last executing test programs: 18m56.373439472s ago: executing program 2 (id=3788): r0 = open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14aabc) fallocate$auto(r0, 0x0, 0x7, 0x4cbd5d) r1 = open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14aabc) fallocate$auto(r1, 0x0, 0x7, 0x4cbd5d) utime$auto(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) open$dir(&(0x7f00000001c0)='./file0\x00', 0x201, 0x14) readlink$auto(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='/sys/bus/tee/uevent\x00', 0x0) 18m55.768019006s ago: executing program 2 (id=3792): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x0) bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_0={0x5, 0x7, 0x2817, 0x3, 0x200004, 0xffffffffffffffff, 0xa, '\x00', 0x0, 0xffffffffffffffff, 0x8, 0x7, 0x5, 0x8}, 0x10) bpf$auto(0x2, 0x0, 0xb) bpf$auto(0x15, 0x0, 0x0) r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/001/001\x00', 0x802, 0x0) syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff) ioctl$auto_USBDEVFS_CONTROL(r0, 0xc0185500, &(0x7f0000000240)={0x20, 0x1, 0x1, 0x400, 0x1, 0x9, &(0x7f00000000c0)}) 18m55.576639987s ago: executing program 2 (id=3795): gettid() socket(0x10, 0x2, 0x0) syz_genetlink_get_family_id$auto_mac80211_hwsim(0x0, 0xffffffffffffffff) openat$auto_tk_debug_sleep_time_fops_(0xffffffffffffff9c, 0x0, 0x0, 0x0) shmget$auto(0xa, 0x10565, 0x7ff) shmat$auto(0x0, &(0x7f0000000580)='(\x00', 0xfffffffa) shmctl$auto(0x0, 0x0, 0xfffffffffffffffd) shmat$auto(0x0, &(0x7f0000000000)='(\x00', 0x2) 18m55.368048165s ago: executing program 2 (id=3797): close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x3, 0x6) lsm_list_modules$auto(0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x401c5820, 0x0) mkdir$auto(0x0, 0x353) 18m54.899054963s ago: executing program 2 (id=3800): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) close_range$auto(0x0, 0xffffffffffffffff, 0x2) socket(0x10, 0x2, 0x9) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) socket(0x1, 0x1, 0x0) bind$auto(0x3, 0x0, 0x6b) listen$auto(0x3, 0x81) setsockopt$auto(0x3, 0x1, 0x20, 0x0, 0x9) 18m54.046038722s ago: executing program 2 (id=3807): mmap$auto(0x0, 0x6, 0x3, 0xeb1, 0x7, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x0, 0xffffffffffffffff, 0x2) r0 = open(&(0x7f0000000100)='.\x00', 0x0, 0x57e) fcntl$auto_F_ADD_SEALS(r0, 0x410, 0x0) creat$auto(&(0x7f00000002c0)='u[,&*}\x00\a\x00\x00\x00?\xa4\x1fN\xa1~5Z\xc7\r\f}M4\xa8m\xe6\x19[11\xab\xff-E\xac9(\xb4O\xa0t4h\x9f-gn\x1f\x01\x00\x00\x00\x00\x00\x00\x00\xaeR\x81\r_\x0e\x19\b\x85\bvv(e\xdax)\t\x15\xf6\xc8\xee\x04\x16\xc1\x9a!\x87I7\x8cD&zg\xb0a\xab|E\xde\x14\xee[\xc8\xc0\xa8Nh\x0f\xa3\xdbT\xb3\xb8\xd2F\xa0\xc4]\xaf\xc43&\xe4\x01\x05\xd2\x15\xf8\xf1!\x9d\x92\xbbH\xd3^aD\x87\xd8\xe7\xd2\xf3[r\xc5S&}D[\x97\xf1\xd9\xf8Y\x1c\x03\x84\xb4\xd7\x16\x19\xe5\x17\x10\xd8fcG:\xfbY8\x17w\x98?\x03@\xe5\x02\x05\x93h\xb9\xf7\xef\x84\x8aGlN\a\x1e\x00\x00\x00\x00\x00\x00\x00\xf1p\xeb\xe9(%\x89\xef\x85\xdfr\xce\x00\x00\x00\x00\xff\x00\xa2M\'d\x12\x1c\x12\xca\xa5_\x8d\xdf\xc5\x8d\x19?\xfc~\xb3X\x14\xa7\xa9M\x87\xfcTW\x1bR\xbci\x8d\x8aNEO\xb3~~\xa8\xa6\x894\x80;s\xb7\xa3V\x1b\x14|\x9e\xd4\x05\x85\x0f!\xab-E\'\x97Y\xb7\xe8fMv_\xf8\xa0S\xef\xb7\b\xe7!T.g\x92\x87\t$\x06\xa4\xfb\x83\x8c\x17^\x82\xe7\xd3\xf6q\x1a\xa0\xf82[W\x90\xdd\xe3\xde\xa9\xde\x94`-\x9a\x1e}\xebO*\xb85,v.\xfc5\xba?vlt\xda%\x06a\x15I\x1f\xe3\x05+\x810T2\xf9\x9b\xc7\xd1\t\x03\xf2\x8d\x8a\x90\xb54\bH<9\xf1\x91 D\x85g,\xaa\xca\xcd\xd5\xcb\x9a\xb1j\xf2F\xce\x14\x92\xf9\xd7\xec\xc5\x1e\x8aq2\xce\x881f\xd7\xd4\x9e\xf6\xb6P\x01\xe8T\xb5X\xb9d-I\xd6\x91\xc3\xe2\x88S\x82l=\x02t$p\t\x8cY\x06\r\x83\xb0\x86\xc6\x84\x1c\xce\xb6\xf0\xdfC\x9fj<\xfe\xa4\x1f\x82L\xe4\x13+H\x00\x00\x00\x00\x00\x00\x00\x01M\x16\xa0\xbeB6\xfb\xa2-\x17\x93Q\x9fKusl5\xa2$M\xb4\x18\x1db\xf3\xce\x8c\xe5Rna\xd5\xbbQ\xc7\xa7+\vH\xc1l\x1bIv\xe8_\x00', 0x7) 18m53.76056959s ago: executing program 32 (id=3807): mmap$auto(0x0, 0x6, 0x3, 0xeb1, 0x7, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x0, 0xffffffffffffffff, 0x2) r0 = open(&(0x7f0000000100)='.\x00', 0x0, 0x57e) fcntl$auto_F_ADD_SEALS(r0, 0x410, 0x0) creat$auto(&(0x7f00000002c0)='u[,&*}\x00\a\x00\x00\x00?\xa4\x1fN\xa1~5Z\xc7\r\f}M4\xa8m\xe6\x19[11\xab\xff-E\xac9(\xb4O\xa0t4h\x9f-gn\x1f\x01\x00\x00\x00\x00\x00\x00\x00\xaeR\x81\r_\x0e\x19\b\x85\bvv(e\xdax)\t\x15\xf6\xc8\xee\x04\x16\xc1\x9a!\x87I7\x8cD&zg\xb0a\xab|E\xde\x14\xee[\xc8\xc0\xa8Nh\x0f\xa3\xdbT\xb3\xb8\xd2F\xa0\xc4]\xaf\xc43&\xe4\x01\x05\xd2\x15\xf8\xf1!\x9d\x92\xbbH\xd3^aD\x87\xd8\xe7\xd2\xf3[r\xc5S&}D[\x97\xf1\xd9\xf8Y\x1c\x03\x84\xb4\xd7\x16\x19\xe5\x17\x10\xd8fcG:\xfbY8\x17w\x98?\x03@\xe5\x02\x05\x93h\xb9\xf7\xef\x84\x8aGlN\a\x1e\x00\x00\x00\x00\x00\x00\x00\xf1p\xeb\xe9(%\x89\xef\x85\xdfr\xce\x00\x00\x00\x00\xff\x00\xa2M\'d\x12\x1c\x12\xca\xa5_\x8d\xdf\xc5\x8d\x19?\xfc~\xb3X\x14\xa7\xa9M\x87\xfcTW\x1bR\xbci\x8d\x8aNEO\xb3~~\xa8\xa6\x894\x80;s\xb7\xa3V\x1b\x14|\x9e\xd4\x05\x85\x0f!\xab-E\'\x97Y\xb7\xe8fMv_\xf8\xa0S\xef\xb7\b\xe7!T.g\x92\x87\t$\x06\xa4\xfb\x83\x8c\x17^\x82\xe7\xd3\xf6q\x1a\xa0\xf82[W\x90\xdd\xe3\xde\xa9\xde\x94`-\x9a\x1e}\xebO*\xb85,v.\xfc5\xba?vlt\xda%\x06a\x15I\x1f\xe3\x05+\x810T2\xf9\x9b\xc7\xd1\t\x03\xf2\x8d\x8a\x90\xb54\bH<9\xf1\x91 D\x85g,\xaa\xca\xcd\xd5\xcb\x9a\xb1j\xf2F\xce\x14\x92\xf9\xd7\xec\xc5\x1e\x8aq2\xce\x881f\xd7\xd4\x9e\xf6\xb6P\x01\xe8T\xb5X\xb9d-I\xd6\x91\xc3\xe2\x88S\x82l=\x02t$p\t\x8cY\x06\r\x83\xb0\x86\xc6\x84\x1c\xce\xb6\xf0\xdfC\x9fj<\xfe\xa4\x1f\x82L\xe4\x13+H\x00\x00\x00\x00\x00\x00\x00\x01M\x16\xa0\xbeB6\xfb\xa2-\x17\x93Q\x9fKusl5\xa2$M\xb4\x18\x1db\xf3\xce\x8c\xe5Rna\xd5\xbbQ\xc7\xa7+\vH\xc1l\x1bIv\xe8_\x00', 0x7) 9.330239915s ago: executing program 3 (id=8320): mmap$auto(0x0, 0x7, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000) r0 = socket(0xa, 0x1, 0x84) getsockopt$auto(r0, 0x84, 0x80, 0x0, &(0x7f00000000c0)=0x97) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup.net/blkio.bfq.time_recursive\x00', 0x182b02, 0x0) r2 = openat$auto_btrfs_ctl_fops_super(0xffffffffffffff9c, &(0x7f0000000000), 0xc4800, 0x0) madvise$auto(0x9d5adb5, 0xfffffffffffffff8, 0x400) syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\x84q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa24X@\xadD\xf8\x9d\xf3 \xd2]\xc4\x13G\x1d\x04!\xc1\xeb.e$\xfb\xa3KU\xcf\xc1\x7fFD\x99\xf5v\v\x9dS\xc11P\xa3\xe9\xb0SqL\x85\xea\xb2\x9cY\x83.I\xca\x92\x1c\xc4\x13CV=\x92\x17c\x87iOt\x14On\x15=\v\xf0 \xc5\x8b~\xd6\xd4\xc7\xa3a\x1c\x06\x17\xb3\x88\x8c\xf1L\xba\x89a\xfd\xa5\xc6\x7fU\x00\xe5\x9b', 0x5) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001480), r3) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/nbd11/queue/iostats_passthrough\x00', 0x2a001, 0x0) write$auto(r5, &(0x7f0000000040)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) sendmsg$auto_ETHTOOL_MSG_CHANNELS_SET(r3, &(0x7f0000001cc0)={0x0, 0x0, &(0x7f0000001c80)={&(0x7f00000003c0)={0x34, r4, 0x1, 0x70bd2a, 0x25dfdc00, {}, [@ETHTOOL_A_CHANNELS_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bridge\x00'}]}, @ETHTOOL_A_CHANNELS_COMBINED_COUNT={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x2404c804}, 0x0) read$auto(r3, &(0x7f0000000000)='$/\x00', 0x0) r6 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)) fchdir$auto(r6) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0xffffffffffffffff, 0x8000) r7 = open(&(0x7f0000000100)='.\x00', 0x0, 0x408) getdents64$auto(r7, 0x0, 0x400) sendfile$auto(r2, r1, 0x0, 0x3) 8.462691221s ago: executing program 1 (id=8322): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000001200)='/dev/nbd0\x00', 0x2003, 0x0) ioctl$auto_BLKREPORTZONE(r0, 0xc0101282, &(0x7f0000001240)={0xfffffffffffffff8, 0x3, 0x1}) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x8aa182, 0x0) r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/mnt\x00') ioctl$NS_GET_PARENT(r1, 0xb702, 0x0) unshare$auto(0x40000080) openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/usb/usbmon/9t\x00', 0xa00, 0x0) mmap$auto(0x8b, 0x810004, 0x100000002, 0x8002000008011, 0x3, 0xffff) close_range$auto(0x2, 0x8, 0x0) openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, 0x0, 0x0, 0x0) open(0x0, 0x161342, 0x130) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) io_uring_setup$auto(0x7, 0x0) openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000001b40)='/dev/cuse\x00', 0x8640, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) preadv$auto(0x3, 0x0, 0x3, 0x2, 0x13) close_range$auto(0x2, 0x8, 0x0) socket(0x11, 0x3, 0x9) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/block/nbd10/queue/zone_append_max_bytes\x00', 0x80, 0x0) 8.446883779s ago: executing program 3 (id=8323): r0 = socket(0x5, 0x1, 0xfffffffb) r1 = openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/per_cpu/cpu1/trace\x00', 0x0, 0x0) pread64$auto(r1, 0x0, 0x100000009, 0xa4000000000002) readv$auto(r0, 0x0, 0x2) bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a) io_uring_enter$auto(r0, 0x9, 0x1, 0x0, &(0x7f0000000080)="aec34f38123ac8b2d41a3e06597629536c2d8e80e0d39a974c49952f49af540a6ef5e4af9aa03e4036e4996b6eb3ef926a00adeeb2aff1adbb1003634889478397b7110f43e45c4a37021536ab6f60f5c3f161b890574579015a98897e6161b50f6e1c441137ce4d0a94c6d156c0816c9b7fda5877ad1ce730bf8fcbae1f03d921c8d8e6b5750173d1821b29593bcf0faa4dd7f3bd50d47ae223c7dd7d2f6733867b6bc7f9cef703499af453385701f39ccc09fdfb39222d076da123c5013c4dd8c2f5ea6a36fa71db9d2919a511dafb34f4", 0x6dda) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000240)='/dev/video37\x00', 0x8a240, 0x0) ioctl$auto(r2, 0x5646, r2) ioctl$auto(r2, 0x2400000, 0xffffffffffffffff) openat$auto_ima_measurements_ops_ima_fs(0xffffffffffffff9c, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x400004, 0xe1, 0x9b72, 0xffffffffffffffff, 0x8000) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f000000fc00), 0x3, 0x0) ioctl$auto_KVM_CREATE_VM(r3, 0xc004ae02, 0x88) sendmmsg$auto(r0, &(0x7f0000000000)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xfffffffd}, 0x10004}, 0x2, 0x20000000) setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x2) write$auto(0x3, 0x0, 0xfffffdef) madvise$auto(0x0, 0xff7fffffffff0001, 0x15) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000200), 0x101802, 0x0) ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) 7.40156337s ago: executing program 1 (id=8325): openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/ping_group_range\x00', 0x202, 0x0) timer_create$auto_CLOCK_TAI(0xb, 0x0, &(0x7f0000000200)=0xfb) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000) r0 = openat$auto_ftrace_set_event_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f0000002640)='/sys/kernel/debug/tracing/set_event_pid\x00', 0x2002, 0x0) setsockopt$auto_SO_BUSY_POLL(r0, 0x7, 0x2e, &(0x7f00000000c0)='\x00', 0x6) add_key$auto_KEY_SPEC_GROUP_KEYRING(&(0x7f0000001240)='.)},]+o)@}/^p,/\x00', 0x0, 0x0, 0x3, 0xfffffffffffffffa) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv6/conf/veth1_macvtap/ioam6_id_wide\x00', 0x169002, 0x0) read$auto(r1, 0x0, 0x1ff) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/erspan0/queues/tx-0/byte_queue_limits/hold_time\x00', 0x2, 0x0) write$auto(r2, &(0x7f0000000000)='][.\x1f![%\x00', 0x7) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r3 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) pwritev$auto(r3, 0x0, 0x4, 0xcee, 0x18a) unshare$auto(0x40000080) 6.844429258s ago: executing program 4 (id=8327): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0) write$auto_tap_fops_tap(r0, 0x0, 0x0) openat$auto_bm_register_operations_binfmt_misc(0xffffffffffffff9c, 0x0, 0x1adc00, 0x0) mmap$auto(0x0, 0x2020009, 0x6, 0xeb1, 0xfffffffffffffffa, 0x8) sysfs$auto(0x2, 0xd, 0x0) r1 = fsopen$auto(0x0, 0x1) fsconfig$auto(r1, 0x8, 0x0, 0x0, 0x0) fsconfig$auto_FSCONFIG_SET_FD(r1, 0x5, &(0x7f00000000c0)='[\x99}/:H\x00', 0x0, 0x0) write$auto_bm_register_operations_binfmt_misc(0xffffffffffffffff, &(0x7f0000000180), 0x0) openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, 0x0, 0x2, 0x0) io_uring_setup$auto(0x401, 0x0) read$auto(0x3, 0x0, 0xfdef) close_range$auto(0x2, 0x8, 0x0) signalfd$auto(0xffffffffffffffff, 0x0, 0x2) r2 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x130) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80302, 0x0) sendfile$auto(r3, r3, 0x0, 0x3) fallocate$auto(r2, 0x1, 0x820, 0x7fff) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) 6.834899432s ago: executing program 3 (id=8328): mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0006, 0x17) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/midi2\x00', 0x2, 0x0) setresuid$auto(0xfffffffffffffffd, 0xfdffffffffffffff, 0xffffffffffffffff) setresuid$auto(0x0, 0x2, 0x0) ppoll$auto(&(0x7f0000000140)={r0, 0x7, 0x4}, 0x7f, 0x0, 0x0, 0x8) madvise$auto(0x0, 0xffffffffffff0001, 0x15) write$auto(0x3, 0x0, 0xfdef) madvise$auto(0x0, 0xffffffffffff0005, 0x19) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sr0\x00', 0x8ee46, 0x0) mmap$auto(0x0, 0x10000, 0xde, 0x11, r2, 0x28000) getsockopt$auto_SO_LOCK_FILTER(r2, 0x4, 0x2c, &(0x7f0000000040)='+\x00', &(0x7f00000000c0)=0x1) madvise$auto(0x0, 0x400053, 0x9) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x169000, 0x0) sysfs$auto(0x2, 0x17, 0x0) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NETDEV_CMD_DEV_GET(r1, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x40004) syz_clone3(0x0, 0x0) 6.413777294s ago: executing program 4 (id=8331): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x2, 0x2, 0x0) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0x40009, 0x36, 0x9b72, 0x7, 0x28000) mlockall$auto(0x7) mmap$auto(0x0, 0x6, 0x2, 0x40eb2, 0xffffffffffffffff, 0x308000000000) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv6/conf/dummy0/addr_gen_mode\x00', 0x1, 0x0) pwrite64$auto(r0, 0x0, 0x0, 0x2000000000040007) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) move_pages$auto(0x0, 0x1002, 0x0, 0x0, 0x0, 0x2) tgkill$auto(0x0, 0x0, 0x11) readv$auto(0x3, 0x0, 0x7) socket$nl_generic(0x10, 0x3, 0x10) 5.109523701s ago: executing program 0 (id=8333): socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sysfs$auto(0x2, 0x23, 0x0) r0 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) write$auto(r0, 0x0, 0x4) openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, 0x0, 0x2482, 0x0) close_range$auto(0x2, 0x8, 0x0) select$auto(0x79c9, &(0x7f0000000200)={[0x0, 0x8, 0x4, 0x7f, 0x8, 0x7, 0x9, 0x7, 0x10000, 0x0, 0x7, 0x7, 0xdb, 0x8, 0x5ae, 0x6]}, 0x0, &(0x7f0000000440)={[0x4, 0x5ee7, 0x7, 0x80000, 0xffffffffffffff01, 0x1, 0x400, 0xe, 0x2, 0x2, 0x9, 0xbf87, 0x0, 0xfffffffffffffffd, 0x3, 0x81]}, &(0x7f0000000140)={0x401, 0x1}) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/pm_trace_dev_match\x00', 0x20080, 0x0) getsockopt$auto_SO_NETNS_COOKIE(0xffffffffffffffff, 0x7, 0x47, &(0x7f0000000380)='-\xc8\xa5\x83\x1c\xe0\x8a\xeb\xcc\xfb\xa8\xe3k\b/*\xa7dev/audio1\x00q>l. <\xb0', &(0x7f00000001c0)=0x9) r2 = socket$nl_generic(0x10, 0x3, 0x10) io_uring_setup$auto(0xd364, &(0x7f0000000000)={0x400, 0x10002, 0x7f, 0x7, 0x6, 0x5, r2, [], {0x2, 0x4, 0x6, 0x2, 0x40, 0x4, 0x7, 0x7, 0x80000000}, {0x7, 0x1ff, 0x80000001, 0x8, 0x6b, 0x9, 0x0, 0xfffffffa, 0xb1}}) sendmsg$auto_IPVS_CMD_SET_DEST(0xffffffffffffffff, &(0x7f0000000a40)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x20040011) read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000280)=""/175, 0xaf) 4.875722538s ago: executing program 4 (id=8334): socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sysfs$auto(0x2, 0x23, 0x0) r0 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) write$auto(r0, 0x0, 0x4) openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, 0x0, 0x2482, 0x0) close_range$auto(0x2, 0x8, 0x0) select$auto(0x79c9, &(0x7f0000000200)={[0x0, 0x8, 0x4, 0x7f, 0x8, 0x7, 0x9, 0x7, 0x10000, 0x0, 0x7, 0x7, 0xdb, 0x8, 0x5ae, 0x6]}, 0x0, &(0x7f0000000440)={[0x4, 0x5ee7, 0x7, 0x80000, 0xffffffffffffff01, 0x1, 0x400, 0xe, 0x2, 0x2, 0x9, 0xbf87, 0x0, 0xfffffffffffffffd, 0x3, 0x81]}, &(0x7f0000000140)={0x401, 0x1}) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/pm_trace_dev_match\x00', 0x20080, 0x0) getsockopt$auto_SO_NETNS_COOKIE(0xffffffffffffffff, 0x7, 0x47, &(0x7f0000000380)='-\xc8\xa5\x83\x1c\xe0\x8a\xeb\xcc\xfb\xa8\xe3k\b/*\xa7dev/audio1\x00q>l. <\xb0', &(0x7f00000001c0)=0x9) r2 = socket$nl_generic(0x10, 0x3, 0x10) io_uring_setup$auto(0xd364, &(0x7f0000000000)={0x400, 0x10002, 0x7f, 0x7, 0x6, 0x5, r2, [], {0x2, 0x4, 0x6, 0x2, 0x40, 0x4, 0x7, 0x7, 0x80000000}, {0x7, 0x1ff, 0x80000001, 0x8, 0x6b, 0x9, 0x0, 0xfffffffa, 0xb1}}) sendmsg$auto_IPVS_CMD_SET_DEST(0xffffffffffffffff, &(0x7f0000000a40)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x20040011) read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000280)=""/175, 0xaf) 4.635651369s ago: executing program 0 (id=8335): openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0) r0 = epoll_create$auto(0x4) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x2a00, 0x0) socket(0x2, 0x1, 0x106) fcntl$auto_F_GETSIG(r0, 0xb, 0xab8) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x8000, 0x79) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x9, 0xd3e, 0x1, 0x948b, 0x2, 0x95f4da0a, 0xffffffffffffffff, 0xe07, 0x8000000000000001, 0x80000001, 0x7, 0x8, 0x9, 0x6, 0x4]}, 0x0) write$auto(r1, &(0x7f0000000400)=' \x00\x00\x00\xf7\xff\xff\xff\xff\xff\xff\xff', 0x100000a3d9) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) r2 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000003c00), 0x1a9901, 0x0) write$auto(r2, &(0x7f00000000c0)='\x01', 0x10000000004) fanotify_init$auto(0x5, 0x2000000000002) write$auto(0xffffffffffffffff, &(0x7f0000000080)='\xff\xff\x9a\xb9\xd1\xf5\x00\x00\x00\x00\x00\x00\x00\x00', 0x2) socket$nl_generic(0x10, 0x3, 0x10) fsmount$auto(0x4, 0x0, 0xa7) select$auto(0x12, 0x0, 0x0, &(0x7f00000002c0)={[0x1fa, 0xfffffffffffffffe, 0x8f, 0x3, 0x9487, 0x8, 0x15f4da09, 0x0, 0xfffffffffffffff7, 0x20000000000005e, 0x6, 0x1040000000000007, 0x6d41, 0x3, 0x7, 0x7]}, 0x0) 3.586367321s ago: executing program 3 (id=8336): r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/audio\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000000)) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0) syz_open_procfs$namespace(0x0, &(0x7f0000000300)='ns/net\x00') sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(0xffffffffffffffff, 0x0, 0x880) write$auto(0x3, 0x0, 0xffd8) write$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffffff, 0x0, 0x0) write$auto(0x3, 0x0, 0x100082) socket(0x2, 0x1, 0x106) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/devices/platform/vhci_hcd.4/usb18/18-0:1.0/usb18-port3/location\x00', 0x0, 0x0) read$auto(0x3, 0x0, 0x7fffffff) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) io_uring_setup$auto(0x6, 0x0) pipe2$auto(0x0, 0x0) poll$auto(0x0, 0x5, 0x3fd) close_range$auto(0x2, 0x8, 0x0) 3.579042027s ago: executing program 4 (id=8344): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/lockd/parameters/nlm_tcpport\x00', 0xc2481, 0x0) unshare$auto(0x40000080) r0 = socket(0xa, 0x5, 0x0) mmap$auto(0x4, 0xa020009, 0x3, 0xeb1, r0, 0x7ffe) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/fs/cifs/mount_params\x00', 0x802, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/system/machinecheck/machinecheck0/cmci_disabled\x00', 0x2062, 0x0) socket(0x15, 0x5, 0x0) sendfile$auto(r2, 0xffffffffffffffff, 0x0, 0x800) write$auto(r1, &(0x7f0000000640)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\xff\x7f\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc:\xfa\x01\xd1\xa3\xb5\xc2B\xa5\xac:woR^a\xb9}\xe7\xbd\xe1\xf77.\xa3\xd8\xc2T\x95\x13\x91\xb6p\xf3\xb2w\xe6\xd7\x94DW\x97\x90a\xe6c\xfb\x88x\xd5L\xa9\xe4\x82\x04\xb1\x8b\r\xcaP\\\x1aVP\xc9\xa4`\xfd\v\x94\f\xc1\x0fQ\xc9\xdcL\x03\x9c\xbfk\xa6\xb1\xb0\xa1\xeeJ\xd8\xef\xc8t\x9d\x1e=J\x91W\xc6AuJ\xb9Q\xed\xd1\a\x05\x9d\x85\xb7b#r\xcd\xaf\xb7\x9f\xf7\xd2\xae\x0f\x98\xa9&\xb6~\xd4\xbd\xbbr\xb9\xc3\xacH!\xc1\x90K2\x05K@\xee\xac\xe8\xc7\t\xab\xbf\xa3\xedb\xd7\xb5\xd7\x83&\x95\xb2?\x0e\x85\xaaIGu\xd6$\xeb\xb6\xdd\a\x121\a\xac\x1bx#\x87\xa9\x10\x9b\xf8YD\x04ZL\xca\x99]\x8f[\x90[\xa8\xbf\x98\xa6\xe50(zC\xe84*w\x13\x96\xd5\xd0\x877\x12\xbc\xa1\xd0h@|\xf9\xfa\x9b\x17\x94\xb9\xe7\xf3\x15\x05\x91\xe8\x98p\x7f:\xd7s\xd9wo\x82\xda\xec\x91\xb7\xd9;H\x8a\b\x00\x00\x00\x00\x00\x00\x00\x8aZ\x94\x14$X7\xaeW6=^I\x9fQ\r5c\x81\xca]\x97m\x89o\x8f\xd8}P>I\xd0\xb3\x88C\xd7', 0x100000a3d9) syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) poll$auto(&(0x7f0000000180)={0xffffffffffffffff, 0xfff7, 0x9816}, 0x7f, 0x9) migrate_pages$auto(0x0, 0xa, &(0x7f00000000c0)=0x52a6, &(0x7f0000000140)=0x2) ioctl$auto_VHOST_SET_LOG_FD2(0xffffffffffffffff, 0x4004af07, &(0x7f00000003c0)) unshare$auto(0x2) r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x103440, 0x0) pread64$auto(r3, &(0x7f0000000000)='/proc/thread-self/net/tcp6\x00\xd2)\x8e\x892\x82\x19\xfd\x03\xc3\x8d\xd7D\bz\xde5u4\xddS\xe6\x1a\x8a`\xad0\x98|\xbc\x00\x98\b\x0ey\xcb`\x9b\x91r\xd5\x13\x9e\xdd4\xe7\xb7\x94P\x8fBlm\x04eAW\xbc0\x9b\xbd\x8f\xf5];\x94\x18\xf0\v\xd7\xf4P\xd3\x9e,Q\xd8\x16\x989l\x03\a\xcc\x1e\xb9\xe9{\xeeS\xa9\xc60\x00\xb5&\x9e\xdbk{F\x18\xa8\xba*G\xd3\x80\xb1G.