last executing test programs: 2.11908961s ago: executing program 3 (id=656): mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0) mount$incfs(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='rlog_pages=0']) 2.096590992s ago: executing program 3 (id=657): r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r0) ptrace$cont(0x20, r0, 0x8cba, 0x4e0) 1.87273564s ago: executing program 3 (id=658): r0 = userfaultfd(0x80001) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000002c0)={0xaa, 0x100}) ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0) 1.778997497s ago: executing program 3 (id=659): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00000bb000/0x18000)=nil, &(0x7f0000000000)=[@text32={0x20, &(0x7f0000000240)="b9800000c00f3235010000000f300f0118b949080000b80c000000ba000000000f309a00000080980067362e6736260f73f013b8010000000f01c166baa100f3aff3ae66baf80cb8aef3278bef66bafc0cecc7442400b88b0000cf44240250ae0000c744240600000000c4c2419813", 0x6f}], 0x1, 0x49, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 1.776665658s ago: executing program 3 (id=660): r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x1802, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0) write$binfmt_script(r3, &(0x7f0000000000), 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r3, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x4400c800) close_range(r0, 0xffffffffffffffff, 0x0) 1.548916776s ago: executing program 1 (id=669): r0 = socket$packet(0x11, 0x2, 0x300) socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) getpeername$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14) sendmmsg(r0, &(0x7f0000005d40)=[{{&(0x7f0000000180)=@can={0x1d, r2}, 0x80, 0x0}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0) 1.50322633s ago: executing program 1 (id=670): r0 = socket$key(0xf, 0x3, 0x2) sendmsg(r0, &(0x7f0000004200)={0x0, 0x0, &(0x7f0000003dc0)=[{&(0x7f0000003c00)="ebea", 0x2}], 0x1}, 0x4000) 1.396220869s ago: executing program 1 (id=672): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) setsockopt$bt_BT_POWER(r1, 0x112, 0x9, &(0x7f0000000000)=0x90, 0x1) 1.210903693s ago: executing program 1 (id=674): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) socket$nl_xfrm(0x10, 0x3, 0x6) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r3 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x802, 0x0) ioctl$UI_SET_EVBIT(r3, 0x40045564, 0x14) ioctl$UI_DEV_SETUP(r3, 0x405c5503, &(0x7f0000000480)={{0x4, 0x0, 0xfffc, 0x805}, 'syz0\x00', 0x40}) ioctl$UI_DEV_CREATE(r3, 0x5501) 670.871246ms ago: executing program 3 (id=680): openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000180), 0x101, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000780), 0x0, 0x0) pselect6(0x40, &(0x7f0000000240)={0x2, 0x0, 0x7, 0x3, 0x3, 0x0, 0x100, 0x5}, &(0x7f00000000c0)={0x1d, 0xfffffffffffffffe, 0x40, 0x7eff, 0x0, 0x1, 0x0, 0x8}, 0x0, 0x0, 0x0) 663.319477ms ago: executing program 2 (id=682): r0 = syz_open_dev$loop(&(0x7f0000000000), 0x5, 0x40000) ioctl$BLKPG(r0, 0x1269, &(0x7f0000000100)={0x1, 0x0, 0x98, &(0x7f0000000040)={0x8000000000000001, 0xffff, 0x7}}) 642.315539ms ago: executing program 2 (id=683): r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002}) r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000180)=[@increfs], 0x0, 0x0, 0x0}) r2 = dup3(r1, r0, 0x0) r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x802, 0x0) mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x10000000000) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0xb}) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0}) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000100)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x70, 0x18, &(0x7f0000000800)={@ptr={0x70742a85, 0x0, 0x0, 0x0, 0x0, 0x22}, @ptr={0x70742a85, 0x0, &(0x7f0000000900)=""/206, 0xce, 0x2, 0xffffffffffffffff}, @fda={0x66646185, 0x5, 0x1, 0x5}}, &(0x7f0000000240)={0x0, 0x28, 0x50}}, 0x1000}], 0x0, 0x0, 0x0}) 587.008563ms ago: executing program 0 (id=684): unshare(0x4000400) r0 = socket$netlink(0x10, 0x3, 0x0) flistxattr(r0, 0x0, 0x0) 586.852773ms ago: executing program 0 (id=685): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) add_key$fscrypt_v1(0x0, &(0x7f0000000080)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed5d59300"}, 0x48, 0xffffffffffffffff) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = dup(r1) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil}) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000001c0)=[@text32={0x20, 0x0}], 0x1, 0x68, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 586.745923ms ago: executing program 2 (id=686): syz_usb_connect(0x2, 0x2d, &(0x7f0000000ec0)=ANY=[@ANYBLOB="12011001e49cc620570bc208f9010102030109021b00010de63f050904d705010301028b09"], 0x0) 586.635643ms ago: executing program 0 (id=687): mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff) setsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0x67, 0x0, 0x0) syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff) r0 = socket$tipc(0x1e, 0x5, 0x0) setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10) r1 = syz_usb_connect$hid(0x5, 0x3f, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000000204f045db600000000000109022d00010000600209040010050300010009210000360122050009058103"], 0x0) syz_usb_control_io(r1, 0x0, 0x0) syz_usb_control_io(r1, &(0x7f0000000380)={0x18, &(0x7f0000000100)=ANY=[@ANYBLOB="000457"], 0x0, 0x0, 0x0, 0x0}, 0x0) 87.919603ms ago: executing program 1 (id=688): r0 = socket$inet6(0xa, 0x3, 0x5) sendmmsg(r0, &(0x7f0000001500)=[{{&(0x7f0000000180)=@l2tp6={0xa, 0x500, 0x80000, @remote, 0x0, 0x3}, 0x80, 0x0}, 0x5b4}, {{&(0x7f0000000040)=@l2tp6={0xa, 0x0, 0x7080000, @ipv4={'\x00', '\xff\xff', @loopback}, 0x7, 0x1}, 0x80, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="08010000000000002900000002"], 0x108}}], 0x2, 0xc040) 67.417815ms ago: executing program 2 (id=689): r0 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000240), 0x48201, 0x0) writev(r0, &(0x7f0000000400)=[{&(0x7f0000000580)="8736bb2c", 0x4}], 0x1) 19.117149ms ago: executing program 0 (id=690): r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000000080)=0x2, 0x4) setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000140)=@req3={0x1000, 0x3a, 0x4, 0x3a, 0x7ff, 0xf80, 0x7}, 0x1c) 18.874429ms ago: executing program 2 (id=691): r0 = socket$inet6(0xa, 0x802, 0x0) setsockopt$inet6_buf(r0, 0x29, 0x39, &(0x7f0000000040)="ff02040000ffffffffffffffff1f2be82db1af0000000000", 0x18) setsockopt$inet6_opts(r0, 