Warning: Permanently added '10.128.0.10' (ED25519) to the list of known hosts.
2026/04/05 08:28:32 parsed 1 programs
[ 54.929613][ T30] audit: type=1400 audit(1775377712.787:62): avc: denied { node_bind } for pid=5800 comm="syz-execprog" saddr=::1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[ 56.884831][ T30] audit: type=1400 audit(1775377714.747:63): avc: denied { mounton } for pid=5807 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=2023 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[ 56.908533][ T30] audit: type=1400 audit(1775377714.767:64): avc: denied { mount } for pid=5807 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[ 56.911685][ T5807] cgroup: Unknown subsys name 'net'
[ 56.937762][ T30] audit: type=1400 audit(1775377714.797:65): avc: denied { unmount } for pid=5807 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[ 57.092982][ T5807] cgroup: Unknown subsys name 'cpuset'
[ 57.100802][ T5807] cgroup: Unknown subsys name 'rlimit'
[ 57.251015][ T30] audit: type=1400 audit(1775377715.117:66): avc: denied { setattr } for pid=5807 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=820 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 57.302224][ T30] audit: type=1400 audit(1775377715.117:67): avc: denied { create } for pid=5807 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 57.323339][ T30] audit: type=1400 audit(1775377715.117:68): avc: denied { write } for pid=5807 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
Setting up swapspace version 1, size = 127995904 bytes
[ 57.347981][ T30] audit: type=1400 audit(1775377715.117:69): avc: denied { read } for pid=5807 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 57.361005][ T5810] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped).
[ 57.368826][ T30] audit: type=1400 audit(1775377715.117:70): avc: denied { mounton } for pid=5807 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[ 57.402244][ T30] audit: type=1400 audit(1775377715.117:71): avc: denied { mount } for pid=5807 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[ 58.270231][ T5807] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 59.930346][ T30] kauditd_printk_skb: 4 callbacks suppressed
[ 59.930360][ T30] audit: type=1400 audit(1775377717.787:76): avc: denied { execmem } for pid=5816 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[ 59.980388][ T30] audit: type=1400 audit(1775377717.787:77): avc: denied { read } for pid=5817 comm="syz-executor" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[ 60.020383][ T30] audit: type=1400 audit(1775377717.787:78): avc: denied { open } for pid=5817 comm="syz-executor" path="net:[4026531833]" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[ 60.070598][ T30] audit: type=1400 audit(1775377717.787:79): avc: denied { mounton } for pid=5817 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[ 60.103260][ T30] audit: type=1400 audit(1775377717.927:80): avc: denied { mounton } for pid=5817 comm="syz-executor" path="/root/syzkaller.C1mCmh/syz-tmp" dev="sda1" ino=2030 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[ 60.127523][ T30] audit: type=1400 audit(1775377717.927:81): avc: denied { mount } for pid=5817 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[ 60.149782][ T30] audit: type=1400 audit(1775377717.927:82): avc: denied { mounton } for pid=5817 comm="syz-executor" path="/root/syzkaller.C1mCmh/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[ 60.153776][ T5817] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[ 60.175752][ T30] audit: type=1400 audit(1775377717.927:83): avc: denied { mount } for pid=5817 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[ 60.212132][ T30] audit: type=1400 audit(1775377717.957:84): avc: denied { mounton } for pid=5817 comm="syz-executor" path="/root/syzkaller.C1mCmh/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[ 60.238893][ T30] audit: type=1400 audit(1775377717.957:85): avc: denied { mounton } for pid=5817 comm="syz-executor" path="/root/syzkaller.C1mCmh/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=4660 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1
[ 60.423409][ T79] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 60.431693][ T79] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 60.456561][ T79] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 60.465119][ T79] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 60.977833][ T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 60.985326][ T51] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 60.994282][ T51] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 61.002510][ T51] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 61.009943][ T51] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 62.453442][ T5884] chnl_net:caif_netlink_parms(): no params data found
