last executing test programs: 3.221605762s ago: executing program 2 (id=4897): sendmsg$auto_NL80211_CMD_GET_MPATH(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x41811}, 0x20000000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto_KVM_GET_MSRS(r0, 0x4068aea3, &(0x7f0000000080)={0xc0}) 2.841474817s ago: executing program 2 (id=4902): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x106) bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) write$auto(0x3, 0x0, 0x1) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0xe) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x11f, 0x0, 0xfffffffffffffffd) connect$auto(0x3, 0x0, 0x55) 2.630825581s ago: executing program 0 (id=4904): mmap$auto(0x0, 0x2020009, 0x8000000003, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x155) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vbi19\x00', 0x8654092f478cae21, 0x0) r1 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0) ioctl$auto_SG_GET_PACK_ID(r1, 0x227c, 0x0) ioctl$auto(0x3, 0xc0205649, r0) 2.455520758s ago: executing program 0 (id=4906): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22040, 0x75) socket(0x840000000002, 0x3, 0xff) clock_gettime$auto(0x1, 0x0) connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x16}}, 0x55) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 2.319506644s ago: executing program 3 (id=4907): mmap$auto(0x0, 0x2020009, 0x8000000000000003, 0x40000000000eb1, 0xffffffffffffffff, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) eventfd$auto(0x4) r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0) r1 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$auto_VHOST_SET_OWNER(r1, 0xaf01, 0x5) ioctl$auto(r1, 0x4008af20, r0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) 2.293421924s ago: executing program 0 (id=4909): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x42, 0x0) openat$auto_proc_fault_inject_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/make-it-fail\x00', 0x40002, 0x0) setitimer$auto(0x2, &(0x7f0000000080)={{0x2, 0x5}, {0x0, 0x8}}, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x2440, 0x0) read$auto(r0, 0x0, 0x20) writev$auto(0x3, &(0x7f0000000080)={0x0, 0x1}, 0x3) 2.068616594s ago: executing program 0 (id=4910): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x200009, 0x2, 0x48eb1, 0xffffffffffffffff, 0x300000000000) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video43\x00', 0x129900, 0x0) ppoll$auto(0x0, 0x8, 0x0, 0x0, 0x8) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video43\x00', 0x129900, 0x0) select$auto(0x5, &(0x7f0000000080)={[0x400020000008, 0xfffffffffffffffc, 0x7, 0x6, 0xc, 0x3, 0x3, 0x1ffe000, 0x7, 0x2, 0x9, 0xf, 0xa657, 0x203, 0xd3, 0x1]}, 0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) 2.068497414s ago: executing program 3 (id=4911): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0x5, 0x0) io_uring_setup$auto(0x5, 0x0) r1 = socket(0xa, 0x2, 0x88) close_range$auto(0x0, 0xfffffffffffff000, 0x2) bpf$auto(0x0, &(0x7f0000000000)=@link_update={r1, @new_prog_fd=0x4, 0x4, @old_prog_fd=r0}, 0xa3) bpf$auto(0x1, &(0x7f0000000040)=@query={@target_ifindex, 0x4, 0x7, 0x9, 0x7f, @prog_cnt=0x4, 0x0, 0x80000000, 0xc, 0xb, 0x5}, 0x7) 1.94621181s ago: executing program 3 (id=4912): openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/audio\x00', 0x20342, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto_KVM_GET_MSRS(r0, 0x4068aea3, &(0x7f0000000080)={0xd5}) 1.705723676s ago: executing program 3 (id=4913): openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x242e40, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ttyS0\x00', 0x1, 0x0) ioctl$auto(r0, 0x540a, 0x0) unshare$auto(0x40000080) read$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffffff, 0x0, 0x0) r1 = openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0) read$auto_rng_chrdev_ops_core(r1, &(0x7f0000000040)=""/4096, 0xfffffe82) 1.704736331s ago: executing program 2 (id=4914): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0xffffffffffffffff, 0x8000) socket(0x2, 0x2, 0x0) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50) socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x1, 0x23, 0x0, 0x9) read$auto(0x3, 0x0, 0x80) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) 1.56103365s ago: executing program 1 (id=4915): mmap$auto(0x0, 0x400008, 0xdf, 0x38, 0x6, 0x8000) fanotify_init$auto(0x200, 0x1) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket(0x10, 0x2, 0x14) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000002fc0)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000000a14af"], 0x14}, 0x1, 0x0, 0x0, 0x80c3}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0xffffffffffffff14, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYRES8=r0], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x200440c0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4c084}, 0x51) sendmmsg$auto(r1, &(0x7f0000000080)={{0x0, 0x8001c01, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x1}, 0x7}, 0x3d55, 0x0) 1.304962083s ago: executing program 1 (id=4916): mmap$auto(0x0, 0x2020009, 0xa, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x103e81, 0x0) io_submit$auto(0x9, 0xfffffffffffffffa, 0x0) ioctl$auto_TCSBRKP2(r0, 0x5425, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_TCFLSH2(r1, 0x5408, 0x0) ioctl$auto_TIOCVHANGUP2(r0, 0x5437, 0x0) io_uring_setup$auto(0x1, 0x0) 1.099756551s ago: executing program 0 (id=4917): r0 = socket(0x10, 0x2, 0x4) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) r1 = socket(0x10, 0x2, 0xc) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)={0x1c, 0x0, 0xd0d58b333228212f, 0x70bd2c, 0x25dfdbfc, {}, [@NL80211_ATTR_IFINDEX={0x8}]}, 0x1c}}, 0x4000000) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000", @ANYRES8=r1, @ANYBLOB="01"], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x80) write$auto(r0, &(0x7f0000000000)='-\x00', 0xfdef) 827.915863ms ago: executing program 1 (id=4918): openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) landlock_create_ruleset$auto(&(0x7f0000000000)={0xd1d, 0x3, 0x7}, 0x0, 0x10000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x1000) openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/config/target/core/alua/lu_gps/default_lu_gp/members\x00', 0x3a141, 0x0) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3) 827.756761ms ago: executing program 2 (id=4919): wait4$auto(0x0, 0x0, 0xf, &(0x7f0000000140)={{0x2599}, {0xffffffffffffffff, 0x1000000009}, 0x2, 0x800080000001, 0x1, 0x1000, 0x5, 0x7, 0x5, 0x5, 0xb11c, 0x8, 0xfffffffffffffffd, 0x7, 0xffff, 0x801c0000000}) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000826bd7000fedbdf250300000008000400b70a0000060007000080000008000200", @ANYRES32, @ANYBLOB="0a0005000180c200000e00000a07000000000000000e00000a0001"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket(0x10, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000003b40)={'veth0_to_hsr\x00', 0x0}) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYRES16=r2], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40001) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000) sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) 751.28216ms ago: executing program 0 (id=4920): mmap$auto(0x0, 0x400008, 0x36, 0x1009b72, 0x2, 0x8000) socketpair$auto(0x409, 0x5, 0xffffffff, 0x0) ioctl$auto(0x3, 0xae41, 0xffffffffffffffff) setresuid$auto(0xffffffffffffffff, 0x0, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x123002, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x2003f2, 0x15) madvise$auto(0x0, 0x200007, 0x19) 598.254634ms ago: executing program 3 (id=4922): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) setreuid$auto(0x0, 0x0) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000100)={{&(0x7f0000000040), 0x1, &(0x7f00000000c0)={&(0x7f0000000080), 0x6}, 0x400, 0x0, 0x1, 0x1}, 0x1000}, 0x5, 0xb) r0 = getpid() process_vm_readv$auto(r0, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x0) bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0x9, 0x2, 0x10, 0x8, 0x4, 0xffffffffffffffff, 0xa, "2af0510000000000562c00", 0x0, 0xffffffffffffffff, 0x5, 0x7, 0x7, 0x6}, 0xf) bpf$auto(0x1a, &(0x7f0000000380)=@link_create={@map_fd, @target_ifindex=r1, 0x3, 0x81, @uprobe_multi={0x81, 0x1ff, 0x3d7e, 0x0, 0x1, 0x4}}, 0x92) 561.365636ms ago: executing program 2 (id=4923): mmap$auto(0x0, 0x2000a, 0x7e, 0xeb2, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) epoll_create$auto(0x3e) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000080), 0x400, 0x0) r0 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(r0, 0xffffffffffffffff, 0x0) r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/video0\x00', 0xa200, 0x0) ioctl$auto(r1, 0xc058560f, r1) 393.33162ms ago: executing program 1 (id=4924): mmap$auto(0x0, 0x2020005, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) sysfs$auto(0x2, 0x7, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) r0 = openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000008040), 