last executing test programs: 3.97117424s ago: executing program 2 (id=2600): mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/admmidi2\x00', 0x30880, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40d1}, 0x0) r0 = getpid() process_vm_readv$auto(r0, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f00000000c0), 0xffffffff}, 0x6, 0x0) r1 = io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xe, 0x2, 0x6, 0x5, 0x8, 0xffffffffffffffff, [], {0xd74c, 0x6, 0x2, 0x29f, 0x100, 0x7f, 0x101, 0x6, 0x2}, {0xff, 0x1, 0x10001, 0x7, 0x1, 0x40, 0x76c5, 0x400005, 0x100000005}}) io_uring_enter$auto(r1, 0x9, 0x820e, 0x8b, 0x0, 0x18) 3.65025822s ago: executing program 2 (id=2601): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) write$auto_ocfs2_control_fops_stack_user(0xffffffffffffffff, 0x0, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x19) splice$auto(0xffffffffffffffff, 0x0, r0, 0x0, 0x100000000000000, 0x6) 3.649532003s ago: executing program 3 (id=2602): socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) accept4$auto(r0, 0x0, 0x0, 0x8) 2.628148015s ago: executing program 3 (id=2610): mmap$auto(0x0, 0x4005, 0x2, 0x40eb2, 0x401, 0x300000000000) r0 = openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000000600)='/proc/thread-self/clear_refs\x00', 0x2, 0x0) r1 = socket(0x10, 0x3, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB=']'], 0x1ac}, 0x1, 0x0, 0x0, 0x4040840}, 0x40000) recvmmsg$auto(r1, &(0x7f0000000340)={{0x0, 0x3, &(0x7f0000000080)={0x0, 0x404}, 0x5, 0x0, 0x2000000200002, 0x2}, 0x803}, 0xfffffff9, 0x4, 0x0) write$auto_proc_clear_refs_operations_internal(r0, 0x0, 0xffffff4b) mprotect$auto(0x200000000000, 0x806121, 0x6) 2.521522279s ago: executing program 0 (id=2612): mmap$auto(0x0, 0x7d, 0x4000000000df, 0xeb1, 0x401, 0x8000) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_VENDOR(0xffffffffffffffff, 0x0, 0x4000000) writev$auto(0xffffffffffffffff, 0x0, 0x3) r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/fb\x00', 0x100, 0x0) pread64$auto(r0, 0x0, 0x40000000006, 0x3) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x6ab82, 0x0) 2.41085626s ago: executing program 0 (id=2613): openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/input/event1\x00', 0x34d802, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000180), 0x109802, 0x0) close_range$auto(0x2, r0, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x88000, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_GET_MSRS(r0, 0xc008ae88, &(0x7f0000000040)={0x7, 0x0, [{0x40000082, 0x2, 0x6}]}) 2.044419401s ago: executing program 1 (id=2614): r0 = socket(0xa, 0x1, 0x84) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = socket(0x10, 0x2, 0xc) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000013c0)=ANY=[@ANYBLOB="18000000", @ANYRES8=r2, @ANYRES8=r1, @ANYRES32], 0x18}}, 0x80) recvmmsg$auto(r0, 0x0, 0x4, 0x6586, 0x0) 1.879509195s ago: executing program 1 (id=2615): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) waitid$auto(0x8, 0xffffffffffffffff, 0x0, 0x3, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0) fstat$auto(r0, 0x0) r1 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fb0\x00', 0x40100, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x4610, 0x0) 1.782445653s ago: executing program 0 (id=2616): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x2020009, 0x203, 0xeb1, 0xfffffffffffffffa, 0x8000) unshare$auto(0x40000080) ioprio_get$auto(0x3, 0x0) 1.685454051s ago: executing program 3 (id=2617): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x0, 0x5, 0x0) pipe$auto(0x0) r0 = socket(0x11, 0x80003, 0x300) sendfile$auto(0x1, r0, 0x0, 0x8fb5) r1 = epoll_create$auto(0x3e) epoll_ctl$auto(r1, 0x1, 0x8000000000000000, 0x0) 1.682273063s ago: executing program 2 (id=2625): io_uring_setup$auto(0x59, 0x0) mmap$auto(0x0, 0xb2, 0xde, 0x9b72, 0x2, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x40d1}, 0x0) r0 = getpid() process_vm_readv$auto(r0, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f00000000c0), 0xffffffff}, 0x6, 0x0) r1 = io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xe, 0x2, 0x6, 0x5, 0x8, 0xffffffffffffffff, [], {0xd74c, 0x6, 0x2, 0x29f, 0x100, 0x7f, 0x101, 0x6, 0x2}, {0xff, 0x1, 0x10001, 0x7, 0x1, 0x40, 0x76c5, 0x400005, 0x100000005}}) io_uring_enter$auto(r1, 0x9, 0x820e, 0x8b, 0x0, 0x18) 1.50421873s ago: executing program 1 (id=2618): mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) socket(0xa, 0x801, 0x84) io_uring_setup$auto(0x6, 0x0) setsockopt$auto(0x3, 0x10000000084, 0x81, 0x0, 0x8) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mincore$auto(0x1000, 0x2, 0x0) setsockopt$auto(0x3, 0x10000000084, 0x16, 0x0, 0x8) 1.488924116s ago: executing program 2 (id=2619): mmap$auto(0x0, 0x20005, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) connect$auto(0x3, 0x0, 0x54) sendto$auto(0x3, 0x0, 0x18, 0x101, 0x0, 0x1c) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) 994.573449ms ago: executing program 3 (id=2620): openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) ioctl$auto(0x3, 0x400454ca, 0x38) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) capset$auto(0x0, 0x0) write$auto(0x3, 0x0, 0xfdf3) 983.787964ms ago: executing program 0 (id=2629): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x800008000) r0 = socketcall$auto(0xffe, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae60, 0xffffffffffffffff) ioctl$auto(0x3, 0x4010ae67, r0) 983.24805ms ago: executing program 1 (id=2621): mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty12\x00', 0x101840, 0x0) r1 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) unshare$auto(0x40000080) setreuid$auto(0x3, 0x7) lsm_list_modules$auto(0x0, 0xfffffffffffffffd, 0x0) ioctl$auto(r0, 0x4b64, r1) 748.494146ms ago: executing program 1 (id=2622): mmap$auto(0x0, 0x4000b, 0x7, 0x9b72, 0x7, 0x28000) open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x130) fallocate$auto(0x8000000000000003, 0x0, 0x9, 0x4cbd5d) mmap$auto(0x0, 0xb9f, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000280)='/proc/thread-self/fail-nth\x00', 0x2, 0x0) write$auto(r0, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) write$auto(0x3, 0x0, 0x100082) 675.69945ms ago: executing program 3 (id=2623): r0 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000300), 0x141000, 0x0) poll$auto(&(0x7f0000000180)={r0, 0xa0b, 0x9816}, 0x7f, 0x0) ioctl$auto_VHOST_SET_OWNER(r1, 0xaf01, 0x0) r2 = gettid() rt_sigprocmask$auto(0x0, &(0x7f0000000000)={0xfffffffffffffe01}, 0x0, 0x8) rt_sigtimedwait$auto(&(0x7f0000000100)={0xfffffffffffffbff}, 0x0, 0x0, 0x8) kill$auto(r2, 0x14) 578.764572ms ago: executing program 0 (id=2624): openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/input/event1\x00', 0x34d802, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000180), 0x109802, 0x0) close_range$auto(0x2, r0, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x88000, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_GET_MSRS(r0, 0xc008ae88, &(0x7f0000000040)={0x7, 0x0, [{0x40000105, 0x2, 0x6}]}) 186.475894ms ago: executing program 1 (id=2626): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) write$auto_ocfs2_control_fops_stack_user(0xffffffffffffffff, 0x0, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x19) splice$auto(0xffffffffffffffff, 0x0, r0, 0x0, 0x100000000000000, 0x6) 186.316396ms ago: executing program 2 (id=2627): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0) sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000000)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="01002dbd7000f9dbdf2501000000060002000100000005000700570000000800090108000000050004000300000014001f00fe88000000000000000000000000000114002000ff010000000000000000000000000001"], 0x5c}, 0x1, 0x0, 0x0, 0x40000}, 0x0) r1 = getpid() process_vm_readv$auto(r1, &(0x7f0000000000)={0x0, 0xfff}, 0x800000001, &(0x7f0000000280)={&(0x7f0000000080), 0x1ffffffff}, 0x6, 0x0) write$auto(r0, &(0x7f0000000040)='S\x00\x00\x00\xfe\xff\xff\xff', 0x8587) ioctl$auto_SG_SET_RESERVED_SIZE2(r0, 0x2275, 0x0) 170.16836ms ago: executing program 3 (id=2628): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/oom_adj\x00', 0x980, 0x0) read$auto(r0, 0x0, 0x4) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x4) r2 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) write$auto(r2, &(0x7f0000000040)='nbd\x00', 0x4) 92.333636ms ago: executing program 2 (id=2630): r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, r0, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x288202, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) 0s ago: executing program 0 (id=2631): openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, r0, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x88000, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_GET_MSRS(r0, 0xc008ae88, &(0x7f0000000100)={0x3, 0x0, [{0x6a4, 0x10, 0x1}]}) kernel console output (not intermixed with test programs): ware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 214.399350][ T8641] Call Trace: [ 214.399359][ T8641] [ 214.399369][ T8641] dump_stack_lvl+0x100/0x190 [ 214.399401][ T8641] should_fail_ex.cold+0x5/0xa [ 214.399419][ T8641] should_failslab+0xc2/0x120 [ 214.399435][ T8641] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 214.399456][ T8641] ? __kernfs_new_node+0xd2/0x960 [ 214.399480][ T8641] __kernfs_new_node+0xd2/0x960 [ 214.399501][ T8641] ? __pfx___kernfs_new_node+0x10/0x10 [ 214.399526][ T8641] ? find_held_lock+0x2b/0x80 [ 214.399539][ T8641] ? kernfs_root+0xee/0x2a0 [ 214.399557][ T8641] ? kernfs_root+0xee/0x2a0 [ 214.399580][ T8641] kernfs_new_node+0x11b/0x1a0 [ 214.399605][ T8641] __kernfs_create_file+0x53/0x350 [ 214.399623][ T8641] sysfs_add_file_mode_ns+0x207/0x3c0 [ 214.399653][ T8641] internal_create_group+0x593/0xf40 [ 214.399679][ T8641] ? __pfx_internal_create_group+0x10/0x10 [ 214.399703][ T8641] ? kernfs_create_link+0x1bd/0x240 [ 214.399724][ T8641] internal_create_groups+0x9d/0x150 [ 214.399746][ T8641] device_add+0x71a/0x1950 [ 214.399764][ T8641] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 214.399787][ T8641] ? __pfx_device_add+0x10/0x10 [ 214.399803][ T8641] ? lockdep_init_map_type+0x5c/0x250 [ 214.399822][ T8641] ? __init_waitqueue_head+0xca/0x150 [ 214.399847][ T8641] netdev_register_kobject+0x1a9/0x3d0 [ 214.399872][ T8641] register_netdevice+0x12e0/0x2210 [ 214.399898][ T8641] ? __pfx_register_netdevice+0x10/0x10 [ 214.399924][ T8641] ? __pfx_loopback_net_init+0x10/0x10 [ 214.399939][ T8641] register_netdev+0x34/0x50 [ 214.399959][ T8641] loopback_net_init+0x7a/0x170 [ 214.399974][ T8641] ? __pfx_loopback_net_init+0x10/0x10 [ 214.399988][ T8641] ops_init+0x1e2/0x5f0 [ 214.400010][ T8641] setup_net+0x118/0x3a0 [ 214.400031][ T8641] ? __pfx_setup_net+0x10/0x10 [ 214.400050][ T8641] ? lockdep_init_map_type+0x5c/0x250 [ 214.400069][ T8641] ? mutex_init_lockep+0x110/0x150 [ 214.400094][ T8641] copy_net_ns+0x46f/0x7c0 [ 214.400132][ T8641] create_new_namespaces+0x3ea/0xac0 [ 214.400153][ T8641] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 214.400171][ T8641] ksys_unshare+0x473/0xad0 [ 214.400190][ T8641] ? __pfx_ksys_unshare+0x10/0x10 [ 214.400215][ T8641] __x64_sys_unshare+0x31/0x40 [ 214.400233][ T8641] do_syscall_64+0x106/0xf80 [ 214.400267][ T8641] ? clear_bhb_loop+0x40/0x90 [ 214.400305][ T8641] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 214.400332][ T8641] RIP: 0033:0x7f6fd1d9c799 [ 214.400346][ T8641] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 214.400359][ T8641] RSP: 002b:00007f6fd2bf7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 214.400374][ T8641] RAX: ffffffffffffffda RBX: 00007f6fd2015fa0 RCX: 00007f6fd1d9c799 [ 214.400383][ T8641] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 214.400392][ T8641] RBP: 00007f6fd1e32c99 R08: 0000000000000000 R09: 0000000000000000 [ 214.400402][ T8641] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 214.400411][ T8641] R13: 00007f6fd2016038 R14: 00007f6fd2015fa0 R15: 00007fff5bbe7c08 [ 214.400431][ T8641] [ 214.893294][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 215.151239][ T30] audit: type=1804 audit(1773515178.260:9): pid=8650 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1011" name=2F6E6577726F6F742F3235322F50524F46494C455F56455253494F4E3D32303135303530350A302D434F4D4D454E543D0A302D505245464552454E43453D7B206D61785F61756469745F6C6F673D3332206D61785F6C6561726E696E675F656E7472793D3634207D0A302D434F4E4649473D7B206D6F64653D6C6561726E696E67206772616E745F6C6F673D6E6F2072656A6563745F6C6F673D796573207D0A dev="tmpfs" ino=1289 res=1 errno=0 [ 215.700634][ T5830] Bluetooth: hci2: command 0x0c1a tx timeout [ 216.002560][ T5830] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260 [ 216.002594][ T5830] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260 [ 216.017845][ T5830] Bluetooth: hci1: Unknown advertising packet type: 0x7f [ 216.017913][ T5830] Bluetooth: hci1: Unknown advertising packet type: 0x14 [ 216.034633][ T5830] Bluetooth: hci1: Unknown advertising packet type: 0x14 [ 216.042385][ T5830] Bluetooth: hci1: Unknown advertising packet type: 0x14 [ 216.049795][ T5830] Bluetooth: hci1: Unknown advertising packet type: 0x72 [ 216.056918][ T5830] Bluetooth: hci1: Unknown advertising packet type: 0x14 [ 216.064040][ T5830] Bluetooth: hci1: Malformed LE Event: 0x0d [ 216.492293][ T8687] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 216.507806][ T8687] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 216.955334][ T8698] netlink: 'syz.1.1021': attribute type 64 has an invalid length. [ 216.982937][ T8698] netlink: 74 bytes leftover after parsing attributes in process `syz.1.1021'. [ 217.141206][ T8700] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1022'. [ 217.152348][ T8700] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1022'. [ 217.706413][ T8713] FAULT_INJECTION: forcing a failure. [ 217.706413][ T8713] name failslab, interval 1, probability 0, space 0, times 0 [ 217.712238][ T8715] FAULT_INJECTION: forcing a failure. [ 217.712238][ T8715] name failslab, interval 1, probability 0, space 0, times 0 [ 217.731618][ T8715] CPU: 0 UID: 0 PID: 8715 Comm: syz.2.1030 Tainted: G L syzkaller #0 PREEMPT(full) [ 217.731660][ T8715] Tainted: [L]=SOFTLOCKUP [ 217.731670][ T8715] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 217.731686][ T8715] Call Trace: [ 217.731695][ T8715] [ 217.731705][ T8715] dump_stack_lvl+0x100/0x190 [ 217.731751][ T8715] should_fail_ex.cold+0x5/0xa [ 217.731784][ T8715] should_failslab+0xc2/0x120 [ 217.731813][ T8715] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 217.731854][ T8715] ? __send_signal_locked+0x155/0x12d0 [ 217.731904][ T8715] __send_signal_locked+0x155/0x12d0 [ 217.731953][ T8715] group_send_sig_info+0x2a4/0x300 [ 217.731986][ T8715] ? __pfx_group_send_sig_info+0x10/0x10 [ 217.732027][ T8715] ? kill_pid_info_type+0x1a/0x290 [ 217.732056][ T8715] kill_pid_info_type+0x92/0x290 [ 217.732090][ T8715] kill_proc_info+0x6f/0x1b0 [ 217.732122][ T8715] kill_something_info+0x2a0/0x310 [ 217.732160][ T8715] __x64_sys_kill+0x1c4/0x250 [ 217.732193][ T8715] ? __pfx___x64_sys_kill+0x10/0x10 [ 217.732244][ T8715] do_syscall_64+0x106/0xf80 [ 217.732280][ T8715] ? clear_bhb_loop+0x40/0x90 [ 217.732320][ T8715] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 217.732349][ T8715] RIP: 0033:0x7f191f79c799 [ 217.732372][ T8715] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 217.732398][ T8715] RSP: 002b:00007f1920648028 EFLAGS: 00000246 ORIG_RAX: 000000000000003e [ 217.732424][ T8715] RAX: ffffffffffffffda RBX: 00007f191fa15fa0 RCX: 00007f191f79c799 [ 217.732443][ T8715] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 00000000000002b0 [ 217.732460][ T8715] RBP: 00007f191f832c99 R08: 0000000000000000 R09: 0000000000000000 [ 217.732476][ T8715] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 217.732492][ T8715] R13: 00007f191fa16038 R14: 00007f191fa15fa0 R15: 00007ffef3b7ad88 [ 217.732530][ T8715] [ 217.745977][ T8713] CPU: 1 UID: 0 PID: 8713 Comm: syz.1.1029 Tainted: G L syzkaller #0 PREEMPT(full) [ 217.746018][ T8713] Tainted: [L]=SOFTLOCKUP [ 217.746027][ T8713] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 217.746043][ T8713] Call Trace: [ 217.746052][ T8713] [ 217.746062][ T8713] dump_stack_lvl+0x100/0x190 [ 217.746104][ T8713] should_fail_ex.cold+0x5/0xa [ 217.746135][ T8713] should_failslab+0xc2/0x120 [ 217.746164][ T8713] __kmalloc_cache_noprof+0x7a/0x6f0 [ 217.746198][ T8713] ? __do_sys_fanotify_init+0x5cf/0xe50 [ 217.746236][ T8713] ? get_mem_cgroup_from_mm+0x88/0x600 [ 217.746273][ T8713] ? get_mem_cgroup_from_mm+0x132/0x600 [ 217.746315][ T8713] __do_sys_fanotify_init+0x5cf/0xe50 [ 217.746360][ T8713] do_syscall_64+0x106/0xf80 [ 217.746395][ T8713] ? clear_bhb_loop+0x40/0x90 [ 217.746428][ T8713] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 217.746455][ T8713] RIP: 0033:0x7f0a2eb9c799 [ 217.746477][ T8713] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 217.746502][ T8713] RSP: 002b:00007f0a2fa36028 EFLAGS: 00000246 ORIG_RAX: 000000000000012c [ 217.746526][ T8713] RAX: ffffffffffffffda RBX: 00007f0a2ee15fa0 RCX: 00007f0a2eb9c799 [ 217.746544][ T8713] RDX: 0000000000000000 RSI: 0002000000000002 RDI: 0000000000000005 [ 217.746561][ T8713] RBP: 00007f0a2ec32c99 R08: 0000000000000000 R09: 0000000000000000 [ 217.746576][ T8713] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 217.746592][ T8713] R13: 00007f0a2ee16038 R14: 00007f0a2ee15fa0 R15: 00007ffcc5c42b18 [ 217.746629][ T8713] [ 218.272937][ T8721] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1031'. [ 218.545870][ T8721] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1031'. [ 219.316988][ T8769] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1051'. [ 219.537090][ T8769] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1051'. [ 222.611949][ T8815] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1069'. [ 223.996343][ T8846] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1083'. [ 224.243302][ T8856] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1087'. [ 224.253740][ T8856] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1087'. [ 225.160712][ T8873] [U] [ 225.163785][ T8873] [U] [ 225.166499][ T8873] [U] [ 225.169215][ T8873] [U] [ 225.176196][ T8873] [U] [ 225.178931][ T8873] [U] [ 225.181646][ T8873] [U] [ 225.184340][ T8873] [U] [ 225.187756][ T8873] [U] [ 225.190455][ T8873] [U] [ 225.193144][ T8873] [U] [ 225.195818][ T8873] [U] [ 225.199756][ T8873] [U] [ 225.202444][ T8873] [U] [ 225.205117][ T8873] [U] [ 225.207790][ T8873] [U] [ 225.212296][ T8873] [U] [ 225.215001][ T8873] [U] [ 225.217676][ T8873] [U] [ 225.220346][ T8873] [U] [ 225.223461][ T8873] [U] [ 225.226160][ T8873] [U] [ 225.228837][ T8873] [U] [ 225.231521][ T8873] [U] [ 225.234589][ T8873] [U] [ 225.237293][ T8873] [U] [ 225.239971][ T8873] [U] [ 225.242643][ T8873] [U] [ 225.247641][ T8873] [U] [ 225.250352][ T8873] [U] [ 225.253041][ T8873] [U] [ 225.255719][ T8873] [U] [ 225.258586][ T8873] [U] [ 225.850299][ T8894] netlink: 354 bytes leftover after parsing attributes in process `syz.2.1099'. [ 228.481418][ T8972] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1127'. [ 230.166047][ T9042] FAULT_INJECTION: forcing a failure. [ 230.166047][ T9042] name failslab, interval 1, probability 0, space 0, times 0 [ 230.193568][ T9042] CPU: 1 UID: 0 PID: 9042 Comm: syz.1.1151 Tainted: G L syzkaller #0 PREEMPT(full) [ 230.193614][ T9042] Tainted: [L]=SOFTLOCKUP [ 230.193623][ T9042] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 230.193639][ T9042] Call Trace: [ 230.193648][ T9042] [ 230.193658][ T9042] dump_stack_lvl+0x100/0x190 [ 230.193704][ T9042] should_fail_ex.cold+0x5/0xa [ 230.193736][ T9042] should_failslab+0xc2/0x120 [ 230.193764][ T9042] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 230.193805][ T9042] ? __d_alloc+0x34/0xa80 [ 230.193832][ T9042] ? __sys_socket+0x14d/0x260 [ 230.193861][ T9042] ? do_syscall_64+0x106/0xf80 [ 230.193898][ T9042] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 230.193933][ T9042] __d_alloc+0x34/0xa80 [ 230.193966][ T9042] d_alloc_pseudo+0x1c/0xc0 [ 230.194003][ T9042] alloc_file_pseudo+0xcf/0x230 [ 230.194040][ T9042] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 230.194081][ T9042] ? alloc_fd+0x476/0x790 [ 230.194115][ T9042] sock_alloc_file+0x50/0x210 [ 230.194157][ T9042] __sys_socket+0x1c0/0x260 [ 230.194188][ T9042] ? __pfx___sys_socket+0x10/0x10 [ 230.194229][ T9042] __x64_sys_socket+0x72/0xb0 [ 230.194257][ T9042] ? lockdep_hardirqs_on+0x78/0x100 [ 230.194294][ T9042] do_syscall_64+0x106/0xf80 [ 230.194329][ T9042] ? clear_bhb_loop+0x40/0x90 [ 230.194362][ T9042] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 230.194390][ T9042] RIP: 0033:0x7f0a2eb9c799 [ 230.194412][ T9042] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 230.194438][ T9042] RSP: 002b:00007f0a2fa36028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 230.194464][ T9042] RAX: ffffffffffffffda RBX: 00007f0a2ee15fa0 RCX: 00007f0a2eb9c799 [ 230.194482][ T9042] RDX: 0000000000000001 RSI: 0000000000000001 RDI: 000000000000002b [ 230.194498][ T9042] RBP: 00007f0a2ec32c99 R08: 0000000000000000 R09: 0000000000000000 [ 230.194515][ T9042] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 230.194531][ T9042] R13: 00007f0a2ee16038 R14: 00007f0a2ee15fa0 R15: 00007ffcc5c42b18 [ 230.194568][ T9042] [ 236.100612][ T9164] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1196'. [ 236.296985][ T9172] netlink: 350 bytes leftover after parsing attributes in process `syz.3.1198'. [ 236.448934][ T9177] netlink: 330 bytes leftover after parsing attributes in process `syz.2.1201'. [ 236.839499][ T9186] zswap: compressor not available [ 236.990607][ T9199] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1209'. [ 237.046370][ T9203] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1211'. [ 237.664485][ T9221] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1217'. [ 239.622375][ T9243] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 239.629271][ T9243] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 239.880466][ T9252] netlink: 350 bytes leftover after parsing attributes in process `syz.0.1227'. [ 241.751640][ T9308] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 241.843988][ T9312] netlink: 334 bytes leftover after parsing attributes in process `syz.1.1253'. [ 241.916290][ T9312] Zero length message leads to an empty skb [ 242.012449][ T9313] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1252'. [ 242.041330][ T9318] FAULT_INJECTION: forcing a failure. [ 242.041330][ T9318] name failslab, interval 1, probability 0, space 0, times 0 [ 242.061860][ T9318] CPU: 0 UID: 0 PID: 9318 Comm: syz.1.1255 Tainted: G L syzkaller #0 PREEMPT(full) [ 242.061902][ T9318] Tainted: [L]=SOFTLOCKUP [ 242.061911][ T9318] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 242.061930][ T9318] Call Trace: [ 242.061940][ T9318] [ 242.061950][ T9318] dump_stack_lvl+0x100/0x190 [ 242.061997][ T9318] should_fail_ex.cold+0x5/0xa [ 242.062030][ T9318] should_failslab+0xc2/0x120 [ 242.062058][ T9318] __kmalloc_cache_noprof+0x7a/0x6f0 [ 242.062094][ T9318] ? ring_buffer_read_start+0x149/0x460 [ 242.062140][ T9318] ring_buffer_read_start+0x149/0x460 [ 242.062182][ T9318] ? __pfx_ring_buffer_read_start+0x10/0x10 [ 242.062222][ T9318] ? lockdep_init_map_type+0x5c/0x250 [ 242.062262][ T9318] ? ring_buffer_overruns+0x14e/0x1a0 [ 242.062301][ T9318] tracing_open+0x9cd/0xef0 [ 242.062337][ T9318] do_dentry_open+0x6d8/0x1660 [ 242.062362][ T9318] ? __pfx_tracing_open+0x10/0x10 [ 242.062399][ T9318] vfs_open+0x82/0x3f0 [ 242.062445][ T9318] path_openat+0x208c/0x31a0 [ 242.062486][ T9318] ? __pfx_path_openat+0x10/0x10 [ 242.062528][ T9318] do_file_open+0x20e/0x430 [ 242.062557][ T9318] ? __pfx_do_file_open+0x10/0x10 [ 242.062612][ T9318] ? alloc_fd+0x476/0x790 [ 242.062643][ T9318] ? do_getname+0x191/0x390 [ 242.062675][ T9318] do_sys_openat2+0x10d/0x1e0 [ 242.062707][ T9318] ? __pfx_do_sys_openat2+0x10/0x10 [ 242.062742][ T9318] ? __fget_files+0x21f/0x3d0 [ 242.062775][ T9318] __x64_sys_openat+0x12d/0x210 [ 242.062805][ T9318] ? __pfx___x64_sys_openat+0x10/0x10 [ 242.062852][ T9318] do_syscall_64+0x106/0xf80 [ 242.062888][ T9318] ? clear_bhb_loop+0x40/0x90 [ 242.062921][ T9318] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 242.062949][ T9318] RIP: 0033:0x7f0a2eb9c799 [ 242.062971][ T9318] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 242.062997][ T9318] RSP: 002b:00007f0a2fa36028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 242.063030][ T9318] RAX: ffffffffffffffda RBX: 00007f0a2ee15fa0 RCX: 00007f0a2eb9c799 [ 242.063048][ T9318] RDX: 1a6b75d638929210 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 242.063065][ T9318] RBP: 00007f0a2ec32c99 R08: 0000000000000000 R09: 0000000000000000 [ 242.063081][ T9318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 242.063096][ T9318] R13: 00007f0a2ee16038 R14: 00007f0a2ee15fa0 R15: 00007ffcc5c42b18 [ 242.063131][ T9318] [ 242.325772][ T9313] bond0: (slave bond_slave_0): Releasing backup interface [ 242.555902][ T9328] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 242.658192][ T9330] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1259'. [ 242.691369][ T9334] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1261'. [ 243.201511][ T9353] sctp: [Deprecated]: syz.3.1268 (pid 9353) Use of struct sctp_assoc_value in delayed_ack socket option. [ 243.201511][ T9353] Use struct sctp_sack_info instead [ 243.360914][ T9360] netlink: 326 bytes leftover after parsing attributes in process `syz.0.1271'. [ 246.037224][ T1044] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 246.314538][ T1044] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 246.395082][ T5828] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 246.422424][ T5828] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 246.436239][ T5828] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 246.464083][ T5828] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 246.476350][ T5828] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 246.497320][ T1044] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 246.667045][ T1044] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 246.873021][ T9417] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 247.075839][ T1044] bridge_slave_1: left allmulticast mode [ 247.076820][ T9422] mmap: syz.3.1293 (9422) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 247.081728][ T1044] bridge_slave_1: left promiscuous mode [ 247.119453][ T1044] bridge0: port 2(bridge_slave_1) entered disabled state [ 247.187780][ T1044] bridge_slave_0: left allmulticast mode [ 247.193559][ T1044] bridge_slave_0: left promiscuous mode [ 247.200337][ T1044] bridge0: port 1(bridge_slave_0) entered disabled state [ 247.779666][ T1044] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 247.801298][ T1044] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 247.821189][ T1044] bond0 (unregistering): Released all slaves [ 248.195124][ T9408] chnl_net:caif_netlink_parms(): no params data found [ 248.380545][ T9463] random: crng reseeded on system resumption [ 248.574622][ T5828] Bluetooth: hci4: command tx timeout [ 248.614185][ T9470] FAULT_INJECTION: forcing a failure. [ 248.614185][ T9470] name failslab, interval 1, probability 0, space 0, times 0 [ 248.721852][ T9470] CPU: 0 UID: 0 PID: 9470 Comm: syz.1.1310 Tainted: G L syzkaller #0 PREEMPT(full) [ 248.721905][ T9470] Tainted: [L]=SOFTLOCKUP [ 248.721914][ T9470] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 248.721930][ T9470] Call Trace: [ 248.721939][ T9470] [ 248.721949][ T9470] dump_stack_lvl+0x100/0x190 [ 248.721995][ T9470] should_fail_ex.cold+0x5/0xa [ 248.722029][ T9470] should_failslab+0xc2/0x120 [ 248.722057][ T9470] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 248.722096][ T9470] ? dup_fd+0x4d/0xd10 [ 248.722122][ T9470] ? trace_kmalloc+0x101/0x130 [ 248.722154][ T9470] dup_fd+0x4d/0xd10 [ 248.722185][ T9470] ? apparmor_task_alloc+0x2c1/0x3b0 [ 248.722230][ T9470] copy_process+0x2631/0x7a10 [ 248.722280][ T9470] ? __pfx_copy_process+0x10/0x10 [ 248.722328][ T9470] kernel_clone+0xfc/0x9a0 [ 248.722357][ T9470] ? __pfx_futex_wait+0x10/0x10 [ 248.722398][ T9470] ? __pfx_kernel_clone+0x10/0x10 [ 248.722449][ T9470] __do_sys_clone+0xd9/0x120 [ 248.722479][ T9470] ? __pfx___do_sys_clone+0x10/0x10 [ 248.722536][ T9470] do_syscall_64+0x106/0xf80 [ 248.722570][ T9470] ? clear_bhb_loop+0x40/0x90 [ 248.722601][ T9470] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 248.722628][ T9470] RIP: 0033:0x7f0a2eb9c799 [ 248.722649][ T9470] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 248.722673][ T9470] RSP: 002b:00007f0a2fa36028 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 248.722698][ T9470] RAX: ffffffffffffffda RBX: 00007f0a2ee15fa0 RCX: 00007f0a2eb9c799 [ 248.722714][ T9470] RDX: 0000000000000000 RSI: 000000000000000b RDI: 0000000000000008 [ 248.722728][ T9470] RBP: 00007f0a2ec32c99 R08: 0000000000000002 R09: 0000000000000000 [ 248.722742][ T9470] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 248.722755][ T9470] R13: 00007f0a2ee16038 R14: 00007f0a2ee15fa0 R15: 00007ffcc5c42b18 [ 248.722787][ T9470] [ 249.047595][ T1044] hsr_slave_0: left promiscuous mode [ 249.133013][ T1044] hsr_slave_1: left promiscuous mode [ 249.141713][ T1044] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 249.203462][ T1044] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 249.223682][ T1044] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 249.231083][ T1044] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 249.286474][ T1044] veth1_vlan: left promiscuous mode [ 249.302488][ T1044] veth0_vlan: left promiscuous mode [ 249.652093][ T9491] random: crng reseeded on system resumption [ 250.332217][ T1044] team0 (unregistering): Port device team_slave_1 removed [ 250.369189][ T1044] team0 (unregistering): Port device team_slave_0 removed [ 250.654135][ T5828] Bluetooth: hci4: command tx timeout [ 250.891474][ T9408] bridge0: port 1(bridge_slave_0) entered blocking state [ 250.898992][ T9408] bridge0: port 1(bridge_slave_0) entered disabled state [ 250.906325][ T9408] bridge_slave_0: entered allmulticast mode [ 250.915919][ T9408] bridge_slave_0: entered promiscuous mode [ 250.947053][ T9408] bridge0: port 2(bridge_slave_1) entered blocking state [ 250.957326][ T9408] bridge0: port 2(bridge_slave_1) entered disabled state [ 250.971230][ T9408] bridge_slave_1: entered allmulticast mode [ 250.997611][ T9408] bridge_slave_1: entered promiscuous mode [ 251.256083][ T9408] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 251.341679][ T9408] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 251.511495][ T9408] team0: Port device team_slave_0 added [ 251.557241][ T9408] team0: Port device team_slave_1 added [ 251.675892][ T9408] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 251.693534][ T9408] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 251.769975][ T9408] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 251.808647][ T9408] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 251.828921][ T9408] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 251.875770][ T9408] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 252.008850][ T9535] netlink: 114 bytes leftover after parsing attributes in process `syz.2.1329'. [ 252.114609][ T9408] hsr_slave_0: entered promiscuous mode [ 252.121348][ T9408] hsr_slave_1: entered promiscuous mode [ 252.175900][ T9408] debugfs: 'hsr0' already exists in 'hsr' [ 252.181666][ T9408] Cannot create hsr debugfs directory [ 252.735729][ T5828] Bluetooth: hci4: command tx timeout [ 252.804462][ T9555] zswap: compressor not available [ 253.327035][ T9408] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 253.348511][ T9408] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 253.362042][ T9590] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1345'. [ 253.403497][ T9408] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 253.438261][ T9408] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 253.909715][ T9408] 8021q: adding VLAN 0 to HW filter on device bond0 [ 254.164857][ T9408] 8021q: adding VLAN 0 to HW filter on device team0 [ 254.201363][ T2978] bridge0: port 1(bridge_slave_0) entered blocking state [ 254.208537][ T2978] bridge0: port 1(bridge_slave_0) entered forwarding state [ 254.317182][ T2978] bridge0: port 2(bridge_slave_1) entered blocking state [ 254.324400][ T2978] bridge0: port 2(bridge_slave_1) entered forwarding state [ 254.813965][ T5828] Bluetooth: hci4: command tx timeout [ 254.929235][ T9408] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 254.987766][ T9408] veth0_vlan: entered promiscuous mode [ 255.015643][ T9408] veth1_vlan: entered promiscuous mode [ 255.059231][ T9408] veth0_macvtap: entered promiscuous mode [ 255.096598][ T9408] veth1_macvtap: entered promiscuous mode [ 255.126922][ T9408] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 255.157350][ T9408] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 255.209792][ T34] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 255.249407][ T34] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 255.280404][ T34] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 255.313802][ T34] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 255.421159][ T34] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 255.447205][ T34] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 255.515583][ T34] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 255.548967][ T34] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 