[ 62.505769][ T5884] bridge0: port 1(bridge_slave_0) entered blocking state
[ 62.513757][ T5884] bridge0: port 1(bridge_slave_0) entered disabled state
[ 62.522084][ T5884] bridge_slave_0: entered allmulticast mode
[ 62.529724][ T5884] bridge_slave_0: entered promiscuous mode
[ 62.538446][ T5884] bridge0: port 2(bridge_slave_1) entered blocking state
[ 62.545628][ T5884] bridge0: port 2(bridge_slave_1) entered disabled state
[ 62.552775][ T5884] bridge_slave_1: entered allmulticast mode
[ 62.559446][ T5884] bridge_slave_1: entered promiscuous mode
[ 62.582947][ T5884] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 62.593915][ T5884] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 62.615218][ T5884] team0: Port device team_slave_0 added
[ 62.622353][ T5884] team0: Port device team_slave_1 added
[ 62.639283][ T5884] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 62.646447][ T5884] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 62.672378][ T5884] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 62.684821][ T5884] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 62.691805][ T5884] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 62.717684][ T5884] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 62.748387][ T5884] hsr_slave_0: entered promiscuous mode
[ 62.754472][ T5884] hsr_slave_1: entered promiscuous mode
[ 62.890467][ T5884] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 62.900731][ T5884] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 62.911759][ T5884] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 62.928549][ T5884] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 62.948832][ T5884] bridge0: port 2(bridge_slave_1) entered blocking state
[ 62.955959][ T5884] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 62.963564][ T5884] bridge0: port 1(bridge_slave_0) entered blocking state
[ 62.970676][ T5884] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 63.009755][ T5884] 8021q: adding VLAN 0 to HW filter on device bond0
[ 63.022451][ T79] bridge0: port 1(bridge_slave_0) entered disabled state
[ 63.030012][ T79] bridge0: port 2(bridge_slave_1) entered disabled state
[ 63.042581][ T5884] 8021q: adding VLAN 0 to HW filter on device team0
[ 63.056843][ T79] bridge0: port 1(bridge_slave_0) entered blocking state
[ 63.063962][ T79] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 63.072572][ T79] bridge0: port 2(bridge_slave_1) entered blocking state
[ 63.079619][ T79] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 63.200890][ T5884] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 63.232472][ T5884] veth0_vlan: entered promiscuous mode
[ 63.242158][ T5884] veth1_vlan: entered promiscuous mode
[ 63.259953][ T5884] veth0_macvtap: entered promiscuous mode
[ 63.268818][ T5884] veth1_macvtap: entered promiscuous mode
[ 63.283321][ T5884] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 63.296205][ T5884] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 63.308380][ T1149] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 63.317865][ T1149] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 63.327836][ T1149] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 63.336987][ T1149] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 63.449928][ T1149] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 63.512195][ T1149] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 63.596734][ T1149] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 63.656676][ T1149] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2026/04/05 08:28:41 executed programs: 0
[ 63.741120][ T5131] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 63.749539][ T5131] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 63.757742][ T5131] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 63.766975][ T5131] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 63.775955][ T5131] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 63.866247][ T5910] chnl_net:caif_netlink_parms(): no params data found
[ 63.913174][ T5910] bridge0: port 1(bridge_slave_0) entered blocking state
[ 63.920964][ T5910] bridge0: port 1(bridge_slave_0) entered disabled state
[ 63.928081][ T5910] bridge_slave_0: entered allmulticast mode
[ 63.935209][ T5910] bridge_slave_0: entered promiscuous mode