0x2, 0x0) r1 = socket(0x22, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x80044943, 0x0) ioctl$auto_I2C_SMBUS(r0, 0x720, 0x0) 221.631568ms ago: executing program 1 (id=4925): mmap$auto(0x0, 0x5, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) eventfd$auto(0x4) r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0) r1 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$auto_VHOST_SET_OWNER(r1, 0xaf01, 0x5) ioctl$auto(r1, 0x4008af21, r0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) 129.619599ms ago: executing program 3 (id=4926): ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'vcan0\x00'}) r0 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20443, 0x0) fadvise64$auto_POSIX_FADV_DONTNEED(r0, 0x9, 0x7, 0x4) setresgid$auto(0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff) syz_genetlink_get_family_id$auto_tipcv2(0x0, 0xffffffffffffffff) ioctl$auto_TUNSETCARRIER(0xffffffffffffffff, 0x400454e2, &(0x7f0000000080)=0x400) ioctl$auto_FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000080)) ioctl$auto(0x3, 0x80087601, 0x38) 128.342378ms ago: executing program 2 (id=4927): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x1, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80000, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x20b42, 0x0) socket(0x1d, 0x3, 0x1) bind$auto(0x3, 0x0, 0x6a) bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, 0x0, 0xfd}, 0x6a) 0s ago: executing program 1 (id=4928): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/ptp/ptp0/max_adjustment\x00', 0x168040, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup.cpu/memory.limit_in_bytes\x00', 0x182b02, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x2020009, 0x203, 0xeb1, 0xfffffffffffffffa, 0x8000) unshare$auto(0x40000080) dup2$auto(r0, r1) kernel console output (not intermixed with test programs): /0x4f0 [ 263.791848][T10277] alloc_pages_mpol+0x1fb/0x550 [ 263.791890][T10277] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 263.791943][T10277] alloc_pages_noprof+0x131/0x390 [ 263.791986][T10277] __pmd_alloc+0x3b/0x9c0 [ 263.792017][T10277] walk_pgd_range+0x896/0x1eb0 [ 263.792066][T10277] ? mt_find+0x687/0x8e0 [ 263.792108][T10277] ? __pfx_guard_install_set_pte+0x10/0x10 [ 263.792157][T10277] ? __pfx_guard_install_set_pte+0x10/0x10 [ 263.792201][T10277] ? __pfx_guard_install_set_pte+0x10/0x10 [ 263.792244][T10277] ? __pfx_walk_pgd_range+0x10/0x10 [ 263.792291][T10277] __walk_page_range+0x163/0x820 [ 263.792330][T10277] ? find_vma+0xbf/0x140 [ 263.792368][T10277] ? __pfx_find_vma+0x10/0x10 [ 263.792407][T10277] ? walk_page_test+0x78/0x180 [ 263.792445][T10277] walk_page_range_mm_unsafe+0x563/0xa10 [ 263.792486][T10277] ? __pfx_walk_page_range_mm_unsafe+0x10/0x10 [ 263.792532][T10277] ? __anon_vma_prepare+0x2e2/0x5e0 [ 263.792570][T10277] madvise_guard_install+0x2f9/0x7c0 [ 263.792623][T10277] ? __pfx_madvise_guard_install+0x10/0x10 [ 263.792671][T10277] ? __pfx_guard_install_pud_entry+0x10/0x10 [ 263.792712][T10277] ? __pfx_guard_install_pmd_entry+0x10/0x10 [ 263.792754][T10277] ? __pfx_guard_install_pte_entry+0x10/0x10 [ 263.792801][T10277] ? __pfx_guard_install_set_pte+0x10/0x10 [ 263.792848][T10277] ? mtree_range_walk+0x6ce/0xcd0 [ 263.792883][T10277] madvise_vma_behavior+0x109f/0x2ec0 [ 263.792929][T10277] ? mas_prev_setup.constprop.0+0xb6/0x9c0 [ 263.792967][T10277] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 263.793008][T10277] ? mas_prev+0x9b/0xf0 [ 263.793044][T10277] ? __pfx_mas_prev+0x10/0x10 [ 263.793102][T10277] ? find_vma_prev+0xd8/0x150 [ 263.793143][T10277] ? lock_vma_under_rcu+0x1f9/0x590 [ 263.793177][T10277] ? __pfx_find_vma_prev+0x10/0x10 [ 263.793229][T10277] ? find_held_lock+0x2b/0x80 [ 263.793270][T10277] ? madvise_do_behavior+0x1ea/0x510 [ 263.793297][T10277] ? madvise_do_behavior+0x1ea/0x510 [ 263.793330][T10277] madvise_walk_vmas+0x2fe/0xa90 [ 263.793365][T10277] ? __pfx_madvise_walk_vmas+0x10/0x10 [ 263.793395][T10277] ? find_held_lock+0x2b/0x80 [ 263.793443][T10277] madvise_do_behavior+0x1ea/0x510 [ 263.793468][T10277] ? futex_private_hash_put+0x107/0x1c0 [ 263.793502][T10277] ? __pfx_madvise_do_behavior+0x10/0x10 [ 263.793528][T10277] ? futex_wake+0x1ad/0x530 [ 263.793573][T10277] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 263.793617][T10277] do_madvise+0x195/0x240 [ 263.793644][T10277] ? __pfx_do_madvise+0x10/0x10 [ 263.793671][T10277] ? do_futex+0x192/0x350 [ 263.793710][T10277] ? find_held_lock+0x2b/0x80 [ 263.793778][T10277] __x64_sys_madvise+0xa9/0x110 [ 263.793805][T10277] ? lockdep_hardirqs_on+0x78/0x100 [ 263.793841][T10277] do_syscall_64+0x106/0xf80 [ 263.793876][T10277] ? clear_bhb_loop+0x40/0x90 [ 263.793911][T10277] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 263.793941][T10277] RIP: 0033:0x7fce5a99bf79 [ 263.793966][T10277] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 263.793995][T10277] RSP: 002b:00007fce5b88b028 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 263.794023][T10277] RAX: ffffffffffffffda RBX: 00007fce5ac15fa0 RCX: 00007fce5a99bf79 [ 263.794043][T10277] RDX: 0000000000000066 RSI: 0000000002021000 RDI: 0000000000000000 [ 263.794068][T10277] RBP: 00007fce5aa327e0 R08: 0000000000000000 R09: 0000000000000000 [ 263.794087][T10277] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 263.794104][T10277] R13: 00007fce5ac16038 R14: 00007fce5ac15fa0 R15: 00007ffe61ccf328 [ 263.794144][T10277] [ 265.113140][T10301] zswap: compressor 000 not available [ 265.347900][T10313] netlink: 306 bytes leftover after parsing attributes in process `syz.3.1580'. [ 266.027774][ T30] audit: type=1800 audit(1771146320.038:6): pid=10339 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1591" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0 [ 266.162452][T10352] netlink: 'syz.3.1596': attribute type 4 has an invalid length. [ 266.170420][T10352] netlink: 314 bytes leftover after parsing attributes in process `syz.3.1596'. [ 266.218131][T10354] nbd: must specify at least one socket [ 267.001638][T10388] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1610'. [ 267.487701][T10405] FAULT_INJECTION: forcing a failure. [ 267.487701][T10405] name failslab, interval 1, probability 0, space 0, times 0 [ 267.511113][T10405] CPU: 0 UID: 0 PID: 10405 Comm: syz.2.1618 Tainted: G U L syzkaller #0 PREEMPT(full) [ 267.511163][T10405] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 267.511174][T10405] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 267.511191][T10405] Call Trace: [ 267.511200][T10405] [ 267.511211][T10405] dump_stack_lvl+0x100/0x190 [ 267.511256][T10405] should_fail_ex.cold+0x5/0xa [ 267.511290][T10405] ? ima_alloc_init_template+0x19d/0x6d0 [ 267.511320][T10405] should_failslab+0xc2/0x120 [ 267.511361][T10405] __kmalloc_noprof+0xe0/0x850 [ 267.511396][T10405] ? take_dentry_name_snapshot+0x30b/0x7c0 [ 267.511434][T10405] ima_alloc_init_template+0x19d/0x6d0 [ 267.511466][T10405] ? take_dentry_name_snapshot+0x310/0x7c0 [ 267.511504][T10405] ima_store_measurement+0x1e3/0x5b0 [ 267.511538][T10405] ? __pfx_ima_store_measurement+0x10/0x10 [ 267.511583][T10405] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 267.511632][T10405] process_measurement+0x19cc/0x2350 [ 267.511689][T10405] ? __pfx_process_measurement+0x10/0x10 [ 267.511733][T10405] ? kasan_save_stack+0x3f/0x50 [ 267.511769][T10405] ? kasan_save_track+0x14/0x30 [ 267.511814][T10405] ? find_held_lock+0x2b/0x80 [ 267.511856][T10405] ? aa_file_perm+0x268/0x1530 [ 267.511943][T10405] ima_file_mmap+0x1c4/0x1f0 [ 267.511988][T10405] ? __pfx_ima_file_mmap+0x10/0x10 [ 267.512043][T10405] security_mmap_file+0x278/0x9b0 [ 267.512081][T10405] vm_mmap_pgoff+0xec/0x470 [ 267.512133][T10405] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 267.512173][T10405] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 267.512205][T10405] ? hugetlbfs_get_inode+0x36e/0x750 [ 267.512255][T10405] ksys_mmap_pgoff+0x1c4/0x5b0 [ 267.512315][T10405] __x64_sys_mmap+0x125/0x190 [ 267.512359][T10405] do_syscall_64+0x106/0xf80 [ 267.512396][T10405] ? clear_bhb_loop+0x40/0x90 [ 267.512431][T10405] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 267.512461][T10405] RIP: 0033:0x7f410e59bf79 [ 267.512484][T10405] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 267.512517][T10405] RSP: 002b:00007f410f3d9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 267.512544][T10405] RAX: ffffffffffffffda RBX: 00007f410e815fa0 RCX: 00007f410e59bf79 [ 267.512563][T10405] RDX: 00004000000000df RSI: 0000000000000004 RDI: 0000000000000000 [ 267.512580][T10405] RBP: 00007f410e6327e0 R08: 0000000000000401 R09: 0000300000000000 [ 267.512597][T10405] R10: 0000000000040eb1 R11: 0000000000000246 R12: 0000000000000000 [ 267.512614][T10405] R13: 00007f410e816038 R14: 00007f410e815fa0 R15: 00007ffcb9585148 [ 267.512652][T10405] [ 267.517813][ T30] audit: type=1804 audit(1771146321.528:7): pid=10405 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=add_template_measure