.397988][ T9830] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 356.398018][ T9830] RSP: 002b:00007fcf6cc7b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 356.398147][ T9830] RAX: ffffffffffffffda RBX: 00007fcf6c016090 RCX: 00007fcf6bd9c819 [ 356.398167][ T9830] RDX: 0000000000002400 RSI: 0000200000000140 RDI: ffffffffffffff9c [ 356.398187][ T9830] RBP: 00007fcf6be32c91 R08: 0000000000000000 R09: 0000000000000000 [ 356.398205][ T9830] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 356.398223][ T9830] R13: 00007fcf6c016128 R14: 00007fcf6c016090 R15: 00007fffcffae708 [ 356.398266][ T9830] [ 356.915107][ T9836] random: crng reseeded on system resumption [ 357.292141][ T9838] FAULT_INJECTION: forcing a failure. [ 357.292141][ T9838] name failslab, interval 1, probability 0, space 0, times 0 [ 357.349575][ T9838] CPU: 1 UID: 0 PID: 9838 Comm: syz.0.1126 Tainted: G L syzkaller #0 PREEMPT(full) [ 357.349629][ T9838] Tainted: [L]=SOFTLOCKUP [ 357.349640][ T9838] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 357.349657][ T9838] Call Trace: [ 357.349668][ T9838] [ 357.349688][ T9838] dump_stack_lvl+0x100/0x190 [ 357.349740][ T9838] should_fail_ex.cold+0x5/0xa [ 357.349778][ T9838] should_failslab+0xc2/0x120 [ 357.349807][ T9838] __kmalloc_cache_noprof+0x7a/0x6f0 [ 357.349843][ T9838] ? call_usermodehelper_setup+0xaf/0x360 [ 357.349879][ T9838] ? __pfx_free_modprobe_argv+0x10/0x10 [ 357.349910][ T9838] call_usermodehelper_setup+0xaf/0x360 [ 357.349947][ T9838] __request_module+0x3d3/0x6c0 [ 357.349976][ T9838] ? __pfx___request_module+0x10/0x10 [ 357.350009][ T9838] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 357.350060][ T9838] ? ilookup+0x189/0x210 [ 357.350107][ T9838] blk_request_module+0x5c/0xc0 [ 357.350138][ T9838] blkdev_get_no_open+0x9b/0xf0 [ 357.350181][ T9838] bdev_file_open_by_dev+0x70/0x210 [ 357.350226][ T9838] swsusp_check+0x72/0x470 [ 357.350269][ T9838] software_resume+0x6f/0x330 [ 357.350305][ T9838] resume_store+0x248/0x460 [ 357.350339][ T9838] ? __pfx_resume_store+0x10/0x10 [ 357.350386][ T9838] ? find_held_lock+0x2b/0x80 [ 357.350423][ T9838] ? sysfs_file_kobj+0xe4/0x290 [ 357.350464][ T9838] ? sysfs_file_kobj+0xe4/0x290 [ 357.350502][ T9838] ? __pfx_resume_store+0x10/0x10 [ 357.350531][ T9838] kobj_attr_store+0x58/0x80 [ 357.350559][ T9838] ? __pfx_kobj_attr_store+0x10/0x10 [ 357.350589][ T9838] sysfs_kf_write+0xf2/0x150 [ 357.350631][ T9838] kernfs_fop_write_iter+0x3e0/0x5f0 [ 357.350664][ T9838] ? __pfx_sysfs_kf_write+0x10/0x10 [ 357.350722][ T9838] vfs_write+0x6ac/0x1070 [ 357.350755][ T9838] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 357.350798][ T9838] ? __pfx_vfs_write+0x10/0x10 [ 357.350857][ T9838] ksys_write+0x12a/0x250 [ 357.350887][ T9838] ? __pfx_ksys_write+0x10/0x10 [ 357.350922][ T9838] ? rcu_is_watching+0x12/0xc0 [ 357.350962][ T9838] do_syscall_64+0x10b/0xf80 [ 357.351007][ T9838] ? clear_bhb_loop+0x40/0x90 [ 357.351044][ T9838] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 357.351073][ T9838] RIP: 0033:0x7f776d19c819 [ 357.351098][ T9838] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 357.351125][ T9838] RSP: 002b:00007f776e09f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 357.351156][ T9838] RAX: ffffffffffffffda RBX: 00007f776d416090 RCX: 00007f776d19c819 [ 357.351177][ T9838] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003 [ 357.351194][ T9838] RBP: 00007f776d232c91 R08: 0000000000000000 R09: 0000000000000000 [ 357.351212][ T9838] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 357.351230][ T9838] R13: 00007f776d416128 R14: 00007f776d416090 R15: 00007ffc78e65f68 [ 357.351271][ T9838] [ 357.733973][ T9842] sp0: Synchronizing with TNC [ 359.601779][ T9873] FAULT_INJECTION: forcing a failure. [ 359.601779][ T9873] name failslab, interval 1, probability 0, space 0, times 0 [ 359.616269][ T9873] CPU: 0 UID: 0 PID: 9873 Comm: syz.2.1135 Tainted: G L syzkaller #0 PREEMPT(full) [ 359.616321][ T9873] Tainted: [L]=SOFTLOCKUP [ 359.616332][ T9873] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 359.616351][ T9873] Call Trace: [ 359.616363][ T9873] [ 359.616374][ T9873] dump_stack_lvl+0x100/0x190 [ 359.616433][ T9873] should_fail_ex.cold+0x5/0xa [ 359.616480][ T9873] should_failslab+0xc2/0x120 [ 359.616515][ T9873] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 