[ 63.942496][ T5910] bridge0: port 2(bridge_slave_1) entered blocking state
[ 63.949545][ T5910] bridge0: port 2(bridge_slave_1) entered disabled state
[ 63.956785][ T5910] bridge_slave_1: entered allmulticast mode
[ 63.963649][ T5910] bridge_slave_1: entered promiscuous mode
[ 63.985556][ T5910] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 63.996223][ T5910] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 64.018055][ T5910] team0: Port device team_slave_0 added
[ 64.026140][ T5910] team0: Port device team_slave_1 added
[ 64.044748][ T5910] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 64.051693][ T5910] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 64.077608][ T5910] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 64.089688][ T5910] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 64.097348][ T5910] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 64.123397][ T5910] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 64.162865][ T5910] hsr_slave_0: entered promiscuous mode
[ 64.168923][ T5910] hsr_slave_1: entered promiscuous mode
[ 64.175337][ T5910] debugfs: 'hsr0' already exists in 'hsr'
[ 64.182251][ T5910] Cannot create hsr debugfs directory
[ 65.773479][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[ 65.779814][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[ 65.851191][ T51] Bluetooth: hci0: command tx timeout
[ 66.275124][ T1149] bridge_slave_1: left allmulticast mode
[ 66.283025][ T1149] bridge_slave_1: left promiscuous mode
[ 66.289748][ T1149] bridge0: port 2(bridge_slave_1) entered disabled state
[ 66.300158][ T1149] bridge_slave_0: left allmulticast mode
[ 66.305947][ T1149] bridge_slave_0: left promiscuous mode
[ 66.311677][ T1149] bridge0: port 1(bridge_slave_0) entered disabled state
[ 66.437259][ T1149] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 66.447232][ T1149] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 66.456626][ T1149] bond0 (unregistering): Released all slaves
[ 66.532969][ T1149] hsr_slave_0: left promiscuous mode
[ 66.540603][ T1149] hsr_slave_1: left promiscuous mode
[ 66.546557][ T1149] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 66.554248][ T1149] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 66.562360][ T1149] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 66.569733][ T1149] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 66.584331][ T1149] veth1_macvtap: left promiscuous mode
[ 66.589895][ T1149] veth0_macvtap: left promiscuous mode
[ 66.595802][ T1149] veth1_vlan: left promiscuous mode
[ 66.601230][ T1149] veth0_vlan: left promiscuous mode
[ 66.810022][ T1149] team0 (unregistering): Port device team_slave_1 removed
[ 66.825275][ T1149] team0 (unregistering): Port device team_slave_0 removed
[ 67.217717][ T5910] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 67.235889][ T5910] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 67.245865][ T5910] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 67.255096][ T5910] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 67.326095][ T5910] 8021q: adding VLAN 0 to HW filter on device bond0
[ 67.346783][ T5910] 8021q: adding VLAN 0 to HW filter on device team0
[ 67.359547][ T425] bridge0: port 1(bridge_slave_0) entered blocking state
[ 67.366742][ T425] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 67.415267][ T425] bridge0: port 2(bridge_slave_1) entered blocking state
[ 67.422449][ T425] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 67.643186][ T5910] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 67.679445][ T5910] veth0_vlan: entered promiscuous mode
[ 67.697248][ T5910] veth1_vlan: entered promiscuous mode
[ 67.733135][ T5910] veth0_macvtap: entered promiscuous mode
[ 67.743330][ T5910] veth1_macvtap: entered promiscuous mode
[ 67.768634][ T5910] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 67.783409][ T5910] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 67.802141][ T1149] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 67.821435][ T1149] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 67.838000][ T1149] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 67.850659][ T1149] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 67.920660][ T1149] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 67.928543][ T1149] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 67.930534][ T51] Bluetooth: hci0: command tx timeout
[ 67.974324][ T79] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 67.983239][ T79] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 68.048608][ T5990] FAULT_INJECTION: forcing a failure.