0x29, 0x37, &(0x7f0000000000)=ANY=[@ANYBLOB="00020401"], 0x18) sendmmsg$inet6(r0, &(0x7f0000000780)=[{{&(0x7f0000000180)={0xa, 0x4e23, 0xfcc, @ipv4={'\x00', '\xff\xff', @multicast2}, 0x90e}, 0x1c, &(0x7f0000000580)=[{&(0x7f0000000480)="273000eb6d826fb53e55eb60a39295634e8d2eb4e2736b8bf4ab5d3bb0367a75bceaaa8437e748eb6e9a42f315fbd50d6d1d5c1b696682c3b4e1492beb344270c86c35edeb58b9d069bb243ce6d704552b1ebf7c918a468434044851f277dc532d306e1a642d032bae87a5275332a16b4edf593f58ea1234c785854325fcc0dfc544944ebe494cd6489b1af5881407891858cfb5ccbbb23ac3ff", 0x9a}, {&(0x7f0000000540)="2c1dfa97341ff8318b02e3cf8c93", 0xe}], 0x2, &(0x7f00000005c0)=[@rthdr={{0x48, 0x29, 0x39, {0x2f, 0x6, 0x0, 0x6, 0x0, [@private0, @mcast2, @empty]}}}, @hoplimit_2292={{0x14, 0x29, 0x8, 0x400}}, @dstopts_2292={{0x70, 0x29, 0x4, {0x87, 0xa, '\x00', [@enc_lim={0x4, 0x1, 0x6}, @pad1, @calipso={0x7, 0x48, {0x3, 0x10, 0x2, 0x1000, [0x78, 0x7, 0x3, 0xfff, 0x2, 0x4, 0x7, 0x2]}}, @enc_lim={0x4, 0x1, 0x6}, @enc_lim={0x4, 0x1, 0x6}]}}}], 0xd0}}], 0x1, 0xc080) 18.763579ms ago: executing program 1 (id=692): syz_usb_connect$hid(0x4, 0x0, 0x0, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x0, 0x0}]}) r0 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r0, &(0x7f0000000380)={0xa, 0x14e24, 0x0, @empty}, 0x1c) recvmmsg(r0, &(0x7f0000000000)=[{{0x0, 0x22, 0x0}, 0x80000000}], 0x1c284f836fac35b, 0x0, 0x0) connect$inet6(r0, &(0x7f0000000200)={0xa, 0x4e24, 0x0, @empty}, 0x1c) sendmmsg(r0, &(0x7f00000092c0), 0x4ff, 0x0) 18.720019ms ago: executing program 0 (id=693): r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="1400000042000501"], 0x14}, 0x1, 0x0, 0x0, 0x4024854}, 0x4) recvmmsg(r0, &(0x7f0000002ac0)=[{{0x0, 0x0, &(0x7f0000001600)=[{&(0x7f0000000040)=""/48, 0x30}, {&(0x7f0000000080)=""/251, 0xfb}, {&(0x7f0000000180)=""/14, 0xe}, {&(0x7f00000001c0)=""/64, 0x40}, {&(0x7f00000002c0)=""/247, 0xf7}, {&(0x7f00000003c0)=""/4096, 0x1000}, {&(0x7f0000001500)=""/198, 0xc6}], 0x7}, 0x12}], 0x1, 0x2, 0x0) 4.76885ms ago: executing program 0 (id=694): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) pwrite64(r0, &(0x7f00000000c0)='a', 0x200000c1, 0x9000) fcntl$addseals(r0, 0x409, 0x0) 0s ago: executing program 2 (id=695): mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0) mount$incfs(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='rlog_pages=0000000000000006553']) kernel console output (not intermixed with test programs): ket permissive=1 [ 43.680288][ T31] usb 1-1: new high-speed USB device number 11 using dummy_hcd [ 43.680575][ T1063] overlayfs: failed to clone upperpath [ 43.720483][ T1063] netlink: 8 bytes leftover after parsing attributes in process `syz.3.192'. [ 43.830275][ T31] usb 1-1: device descriptor read/64, error -71 [ 43.836631][ T36] audit: type=1400 audit(1755425717.126:323): avc: denied { create } for pid=1059 comm="syz.1.191" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 43.968890][ T1060] 9pnet_fd: Insufficient options for proto=fd [ 44.090369][ T31] usb 1-1: device descriptor read/64, error -71 [ 44.330294][ T31] usb 1-1: new high-speed USB device number 12 using dummy_hcd [ 44.460301][ T31] usb 1-1: device descriptor read/64, error -71 [ 44.547993][ T1083] syz.2.198 uses obsolete (PF_INET,SOCK_PACKET) [ 44.573950][ T1085] tmpfs: Bad value for 'uid' [ 44.578648][ T1085] tmpfs: Bad value for 'uid' [ 44.700297][ T31] usb 1-1: device descriptor read/64, error -71 [ 44.810453][ T31] usb usb1-port1: attempt power cycle [ 44.905000][ T1114] fuse: Bad value for 'fd' [ 44.921719][ T1116] overlayfs: failed to clone upperpath [ 44.941043][ T1118] netlink: 'syz.2.212': attribute type 10 has an invalid length. [ 45.021254][ T1137] overlayfs: failed to clone upperpath [ 45.150311][ T31] usb 1-1: new high-speed USB device number 13 using dummy_hcd [ 45.171266][ T31] usb 1-1: device descriptor read/8, error -71 [ 45.301326][ T31] usb 1-1: device descriptor read/8, error -71 [ 45.540297][ T31] usb 1-1: new high-speed USB device number 14 using dummy_hcd [ 45.563755][ T31] usb 1-1: device descriptor read/8, error -71 [ 45.598281][ T1146] overlayfs: failed to clone upperpath [ 45.703623][ T31] usb 1-1: device descriptor read/8, error -71 [ 45.750012][ T1165] binder: Bad value for 'stats' [ 45.810402][ T31] usb usb1-port1: unable to enumerate USB device [ 46.070283][ T31] usb 2-1: new high-speed USB device number 8 using dummy_hcd [ 46.230268][ T31] usb 2-1: Using ep0 maxpacket: 32 [ 46.236850][ T31] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x9 has an invalid bInterval 128, changing to 11 [ 46.248404][ T31] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0 [ 46.258462][ T31] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xB7, changing to 0x87 [ 46.270431][ T31] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7 [ 46.283420][ T31] usb 2-1: New USB device found, idVendor=0e6f, idProduct=582c, bcdDevice=31.68 [ 46.292964][ T31] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 46.301283][ T31] usb 2-1: Product: syz [ 46.305739][ T31] usb 2-1: Manufacturer: syz [ 46.310658][ T31] usb 2-1: SerialNumber: syz [ 46.324978][ T31] usb 2-1: config 0 descriptor?? [ 46.332665][ T31] input: Generic X-Box pad as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/input/input6 [ 46.345501][ T95] xpad 2-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90 [ 46.364176][ T95] xpad 2-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90 [ 46.374768][ T336] xpad 2-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90 [ 46.411036][ T95] xpad 2-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90 [ 46.438653][ T95] xpad 2-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90 [ 46.457053][ T1172] netlink: 24 bytes leftover after parsing attributes in process `syz.0.231'. [ 46.651506][ T331] usb 2-1: USB disconnect, device number 8 [ 46.736755][ T46] Bluetooth: hci0: Frame reassembly failed (-84) [ 47.123277][ T1212] 2N: renamed from vcan0 (while UP) [ 47.203142][ T1230] overlayfs: failed to clone upperpath [ 47.219670][ T1237] overlayfs: failed to clone upperpath [ 47.420289][ T31] usb 2-1: new high-speed USB device number 9 using dummy_hcd [ 47.570301][ T31] usb 2-1: Using ep0 maxpacket: 32 [ 47.576469][ T1271] netlink: 'syz.3.262': attribute type 4 has an invalid length. [ 47.577078][ T31] usb 2-1: unable to get BOS descriptor or descriptor too short [ 47.584172][ T1271] netlink: 17 bytes leftover after parsing attributes in process `syz.3.262'. [ 47.592840][ T31] usb 2-1: config 64 has too many interfaces: 