last executing test programs: 2.977764801s ago: executing program 3 (id=2927): mmap$auto(0x0, 0x7d, 0x4000000000df, 0xeb1, 0x401, 0x8000) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_VENDOR(0xffffffffffffffff, 0x0, 0x4000000) writev$auto(0xffffffffffffffff, 0x0, 0x3) r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/fb\x00', 0x100, 0x0) pread64$auto(r0, 0x0, 0x40000000006, 0x3) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x6ab82, 0x0) 2.960529201s ago: executing program 0 (id=2928): sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000080)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x4000000000007, 0xa505}, 0x800}, 0x4, 0x4008) r0 = socket(0x29, 0x2, 0x0) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000) mmap$auto(0x0, 0x10008, 0x4000000000df, 0xeb1, 0x401, 0x8000) recvmmsg$auto(r1, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x6}, 0xfffffff9, 0x10, 0x0) ioctl$auto(r0, 0x8971, 0x24) 2.713208227s ago: executing program 1 (id=2931): socket(0x10, 0x2, 0x4) mmap$auto(0x0, 0x2000d, 0x4000000200df, 0xeb1, 0x404, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="01"], 0x14}, 0x1, 0x0, 0x0, 0x20040800}, 0x24004000) bpf$auto(0x3, &(0x7f00000001c0)=@task_fd_query={0x0, 0xffffffffffffffff, 0x8, 0x30017, 0x8020000000a, 0x2, 0x5f, 0x20000000000803, 0xffffffffffffffff}, 0x6f0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 2.67885183s ago: executing program 2 (id=2932): openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x8a240, 0x0) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) close_range$auto(0x0, 0x5, 0x0) socket(0x15, 0x4, 0x300) sysfs$auto(0x2, 0x2000000000040, 0x0) r0 = fsopen$auto(0x0, 0x1) fsconfig$auto(r0, 0x8, 0x0, 0x0, 0x0) 2.599942891s ago: executing program 3 (id=2933): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4004c18}, 0x8894) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="1b000000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 2.520760636s ago: executing program 1 (id=2934): inotify_init1$auto(0x3000000000000) mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000) io_uring_setup$auto(0xa, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) close_range$auto(0x2, 0xa, 0x0) open(0x0, 0xa240, 0x15e) open(0x0, 0x161342, 0x100) 2.460656652s ago: executing program 2 (id=2935): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/oom_adj\x00', 0x980, 0x0) read$auto(r0, 0x0, 0x4) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x4) r2 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) write$auto(r2, &(0x7f0000000040)='nbd\x00', 0x4) 2.41079363s ago: executing program 3 (id=2936): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) socket(0xa, 0x801, 0x106) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) sendmsg$auto_NL802154_CMD_SET_SEC_PARAMS(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000d80)=ANY=[@ANYBLOB="05000000", @ANYRES16=0x0, @ANYBLOB="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"], 0xb5c}, 0x1, 0x0, 0x0, 0x20000000}, 0x48880) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "abe6de3d6468fe8000"}, 0x55) 2.25216101s ago: executing program 1 (id=2937): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x1e, 0x805, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x802, 0x0) ioctl$auto(0x3, 0x40045532, 0x38) openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/pcmC1D0c\x00', 0xa803, 0x0) 1.725369237s ago: executing program 0 (id=2938): openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) openat$auto_iommufd_fops_main(0xffffffffffffff9c, &(0x7f0000000000), 0x80001, 0x0) ioctl$auto_KVM_GET_MSRS(r0, 0x4400ae8f, &(0x7f0000000480)={0x9d}) 1.648643025s ago: executing program 3 (id=2939): rt_sigprocmask$auto(0x0, &(0x7f0000000000)={0xfffffffffffffe01}, 0x0, 0x8) socket(0x2, 0x1, 0x106) write$auto(0x3, 0x0, 0xffd8) r0 = getpid() r1 = gettid() rt_tgsigqueueinfo$auto(r0, r1, 0x16, &(0x7f0000000400)={@siginfo_0_0={0xfffeffff, 0x0, 0x2, @_sigpoll={0x8}}}) tgkill$auto_SIGCONT(r0, r0, 0x12) 1.534765451s ago: executing program 2 (id=2940): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x1, 0x8000) sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f0026bd7000fcdbdf9907"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="1100"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="13"], 0x1ac}}, 0x4004) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) 1.420243063s ago: executing program 3 (id=2941): mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) socket(0x2b, 0x1, 0x1) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/rds/tcp/rds_tcp_rcvbuf\x00', 0x800, 0x0) io_uring_setup$auto(0x59, &(0x7f0000000080)={0x1, 0xbffffeff, 0x2, 0x6, 0x8, 0x8, 0xffffffffffffffff, [0x80, 0x0, 0x1], {0x6, 0x806, 0x15, 0x6, 0x2, 0x85, 0x101, 0x17f, 0x3}, {0xff, 0x401, 0x4f, 0x32, 0x3, 0x1639, 0x4, 0x7, 0x100000004}}) ioctl$auto(0x3, 0x4020565a, 0x38) r0 = openat$auto_msr_fops_msr(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cpu/0/msr\x00', 0x181f82, 0x0) readv$auto(r0, &(0x7f00000000c0)={0x0, 0x101d0}, 0x400) 1.405257999s ago: executing program 0 (id=2942): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) ustat$auto(0x801, 0x0) r0 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x109001, 0x0) ioctl$auto_IOCTL_VMCI_VERSION2(r0, 0x7a7, 0x0) ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, 0x6) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) ioctl$auto_IOCTL_VMCI_DATAGRAM_SEND(r0, 0x7ab, 0x0) 1.339105148s ago: executing program 1 (id=2943): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="1b0026bd70941214f9274fcdb10000000000000002ff070004"], 0x30}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="db002cbd7000fbdbdf250a"], 0x1c}, 0x1, 0x0, 0x0, 0x20040004}, 0x20008810) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' '], 0x1ac}}, 0x40000) sendmmsg$auto(r0, &(0x7f0000000080)={{0x0, 0x8002, &(0x7f00000002c0)={0x0, 0xc4}, 0x2, 0x0, 0x0, 0x1}, 0x5}, 0x3, 0x0) 1.230694941s ago: executing program 2 (id=2944): mmap$auto(0x0, 0x2020006, 0x1000000000000007, 0xeb1, 0x0, 0x1008000) socket$nl_generic(0x10, 0x3, 0x10) futex$auto(0x0, 0x85, 0x38, 0x0, 0x0, 0x80800005) r0 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0) ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, 0x0) r1 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000000), 0xc0402, 0x0) ioctl$auto_posix_clock_file_operations_posix_clock(r1, 0x40383d0c, 0x0) 1.110709463s ago: executing program 1 (id=2945): r0 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000300), 0x141000, 0x0) poll$auto(&(0x7f0000000180)={r0, 0xa0b, 0x9816}, 0x7f, 0x0) ioctl$auto_VHOST_SET_OWNER(r1, 0xaf01, 0x0) r2 = gettid() rt_sigprocmask$auto(0x0, &(0x7f0000000000)={0xfffffffffffffe01}, 0x0, 0x8) rt_sigtimedwait$auto(&(0x7f0000000100)={0xfffffffffffffbff}, 0x0, 0x0, 0x8) kill$auto(r2, 0x14) 1.079840938s ago: executing program 0 (id=2946): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x0, 0x5, 0x0) socket(0x1d, 0x2, 0x6) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptytd\x00', 0x800, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty12\x00', 0x101c40, 0x0) r1 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) ioctl$auto(r0, 0x541c, r1) 945.890391ms ago: executing program 2 (id=2947): socket$nl_generic(0x10, 0x3, 0x10) read$auto(0xffffffffffffffff, 0x0, 0x1f40) recvmmsg$auto(0xffffffffffffffff, &(0x7f0000000240)={{&(0x7f0000000840)="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", 0x2, 0x0, 0x8d14, 0x0, 0xa, 0x3}, 0x2}, 0x6, 0xfffffff8, 0x0) ioctl$auto_BLKDISCARD(0xffffffffffffffff, 0x1277, 0x0) newfstatat$auto(0xffffffffffffffff, 0x0, 0x0, 0x2) r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) write$auto_console_fops_tty_io(r0, &(0x7f0000000000)="c80d1b5d399b39", 0xfdef) 835.216782ms ago: executing program 1 (id=2948): write$auto_fault_around_bytes_fops_(0xffffffffffffffff, 0x0, 0x0) ioctl$auto_TUNSETQUEUE(0xffffffffffffffff, 0x400454d9, &(0x7f0000000200)=0x5) madvise$auto(0x0, 0xffffffffffff0001, 0x15) madvise$auto(0x0, 0xffffffffffff0005, 0x19) r0 = socket(0x22, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x80184947, 0x0) madvise$auto(0x0, 0x8000000000000000, 0x15) 359.468489ms ago: executing program 3 (id=2949): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/oom_adj\x00', 0x980, 0x0) read$auto(r0, 0x0, 0x4) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x4) r2 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) write$auto(r2, &(0x7f0000000040)='nbd\x00', 0x4) 346.234211ms ago: executing program 0 (id=2950): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x20000, 0x0) read$auto(r1, 0x0, 0x20) writev$auto(r0, &(0x7f0000000200)={0x0, 0x3}, 0x3) openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtd0ro\x00', 0x2c00, 0x0) 324.416517ms ago: executing program 2 (id=2951): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0x8, 0x8000) close_range$auto(0x0, 0xffffffffffffffff, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty12\x00', 0x101840, 0x0) openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000140), 0xae02, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev5\x00', 0x280, 0x0) ioctl$auto(0x3, 0xc040563e, 0x38) 0s ago: executing program 0 (id=2952): r0 = socket(0x10, 0x80002, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) close_range$auto(0x2, 0x8000, 0x0) io_uring_setup$auto(0x6, 0x0) timerfd_create$auto(0x9, 0x0) timerfd_settime$auto(r0, 0x3, &(0x7f0000000000)={{0x6, 0x7}, {0x0, 0xa2b}}, 0x0) preadv2$auto(0x3, &(0x7f0000001000)={0x0, 0x9}, 0x5, 0xffffffffffffffff, 0x7, 0x2e) kernel console output (not intermixed with test programs): +0x10/0x10 [ 211.695242][ T8655] ? ktime_get_ts64+0x2d2/0x3f0 [ 211.695283][ T8655] ? read_tsc+0x9/0x20 [ 211.695320][ T8655] ? ktime_get_ts64+0x256/0x3f0 [ 211.695364][ T8655] ? poll_select_set_timeout+0xcc/0x160 [ 211.695420][ T8655] ? __x64_sys_futex+0x358/0x4d0 [ 211.695472][ T8655] __x64_sys_poll+0x1b3/0x420 [ 211.695506][ T8655] ? __pfx___x64_sys_poll+0x10/0x10 [ 211.695554][ T8655] do_syscall_64+0x106/0xf80 [ 211.695603][ T8655] ? clear_bhb_loop+0x40/0x90 [ 211.695646][ T8655] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 211.695683][ T8655] RIP: 0033:0x7efee819c799 [ 211.695711][ T8655] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 211.695743][ T8655] RSP: 002b:00007efee8ff6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000007 [ 211.695776][ T8655] RAX: ffffffffffffffda RBX: 00007efee8415fa0 RCX: 00007efee819c799 [ 211.695799][ T8655] RDX: 0000000000000007 RSI: 0000000000000003 RDI: 0000200000000480 [ 211.695820][ T8655] RBP: 00007efee8232c99 R08: 0000000000000000 R09: 0000000000000000 [ 211.695841][ T8655] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 211.695860][ T8655] R13: 00007efee8416038 R14: 00007efee8415fa0 R15: 00007ffe9a838888 [ 211.695913][ T8655] [ 212.613358][ T8679] Unable to find swap-space signature [ 214.548368][ T8734] netlink: 74 bytes leftover after parsing attributes in process `syz.2.1117'. [ 214.703244][ T8738] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1119'. [ 216.153686][ T8771] FAULT_INJECTION: forcing a failure. [ 216.153686][ T8771] name failslab, interval 1, probability 0, space 0, times 0 [ 216.167994][ T8771] CPU: 0 UID: 0 PID: 8771 Comm: syz.2.1133 Tainted: G L syzkaller #0 PREEMPT(full) [ 216.168048][ T8771] Tainted: [L]=SOFTLOCKUP [ 216.168060][ T8771] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 216.168080][ T8771] Call Trace: [ 216.168090][ T8771] [ 216.168103][ T8771] dump_stack_lvl+0x100/0x190 [ 216.168159][ T8771] should_fail_ex.cold+0x5/0xa [ 216.168192][ T8771] should_failslab+0xc2/0x120 [ 216.168222][ T8771] __kmalloc_cache_noprof+0x7a/0x6f0 [ 216.168260][ T8771] ? snd_pcm_oss_change_params_locked+0x211/0x39f0 [ 216.168303][ T8771] snd_pcm_oss_change_params_locked+0x211/0x39f0 [ 216.168346][ T8771] ? __mutex_lock+0x26a/0x1b90 [ 216.168391][ T8771] ? snd_pcm_oss_sync+0x243/0x840 [ 216.168424][ T8771] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 216.168463][ T8771] ? __pfx___mutex_lock+0x10/0x10 [ 216.168511][ T8771] ? __fsnotify_parent+0x2b4/0xca0 [ 216.168551][ T8771] snd_pcm_oss_make_ready_locked+0xb7/0x130 [ 216.168588][ T8771] snd_pcm_oss_sync+0x265/0x840 [ 216.168627][ T8771] snd_pcm_oss_release+0x238/0x300 [ 216.168660][ T8771] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 216.168694][ T8771] __fput+0x3ff/0xb40 [ 216.168735][ T8771] task_work_run+0x150/0x240 [ 216.168777][ T8771] ? __pfx_task_work_run+0x10/0x10 [ 216.168835][ T8771] exit_to_user_mode_loop+0x100/0x4a0 [ 216.168878][ T8771] do_syscall_64+0x668/0xf80 [ 216.168919][ T8771] ? clear_bhb_loop+0x40/0x90 [ 216.168954][ T8771] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 216.168982][ T8771] RIP: 0033:0x7f58e219c799 [ 216.169005][ T8771] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 216.169032][ T8771] RSP: 002b:00007f58e30b8028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 216.169059][ T8771] RAX: 0000000000000000 RBX: 00007f58e2415fa0 RCX: 00007f58e219c799 [ 216.169077][ T8771] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 216.169093][ T8771] RBP: 00007f58e2232c99 R08: 0000000000000000 R09: 0000000000000000 [ 216.169109][ T8771] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 216.169125][ T8771] R13: 00007f58e2416038 R14: 00007f58e2415fa0 R15: 00007ffc0c78a338 [ 216.169161][ T8771] [ 216.910215][ T8791] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1141'. [ 216.921285][ T8791] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1141'. [ 217.096088][ T8797] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 217.610065][ T8814] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1151'. [ 217.672510][ T8814] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1151'. [ 217.810187][ T8824] FAULT_INJECTION: forcing a failure. [ 217.810187][ T8824] name failslab, interval 1, probability 0, space 0, times 0 [ 217.823603][ T8824] CPU: 0 UID: 0 PID: 8824 Comm: syz.0.1156 Tainted: G L syzkaller #0 PREEMPT(full) [ 217.823650][ T8824] Tainted: [L]=SOFTLOCKUP [ 217.823659][ T8824] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 217.823676][ T8824] Call Trace: [ 217.823685][ T8824] [ 217.823697][ T8824] dump_stack_lvl+0x100/0x190 [ 217.823750][ T8824] should_fail_ex.cold+0x5/0xa [ 217.823784][ T8824] should_failslab+0xc2/0x120 [ 217.823817][ T8824] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 217.823866][ T8824] ? __pmd_alloc+0xbf/0x950 [ 217.823912][ T8824] __pmd_alloc+0xbf/0x950 [ 217.823954][ T8824] move_page_tables+0x3224/0x4500 [ 217.824006][ T8824] ? __pfx_copy_vma+0x10/0x10 [ 217.824069][ T8824] ? __pfx_move_page_tables+0x10/0x10 [ 217.824140][ T8824] ? finish_task_switch.isra.0+0x200/0xb80 [ 217.824183][ T8824] copy_vma_and_data+0x25c/0x7c0 [ 217.824236][ T8824] ? __pfx_copy_vma_and_data+0x10/0x10 [ 217.824301][ T8824] ? __vma_start_write+0x17f/0x280 [ 217.824346][ T8824] ? __pfx___vma_start_write+0x10/0x10 [ 217.824387][ T8824] ? __pfx_arch_get_unmapped_area_topdown+0x10/0x10 [ 217.824455][ T8824] move_vma+0x51b/0x1890 [ 217.824529][ T8824] ? __pfx_move_vma+0x10/0x10 [ 217.824582][ T8824] ? thp_get_unmapped_area_vmflags+0x27f/0x2d0 [ 217.824631][ T8824] ? cap_mmap_addr+0x4b/0x120 [ 217.824684][ T8824] ? bpf_lsm_mmap_addr+0x9/0x30 [ 217.824714][ T8824] ? security_mmap_addr+0x71/0x1e0 [ 217.824758][ T8824] ? __get_unmapped_area+0x255/0x3e0 [ 217.824802][ T8824] ? vrm_set_new_addr+0x204/0x290 [ 217.824856][ T8824] mremap_to+0x1b7/0x450 [ 217.824909][ T8824] do_mremap+0xb76/0x2130 [ 217.824978][ T8824] ? __pfx_do_mremap+0x10/0x10 [ 217.825039][ T8824] ? ksys_write+0x190/0x250 [ 217.825081][ T8824] __do_sys_mremap+0x126/0x170 [ 217.825133][ T8824] ? __pfx___do_sys_mremap+0x10/0x10 [ 217.825196][ T8824] ? __x64_sys_futex+0x34f/0x4d0 [ 217.825274][ T8824] do_syscall_64+0x106/0xf80 [ 217.825325][ T8824] ? clear_bhb_loop+0x40/0x90 [ 217.825368][ T8824] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 217.825403][ T8824] RIP: 0033:0x7f148b79c799 [ 217.825432][ T8824] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 217.825464][ T8824] RSP: 002b:00007f148c6e9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000019 [ 217.825503][ T8824] RAX: ffffffffffffffda RBX: 00007f148ba15fa0 RCX: 00007f148b79c799 [ 217.825525][ T8824] RDX: 0000000000000004 RSI: 0000000000000004 RDI: 000000110c231000 [ 217.825546][ T8824] RBP: 00007f148b832c99 R08: 0000000100000000 R09: 0000000000000000 [ 217.825567][ T8824] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000000 [ 217.825587][ T8824] R13: 00007f148ba16038 R14: 00007f148ba15fa0 R15: 00007ffd828bd4f8 [ 217.825633][ T8824] [ 218.302316][ T8830] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1159'. [ 219.616928][ T8863] mmap: syz.3.1170 (8863) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 220.830706][ T8891] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1180'. [ 