[ 68.048608][ T5990] name failslab, interval 1, probability 0, space 0, times 1
[ 68.072478][ T5990] CPU: 1 UID: 0 PID: 5990 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full)
[ 68.072503][ T5990] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 68.072513][ T5990] Call Trace:
[ 68.072519][ T5990]
[ 68.072525][ T5990] dump_stack_lvl+0x100/0x190
[ 68.072558][ T5990] should_fail_ex.cold+0x5/0xa
[ 68.072582][ T5990] should_failslab+0xc2/0x120
[ 68.072602][ T5990] __kmalloc_cache_noprof+0x7a/0x6f0
[ 68.072624][ T5990] ? h4_open+0x4f/0x1b0
[ 68.072647][ T5990] ? __init_waitqueue_head+0xca/0x150
[ 68.072668][ T5990] ? lockdep_init_map_type+0x5c/0x250
[ 68.072689][ T5990] h4_open+0x4f/0x1b0
[ 68.072713][ T5990] hci_uart_tty_ioctl+0x681/0xc80
[ 68.072738][ T5990] ? __pfx_hci_uart_tty_ioctl+0x10/0x10
[ 68.072759][ T5990] tty_ioctl+0x1204/0x1690
[ 68.072785][ T5990] ? __pfx_tty_ioctl+0x10/0x10
[ 68.072808][ T5990] ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 68.072846][ T5990] ? hook_file_ioctl_common+0x146/0x410
[ 68.072871][ T5990] ? selinux_file_ioctl+0x139/0x290
[ 68.072896][ T5990] ? selinux_file_ioctl+0xb4/0x290
[ 68.072923][ T5990] ? __pfx_tty_ioctl+0x10/0x10
[ 68.072948][ T5990] __x64_sys_ioctl+0x18e/0x210
[ 68.072977][ T5990] do_syscall_64+0x106/0xf80
[ 68.073003][ T5990] ? clear_bhb_loop+0x40/0x90
[ 68.073024][ T5990] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 68.073042][ T5990] RIP: 0033:0x7f08eeb9c819
[ 68.073057][ T5990] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 68.073073][ T5990] RSP: 002b:00007ffeebac9bd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 68.073090][ T5990] RAX: ffffffffffffffda RBX: 00007f08eee15fa0 RCX: 00007f08eeb9c819
[ 68.073101][ T5990] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003
[ 68.073110][ T5990] RBP: 00007ffeebac9c40 R08: 0000000000000000 R09: 0000000000000000
[ 68.073120][ T5990] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 68.073129][ T5990] R13: 00007f08eee15fac R14: 00007f08eee15fa0 R15: 00007f08eee15fa0
[ 68.073152][ T5990]
[ 68.307372][ T5991] FAULT_INJECTION: forcing a failure.
[ 68.307372][ T5991] name failslab, interval 1, probability 0, space 0, times 0
[ 68.321687][ T5991] CPU: 0 UID: 0 PID: 5991 Comm: syz.0.18 Not tainted syzkaller #0 PREEMPT(full)
[ 68.321711][ T5991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 68.321720][ T5991] Call Trace:
[ 68.321726][ T5991]
[ 68.321732][ T5991] dump_stack_lvl+0x100/0x190
[ 68.321763][ T5991] should_fail_ex.cold+0x5/0xa
[ 68.321786][ T5991] should_failslab+0xc2/0x120
[ 68.321805][ T5991] __kmalloc_node_track_caller_noprof+0xe3/0x850
[ 68.321833][ T5991] ? kvasprintf_const+0x66/0x1a0
[ 68.321860][ T5991] kvasprintf+0xbc/0x150
[ 68.321879][ T5991] ? __pfx_kvasprintf+0x10/0x10
[ 68.321900][ T5991] ? rcu_is_watching+0x12/0xc0
[ 68.321921][ T5991] ? ida_alloc_range+0x70d/0x830
[ 68.321946][ T5991] ? kfree+0x2ec/0x6b0
[ 68.321966][ T5991] ? mark_held_locks+0x40/0x70
[ 68.321987][ T5991] kvasprintf_const+0x66/0x1a0
[ 68.322008][ T5991] kobject_set_name_vargs+0x5a/0x140
[ 68.322029][ T5991] dev_set_name+0xc7/0x100
[ 68.322053][ T5991] ? __pfx_dev_set_name+0x10/0x10
[ 68.322083][ T5991] ? hci_register_dev+0xdc/0xc90
[ 68.322107][ T5991] hci_register_dev+0x101/0xc90
[ 68.322132][ T5991] hci_uart_tty_ioctl+0x8fd/0xc80
[ 68.322158][ T5991] ? __pfx_hci_uart_tty_ioctl+0x10/0x10