255.623771][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.630115][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 255.644270][ T9408] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 256.848061][ T9707] netlink: 346 bytes leftover after parsing attributes in process `syz.2.1367'. [ 257.617633][ T9735] FAULT_INJECTION: forcing a failure. [ 257.617633][ T9735] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 257.659701][ T9736] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1377'. [ 257.660488][ T9735] CPU: 1 UID: 0 PID: 9735 Comm: syz.1.1376 Tainted: G L syzkaller #0 PREEMPT(full) [ 257.660531][ T9735] Tainted: [L]=SOFTLOCKUP [ 257.660540][ T9735] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 257.660556][ T9735] Call Trace: [ 257.660565][ T9735] [ 257.660576][ T9735] dump_stack_lvl+0x100/0x190 [ 257.660622][ T9735] should_fail_ex.cold+0x5/0xa [ 257.660653][ T9735] _copy_to_iter+0x1f3/0x1720 [ 257.660687][ T9735] ? chacha_block_generic+0x211/0x330 [ 257.660722][ T9735] ? __pfx__copy_to_iter+0x10/0x10 [ 257.660758][ T9735] ? __pfx___might_resched+0x10/0x10 [ 257.660795][ T9735] ? crng_make_state+0x2b0/0x6c0 [ 257.660828][ T9735] get_random_bytes_user+0x17b/0x3d0 [ 257.660858][ T9735] ? __pfx_get_random_bytes_user+0x10/0x10 [ 257.660893][ T9735] ? do_futex+0x192/0x350 [ 257.660934][ T9735] ? __fget_files+0x21f/0x3d0 [ 257.660958][ T9735] ? import_ubuf+0x1b6/0x220 [ 257.660989][ T9735] __x64_sys_getrandom+0x183/0x290 [ 257.661020][ T9735] ? __pfx___x64_sys_getrandom+0x10/0x10 [ 257.661066][ T9735] do_syscall_64+0x106/0xf80 [ 257.661102][ T9735] ? clear_bhb_loop+0x40/0x90 [ 257.661135][ T9735] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 257.661163][ T9735] RIP: 0033:0x7f0a2eb9c799 [ 257.661186][ T9735] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 257.661213][ T9735] RSP: 002b:00007f0a2fa36028 EFLAGS: 00000246 ORIG_RAX: 000000000000013e [ 257.661238][ T9735] RAX: ffffffffffffffda RBX: 00007f0a2ee15fa0 RCX: 00007f0a2eb9c799 [ 257.661258][ T9735] RDX: 0000000000000003 RSI: 0000000006000000 RDI: 0000000000000000 [ 257.661275][ T9735] RBP: 00007f0a2ec32c99 R08: 0000000000000000 R09: 0000000000000000 [ 257.661292][ T9735] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 257.661309][ T9735] R13: 00007f0a2ee16038 R14: 00007f0a2ee15fa0 R15: 00007ffcc5c42b18 [ 257.661345][ T9735] [ 258.309940][ T9751] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1383'. [ 258.321649][ T9751] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1383'. [ 260.966041][ T9827] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1414'. [ 261.177414][ T9825] netlink: 326 bytes leftover after parsing attributes in process `syz.1.1413'. [ 262.098030][ T9863] FAULT_INJECTION: forcing a failure. [ 262.098030][ T9863] name failslab, interval 1, probability 0, space 0, times 0 [ 262.122848][ T9863] CPU: 0 UID: 0 PID: 9863 Comm: syz.0.1427 Tainted: G L syzkaller #0 PREEMPT(full) [ 262.122894][ T9863] Tainted: [L]=SOFTLOCKUP [ 262.122903][ T9863] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 262.122919][ T9863] Call Trace: [ 262.122928][ T9863] [ 262.122938][ T9863] dump_stack_lvl+0x100/0x190 [ 262.122991][ T9863] should_fail_ex.cold+0x5/0xa [ 262.123023][ T9863] should_failslab+0xc2/0x120 [ 262.123051][ T9863] __kmalloc_cache_noprof+0x7a/0x6f0 [ 262.123086][ T9863] ? io_uring_alloc_task_context+0xa7/0x54b [ 262.123133][ T9863] io_uring_alloc_task_context+0xa7/0x54b [ 262.123174][ T9863] ? file_init_path+0x48e/0x670 [ 262.123204][ T9863] ? __pfx_io_uring_alloc_task_context+0x10/0x10 [ 262.123248][ T9863] ? alloc_file_pseudo+0x1a5/0x230 [ 262.123289][ T9863] __io_uring_add_tctx_node.cold+0x10/0x195 [ 262.123332][ T9863] ? __pfx___io_uring_add_tctx_node+0x10/0x10 [ 262.123362][ T9863] ? __anon_inode_getfile+0x17c/0x280 [ 262.123400][ T9863] io_uring_setup.cold+0x1a83/0x1d79 [ 262.123443][ T9863] ? __pfx_io_uring_setup+0x10/0x10 [ 262.123483][ T9863] ? __pfx_do_futex+0x10/0x10 [ 262.123528][ T9863] ? __pfx___x64_sys_futex+0x10/0x10 [ 262.123559][ T9863] ? __pfx_do_writev+0x10/0x10 [ 262.123598][ T9863] __x64_sys_io_uring_setup+0xc2/0x170 [ 262.123631][ T9863] do_syscall_64+0x106/0xf80 [ 262.123662][ T9863] ? clear_bhb_loop+0x40/0x90 [ 262.123691][ T9863] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 262.123715][ T9863] RIP: 0033:0x7f37fb99c799 [ 262.123736][ T9863] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 262.123759][ T9863] RSP: 002b:00007f37fc8f2028 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 262.123783][ T9863] RAX: ffffffffffffffda RBX: 00007f37fbc15fa0 RCX: 00007f37fb99c799 [ 262.123799][ T9863] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006 [ 262.123812][ T9863] RBP: 00007f37fba32c99 R08: 0000000000000000 R09: 0000000000000000 [ 262.123827][ T9863] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 262.123841][ T9863] R13: 00007f37fbc16038 R14: 00007f37fbc15fa0 R15: 00007fff32d65ee8 [ 262.123874][ T9863] [ 262.920303][ T9886] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1437'. [ 263.396436][ T9900] random: crng reseeded on system resumption [ 263.731650][ T9915] FAULT_INJECTION: forcing a failure. [ 263.731650][ T9915] name failslab, interval 1, probability 0, space 0, times 0 [ 263.764814][ T9915] CPU: 0 UID: 0 PID: 9915 Comm: syz.0.1448 Tainted: G L syzkaller #0 PREEMPT(full) [ 263.764855][ T9915] Tainted: [L]=SOFTLOCKUP [ 263.764863][ T9915] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 263.764876][ T9915] Call Trace: [ 263.764884][ T9915] [ 263.764891][ T9915] dump_stack_lvl+0x100/0x190 [ 263.764936][ T9915] should_fail_ex.cold+0x5/0xa [ 263.764966][ T9915] ? realloc_user_queue+0xe9/0x320 [ 263.764996][ T9915] should_failslab+0xc2/0x120 [ 263.765026][ T9915] __kmalloc_noprof+0xe0/0x850 [ 263.765074][ T9915] realloc_user_queue+0xe9/0x320 [ 263.765105][ T9915] ? __pfx_snd_timer_user_open+0x10/0x10 [ 263.765134][ T9915] snd_timer_user_open+0xfc/0x180 [ 263.765162][ T9915] snd_open+0x22d/0x4c0 [ 263.765189][ T9915] ? __pfx_snd_open+0x10/0x10 [ 263.765216][ T9915] chrdev_open+0x234/0x6a0 [ 263.765244][ T9915] ? __pfx_apparmor_file_open+0x10/0x10 [ 263.765298][ T9915] ? __pfx_chrdev_open+0x10/0x10 [ 263.765329][ T9915] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 263.765368][ T9915] do_dentry_open+0x6d8/0x1660 [ 263.765395][ T9915] ? __pfx_chrdev_open+0x10/0x10 [ 263.765434][ T9915] vfs_open+0x82/0x3f0 [ 263.765472][ T9915] path_openat+0x208c/0x31a0 [ 263.765510][ T9915] ? __pfx_path_openat+0x10/0x10 [ 263.765547][ T9915] do_file_open+0x20e/0x430 [ 263.765575][ T9915] ? __pfx_do_file_open+0x10/0x10 [ 263.765627][ T9915] ? alloc_fd+0x476/0x790 [ 263.765656][ T9915] ? do_getname+0x191/0x390 [ 263.765689][ T9915] do_sys_openat2+0x10d/0x1e0 [ 263.765722][ T9915] ? __pfx_do_sys_openat2+0x10/0x10 [ 263.765760][ T9915] ? __fget_files+0x21f/0x3d0 [ 263.765791][ T9915] __x64_sys_openat+0x12d/0x210 [ 263.765828][ T9915] ? __pfx___x64_sys_openat+0x10/0x10 [ 263.765874][ T9915] do_syscall_64+0x106/0xf80 [ 263.765908][ T9915] ? clear_bhb_loop+0x40/0x90 [ 263.765942][ T9915] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 263.765971][ T9915] RIP: 0033:0x7f37fb99c799 [ 263.765993][ T9915] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 263.766020][ T9915] RSP: 002b:00007f37fc8f2028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 263.766048][ T9915] RAX: ffffffffffffffda RBX: 00007f37fbc15fa0 RCX: 00007f37fb99c799 [ 263.766066][ T9915] RDX: 0000000000002000 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 263.766084][ T9915] RBP: 00007f37fba32c99 R08: 0000000000000000 R09: 0000000000000000 [ 263.766102][ T9915] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 263.766120][ T9915] R13: 00007f37fbc16038 R14: 00007f37fbc15fa0 R15: 00007fff32d65ee8 [ 263.766158][ T9915] [ 264.098316][ T9921] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1453'. [ 264.184712][ T9925] random: crng reseeded on system resumption [ 265.099235][ T9966] netlink: 130 bytes leftover after parsing attributes in process `syz.2.1471'. [ 265.797340][ T9994] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1483'. [ 266.744353][T10012] sctp: [Deprecated]: syz.1.1488 (pid 10012) Use of struct sctp_assoc_value in delayed_ack socket option. [ 266.744353][T10012] Use struct sctp_sack_info instead [ 267.070716][T10030] FAULT_INJECTION: forcing a failure. [ 267.070716][T10030] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 267.099947][T10030] CPU: 0 UID: 0 PID: 10030 Comm: syz.2.1495 Tainted: G L syzkaller #0 PREEMPT(full) [ 267.099995][T10030] Tainted: [L]=SOFTLOCKUP [ 267.100006][T10030] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 267.100023][T10030] Call Trace: [ 267.100032][T10030] [ 267.100043][T10030] dump_stack_lvl+0x100/0x190 [ 267.100090][T10030] should_fail_ex.cold+0x5/0xa [ 267.100118][T10030] ? prepare_alloc_pages+0x16d/0x5f0 [ 267.100154][T10030] should_fail_alloc_page+0xeb/0x140 [ 267.100186][T10030] prepare_alloc_pages+0x1f0/0x5f0 [ 267.100225][T10030] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 267.100280][T10030] ? __lock_acquire+0x4a5/0x2630 [ 267.100314][T10030] ? css_rstat_updated+0x1ce/0x5a0 [ 267.100348][T10030] ? __pfx_css_rstat_updated+0x10/0x10 [ 267.100378][T10030] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 267.100430][T10030] ? rcu_is_watching+0x12/0xc0 [ 267.100477][T10030] ? __lock_acquire+0x4a5/0x2630 [ 267.100522][T10030] ? __lock_acquire+0x4a5/0x2630 [ 267.100555][T10030] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 267.100604][T10030] ? policy_nodemask+0xed/0x4f0 [ 267.100637][T10030] alloc_pages_mpol+0x1fb/0x550 [ 267.100669][T10030] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 267.100699][T10030] ? find_held_lock+0x2b/0x80 [ 267.100725][T10030] ? filemap_get_entry+0x1a7/0x3b0 [ 267.100766][T10030] ? filemap_get_entry+0x1a7/0x3b0 [ 267.100811][T10030] folio_alloc_noprof+0x22/0x330 [ 267.100847][T10030] filemap_alloc_folio_noprof.part.0+0x377/0x450 [ 267.100881][T10030] ? __pfx_filemap_get_entry+0x10/0x10 [ 267.100921][T10030] ? filemap_add_folio+0x114/0x690 [ 267.100967][T10030] ? __pfx_filemap_alloc_folio_noprof.part.0+0x10/0x10 [ 267.101008][T10030] ? rcu_is_watching+0x12/0xc0 [ 267.101051][T10030] __filemap_get_folio_mpol+0x6a4/0xe70 [ 267.101104][T10030] ioctx_alloc+0x7e4/0x21d0 [ 267.101149][T10030] ? __pfx_ioctx_alloc+0x10/0x10 [ 267.101190][T10030] __x64_sys_io_setup+0xc9/0x220 [ 267.101224][T10030] do_syscall_64+0x106/0xf80 [ 267.101263][T10030] ? clear_bhb_loop+0x40/0x90 [ 267.101298][T10030] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 267.101327][T10030] RIP: 0033:0x7f191f79c799 [ 267.101351][T10030] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 267.101380][T10030] RSP: 002b:00007f1920648028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce [ 267.101408][T10030] RAX: ffffffffffffffda RBX: 00007f191fa15fa0 RCX: 00007f191f79c799 [ 267.101428][T10030] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 000000000000ffff [ 267.101446][T10030] RBP: 00007f191f832c99 R08: 0000000000000000 R09: 0000000000000000 [ 267.101464][T10030] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 267.101482][T10030] R13: 00007f191fa16038 R14: 00007f191fa15fa0 R15: 00007ffef3b7ad88 [ 267.101528][T10030] [ 267.631677][T10038] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1498'. [ 267.661640][T10038] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 267.669578][T10038] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 267.709901][T10038] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 267.735653][T10038] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 268.191829][T10052] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 268.353608][T10058] sg_write: data in/out 4060/39 bytes for SCSI command 0x0-- guessing data in; [ 268.353608][T10058] program syz.1.1507 not setting count and/or reply_len properly [ 268.462566][T10060] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1508'. [ 269.071386][T10081] netlink: 74 bytes leftover after parsing attributes in process `syz.1.1515'. [ 269.516517][T10093] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1519'. [ 269.542928][T10093] mac80211_hwsim hwsim9 wlan1: entered promiscuous mode [ 269.554327][T10093] mac80211_hwsim hwsim9 wlan1: entered allmulticast mode [ 270.461857][T10122] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1532'. [ 270.688730][T10132] random: crng reseeded on system resumption [ 271.058249][T10138] netlink: 504 bytes leftover after parsing attributes in process `syz.1.1537'. [ 271.483436][T10145] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1539'. [ 272.410657][T10175] netlink: 'syz.0.1550': attribute type 1 has an invalid length. [ 272.434784][T10175] netlink: 318 bytes leftover after parsing attributes in process `syz.0.1550'. [ 272.970360][T10190] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1555'. [ 273.202667][T10203] netlink: 334 bytes leftover after parsing attributes in process `syz.0.1559'. [ 273.891144][T10224] netlink: 334 bytes leftover after parsing attributes in process `syz.0.1566'. [ 274.179026][T10227] FAULT_INJECTION: forcing a failure. [ 274.179026][T10227] name failslab, interval 1, probability 0, space 0, times 0 [ 274.228737][T10227] CPU: 0 UID: 0 PID: 10227 Comm: syz.2.1568 Tainted: G L syzkaller #0 PREEMPT(full) [ 274.228785][T10227] Tainted: [L]=SOFTLOCKUP [ 274.228795][T10227] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 274.228812][T10227] Call Trace: [ 274.228821][T10227] [ 274.228831][T10227] dump_stack_lvl+0x100/0x190 [ 274.228878][T10227] should_fail_ex.cold+0x5/0xa [ 274.228912][T10227] should_failslab+0xc2/0x120 [ 274.228942][T10227] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 274.228982][T10227] ? alloc_inode+0x183/0x250 [ 274.229017][T10227] ? find_inode_fast+0x1fa/0x910 [ 274.229057][T10227] alloc_inode+0x183/0x250 [ 274.229093][T10227] iget_locked+0x1d9/0x6d0 [ 274.229129][T10227] ? __pfx_iget_locked+0x10/0x10 [ 274.229161][T10227] ? kernfs_root+0xee/0x2a0 [ 274.229196][T10227] ? kernfs_root+0xee/0x2a0 [ 274.229242][T10227] kernfs_get_inode+0x46/0x470 [ 274.229288][T10227] kernfs_iop_lookup+0x1a7/0x2d0 [ 274.229332][T10227] __lookup_slow+0x251/0x460 [ 274.229369][T10227] ? __pfx___lookup_slow+0x10/0x10 [ 274.229424][T10227] ? __d_lookup+0x266/0x4a0 [ 274.229471][T10227] lookup_slow+0x50/0x70 [ 274.229505][T10227] link_path_walk+0x1377/0x1cc0 [ 274.229560][T10227] path_openat+0x1be/0x31a0 [ 274.229586][T10227] ? kasan_save_stack+0x3f/0x50 [ 274.229625][T10227] ? kasan_save_stack+0x30/0x50 [ 274.229663][T10227] ? kasan_save_track+0x14/0x30 [ 274.229703][T10227] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 274.229752][T10227] ? __pfx_path_openat+0x10/0x10 [ 274.229795][T10227] do_file_open+0x20e/0x430 [ 274.229827][T10227] ? __pfx_do_file_open+0x10/0x10 [ 274.229883][T10227] ? alloc_fd+0x476/0x790 [ 274.229914][T10227] ? do_getname+0x191/0x390 [ 274.229951][T10227] do_sys_openat2+0x10d/0x1e0 [ 274.229987][T10227] ? __pfx_do_sys_openat2+0x10/0x10 [ 274.230037][T10227] __x64_sys_openat+0x12d/0x210 [ 274.230074][T10227] ? __pfx___x64_sys_openat+0x10/0x10 [ 274.230125][T10227] do_syscall_64+0x106/0xf80 [ 274.230160][T10227] ? clear_bhb_loop+0x40/0x90 [ 274.230196][T10227] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 274.230225][T10227] RIP: 0033:0x7f191f79c799 [ 274.230253][T10227] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 274.230282][T10227] RSP: 002b:00007f1920648028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 274.230309][T10227] RAX: ffffffffffffffda RBX: 00007f191fa15fa0 RCX: 00007f191f79c799 [ 274.230329][T10227] RDX: 0000000000002400 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 274.230347][T10227] RBP: 00007f191f832c99 R08: 0000000000000000 R09: 0000000000000000 [ 274.230365][T10227] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 274.230380][T10227] R13: 00007f191fa16038 R14: 00007f191fa15fa0 R15: 00007ffef3b7ad88 [ 274.230419][T10227] [ 274.625198][T10240] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1571'. [ 275.455149][T10254] netlink: 74 bytes leftover after parsing attributes in process `syz.0.1579'. [ 278.762062][T10319] netlink: 334 bytes leftover after parsing attributes in process `syz.0.1608'. [ 280.685865][T10369] netlink: 21 bytes leftover after parsing attributes in process `syz.2.1621'. [ 281.168861][T10384] netlink: 'syz.0.1627': attribute type 4 has an invalid length. [ 281.182913][T10384] netlink: 314 bytes leftover after parsing attributes in process `syz.0.1627'. [ 281.308390][T10386] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1628'. [ 281.708642][T10397] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1633'. [ 281.905695][T10401] netlink: 346 bytes leftover after parsing attributes in process `syz.3.1635'. [ 282.790456][T10436] FAULT_INJECTION: forcing a failure. [ 282.790456][T10436] name failslab, interval 1, probability 0, space 0, times 0 [ 282.805335][T10436] CPU: 1 UID: 0 PID: 10436 Comm: syz.2.1650 Tainted: G L syzkaller #0 PREEMPT(full) [ 282.805379][T10436] Tainted: [L]=SOFTLOCKUP [ 282.805389][T10436] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 282.805406][T10436] Call Trace: [ 282.805414][T10436] [ 282.805424][T10436] dump_stack_lvl+0x100/0x190 [ 282.805470][T10436] should_fail_ex.cold+0x5/0xa [ 282.805502][T10436] should_failslab+0xc2/0x120 [ 282.805530][T10436] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 282.805568][T10436] ? mpol_new+0x11b/0x2d0 [ 282.805613][T10436] mpol_new+0x11b/0x2d0 [ 282.805655][T10436] do_mbind+0x210/0xfd0 [ 282.805693][T10436] ? __pfx_do_mbind+0x10/0x10 [ 282.805725][T10436] ? __lock_acquire+0x4a5/0x2630 [ 282.805773][T10436] ? __pfx_get_nodes+0x10/0x10 [ 282.805808][T10436] ? find_held_lock+0x2b/0x80 [ 282.805839][T10436] kernel_mbind+0x1b7/0x200 [ 282.805875][T10436] ? __pfx_kernel_mbind+0x10/0x10 [ 282.805925][T10436] do_syscall_64+0x106/0xf80 [ 282.805961][T10436] ? clear_bhb_loop+0x40/0x90 [ 282.805995][T10436] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 282.806024][T10436] RIP: 0033:0x7f191f79c799 [ 282.806046][T10436] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 282.806072][T10436] RSP: 002b:00007f1920648028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed [ 282.806098][T10436] RAX: ffffffffffffffda RBX: 00007f191fa15fa0 RCX: 00007f191f79c799 [ 282.806116][T10436] RDX: 0000000000000004 RSI: 00000000002091d2 RDI: 0000000000000000 [ 282.806133][T10436] RBP: 00007f191f832c99 R08: 0000000000000006 R09: 0000000000000002 [ 282.806149][T10436] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 282.806165][T10436] R13: 00007f191fa16038 R14: 00007f191fa15fa0 R15: 00007ffef3b7ad88 [ 282.806203][T10436] [ 283.305852][T10459] netlink: 346 bytes leftover after parsing attributes in process `syz.2.1659'. [ 283.393588][T10466] vivid-007: ================= START STATUS ================= [ 283.401431][T10466] vivid-007: Generate PTS: true [ 283.409130][T10466] vivid-007: Generate SCR: true [ 283.417434][T10466] tpg source WxH: 320x240 (Y'CbCr) [ 283.423658][T10466] tpg field: 1 [ 283.427409][T10466] tpg crop: (0,0)/320x240 [ 283.431867][T10466] tpg compose: (0,0)/320x240 [ 283.439239][T10466] tpg colorspace: 8 [ 283.445706][T10466] tpg transfer function: 0/0 [ 283.450410][T10466] tpg Y'CbCr encoding: 0/0 [ 283.456058][T10466] tpg quantization: 0/0 [ 283.461565][T10466] tpg RGB range: 0/2 [ 283.466361][T10466] vivid-007: ================== END STATUS ================== [ 283.551495][T10472] netlink: 334 bytes leftover after parsing attributes in process `syz.2.1664'. [ 283.990872][T10482] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1668'. [ 284.133645][T10490] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1671'. [ 284.252418][T10493] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1672'. [ 284.474840][T10501] vivid-001: ================= START STATUS ================= [ 284.498092][T10501] vivid-001: Radio HW Seek Mode: Bounded [ 284.508170][T10501] vivid-001: Radio Programmable HW Seek: false [ 284.528229][T10501] vivid-001: RDS Rx I/O Mode: Block I/O [ 284.538342][T10501] vivid-001: Generate RBDS Instead of RDS: false [ 284.558576][T10501] vivid-001: RDS Reception: true [ 284.577564][T10501] vivid-001: RDS Program Type: 0 inactive [ 284.584071][T10507] netlink: 'syz.2.1679': attribute type 22 has an invalid length. [ 284.613065][T10501] vivid-001: RDS PS Name: inactive [ 284.622858][T10501] vivid-001: RDS Radio Text: inactive [ 284.643975][T10501] vivid-001: RDS Traffic Announcement: false inactive [ 284.650804][T10501] vivid-001: RDS Traffic Program: false inactive [ 284.677318][T10501] vivid-001: RDS Music: false inactive [ 284.723570][T10501] vivid-001: ================== END STATUS ================== [ 286.184887][T10552] __nla_validate_parse: 1 callbacks suppressed [ 286.184911][T10552] netlink: 130 bytes leftover after parsing attributes in process `syz.3.1695'. [ 287.702479][T10587] blktrace: Concurrent blktraces are not allowed on nbd8 [ 287.870513][T10593] vcan0: tx drop: invalid da for name 0x000000000000003f [ 288.254724][T10600] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1713'. [ 288.265782][T10602] syz.1.1714 (10602) used greatest stack depth: 17560 bytes left [ 288.595335][T10612] blktrace: Concurrent blktraces are not allowed on nbd8 [ 288.711081][T10617] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1720'. [ 288.750689][T10620] netlink: 330 bytes leftover after parsing attributes in process `syz.2.1719'. [ 288.838112][T10622] FAULT_INJECTION: forcing a failure. [ 288.838112][T10622] name failslab, interval 1, probability 0, space 0, times 0 [ 288.859650][T10622] CPU: 1 UID: 0 PID: 10622 Comm: syz.2.1722 Tainted: G L syzkaller #0 PREEMPT(full) [ 288.859695][T10622] Tainted: [L]=SOFTLOCKUP [ 288.859705][T10622] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 288.859721][T10622] Call Trace: [ 288.859730][T10622] [ 288.859740][T10622] dump_stack_lvl+0x100/0x190 [ 288.859785][T10622] should_fail_ex.cold+0x5/0xa [ 288.859830][T10622] should_failslab+0xc2/0x120 [ 288.859862][T10622] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 288.859904][T10622] ? vm_area_alloc+0x1f/0x160 [ 288.859938][T10622] ? vma_merge_new_range+0x38b/0xa30 [ 288.859975][T10622] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 288.860022][T10622] vm_area_alloc+0x1f/0x160 [ 288.860057][T10622] __mmap_region+0x10cc/0x29e0 [ 288.860102][T10622] ? __pfx___mmap_region+0x10/0x10 [ 288.860184][T10622] ? is_bpf_text_address+0x94/0x1a0 [ 288.860226][T10622] ? kernel_text_address+0x8d/0x100 [ 288.860265][T10622] ? __kernel_text_address+0xd/0x30 [ 288.860313][T10622] ? __pfx_hugetlb_file_mmap_prepare_success+0x10/0x10 [ 288.860365][T10622] ? stack_trace_save+0x8e/0xc0 [ 288.860441][T10622] ? rcu_is_watching+0x12/0xc0 [ 288.860479][T10622] ? cap_capable+0x107/0x460 [ 288.860525][T10622] mmap_region+0x180/0x3e0 [ 288.860571][T10622] do_mmap+0xc63/0x12f0 [ 288.860608][T10622] ? __pfx_do_mmap+0x10/0x10 [ 288.860638][T10622] ? __pfx_down_write_killable+0x10/0x10 [ 288.860689][T10622] vm_mmap_pgoff+0x29e/0x470 [ 288.860727][T10622] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 288.860754][T10622] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 288.860791][T10622] ? hugetlbfs_get_inode+0x36e/0x750 [ 288.860839][T10622] ksys_mmap_pgoff+0x273/0x650 [ 288.860870][T10622] ? __x64_sys_futex+0x358/0x4d0 [ 288.860907][T10622] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 288.860936][T10622] ? xfd_validate_state+0x129/0x190 [ 288.860981][T10622] __x64_sys_mmap+0x125/0x190 [ 288.861023][T10622] do_syscall_64+0x106/0xf80 [ 288.861059][T10622] ? clear_bhb_loop+0x40/0x90 [ 288.861093][T10622] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 288.861121][T10622] RIP: 0033:0x7f191f79c799 [ 288.861144][T10622] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 288.861172][T10622] RSP: 002b:00007f1920648028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 288.861200][T10622] RAX: ffffffffffffffda RBX: 00007f191fa15fa0 RCX: 00007f191f79c799 [ 288.861218][T10622] RDX: 0000000000000002 RSI: 0000000000000006 RDI: 0000000000000000 [ 288.861234][T10622] RBP: 00007f191f832c99 R08: ffffffffffffffff R09: 0000308000000000 [ 288.861252][T10622] R10: 0000000000040eb2 R11: 0000000000000246 R12: 0000000000000000 [ 288.861269][T10622] R13: 00007f191fa16038 R14: 00007f191fa15fa0 R15: 00007ffef3b7ad88 [ 288.861307][T10622] [ 290.660824][T10662] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 291.015129][T10672] netlink: 142 bytes leftover after parsing attributes in process `syz.1.1739'. [ 291.258179][T10682] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1744'. [ 291.299916][T10684] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1745'. [ 291.939159][T10700] netlink: 146 bytes leftover after parsing attributes in process `syz.2.1752'. [ 292.207462][T10716] netlink: 334 bytes leftover after parsing attributes in process `syz.0.1757'. [ 294.131975][T10763] syz.1.1782 uses obsolete (PF_INET,SOCK_PACKET) [ 294.181155][T10766] ima: policy update failed [ 294.207390][ T30] audit: type=1802 audit(1773515257.300:10): pid=10766 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.1776" res=0 errno=0 [ 295.289927][T10811] netlink: 'syz.0.1791': attribute type 16 has an invalid length. [ 295.323332][T10811] netlink: 306 bytes leftover after parsing attributes in process `syz.0.1791'. [ 295.514689][T10819] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1797'. [ 295.895401][T10838] netlink: 334 bytes leftover after parsing attributes in process `syz.2.1804'. [ 297.308228][T10886] kvm: kvm [10885]: vcpu2, guest rIP: 0xfff0 Unhandled WRMSR(0x11e) = 0x1 [ 297.824306][T10903] netlink: 302 bytes leftover after parsing attributes in process `syz.3.1831'. [ 298.534005][T10914] ima: policy update failed [ 298.548978][ T30] audit: type=1802 audit(1773515261.650:11): pid=10914 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.1841" res=0 errno=0 [ 298.600604][T10918] process 'syz.1.1835' launched './file0' with NULL argv: empty string added [ 299.002930][T10930] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1840'. [ 299.012387][T10930] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1840'. [ 300.213755][T10952] netlink: 'syz.3.1849': attribute type 4 has an invalid length. [ 301.119445][T10972] ovs_: entered promiscuous mode [ 301.803146][T10993] netlink: 146 bytes leftover after parsing attributes in process `syz.3.1866'. [ 302.982677][T11027] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1875'. [ 304.037920][T11042] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 304.051178][T11042] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 304.074533][T11042] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 304.099917][T11042] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 304.126789][T11042] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 304.205144][T11042] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 304.988524][T11096] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1894'. [ 305.034935][T11096] netlink: 13 bytes leftover after parsing attributes in process `syz.0.1894'. [ 305.052076][T11096] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1894'. [ 305.532895][ T5828] Bluetooth: hci1: command 0x0c1a tx timeout [ 306.093018][ T5828] Bluetooth: hci4: command 0x0c1a tx timeout [ 306.099065][ T5828] Bluetooth: hci3: command 0x0c1a tx timeout [ 306.106692][ T5830] Bluetooth: hci2: command 0x0c1a tx timeout [ 307.631616][T11176] netlink: 86 bytes leftover after parsing attributes in process `syz.2.1924'. [ 307.834845][T11191] netlink: 'syz.1.1927': attribute type 27 has an invalid length. [ 307.853101][T11191] netlink: 334 bytes leftover after parsing attributes in process `syz.1.1927'. [ 308.074478][T11198] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1931'. [ 308.113357][T11198] netlink: 25 bytes leftover after parsing attributes in process `syz.0.1931'. [ 308.186439][ T5828] Bluetooth: hci4: command 0x0c1a tx timeout [ 308.498232][T11206] netlink: 334 bytes leftover after parsing attributes in process `syz.2.1934'. [ 310.261009][ T5828] Bluetooth: hci4: command 0x0c1a tx timeout [ 310.601432][T11248] random: crng reseeded on system resumption [ 312.723253][ T5828] block nbd1: Receive control failed (result -32) [ 313.830005][T11316] FAULT_INJECTION: forcing a failure. [ 313.830005][T11316] name failslab, interval 1, probability 0, space 0, times 0 [ 313.903039][T11316] CPU: 1 UID: 0 PID: 11316 Comm: syz.2.1973 Tainted: G L syzkaller #0 PREEMPT(full) [ 313.903085][T11316] Tainted: [L]=SOFTLOCKUP [ 313.903095][T11316] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 313.903111][T11316] Call Trace: [ 313.903122][T11316] [ 313.903132][T11316] dump_stack_lvl+0x100/0x190 [ 313.903178][T11316] should_fail_ex.cold+0x5/0xa [ 313.903210][T11316] should_failslab+0xc2/0x120 [ 313.903238][T11316] __kmalloc_cache_noprof+0x7a/0x6f0 [ 313.903273][T11316] ? drm_file_alloc+0x74/0xb40 [ 313.903312][T11316] drm_file_alloc+0x74/0xb40 [ 313.903361][T11316] drm_open_helper+0x1fc/0x540 [ 313.903402][T11316] drm_open+0x1a0/0x3e0 [ 313.903432][T11316] ? __pfx_drm_open+0x10/0x10 [ 313.903464][T11316] drm_stub_open+0x20f/0x380 [ 313.903498][T11316] ? __pfx_drm_stub_open+0x10/0x10 [ 313.903529][T11316] chrdev_open+0x234/0x6a0 [ 313.903555][T11316] ? __pfx_apparmor_file_open+0x10/0x10 [ 313.903597][T11316] ? __pfx_chrdev_open+0x10/0x10 [ 313.903626][T11316] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 313.903663][T11316] do_dentry_open+0x6d8/0x1660 [ 313.903688][T11316] ? __pfx_chrdev_open+0x10/0x10 [ 313.903722][T11316] vfs_open+0x82/0x3f0 [ 313.903757][T11316] path_openat+0x208c/0x31a0 [ 313.903796][T11316] ? __pfx_path_openat+0x10/0x10 [ 313.903835][T11316] do_file_open+0x20e/0x430 [ 313.903866][T11316] ? __pfx_do_file_open+0x10/0x10 [ 313.903917][T11316] ? alloc_fd+0x476/0x790 [ 313.903947][T11316] ? do_getname+0x191/0x390 [ 313.903984][T11316] do_sys_openat2+0x10d/0x1e0 [ 313.904017][T11316] ? __pfx_do_sys_openat2+0x10/0x10 [ 313.904054][T11316] ? __fget_files+0x21f/0x3d0 [ 313.904088][T11316] __x64_sys_openat+0x12d/0x210 [ 313.904122][T11316] ? __pfx___x64_sys_openat+0x10/0x10 [ 313.904172][T11316] do_syscall_64+0x106/0xf80 [ 313.904209][T11316] ? clear_bhb_loop+0x40/0x90 [ 313.904242][T11316] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 313.904270][T11316] RIP: 0033:0x7f191f79c799 [ 313.904293][T11316] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 313.904320][T11316] RSP: 002b:00007f1920648028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 313.904358][T11316] RAX: ffffffffffffffda RBX: 00007f191fa15fa0 RCX: 00007f191f79c799 [ 313.904377][T11316] RDX: 0000000000129800 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 313.904395][T11316] RBP: 00007f191f832c99 R08: 0000000000000000 R09: 0000000000000000 [ 313.904412][T11316] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 313.904428][T11316] R13: 00007f191fa16038 R14: 00007f191fa15fa0 R15: 00007ffef3b7ad88 [ 313.904465][T11316] [ 315.370696][T11354] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1987'. [ 315.447168][T11356] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1988'. [ 315.457772][T11356] IPv6: NLM_F_CREATE should be specified when creating new route [ 317.063891][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.070251][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 321.078708][T11471] netlink: 338 bytes leftover after parsing attributes in process `syz.0.2027'. [ 323.009334][T11533] netlink: 334 bytes leftover after parsing attributes in process `syz.1.2050'. [ 323.031147][T11533] netlink: 334 bytes leftover after parsing attributes in process `syz.1.2050'. [ 323.193752][T11538] netlink: 334 bytes leftover after parsing attributes in process `syz.2.2052'. [ 323.238818][T11544] i2c i2c-0: Frontend requested software zigzag, but didn't set the frequency step size [ 324.849335][T11589] FAULT_INJECTION: forcing a failure. [ 324.849335][T11589] name failslab, interval 1, probability 0, space 0, times 0 [ 324.872915][T11589] CPU: 1 UID: 0 PID: 11589 Comm: syz.1.2065 Tainted: G L syzkaller #0 PREEMPT(full) [ 324.872963][T11589] Tainted: [L]=SOFTLOCKUP [ 324.872973][T11589] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 324.872989][T11589] Call Trace: [ 324.872997][T11589] [ 324.873008][T11589] dump_stack_lvl+0x100/0x190 [ 324.873054][T11589] should_fail_ex.cold+0x5/0xa [ 324.873087][T11589] ? lsm_blob_alloc+0x68/0x90 [ 324.873123][T11589] should_failslab+0xc2/0x120 [ 324.873153][T11589] __kmalloc_noprof+0xe0/0x850 [ 324.873192][T11589] ? down_write_nested+0x14f/0x200 [ 324.873238][T11589] lsm_blob_alloc+0x68/0x90 [ 324.873273][T11589] security_sb_alloc+0x25/0x240 [ 324.873315][T11589] alloc_super+0x24c/0xd20 [ 324.873360][T11589] ? __pfx_mqueue_fill_super+0x10/0x10 [ 324.873398][T11589] sget_fc+0x117/0xc70 [ 324.873438][T11589] ? __pfx_set_anon_super_fc+0x10/0x10 [ 324.873477][T11589] ? __pfx_mqueue_fill_super+0x10/0x10 [ 324.873515][T11589] get_tree_nodev+0x28/0x190 [ 324.873555][T11589] mqueue_get_tree+0xf1/0x130 [ 324.873594][T11589] vfs_get_tree+0x92/0x320 [ 324.873632][T11589] fc_mount_longterm+0x1a/0x270 [ 324.873673][T11589] mq_init_ns+0x482/0x820 [ 324.873703][T11589] copy_ipcs+0x3dd/0x7e0 [ 324.873734][T11589] create_new_namespaces+0x20a/0xac0 [ 324.873772][T11589] ? security_capable+0x80/0x260 [ 324.873819][T11589] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 324.873853][T11589] ksys_unshare+0x473/0xad0 [ 324.873890][T11589] ? __pfx_ksys_unshare+0x10/0x10 [ 324.873938][T11589] __x64_sys_unshare+0x31/0x40 [ 