359.616562][ T9873] ? seq_open+0x55/0x170 [ 359.616603][ T9873] ? __pfx_apparmor_file_open+0x10/0x10 [ 359.616657][ T9873] seq_open+0x55/0x170 [ 359.616697][ T9873] show_traces_open+0xbb/0x1c0 [ 359.616741][ T9873] do_dentry_open+0x6d8/0x1660 [ 359.616772][ T9873] ? __pfx_show_traces_open+0x10/0x10 [ 359.616821][ T9873] vfs_open+0x82/0x3f0 [ 359.616865][ T9873] path_openat+0x208c/0x31a0 [ 359.616909][ T9873] ? __pfx_path_openat+0x10/0x10 [ 359.616955][ T9873] do_file_open+0x20e/0x430 [ 359.616993][ T9873] ? __pfx_do_file_open+0x10/0x10 [ 359.617055][ T9873] ? alloc_fd+0x476/0x790 [ 359.617088][ T9873] ? do_getname+0x191/0x390 [ 359.617129][ T9873] do_sys_openat2+0x10d/0x1e0 [ 359.617168][ T9873] ? __pfx_do_sys_openat2+0x10/0x10 [ 359.617223][ T9873] __x64_sys_openat+0x12d/0x210 [ 359.617265][ T9873] ? __pfx___x64_sys_openat+0x10/0x10 [ 359.617313][ T9873] ? rcu_is_watching+0x12/0xc0 [ 359.617361][ T9873] do_syscall_64+0x10b/0xf80 [ 359.617407][ T9873] ? clear_bhb_loop+0x40/0x90 [ 359.617445][ T9873] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 359.617475][ T9873] RIP: 0033:0x7fcf6bd9c819 [ 359.617499][ T9873] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 359.617526][ T9873] RSP: 002b:00007fcf6cc9c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 359.617555][ T9873] RAX: ffffffffffffffda RBX: 00007fcf6c015fa0 RCX: 00007fcf6bd9c819 [ 359.617574][ T9873] RDX: 0000000000008300 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 359.617594][ T9873] RBP: 00007fcf6be32c91 R08: 0000000000000000 R09: 0000000000000000 [ 359.617610][ T9873] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 359.617626][ T9873] R13: 00007fcf6c016038 R14: 00007fcf6c015fa0 R15: 00007fffcffae708 [ 359.617677][ T9873] [ 360.681330][ T9891] futex_wake_op: syz.2.1140 tries to shift op by -2048; fix this program [ 362.112699][ T5834] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 362.117491][ T9918] futex_wake_op: syz.3.1148 tries to shift op by -2048; fix this program [ 362.230794][ T9918] futex_wake_op: syz.3.1148 tries to shift op by -2048; fix this program [ 364.049828][ T9926] FAULT_INJECTION: forcing a failure. [ 364.049828][ T9926] name fail_futex, interval 1, probability 0, space 0, times 0 [ 364.079683][ T9926] CPU: 1 UID: 0 PID: 9926 Comm: syz.1.1149 Tainted: G L syzkaller #0 PREEMPT(full) [ 364.079737][ T9926] Tainted: [L]=SOFTLOCKUP [ 364.079748][ T9926] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 364.079764][ T9926] Call Trace: [ 364.079774][ T9926] [ 364.079787][ T9926] dump_stack_lvl+0x100/0x190 [ 364.079848][ T9926] should_fail_ex.cold+0x5/0xa [ 364.079886][ T9926] get_futex_key+0x1d2/0x1510 [ 364.079936][ T9926] ? __pfx_get_futex_key+0x10/0x10 [ 364.079994][ T9926] futex_wake+0xea/0x530 [ 364.080033][ T9926] ? rcu_is_watching+0x12/0xc0 [ 364.080068][ T9926] ? __pfx_futex_wake+0x10/0x10 [ 364.080110][ T9926] ? putname+0xb1/0x110 [ 364.080140][ T9926] ? kmem_cache_free+0x127/0x6c0 [ 364.080190][ T9926] do_futex+0x32b/0x350 [ 364.080230][ T9926] ? __pfx_do_futex+0x10/0x10 [ 364.080256][ T9926] ? __pfx_do_sys_openat2+0x10/0x10 [ 364.080308][ T9926] __x64_sys_futex+0x34f/0x4d0 [ 364.080341][ T9926] ? __x64_sys_openat+0x12d/0x210 [ 364.080380][ T9926] ? __pfx___x64_sys_futex+0x10/0x10 [ 364.080418][ T9926] ? rcu_is_watching+0x12/0xc0 [ 364.080458][ T9926] do_syscall_64+0x10b/0xf80 [ 364.080502][ T9926] ? clear_bhb_loop+0x40/0x90 [ 364.080538][ T9926] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 364.080570][ T9926] RIP: 0033:0x7fb0d5d9c819 [ 364.080596][ T9926] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 364.080632][ T9926] RSP: 002b:00007fb0d6c6d0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 364.080660][ T9926] RAX: ffffffffffffffda RBX: 00007fb0d6015fa8 RCX: 00007fb0d5d9c819 [ 364.080676][ T9926] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fb0d6015fac [ 364.080691][ T9926] RBP: 00007fb0d6015fa0 R08: 0000000000000001 R09: 0000000000000000 [ 364.080705][ T9926] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000000 [ 364.080719][ T9926] R13: 00007fb0d6016038 R14: 00007ffd85a135f0 R15: 00007ffd85a136d8 [ 364.080755][ T9926] [ 364.936764][ T9931] sctp: [Deprecated]: syz.2.1152 (pid 9931) Use of struct sctp_assoc_value in delayed_ack socket option. [ 364.936764][ T9931] Use struct sctp_sack_info instead [ 