42, using maximum allowed: 32 [ 47.609543][ T31] usb 2-1: config 64 has an invalid descriptor of length 166, skipping remainder of the config [ 47.620125][ T31] usb 2-1: config 64 has 0 interfaces, different from the descriptor's value: 42 [ 47.631298][ T31] usb 2-1: New USB device found, idVendor=0421, idProduct=01d4, bcdDevice=9a.31 [ 47.640716][ T31] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 47.648758][ T31] usb 2-1: Product: syz [ 47.653254][ T31] usb 2-1: Manufacturer: syz [ 47.657878][ T31] usb 2-1: SerialNumber: syz [ 47.869484][ T1224] binder: Unknown parameter 'st–-zØ„vâyú9Çå}' [ 47.878757][ T31] usb 2-1: USB disconnect, device number 9 [ 48.391754][ T36] kauditd_printk_skb: 23 callbacks suppressed [ 48.391773][ T36] audit: type=1400 audit(1755425721.686:347): avc: denied { append } for pid=1277 comm="syz.1.265" name="ashmem" dev="devtmpfs" ino=201 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 48.489673][ T1281] syzkaller0: entered allmulticast mode [ 48.595397][ T36] audit: type=1400 audit(1755425721.886:348): avc: denied { watch } for pid=1282 comm="syz.1.267" path="/45/control" dev="tmpfs" ino=257 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1 [ 48.760289][ T53] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 48.760324][ T644] Bluetooth: hci0: command 0x1003 tx timeout [ 48.840349][ T331] usb 2-1: new high-speed USB device number 10 using dummy_hcd [ 48.991342][ T331] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 49.001621][ T331] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 49.011199][ T331] usb 2-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00 [ 49.020332][ T331] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 49.028315][ T331] usb 2-1: SerialNumber: syz [ 49.240385][ T331] usb 2-1: 0:2 : does not exist [ 49.245446][ T331] usb 2-1: unit 5: unexpected type 0x0c [ 49.252928][ T331] usb 2-1: USB disconnect, device number 10 [ 49.278091][ T336] udevd[336]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory [ 49.631096][ T36] audit: type=1326 audit(1755425722.926:349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1285 comm="syz.0.268" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fe02898ebe9 code=0x0 [ 49.820940][ T1290] rust_binder: Write failure EINVAL in pid:145 [ 50.473565][ T1299] capability: warning: `syz.2.272' uses 32-bit capabilities (legacy support in use) [ 50.628090][ T1328] rust_binder: BINDER_SET_CONTEXT_MGR already set [ 50.628828][ T1328] rust_binder: Failed to allocate buffer. len:1136, is_oneway:true [ 50.646945][ T36] audit: type=1400 audit(1755425723.936:350): avc: denied { map } for pid=1331 comm="syz.2.285" path="socket:[8628]" dev="sockfs" ino=8628 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tcp_socket permissive=1 [ 50.695567][ T36] audit: type=1400 audit(1755425723.986:351): avc: denied { ioctl } for pid=1335 comm="syz.1.286" path="/dev/ppp" dev="devtmpfs" ino=86 ioctlcmd=0x743e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1 [ 50.785790][ T36] audit: type=1400 audit(1755425724.076:352): avc: denied { bind } for pid=1332 comm="syz.0.284" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 50.806002][ T36] audit: type=1400 audit(1755425724.076:353): avc: denied { listen } for pid=1332 comm="syz.0.284" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 50.837956][ T1359] rust_binder: Read failure Err(EAGAIN) in pid:127 [ 50.839383][ T1359] overlayfs: conflicting lowerdir path [ 50.839755][ T1358] 9pnet_fd: Insufficient options for proto=fd [ 50.847018][ T1357] overlay: Bad value for 'metacopy' [ 50.852095][ T36] audit: type=1400 audit(1755425724.126:354): avc: denied { ioctl } for pid=1354 comm="syz.3.293" path="socket:[8665]" dev="sockfs" ino=8665 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1 [ 50.921353][ T36] audit: type=1400 audit(1755425724.216:355): avc: denied { setopt } for pid=1361 comm="syz.3.297" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 50.948629][ T1367] can0: slcan on ptm0. [ 51.012881][ T1374] can0 (unregistered): slcan off ptm0. [ 51.198267][ T36] audit: type=1400 audit(1755425724.486:356): avc: denied { map } for pid=1410 comm="syz.0.302" path="socket:[8760]" dev="sockfs" ino=8760 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 51.455043][ T1417] overlayfs: failed to clone upperpath [ 51.462194][ T1417] overlayfs: failed to resolve './file0': -2 [ 51.924693][ T1433] overlayfs: failed to clone upperpath [ 52.048514][ T1450] syz.3.315 (1450): attempted to duplicate a private mapping with mremap. This is not supported. [ 52.156975][ T1471] overlayfs: failed to clone upperpath [ 52.173767][ T1473] overlayfs: failed to resolve './file1': -2 [ 52.595416][ T1487] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22 [ 52.617213][ T1490] overlayfs: failed to resolve './file1': -2 [ 52.637570][ T1495] netlink: 'syz.2.332': attribute type 16 has an invalid length. [ 52.645355][ T1495] netlink: 64138 bytes leftover after parsing attributes in process `syz.2.332'. [ 52.679917][ T1497] netlink: 96 bytes leftover after parsing attributes in process `syz.2.333'. [ 52.716635][ T1502] overlayfs: failed to clone lowerpath [ 53.484589][ T1562] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=64 sclass=netlink_route_socket pid=1562 comm=syz.2.345 [ 53.485765][ T1561] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=64 sclass=netlink_route_socket pid=1561 comm=syz.2.345 [ 54.497775][ T36] kauditd_printk_skb: 6 callbacks suppressed [ 54.497793][ T36] audit: type=1400 audit(1755425728.791:363): avc: denied { create } for pid=1574 comm="syz.2.348" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1 [ 54.536475][ T1577] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL } [ 54.536513][ T1577] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:145 [ 54.768670][ T36] audit: type=1400 audit(1755425729.061:364): avc: denied { mount } for pid=1590 comm="syz.0.355" name="/" dev="devpts" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1 [ 54.809316][ T36] audit: type=1400 audit(1755425729.101:365): avc: denied { unmount } for pid=292 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1 [ 55.644424][ T1623] /dev/loop0: Can't lookup blockdev [ 55.688103][ T36] audit: type=1400 audit(1755425729.981:366): avc: denied { create } for pid=1622 comm="syz.3.363" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1 [ 55.790613][ T1628] 9pnet: Could not find request transport: fÞY£¢dne½0x0000000000000004 [ 55.847421][ T36] audit: type=1400 