\xec1\x96uP\x97\x8co\xf1\xa6\xd5\xea\xc8L3|a\xb3\xaa\x90~Y\xb19\xad\xdc\x05o\x98g\xd4\x10]5\x95\xd0\xabJC\x06\xd0c\xd1Ra\xf7\xc4n\xdf\xe4\xc7\x03\x19x\xbb\v\x00\t\xde\xf5\x93\xfb\xfb#\xbd\xc0S\f57\x83\xdd\xaa\xf0\x9c\xd3G\xe1\x00'/232, 0x3ef, 0x9) 3.050507062s ago: executing program 1 (id=8337): ioprio_set$auto(0x2, 0x800000000, 0x8) mknod$auto(&(0x7f0000001040)=':,\x00', 0xca, 0xfffffffa) llistxattr$auto(&(0x7f0000001200)=':,\x00', &(0x7f0000001240)='/sys/kernel/tracing/events/vmalloc/filter\x00', 0x0) r0 = openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0) read$auto_rng_chrdev_ops_core(r0, &(0x7f0000000040)=""/4096, 0xfffffe82) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x90}, 0x20000081) lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x802, 0x9, 0x63, 0x0, 0x0, 0x0, 0x7, 0x7ff, 0x800000000100002, 0x0, 0x2, 0xc, 0x40, 0x1c, 0x20000000009, 0xb}) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) r1 = socket(0x2, 0x3, 0x100) r2 = socket(0x10, 0x2, 0x0) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) r3 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000001100), r1) r4 = openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000007380)='/sys/kernel/tracing/events/vmalloc/filter\x00', 0x109041, 0x0) write$auto(r4, &(0x7f0000008d40)=' \v\xb0]E\x00', 0x3) sendmsg$auto_BATADV_CMD_GET_TRANSTABLE_LOCAL(r2, &(0x7f00000011c0)={&(0x7f00000010c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000001180)={&(0x7f0000001140)={0x1c, r3, 0x4, 0x70bd26, 0x25dfdbff, {}, [@BATADV_ATTR_TT_VID={0x6, 0x14, 0x8001}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40040}, 0x4004) execve$auto(&(0x7f0000000040)=':,\x00', 0x0, &(0x7f0000001300)=&(0x7f0000001080)='\x8c\x82\xa5') 2.753034537s ago: executing program 0 (id=8338): mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r0 = prctl$auto(0x41555856, 0xfff, 0x2008, 0x0, 0xa) r1 = syz_genetlink_get_family_id$auto_smbd_genl(&(0x7f0000000040), r0) sendmsg$auto_KSMBD_EVENT_SHARE_CONFIG_REQUEST(r0, &(0x7f0000000100)={&(0x7f0000000000), 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r1, 0x200, 0x70bd26, 0x25dfdbfc, {}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x40045) ioctl$auto_PAGEMAP_SCAN(0xffffffffffffffff, 0xc0606610, 0x0) close_range$auto(0x2, 0x8, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x25, 0x5, 0x2) r2 = socket(0x848000000015, 0x5, 0x0) bind$auto(0x3, &(0x7f0000000240)=@in={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x23}}, 0x6b) connect$auto(0x3, &(0x7f00000002c0)=@generic={0xa, "5457c29004e0b991da88f70ef61b"}, 0x55) sendmsg$auto_NL80211_CMD_GET_MPATH(r2, &(0x7f0000000d80)={0x0, 0x0, &(0x7f00000003c0)={0x0}, 0x1, 0x0, 0x0, 0x20004000}, 0x100000) r3 = socket(0x2, 0x801, 0x106) getsockopt$auto(r3, 0x11c, 0x3616, 0x0, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x101000, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) r4 = socket(0x23, 0x3, 0x3a) ioctl$auto(r4, 0x7, 0x1) 2.476442016s ago: executing program 3 (id=8339): socket(0x2, 0x3, 0xa) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x9, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x62, 0x0) mmap$auto(0x0, 0xe983, 0x6, 0xeb1, 0xffffffffffffffff, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x20401, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_GET_MSRS(0xffffffffffffffff, 0x4068aea3, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) timer_create$auto(0x803, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_tracing_saved_tgids_fops_trace(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/tracing/saved_tgids\x00', 0x109100, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttynull\x00', 0x201, 0x0) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sda1\x00', 0x20100, 0x0) preadv2$auto(r0, &(0x7f0000000200)={0x0, 0x80000000009}, 0x6, 0xffffffffffffffff, 0x4, 0x2e) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyz7\x00', 0x48f41, 0x0) ioctl$auto(0x3, 0x402c542d, r1) write$auto(0x3, 0x0, 0xfffffdef) 2.30477656s ago: executing program 4 (id=8340): mmap$auto(0x0, 0x4020009, 0xdc, 0xeb1, 0xffffffffffffffff, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) unshare$auto(0x40000080) prctl$auto_PR_SCHED_CORE_SHARE_TO(0x7, 0x2, 0xffffffffffffffff, 0x6, 0x3) socket(0x2, 0x1, 0x0) close_range$auto(0x2, 0x8, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket(0x2, 0x1, 0x106) setsockopt$auto(r1, 0x6, 0xd, &(0x7f0000000280)='lp\x00h\x85M\xdf\xdc\x83\x8a\xa7\xe4]U(\x01\t=\x1e\x00\x00', 0x4) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, 0x0, 0x54) getsockopt$auto(0xffffffffffffffff, 0x84, 0x76, 0x0, &(0x7f00000002c0)=0x1000c0) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/zram0\x00', 0x6e642, 0x0) sendmsg$auto_NL80211_CMD_ABORT_SCAN(r1, &(0x7f0000000200)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000c80)=ANY=[@ANYRESDEC=r1, @ANYRES8=r0, @ANYRES16, @ANYRES32, @ANYBLOB="ed07ef80fccd9226da5e297bda376e9de44c1806394373cac1bb5b2306da528919fc9d1c923ad3421b9c031a70151be9c91b6d3c336ec68fd9480c38882ae5d5910057f40e9f4208153a878aa04961844aa8e8e407fd76084a82b171980908e34eb73a0f3d4469944d6f7245ba5bd596afa944e3d24b156d4fb19746d5cfc053c7bea82e7eb13504f50790e3073e47eeb15392e16c3b7d229b38ab6c8980d970bc02504eeb55fa4b6a83d4a66c2438f0681177068bfb842ea61d6a8f853783e1e3e390f5678cc3f18525f247e4a7ce8f10a9167a578be78284caf9e4729ece7c19caea9065e5b714346873c6cff4fbdbedbbd761f5be5c067180580640807c01478008005800ffffffffa068b0121e733b497aeabf63cff5cb45369896888b9e1f835a928fa4c10afd60715f7452f0132f15a054af098f566286772e159e973b088736a8f5b102c026897e57a976864102e801db03298ed207d37ad07a9c5c89b315b8a0d9cff20a192b6ac6db17314dba7683e0d1c7f6f23d3d3e212a62c0bb5fa4e2a475d3787eed74c921cbec58df308544c38c83834c9f4ede42e60f6b72c334a5b806b2f78cf73c61b9a59f692e084f06009cec9b5aabf41dbc568f4ebab5557226ab7d6e59e4d81858180389dec52bbd2111c705e2de1b79652d109840bd8a68af6fc408b5ed3c1172419752a1dfe0cb35b87d014d5f50199661ddb8bc5649b864b33ad72b3bce486e713dc3fa34d1062714147e67c204e9bd8bfdbc23eba7c2b41ee1213f81021a5c310a44bc4afba11cc895f8e59f0591bd7f9967988237939a85beee4968b33a90de20b055c5b99ec87c17b17100db73706bb3a1b77df4cd131f38ec8b8f04e20f2258a711938d95a65400d88306c708008300", @ANYRES32, @ANYBLOB="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", @ANYRES32], 0xac0}, 0x1, 0x0, 0x0, 0x240000d0}, 0x20048800) write$auto(r2, &(0x7f0000000400)='odev/audio1\x00', 0x100000a3d9) socket(0xa, 0x2, 0x0) timerfd_create$auto_CLOCK_REALTIME(0x0, 0x5) 2.237421628s ago: executing program 0 (id=8341): bpf$auto_BPF_OBJ_GET_INFO_BY_FD(0xf, &(0x7f00000010c0)=@enable_stats={0xffffffff}, 0x100) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0) ioctl$auto_TIOCGPTPEER2(r0, 0x5441, 0x0) timer_create$auto(0x9, 0x0, 0x0) mmap$auto(0x0, 0x20005, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) r1 = socket(0x1d, 0x2, 0x107) r2 = socket(0x2a, 0x1, 0x0) read$auto_uprobe_events_ops_trace_uprobe(0xffffffffffffffff, &(0x7f0000001900)=""/4096, 0x1000) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) r4 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f00000000c0), r2) sendmsg$auto_NL802154_CMD_DEL_INTERFACE(r1, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x3c, r4, 0x400, 0x70bd2b, 0x25dfdbfe, {}, [@NL802154_ATTR_SEC_DEVKEY={0x18, 0x2f, 0x0, 0x1, [@typed={0x8, 0x152, 0x0, 0x0, @fd=r0}, @typed={0xc, 0x45, 0x0, 0x0, @u64=0x6d}]}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x6}, @NL802154_ATTR_IFTYPE={0x8, 0x5, 0xe}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20000040}, 0x880) bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r3}, 0x6a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000180)={'vcan0\x00', 0x0}) connect$auto(0x3, &(0x7f00000018c0)=@can={0x1d, r5}, 0x18) sendmmsg$auto(0x3, 0x0, 0x9a4, 0xffff) r6 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x501140, 0x0) read$auto_tomoyo_operations_securityfs_if(r6, 0x0, 0x0) 1.938096037s ago: executing program 0 (id=8342): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/lockd/parameters/nlm_tcpport\x00', 0xc2481, 0x0) unshare$auto(0x40000080) r0 = socket(0xa, 0x5, 0x0) mmap$auto(0x4, 0xa020009, 0x3, 0xeb1, r0, 0x7ffe) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/fs/cifs/mount_params\x00', 0x802, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/system/machinecheck/machinecheck0/cmci_disabled\x00', 0x2062, 0x0) socket(0x15, 0x5, 0x0) sendfile$auto(r2, 0xffffffffffffffff, 0x0, 0x800) write$auto(r1, &(0x7f0000000640)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\xff\x7f\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc:\xfa\x01\xd1\xa3\xb5\xc2B\xa5\xac:woR^a\xb9}\xe7\xbd\xe1\xf77.\xa3\xd8\xc2T\x95\x13\x91\xb6p\xf3\xb2w\xe6\xd7\x94DW\x97\x90a\xe6c\xfb\x88x\xd5L\xa9\xe4\x82\x04\xb1\x8b\r\xcaP\\\x1aVP\xc9\xa4`\xfd\v\x94\f\xc1\x0fQ\xc9\xdcL\x03\x9c\xbfk\xa6\xb1\xb0\xa1\xeeJ\xd8\xef\xc8t\x9d\x1e=J\x91W\xc6AuJ\xb9Q\xed\xd1\a\x05\x9d\x85\xb7b#r\xcd\xaf\xb7\x9f\xf7\xd2\xae\x0f\x98\xa9&\xb6~\xd4\xbd\xbbr\xb9\xc3\xacH!\xc1\x90K2\x05K@\xee\xac\xe8\xc7\t\xab\xbf\xa3\xedb\xd7\xb5\xd7\x83&\x95\xb2?\x0e\x85\xaaIGu\xd6$\xeb\xb6\xdd\a\x121\a\xac\x1bx#\x87\xa9\x10\x9b\xf8YD\x04ZL\xca\x99]\x8f[\x90[\xa8\xbf\x98\xa6\xe50(zC\xe84*w\x13\x96\xd5\xd0\x877\x12\xbc\xa1\xd0h@|\xf9\xfa\x9b\x17\x94\xb9\xe7\xf3\x15\x05\x91\xe8\x98p\x7f:\xd7s\xd9wo\x82\xda\xec\x91\xb7\xd9;H\x8a\b\x00\x00\x00\x00\x00\x00\x00\x8aZ\x94\x14$X7\xaeW6=^I\x9fQ\r5c\x81\xca]\x97m\x89o\x8f\xd8}P>I\xd0\xb3\x88C\xd7', 0x100000a3d9) syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) poll$auto(&(0x7f0000000180)={0xffffffffffffffff, 0xfff7, 0x9816}, 0x7f, 0x9) migrate_pages$auto(0x0, 0xa, &(0x7f00000000c0)=0x52a6, &(0x7f0000000140)=0x2) ioctl$auto_VHOST_SET_LOG_FD2(0xffffffffffffffff, 0x4004af07, 0x0) unshare$auto(0x2) r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/net/mcfilter6\x00', 0x103440, 0x0) pread64$auto(r3, &(0x7f0000000000)='/proc/thread-self/net/tcp6\x00\xd2)\x8e\x892\x82\x19\xfd\x03\xc3\x8d\xd7D\bz\xde5u4\xddS\xe6\x1a\x8a`\xad0\x98|\xbc\x00\x98\b\x0ey\xcb`\x9b\x91r\xd5\x13\x9e\xdd4\xe7\xb7\x94P\x8fBlm\x04eAW\xbc0\x9b\xbd\x8f\xf5];\x94\x18\xf0\v\xd7\xf4P\xd3\x9e,Q\xd8\x16\x989l\x03\a\xcc\x1e\xb9\xe9{\xeeS\xa9\xc60\x00\xb5&\x9e\xdbk{F\x18\xa8\xba*G\xd3\x80\xb1G.\xec1\x96uP\x97\x8co\xf1\xa6\xd5\xea\xc8L3|a\xb3\xaa\x90~Y\xb19\xad\xdc\x05o\x98g\xd4\x10]5\x95\xd0\xabJC\x06\xd0c\xd1Ra\xf7\xc4n\xdf\xe4\xc7\x03\x19x\xbb\v\x00\t\xde\xf5\x93\xfb\xfb#\xbd\xc0S\f57\x83\xdd\xaa\xf0\x9c\xd3G\xe1\x00'/232, 0x3ef, 0x9) 1.627706911s ago: executing program 1 (id=8343): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sysfs$auto(0x2, 0x23, 0x0) r0 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) write$auto(r0, 0x0, 0x4) openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, 0x0, 0x2482, 0x0) close_range$auto(0x2, 0x8, 0x0) select$auto(0x79c9, &(0x7f0000000200)={[0x0, 0x8, 0x4, 0x7f, 0x8, 0x7, 0x9, 0x7, 0x10000, 0x0, 0x7, 0x7, 0xdb, 0x8, 0x5ae, 0x6]}, 0x0, &(0x7f0000000440)={[0x4, 0x5ee7, 0x7, 0x80000, 0xffffffffffffff01, 0x1, 0x400, 0xe, 0x2, 0x2, 0x9, 0xbf87, 0x0, 0xfffffffffffffffd, 0x3, 0x81]}, &(0x7f0000000140)={0x401, 0x1}) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/pm_trace_dev_match\x00', 0x20080, 0x0) getsockopt$auto_SO_NETNS_COOKIE(0xffffffffffffffff, 0x7, 0x47, &(0x7f0000000380)='-\xc8\xa5\x83\x1c\xe0\x8a\xeb\xcc\xfb\xa8\xe3k\b/*\xa7dev/audio1\x00q>l. <\xb0', &(0x7f00000001c0)=0x9) r2 = socket$nl_generic(0x10, 0x3, 0x10) io_uring_setup$auto(0xd364, &(0x7f0000000000)={0x400, 0x10002, 0x7f, 0x7, 0x6, 0x5, r2, [], {0x2, 0x4, 0x6, 0x2, 0x40, 0x4, 0x7, 0x7, 0x80000000}, {0x7, 0x1ff, 0x80000001, 0x8, 0x6b, 0x9, 0x0, 0xfffffffa, 0xb1}}) sendmsg$auto_IPVS_CMD_SET_DEST(0xffffffffffffffff, &(0x7f0000000a40)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x20040011) read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000280)=""/175, 0xaf) 1.324023136s ago: executing program 1 (id=8345): socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sysfs$auto(0x2, 0x23, 0x0) r0 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) write$auto(r0, 0x0, 0x4) openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, 0x0, 0x2482, 0x0) close_range$auto(0x2, 0x8, 0x0) select$auto(0x79c9, &(0x7f0000000200)={[0x0, 0x8, 0x4, 0x7f, 0x8, 0x7, 0x9, 0x7, 0x10000, 0x0, 0x7, 0x7, 0xdb, 0x8, 0x5ae, 0x6]}, 0x0, &(0x7f0000000440)={[0x4, 0x5ee7, 0x7, 0x80000, 0xffffffffffffff01, 0x1, 0x400, 0xe, 0x2, 0x2, 0x9, 0xbf87, 0x0, 0xfffffffffffffffd, 0x3, 0x81]}, &(0x7f0000000140)={0x401, 0x1}) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/pm_trace_dev_match\x00', 0x20080, 0x0) getsockopt$auto_SO_NETNS_COOKIE(0xffffffffffffffff, 0x7, 0x47, &(0x7f0000000380)='-\xc8\xa5\x83\x1c\xe0\x8a\xeb\xcc\xfb\xa8\xe3k\b/*\xa7dev/audio1\x00q>l. <\xb0', &(0x7f00000001c0)=0x9) r2 = socket$nl_generic(0x10, 0x3, 0x10) io_uring_setup$auto(0xd364, &(0x7f0000000000)={0x400, 0x10002, 0x7f, 0x7, 0x6, 0x5, r2, [], {0x2, 0x4, 0x6, 0x2, 0x40, 0x4, 0x7, 0x7, 0x80000000}, {0x7, 0x1ff, 0x80000001, 0x8, 0x6b, 0x9, 0x0, 0xfffffffa, 0xb1}}) sendmsg$auto_IPVS_CMD_SET_DEST(0xffffffffffffffff, &(0x7f0000000a40)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x20040011) read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000280)=""/175, 0xaf) 896.170541ms ago: executing program 1 (id=8346): r0 = socket(0x2b, 0x1, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r1 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x20, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x40001, 0x0) ioctl$auto(0x3, 0x5403, r1) write$auto(0x3, 0x0, 0x1) bind$auto(0x3, 0x0, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, 0x0, 0x9, 0x0, 0x1f, 0x9}, 0x800009}, 0x7, 0x20000000) setsockopt$auto(0x3, 0x1, 0x2f, 0x0, 0x9) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x44, 0x0) select$auto(0xfa4f, 0x0, 0x0, 0x0, 0x0) r2 = socket(0xf, 0x2, 0x300) capset$auto(0x0, &(0x7f0000000000)={0x2, 0xc, 0x5a}) sendmmsg$auto(r2, 0x0, 0x4, 0x100) write$auto(0x3, 0x0, 0xfffffdef) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) 739.853344ms ago: executing program 0 (id=8347): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = open(&(0x7f0000000100)='./file0/file0\x00', 0x222c0, 0x0) r1 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/filesystems\x00', 0x1c9802, 0x0) pread64$auto(r1, 0x0, 0x100000001, 0x100) fcntl$auto(r0, 0x400, 0x1) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) unshare$auto(0x40000080) socket(0xa, 0x5, 0x84) socket(0xa, 0x3, 0x3a) setsockopt$auto(0x400000000000003, 0x29, 0xcb, 0x0, 0x4) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_READ(0xffffffffffffffff, 0xc4c85512, &(0x7f0000000300)={{@raw=0x6, 0x0, 0x8001, 0x2, "da14cf93e7670976d4df4660872c34e34ab92824711bacf3578dcec408cf5180d03a4d126edb3169db6d48ac"}, 0x1, @iec958={"28f6a86309b1e098a7dfa272f95c4c28615313f81f02a4eb", "77a2e9b1b0224a8ef0ac25ff0db0b6ec20c55cccbf4e9b253241777363b62fbe19f64f49f5ed0205399a691cb53e4086d6ec9dcbc5173fee439c2db7f3d5f2d4dd2a267a11e3c0cc771cdddef6bdb02a85cf5ea2ecc26fa3fe291d1e45404619547117c0d45a0de14bc3b9c22d705152efa9d2cfb220c6210dd7606723fb4d6d8ea3e197b19203c65d90e3c761870cbd392bea", 0x0, "e8134be5"}, "a8949c7d9c57acd66da4c5f111166031ad47ebfed172b36a28d7b0204e3a90e9a6c41064df45da18212d9c4e61a29b8146bd0c0284d89751eb5c58cb32c2abf739599063c9a0820f08f1c1b3645f00006dcd033a712822785eeb6a2c41b6d7c00f5e965c1d0000000000000000000000000400"}) r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/neigh/vlan1/base_reachable_time\x00', 0x40400, 0x0) read$auto(r2, 0x0, 0x1ff) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0C0F:00/status\x00', 0xa140, 0x0) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x8002, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_REPLACE(0xffffffffffffffff, 0xc1105518, &(0x7f0000000800)={{@raw=0x1, 0x2a, 0x9, 0x8, "1fb8c66db3341cdd7c59af17e7b614aa3afcdeb461cadda10426d44d78a6ba746186ca630a6da69ee86ab53f"}, 0x5, 0x4, 0x5, @raw=0x7177, @integer64={0x4, 0xffffffffffff7b36, 0xa}, "cba6172b3efc8e802148850d899c7344d921d6500e1df65334791ec480e1f7d57f372e3ab8a1a0d9984325bf99e346b18bc1fd824548a13ab3cd10995fd5417b"}) writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3) close_range$auto(0x0, 0xfffffffffffff000, 0x2) io_uring_setup$auto(0x84, &(0x7f0000000080)={0x7fffffff, 0xd, 0x83000, 0x8000006, 0x4, 0x7fffffff, 0xffffffffffffffff, [], {0x6, 0xcb32dd6, 0x8c48, 0x29f, 0x100, 0x77fffffe, 0x101, 0xb0d, 0x3}, {0x100, 0x1, 0x20000052, 0x1, 0x2, 0x40, 0xc4, 0xb, 0x100000000}}) 564.222004ms ago: executing program 4 (id=8348): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0xffffffffffffffff, 0x8000) socket(0x2, 0x2, 0x0) bind$auto(0x3, &(0x7f0000000100)=@tipc=@nameseq={0x1e, 0x1, 0x1, {0x40, 0x0, 0x2}}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50) ioctl$auto_RTC_WKALM_SET(0xffffffffffffffff, 0x4028700f, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x42802, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x2, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r0 = socket(0x15, 0x5, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0) sendmsg$auto(r0, &(0x7f0000000180)={&(0x7f0000000040), 0x7fc, 0x0, 0x8, 0x0, 0x1, 0x4}, 0x0) 0s ago: executing program 3 (id=8349): unshare$auto(0x40000080) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) setsockopt$auto(0xffffffffffffffff, 0xb, 0x24, 0x0, 0x9) close_range$auto(0x2, 0xa, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/platform/vhci_hcd.0/usbip_debug\x00', 0x8002, 0x0) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40602, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) setfsuid$auto(0xee00) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xf15a}, 0x6, 0x8, 0x5) write$auto(0x3, 0x0, 0xffd8) epoll_create$auto(0x3e) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) fadvise64$auto_POSIX_FADV_DONTNEED(r0, 0x6, 0x1800000000000000, 0x4) r1 = socketpair$auto(0x1f, 0x5, 0x8000000000000000, 0x0) ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0) sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1000200) kernel console output (not intermixed with test programs): ] macvlan1: entered allmulticast mode [ 1142.424922][T26588] netlink: 286 bytes leftover after parsing attributes in process `syz.1.6952'. [ 1142.836145][T26591] __vm_enough_memory: pid: 26591, comm: syz.0.6953, bytes: 4398046457856 not enough memory for the allocation [ 1149.138220][T26649] netlink: 28 bytes leftover after parsing attributes in process `syz.3.6968'. [ 1149.229449][T26649] macvlan1: entered promiscuous mode [ 1149.256851][T26649] macvlan1: entered allmulticast mode [ 1149.294071][T26649] veth1_vlan: entered allmulticast mode [ 1152.216562][T26685] netlink: 330 bytes leftover after parsing attributes in process `syz.0.6977'. [ 1155.194278][T26727] netlink: 25 bytes leftover after parsing attributes in process `syz.1.6992'. [ 1156.047654][T26737] netlink: 28 bytes leftover after parsing attributes in process `syz.1.6996'. [ 1157.127095][T26740] FAULT_INJECTION: forcing a failure. [ 1157.127095][T26740] name failslab, interval 1, probability 0, space 0, times 0 [ 1157.327390][T26740] CPU: 0 UID: 0 PID: 26740 Comm: syz.4.6994 Tainted: G L syzkaller #0 PREEMPT(full) [ 1157.327421][T26740] Tainted: [L]=SOFTLOCKUP [ 1157.327428][T26740] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1157.327439][T26740] Call Trace: [ 1157.327446][T26740] [ 1157.327454][T26740] dump_stack_lvl+0x100/0x190 [ 1157.327488][T26740] should_fail_ex.cold+0x5/0xa [ 1157.327511][T26740] should_failslab+0xc2/0x120 [ 1157.327530][T26740] __kmalloc_cache_noprof+0x7a/0x6f0 [ 1157.327553][T26740] ? append_filter_err+0xb8/0x620 [ 1157.327575][T26740] ? process_preds+0x93d/0x1d90 [ 1157.327599][T26740] append_filter_err+0xb8/0x620 [ 1157.327622][T26740] ? create_filter_start.constprop.0+0x134/0x310 [ 1157.327658][T26740] create_filter+0x1a6/0x210 [ 1157.327684][T26740] ? __pfx_create_filter+0x10/0x10 [ 1157.327711][T26740] ? find_held_lock+0x2b/0x80 [ 1157.327730][T26740] apply_event_filter+0x220/0x500 [ 1157.327754][T26740] ? __pfx_apply_event_filter+0x10/0x10 [ 1157.327783][T26740] event_filter_write+0x16d/0x290 [ 1157.327803][T26740] vfs_write+0x2aa/0x1070 [ 1157.327819][T26740] ? __pfx_event_filter_write+0x10/0x10 [ 1157.327839][T26740] ? __pfx_vfs_write+0x10/0x10 [ 1157.327853][T26740] ? __fget_files+0x215/0x3d0 [ 1157.327873][T26740] ? __fget_files+0x21f/0x3d0 [ 1157.327893][T26740] ksys_write+0x12a/0x250 [ 1157.327908][T26740] ? __pfx_ksys_write+0x10/0x10 [ 1157.327929][T26740] do_syscall_64+0x10b/0xf80 [ 1157.327945][T26740] ? clear_bhb_loop+0x40/0x90 [ 1157.327966][T26740] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1157.327982][T26740] RIP: 0033:0x7fb5c359c819 [ 1157.327998][T26740] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1157.328013][T26740] RSP: 002b:00007fb5c43c4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1157.328029][T26740] RAX: ffffffffffffffda RBX: 00007fb5c3815fa0 RCX: 00007fb5c359c819 [ 1157.328039][T26740] RDX: 00000000000005c8 RSI: 