365.416361][ T9938] netlink: 252 bytes leftover after parsing attributes in process `syz.2.1153'. [ 365.443952][ T9938] netlink: 252 bytes leftover after parsing attributes in process `syz.2.1153'. [ 365.687128][ T9941] FAULT_INJECTION: forcing a failure. [ 365.687128][ T9941] name failslab, interval 1, probability 0, space 0, times 0 [ 365.733114][ T9941] CPU: 1 UID: 0 PID: 9941 Comm: syz.1.1155 Tainted: G L syzkaller #0 PREEMPT(full) [ 365.733168][ T9941] Tainted: [L]=SOFTLOCKUP [ 365.733179][ T9941] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 365.733196][ T9941] Call Trace: [ 365.733206][ T9941] [ 365.733218][ T9941] dump_stack_lvl+0x100/0x190 [ 365.733276][ T9941] should_fail_ex.cold+0x5/0xa [ 365.733312][ T9941] ? __register_sysctl_table+0xac/0x1650 [ 365.733342][ T9941] should_failslab+0xc2/0x120 [ 365.733375][ T9941] __kmalloc_noprof+0xe0/0x850 [ 365.733427][ T9941] __register_sysctl_table+0xac/0x1650 [ 365.733460][ T9941] ? is_module_address+0x5f/0xf0 [ 365.733521][ T9941] ? __pfx___register_sysctl_table+0x10/0x10 [ 365.733556][ T9941] ? is_module_address+0x69/0xf0 [ 365.733585][ T9941] ? register_net_sysctl_sz+0x222/0x430 [ 365.733620][ T9941] ? __asan_memcpy+0x3c/0x60 [ 365.733666][ T9941] devinet_init_net+0x369/0x8d0 [ 365.733710][ T9941] ? __pfx_devinet_init_net+0x10/0x10 [ 365.733749][ T9941] ops_init+0x1e2/0x5f0 [ 365.733789][ T9941] setup_net+0x118/0x3a0 [ 365.733839][ T9941] ? __pfx_setup_net+0x10/0x10 [ 365.733875][ T9941] ? mutex_init_lockdep+0xf1/0x120 [ 365.733923][ T9941] copy_net_ns+0x46f/0x7c0 [ 365.733965][ T9941] create_new_namespaces+0x3ea/0xac0 [ 365.734015][ T9941] unshare_nsproxy_namespaces+0xf2/0x220 [ 365.734059][ T9941] ksys_unshare+0x438/0xab0 [ 365.734107][ T9941] ? __pfx_ksys_unshare+0x10/0x10 [ 365.734149][ T9941] ? xfd_validate_state+0x129/0x190 [ 365.734196][ T9941] __x64_sys_unshare+0x31/0x40 [ 365.734240][ T9941] do_syscall_64+0x10b/0xf80 [ 365.734286][ T9941] ? clear_bhb_loop+0x40/0x90 [ 365.734325][ T9941] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 365.734356][ T9941] RIP: 0033:0x7fb0d5d9c819 [ 365.734384][ T9941] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 365.734426][ T9941] RSP: 002b:00007fb0d6c6d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 365.734457][ T9941] RAX: ffffffffffffffda RBX: 00007fb0d6015fa0 RCX: 00007fb0d5d9c819 [ 365.734478][ T9941] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 365.734496][ T9941] RBP: 00007fb0d5e32c91 R08: 0000000000000000 R09: 0000000000000000 [ 365.734516][ T9941] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 365.734535][ T9941] R13: 00007fb0d6016038 R14: 00007fb0d6015fa0 R15: 00007ffd85a136d8 [ 365.734578][ T9941] [ 366.497880][ T9942] sctp: [Deprecated]: syz.0.1162 (pid 9942) Use of struct sctp_assoc_value in delayed_ack socket option. [ 366.497880][ T9942] Use struct sctp_sack_info instead [ 369.326174][ T9989] capability: warning: `syz.1.1168' uses deprecated v2 capabilities in a way that may be insecure [ 369.431646][ T9988] kvm: vcpu 4: requested lapic timer restore with starting count register 0x390=4294967104 (137438947328 ns) > initial count (6624 ns). Using initial count to start timer. [ 371.752524][ T5833] Bluetooth: Frame is too long (len 122, expected len 4) [ 372.821973][T10030] futex_wake_op: syz.0.1179 tries to shift op by -2048; fix this program [ 374.388460][T10037] sp0: Synchronizing with TNC [ 376.800897][T10084] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 376.855489][T10084] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 376.941091][T10089] futex_wake_op: syz.1.1189 tries to shift op by -2048; fix this program [ 379.051102][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 379.060108][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 379.270503][T10110] FAULT_INJECTION: forcing a failure. [ 379.270503][T10110] name failslab, interval 1, probability 0, space 0, times 0 [ 379.316756][T10110] CPU: 0 UID: 0 PID: 10110 Comm: syz.0.1198 Tainted: G L syzkaller #0 PREEMPT(full) [ 379.316807][T10110] Tainted: [L]=SOFTLOCKUP [ 379.316818][T10110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 379.316834][T10110] Call Trace: [ 379.316843][T10110] [ 379.316854][T10110] dump_stack_lvl+0x100/0x190 [ 379.316911][T10110] should_fail_ex.cold+0x5/0xa [ 379.316951][T10110] should_failslab+0xc2/0x120 [ 