221.406541][ T30] audit: type=1326 audit(1773882201.638:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8905 comm="syz.2.1187" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f58e219c799 code=0x0 [ 222.293318][ T8922] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1190'. [ 222.349535][ T8922] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1190'. [ 224.287043][ T8958] FAULT_INJECTION: forcing a failure. [ 224.287043][ T8958] name failslab, interval 1, probability 0, space 0, times 0 [ 224.351304][ T8958] CPU: 0 UID: 0 PID: 8958 Comm: syz.1.1204 Tainted: G L syzkaller #0 PREEMPT(full) [ 224.351375][ T8958] Tainted: [L]=SOFTLOCKUP [ 224.351386][ T8958] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 224.351405][ T8958] Call Trace: [ 224.351415][ T8958] [ 224.351427][ T8958] dump_stack_lvl+0x100/0x190 [ 224.351484][ T8958] should_fail_ex.cold+0x5/0xa [ 224.351524][ T8958] should_failslab+0xc2/0x120 [ 224.351559][ T8958] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 224.351613][ T8958] ? posix_lock_inode+0x5b2/0x2440 [ 224.351646][ T8958] ? lockdep_init_map_type+0x5c/0x250 [ 224.351698][ T8958] posix_lock_inode+0x5b2/0x2440 [ 224.351746][ T8958] ? __pfx_posix_lock_inode+0x10/0x10 [ 224.351791][ T8958] vfs_lock_file+0xfb/0x150 [ 224.351827][ T8958] fcntl_setlk+0x782/0xe40 [ 224.351869][ T8958] ? __pfx_fcntl_setlk+0x10/0x10 [ 224.351918][ T8958] ? __might_fault+0xc5/0x140 [ 224.351967][ T8958] ? __might_fault+0xc5/0x140 [ 224.352032][ T8958] do_fcntl+0xf39/0x1670 [ 224.352080][ T8958] ? __pfx_do_fcntl+0x10/0x10 [ 224.352121][ T8958] ? __fget_files+0x215/0x3d0 [ 224.352168][ T8958] ? tomoyo_file_fcntl+0x6c/0xc0 [ 224.352228][ T8958] __x64_sys_fcntl+0x163/0x200 [ 224.352279][ T8958] do_syscall_64+0x106/0xf80 [ 224.352328][ T8958] ? clear_bhb_loop+0x40/0x90 [ 224.352378][ T8958] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 224.352414][ T8958] RIP: 0033:0x7efee819c799 [ 224.352441][ T8958] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 224.352474][ T8958] RSP: 002b:00007efee8ff6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000048 [ 224.352506][ T8958] RAX: ffffffffffffffda RBX: 00007efee8415fa0 RCX: 00007efee819c799 [ 224.352528][ T8958] RDX: 000000000000000d RSI: 0000000000000026 RDI: 0000000000000003 [ 224.352548][ T8958] RBP: 00007efee8232c99 R08: 0000000000000000 R09: 0000000000000000 [ 224.352569][ T8958] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 224.352589][ T8958] R13: 00007efee8416038 R14: 00007efee8415fa0 R15: 00007ffe9a838888 [ 224.352634][ T8958] [ 225.272732][ T8970] FAULT_INJECTION: forcing a failure. [ 225.272732][ T8970] name failslab, interval 1, probability 0, space 0, times 0 [ 225.320382][ T8970] CPU: 0 UID: 0 PID: 8970 Comm: syz.0.1208 Tainted: G L syzkaller #0 PREEMPT(full) [ 225.320437][ T8970] Tainted: [L]=SOFTLOCKUP [ 225.320450][ T8970] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 225.320471][ T8970] Call Trace: [ 225.320482][ T8970] [ 225.320494][ T8970] dump_stack_lvl+0x100/0x190 [ 225.320552][ T8970] should_fail_ex.cold+0x5/0xa [ 225.320592][ T8970] should_failslab+0xc2/0x120 [ 225.320629][ T8970] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 225.320681][ T8970] ? security_inode_alloc+0x3b/0x2c0 [ 225.320716][ T8970] ? lockdep_init_map_type+0x5c/0x250 [ 225.320768][ T8970] security_inode_alloc+0x3b/0x2c0 [ 225.320804][ T8970] inode_init_always_gfp+0xced/0x1040 [ 225.320846][ T8970] alloc_inode+0x8e/0x250 [ 225.320892][ T8970] path_from_stashed+0x25b/0x750 [ 225.320930][ T8970] ? do_raw_spin_unlock+0x145/0x1e0 [ 225.320990][ T8970] ns_get_path+0x60/0x80 [ 225.321025][ T8970] proc_ns_get_link+0x121/0x230 [ 225.321074][ T8970] ? __pfx_proc_ns_get_link+0x10/0x10 [ 225.321137][ T8970] ? atime_needs_update+0x8b/0x6b0 [ 225.321190][ T8970] pick_link+0xd17/0x13c0 [ 225.321238][ T8970] ? __pfx_proc_ns_get_link+0x10/0x10 [ 225.321293][ T8970] step_into_slowpath+0x9ba/0xf90 [ 225.321353][ T8970] ? __pfx_step_into_slowpath+0x10/0x10 [ 225.321417][ T8970] ? find_held_lock+0x2b/0x80 [ 225.321463][ T8970] path_openat+0xf95/0x31a0 [ 225.321514][ T8970] ? __pfx_path_openat+0x10/0x10 [ 225.321566][ T8970] do_file_open+0x20e/0x430 [ 225.321605][ T8970] ? __pfx_do_file_open+0x10/0x10 [ 225.321671][ T8970] ? alloc_fd+0x476/0x790 [ 225.321709][ T8970] ? do_getname+0x191/0x390 [ 225.321757][ T8970] do_sys_openat2+0x10d/0x1e0 [ 225.321803][ T8970] ? __pfx_do_sys_openat2+0x10/0x10 [ 225.321853][ T8970] ? __fget_files+0x21f/0x3d0 [ 225.321895][ T8970] __x64_sys_openat+0x12d/0x210 [ 225.321944][ T8970] ? __pfx___x64_sys_openat+0x10/0x10 [ 225.322007][ T8970] do_syscall_64+0x106/0xf80 [ 225.322054][ T8970] ? clear_bhb_loop+0x40/0x90 [ 225.322104][ T8970] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 225.322156][ T8970] RIP: 0033:0x7f148b75cfce [ 225.322185][ T8970] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 225.322217][ T8970] RSP: 002b:00007f148c6e8ec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 225.322250][ T8970] RAX: ffffffffffffffda RBX: 00007f148c6e96c0 RCX: 00007f148b75cfce [ 225.322272][ T8970] RDX: 0000000000000002 RSI: 00007f148c6e8f90 RDI: ffffffffffffff9c [ 225.322294][ T8970] RBP: 00007f148b832c99 R08: 0000000000000000 R09: 0000000000000000 [ 225.322315][ T8970] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 225.322335][ T8970] R13: 00007f148ba16038 R14: 00007f148ba15fa0 R15: 00007ffd828bd4f8 [ 225.322380][ T8970] [ 226.354368][ T8999] netlink: 'syz.2.1220': attribute type 64 has an invalid length. [ 226.377833][ T8999] netlink: 74 bytes leftover after parsing attributes in process `syz.2.1220'. [ 226.641816][ T9001] netlink: 'syz.2.1221': attribute type 4 has an invalid length. [ 227.742773][ T51] Bluetooth: hci1: command 0x0406 tx timeout [ 227.742792][ T5835] Bluetooth: hci0: command 0x0406 tx timeout [ 227.742864][ T5835] Bluetooth: hci3: command 0x0406 tx timeout [ 228.106592][ T9044] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1245'. [ 228.150561][ T9044] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 228.186338][ T9044] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 228.209727][ T9044] bond0 (unregistering): Released all slaves [ 228.257768][ T9051] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1239'. [ 229.470343][ T9096] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1259'. [ 229.923489][ T9108] Unable to find swap-space signature [ 231.342097][ T9128] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1269'. [ 232.238846][ T9148] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1276'. [ 232.381221][ T9148] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1276'. [ 232.698610][ T9157] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1278'. [ 235.413076][ T9205] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1299'. [ 236.574374][ T9229] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1305'. [ 236.583679][ T9229] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 236.591624][ T9229] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 236.644124][ T9229] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 236.651728][ T9229] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 238.131914][ T9247] netlink: 74 bytes leftover after parsing attributes in process `syz.0.1314'. [ 238.729132][ T9259] netlink: 334 bytes leftover after parsing attributes in process `syz.0.1318'. [ 239.083568][ T9270] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1322'. [ 239.213726][ T9270] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 239.234082][ T9270] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 239.256552][ T9270] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 239.288628][ T9270] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 242.613481][ T9319] FAULT_INJECTION: forcing a failure. [ 242.613481][ T9319] name failslab, interval 1, probability 0, space 0, times 0 [ 242.660714][ T9319] CPU: 0 UID: 0 PID: 9319 Comm: syz.0.1339 Tainted: G L syzkaller #0 PREEMPT(full) [ 242.660772][ T9319] Tainted: [L]=SOFTLOCKUP [ 242.660784][ T9319] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 242.660804][ T9319] Call Trace: [ 242.660815][ T9319] [ 242.660827][ T9319] dump_stack_lvl+0x100/0x190 [ 242.660884][ T9319] should_fail_ex.cold+0x5/0xa [ 242.660919][ T9319] should_failslab+0xc2/0x120 [ 242.660958][ T9319] __kmalloc_cache_noprof+0x7a/0x6f0 [ 242.661004][ T9319] ? __alloc_workqueue+0x1a0/0x1880 [ 242.661054][ T9319] __alloc_workqueue+0x1a0/0x1880 [ 242.661094][ T9319] ? __pfx_vsnprintf+0x10/0x10 [ 242.661139][ T9319] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 242.661185][ T9319] ? lockdep_hardirqs_on+0x78/0x100 [ 242.661234][ T9319] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 242.661284][ T9319] alloc_workqueue_noprof+0xd2/0x200 [ 242.661333][ T9319] ? __pfx_alloc_workqueue_noprof+0x10/0x10 [ 242.661387][ T9319] ? __pfx___debug_object_init+0x10/0x10 [ 242.661455][ T9319] nci_register_device+0x21e/0xb80 [ 242.661497][ T9319] ? __pfx_nci_register_device+0x10/0x10 [ 242.661544][ T9319] ? lockdep_init_map_type+0x5c/0x250 [ 242.661599][ T9319] virtual_ncidev_open+0x141/0x220 [ 242.661648][ T9319] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 242.661695][ T9319] misc_open+0x26d/0x450 [ 242.661735][ T9319] ? __pfx_misc_open+0x10/0x10 [ 242.661774][ T9319] chrdev_open+0x234/0x6a0 [ 242.661812][ T9319] ? __pfx_chrdev_open+0x10/0x10 [ 242.661851][ T9319] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 242.661898][ T9319] do_dentry_open+0x6d8/0x1660 [ 242.661932][ T9319] ? __pfx_chrdev_open+0x10/0x10 [ 242.661978][ T9319] vfs_open+0x82/0x3f0 [ 242.662027][ T9319] path_openat+0x208c/0x31a0 [ 242.662078][ T9319] ? __pfx_path_openat+0x10/0x10 [ 242.662131][ T9319] do_file_open+0x20e/0x430 [ 242.662171][ T9319] ? __pfx_do_file_open+0x10/0x10 [ 242.662239][ T9319] ? alloc_fd+0x476/0x790 [ 242.662278][ T9319] ? do_getname+0x191/0x390 [ 242.662358][ T9319] do_sys_openat2+0x10d/0x1e0 [ 242.662403][ T9319] ? __pfx_do_sys_openat2+0x10/0x10 [ 242.662452][ T9319] ? __fget_files+0x21f/0x3d0 [ 242.662494][ T9319] __x64_sys_openat+0x12d/0x210 [ 242.662542][ T9319] ? __pfx___x64_sys_openat+0x10/0x10 [ 242.662608][ T9319] do_syscall_64+0x106/0xf80 [ 242.662656][ T9319] ? clear_bhb_loop+0x40/0x90 [ 242.662699][ T9319] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 242.662735][ T9319] RIP: 0033:0x7f148b79c799 [ 242.662763][ T9319] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 242.662795][ T9319] RSP: 002b:00007f148c6e9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 242.662827][ T9319] RAX: ffffffffffffffda RBX: 00007f148ba15fa0 RCX: 00007f148b79c799 [ 242.662849][ T9319] RDX: 0000000000000002 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 242.662871][ T9319] RBP: 00007f148b832c99 R08: 0000000000000000 R09: 0000000000000000 [ 242.662892][ T9319] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 242.662912][ T9319] R13: 00007f148ba16038 R14: 00007f148ba15fa0 R15: 00007ffd828bd4f8 [ 242.662958][ T9319] [ 243.357106][ T9323] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1341'. [ 244.456197][ T9341] pim6reg: entered allmulticast mode [ 244.671514][ T9353] netlink: 74 bytes leftover after parsing attributes in process `syz.2.1352'. [ 246.382362][ T9378] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1363'. [ 248.683711][ T30] audit: type=1804 audit(1773882228.918:10): pid=9435 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1383" name="/newroot/359/file0" dev="tmpfs" ino=1846 res=1 errno=0 [ 249.693245][ T9455] pim6reg: entered allmulticast mode [ 253.702219][ T9529] sctp: [Deprecated]: syz.2.1419 (pid 9529) Use of struct sctp_assoc_value in delayed_ack socket option. [ 253.702219][ T9529] Use struct sctp_sack_info instead [ 254.164784][ T9540] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 254.171751][ T9540] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 254.355391][ T9546] netlink: 354 bytes leftover after parsing attributes in process `syz.2.1424'. [ 254.717164][ T9557] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1430'. [ 256.236914][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 256.243459][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 257.471096][ T9611] netlink: 218 bytes leftover after parsing attributes in process `syz.1.1449'. [ 257.638355][ T9613] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1451'. [ 257.893606][ T12] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 258.085777][ T12] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 258.220252][ T12] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 258.422883][ T12] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 258.551086][ T5144] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 258.560547][ T5144] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 258.575615][ T5144] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 258.592118][ T5144] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 258.603590][ T5144] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 258.811124][ T12] bridge_slave_1: left allmulticast mode [ 258.816939][ T12] bridge_slave_1: left promiscuous mode [ 258.845301][ T12] bridge0: port 2(bridge_slave_1) entered disabled state [ 258.867389][ T9638] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1462'. [ 258.912253][ T12] bridge_slave_0: left allmulticast mode [ 258.917969][ T12] bridge_slave_0: left promiscuous mode [ 258.937810][ T12] bridge0: port 1(bridge_slave_0) entered disabled state [ 259.012587][ T9643] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1462'. [ 259.695236][ T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 259.735035][ T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 259.764972][ T12] bond0 (unregistering): Released all slaves [ 260.361460][ T9675] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1471'. [ 260.475271][ T9680] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1472'. [ 260.493069][ T9675] mac80211_hwsim hwsim11 wlan1: entered promiscuous mode [ 260.513033][ T9675] mac80211_hwsim hwsim11 wlan1: entered allmulticast mode [ 260.690979][ T12] hsr_slave_0: left promiscuous mode [ 260.701341][ T5831] Bluetooth: hci1: command tx timeout [ 260.711419][ T12] hsr_slave_1: left promiscuous mode [ 260.750828][ T12] veth1_macvtap: left promiscuous mode [ 260.757497][ T12] veth0_macvtap: left promiscuous mode [ 260.781138][ T12] veth1_vlan: left promiscuous mode [ 260.791692][ T12] veth0_vlan: left promiscuous mode [ 260.962586][ T9688] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1475'. [ 261.429785][ T12] team0 (unregistering): Port device team_slave_1 removed [ 261.455793][ T12] team0 (unregistering): Port device team_slave_0 removed [ 261.509251][ T9690] zswap: compressor not available [ 261.802182][ T9630] chnl_net:caif_netlink_parms(): no params data found [ 262.243758][ T9630] bridge0: port 1(bridge_slave_0) entered blocking state [ 262.258183][ T9630] bridge0: port 1(bridge_slave_0) entered disabled state [ 262.301769][ T9630] bridge_slave_0: entered allmulticast mode [ 262.310059][ T9630] bridge_slave_0: entered promiscuous mode [ 262.359074][ T9630] bridge0: port 2(bridge_slave_1) entered blocking state [ 262.390913][ T9630] bridge0: port 2(bridge_slave_1) entered disabled state [ 262.398470][ T9630] bridge_slave_1: entered allmulticast mode [ 262.425240][ T9630] bridge_slave_1: entered promiscuous mode [ 262.562364][ T9630] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 262.616429][ T9630] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 262.722733][ T9630] team0: Port device team_slave_0 added [ 262.760237][ T9630] team0: Port device team_slave_1 added [ 262.783561][ T5831] Bluetooth: hci1: command tx timeout [ 262.890332][ T9630] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 262.897540][ T9630] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 262.932327][ T9630] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 262.965009][ T9630] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 262.982091][ T9630] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 263.040997][ T9630] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 263.134230][ T9630] hsr_slave_0: entered promiscuous mode [ 263.142184][ T9630] hsr_slave_1: entered promiscuous mode [ 263.148731][ T9630] debugfs: 'hsr0' already exists in 'hsr' [ 263.154685][ T9630] Cannot create hsr debugfs directory [ 263.353560][ T9735] netlink: 346 bytes leftover after parsing attributes in process `syz.3.1485'. [ 264.483780][ T9630] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 264.509589][ T9630] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 264.540586][ T9630] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 264.759419][ T9630] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 264.860869][ T5831] Bluetooth: hci1: command tx timeout [ 265.216870][ T9630] 8021q: adding VLAN 0 to HW filter on device bond0 [ 265.275954][ T9630] 8021q: adding VLAN 0 to HW filter on device team0 [ 265.311909][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 265.320364][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 265.366020][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 265.373283][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 266.364298][ T9630] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 266.532339][ T9630] veth0_vlan: entered promiscuous mode [ 266.565453][ T9630] veth1_vlan: entered promiscuous mode [ 266.637103][ T9630] veth0_macvtap: entered promiscuous mode [ 266.666939][ T9630] veth1_macvtap: entered promiscuous mode [ 266.738890][ T9630] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 266.789791][ T9630] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 266.838767][ T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 266.865822][ T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 266.909353][ T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 266.940951][ T5831] Bluetooth: hci1: command tx timeout [ 266.955015][ T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 267.196058][ T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 267.225615][ T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 267.327276][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 267.350858][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 267.433793][ T9630] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 268.455536][ T9889] futex_wake_op: syz.1.1520 tries to shift op by -2048; fix this program [ 268.498620][ T9889] futex_wake_op: syz.1.1520 tries to shift op by -2048; fix this program [ 268.532687][ T9889] 0x000000000001-0x000000020000 : "" [ 268.591192][ T9889] ftl_cs: FTL header corrupt! [ 269.051084][ T9908] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1527'. [ 272.841030][ T9978] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1547'. [ 274.506237][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 274.668234][T10015] netlink: 326 bytes leftover after parsing attributes in process `syz.2.1562'. [ 278.087728][T10085] netlink: 350 bytes leftover after parsing attributes in process `syz.3.1589'. [ 278.250406][T10090] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1591'. [ 278.324437][T10092] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1592'. [ 278.781493][ T5144] Bluetooth: hci2: command 0x0406 tx timeout [ 280.467273][T10132] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1607'. [ 280.684671][T10137] netlink: 'syz.0.1609': attribute type 1 has an invalid length. [ 280.700101][T10139] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1610'. [ 281.711630][T10161] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 281.753119][T10161] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 282.852889][T10206] FAULT_INJECTION: forcing a failure. [ 282.852889][T10206] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 282.882247][T10206] CPU: 0 UID: 0 PID: 10206 Comm: syz.1.1639 Tainted: G L syzkaller #0 PREEMPT(full) [ 282.882297][T10206] Tainted: [L]=SOFTLOCKUP [ 282.882307][T10206] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 282.882324][T10206] Call Trace: [ 282.882334][T10206] [ 282.882345][T10206] dump_stack_lvl+0x100/0x190 [ 282.882398][T10206] should_fail_ex.cold+0x5/0xa [ 282.882426][T10206] ? page_copy_sane+0x17c/0x2d0 [ 282.882461][T10206] copy_folio_from_iter_atomic+0x577/0x1e70 [ 282.882515][T10206] ? __pfx_copy_folio_from_iter_atomic+0x10/0x10 [ 282.882552][T10206] ? fault_in_readable+0x14c/0x190 [ 282.882581][T10206] ? __pfx_fault_in_readable+0x10/0x10 [ 282.882630][T10206] ? I_BDEV+0xd/0x20 [ 282.882659][T10206] ? inode_to_bdi+0x9e/0x160 [ 282.882696][T10206] iomap_file_buffered_write+0x532/0xac0 [ 282.882742][T10206] ? __pfx_iomap_file_buffered_write+0x10/0x10 [ 282.882773][T10206] ? find_held_lock+0x2b/0x80 [ 282.882800][T10206] ? current_time+0x8a/0x3b0 [ 282.882864][T10206] ? __pfx_down_read+0x10/0x10 [ 282.882899][T10206] ? file_update_time_flags+0x373/0x500 [ 282.882945][T10206] blkdev_write_iter+0x575/0xd70 [ 282.883003][T10206] do_iter_readv_writev+0x6ee/0x920 [ 282.883062][T10206] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 282.883118][T10206] ? bpf_lsm_file_permission+0x9/0x10 [ 282.883180][T10206] ? security_file_permission+0x76/0x210 [ 282.883225][T10206] ? rw_verify_area+0xce/0x6d0 [ 282.883278][T10206] vfs_writev+0x360/0xe10 [ 282.883342][T10206] ? __pfx_vfs_writev+0x10/0x10 [ 282.883425][T10206] ? __fget_files+0x21f/0x3d0 [ 282.883468][T10206] ? do_writev+0x13e/0x340 [ 282.883517][T10206] do_writev+0x13e/0x340 [ 282.883568][T10206] ? __pfx_do_writev+0x10/0x10 [ 282.883629][T10206] do_syscall_64+0x106/0xf80 [ 282.883676][T10206] ? clear_bhb_loop+0x40/0x90 [ 282.883718][T10206] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 282.883753][T10206] RIP: 0033:0x7efee819c799 [ 282.883781][T10206] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 282.883813][T10206] RSP: 002b:00007efee8ff6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 282.883844][T10206] RAX: ffffffffffffffda RBX: 00007efee8415fa0 RCX: 00007efee819c799 [ 282.883865][T10206] RDX: 0000000000000004 RSI: 0000200000000100 RDI: 0000000000000003 [ 282.883884][T10206] RBP: 00007efee8232c99 R08: 0000000000000000 R09: 0000000000000000 [ 282.883903][T10206] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 282.883921][T10206] R13: 00007efee8416038 R14: 00007efee8415fa0 R15: 00007ffe9a838888 [ 282.883962][T10206] [ 283.327063][T10213] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 283.937630][T10231] random: crng reseeded on system resumption [ 284.693626][T10247] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 284.712996][T10247] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 284.740603][T10247] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 284.778980][T10247] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 284.827140][T10247] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 284.847494][T10247] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 284.871777][T10247] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 284.884417][T10247] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 284.903334][T10247] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 284.959487][T10256] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1658'. [ 285.197932][T10265] netlink: 206 bytes leftover after parsing attributes in process `syz.0.1661'. [ 285.623613][T10283] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1670'. [ 286.526539][ T30] audit: type=1804 audit(1773882266.758:11): pid=10294 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.1672" name="/newroot/314/file0" dev="tmpfs" ino=1604 res=1 errno=0 [ 286.602930][ T30] audit: type=1804 audit(1773882266.798:12): pid=10295 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.1672" name="/newroot/314/file0" dev="tmpfs" ino=1604 res=1 errno=0 [ 286.700893][ T5831] Bluetooth: hci0: command 0x0406 tx timeout [ 286.780909][ T5831] Bluetooth: hci3: command 0x0406 tx timeout [ 286.860804][ T5831] Bluetooth: hci2: command 0x0406 tx timeout [ 286.942541][ T5831] Bluetooth: hci1: command 0x0c1a tx timeout [ 287.591463][T10316] FAULT_INJECTION: forcing a failure. [ 287.591463][T10316] name failslab, interval 1, probability 0, space 0, times 0 [ 287.648811][T10316] CPU: 0 UID: 0 PID: 10316 Comm: syz.2.1679 Tainted: G L syzkaller #0 PREEMPT(full) [ 287.648871][T10316] Tainted: [L]=SOFTLOCKUP [ 287.648882][T10316] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 287.648902][T10316] Call Trace: [ 287.648912][T10316] [ 287.648925][T10316] dump_stack_lvl+0x100/0x190 [ 287.648983][T10316] should_fail_ex.cold+0x5/0xa [ 287.649021][T10316] ? landlock_init_hierarchy_log+0x186/0x820 [ 287.649068][T10316] should_failslab+0xc2/0x120 [ 287.649105][T10316] __kmalloc_noprof+0xe0/0x850 [ 287.649166][T10316] landlock_init_hierarchy_log+0x186/0x820 [ 287.649225][T10316] landlock_merge_ruleset+0x67b/0x830 [ 287.649262][T10316] ? prepare_creds+0x5ee/0x950 [ 287.649319][T10316] __do_sys_landlock_restrict_self+0x2a6/0x9e0 [ 287.649387][T10316] do_syscall_64+0x106/0xf80 [ 287.649435][T10316] ? clear_bhb_loop+0x40/0x90 [ 287.649479][T10316] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 287.649514][T10316] RIP: 0033:0x7f58e219c799 [ 287.649543][T10316] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 287.649575][T10316] RSP: 002b:00007f58e3097028 EFLAGS: 00000246 ORIG_RAX: 00000000000001be [ 287.649607][T10316] RAX: ffffffffffffffda RBX: 00007f58e2416090 RCX: 00007f58e219c799 [ 287.649629][T10316] RDX: 0000000000000000 RSI: 000000000000000b RDI: 0000000000000003 [ 287.649650][T10316] RBP: 00007f58e2232c99 R08: 0000000000000000 R09: 0000000000000000 [ 287.649671][T10316] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 287.649692][T10316] R13: 00007f58e2416128 R14: 00007f58e2416090 R15: 00007ffc0c78a338 [ 287.649736][T10316] [ 288.780937][ T5831] Bluetooth: hci0: command 0x0406 tx timeout [ 288.863369][ T5831] Bluetooth: hci3: command 0x0406 tx timeout [ 288.940991][ T5831] Bluetooth: hci2: command 0x0406 tx timeout [ 289.020974][ T5831] Bluetooth: hci1: command 0x0c1a tx timeout [ 289.201572][T10356] kvm: user requested TSC rate below hardware speed [ 289.563874][T10365] ima: policy update failed [ 289.568720][ T30] audit: type=1802 audit(1773882269.798:13): pid=10365 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.1701" res=0 errno=0 [ 290.341567][T10384] netlink: 'syz.2.1708': attribute type 2 has an invalid length. [ 291.101110][ T5831] Bluetooth: hci1: command 0x0c1a tx timeout [ 291.328982][T10411] sg_write: data in/out 4060/39 bytes for SCSI command 0x0-- guessing data in; [ 291.328982][T10411] program syz.2.1718 not setting count and/or reply_len properly [ 292.365765][T10431] zswap: compressor not available [ 292.403159][T10439] netlink: 334 bytes leftover after parsing attributes in process `syz.0.1730'. [ 292.551602][T10443] netlink: 206 bytes leftover after parsing attributes in process `syz.3.1731'. [ 294.208553][ T5831] block nbd0: Receive control failed (result -32) [ 294.529984][T10490] FAULT_INJECTION: forcing a failure. [ 294.529984][T10490] name failslab, interval 1, probability 0, space 0, times 0 [ 294.543531][T10490] CPU: 1 UID: 0 PID: 10490 Comm: syz.2.1751 Tainted: G L syzkaller #0 PREEMPT(full) [ 294.543585][T10490] Tainted: [L]=SOFTLOCKUP [ 294.543597][T10490] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 294.543618][T10490] Call Trace: [ 294.543629][T10490] [ 294.543643][T10490] dump_stack_lvl+0x100/0x190 [ 294.543702][T10490] should_fail_ex.cold+0x5/0xa [ 294.543744][T10490] should_failslab+0xc2/0x120 [ 294.543781][T10490] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 294.543835][T10490] ? __pmd_alloc+0xbf/0x950 [ 294.543884][T10490] __pmd_alloc+0xbf/0x950 [ 294.543923][T10490] ? mt_find+0x687/0x8e0 [ 294.543980][T10490] huge_pte_alloc+0x5ee/0x730 [ 294.544031][T10490] hugetlb_fault+0x363/0x1450 [ 294.544081][T10490] ? __pfx_hugetlb_fault+0x10/0x10 [ 294.544141][T10490] ? find_vma+0xbf/0x140 [ 294.544175][T10490] ? __pfx_find_vma+0x10/0x10 [ 294.544226][T10490] handle_mm_fault+0x5f1/0xa20 [ 294.544284][T10490] do_user_addr_fault+0x74c/0x12f0 [ 294.544354][T10490] exc_page_fault+0x6f/0xd0 [ 294.544404][T10490] asm_exc_page_fault+0x26/0x30 [ 294.544439][T10490] RIP: 0010:rep_movs_alternative+0xf/0x90 [ 294.544479][T10490] Code: c4 10 c3 cc cc cc cc 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 83 f9 40 73 44 83 f9 08 73 25 85 c9 74 0f <8a> 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 fd 93 04 00 66 66 [ 294.544513][T10490] RSP: 0018:ffffc9000515fd30 EFLAGS: 00050202 [ 294.544542][T10490] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000004 [ 294.544564][T10490] RDX: 0000000000000001 RSI: 0000000000000000 RDI: ffffc9000515fda0 [ 294.544585][T10490] RBP: 0000000000000004 R08: 0000000000000001 R09: fffff52000a2bfb4 [ 294.544607][T10490] R10: 0000000000000003 R11: 0000000000000000 R12: 0000000000000000 [ 294.544625][T10490] R13: ffffc9000515fda0 R14: 0000000000000000 R15: 0000000000000000 [ 294.544667][T10490] _copy_from_user+0x98/0xd0 [ 294.544710][T10490] do_sock_getsockopt+0x30b/0x3d0 [ 294.544750][T10490] ? __pfx_do_sock_getsockopt+0x10/0x10 [ 294.544809][T10490] __sys_getsockopt+0x133/0x1d0 [ 294.544872][T10490] ? __x64_sys_getsockopt+0xbd/0x160 [ 294.544920][T10490] __x64_sys_getsockopt+0xbd/0x160 [ 294.544967][T10490] ? do_syscall_64+0x95/0xf80 [ 294.545017][T10490] ? lockdep_hardirqs_on+0x78/0x100 [ 294.545067][T10490] do_syscall_64+0x106/0xf80 [ 294.545115][T10490] ? clear_bhb_loop+0x40/0x90 [ 294.545159][T10490] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 294.545202][T10490] RIP: 0033:0x7f58e219c799 [ 294.545231][T10490] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 294.545265][T10490] RSP: 002b:00007f58e30b8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 294.545302][T10490] RAX: ffffffffffffffda RBX: 00007f58e2415fa0 RCX: 00007f58e219c799 [ 294.545326][T10490] RDX: 000000000000006d RSI: 0000000000000084 RDI: 0000000000000003 [ 294.545347][T10490] RBP: 00007f58e2232c99 R08: 0000000000000000 R09: 0000000000000000 [ 294.545368][T10490] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 294.545390][T10490] R13: 00007f58e2416038 R14: 00007f58e2415fa0 R15: 00007ffc0c78a338 [ 294.545436][T10490] [ 295.086934][T10495] ubi0: attaching mtd0 [ 295.105661][T10495] ubi0: scanning is finished [ 295.130966][T10495] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 295.383438][T10495] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 296.132479][T10518] FAULT_INJECTION: forcing a failure. [ 296.132479][T10518] name failslab, interval 1, probability 0, space 0, times 0 [ 296.161238][T10518] CPU: 0 UID: 0 PID: 10518 Comm: syz.2.1762 Tainted: G L syzkaller #0 PREEMPT(full) [ 296.161295][T10518] Tainted: [L]=SOFTLOCKUP [ 296.161308][T10518] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 296.161329][T10518] Call Trace: [ 296.161340][T10518] [ 296.161353][T10518] dump_stack_lvl+0x100/0x190 [ 296.161410][T10518] should_fail_ex.cold+0x5/0xa [ 296.161450][T10518] ? sk_prot_alloc+0x10b/0x2a0 [ 296.161482][T10518] should_failslab+0xc2/0x120 [ 296.161520][T10518] __kmalloc_noprof+0xe0/0x850 [ 296.161581][T10518] sk_prot_alloc+0x10b/0x2a0 [ 296.161618][T10518] sk_alloc+0x36/0xe80 [ 296.161666][T10518] caif_create+0x10b/0x430 [ 296.161713][T10518] __sock_create+0x339/0x860 [ 296.161758][T10518] __sys_socket+0x14d/0x260 [ 296.161797][T10518] ? __pfx___sys_socket+0x10/0x10 [ 296.161849][T10518] __x64_sys_socket+0x72/0xb0 [ 296.161885][T10518] ? lockdep_hardirqs_on+0x78/0x100 [ 296.161934][T10518] do_syscall_64+0x106/0xf80 [ 296.161979][T10518] ? clear_bhb_loop+0x40/0x90 [ 296.162022][T10518] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 296.162058][T10518] RIP: 0033:0x7f58e219c799 [ 296.162086][T10518] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 296.162120][T10518] RSP: 002b:00007f58e30b8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 296.162161][T10518] RAX: ffffffffffffffda RBX: 00007f58e2415fa0 RCX: 00007f58e219c799 [ 296.162183][T10518] RDX: 0000000000000001 RSI: 0000000000000001 RDI: 0000000000000025 [ 296.162204][T10518] RBP: 00007f58e2232c99 R08: 0000000000000000 R09: 0000000000000000 [ 296.162225][T10518] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 296.162245][T10518] R13: 00007f58e2416038 R14: 00007f58e2415fa0 R15: 00007ffc0c78a338 [ 296.162290][T10518] [ 298.714475][T10573] vivid-007: ================= START STATUS ================= [ 298.731256][T10573] vivid-007: Generate PTS: true [ 298.741320][T10573] vivid-007: Generate SCR: true [ 298.746349][T10573] tpg source WxH: 320x240 (Y'CbCr) [ 298.770855][T10573] tpg field: 1 [ 298.776295][T10573] tpg crop: (0,0)/320x240 [ 298.787718][T10573] tpg compose: (0,0)/320x240 [ 298.796607][T10573] tpg colorspace: 8 [ 298.803680][T10573] tpg transfer function: 0/0 [ 298.813825][T10573] tpg Y'CbCr encoding: 0/0 [ 298.818321][T10573] tpg quantization: 0/0 [ 298.834557][T10573] tpg RGB range: 0/2 [ 298.844677][T10573] vivid-007: ================== END STATUS ================== [ 299.032149][T10582] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1785'. [ 302.261100][T10656] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1810'. [ 302.346944][T10661] CIFS: VFS: Invalid SecurityFlags: [ 303.048174][T10680] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 305.182916][T10718] CIFS: VFS: Invalid SecurityFlags: [ 306.283206][T10747] FAULT_INJECTION: forcing a failure. [ 306.283206][T10747] name failslab, interval 1, probability 0, space 0, times 0 [ 306.331555][T10747] CPU: 1 UID: 0 PID: 10747 Comm: syz.0.1846 Tainted: G L syzkaller #0 PREEMPT(full) [ 306.331608][T10747] Tainted: [L]=SOFTLOCKUP [ 306.331620][T10747] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 306.331645][T10747] Call Trace: [ 306.331656][T10747] [ 306.331669][T10747] dump_stack_lvl+0x100/0x190 [ 306.331725][T10747] should_fail_ex.cold+0x5/0xa [ 306.331765][T10747] ? realloc_user_queue+0xe9/0x320 [ 306.331813][T10747] should_failslab+0xc2/0x120 [ 306.331850][T10747] __kmalloc_noprof+0xe0/0x850 [ 306.331912][T10747] realloc_user_queue+0xe9/0x320 [ 306.331956][T10747] ? __pfx_snd_timer_user_open+0x10/0x10 [ 306.332000][T10747] snd_timer_user_open+0xfc/0x180 [ 306.332043][T10747] snd_open+0x22d/0x4c0 [ 306.332080][T10747] ? __pfx_snd_open+0x10/0x10 [ 306.332115][T10747] chrdev_open+0x234/0x6a0 [ 306.332149][T10747] ? __pfx_apparmor_file_open+0x10/0x10 [ 306.332183][T10747] ? __pfx_chrdev_open+0x10/0x10 [ 306.332221][T10747] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 306.332267][T10747] do_dentry_open+0x6d8/0x1660 [ 306.332300][T10747] ? __pfx_chrdev_open+0x10/0x10 [ 306.332345][T10747] vfs_open+0x82/0x3f0 [ 306.332394][T10747] path_openat+0x208c/0x31a0 [ 306.332445][T10747] ? __pfx_path_openat+0x10/0x10 [ 306.332514][T10747] do_file_open+0x20e/0x430 [ 306.332555][T10747] ? __pfx_do_file_open+0x10/0x10 [ 306.332622][T10747] ? alloc_fd+0x476/0x790 [ 306.332661][T10747] ? do_getname+0x191/0x390 [ 306.332708][T10747] do_sys_openat2+0x10d/0x1e0 [ 306.332755][T10747] ? __pfx_do_sys_openat2+0x10/0x10 [ 306.332811][T10747] ? __fget_files+0x21f/0x3d0 [ 306.332851][T10747] __x64_sys_openat+0x12d/0x210 [ 306.332899][T10747] ? __pfx___x64_sys_openat+0x10/0x10 [ 306.332963][T10747] do_syscall_64+0x106/0xf80 [ 306.333013][T10747] ? clear_bhb_loop+0x40/0x90 [ 306.333056][T10747] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 306.333091][T10747] RIP: 0033:0x7fdb4eb9c799 [ 306.333121][T10747] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 306.333153][T10747] RSP: 002b:00007fdb4fa4d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 306.333194][T10747] RAX: ffffffffffffffda RBX: 00007fdb4ee15fa0 RCX: 00007fdb4eb9c799 [ 306.333217][T10747] RDX: 0000000000002000 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 306.333239][T10747] RBP: 00007fdb4ec32c99 R08: 0000000000000000 R09: 0000000000000000 [ 306.333261][T10747] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 306.333281][T10747] R13: 00007fdb4ee16038 R14: 00007fdb4ee15fa0 R15: 00007ffdf35d31f8 [ 306.333326][T10747] [ 307.185578][T10763] netlink: 334 bytes leftover after parsing attributes in process `syz.0.1852'. [ 307.774879][T10777] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1858'. [ 308.671292][T10800] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1865'. [ 309.966011][T10837] netlink: 326 bytes leftover after parsing attributes in process `syz.0.1877'. [ 312.673167][T10898] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1897'. [ 313.060589][T10905] nvme_fabrics: missing parameter 'transport=%s' [ 313.084270][T10905] nvme_fabrics: missing parameter 'nqn=%s' [ 313.247637][T10906] nvme_fabrics: missing parameter 'transport=%s' [ 313.255750][T10906] nvme_fabrics: missing parameter 'nqn=%s' [ 314.154841][T10933] netlink: 'syz.2.1908': attribute type 1 has an invalid length. [ 314.860214][T10942] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1913'. [ 314.871058][T10942] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1913'. [ 315.188411][T10944] zswap: compressor not available [ 315.550253][T10958] futex_wake_op: syz.3.1919 tries to shift op by -2048; fix this program [ 316.338661][T10979] FAULT_INJECTION: forcing a failure. [ 316.338661][T10979] name failslab, interval 1, probability 0, space 0, times 0 [ 316.410960][T10979] CPU: 1 UID: 0 PID: 10979 Comm: syz.2.1928 Tainted: G L syzkaller #0 PREEMPT(full) [ 316.411014][T10979] Tainted: [L]=SOFTLOCKUP [ 316.411025][T10979] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 316.411046][T10979] Call Trace: [ 316.411057][T10979] [ 316.411071][T10979] dump_stack_lvl+0x100/0x190 [ 316.411126][T10979] should_fail_ex.cold+0x5/0xa [ 316.411166][T10979] ? lsm_blob_alloc+0x68/0x90 [ 316.411218][T10979] should_failslab+0xc2/0x120 [ 316.411255][T10979] __kmalloc_noprof+0xe0/0x850 [ 316.411307][T10979] ? trace_kmem_cache_alloc+0xf3/0x120 [ 316.411352][T10979] lsm_blob_alloc+0x68/0x90 [ 316.411402][T10979] security_prepare_creds+0x2d/0x290 [ 316.411454][T10979] prepare_creds+0x5d6/0x950 [ 316.411509][T10979] __do_sys_capset+0x270/0x460 [ 316.411538][T10979] ? __pfx___do_sys_capset+0x10/0x10 [ 316.411569][T10979] ? __x64_sys_futex+0x358/0x4d0 [ 316.411610][T10979] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 316.411643][T10979] ? xfd_validate_state+0x129/0x190 [ 316.411698][T10979] do_syscall_64+0x106/0xf80 [ 316.411740][T10979] ? clear_bhb_loop+0x40/0x90 [ 316.411778][T10979] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 316.411810][T10979] RIP: 0033:0x7f58e219c799 [ 316.411836][T10979] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 316.411864][T10979] RSP: 002b:00007f58e30b8028 EFLAGS: 00000246 ORIG_RAX: 000000000000007e [ 316.411893][T10979] RAX: ffffffffffffffda RBX: 00007f58e2415fa0 RCX: 00007f58e219c799 [ 316.411916][T10979] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000200 [ 316.411957][T10979] RBP: 00007f58e2232c99 R08: 0000000000000000 R09: 0000000000000000 [ 316.411977][T10979] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 316.411998][T10979] R13: 00007f58e2416038 R14: 00007f58e2415fa0 R15: 00007ffc0c78a338 [ 316.412043][T10979] [ 316.731393][T10982] block nbd1: Unsupported socket: should be TCP or UNIX. [ 317.666846][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.674089][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 318.051879][T11006] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 318.058364][T11006] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 318.065236][T11006] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 318.076156][T11006] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 318.598851][T11023] netlink: 'syz.1.1943': attribute type 1 has an invalid length. [ 319.397748][T11049] netlink: 334 bytes leftover after parsing attributes in process `syz.2.1951'. [ 320.070890][ T5831] Bluetooth: hci3: command 0x0406 tx timeout [ 320.071839][ T5144] Bluetooth: hci0: command 0x0406 tx timeout [ 320.140863][ T5144] Bluetooth: hci2: command 0x0406 tx timeout [ 320.140903][ T5831] Bluetooth: hci1: command 0x0c1a tx timeout [ 320.329871][T11075] netlink: 'syz.3.1960': attribute type 1 has an invalid length. [ 320.514117][T11080] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1963'. [ 320.566814][T11080] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1963'. [ 321.895470][T11106] random: crng reseeded on system resumption [ 322.575593][T11117] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1976'. [ 322.602434][T11117] netlink: 354 bytes leftover after parsing attributes in process `syz.3.1976'. [ 322.853954][T11119] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1977'. [ 323.057225][T11125] netlink: 334 bytes leftover after parsing attributes in process `syz.1.1982'. [ 323.100189][T11127] netlink: 130 bytes leftover after parsing attributes in process `syz.2.1981'. [ 323.114063][T11131] futex_wake_op: syz.3.1980 tries to shift op by -2048; fix this program [ 323.131292][T11131] futex_wake_op: syz.3.1980 tries to shift op by -2048; fix this program [ 323.162049][T11131] 0x000000000001-0x000000020000 : "" [ 323.176848][T11131] ftl_cs: FTL header corrupt! [ 323.780842][ T30] audit: type=1804 audit(1773882304.008:14): pid=11147 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1985" name="/newroot/487/file0" dev="tmpfs" ino=2487 res=1 errno=0 [ 324.033616][ T30] audit: type=1804 audit(1773882304.268:15): pid=11141 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.1985" name="/newroot/487/file0" dev="tmpfs" ino=2487 res=1 errno=0 [ 324.341336][T11149] sctp: [Deprecated]: syz.0.1995 (pid 11149) Use of int in max_burst socket option. [ 324.341336][T11149] Use struct sctp_assoc_value instead [ 324.651939][T11164] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1993'. [ 324.936807][T11170] Format for adding new port is "id [perm_addr]" (uint MAC). [ 325.498703][T11186] FAULT_INJECTION: forcing a failure. [ 325.498703][T11186] name failslab, interval 1, probability 0, space 0, times 0 [ 325.575948][T11186] CPU: 1 UID: 0 PID: 11186 Comm: syz.0.2002 Tainted: G L syzkaller #0 PREEMPT(full) [ 325.576003][T11186] Tainted: [L]=SOFTLOCKUP [ 325.576016][T11186] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 325.576063][T11186] Call Trace: [ 325.576075][T11186] [ 325.576117][T11186] dump_stack_lvl+0x100/0x190 [ 325.576220][T11186] should_fail_ex.cold+0x5/0xa [ 325.576285][T11186] should_failslab+0xc2/0x120 [ 325.576356][T11186] __kmalloc_node_track_caller_noprof+0xe3/0x850 [ 325.576468][T11186] ? snd_pcm_hw_rule_add+0x3b3/0x510 [ 325.576525][T11186] ? kfree+0x2ec/0x6b0 [ 325.576566][T11186] ? mark_held_locks+0x41/0x70 [ 325.576652][T11186] krealloc_node_align_noprof+0xfb/0x3e0 [ 325.576755][T11186] ? __split_page_owner+0x101/0x350 [ 325.576817][T11186] snd_pcm_hw_rule_add+0x3b3/0x510 [ 325.576889][T11186] ? __pfx_snd_pcm_hw_rule_muldivk+0x10/0x10 [ 325.576995][T11186] ? __pfx_snd_pcm_hw_rule_add+0x10/0x10 [ 325.577041][T11186] ? __pfx_snd_pcm_hw_rule_add+0x10/0x10 [ 325.577082][T11186] ? mutex_init_lockep+0x110/0x150 [ 325.577134][T11186] ? snd_pcm_attach_substream+0x29b/0xd60 [ 325.577241][T11186] snd_pcm_open_substream+0x942/0x1850 [ 325.577342][T11186] ? __pfx_snd_pcm_open_substream+0x10/0x10 [ 325.577451][T11186] snd_pcm_oss_open+0x735/0x1390 [ 325.577553][T11186] ? __pfx_snd_pcm_oss_open+0x10/0x10 [ 325.577628][T11186] ? __lock_acquire+0x4a5/0x2630 [ 325.577709][T11186] ? __pfx_default_wake_function+0x10/0x10 [ 325.577771][T11186] ? __lock_acquire+0x4a5/0x2630 [ 325.577871][T11186] ? do_raw_spin_lock+0x128/0x260 [ 325.577980][T11186] ? soundcore_open+0x231/0x5a0 [ 325.578054][T11186] ? __pfx_snd_pcm_oss_open+0x10/0x10 [ 325.578131][T11186] soundcore_open+0x2e3/0x5a0 [ 325.578169][T11186] ? __pfx_soundcore_open+0x10/0x10 [ 325.578205][T11186] chrdev_open+0x234/0x6a0 [ 325.578240][T11186] ? __pfx_apparmor_file_open+0x10/0x10 [ 325.578312][T11186] ? __pfx_chrdev_open+0x10/0x10 [ 325.578376][T11186] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 325.578473][T11186] do_dentry_open+0x6d8/0x1660 [ 325.578508][T11186] ? __pfx_chrdev_open+0x10/0x10 [ 325.578578][T11186] vfs_open+0x82/0x3f0 [ 325.578661][T11186] path_openat+0x208c/0x31a0 [ 325.578767][T11186] ? __pfx_path_openat+0x10/0x10 [ 325.578852][T11186] do_file_open+0x20e/0x430 [ 325.578926][T11186] ? __pfx_do_file_open+0x10/0x10 [ 325.579039][T11186] ? alloc_fd+0x476/0x790 [ 325.579113][T11186] ? do_getname+0x191/0x390 [ 325.579195][T11186] do_sys_openat2+0x10d/0x1e0 [ 325.579265][T11186] ? __pfx_do_sys_openat2+0x10/0x10 [ 325.579315][T11186] ? __fget_files+0x21f/0x3d0 [ 325.579371][T11186] __x64_sys_openat+0x12d/0x210 [ 325.579473][T11186] ? __pfx___x64_sys_openat+0x10/0x10 [ 325.579584][T11186] do_syscall_64+0x106/0xf80 [ 325.579667][T11186] ? clear_bhb_loop+0x40/0x90 [ 325.579748][T11186] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 325.579820][T11186] RIP: 0033:0x7fdb4eb9c799 [ 325.579871][T11186] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 325.579927][T11186] RSP: 002b:00007fdb4fa4d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 325.579984][T11186] RAX: ffffffffffffffda RBX: 00007fdb4ee15fa0 RCX: 00007fdb4eb9c799 [ 325.580030][T11186] RDX: 0000000000020342 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 325.580064][T11186] RBP: 00007fdb4ec32c99 R08: 0000000000000000 R09: 0000000000000000 [ 325.580097][T11186] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 325.580140][T11186] R13: 00007fdb4ee16038 R14: 00007fdb4ee15fa0 R15: 00007ffdf35d31f8 [ 325.580220][T11186] [ 325.706029][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 326.119752][T11190] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2003'. [ 326.610156][T11201] netlink: 334 bytes leftover after parsing attributes in process `syz.0.2005'. [ 326.692267][T11202] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2008'. [ 328.410781][ T30] audit: type=1804 audit(1773882308.638:16): pid=11242 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.2018" name="/newroot/131/file0" dev="tmpfs" ino=686 res=1 errno=0 [ 328.480952][ T30] audit: type=1804 audit(1773882308.648:17): pid=11245 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.2018" name="/newroot/131/file0" dev="tmpfs" ino=686 res=1 errno=0 [ 329.187993][T11256] netlink: 326 bytes leftover after parsing attributes in process `syz.0.2024'. [ 329.456287][T11260] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2026'. [ 329.523388][T11264] netlink: 334 bytes leftover after parsing attributes in process `syz.1.2028'. [ 330.421429][T11283] random: crng reseeded on system resumption [ 330.999636][T11291] netlink: 186 bytes leftover after parsing attributes in process `syz.2.2036'. [ 331.010657][T11291] netlink: 186 bytes leftover after parsing attributes in process `syz.2.2036'. [ 331.102991][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 331.421921][T11307] CIFS: VFS: Unsupported security flags: 0x110 [ 331.576901][T11311] netlink: 'syz.0.2043': attribute type 1 has an invalid length. [ 331.600814][T11311] netlink: 322 bytes leftover after parsing attributes in process `syz.0.2043'. [ 331.625650][T11311] netlink: 'syz.0.2043': attribute type 1 has an invalid length. [ 331.650776][T11311] netlink: 322 bytes leftover after parsing attributes in process `syz.0.2043'. [ 331.666430][T11313] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2045'. [ 332.670276][T11330] netlink: 302 bytes leftover after parsing attributes in process `syz.3.2050'. [ 332.920813][ T30] audit: type=1804 audit(1773882313.148:18): pid=11327 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.2047" name="/newroot/507/file0" dev="tmpfs" ino=2587 res=1 errno=0 [ 332.970982][ T30] audit: type=1804 audit(1773882313.158:19): pid=11333 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.2047" name="/newroot/507/file0" dev="tmpfs" ino=2587 res=1 errno=0 [ 334.208114][T11358] netlink: 326 bytes leftover after parsing attributes in process `syz.2.2061'. [ 334.823140][T11372] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2064'. [ 334.900202][T11363] Loading of unsigned module is rejected [ 337.236627][ T30] audit: type=1804 audit(1773882317.468:20): pid=11433 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.2085" name="/newroot/510/file0" dev="tmpfs" ino=2604 res=1 errno=0 [ 337.378096][ T30] audit: type=1804 audit(1773882317.608:21): pid=11429 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.2085" name="/newroot/510/file0" dev="tmpfs" ino=2604 res=1 errno=0 [ 337.701841][T11454] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input6 [ 338.951265][T11481] netlink: 330 bytes leftover after parsing attributes in process `syz.0.2114'. [ 339.191315][T11474] Loading of unsigned module is rejected [ 339.642793][T11503] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2115'. [ 340.442161][ T30] audit: type=1804 audit(1773882320.678:22): pid=11522 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.2119" name="/newroot/528/file0" dev="tmpfs" ino=2693 res=1 errno=0 [ 340.535834][ T30] audit: type=1804 audit(1773882320.678:23): pid=11525 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.2119" name="/newroot/528/file0" dev="tmpfs" ino=2693 res=1 errno=0 [ 340.594228][T11517] Loading of unsigned module is rejected [ 341.031370][T11535] netlink: 'syz.0.2128': attribute type 19 has an invalid length. [ 341.031403][T11535] netlink: 334 bytes leftover after parsing attributes in process `syz.0.2128'. [ 341.725505][T11559] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2137'. [ 341.970840][ T30] audit: type=1804 audit(1773882322.198:24): pid=11562 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.2136" name="/newroot/533/file0" dev="tmpfs" ino=2720 res=1 errno=0 [ 342.045589][ T30] audit: type=1804 audit(1773882322.228:25): pid=11567 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.2136" name="/newroot/533/file0" dev="tmpfs" ino=2720 res=1 errno=0 [ 342.518142][T11584] FAULT_INJECTION: forcing a failure. [ 342.518142][T11584] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 342.556107][T11584] CPU: 0 UID: 0 PID: 11584 Comm: syz.1.2151 Tainted: G L syzkaller #0 PREEMPT(full) [ 342.556165][T11584] Tainted: [L]=SOFTLOCKUP [ 342.556177][T11584] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 342.556198][T11584] Call Trace: [ 342.556209][T11584] [ 342.556222][T11584] dump_stack_lvl+0x100/0x190 [ 342.556282][T11584] should_fail_ex.cold+0x5/0xa [ 342.556319][T11584] ? prepare_alloc_pages+0x16d/0x5f0 [ 342.556363][T11584] should_fail_alloc_page+0xeb/0x140 [ 342.556404][T11584] prepare_alloc_pages+0x1f0/0x5f0 [ 342.556446][T11584] ? lockdep_unlock+0x5a/0xc0 [ 342.556485][T11584] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 342.556552][T11584] ? __kernel_text_address+0xd/0x30 [ 342.556612][T11584] ? do_raw_spin_lock+0x128/0x260 [ 342.556676][T11584] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 342.556729][T11584] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 342.556777][T11584] ? lockdep_hardirqs_on+0x78/0x100 [ 342.556831][T11584] ? stack_depot_save_flags+0x479/0x9d0 [ 342.556886][T11584] ? kasan_save_stack+0x30/0x50 [ 342.556937][T11584] ? kasan_save_track+0x14/0x30 [ 342.556988][T11584] ? __kasan_kmalloc+0xaa/0xb0 [ 342.557039][T11584] ? ring_buffer_read_start+0x149/0x460 [ 342.557090][T11584] ? tracing_open+0x9cd/0xef0 [ 342.557128][T11584] ? do_dentry_open+0x6d8/0x1660 [ 342.557160][T11584] ? vfs_open+0x82/0x3f0 [ 342.557199][T11584] ? path_openat+0x208c/0x31a0 [ 342.557232][T11584] ? do_file_open+0x20e/0x430 [ 342.557265][T11584] ? do_sys_openat2+0x10d/0x1e0 [ 342.557308][T11584] ? __x64_sys_openat+0x12d/0x210 [ 342.557353][T11584] ? do_syscall_64+0x106/0xf80 [ 342.557400][T11584] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 342.557436][T11584] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 342.557497][T11584] ? policy_nodemask+0xed/0x4f0 [ 342.557538][T11584] alloc_pages_mpol+0x1fb/0x550 [ 342.557586][T11584] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 342.557635][T11584] ? ring_buffer_read_start+0x1b9/0x460 [ 342.557685][T11584] ___kmalloc_large_node+0x104/0x150 [ 342.557732][T11584] __kmalloc_large_node_noprof+0x1c/0x70 [ 342.557780][T11584] __kmalloc_noprof+0x5be/0x850 [ 342.557844][T11584] ring_buffer_read_start+0x1b9/0x460 [ 342.557898][T11584] ? __pfx_ring_buffer_read_start+0x10/0x10 [ 342.557949][T11584] ? lockdep_init_map_type+0x5c/0x250 [ 342.557997][T11584] ? ring_buffer_overruns+0x14e/0x1a0 [ 342.558045][T11584] tracing_open+0x9cd/0xef0 [ 342.558096][T11584] do_dentry_open+0x6d8/0x1660 [ 342.558131][T11584] ? __pfx_tracing_open+0x10/0x10 [ 342.558184][T11584] vfs_open+0x82/0x3f0 [ 342.558234][T11584] path_openat+0x208c/0x31a0 [ 342.558286][T11584] ? __pfx_path_openat+0x10/0x10 [ 342.558338][T11584] do_file_open+0x20e/0x430 [ 342.558379][T11584] ? __pfx_do_file_open+0x10/0x10 [ 342.558445][T11584] ? alloc_fd+0x476/0x790 [ 342.558485][T11584] ? do_getname+0x191/0x390 [ 342.558533][T11584] do_sys_openat2+0x10d/0x1e0 [ 342.558589][T11584] ? __pfx_do_sys_openat2+0x10/0x10 [ 342.558640][T11584] ? __fget_files+0x21f/0x3d0 [ 342.558682][T11584] __x64_sys_openat+0x12d/0x210 [ 342.558731][T11584] ? __pfx___x64_sys_openat+0x10/0x10 [ 342.558796][T11584] do_syscall_64+0x106/0xf80 [ 342.558844][T11584] ? clear_bhb_loop+0x40/0x90 [ 342.558888][T11584] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 342.558924][T11584] RIP: 0033:0x7efee819c799 [ 342.558954][T11584] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 342.558989][T11584] RSP: 002b:00007efee8ff6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 342.559023][T11584] RAX: ffffffffffffffda RBX: 00007efee8415fa0 RCX: 00007efee819c799 [ 342.559047][T11584] RDX: 1a6b75d638929210 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 342.559070][T11584] RBP: 00007efee8232c99 R08: 0000000000000000 R09: 0000000000000000 [ 342.559091][T11584] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 342.559112][T11584] R13: 00007efee8416038 R14: 00007efee8415fa0 R15: 00007ffe9a838888 [ 342.559159][T11584] [ 344.776143][T11624] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2161'. [ 345.737525][T11648] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2169'. [ 345.894109][T11651] netlink: 122 bytes leftover after parsing attributes in process `syz.3.2170'. [ 346.736904][T11673] random: crng reseeded on system resumption [ 346.845169][T11677] Unrecognized hibernate image header format! [ 346.861397][T11676] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2179'. [ 346.865074][T11677] PM: hibernation: Image mismatch: architecture specific data [ 346.889736][T11676] openvswitch: netlink: IP tunnel dst address not specified [ 347.190986][T11684] FAULT_INJECTION: forcing a failure. [ 347.190986][T11684] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 347.206208][T11684] CPU: 1 UID: 0 PID: 11684 Comm: syz.0.2182 Tainted: G L syzkaller #0 PREEMPT(full) [ 347.206261][T11684] Tainted: [L]=SOFTLOCKUP [ 347.206273][T11684] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 347.206295][T11684] Call Trace: [ 347.206306][T11684] [ 347.206329][T11684] dump_stack_lvl+0x100/0x190 [ 347.206388][T11684] should_fail_ex.cold+0x5/0xa [ 347.206423][T11684] ? prepare_alloc_pages+0x16d/0x5f0 [ 347.206468][T11684] should_fail_alloc_page+0xeb/0x140 [ 347.206508][T11684] prepare_alloc_pages+0x1f0/0x5f0 [ 347.206556][T11684] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 347.206620][T11684] ? rcu_is_watching+0x12/0xc0 [ 347.206675][T11684] ? mod_memcg_lruvec_state+0x1a6/0x630 [ 347.206729][T11684] ? __mod_zone_page_state+0xe2/0x190 [ 347.206782][T11684] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 347.206842][T11684] ? folios_put_refs+0x66d/0x840 [ 347.206919][T11684] ? __lock_acquire+0x4a5/0x2630 [ 347.206963][T11684] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 347.207025][T11684] ? policy_nodemask+0xed/0x4f0 [ 347.207065][T11684] alloc_pages_mpol+0x1fb/0x550 [ 347.207103][T11684] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 347.207141][T11684] ? find_held_lock+0x2b/0x80 [ 347.207172][T11684] ? filemap_get_entry+0x1a7/0x3b0 [ 347.207225][T11684] ? filemap_get_entry+0x1a7/0x3b0 [ 347.207284][T11684] folio_alloc_noprof+0x22/0x330 [ 347.207336][T11684] filemap_alloc_folio_noprof.part.0+0x377/0x450 [ 347.207379][T11684] ? __pfx_filemap_get_entry+0x10/0x10 [ 347.207434][T11684] ? filemap_add_folio+0x114/0x690 [ 347.207492][T11684] ? __pfx_filemap_alloc_folio_noprof.part.0+0x10/0x10 [ 347.207543][T11684] ? rcu_is_watching+0x12/0xc0 [ 347.207601][T11684] __filemap_get_folio_mpol+0x6a4/0xe70 [ 347.207670][T11684] ioctx_alloc+0x7e4/0x21d0 [ 347.207727][T11684] ? __pfx_ioctx_alloc+0x10/0x10 [ 347.207779][T11684] __x64_sys_io_setup+0xc9/0x220 [ 347.207823][T11684] do_syscall_64+0x106/0xf80 [ 347.207871][T11684] ? clear_bhb_loop+0x40/0x90 [ 347.207916][T11684] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 347.207953][T11684] RIP: 0033:0x7fdb4eb9c799 [ 347.207982][T11684] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 347.208017][T11684] RSP: 002b:00007fdb4fa4d028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce [ 347.208051][T11684] RAX: ffffffffffffffda RBX: 00007fdb4ee15fa0 RCX: 00007fdb4eb9c799 [ 347.208074][T11684] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 000000000000ffff [ 347.208096][T11684] RBP: 00007fdb4ec32c99 R08: 0000000000000000 R09: 0000000000000000 [ 347.208117][T11684] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 347.208138][T11684] R13: 00007fdb4ee16038 R14: 00007fdb4ee15fa0 R15: 00007ffdf35d31f8 [ 347.208184][T11684] [ 350.629064][T11751] FAULT_INJECTION: forcing a failure. [ 350.629064][T11751] name failslab, interval 1, probability 0, space 0, times 0 [ 350.643140][T11751] CPU: 0 UID: 0 PID: 11751 Comm: syz.2.2206 Tainted: G L syzkaller #0 PREEMPT(full) [ 350.643196][T11751] Tainted: [L]=SOFTLOCKUP [ 350.643208][T11751] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 350.643230][T11751] Call Trace: [ 350.643241][T11751] [ 350.643255][T11751] dump_stack_lvl+0x100/0x190 [ 350.643322][T11751] should_fail_ex.cold+0x5/0xa [ 350.643365][T11751] should_failslab+0xc2/0x120 [ 350.643403][T11751] __kmalloc_cache_noprof+0x7a/0x6f0 [ 350.643450][T11751] ? apply_wqattrs_prepare+0x136/0xbb0 [ 350.643496][T11751] apply_wqattrs_prepare+0x136/0xbb0 [ 350.643531][T11751] ? __alloc_workqueue+0x901/0x1880 [ 350.643585][T11751] apply_workqueue_attrs_locked+0x64/0xe0 [ 350.643623][T11751] __alloc_workqueue+0xe25/0x1880 [ 350.643671][T11751] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 350.643723][T11751] alloc_workqueue_noprof+0xd2/0x200 [ 350.643765][T11751] ? __pfx_alloc_workqueue_noprof+0x10/0x10 [ 350.643819][T11751] ? __pfx___debug_object_init+0x10/0x10 [ 350.643888][T11751] nci_register_device+0x21e/0xb80 [ 350.643930][T11751] ? __pfx_nci_register_device+0x10/0x10 [ 350.643975][T11751] ? lockdep_init_map_type+0x5c/0x250 [ 350.644029][T11751] virtual_ncidev_open+0x141/0x220 [ 350.644073][T11751] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 350.644113][T11751] misc_open+0x26d/0x450 [ 350.644148][T11751] ? __pfx_misc_open+0x10/0x10 [ 350.644182][T11751] chrdev_open+0x234/0x6a0 [ 350.644213][T11751] ? __pfx_apparmor_file_open+0x10/0x10 [ 350.644244][T11751] ? __pfx_chrdev_open+0x10/0x10 [ 350.644278][T11751] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 350.644333][T11751] do_dentry_open+0x6d8/0x1660 [ 350.644365][T11751] ? __pfx_chrdev_open+0x10/0x10 [ 350.644405][T11751] vfs_open+0x82/0x3f0 [ 350.644448][T11751] path_openat+0x208c/0x31a0 [ 350.644492][T11751] ? __pfx_path_openat+0x10/0x10 [ 350.644536][T11751] do_file_open+0x20e/0x430 [ 350.644572][T11751] ? __pfx_do_file_open+0x10/0x10 [ 350.644627][T11751] ? alloc_fd+0x476/0x790 [ 350.644659][T11751] ? do_getname+0x191/0x390 [ 350.644706][T11751] do_sys_openat2+0x10d/0x1e0 [ 350.644754][T11751] ? __pfx_do_sys_openat2+0x10/0x10 [ 350.644804][T11751] ? __fget_files+0x21f/0x3d0 [ 350.644847][T11751] __x64_sys_openat+0x12d/0x210 [ 350.644896][T11751] ? __pfx___x64_sys_openat+0x10/0x10 [ 350.644959][T11751] do_syscall_64+0x106/0xf80 [ 350.645008][T11751] ? clear_bhb_loop+0x40/0x90 [ 350.645052][T11751] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 350.645089][T11751] RIP: 0033:0x7f58e219c799 [ 350.645117][T11751] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 350.645152][T11751] RSP: 002b:00007f58e30b8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 350.645186][T11751] RAX: ffffffffffffffda RBX: 00007f58e2415fa0 RCX: 00007f58e219c799 [ 350.645210][T11751] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 350.645232][T11751] RBP: 00007f58e2232c99 R08: 0000000000000000 R09: 0000000000000000 [ 350.645254][T11751] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 350.645276][T11751] R13: 00007f58e2416038 R14: 00007f58e2415fa0 R15: 00007ffc0c78a338 [ 350.645328][T11751] [ 351.232087][T11760] FAULT_INJECTION: forcing a failure. [ 351.232087][T11760] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 351.281995][T11760] CPU: 1 UID: 0 PID: 11760 Comm: syz.2.2209 Tainted: G L syzkaller #0 PREEMPT(full) [ 351.282053][T11760] Tainted: [L]=SOFTLOCKUP [ 351.282065][T11760] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 351.282085][T11760] Call Trace: [ 351.282097][T11760] [ 351.282109][T11760] dump_stack_lvl+0x100/0x190 [ 351.282166][T11760] should_fail_ex.cold+0x5/0xa [ 351.282199][T11760] ? prepare_alloc_pages+0x16d/0x5f0 [ 351.282243][T11760] should_fail_alloc_page+0xeb/0x140 [ 351.282303][T11760] prepare_alloc_pages+0x1f0/0x5f0 [ 351.282344][T11760] ? unwind_get_return_address+0x59/0xa0 [ 351.282388][T11760] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 351.282455][T11760] ? stack_trace_save+0x8e/0xc0 [ 351.282490][T11760] ? __pfx_stack_trace_save+0x10/0x10 [ 351.282527][T11760] ? stack_depot_save_flags+0x27/0x9d0 [ 351.282575][T11760] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 351.282633][T11760] ? kasan_save_stack+0x3f/0x50 [ 351.282688][T11760] ? kasan_save_track+0x14/0x30 [ 351.282740][T11760] ? __kasan_kmalloc+0xaa/0xb0 [ 351.282790][T11760] ? snd_pcm_attach_substream+0x451/0xd60 [ 351.282841][T11760] ? snd_pcm_open_substream+0x90/0x1850 [ 351.282887][T11760] ? snd_pcm_open+0x2a3/0x710 [ 351.282932][T11760] ? snd_pcm_capture_open+0x89/0xe0 [ 351.282976][T11760] ? snd_open+0x22d/0x4c0 [ 351.283009][T11760] ? chrdev_open+0x234/0x6a0 [ 351.283043][T11760] ? do_dentry_open+0x6d8/0x1660 [ 351.283079][T11760] ? do_syscall_64+0x106/0xf80 [ 351.283126][T11760] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 351.283170][T11760] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 351.283231][T11760] ? policy_nodemask+0xed/0x4f0 [ 351.283277][T11760] alloc_pages_mpol+0x1fb/0x550 [ 351.283317][T11760] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 351.283367][T11760] alloc_pages_noprof+0x131/0x390 [ 351.283407][T11760] alloc_pages_exact_noprof+0x32/0xf0 [ 351.283453][T11760] snd_pcm_attach_substream+0x478/0xd60 [ 351.283516][T11760] snd_pcm_open_substream+0x90/0x1850 [ 351.283569][T11760] ? __pfx_snd_pcm_open_substream+0x10/0x10 [ 351.283621][T11760] ? rcu_is_watching+0x12/0xc0 [ 351.283682][T11760] snd_pcm_open+0x2a3/0x710 [ 351.283735][T11760] ? __pfx_snd_pcm_open+0x10/0x10 [ 351.283789][T11760] ? __pfx_default_wake_function+0x10/0x10 [ 351.283837][T11760] ? __pfx_snd_pcm_capture_open+0x10/0x10 [ 351.283888][T11760] snd_pcm_capture_open+0x89/0xe0 [ 351.283936][T11760] snd_open+0x22d/0x4c0 [ 351.283973][T11760] ? __pfx_snd_open+0x10/0x10 [ 351.284008][T11760] chrdev_open+0x234/0x6a0 [ 351.284046][T11760] ? __pfx_chrdev_open+0x10/0x10 [ 351.284083][T11760] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 351.284130][T11760] do_dentry_open+0x6d8/0x1660 [ 351.284163][T11760] ? __pfx_chrdev_open+0x10/0x10 [ 351.284210][T11760] vfs_open+0x82/0x3f0 [ 351.284265][T11760] path_openat+0x208c/0x31a0 [ 351.284317][T11760] ? __pfx_path_openat+0x10/0x10 [ 351.284370][T11760] do_file_open+0x20e/0x430 [ 351.284410][T11760] ? __pfx_do_file_open+0x10/0x10 [ 351.284477][T11760] ? alloc_fd+0x476/0x790 [ 351.284516][T11760] ? do_getname+0x191/0x390 [ 351.284564][T11760] do_sys_openat2+0x10d/0x1e0 [ 351.284610][T11760] ? __pfx_do_sys_openat2+0x10/0x10 [ 351.284660][T11760] ? __fget_files+0x21f/0x3d0 [ 351.284702][T11760] __x64_sys_openat+0x12d/0x210 [ 351.284750][T11760] ? __pfx___x64_sys_openat+0x10/0x10 [ 351.284814][T11760] do_syscall_64+0x106/0xf80 [ 351.284861][T11760] ? clear_bhb_loop+0x40/0x90 [ 351.284904][T11760] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 351.284940][T11760] RIP: 0033:0x7f58e219c799 [ 351.284969][T11760] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 351.285003][T11760] RSP: 002b:00007f58e30b8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 351.285036][T11760] RAX: ffffffffffffffda RBX: 00007f58e2415fa0 RCX: 00007f58e219c799 [ 351.285059][T11760] RDX: 0000000000080042 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 351.285081][T11760] RBP: 00007f58e2232c99 R08: 0000000000000000 R09: 0000000000000000 [ 351.285102][T11760] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 351.285124][T11760] R13: 00007f58e2416038 R14: 00007f58e2415fa0 R15: 00007ffc0c78a338 [ 351.285168][T11760] [ 352.165346][T11777] netlink: 342 bytes leftover after parsing attributes in process `syz.0.2217'. [ 352.361136][T11784] random: crng reseeded on system resumption [ 352.463881][T11788] Unrecognized hibernate image header format! [ 352.470027][T11788] PM: hibernation: Image mismatch: architecture specific data [ 352.786186][ T5831] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260 [ 352.786244][ T5831] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260 [ 352.811793][ T5831] Bluetooth: hci1: Unknown advertising packet type: 0x7f [ 352.811883][ T5831] Bluetooth: hci1: Unknown advertising packet type: 0x14 [ 352.819299][ T5831] Bluetooth: hci1: Unknown advertising packet type: 0x14 [ 352.827944][ T5831] Bluetooth: hci1: Unknown advertising packet type: 0x14 [ 352.835574][ T5831] Bluetooth: hci1: Unknown advertising packet type: 0x72 [ 352.844655][ T5831] Bluetooth: hci1: Unknown advertising packet type: 0x14 [ 352.851824][ T5831] Bluetooth: hci1: Malformed LE Event: 0x0d [ 353.822572][T11815] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2231'. [ 354.245104][T11830] random: crng reseeded on system resumption [ 354.334319][T11832] Unrecognized hibernate image header format! [ 354.367050][T11832] PM: hibernation: Image mismatch: architecture specific data [ 355.429958][T11858] netlink: 74 bytes leftover after parsing attributes in process `syz.3.2247'. [ 355.608593][T11862] netlink: 342 bytes leftover after parsing attributes in process `syz.0.2249'. [ 355.809525][T11867] netlink: 342 bytes leftover after parsing attributes in process `syz.0.2251'. [ 357.401824][T11893] netlink: 326 bytes leftover after parsing attributes in process `syz.3.2260'. [ 357.434315][T11887] netlink: 74 bytes leftover after parsing attributes in process `syz.0.2258'. [ 361.396078][T12000] random: crng reseeded on system resumption [ 361.514791][T12005] Unrecognized hibernate image header format! [ 361.547562][T12005] PM: hibernation: Image mismatch: architecture specific data [ 363.643302][T12054] netlink: zone id is out of range [ 363.665454][T12054] netlink: zone id is out of range [ 363.678584][T12056] FAULT_INJECTION: forcing a failure. [ 363.678584][T12056] name failslab, interval 1, probability 0, space 0, times 0 [ 363.691622][T12054] netlink: zone id is out of range [ 363.699922][T12054] netlink: zone id is out of range [ 363.710076][T12056] CPU: 1 UID: 0 PID: 12056 Comm: syz.0.2312 Tainted: G L syzkaller #0 PREEMPT(full) [ 363.710140][T12056] Tainted: [L]=SOFTLOCKUP [ 363.710152][T12056] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 363.710174][T12056] Call Trace: [ 363.710186][T12056] [ 363.710199][T12056] dump_stack_lvl+0x100/0x190 [ 363.710257][T12056] should_fail_ex.cold+0x5/0xa [ 363.710297][T12056] ? tomoyo_open_control+0x618/0xa20 [ 363.710349][T12056] should_failslab+0xc2/0x120 [ 363.710387][T12056] __kmalloc_noprof+0xe0/0x850 [ 363.710439][T12056] ? lockdep_init_map_type+0x5c/0x250 [ 363.710493][T12056] tomoyo_open_control+0x618/0xa20 [ 363.710553][T12056] do_dentry_open+0x6d8/0x1660 [ 363.710596][T12056] ? __pfx_tomoyo_open+0x10/0x10 [ 363.710654][T12056] vfs_open+0x82/0x3f0 [ 363.710706][T12056] path_openat+0x208c/0x31a0 [ 363.710766][T12056] ? __pfx_path_openat+0x10/0x10 [ 363.710814][T12056] do_file_open+0x20e/0x430 [ 363.710850][T12056] ? __pfx_do_file_open+0x10/0x10 [ 363.710914][T12056] ? alloc_fd+0x476/0x790 [ 363.710951][T12056] ? do_getname+0x191/0x390 [ 363.711000][T12056] do_sys_openat2+0x10d/0x1e0 [ 363.711046][T12056] ? __pfx_do_sys_openat2+0x10/0x10 [ 363.711096][T12056] ? __fget_files+0x21f/0x3d0 [ 363.711137][T12056] __x64_sys_openat+0x12d/0x210 [ 363.711186][T12056] ? __pfx___x64_sys_openat+0x10/0x10 [ 363.711249][T12056] do_syscall_64+0x106/0xf80 [ 363.711298][T12056] ? clear_bhb_loop+0x40/0x90 [ 363.711342][T12056] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 363.711379][T12056] RIP: 0033:0x7fdb4eb9c799 [ 363.711408][T12056] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 363.711443][T12056] RSP: 002b:00007fdb4fa4d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 363.711475][T12056] RAX: ffffffffffffffda RBX: 00007fdb4ee15fa0 RCX: 00007fdb4eb9c799 [ 363.711499][T12056] RDX: 0000000000000002 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 363.711522][T12056] RBP: 00007fdb4ec32c99 R08: 0000000000000000 R09: 0000000000000000 [ 363.711544][T12056] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 363.711574][T12056] R13: 00007fdb4ee16038 R14: 00007fdb4ee15fa0 R15: 00007ffdf35d31f8 [ 363.711619][T12056] [ 363.760939][T12057] netlink: zone id is out of range [ 363.992428][T12057] netlink: zone id is out of range [ 363.998000][T12057] netlink: zone id is out of range [ 364.037110][T12054] netlink: set zone limit has 8 unknown bytes [ 364.070603][T12057] netlink: zone id is out of range [ 364.165037][T12057] netlink: set zone limit has 8 unknown bytes [ 364.528425][T12068] raw_sendmsg: syz.2.2317 forgot to set AF_INET. Fix it! [ 365.099538][T12098] HfR: entered promiscuous mode [ 365.115671][T12098] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2328'. [ 365.133443][T12098] HfR: left promiscuous mode [ 366.527414][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 366.537250][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 367.213631][T12122] futex_wake_op: syz.3.2334 tries to shift op by -2048; fix this program [ 367.241757][T12122] 0x000400000001-0x000430a2c961 : "" [ 367.254327][T12122] mtd: partition "" is out of reach -- disabled [ 367.307485][T12122] ftl_cs: FTL header not found. [ 367.885078][T12144] netlink: 338 bytes leftover after parsing attributes in process `syz.0.2345'. [ 368.057082][T12147] veth1_to_batadv: entered promiscuous mode [ 368.082071][T12146] veth1_to_batadv: left promiscuous mode [ 368.162447][T12153] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2349'. [ 368.182349][T12153] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2349'. [ 368.356704][T12164] FAULT_INJECTION: forcing a failure. [ 368.356704][T12164] name failslab, interval 1, probability 0, space 0, times 0 [ 368.374560][T12164] CPU: 0 UID: 0 PID: 12164 Comm: syz.1.2353 Tainted: G L syzkaller #0 PREEMPT(full) [ 368.374619][T12164] Tainted: [L]=SOFTLOCKUP [ 368.374633][T12164] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 368.374654][T12164] Call Trace: [ 368.374665][T12164] [ 368.374678][T12164] dump_stack_lvl+0x100/0x190 [ 368.374736][T12164] should_fail_ex.cold+0x5/0xa [ 368.374777][T12164] should_failslab+0xc2/0x120 [ 368.374815][T12164] __kmalloc_cache_noprof+0x7a/0x6f0 [ 368.374863][T12164] ? sctp_endpoint_new+0xfc/0xb20 [ 368.374925][T12164] sctp_endpoint_new+0xfc/0xb20 [ 368.374981][T12164] ? __pfx_sctp_endpoint_new+0x10/0x10 [ 368.375030][T12164] ? lockdep_init_map_type+0x5c/0x250 [ 368.375086][T12164] ? lockdep_init_map_type+0x5c/0x250 [ 368.375134][T12164] ? lockdep_init_map_type+0x5c/0x250 [ 368.375180][T12164] ? lockdep_init_map_type+0x5c/0x250 [ 368.375235][T12164] sctp_init_sock+0xe2b/0x1300 [ 368.375284][T12164] ? __pfx_sctp_init_sock+0x10/0x10 [ 368.375342][T12164] inet_create+0x94c/0x1060 [ 368.375381][T12164] ? inet_create+0x94/0x1060 [ 368.375421][T12164] __sock_create+0x339/0x860 [ 368.375463][T12164] __sys_socket+0x14d/0x260 [ 368.375503][T12164] ? __pfx___sys_socket+0x10/0x10 [ 368.375556][T12164] __x64_sys_socket+0x72/0xb0 [ 368.375592][T12164] ? lockdep_hardirqs_on+0x78/0x100 [ 368.375641][T12164] do_syscall_64+0x106/0xf80 [ 368.375687][T12164] ? clear_bhb_loop+0x40/0x90 [ 368.375728][T12164] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 368.375762][T12164] RIP: 0033:0x7efee819c799 [ 368.375791][T12164] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 368.375826][T12164] RSP: 002b:00007efee8ff6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 368.375860][T12164] RAX: ffffffffffffffda RBX: 00007efee8415fa0 RCX: 00007efee819c799 [ 368.375882][T12164] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000002 [ 368.375903][T12164] RBP: 00007efee8232c99 R08: 0000000000000000 R09: 0000000000000000 [ 368.375923][T12164] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 368.375944][T12164] R13: 00007efee8416038 R14: 00007efee8415fa0 R15: 00007ffe9a838888 [ 368.375988][T12164] [ 368.645074][T12159] zswap: compressor not available [ 368.710631][T12167] netlink: 25 bytes leftover after parsing attributes in process `syz.3.2354'. [ 368.806696][T12171] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2355'. [ 369.079929][T12183] netlink: 350 bytes leftover after parsing attributes in process `syz.2.2361'. [ 369.513176][T12193] nbd: socks must be embedded in a SOCK_ITEM attr [ 369.541390][T12193] block nbd1: shutting down sockets [ 369.723511][T12204] block nbd8: shutting down sockets [ 370.017001][T12217] netlink: 330 bytes leftover after parsing attributes in process `syz.0.2376'. [ 370.759392][T12241] netlink: 350 bytes leftover after parsing attributes in process `syz.3.2386'. [ 370.930606][ T30] audit: type=1804 audit(1773882351.158:26): pid=12247 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.2388" name=2F6E6577726F6F742F3539332F50524F46494C455F56455253494F4E3D32303135303530350A302D434F4D4D454E543D0A302D505245464552454E43453D7B206D61785F61756469745F6C6F673D3332206D61785F6C6561726E696E675F656E7472793D3634207D0A302D434F4E4649473D7B206D6F64653D6C6561726E696E67206772616E745F6C6F673D6E6F2072656A6563745F6C6F673D796573207D0A dev="tmpfs" ino=3027 res=1 errno=0 [ 371.524765][T12258] Process accounting resumed [ 372.558006][T12282] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2401'. [ 373.126555][T12297] netlink: 350 bytes leftover after parsing attributes in process `syz.0.2408'. [ 373.264275][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 373.733303][T12310] netlink: 3 bytes leftover after parsing attributes in process `syz.1.2414'. [ 374.812070][T12334] phram: not enough arguments [ 375.355112][T12347] FAULT_INJECTION: forcing a failure. [ 375.355112][T12347] name fail_futex, interval 1, probability 0, space 0, times 1 [ 375.385819][T12352] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2431'. [ 375.396329][T12347] CPU: 1 UID: 0 PID: 12347 Comm: syz.1.2430 Tainted: G L syzkaller #0 PREEMPT(full) [ 375.396385][T12347] Tainted: [L]=SOFTLOCKUP [ 375.396398][T12347] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 375.396419][T12347] Call Trace: [ 375.396430][T12347] [ 375.396442][T12347] dump_stack_lvl+0x100/0x190 [ 375.396501][T12347] should_fail_ex.cold+0x5/0xa [ 375.396542][T12347] get_futex_key+0x1d2/0x1620 [ 375.396591][T12347] ? __pfx_get_futex_key+0x10/0x10 [ 375.396633][T12347] ? is_bpf_text_address+0x94/0x1a0 [ 375.396689][T12347] ? kernel_text_address+0x8d/0x100 [ 375.396742][T12347] ? __kernel_text_address+0xd/0x30 [ 375.396795][T12347] ? unwind_get_return_address+0x59/0xa0 [ 375.396838][T12347] futex_wait_setup+0x83/0x510 [ 375.396909][T12347] __futex_wait+0x19f/0x300 [ 375.396966][T12347] ? __pfx___futex_wait+0x10/0x10 [ 375.397027][T12347] ? __pfx_futex_wake_mark+0x10/0x10 [ 375.397087][T12347] ? futex_hash+0x2c5/0x380 [ 375.397141][T12347] futex_wait+0xed/0x380 [ 375.397195][T12347] ? __pfx_futex_wait+0x10/0x10 [ 375.397244][T12347] ? find_held_lock+0x2b/0x80 [ 375.397290][T12347] ? __lock_acquire+0x4a5/0x2630 [ 375.397341][T12347] do_futex+0x1ef/0x350 [ 375.397387][T12347] ? __pfx_do_futex+0x10/0x10 [ 375.397445][T12347] __x64_sys_futex+0x34f/0x4d0 [ 375.397497][T12347] ? __pfx___x64_sys_futex+0x10/0x10 [ 375.397559][T12347] do_syscall_64+0x106/0xf80 [ 375.397610][T12347] ? clear_bhb_loop+0x40/0x90 [ 375.397654][T12347] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 375.397691][T12347] RIP: 0033:0x7efee819c799 [ 375.397720][T12347] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 375.397755][T12347] RSP: 002b:00007efee8ff60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 375.397788][T12347] RAX: ffffffffffffffda RBX: 00007efee8415fa8 RCX: 00007efee819c799 [ 375.397812][T12347] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007efee8415fa8 [ 375.397834][T12347] RBP: 00007efee8415fa0 R08: 0000000000000000 R09: 0000000000000000 [ 375.397856][T12347] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 375.397877][T12347] R13: 00007efee8416038 R14: 00007ffe9a8387a0 R15: 00007ffe9a838888 [ 375.397929][T12347] [ 377.403123][T12387] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed [ 377.417862][T12387] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff) [ 379.108212][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 379.114756][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 380.822551][T12461] netlink: 'syz.3.2471': attribute type 15 has an invalid length. [ 380.831020][T12461] netlink: 186 bytes leftover after parsing attributes in process `syz.3.2471'. [ 381.383079][T12476] netlink: 334 bytes leftover after parsing attributes in process `syz.1.2477'. [ 382.092086][T12501] FAULT_INJECTION: forcing a failure. [ 382.092086][T12501] name failslab, interval 1, probability 0, space 0, times 0 [ 382.127086][T12501] CPU: 1 UID: 0 PID: 12501 Comm: syz.1.2487 Tainted: G L syzkaller #0 PREEMPT(full) [ 382.127143][T12501] Tainted: [L]=SOFTLOCKUP [ 382.127155][T12501] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 382.127177][T12501] Call Trace: [ 382.127188][T12501] [ 382.127202][T12501] dump_stack_lvl+0x100/0x190 [ 382.127261][T12501] should_fail_ex.cold+0x5/0xa [ 382.127304][T12501] should_failslab+0xc2/0x120 [ 382.127341][T12501] __kmalloc_cache_noprof+0x7a/0x6f0 [ 382.127390][T12501] ? rfkill_fop_open+0x1b6/0x750 [ 382.127428][T12501] ? lockdep_init_map_type+0x5c/0x250 [ 382.127479][T12501] ? __pfx_rfkill_fop_open+0x10/0x10 [ 382.127523][T12501] rfkill_fop_open+0x1b6/0x750 [ 382.127579][T12501] ? __pfx_rfkill_fop_open+0x10/0x10 [ 382.127619][T12501] misc_open+0x26d/0x450 [ 382.127659][T12501] ? __pfx_misc_open+0x10/0x10 [ 382.127697][T12501] chrdev_open+0x234/0x6a0 [ 382.127731][T12501] ? __pfx_apparmor_file_open+0x10/0x10 [ 382.127766][T12501] ? __pfx_chrdev_open+0x10/0x10 [ 382.127802][T12501] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 382.127848][T12501] do_dentry_open+0x6d8/0x1660 [ 382.127881][T12501] ? __pfx_chrdev_open+0x10/0x10 [ 382.127923][T12501] vfs_open+0x82/0x3f0 [ 382.127973][T12501] path_openat+0x208c/0x31a0 [ 382.128027][T12501] ? __pfx_path_openat+0x10/0x10 [ 382.128080][T12501] do_file_open+0x20e/0x430 [ 382.128122][T12501] ? __pfx_do_file_open+0x10/0x10 [ 382.128189][T12501] ? alloc_fd+0x476/0x790 [ 382.128228][T12501] ? do_getname+0x191/0x390 [ 382.128293][T12501] do_sys_openat2+0x10d/0x1e0 [ 382.128341][T12501] ? __pfx_do_sys_openat2+0x10/0x10 [ 382.128392][T12501] ? __fget_files+0x21f/0x3d0 [ 382.128435][T12501] __x64_sys_openat+0x12d/0x210 [ 382.128482][T12501] ? __pfx___x64_sys_openat+0x10/0x10 [ 382.128554][T12501] do_syscall_64+0x106/0xf80 [ 382.128603][T12501] ? clear_bhb_loop+0x40/0x90 [ 382.128648][T12501] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 382.128686][T12501] RIP: 0033:0x7efee819c799 [ 382.128736][T12501] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 382.128771][T12501] RSP: 002b:00007efee8ff6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 382.128805][T12501] RAX: ffffffffffffffda RBX: 00007efee8415fa0 RCX: 00007efee819c799 [ 382.128829][T12501] RDX: 0000000000020001 RSI: 00002000000002c0 RDI: ffffffffffffff9c [ 382.128850][T12501] RBP: 00007efee8232c99 R08: 0000000000000000 R09: 0000000000000000 [ 382.128872][T12501] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 382.128894][T12501] R13: 00007efee8416038 R14: 00007efee8415fa0 R15: 00007ffe9a838888 [ 382.128940][T12501] [ 383.063090][ T5831] Bluetooth: hci1: unexpected subevent 0x05 length: 123 > 12 [ 383.082158][T12514] netlink: 'syz.1.2493': attribute type 4 has an invalid length. [ 383.096752][T12514] netlink: 314 bytes leftover after parsing attributes in process `syz.1.2493'. [ 384.227334][T12543] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2504'. [ 384.272441][T12543] veth0_macvtap: left promiscuous mode [ 384.305777][T12543] macvtap0: entered promiscuous mode [ 384.321110][T12543] macvtap0: entered allmulticast mode [ 384.620351][T12559] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2511'. [ 385.105726][ T5831] Bluetooth: hci1: command 0x0c1a tx timeout [ 386.184902][T12594] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2524'. [ 386.575981][T12605] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2529'. [ 386.611970][T12605] veth0_macvtap: left promiscuous mode [ 386.618476][T12605] macvtap0: entered promiscuous mode [ 386.626723][T12605] macvtap0: entered allmulticast mode [ 386.790191][T12612] FAULT_INJECTION: forcing a failure. [ 386.790191][T12612] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 386.828055][T12612] CPU: 1 UID: 0 PID: 12612 Comm: syz.2.2532 Tainted: G L syzkaller #0 PREEMPT(full) [ 386.828122][T12612] Tainted: [L]=SOFTLOCKUP [ 386.828135][T12612] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 386.828157][T12612] Call Trace: [ 386.828168][T12612] [ 386.828181][T12612] dump_stack_lvl+0x100/0x190 [ 386.828235][T12612] should_fail_ex.cold+0x5/0xa [ 386.828269][T12612] ? prepare_alloc_pages+0x16d/0x5f0 [ 386.828313][T12612] should_fail_alloc_page+0xeb/0x140 [ 386.828355][T12612] prepare_alloc_pages+0x1f0/0x5f0 [ 386.828402][T12612] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 386.828466][T12612] ? reacquire_held_locks+0xce/0x1e0 [ 386.828510][T12612] ? folio_lock_anon_vma_read+0x348/0xe30 [ 386.828563][T12612] ? folio_lock_anon_vma_read+0x348/0xe30 [ 386.828616][T12612] ? __up_read+0x2c5/0x700 [ 386.828666][T12612] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 386.828720][T12612] ? __pfx___up_read+0x10/0x10 [ 386.828768][T12612] ? rmap_walk_anon+0x561/0x870 [ 386.828848][T12612] __folio_alloc_noprof+0x13/0x2f0 [ 386.828903][T12612] alloc_migration_target+0x1d7/0x6d0 [ 386.828947][T12612] migrate_pages_batch+0x4f2/0x4530 [ 386.828994][T12612] ? __pfx_alloc_migration_target+0x10/0x10 [ 386.829053][T12612] ? walk_pgd_range+0x1115/0x1eb0 [ 386.829114][T12612] ? __pfx_migrate_pages_batch+0x10/0x10 [ 386.829186][T12612] migrate_pages_sync+0x12c/0x880 [ 386.829228][T12612] ? __pfx_alloc_migration_target+0x10/0x10 [ 386.829277][T12612] ? __pfx_migrate_pages_sync+0x10/0x10 [ 386.829315][T12612] ? __pfx_queue_pages_test_walk+0x10/0x10 [ 386.829364][T12612] ? walk_page_range_mm_unsafe+0x32c/0xa10 [ 386.829429][T12612] migrate_pages+0x1aae/0x28a0 [ 386.829478][T12612] ? __pfx_alloc_migration_target+0x10/0x10 [ 386.829528][T12612] ? __pfx_migrate_pages+0x10/0x10 [ 386.829572][T12612] ? queue_pages_range+0x11e/0x180 [ 386.829630][T12612] ? __up_read+0x2c5/0x700 [ 386.829681][T12612] ? __pfx___up_read+0x10/0x10 [ 386.829729][T12612] ? do_migrate_pages+0x451/0x740 [ 386.829766][T12612] ? do_migrate_pages+0x451/0x740 [ 386.829812][T12612] do_migrate_pages+0x488/0x740 [ 386.829862][T12612] ? __pfx_do_migrate_pages+0x10/0x10 [ 386.829917][T12612] ? rcu_is_watching+0x12/0xc0 [ 386.829973][T12612] ? cap_capable+0x107/0x460 [ 386.830026][T12612] ? get_task_mm+0xc2/0xf0 [ 386.830062][T12612] ? security_capable+0xbd/0x260 [ 386.830175][T12612] kernel_migrate_pages+0x560/0x700 [ 386.830208][T12612] ? __pfx_kernel_migrate_pages+0x10/0x10 [ 386.830239][T12612] ? __pfx___x64_sys_futex+0x10/0x10 [ 386.830280][T12612] ? __pfx_do_writev+0x10/0x10 [ 386.830331][T12612] __x64_sys_migrate_pages+0x96/0x100 [ 386.830362][T12612] ? lockdep_hardirqs_on+0x78/0x100 [ 386.830404][T12612] do_syscall_64+0x106/0xf80 [ 386.830444][T12612] ? clear_bhb_loop+0x40/0x90 [ 386.830479][T12612] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 386.830508][T12612] RIP: 0033:0x7f58e219c799 [ 386.830533][T12612] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 386.830562][T12612] RSP: 002b:00007f58e30b8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000100 [ 386.830591][T12612] RAX: ffffffffffffffda RBX: 00007f58e2415fa0 RCX: 00007f58e219c799 [ 386.830610][T12612] RDX: 0000200000000100 RSI: 000000000000000a RDI: 0000000000000000 [ 386.830627][T12612] RBP: 00007f58e2232c99 R08: 0000000000000000 R09: 0000000000000000 [ 386.830645][T12612] R10: 0000200000000140 R11: 0000000000000246 R12: 0000000000000000 [ 386.830663][T12612] R13: 00007f58e2416038 R14: 00007f58e2415fa0 R15: 00007ffc0c78a338 [ 386.830702][T12612] [ 387.539991][T12618] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2534'. [ 388.642384][T12650] netlink: 326 bytes leftover after parsing attributes in process `syz.0.2545'. [ 389.259876][T12656] zswap: compressor not available [ 390.036180][T12682] Loading of unsigned module is rejected [ 392.728565][T12739] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2575'. [ 393.297166][ T5831] Bluetooth: hci0: unexpected event 0x03 length: 725 > 11 [ 393.446942][T12757] ACPI: button: Initial lid state set to 'ignore' [ 393.469517][T12759] nbd: must specify at least one socket [ 393.805787][T12762] random: crng reseeded on system resumption [ 396.136086][T12811] sctp: [Deprecated]: syz.1.2593 (pid 12811) Use of struct sctp_assoc_value in delayed_ack socket option. [ 396.136086][T12811] Use struct sctp_sack_info instead [ 397.208011][T12858] netlink: 334 bytes leftover after parsing attributes in process `syz.3.2612'. [ 397.719819][T12876] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2619'. [ 399.728052][T12926] netlink: 330 bytes leftover after parsing attributes in process `syz.3.2642'. [ 400.539510][T12956] netlink: 342 bytes leftover after parsing attributes in process `syz.0.2652'. [ 401.608954][T12987] Process accounting paused [ 401.937700][T12999] input: jJǼ-9%vlQ J86 as /devices/virtual/input/input7 [ 402.666134][T13004] FAULT_INJECTION: forcing a failure. [ 402.666134][T13004] name failslab, interval 1, probability 0, space 0, times 0 [ 402.687003][T13004] CPU: 0 UID: 0 PID: 13004 Comm: syz.0.2669 Tainted: G L syzkaller #0 PREEMPT(full) [ 402.687056][T13004] Tainted: [L]=SOFTLOCKUP [ 402.687069][T13004] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 402.687088][T13004] Call Trace: [ 402.687099][T13004] [ 402.687111][T13004] dump_stack_lvl+0x100/0x190 [ 402.687257][T13004] should_fail_ex.cold+0x5/0xa [ 402.687298][T13004] should_failslab+0xc2/0x120 [ 402.687336][T13004] __kmalloc_cache_noprof+0x7a/0x6f0 [ 402.687382][T13004] ? open_substream+0xec/0x9e0 [ 402.687422][T13004] ? mark_held_locks+0x40/0x70 [ 402.687472][T13004] open_substream+0xec/0x9e0 [ 402.687517][T13004] rawmidi_open_priv+0x595/0x6f0 [ 402.687571][T13004] snd_rawmidi_open+0x4c9/0xba0 [ 402.687627][T13004] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 402.687677][T13004] ? __pfx_default_wake_function+0x10/0x10 [ 402.687719][T13004] ? kobject_get_unless_zero+0x156/0x200 [ 402.687781][T13004] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 402.687829][T13004] snd_open+0x22d/0x4c0 [ 402.687866][T13004] ? __pfx_snd_open+0x10/0x10 [ 402.687900][T13004] chrdev_open+0x234/0x6a0 [ 402.687933][T13004] ? __pfx_apparmor_file_open+0x10/0x10 [ 402.687969][T13004] ? __pfx_chrdev_open+0x10/0x10 [ 402.688007][T13004] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 402.688051][T13004] do_dentry_open+0x6d8/0x1660 [ 402.688084][T13004] ? __pfx_chrdev_open+0x10/0x10 [ 402.688128][T13004] vfs_open+0x82/0x3f0 [ 402.688186][T13004] path_openat+0x208c/0x31a0 [ 402.688236][T13004] ? __pfx_path_openat+0x10/0x10 [ 402.688289][T13004] do_file_open+0x20e/0x430 [ 402.688328][T13004] ? __pfx_do_file_open+0x10/0x10 [ 402.688396][T13004] ? alloc_fd+0x476/0x790 [ 402.688433][T13004] ? do_getname+0x191/0x390 [ 402.688480][T13004] do_sys_openat2+0x10d/0x1e0 [ 402.688527][T13004] ? __pfx_do_sys_openat2+0x10/0x10 [ 402.688575][T13004] ? __fget_files+0x21f/0x3d0 [ 402.688615][T13004] __x64_sys_openat+0x12d/0x210 [ 402.688661][T13004] ? __pfx___x64_sys_openat+0x10/0x10 [ 402.688723][T13004] do_syscall_64+0x106/0xf80 [ 402.688772][T13004] ? clear_bhb_loop+0x40/0x90 [ 402.688812][T13004] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 402.688846][T13004] RIP: 0033:0x7fdb4eb9c799 [ 402.688874][T13004] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 402.688907][T13004] RSP: 002b:00007fdb4fa4d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 402.688939][T13004] RAX: ffffffffffffffda RBX: 00007fdb4ee15fa0 RCX: 00007fdb4eb9c799 [ 402.688961][T13004] RDX: 0000000000080102 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 402.688984][T13004] RBP: 00007fdb4ec32c99 R08: 0000000000000000 R09: 0000000000000000 [ 402.689004][T13004] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 402.689024][T13004] R13: 00007fdb4ee16038 R14: 00007fdb4ee15fa0 R15: 00007ffdf35d31f8 [ 402.689069][T13004] [ 405.110621][T13054] nvme_fcloop: unknown parameter or missing value '7=";&L=j"Yq'R"' [ 406.135609][T13077] zswap: compressor not available [ 407.363009][T13117] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2711'. [ 409.757166][T13175] netlink: zone id is out of range [ 409.762645][T13175] netlink: zone id is out of range [ 409.772070][T13175] netlink: zone id is out of range [ 409.795137][T13175] netlink: set zone limit has 8 unknown bytes [ 409.805415][T13175] netlink: zone id is out of range [ 409.810610][T13175] netlink: zone id is out of range [ 409.826105][T13175] netlink: zone id is out of range [ 409.850805][T13175] netlink: zone id is out of range [ 409.861285][T13175] netlink: zone id is out of range [ 409.866626][T13175] netlink: zone id is out of range [ 410.124658][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 410.133738][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 410.707820][T13195] NFSD: Failed to start, no listeners configured. [ 411.641365][T13231] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2756'. [ 411.815834][T13237] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2759'. [ 411.828569][T13237] Zero length message leads to an empty skb [ 412.922909][T13255] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 413.479265][T13266] FAULT_INJECTION: forcing a failure. [ 413.479265][T13266] name failslab, interval 1, probability 0, space 0, times 0 [ 413.496624][T13266] CPU: 0 UID: 0 PID: 13266 Comm: syz.0.2769 Tainted: G L syzkaller #0 PREEMPT(full) [ 413.496682][T13266] Tainted: [L]=SOFTLOCKUP [ 413.496694][T13266] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 413.496715][T13266] Call Trace: [ 413.496726][T13266] [ 413.496740][T13266] dump_stack_lvl+0x100/0x190 [ 413.496800][T13266] should_fail_ex.cold+0x5/0xa [ 413.496841][T13266] should_failslab+0xc2/0x120 [ 413.496878][T13266] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 413.496931][T13266] ? alloc_empty_file+0x55/0x1c0 [ 413.496974][T13266] ? alloc_file_pseudo+0x1a5/0x230 [ 413.497025][T13266] alloc_empty_file+0x55/0x1c0 [ 413.497070][T13266] alloc_file_clone+0x5f/0x110 [ 413.497117][T13266] create_pipe_files+0x40e/0x970 [ 413.497159][T13266] do_pipe2+0xbd/0x1e0 [ 413.497194][T13266] ? __pfx_do_pipe2+0x10/0x10 [ 413.497246][T13266] __x64_sys_pipe+0x33/0x50 [ 413.497282][T13266] do_syscall_64+0x106/0xf80 [ 413.497331][T13266] ? clear_bhb_loop+0x40/0x90 [ 413.497374][T13266] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 413.497411][T13266] RIP: 0033:0x7fdb4eb9c799 [ 413.497439][T13266] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 413.497474][T13266] RSP: 002b:00007fdb4fa4d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000016 [ 413.497507][T13266] RAX: ffffffffffffffda RBX: 00007fdb4ee15fa0 RCX: 00007fdb4eb9c799 [ 413.497529][T13266] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 413.497550][T13266] RBP: 00007fdb4ec32c99 R08: 0000000000000000 R09: 0000000000000000 [ 413.497572][T13266] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 413.497593][T13266] R13: 00007fdb4ee16038 R14: 00007fdb4ee15fa0 R15: 00007ffdf35d31f8 [ 413.497646][T13266] [ 413.763854][T13268] netlink: 338 bytes leftover after parsing attributes in process `syz.1.2771'. [ 414.049082][T13281] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 414.160869][T13284] syz.1.2777 uses obsolete (PF_INET,SOCK_PACKET) [ 414.251794][T13287] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2778'. [ 415.880708][T13342] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2791'. [ 415.931129][T13342] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2791'. [ 416.348095][T13352] device-mapper: ioctl: device name cannot contain '/' [ 416.564489][T13360] vhci_hcd vhci_hcd.0: default hub control req: 0000 v0000 i0000 l0 [ 417.087471][T13373] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 417.806864][ C1] sd 0:0:1:0: [sda] tag#1171 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s [ 417.817467][ C1] sd 0:0:1:0: [sda] tag#1171 CDB: Read(6) 08 00 00 00 10 00 00 00 00 00 00 00 [ 420.415168][T13437] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2827'. [ 420.475601][T13437] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2827'. [ 420.624809][T13440] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2828'. [ 420.680484][T13440] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2828'. [ 422.463706][T13479] netlink: 334 bytes leftover after parsing attributes in process `syz.1.2843'. [ 422.934368][T13494] nvme_fcloop: unknown parameter or missing value '7=";&L=j"Yq'R"' [ 424.083583][T13520] sg_write: data in/out 220/90 bytes for SCSI command 0x0-- guessing data in; [ 424.083583][T13520] program syz.3.2858 not setting count and/or reply_len properly [ 426.287480][T13561] netlink: 322 bytes leftover after parsing attributes in process `syz.0.2869'. [ 426.927923][T13576] netlink: 346 bytes leftover after parsing attributes in process `syz.3.2875'. [ 428.518734][T13601] FAULT_INJECTION: forcing a failure. [ 428.518734][T13601] name failslab, interval 1, probability 0, space 0, times 0 [ 428.560807][T13601] CPU: 0 UID: 0 PID: 13601 Comm: syz.2.2885 Tainted: G L syzkaller #0 PREEMPT(full) [ 428.560857][T13601] Tainted: [L]=SOFTLOCKUP [ 428.560868][T13601] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 428.560884][T13601] Call Trace: [ 428.560893][T13601] [ 428.560903][T13601] dump_stack_lvl+0x100/0x190 [ 428.560962][T13601] should_fail_ex.cold+0x5/0xa [ 428.560997][T13601] should_failslab+0xc2/0x120 [ 428.561026][T13601] __kvmalloc_node_noprof+0xfa/0xa00 [ 428.561076][T13601] ? v4l2_ctrl_new+0x4a6/0x23a0 [ 428.561128][T13601] ? register_lock_class+0x40/0x560 [ 428.561177][T13601] v4l2_ctrl_new+0x4a6/0x23a0 [ 428.561230][T13601] ? __pfx_v4l2_ctrl_new+0x10/0x10 [ 428.561274][T13601] ? lock_acquire+0x1cf/0x380 [ 428.561313][T13601] ? rcu_is_watching+0x12/0xc0 [ 428.561362][T13601] v4l2_ctrl_new_std+0x1bb/0x290 [ 428.561419][T13601] ? __pfx_v4l2_ctrl_new_std+0x10/0x10 [ 428.561470][T13601] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 428.561518][T13601] ? __asan_memset+0x23/0x50 [ 428.561558][T13601] ? __asan_memcpy+0x3c/0x60 [ 428.561603][T13601] ? find_ref+0x209/0x420 [ 428.561656][T13601] handler_new_ref+0x82f/0xc60 [ 428.561718][T13601] v4l2_ctrl_new+0xe67/0x23a0 [ 428.561779][T13601] ? __pfx_v4l2_ctrl_new+0x10/0x10 [ 428.561873][T13601] v4l2_ctrl_new_std+0x1bb/0x290 [ 428.561942][T13601] ? __pfx_v4l2_ctrl_new_std+0x10/0x10 [ 428.562002][T13601] ? trace_kmalloc+0x101/0x130 [ 428.562037][T13601] ? __kasan_kmalloc+0xaa/0xb0 [ 428.562095][T13601] ? v4l2_ctrl_handler_init_class+0x201/0x350 [ 428.562151][T13601] ? lockdep_init_map_type+0x30/0x250 [ 428.562204][T13601] ? media_request_object_init+0x105/0x180 [ 428.562263][T13601] vim2m_open+0x140/0x830 [ 428.562316][T13601] v4l2_open+0x1d2/0x490 [ 428.562370][T13601] ? __pfx_v4l2_open+0x10/0x10 [ 428.562425][T13601] chrdev_open+0x234/0x6a0 [ 428.562466][T13601] ? __pfx_apparmor_file_open+0x10/0x10 [ 428.562503][T13601] ? __pfx_chrdev_open+0x10/0x10 [ 428.562541][T13601] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 428.562588][T13601] do_dentry_open+0x6d8/0x1660 [ 428.562623][T13601] ? __pfx_chrdev_open+0x10/0x10 [ 428.562669][T13601] vfs_open+0x82/0x3f0 [ 428.562720][T13601] path_openat+0x208c/0x31a0 [ 428.562771][T13601] ? __pfx_path_openat+0x10/0x10 [ 428.562824][T13601] do_file_open+0x20e/0x430 [ 428.562862][T13601] ? __pfx_do_file_open+0x10/0x10 [ 428.562931][T13601] ? alloc_fd+0x476/0x790 [ 428.562978][T13601] ? do_getname+0x191/0x390 [ 428.563025][T13601] do_sys_openat2+0x10d/0x1e0 [ 428.563069][T13601] ? __pfx_do_sys_openat2+0x10/0x10 [ 428.563126][T13601] __x64_sys_openat+0x12d/0x210 [ 428.563171][T13601] ? __pfx___x64_sys_openat+0x10/0x10 [ 428.563232][T13601] do_syscall_64+0x106/0xf80 [ 428.563281][T13601] ? clear_bhb_loop+0x40/0x90 [ 428.563324][T13601] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 428.563360][T13601] RIP: 0033:0x7f58e219c799 [ 428.563389][T13601] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 428.563422][T13601] RSP: 002b:00007f58e30b8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 428.563454][T13601] RAX: ffffffffffffffda RBX: 00007f58e2415fa0 RCX: 00007f58e219c799 [ 428.563477][T13601] RDX: 000000000002aa01 RSI: 0000200000000180 RDI: ffffffffffffff9c [ 428.563509][T13601] RBP: 00007f58e2232c99 R08: 0000000000000000 R09: 0000000000000000 [ 428.563532][T13601] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 428.563552][T13601] R13: 00007f58e2416038 R14: 00007f58e2415fa0 R15: 00007ffc0c78a338 [ 428.563596][T13601] [ 429.705216][T13615] kvm: user requested TSC rate below hardware speed [ 431.677947][T13645] Process accounting resumed [ 431.714513][T13648] netlink: 330 bytes leftover after parsing attributes in process `syz.3.2902'. [ 432.131906][T13658] FAULT_INJECTION: forcing a failure. [ 432.131906][T13658] name failslab, interval 1, probability 0, space 0, times 0 [ 432.146574][T13658] CPU: 0 UID: 0 PID: 13658 Comm: syz.1.2914 Tainted: G L syzkaller #0 PREEMPT(full) [ 432.146644][T13658] Tainted: [L]=SOFTLOCKUP [ 432.146657][T13658] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 432.146679][T13658] Call Trace: [ 432.146690][T13658] [ 432.146702][T13658] dump_stack_lvl+0x100/0x190 [ 432.146762][T13658] should_fail_ex.cold+0x5/0xa [ 432.146802][T13658] should_failslab+0xc2/0x120 [ 432.146838][T13658] __kmalloc_cache_noprof+0x7a/0x6f0 [ 432.146884][T13658] ? snd_seq_prioq_new+0x3f/0x110 [ 432.146933][T13658] ? lockdep_init_map_type+0x5c/0x250 [ 432.146987][T13658] snd_seq_prioq_new+0x3f/0x110 [ 432.147035][T13658] snd_seq_queue_alloc+0x153/0x590 [ 432.147087][T13658] snd_seq_ioctl_create_queue+0xa9/0x370 [ 432.147146][T13658] call_seq_client_ctl+0xa3/0x130 [ 432.147207][T13658] snd_seq_kernel_client_ctl+0x77/0xd0 [ 432.147243][T13658] alloc_seq_queue+0xdb/0x180 [ 432.147280][T13658] ? __pfx_alloc_seq_queue+0x10/0x10 [ 432.147338][T13658] ? mark_held_locks+0x40/0x70 [ 432.147381][T13658] ? _raw_spin_unlock_irq+0x23/0x50 [ 432.147426][T13658] ? lockdep_hardirqs_on+0x78/0x100 [ 432.147480][T13658] snd_seq_oss_open+0x2b2/0xa10 [ 432.147524][T13658] odev_open+0x79/0xc0 [ 432.147554][T13658] ? __pfx_odev_open+0x10/0x10 [ 432.147592][T13658] soundcore_open+0x2e3/0x5a0 [ 432.147631][T13658] ? __pfx_soundcore_open+0x10/0x10 [ 432.147666][T13658] chrdev_open+0x234/0x6a0 [ 432.147701][T13658] ? __pfx_apparmor_file_open+0x10/0x10 [ 432.147737][T13658] ? __pfx_chrdev_open+0x10/0x10 [ 432.147775][T13658] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 432.147821][T13658] do_dentry_open+0x6d8/0x1660 [ 432.147855][T13658] ? __pfx_chrdev_open+0x10/0x10 [ 432.147900][T13658] vfs_open+0x82/0x3f0 [ 432.147950][T13658] path_openat+0x208c/0x31a0 [ 432.148001][T13658] ? __pfx_path_openat+0x10/0x10 [ 432.148054][T13658] do_file_open+0x20e/0x430 [ 432.148094][T13658] ? __pfx_do_file_open+0x10/0x10 [ 432.148161][T13658] ? alloc_fd+0x476/0x790 [ 432.148199][T13658] ? do_getname+0x191/0x390 [ 432.148247][T13658] do_sys_openat2+0x10d/0x1e0 [ 432.148294][T13658] ? __pfx_do_sys_openat2+0x10/0x10 [ 432.148343][T13658] ? find_held_lock+0x2b/0x80 [ 432.148386][T13658] __x64_sys_openat+0x12d/0x210 [ 432.148435][T13658] ? __pfx___x64_sys_openat+0x10/0x10 [ 432.148499][T13658] do_syscall_64+0x106/0xf80 [ 432.148547][T13658] ? clear_bhb_loop+0x40/0x90 [ 432.148595][T13658] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 432.148633][T13658] RIP: 0033:0x7efee819c799 [ 432.148662][T13658] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 432.148696][T13658] RSP: 002b:00007efee8ff6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 432.148730][T13658] RAX: ffffffffffffffda RBX: 00007efee8415fa0 RCX: 00007efee819c799 [ 432.148753][T13658] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 432.148775][T13658] RBP: 00007efee8232c99 R08: 0000000000000000 R09: 0000000000000000 [ 432.148802][T13658] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 432.148822][T13658] R13: 00007efee8416038 R14: 00007efee8415fa0 R15: 00007ffe9a838888 [ 432.148868][T13658] [ 433.524895][T13677] FAULT_INJECTION: forcing a failure. [ 433.524895][T13677] name failslab, interval 1, probability 0, space 0, times 0 [ 433.578179][T13677] CPU: 1 UID: 0 PID: 13677 Comm: syz.2.2910 Tainted: G L syzkaller #0 PREEMPT(full) [ 433.578235][T13677] Tainted: [L]=SOFTLOCKUP [ 433.578248][T13677] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 433.578269][T13677] Call Trace: [ 433.578281][T13677] [ 433.578294][T13677] dump_stack_lvl+0x100/0x190 [ 433.578351][T13677] should_fail_ex.cold+0x5/0xa [ 433.578393][T13677] should_failslab+0xc2/0x120 [ 433.578432][T13677] __kmalloc_cache_noprof+0x7a/0x6f0 [ 433.578479][T13677] ? __kthread_create_on_node+0xce/0x3f0 [ 433.578627][T13677] ? lockdep_init_map_type+0x5c/0x250 [ 433.578684][T13677] ? __pfx_tomoyo_gc_thread+0x10/0x10 [ 433.578725][T13677] __kthread_create_on_node+0xce/0x3f0 [ 433.578769][T13677] ? __pfx___kthread_create_on_node+0x10/0x10 [ 433.578833][T13677] ? __pfx_tomoyo_gc_thread+0x10/0x10 [ 433.578875][T13677] kthread_create_on_node+0xc7/0x100 [ 433.578918][T13677] ? __pfx_kthread_create_on_node+0x10/0x10 [ 433.578963][T13677] ? lockdep_hardirqs_on+0x78/0x100 [ 433.579015][T13677] ? find_held_lock+0x2b/0x80 [ 433.579049][T13677] ? tomoyo_notify_gc+0xc6/0x480 [ 433.579101][T13677] tomoyo_notify_gc+0x102/0x480 [ 433.579140][T13677] ? ima_iint_find+0xe9/0x130 [ 433.579194][T13677] ? __pfx_tomoyo_release+0x10/0x10 [ 433.579241][T13677] tomoyo_release+0x31/0x40 [ 433.579287][T13677] __fput+0x3ff/0xb40 [ 433.579340][T13677] task_work_run+0x150/0x240 [ 433.579394][T13677] ? __pfx_task_work_run+0x10/0x10 [ 433.579595][T13677] exit_to_user_mode_loop+0x100/0x4a0 [ 433.579650][T13677] do_syscall_64+0x668/0xf80 [ 433.579723][T13677] ? clear_bhb_loop+0x40/0x90 [ 433.579767][T13677] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 433.579804][T13677] RIP: 0033:0x7f58e219c799 [ 433.579835][T13677] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 433.579870][T13677] RSP: 002b:00007f58e30b8028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 433.579903][T13677] RAX: 0000000000000000 RBX: 00007f58e2415fa0 RCX: 00007f58e219c799 [ 433.579926][T13677] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 433.579946][T13677] RBP: 00007f58e2232c99 R08: 0000000000000000 R09: 0000000000000000 [ 433.579968][T13677] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 433.579988][T13677] R13: 00007f58e2416038 R14: 00007f58e2415fa0 R15: 00007ffc0c78a338 [ 433.580033][T13677] [ 434.465505][T13689] netlink: 334 bytes leftover after parsing attributes in process `syz.2.2917'. [ 435.455016][T13704] binder: 13703:13704 ioctl c0306201 2000000000c0 returned -14 [ 435.549855][T13708] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2925'. [ 436.732427][T13735] FAULT_INJECTION: forcing a failure. [ 436.732427][T13735] name failslab, interval 1, probability 0, space 0, times 0 [ 436.753108][T13735] CPU: 0 UID: 0 PID: 13735 Comm: syz.2.2935 Tainted: G L syzkaller #0 PREEMPT(full) [ 436.753169][T13735] Tainted: [L]=SOFTLOCKUP [ 436.753183][T13735] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 436.753207][T13735] Call Trace: [ 436.753220][T13735] [ 436.753245][T13735] dump_stack_lvl+0x100/0x190 [ 436.753313][T13735] should_fail_ex.cold+0x5/0xa [ 436.753357][T13735] ? tracepoint_add_func+0x2c5/0xf30 [ 436.753395][T13735] should_failslab+0xc2/0x120 [ 436.753445][T13735] __kmalloc_noprof+0xe0/0x850 [ 436.753513][T13735] ? __pfx_probe_sched_wakeup+0x10/0x10 [ 436.753555][T13735] tracepoint_add_func+0x2c5/0xf30 [ 436.753593][T13735] ? __pfx_probe_sched_wakeup+0x10/0x10 [ 436.753634][T13735] ? __pfx___mutex_lock+0x10/0x10 [ 436.753710][T13735] ? __pfx_probe_sched_wakeup+0x10/0x10 [ 436.753752][T13735] tracepoint_probe_register+0xc4/0x110 [ 436.753796][T13735] ? __pfx_tracepoint_probe_register+0x10/0x10 [ 436.753839][T13735] ? __pfx_probe_sched_wakeup+0x10/0x10 [ 436.753897][T13735] tracing_start_sched_switch+0xaf/0x170 [ 436.753964][T13735] __ftrace_event_enable_disable+0x557/0x6f0 [ 436.754014][T13735] __ftrace_set_clr_event_nolock+0x390/0xc30 [ 436.754076][T13735] ftrace_set_clr_event+0x16e/0x330 [ 436.754135][T13735] ? __pfx_ftrace_set_clr_event+0x10/0x10 [ 436.754186][T13735] ? trace_get_user+0x3ae/0xa70 [ 436.754249][T13735] ftrace_event_write+0x259/0x2c0 [ 436.754304][T13735] ? __pfx_ftrace_event_write+0x10/0x10 [ 436.754378][T13735] vfs_write+0x2aa/0x1070 [ 436.754416][T13735] ? __pfx_ftrace_event_write+0x10/0x10 [ 436.754474][T13735] ? __pfx_vfs_write+0x10/0x10 [ 436.754510][T13735] ? __fget_files+0x215/0x3d0 [ 436.754566][T13735] ? __fget_files+0x21f/0x3d0 [ 436.754620][T13735] ksys_write+0x12a/0x250 [ 436.754657][T13735] ? __pfx_ksys_write+0x10/0x10 [ 436.754710][T13735] do_syscall_64+0x106/0xf80 [ 436.754766][T13735] ? clear_bhb_loop+0x40/0x90 [ 436.754830][T13735] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 436.754874][T13735] RIP: 0033:0x7f58e219c799 [ 436.754907][T13735] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 436.754945][T13735] RSP: 002b:00007f58e30b8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 436.754982][T13735] RAX: ffffffffffffffda RBX: 00007f58e2415fa0 RCX: 00007f58e219c799 [ 436.755009][T13735] RDX: 0000000000000004 RSI: 0000200000000040 RDI: 0000000000000005 [ 436.755033][T13735] RBP: 00007f58e2232c99 R08: 0000000000000000 R09: 0000000000000000 [ 436.755057][T13735] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 436.755081][T13735] R13: 00007f58e2416038 R14: 00007f58e2415fa0 R15: 00007ffc0c78a338 [ 436.755133][T13735] [ 436.759893][T13735] wakeup trace: Couldn't activate tracepoint probe to kernel_sched_wakeup [ 437.638628][T13755] netlink: 'syz.1.2943': attribute type 4 has an invalid length. [ 437.709102][T13757] futex_wake_op: syz.2.2944 tries to shift op by -2048; fix this program [ 437.728799][T13757] futex_wake_op: syz.2.2944 tries to shift op by -2048; fix this program [ 438.585898][T13771] FAULT_INJECTION: forcing a failure. [ 438.585898][T13771] name failslab, interval 1, probability 0, space 0, times 0 [ 438.664145][T13771] CPU: 1 UID: 0 PID: 13771 Comm: syz.0.2950 Tainted: G L syzkaller #0 PREEMPT(full) [ 438.664198][T13771] Tainted: [L]=SOFTLOCKUP [ 438.664209][T13771] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 438.664229][T13771] Call Trace: [ 438.664239][T13771] [ 438.664252][T13771] dump_stack_lvl+0x100/0x190 [ 438.664310][T13771] should_fail_ex.cold+0x5/0xa [ 438.664349][T13771] should_failslab+0xc2/0x120 [ 438.664397][T13771] __kmalloc_cache_noprof+0x7a/0x6f0 [ 438.664444][T13771] ? mtdchar_open+0x1e5/0x340 [ 438.664483][T13771] ? find_held_lock+0x2b/0x80 [ 438.664515][T13771] ? chrdev_open+0x10b/0x6a0 [ 438.664555][T13771] mtdchar_open+0x1e5/0x340 [ 438.664591][T13771] ? __pfx_mtdchar_open+0x10/0x10 [ 438.664626][T13771] chrdev_open+0x234/0x6a0 [ 438.664659][T13771] ? __pfx_apparmor_file_open+0x10/0x10 [ 438.664695][T13771] ? __pfx_chrdev_open+0x10/0x10 [ 438.664731][T13771] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 438.664778][T13771] do_dentry_open+0x6d8/0x1660 [ 438.664813][T13771] ? __pfx_chrdev_open+0x10/0x10 [ 438.664860][T13771] vfs_open+0x82/0x3f0 [ 438.664907][T13771] path_openat+0x208c/0x31a0 [ 438.664958][T13771] ? __pfx_path_openat+0x10/0x10 [ 438.665011][T13771] do_file_open+0x20e/0x430 [ 438.665051][T13771] ? __pfx_do_file_open+0x10/0x10 [ 438.665129][T13771] ? alloc_fd+0x476/0x790 [ 438.665169][T13771] ? do_getname+0x191/0x390 [ 438.665215][T13771] do_sys_openat2+0x10d/0x1e0 [ 438.665263][T13771] ? __pfx_do_sys_openat2+0x10/0x10 [ 438.665311][T13771] ? __fget_files+0x21f/0x3d0 [ 438.665359][T13771] __x64_sys_openat+0x12d/0x210 [ 438.665408][T13771] ? __pfx___x64_sys_openat+0x10/0x10 [ 438.665473][T13771] do_syscall_64+0x106/0xf80 [ 438.665521][T13771] ? clear_bhb_loop+0x40/0x90 [ 438.665562][T13771] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 438.665599][T13771] RIP: 0033:0x7fdb4eb9c799 [ 438.665629][T13771] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 438.665666][T13771] RSP: 002b:00007fdb4fa4d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 438.665698][T13771] RAX: ffffffffffffffda RBX: 00007fdb4ee15fa0 RCX: 00007fdb4eb9c799 [ 438.665722][T13771] RDX: 0000000000002c00 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 438.665743][T13771] RBP: 00007fdb4ec32c99 R08: 0000000000000000 R09: 0000000000000000 [ 438.665764][T13771] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 438.665785][T13771] R13: 00007fdb4ee16038 R14: 00007fdb4ee15fa0 R15: 00007ffdf35d31f8 [ 438.665830][T13771] [ 438.932803][T13775] ------------[ cut here ]------------ [ 438.932859][T13775] IS_ERR(old) [ 438.932877][T13775] WARNING: kernel/tracepoint.c:367 at tracepoint_probe_unregister+0x837/0xd10, CPU#1: syz.3.2949/13775 [ 438.932941][T13775] Modules linked in: [ 438.932985][T13775] CPU: 1 UID: 0 PID: 13775 Comm: syz.3.2949 Tainted: G L syzkaller #0 PREEMPT(full) [ 438.933037][T13775] Tainted: [L]=SOFTLOCKUP [ 438.933051][T13775] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 438.933074][T13775] RIP: 0010:tracepoint_probe_unregister+0x837/0xd10 [ 438.933118][T13775] Code: cc e8 6d 2b fe ff 48 8d 73 f0 48 c7 c2 20 dc 09 82 48 c7 c7 40 31 87 8e e8 e6 79 e2 ff eb ba bb fe ff ff ff e8 4a 2b fe ff 90 <0f> 0b 90 eb ac e8 3f 2b fe ff 49 89 dd 45 31 ff 49 be 00 00 00 00 [ 438.933154][T13775] RSP: 0018:ffffc900055f78a8 EFLAGS: 00010287 [ 438.933186][T13775] RAX: 0000000000009388 RBX: 00000000fffffffe RCX: ffffc90006acb000 [ 438.933211][T13775] RDX: 0000000000080000 RSI: ffffffff8209ed16 RDI: ffff88802f305b80 [ 438.933237][T13775] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000 [ 438.933260][T13775] R10: 0000000000000001 R11: 0000000000000000 R12: ffffffff821007e0 [ 438.933285][T13775] R13: 0000000000000302 R14: 0000000000000002 R15: ffffffff8f786da0 [ 438.933310][T13775] FS: 00007fde9de286c0(0000) GS:ffff888124449000(0000) knlGS:0000000000000000 [ 438.933348][T13775] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 438.933373][T13775] CR2: 0000001b31122ff8 CR3: 000000002d3d6000 CR4: 00000000003526f0 [ 438.933409][T13775] Call Trace: [ 438.933422][T13775] [ 438.933451][T13775] tracing_stop_cmdline_record+0x66/0xa0 [ 438.933515][T13775] __ftrace_event_enable_disable+0x5c4/0x6f0 [ 438.933561][T13775] ftrace_event_set_open+0x224/0x380 [ 438.933620][T13775] do_dentry_open+0x6d8/0x1660 [ 438.933658][T13775] ? __pfx_ftrace_event_set_open+0x10/0x10 [ 438.933713][T13775] vfs_open+0x82/0x3f0 [ 438.933772][T13775] path_openat+0x208c/0x31a0 [ 438.933828][T13775] ? __pfx_path_openat+0x10/0x10 [ 438.933886][T13775] do_file_open+0x20e/0x430 [ 438.933929][T13775] ? __pfx_do_file_open+0x10/0x10 [ 438.934002][T13775] ? alloc_fd+0x476/0x790 [ 438.934045][T13775] ? do_getname+0x191/0x390 [ 438.934096][T13775] do_sys_openat2+0x10d/0x1e0 [ 438.934146][T13775] ? __pfx_do_sys_openat2+0x10/0x10 [ 438.934198][T13775] ? __fget_files+0x21f/0x3d0 [ 438.934244][T13775] __x64_sys_openat+0x12d/0x210 [ 438.934295][T13775] ? __pfx___x64_sys_openat+0x10/0x10 [ 438.934363][T13775] do_syscall_64+0x106/0xf80 [ 438.934425][T13775] ? clear_bhb_loop+0x40/0x90 [ 438.934479][T13775] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 438.934519][T13775] RIP: 0033:0x7fde9cf9c799 [ 438.934552][T13775] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 438.934594][T13775] RSP: 002b:00007fde9de28028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 438.934631][T13775] RAX: ffffffffffffffda RBX: 00007fde9d216090 RCX: 00007fde9cf9c799 [ 438.934657][T13775] RDX: 0000000000020201 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 438.934683][T13775] RBP: 00007fde9d032c99 R08: 0000000000000000 R09: 0000000000000000 [ 438.934708][T13775] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 438.934733][T13775] R13: 00007fde9d216128 R14: 00007fde9d216090 R15: 00007fff0c28fef8 [ 438.934782][T13775] [ 438.934801][T13775] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 438.934828][T13775] CPU: 1 UID: 0 PID: 13775 Comm: syz.3.2949 Tainted: G L syzkaller #0 PREEMPT(full) [ 438.934875][T13775] Tainted: [L]=SOFTLOCKUP [ 438.934886][T13775] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 438.934906][T13775] Call Trace: [ 438.934918][T13775] [ 438.934932][T13775] dump_stack_lvl+0x100/0x190 [ 438.934988][T13775] vpanic+0x552/0x970 [ 438.935023][T13775] ? __pfx_vpanic+0x10/0x10 [ 438.935072][T13775] panic+0xd1/0xe0 [ 438.935106][T13775] ? __pfx_panic+0x10/0x10 [ 438.935168][T13775] check_panic_on_warn.cold+0x19/0x34 [ 438.935209][T13775] ? tracepoint_probe_unregister+0x837/0xd10 [ 438.935248][T13775] __warn.cold+0x191/0x348 [ 438.935290][T13775] __report_bug+0x296/0x3d0 [ 438.935335][T13775] ? tracepoint_probe_unregister+0x837/0xd10 [ 438.935383][T13775] ? __pfx___report_bug+0x10/0x10 [ 438.935438][T13775] ? rcu_is_watching+0x12/0xc0 [ 438.935494][T13775] ? trace_contention_end+0x140/0x180 [ 438.935547][T13775] ? __mutex_lock+0x26a/0x1b90 [ 438.935604][T13775] ? tracepoint_probe_unregister+0x31/0xd10 [ 438.935647][T13775] ? tracepoint_probe_unregister+0x837/0xd10 [ 438.935687][T13775] report_bug+0xb2/0x220 [ 438.935732][T13775] ? tracepoint_probe_unregister+0x837/0xd10 [ 438.935771][T13775] handle_bug+0x16a/0x2a0 [ 438.935804][T13775] exc_invalid_op+0x17/0x50 [ 438.935839][T13775] asm_exc_invalid_op+0x1a/0x20 [ 438.935874][T13775] RIP: 0010:tracepoint_probe_unregister+0x837/0xd10 [ 438.935914][T13775] Code: cc e8 6d 2b fe ff 48 8d 73 f0 48 c7 c2 20 dc 09 82 48 c7 c7 40 31 87 8e e8 e6 79 e2 ff eb ba bb fe ff ff ff e8 4a 2b fe ff 90 <0f> 0b 90 eb ac e8 3f 2b fe ff 49 89 dd 45 31 ff 49 be 00 00 00 00 [ 438.935950][T13775] RSP: 0018:ffffc900055f78a8 EFLAGS: 00010287 [ 438.935979][T13775] RAX: 0000000000009388 RBX: 00000000fffffffe RCX: ffffc90006acb000 [ 438.936003][T13775] RDX: 0000000000080000 RSI: ffffffff8209ed16 RDI: ffff88802f305b80 [ 438.936028][T13775] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000 [ 438.936051][T13775] R10: 0000000000000001 R11: 0000000000000000 R12: ffffffff821007e0 [ 438.936074][T13775] R13: 0000000000000302 R14: 0000000000000002 R15: ffffffff8f786da0 [ 438.936101][T13775] ? __pfx_probe_sched_switch+0x10/0x10 [ 438.936147][T13775] ? tracepoint_probe_unregister+0x836/0xd10 [ 438.936195][T13775] ? tracepoint_probe_unregister+0x836/0xd10 [ 438.936246][T13775] tracing_stop_cmdline_record+0x66/0xa0 [ 438.936309][T13775] __ftrace_event_enable_disable+0x5c4/0x6f0 [ 438.936354][T13775] ftrace_event_set_open+0x224/0x380 [ 438.936405][T13775] do_dentry_open+0x6d8/0x1660 [ 438.936443][T13775] ? __pfx_ftrace_event_set_open+0x10/0x10 [ 438.936495][T13775] vfs_open+0x82/0x3f0 [ 438.936547][T13775] path_openat+0x208c/0x31a0 [ 438.936599][T13775] ? __pfx_path_openat+0x10/0x10 [ 438.936656][T13775] do_file_open+0x20e/0x430 [ 438.936698][T13775] ? __pfx_do_file_open+0x10/0x10 [ 438.936767][T13775] ? alloc_fd+0x476/0x790 [ 438.936808][T13775] ? do_getname+0x191/0x390 [ 438.936858][T13775] do_sys_openat2+0x10d/0x1e0 [ 438.936906][T13775] ? __pfx_do_sys_openat2+0x10/0x10 [ 438.936958][T13775] ? __fget_files+0x21f/0x3d0 [ 438.937003][T13775] __x64_sys_openat+0x12d/0x210 [ 438.937053][T13775] ? __pfx___x64_sys_openat+0x10/0x10 [ 438.937119][T13775] do_syscall_64+0x106/0xf80 [ 438.937169][T13775] ? clear_bhb_loop+0x40/0x90 [ 438.937215][T13775] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 438.937253][T13775] RIP: 0033:0x7fde9cf9c799 [ 438.937282][T13775] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 438.937317][T13775] RSP: 002b:00007fde9de28028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 438.937351][T13775] RAX: ffffffffffffffda RBX: 00007fde9d216090 RCX: 00007fde9cf9c799 [ 438.937376][T13775] RDX: 0000000000020201 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 438.937408][T13775] RBP: 00007fde9d032c99 R08: 0000000000000000 R09: 0000000000000000 [ 438.937432][T13775] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 438.937455][T13775] R13: 00007fde9d216128 R14: 00007fde9d216090 R15: 00007fff0c28fef8 [ 438.937504][T13775] [ 438.938108][T13775] Kernel Offset: disabled