cause=ENOMEM comm="syz.2.1618" name="anon_hugepage" dev="hugetlbfs" ino=23853 res=0 errno=0 [ 268.567443][T10424] mmap: syz.0.1624 (10424) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 268.640549][T10423] raw_sendmsg: syz.3.1625 forgot to set AF_INET. Fix it! [ 268.834852][T10430] zswap: compressor 000 not available [ 268.972052][T10440] FAULT_INJECTION: forcing a failure. [ 268.972052][T10440] name failslab, interval 1, probability 0, space 0, times 0 [ 268.986758][T10440] CPU: 0 UID: 0 PID: 10440 Comm: syz.1.1629 Tainted: G U L syzkaller #0 PREEMPT(full) [ 268.986810][T10440] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 268.986821][T10440] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 268.986839][T10440] Call Trace: [ 268.986848][T10440] [ 268.986859][T10440] dump_stack_lvl+0x100/0x190 [ 268.986906][T10440] should_fail_ex.cold+0x5/0xa [ 268.986940][T10440] ? ima_alloc_init_template+0x19d/0x6d0 [ 268.986970][T10440] should_failslab+0xc2/0x120 [ 268.987011][T10440] __kmalloc_noprof+0xe0/0x850 [ 268.987046][T10440] ? take_dentry_name_snapshot+0x30b/0x7c0 [ 268.987089][T10440] ima_alloc_init_template+0x19d/0x6d0 [ 268.987122][T10440] ? take_dentry_name_snapshot+0x310/0x7c0 [ 268.987159][T10440] ima_store_measurement+0x1e3/0x5b0 [ 268.987192][T10440] ? __pfx_ima_store_measurement+0x10/0x10 [ 268.987238][T10440] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 268.987286][T10440] process_measurement+0x19cc/0x2350 [ 268.987344][T10440] ? __pfx_process_measurement+0x10/0x10 [ 268.987389][T10440] ? kasan_save_stack+0x3f/0x50 [ 268.987424][T10440] ? kasan_save_track+0x14/0x30 [ 268.987478][T10440] ? find_held_lock+0x2b/0x80 [ 268.987522][T10440] ? aa_file_perm+0x268/0x1530 [ 268.987603][T10440] ima_file_mmap+0x1c4/0x1f0 [ 268.987648][T10440] ? __pfx_ima_file_mmap+0x10/0x10 [ 268.987701][T10440] security_mmap_file+0x278/0x9b0 [ 268.987740][T10440] vm_mmap_pgoff+0xec/0x470 [ 268.987781][T10440] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 268.987824][T10440] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 268.987856][T10440] ? hugetlbfs_get_inode+0x36e/0x750 [ 268.987903][T10440] ksys_mmap_pgoff+0x1c4/0x5b0 [ 268.987951][T10440] __x64_sys_mmap+0x125/0x190 [ 268.987995][T10440] do_syscall_64+0x106/0xf80 [ 268.988030][T10440] ? clear_bhb_loop+0x40/0x90 [ 268.988065][T10440] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 268.988091][T10440] RIP: 0033:0x7fd04879bf79 [ 268.988114][T10440] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 268.988143][T10440] RSP: 002b:00007fd049715028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 268.988169][T10440] RAX: ffffffffffffffda RBX: 00007fd048a15fa0 RCX: 00007fd04879bf79 [ 268.988187][T10440] RDX: 00004000000000df RSI: 0000000000000004 RDI: 0000000000000000 [ 268.988205][T10440] RBP: 00007fd0488327e0 R08: 0000000000000401 R09: 0000300000000000 [ 268.988224][T10440] R10: 0000000000040eb1 R11: 0000000000000246 R12: 0000000000000000 [ 268.988242][T10440] R13: 00007fd048a16038 R14: 00007fd048a15fa0 R15: 00007ffd231a7038 [ 268.988282][T10440] [ 269.378018][ T30] audit: type=1804 audit(1771146323.298:8): pid=10440 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=add_template_measure cause=ENOMEM comm="syz.1.1629" name="anon_hugepage" dev="hugetlbfs" ino=23956 res=0 errno=0 [ 269.420989][T10446] netlink: 'syz.1.1631': attribute type 32 has an invalid length. [ 269.783654][T10456] FAULT_INJECTION: forcing a failure. [ 269.783654][T10456] name failslab, interval 1, probability 0, space 0, times 0 [ 269.797989][T10456] CPU: 1 UID: 0 PID: 10456 Comm: syz.1.1637 Tainted: G U L syzkaller #0 PREEMPT(full) [ 269.798041][T10456] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 269.798052][T10456] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 269.798068][T10456] Call Trace: [ 269.798077][T10456] [ 269.798088][T10456] dump_stack_lvl+0x100/0x190 [ 269.798133][T10456] should_fail_ex.cold+0x5/0xa [ 269.798167][T10456] should_failslab+0xc2/0x120 [ 269.798209][T10456] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 269.798245][T10456] ? security_file_alloc+0x34/0x2c0 [ 269.798279][T10456] ? trace_kmem_cache_alloc+0xf3/0x120 [ 269.798327][T10456] security_file_alloc+0x34/0x2c0 [ 269.798360][T10456] init_file+0x95/0x480 [ 269.798387][T10456] alloc_empty_file+0x73/0x1c0 [ 269.798417][T10456] alloc_file_pseudo+0x13a/0x230 [ 269.798449][T10456] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 269.798477][T10456] ? alloc_fd+0x476/0x790 [ 269.798518][T10456] ? do_raw_spin_unlock+0x145/0x1e0 [ 269.798561][T10456] __anon_inode_getfile+0xe8/0x280 [ 269.798618][T10456] anon_inode_getfile_fmode+0x37/0xa0 [ 269.798666][T10456] __do_sys_fanotify_init+0xa79/0xe50 [ 269.798708][T10456] do_syscall_64+0x106/0xf80 [ 269.798744][T10456] ? clear_bhb_loop+0x40/0x90 [ 269.798778][T10456] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 269.798807][T10456] RIP: 0033:0x7fd04879bf79 [ 269.798830][T10456] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 269.798858][T10456] RSP: 002b:00007fd049715028 EFLAGS: 00000246 ORIG_RAX: 000000000000012c [ 269.798885][T10456] RAX: ffffffffffffffda RBX: 00007fd048a15fa0 RCX: 00007fd04879bf79 [ 269.798904][T10456] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000008 [ 269.798921][T10456] RBP: 00007fd0488327e0 R08: 0000000000000000 R09: 0000000000000000 [ 269.798938][T10456] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 269.798955][T10456] R13: 00007fd048a16038 R14: 00007fd048a15fa0 R15: 00007ffd231a7038 [ 269.798991][T10456] [ 271.339569][T10485] FAULT_INJECTION: forcing a failure. [ 271.339569][T10485] name failslab, interval 1, probability 0, space 0, times 0 [ 271.381024][T10485] CPU: 1 UID: 0 PID: 10485 Comm: syz.2.1647 Tainted: G U L syzkaller #0 PREEMPT(full) [ 271.381077][T10485] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 271.381088][T10485] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 271.381106][T10485] Call Trace: [ 271.381115][T10485] [ 271.381126][T10485] dump_stack_lvl+0x100/0x190 [ 271.381174][T10485] should_fail_ex.cold+0x5/0xa [ 271.381208][T10485] should_failslab+0xc2/0x120 [ 271.381251][T10485] __kmalloc_cache_noprof+0x7a/0x6f0 [ 271.381281][T10485] ? kobject_uevent_env+0x263/0x18b0 [ 271.381324][T10485] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 271.381381][T10485] kobject_uevent_env+0x263/0x18b0 [ 271.381430][T10485] ? bus_to_subsys+0x114/0x150 [ 271.381472][T10485] device_add+0x116e/0x1950 [ 271.381510][T10485] ? __pfx_device_add+0x10/0x10 [ 271.381549][T10485] ? lockdep_init_map_type+0x5c/0x250 [ 271.381585][T10485] ? __init_waitqueue_head+0xca/0x150 [ 271.381628][T10485] rfkill_register+0x1ad/0xb30 [ 271.381662][T10485] nfc_register_device+0x11f/0x3e0 [ 271.381705][T10485] nci_register_device+0x7f1/0xb80 [ 271.381741][T10485] ? __pfx_nci_register_device+0x10/0x10 [ 271.381774][T10485] ? lockdep_init_map_type+0x5c/0x250 [ 271.381825][T10485] virtual_ncidev_open+0x141/0x220 [ 271.381864][T10485] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 271.381902][T10485] misc_open+0x26d/0x450 [ 271.381935][T10485] ? __pfx_misc_open+0x10/0x10 [ 271.381967][T10485] chrdev_open+0x234/0x6a0 [ 271.382006][T10485] ? __pfx_apparmor_file_open+0x10/0x10 [ 271.382040][T10485] ? __pfx_chrdev_open+0x10/0x10 [ 271.382082][T10485] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 271.382153][T10485] do_dentry_open+0x6d8/0x1660 [ 271.382189][T10485] ? __pfx_chrdev_open+0x10/0x10 [ 271.382236][T10485] vfs_open+0x82/0x3f0 [ 271.382269][T10485] path_openat+0x208c/0x31a0 [ 271.382321][T10485] ? __pfx_path_openat+0x10/0x10 [ 271.382371][T10485] do_file_open+0x20e/0x430 [ 271.382411][T10485] ? __pfx_do_file_open+0x10/0x10 [ 271.382478][T10485] ? alloc_fd+0x476/0x790 [ 271.382520][T10485] ? do_getname+0x191/0x390 [ 271.382577][T10485] do_sys_openat2+0x10d/0x1e0 [ 271.382609][T10485] ? __pfx_do_sys_openat2+0x10/0x10 [ 271.382643][T10485] ? __fget_files+0x21f/0x3d0 [ 271.382688][T10485] __x64_sys_openat+0x12d/0x210 [ 271.382721][T10485] ? __pfx___x64_sys_openat+0x10/0x10 [ 271.382767][T10485] do_syscall_64+0x106/0xf80 [ 271.382802][T10485] ? clear_bhb_loop+0x40/0x90 [ 271.382838][T10485] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 271.382867][T10485] RIP: 0033:0x7f410e59bf79 [ 271.382890][T10485] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 271.382917][T10485] RSP: 002b:00007f410f3d9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 271.382945][T10485] RAX: ffffffffffffffda RBX: 00007f410e815fa0 RCX: 00007f410e59bf79 [ 271.382964][T10485] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 271.382983][T10485] RBP: 00007f410e6327e0 R08: 0000000000000000 R09: 0000000000000000 [ 271.382996][T10485] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 271.383010][T10485] R13: 00007f410e816038 R14: 00007f410e815fa0 R15: 00007ffcb9585148 [ 271.383053][T10485] [ 272.546412][T10512] netlink: 326 bytes leftover after parsing attributes in process `syz.1.1656'. [ 272.680120][ T30] audit: type=1800 audit(1771146326.698:9): pid=10514 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1657" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0 [ 272.796430][T10521] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1667'. [ 273.368024][T10534] futex_wake_op: syz.3.1664 tries to shift op by -2048; fix this program [ 273.448445][T10537] size and base must be multiples of 4 kiB [ 273.467589][T10537] CPU: 0 UID: 0 PID: 10537 Comm: syz.3.1664 Tainted: G U L syzkaller #0 PREEMPT(full) [ 273.467639][T10537] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 273.467650][T10537] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 273.467666][T10537] Call Trace: [ 273.467676][T10537] [ 273.467689][T10537] dump_stack_lvl+0x100/0x190 [ 273.467733][T10537] mtrr_add.cold+0x74/0x87 [ 273.467764][T10537] mtrr_ioctl+0x25a/0xcf0 [ 273.467803][T10537] ? __pfx_mtrr_ioctl+0x10/0x10 [ 273.467846][T10537] ? find_held_lock+0x2b/0x80 [ 273.467900][T10537] ? __fget_files+0x21f/0x3d0 [ 273.467939][T10537] ? __pfx_mtrr_ioctl+0x10/0x10 [ 273.467968][T10537] proc_reg_unlocked_ioctl+0x229/0x320 [ 273.467995][T10537] ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10 [ 273.468028][T10537] __x64_sys_ioctl+0x18e/0x210 [ 273.468065][T10537] do_syscall_64+0x106/0xf80 [ 273.468100][T10537] ? clear_bhb_loop+0x40/0x90 [ 273.468136][T10537] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 273.468165][T10537] RIP: 0033:0x7faa0479bf79 [ 273.468191][T10537] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 273.468229][T10537] RSP: 002b:00007faa055f2028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 273.468258][T10537] RAX: ffffffffffffffda RBX: 00007faa04a16090 RCX: 00007faa0479bf79 [ 273.468278][T10537] RDX: 0000000000000000 RSI: 0000000040104d01 RDI: 0000000000000000 [ 273.468296][T10537] RBP: 00007faa048327e0 R08: 0000000000000000 R09: 0000000000000000 [ 273.468314][T10537] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 273.468331][T10537] R13: 00007faa04a16128 R14: 00007faa04a16090 R15: 00007ffcbe2d8e48 [ 273.468369][T10537] [ 274.570553][T10559] FAULT_INJECTION: forcing a failure. [ 274.570553][T10559] name failslab, interval 1, probability 0, space 0, times 0 [ 274.596698][T10559] CPU: 0 UID: 0 PID: 10559 Comm: syz.0.1673 Tainted: G U L syzkaller #0 PREEMPT(full) [ 274.596745][T10559] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 274.596756][T10559] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 274.596771][T10559] Call Trace: [ 274.596781][T10559] [ 274.596791][T10559] dump_stack_lvl+0x100/0x190 [ 274.596838][T10559] should_fail_ex.cold+0x5/0xa [ 274.596870][T10559] should_failslab+0xc2/0x120 [ 274.596911][T10559] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 274.596952][T10559] ? __kernfs_new_node+0xd2/0x960 [ 274.596987][T10559] __kernfs_new_node+0xd2/0x960 [ 274.597014][T10559] ? kernfs_add_one+0x583/0x850 [ 274.597052][T10559] ? __pfx___kernfs_new_node+0x10/0x10 [ 274.597092][T10559] ? find_held_lock+0x2b/0x80 [ 274.597133][T10559] ? kernfs_root+0xee/0x2a0 [ 274.597164][T10559] ? kernfs_root+0xee/0x2a0 [ 274.597200][T10559] kernfs_new_node+0x11b/0x1a0 [ 274.597237][T10559] kernfs_create_dir_ns+0x4c/0x1a0 [ 274.597273][T10559] internal_create_group+0x36f/0xf40 [ 274.597311][T10559] ? __pfx_internal_create_group+0x10/0x10 [ 274.597341][T10559] ? __pfx_internal_create_group+0x10/0x10 [ 274.597375][T10559] ? __pfx_dev_add_physical_location+0x10/0x10 [ 274.597407][T10559] ? bus_to_subsys+0x114/0x150 [ 274.597448][T10559] dpm_sysfs_add+0x80/0x280 [ 274.597480][T10559] device_add+0x9ef/0x1950 [ 274.597516][T10559] ? __pfx_device_add+0x10/0x10 [ 274.597547][T10559] ? lockdep_init_map_type+0x5c/0x250 [ 274.597578][T10559] ? __init_waitqueue_head+0xca/0x150 [ 274.597615][T10559] rfkill_register+0x1ad/0xb30 [ 274.597645][T10559] nfc_register_device+0x11f/0x3e0 [ 274.597683][T10559] nci_register_device+0x7f1/0xb80 [ 274.597717][T10559] ? __pfx_nci_register_device+0x10/0x10 [ 274.597749][T10559] ? lockdep_init_map_type+0x5c/0x250 [ 274.597791][T10559] virtual_ncidev_open+0x141/0x220 [ 274.597829][T10559] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 274.597865][T10559] misc_open+0x26d/0x450 [ 274.597895][T10559] ? __pfx_misc_open+0x10/0x10 [ 274.597932][T10559] chrdev_open+0x234/0x6a0 [ 274.597970][T10559] ? __pfx_apparmor_file_open+0x10/0x10 [ 274.597998][T10559] ? __pfx_chrdev_open+0x10/0x10 [ 274.598036][T10559] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 274.598085][T10559] do_dentry_open+0x6d8/0x1660 [ 274.598121][T10559] ? __pfx_chrdev_open+0x10/0x10 [ 274.598169][T10559] vfs_open+0x82/0x3f0 [ 274.598202][T10559] path_openat+0x208c/0x31a0 [ 274.598254][T10559] ? __pfx_path_openat+0x10/0x10 [ 274.598309][T10559] do_file_open+0x20e/0x430 [ 274.598352][T10559] ? __pfx_do_file_open+0x10/0x10 [ 274.598422][T10559] ? alloc_fd+0x476/0x790 [ 274.598465][T10559] ? do_getname+0x191/0x390 [ 274.598495][T10559] do_sys_openat2+0x10d/0x1e0 [ 274.598526][T10559] ? __pfx_do_sys_openat2+0x10/0x10 [ 274.598559][T10559] ? __fget_files+0x21f/0x3d0 [ 274.598603][T10559] __x64_sys_openat+0x12d/0x210 [ 274.598635][T10559] ? __pfx___x64_sys_openat+0x10/0x10 [ 274.598678][T10559] do_syscall_64+0x106/0xf80 [ 274.598713][T10559] ? clear_bhb_loop+0x40/0x90 [ 274.598746][T10559] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 274.598773][T10559] RIP: 0033:0x7fce5a99bf79 [ 274.598795][T10559] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 274.598824][T10559] RSP: 002b:00007fce5b88b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 274.598853][T10559] RAX: ffffffffffffffda RBX: 00007fce5ac15fa0 RCX: 00007fce5a99bf79 [ 274.598872][T10559] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 274.598890][T10559] RBP: 00007fce5aa327e0 R08: 0000000000000000 R09: 0000000000000000 [ 274.598908][T10559] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 274.598934][T10559] R13: 00007fce5ac16038 R14: 00007fce5ac15fa0 R15: 00007ffe61ccf328 [ 274.598972][T10559] [ 275.549196][T10588] netlink: 334 bytes leftover after parsing attributes in process `syz.1.1683'. [ 276.526781][T10602] FAULT_INJECTION: forcing a failure. [ 276.526781][T10602] name failslab, interval 1, probability 0, space 0, times 0 [ 276.526847][T10602] CPU: 1 UID: 0 PID: 10602 Comm: syz.1.1690 Tainted: G U L syzkaller #0 PREEMPT(full) [ 276.526898][T10602] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 276.526910][T10602] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 276.526926][T10602] Call Trace: [ 276.526935][T10602] [ 276.526946][T10602] dump_stack_lvl+0x100/0x190 [ 276.526994][T10602] should_fail_ex.cold+0x5/0xa [ 276.527029][T10602] should_failslab+0xc2/0x120 [ 276.527072][T10602] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 276.527108][T10602] ? __kernfs_new_node+0xd2/0x960 [ 276.527146][T10602] __kernfs_new_node+0xd2/0x960 [ 276.527180][T10602] ? __pfx___kernfs_new_node+0x10/0x10 [ 276.527219][T10602] ? find_held_lock+0x2b/0x80 [ 276.527261][T10602] ? kernfs_root+0xee/0x2a0 [ 276.527288][T10602] ? kernfs_root+0xee/0x2a0 [ 276.527327][T10602] kernfs_new_node+0x11b/0x1a0 [ 276.527367][T10602] __kernfs_create_file+0x53/0x350 [ 276.527411][T10602] sysfs_add_file_mode_ns+0x207/0x3c0 [ 276.527466][T10602] sysfs_merge_group+0x194/0x340 [ 276.527498][T10602] ? __pfx_sysfs_merge_group+0x10/0x10 [ 276.527533][T10602] ? __pfx_dev_add_physical_location+0x10/0x10 [ 276.527567][T10602] ? bus_to_subsys+0x114/0x150 [ 276.527610][T10602] dpm_sysfs_add+0x237/0x280 [ 276.527642][T10602] device_add+0x9ef/0x1950 [ 276.527679][T10602] ? __pfx_device_add+0x10/0x10 [ 276.527714][T10602] ? lockdep_init_map_type+0x5c/0x250 [ 276.527745][T10602] ? __init_waitqueue_head+0xca/0x150 [ 276.527788][T10602] rfkill_register+0x1ad/0xb30 [ 276.527818][T10602] nfc_register_device+0x11f/0x3e0 [ 276.527859][T10602] nci_register_device+0x7f1/0xb80 [ 276.527896][T10602] ? __pfx_nci_register_device+0x10/0x10 [ 276.527932][T10602] ? lockdep_init_map_type+0x5c/0x250 [ 276.527974][T10602] virtual_ncidev_open+0x141/0x220 [ 276.528013][T10602] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 276.528050][T10602] misc_open+0x26d/0x450 [ 276.528082][T10602] ? __pfx_misc_open+0x10/0x10 [ 276.528114][T10602] chrdev_open+0x234/0x6a0 [ 276.528153][T10602] ? __pfx_apparmor_file_open+0x10/0x10 [ 276.528181][T10602] ? __pfx_chrdev_open+0x10/0x10 [ 276.528223][T10602] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 276.528273][T10602] do_dentry_open+0x6d8/0x1660 [ 276.528311][T10602] ? __pfx_chrdev_open+0x10/0x10 [ 276.528361][T10602] vfs_open+0x82/0x3f0 [ 276.528395][T10602] path_openat+0x208c/0x31a0 [ 276.528449][T10602] ? __pfx_path_openat+0x10/0x10 [ 276.528503][T10602] do_file_open+0x20e/0x430 [ 276.528546][T10602] ? __pfx_do_file_open+0x10/0x10 [ 276.528616][T10602] ? alloc_fd+0x476/0x790 [ 276.528674][T10602] ? do_getname+0x191/0x390 [ 276.528707][T10602] do_sys_openat2+0x10d/0x1e0 [ 276.528738][T10602] ? __pfx_do_sys_openat2+0x10/0x10 [ 276.528772][T10602] ? __fget_files+0x21f/0x3d0 [ 276.528819][T10602] __x64_sys_openat+0x12d/0x210 [ 276.528849][T10602] ? __pfx___x64_sys_openat+0x10/0x10 [ 276.528901][T10602] do_syscall_64+0x106/0xf80 [ 276.528935][T10602] ? clear_bhb_loop+0x40/0x90 [ 276.528969][T10602] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 276.528996][T10602] RIP: 0033:0x7fd04879bf79 [ 276.529020][T10602] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 276.529048][T10602] RSP: 002b:00007fd049715028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 276.529076][T10602] RAX: ffffffffffffffda RBX: 00007fd048a15fa0 RCX: 00007fd04879bf79 [ 276.529095][T10602] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 276.529113][T10602] RBP: 00007fd0488327e0 R08: 0000000000000000 R09: 0000000000000000 [ 276.529131][T10602] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 276.529147][T10602] R13: 00007fd048a16038 R14: 00007fd048a15fa0 R15: 00007ffd231a7038 [ 276.529187][T10602] [ 276.951355][T10624] futex_wake_op: syz.0.1696 tries to shift op by -2048; fix this program [ 276.959463][T10624] 0x3600000000000000-0x3700000000000008 : "" [ 276.959528][T10624] mtd: partition "" is out of reach -- disabled [ 276.966721][T10624] ftl_cs: FTL header not found. [ 277.093533][T10627] ERROR: Out of memory at tomoyo_memory_ok. [ 277.464325][T10636] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1700'. [ 279.583221][T10678] futex_wake_op: syz.1.1717 tries to shift op by -2048; fix this program [ 279.602874][T10678] 0xdf00000000000000-0xe000000000000008 : "" [ 279.627921][T10678] mtd: partition "" is out of reach -- disabled [ 279.672259][T10678] ftl_cs: FTL header not found. [ 279.758589][T10681] ERROR: Out of memory at tomoyo_memory_ok. [ 280.806433][T10712] futex_wake_op: syz.2.1729 tries to shift op by -2048; fix this program [ 280.840203][T10712] 0x9400000000000000-0x9500000000000008 : "" [ 280.846236][T10712] mtd: partition "" is out of reach -- disabled [ 280.897250][T10712] ftl_cs: FTL header not found. [ 281.041591][T10719] ERROR: Out of memory at tomoyo_memory_ok. [ 281.925600][T10715] kexec: Could not allocate control_code_buffer [ 282.732938][T10740] futex_wake_op: syz.3.1746 tries to shift op by -2048; fix this program [ 282.764605][T10740] 0x000000000000-0x000000020000 : "" [ 282.798385][T10740] ftl_cs: FTL header not found. [ 282.939608][T10741] ERROR: Out of memory at tomoyo_memory_ok. [ 282.972130][T10743] futex_wake_op: syz.2.1740 tries to shift op by -2048; fix this program [ 283.040925][ T30] audit: type=1804 audit(1771146337.058:10): pid=10745 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.1741" name="/newroot/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter" dev="tracefs" ino=19680823 res=1 errno=0 [ 283.045070][T10746] size and base must be multiples of 4 kiB [ 283.127907][T10746] CPU: 1 UID: 0 PID: 10746 Comm: syz.2.1740 Tainted: G U L syzkaller #0 PREEMPT(full) [ 283.127973][T10746] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 283.127983][T10746] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 283.127998][T10746] Call Trace: [ 283.128006][T10746] [ 283.128016][T10746] dump_stack_lvl+0x100/0x190 [ 283.128063][T10746] mtrr_add.cold+0x74/0x87 [ 283.128094][T10746] mtrr_ioctl+0x25a/0xcf0 [ 283.128128][T10746] ? __pfx_mtrr_ioctl+0x10/0x10 [ 283.128167][T10746] ? find_held_lock+0x2b/0x80 [ 283.128216][T10746] ? __fget_files+0x21f/0x3d0 [ 283.128262][T10746] ? __pfx_mtrr_ioctl+0x10/0x10 [ 283.128297][T10746] proc_reg_unlocked_ioctl+0x229/0x320 [ 283.128328][T10746] ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10 [ 283.128360][T10746] __x64_sys_ioctl+0x18e/0x210 [ 283.128397][T10746] do_syscall_64+0x106/0xf80 [ 283.128433][T10746] ? clear_bhb_loop+0x40/0x90 [ 283.128468][T10746] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 283.128495][T10746] RIP: 0033:0x7f410e59bf79 [ 283.128517][T10746] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 283.128542][T10746] RSP: 002b:00007f410f3b8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 283.128567][T10746] RAX: ffffffffffffffda RBX: 00007f410e816090 RCX: 00007f410e59bf79 [ 283.128586][T10746] RDX: 0000000000000000 RSI: 0000000040104d01 RDI: 0000000000000000 [ 283.128603][T10746] RBP: 00007f410e6327e0 R08: 0000000000000000 R09: 0000000000000000 [ 283.128620][T10746] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 283.128636][T10746] R13: 00007f410e816128 R14: 00007f410e816090 R15: 00007ffcb9585148 [ 283.128670][T10746] [ 285.442760][T10782] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1754'. [ 285.921468][T10798] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1761'. [ 286.784673][T10816] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1766'. [ 286.789203][T10811] HfR: entered promiscuous mode [ 286.838497][T10816] HfR: left promiscuous mode [ 287.564811][T10842] futex_wake_op: syz.2.1777 tries to shift op by -2048; fix this program [ 287.578190][T10842] 0x000000000000-0x000000020000 : "" [ 287.598007][T10842] ftl_cs: FTL header not found. [ 287.723418][T10846] ERROR: Out of memory at tomoyo_memory_ok. [ 288.177652][ T1337] EXT4-fs (sda1): Delayed block allocation failed for inode 2028 at logical offset 1 with max blocks 1 with error 117 [ 288.248027][ T1337] EXT4-fs (sda1): This should not happen!! Data will be lost [ 288.248027][ T1337] [ 289.123019][T10887] netlink: 326 bytes leftover after parsing attributes in process `syz.2.1793'. [ 289.484161][T10893] dyndbg: expected <4096 bytes into control [ 289.542639][T10895] HfR: entered promiscuous mode [ 289.571699][T10895] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1796'. [ 289.581394][T10895] HfR: left promiscuous mode [ 290.244156][T10919] zswap: compressor not available [ 290.951723][T10945] HfR: entered promiscuous mode [ 290.965568][T10945] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1812'. [ 290.974994][T10945] HfR: left promiscuous mode [ 291.231624][T10950] zswap: compressor not available [ 291.549656][T10963] netlink: 334 bytes leftover after parsing attributes in process `syz.1.1820'. [ 292.125542][T10975] HfR: entered promiscuous mode [ 292.165780][T10975] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1825'. [ 292.191732][T10975] HfR: left promiscuous mode [ 293.546886][T11020] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1844'. [ 294.101565][T11048] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1855'. [ 294.845760][T11083] netlink: 'syz.1.1869': attribute type 2 has an invalid length. [ 294.916797][T11085] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1871'. [ 295.229973][T11096] netlink: 350 bytes leftover after parsing attributes in process `syz.1.1875'. [ 295.374303][T11101] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1876'. [ 295.385397][T11101] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1876'. [ 295.618213][T11112] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1882'. [ 299.169964][T11235] netlink: 334 bytes leftover after parsing attributes in process `syz.1.1932'. [ 300.690086][T11284] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1951'. [ 300.707096][T11284] openvswitch: netlink: IP tunnel dst address not specified [ 301.165969][T11300] netlink: 130 bytes leftover after parsing attributes in process `syz.0.1957'. [ 301.876541][T11321] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1965'. [ 303.027519][T11351] netlink: 130 bytes leftover after parsing attributes in process `syz.0.1975'. [ 304.114301][T11390] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1989'. [ 305.928678][T11439] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2003'. [ 308.636578][T11459] kexec: Could not allocate control_code_buffer [ 309.345272][T11492] HfR: entered promiscuous mode [ 309.364646][T11492] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2027'. [ 309.375161][T11492] HfR: left promiscuous mode [ 310.938689][T11493] kexec: Could not allocate control_code_buffer [ 311.482045][T11542] netlink: 218 bytes leftover after parsing attributes in process `syz.2.2037'. [ 313.172013][T11588] usb usb3: usbfs: interface 0 claimed by hub while 'syz.0.2052' sets config #128 [ 314.401275][T11614] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2066'. [ 315.707238][T11638] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2067'. [ 315.916553][T11640] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2068'. [ 316.081821][T11642] zswap: compressor not available [ 316.823412][T11666] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2075'. [ 317.404530][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.411921][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 317.974090][T11687] netlink: 338 bytes leftover after parsing attributes in process `syz.0.2084'. [ 318.759335][ T13] EXT4-fs (sda1): Delayed block allocation failed for inode 2029 at logical offset 1471 with max blocks 1 with error 117 [ 318.792762][ T13] EXT4-fs (sda1): This should not happen!! Data will be lost [ 318.792762][ T13] [ 