0000000000000000 RDI: 0000000000000003 [ 1157.328048][T26740] RBP: 00007fb5c3632c91 R08: 0000000000000000 R09: 0000000000000000 [ 1157.328057][T26740] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1157.328067][T26740] R13: 00007fb5c3816038 R14: 00007fb5c3815fa0 R15: 00007ffc38390f98 [ 1157.328088][T26740] [ 1158.197648][T26760] input: jJǸ-9%vJ86 as /devices/virtual/input/input24 [ 1163.096867][T26809] FAULT_INJECTION: forcing a failure. [ 1163.096867][T26809] name failslab, interval 1, probability 0, space 0, times 0 [ 1163.195843][T26809] CPU: 0 UID: 0 PID: 26809 Comm: syz.3.7017 Tainted: G L syzkaller #0 PREEMPT(full) [ 1163.195872][T26809] Tainted: [L]=SOFTLOCKUP [ 1163.195878][T26809] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1163.195888][T26809] Call Trace: [ 1163.195894][T26809] [ 1163.195901][T26809] dump_stack_lvl+0x100/0x190 [ 1163.195931][T26809] should_fail_ex.cold+0x5/0xa [ 1163.195951][T26809] should_failslab+0xc2/0x120 [ 1163.195969][T26809] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1163.195992][T26809] ? __mpol_dup+0x74/0x390 [ 1163.196019][T26809] __mpol_dup+0x74/0x390 [ 1163.196043][T26809] ? __pfx___mpol_dup+0x10/0x10 [ 1163.196061][T26809] ? kmem_cache_alloc_noprof+0x292/0x6e0 [ 1163.196084][T26809] ? sp_alloc+0x27/0x160 [ 1163.196106][T26809] sp_alloc+0x4d/0x160 [ 1163.196126][T26809] mpol_set_shared_policy+0xa5/0x890 [ 1163.196151][T26809] ? __pfx_shmem_set_policy+0x10/0x10 [ 1163.196169][T26809] mbind_range+0x339/0x550 [ 1163.196190][T26809] do_mbind+0x7dc/0xfd0 [ 1163.196212][T26809] ? __might_fault+0xc5/0x140 [ 1163.196234][T26809] ? __pfx_do_mbind+0x10/0x10 [ 1163.196257][T26809] ? _copy_from_user+0x59/0xd0 [ 1163.196286][T26809] ? __pfx_get_nodes+0x10/0x10 [ 1163.196305][T26809] kernel_mbind+0x1b7/0x200 [ 1163.196326][T26809] ? __pfx_kernel_mbind+0x10/0x10 [ 1163.196350][T26809] do_syscall_64+0x10b/0xf80 [ 1163.196365][T26809] ? clear_bhb_loop+0x40/0x90 [ 1163.196383][T26809] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1163.196399][T26809] RIP: 0033:0x7f935ff9c819 [ 1163.196414][T26809] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1163.196429][T26809] RSP: 002b:00007f9360edc028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed [ 1163.196444][T26809] RAX: ffffffffffffffda RBX: 00007f9360215fa0 RCX: 00007f935ff9c819 [ 1163.196454][T26809] RDX: 0000000000008003 RSI: 0000000000800605 RDI: 0000000000000000 [ 1163.196464][T26809] RBP: 00007f9360032c91 R08: 0000000000000003 R09: 0000000000000003 [ 1163.196473][T26809] R10: 0000200000000100 R11: 0000000000000246 R12: 0000000000000000 [ 1163.196482][T26809] R13: 00007f9360216038 R14: 00007f9360215fa0 R15: 00007ffea087a948 [ 1163.196502][T26809] [ 1163.984123][T26823] netlink: 25 bytes leftover after parsing attributes in process `syz.1.7020'. [ 1165.934232][T26841] FAULT_INJECTION: forcing a failure. [ 1165.934232][T26841] name failslab, interval 1, probability 0, space 0, times 0 [ 1165.995628][T26839] mkiss: ax0: crc mode is auto. [ 1166.043432][T26841] CPU: 0 UID: 0 PID: 26841 Comm: syz.0.7026 Tainted: G L syzkaller #0 PREEMPT(full) [ 1166.043469][T26841] Tainted: [L]=SOFTLOCKUP [ 1166.043476][T26841] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1166.043487][T26841] Call Trace: [ 1166.043495][T26841] [ 1166.043502][T26841] dump_stack_lvl+0x100/0x190 [ 1166.043536][T26841] should_fail_ex.cold+0x5/0xa [ 1166.043561][T26841] should_failslab+0xc2/0x120 [ 1166.043582][T26841] kmem_cache_alloc_node_noprof+0x81/0x6f0 [ 1166.043608][T26841] ? blk_alloc_queue+0x31/0x790 [ 1166.043627][T26841] blk_alloc_queue+0x31/0x790 [ 1166.043644][T26841] blk_mq_alloc_queue+0x174/0x290 [ 1166.043665][T26841] ? __pfx_blk_mq_alloc_queue+0x10/0x10 [ 1166.043695][T26841] ? blk_mq_alloc_tag_set+0xe2c/0x1330 [ 1166.043719][T26841] __blk_mq_alloc_disk+0x29/0x120 [ 1166.043740][T26841] loop_add+0x498/0xb60 [ 1166.043762][T26841] ? __pfx_loop_add+0x10/0x10 [ 1166.043792][T26841] ? find_held_lock+0x2b/0x80 [ 1166.043808][T26841] ? __fget_files+0x215/0x3d0 [ 1166.043829][T26841] loop_control_ioctl+0xae/0x620 [ 1166.043874][T26841] ? __pfx_loop_control_ioctl+0x10/0x10 [ 1166.043900][T26841] ? __pfx_loop_control_ioctl+0x10/0x10 [ 1166.043924][T26841] __x64_sys_ioctl+0x18e/0x210 [ 1166.043955][T26841] do_syscall_64+0x10b/0xf80 [ 1166.043970][T26841] ? clear_bhb_loop+0x40/0x90 [ 1166.043990][T26841] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1166.044010][T26841] RIP: 0033:0x7f2c5319c819 [ 1166.044027][T26841] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1166.044042][T26841] RSP: 002b:00007f2c540f4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1166.044067][T26841] RAX: ffffffffffffffda RBX: 00007f2c53415fa0 RCX: 00007f2c5319c819 [ 1166.044080][T26841] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000009 [ 1166.044091][T26841] RBP: 00007f2c53232c91 R08: 0000000000000000 R09: 0000000000000000 [ 1166.044101][T26841] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1166.044112][T26841] R13: 00007f2c53416038 R14: 00007f2c53415fa0 R15: 00007ffe7d45d528 [ 1166.044136][T26841] [ 1173.039677][T26895] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7050'. [ 1173.110215][T26895] netlink: 25 bytes leftover after parsing attributes in process `syz.0.7050'. [ 1173.370707][T26899] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7043'. [ 1173.456711][T26902] netlink: 13 bytes leftover after parsing attributes in process `syz.1.7043'. [ 1173.995307][T20205] Bluetooth: hci2: unexpected event 0x05 length: 43 > 4 [ 1174.403734][T26908] zswap: compressor not available [ 1177.547793][T26943] zswap: compressor not available [ 1177.723876][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 1177.734133][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 1177.915273][T26952] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7056'. [ 1177.951810][T26954] netlink: 186 bytes leftover after parsing attributes in process `syz.1.7057'. [ 1177.984929][T26952] netlink: 13 bytes leftover after parsing attributes in process `syz.0.7056'. [ 1178.220142][T26950] netlink: 186 bytes leftover after parsing attributes in process `syz.1.7057'. [ 1180.170672][T26981] zswap: compressor not available [ 1184.054140][T27033] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7071'. [ 1184.160367][T27033] netlink: 25 bytes leftover after parsing attributes in process `syz.4.7071'. [ 1186.765125][T27073] ERROR: Out of memory at tomoyo_memory_ok. [ 1188.368595][T27073] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 1189.065248][T27103] FAULT_INJECTION: forcing a failure. [ 1189.065248][T27103] name failslab, interval 1, probability 0, space 0, times 0 [ 1189.065289][T27103] CPU: 0 UID: 0 PID: 27103 Comm: syz.3.7080 Tainted: G L syzkaller #0 PREEMPT(full) [ 1189.065315][T27103] Tainted: [L]=SOFTLOCKUP [ 1189.065322][T27103] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1189.065333][T27103] Call Trace: [ 1189.065340][T27103] [ 1189.065347][T27103] dump_stack_lvl+0x100/0x190 [ 1189.065380][T27103] should_fail_ex.cold+0x5/0xa [ 1189.065403][T27103] should_failslab+0xc2/0x120 [ 1189.065422][T27103] __kmalloc_cache_noprof+0x7a/0x6f0 [ 1189.065444][T27103] ? percpu_ref_init+0xec/0x3f0 [ 1189.065467][T27103] ? __pfx_blk_queue_usage_counter_release+0x10/0x10 [ 1189.065490][T27103] percpu_ref_init+0xec/0x3f0 [ 1189.065512][T27103] blk_alloc_queue+0x574/0x790 [ 1189.065529][T27103] blk_mq_alloc_queue+0x174/0x290 [ 1189.065548][T27103] ? __pfx_blk_mq_alloc_queue+0x10/0x10 [ 1189.065576][T27103] ? blk_mq_alloc_tag_set+0xe2c/0x1330 [ 1189.065600][T27103] __blk_mq_alloc_disk+0x29/0x120 [ 1189.065619][T27103] loop_add+0x498/0xb60 [ 1189.065639][T27103] ? __pfx_loop_add+0x10/0x10 [ 1189.065668][T27103] ? find_held_lock+0x2b/0x80 [ 1189.065683][T27103] ? __fget_files+0x215/0x3d0 [ 1189.065701][T27103] loop_control_ioctl+0xae/0x620 [ 1189.065724][T27103] ? __pfx_loop_control_ioctl+0x10/0x10 [ 1189.065758][T27103] ? __pfx_loop_control_ioctl+0x10/0x10 [ 1189.065781][T27103] __x64_sys_ioctl+0x18e/0x210 [ 1189.065808][T27103] do_syscall_64+0x10b/0xf80 [ 1189.065824][T27103] ? clear_bhb_loop+0x40/0x90 [ 1189.065843][T27103] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1189.065859][T27103] RIP: 0033:0x7f935ff9c819 [ 1189.065874][T27103] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1189.065889][T27103] RSP: 002b:00007f9360edc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1189.065906][T27103] RAX: ffffffffffffffda RBX: 00007f9360215fa0 RCX: 00007f935ff9c819 [ 1189.065916][T27103] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000009 [ 1189.065925][T27103] RBP: 00007f9360032c91 R08: 0000000000000000 R09: 0000000000000000 [ 1189.065935][T27103] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1189.065944][T27103] R13: 00007f9360216038 R14: 00007f9360215fa0 R15: 00007ffea087a948 [ 1189.065964][T27103] [ 1192.147781][T27135] Page cache invalidation failure on direct I/O. Possible data corruption due to collision with buffered I/O! [ 1192.147805][T27135] File: /dev/nullb0 PID: 27135 Comm: syz.1.7089 [ 1192.900740][T27150] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7094'. [ 1193.003317][T27152] netlink: 'syz.4.7094': attribute type 1 has an invalid length. [ 1193.058898][T27152] netlink: 'syz.4.7094': attribute type 6 has an invalid length. [ 1195.039579][T27176] can: request_module (can-proto-5) failed. [ 1195.218067][T27181] FAULT_INJECTION: forcing a failure. [ 1195.218067][T27181] name failslab, interval 1, probability 0, space 0, times 0 [ 1195.334393][T27181] CPU: 0 UID: 0 PID: 27181 Comm: syz.0.7100 Tainted: G L syzkaller #0 PREEMPT(full) [ 1195.334424][T27181] Tainted: [L]=SOFTLOCKUP [ 1195.334431][T27181] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1195.334442][T27181] Call Trace: [ 1195.334448][T27181] [ 1195.334456][T27181] dump_stack_lvl+0x100/0x190 [ 1195.334490][T27181] should_fail_ex.cold+0x5/0xa [ 1195.334514][T27181] ? __register_sysctl_table+0xac/0x1650 [ 1195.334532][T27181] should_failslab+0xc2/0x120 [ 1195.334553][T27181] __kmalloc_noprof+0xe0/0x850 [ 1195.334581][T27181] __register_sysctl_table+0xac/0x1650 [ 1195.334600][T27181] ? is_module_address+0x5f/0xf0 [ 1195.334623][T27181] ? __pfx___register_sysctl_table+0x10/0x10 [ 1195.334639][T27181] ? is_module_address+0x69/0xf0 [ 1195.334658][T27181] ? register_net_sysctl_sz+0x222/0x430 [ 1195.334675][T27181] ? __asan_memmove+0x10/0x60 [ 1195.334699][T27181] ? kmemdup_noprof+0x49/0x60 [ 1195.334718][T27181] ipv6_sysctl_net_init+0x136/0x2b0 [ 1195.334739][T27181] ? __pfx_ipv6_sysctl_net_init+0x10/0x10 [ 1195.334756][T27181] ops_init+0x1e2/0x5f0 [ 1195.334782][T27181] setup_net+0x118/0x3a0 [ 1195.334797][T27181] ? __pfx_setup_net+0x10/0x10 [ 1195.334810][T27181] ? lockdep_init_map_type+0x5c/0x250 [ 1195.334832][T27181] ? mutex_init_lockep+0x110/0x150 [ 1195.334855][T27181] copy_net_ns+0x46f/0x7c0 [ 1195.334883][T27181] create_new_namespaces+0x3ea/0xac0 [ 1195.334906][T27181] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 1195.334928][T27181] ksys_unshare+0x473/0xad0 [ 1195.334952][T27181] ? __pfx_ksys_unshare+0x10/0x10 [ 1195.334982][T27181] __x64_sys_unshare+0x31/0x40 [ 1195.335009][T27181] do_syscall_64+0x10b/0xf80 [ 1195.335026][T27181] ? clear_bhb_loop+0x40/0x90 [ 1195.335048][T27181] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1195.335066][T27181] RIP: 0033:0x7f2c5319c819 [ 1195.335081][T27181] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1195.335096][T27181] RSP: 002b:00007f2c540f4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 1195.335113][T27181] RAX: ffffffffffffffda RBX: 00007f2c53415fa0 RCX: 00007f2c5319c819 [ 1195.335123][T27181] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 1195.335132][T27181] RBP: 00007f2c53232c91 R08: 0000000000000000 R09: 0000000000000000 [ 1195.335141][T27181] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1195.335151][T27181] R13: 00007f2c53416038 R14: 00007f2c53415fa0 R15: 00007ffe7d45d528 [ 1195.335172][T27181] [ 1196.985767][T27201] FAULT_INJECTION: forcing a failure. [ 1196.985767][T27201] name failslab, interval 1, probability 0, space 0, times 0 [ 1197.113693][T27201] CPU: 0 UID: 0 PID: 27201 Comm: syz.3.7106 Tainted: G L syzkaller #0 PREEMPT(full) [ 1197.113725][T27201] Tainted: [L]=SOFTLOCKUP [ 1197.113733][T27201] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1197.113744][T27201] Call Trace: [ 1197.113751][T27201] [ 1197.113759][T27201] dump_stack_lvl+0x100/0x190 [ 1197.113793][T27201] should_fail_ex.cold+0x5/0xa [ 1197.113814][T27201] should_failslab+0xc2/0x120 [ 1197.113833][T27201] __kmalloc_cache_noprof+0x7a/0x6f0 [ 1197.113856][T27201] ? tomoyo_init_log+0x1a0/0x20c0 [ 1197.113876][T27201] tomoyo_init_log+0x1a0/0x20c0 [ 1197.113892][T27201] ? __pfx_format_decode+0x10/0x10 [ 1197.113915][T27201] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1197.113937][T27201] ? __pfx_tomoyo_init_log+0x10/0x10 [ 1197.113960][T27201] tomoyo_write_log2+0x2ed/0xbc0 [ 1197.113980][T27201] tomoyo_supervisor+0x15e/0x1340 [ 1197.114005][T27201] ? __pfx_tomoyo_supervisor+0x10/0x10 [ 1197.114032][T27201] ? kasan_quarantine_put+0x104/0x240 [ 1197.114058][T27201] ? tomoyo_check_path_acl+0x141/0x210 [ 1197.114081][T27201] ? tomoyo_check_acl+0x1f7/0x410 [ 1197.114103][T27201] tomoyo_path_permission+0x270/0x3b0 [ 1197.114128][T27201] tomoyo_check_open_permission+0x37f/0x3c0 [ 1197.114152][T27201] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 1197.114181][T27201] ? hook_file_open+0x24e/0x7a0 [ 1197.114207][T27201] ? path_get+0x61/0x80 [ 1197.114227][T27201] tomoyo_file_open+0x6b/0x90 [ 1197.114246][T27201] security_file_open+0xb5/0x1e0 [ 1197.114269][T27201] do_dentry_open+0x5aa/0x1660 [ 1197.114297][T27201] ? security_inode_permission+0xbf/0x250 [ 1197.114327][T27201] vfs_open+0x82/0x3f0 [ 1197.114352][T27201] path_openat+0x208c/0x31a0 [ 1197.114375][T27201] ? __pfx_path_openat+0x10/0x10 [ 1197.114398][T27201] do_file_open+0x20e/0x430 [ 1197.114416][T27201] ? __pfx_do_file_open+0x10/0x10 [ 1197.114449][T27201] ? alloc_fd+0x476/0x790 [ 1197.114467][T27201] ? do_getname+0x191/0x390 [ 1197.114488][T27201] do_sys_openat2+0x10d/0x1e0 [ 1197.114508][T27201] ? __pfx_do_sys_openat2+0x10/0x10 [ 1197.114529][T27201] ? find_held_lock+0x2b/0x80 [ 1197.114551][T27201] __x64_sys_openat+0x12d/0x210 [ 1197.114572][T27201] ? __pfx___x64_sys_openat+0x10/0x10 [ 1197.114599][T27201] do_syscall_64+0x10b/0xf80 [ 1197.114615][T27201] ? clear_bhb_loop+0x40/0x90 [ 1197.114633][T27201] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1197.114649][T27201] RIP: 0033:0x7f935ff9c819 [ 1197.114665][T27201] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1197.114681][T27201] RSP: 002b:00007f9360edc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1197.114697][T27201] RAX: ffffffffffffffda RBX: 00007f9360215fa0 RCX: 00007f935ff9c819 [ 1197.114708][T27201] RDX: 0000000000088000 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 1197.114719][T27201] RBP: 00007f9360032c91 R08: 0000000000000000 R09: 0000000000000000 [ 1197.114729][T27201] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1197.114739][T27201] R13: 00007f9360216038 R14: 00007f9360215fa0 R15: 00007ffea087a948 [ 1197.114761][T27201] [ 1197.649752][T27211] netlink: 330 bytes leftover after parsing attributes in process `syz.4.7108'. [ 1198.973364][ T29] audit: type=1800 audit(2147483750.250:29): pid=27225 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.7112" name="discovery_nqn" dev="configfs" ino=260058 res=0 errno=0 [ 1200.035157][T27245] input: f as /devices/virtual/input/input26 [ 1200.177630][ T5179] ERROR: Out of memory at tomoyo_memory_ok. [ 1201.404599][T27261] sp0: Synchronizing with TNC [ 1202.165691][T27269] netlink: 25 bytes leftover after parsing attributes in process `syz.3.7124'. [ 1204.765286][T27300] netlink: 'syz.4.7132': attribute type 2 has an invalid length. [ 1204.834117][T27300] netlink: 'syz.4.7132': attribute type 3 has an invalid length. [ 1204.886762][T27300] netlink: 158 bytes leftover after parsing attributes in process `syz.4.7132'. [ 1204.956960][T27300] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7132'. [ 1205.840398][T27307] netlink: 354 bytes leftover after parsing attributes in process `syz.4.7134'. [ 1207.336116][T27331] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7141'. [ 1207.417113][T27331] netlink: 13 bytes leftover after parsing attributes in process `syz.1.7141'. [ 1208.223697][T27335] netlink: 12 bytes leftover after parsing attributes in process `syz.1.7143'. [ 1208.386825][T27335] i: entered promiscuous mode [ 1208.595872][T27340] HfR: entered promiscuous mode [ 1209.013948][T27346] vivid-007: ================= START STATUS ================= [ 1209.056566][T27346] vivid-007: Generate PTS: true [ 1209.099130][T27346] vivid-007: Generate SCR: true [ 1209.126787][T27346] tpg source WxH: 320x240 (Y'CbCr) [ 1209.159599][T27346] tpg field: 1 [ 1209.194328][T27346] tpg crop: (0,0)/320x240 [ 1209.241048][T27346] tpg compose: (0,0)/320x240 [ 1209.283904][T27346] tpg colorspace: 8 [ 1209.287802][T27346] tpg transfer function: 0/0 [ 1209.340500][T27346] tpg Y'CbCr encoding: 0/0 [ 1209.385972][T27346] tpg quantization: 0/0 [ 1209.390218][T27346] tpg RGB range: 0/2 [ 1209.466796][T27346] vivid-007: ================== END STATUS ================== [ 1209.958336][T27363] netlink: 28 bytes leftover after parsing attributes in process `syz.4.7151'. [ 1210.678437][T27372] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7154'. [ 1210.752240][T27372] netlink: 25 bytes leftover after parsing attributes in process `syz.4.7154'. [ 1211.583147][T27388] netlink: 'syz.1.7158': attribute type 2 has an invalid length. [ 1211.634668][T27388] netlink: 5 bytes leftover after parsing attributes in process `syz.1.7158'. [ 1215.277763][T27427] FAULT_INJECTION: forcing a failure. [ 1215.277763][T27427] name failslab, interval 1, probability 0, space 0, times 0 [ 1215.470690][T27427] CPU: 0 UID: 0 PID: 27427 Comm: syz.3.7171 Tainted: G L syzkaller #0 PREEMPT(full) [ 1215.470719][T27427] Tainted: [L]=SOFTLOCKUP [ 1215.470726][T27427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1215.470735][T27427] Call Trace: [ 1215.470741][T27427] [ 1215.470750][T27427] dump_stack_lvl+0x100/0x190 [ 1215.470782][T27427] should_fail_ex.cold+0x5/0xa [ 1215.470804][T27427] should_failslab+0xc2/0x120 [ 1215.470822][T27427] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1215.470847][T27427] ? security_file_alloc+0x34/0x2c0 [ 1215.470863][T27427] ? trace_kmem_cache_alloc+0xf3/0x120 [ 1215.470883][T27427] security_file_alloc+0x34/0x2c0 [ 1215.470899][T27427] init_file+0x95/0x480 [ 1215.470918][T27427] alloc_empty_file+0x79/0x1c0 [ 1215.470939][T27427] path_openat+0xe8/0x31a0 [ 1215.470956][T27427] ? kasan_save_stack+0x3f/0x50 [ 1215.470970][T27427] ? kasan_save_stack+0x30/0x50 [ 1215.470983][T27427] ? kasan_save_track+0x14/0x30 [ 1215.470996][T27427] ? __kasan_slab_alloc+0x89/0x90 [ 1215.471010][T27427] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 1215.471031][T27427] ? do_getname+0x35/0x390 [ 1215.471049][T27427] ? do_sys_openat2+0xc5/0x1e0 [ 1215.471068][T27427] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1215.471086][T27427] ? __pfx_path_openat+0x10/0x10 [ 1215.471109][T27427] do_file_open+0x20e/0x430 [ 1215.471127][T27427] ? __pfx_do_file_open+0x10/0x10 [ 1215.471156][T27427] ? alloc_fd+0x476/0x790 [ 1215.471173][T27427] ? do_getname+0x191/0x390 [ 1215.471194][T27427] do_sys_openat2+0x10d/0x1e0 [ 1215.471214][T27427] ? __pfx_do_sys_openat2+0x10/0x10 [ 1215.471235][T27427] ? blkcg_maybe_throttle_current+0x5e7/0xeb0 [ 1215.471257][T27427] __x64_sys_openat+0x12d/0x210 [ 1215.471278][T27427] ? __pfx___x64_sys_openat+0x10/0x10 [ 1215.471305][T27427] do_syscall_64+0x10b/0xf80 [ 1215.471320][T27427] ? clear_bhb_loop+0x40/0x90 [ 1215.471338][T27427] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1215.471354][T27427] RIP: 0033:0x7f935ff9c819 [ 1215.471369][T27427] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1215.471384][T27427] RSP: 002b:00007f9360edc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1215.471401][T27427] RAX: ffffffffffffffda RBX: 00007f9360215fa0 RCX: 00007f935ff9c819 [ 1215.471411][T27427] RDX: 0000000000000002 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 1215.471421][T27427] RBP: 00007f9360032c91 R08: 0000000000000000 R09: 0000000000000000 [ 1215.471430][T27427] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1215.471440][T27427] R13: 00007f9360216038 R14: 00007f9360215fa0 R15: 00007ffea087a948 [ 1215.471460][T27427] [ 1216.864430][T27443] zswap: compressor not available [ 1217.282313][T27456] sp0: Synchronizing with TNC [ 1217.923233][T27469] pci 0000:00:01.0: [8086:7110] type 00 class 0x060100 conventional PCI endpoint [ 1218.464179][T27469] PCI: Can't parse resource_alignment parameter: 1 [ 1219.774827][T27490] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7186'. [ 1219.888177][T27495] netlink: 25 bytes leftover after parsing attributes in