audit(1755425730.141:367): avc: denied { bind } for pid=1632 comm="syz.0.368" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 55.945185][ T36] audit: type=1400 audit(1755425730.241:368): avc: denied { ioctl } for pid=1632 comm="syz.0.368" path="socket:[9089]" dev="sockfs" ino=9089 ioctlcmd=0x5410 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 55.945246][ T1636] rust_binder: BC_FREEZE_NOTIFICATION_DONE 0000000000000001 not found [ 56.054789][ T1636] rust_binder: Write failure EINVAL in pid:168 [ 56.717954][ T36] audit: type=1400 audit(1755425731.011:369): avc: denied { getopt } for pid=1652 comm="syz.2.373" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 57.132932][ T1667] rust_binder: BINDER_SET_CONTEXT_MGR already set [ 57.133217][ T1667] rust_binder: 1666 RLIMIT_NICE not set [ 57.790283][ T85] usb 2-1: new high-speed USB device number 11 using dummy_hcd [ 57.894536][ T36] audit: type=1400 audit(1755425732.191:370): avc: denied { mount } for pid=1684 comm="syz.3.384" name="/" dev="configfs" ino=2382 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1 [ 57.926640][ T36] audit: type=1400 audit(1755425732.221:371): avc: denied { search } for pid=1684 comm="syz.3.384" name="/" dev="configfs" ino=2382 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1 [ 57.953401][ T36] audit: type=1400 audit(1755425732.221:372): avc: denied { read } for pid=1684 comm="syz.3.384" name="/" dev="configfs" ino=2382 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1 [ 57.982137][ T85] usb 2-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33 [ 57.996956][ T85] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 58.006284][ T85] usb 2-1: config 0 descriptor?? [ 58.095431][ T1695] binder: Bad value for 'max' [ 58.215780][ T1675] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 58.225561][ T1675] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 58.235610][ T1675] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 58.250794][ T1675] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 58.260821][ T1675] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 58.279515][ T1675] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 58.289948][ T1675] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 58.299452][ T1675] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 58.308769][ T1675] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 58.318051][ T1675] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 58.333331][ T85] usb 2-1: Cannot read MAC address [ 58.338556][ T85] MOSCHIP usb-ethernet driver 2-1:0.0: probe with driver MOSCHIP usb-ethernet driver failed with error -71 [ 58.355285][ T85] usb 2-1: USB disconnect, device number 11 [ 58.959995][ T1726] rust_binder: Write failure EFAULT in pid:201 [ 58.960070][ T1726] rust_binder: Write failure EFAULT in pid:201 [ 59.189263][ T1729] tipc: Enabling of bearer rejected, failed to enable media [ 59.240442][ T293] Bluetooth: hci0: Frame reassembly failed (-84) [ 59.580172][ T290] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 59.660441][ T290] CPU: 0 UID: 0 PID: 290 Comm: syz-executor Not tainted 6.12.38-syzkaller-g3f3a5c5e782d #0 c9247809a66a5ebb3467d1c2e99b1dedbd707993 [ 59.660482][ T290] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 59.660503][ T290] Call Trace: [ 59.660511][ T290] [ 59.660519][ T290] __dump_stack+0x21/0x30 [ 59.660556][ T290] dump_stack_lvl+0x10c/0x190 [ 59.660583][ T290] ? __cfi_dump_stack_lvl+0x10/0x10 [ 59.660613][ T290] dump_stack+0x19/0x20 [ 59.660638][ T290] dump_header+0xd7/0x490 [ 59.660659][ T290] ? __cfi_mem_cgroup_get_max+0x10/0x10 [ 59.660686][ T290] oom_kill_process+0x4c0/0x7e0 [ 59.660711][ T290] ? sched_clock_cpu+0x75/0x400 [ 59.660739][ T290] out_of_memory+0x7ee/0xbd0 [ 59.660765][ T290] ? __cfi_out_of_memory+0x10/0x10 [ 59.660788][ T290] ? mutex_lock_killable+0x92/0x1c0 [ 59.660820][ T290] ? __cfi_mutex_lock_killable+0x10/0x10 [ 59.660855][ T290] mem_cgroup_out_of_memory+0x279/0x350 [ 59.660876][ T290] ? drain_obj_stock+0xed0/0xed0 [ 59.660897][ T290] ? memcg1_oom_prepare+0x2c6/0x3a0 [ 59.660930][ T290] try_charge_memcg+0x8f7/0xde0 [ 59.660966][ T290] ? gfp_to_alloc_flags_cma+0x90/0x1c0 [ 59.660999][ T290] ? __cfi_try_charge_memcg+0x10/0x10 [ 59.661029][ T290] ? __alloc_pages_noprof+0x31f/0x7b0 [ 59.661069][ T290] __mem_cgroup_charge+0xf6/0x410 [ 59.661098][ T290] ? filemap_get_entry+0x3fb/0x460 [ 59.661122][ T290] ? __cfi___mem_cgroup_charge+0x10/0x10 [ 59.661160][ T290] filemap_add_folio+0x57/0x2d0 [ 59.661183][ T290] __filemap_get_folio+0x597/0x9d0 [ 59.661209][ T290] ? __cfi___filemap_get_folio+0x10/0x10 [ 59.661234][ T290] ? filemap_fault_recheck_pte_none+0x78/0x250 [ 59.661266][ T290] filemap_fault+0xb41/0x16b0 [ 59.661311][ T290] ? __cfi_filemap_fault+0x10/0x10 [ 59.661357][ T290] ? __cfi_filemap_map_pages+0x10/0x10 [ 59.661386][ T290] ? __switch_to_asm+0x3d/0x70 [ 59.661419][ T290] ? __schedule+0x132a/0x1df0 [ 59.661448][ T290] do_pte_missing+0x298f/0x4240 [ 59.661475][ T290] ? __sched_text_start+0x10/0x10 [ 59.661503][ T290] ? enqueue_hrtimer+0x12f/0x2e0 [ 59.661530][ T290] ? pte_marker_clear+0x1b0/0x1b0 [ 59.661554][ T290] ? __kasan_check_write+0x18/0x20 [ 59.661586][ T290] ? _raw_spin_lock_irqsave+0xaf/0x150 [ 59.661613][ T290] ? __cfi__raw_spin_lock_irqsave+0x10/0x10 [ 59.661641][ T290] ? __pte_offset_map+0x1b0/0x230 [ 59.661671][ T290] ? pte_offset_map_rw_nolock+0xba/0x110 [ 59.661703][ T290] handle_mm_fault+0x1166/0x1b90 [ 59.661728][ T290] ? __cfi_handle_mm_fault+0x10/0x10 [ 59.661749][ T290] ? lock_vma_under_rcu+0x49d/0x530 [ 59.661775][ T290] ? __cfi___x64_sys_wait4+0x10/0x10 [ 59.661806][ T290] do_user_addr_fault+0x96c/0x1200 [ 59.661841][ T290] exc_page_fault+0x59/0xc0 [ 59.661860][ T290] asm_exc_page_fault+0x2b/0x30 [ 59.661893][ T290] RIP: 0033:0x7f4243465c24 [ 59.661920][ T290] Code: 85 ed 09 00 00 48 b8 db 34 b6 d7 82 de 1b 43 48 f7 a4 24 98 00 00 00 48 8b 05 78 fb e7 00 48 69 8c 24 90 00 00 00 e8 03 00 00 <8b> 78 08 48 8b 44 24 18 48 c1 ea 12 4c 8b 0d 89 fa e7 00 48 01 d1 [ 59.661939][ T290] RSP: 002b:00007ffd9443ad60 EFLAGS: 00010206 [ 59.661968][ T290] RAX: 0000001b2ec24000 RBX: 0000000000000198 RCX: 000000000000e678 [ 59.661984][ T290] RDX: 00000000078abc80 RSI: 00007ffd9443adf0 RDI: 0000000000000001 [ 59.661999][ T290] RBP: 00007ffd9443ad9c R08: 000000001cc52cb3 R09: 7fffffffffffffff [ 59.662015][ T290] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000001388 [ 59.662029][ T290] R13: 00000000000927c0 R14: 000000000000e721 R15: 00007ffd9443adf0 [ 59.662047][ T290] [ 