[ 68.322179][ T5991] tty_ioctl+0x1204/0x1690
[ 68.322206][ T5991] ? __pfx_tty_ioctl+0x10/0x10
[ 68.322230][ T5991] ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 68.322265][ T5991] ? hook_file_ioctl_common+0x146/0x410
[ 68.322291][ T5991] ? selinux_file_ioctl+0x139/0x290
[ 68.322315][ T5991] ? selinux_file_ioctl+0xb4/0x290
[ 68.322342][ T5991] ? __pfx_tty_ioctl+0x10/0x10
[ 68.322366][ T5991] __x64_sys_ioctl+0x18e/0x210
[ 68.322395][ T5991] do_syscall_64+0x106/0xf80
[ 68.322421][ T5991] ? clear_bhb_loop+0x40/0x90
[ 68.322443][ T5991] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 68.322460][ T5991] RIP: 0033:0x7f08eeb9c819
[ 68.322475][ T5991] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 68.322491][ T5991] RSP: 002b:00007ffeebac9bd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 68.322508][ T5991] RAX: ffffffffffffffda RBX: 00007f08eee15fa0 RCX: 00007f08eeb9c819
[ 68.322518][ T5991] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003
[ 68.322528][ T5991] RBP: 00007ffeebac9c40 R08: 0000000000000000 R09: 0000000000000000
[ 68.322537][ T5991] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 68.322546][ T5991] R13: 00007f08eee15fac R14: 00007f08eee15fa0 R15: 00007f08eee15fa0
[ 68.322569][ T5991]
[ 68.322576][ T5991] Bluetooth: Can't register HCI device
[ 68.580969][ T5991] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] SMP KASAN NOPTI
[ 68.593038][ T5991] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]
[ 68.601426][ T5991] CPU: 1 UID: 0 PID: 5991 Comm: syz.0.18 Not tainted syzkaller #0 PREEMPT(full)
[ 68.610508][ T5991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 68.620537][ T5991] RIP: 0010:h4_recv+0x52/0x1c0
[ 68.625285][ T5991] Code: df 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 3c 01 00 00 4c 8b a3 b8 01 00 00 48 b8 00 00 00 00 00 fc ff df 4c 89 e2 48 c1 ea 03 <80> 3c 02 00 0f 85 31 01 00 00 49 8b 34 24 48 89 ea 41 b9 04 00 00
[ 68.644866][ T5991] RSP: 0018:ffffc900033c7ca8 EFLAGS: 00010246
[ 68.650913][ T5991] RAX: dffffc0000000000 RBX: ffff88807aba6800 RCX: ffffffff887767b0
[ 68.658877][ T5991] RDX: 0000000000000000 RSI: ffffffff8877b6a8 RDI: ffff88807aba69b8
[ 68.666826][ T5991] RBP: ffffc900033c7d68 R08: 0000000000000001 R09: 0000000000000000
[ 68.674773][ T5991] R10: 0000000000000001 R11: 0000000000000000 R12: 0000000000000000
[ 68.682714][ T5991] R13: 0000000000000001 R14: ffff88807aba68c0 R15: ffffffff8cc1b1c0
[ 68.690657][ T5991] FS: 000055555e52a500(0000) GS:ffff888124439000(0000) knlGS:0000000000000000
[ 68.699558][ T5991] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 68.706128][ T5991] CR2: 00007f08eea72140 CR3: 0000000073c1b000 CR4: 00000000003526f0
[ 68.714072][ T5991] Call Trace:
[ 68.717322][ T5991]
[ 68.720225][ T5991] hci_uart_tty_receive+0x259/0x7e0
[ 68.725400][ T5991] ? __pfx_hci_uart_tty_receive+0x10/0x10
[ 68.731102][ T5991] tty_ioctl+0x909/0x1690
[ 68.735418][ T5991] ? __pfx_tty_ioctl+0x10/0x10
[ 68.740153][ T5991] ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 68.746980][ T5991] ? count_memcg_events_mm.constprop.0+0xfa/0x2a0
[ 68.753372][ T5991] ? hook_file_ioctl_common+0x146/0x410
[ 68.758889][ T5991] ? selinux_file_ioctl+0x139/0x290
[ 68.764064][ T5991] ? selinux_file_ioctl+0xb4/0x290
[ 68.769150][ T5991] ? __pfx_tty_ioctl+0x10/0x10
[ 68.773890][ T5991] __x64_sys_ioctl+0x18e/0x210