379.316981][T10110] __kvmalloc_node_noprof+0xfa/0xa00 [ 379.317026][T10110] ? fib4_semantics_init+0x2a/0x100 [ 379.317083][T10110] fib4_semantics_init+0x2a/0x100 [ 379.317129][T10110] fib_net_init+0x1fc/0x3f0 [ 379.317162][T10110] ? is_module_address+0x69/0xf0 [ 379.317193][T10110] ? __pfx_fib_net_init+0x10/0x10 [ 379.317230][T10110] ? timer_init_key+0x155/0x330 [ 379.317280][T10110] ? devinet_init_net+0x56c/0x8d0 [ 379.317353][T10110] ? __pfx_fib_net_init+0x10/0x10 [ 379.317387][T10110] ops_init+0x1e2/0x5f0 [ 379.317426][T10110] setup_net+0x118/0x3a0 [ 379.317458][T10110] ? __pfx_setup_net+0x10/0x10 [ 379.317492][T10110] ? mutex_init_lockdep+0xf1/0x120 [ 379.317530][T10110] copy_net_ns+0x46f/0x7c0 [ 379.317570][T10110] create_new_namespaces+0x3ea/0xac0 [ 379.317612][T10110] unshare_nsproxy_namespaces+0xf2/0x220 [ 379.317649][T10110] ksys_unshare+0x438/0xab0 [ 379.317702][T10110] ? __pfx_ksys_unshare+0x10/0x10 [ 379.317742][T10110] ? xfd_validate_state+0x129/0x190 [ 379.317786][T10110] __x64_sys_unshare+0x31/0x40 [ 379.317830][T10110] do_syscall_64+0x10b/0xf80 [ 379.317875][T10110] ? clear_bhb_loop+0x40/0x90 [ 379.317913][T10110] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 379.317944][T10110] RIP: 0033:0x7f776d19c819 [ 379.317970][T10110] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 379.318000][T10110] RSP: 002b:00007f776e0c0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 379.318027][T10110] RAX: ffffffffffffffda RBX: 00007f776d415fa0 RCX: 00007f776d19c819 [ 379.318045][T10110] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 379.318061][T10110] RBP: 00007f776d232c91 R08: 0000000000000000 R09: 0000000000000000 [ 379.318078][T10110] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 379.318095][T10110] R13: 00007f776d416038 R14: 00007f776d415fa0 R15: 00007ffc78e65f68 [ 379.318132][T10110] [ 380.642893][T10127] Page cache invalidation failure on direct I/O. Possible data corruption due to collision with buffered I/O! [ 380.727972][T10127] File: /dev/nullb0 PID: 10127 Comm: syz.2.1208 [ 381.044258][T10134] futex_wake_op: syz.3.1203 tries to shift op by -2048; fix this program [ 381.804049][ T5833] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18 [ 381.814334][T10150] futex_wake_op: syz.0.1206 tries to shift op by -2048; fix this program [ 381.848182][T10150] futex_wake_op: syz.0.1206 tries to shift op by -2048; fix this program [ 383.078900][ T5834] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18 [ 383.104047][T10159] futex_wake_op: syz.1.1217 tries to shift op by -2048; fix this program [ 383.134888][T10159] futex_wake_op: syz.1.1217 tries to shift op by -2048; fix this program [ 386.846809][T10195] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1215'. [ 386.875952][T10195] netlink: 13 bytes leftover after parsing attributes in process `syz.2.1215'. [ 388.411292][T10206] kvm: vcpu 4: requested lapic timer restore with starting count register 0x390=4294967104 (137438947328 ns) > initial count (6624 ns). Using initial count to start timer. [ 388.633575][T10201] zswap: compressor not available [ 390.456164][T10218] FAULT_INJECTION: forcing a failure. [ 390.456164][T10218] name failslab, interval 1, probability 0, space 0, times 0 [ 390.546861][T10218] CPU: 1 UID: 0 PID: 10218 Comm: syz.3.1220 Tainted: G L syzkaller #0 PREEMPT(full) [ 390.546911][T10218] Tainted: [L]=SOFTLOCKUP [ 390.546921][T10218] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 390.546938][T10218] Call Trace: [ 390.546948][T10218] [ 390.546960][T10218] dump_stack_lvl+0x100/0x190 [ 390.547019][T10218] should_fail_ex.cold+0x5/0xa [ 390.547058][T10218] should_failslab+0xc2/0x120 [ 390.547097][T10218] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 390.547141][T10218] ? __proc_create+0x2cb/0x8c0 [ 390.547180][T10218] __proc_create+0x2cb/0x8c0 [ 390.547214][T10218] ? __pfx___proc_create+0x10/0x10 [ 390.547276][T10218] proc_mkdir+0x81/0x170 [ 390.547308][T10218] ? __pfx_proc_mkdir+0x10/0x10 [ 390.547340][T10218] ? cache_register_net+0x137/0x5e0 [ 390.547374][T10218] ? cache_register_net+0x137/0x5e0 [ 390.547414][T10218] cache_register_net+0x18f/0x5e0 [ 390.547450][T10218] gss_svc_init_net+0x14e/0x640 [ 390.547475][T10218] ? __pfx_canbcm_pernet_init+0x10/0x10 [ 390.547507][T10218] ? __pfx_rpcsec_gss_init_net+0x10/0x10 [ 390.547537][T10218] ops_init+0x1e2/0x5f0 [ 390.547573][T10218] setup_net+0x118/0x3a0 [ 390.547603][T10218] ? __pfx_setup_net+0x10/0x10 [ 390.547635][T10218] ? mutex_init_lockdep+0xf1/0x120 [ 390.547674][T10218] copy_net_ns+0x46f/0x7c0 [ 390.547712][T10218] create_new_namespaces+0x3ea/0xac0 [ 390.547758][T10218] unshare_nsproxy_namespaces+0xf2/0x220 [ 390.547798][T10218] ksys_unshare+0x438/0xab0 [ 390.547842][T10218] ? __pfx_ksys_unshare+0x10/0x10 [ 390.547878][T10218] ? xfd_validate_state+0x129/0x190 [ 390.547923][T10218] __x64_sys_unshare+0x31/0x40 [ 390.547960][T10218] do_syscall_64+0x10b/0xf80 [ 390.548002][T10218] ? clear_bhb_loop+0x40/0x90 [ 390.548038][T10218] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 390.548067][T10218] RIP: 0033:0x7f29f579c819 [ 390.548094][T10218] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 390.548122][T10218] RSP: 002b:00007f29f657f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 390.548153][T10218] RAX: ffffffffffffffda RBX: 00007f29f5a15fa0 RCX: 00007f29f579c819 [ 390.548174][T10218] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 390.548193][T10218] RBP: 00007f29f5832c91 R08: 0000000000000000 R09: 0000000000000000 [ 390.548212][T10218] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 390.548229][T10218] R13: 00007f29f5a16038 R14: 00007f29f5a15fa0 R15: 00007fffc580e488 [ 390.548281][T10218] [ 394.062258][T10258] zswap: compressor not available [ 399.532122][T10317] random: crng reseeded on system resumption [ 400.959260][T10334] zswap: compressor not available [ 402.288651][T10351] FAULT_INJECTION: forcing a failure. [ 402.288651][T10351] name failslab, interval 1, probability 0, space 0, times 0 [ 402.302825][T10351] CPU: 1 UID: 0 PID: 10351 Comm: syz.2.1258 Tainted: G L syzkaller #0 PREEMPT(full) [ 402.302899][T10351] Tainted: [L]=SOFTLOCKUP [ 402.302910][T10351] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 402.302939][T10351] Call Trace: [ 402.302950][T10351] [ 402.302961][T10351] dump_stack_lvl+0x100/0x190 [ 402.303017][T10351] should_fail_ex.cold+0x5/0xa [ 402.303139][T10351] should_failslab+0xc2/0x120 [ 402.303175][T10351] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 402.303220][T10351] ? sock_alloc_inode+0x26/0x290 [ 402.303261][T10351] ? __pfx_sock_alloc_inode+0x10/0x10 [ 402.303303][T10351] sock_alloc_inode+0x26/0x290 [ 402.303337][T10351] ? __pfx_sock_alloc_inode+0x10/0x10 [ 402.303371][T10351] alloc_inode+0x68/0x250 [ 402.303413][T10351] sock_alloc+0x44/0x280 [ 402.303443][T10351] ? security_socket_create+0x7f/0x250 [ 402.303481][T10351] sock_create_lite+0x82/0x120 [ 402.303518][T10351] __netlink_kernel_create+0xbd/0x750 [ 402.303560][T10351] ? __pfx___netlink_kernel_create+0x10/0x10 [ 402.303612][T10351] fib_net_init+0x26d/0x3f0 [ 402.303647][T10351] ? is_module_address+0x69/0xf0 [ 402.303676][T10351] ? __pfx_fib_net_init+0x10/0x10 [ 402.303711][T10351] ? timer_init_key+0x155/0x330 [ 402.303754][T10351] ? __pfx_nl_fib_input+0x10/0x10 [ 402.303794][T10351] ? devinet_init_net+0x56c/0x8d0 [ 402.303850][T10351] ? __pfx_fib_net_init+0x10/0x10 [ 402.303886][T10351] ops_init+0x1e2/0x5f0 [ 402.303924][T10351] setup_net+0x118/0x3a0 [ 402.303967][T10351] ? __pfx_setup_net+0x10/0x10 [ 402.304002][T10351] ? mutex_init_lockdep+0xf1/0x120 [ 402.304051][T10351] copy_net_ns+0x46f/0x7c0 [ 402.304091][T10351] create_new_namespaces+0x3ea/0xac0 [ 402.304141][T10351] unshare_nsproxy_namespaces+0xf2/0x220 [ 402.304183][T10351] ksys_unshare+0x438/0xab0 [ 402.304230][T10351] ? __pfx_ksys_unshare+0x10/0x10 [ 402.304272][T10351] ? xfd_validate_state+0x129/0x190 [ 402.304316][T10351] __x64_sys_unshare+0x31/0x40 [ 402.304359][T10351] do_syscall_64+0x10b/0xf80 [ 402.304405][T10351] ? clear_bhb_loop+0x40/0x90 [ 402.304442][T10351] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 402.304474][T10351] RIP: 0033:0x7fcf6bd9c819 [ 402.304501][T10351] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 402.304531][T10351] RSP: 002b:00007fcf6cc9c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 402.304561][T10351] RAX: ffffffffffffffda RBX: 00007fcf6c015fa0 RCX: 00007fcf6bd9c819 [ 402.304581][T10351] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 402.304600][T10351] RBP: 00007fcf6be32c91 R08: 0000000000000000 R09: 0000000000000000 [ 402.304619][T10351] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 402.304637][T10351] R13: 