321.490859][T11764] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2109'. [ 323.202390][T11814] block nbd0: Unsupported socket: should be TCP or UNIX. [ 324.689911][T11844] netlink: 206 bytes leftover after parsing attributes in process `syz.1.2141'. [ 326.198019][T11873] netlink: 330 bytes leftover after parsing attributes in process `syz.3.2148'. [ 326.683990][T11880] netlink: 74 bytes leftover after parsing attributes in process `syz.3.2152'. [ 328.198065][T11923] netlink: 326 bytes leftover after parsing attributes in process `syz.0.2168'. [ 328.464186][T11931] netlink: 'syz.3.2172': attribute type 1 has an invalid length. [ 328.466454][T11932] netlink: 350 bytes leftover after parsing attributes in process `syz.0.2171'. [ 328.497779][T11931] netlink: 322 bytes leftover after parsing attributes in process `syz.3.2172'. [ 328.528236][T11933] netlink: 'syz.3.2172': attribute type 1 has an invalid length. [ 328.536008][T11933] netlink: 322 bytes leftover after parsing attributes in process `syz.3.2172'. [ 328.834714][T11940] random: crng reseeded on system resumption [ 329.658018][T11952] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2178'. [ 331.743374][T11992] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2195'. [ 331.981070][T12014] ubi0: attaching mtd0 [ 332.008436][T12014] ubi0: scanning is finished [ 332.013128][T12014] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 332.224842][T12014] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 334.576450][T12076] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2224'. [ 334.617079][T12076] netlink: 354 bytes leftover after parsing attributes in process `syz.1.2224'. [ 334.965382][T12085] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2228'. [ 335.422483][T12097] netlink: 326 bytes leftover after parsing attributes in process `syz.0.2232'. [ 336.449151][T12118] ubi0: attaching mtd0 [ 336.469296][T12118] ubi0: scanning is finished [ 336.474052][T12118] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 336.680460][T12118] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 337.952539][T12156] netlink: 302 bytes leftover after parsing attributes in process `syz.1.2254'. [ 338.028090][T12160] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2255'. [ 338.131038][T12162] netlink: 350 bytes leftover after parsing attributes in process `syz.1.2256'. [ 338.642436][ T5143] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260 [ 338.642487][ T5143] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 338.658315][ T5143] Bluetooth: hci0: Unknown advertising packet type: 0x7f [ 338.658356][ T5143] Bluetooth: hci0: Unknown advertising packet type: 0x14 [ 338.665418][ T5143] Bluetooth: hci0: Unknown advertising packet type: 0x14 [ 338.672804][ T5143] Bluetooth: hci0: Unknown advertising packet type: 0x14 [ 338.680271][ T5143] Bluetooth: hci0: Unknown advertising packet type: 0x72 [ 338.687336][ T5143] Bluetooth: hci0: Unknown advertising packet type: 0x14 [ 338.694497][ T5143] Bluetooth: hci0: Malformed LE Event: 0x0d [ 341.231152][T12242] netlink: 326 bytes leftover after parsing attributes in process `syz.2.2286'. [ 341.870803][T12239] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 341.882597][T12239] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 341.936918][T12239] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 341.960606][T12239] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 342.006852][T12239] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 342.029583][T12239] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 342.055871][T12239] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 342.062609][T12239] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 342.191837][T12264] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !PjE r҄y*"l-y– [ 342.670668][T12280] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2299'. [ 343.065406][T12296] netlink: 252 bytes leftover after parsing attributes in process `syz.0.2307'. [ 343.237834][ T5143] Bluetooth: hci1: command 0x0406 tx timeout [ 343.957826][ T5143] Bluetooth: hci3: command 0x0406 tx timeout [ 344.037863][ T5143] Bluetooth: hci0: command 0x0406 tx timeout [ 344.117859][ T5143] Bluetooth: hci2: command 0x0406 tx timeout [ 344.674384][T12325] netlink: 74 bytes leftover after parsing attributes in process `syz.0.2316'. [ 345.221129][T12331] netlink: 334 bytes leftover after parsing attributes in process `syz.3.2320'. [ 345.318250][ T5143] Bluetooth: hci1: command 0x0406 tx timeout [ 345.393297][ T30] audit: type=1326 audit(1771146399.408:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12335 comm="syz.2.2323" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f410e59bf79 code=0x0 [ 346.038255][ T5143] Bluetooth: hci3: command 0x0406 tx timeout [ 346.127819][ T5143] Bluetooth: hci0: command 0x0406 tx timeout [ 346.208788][ T5143] Bluetooth: hci2: command 0x0406 tx timeout [ 348.010710][T12396] ACPI: button: Initial lid state set to 'ignore' [ 349.521253][T12437] netlink: 334 bytes leftover after parsing attributes in process `syz.3.2360'. [ 352.232215][T12521] netlink: 'syz.0.2392': attribute type 21 has an invalid length. [ 352.294192][T12521] netlink: 334 bytes leftover after parsing attributes in process `syz.0.2392'. [ 352.339278][T12521] Zero length message leads to an empty skb [ 355.093834][T12596] mmap: syz.2.2422 (12596) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 355.796192][T12607] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2426'. [ 355.828334][T12607] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2426'. [ 355.880232][T12609] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 356.215926][T12613] batman_adv: batadv0: adding TT local entry 00:00:03:00:00:00 to non-existent VLAN 16 [ 356.434646][T12626] random: crng reseeded on system resumption [ 356.477381][T12621] zswap: compressor not available [ 357.458493][T12672] netlink: 186 bytes leftover after parsing attributes in process `syz.1.2452'. [ 357.470876][T12672] netlink: 186 bytes leftover after parsing attributes in process `syz.1.2452'. [ 357.774379][T12685] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2458'. [ 357.874530][T12689] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2460'. [ 358.028921][T12693] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2462'. [ 358.263514][T12695] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2463'. [ 358.598599][T12712] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2471'. [ 358.625370][T12712] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2471'. [ 360.049493][T12756] x_tables: duplicate underflow at hook 4 [ 362.132685][T12822] kvm: user requested TSC rate below hardware speed [ 362.284077][ T30] audit: type=1804 audit(1771146416.298:12): pid=12817 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.2503" name="/newroot/619/file0" dev="tmpfs" ino=3163 res=1 errno=0 [ 362.353713][ T30] audit: type=1804 audit(1771146416.308:13): pid=12827 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.2503" name="/newroot/619/file0" dev="tmpfs" ino=3163 res=1 errno=0 [ 362.937046][T12845] __nla_validate_parse: 2 callbacks suppressed [ 362.937070][T12845] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2512'. [ 365.479160][T12899] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input5 [ 365.505147][ T5178] ERROR: Out of memory at tomoyo_memory_ok. [ 366.085774][T12911] netlink: 326 bytes leftover after parsing attributes in process `syz.3.2539'. [ 366.918297][T12940] random: crng reseeded on system resumption [ 367.055027][T12944] Unrecognized hibernate image header format! [ 367.064932][T12944] PM: hibernation: Image mismatch: architecture specific data [ 367.746925][T12965] netlink: 'syz.1.2560': attribute type 15 has an invalid length. [ 367.755300][T12965] netlink: 186 bytes leftover after parsing attributes in process `syz.1.2560'. [ 367.881145][T12963] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2559'. [ 368.339049][T12980] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2566'. [ 368.639624][T12989] netlink: 354 bytes leftover after parsing attributes in process `syz.3.2570'. [ 369.228650][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 369.376566][T13014] netlink: set zone limit has 8 unknown bytes [ 369.463653][T13015] netlink: set zone limit has 8 unknown bytes [ 370.021747][T13011] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 370.027999][T13011] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 370.034065][T13011] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 370.041098][T13011] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 370.348012][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 370.378523][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 370.391738][T13054] vhci_hcd vhci_hcd.0: default hub control req: 0000 v0000 i0000 l0 [ 371.331464][T13077] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 371.565750][ T5143] Bluetooth: hci1: command 0x0406 tx timeout [ 