324.873971][T11589] do_syscall_64+0x106/0xf80 [ 324.874008][T11589] ? clear_bhb_loop+0x40/0x90 [ 324.874044][T11589] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 324.874073][T11589] RIP: 0033:0x7f0a2eb9c799 [ 324.874095][T11589] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 324.874123][T11589] RSP: 002b:00007f0a2fa36028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 324.874151][T11589] RAX: ffffffffffffffda RBX: 00007f0a2ee15fa0 RCX: 00007f0a2eb9c799 [ 324.874170][T11589] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000006c000000 [ 324.874187][T11589] RBP: 00007f0a2ec32c99 R08: 0000000000000000 R09: 0000000000000000 [ 324.874204][T11589] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 324.874221][T11589] R13: 00007f0a2ee16038 R14: 00007f0a2ee15fa0 R15: 00007ffcc5c42b18 [ 324.874259][T11589] [ 325.883445][T11614] netlink: 'syz.3.2075': attribute type 29 has an invalid length. [ 325.905666][T11614] netlink: 334 bytes leftover after parsing attributes in process `syz.3.2075'. [ 326.278008][T11623] FAULT_INJECTION: forcing a failure. [ 326.278008][T11623] name failslab, interval 1, probability 0, space 0, times 0 [ 326.300585][T11623] CPU: 1 UID: 0 PID: 11623 Comm: syz.2.2078 Tainted: G L syzkaller #0 PREEMPT(full) [ 326.300640][T11623] Tainted: [L]=SOFTLOCKUP [ 326.300650][T11623] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 326.300667][T11623] Call Trace: [ 326.300677][T11623] [ 326.300688][T11623] dump_stack_lvl+0x100/0x190 [ 326.300736][T11623] should_fail_ex.cold+0x5/0xa [ 326.300770][T11623] should_failslab+0xc2/0x120 [ 326.300800][T11623] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 326.300843][T11623] ? security_file_alloc+0x34/0x2c0 [ 326.300876][T11623] ? trace_kmem_cache_alloc+0xf3/0x120 [ 326.300912][T11623] security_file_alloc+0x34/0x2c0 [ 326.300947][T11623] init_file+0x95/0x480 [ 326.300980][T11623] alloc_empty_file+0x73/0x1c0 [ 326.301014][T11623] alloc_file_pseudo+0x13a/0x230 [ 326.301051][T11623] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 326.301086][T11623] ? tipc_sk_finish_conn+0x600/0x7a0 [ 326.301135][T11623] sock_alloc_file+0x50/0x210 [ 326.301178][T11623] __sys_socketpair+0x321/0x5b0 [ 326.301212][T11623] ? __pfx___sys_socketpair+0x10/0x10 [ 326.301241][T11623] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 326.301270][T11623] ? xfd_validate_state+0x129/0x190 [ 326.301318][T11623] __x64_sys_socketpair+0x96/0x100 [ 326.301349][T11623] ? lockdep_hardirqs_on+0x78/0x100 [ 326.301387][T11623] do_syscall_64+0x106/0xf80 [ 326.301422][T11623] ? clear_bhb_loop+0x40/0x90 [ 326.301456][T11623] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 326.301485][T11623] RIP: 0033:0x7f191f79c799 [ 326.301507][T11623] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 326.301536][T11623] RSP: 002b:00007f1920648028 EFLAGS: 00000246 ORIG_RAX: 0000000000000035 [ 326.301563][T11623] RAX: ffffffffffffffda RBX: 00007f191fa15fa0 RCX: 00007f191f79c799 [ 326.301582][T11623] RDX: 8000000000000000 RSI: 0000000000000005 RDI: 000000000000001e [ 326.301600][T11623] RBP: 00007f191f832c99 R08: 0000000000000000 R09: 0000000000000000 [ 326.301617][T11623] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 326.301641][T11623] R13: 00007f191fa16038 R14: 00007f191fa15fa0 R15: 00007ffef3b7ad88 [ 326.301679][T11623] [ 326.781140][T11633] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2083'. [ 327.057441][T11643] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2086'. [ 327.698077][T11668] FAULT_INJECTION: forcing a failure. [ 327.698077][T11668] name failslab, interval 1, probability 0, space 0, times 0 [ 327.739414][T11668] CPU: 1 UID: 0 PID: 11668 Comm: syz.2.2095 Tainted: G L syzkaller #0 PREEMPT(full) [ 327.739459][T11668] Tainted: [L]=SOFTLOCKUP [ 327.739468][T11668] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 327.739499][T11668] Call Trace: [ 327.739509][T11668] [ 327.739519][T11668] dump_stack_lvl+0x100/0x190 [ 327.739565][T11668] should_fail_ex.cold+0x5/0xa [ 327.739597][T11668] ? constrain_params_by_rules+0x175/0xcc0 [ 327.739634][T11668] should_failslab+0xc2/0x120 [ 327.739663][T11668] __kmalloc_noprof+0xe0/0x850 [ 327.739714][T11668] constrain_params_by_rules+0x175/0xcc0 [ 327.739751][T11668] ? arch_stack_walk+0xa6/0xf0 [ 327.739793][T11668] ? __pfx_constrain_params_by_rules+0x10/0x10 [ 327.739828][T11668] ? stack_trace_save+0x8e/0xc0 [ 327.739862][T11668] ? kfree+0x1f6/0x6b0 [ 327.739891][T11668] ? snd_pcm_hw_param_near.constprop.0+0x573/0x850 [ 327.739933][T11668] ? snd_pcm_oss_make_ready_locked+0xb7/0x130 [ 327.739965][T11668] ? snd_pcm_oss_read+0x3d4/0x730 [ 327.739994][T11668] ? vfs_read+0x1e4/0xb30 [ 327.740033][T11668] ? ksys_read+0x12a/0x250 [ 327.740071][T11668] ? do_syscall_64+0x106/0xf80 [ 327.740107][T11668] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 327.740136][T11668] ? snd_interval_refine+0x2d0/0x580 [ 327.740178][T11668] snd_pcm_hw_refine+0x7e7/0xad0 [ 327.740220][T11668] ? __pfx_snd_pcm_hw_refine+0x10/0x10 [ 327.740279][T11668] snd_pcm_hw_param_last+0x2b2/0x660 [ 327.740319][T11668] snd_pcm_hw_param_near.constprop.0+0x546/0x850 [ 327.740358][T11668] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 327.740392][T11668] ? calc_src_frames.isra.0+0x17c/0x1c0 [ 327.740435][T11668] snd_pcm_oss_change_params_locked+0x193a/0x39f0 [ 327.740495][T11668] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 327.740560][T11668] snd_pcm_oss_make_ready_locked+0xb7/0x130 [ 327.740597][T11668] snd_pcm_oss_read+0x3d4/0x730 [ 327.740636][T11668] ? __pfx_snd_pcm_oss_read+0x10/0x10 [ 327.740681][T11668] vfs_read+0x1e4/0xb30 [ 327.740727][T11668] ? __pfx_vfs_read+0x10/0x10 [ 327.740767][T11668] ? find_held_lock+0x2b/0x80 [ 327.740793][T11668] ? __fget_files+0x215/0x3d0 [ 327.740819][T11668] ? __fget_files+0x215/0x3d0 [ 327.740852][T11668] ? __fget_files+0x21f/0x3d0 [ 327.740889][T11668] ksys_read+0x12a/0x250 [ 327.740930][T11668] ? __pfx_ksys_read+0x10/0x10 [ 327.740982][T11668] do_syscall_64+0x106/0xf80 [ 327.741018][T11668] ? clear_bhb_loop+0x40/0x90 [ 327.741051][T11668] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 327.741080][T11668] RIP: 0033:0x7f191f79c799 [ 327.741103][T11668] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 327.741132][T11668] RSP: 002b:00007f1920648028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 327.741158][T11668] RAX: ffffffffffffffda RBX: 00007f191fa15fa0 RCX: 00007f191f79c799 [ 327.741177][T11668] RDX: 0000000000008080 RSI: 0000000000000000 RDI: 0000000000000003 [ 327.741195][T11668] RBP: 00007f191f832c99 R08: 0000000000000000 R09: 0000000000000000 [ 327.741213][T11668] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 327.741230][T11668] R13: 00007f191fa16038 R14: 00007f191fa15fa0 R15: 00007ffef3b7ad88 [ 327.741268][T11668] [ 328.427842][T11694] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2107'. [ 330.693168][T11761] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2128'. [ 330.715705][T11761] netlink: 17 bytes leftover after parsing attributes in process `syz.2.2128'. [ 331.337755][T11781] netlink: 334 bytes leftover after parsing attributes in process `syz.2.2134'. [ 331.425305][T11785] Console: switching to colour VGA+ 80x25 [ 331.538558][T11785] Console: switching to colour frame buffer device 128x48 [ 332.957568][T11817] FAULT_INJECTION: forcing a failure. [ 332.957568][T11817] name failslab, interval 1, probability 0, space 0, times 0 [ 332.984470][T11817] CPU: 0 UID: 0 PID: 11817 Comm: syz.1.2147 Tainted: G L syzkaller #0 PREEMPT(full) [ 332.984516][T11817] Tainted: [L]=SOFTLOCKUP [ 332.984526][T11817] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 332.984543][T11817] Call Trace: [ 332.984552][T11817] [ 332.984562][T11817] dump_stack_lvl+0x100/0x190 [ 332.984609][T11817] should_fail_ex.cold+0x5/0xa [ 332.984643][T11817] should_failslab+0xc2/0x120 [ 332.984672][T11817] __kmalloc_node_noprof+0xe6/0x850 [ 332.984710][T11817] ? user_buffer_init+0x2a1/0x6d0 [ 332.984761][T11817] user_buffer_init+0x2a1/0x6d0 [ 332.984807][T11817] tracing_mark_open+0x1b7/0x240 [ 332.984853][T11817] do_dentry_open+0x6d8/0x1660 [ 332.984881][T11817] ? __pfx_tracing_mark_open+0x10/0x10 [ 332.984933][T11817] vfs_open+0x82/0x3f0 [ 332.984978][T11817] path_openat+0x208c/0x31a0 [ 332.985021][T11817] ? __pfx_path_openat+0x10/0x10 [ 332.985065][T11817] do_file_open+0x20e/0x430 [ 332.985098][T11817] ? __pfx_do_file_open+0x10/0x10 [ 332.985156][T11817] ? alloc_fd+0x476/0x790 [ 332.985188][T11817] ? do_getname+0x191/0x390 [ 332.985225][T11817] do_sys_openat2+0x10d/0x1e0 [ 332.985261][T11817] ? __pfx_do_sys_openat2+0x10/0x10 [ 332.985311][T11817] __x64_sys_openat+0x12d/0x210 [ 332.985348][T11817] ? __pfx___x64_sys_openat+0x10/0x10 [ 332.985400][T11817] do_syscall_64+0x106/0xf80 [ 332.985436][T11817] ? clear_bhb_loop+0x40/0x90 [ 332.985470][T11817] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 332.985499][T11817] RIP: 0033:0x7f0a2eb9c799 [ 332.985522][T11817] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 332.985550][T11817] RSP: 002b:00007f0a2fa36028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 332.985577][T11817] RAX: ffffffffffffffda RBX: 00007f0a2ee15fa0 RCX: 00007f0a2eb9c799 [ 332.985596][T11817] RDX: 0000000000000043 RSI: 0000200000000280 RDI: ffffffffffffff9c [ 332.985614][T11817] RBP: 00007f0a2ec32c99 R08: 0000000000000000 R09: 0000000000000000 [ 332.985632][T11817] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 332.985649][T11817] R13: 00007f0a2ee16038 R14: 00007f0a2ee15fa0 R15: 00007ffcc5c42b18 [ 332.985689][T11817] [ 333.408270][T11819] netlink: 330 bytes leftover after parsing attributes in process `syz.3.2152'. [ 333.621576][T11833] netlink: 'syz.2.2156': attribute type 4 has an invalid length. [ 333.745131][T11837] netlink: 334 bytes leftover after parsing attributes in process `syz.2.2157'. [ 333.917697][T11839] sg_write: data in/out 1886744398/84 bytes for SCSI command 0x72-- guessing data in; [ 333.917697][T11839] program syz.2.2158 not setting count and/or reply_len properly [ 334.077438][T11844] netlink: 334 bytes leftover after parsing attributes in process `syz.2.2160'. [ 334.266032][T11850] sg_write: data in/out 81/90 bytes for SCSI command 0x0-- guessing data in; [ 334.266032][T11850] program syz.0.2163 not setting count and/or reply_len properly [ 334.460218][T11857] FAULT_INJECTION: forcing a failure. [ 334.460218][T11857] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 334.513106][T11857] CPU: 0 UID: 0 PID: 11857 Comm: syz.0.2164 Tainted: G L syzkaller #0 PREEMPT(full) [ 334.513151][T11857] Tainted: [L]=SOFTLOCKUP [ 334.513162][T11857] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 334.513179][T11857] Call Trace: [ 334.513188][T11857] [ 334.513199][T11857] dump_stack_lvl+0x100/0x190 [ 334.513246][T11857] should_fail_ex.cold+0x5/0xa [ 334.513271][T11857] ? prepare_alloc_pages+0x16d/0x5f0 [ 334.513327][T11857] should_fail_alloc_page+0xeb/0x140 [ 334.513356][T11857] prepare_alloc_pages+0x1f0/0x5f0 [ 334.513390][T11857] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 334.513428][T11857] ? ima_match_policy+0x8c4/0x2350 [ 334.513455][T11857] ? ima_match_policy+0x8c4/0x2350 [ 334.513486][T11857] ? __lock_acquire+0x4a5/0x2630 [ 334.513523][T11857] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 334.513558][T11857] ? __lock_acquire+0x4a5/0x2630 [ 334.513587][T11857] ? look_up_lock_class+0x55/0x120 [ 334.513621][T11857] ? register_lock_class+0x40/0x560 [ 334.513658][T11857] ? lock_acquire+0x1cf/0x380 [ 334.513692][T11857] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 334.513735][T11857] ? policy_nodemask+0xed/0x4f0 [ 334.513763][T11857] alloc_pages_mpol+0x1fb/0x550 [ 334.513789][T11857] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 334.513815][T11857] ? __pfx___pollwait+0x10/0x10 [ 334.513849][T11857] ? mark_held_locks+0x40/0x70 [ 334.513882][T11857] alloc_pages_noprof+0x131/0x390 [ 334.513909][T11857] ? __pfx___pollwait+0x10/0x10 [ 334.513941][T11857] get_free_pages_noprof+0x10/0xb0 [ 334.513965][T11857] __pollwait+0x29a/0x470 [ 334.513997][T11857] ? __pfx___pollwait+0x10/0x10 [ 334.514033][T11857] ? __pfx___pollwait+0x10/0x10 [ 334.514066][T11857] vb2_poll+0x8c/0xe0 [ 334.514103][T11857] vb2_fop_poll+0x10e/0x350 [ 334.514142][T11857] ? __pfx_vb2_fop_poll+0x10/0x10 [ 334.514178][T11857] v4l2_poll+0x15f/0x220 [ 334.514213][T11857] ? __pfx_v4l2_poll+0x10/0x10 [ 334.514246][T11857] do_sys_poll+0x6e5/0xeb0 [ 334.514279][T11857] ? lockdep_hardirqs_on+0x78/0x100 [ 334.514334][T11857] ? __pfx_do_sys_poll+0x10/0x10 [ 334.514371][T11857] ? __lock_acquire+0x4a5/0x2630 [ 334.514430][T11857] ? futex_unqueue+0x13d/0x2c0 [ 334.514460][T11857] ? __pfx___pollwait+0x10/0x10 [ 334.514500][T11857] ? __pfx_pollwake+0x10/0x10 [ 334.514537][T11857] ? __pfx_pollwake+0x10/0x10 [ 334.514575][T11857] ? __pfx_pollwake+0x10/0x10 [ 334.514611][T11857] ? __pfx_pollwake+0x10/0x10 [ 334.514648][T11857] ? __pfx_pollwake+0x10/0x10 [ 334.514685][T11857] ? __pfx_pollwake+0x10/0x10 [ 334.514723][T11857] ? __pfx_pollwake+0x10/0x10 [ 334.514759][T11857] ? __pfx_pollwake+0x10/0x10 [ 334.514796][T11857] ? __pfx_pollwake+0x10/0x10 [ 334.514835][T11857] ? do_futex+0x192/0x350 [ 334.514863][T11857] ? set_user_sigmask+0x1e1/0x270 [ 334.514900][T11857] ? __pfx_set_user_sigmask+0x10/0x10 [ 334.514935][T11857] ? __pfx___might_resched+0x10/0x10 [ 334.514968][T11857] ? blkcg_maybe_throttle_current+0x5df/0xeb0 [ 334.515008][T11857] __x64_sys_ppoll+0x2b5/0x350 [ 334.515035][T11857] ? __pfx___x64_sys_ppoll+0x10/0x10 [ 334.515071][T11857] do_syscall_64+0x106/0xf80 [ 334.515102][T11857] ? clear_bhb_loop+0x40/0x90 [ 334.515132][T11857] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 334.515157][T11857] RIP: 0033:0x7f37fb99c799 [ 334.515178][T11857] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 334.515202][T11857] RSP: 002b:00007f37fc8f2028 EFLAGS: 00000246 ORIG_RAX: 000000000000010f [ 334.515227][T11857] RAX: ffffffffffffffda RBX: 00007f37fbc15fa0 RCX: 00007f37fb99c799 [ 334.515243][T11857] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000200000000200 [ 334.515259][T11857] RBP: 00007f37fba32c99 R08: 0000000000000008 R09: 0000000000000000 [ 334.515274][T11857] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 334.515289][T11857] R13: 00007f37fbc16038 R14: 00007f37fbc15fa0 R15: 00007fff32d65ee8 [ 334.515328][T11857] [ 335.379787][T11878] netlink: 334 bytes leftover after parsing attributes in process `syz.1.2175'. [ 336.871667][T11912] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2188'. [ 337.617822][T11939] FAULT_INJECTION: forcing a failure. [ 337.617822][T11939] name failslab, interval 1, probability 0, space 0, times 0 [ 337.672886][T11939] CPU: 0 UID: 0 PID: 11939 Comm: syz.0.2199 Tainted: G L syzkaller #0 PREEMPT(full) [ 337.672931][T11939] Tainted: [L]=SOFTLOCKUP [ 337.672941][T11939] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 337.672958][T11939] Call Trace: [ 337.672968][T11939] [ 337.672980][T11939] dump_stack_lvl+0x100/0x190 [ 337.673028][T11939] should_fail_ex.cold+0x5/0xa [ 337.673063][T11939] should_failslab+0xc2/0x120 [ 337.673093][T11939] __kvmalloc_node_noprof+0xfa/0xa00 [ 337.673135][T11939] ? v4l2_ctrl_new+0x4a6/0x23a0 [ 337.673187][T11939] v4l2_ctrl_new+0x4a6/0x23a0 [ 337.673241][T11939] ? __pfx_v4l2_ctrl_new+0x10/0x10 [ 337.673280][T11939] ? __pfx_v4l2_ctrl_new+0x10/0x10 [ 337.673337][T11939] v4l2_ctrl_new_std+0x1bb/0x290 [ 337.673389][T11939] ? __pfx_v4l2_ctrl_new_std+0x10/0x10 [ 337.673429][T11939] ? __pfx_v4l2_ctrl_new_std+0x10/0x10 [ 337.673473][T11939] ? trace_kmalloc+0x101/0x130 [ 337.673512][T11939] ? v4l2_ctrl_handler_init_class+0x201/0x350 [ 337.673555][T11939] ? lockdep_set_lock_cmp_fn+0x60/0xe0 [ 337.673594][T11939] ? media_request_object_init+0x105/0x180 [ 337.673638][T11939] vim2m_open+0x164/0x830 [ 337.673680][T11939] v4l2_open+0x1d2/0x490 [ 337.673721][T11939] ? __pfx_v4l2_open+0x10/0x10 [ 337.673761][T11939] chrdev_open+0x234/0x6a0 [ 337.673787][T11939] ? __pfx_apparmor_file_open+0x10/0x10 [ 337.673831][T11939] ? __pfx_chrdev_open+0x10/0x10 [ 337.673861][T11939] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 337.673898][T11939] do_dentry_open+0x6d8/0x1660 [ 337.673923][T11939] ? __pfx_chrdev_open+0x10/0x10 [ 337.673959][T11939] vfs_open+0x82/0x3f0 [ 337.673999][T11939] path_openat+0x208c/0x31a0 [ 337.674039][T11939] ? __pfx_path_openat+0x10/0x10 [ 337.674082][T11939] do_file_open+0x20e/0x430 [ 337.674114][T11939] ? __pfx_do_file_open+0x10/0x10 [ 337.674171][T11939] ? alloc_fd+0x476/0x790 [ 337.674203][T11939] ? do_getname+0x191/0x390 [ 337.674240][T11939] do_sys_openat2+0x10d/0x1e0 [ 337.674275][T11939] ? __pfx_do_sys_openat2+0x10/0x10 [ 337.674313][T11939] ? __fget_files+0x21f/0x3d0 [ 337.674347][T11939] __x64_sys_openat+0x12d/0x210 [ 337.674383][T11939] ? __pfx___x64_sys_openat+0x10/0x10 [ 337.674433][T11939] do_syscall_64+0x106/0xf80 [ 337.674475][T11939] ? clear_bhb_loop+0x40/0x90 [ 337.674517][T11939] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 337.674547][T11939] RIP: 0033:0x7f37fb99c799 [ 337.674570][T11939] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 337.674597][T11939] RSP: 002b:00007f37fc8f2028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 337.674624][T11939] RAX: ffffffffffffffda RBX: 00007f37fbc15fa0 RCX: 00007f37fb99c799 [ 337.674642][T11939] RDX: 000000000002aa01 RSI: 0000200000000180 RDI: ffffffffffffff9c [ 337.674661][T11939] RBP: 00007f37fba32c99 R08: 0000000000000000 R09: 0000000000000000 [ 337.674677][T11939] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 337.674694][T11939] R13: 00007f37fbc16038 R14: 00007f37fbc15fa0 R15: 00007fff32d65ee8 [ 337.674733][T11939] [ 338.084808][T11946] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2202'. [ 338.101903][T11946] netlink: 13 bytes leftover after parsing attributes in process `syz.1.2202'. [ 338.406942][T11959] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2207'. [ 339.844446][T11990] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff) [ 340.487548][T12021] netlink: 326 bytes leftover after parsing attributes in process `syz.1.2231'. [ 340.509720][T12023] netlink: 'syz.0.2233': attribute type 19 has an invalid length. [ 340.527641][T12023] netlink: 334 bytes leftover after parsing attributes in process `syz.0.2233'. [ 340.695081][T12032] netlink: 334 bytes leftover after parsing attributes in process `syz.0.2237'. [ 340.944369][T12038] FAULT_INJECTION: forcing a failure. [ 340.944369][T12038] name failslab, interval 1, probability 0, space 0, times 0 [ 341.023442][T12038] CPU: 0 UID: 0 PID: 12038 Comm: syz.0.2239 Tainted: G L syzkaller #0 PREEMPT(full) [ 341.023489][T12038] Tainted: [L]=SOFTLOCKUP [ 341.023501][T12038] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 341.023518][T12038] Call Trace: [ 341.023527][T12038] [ 341.023537][T12038] dump_stack_lvl+0x100/0x190 [ 341.023586][T12038] should_fail_ex.cold+0x5/0xa [ 341.023621][T12038] should_failslab+0xc2/0x120 [ 341.023651][T12038] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 341.023692][T12038] ? anon_vma_clone+0x2bd/0xc70 [ 341.023733][T12038] anon_vma_clone+0x2bd/0xc70 [ 341.023779][T12038] anon_vma_fork+0x1bb/0x6b0 [ 341.023822][T12038] dup_mmap+0x141f/0x2180 [ 341.023871][T12038] ? __pfx_dup_mmap+0x10/0x10 [ 341.023901][T12038] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 341.023944][T12038] ? __lock_acquire+0x4a5/0x2630 [ 341.023981][T12038] ? find_held_lock+0x2b/0x80 [ 341.024007][T12038] ? __percpu_counter_init_many+0x2bc/0x3b0 [ 341.024070][T12038] copy_process+0x73d7/0x7a10 [ 341.024103][T12038] ? __pfx___schedule+0x10/0x10 [ 341.024156][T12038] ? __pfx_copy_process+0x10/0x10 [ 341.024203][T12038] ? _copy_from_user+0x59/0xd0 [ 341.024240][T12038] kernel_clone+0xfc/0x9a0 [ 341.024274][T12038] ? __pfx_kernel_clone+0x10/0x10 [ 341.024304][T12038] ? futex_private_hash_put+0x107/0x1c0 [ 341.024349][T12038] ? __pfx_futex_wake+0x10/0x10 [ 341.024395][T12038] __do_sys_clone3+0x214/0x290 [ 341.024427][T12038] ? __pfx___do_sys_clone3+0x10/0x10 [ 341.024513][T12038] do_syscall_64+0x106/0xf80 [ 341.024549][T12038] ? clear_bhb_loop+0x40/0x90 [ 341.024583][T12038] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 341.024612][T12038] RIP: 0033:0x7f37fb99c799 [ 341.024636][T12038] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 341.024664][T12038] RSP: 002b:00007f37fc8f1ef8 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 341.024691][T12038] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007f37fb99c799 [ 341.024710][T12038] RDX: 00007f37fc8f1f10 RSI: 0000000000000058 RDI: 00007f37fc8f1f10 [ 341.024728][T12038] RBP: 00007f37fba32c99 R08: 0000000000000000 R09: 0000000000000058 [ 341.024745][T12038] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 341.024761][T12038] R13: 00007f37fbc16038 R14: 00007f37fbc15fa0 R15: 00007fff32d65ee8 [ 341.024801][T12038] [ 341.521968][T12046] FAULT_INJECTION: forcing a failure. [ 341.521968][T12046] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 341.556685][T12046] CPU: 1 UID: 0 PID: 12046 Comm: syz.0.2243 Tainted: G L syzkaller #0 PREEMPT(full) [ 341.556733][T12046] Tainted: [L]=SOFTLOCKUP [ 341.556744][T12046] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 341.556762][T12046] Call Trace: [ 341.556771][T12046] [ 341.556782][T12046] dump_stack_lvl+0x100/0x190 [ 341.556829][T12046] should_fail_ex.cold+0x5/0xa [ 341.556858][T12046] ? prepare_alloc_pages+0x16d/0x5f0 [ 341.556893][T12046] should_fail_alloc_page+0xeb/0x140 [ 341.556925][T12046] prepare_alloc_pages+0x1f0/0x5f0 [ 341.556966][T12046] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 341.557010][T12046] ? __pfx_stack_trace_save+0x10/0x10 [ 341.557040][T12046] ? stack_depot_save_flags+0x27/0x9d0 [ 341.557075][T12046] ? kasan_save_stack+0x3f/0x50 [ 341.557114][T12046] ? kasan_save_stack+0x30/0x50 [ 341.557151][T12046] ? kasan_save_track+0x14/0x30 [ 341.557196][T12046] ? __lock_acquire+0x4a5/0x2630 [ 341.557233][T12046] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 341.557280][T12046] ? __lock_acquire+0x4a5/0x2630 [ 341.557312][T12046] ? look_up_lock_class+0x55/0x120 [ 341.557359][T12046] ? lock_acquire+0x1cf/0x380 [ 341.557394][T12046] ? find_held_lock+0x2b/0x80 [ 341.557419][T12046] ? page_table_check_set+0x49a/0xa10 [ 341.557461][T12046] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 341.557507][T12046] ? policy_nodemask+0xed/0x4f0 [ 341.557539][T12046] alloc_pages_mpol+0x1fb/0x550 [ 341.557571][T12046] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 341.557611][T12046] folio_alloc_mpol_noprof+0x36/0x340 [ 341.557654][T12046] vma_alloc_folio_noprof+0xed/0x1d0 [ 341.557689][T12046] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 341.557736][T12046] do_anonymous_page+0xb3a/0x1fb0 [ 341.557788][T12046] __handle_mm_fault+0x1d42/0x2b60 [ 341.557836][T12046] ? __pfx___handle_mm_fault+0x10/0x10 [ 341.557875][T12046] ? pte_offset_map_lock+0x174/0x320 [ 341.557905][T12046] ? find_held_lock+0x2b/0x80 [ 341.557943][T12046] ? follow_page_pte+0x5b3/0x1400 [ 341.557981][T12046] handle_mm_fault+0x36d/0xa20 [ 341.558026][T12046] __get_user_pages+0xf9c/0x34d0 [ 341.558071][T12046] ? __pfx___get_user_pages+0x10/0x10 [ 341.558113][T12046] populate_vma_page_range+0x267/0x3f0 [ 341.558147][T12046] ? __pfx_populate_vma_page_range+0x10/0x10 [ 341.558180][T12046] ? __pfx_find_vma_intersection+0x10/0x10 [ 341.558212][T12046] ? do_mmap+0x93f/0x12f0 [ 341.558246][T12046] __mm_populate+0x107/0x3a0 [ 341.558280][T12046] ? __pfx___mm_populate+0x10/0x10 [ 341.558315][T12046] ? up_write+0x290/0x4f0 [ 341.558357][T12046] vm_mmap_pgoff+0x37f/0x470 [ 341.558393][T12046] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 341.558427][T12046] ? do_futex+0x192/0x350 [ 341.558461][T12046] ? __pfx_do_futex+0x10/0x10 [ 341.558502][T12046] ksys_mmap_pgoff+0xe1/0x650 [ 341.558532][T12046] ? __x64_sys_futex+0x34f/0x4d0 [ 341.558565][T12046] ? __x64_sys_futex+0x358/0x4d0 [ 341.558600][T12046] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 341.558630][T12046] ? xfd_validate_state+0x129/0x190 [ 341.558684][T12046] __x64_sys_mmap+0x125/0x190 [ 341.558728][T12046] do_syscall_64+0x106/0xf80 [ 341.558766][T12046] ? clear_bhb_loop+0x40/0x90 [ 341.558800][T12046] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 341.558828][T12046] RIP: 0033:0x7f37fb99c799 [ 341.558853][T12046] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 341.558880][T12046] RSP: 002b:00007f37fc8f2028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 341.558908][T12046] RAX: ffffffffffffffda RBX: 00007f37fbc15fa0 RCX: 00007f37fb99c799 [ 341.558926][T12046] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 341.558943][T12046] RBP: 00007f37fba32c99 R08: 0000000000000002 R09: 0000000000008000 [ 341.558961][T12046] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 341.558979][T12046] R13: 00007f37fbc16038 R14: 00007f37fbc15fa0 R15: 00007fff32d65ee8 [ 341.559018][T12046] [ 342.792584][ T5828] block nbd2: Receive control failed (result -32) [ 344.344023][T12116] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2271'. [ 344.695056][T12128] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2276'. [ 344.735589][T12130] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2277'. [ 345.009474][T12143] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2282'. [ 345.184603][T12147] netlink: 'syz.2.2284': attribute type 4 has an invalid length. [ 346.514172][T12181] netlink: 342 bytes leftover after parsing attributes in process `syz.0.2295'. [ 347.096927][T12202] FAULT_INJECTION: forcing a failure. [ 347.096927][T12202] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 347.120092][T12202] CPU: 1 UID: 0 PID: 12202 Comm: syz.0.2304 Tainted: G L syzkaller #0 PREEMPT(full) [ 347.120144][T12202] Tainted: [L]=SOFTLOCKUP [ 347.120154][T12202] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 347.120171][T12202] Call Trace: [ 347.120180][T12202] [ 347.120190][T12202] dump_stack_lvl+0x100/0x190 [ 347.120237][T12202] should_fail_ex.cold+0x5/0xa [ 347.120264][T12202] ? prepare_alloc_pages+0x16d/0x5f0 [ 347.120300][T12202] should_fail_alloc_page+0xeb/0x140 [ 347.120331][T12202] prepare_alloc_pages+0x1f0/0x5f0 [ 347.120369][T12202] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 347.120420][T12202] ? __lock_acquire+0x4a5/0x2630 [ 347.120466][T12202] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 347.120511][T12202] ? do_raw_spin_lock+0x128/0x260 [ 347.120551][T12202] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 347.120590][T12202] ? find_held_lock+0x2b/0x80 [ 347.120626][T12202] ? __lock_acquire+0x4a5/0x2630 [ 347.120661][T12202] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 347.120708][T12202] ? policy_nodemask+0xed/0x4f0 [ 347.120740][T12202] alloc_pages_mpol+0x1fb/0x550 [ 347.120772][T12202] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 347.120802][T12202] ? __folio_batch_add_and_move+0x5e5/0xc60 [ 347.120843][T12202] ? __folio_batch_add_and_move+0x5e5/0xc60 [ 347.120892][T12202] folio_alloc_mpol_noprof+0x36/0x340 [ 347.120928][T12202] shmem_alloc_folio+0x135/0x160 [ 347.120964][T12202] shmem_alloc_and_add_folio+0x371/0xd40 [ 347.121014][T12202] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 347.121058][T12202] ? shmem_allowable_huge_orders+0x2bd/0x400 [ 347.121098][T12202] ? __lock_acquire+0x440/0x2630 [ 347.121146][T12202] shmem_get_folio_gfp+0x6ab/0x1900 [ 347.121196][T12202] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 347.121241][T12202] ? __pfx___might_resched+0x10/0x10 [ 347.121280][T12202] ? noop_dirty_folio+0xfd/0x160 [ 347.121312][T12202] shmem_fallocate+0x6d7/0x1060 [ 347.121370][T12202] ? __pfx_shmem_fallocate+0x10/0x10 [ 347.121410][T12202] ? aa_file_perm+0x7f3/0x14d0 [ 347.121457][T12202] ? __lock_acquire+0x4a5/0x2630 [ 347.121521][T12202] ? __pfx_shmem_fallocate+0x10/0x10 [ 347.121564][T12202] vfs_fallocate+0x576/0x10d0 [ 347.121597][T12202] ? __pfx_vfs_fallocate+0x10/0x10 [ 347.121635][T12202] __x64_sys_fallocate+0xd5/0x140 [ 347.121668][T12202] do_syscall_64+0x106/0xf80 [ 347.121705][T12202] ? clear_bhb_loop+0x40/0x90 [ 347.121741][T12202] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 347.121770][T12202] RIP: 0033:0x7f37fb99c799 [ 347.121793][T12202] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 347.121822][T12202] RSP: 002b:00007f37fc8f2028 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 347.121849][T12202] RAX: ffffffffffffffda RBX: 00007f37fbc15fa0 RCX: 00007f37fb99c799 [ 347.121868][T12202] RDX: 0000000000000007 RSI: 0000000000000000 RDI: 0000000000000005 [ 347.121885][T12202] RBP: 00007f37fba32c99 R08: 0000000000000000 R09: 0000000000000000 [ 347.121902][T12202] R10: 00000000004cbd5d R11: 0000000000000246 R12: 0000000000000000 [ 347.121919][T12202] R13: 00007f37fbc16038 R14: 00007f37fbc15fa0 R15: 00007fff32d65ee8 [ 347.121958][T12202] [ 348.146488][T12217] smpboot: CPU 1 is now offline [ 348.277374][T12220] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 348.367742][T12220] MDS CPU bug present and SMT on, data leak possible. See https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/mds.html for more details. [ 348.399504][T12220] TAA CPU bug present and SMT on, data leak possible. See https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/tsx_async_abort.html for more details. [ 348.416054][T12220] MMIO Stale Data CPU bug present and SMT on, data leak possible. See https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/processor_mmio_stale_data.html for more details. [ 348.602521][T12229] netlink: 350 bytes leftover after parsing attributes in process `syz.0.2314'. [ 349.045064][T12240] netlink: 334 bytes leftover after parsing attributes in process `syz.2.2319'. [ 349.108576][T12243] FAULT_INJECTION: forcing a failure. [ 349.108576][T12243] name failslab, interval 1, probability 0, space 0, times 0 [ 349.152876][T12243] CPU: 0 UID: 0 PID: 12243 Comm: syz.0.2320 Tainted: G L syzkaller #0 PREEMPT(full) [ 349.152925][T12243] Tainted: [L]=SOFTLOCKUP [ 349.152936][T12243] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 349.152954][T12243] Call Trace: [ 349.152963][T12243] [ 349.152973][T12243] dump_stack_lvl+0x100/0x190 [ 349.153021][T12243] should_fail_ex.cold+0x5/0xa [ 349.153054][T12243] should_failslab+0xc2/0x120 [ 349.153083][T12243] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 349.153123][T12243] ? __kernfs_new_node+0xd2/0x960 [ 349.153161][T12243] ? kstrdup+0xb3/0xe0 [ 349.153206][T12243] __kernfs_new_node+0xd2/0x960 [ 349.153250][T12243] ? __pfx___kernfs_new_node+0x10/0x10 [ 349.153297][T12243] ? find_held_lock+0x2b/0x80 [ 349.153323][T12243] ? kernfs_root+0xee/0x2a0 [ 349.153358][T12243] ? kernfs_root+0xee/0x2a0 [ 349.153412][T12243] kernfs_new_node+0x11b/0x1a0 [ 349.153462][T12243] kernfs_create_link+0xcc/0x240 [ 349.153499][T12243] sysfs_do_create_link_sd+0x90/0x140 [ 349.153539][T12243] sysfs_create_link+0x61/0xc0 [ 349.153577][T12243] device_add+0xb5d/0x1950 [ 349.153613][T12243] ? __pfx_device_add+0x10/0x10 [ 349.153641][T12243] ? __pfx___might_resched+0x10/0x10 [ 349.153679][T12243] ? lockdep_hardirqs_on+0x78/0x100 [ 349.153730][T12243] __add_disk+0x518/0xe40 [ 349.153782][T12243] add_disk_fwnode+0x118/0x5c0 [ 349.153830][T12243] loop_add+0x90b/0xb60 [ 349.153866][T12243] ? __pfx_loop_add+0x10/0x10 [ 349.153925][T12243] ? find_held_lock+0x2b/0x80 [ 349.153950][T12243] ? __fget_files+0x215/0x3d0 [ 349.153980][T12243] loop_control_ioctl+0xae/0x620 [ 349.154018][T12243] ? __pfx_loop_control_ioctl+0x10/0x10 [ 349.154061][T12243] ? __pfx_loop_control_ioctl+0x10/0x10 [ 349.154102][T12243] __x64_sys_ioctl+0x18e/0x210 [ 349.154144][T12243] do_syscall_64+0x106/0xf80 [ 349.154178][T12243] ? clear_bhb_loop+0x40/0x90 [ 349.154209][T12243] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 349.154239][T12243] RIP: 0033:0x7f37fb99c799 [ 349.154263][T12243] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 349.154291][T12243] RSP: 002b:00007f37fc8f2028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 349.154319][T12243] RAX: ffffffffffffffda RBX: 00007f37fbc15fa0 RCX: 00007f37fb99c799 [ 349.154338][T12243] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000005 [ 349.154357][T12243] RBP: 00007f37fba32c99 R08: 0000000000000000 R09: 0000000000000000 [ 349.154382][T12243] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 349.154400][T12243] R13: 00007f37fbc16038 R14: 00007f37fbc15fa0 R15: 00007fff32d65ee8 [ 349.154439][T12243] [ 350.263755][T12269] netlink: 338 bytes leftover after parsing attributes in process `syz.2.2329'. [ 351.186896][T12281] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2334'. [ 351.354092][T12289] FAULT_INJECTION: forcing a failure. [ 351.354092][T12289] name failslab, interval 1, probability 0, space 0, times 0 [ 351.388864][T12289] CPU: 0 UID: 0 PID: 12289 Comm: syz.2.2338 Tainted: G L syzkaller #0 PREEMPT(full) [ 351.388910][T12289] Tainted: [L]=SOFTLOCKUP [ 351.388920][T12289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 351.388936][T12289] Call Trace: [ 351.388945][T12289] [ 351.388955][T12289] dump_stack_lvl+0x100/0x190 [ 351.389002][T12289] should_fail_ex.cold+0x5/0xa [ 351.389033][T12289] should_failslab+0xc2/0x120 [ 351.389062][T12289] __kmalloc_cache_noprof+0x7a/0x6f0 [ 351.389100][T12289] ? mon_text_open+0x1d9/0x510 [ 351.389124][T12289] ? lockdep_init_map_type+0x5c/0x250 [ 351.389165][T12289] ? __pfx_mon_text_open+0x10/0x10 [ 351.389198][T12289] mon_text_open+0x1d9/0x510 [ 351.389224][T12289] ? __pfx_mon_text_open+0x10/0x10 [ 351.389251][T12289] ? __debugfs_file_get+0x1fc/0x860 [ 351.389286][T12289] ? __pfx___debugfs_file_get+0x10/0x10 [ 351.389323][T12289] ? __pfx_apparmor_file_open+0x10/0x10 [ 351.389362][T12289] ? lockdown_is_locked_down+0x3d/0x140 [ 351.389399][T12289] ? bpf_lsm_locked_down+0x9/0x10 [ 351.389432][T12289] ? __pfx_mon_text_open+0x10/0x10 [ 351.389456][T12289] full_proxy_open_regular+0x1b6/0x370 [ 351.389496][T12289] do_dentry_open+0x6d8/0x1660 [ 351.389522][T12289] ? __pfx_full_proxy_open_regular+0x10/0x10 [ 351.389570][T12289] vfs_open+0x82/0x3f0 [ 351.389608][T12289] path_openat+0x208c/0x31a0 [ 351.389649][T12289] ? __pfx_path_openat+0x10/0x10 [ 351.389691][T12289] do_file_open+0x20e/0x430 [ 351.389724][T12289] ? __pfx_do_file_open+0x10/0x10 [ 351.389780][T12289] ? alloc_fd+0x476/0x790 [ 351.389811][T12289] ? do_getname+0x191/0x390 [ 351.389848][T12289] do_sys_openat2+0x10d/0x1e0 [ 351.389884][T12289] ? __pfx_do_sys_openat2+0x10/0x10 [ 351.389922][T12289] ? __fget_files+0x21f/0x3d0 [ 351.389956][T12289] __x64_sys_openat+0x12d/0x210 [ 351.389992][T12289] ? __pfx___x64_sys_openat+0x10/0x10 [ 351.390043][T12289] do_syscall_64+0x106/0xf80 [ 351.390079][T12289] ? clear_bhb_loop+0x40/0x90 [ 351.390114][T12289] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 351.390143][T12289] RIP: 0033:0x7f191f79c799 [ 351.390165][T12289] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 351.390203][T12289] RSP: 002b:00007f1920648028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 351.390230][T12289] RAX: ffffffffffffffda RBX: 00007f191fa15fa0 RCX: 00007f191f79c799 [ 351.390250][T12289] RDX: 0000000000080080 RSI: 0000200000000280 RDI: ffffffffffffff9c [ 351.390269][T12289] RBP: 00007f191f832c99 R08: 0000000000000000 R09: 0000000000000000 [ 351.390286][T12289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 351.390303][T12289] R13: 00007f191fa16038 R14: 00007f191fa15fa0 R15: 00007ffef3b7ad88 [ 351.390342][T12289] [ 352.513938][T12314] netlink: 330 bytes leftover after parsing attributes in process `syz.3.2346'. [ 352.560226][T12316] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2347'. [ 353.099633][T12325] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 354.371860][T12350] netlink: 146 bytes leftover after parsing attributes in process `syz.1.2360'. [ 354.651706][T12352] netlink: 74 bytes leftover after parsing attributes in process `syz.2.2361'. [ 355.027104][T12369] mkiss: ax0: crc mode is auto. [ 355.613018][T12385] [U] [ 355.615861][T12385] [U] [ 355.618577][T12385] [U] [ 355.621279][T12385] [U] [ 355.653039][T12385] [U] [ 355.655788][T12385] [U] [ 355.658513][T12385] [U] [ 355.661236][T12385] [U] [ 355.718103][T12385] [U] [ 355.720856][T12385] [U] [ 355.723578][T12385] [U] [ 355.726301][T12385] [U] [ 355.747557][T12389] mkiss: ax0: crc mode is auto. [ 355.774236][T12385] [U] [ 355.776987][T12385] [U] [ 355.779703][T12385] [U] [ 355.782413][T12385] [U] [ 355.788695][T12385] [U] [ 355.791433][T12385] [U] [ 355.794148][T12385] [U] [ 355.796864][T12385] [U] [ 355.851622][T12385] [U] [ 355.854379][T12385] [U] [ 355.857102][T12385] [U] [ 355.859823][T12385] [U] [ 355.884198][T12385] [U] [ 355.886941][T12385] [U] [ 355.889662][T12385] [U] [ 355.892377][T12385] [U] [ 355.936869][T12394] netlink: 'syz.3.2376': attribute type 4 has an invalid length. [ 355.964108][T12385] [U] [ 355.966852][T12385] [U] [ 355.969573][T12385] [U] [ 355.972298][T12385] [U] [ 355.975143][T12394] netlink: 314 bytes leftover after parsing attributes in process `syz.3.2376'. [ 356.005199][T12385] [U] [ 356.007938][T12385] [U] [ 356.010664][T12385] [U] [ 356.013384][T12385] [U] [ 356.048399][T12385] [U] [ 356.051139][T12385] [U] [ 356.053865][T12385] [U] [ 356.056581][T12385] [U] [ 356.070360][T12385] [U] [ 356.073090][T12385] [U] [ 356.075804][T12385] [U] [ 356.078521][T12385] [U] [ 356.093576][T12385] [U] [ 356.096306][T12385] [U] [ 356.099026][T12385] [U] [ 356.101743][T12385] [U] [ 356.115687][T12385] [U] [ 356.118421][T12385] [U] [ 356.121143][T12385] [U] [ 356.123868][T12385] [U] [ 356.139261][T12385] [U] [ 356.141997][T12385] [U] [ 356.144718][T12385] [U] [ 356.147437][T12385] [U] [ 356.161407][T12385] [U] [ 356.164146][T12385] [U] [ 356.166876][T12385] [U] [ 356.169601][T12385] [U] [ 356.184554][T12385] [U] [ 356.187290][T12385] [U] [ 356.190010][T12385] [U] [ 356.192731][T12385] [U] [ 356.206595][T12385] [U] [ 356.209336][T12385] [U] [ 356.212050][T12385] [U] [ 356.214765][T12385] [U] [ 356.230597][T12385] [U] [ 356.233328][T12385] [U] [ 356.236045][T12385] [U] [ 356.238763][T12385] [U] [ 356.252711][T12385] [U] [ 356.255447][T12385] [U] [ 356.258150][T12385] [U] [ 356.260866][T12385] [U] [ 356.275733][T12385] [U] [ 356.278466][T12385] [U] [ 356.281183][T12385] [U] [ 356.283905][T12385] [U] [ 356.297815][T12385] [U] [ 356.300549][T12385] [U] [ 356.303265][T12385] [U] [ 356.305979][T12385] [U] [ 356.320844][T12385] [U] [ 356.323574][T12385] [U] [ 356.326301][T12385] [U] [ 356.329019][T12385] [U] [ 356.351563][T12385] [U] [ 356.410092][T12398] netlink: 25 bytes leftover after parsing attributes in process `syz.2.2378'. [ 357.237321][T12418] netlink: 'syz.2.2386': attribute type 4 has an invalid length. [ 357.247797][T12418] netlink: 'syz.2.2386': attribute type 4 has an invalid length. [ 359.167650][T12459] capability: warning: `syz.1.2403' uses 32-bit capabilities (legacy support in use) [ 360.009950][T12486] netlink: 146 bytes leftover after parsing attributes in process `syz.2.2413'. [ 360.123086][T12492] tc_dump_action: action bad kind [ 361.504120][T12533] netlink: 146 bytes leftover after parsing attributes in process `syz.1.2431'. [ 362.322028][T12562] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2440'. [ 362.474862][T12566] netlink: 'syz.0.2445': attribute type 14 has an invalid length. [ 362.498871][T12566] netlink: 330 bytes leftover after parsing attributes in process `syz.0.2445'. [ 364.072932][T12593] FAULT_INJECTION: forcing a failure. [ 364.072932][T12593] name failslab, interval 1, probability 0, space 0, times 0 [ 364.133187][T12593] CPU: 0 UID: 0 PID: 12593 Comm: syz.1.2454 Tainted: G L syzkaller #0 PREEMPT(full) [ 364.133235][T12593] Tainted: [L]=SOFTLOCKUP [ 364.133246][T12593] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 364.133263][T12593] Call Trace: [ 364.133272][T12593] [ 364.133284][T12593] dump_stack_lvl+0x100/0x190 [ 364.133332][T12593] should_fail_ex.cold+0x5/0xa [ 364.133366][T12593] should_failslab+0xc2/0x120 [ 364.133395][T12593] __kmalloc_cache_noprof+0x7a/0x6f0 [ 364.133438][T12593] ? __do_sys_memfd_create+0x170/0x3d0 [ 364.133484][T12593] __do_sys_memfd_create+0x170/0x3d0 [ 364.133527][T12593] do_syscall_64+0x106/0xf80 [ 364.133563][T12593] ? clear_bhb_loop+0x40/0x90 [ 364.133597][T12593] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 364.133627][T12593] RIP: 0033:0x7f0a2eb9c799 [ 364.133651][T12593] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 364.133680][T12593] RSP: 002b:00007f0a2fa36028 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 364.133707][T12593] RAX: ffffffffffffffda RBX: 00007f0a2ee15fa0 RCX: 00007f0a2eb9c799 [ 364.133726][T12593] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000000 [ 364.133743][T12593] RBP: 00007f0a2ec32c99 R08: 0000000000000000 R09: 0000000000000000 [ 364.133758][T12593] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 364.133774][T12593] R13: 00007f0a2ee16038 R14: 00007f0a2ee15fa0 R15: 00007ffcc5c42b18 [ 364.133812][T12593] [ 365.041369][T12615] netlink: 'syz.0.2463': attribute type 33 has an invalid length. [ 365.049289][T12615] netlink: 322 bytes leftover after parsing attributes in process `syz.0.2463'. [ 365.399804][T12629] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2469'. [ 365.948667][T12644] netlink: 326 bytes leftover after parsing attributes in process `syz.1.2474'. [ 366.064806][T12632] FAULT_INJECTION: forcing a failure. [ 366.064806][T12632] name failslab, interval 1, probability 0, space 0, times 0 [ 366.077607][T12632] CPU: 0 UID: 0 PID: 12632 Comm: syz.0.2470 Tainted: G L syzkaller #0 PREEMPT(full) [ 366.077652][T12632] Tainted: [L]=SOFTLOCKUP [ 366.077662][T12632] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 366.077680][T12632] Call Trace: [ 366.077689][T12632] [ 366.077708][T12632] dump_stack_lvl+0x100/0x190 [ 366.077756][T12632] should_fail_ex.cold+0x5/0xa [ 366.077791][T12632] should_failslab+0xc2/0x120 [ 366.077821][T12632] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 366.077861][T12632] ? anon_vma_clone+0x2bd/0xc70 [ 366.077904][T12632] anon_vma_clone+0x2bd/0xc70 [ 366.077948][T12632] __split_vma+0x51f/0xd90 [ 366.077990][T12632] ? __pfx___split_vma+0x10/0x10 [ 366.078036][T12632] ? __pfx_mas_prev+0x10/0x10 [ 366.078085][T12632] vms_gather_munmap_vmas+0x39f/0x1500 [ 366.078121][T12632] ? find_held_lock+0x2b/0x80 [ 366.078157][T12632] ? __pfx_vms_gather_munmap_vmas+0x10/0x10 [ 366.078194][T12632] ? move_page_tables+0xe1d/0x4500 [ 366.078249][T12632] do_vmi_align_munmap+0x287/0x5f0 [ 366.078296][T12632] ? __pfx_do_vmi_align_munmap+0x10/0x10 [ 366.078389][T12632] do_vmi_munmap+0x1f8/0x3e0 [ 366.078433][T12632] move_vma+0xd99/0x1890 [ 366.078479][T12632] ? __pfx_move_vma+0x10/0x10 [ 366.078521][T12632] ? mm_get_unmapped_area_vmflags+0xd7/0x130 [ 366.078568][T12632] ? vrm_set_new_addr+0x204/0x290 [ 366.078609][T12632] mremap_to+0x1b7/0x450 [ 366.078651][T12632] do_mremap+0xb76/0x2130 [ 366.078712][T12632] ? __pfx_do_mremap+0x10/0x10 [ 366.078773][T12632] __do_sys_mremap+0x126/0x170 [ 366.078813][T12632] ? __pfx___do_sys_mremap+0x10/0x10 [ 366.078856][T12632] ? __fget_files+0x21f/0x3d0 [ 366.078886][T12632] ? __x64_sys_futex+0x34f/0x4d0 [ 366.078945][T12632] do_syscall_64+0x106/0xf80 [ 366.078981][T12632] ? clear_bhb_loop+0x40/0x90 [ 366.079015][T12632] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 366.079044][T12632] RIP: 0033:0x7f37fb99c799 [ 366.079067][T12632] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 366.079094][T12632] RSP: 002b:00007f37fc8f2028 EFLAGS: 00000246 ORIG_RAX: 0000000000000019 [ 366.079121][T12632] RAX: ffffffffffffffda RBX: 00007f37fbc15fa0 RCX: 00007f37fb99c799 [ 366.079140][T12632] RDX: 0000000000000037 RSI: 0000000000000008 RDI: 0000200000001000 [ 366.079158][T12632] RBP: 00007f37fba32c99 R08: 000000110c230000 R09: 0000000000000000 [ 366.079176][T12632] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 366.079194][T12632] R13: 00007f37fbc16038 R14: 00007f37fbc15fa0 R15: 00007fff32d65ee8 [ 366.079233][T12632] [ 366.956519][T12664] sd 0:0:1:0: PR command failed: 1026 [ 366.962065][T12664] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 367.060685][T12664] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 367.316593][T12673] netlink: 334 bytes leftover after parsing attributes in process `syz.0.2486'. [ 367.771469][T12682] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2489'. [ 367.880868][T12684] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 367.890145][T12684] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 368.091191][T12688] bond0: option all_slaves_active: invalid value (7) [ 369.323475][T12726] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2506'. [ 369.353182][T12726] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2506'. [ 369.459375][T12729] FAULT_INJECTION: forcing a failure. [ 369.459375][T12729] name failslab, interval 1, probability 0, space 0, times 0 [ 369.509076][T12729] CPU: 1 UID: 0 PID: 12729 Comm: syz.1.2508 Tainted: G L syzkaller #0 PREEMPT(full) [ 369.509126][T12729] Tainted: [L]=SOFTLOCKUP [ 369.509136][T12729] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 369.509153][T12729] Call Trace: [ 369.509162][T12729] [ 369.509173][T12729] dump_stack_lvl+0x100/0x190 [ 369.509224][T12729] should_fail_ex.cold+0x5/0xa [ 369.509258][T12729] ? security_inode_init_security+0x113/0x370 [ 369.509299][T12729] should_failslab+0xc2/0x120 [ 369.509329][T12729] __kmalloc_noprof+0xe0/0x850 [ 369.509379][T12729] security_inode_init_security+0x113/0x370 [ 369.509428][T12729] ? __pfx_shmem_initxattrs+0x10/0x10 [ 369.509461][T12729] ? __pfx_security_inode_init_security+0x10/0x10 [ 369.509504][T12729] ? __pfx_make_vfsuid+0x10/0x10 [ 369.509545][T12729] shmem_symlink+0x15f/0xa00 [ 369.509586][T12729] ? generic_permission+0xae/0x800 [ 369.509623][T12729] ? __pfx_shmem_symlink+0x10/0x10 [ 369.509662][T12729] ? security_inode_permission+0xbf/0x250 [ 369.509695][T12729] ? inode_permission+0x374/0x620 [ 369.509729][T12729] ? tomoyo_path_symlink+0x97/0xe0 [ 369.509777][T12729] vfs_symlink+0x178/0x4d0 [ 369.509819][T12729] filename_symlinkat+0x2a6/0x560 [ 369.509856][T12729] ? __pfx_filename_symlinkat+0x10/0x10 [ 369.509889][T12729] ? strncpy_from_user+0x19d/0x2d0 [ 369.509924][T12729] ? do_getname+0x191/0x390 [ 369.509962][T12729] __x64_sys_symlink+0x79/0xb0 [ 369.509995][T12729] do_syscall_64+0x106/0xf80 [ 369.510032][T12729] ? clear_bhb_loop+0x40/0x90 [ 369.510068][T12729] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 369.510097][T12729] RIP: 0033:0x7f0a2eb9c799 [ 369.510122][T12729] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 369.510150][T12729] RSP: 002b:00007f0a2fa36028 EFLAGS: 00000246 ORIG_RAX: 0000000000000058 [ 369.510177][T12729] RAX: ffffffffffffffda RBX: 00007f0a2ee15fa0 RCX: 00007f0a2eb9c799 [ 369.510196][T12729] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 369.510213][T12729] RBP: 00007f0a2ec32c99 R08: 0000000000000000 R09: 0000000000000000 [ 369.510231][T12729] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 369.510249][T12729] R13: 00007f0a2ee16038 R14: 00007f0a2ee15fa0 R15: 00007ffcc5c42b18 [ 369.510288][T12729] [ 370.271949][T12740] netlink: 334 bytes leftover after parsing attributes in process `syz.0.2512'. [ 373.025028][T12808] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 373.039698][T12808] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 373.444313][T12812] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff) [ 374.231862][T12844] FAULT_INJECTION: forcing a failure. [ 374.231862][T12844] name failslab, interval 1, probability 0, space 0, times 0 [ 374.272815][T12844] CPU: 0 UID: 0 PID: 12844 Comm: syz.1.2550 Tainted: G L syzkaller #0 PREEMPT(full) [ 374.272861][T12844] Tainted: [L]=SOFTLOCKUP [ 374.272872][T12844] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 374.272888][T12844] Call Trace: [ 374.272896][T12844] [ 374.272907][T12844] dump_stack_lvl+0x100/0x190 [ 374.272961][T12844] should_fail_ex.cold+0x5/0xa [ 374.272995][T12844] ? tracepoint_add_func+0x2c5/0xf30 [ 374.273022][T12844] should_failslab+0xc2/0x120 [ 374.273052][T12844] __kmalloc_noprof+0xe0/0x850 [ 374.273097][T12844] ? __pfx_probe_sched_switch+0x10/0x10 [ 374.273128][T12844] tracepoint_add_func+0x2c5/0xf30 [ 374.273155][T12844] ? __pfx_probe_sched_switch+0x10/0x10 [ 374.273192][T12844] ? __pfx_probe_sched_switch+0x10/0x10 [ 374.273221][T12844] tracepoint_probe_register+0xc4/0x110 [ 374.273252][T12844] ? __pfx_tracepoint_probe_register+0x10/0x10 [ 374.273282][T12844] ? __pfx_probe_sched_switch+0x10/0x10 [ 374.273324][T12844] tracing_start_sched_switch+0x109/0x170 [ 374.273369][T12844] __ftrace_event_enable_disable+0x557/0x6f0 [ 374.273405][T12844] __ftrace_set_clr_event_nolock+0x390/0xc30 [ 374.273449][T12844] ftrace_set_clr_event+0x16e/0x330 [ 374.273487][T12844] ? __pfx_ftrace_set_clr_event+0x10/0x10 [ 374.273520][T12844] ? trace_get_user+0x3ae/0xa70 [ 374.273560][T12844] ftrace_event_write+0x259/0x2c0 [ 374.273595][T12844] ? __pfx_ftrace_event_write+0x10/0x10 [ 374.273647][T12844] vfs_write+0x2aa/0x1070 [ 374.273690][T12844] ? __pfx_ftrace_event_write+0x10/0x10 [ 374.273729][T12844] ? __pfx_vfs_write+0x10/0x10 [ 374.273770][T12844] ? __fget_files+0x215/0x3d0 [ 374.273805][T12844] ? __fget_files+0x21f/0x3d0 [ 374.273843][T12844] ksys_write+0x12a/0x250 [ 374.273868][T12844] ? __pfx_ksys_write+0x10/0x10 [ 374.273906][T12844] do_syscall_64+0x106/0xf80 [ 374.273950][T12844] ? clear_bhb_loop+0x40/0x90 [ 374.273986][T12844] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 374.274016][T12844] RIP: 0033:0x7f0a2eb9c799 [ 374.274040][T12844] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 374.274069][T12844] RSP: 002b:00007f0a2fa36028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 374.274097][T12844] RAX: ffffffffffffffda RBX: 00007f0a2ee15fa0 RCX: 00007f0a2eb9c799 [ 374.274116][T12844] RDX: 0000000000000004 RSI: 0000200000000040 RDI: 0000000000000005 [ 374.274133][T12844] RBP: 00007f0a2ec32c99 R08: 0000000000000000 R09: 0000000000000000 [ 374.274151][T12844] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 374.274168][T12844] R13: 00007f0a2ee16038 R14: 00007f0a2ee15fa0 R15: 00007ffcc5c42b18 [ 374.274209][T12844] [ 374.274271][T12844] sched trace: Couldn't activate tracepoint probe to kernel_sched_switch [ 374.657836][T12853] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff) [ 376.660190][T12904] sg_write: data in/out 65500/90 bytes for SCSI command 0x0-- guessing data in; [ 376.660190][T12904] program syz.1.2570 not setting count and/or reply_len properly [ 