process `syz.3.7186'. [ 1221.474503][T27506] mkiss: ax0: crc mode is auto. [ 1222.063991][T27511] ERROR: Out of memory at tomoyo_memory_ok. [ 1223.507161][T27525] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7198'. [ 1223.637251][T27527] netlink: 13 bytes leftover after parsing attributes in process `syz.0.7198'. [ 1224.512104][T27533] FAULT_INJECTION: forcing a failure. [ 1224.512104][T27533] name failslab, interval 1, probability 0, space 0, times 0 [ 1224.757899][T27533] CPU: 0 UID: 0 PID: 27533 Comm: syz.0.7200 Tainted: G L syzkaller #0 PREEMPT(full) [ 1224.757930][T27533] Tainted: [L]=SOFTLOCKUP [ 1224.757936][T27533] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1224.757948][T27533] Call Trace: [ 1224.757954][T27533] [ 1224.757961][T27533] dump_stack_lvl+0x100/0x190 [ 1224.757992][T27533] should_fail_ex.cold+0x5/0xa [ 1224.758013][T27533] should_failslab+0xc2/0x120 [ 1224.758032][T27533] __kmalloc_cache_noprof+0x7a/0x6f0 [ 1224.758053][T27533] ? refill_pi_state_cache+0x91/0x260 [ 1224.758079][T27533] refill_pi_state_cache+0x91/0x260 [ 1224.758102][T27533] futex_lock_pi+0x177/0x7b0 [ 1224.758133][T27533] ? __pfx_futex_lock_pi+0x10/0x10 [ 1224.758160][T27533] ? __pfx___futex_wait+0x10/0x10 [ 1224.758184][T27533] ? lockdep_hardirqs_on+0x78/0x100 [ 1224.758223][T27533] ? __pfx_futex_wake_mark+0x10/0x10 [ 1224.758250][T27533] ? __get_user_nocheck_8+0x20/0x20 [ 1224.758271][T27533] ? do_vfs_ioctl+0x226/0x13e0 [ 1224.758298][T27533] do_futex+0x18a/0x350 [ 1224.758318][T27533] ? __pfx_do_futex+0x10/0x10 [ 1224.758339][T27533] ? find_held_lock+0x2b/0x80 [ 1224.758357][T27533] __x64_sys_futex+0x34f/0x4d0 [ 1224.758379][T27533] ? __pfx___x64_sys_futex+0x10/0x10 [ 1224.758405][T27533] do_syscall_64+0x10b/0xf80 [ 1224.758419][T27533] ? clear_bhb_loop+0x40/0x90 [ 1224.758437][T27533] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1224.758453][T27533] RIP: 0033:0x7f2c5319c819 [ 1224.758467][T27533] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1224.758482][T27533] RSP: 002b:00007f2c540d3028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1224.758498][T27533] RAX: ffffffffffffffda RBX: 00007f2c53416090 RCX: 00007f2c5319c819 [ 1224.758508][T27533] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000 [ 1224.758517][T27533] RBP: 00007f2c53232c91 R08: 0000000000000000 R09: 000000008000fff5 [ 1224.758526][T27533] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1224.758535][T27533] R13: 00007f2c53416128 R14: 00007f2c53416090 R15: 00007ffe7d45d528 [ 1224.758554][T27533] [ 1224.985902][T27536] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7201'. [ 1224.996213][T27536] netlink: 25 bytes leftover after parsing attributes in process `syz.1.7201'. [ 1225.534186][T27541] vivid-007: ================= START STATUS ================= [ 1225.575931][T27541] vivid-007: Generate PTS: true [ 1225.580908][T27541] vivid-007: Generate SCR: true [ 1225.608015][T27541] tpg source WxH: 320x240 (Y'CbCr) [ 1225.613187][T27541] tpg field: 1 [ 1225.655079][T27541] tpg crop: (0,0)/320x240 [ 1225.659435][T27541] tpg compose: (0,0)/320x240 [ 1225.683718][T27541] tpg colorspace: 8 [ 1225.687557][T27541] tpg transfer function: 0/0 [ 1225.692132][T27541] tpg Y'CbCr encoding: 0/0 [ 1225.746756][T27541] tpg quantization: 0/0 [ 1225.751057][T27541] tpg RGB range: 0/2 [ 1225.789668][T27541] vivid-007: ================== END STATUS ================== [ 1228.364967][T27565] netlink: 13 bytes leftover after parsing attributes in process `syz.1.7208'. [ 1230.673045][ T29] audit: type=1800 audit(2147483781.950:30): pid=27587 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.7217" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0 [ 1232.660390][T27605] ERROR: Out of memory at tomoyo_memory_ok. [ 1234.267360][T27608] hub 1-0:1.0: USB hub found [ 1234.332386][T27608] hub 1-0:1.0: 1 port detected [ 1237.410287][T27640] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7227'. [ 1237.547436][T27642] netlink: 'syz.3.7227': attribute type 1 has an invalid length. [ 1237.666529][T27642] netlink: 5 bytes leftover after parsing attributes in process `syz.3.7227'. [ 1238.664375][T27656] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7233'. [ 1238.809258][T27661] netlink: 'syz.1.7233': attribute type 1 has an invalid length. [ 1239.005460][T27661] netlink: 5 bytes leftover after parsing attributes in process `syz.1.7233'. [ 1239.150233][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 1239.157175][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 1242.095717][T27698] netlink: 28 bytes leftover after parsing attributes in process `syz.4.7245'. [ 1242.194793][T27698] bridge_slave_1: left allmulticast mode [ 1242.305645][T27698] bridge_slave_1: left promiscuous mode [ 1242.352606][T27698] bridge0: port 2(bridge_slave_1) entered disabled state [ 1242.594585][T27698] bridge_slave_0: left allmulticast mode [ 1242.639634][T27698] bridge_slave_0: left promiscuous mode [ 1242.693932][T27698] bridge0: port 1(bridge_slave_0) entered disabled state [ 1243.898698][T27713] ERROR: Out of memory at tomoyo_memory_ok. [ 1246.384330][T27734] netlink: 25 bytes leftover after parsing attributes in process `syz.3.7253'. [ 1247.051081][T27739] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=538976288 (1077952576 ns) > initial count (3830 ns). Using initial count to start timer. [ 1249.136646][T27763] netlink: 28 bytes leftover after parsing attributes in process `syz.0.7260'. [ 1249.328358][T27763] bridge_slave_0: left allmulticast mode [ 1249.445687][T27763] bridge_slave_0: left promiscuous mode [ 1249.508483][T27763] bridge0: port 1(bridge_slave_0) entered disabled state [ 1250.079682][T27767] usbip-vudc usbip-vudc.0: gadget not bound [ 1250.204797][T27771] netlink: 'syz.3.7262': attribute type 1 has an invalid length. [ 1250.264286][T27771] netlink: 9 bytes leftover after parsing attributes in process `syz.3.7262'. [ 1251.006309][ T29] audit: type=1804 audit(2147483802.290:31): pid=27778 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.7265" name="/newroot/1806/file0" dev="tmpfs" ino=9279 res=1 errno=0 [ 1251.182024][ T29] audit: type=1804 audit(2147483802.370:32): pid=27781 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.7265" name="/newroot/1806/file0" dev="tmpfs" ino=9279 res=1 errno=0 [ 1251.820155][T27789] FAULT_INJECTION: forcing a failure. [ 1251.820155][T27789] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1251.933818][T27789] CPU: 0 UID: 0 PID: 27789 Comm: syz.3.7268 Tainted: G L syzkaller #0 PREEMPT(full) [ 1251.933853][T27789] Tainted: [L]=SOFTLOCKUP [ 1251.933859][T27789] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1251.933870][T27789] Call Trace: [ 1251.933877][T27789] [ 1251.933884][T27789] dump_stack_lvl+0x100/0x190 [ 1251.933918][T27789] should_fail_ex.cold+0x5/0xa [ 1251.933941][T27789] _copy_to_iter+0x1f3/0x1720 [ 1251.933970][T27789] ? __pfx___skb_try_recv_datagram+0x10/0x10 [ 1251.933995][T27789] ? __pfx__copy_to_iter+0x10/0x10 [ 1251.934018][T27789] ? kasan_quarantine_put+0x104/0x240 [ 1251.934045][T27789] ? lockdep_hardirqs_on+0x78/0x100 [ 1251.934072][T27789] ? __skb_recv_datagram+0x1b2/0x220 [ 1251.934095][T27789] simple_copy_to_iter+0x46/0x90 [ 1251.934114][T27789] __skb_datagram_iter+0x129/0x900 [ 1251.934132][T27789] ? __pfx_simple_copy_to_iter+0x10/0x10 [ 1251.934153][T27789] ? skb_recv_datagram+0x88/0xc0 [ 1251.934174][T27789] skb_copy_datagram_iter+0xa1/0x270 [ 1251.934195][T27789] netlink_recvmsg+0x27e/0xa90 [ 1251.934220][T27789] ? __pfx_netlink_recvmsg+0x10/0x10 [ 1251.934242][T27789] ? __fget_files+0x215/0x3d0 [ 1251.934257][T27789] ? __fget_files+0x215/0x3d0 [ 1251.934274][T27789] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 1251.934296][T27789] ? __pfx_netlink_recvmsg+0x10/0x10 [ 1251.934319][T27789] sock_recvmsg+0x1a4/0x1f0 [ 1251.934337][T27789] __sys_recvfrom+0x200/0x300 [ 1251.934359][T27789] ? __pfx___sys_recvfrom+0x10/0x10 [ 1251.934386][T27789] ? count_memcg_events_mm.constprop.0+0xfa/0x2a0 [ 1251.934403][T27789] ? count_memcg_events_mm.constprop.0+0xfa/0x2a0 [ 1251.934432][T27789] __x64_sys_recvfrom+0xe0/0x1c0 [ 1251.934452][T27789] ? do_syscall_64+0x90/0xf80 [ 1251.934466][T27789] ? lockdep_hardirqs_on+0x78/0x100 [ 1251.934498][T27789] do_syscall_64+0x10b/0xf80 [ 1251.934514][T27789] ? clear_bhb_loop+0x40/0x90 [ 1251.934534][T27789] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1251.934553][T27789] RIP: 0033:0x7f935ff5d04e [ 1251.934568][T27789] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 1251.934583][T27789] RSP: 002b:00007f9360edae88 EFLAGS: 00000246 ORIG_RAX: 000000000000002d [ 1251.934599][T27789] RAX: ffffffffffffffda RBX: 00007f9360edc6c0 RCX: 00007f935ff5d04e [ 1251.934610][T27789] RDX: 0000000000001000 RSI: 00007f9360edb000 RDI: 0000000000000005 [ 1251.934619][T27789] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1251.934629][T27789] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1251.934639][T27789] R13: 00007f9360edaf58 R14: 00007f9360edb000 R15: 0000000000000000 [ 1251.934659][T27789] [ 1254.448192][T27807] Invalid ELF header magic: != ELF [ 1255.179629][T27815] ERROR: Out of memory at tomoyo_memory_ok. [ 1258.233311][T27841] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input27 [ 1258.994347][ T5179] ERROR: Out of memory at tomoyo_memory_ok. [ 1262.534429][T27912] Device name cannot be null; rc = [-22] [ 1263.971345][T27918] Page cache invalidation failure on direct I/O. Possible data corruption due to collision with buffered I/O! [ 1264.193429][T27918] File: /dev/nullb0 PID: 27918 Comm: syz.1.7301 [ 1266.401614][T27938] ERROR: Out of memory at tomoyo_memory_ok. [ 1267.524964][T27951] usbip-vudc usbip-vudc.0: gadget not bound [ 1268.158245][T27957] Device name cannot be null; rc = [-22] [ 1269.642702][T27975] FAULT_INJECTION: forcing a failure. [ 1269.642702][T27975] name failslab, interval 1, probability 0, space 0, times 0 [ 1269.726006][T27975] CPU: 0 UID: 0 PID: 27975 Comm: syz.0.7316 Tainted: G L syzkaller #0 PREEMPT(full) [ 1269.726035][T27975] Tainted: [L]=SOFTLOCKUP [ 1269.726041][T27975] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1269.726051][T27975] Call Trace: [ 1269.726057][T27975] [ 1269.726065][T27975] dump_stack_lvl+0x100/0x190 [ 1269.726097][T27975] should_fail_ex.cold+0x5/0xa [ 1269.726120][T27975] should_failslab+0xc2/0x120 [ 1269.726139][T27975] __kvmalloc_node_noprof+0xfa/0xa00 [ 1269.726154][T27975] ? io_uring_setup.cold+0x171/0x1c7e [ 1269.726178][T27975] ? lockdep_init_map_type+0x5c/0x250 [ 1269.726201][T27975] io_uring_setup.cold+0x171/0x1c7e [ 1269.726224][T27975] ? ksys_write+0x190/0x250 [ 1269.726251][T27975] ? __pfx_io_uring_setup+0x10/0x10 [ 1269.726272][T27975] ? do_futex+0x192/0x350 [ 1269.726294][T27975] ? __pfx_do_futex+0x10/0x10 [ 1269.726313][T27975] ? __fget_files+0x215/0x3d0 [ 1269.726336][T27975] ? xfd_validate_state+0x129/0x190 [ 1269.726363][T27975] __x64_sys_io_uring_setup+0xc2/0x170 [ 1269.726381][T27975] do_syscall_64+0x10b/0xf80 [ 1269.726397][T27975] ? clear_bhb_loop+0x40/0x90 [ 1269.726415][T27975] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1269.726431][T27975] RIP: 0033:0x7f2c5319c819 [ 1269.726446][T27975] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1269.726461][T27975] RSP: 002b:00007f2c540f4028 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 1269.726476][T27975] RAX: ffffffffffffffda RBX: 00007f2c53415fa0 RCX: 00007f2c5319c819 [ 1269.726487][T27975] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 1269.726496][T27975] RBP: 00007f2c53232c91 R08: 0000000000000000 R09: 0000000000000000 [ 1269.726505][T27975] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1269.726514][T27975] R13: 00007f2c53416038 R14: 00007f2c53415fa0 R15: 00007ffe7d45d528 [ 1269.726533][T27975] [ 1271.854938][T27982] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 1271.878313][T27982] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 1271.947401][T27982] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1271.989494][T27982] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 1272.047328][T27982] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 1273.223824][T20205] Bluetooth: hci2: command 0x0c1a tx timeout [ 1273.957669][ T50] Bluetooth: hci3: command 0x0c1a tx timeout [ 1274.023605][T28023] Bluetooth: hci1: command 0x0406 tx timeout [ 1274.103959][T28023] Bluetooth: hci4: command 0x0406 tx timeout [ 1275.959347][T20205] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 1276.105042][T20205] Bluetooth: hci1: command 0x0406 tx timeout [ 1277.730303][T28063] ERROR: Out of memory at tomoyo_memory_ok. [ 1278.238302][T28079] netlink: 342 bytes leftover after parsing attributes in process `syz.1.7344'. [ 1279.603385][T28106] FAULT_INJECTION: forcing a failure. [ 1279.603385][T28106] name failslab, interval 1, probability 0, space 0, times 0 [ 1279.842370][T28106] CPU: 0 UID: 0 PID: 28106 Comm: syz.4.7347 Tainted: G L syzkaller #0 PREEMPT(full) [ 1279.842404][T28106] Tainted: [L]=SOFTLOCKUP [ 1279.842411][T28106] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1279.842422][T28106] Call Trace: [ 1279.842429][T28106] [ 1279.842437][T28106] dump_stack_lvl+0x100/0x190 [ 1279.842472][T28106] should_fail_ex.cold+0x5/0xa [ 1279.842495][T28106] should_failslab+0xc2/0x120 [ 1279.842514][T28106] __kmalloc_cache_noprof+0x7a/0x6f0 [ 1279.842535][T28106] ? netdev_init+0xa0/0x3c0 [ 1279.842552][T28106] ? __pfx_proc_create_net_data+0x10/0x10 [ 1279.842572][T28106] ? __pfx_uevent_net_rcv+0x10/0x10 [ 1279.842594][T28106] netdev_init+0xa0/0x3c0 [ 1279.842613][T28106] ? __pfx_netdev_init+0x10/0x10 [ 1279.842631][T28106] ops_init+0x1e2/0x5f0 [ 1279.842657][T28106] setup_net+0x118/0x3a0 [ 1279.842672][T28106] ? __pfx_setup_net+0x10/0x10 [ 1279.842685][T28106] ? lockdep_init_map_type+0x5c/0x250 [ 1279.842706][T28106] ? mutex_init_lockep+0x110/0x150 [ 1279.842729][T28106] copy_net_ns+0x46f/0x7c0 [ 1279.842747][T28106] create_new_namespaces+0x3ea/0xac0 [ 1279.842776][T28106] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 1279.842797][T28106] ksys_unshare+0x473/0xad0 [ 1279.842821][T28106] ? __pfx_ksys_unshare+0x10/0x10 [ 1279.842850][T28106] __x64_sys_unshare+0x31/0x40 [ 1279.842872][T28106] do_syscall_64+0x10b/0xf80 [ 1279.842886][T28106] ? clear_bhb_loop+0x40/0x90 [ 1279.842905][T28106] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1279.842921][T28106] RIP: 0033:0x7fb5c359c819 [ 1279.842935][T28106] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1279.842951][T28106] RSP: 002b:00007fb5c43a3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 1279.842967][T28106] RAX: ffffffffffffffda RBX: 00007fb5c3816090 RCX: 00007fb5c359c819 [ 1279.842978][T28106] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 1279.842987][T28106] RBP: 00007fb5c3632c91 R08: 0000000000000000 R09: 0000000000000000 [ 1279.842996][T28106] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1279.843005][T28106] R13: 00007fb5c3816128 R14: 00007fb5c3816090 R15: 00007ffc38390f98 [ 1279.843024][T28106] [ 1280.585201][T28117] serio: Serial port ttyS0 [ 1282.302230][T28143] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7357'. [ 1282.355027][T28145] netlink: 354 bytes leftover after parsing attributes in process `syz.0.7357'. [ 1282.565117][T20205] Bluetooth: hci3: ACL packet for unknown connection handle 0 [ 1283.284562][T28158] netlink: 202 bytes leftover after parsing attributes in process `syz.1.7359'. [ 1285.354004][T28192] zram: Removed device: zram0 [ 1286.483993][T28203] FAULT_INJECTION: forcing a failure. [ 1286.483993][T28203] name failslab, interval 1, probability 0, space 0, times 0 [ 1286.576012][T28203] CPU: 0 UID: 0 PID: 28203 Comm: syz.4.7373 Tainted: G L syzkaller #0 PREEMPT(full) [ 1286.576055][T28203] Tainted: [L]=SOFTLOCKUP [ 1286.576061][T28203] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1286.576077][T28203] Call Trace: [ 1286.576083][T28203] [ 1286.576090][T28203] dump_stack_lvl+0x100/0x190 [ 1286.576128][T28203] should_fail_ex.cold+0x5/0xa [ 1286.576150][T28203] should_failslab+0xc2/0x120 [ 1286.576168][T28203] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1286.576195][T28203] ? alloc_uid+0x13d/0x4c0 [ 1286.576213][T28203] ? rcu_is_watching+0x12/0xc0 [ 1286.576239][T28203] alloc_uid+0x13d/0x4c0 [ 1286.576257][T28203] ? __pfx_alloc_uid+0x10/0x10 [ 1286.576276][T28203] ? bpf_lsm_capable+0x9/0x10 [ 1286.576292][T28203] ? security_capable+0x80/0x260 [ 1286.576314][T28203] __sys_setreuid+0x63c/0xb00 [ 1286.576333][T28203] do_syscall_64+0x10b/0xf80 [ 1286.576348][T28203] ? clear_bhb_loop+0x40/0x90 [ 1286.576367][T28203] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1286.576384][T28203] RIP: 0033:0x7fb5c359c819 [ 1286.576399][T28203] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1286.576418][T28203] RSP: 002b:00007fb5c43c4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000071 [ 1286.576435][T28203] RAX: ffffffffffffffda RBX: 00007fb5c3815fa0 RCX: 00007fb5c359c819 [ 1286.576445][T28203] RDX: 0000000000000000 RSI: 00000000000009d7 RDI: 0000000000000008 [ 1286.576454][T28203] RBP: 00007fb5c3632c91 R08: 0000000000000000 R09: 0000000000000000 [ 1286.576463][T28203] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1286.576472][T28203] R13: 00007fb5c3816038 R14: 00007fb5c3815fa0 R15: 00007ffc38390f98 [ 1286.576491][T28203] [ 1286.903172][T28200] tipc: Withdrawal distribution failure [ 1289.066735][T28224] ERROR: Out of memory at tomoyo_memory_ok. [ 1290.064550][T28238] netlink: 5 bytes leftover after parsing attributes in process `syz.0.7383'. [ 1290.123883][T28238] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7383'. [ 1290.414485][T28242] random: crng reseeded on system resumption [ 1293.376901][T28281] netlink: 28 bytes leftover after parsing attributes in process `syz.1.7396'. [ 1293.565563][T28281] dummy0 (unregistering): left allmulticast mode [ 1293.572063][T28281] dummy0 (unregistering): left promiscuous mode [ 1293.663758][T28281] bridge0: port 3(dummy0) entered disabled state [ 1293.708322][T28281] smc: removing net device dummy0 with user defined pnetid DUMMY0 [ 1298.415739][T28328] FAULT_INJECTION: forcing a failure. [ 1298.415739][T28328] name failslab, interval 1, probability 0, space 0, times 0 [ 1298.637842][T28328] CPU: 0 UID: 0 PID: 28328 Comm: syz.0.7408 Tainted: G L syzkaller #0 PREEMPT(full) [ 1298.637881][T28328] Tainted: [L]=SOFTLOCKUP [ 1298.637887][T28328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1298.637899][T28328] Call Trace: [ 1298.637906][T28328] [ 1298.637913][T28328] dump_stack_lvl+0x100/0x190 [ 1298.637947][T28328] should_fail_ex.cold+0x5/0xa [ 1298.637970][T28328] should_failslab+0xc2/0x120 [ 1298.637990][T28328] __kmalloc_cache_noprof+0x7a/0x6f0 [ 1298.638013][T28328] ? snd_midi_event_new+0x6f/0x210 [ 1298.638034][T28328] snd_midi_event_new+0x6f/0x210 [ 1298.638050][T28328] snd_virmidi_input_open+0x107/0x4d0 [ 1298.638070][T28328] open_substream+0x480/0x9e0 [ 1298.638094][T28328] rawmidi_open_priv+0x524/0x6f0 [ 1298.638118][T28328] snd_rawmidi_open+0x4c9/0xba0 [ 1298.638143][T28328] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 1298.638165][T28328] ? __pfx_default_wake_function+0x10/0x10 [ 1298.638182][T28328] ? soundcore_open+0x231/0x5a0 [ 1298.638198][T28328] ? soundcore_open+0x231/0x5a0 [ 1298.638215][T28328] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 1298.638237][T28328] soundcore_open+0x2e3/0x5a0 [ 1298.638254][T28328] ? __pfx_soundcore_open+0x10/0x10 [ 1298.638270][T28328] chrdev_open+0x234/0x6a0 [ 1298.638287][T28328] ? __pfx_apparmor_file_open+0x10/0x10 [ 1298.638309][T28328] ? __pfx_chrdev_open+0x10/0x10 [ 1298.638326][T28328] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 1298.638350][T28328] do_dentry_open+0x6d8/0x1660 [ 1298.638368][T28328] ? __pfx_chrdev_open+0x10/0x10 [ 1298.638390][T28328] vfs_open+0x82/0x3f0 [ 1298.638412][T28328] path_openat+0x208c/0x31a0 [ 1298.638436][T28328] ? __pfx_path_openat+0x10/0x10 [ 1298.638459][T28328] do_file_open+0x20e/0x430 [ 1298.638477][T28328] ? __pfx_do_file_open+0x10/0x10 [ 1298.638506][T28328] ? alloc_fd+0x476/0x790 [ 1298.638525][T28328] ? do_getname+0x191/0x390 [ 1298.638546][T28328] do_sys_openat2+0x10d/0x1e0 [ 1298.638566][T28328] ? __pfx_do_sys_openat2+0x10/0x10 [ 1298.638588][T28328] ? __fget_files+0x21f/0x3d0 [ 1298.638607][T28328] __x64_sys_openat+0x12d/0x210 [ 1298.638628][T28328] ? __pfx___x64_sys_openat+0x10/0x10 [ 1298.638656][T28328] do_syscall_64+0x10b/0xf80 [ 1298.638671][T28328] ? clear_bhb_loop+0x40/0x90 [ 1298.638691][T28328] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1298.638707][T28328] RIP: 0033:0x7f2c5319c819 [ 1298.638723][T28328] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1298.638739][T28328] RSP: 002b:00007f2c540f4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1298.638756][T28328] RAX: ffffffffffffffda RBX: 00007f2c53415fa0 RCX: 00007f2c5319c819 [ 1298.638766][T28328] RDX: 0000000000000800 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 1298.638776][T28328] RBP: 