59.662082][ T290] memory: usage 307196kB, limit 307200kB, failcnt 28118 [ 60.012962][ T290] memory+swap: usage 432196kB, limit 9007199254740988kB, failcnt 0 [ 60.021381][ T290] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 60.028446][ T290] Memory cgroup stats for /syz3: [ 60.028596][ T290] cache 309501952 [ 60.037530][ T290] rss 5070848 [ 60.041003][ T290] rss_huge 4194304 [ 60.044724][ T290] shmem 309465088 [ 60.048387][ T290] mapped_file 0 [ 60.052214][ T290] dirty 0 [ 60.055194][ T290] writeback 0 [ 60.058489][ T290] workingset_refault_anon 16 [ 60.063441][ T290] workingset_refault_file 7334 [ 60.068229][ T290] swap 127995904 [ 60.071995][ T290] swapcached 0 [ 60.075664][ T290] pgpgin 168696 [ 60.079146][ T290] pgpgout 93429 [ 60.082911][ T290] pgfault 31498 [ 60.086450][ T290] pgmajfault 287 [ 60.090015][ T290] inactive_anon 155021312 [ 60.094716][ T290] active_anon 159514624 [ 60.098943][ T290] inactive_file 0 [ 60.102839][ T290] active_file 36864 [ 60.106743][ T290] unevictable 0 [ 60.110467][ T290] hierarchical_memory_limit 314572800 [ 60.115877][ T290] hierarchical_memsw_limit 9223372036854771712 [ 60.122372][ T290] total_cache 309501952 [ 60.126889][ T290] total_rss 5070848 [ 60.130779][ T290] total_rss_huge 4194304 [ 60.135034][ T290] total_shmem 309465088 [ 60.139204][ T290] total_mapped_file 0 [ 60.143231][ T290] total_dirty 0 [ 60.146794][ T290] total_writeback 0 [ 60.150658][ T290] total_workingset_refault_anon 16 [ 60.155772][ T290] total_workingset_refault_file 7334 [ 60.161095][ T290] total_swap 127995904 [ 60.165169][ T290] total_swapcached 0 [ 60.169050][ T290] total_pgpgin 168696 [ 60.173052][ T290] total_pgpgout 93429 [ 60.177070][ T290] total_pgfault 31498 [ 60.181093][ T290] total_pgmajfault 287 [ 60.185176][ T290] total_inactive_anon 155021312 [ 60.190050][ T290] total_active_anon 159514624 [ 60.194747][ T290] total_inactive_file 0 [ 60.198900][ T290] total_active_file 36864 [ 60.203316][ T290] total_unevictable 0 [ 60.207302][ T290] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.337,pid=1526,uid=0 [ 60.222369][ T290] Memory cgroup out of memory: Killed process 1526 (syz.3.337) total-vm:90104kB, anon-rss:5812kB, file-rss:22028kB, shmem-rss:0kB, UID:0 pgtables:156kB oom_score_adj:0 [ 60.275191][ T1753] can0: slcan on ptm1. [ 60.342700][ T1747] netlink: 20 bytes leftover after parsing attributes in process `syz.2.407'. [ 60.530275][ T478] usb 2-1: new low-speed USB device number 12 using dummy_hcd [ 60.681317][ T478] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 60.691502][ T478] usb 2-1: config 0 has no interfaces? [ 60.696997][ T478] usb 2-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb [ 60.711063][ T478] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 60.730697][ T478] usb 2-1: config 0 descriptor?? [ 60.820033][ T1517] syz.3.337 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0 [ 60.887023][ T1773] fuse: Unknown parameter 'fd8<¹¡°­ÙM' [ 60.952936][ T478] usb 2-1: USB disconnect, device number 12 [ 60.970258][ T1517] CPU: 1 UID: 0 PID: 1517 Comm: syz.3.337 Not tainted 6.12.38-syzkaller-g3f3a5c5e782d #0 c9247809a66a5ebb3467d1c2e99b1dedbd707993 [ 60.970292][ T1517] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 60.970306][ T1517] Call Trace: [ 60.970313][ T1517] [ 60.970322][ T1517] __dump_stack+0x21/0x30 [ 60.970357][ T1517] dump_stack_lvl+0x10c/0x190 [ 60.970386][ T1517] ? __cfi_dump_stack_lvl+0x10/0x10 [ 60.970414][ T1517] ? ___ratelimit+0x3f7/0x5a0 [ 60.970445][ T1517] dump_stack+0x19/0x20 [ 60.970472][ T1517] dump_header+0xd7/0x490 [ 60.970493][ T1517] ? __cfi_mem_cgroup_get_max+0x10/0x10 [ 60.970522][ T1517] oom_kill_process+0x4c0/0x7e0 [ 60.970547][ T1517] ? sched_clock_cpu+0x75/0x400 [ 60.970576][ T1517] out_of_memory+0x7ee/0xbd0 [ 60.970607][ T1517] ? __cfi_out_of_memory+0x10/0x10 [ 60.970631][ T1517] ? mutex_lock_killable+0x92/0x1c0 [ 60.970664][ T1517] ? __cfi_mutex_lock_killable+0x10/0x10 [ 60.970699][ T1517] mem_cgroup_out_of_memory+0x279/0x350 [ 60.970720][ T1517] ? drain_obj_stock+0xed0/0xed0 [ 60.970742][ T1517] ? memcg1_oom_prepare+0x2c6/0x3a0 [ 60.970777][ T1517] try_charge_memcg+0x8f7/0xde0 [ 60.970806][ T1517] ? __cfi_try_charge_memcg+0x10/0x10 [ 60.970834][ T1517] ? __alloc_pages_noprof+0x31f/0x7b0 [ 60.970863][ T1517] ? folio_unlock+0x12f/0x1a0 [ 60.970887][ T1517] ? __cfi___alloc_pages_noprof+0x10/0x10 [ 60.970916][ T1517] __mem_cgroup_charge+0xf6/0x410 [ 60.970948][ T1517] ? __cfi___mem_cgroup_charge+0x10/0x10 [ 60.970979][ T1517] ? do_pte_missing+0x2bdb/0x4240 [ 60.971005][ T1517] shmem_alloc_and_add_folio+0x86d/0x1050 [ 60.971032][ T1517] ? put_swap_device+0x130/0x130 [ 60.971055][ T1517] ? shmem_huge_global_enabled+0x2da/0x360 [ 60.971078][ T1517] ? shmem_allowable_huge_orders+0x1f7/0x430 [ 60.971099][ T1517] ? __kasan_check_write+0x18/0x20 [ 60.971130][ T1517] ? _raw_spin_lock+0x8c/0x120 [ 60.971156][ T1517] shmem_get_folio_gfp+0x5f0/0x1380 [ 60.971181][ T1517] ? shmem_get_folio+0xc0/0xc0 [ 60.971200][ T1517] ? follow_page_pte+0xa5c/0xb90 [ 60.971227][ T1517] ? inode_to_bdi+0x6d/0x100 [ 60.971260][ T1517] shmem_write_begin+0xf4/0x270 [ 60.971285][ T1517] generic_perform_write+0x32d/0x960 [ 60.971317][ T1517] ? __cfi_generic_perform_write+0x10/0x10 [ 60.971346][ T1517] ? down_write+0xe9/0x2a0 [ 60.971367][ T1517] ? file_update_time+0xa3/0x220 [ 60.971396][ T1517] shmem_file_write_iter+0x105/0x130 [ 60.971423][ T1517] ? __cfi_shmem_file_write_iter+0x10/0x10 [ 60.971450][ T1517] __kernel_write_iter+0x392/0x830 [ 60.971483][ T1517] ? __cfi_shmem_file_write_iter+0x10/0x10 [ 60.971510][ T1517] ? __cfi___kernel_write_iter+0x10/0x10 [ 60.971542][ T1517] ? get_dump_page+0x160/0x220 [ 60.971568][ T1517] ? __asan_memset+0x39/0x50 [ 60.971604][ T1517] ? iov_iter_bvec+0xc0/0x180 [ 60.971629][ T1517] dump_user_range+0xb06/0xdf0 [ 60.971662][ T1517] ? __cfi_dump_emit+0x10/0x10 [ 60.971693][ T1517] ? __cfi_dump_user_range+0x10/0x10 [ 60.971727][ T1517] ? elf_coredump_extra_notes_write+0x42f/0x4c0 [ 60.971758][ T1517] ? __cfi_elf_coredump_extra_notes_write+0x10/0x10 [ 60.971790][ T1517] elf_core_dump+0x2cd9/0x3810 [ 60.971820][ T1517] ? __cfi_elf_core_dump+0x10/0x10 [ 60.971853][ T1517] ? dump_interrupted+0xf0/0xf0 [ 60.971883][ T1517] ? filp_open+0x182/0x1d0 [ 60.971909][ T1517] ? 