376.820788][T12911] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2573'. [ 376.833556][T12911] netlink: 'syz.0.2573': attribute type 7 has an invalid length. [ 377.870387][T12941] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2583'. [ 378.512457][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 378.518971][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 378.673309][T12964] futex_wake_op: syz.0.2593 tries to shift op by -2048; fix this program [ 378.712964][T12964] futex_wake_op: syz.0.2593 tries to shift op by -2048; fix this program [ 378.916680][T12973] netlink: 346 bytes leftover after parsing attributes in process `syz.0.2597'. [ 378.955997][T12975] FAULT_INJECTION: forcing a failure. [ 378.955997][T12975] name failslab, interval 1, probability 0, space 0, times 0 [ 378.975597][T12975] CPU: 0 UID: 0 PID: 12975 Comm: syz.2.2598 Tainted: G L syzkaller #0 PREEMPT(full) [ 378.975643][T12975] Tainted: [L]=SOFTLOCKUP [ 378.975654][T12975] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 378.975671][T12975] Call Trace: [ 378.975681][T12975] [ 378.975692][T12975] dump_stack_lvl+0x100/0x190 [ 378.975740][T12975] should_fail_ex.cold+0x5/0xa [ 378.975773][T12975] should_failslab+0xc2/0x120 [ 378.975804][T12975] __kmalloc_cache_noprof+0x7a/0x6f0 [ 378.975840][T12975] ? sched_core_share_pid+0x3bc/0x9d0 [ 378.975871][T12975] ? do_raw_spin_unlock+0x145/0x1e0 [ 378.975917][T12975] sched_core_share_pid+0x3bc/0x9d0 [ 378.975945][T12975] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 378.975992][T12975] ? cap_task_prctl+0x104/0xa50 [ 378.976035][T12975] ? __pfx_sched_core_share_pid+0x10/0x10 [ 378.976067][T12975] ? static_key_count+0x5a/0x70 [ 378.976094][T12975] ? security_task_prctl+0x11c/0x160 [ 378.976135][T12975] __do_sys_prctl+0x182b/0x2330 [ 378.976177][T12975] ? __pfx___do_sys_prctl+0x10/0x10 [ 378.976226][T12975] do_syscall_64+0x106/0xf80 [ 378.976262][T12975] ? clear_bhb_loop+0x40/0x90 [ 378.976296][T12975] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 378.976325][T12975] RIP: 0033:0x7f191f79c799 [ 378.976348][T12975] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 378.976376][T12975] RSP: 002b:00007f1920648028 EFLAGS: 00000246 ORIG_RAX: 000000000000009d [ 378.976403][T12975] RAX: ffffffffffffffda RBX: 00007f191fa15fa0 RCX: 00007f191f79c799 [ 378.976422][T12975] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 000000000000003e [ 378.976439][T12975] RBP: 00007f191f832c99 R08: 0000000000000000 R09: 0000000000000000 [ 378.976465][T12975] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 378.976482][T12975] R13: 00007f191fa16038 R14: 00007f191fa15fa0 R15: 00007ffef3b7ad88 [ 378.976520][T12975] [ 379.940159][T12996] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2604'. [ 380.673231][T13008] random: crng reseeded on system resumption [ 380.687835][T13008] FAULT_INJECTION: forcing a failure. [ 380.687835][T13008] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 380.732866][T13008] CPU: 1 UID: 0 PID: 13008 Comm: syz.1.2609 Tainted: G L syzkaller #0 PREEMPT(full) [ 380.732910][T13008] Tainted: [L]=SOFTLOCKUP [ 380.732919][T13008] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 380.732935][T13008] Call Trace: [ 380.732944][T13008] [ 380.732954][T13008] dump_stack_lvl+0x100/0x190 [ 380.733000][T13008] should_fail_ex.cold+0x5/0xa [ 380.733028][T13008] ? prepare_alloc_pages+0x16d/0x5f0 [ 380.733064][T13008] should_fail_alloc_page+0xeb/0x140 [ 380.733096][T13008] prepare_alloc_pages+0x1f0/0x5f0 [ 380.733135][T13008] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 380.733179][T13008] ? __alloc_frozen_pages_noprof+0x2b1/0x2ba0 [ 380.733232][T13008] ? stack_trace_save+0x8e/0xc0 [ 380.733262][T13008] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 380.733309][T13008] ? stack_depot_save_flags+0x27/0x9d0 [ 380.733344][T13008] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 380.733391][T13008] ? kasan_save_stack+0x3f/0x50 [ 380.733431][T13008] ? kasan_save_stack+0x30/0x50 [ 380.733469][T13008] ? kasan_save_track+0x14/0x30 [ 380.733517][T13008] ? do_sys_openat2+0x10d/0x1e0 [ 380.733549][T13008] ? __x64_sys_openat+0x12d/0x210 [ 380.733580][T13008] ? do_syscall_64+0x106/0xf80 [ 380.733616][T13008] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 380.733649][T13008] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 380.733696][T13008] ? policy_nodemask+0xed/0x4f0 [ 380.733729][T13008] alloc_pages_mpol+0x1fb/0x550 [ 380.733760][T13008] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 380.733791][T13008] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 380.733827][T13008] alloc_pages_noprof+0x131/0x390 [ 380.733859][T13008] get_zeroed_page_noprof+0x18/0xb0 [ 380.733889][T13008] get_image_page+0x18/0x1a0 [ 380.733931][T13008] alloc_rtree_node+0x3c/0xb0 [ 380.733974][T13008] memory_bm_create+0x65e/0xba0 [ 380.734034][T13008] create_basic_memory_bitmaps+0x10b/0x350 [ 380.734070][T13008] snapshot_open+0x230/0x2a0 [ 380.734101][T13008] ? __pfx_snapshot_open+0x10/0x10 [ 380.734133][T13008] misc_open+0x26d/0x450 [ 380.734163][T13008] ? __pfx_misc_open+0x10/0x10 [ 380.734193][T13008] chrdev_open+0x234/0x6a0 [ 380.734221][T13008] ? __pfx_apparmor_file_open+0x10/0x10 [ 380.734265][T13008] ? __pfx_chrdev_open+0x10/0x10 [ 380.734302][T13008] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 380.734340][T13008] do_dentry_open+0x6d8/0x1660 [ 380.734367][T13008] ? __pfx_chrdev_open+0x10/0x10 [ 380.734405][T13008] vfs_open+0x82/0x3f0 [ 380.734444][T13008] path_openat+0x208c/0x31a0 [ 380.734486][T13008] ? __pfx_path_openat+0x10/0x10 [ 380.734529][T13008] do_file_open+0x20e/0x430 [ 380.734561][T13008] ? __pfx_do_file_open+0x10/0x10 [ 380.734618][T13008] ? alloc_fd+0x476/0x790 [ 380.734648][T13008] ? do_getname+0x191/0x390 [ 380.734686][T13008] do_sys_openat2+0x10d/0x1e0 [ 380.734721][T13008] ? __pfx_do_sys_openat2+0x10/0x10 [ 380.734759][T13008] ? find_held_lock+0x2b/0x80 [ 380.734794][T13008] __x64_sys_openat+0x12d/0x210 [ 380.734831][T13008] ? __pfx___x64_sys_openat+0x10/0x10 [ 380.734882][T13008] do_syscall_64+0x106/0xf80 [ 380.734915][T13008] ? clear_bhb_loop+0x40/0x90 [ 380.734947][T13008] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 380.734976][T13008] RIP: 0033:0x7f0a2eb9c799 [ 380.734998][T13008] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 380.735026][T13008] RSP: 002b:00007f0a2fa36028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 380.735052][T13008] RAX: ffffffffffffffda RBX: 00007f0a2ee15fa0 RCX: 00007f0a2eb9c799 [ 380.735072][T13008] RDX: 0000000000008001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 380.735090][T13008] RBP: 00007f0a2ec32c99 R08: 0000000000000000 R09: 0000000000000000 [ 380.735107][T13008] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 380.735124][T13008] R13: 00007f0a2ee16038 R14: 00007f0a2ee15fa0 R15: 00007ffcc5c42b18 [ 380.735162][T13008] [ 381.271011][T13019] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2614'. [ 382.654947][T13050] FAULT_INJECTION: forcing a failure. [ 382.654947][T13050] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 382.704548][T13050] CPU: 1 UID: 0 PID: 13050 Comm: syz.1.2622 Tainted: G L syzkaller #0 PREEMPT(full) [ 382.704594][T13050] Tainted: [L]=SOFTLOCKUP [ 382.704606][T13050] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 382.704622][T13050] Call Trace: [ 382.704632][T13050] [ 382.704642][T13050] dump_stack_lvl+0x100/0x190 [ 382.704690][T13050] should_fail_ex.cold+0x5/0xa [ 382.704718][T13050] ? page_copy_sane+0x17c/0x2d0 [ 382.704750][T13050] copy_folio_from_iter_atomic+0x427/0x1e70 [ 382.704795][T13050] ? timestamp_truncate+0x22e/0x2f0 [ 382.704829][T13050] ? __pfx_copy_folio_from_iter_atomic+0x10/0x10 [ 382.704863][T13050] ? shmem_write_begin+0x1ba/0x420 [ 382.704907][T13050] ? __pfx_shmem_write_begin+0x10/0x10 [ 382.704950][T13050] ? balance_dirty_pages_ratelimited_flags+0x91/0x1170 [ 382.704991][T13050] generic_perform_write+0x4cb/0xa40 [ 382.705042][T13050] ? __pfx_generic_perform_write+0x10/0x10 [ 382.705079][T13050] ? __mark_inode_dirty+0x55c/0x1790 [ 382.705119][T13050] ? mnt_put_write_access_file+0x4e/0x100 [ 382.705155][T13050] ? file_update_time_flags+0x373/0x500 [ 382.705195][T13050] shmem_file_write_iter+0x10e/0x140 [ 382.705230][T13050] vfs_write+0x6ac/0x1070 [ 382.705273][T13050] ? __pfx_shmem_file_write_iter+0x10/0x10 [ 382.705308][T13050] ? __pfx_vfs_write+0x10/0x10 [ 382.705376][T13050] ksys_write+0x12a/0x250 [ 382.705402][T13050] ? __pfx_ksys_write+0x10/0x10 [ 382.705440][T13050] do_syscall_64+0x106/0xf80 [ 382.705476][T13050] ? clear_bhb_loop+0x40/0x90 [ 382.705513][T13050] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 382.705542][T13050] RIP: 0033:0x7f0a2eb9c799 [ 382.705565][T13050] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 382.705593][T13050] RSP: 002b:00007f0a2fa36028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 382.705618][T13050] RAX: ffffffffffffffda RBX: 00007f0a2ee15fa0 RCX: 00007f0a2eb9c799 [ 382.705637][T13050] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003 [ 382.705653][T13050] RBP: 00007f0a2ec32c99 R08: 0000000000000000 R09: 0000000000000000 [ 382.705669][T13050] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 382.705684][T13050] R13: 00007f0a2ee16038 R14: 00007f0a2ee15fa0 R15: 00007ffcc5c42b18 [ 382.705719][T13050] [ 383.155059][T13061] ------------[ cut here ]------------ [ 383.160889][T13061] IS_ERR(old) [ 383.160907][T13061] WARNING: kernel/tracepoint.c:367 at tracepoint_probe_unregister+0x837/0xd10, CPU#1: syz.3.2628/13061 [ 383.175428][T13061] Modules linked in: [ 383.179629][T13061] CPU: 1 UID: 0 PID: 13061 Comm: syz.3.2628 Tainted: G L syzkaller #0 PREEMPT(full) [ 383.190631][T13061] Tainted: [L]=SOFTLOCKUP [ 383.194990][T13061] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 383.205105][T13061] RIP: 0010:tracepoint_probe_unregister+0x837/0xd10 [ 383.211729][T13061] Code: cc e8 6d 2b fe ff 48 8d 73 f0 48 c7 c2 e0 da 09 82 48 c7 c7 80 30 87 8e e8 e6 79 e2 ff eb ba bb fe ff ff ff e8 4a 2b fe ff 90 <0f> 0b 90 eb ac e8 3f 2b fe ff 49 89 dd 45 31 ff 49 be 00 00 00 00 [ 383.231957][T13061] RSP: 0018:ffffc90004e9f8a8 EFLAGS: 00010283 [ 383.240875][T13061] RAX: 0000000000007a45 RBX: 00000000fffffffe RCX: ffffc9000dd42000 [ 383.248915][T13061] RDX: 0000000000080000 RSI: ffffffff8209ebd6 RDI: ffff88805678db80 [ 383.256993][T13061] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000 [ 383.265006][T13061] R10: 0000000000000001 R11: 0000000000000000 R12: ffffffff821006a0 [ 383.273032][T13061] R13: 0000000000000302 R14: 0000000000000002 R15: ffffffff8f7869a0 [ 383.281022][T13061] FS: 00007f7d934466c0(0000) GS:ffff88812444a000(0000) knlGS:0000000000000000 [ 383.290040][T13061] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 383.296672][T13061] CR2: 0000001b30c1aff8 CR3: 000000007c0c6000 CR4: 00000000003526f0 [ 383.304703][T13061] Call Trace: [ 383.308002][T13061] [ 383.310956][T13061] tracing_stop_cmdline_record+0x66/0xa0 [ 383.316688][T13061] __ftrace_event_enable_disable+0x5c4/0x6f0 [ 383.322714][T13061] ftrace_event_set_open+0x224/0x380 [ 383.328080][T13061] do_dentry_open+0x6d8/0x1660 [ 383.332910][T13061] ? __pfx_ftrace_event_set_open+0x10/0x10 [ 383.338758][T13061] vfs_open+0x82/0x3f0 [ 383.342916][T13061] path_openat+0x208c/0x31a0 [ 383.347550][T13061] ? __pfx_path_openat+0x10/0x10 [ 383.352530][T13061] do_file_open+0x20e/0x430 [ 383.357111][T13061] ? __pfx_do_file_open+0x10/0x10 [ 383.362193][T13061] ? alloc_fd+0x476/0x790 [ 383.366599][T13061] ? do_getname+0x191/0x390 [ 383.371141][T13061] do_sys_openat2+0x10d/0x1e0 [ 383.375910][T13061] ? __pfx_do_sys_openat2+0x10/0x10 [ 383.381143][T13061] ? __fget_files+0x21f/0x3d0 [ 383.385896][T13061] __x64_sys_openat+0x12d/0x210 [ 383.390782][T13061] ? __pfx___x64_sys_openat+0x10/0x10 [ 383.396249][T13061] do_syscall_64+0x106/0xf80 [ 383.400874][T13061] ? clear_bhb_loop+0x40/0x90 [ 383.405675][T13061] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 383.411603][T13061] RIP: 0033:0x7f7d9259c799 [ 383.416104][T13061] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 383.435786][T13061] RSP: 002b:00007f7d93446028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 383.444278][T13061] RAX: ffffffffffffffda RBX: 00007f7d92815fa0 RCX: 00007f7d9259c799 [ 383.452266][T13061] RDX: 0000000000020201 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 383.460343][T13061] RBP: 00007f7d92632c99 R08: 0000000000000000 R09: 0000000000000000 [ 383.468363][T13061] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 383.476384][T13061] R13: 00007f7d92816038 R14: 00007f7d92815fa0 R15: 00007ffec4991288 [ 383.484424][T13061] [ 383.487456][T13061] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 383.494758][T13061] CPU: 1 UID: 0 PID: 13061 Comm: syz.3.2628 Tainted: G L syzkaller #0 PREEMPT(full) [ 383.505712][T13061] Tainted: [L]=SOFTLOCKUP [ 383.510039][T13061] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 383.520093][T13061] Call Trace: [ 383.523373][T13061] [ 383.526299][T13061] dump_stack_lvl+0x100/0x190 [ 383.530991][T13061] vpanic+0x552/0x970 [ 383.534972][T13061] ? __pfx_vpanic+0x10/0x10 [ 383.539486][T13061] panic+0xd1/0xe0 [ 383.543205][T13061] ? __pfx_panic+0x10/0x10 [ 383.547638][T13061] check_panic_on_warn.cold+0x19/0x34 [ 383.553011][T13061] ? tracepoint_probe_unregister+0x837/0xd10 [ 383.558991][T13061] __warn.cold+0x191/0x348 [ 383.563412][T13061] __report_bug+0x296/0x3d0 [ 383.567922][T13061] ? tracepoint_probe_unregister+0x837/0xd10 [ 383.573905][T13061] ? __pfx___report_bug+0x10/0x10 [ 383.578936][T13061] ? rcu_is_watching+0x12/0xc0 [ 383.583713][T13061] ? trace_contention_end+0x140/0x180 [ 383.589096][T13061] ? __mutex_lock+0x26a/0x1b90 [ 383.593873][T13061] ? tracepoint_probe_unregister+0x31/0xd10 [ 383.599770][T13061] ? tracepoint_probe_unregister+0x837/0xd10 [ 383.605750][T13061] report_bug+0xb2/0x220 [ 383.609996][T13061] ? tracepoint_probe_unregister+0x837/0xd10 [ 383.615982][T13061] handle_bug+0x16a/0x2a0 [ 383.620334][T13061] exc_invalid_op+0x17/0x50 [ 383.624856][T13061] asm_exc_invalid_op+0x1a/0x20 [ 383.629711][T13061] RIP: 0010:tracepoint_probe_unregister+0x837/0xd10 [ 383.636312][T13061] Code: cc e8 6d 2b fe ff 48 8d 73 f0 48 c7 c2 e0 da 09 82 48 c7 c7 80 30 87 8e e8 e6 79 e2 ff eb ba bb fe ff ff ff e8 4a 2b fe ff 90 <0f> 0b 90 eb ac e8 3f 2b fe ff 49 89 dd 45 31 ff 49 be 00 00 00 00 [ 383.655923][T13061] RSP: 0018:ffffc90004e9f8a8 EFLAGS: 00010283 [ 383.661987][T13061] RAX: 0000000000007a45 RBX: 00000000fffffffe RCX: ffffc9000dd42000 [ 383.669954][T13061] RDX: 0000000000080000 RSI: ffffffff8209ebd6 RDI: ffff88805678db80 [ 383.677922][T13061] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000 [ 383.685888][T13061] R10: 0000000000000001 R11: 0000000000000000 R12: ffffffff821006a0 [ 383.693852][T13061] R13: 0000000000000302 R14: 0000000000000002 R15: ffffffff8f7869a0 [ 383.701823][T13061] ? __pfx_probe_sched_switch+0x10/0x10 [ 383.707378][T13061] ? tracepoint_probe_unregister+0x836/0xd10 [ 383.713363][T13061] ? tracepoint_probe_unregister+0x836/0xd10 [ 383.719350][T13061] tracing_stop_cmdline_record+0x66/0xa0 [ 383.725003][T13061] __ftrace_event_enable_disable+0x5c4/0x6f0 [ 383.730995][T13061] ftrace_event_set_open+0x224/0x380 [ 383.736283][T13061] do_dentry_open+0x6d8/0x1660 [ 383.741047][T13061] ? __pfx_ftrace_event_set_open+0x10/0x10 [ 383.746860][T13061] vfs_open+0x82/0x3f0 [ 383.750939][T13061] path_openat+0x208c/0x31a0 [ 383.755541][T13061] ? __pfx_path_openat+0x10/0x10 [ 383.760495][T13061] do_file_open+0x20e/0x430 [ 383.765013][T13061] ? __pfx_do_file_open+0x10/0x10 [ 383.770073][T13061] ? alloc_fd+0x476/0x790 [ 383.774410][T13061] ? do_getname+0x191/0x390 [ 383.778936][T13061] do_sys_openat2+0x10d/0x1e0 [ 383.783627][T13061] ? __pfx_do_sys_openat2+0x10/0x10 [ 383.788838][T13061] ? __fget_files+0x21f/0x3d0 [ 383.793533][T13061] __x64_sys_openat+0x12d/0x210 [ 383.798407][T13061] ? __pfx___x64_sys_openat+0x10/0x10 [ 383.803802][T13061] do_syscall_64+0x106/0xf80 [ 383.808415][T13061] ? clear_bhb_loop+0x40/0x90 [ 383.813109][T13061] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 383.819012][T13061] RIP: 0033:0x7f7d9259c799 [ 383.823434][T13061] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 383.843069][T13061] RSP: 002b:00007f7d93446028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 383.851491][T13061] RAX: ffffffffffffffda RBX: 00007f7d92815fa0 RCX: 00007f7d9259c799 [ 383.859463][T13061] RDX: 0000000000020201 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 383.867435][T13061] RBP: 00007f7d92632c99 R08: 0000000000000000 R09: 0000000000000000 [ 383.875410][T13061] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 383.883376][T13061] R13: 00007f7d92816038 R14: 00007f7d92815fa0 R15: 00007ffec4991288 [ 383.891362][T13061] [ 383.894628][T13061] Kernel Offset: disabled [ 383.898940][T13061] Rebooting in 86400 seconds..