00007f2c53232c91 R08: 0000000000000000 R09: 0000000000000000 [ 1298.638785][T28328] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1298.638794][T28328] R13: 00007f2c53416038 R14: 00007f2c53415fa0 R15: 00007ffe7d45d528 [ 1298.638816][T28328] [ 1300.600832][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 1300.617411][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 1300.711187][T28330] netlink: 28 bytes leftover after parsing attributes in process `syz.3.7409'. [ 1300.723364][T28339] ERROR: Out of memory at tomoyo_memory_ok. [ 1305.636002][T20205] Bluetooth: hci2: ACL packet for unknown connection handle 0 [ 1309.965977][T28418] Page cache invalidation failure on direct I/O. Possible data corruption due to collision with buffered I/O! [ 1310.404602][T28418] File: /dev/nullb0 PID: 28418 Comm: syz.3.7430 [ 1311.990281][T28441] ERROR: Out of memory at tomoyo_memory_ok. [ 1313.006000][T28452] FAULT_INJECTION: forcing a failure. [ 1313.006000][T28452] name failslab, interval 1, probability 0, space 0, times 0 [ 1313.207621][T28452] CPU: 0 UID: 0 PID: 28452 Comm: syz.4.7436 Tainted: G L syzkaller #0 PREEMPT(full) [ 1313.207652][T28452] Tainted: [L]=SOFTLOCKUP [ 1313.207658][T28452] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1313.207668][T28452] Call Trace: [ 1313.207675][T28452] [ 1313.207682][T28452] dump_stack_lvl+0x100/0x190 [ 1313.207714][T28452] should_fail_ex.cold+0x5/0xa [ 1313.207737][T28452] should_failslab+0xc2/0x120 [ 1313.207756][T28452] __kmalloc_node_track_caller_noprof+0xe3/0x850 [ 1313.207774][T28452] ? landlock_restrict_sibling_threads+0x4f5/0x1490 [ 1313.207797][T28452] krealloc_node_align_noprof+0x30a/0x3e0 [ 1313.207815][T28452] landlock_restrict_sibling_threads+0x4f5/0x1490 [ 1313.207837][T28452] ? __pfx_landlock_restrict_sibling_threads+0x10/0x10 [ 1313.207873][T28452] ? __pfx___might_resched+0x10/0x10 [ 1313.207897][T28452] ? landlock_merge_ruleset+0x213/0x830 [ 1313.207921][T28452] __do_sys_landlock_restrict_self+0x5d2/0x9e0 [ 1313.207946][T28452] do_syscall_64+0x10b/0xf80 [ 1313.207961][T28452] ? clear_bhb_loop+0x40/0x90 [ 1313.207979][T28452] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1313.207995][T28452] RIP: 0033:0x7fb5c359c819 [ 1313.208010][T28452] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1313.208025][T28452] RSP: 002b:00007fb5c4382028 EFLAGS: 00000246 ORIG_RAX: 00000000000001be [ 1313.208040][T28452] RAX: ffffffffffffffda RBX: 00007fb5c3816180 RCX: 00007fb5c359c819 [ 1313.208050][T28452] RDX: 0000000000000000 RSI: 000000000000000b RDI: 0000000000000006 [ 1313.208059][T28452] RBP: 00007fb5c3632c91 R08: 0000000000000000 R09: 0000000000000000 [ 1313.208068][T28452] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1313.208076][T28452] R13: 00007fb5c3816218 R14: 00007fb5c3816180 R15: 00007ffc38390f98 [ 1313.208096][T28452] [ 1316.265518][T28488] ubi0: attaching mtd0 [ 1316.315057][T28488] ubi0: scanning is finished [ 1316.347626][T28488] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 1316.910221][T28488] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 1318.194886][T28501] serio: Serial port ttyS0 [ 1318.297919][T28508] bridge0: port 3(netdevsim2) entered blocking state [ 1318.365675][T28508] bridge0: port 3(netdevsim2) entered disabled state [ 1318.372572][T28508] netdevsim netdevsim1 netdevsim2: entered allmulticast mode [ 1318.465356][T28508] netdevsim netdevsim1 netdevsim2: entered promiscuous mode [ 1322.712059][T28569] sg_write: data in/out 262108/65454 bytes for SCSI command 0x0-- guessing data in; [ 1322.712059][T28569] program syz.1.7464 not setting count and/or reply_len properly [ 1323.227183][T28572] ERROR: Out of memory at tomoyo_memory_ok. [ 1324.902184][T28603] netlink: 9 bytes leftover after parsing attributes in process `syz.3.7472'. [ 1329.170923][T28661] sg_write: data in/out 262108/65454 bytes for SCSI command 0x0-- guessing data in; [ 1329.170923][T28661] program syz.4.7488 not setting count and/or reply_len properly [ 1330.195389][T28670] FAULT_INJECTION: forcing a failure. [ 1330.195389][T28670] name failslab, interval 1, probability 0, space 0, times 0 [ 1330.362071][T28670] CPU: 0 UID: 0 PID: 28670 Comm: syz.3.7489 Tainted: G L syzkaller #0 PREEMPT(full) [ 1330.362102][T28670] Tainted: [L]=SOFTLOCKUP [ 1330.362109][T28670] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1330.362122][T28670] Call Trace: [ 1330.362128][T28670] [ 1330.362137][T28670] dump_stack_lvl+0x100/0x190 [ 1330.362171][T28670] should_fail_ex.cold+0x5/0xa [ 1330.362193][T28670] should_failslab+0xc2/0x120 [ 1330.362213][T28670] kmem_cache_alloc_node_noprof+0x81/0x6f0 [ 1330.362238][T28670] ? __alloc_skb+0x140/0x710 [ 1330.362263][T28670] __alloc_skb+0x140/0x710 [ 1330.362283][T28670] ? __alloc_skb+0x5b7/0x710 [ 1330.362305][T28670] ? __pfx___alloc_skb+0x10/0x10 [ 1330.362328][T28670] ? is_bpf_text_address+0x8a/0x1a0 [ 1330.362351][T28670] ? is_bpf_text_address+0x8a/0x1a0 [ 1330.362374][T28670] ? bpf_ksym_find+0x124/0x1c0 [ 1330.362395][T28670] alloc_skb_with_frags+0xe0/0x810 [ 1330.362410][T28670] ? __lock_acquire+0x4a5/0x2630 [ 1330.362431][T28670] ? arch_stack_walk+0xa6/0xf0 [ 1330.362448][T28670] sock_alloc_send_pskb+0x801/0x980 [ 1330.362474][T28670] ? __pfx_sock_alloc_send_pskb+0x10/0x10 [ 1330.362498][T28670] ? __lock_acquire+0x4a5/0x2630 [ 1330.362520][T28670] __ip_append_data+0x227d/0x4690 [ 1330.362548][T28670] ? __pfx_ip_generic_getfrag+0x10/0x10 [ 1330.362570][T28670] ? find_held_lock+0x2b/0x80 [ 1330.362585][T28670] ? ip_dst_mtu_maybe_forward.constprop.0+0x3df/0x750 [ 1330.362607][T28670] ? ip_dst_mtu_maybe_forward.constprop.0+0x3e9/0x750 [ 1330.362626][T28670] ? __pfx___ip_append_data+0x10/0x10 [ 1330.362654][T28670] ip_make_skb+0x28b/0x310 [ 1330.362672][T28670] ? __pfx_ip_generic_getfrag+0x10/0x10 [ 1330.362696][T28670] ? __pfx_ip_make_skb+0x10/0x10 [ 1330.362722][T28670] ? udp_sendmsg+0x17b6/0x2890 [ 1330.362742][T28670] udp_sendmsg+0x17b6/0x2890 [ 1330.362768][T28670] ? __pfx_ip_generic_getfrag+0x10/0x10 [ 1330.362804][T28670] ? __pfx_udp_sendmsg+0x10/0x10 [ 1330.362829][T28670] ? __lock_acquire+0x4a5/0x2630 [ 1330.362872][T28670] ? __pfx_udp_sendmsg+0x10/0x10 [ 1330.362897][T28670] inet_sendmsg+0x105/0x140 [ 1330.362918][T28670] sock_write_iter+0x4ea/0x5a0 [ 1330.362935][T28670] ? __pfx_inet_sendmsg+0x10/0x10 [ 1330.362953][T28670] ? __pfx_sock_write_iter+0x10/0x10 [ 1330.362976][T28670] ? bpf_lsm_file_permission+0x9/0x10 [ 1330.362991][T28670] ? security_file_permission+0x76/0x210 [ 1330.363018][T28670] ? rw_verify_area+0xce/0x6d0 [ 1330.363046][T28670] vfs_write+0x6ac/0x1070 [ 1330.363062][T28670] ? __pfx_sock_write_iter+0x10/0x10 [ 1330.363081][T28670] ? __pfx_vfs_write+0x10/0x10 [ 1330.363098][T28670] ? find_held_lock+0x2b/0x80 [ 1330.363124][T28670] ksys_write+0x1f8/0x250 [ 1330.363139][T28670] ? __pfx_ksys_write+0x10/0x10 [ 1330.363159][T28670] do_syscall_64+0x10b/0xf80 [ 1330.363176][T28670] ? clear_bhb_loop+0x40/0x90 [ 1330.363197][T28670] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1330.363215][T28670] RIP: 0033:0x7f935ff9c819 [ 1330.363232][T28670] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1330.363248][T28670] RSP: 002b:00007f9360edc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1330.363264][T28670] RAX: ffffffffffffffda RBX: 00007f9360215fa0 RCX: 00007f935ff9c819 [ 1330.363275][T28670] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 1330.363285][T28670] RBP: 00007f9360032c91 R08: 0000000000000000 R09: 0000000000000000 [ 1330.363295][T28670] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1330.363305][T28670] R13: 00007f9360216038 R14: 00007f9360215fa0 R15: 00007ffea087a948 [ 1330.363326][T28670] [ 1334.450783][T28719] ERROR: Out of memory at tomoyo_memory_ok. [ 1336.294792][T28748] netlink: 13 bytes leftover after parsing attributes in process `syz.1.7507'. [ 1339.303737][T20205] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 1341.376452][T28793] netlink: zone id is out of range [ 1341.381612][T28793] netlink: zone id is out of range [ 1341.524311][T28796] netlink: zone id is out of range [ 1341.529584][T28796] netlink: zone id is out of range [ 1341.599791][T28793] netlink: zone id is out of range [ 1341.664435][T28793] netlink: zone id is out of range [ 1341.725849][T28796] netlink: zone id is out of range [ 1341.789048][T28793] netlink: zone id is out of range [ 1341.861590][T28796] netlink: zone id is out of range [ 1341.898863][T28793] netlink: zone id is out of range [ 1343.573596][T28795] can: request_module (can-proto-3) failed. [ 1344.668404][T28808] netlink: 350 bytes leftover after parsing attributes in process `syz.0.7522'. [ 1345.734087][T28822] ERROR: Out of memory at tomoyo_memory_ok. [ 1346.757686][T28839] netlink: 25 bytes leftover after parsing attributes in process `syz.0.7533'. [ 1347.045661][T28844] vivid-007: ================= START STATUS ================= [ 1347.053353][T28844] vivid-007: Generate PTS: true [ 1347.133885][T28844] vivid-007: Generate SCR: true [ 1347.138785][T28844] tpg source WxH: 320x240 (Y'CbCr) [ 1347.226028][T28844] tpg field: 1 [ 1347.229443][T28844] tpg crop: (0,0)/320x240 [ 1347.270779][T28844] tpg compose: (0,0)/320x240 [ 1347.306841][T28844] tpg colorspace: 8 [ 1347.310809][T28844] tpg transfer function: 0/0 [ 1347.426267][T28844] tpg Y'CbCr encoding: 0/0 [ 1347.497625][T28844] tpg quantization: 0/0 [ 1347.523613][T28844] tpg RGB range: 0/2 [ 1347.559655][T28844] vivid-007: ================== END STATUS ================== [ 1348.097428][T28859] FAULT_INJECTION: forcing a failure. [ 1348.097428][T28859] name failslab, interval 1, probability 0, space 0, times 0 [ 1348.363929][T28859] CPU: 0 UID: 0 PID: 28859 Comm: syz.3.7536 Tainted: G L syzkaller #0 PREEMPT(full) [ 1348.363959][T28859] Tainted: [L]=SOFTLOCKUP [ 1348.363966][T28859] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1348.363977][T28859] Call Trace: [ 1348.363984][T28859] [ 1348.363991][T28859] dump_stack_lvl+0x100/0x190 [ 1348.364025][T28859] should_fail_ex.cold+0x5/0xa [ 1348.364049][T28859] should_failslab+0xc2/0x120 [ 1348.364070][T28859] __kmalloc_cache_noprof+0x7a/0x6f0 [ 1348.364093][T28859] ? trace_pid_list_alloc+0x2fe/0x480 [ 1348.364122][T28859] trace_pid_list_alloc+0x2fe/0x480 [ 1348.364147][T28859] trace_pid_write+0x110/0x460 [ 1348.364171][T28859] ? __pfx_trace_pid_write+0x10/0x10 [ 1348.364205][T28859] event_pid_write.isra.0+0x1e4/0x800 [ 1348.364223][T28859] ? __pfx_event_pid_write.isra.0+0x10/0x10 [ 1348.364244][T28859] vfs_write+0x2aa/0x1070 [ 1348.364260][T28859] ? __pfx_ftrace_event_npid_write+0x10/0x10 [ 1348.364278][T28859] ? __pfx_vfs_write+0x10/0x10 [ 1348.364292][T28859] ? __fget_files+0x215/0x3d0 [ 1348.364312][T28859] ? __fget_files+0x21f/0x3d0 [ 1348.364333][T28859] ksys_write+0x12a/0x250 [ 1348.364357][T28859] ? __pfx_ksys_write+0x10/0x10 [ 1348.364381][T28859] do_syscall_64+0x10b/0xf80 [ 1348.364396][T28859] ? clear_bhb_loop+0x40/0x90 [ 1348.364418][T28859] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1348.364436][T28859] RIP: 0033:0x7f935ff9c819 [ 1348.364452][T28859] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1348.364468][T28859] RSP: 002b:00007f9360ebb028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1348.364483][T28859] RAX: ffffffffffffffda RBX: 00007f9360216090 RCX: 00007f935ff9c819 [ 1348.364493][T28859] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003 [ 1348.364502][T28859] RBP: 00007f9360032c91 R08: 0000000000000000 R09: 0000000000000000 [ 1348.364511][T28859] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1348.364521][T28859] R13: 00007f9360216128 R14: 00007f9360216090 R15: 00007ffea087a948 [ 1348.364543][T28859] [ 1352.597845][T28911] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 1353.790840][T28924] netlink: 330 bytes leftover after parsing attributes in process `syz.0.7555'. [ 1355.195999][T28938] Invalid ELF header magic: != ELF [ 1356.875461][T28965] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7565'. [ 1356.933054][T28966] ERROR: Out of memory at tomoyo_memory_ok. [ 1357.353422][T28946] can: request_module (can-proto-3) failed. [ 1357.890392][T28979] netlink: 318 bytes leftover after parsing attributes in process `syz.4.7568'. [ 1358.383639][T28986] binder: 28982:28986 ioctl c00c620f 2000000001c0 returned -22 [ 1359.067033][T28996] random: crng reseeded on system resumption [ 1359.301508][T29001] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7574'. [ 1359.632222][T29001] HfR: entered promiscuous mode [ 1362.027875][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 1362.035335][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 1362.338472][T29046] netlink: 'syz.0.7583': attribute type 1 has an invalid length. [ 1362.390958][T29046] netlink: 9 bytes leftover after parsing attributes in process `syz.0.7583'. [ 1364.822846][T29077] random: crng reseeded on system resumption [ 1364.939390][T29077] hub 1-0:1.0: USB hub found [ 1364.962615][T29077] hub 1-0:1.0: 1 port detected [ 1365.893896][T29089] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7596'. [ 1365.965159][T29089] netlink: 'syz.1.7596': attribute type 1 has an invalid length. [ 1365.972939][T29089] netlink: 5 bytes leftover after parsing attributes in process `syz.1.7596'. [ 1366.277049][T29092] random: crng reseeded on system resumption [ 1367.655618][T29109] netlink: 17 bytes leftover after parsing attributes in process `syz.3.7600'. [ 1368.200798][T29115] ERROR: Out of memory at tomoyo_memory_ok. [ 1377.898028][T29203] sp0: Synchronizing with TNC [ 1378.104834][T29209] RDS: rds_bind could not find a transport for ::ffff:172.20.20.187, load rds_tcp or rds_rdma? [ 1379.461624][T29220] ERROR: Out of memory at tomoyo_memory_ok. [ 1380.816376][T29235] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 1380.865928][T29235] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 1380.925660][T29235] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1381.015064][T29235] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 1382.548134][T29258] random: crng reseeded on system resumption [ 1382.823595][T20205] Bluetooth: hci2: command 0x0c1a tx timeout [ 1382.903839][T20205] Bluetooth: hci3: command 0x0c1a tx timeout [ 1382.987548][T20205] Bluetooth: hci1: command 0x0406 tx timeout [ 1383.063641][T20205] Bluetooth: hci4: command 0x0406 tx timeout [ 1383.568088][T29267] Falling back ldisc for ttyS2. [ 1384.097839][T29276] random: crng reseeded on system resumption [ 1384.414800][T29276] hub 1-0:1.0: USB hub found [ 1384.448358][T29276] hub 1-0:1.0: 1 port detected [ 1385.630655][T29292] ubi0: attaching mtd0 [ 1385.670980][T29292] ubi0: scanning is finished [ 1385.728280][T29292] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 1386.145270][T29292] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 1386.921794][T29306] netlink: 28 bytes leftover after parsing attributes in process `syz.0.7650'. [ 1388.096003][T29316] blktrace: Concurrent blktraces are not allowed on loop2 [ 1389.372944][T29324] __vm_enough_memory: pid: 29324, comm: syz.4.7653, bytes: 4398046511104 not enough memory for the allocation [ 1389.958847][T29333] FAULT_INJECTION: forcing a failure. [ 1389.958847][T29333] name failslab, interval 1, probability 0, space 0, times 0 [ 1390.074576][T29333] CPU: 0 UID: 0 PID: 29333 Comm: syz.3.7656 Tainted: G L syzkaller #0 PREEMPT(full) [ 1390.074627][T29333] Tainted: [L]=SOFTLOCKUP [ 1390.074634][T29333] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1390.074647][T29333] Call Trace: [ 1390.074653][T29333] [ 1390.074661][T29333] dump_stack_lvl+0x100/0x190 [ 1390.074696][T29333] should_fail_ex.cold+0x5/0xa [ 1390.074719][T29333] ? __register_sysctl_table+0xac/0x1650 [ 1390.074737][T29333] should_failslab+0xc2/0x120 [ 1390.074765][T29333] __kmalloc_noprof+0xe0/0x850 [ 1390.074796][T29333] __register_sysctl_table+0xac/0x1650 [ 1390.074815][T29333] ? is_module_address+0x5f/0xf0 [ 1390.074838][T29333] ? __pfx___register_sysctl_table+0x10/0x10 [ 1390.074855][T29333] ? is_module_address+0x69/0xf0 [ 1390.074873][T29333] ? register_net_sysctl_sz+0x222/0x430 [ 1390.074899][T29333] __addrconf_sysctl_register+0x1a2/0x360 [ 1390.074935][T29333] ? __pfx___addrconf_sysctl_register+0x10/0x10 [ 1390.074963][T29333] ? __asan_memcpy+0x3c/0x60 [ 1390.074989][T29333] addrconf_init_net+0x5dd/0x8e0 [ 1390.075014][T29333] ? __pfx_addrconf_init_net+0x10/0x10 [ 1390.075037][T29333] ops_init+0x1e2/0x5f0 [ 1390.075064][T29333] setup_net+0x118/0x3a0 [ 1390.075079][T29333] ? __pfx_setup_net+0x10/0x10 [ 1390.075093][T29333] ? lockdep_init_map_type+0x5c/0x250 [ 1390.075115][T29333] ? mutex_init_lockep+0x110/0x150 [ 1390.075139][T29333] copy_net_ns+0x46f/0x7c0 [ 1390.075157][T29333] create_new_namespaces+0x3ea/0xac0 [ 1390.075185][T29333] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 1390.075206][T29333] ksys_unshare+0x473/0xad0 [ 1390.075230][T29333] ? __pfx_ksys_unshare+0x10/0x10 [ 1390.075258][T29333] __x64_sys_unshare+0x31/0x40 [ 1390.075282][T29333] do_syscall_64+0x10b/0xf80 [ 1390.075298][T29333] ? clear_bhb_loop+0x40/0x90 [ 1390.075317][T29333] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1390.075339][T29333] RIP: 0033:0x7f935ff9c819 [ 1390.075356][T29333] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1390.075372][T29333] RSP: 002b:00007f9360edc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 1390.075388][T29333] RAX: ffffffffffffffda RBX: 00007f9360215fa0 RCX: 00007f935ff9c819 [ 1390.075398][T29333] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 1390.075407][T29333] RBP: 00007f9360032c91 R08: 0000000000000000 R09: 0000000000000000 [ 1390.075417][T29333] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1390.075426][T29333] R13: 00007f9360216038 R14: 00007f9360215fa0 R15: 00007ffea087a948 [ 1390.075446][T29333] [ 1391.001584][T20205] Bluetooth: hci4: unexpected subevent 0x01 length: 123 > 18 [ 1391.094389][T29338] ERROR: Out of memory at tomoyo_memory_ok. [ 1391.877750][T29345] netlink: 'syz.0.7659': attribute type 2 has an invalid length. [ 1394.748789][T29376] netlink: 28 bytes leftover after parsing attributes in process `syz.4.7666'. [ 1396.572164][T29398] Invalid ELF header magic: != ELF [ 1398.384461][T29427] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7679'. [ 1398.499795][T29428] netlink: 354 bytes leftover after parsing attributes in process `syz.3.7679'. [ 1399.330621][T29435] sp0: Synchronizing with TNC [ 1400.253231][T29449] netlink: 25 bytes leftover after parsing attributes in process `syz.1.7683'. [ 1400.509301][T29452] netlink: 28 bytes leftover after parsing attributes in process `syz.0.7684'. [ 1402.280686][T29473] ERROR: Out of memory at tomoyo_memory_ok. [ 1403.454642][T29481] __vm_enough_memory: pid: 29481, comm: syz.0.7689, bytes: 4398046511104 not enough memory for the allocation [ 1407.568163][T29514] random: crng reseeded on system resumption [ 1407.672419][T29516] netlink: 'syz.3.7698': attribute type 1 has an invalid length. [ 1407.725374][T29516] netlink: 9 bytes leftover after parsing attributes in process `syz.3.7698'. [ 1408.559372][T29530] netlink: 'syz.3.7702': attribute type 1 has an invalid length. [ 1408.642792][T29530] netlink: 9 bytes leftover after parsing attributes in process `syz.3.7702'. [ 1411.311154][T29560] netlink: 186 bytes leftover after parsing attributes in process `syz.3.7710'. [ 1411.393780][T29560] netlink: 186 bytes leftover after parsing attributes in process `syz.3.7710'. [ 1411.882499][T29570] random: crng reseeded on system resumption [ 1412.215200][T29570] hub 1-0:1.0: USB hub found [ 1412.321315][T29570] hub 1-0:1.0: 1 port detected [ 1413.557742][T29591] ERROR: Out of memory at tomoyo_memory_ok. [ 1414.377044][T29607] can0: slcan on pty238. [ 1414.845632][T29604] can0 (unregistered): slcan off pty238. [ 1415.840719][ T29] audit: type=1807 audit(2147483967.120:33): UNKNOWN= res=0 [ 1415.914266][ T29] audit: type=1802 audit(2147483967.140:34): pid=29636 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.0.7729" res=0 errno=0 [ 1416.337410][T29636] netlink: 28 bytes leftover after parsing attributes in process `syz.0.7729'. [ 1416.579400][T29633] ima: policy update failed [ 1416.608248][ T29] audit: type=1802 audit(2147483967.890:35): pid=29633 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.7729" res=0 errno=0 [ 1419.415506][T29702] netlink: 'syz.4.7739': attribute type 1 has an invalid length. [ 1419.479389][T29702] netlink: 9 bytes leftover after parsing attributes in process `syz.4.7739'. [ 1420.084611][T29712] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 1420.230059][T29718] netlink: 17 bytes leftover after parsing attributes in process `syz.4.7743'. [ 1420.274401][T29712] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 1420.280508][T29712] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1420.396511][T29712] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 1420.402781][T29712] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 1421.306334][T29740] FAULT_INJECTION: forcing a failure. [ 1421.306334][T29740] name failslab, interval 1, probability 0, space 0, times 0 [ 1421.595846][T29740] CPU: 0 UID: 0 PID: 29740 Comm: syz.4.7749 Tainted: G L syzkaller #0 PREEMPT(full) [ 1421.595879][T29740] Tainted: [L]=SOFTLOCKUP [ 1421.595886][T29740] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1421.595897][T29740] Call Trace: [ 1421.595905][T29740] [ 1421.595912][T29740] dump_stack_lvl+0x100/0x190 [ 1421.595947][T29740] should_fail_ex.cold+0x5/0xa [ 1421.595970][T29740] ? security_inode_init_security+0x113/0x370 [ 1421.595989][T29740] should_failslab+0xc2/0x120 [ 1421.596010][T29740] __kmalloc_noprof+0xe0/0x850 [ 1421.596039][T29740] security_inode_init_security+0x113/0x370 [ 1421.596059][T29740] ? __pfx_shmem_initxattrs+0x10/0x10 [ 1421.596078][T29740] ? __pfx_security_inode_init_security+0x10/0x10 [ 1421.596099][T29740] ? make_vfsgid+0xf1/0x140 [ 1421.596123][T29740] shmem_mknod+0x2bf/0x470 [ 1421.596145][T29740] ? __pfx_shmem_mknod+0x10/0x10 [ 1421.596170][T29740] vfs_create+0x301/0x6c0 [ 1421.596197][T29740] filename_mknodat+0x2de/0x7f0 [ 1421.596219][T29740] ? __pfx_filename_mknodat+0x10/0x10 [ 1421.596236][T29740] ? strncpy_from_user+0x19d/0x2d0 [ 1421.596263][T29740] ? do_getname+0x191/0x390 [ 1421.596285][T29740] __x64_sys_mknod+0x8f/0xc0 [ 1421.596305][T29740] do_syscall_64+0x10b/0xf80 [ 1421.596320][T29740] ? clear_bhb_loop+0x40/0x90 [ 1421.596339][T29740] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1421.596355][T29740] RIP: 0033:0x7fb5c359c819 [ 1421.596372][T29740] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1421.596387][T29740] RSP: 002b:00007fb5c43a3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000085 [ 1421.596403][T29740] RAX: ffffffffffffffda RBX: 00007fb5c3816090 RCX: 00007fb5c359c819 [ 1421.596415][T29740] RDX: 0000000000000009 RSI: 0000000000000002 RDI: 0000000000000000 [ 1421.596425][T29740] RBP: 00007fb5c3632c91 R08: 0000000000000000 R09: 0000000000000000 [ 1421.596435][T29740] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1421.596445][T29740] R13: 00007fb5c3816128 R14: 00007fb5c3816090 R15: 00007ffc38390f98 [ 1421.596467][T29740] [ 1422.259241][T20205] Bluetooth: hci2: command 0x0c1a tx timeout [ 1422.381727][T20205] Bluetooth: hci1: command 0x0406 tx timeout [ 1422.388523][T20205] Bluetooth: hci3: command 0x0c1a tx timeout [ 1422.501283][T28023] Bluetooth: hci4: command 0x0406 tx timeout [ 1423.023526][ T29] audit: type=1800 audit(2147483974.300:36): pid=29749 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.7751" name="dbroot" dev="configfs" ino=396528 res=0 errno=0 [ 1423.466542][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 1423.473809][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 1423.868262][T29769] netlink: 17 bytes leftover after parsing attributes in process `syz.4.7757'. [ 1424.585901][T28023] Bluetooth: hci4: command 0x0406 tx timeout [ 1424.755316][T29783] ERROR: Out of memory at tomoyo_memory_ok. [ 1425.493573][ T29] audit: type=1800 audit(2147483976.770:37): pid=29787 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.7758" name="sr0" dev="devtmpfs" ino=2820 res=0 errno=0 [ 1426.087974][T29798] FAULT_INJECTION: forcing a failure. [ 1426.087974][T29798] name failslab, interval 1, probability 0, space 0, times 0 [ 1426.415328][T29798] CPU: 0 UID: 0 PID: 29798 Comm: syz.0.7762 Tainted: G L syzkaller #0 PREEMPT(full) [ 1426.415364][T29798] Tainted: [L]=SOFTLOCKUP [ 1426.415371][T29798] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1426.415382][T29798] Call Trace: [ 1426.415389][T29798] [ 1426.415396][T29798] dump_stack_lvl+0x100/0x190 [ 1426.415433][T29798] should_fail_ex.cold+0x5/0xa [ 1426.415485][T29798] ? security_inode_init_security+0x113/0x370 [ 1426.415511][T29798] should_failslab+0xc2/0x120 [ 1426.415532][T29798] __kmalloc_noprof+0xe0/0x850 [ 1426.415562][T29798] security_inode_init_security+0x113/0x370 [ 1426.415581][T29798] ? __pfx_shmem_initxattrs+0x10/0x10 [ 1426.415601][T29798] ? __pfx_security_inode_init_security+0x10/0x10 [ 1426.415621][T29798] ? make_vfsgid+0xf1/0x140 [ 1426.415645][T29798] shmem_mknod+0x2bf/0x470 [ 1426.415667][T29798] ? __pfx_shmem_mknod+0x10/0x10 [ 1426.415692][T29798] vfs_create+0x301/0x6c0 [ 1426.415716][T29798] filename_mknodat+0x2de/0x7f0 [ 1426.415736][T29798] ? __pfx_filename_mknodat+0x10/0x10 [ 1426.415753][T29798] ? strncpy_from_user+0x19d/0x2d0 [ 1426.415780][T29798] ? do_getname+0x191/0x390 [ 1426.415801][T29798] __x64_sys_mknod+0x8f/0xc0 [ 1426.415819][T29798] do_syscall_64+0x10b/0xf80 [ 1426.415833][T29798] ? clear_bhb_loop+0x40/0x90 [ 1426.415852][T29798] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1426.415869][T29798] RIP: 0033:0x7f2c5319c819 [ 1426.415886][T29798] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1426.415901][T29798] RSP: 002b:00007f2c540d3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000085 [ 1426.415917][T29798] RAX: ffffffffffffffda RBX: 00007f2c53416090 RCX: 00007f2c5319c819 [ 1426.415928][T29798] RDX: 0000000000000009 RSI: 0000000000000002 RDI: 0000000000000000 [ 1426.415937][T29798] RBP: 00007f2c53232c91 R08: 0000000000000000 R09: 0000000000000000 [ 1426.415946][T29798] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1426.415955][T29798] R13: 00007f2c53416128 R14: 00007f2c53416090 R15: 00007ffe7d45d528 [ 1426.415974][T29798] [ 1426.644623][T29805] FAULT_INJECTION: forcing a failure. [ 1426.644623][T29805] name failslab, interval 1, probability 0, space 0, times 0 [ 1426.658204][T29805] CPU: 0 UID: 0 PID: 29805 Comm: syz.3.7764 Tainted: G L syzkaller #0 PREEMPT(full) [ 1426.658234][T29805] Tainted: [L]=SOFTLOCKUP [ 1426.658241][T29805] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1426.658252][T29805] Call Trace: [ 1426.658259][T29805] [ 1426.658265][T29805] dump_stack_lvl+0x100/0x190 [ 1426.658296][T29805] should_fail_ex.cold+0x5/0xa [ 1426.658320][T29805] should_failslab+0xc2/0x120 [ 1426.658338][T29805] __kmalloc_cache_noprof+0x7a/0x6f0 [ 1426.658360][T29805] ? kernfs_fop_open+0x23d/0xd50 [ 1426.658392][T29805] kernfs_fop_open+0x23d/0xd50 [ 1426.658417][T29805] do_dentry_open+0x6d8/0x1660 [ 1426.658437][T29805] ? __pfx_kernfs_fop_open+0x10/0x10 [ 1426.658462][T29805] vfs_open+0x82/0x3f0 [ 1426.658486][T29805] path_openat+0x208c/0x31a0 [ 1426.658511][T29805] ? __pfx_path_openat+0x10/0x10 [ 1426.658535][T29805] do_file_open+0x20e/0x430 [ 1426.658553][T29805] ? __pfx_do_file_open+0x10/0x10 [ 1426.658584][T29805] ? alloc_fd+0x476/0x790 [ 1426.658602][T29805] ? do_getname+0x191/0x390 [ 1426.658624][T29805] do_sys_openat2+0x10d/0x1e0 [ 1426.658644][T29805] ? __pfx_do_sys_openat2+0x10/0x10 [ 1426.658666][T29805] ? find_held_lock+0x2b/0x80 [ 1426.658687][T29805] __x64_sys_openat+0x12d/0x210 [ 1426.658708][T29805] ? __pfx___x64_sys_openat+0x10/0x10 [ 1426.658735][T29805] do_syscall_64+0x10b/0xf80 [ 1426.658750][T29805] ? clear_bhb_loop+0x40/0x90 [ 1426.658769][T29805] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1426.658785][T29805] RIP: 0033:0x7f935ff9c819 [ 1426.658800][T29805] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1426.658817][T29805] RSP: 002b:00007f9360ebb028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1426.658833][T29805] RAX: ffffffffffffffda RBX: 00007f9360216090 RCX: 00007f935ff9c819 [ 1426.658843][T29805] RDX: 0000000000082002 RSI: 0000200000000480 RDI: ffffffffffffff9c [ 1426.658854][T29805] RBP: 00007f9360032c91 R08: 0000000000000000 R09: 0000000000000000 [ 1426.658864][T29805] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1426.658875][T29805] R13: 00007f9360216128 R14: 00007f9360216090 R15: 00007ffea087a948 [ 1426.658897][T29805] [ 1427.596702][T28023] Bluetooth: hci4: unexpected subevent 0x03 length: 253 > 9 [ 1429.165178][ T48] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm kworker/u8:3: bg 1: bad block bitmap checksum [ 1429.237823][ T48] EXT4-fs (sda1): Delayed block allocation failed for inode 2029 at logical offset 942 with max blocks 25 with error 74 [ 1429.316269][ T48] EXT4-fs (sda1): This should not happen!! Data will be lost [ 1429.316269][ T48] [ 1430.423743][T28023] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 1434.100543][T29876] FAULT_INJECTION: forcing a failure. [ 1434.100543][T29876] name failslab, interval 1, probability 0, space 0, times 0 [ 1434.234105][T29876] CPU: 0 UID: 0 PID: 29876 Comm: syz.0.7779 Tainted: G L syzkaller #0 PREEMPT(full) [ 1434.234133][T29876] Tainted: [L]=SOFTLOCKUP [ 1434.234139][T29876] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1434.234150][T29876] Call Trace: [ 1434.234156][T29876] [ 1434.234162][T29876] dump_stack_lvl+0x100/0x190 [ 1434.234192][T29876] should_fail_ex.cold+0x5/0xa [ 1434.234212][T29876] ? __netlink_kernel_create+0x181/0x750 [ 1434.234238][T29876] should_failslab+0xc2/0x120 [ 1434.234256][T29876] __kmalloc_noprof+0xe0/0x850 [ 1434.234284][T29876] __netlink_kernel_create+0x181/0x750 [ 1434.234309][T29876] ? __pfx___netlink_kernel_create+0x10/0x10 [ 1434.234332][T29876] ? find_held_lock+0x2b/0x80 [ 1434.234346][T29876] ? audit_net_init+0x190/0x440 [ 1434.234367][T29876] ? audit_net_init+0x190/0x440 [ 1434.234389][T29876] audit_net_init+0x1ae/0x440 [ 1434.234409][T29876] ? __pfx_audit_net_init+0x10/0x10 [ 1434.234428][T29876] ? rcu_is_watching+0x12/0xc0 [ 1434.234451][T29876] ? __pfx_audit_receive+0x10/0x10 [ 1434.234473][T29876] ? __pfx_audit_multicast_bind+0x10/0x10 [ 1434.234494][T29876] ? __pfx_audit_multicast_unbind+0x10/0x10 [ 1434.234518][T29876] ? __kmalloc_noprof+0x320/0x850 [ 1434.234543][T29876] ? __pfx_audit_net_init+0x10/0x10 [ 1434.234562][T29876] ops_init+0x1e2/0x5f0 [ 1434.234588][T29876] setup_net+0x118/0x3a0 [ 1434.234602][T29876] ? __pfx_setup_net+0x10/0x10 [ 1434.234615][T29876] ? lockdep_init_map_type+0x5c/0x250 [ 1434.234635][T29876] ? mutex_init_lockep+0x110/0x150 [ 1434.234662][T29876] copy_net_ns+0x46f/0x7c0 [ 1434.234680][T29876] create_new_namespaces+0x3ea/0xac0 [ 1434.234701][T29876] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 1434.234721][T29876] ksys_unshare+0x473/0xad0 [ 1434.234744][T29876] ? __pfx_ksys_unshare+0x10/0x10 [ 1434.234769][T29876] __x64_sys_unshare+0x31/0x40 [ 1434.234788][T29876] do_syscall_64+0x10b/0xf80 [ 1434.234802][T29876] ? clear_bhb_loop+0x40/0x90 [ 1434.234820][T29876] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1434.234836][T29876] RIP: 0033:0x7f2c5319c819 [ 1434.234851][T29876] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1434.234866][T29876] RSP: 002b:00007f2c540d3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 1434.234881][T29876] RAX: ffffffffffffffda RBX: 00007f2c53416090 RCX: 00007f2c5319c819 [ 1434.234892][T29876] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 1434.234909][T29876] RBP: 00007f2c53232c91 R08: 0000000000000000 R09: 0000000000000000 [ 1434.234919][T29876] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1434.234929][T29876] R13: 00007f2c53416128 R14: 00007f2c53416090 R15: 00007ffe7d45d528 [ 1434.234949][T29876] [ 1434.235040][T29876] audit: cannot initialize netlink socket in namespace [ 1434.646891][T29877] slcan: can't register candev [ 1436.196477][T29892] ERROR: Out of memory at tomoyo_memory_ok. [ 1437.825216][T29905] MTRR 4 not used [ 1438.528887][T29919] netlink: 17 bytes leftover after parsing attributes in process `syz.3.7796'. [ 1438.740477][T29919] netlink: 2 bytes leftover after parsing attributes in process `syz.3.7796'. [ 1441.303670][T28023] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 1441.601852][ T29] audit: type=1807 audit(2147483992.880:38): UNKNOWN= res=0 [ 1441.673988][ T29] audit: type=1802 audit(2147483992.880:39): pid=29949 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.3.7792" res=0 errno=0 [ 1441.890846][T29956] netlink: 28 bytes leftover after parsing attributes in process `syz.3.7792'. [ 1442.042917][T29959] QAT: Invalid ioctl 35077 [ 1442.358122][T29948] ima: policy update failed [ 1442.416160][ T29] audit: type=1802 audit(2147483993.700:40): pid=29948 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.7792" res=0 errno=0 [ 1443.945749][T28023] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 1447.436565][T30015] ERROR: Out of memory at tomoyo_memory_ok. [ 1450.291429][ T29] audit: type=1807 audit(2147484001.570:41): UNKNOWN= res=0 [ 1450.339601][ T29] audit: type=1802 audit(2147484001.570:42): pid=30035 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.1.7811" res=0 errno=0 [ 1450.488826][T30038] netlink: 28 bytes leftover after parsing attributes in process `syz.1.7811'. [ 1450.731478][T30038] bridge_slave_1 (unregistering): left allmulticast mode [ 1450.783930][T30038] bridge_slave_1 (unregistering): left promiscuous mode [ 1450.833114][T30038] bridge0: port 2(bridge_slave_1) entered disabled state [ 1451.053293][T30034] ima: policy update failed [ 1451.098187][ T29] audit: type=1802 audit(2147484002.380:43): pid=30034 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.7811" res=0 errno=0 [ 1451.552728][T30050] FAULT_INJECTION: forcing a failure. [ 1451.552728][T30050] name failslab, interval 1, probability 0, space 0, times 0 [ 1451.794405][T30050] CPU: 0 UID: 0 PID: 30050 Comm: syz.4.7813 Tainted: G L syzkaller #0 PREEMPT(full) [ 1451.794438][T30050] Tainted: [L]=SOFTLOCKUP [ 1451.794444][T30050] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1451.794455][T30050] Call Trace: [ 1451.794462][T30050] [ 1451.794469][T30050] dump_stack_lvl+0x100/0x190 [ 1451.794502][T30050] should_fail_ex.cold+0x5/0xa [ 1451.794526][T30050] should_failslab+0xc2/0x120 [ 1451.794545][T30050] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1451.794570][T30050] ? security_inode_alloc+0x3b/0x2c0 [ 1451.794592][T30050] ? lockdep_init_map_type+0x5c/0x250 [ 1451.794615][T30050] security_inode_alloc+0x3b/0x2c0 [ 1451.794637][T30050] inode_init_always_gfp+0xcc0/0x1000 [ 1451.794657][T30050] alloc_inode+0x8e/0x250 [ 1451.794677][T30050] sock_alloc+0x44/0x280 [ 1451.794692][T30050] ? security_socket_create+0x7f/0x250 [ 1451.794713][T30050] sock_create_lite+0x82/0x120 [ 1451.794729][T30050] __netlink_kernel_create+0xbd/0x750 [ 1451.794757][T30050] ? __pfx___netlink_kernel_create+0x10/0x10 [ 1451.794787][T30050] uevent_net_init+0xf8/0x330 [ 1451.794807][T30050] ? __pfx_uevent_net_init+0x10/0x10 [ 1451.794912][T30050] ? __pfx_uevent_net_rcv+0x10/0x10 [ 1451.794935][T30050] ? __kmalloc_noprof+0x320/0x850 [ 1451.794964][T30050] ? __pfx_uevent_net_init+0x10/0x10 [ 1451.794983][T30050] ops_init+0x1e2/0x5f0 [ 1451.795011][T30050] setup_net+0x118/0x3a0 [ 1451.795025][T30050] ? __pfx_setup_net+0x10/0x10 [ 1451.795038][T30050] ? lockdep_init_map_type+0x5c/0x250 [ 1451.795060][T30050] ? mutex_init_lockep+0x110/0x150 [ 1451.795084][T30050] copy_net_ns+0x46f/0x7c0 [ 1451.795101][T30050] create_new_namespaces+0x3ea/0xac0 [ 1451.795122][T30050] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 1451.795140][T30050] ksys_unshare+0x473/0xad0 [ 1451.795161][T30050] ? __pfx_ksys_unshare+0x10/0x10 [ 1451.795187][T30050] __x64_sys_unshare+0x31/0x40 [ 1451.795206][T30050] do_syscall_64+0x10b/0xf80 [ 1451.795220][T30050] ? clear_bhb_loop+0x40/0x90 [ 1451.795238][T30050] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1451.795254][T30050] RIP: 0033:0x7fb5c359c819 [ 1451.795275][T30050] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1451.795292][T30050] RSP: 002b:00007fb5c43a3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 1451.795310][T30050] RAX: ffffffffffffffda RBX: 00007fb5c3816090 RCX: 00007fb5c359c819 [ 1451.795321][T30050] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 1451.795332][T30050] RBP: 00007fb5c3632c91 R08: 0000000000000000 R09: 0000000000000000 [ 1451.795342][T30050] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1451.795352][T30050] R13: 00007fb5c3816128 R14: 00007fb5c3816090 R15: 00007ffc38390f98 [ 1451.795375][T30050] [ 1451.795406][T30050] kobject_uevent: unable to create netlink socket! [ 1452.920013][T30053] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 1453.905589][T30068] random: crng reseeded on system resumption [ 1453.944471][T30066] netlink: 25 bytes leftover after parsing attributes in process `syz.4.7819'. [ 1454.644432][T30081] usb usb3: usbfs: process 30081 (syz.4.7824) did not claim interface 0 before use [ 1454.795069][ T29] audit: type=1800 audit(2147484006.070:44): pid=30076 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.7818" name="sr0" dev="devtmpfs" ino=2820 res=0 errno=0 [ 1457.599250][T30108] FAULT_INJECTION: forcing a failure. [ 1457.599250][T30108] name failslab, interval 1, probability 0, space 0, times 0 [ 1457.673033][T30108] CPU: 0 UID: 0 PID: 30108 Comm: syz.3.7828 Tainted: G L syzkaller #0 PREEMPT(full) [ 1457.673064][T30108] Tainted: [L]=SOFTLOCKUP [ 1457.673071][T30108] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1457.673080][T30108] Call Trace: [ 1457.673087][T30108] [ 1457.673094][T30108] dump_stack_lvl+0x100/0x190 [ 1457.673126][T30108] should_fail_ex.cold+0x5/0xa [ 1457.673147][T30108] ? __netlink_kernel_create+0x181/0x750 [ 1457.673173][T30108] should_failslab+0xc2/0x120 [ 1457.673193][T30108] __kmalloc_noprof+0xe0/0x850 [ 1457.673220][T30108] __netlink_kernel_create+0x181/0x750 [ 1457.673246][T30108] ? __pfx___netlink_kernel_create+0x10/0x10 [ 1457.673275][T30108] uevent_net_init+0xf8/0x330 [ 1457.673295][T30108] ? __pfx_uevent_net_init+0x10/0x10 [ 1457.673314][T30108] ? __pfx_uevent_net_rcv+0x10/0x10 [ 1457.673340][T30108] ? __kmalloc_noprof+0x320/0x850 [ 1457.673367][T30108] ? __pfx_uevent_net_init+0x10/0x10 [ 1457.673385][T30108] ops_init+0x1e2/0x5f0 [ 1457.673412][T30108] setup_net+0x118/0x3a0 [ 1457.673427][T30108] ? __pfx_setup_net+0x10/0x10 [ 1457.673440][T30108] ? lockdep_init_map_type+0x5c/0x250 [ 1457.673461][T30108] ? mutex_init_lockep+0x110/0x150 [ 1457.673485][T30108] copy_net_ns+0x46f/0x7c0 [ 1457.673502][T30108] create_new_namespaces+0x3ea/0xac0 [ 1457.673523][T30108] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 1457.673542][T30108] ksys_unshare+0x473/0xad0 [ 1457.673562][T30108] ? __pfx_ksys_unshare+0x10/0x10 [ 1457.673588][T30108] __x64_sys_unshare+0x31/0x40 [ 1457.673606][T30108] do_syscall_64+0x10b/0xf80 [ 1457.673620][T30108] ? clear_bhb_loop+0x40/0x90 [ 1457.673639][T30108] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1457.673662][T30108] RIP: 0033:0x7f935ff9c819 [ 1457.673677][T30108] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1457.673693][T30108] RSP: 002b:00007f9360ebb028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 1457.673709][T30108] RAX: ffffffffffffffda RBX: 00007f9360216090 RCX: 00007f935ff9c819 [ 1457.673720][T30108] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 1457.673734][T30108] RBP: 00007f9360032c91 R08: 0000000000000000 R09: 0000000000000000 [ 1457.673744][T30108] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1457.673754][T30108] R13: 00007f9360216128 R14: 00007f9360216090 R15: 00007ffea087a948 [ 1457.673774][T30108] [ 1458.290777][T30104] hub 1-0:1.0: USB hub found [ 1458.328570][T30104] hub 1-0:1.0: 1 port detected [ 1458.649009][T30112] ERROR: Out of memory at tomoyo_memory_ok. [ 1458.927763][T30108] kobject_uevent: unable to create netlink socket! [ 1461.027141][T30139] netlink: 25 bytes leftover after parsing attributes in process `syz.3.7837'. [ 1463.191130][T30168] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !PjE r҄y*"l-y– [ 1463.784087][T28023] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 1465.667353][T30186] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 1465.718684][T30186] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 1465.785953][T30186] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1465.847654][T30186] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 1466.858696][T28023] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 1467.704832][T20205] Bluetooth: hci3: command 0x0c1a tx timeout [ 1467.711143][T20205] Bluetooth: hci2: command 0x0c1a tx timeout [ 1467.753053][T30197] hub 1-0:1.0: USB hub found [ 1467.796738][T30197] hub 1-0:1.0: 1 port detected [ 1467.867652][T20205] Bluetooth: hci4: command 0x0406 tx timeout [ 1467.873797][T28023] Bluetooth: hci1: command 0x0406 tx timeout [ 1469.814630][T30233] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 1469.844928][T30233] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 1469.920176][T30233] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 1469.978701][T30233] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1470.014091][T30233] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 1470.141446][T30238] ERROR: Out of memory at tomoyo_memory_ok. [ 1471.863719][T20205] Bluetooth: hci2: command 0x0c1a tx timeout [ 1471.943640][T20205] Bluetooth: hci3: command 0x0c1a tx timeout [ 1472.023593][T20205] Bluetooth: hci4: command 0x0406 tx timeout [ 1472.030068][T28023] Bluetooth: hci1: command 0x0406 tx timeout [ 1473.945973][T20205] Bluetooth: hci2: command 0x0c1a tx timeout [ 1474.291653][T30279] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input28 [ 1475.686826][T30292] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7869'. [ 1475.782253][T30292] netlink: 'syz.3.7869': attribute type 1 has an invalid length. [ 1475.829948][T30292] netlink: 'syz.3.7869': attribute type 6 has an invalid length. [ 1475.932658][ T5179] ERROR: Out of memory at tomoyo_memory_ok. [ 1478.547868][T30326] Process accounting resumed [ 1479.542084][T30342] random: crng reseeded on system resumption [ 1481.422386][T30358] ERROR: Out of memory at tomoyo_memory_ok. [ 1482.523589][ T29] audit: type=1800 audit(2147484033.790:45): pid=30368 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.7885" name="sr0" dev="devtmpfs" ino=2820 res=0 errno=0 [ 1484.436645][T30383] netlink: 28 bytes leftover after parsing attributes in process `syz.1.7889'. [ 1484.919438][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 1484.936254][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 1485.084095][T30389] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7891'. [ 1485.140164][T30389] netlink: 25 bytes leftover after parsing attributes in process `syz.4.7891'. [ 1486.490686][T30408] netlink: 25 bytes leftover after parsing attributes in process `syz.1.7895'. [ 1487.965284][T30415] program syz.3.7898 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1488.156333][ T29] audit: type=1807 audit(4294967298.679:46): UNKNOWN=0"]$|1j0B|dӉO+/xWӦ^gq%ḦrO res=0 [ 1488.245300][T30419] ima: policy update failed [ 1488.266625][ T29] audit: type=1802 audit(4294967298.679:47): pid=30417 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.4.7899" res=0 errno=0 [ 1488.427453][ T29] audit: type=1802 audit(4294967298.789:48): pid=30419 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.4.7899" res=0 errno=0 [ 1489.266873][T30431] RDS: rds_bind could not find a transport for ::ffff:172.20.20.187, load rds_tcp or rds_rdma? [ 1489.417849][T30429] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7901'. [ 1489.471026][T20205] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 1489.522833][T30429] netlink: 'syz.3.7901': attribute type 1 has an invalid length. [ 1489.564722][T30429] netlink: 13 bytes leftover after parsing attributes in process `syz.3.7901'. [ 1492.030457][T30466] FAULT_INJECTION: forcing a failure. [ 1492.030457][T30466] name failslab, interval 1, probability 0, space 0, times 0 [ 1492.120333][T30466] CPU: 0 UID: 0 PID: 30466 Comm: syz.0.7912 Tainted: G L syzkaller #0 PREEMPT(full) [ 1492.120363][T30466] Tainted: [L]=SOFTLOCKUP [ 1492.120370][T30466] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1492.120381][T30466] Call Trace: [ 1492.120388][T30466] [ 1492.120395][T30466] dump_stack_lvl+0x100/0x190 [ 1492.120429][T30466] should_fail_ex.cold+0x5/0xa [ 1492.120451][T30466] ? lsm_blob_alloc+0x68/0x90 [ 1492.120472][T30466] should_failslab+0xc2/0x120 [ 1492.120491][T30466] __kmalloc_noprof+0xe0/0x850 [ 1492.120519][T30466] ? down_write_nested+0x14f/0x200 [ 1492.120545][T30466] lsm_blob_alloc+0x68/0x90 [ 1492.120563][T30466] security_sb_alloc+0x25/0x240 [ 1492.120583][T30466] alloc_super+0x24c/0xd20 [ 1492.120612][T30466] ? __pfx_mqueue_fill_super+0x10/0x10 [ 1492.120631][T30466] sget_fc+0x117/0xc70 [ 1492.120644][T30466] ? __pfx_set_anon_super_fc+0x10/0x10 [ 1492.120668][T30466] ? __pfx_mqueue_fill_super+0x10/0x10 [ 1492.120685][T30466] get_tree_nodev+0x28/0x190 [ 1492.120701][T30466] mqueue_get_tree+0xf1/0x130 [ 1492.120719][T30466] vfs_get_tree+0x92/0x320 [ 1492.120741][T30466] fc_mount_longterm+0x1a/0x270 [ 1492.120765][T30466] mq_init_ns+0x482/0x820 [ 1492.120787][T30466] copy_ipcs+0x3dd/0x7e0 [ 1492.120808][T30466] create_new_namespaces+0x20a/0xac0 [ 1492.120826][T30466] ? security_capable+0x80/0x260 [ 1492.120847][T30466] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 1492.120866][T30466] ksys_unshare+0x473/0xad0 [ 1492.120887][T30466] ? __pfx_ksys_unshare+0x10/0x10 [ 1492.120913][T30466] __x64_sys_unshare+0x31/0x40 [ 1492.120932][T30466] do_syscall_64+0x10b/0xf80 [ 1492.120947][T30466] ? clear_bhb_loop+0x40/0x90 [ 1492.120965][T30466] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1492.120983][T30466] RIP: 0033:0x7f2c5319c819 [ 1492.120998][T30466] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1492.121013][T30466] RSP: 002b:00007f2c540d3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 1492.121029][T30466] RAX: ffffffffffffffda RBX: 00007f2c53416090 RCX: 00007f2c5319c819 [ 1492.121039][T30466] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000006c000000 [ 1492.121048][T30466] RBP: 00007f2c53232c91 R08: 0000000000000000 R09: 0000000000000000 [ 1492.121058][T30466] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1492.121066][T30466] R13: 00007f2c53416128 R14: 00007f2c53416090 R15: 00007ffe7d45d528 [ 1492.121086][T30466] [ 1493.157495][T30471] ERROR: Out of memory at tomoyo_memory_ok. [ 1494.617379][T30500] Process accounting resumed [ 1496.374224][T30514] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7923'. [ 1496.449697][T30519] netlink: 354 bytes leftover after parsing attributes in process `syz.0.7923'. [ 1497.753816][T30543] netlink: 326 bytes leftover after parsing attributes in process `syz.4.7932'. [ 1497.900201][T30548] FAULT_INJECTION: forcing a failure. [ 1497.900201][T30548] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1498.098906][T30548] CPU: 0 UID: 0 PID: 30548 Comm: syz.4.7932 Tainted: G L syzkaller #0 PREEMPT(full) [ 1498.098939][T30548] Tainted: [L]=SOFTLOCKUP [ 1498.098946][T30548] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1498.098956][T30548] Call Trace: [ 1498.098963][T30548] [ 1498.098972][T30548] dump_stack_lvl+0x100/0x190 [ 1498.099015][T30548] should_fail_ex.cold+0x5/0xa [ 1498.099038][T30548] core_sys_select+0x9b9/0xbb0 [ 1498.099060][T30548] ? __pfx_core_sys_select+0x10/0x10 [ 1498.099096][T30548] ? ktime_get_ts64+0x2d2/0x3f0 [ 1498.099116][T30548] ? read_tsc+0x9/0x20 [ 1498.099136][T30548] ? ktime_get_ts64+0x256/0x3f0 [ 1498.099155][T30548] kern_select+0x20c/0x270 [ 1498.099172][T30548] ? __pfx_kern_select+0x10/0x10 [ 1498.099193][T30548] __x64_sys_select+0xbd/0x160 [ 1498.099208][T30548] ? do_syscall_64+0x90/0xf80 [ 1498.099223][T30548] ? lockdep_hardirqs_on+0x78/0x100 [ 1498.099246][T30548] do_syscall_64+0x10b/0xf80 [ 1498.099263][T30548] ? clear_bhb_loop+0x40/0x90 [ 1498.099282][T30548] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1498.099298][T30548] RIP: 0033:0x7fb5c359c819 [ 1498.099314][T30548] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1498.099331][T30548] RSP: 002b:00007fb5c43a3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000017 [ 1498.099348][T30548] RAX: ffffffffffffffda RBX: 00007fb5c3816090 RCX: 00007fb5c359c819 [ 1498.099358][T30548] RDX: 00002000000000c0 RSI: 0000200000000040 RDI: 0000000000000001 [ 1498.099368][T30548] RBP: 00007fb5c3632c91 R08: 00002000000001c0 R09: 0000000000000000 [ 1498.099379][T30548] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1498.099389][T30548] R13: 00007fb5c3816128 R14: 00007fb5c3816090 R15: 00007ffc38390f98 [ 1498.099411][T30548] [ 1498.521255][T30541] ERROR: Out of memory at tomoyo_memory_ok. [ 1499.842055][T30567] Process accounting resumed [ 1502.304181][ T29] audit: type=1800 audit(4294967312.832:49): pid=30601 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.7943" name="sr0" dev="devtmpfs" ino=2820 res=0 errno=0 [ 1504.345632][T30620] ERROR: Out of memory at tomoyo_memory_ok. [ 1509.761325][T30682] Process accounting paused [ 1515.547774][T30758] ERROR: Out of memory at tomoyo_memory_ok. [ 1517.356550][T30782] vivid-007: ================= START STATUS ================= [ 1517.417818][T30782] vivid-007: Generate PTS: true [ 1517.450419][T30782] vivid-007: Generate SCR: true [ 1517.455313][T30782] tpg source WxH: 320x240 (Y'CbCr) [ 1517.528620][T30782] tpg field: 1 [ 1517.548602][T30782] tpg crop: (0,0)/320x240 [ 1517.581872][T30782] tpg compose: (0,0)/320x240 [ 1517.620936][T30782] tpg colorspace: 8 [ 1517.624798][T30782] tpg transfer function: 0/0 [ 1517.700884][T30782] tpg Y'CbCr encoding: 0/0 [ 1517.705328][T30782] tpg quantization: 0/0 [ 1517.802212][T30782] tpg RGB range: 0/2 [ 1517.835710][T30782] vivid-007: ================== END STATUS ================== [ 1520.265910][T30828] [U] " [ 1520.269171][T30828] [U] [ 1520.271892][T30828] [U] [ 1520.274583][T30828] [U] [ 1520.363418][T30828] [U] [ 1520.366163][T30828] [U] [ 1520.368847][T30828] [U] [ 1520.371525][T30828] [U] [ 1520.460602][T30828] [U] [ 1520.463334][T30828] [U] [ 1520.466013][T30828] [U] [ 1520.468687][T30828] [U] [ 1520.552717][T30828] [U] [ 1520.555464][T30828] [U] [ 1520.558162][T30828] [U] [ 1520.560949][T30828] [U] [ 1520.621344][T30828] [U] [ 1520.624110][T30828] [U] [ 1520.627047][T30828] [U] [ 1520.629761][T30828] [U] [ 1520.721905][T30828] [U] [ 1520.724675][T30828] [U] [ 1520.727542][T30828] [U] [ 1520.730236][T30828] [U] [ 1520.788105][T30828] [U] [ 1520.790871][T30828] [U] [ 1520.793628][T30828] [U] [ 1520.796325][T30828] [U] [ 1520.881605][T30828] [U] [ 1520.884363][T30828] [U] [ 1520.887073][T30828] [U] [ 1520.889755][T30828] [U] [ 1520.951489][T30828] [U] [ 1520.954228][T30828] [U] [ 1520.957005][T30828] [U] [ 1520.959780][T30828] [U] [ 1521.101694][T30828] [U] [ 1521.104438][T30828] [U] [ 1521.107148][T30828] [U] [ 1521.109871][T30828] [U] [ 1521.190193][T30828] [U] [ 1522.152039][T30841] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8002'. [ 1525.025653][T30856] Process accounting paused [ 1526.836956][T30886] ERROR: Out of memory at tomoyo_memory_ok. [ 1528.312063][T30903] random: crng reseeded on system resumption [ 1530.274280][T30921] Process accounting paused [ 1531.073383][T30935] random: crng reseeded on system resumption [ 1531.446215][T30936] can0: slcan on ttyS2. [ 1531.882351][T30947] FAULT_INJECTION: forcing a failure. [ 1531.882351][T30947] name failslab, interval 1, probability 0, space 0, times 0 [ 1531.989956][T30947] CPU: 0 UID: 0 PID: 30947 Comm: syz.3.8026 Tainted: G L syzkaller #0 PREEMPT(full) [ 1531.989989][T30947] Tainted: [L]=SOFTLOCKUP [ 1531.989995][T30947] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1531.990007][T30947] Call Trace: [ 1531.990014][T30947] [ 1531.990022][T30947] dump_stack_lvl+0x100/0x190 [ 1531.990058][T30947] should_fail_ex.cold+0x5/0xa [ 1531.990088][T30947] ? sk_prot_alloc+0x10b/0x2a0 [ 1531.990106][T30947] should_failslab+0xc2/0x120 [ 1531.990127][T30947] __kmalloc_noprof+0xe0/0x850 [ 1531.990157][T30947] sk_prot_alloc+0x10b/0x2a0 [ 1531.990175][T30947] sk_alloc+0x36/0xe80 [ 1531.990197][T30947] __netlink_create+0x5e/0x2c0 [ 1531.990217][T30947] ? __wake_up+0x3f/0x60 [ 1531.990236][T30947] netlink_create+0x293/0x610 [ 1531.990258][T30947] ? __pfx_genl_bind+0x10/0x10 [ 1531.990272][T30947] ? __pfx_genl_unbind+0x10/0x10 [ 1531.990286][T30947] ? __pfx_genl_release+0x10/0x10 [ 1531.990304][T30947] __sock_create+0x339/0x860 [ 1531.990326][T30947] __sys_socket+0x14d/0x260 [ 1531.990342][T30947] ? exc_page_fault+0x6f/0xd0 [ 1531.990366][T30947] ? __pfx___sys_socket+0x10/0x10 [ 1531.990386][T30947] ? do_user_addr_fault+0x8d6/0x12f0 [ 1531.990404][T30947] __x64_sys_socket+0x72/0xb0 [ 1531.990421][T30947] ? lockdep_hardirqs_on+0x78/0x100 [ 1531.990444][T30947] do_syscall_64+0x10b/0xf80 [ 1531.990458][T30947] ? clear_bhb_loop+0x40/0x90 [ 1531.990476][T30947] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1531.990493][T30947] RIP: 0033:0x7f935ff9e087 [ 1531.990508][T30947] Code: f0 ff ff 77 06 c3 0f 1f 44 00 00 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1531.990525][T30947] RSP: 002b:00007f9360edaf98 EFLAGS: 00000286 ORIG_RAX: 0000000000000029 [ 1531.990542][T30947] RAX: ffffffffffffffda RBX: 00007f9360215fa0 RCX: 00007f935ff9e087 [ 1531.990553][T30947] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 1531.990562][T30947] RBP: 00000000ffffffff R08: 0000000000000000 R09: 0000000000000000 [ 1531.990571][T30947] R10: 0000200000000040 R11: 0000000000000286 R12: 0000000000000000 [ 1531.990581][T30947] R13: 00007f9360216038 R14: 00007f9360215fa0 R15: 00007ffea087a948 [ 1531.990600][T30947] [ 1532.533501][T30933] can0 (unregistered): slcan off ttyS2. [ 1534.444369][T20205] Bluetooth: hci2: ISO packet for unknown connection handle 0 [ 1535.371154][T31008] QAT: Invalid ioctl 35077 [ 1535.519087][T31010] ACPI: Can not change Invalid GPE/Fixed Event status [ 1535.633886][T31014] netlink: 16 bytes leftover after parsing attributes in process `syz.0.8036'. [ 1537.971648][T20205] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 1538.027803][T31044] ERROR: Out of memory at tomoyo_memory_ok. [ 1540.533561][T31071] random: crng reseeded on system resumption [ 1541.540934][T31072] netlink: 28 bytes leftover after parsing attributes in process `syz.0.8048'. [ 1541.824161][T31085] netlink: 342 bytes leftover after parsing attributes in process `syz.0.8050'. [ 1541.898750][T31085] netlink: 342 bytes leftover after parsing attributes in process `syz.0.8050'. [ 1542.778247][T31095] block2mtd: illegal erase size [ 1542.924836][T31059] Process accounting resumed [ 1546.377424][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 1546.384321][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 1547.468321][ T29] audit: type=1800 audit(4294967357.979:50): pid=31150 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.8066" name="SYSV00000000" dev="tmpfs" ino=0 res=0 errno=0 [ 1548.471636][T31161] netlink: 4 bytes leftover after parsing attributes in process `syz.4.8068'. [ 1548.545948][T31161] netlink: 'syz.4.8068': attribute type 1 has an invalid length. [ 1548.596725][T31161] netlink: 51505 bytes leftover after parsing attributes in process `syz.4.8068'. [ 1549.366512][T31174] ERROR: Out of memory at tomoyo_memory_ok. [ 1549.911898][T31183] random: crng reseeded on system resumption [ 1552.778552][ T48] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm kworker/u8:3: bg 2: bad block bitmap checksum [ 1552.891042][ T48] EXT4-fs (sda1): Delayed block allocation failed for inode 2029 at logical offset 1405 with max blocks 4 with error 74 [ 1553.009512][ T48] EXT4-fs (sda1): This should not happen!! Data will be lost [ 1553.009512][ T48] [ 1553.029625][T31229] input: jJǸ-9%vJ86 as /devices/virtual/input/input29 [ 1553.220166][ T5179] ERROR: Out of memory at tomoyo_memory_ok. [ 1555.402049][ T29] audit: type=1804 audit(4294967365.905:51): pid=31269 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.8092" name="/newroot/2023/file0" dev="tmpfs" ino=10459 res=1 errno=0 [ 1555.487329][T31268] Scaler: ================= START STATUS ================= [ 1555.554941][ T29] audit: type=1804 audit(4294967365.945:52): pid=31270 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.8092" name="/newroot/2023/file0" dev="tmpfs" ino=10459 res=1 errno=0 [ 1555.678154][T31268] Scaler: ================== END STATUS ================== [ 1556.307944][T31263] Process accounting resumed [ 1560.731686][T31317] ERROR: Out of memory at tomoyo_memory_ok. [ 1562.785075][T20205] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 1563.176252][T31307] Process accounting resumed [ 1567.222927][T31359] random: crng reseeded on system resumption [ 1567.644773][T31364] pci 0000:00:01.0: [8086:7110] type 00 class 0x060100 conventional PCI endpoint [ 1568.546046][ T144] EXT4-fs (sda1): Delayed block allocation failed for inode 2027 at logical offset 932 with max blocks 18 with error 117 [ 1568.699846][ T144] EXT4-fs (sda1): This should not happen!! Data will be lost [ 1568.699846][ T144] [ 1569.165841][T31364] PCI: Can't parse resource_alignment parameter: 1 [ 1572.036044][T31408] ERROR: Out of memory at tomoyo_memory_ok. [ 1572.896909][T31416] netlink: 4 bytes leftover after parsing attributes in process `syz.4.8123'. [ 1572.978270][T31416] netlink: 354 bytes leftover after parsing attributes in process `syz.4.8123'. [ 1573.713304][T31394] Process accounting paused [ 1574.459782][T20205] Bluetooth: hci3: unexpected event for opcode 0x7c89 [ 1578.629666][T31449] Bluetooth: hci2: Opcode 0x0c1a failed: -110 [ 1578.635895][T20205] Bluetooth: hci2: command 0x0c1a tx timeout [ 1578.992800][T31449] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 1579.034617][T31449] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1579.084670][T31449] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 1580.659750][T31482] netlink: 330 bytes leftover after parsing attributes in process `syz.4.8138'. [ 1580.710759][T20205] Bluetooth: hci3: command 0x0c1a tx timeout [ 1580.761222][T31482] mac80211_hwsim hwsim24 : renamed from wlan0 (while UP) [ 1581.114368][T20205] Bluetooth: hci4: command 0x0406 tx timeout [ 1581.120745][T20205] Bluetooth: hci1: command 0x0406 tx timeout [ 1582.950274][T31502] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8143'. [ 1583.082831][T31503] netlink: 354 bytes leftover after parsing attributes in process `syz.3.8143'. [ 1583.246916][T31504] ERROR: Out of memory at tomoyo_memory_ok. [ 1583.624449][T31507] can0: slcan on ptm0. [ 1583.874733][T31506] can0 (unregistered): slcan off ptm0. [ 1584.698046][T31524] netlink: 186 bytes leftover after parsing attributes in process `syz.0.8147'. [ 1587.750645][T31558] ubi0: attaching mtd0 [ 1587.780882][T31558] ubi0: scanning is finished [ 1587.904424][T31558] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 1588.107156][T31540] Process accounting paused [ 1588.198680][T31570] block2mtd: illegal erase size [ 1589.072205][T31558] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 1593.555909][T31604] Process accounting paused [ 1594.464653][T31642] ERROR: Out of memory at tomoyo_memory_ok. [ 1595.529281][T31659] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input30 [ 1596.181502][ T5179] ERROR: Out of memory at tomoyo_memory_ok. [ 1597.390579][T31670] ERROR: Out of memory at tomoyo_memory_ok. [ 1597.522474][T31667] ERROR: Out of memory at tomoyo_memory_ok. [ 1597.758746][T31683] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000) [ 1603.626155][T31723] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8186'. [ 1603.704216][T31725] netlink: 'syz.3.8186': attribute type 2 has an invalid length. [ 1603.802437][T31725] netlink: 'syz.3.8186': attribute type 3 has an invalid length. [ 1603.932470][T31725] netlink: 51505 bytes leftover after parsing attributes in process `syz.3.8186'. [ 1604.012501][T31725] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8186'. [ 1604.303609][T31725] Process accounting resumed [ 1605.343324][T31736] ubi31: attaching mtd0 [ 1605.348674][T31736] ubi31: scanning is finished [ 1605.694261][T31736] ubi31 error: ubi_read_volume_table: the layout volume was not found [ 1605.757156][T31743] ERROR: Out of memory at tomoyo_memory_ok. [ 1606.174081][T31754] futex_wake_op: syz.4.8192 tries to shift op by -2048; fix this program [ 1607.051254][T31763] ERROR: Out of memory at tomoyo_memory_ok. [ 1607.105141][T31757] FAULT_INJECTION: forcing a failure. [ 1607.105141][T31757] name failslab, interval 1, probability 0, space 0, times 0 [ 1607.214720][T31760] ERROR: Out of memory at tomoyo_memory_ok. [ 1607.263072][T31757] CPU: 0 UID: 0 PID: 31757 Comm: syz.3.8193 Tainted: G L syzkaller #0 PREEMPT(full) [ 1607.263105][T31757] Tainted: [L]=SOFTLOCKUP [ 1607.263112][T31757] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1607.263123][T31757] Call Trace: [ 1607.263130][T31757] [ 1607.263138][T31757] dump_stack_lvl+0x100/0x190 [ 1607.263172][T31757] should_fail_ex.cold+0x5/0xa [ 1607.263194][T31757] ? tomoyo_encode2+0xfb/0x3c0 [ 1607.263212][T31757] should_failslab+0xc2/0x120 [ 1607.263245][T31757] __kmalloc_noprof+0xe0/0x850 [ 1607.263273][T31757] ? d_absolute_path+0x136/0x1b0 [ 1607.263298][T31757] tomoyo_encode2+0xfb/0x3c0 [ 1607.263319][T31757] tomoyo_encode+0x29/0x50 [ 1607.263335][T31757] tomoyo_realpath_from_path+0x18c/0x690 [ 1607.263356][T31757] tomoyo_check_open_permission+0x2af/0x3c0 [ 1607.263381][T31757] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 1607.263410][T31757] ? hook_file_open+0x24e/0x7a0 [ 1607.263437][T31757] ? path_get+0x61/0x80 [ 1607.263456][T31757] tomoyo_file_open+0x6b/0x90 [ 1607.263476][T31757] security_file_open+0xb5/0x1e0 [ 1607.263492][T31757] do_dentry_open+0x5aa/0x1660 [ 1607.263511][T31757] ? security_inode_permission+0xbf/0x250 [ 1607.263537][T31757] vfs_open+0x82/0x3f0 [ 1607.263559][T31757] path_openat+0x208c/0x31a0 [ 1607.263582][T31757] ? __pfx_path_openat+0x10/0x10 [ 1607.263606][T31757] do_file_open+0x20e/0x430 [ 1607.263624][T31757] ? __pfx_do_file_open+0x10/0x10 [ 1607.263654][T31757] ? alloc_fd+0x476/0x790 [ 1607.263671][T31757] ? do_getname+0x191/0x390 [ 1607.263692][T31757] do_sys_openat2+0x10d/0x1e0 [ 1607.263713][T31757] ? __pfx_do_sys_openat2+0x10/0x10 [ 1607.263740][T31757] __x64_sys_openat+0x12d/0x210 [ 1607.263764][T31757] ? __pfx___x64_sys_openat+0x10/0x10 [ 1607.263792][T31757] do_syscall_64+0x10b/0xf80 [ 1607.263809][T31757] ? clear_bhb_loop+0x40/0x90 [ 1607.263828][T31757] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1607.263844][T31757] RIP: 