0xffffffffff600000 [ 60.971927][ T1517] do_coredump+0x1bfa/0x2bd0 [ 60.971962][ T1517] ? __cfi_do_coredump+0x10/0x10 [ 60.971993][ T1517] ? asm_exc_general_protection+0x2b/0x30 [ 60.972036][ T1517] ? __kasan_slab_free+0x6a/0x80 [ 60.972058][ T1517] ? kmem_cache_free+0x1c1/0x510 [ 60.972091][ T1517] ? get_signal+0xa75/0x14f0 [ 60.972119][ T1517] get_signal+0x11fd/0x14f0 [ 60.972150][ T1517] arch_do_signal_or_restart+0x96/0x720 [ 60.972184][ T1517] ? __cfi_arch_do_signal_or_restart+0x10/0x10 [ 60.972218][ T1517] ? fixup_iopl_exception+0xdd/0x2e0 [ 60.972253][ T1517] irqentry_exit_to_user_mode+0x4e/0xb0 [ 60.972276][ T1517] irqentry_exit+0x16/0x60 [ 60.972297][ T1517] exc_general_protection+0x15a/0x1f0 [ 60.972327][ T1517] ? fpregs_assert_state_consistent+0xb7/0xe0 [ 60.972357][ T1517] asm_exc_general_protection+0x2b/0x30 [ 60.972389][ T1517] RIP: 0033:0x7f424358ebf1 [ 60.972407][ T1517] Code: 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f [ 60.972425][ T1517] RSP: 002b:0000200000000420 EFLAGS: 00010217 [ 60.972446][ T1517] RAX: 0000000000000000 RBX: 00007f42437b6090 RCX: 00007f424358ebe9 [ 60.972462][ T1517] RDX: 0000200000000440 RSI: 0000200000000420 RDI: 0000000002000080 [ 60.972478][ T1517] RBP: 00007f4243611e19 R08: 00002000000004c0 R09: 00002000000004c0 [ 60.972494][ T1517] R10: 0000200000000480 R11: 0000000000000202 R12: 0000000000000000 [ 60.972509][ T1517] R13: 00007f42437b6128 R14: 00007f42437b6090 R15: 00007ffd9443a9d8 [ 60.972529][ T1517] [ 60.972537][ T1517] memory: usage 303268kB, limit 307200kB, failcnt 32624 [ 61.330293][ T1189] Bluetooth: hci0: command 0x1003 tx timeout [ 61.335604][ T1517] memory+swap: usage 431724kB, limit 9007199254740988kB, failcnt 0 [ 61.345194][ T1284] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 61.346668][ T1517] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 61.482462][ T1753] can0 (unregistered): slcan off ptm1. [ 61.641513][ T1517] Memory cgroup stats for /syz3: [ 61.641676][ T1517] cache 308531200 [ 61.689496][ T1517] rss 5070848 [ 61.717649][ T1517] rss_huge 4194304 [ 61.730871][ T1517] shmem 305700864 [ 61.782302][ T1517] mapped_file 2588672 [ 61.837018][ T1517] dirty 0 [ 61.840012][ T1517] writeback 286720 [ 61.873509][ T1517] workingset_refault_anon 16 [ 61.888822][ T1517] workingset_refault_file 10223 [ 61.908736][ T1517] swap 127705088 [ 61.928453][ T1517] swapcached 290816 [ 61.947873][ T1517] pgpgin 174688 [ 61.967213][ T1517] pgpgout 99574 [ 61.983024][ T1517] pgfault 31782 [ 61.987418][ T1517] pgmajfault 305 [ 61.997516][ T1517] inactive_anon 155783168 [ 62.014594][ T1517] active_anon 154755072 [ 62.051749][ T1517] inactive_file 1310720 [ 62.065613][ T1517] active_file 1437696 [ 62.078763][ T1517] unevictable 0 [ 62.090499][ T1517] hierarchical_memory_limit 314572800 [ 62.111500][ T1517] hierarchical_memsw_limit 9223372036854771712 [ 62.119612][ T1517] total_cache 308531200 [ 62.124634][ T1517] total_rss 5070848 [ 62.130182][ T1517] total_rss_huge 4194304 [ 62.134494][ T1517] total_shmem 305700864 [ 62.138737][ T1517] total_mapped_file 2588672 [ 62.143299][ T1517] total_dirty 0 [ 62.146770][ T1517] total_writeback 286720 [ 62.151109][ T1517] total_workingset_refault_anon 16 [ 62.156235][ T1517] total_workingset_refault_file 10223 [ 62.161667][ T1517] total_swap 127705088 [ 62.165842][ T1517] total_swapcached 290816 [ 62.170350][ T1517] total_pgpgin 174688 [ 62.190209][ T1517] total_pgpgout 99574 [ 62.194262][ T1517] total_pgfault 31782 [ 62.198439][ T36] kauditd_printk_skb: 5 callbacks suppressed [ 62.198454][ T36] audit: type=1400 audit(1755425736.491:378): avc: denied { append } for pid=1853 comm="syz.0.424" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1 [ 62.227818][ T1517] total_pgmajfault 305 [ 62.228885][ T36] audit: type=1326 audit(1755425736.491:379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1853 comm="syz.0.424" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe02898ebe9 code=0x0 [ 62.232837][ T1517] total_inactive_anon 155783168 [ 62.260106][ T1517] total_active_anon 154755072 [ 62.265840][ T1517] total_inactive_file 1310720 [ 62.270765][ T1517] total_active_file 1437696 [ 62.275311][ T1517] total_unevictable 0 [ 62.279288][ T1517] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.337,pid=1524,uid=0 [ 62.294137][ T1517] Memory cgroup out of memory: Killed process 1524 (syz.3.337) total-vm:90104kB, anon-rss:5812kB, file-rss:21996kB, shmem-rss:0kB, UID:0 pgtables:164kB oom_score_adj:0 [ 62.359532][ T1525] syz.3.337 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0 [ 62.408302][ T1525] CPU: 0 UID: 0 PID: 1525 Comm: syz.3.337 Not tainted 6.12.38-syzkaller-g3f3a5c5e782d #0 c9247809a66a5ebb3467d1c2e99b1dedbd707993 [ 62.408339][ T1525] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 62.408352][ T1525] Call Trace: [ 62.408359][ T1525] [ 62.408369][ T1525] __dump_stack+0x21/0x30 [ 62.408402][ T1525] dump_stack_lvl+0x10c/0x190 [ 62.408430][ T1525] ? __cfi_dump_stack_lvl+0x10/0x10 [ 62.408458][ T1525] ? ___ratelimit+0x3f7/0x5a0 [ 62.408494][ T1525] dump_stack+0x19/0x20 [ 62.408521][ T1525] dump_header+0xd7/0x490 [ 62.408542][ T1525] ? __cfi_mem_cgroup_get_max+0x10/0x10 [ 62.408570][ T1525] oom_kill_process+0x4c0/0x7e0 [ 62.408595][ T1525] ? sched_clock_cpu+0x75/0x400 [ 62.408624][ T1525] out_of_memory+0x7ee/0xbd0 [ 62.408647][ T1525] ? __cfi_out_of_memory+0x10/0x10 [ 62.408670][ T1525] ? mutex_lock_killable+0x92/0x1c0 [ 62.408703][ T1525] ? __cfi_mutex_lock_killable+0x10/0x10 [ 62.408750][ T1525] mem_cgroup_out_of_memory+0x279/0x350 [ 62.408769][ T1525] ? drain_obj_stock+0xed0/0xed0 [ 62.408807][ T1525] ? memcg1_oom_prepare+0x2c6/0x3a0 [ 62.408841][ T1525] try_charge_memcg+0x8f7/0xde0 [ 62.408871][ T1525] ? __cfi_try_charge_memcg+0x10/0x10 [ 62.408900][ T1525] ? __alloc_pages_noprof+0x31f/0x7b0 [ 62.408928][ T1525] ? __cfi___alloc_pages_noprof+0x10/0x10 [ 62.408954][ T1525] ? __folio_batch_add_and_move+0x2ab/0x370 [ 62.408981][ T1525] __mem_cgroup_charge+0xf6/0x410 [ 62.409011][ T1525] ? _raw_spin_lock+0x8c/0x120 [ 62.409035][ T1525] ? __cfi___mem_cgroup_charge+0x10/0x10 [ 62.409068][ T1525] shmem_alloc_and_add_folio+0x86d/0x1050 [ 62.409094][ T1525] ? put_swap_device+0x130/0x130 [ 62.409118][ T1525] ? shmem_huge_global_enabled+0x2da/0x360 [ 62.409140][ T1525] ? shmem_allowable_huge_orders+0x1f7/0x430 [ 62.409162][ T1525] ? __kasan_check_write+0x18/0x20 [ 62.409192][ T1525] ? _raw_spin_lock+0x8c/0x120 [ 62.409216][ T1525] shmem_get_folio_gfp+0x5f0/0x1380 [ 62.409240][ T1525] ? shmem_get_folio+0xc0/0xc0 [ 62.409259][ T1525] ? follow_page_pte+0xa5c/0xb90 [ 62.409285][ T1525] ? inode_to_bdi+0x6d/0x100 [ 62.409313][ T1525] shmem_write_begin+0xf4/0x270 [ 62.409337][ T1525] generic_perform_write+0x32d/0x960 [ 62.409372][ T1525] ? __cfi_generic_perform_write+0x10/0x10 [ 62.409401][ T1525] ? down_write+0xe9/0x2a0 [ 62.409421][ T1525] ? file_update_time+0xa3/0x220 [ 62.409449][ T1525] shmem_file_write_iter+0x105/0x130 [ 62.409481][ T1525] ? __cfi_shmem_file_write_iter+0x10/0x10 [ 62.409508][ T1525] __kernel_write_iter+0x392/0x830 [ 62.409540][ T1525] ? __cfi_shmem_file_write_iter+0x10/0x10 [ 62.409567][ T1525] ? __cfi___kernel_write_iter+0x10/0x10 [ 62.409599][ T1525] ? get_dump_page+0x160/0x220 [ 62.409623][ T1525] ? __asan_memset+0x39/0x50 [ 62.409652][ T1525] ? iov_iter_bvec+0xc0/0x180 [ 62.409676][ T1525] dump_user_range+0xb06/0xdf0 [ 62.409709][ T1525] ? __cfi_dump_emit+0x10/0x10 [ 62.409740][ T1525] ? __cfi_dump_user_range+0x10/0x10 [ 62.409773][ T1525] ? elf_coredump_extra_notes_write+0x42f/0x4c0 [ 62.409805][ T1525] ? __cfi_elf_coredump_extra_notes_write+0x10/0x10 [ 62.409836][ T1525] elf_core_dump+0x2cd9/0x3810 [ 62.409864][ T1525] ? __cfi_elf_core_dump+0x10/0x10 [ 62.409896][ T1525] ? dump_interrupted+0xf0/0xf0 [ 62.409926][ T1525] ? filp_open+0x182/0x1d0 [ 62.409970][ T1525] ? 0xffffffffff600000 [ 62.409988][ T1525] do_coredump+0x1bfa/0x2bd0 [ 62.410022][ T1525] ? __cfi_do_coredump+0x10/0x10 [ 62.410055][ T1525] ? asm_exc_general_protection+0x2b/0x30 [ 62.410097][ T1525] ? __kasan_slab_free+0x6a/0x80 [ 62.410120][ T1525] ? kmem_cache_free+0x1c1/0x510 [ 62.410153][ T1525] ? get_signal+0xa75/0x14f0 [ 62.410181][ T1525] get_signal+0x11fd/0x14f0 [ 62.410213][ T1525] arch_do_signal_or_restart+0x96/0x720 [ 62.410248][ T1525] ? __cfi_arch_do_signal_or_restart+0x10/0x10 [ 62.410282][ T1525] ? fixup_iopl_exception+0xdd/0x2e0 [ 62.410318][ T1525] irqentry_exit_to_user_mode+0x4e/0xb0 [ 62.410341][ T1525] irqentry_exit+0x16/0x60 [ 62.410362][ T1525] exc_general_protection+0x15a/0x1f0 [ 62.410392][ T1525] ? fpregs_assert_state_consistent+0xb7/0xe0 [ 62.410423][ T1525] asm_exc_general_protection+0x2b/0x30 [ 62.410456][ T1525] RIP: 0033:0x7f424358ebf1 [ 62.410481][ T1525] Code: 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f [ 62.410501][ T1525] RSP: 002b:0000200000000420 EFLAGS: 00010217 [ 62.410522][ T1525] RAX: 0000000000000000 RBX: 00007f42437b6090 RCX: 00007f424358ebe9 [ 62.410538][ T1525] RDX: 0000200000000440 RSI: 0000200000000420 RDI: 0000000002000080 [ 62.410555][ T1525] RBP: 00007f4243611e19 R08: 00002000000004c0 R09: 00002000000004c0 [ 62.410572][ T1525] R10: 0000200000000480 R11: 0000000000000202 R12: 0000000000000000 [ 62.410587][ T1525] R13: 00007f42437b6128 R14: 00007f42437b6090 R15: 00007ffd9443a9d8 [ 62.410607][ T1525] [ 62.637466][ T36] audit: type=1326 audit(1755425736.921:380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1836 comm="syz.2.420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1294b8ebe9 code=0x7fc00000 [ 62.931764][ T36] audit: type=1326 audit(1755425736.921:381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1836 comm="syz.2.420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f1294b8ebe9 code=0x7fc00000 [ 62.970317][ T36] audit: type=1326 audit(1755425736.921:382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1836 comm="syz.2.420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1294b8ebe9 code=0x7fc00000 [ 63.010300][ T36] audit: type=1326 audit(1755425736.921:383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1836 comm="syz.2.420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1294b8ebe9 code=0x7fc00000 [ 63.045514][ T36] audit: type=1326 audit(1755425736.921:384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1836 comm="syz.2.420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1294b8ebe9 code=0x7fc00000 [ 63.061608][ T1525] memory: usage 302936kB, limit 307200kB, failcnt 36961 [ 63.080388][ T36] audit: type=1326 audit(1755425736.921:385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1836 comm="syz.2.420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1294b8ebe9 code=0x7fc00000 [ 63.110338][ T36] audit: type=1326 audit(1755425736.921:386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1836 comm="syz.2.420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1294b8ebe9 code=0x7fc00000 [ 63.142475][ T36] audit: type=1326 audit(1755425736.921:387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1836 comm="syz.2.420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1294b8ebe9 code=0x7fc00000 [ 63.232700][ T1862] rust_binder: Failed copying into alloc: EFAULT [ 63.232728][ T1862] rust_binder: Failure in apply_sg: BR_FAILED_REPLY { source: EFAULT } [ 63.240436][ T1862] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EFAULT } [ 63.250401][ T1862] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EFAULT } my_pid:192 [ 63.312202][ T1525] memory+swap: usage 432104kB, limit 9007199254740988kB, failcnt 0 [ 63.361841][ T1525] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 63.386432][ T1525] Memory cgroup stats for /syz3: [ 63.386584][ T1525] cache 313208832 [ 63.432522][ T1877] rust_binder: BINDER_SET_CONTEXT_MGR already set [ 63.448329][ T1525] rss 872448 [ 63.451770][ T1877] rust_binder: BINDER_SET_CONTEXT_MGR already set [ 63.461989][ T1877] rust_binder: BC_REQUEST_DEATH_NOTIFICATION invalid ref 3 [ 63.480438][ T1877] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:197 [ 63.555487][ T1525] rss_huge 0 [ 63.662429][ T1525] shmem 306089984 [ 63.703937][ T1525] mapped_file 6934528 [ 63.766781][ T1525] dirty 0 [ 63.816006][ T1525] writeback 0 [ 63.854460][ T1525] workingset_refault_anon 16 [ 63.914648][ T1525] workingset_refault_file 16376 [ 64.002218][ T1525] swap 127995904 [ 64.144196][ T1906] netlink: 'syz.2.441': attribute type 1 has an invalid length. [ 64.152665][ T1906] overlayfs: failed to clone upperpath [ 64.153735][ T1908] rust_binder: BC_FREEZE_NOTIFICATION_DONE 0000000000000001 not found [ 64.168953][ T1525] swapcached 0 [ 64.173487][ T1908] rust_binder: Write failure EINVAL in pid:212 [ 64.175576][ T1908] rust_binder: BC_FREEZE_NOTIFICATION_DONE 0000000000000001 not found [ 64.200342][ T1908] rust_binder: Write failure EINVAL in pid:212 [ 64.210392][ T1525] pgpgin 185726 [ 64.227566][ T1525] pgpgout 110500 [ 64.251361][ T1525] pgfault 32384 [ 64.255977][ T1525] pgmajfault 422 [ 64.282805][ T1921] tmpfs: Unknown parameter 'usrquota' [ 64.282805][ T1922] tmpfs: Unknown parameter 'usrquota' [ 64.294709][ T1525] inactive_anon 34881536 [ 64.299222][ T1525] active_anon 271552512 [ 64.324743][ T1525] inactive_file 5345280 [ 64.328939][ T1525] active_file 0 [ 64.395246][ T1525] unevictable 0 [ 64.408896][ T1525] hierarchical_memory_limit 