371.783445][T13085] netlink: 198 bytes leftover after parsing attributes in process `syz.2.2604'. [ 372.039434][ T5143] Bluetooth: hci0: command 0x0406 tx timeout [ 372.040989][ T5837] Bluetooth: hci3: command 0x0406 tx timeout [ 372.119145][ T5837] Bluetooth: hci2: command 0x0406 tx timeout [ 372.287373][T13099] netlink: 334 bytes leftover after parsing attributes in process `syz.0.2609'. [ 372.390989][T13103] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2612'. [ 372.531438][T13105] zswap: compressor not available [ 372.709282][T13120] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2618'. [ 374.311058][T13171] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2632'. [ 374.479160][T13175] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2634'. [ 374.975029][T13191] netlink: 338 bytes leftover after parsing attributes in process `syz.2.2640'. [ 375.571375][T13200] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2643'. [ 375.866192][ T5837] Bluetooth: hci0: Malformed LE Event: 0x0b [ 376.081046][T13215] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2650'. [ 376.170282][T13220] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2652'. [ 376.181060][T13220] netlink: 25 bytes leftover after parsing attributes in process `syz.3.2652'. [ 376.221134][T13222] sg_write: data in/out 81/90 bytes for SCSI command 0x0-- guessing data in; [ 376.221134][T13222] program syz.2.2653 not setting count and/or reply_len properly [ 377.498746][T13262] ERROR: Out of memory at tomoyo_memory_ok. [ 378.313852][T13285] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff) [ 378.845649][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 378.852257][T13291] netlink: 'syz.3.2679': attribute type 19 has an invalid length. [ 378.852655][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 378.860435][T13291] netlink: 334 bytes leftover after parsing attributes in process `syz.3.2679'. [ 379.346305][T13305] netlink: 334 bytes leftover after parsing attributes in process `syz.3.2683'. [ 379.778856][T13316] netlink: 338 bytes leftover after parsing attributes in process `syz.1.2688'. [ 382.673528][T13383] __vm_enough_memory: pid: 13383, comm: syz.0.2710, bytes: 4398046511104 not enough memory for the allocation [ 382.685514][T13382] netlink: set zone limit has 8 unknown bytes [ 382.741155][T13382] netlink: set zone limit has 8 unknown bytes [ 383.196841][T13395] netlink: 334 bytes leftover after parsing attributes in process `syz.0.2716'.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   [ 611.459428][ T5584] ERROR: Out of memory at tomoyo_memory_ok. [ 611.613474][T19246] netlink: 146 bytes leftover after parsing attributes in process `syz.3.4765'. [ 612.598069][T19265] ERROR: Out of memory at tomoyo_memory_ok. [ 614.218170][T19313] ERROR: Out of memory at tomoyo_memory_ok. [ 614.655128][T19325] netlink: 146 bytes leftover after parsing attributes in process `syz.2.4796'. [ 616.312346][T19377] EXT4-fs: 12 callbacks suppressed [ 616.312361][T19377] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 0 with max blocks 1 with error 117 [ 616.351476][T19377] EXT4-fs (sda1): This should not happen!! Data will be lost [ 616.351476][T19377] [ 617.169942][T19395] netlink: 346 bytes leftover after parsing attributes in process `syz.3.4821'. [ 617.772750][T19404] netlink: 146 bytes leftover after parsing attributes in process `syz.0.4825'. [ 618.269629][T19426] netlink: 322 bytes leftover after parsing attributes in process `syz.3.4832'. [ 618.493988][T19423] zswap: compressor not available [ 619.158110][T19444] netlink: 'syz.1.4841': attribute type 4 has an invalid length. [ 621.654213][T19497] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4854'. [ 621.683027][T19497] netlink: 25 bytes leftover after parsing attributes in process `syz.0.4854'. [ 621.696421][T19500] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4855'. [ 621.716748][T19500] netlink: 25 bytes leftover after parsing attributes in process `syz.1.4855'. [ 622.271963][T19512] [U] [ 622.274717][T19512] [U] [ 622.277438][T19512] [U] [ 622.280161][T19512] [U] [ 622.286100][T19512] [U] [ 622.289018][T19512] [U] [ 622.291732][T19512] [U] [ 622.294454][T19512] [U] [ 622.302048][T19512] [U] [ 622.304799][T19512] [U] [ 622.307599][T19512] [U] [ 622.310317][T19512] [U] [ 622.339846][T19512] [U] [ 622.342602][T19512] [U] [ 622.345318][T19512] [U] [ 622.348034][T19512] [U] [ 622.353425][T19512] [U] [ 622.356174][T19512] [U] [ 622.358887][T19512] [U] [ 622.361598][T19512] [U] [ 622.405953][T19512] [U] [ 622.408703][T19512] [U] [ 622.411411][T19512] [U] [ 622.414107][T19512] [U] [ 622.426328][T19512] [U] [ 622.429087][T19512] [U] [ 622.431817][T19512] [U] [ 622.434535][T19512] [U] [ 622.438433][T19512] [U] [ 622.441176][T19512] [U] [ 622.443891][T19512] [U] [ 622.446692][T19512] [U] [ 622.450595][T19512] [U] [ 622.453331][T19512] [U] [ 622.456145][T19512] [U] [ 622.458857][T19512] [U] [ 622.462613][T19512] [U] [ 622.465351][T19512] [U] [ 622.468066][T19512] [U] [ 622.470777][T19512] [U] [ 622.474734][T19512] [U] [ 622.477478][T19512] [U] [ 622.480192][T19512] [U] [ 622.482886][T19512] [U] [ 622.491012][T19512] [U] [ 622.493754][T19512] [U] [ 622.496467][T19512] [U] [ 622.499181][T19512] [U] [ 622.536279][T19512] [U] [ 622.539034][T19512] [U] [ 622.541755][T19512] [U] [ 622.544467][T19512] [U] [ 622.559406][T19512] [U] [ 622.562245][T19512] [U] [ 622.565052][T19512] [U] [ 622.567781][T19512] [U] [ 622.587146][T19512] [U] [ 622.589906][T19512] [U] [ 622.592627][T19512] [U] [ 622.595352][T19512] [U] [ 622.602315][T19512] [U] [ 622.605056][T19512] [U] [ 622.607781][T19512] [U] [ 622.610495][T19512] [U] [ 622.615717][T19512] [U] [ 622.618462][T19512] [U] [ 622.621182][T19512] [U] [ 622.623894][T19512] [U] [ 622.643500][T19512] [U] [ 622.646263][T19512] [U] [ 622.648984][T19512] [U] [ 622.651694][T19512] [U] [ 622.655319][T19512] [U] [ 622.658044][T19512] [U] [ 622.660755][T19512] [U] [ 622.663471][T19512] [U] [ 622.667300][T19512] [U] [ 622.670046][T19512] [U] [ 622.672771][T19512] [U] [ 622.675575][T19512] [U] [ 622.679213][T19512] [U] [ 622.682033][T19512] [U] [ 622.684750][T19512] [U] [ 622.687553][T19512] [U] [ 622.692860][T19512] [U] [ 622.695602][T19512] [U] [ 622.698321][T19512] [U] [ 622.701034][T19512] [U] [ 622.704274][T19512] [U] [ 622.706988][T19512] [U] [ 622.709669][T19512] [U] [ 622.712350][T19512] [U] [ 622.717531][T19512] [U] [ 622.720243][T19512] [U] [ 622.722916][T19512] [U] [ 622.725588][T19512] [U] [ 622.728616][T19512] [U] [ 622.731316][T19512] [U] [ 622.734008][T19512] [U] [ 622.736721][T19512] [U] [ 622.740452][T19512] [U] [ 622.743154][T19512] [U] [ 622.745840][T19512] [U] [ 622.748512][T19512] [U] [ 622.751526][T19512] [U] [ 622.754240][T19512] [U] [ 622.756937][T19512] [U] [ 622.759639][T19512] [U] [ 622.762726][T19512] [U] [ 622.765463][T19512] [U] [ 622.768257][T19512] [U] [ 622.770954][T19512] [U] [ 622.774525][T19512] [U] [ 622.777228][T19512] [U] [ 622.779903][T19512] [U] [ 622.782577][T19512] [U] [ 622.785510][T19512] [U] [ 622.788207][T19512] [U] [ 622.790883][T19512] [U] [ 622.793561][T19512] [U] [ 622.796511][T19512] [U] [ 622.799207][T19512] [U] [ 622.801999][T19512] [U] [ 622.804685][T19512] [U] [ 622.807578][T19512] [U] [ 622.810277][T19512] [U] [ 622.812951][T19512] [U] [ 622.815646][T19512] [U] [ 622.818321][T19512] [U] [ 622.822146][T19512] [U] [ 622.824834][T19512] [U] [ 622.827507][T19512] [U] [ 622.830182][T19512] [U] [ 622.835078][T19512] [U] [ 622.837786][T19512] [U] [ 622.840458][T19512] [U] [ 622.843128][T19512] [U] [ 622.846838][T19512] [U] [ 622.849577][T19512] [U] [ 622.852340][T19512] [U] [ 622.855039][T19512] [U] [ 622.858107][T19512] [U] [ 622.860802][T19512] [U] [ 622.863473][T19512] [U] [ 622.866155][T19512] [U] [ 622.869131][T19512] [U] [ 622.871823][T19512] [U] [ 622.874494][T19512] [U] [ 622.877194][T19512] [U] [ 622.880078][T19512] [U] [ 622.882781][T19512] [U] [ 622.885458][T19512] [U] [ 622.888171][T19512] [U] [ 622.891116][T19512] [U] [ 622.893824][T19512] [U] [ 622.896519][T19512] [U] [ 622.899223][T19512] [U] [ 622.902116][T19512] [U] [ 622.904815][T19512] [U] [ 622.907514][T19512] [U] [ 622.910204][T19512] [U] [ 622.913805][T19512] [U] [ 622.916491][T19512] [U] [ 622.919169][T19512] [U] [ 622.921864][T19512] [U] [ 622.925771][T19512] [U] [ 622.928460][T19512] [U] [ 622.931133][T19512] [U] [ 622.933900][T19512] [U] [ 622.937587][T19512] [U] [ 622.940275][T19512] [U] [ 622.942952][T19512] [U] [ 622.945634][T19512] [U] [ 622.949230][T19512] [U] [ 622.951936][T19512] [U] [ 622.954802][T19512] [U] [ 622.957494][T19512] [U] [ 622.961176][T19512] [U] [ 622.963965][T19512] [U] [ 622.966649][T19512] [U] [ 622.969413][T19512] [U] [ 622.972351][T19512] [U] [ 622.975089][T19512] [U] [ 622.977801][T19512] [U] [ 622.980509][T19512] [U] [ 622.983485][T19512] [U] [ 622.986198][T19512] [U] [ 622.988904][T19512] [U] [ 622.991611][T19512] [U] [ 622.994908][T19512] [U] [ 622.997625][T19512] [U] [ 623.000327][T19512] [U] [ 623.003003][T19512] [U] [ 