0033:0x7f935ff9c819 [ 1607.263859][T31757] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1607.263875][T31757] RSP: 002b:00007f9360edc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1607.263891][T31757] RAX: ffffffffffffffda RBX: 00007f9360215fa0 RCX: 00007f935ff9c819 [ 1607.263901][T31757] RDX: 0000000000000000 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 1607.263911][T31757] RBP: 00007f9360032c91 R08: 0000000000000000 R09: 0000000000000000 [ 1607.263920][T31757] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1607.263930][T31757] R13: 00007f9360216038 R14: 00007f9360215fa0 R15: 00007ffea087a948 [ 1607.263949][T31757] [ 1607.995006][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 1608.001353][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 1608.164444][T31736] ubi31 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 1609.273554][T31757] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1609.687869][T31488] Bluetooth: hci3: unexpected event 0x1c length: 725 > 5 [ 1611.871210][T31801] ERROR: Out of memory at tomoyo_memory_ok. [ 1617.031928][T31885] ERROR: Out of memory at tomoyo_memory_ok. [ 1618.140189][T31898] usb usb3: usbfs: process 31898 (syz.1.8215) did not claim interface 0 before use [ 1620.273199][T31897] Process accounting resumed [ 1620.953087][T31908] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 1620.959261][T31908] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 1621.175529][T31908] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1621.271103][T31908] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 1622.982360][T28023] Bluetooth: hci3: command 0x0c1a tx timeout [ 1622.988465][T31488] Bluetooth: hci2: command 0x0c1a tx timeout [ 1623.212925][T31488] Bluetooth: hci1: command 0x0406 tx timeout [ 1623.292361][T31488] Bluetooth: hci4: command 0x0406 tx timeout [ 1623.339170][T31940] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8225'. [ 1623.385254][T31940] netlink: 'syz.0.8225': attribute type 1 has an invalid length. [ 1623.441417][T31940] netlink: 51505 bytes leftover after parsing attributes in process `syz.0.8225'. [ 1624.594109][T31943] Process accounting resumed [ 1624.654138][T31952] netlink: 13 bytes leftover after parsing attributes in process `syz.3.8228'. [ 1625.065300][T31959] netlink: 'syz.0.8231': attribute type 1 has an invalid length. [ 1625.118593][T31959] netlink: 9 bytes leftover after parsing attributes in process `syz.0.8231'. [ 1625.559872][T31965] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8232'. [ 1625.628931][T31965] netlink: 'syz.0.8232': attribute type 1 has an invalid length. [ 1625.684250][T31965] netlink: 'syz.0.8232': attribute type 6 has an invalid length. [ 1625.743872][T31965] netlink: 51505 bytes leftover after parsing attributes in process `syz.0.8232'. [ 1625.804113][T31965] netlink: 'syz.0.8232': attribute type 1 has an invalid length. [ 1626.464874][T31978] random: crng reseeded on system resumption [ 1627.535510][T31488] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 1628.178730][T31994] random: crng reseeded on system resumption [ 1628.338804][T31996] ERROR: Out of memory at tomoyo_memory_ok. [ 1629.333943][T32013] binder: 31993:32013 ioctl c0306201 200000001100 returned -14 [ 1635.010789][T31883] Process accounting paused [ 1639.600520][T32110] ERROR: Out of memory at tomoyo_memory_ok. [ 1640.360537][T32120] usb usb3: usbfs: process 32120 (syz.0.8264) did not claim interface 0 before use [ 1643.506335][T32138] netlink: 28 bytes leftover after parsing attributes in process `syz.3.8266'. [ 1643.835466][T32138] smc: removing net device dummy0 with user defined pnetid DUMMY0 [ 1648.008755][T32196] TCP: TCP_TX_DELAY enabled [ 1649.482332][T32189] kexec: Could not allocate control_code_buffer [ 1650.428599][T32215] FAULT_INJECTION: forcing a failure. [ 1650.428599][T32215] name failslab, interval 1, probability 0, space 0, times 0 [ 1650.768634][T32215] CPU: 0 UID: 0 PID: 32215 Comm: syz.3.8287 Tainted: G L syzkaller #0 PREEMPT(full) [ 1650.768684][T32215] Tainted: [L]=SOFTLOCKUP [ 1650.768691][T32215] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1650.768702][T32215] Call Trace: [ 1650.768709][T32215] [ 1650.768717][T32215] dump_stack_lvl+0x100/0x190 [ 1650.768751][T32215] should_fail_ex.cold+0x5/0xa [ 1650.768772][T32215] should_failslab+0xc2/0x120 [ 1650.768791][T32215] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 1650.768819][T32215] ? __d_alloc+0x34/0xa80 [ 1650.768841][T32215] __d_alloc+0x34/0xa80 [ 1650.768861][T32215] d_alloc+0x4a/0x1e0 [ 1650.768880][T32215] lookup_one_qstr_excl+0x171/0x250 [ 1650.768903][T32215] start_dirop+0x59/0xb0 [ 1650.768918][T32215] simple_start_creating+0xf9/0x110 [ 1650.768935][T32215] ? __pfx_simple_start_creating+0x10/0x10 [ 1650.768951][T32215] ? dput.part.0+0xdd/0x570 [ 1650.768974][T32215] rpc_new_dir+0x27/0x420 [ 1650.768996][T32215] rpc_populate.constprop.0+0x125/0x1c0 [ 1650.769017][T32215] ? d_instantiate+0x95/0xb0 [ 1650.769036][T32215] ? __pfx_rpc_fill_super+0x10/0x10 [ 1650.769056][T32215] rpc_fill_super+0x2b9/0x4f0 [ 1650.769076][T32215] ? __pfx_rpc_fill_super+0x10/0x10 [ 1650.769096][T32215] get_tree_keyed+0x10e/0x1d0 [ 1650.769112][T32215] vfs_get_tree+0x92/0x320 [ 1650.769134][T32215] vfs_cmd_create+0xd7/0x2a0 [ 1650.769156][T32215] __do_sys_fsconfig+0x55a/0xcb0 [ 1650.769177][T32215] ? __pfx___do_sys_fsconfig+0x10/0x10 [ 1650.769207][T32215] do_syscall_64+0x10b/0xf80 [ 1650.769221][T32215] ? clear_bhb_loop+0x40/0x90 [ 1650.769240][T32215] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1650.769256][T32215] RIP: 0033:0x7f935ff9c819 [ 1650.769271][T32215] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1650.769287][T32215] RSP: 002b:00007f9360edc028 EFLAGS: 00000246 ORIG_RAX: 00000000000001af [ 1650.769302][T32215] RAX: ffffffffffffffda RBX: 00007f9360215fa0 RCX: 00007f935ff9c819 [ 1650.769313][T32215] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 000000000000000a [ 1650.769322][T32215] RBP: 00007f9360032c91 R08: 0000000000000000 R09: 0000000000000000 [ 1650.769331][T32215] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1650.769340][T32215] R13: 00007f9360216038 R14: 00007f9360215fa0 R15: 00007ffea087a948 [ 1650.769362][T32215] [ 1650.769385][T32215] net/sunrpc/rpc_pipe.c: rpc_populate failed to populate directory / [ 1651.107078][T32221] ERROR: Out of memory at tomoyo_memory_ok. [ 1653.533122][T32226] Process accounting paused [ 1655.085302][T32265] random: crng reseeded on system resumption [ 1655.313883][ T29] audit: type=1800 audit(4294967465.765:53): pid=32269 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.8296" name="lu_gp_id" dev="configfs" ino=536854 res=0 errno=0 [ 1655.358329][T32258] kstrtoul() returned -22 for lu_gp_id [ 1657.063162][T32261] Process accounting paused [ 1660.791988][T31488] Bluetooth: hci1: unexpected event 0x13 length: 440 > 260 [ 1660.827617][T32340] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8311'. [ 1660.971409][T32340] netlink: 'syz.0.8311': attribute type 1 has an invalid length. [ 1661.036117][T32340] netlink: 342 bytes leftover after parsing attributes in process `syz.0.8311'. [ 1661.327724][T32347] FAULT_INJECTION: forcing a failure. [ 1661.327724][T32347] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1661.468867][T32347] CPU: 0 UID: 0 PID: 32347 Comm: syz.4.8313 Tainted: G L syzkaller #0 PREEMPT(full) [ 1661.468901][T32347] Tainted: [L]=SOFTLOCKUP [ 1661.468911][T32347] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1661.468923][T32347] Call Trace: [ 1661.468929][T32347] [ 1661.468936][T32347] dump_stack_lvl+0x100/0x190 [ 1661.468969][T32347] should_fail_ex.cold+0x5/0xa [ 1661.468992][T32347] get_futex_key+0x1d2/0x1620 [ 1661.469016][T32347] ? __pfx_get_futex_key+0x10/0x10 [ 1661.469043][T32347] futex_wait_setup+0x83/0x510 [ 1661.469071][T32347] __futex_wait+0x19f/0x300 [ 1661.469095][T32347] ? __pfx___futex_wait+0x10/0x10 [ 1661.469121][T32347] ? __pfx_futex_wake_mark+0x10/0x10 [ 1661.469145][T32347] ? futex_hash+0x2c5/0x380 [ 1661.469168][T32347] futex_wait+0xed/0x380 [ 1661.469190][T32347] ? __pfx_futex_wait+0x10/0x10 [ 1661.469217][T32347] ? do_writev+0x214/0x340 [ 1661.469235][T32347] do_futex+0x1ef/0x350 [ 1661.469254][T32347] ? __pfx_do_futex+0x10/0x10 [ 1661.469275][T32347] ? __fget_files+0x21f/0x3d0 [ 1661.469293][T32347] __x64_sys_futex+0x34f/0x4d0 [ 1661.469315][T32347] ? __pfx___x64_sys_futex+0x10/0x10 [ 1661.469335][T32347] ? __pfx_do_writev+0x10/0x10 [ 1661.469354][T32347] do_syscall_64+0x10b/0xf80 [ 1661.469369][T32347] ? clear_bhb_loop+0x40/0x90 [ 1661.469388][T32347] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1661.469404][T32347] RIP: 0033:0x7fb5c359c819 [ 1661.469420][T32347] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1661.469436][T32347] RSP: 002b:00007fb5c43a30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1661.469452][T32347] RAX: ffffffffffffffda RBX: 00007fb5c3816098 RCX: 00007fb5c359c819 [ 1661.469462][T32347] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fb5c3816098 [ 1661.469472][T32347] RBP: 00007fb5c3816090 R08: 0000000000000000 R09: 0000000000000000 [ 1661.469481][T32347] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1661.469489][T32347] R13: 00007fb5c3816128 R14: 00007ffc38390eb0 R15: 00007ffc38390f98 [ 1661.469508][T32347] [ 1662.335966][T32357] ERROR: Out of memory at tomoyo_memory_ok. [ 1663.336534][T32359] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input31 [ 1663.469729][ T5179] ERROR: Out of memory at tomoyo_memory_ok. [ 1664.943211][T32387] vivid-007: ================= START STATUS ================= [ 1665.010898][T32387] vivid-007: Generate PTS: true [ 1665.063672][T32387] vivid-007: Generate SCR: true [ 1665.098842][T32387] tpg source WxH: 320x240 (Y'CbCr) [ 1665.258534][T32387] tpg field: 1 [ 1665.261955][T32387] tpg crop: (0,0)/320x240 [ 1665.345224][T32387] tpg compose: (0,0)/320x240 [ 1665.402467][T32387] tpg colorspace: 8 [ 1665.503685][T32387] tpg transfer function: 0/0 [ 1665.543739][T32387] tpg Y'CbCr encoding: 0/0 [ 1665.602303][T32387] tpg quantization: 0/0 [ 1665.648442][T32387] tpg RGB range: 0/2 [ 1665.715536][T32387] vivid-007: ================== END STATUS ================== [ 1666.199183][T32404] netlink: 504 bytes leftover after parsing attributes in process `syz.0.8326'. [ 1666.278149][T32384] Process accounting resumed [ 1667.599484][ T29] audit: type=1800 audit(4294967478.049:54): pid=32426 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.8328" name="sr0" dev="devtmpfs" ino=2820 res=0 errno=0 [ 1669.318351][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 1669.326796][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 1672.523921][T32492] [U] " [ 1672.527201][T32492] [U] [ 1672.529930][T32492] [U] [ 1672.532613][T32492] [U] [ 1672.616767][T32492] [U] [ 1672.619524][T32492] [U] [ 1672.622209][T32492] [U] [ 1672.625059][T32492] [U] [ 1672.731538][T32492] [U] [ 1672.734265][T32492] [U] [ 1672.737038][T32492] [U] [ 1672.739736][T32492] [U] [ 1672.817280][T32492] [U] [ 1672.820003][T32492] [U] [ 1672.822687][T32492] [U] [ 1672.825539][T32492] [U] [ 1672.885939][T32492] [U] [ 1672.888655][T32492] [U] [ 1672.891348][T32492] [U] [ 1672.894048][T32492] [U] [ 1672.955106][T32492] [U] [ 1672.957836][T32492] [U] [ 1672.960554][T32492] [U] [ 1672.963239][T32492] [U] [ 1673.023541][T32492] [U] [ 1673.026358][T32492] [U] [ 1673.029155][T32492] [U] [ 1673.031953][T32492] [U] [ 1673.119997][T32492] [U] [ 1673.122745][T32492] [U] [ 1673.125438][T32492] [U] [ 1673.128128][T32492] [U] [ 1673.180812][T32493] FAULT_INJECTION: forcing a failure. [ 1673.180812][T32493] name failslab, interval 1, probability 0, space 0, times 0 [ 1673.287155][T32492] [U] [ 1673.289968][T32492] [U] [ 1673.292647][T32492] [U] [ 1673.295323][T32492] [U] [ 1673.309678][T32493] CPU: 0 UID: 0 PID: 32493 Comm: syz.0.8347 Tainted: G L syzkaller #0 PREEMPT(full) [ 1673.309708][T32493] Tainted: [L]=SOFTLOCKUP [ 1673.309714][T32493] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1673.309730][T32493] Call Trace: [ 1673.309736][T32493] [ 1673.309743][T32493] dump_stack_lvl+0x100/0x190 [ 1673.309774][T32493] should_fail_ex.cold+0x5/0xa [ 1673.309796][T32493] should_failslab+0xc2/0x120 [ 1673.309814][T32493] __kmalloc_cache_noprof+0x7a/0x6f0 [ 1673.309836][T32493] ? __io_uring_add_tctx_node+0x1ac/0x4c0 [ 1673.309859][T32493] ? alloc_file_pseudo+0x1a5/0x230 [ 1673.309881][T32493] __io_uring_add_tctx_node+0x1ac/0x4c0 [ 1673.309906][T32493] ? __pfx___io_uring_add_tctx_node+0x10/0x10 [ 1673.309930][T32493] ? __anon_inode_getfile+0x17c/0x280 [ 1673.309951][T32493] io_uring_setup.cold+0x1993/0x1c7e [ 1673.309977][T32493] ? __pfx_io_uring_setup+0x10/0x10 [ 1673.309997][T32493] ? __pfx_do_futex+0x10/0x10 [ 1673.310025][T32493] ? xfd_validate_state+0x129/0x190 [ 1673.310053][T32493] __x64_sys_io_uring_setup+0xc2/0x170 [ 1673.310070][T32493] do_syscall_64+0x10b/0xf80 [ 1673.310086][T32493] ? clear_bhb_loop+0x40/0x90 [ 1673.310106][T32493] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1673.310122][T32493] RIP: 0033:0x7f2c5319c819 [ 1673.310136][T32493] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1673.310151][T32493] RSP: 002b:00007f2c540f4028 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 1673.310167][T32493] RAX: ffffffffffffffda RBX: 00007f2c53415fa0 RCX: 00007f2c5319c819 [ 1673.310178][T32493] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000084 [ 1673.310188][T32493] RBP: 00007f2c53232c91 R08: 0000000000000000 R09: 0000000000000000 [ 1673.310197][T32493] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1673.310206][T32493] R13: 00007f2c53416038 R14: 00007f2c53415fa0 R15: 00007ffe7d45d528 [ 1673.310224][T32493] [ 1673.310627][T32493] ------------[ cut here ]------------ [ 1673.518100][T32493] !test_bit(IO_WQ_BIT_EXIT, &wq->state) [ 1673.518113][T32493] WARNING: io_uring/io-wq.c:1396 at io_wq_put_and_exit+0x8a7/0x9d0, CPU#0: syz.0.8347/32493 [ 1673.534507][T32493] Modules linked in: [ 1673.538529][T32493] CPU: 0 UID: 0 PID: 32493 Comm: syz.0.8347 Tainted: G L syzkaller #0 PREEMPT(full) [ 1673.549937][T32493] Tainted: [L]=SOFTLOCKUP [ 1673.554346][T32493] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1673.565560][T32493] RIP: 0010:io_wq_put_and_exit+0x8a7/0x9d0 [ 1673.571687][T32493] Code: ff e8 7d bf 17 fd 44 0f b6 74 24 78 31 ff 44 89 f6 e8 bd b9 17 fd 45 84 f6 0f 85 1a fd ff ff e9 67 fd ff ff e8 5a bf 17 fd 90 <0f> 0b 90 e9 00 f8 ff ff e8 8c 5e 83 fd e9 72 f8 ff ff 48 8b 3c 24 [ 1673.591586][T32493] RSP: 0018:ffffc90004e2fb50 EFLAGS: 00010283 [ 1673.597832][T32493] RAX: 0000000000014a5b RBX: ffff888079a13000 RCX: ffffc90005a29000 [ 1673.605978][T32493] RDX: 0000000000080000 RSI: ffffffff84f04b26 RDI: ffff888029bb0000 [ 1673.614307][T32493] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000 [ 1673.622610][T32493] R10: 0000000000000000 R11: 000000000001d450 R12: 1ffff920009c5f8c [ 1673.630854][T32493] R13: 0000000000000000 R14: ffff888029bb0970 R15: ffff8880304e1018 [ 1673.639081][T32493] FS: 00007f2c540f46c0(0000) GS:ffff888124332000(0000) knlGS:0000000000000000 [ 1673.648515][T32493] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1673.655123][T32493] CR2: 00007f2c531e9f00 CR3: 00000000b32f6000 CR4: 00000000003526f0 [ 1673.663742][T32493] Call Trace: [ 1673.667020][T32493] [ 1673.670150][T32493] ? dump_stack_lvl+0x17c/0x190 [ 1673.675024][T32493] ? __pfx_io_wq_put_and_exit+0x10/0x10 [ 1673.680690][T32493] ? rcu_is_watching+0x12/0xc0 [ 1673.685508][T32493] ? trace_kmalloc+0x101/0x130 [ 1673.690367][T32493] ? __kmalloc_cache_noprof+0x298/0x6f0 [ 1673.695945][T32493] ? __io_uring_add_tctx_node+0x1ac/0x4c0 [ 1673.701853][T32493] __io_uring_add_tctx_node+0x3e8/0x4c0 [ 1673.707698][T32493] ? __pfx___io_uring_add_tctx_node+0x10/0x10 [ 1673.713787][T32493] ? __anon_inode_getfile+0x17c/0x280 [ 1673.719425][T32493] io_uring_setup.cold+0x1993/0x1c7e [ 1673.724725][T32493] ? __pfx_io_uring_setup+0x10/0x10 [ 1673.730122][T32493] ? __pfx_do_futex+0x10/0x10 [ 1673.735007][T32493] ? xfd_validate_state+0x129/0x190 [ 1673.740560][T32493] __x64_sys_io_uring_setup+0xc2/0x170 [ 1673.746586][T32493] do_syscall_64+0x10b/0xf80 [ 1673.751612][T32493] ? clear_bhb_loop+0x40/0x90 [ 1673.756341][T32493] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1673.762553][T32493] RIP: 0033:0x7f2c5319c819 [ 1673.767359][T32493] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1673.787276][T32493] RSP: 002b:00007f2c540f4028 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 1673.796075][T32493] RAX: ffffffffffffffda RBX: 00007f2c53415fa0 RCX: 00007f2c5319c819 [ 1673.804374][T32493] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000084 [ 1673.812412][T32493] RBP: 00007f2c53232c91 R08: 0000000000000000 R09: 0000000000000000 [ 1673.820591][T32493] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1673.828995][T32493] R13: 00007f2c53416038 R14: 00007f2c53415fa0 R15: 00007ffe7d45d528 [ 1673.837217][T32493] [ 1673.840253][T32493] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 1673.847535][T32493] CPU: 0 UID: 0 PID: 32493 Comm: syz.0.8347 Tainted: G L syzkaller #0 PREEMPT(full) [ 1673.858664][T32493] Tainted: [L]=SOFTLOCKUP [ 1673.862973][T32493] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1673.873187][T32493] Call Trace: [ 1673.876456][T32493] [ 1673.879378][T32493] dump_stack_lvl+0x100/0x190 [ 1673.884077][T32493] vpanic+0x552/0x970 [ 1673.888059][T32493] ? __pfx_vpanic+0x10/0x10 [ 1673.892553][T32493] panic+0xd1/0xe0 [ 1673.896285][T32493] ? __pfx_panic+0x10/0x10 [ 1673.900727][T32493] check_panic_on_warn.cold+0x19/0x34 [ 1673.906098][T32493] ? io_wq_put_and_exit+0x8a7/0x9d0 [ 1673.911292][T32493] __warn.cold+0x191/0x348 [ 1673.915723][T32493] __report_bug+0x296/0x3d0 [ 1673.920233][T32493] ? io_wq_put_and_exit+0x8a7/0x9d0 [ 1673.925437][T32493] ? __pfx___report_bug+0x10/0x10 [ 1673.930466][T32493] ? _printk+0xcf/0x110 [ 1673.934609][T32493] ? __pfx__printk+0x10/0x10 [ 1673.939184][T32493] ? find_held_lock+0x2b/0x80 [ 1673.943853][T32493] ? is_bpf_text_address+0x8a/0x1a0 [ 1673.949155][T32493] ? bpf_ksym_find+0x124/0x1c0 [ 1673.953942][T32493] ? io_wq_put_and_exit+0x8a7/0x9d0 [ 1673.959135][T32493] report_bug+0xb2/0x220 [ 1673.963382][T32493] ? io_wq_put_and_exit+0x8a7/0x9d0 [ 1673.968683][T32493] handle_bug+0x16a/0x2a0 [ 1673.973290][T32493] exc_invalid_op+0x17/0x50 [ 1673.977831][T32493] asm_exc_invalid_op+0x1a/0x20 [ 1673.982697][T32493] RIP: 0010:io_wq_put_and_exit+0x8a7/0x9d0 [ 1673.988512][T32493] Code: ff e8 7d bf 17 fd 44 0f b6 74 24 78 31 ff 44 89 f6 e8 bd b9 17 fd 45 84 f6 0f 85 1a fd ff ff e9 67 fd ff ff e8 5a bf 17 fd 90 <0f> 0b 90 e9 00 f8 ff ff e8 8c 5e 83 fd e9 72 f8 ff ff 48 8b 3c 24 [ 1674.008418][T32493] RSP: 0018:ffffc90004e2fb50 EFLAGS: 00010283 [ 1674.014857][T32493] RAX: 0000000000014a5b RBX: ffff888079a13000 RCX: ffffc90005a29000 [ 1674.022929][T32493] RDX: 0000000000080000 RSI: ffffffff84f04b26 RDI: ffff888029bb0000 [ 1674.030925][T32493] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000 [ 1674.039103][T32493] R10: 0000000000000000 R11: 000000000001d450 R12: 1ffff920009c5f8c [ 1674.047143][T32493] R13: 0000000000000000 R14: ffff888029bb0970 R15: ffff8880304e1018 [ 1674.055141][T32493] ? io_wq_put_and_exit+0x8a6/0x9d0 [ 1674.060349][T32493] ? dump_stack_lvl+0x17c/0x190 [ 1674.065198][T32493] ? __pfx_io_wq_put_and_exit+0x10/0x10 [ 1674.070737][T32493] ? rcu_is_watching+0x12/0xc0 [ 1674.075697][T32493] ? trace_kmalloc+0x101/0x130 [ 1674.080458][T32493] ? __kmalloc_cache_noprof+0x298/0x6f0 [ 1674.086090][T32493] ? __io_uring_add_tctx_node+0x1ac/0x4c0 [ 1674.091836][T32493] __io_uring_add_tctx_node+0x3e8/0x4c0 [ 1674.097385][T32493] ? __pfx___io_uring_add_tctx_node+0x10/0x10 [ 1674.103538][T32493] ? __anon_inode_getfile+0x17c/0x280 [ 1674.108906][T32493] io_uring_setup.cold+0x1993/0x1c7e [ 1674.114213][T32493] ? __pfx_io_uring_setup+0x10/0x10 [ 1674.119407][T32493] ? __pfx_do_futex+0x10/0x10 [ 1674.124082][T32493] ? xfd_validate_state+0x129/0x190 [ 1674.129278][T32493] __x64_sys_io_uring_setup+0xc2/0x170 [ 1674.134745][T32493] do_syscall_64+0x10b/0xf80 [ 1674.139324][T32493] ? clear_bhb_loop+0x40/0x90 [ 1674.144003][T32493] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1674.149893][T32493] RIP: 0033:0x7f2c5319c819 [ 1674.154294][T32493] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1674.173924][T32493] RSP: 002b:00007f2c540f4028 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 1674.182516][T32493] RAX: ffffffffffffffda RBX: 00007f2c53415fa0 RCX: 00007f2c5319c819 [ 1674.190611][T32493] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000084 [ 1674.198585][T32493] RBP: 00007f2c53232c91 R08: 0000000000000000 R09: 0000000000000000 [ 1674.206636][T32493] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1674.214699][T32493] R13: 00007f2c53416038 R14: 00007f2c53415fa0 R15: 00007ffe7d45d528 [ 1674.222680][T32493] [ 1674.225752][T32493] Kernel Offset: disabled [ 1674.230074][T32493] Rebooting in 86400 seconds..