[ 68.778630][ T5991] do_syscall_64+0x106/0xf80
[ 68.783197][ T5991] ? clear_bhb_loop+0x40/0x90
[ 68.787845][ T5991] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 68.793706][ T5991] RIP: 0033:0x7f08eeb9c819
[ 68.798090][ T5991] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 68.817669][ T5991] RSP: 002b:00007ffeebac9bd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 68.826055][ T5991] RAX: ffffffffffffffda RBX: 00007f08eee15fa0 RCX: 00007f08eeb9c819
[ 68.834006][ T5991] RDX: 0000200000000100 RSI: 0000000000005412 RDI: 0000000000000003
[ 68.841953][ T5991] RBP: 00007f08eec32c91 R08: 0000000000000000 R09: 0000000000000000
[ 68.849904][ T5991] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 68.857866][ T5991] R13: 00007f08eee15fac R14: 00007f08eee15fa0 R15: 00007f08eee15fa0
[ 68.865818][ T5991]
[ 68.868812][ T5991] Modules linked in:
[ 68.873006][ T5991] ---[ end trace 0000000000000000 ]---
[ 68.878824][ T5991] RIP: 0010:h4_recv+0x52/0x1c0
[ 68.886585][ T30] kauditd_printk_skb: 19 callbacks suppressed
[ 68.886595][ T30] audit: type=1400 audit(1775377726.757:105): avc: denied { read } for pid=5161 comm="syslogd" name="log" dev="sda1" ino=2010 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[ 68.898132][ T5991] Code: df 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 3c 01 00 00 4c 8b a3 b8 01 00 00 48 b8 00 00 00 00 00 fc ff df 4c 89 e2 48 c1 ea 03 <80> 3c 02 00 0f 85 31 01 00 00 49 8b 34 24 48 89 ea 41 b9 04 00 00
[ 68.916428][ T30] audit: type=1400 audit(1775377726.757:106): avc: denied { search } for pid=5161 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 68.935213][ T5991] RSP: 0018:ffffc900033c7ca8 EFLAGS: 00010246
[ 68.956880][ T30] audit: type=1400 audit(1775377726.757:107): avc: denied { search } for pid=5161 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 68.962098][ T5991] RAX: dffffc0000000000 RBX: ffff88807aba6800 RCX: ffffffff887767b0
[ 68.984315][ T30] audit: type=1400 audit(1775377726.757:108): avc: denied { add_name } for pid=5161 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 69.012573][ T30] audit: type=1400 audit(1775377726.757:109): avc: denied { create } for pid=5161 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 69.033188][ T5991] RDX: 0000000000000000 RSI: ffffffff8877b6a8 RDI: ffff88807aba69b8
[ 69.033205][ T5991] RBP: ffffc900033c7d68 R08: 0000000000000001 R09: 0000000000000000
[ 69.041416][ T30] audit: type=1400 audit(1775377726.757:110): avc: denied { append open } for pid=5161 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=5 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 69.072118][ T5991] R10: 0000000000000001 R11: 0000000000000000 R12: 0000000000000000
[ 69.072130][ T5991] R13: 0000000000000001 R14: ffff88807aba68c0 R15: ffffffff8cc1b1c0
[ 69.072140][ T5991] FS: 000055555e52a500(0000) GS:ffff888124439000(0000) knlGS:0000000000000000
[ 69.072158][ T5991] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 69.072169][ T5991] CR2: 00007f08eea72140 CR3: 0000000073c1b000 CR4: 00000000003526f0
[ 69.080858][ T30] audit: type=1400 audit(1775377726.757:111): avc: denied { getattr } for pid=5161 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=5 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 69.097064][ T5991] Kernel panic - not syncing: Fatal exception
[ 69.103840][ T5991] Kernel Offset: disabled