623.005866][T19512] [U] [ 623.536966][T19533] ref_tracker: memory allocation failure, unreliable refcount tracker. [ 624.109049][ T5143] Bluetooth: hci3: unexpected event 0x1c length: 725 > 5 [ 624.613775][ T3000] EXT4-fs (sda1): Delayed block allocation failed for inode 2033 at logical offset 1463 with max blocks 3 with error 117 [ 624.614657][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 624.642072][ T3000] EXT4-fs (sda1): This should not happen!! Data will be lost [ 624.642072][ T3000] [ 624.644920][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 624.693616][ T3000] EXT4-fs (sda1): Delayed block allocation failed for inode 2029 at logical offset 1461 with max blocks 11 with error 117 [ 624.728569][ T3000] EXT4-fs (sda1): This should not happen!! Data will be lost [ 624.728569][ T3000] [ 624.767575][ T3000] EXT4-fs (sda1): Delayed block allocation failed for inode 2030 at logical offset 1 with max blocks 1 with error 117 [ 624.795000][ T3000] EXT4-fs (sda1): This should not happen!! Data will be lost [ 624.795000][ T3000] [ 624.845163][ T3000] EXT4-fs (sda1): Delayed block allocation failed for inode 2027 at logical offset 954 with max blocks 69 with error 117 [ 624.872523][ T3000] EXT4-fs (sda1): This should not happen!! Data will be lost [ 624.872523][ T3000] [ 624.898622][ T3000] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 907 with max blocks 1 with error 117 [ 624.935151][ T3000] EXT4-fs (sda1): This should not happen!! Data will be lost [ 624.935151][ T3000] [ 625.324679][T19577] netlink: 338 bytes leftover after parsing attributes in process `syz.2.4881'. [ 625.337488][T19574] ERROR: Out of memory at tomoyo_memory_ok. [ 626.287462][T19603] netlink: 346 bytes leftover after parsing attributes in process `syz.3.4888'. [ 627.694833][T19637] zswap: compressor not available [ 629.087662][T19686] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4915'. [ 629.137600][T19686] netlink: 354 bytes leftover after parsing attributes in process `syz.1.4915'. [ 629.492666][T19693] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4917'. [ 629.699866][T19697] netlink: 17 bytes leftover after parsing attributes in process `syz.0.4917'. [ 629.918641][T19702] netlink: 334 bytes leftover after parsing attributes in process `syz.2.4919'. [ 630.048876][ T189] EXT4-fs: 14 callbacks suppressed [ 630.048896][ T189] EXT4-fs (sda1): Delayed block allocation failed for inode 2033 at logical offset 999 with max blocks 24 with error 117 [ 630.093052][ T189] EXT4-fs (sda1): This should not happen!! Data will be lost [ 630.093052][ T189] [ 630.139219][ T189] EXT4-fs (sda1): Delayed block allocation failed for inode 2029 at logical offset 1004 with max blocks 19 with error 117 [ 630.177701][ T189] EXT4-fs (sda1): This should not happen!! Data will be lost [ 630.177701][ T189] [ 630.204651][ T189] EXT4-fs (sda1): Delayed block allocation failed for inode 2027 at logical offset 1005 with max blocks 18 with error 117 [ 630.235722][ T189] EXT4-fs (sda1): This should not happen!! Data will be lost [ 630.235722][ T189] [ 630.270404][ T189] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 927 with max blocks 3 with error 117 [ 630.293496][ T189] EXT4-fs (sda1): This should not happen!! Data will be lost [ 630.293496][ T189] [ 630.361634][ T189] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 1009 with max blocks 14 with error 117 [ 630.387796][ T189] EXT4-fs (sda1): This should not happen!! Data will be lost [ 630.387796][ T189] [ 630.567316][T19718] BUG: unable to handle page fault for address: fffff520047873f8 [ 630.567343][T19718] #PF: supervisor read access in kernel mode [ 630.567360][T19718] #PF: error_code(0x0000) - not-present page [ 630.567376][T19718] PGD 23fff5067 P4D 23fff5067 PUD 1c6b6067 PMD 0 [ 630.567425][T19718] Oops: Oops: 0000 [#1] SMP KASAN PTI [ 630.567457][T19718] CPU: 0 UID: 0 PID: 19718 Comm: syz.3.4926 Tainted: G U L syzkaller #0 PREEMPT(full) [ 630.567502][T19718] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 630.567514][T19718] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 630.567532][T19718] RIP: 0010:sys_imageblit+0x16c1/0x1d60 [ 630.567579][T19718] Code: 7c cd 00 48 89 fe 48 c1 ee 03 80 3c 1e 00 0f 85 aa 05 00 00 4d 63 f6 48 8b 8c cc 88 00 00 00 4f 8d 34 f7 4c 89 f6 48 c1 ee 03 <80> 3c 1e 00 0f 85 1b 03 00 00 49 89 0e 41 89 c6 8d 4d fd 41 c1 ee [ 630.567609][T19718] RSP: 0018:ffffc9000629f598 EFLAGS: 00010a02 [ 630.567633][T19718] RAX: 0000000000000000 RBX: dffffc0000000000 RCX: 0000000000000000 [ 630.567651][T19718] RDX: 0000000000000000 RSI: 1ffff920047873f8 RDI: ffffc9000629f620 [ 630.567670][T19718] RBP: 0000000000000004 R08: 0000000000000005 R09: 0000000000000003 [ 630.567687][T19718] R10: 0000000000000008 R11: 0000000000000000 R12: ffff888026c1d051 [ 630.567706][T19718] R13: ffffc9000629f620 R14: ffffc90023c39fc0 R15: ffffc90023c39fc0 [ 630.567726][T19718] FS: 00007faa056136c0(0000) GS:ffff88812435a000(0000) knlGS:0000000000000000 [ 630.567754][T19718] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 630.567773][T19718] CR2: fffff520047873f8 CR3: 000000005393e000 CR4: 00000000003526f0 [ 630.567791][T19718] Call Trace: [ 630.567798][T19718] [ 630.567809][T19718] ? __page_table_check_ptes_set+0x1b5/0x4e0 [ 630.567845][T19718] ? find_held_lock+0x2b/0x80 [ 630.567881][T19718] ? __pfx___page_table_check_ptes_set+0x10/0x10 [ 630.567926][T19718] ? __pfx_sys_imageblit+0x10/0x10 [ 630.567963][T19718] ? vmap_small_pages_range_noflush+0xc20/0xd50 [ 630.567999][T19718] drm_fbdev_shmem_defio_imageblit+0x20/0x130 [ 630.568042][T19718] ccw_putcs+0x92f/0xbb0 [ 630.568080][T19718] ? __pfx_ccw_putcs+0x10/0x10 [ 630.568115][T19718] ? fb_get_color_depth+0x120/0x250 [ 630.568142][T19718] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 630.568180][T19718] fbcon_putcs+0x3b2/0x480 [ 630.568203][T19718] ? __pfx_ccw_putcs+0x10/0x10 [ 630.568237][T19718] do_update_region+0x2cf/0x3f0 [ 630.568266][T19718] invert_screen+0x27c/0x590 [ 630.568298][T19718] ? __pfx_invert_screen+0x10/0x10 [ 630.568328][T19718] ? __pfx_complement_pos+0x10/0x10 [ 630.568360][T19718] ? vc_do_resize+0x246/0x10f0 [ 630.568388][T19718] ? __vmalloc_node_noprof+0xad/0xf0 [ 630.568414][T19718] clear_selection+0x59/0x70 [ 630.568442][T19718] vc_do_resize+0xda3/0x10f0 [ 630.568476][T19718] ? __pfx_fb_match_mode+0x10/0x10 [ 630.568513][T19718] ? __pfx_vc_do_resize+0x10/0x10 [ 630.568555][T19718] fbcon_modechanged+0x342/0x700 [ 630.568586][T19718] fbcon_update_vcs+0x47/0x60 [ 630.568615][T19718] do_fb_ioctl+0x773/0x7e0 [ 630.568651][T19718] ? __pfx_do_fb_ioctl+0x10/0x10 [ 630.568693][T19718] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 630.568746][T19718] ? __fget_files+0x21f/0x3d0 [ 630.568783][T19718] fb_ioctl+0xe5/0x150 [ 630.568816][T19718] ? __pfx_fb_ioctl+0x10/0x10 [ 630.568852][T19718] __x64_sys_ioctl+0x18e/0x210 [ 630.568884][T19718] do_syscall_64+0x106/0xf80 [ 630.568926][T19718] ? clear_bhb_loop+0x40/0x90 [ 630.568957][T19718] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 630.568985][T19718] RIP: 0033:0x7faa0479bf79 [ 630.569008][T19718] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 630.569033][T19718] RSP: 002b:00007faa05613028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 630.569058][T19718] RAX: ffffffffffffffda RBX: 00007faa04a15fa0 RCX: 00007faa0479bf79 [ 630.569075][T19718] RDX: 0000200000000080 RSI: 0000000000004601 RDI: 0000000000000003 [ 630.569090][T19718] RBP: 00007faa048327e0 R08: 0000000000000000 R09: 0000000000000000 [ 630.569105][T19718] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 630.569122][T19718] R13: 00007faa04a16038 R14: 00007faa04a15fa0 R15: 00007ffcbe2d8e48 [ 630.569148][T19718] [ 630.569165][T19718] Modules linked in: [ 630.569186][T19718] CR2: fffff520047873f8 [ 630.569207][T19718] ---[ end trace 0000000000000000 ]--- [ 630.569224][T19718] RIP: 0010:sys_imageblit+0x16c1/0x1d60 [ 630.569267][T19718] Code: 7c cd 00 48 89 fe 48 c1 ee 03 80 3c 1e 00 0f 85 aa 05 00 00 4d 63 f6 48 8b 8c cc 88 00 00 00 4f 8d 34 f7 4c 89 f6 48 c1 ee 03 <80> 3c 1e 00 0f 85 1b 03 00 00 49 89 0e 41 89 c6 8d 4d fd 41 c1 ee [ 630.569295][T19718] RSP: 0018:ffffc9000629f598 EFLAGS: 00010a02 [ 630.569318][T19718] RAX: 0000000000000000 RBX: dffffc0000000000 RCX: 0000000000000000 [ 630.569337][T19718] RDX: 0000000000000000 RSI: 1ffff920047873f8 RDI: ffffc9000629f620 [ 630.569356][T19718] RBP: 0000000000000004 R08: 0000000000000005 R09: 0000000000000003 [ 630.569373][T19718] R10: 0000000000000008 R11: 0000000000000000 R12: ffff888026c1d051 [ 630.569390][T19718] R13: ffffc9000629f620 R14: ffffc90023c39fc0 R15: ffffc90023c39fc0 [ 630.569410][T19718] FS: 00007faa056136c0(0000) GS:ffff88812435a000(0000) knlGS:0000000000000000 [ 630.569437][T19718] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 630.569456][T19718] CR2: fffff520047873f8 CR3: 000000005393e000 CR4: 00000000003526f0 [ 630.569478][T19718] Kernel panic - not syncing: Fatal exception [ 630.569922][T19718] Kernel Offset: disabled