00007fcf6c016038 R14: 00007fcf6c015fa0 R15: 00007fffcffae708 [ 402.304680][T10351] [ 403.014428][T10350] zswap: compressor not available [ 403.413981][T10371] netlink: 202 bytes leftover after parsing attributes in process `syz.1.1263'. [ 405.488910][ T5834] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 405.513050][T10396] futex_wake_op: syz.2.1255 tries to shift op by -2048; fix this program [ 405.536033][T10396] futex_wake_op: syz.2.1255 tries to shift op by -2048; fix this program [ 405.588164][T10389] futex_wake_op: syz.3.1256 tries to shift op by -2048; fix this program [ 406.345380][T10409] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1260'. [ 406.417800][T10409] netlink: 25 bytes leftover after parsing attributes in process `syz.3.1260'. syzkaller syzkaller login: [ 410.004352][T10444] __vm_enough_memory: pid: 10444, comm: syz.1.1272, bytes: 4398046457856 not enough memory for the allocation [ 413.107199][T10460] zswap: compressor not available [ 413.952205][T10480] Page cache invalidation failure on direct I/O. Possible data corruption due to collision with buffered I/O! [ 413.988667][T10480] File: /dev/nullb0 PID: 10480 Comm: syz.2.1281 [ 416.229546][T10503] FAULT_INJECTION: forcing a failure. [ 416.229546][T10503] name failslab, interval 1, probability 0, space 0, times 0 [ 416.303912][T10503] CPU: 0 UID: 0 PID: 10503 Comm: syz.2.1287 Tainted: G L syzkaller #0 PREEMPT(full) [ 416.303967][T10503] Tainted: [L]=SOFTLOCKUP [ 416.303979][T10503] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 416.303996][T10503] Call Trace: [ 416.304006][T10503] [ 416.304018][T10503] dump_stack_lvl+0x100/0x190 [ 416.304076][T10503] should_fail_ex.cold+0x5/0xa [ 416.304113][T10503] should_failslab+0xc2/0x120 [ 416.304147][T10503] __kmalloc_node_track_caller_noprof+0xe3/0x850 [ 416.304197][T10503] ? fib_notifier_ops_register+0x32/0x270 [ 416.304232][T10503] ? __debug_object_init+0x2de/0x3d0 [ 416.304273][T10503] kmemdup_noprof+0x29/0x60 [ 416.304304][T10503] fib_notifier_ops_register+0x32/0x270 [ 416.304344][T10503] fib4_notifier_init+0x4f/0xd0 [ 416.304379][T10503] fib_net_init+0xbf/0x3f0 [ 416.304412][T10503] ? is_module_address+0x69/0xf0 [ 416.304442][T10503] ? __pfx_fib_net_init+0x10/0x10 [ 416.304477][T10503] ? timer_init_key+0x155/0x330 [ 416.304525][T10503] ? devinet_init_net+0x56c/0x8d0 [ 416.304571][T10503] ? __pfx_fib_net_init+0x10/0x10 [ 416.304603][T10503] ops_init+0x1e2/0x5f0 [ 416.304642][T10503] setup_net+0x118/0x3a0 [ 416.304676][T10503] ? __pfx_setup_net+0x10/0x10 [ 416.304711][T10503] ? mutex_init_lockdep+0xf1/0x120 [ 416.304749][T10503] copy_net_ns+0x46f/0x7c0 [ 416.304788][T10503] create_new_namespaces+0x3ea/0xac0 [ 416.304832][T10503] unshare_nsproxy_namespaces+0xf2/0x220 [ 416.304882][T10503] ksys_unshare+0x438/0xab0 [ 416.304935][T10503] ? __pfx_ksys_unshare+0x10/0x10 [ 416.304977][T10503] ? xfd_validate_state+0x129/0x190 [ 416.305024][T10503] __x64_sys_unshare+0x31/0x40 [ 416.305067][T10503] do_syscall_64+0x10b/0xf80 [ 416.305110][T10503] ? clear_bhb_loop+0x40/0x90 [ 416.305149][T10503] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 416.305182][T10503] RIP: 0033:0x7fcf6bd9c819 [ 416.305209][T10503] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 416.305239][T10503] RSP: 002b:00007fcf6cc7b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 416.305269][T10503] RAX: ffffffffffffffda RBX: 00007fcf6c016090 RCX: 00007fcf6bd9c819 [ 416.305289][T10503] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 416.305307][T10503] RBP: 00007fcf6be32c91 R08: 0000000000000000 R09: 0000000000000000 [ 416.305325][T10503] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 416.305343][T10503] R13: 00007fcf6c016128 R14: 00007fcf6c016090 R15: 00007fffcffae708 [ 416.305386][T10503] [ 420.960725][T10551] FAULT_INJECTION: forcing a failure. [ 420.960725][T10551] name failslab, interval 1, probability 0, space 0, times 0 [ 421.012019][T10551] CPU: 0 UID: 0 PID: 10551 Comm: syz.0.1301 Tainted: G L syzkaller #0 PREEMPT(full) [ 421.012073][T10551] Tainted: [L]=SOFTLOCKUP [ 421.012085][T10551] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 421.012103][T10551] Call Trace: [ 421.012113][T10551] [ 421.012125][T10551] dump_stack_lvl+0x100/0x190 [ 421.012186][T10551] should_fail_ex.cold+0x5/0xa [ 421.012226][T10551] should_failslab+0xc2/0x120 [ 421.012259][T10551] __kmalloc_cache_noprof+0x7a/0x6f0 [ 421.012299][T10551] ? __io_uring_add_tctx_node+0x1ac/0x4c0 [ 421.012333][T10551] ? alloc_file_pseudo+0x1a5/0x230 [ 421.012377][T10551] __io_uring_add_tctx_node+0x1ac/0x4c0 [ 421.012415][T10551] ? __pfx___io_uring_add_tctx_node+0x10/0x10 [ 421.012453][T10551] ? __anon_inode_getfile+0x17c/0x280 [ 421.012502][T10551] io_uring_setup.cold+0x1993/0x1c6e [ 421.012556][T10551] ? __pfx_io_uring_setup+0x10/0x10 [ 421.012606][T10551] ? __pfx_do_futex+0x10/0x10 [ 421.012634][T10551] ? __pfx_do_sys_openat2+0x10/0x10 [ 421.012687][T10551] ? xfd_validate_state+0x129/0x190 [ 421.012728][T10551] __x64_sys_io_uring_setup+0xc2/0x170 [ 421.012770][T10551] do_syscall_64+0x10b/0xf80 [ 421.012826][T10551] ? clear_bhb_loop+0x40/0x90 [ 421.012864][T10551] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 421.012897][T10551] RIP: 0033:0x7f776d19c819 [ 421.012923][T10551] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 421.012954][T10551] RSP: 002b:00007f776e0c0028 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 421.012984][T10551] RAX: ffffffffffffffda RBX: 00007f776d415fa0 RCX: 00007f776d19c819 [ 421.013003][T10551] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006 [ 421.013022][T10551] RBP: 00007f776d232c91 R08: 0000000000000000 R09: 0000000000000000 [ 421.013040][T10551] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 421.013057][T10551] R13: 00007f776d416038 R14: 00007f776d415fa0 R15: 00007ffc78e65f68 [ 421.013095][T10551] [ 421.224045][T10551] ------------[ cut here ]------------ [ 421.231073][T10551] !test_bit(IO_WQ_BIT_EXIT, &wq->state) [ 421.231096][T10551] WARNING: io_uring/io-wq.c:1396 at io_wq_put_and_exit+0x8a7/0x9d0, CPU#0: syz.0.1301/10551 [ 421.248098][T10551] Modules linked in: [ 421.252166][T10551] CPU: 0 UID: 0 PID: 10551 Comm: syz.0.1301 Tainted: G L syzkaller #0 PREEMPT(full) [ 421.263457][T10551] Tainted: [L]=SOFTLOCKUP [ 421.268872][T10551] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 421.279065][T10551] RIP: 0010:io_wq_put_and_exit+0x8a7/0x9d0 [ 421.285333][T10551] Code: ff e8 fd f4 17 fd 44 0f b6 74 24 78 31 ff 44 89 f6 e8 3d ef 17 fd 45 84 f6 0f 85 1a fd ff ff e9 67 fd ff ff e8 da f4 17 fd 90 <0f> 0b 90 e9 00 f8 ff ff e8 2c d5 83 fd e9 72 f8 ff ff 48 8b 3c 24 [ 421.305778][T10551] RSP: 0018:ffffc9000388fb50 EFLAGS: 00010283 [ 421.312446][T10551] RAX: 0000000000011fcd RBX: ffff888078d9c000 RCX: ffffc90003d69000 [ 421.320986][T10551] RDX: 0000000000080000 RSI: ffffffff84f0d086 RDI: ffff888031aabd80 [ 421.330540][T10551] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000 [ 421.339693][T10551] R10: 0000000000000000 R11: 0000000000000001 R12: 1ffff92000711f8c [ 421.348172][T10551] R13: 0000000000000000 R14: ffff888031aac6e8 R15: ffff888078a33418 [ 421.356441][T10551] FS: 00007f776e0c06c0(0000) GS:ffff8881242f6000(0000) knlGS:0000000000000000 [ 421.366242][T10551] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 421.373255][T10551] CR2: 00007f776d1e9f00 CR3: 00000000544fe000 CR4: 00000000003526f0 [ 421.381725][T10551] Call Trace: [ 421.385237][T10551] [ 421.388217][T10551] ? dump_stack_lvl+0x17c/0x190 [ 421.393239][T10551] ? __pfx_io_wq_put_and_exit+0x10/0x10 [ 421.398968][T10551] ? rcu_is_watching+0x12/0xc0 [ 421.404140][T10551] ? trace_kmalloc+0xe3/0x110 [ 421.408977][T10551] ? __kmalloc_cache_noprof+0x298/0x6f0 [ 421.415032][T10551] ? __io_uring_add_tctx_node+0x1ac/0x4c0 [ 421.420901][T10551] __io_uring_add_tctx_node+0x3e8/0x4c0 [ 421.426587][T10551] ? __pfx___io_uring_add_tctx_node+0x10/0x10 [ 421.435153][T10551] ? __anon_inode_getfile+0x17c/0x280 [ 421.440700][T10551] io_uring_setup.cold+0x1993/0x1c6e [ 421.447205][T10551] ? __pfx_io_uring_setup+0x10/0x10 [ 421.452773][T10551] ? __pfx_do_futex+0x10/0x10 [ 421.457740][T10551] ? __pfx_do_sys_openat2+0x10/0x10 [ 421.464231][T10551] ? xfd_validate_state+0x129/0x190 [ 421.469630][T10551] __x64_sys_io_uring_setup+0xc2/0x170 [ 421.475321][T10551] do_syscall_64+0x10b/0xf80 [ 421.480250][T10551] ? clear_bhb_loop+0x40/0x90 [ 421.485315][T10551] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 421.491375][T10551] RIP: 0033:0x7f776d19c819 [ 421.496504][T10551] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 421.516403][T10551] RSP: 002b:00007f776e0c0028 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 421.525607][T10551] RAX: ffffffffffffffda RBX: 00007f776d415fa0 RCX: 00007f776d19c819 [ 421.535070][T10551] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006 [ 421.543105][T10551] RBP: 00007f776d232c91 R08: 0000000000000000 R09: 0000000000000000 [ 421.552073][T10551] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 421.560247][T10551] R13: 00007f776d416038 R14: 00007f776d415fa0 R15: 00007ffc78e65f68 [ 421.568637][T10551] [ 421.571793][T10551] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 421.579121][T10551] CPU: 0 UID: 0 PID: 10551 Comm: syz.0.1301 Tainted: G L syzkaller #0 PREEMPT(full) [ 421.590271][T10551] Tainted: [L]=SOFTLOCKUP [ 421.594618][T10551] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 421.604688][T10551] Call Trace: [ 421.607979][T10551] [ 421.610924][T10551] dump_stack_lvl+0x100/0x190 [ 421.615908][T10551] vpanic+0x552/0x970 [ 421.620103][T10551] ? __pfx_vpanic+0x10/0x10 [ 421.624634][T10551] panic+0xd1/0xe0 [ 421.628383][T10551] ? __pfx_panic+0x10/0x10 [ 421.633005][T10551] check_panic_on_warn.cold+0x19/0x34 [ 421.638401][T10551] ? io_wq_put_and_exit+0x8a7/0x9d0 [ 421.643637][T10551] __warn.cold+0x191/0x328 [ 421.648081][T10551] __report_bug+0x296/0x3d0 [ 421.652964][T10551] ? io_wq_put_and_exit+0x8a7/0x9d0 [ 421.658245][T10551] ? __pfx___report_bug+0x10/0x10 [ 421.663385][T10551] ? _printk+0xcf/0x110 [ 421.667653][T10551] ? __pfx___schedule+0x10/0x10 [ 421.672623][T10551] ? is_bpf_text_address+0x8a/0x1a0 [ 421.677854][T10551] ? io_wq_put_and_exit+0x8a7/0x9d0 [ 421.683957][T10551] report_bug+0xb2/0x220 [ 421.688578][T10551] ? io_wq_put_and_exit+0x8a7/0x9d0 [ 421.694615][T10551] handle_bug+0x16a/0x2a0 [ 421.699251][T10551] exc_invalid_op+0x17/0x50 [ 421.703947][T10551] asm_exc_invalid_op+0x1a/0x20 [ 421.709083][T10551] RIP: 0010:io_wq_put_and_exit+0x8a7/0x9d0 [ 421.714936][T10551] Code: ff e8 fd f4 17 fd 44 0f b6 74 24 78 31 ff 44 89 f6 e8 3d ef 17 fd 45 84 f6 0f 85 1a fd ff ff e9 67 fd ff ff e8 da f4 17 fd 90 <0f> 0b 90 e9 00 f8 ff ff e8 2c d5 83 fd e9 72 f8 ff ff 48 8b 3c 24 [ 421.735625][T10551] RSP: 0018:ffffc9000388fb50 EFLAGS: 00010283 [ 421.742150][T10551] RAX: 0000000000011fcd RBX: ffff888078d9c000 RCX: ffffc90003d69000 [ 421.750315][T10551] RDX: 0000000000080000 RSI: ffffffff84f0d086 RDI: ffff888031aabd80 [ 421.758404][T10551] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000 [ 421.766628][T10551] R10: 0000000000000000 R11: 0000000000000001 R12: 1ffff92000711f8c [ 421.774797][T10551] R13: 0000000000000000 R14: ffff888031aac6e8 R15: ffff888078a33418 [ 421.782798][T10551] ? io_wq_put_and_exit+0x8a6/0x9d0 [ 421.788034][T10551] ? dump_stack_lvl+0x17c/0x190 [ 421.792920][T10551] ? __pfx_io_wq_put_and_exit+0x10/0x10 [ 421.798580][T10551] ? rcu_is_watching+0x12/0xc0 [ 421.803552][T10551] ? trace_kmalloc+0xe3/0x110 [ 421.808340][T10551] ? __kmalloc_cache_noprof+0x298/0x6f0 [ 421.814177][T10551] ? __io_uring_add_tctx_node+0x1ac/0x4c0 [ 421.820099][T10551] __io_uring_add_tctx_node+0x3e8/0x4c0 [ 421.825853][T10551] ? __pfx___io_uring_add_tctx_node+0x10/0x10 [ 421.832039][T10551] ? __anon_inode_getfile+0x17c/0x280 [ 421.837442][T10551] io_uring_setup.cold+0x1993/0x1c6e [ 421.842848][T10551] ? __pfx_io_uring_setup+0x10/0x10 [ 421.848079][T10551] ? __pfx_do_futex+0x10/0x10 [ 421.853034][T10551] ? __pfx_do_sys_openat2+0x10/0x10 [ 421.858269][T10551] ? xfd_validate_state+0x129/0x190 [ 421.863589][T10551] __x64_sys_io_uring_setup+0xc2/0x170 [ 421.869361][T10551] do_syscall_64+0x10b/0xf80 [ 421.874244][T10551] ? clear_bhb_loop+0x40/0x90 [ 421.878981][T10551] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 421.885169][T10551] RIP: 0033:0x7f776d19c819 [ 421.889730][T10551] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 421.909705][T10551] RSP: 002b:00007f776e0c0028 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 421.918144][T10551] RAX: ffffffffffffffda RBX: 00007f776d415fa0 RCX: 00007f776d19c819 [ 421.926220][T10551] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006 [ 421.934377][T10551] RBP: 00007f776d232c91 R08: 0000000000000000 R09: 0000000000000000 [ 421.942764][T10551] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 421.951203][T10551] R13: 00007f776d416038 R14: 00007f776d415fa0 R15: 00007ffc78e65f68 [ 421.959814][T10551] [ 421.963327][T10551] Kernel Offset: disabled [ 421.967741][T10551] Rebooting in 86400 seconds..