314572800 [ 64.421414][ T1525] hierarchical_memsw_limit 9223372036854771712 [ 64.427611][ T1525] total_cache 313208832 [ 64.478594][ T1525] total_rss 872448 [ 64.501283][ T1932] netlink: 12 bytes leftover after parsing attributes in process `syz.0.452'. [ 64.510307][ T451] usb 2-1: new high-speed USB device number 13 using dummy_hcd [ 64.511383][ T1525] total_rss_huge 0 [ 64.532459][ T1525] total_shmem 306089984 [ 64.536774][ T1525] total_mapped_file 6934528 [ 64.541863][ T1525] total_dirty 0 [ 64.550362][ T1525] total_writeback 0 [ 64.554360][ T1525] total_workingset_refault_anon 16 [ 64.567305][ T1525] total_workingset_refault_file 16376 [ 64.572844][ T1525] total_swap 127995904 [ 64.576981][ T1525] total_swapcached 0 [ 64.580943][ T1525] total_pgpgin 185726 [ 64.584965][ T1525] total_pgpgout 110500 [ 64.590149][ T1525] total_pgfault 32384 [ 64.600791][ T1525] total_pgmajfault 422 [ 64.609062][ T1525] total_inactive_anon 34881536 [ 64.614657][ T1525] total_active_anon 271552512 [ 64.619517][ T1525] total_inactive_file 5345280 [ 64.624324][ T1525] total_active_file 0 [ 64.628362][ T1525] total_unevictable 0 [ 64.635739][ T1525] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.337,pid=1516,uid=0 [ 64.650816][ T1525] Memory cgroup out of memory: Killed process 1516 (syz.3.337) total-vm:90104kB, anon-rss:1716kB, file-rss:21880kB, shmem-rss:0kB, UID:0 pgtables:176kB oom_score_adj:0 [ 64.680813][ T1938] 9pnet_fd: Insufficient options for proto=fd [ 64.690394][ T451] usb 2-1: Using ep0 maxpacket: 32 [ 64.701390][ T451] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 97, changing to 10 [ 64.722642][ T451] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24929, setting to 1024 [ 64.750278][ T451] usb 2-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 64.769606][ T451] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 64.787072][ T1551] syz.3.337 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0 [ 64.797452][ T451] usb 2-1: config 0 descriptor?? [ 64.804088][ T451] hub 2-1:0.0: USB hub found [ 64.829237][ T1943] 9pnet_fd: Insufficient options for proto=fd [ 64.851180][ T1945] netlink: 'syz.2.457': attribute type 13 has an invalid length. [ 64.860621][ T1551] CPU: 1 UID: 0 PID: 1551 Comm: syz.3.337 Not tainted 6.12.38-syzkaller-g3f3a5c5e782d #0 c9247809a66a5ebb3467d1c2e99b1dedbd707993 [ 64.860654][ T1551] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 64.860667][ T1551] Call Trace: [ 64.860674][ T1551] [ 64.860682][ T1551] __dump_stack+0x21/0x30 [ 64.860716][ T1551] dump_stack_lvl+0x10c/0x190 [ 64.860747][ T1551] ? __cfi_dump_stack_lvl+0x10/0x10 [ 64.860774][ T1551] ? ___ratelimit+0x3f7/0x5a0 [ 64.860804][ T1551] dump_stack+0x19/0x20 [ 64.860830][ T1551] dump_header+0xd7/0x490 [ 64.860850][ T1551] ? __cfi_mem_cgroup_get_max+0x10/0x10 [ 64.860878][ T1551] oom_kill_process+0x4c0/0x7e0 [ 64.860902][ T1551] ? sched_clock_cpu+0x75/0x400 [ 64.860931][ T1551] out_of_memory+0x7ee/0xbd0 [ 64.860954][ T1551] ? __cfi_out_of_memory+0x10/0x10 [ 64.860977][ T1551] ? mutex_lock_killable+0x104/0x1c0 [ 64.861008][ T1551] ? __cfi_mutex_lock_killable+0x10/0x10 [ 64.861041][ T1551] mem_cgroup_out_of_memory+0x279/0x350 [ 64.861062][ T1551] ? drain_obj_stock+0xed0/0xed0 [ 64.861083][ T1551] ? memcg1_oom_prepare+0x2c6/0x3a0 [ 64.861115][ T1551] try_charge_memcg+0x8f7/0xde0 [ 64.861144][ T1551] ? __cfi_try_charge_memcg+0x10/0x10 [ 64.861172][ T1551] ? __alloc_pages_noprof+0x31f/0x7b0 [ 64.861199][ T1551] ? folio_unlock+0x12f/0x1a0 [ 64.861222][ T1551] ? __cfi___alloc_pages_noprof+0x10/0x10 [ 64.861259][ T1551] __mem_cgroup_charge+0xf6/0x410 [ 64.861316][ T1551] ? __cfi___mem_cgroup_charge+0x10/0x10 [ 64.861348][ T1551] ? do_pte_missing+0x2bdb/0x4240 [ 64.861375][ T1551] shmem_alloc_and_add_folio+0x86d/0x1050 [ 64.861403][ T1551] ? put_swap_device+0x130/0x130 [ 64.861429][ T1551] ? shmem_huge_global_enabled+0x2da/0x360 [ 64.861452][ T1551] ? shmem_allowable_huge_orders+0x1f7/0x430 [ 64.861476][ T1551] ? __kasan_check_write+0x18/0x20 [ 64.861508][ T1551] ? _raw_spin_lock+0x8c/0x120 [ 64.861534][ T1551] shmem_get_folio_gfp+0x5f0/0x1380 [ 64.861561][ T1551] ? shmem_get_folio+0xc0/0xc0 [ 64.861582][ T1551] ? inode_maybe_inc_iversion+0x17d/0x1e0 [ 64.861614][ T1551] ? __cfi_inode_maybe_inc_iversion+0x10/0x10 [ 64.861646][ T1551] ? inode_to_bdi+0x6d/0x100 [ 64.861676][ T1551] shmem_write_begin+0xf4/0x270 [ 64.861702][ T1551] generic_perform_write+0x32d/0x960 [ 64.861736][ T1551] ? __cfi_generic_perform_write+0x10/0x10 [ 64.861767][ T1551] ? down_write+0xe9/0x2a0 [ 64.861788][ T1551] ? mnt_get_write_access_file+0x1af/0x3b0 [ 64.861818][ T1551] ? mnt_put_write_access_file+0xc2/0x100 [ 64.861847][ T1551] ? file_update_time+0x1ef/0x220 [ 64.861877][ T1551] shmem_file_write_iter+0x105/0x130 [ 64.861907][ T1551] ? __cfi_shmem_file_write_iter+0x10/0x10 [ 64.861936][ T1551] __kernel_write_iter+0x392/0x830 [ 64.861969][ T1551] ? __cfi_shmem_file_write_iter+0x10/0x10 [ 64.861998][ T1551] ? __cfi___kernel_write_iter+0x10/0x10 [ 64.862030][ T1551] ? get_dump_page+0x160/0x220 [ 64.862056][ T1551] ? __asan_memset+0x39/0x50 [ 64.862088][ T1551] ? iov_iter_bvec+0xc0/0x180 [ 64.862114][ T1551] dump_user_range+0xb06/0xdf0 [ 64.862149][ T1551] ? __cfi_dump_emit+0x10/0x10 [ 64.862183][ T1551] ? __cfi_dump_user_range+0x10/0x10 [ 64.862218][ T1551] ? elf_coredump_extra_notes_write+0x42f/0x4c0 [ 64.862251][ T1551] ? __cfi_elf_coredump_extra_notes_write+0x10/0x10 [ 64.862290][ T1551] elf_core_dump+0x2cd9/0x3810 [ 64.862321][ T1551] ? __cfi_elf_core_dump+0x10/0x10 [ 64.862355][ T1551] ? dump_interrupted+0xf0/0xf0 [ 64.862387][ T1551] ? filp_open+0x182/0x1d0 [ 64.862415][ T1551] ? 0xffffffffff600000 [ 64.862447][ T1551] do_coredump+0x1bfa/0x2bd0 [ 64.862483][ T1551] ? __cfi_do_coredump+0x10/0x10 [ 64.862529][ T1551] ? asm_exc_general_protection+0x2b/0x30 [ 64.862568][ T1551] ? __kasan_slab_free+0x6a/0x80 [ 64.862589][ T1551] ? kmem_cache_free+0x1c1/0x510 [ 64.862620][ T1551] ? get_signal+0xa75/0x14f0 [ 64.862646][ T1551] get_signal+0x11fd/0x14f0 [ 64.862674][ T1551] arch_do_signal_or_restart+0x96/0x720 [ 64.862704][ T1551] ? __cfi_arch_do_signal_or_restart+0x10/0x10 [ 64.862735][ T1551] ? fixup_iopl_exception+0xdd/0x2e0 [ 64.862767][ T1551] irqentry_exit_to_user_mode+0x4e/0xb0 [ 64.862787][ T1551] irqentry_exit+0x16/0x60 [ 64.862806][ T1551] exc_general_protection+0x15a/0x1f0 [ 64.862833][ T1551] ? fpregs_assert_state_consistent+0xb7/0xe0 [ 64.862859][ T1551] asm_exc_general_protection+0x2b/0x30 [ 64.862889][ T1551] RIP: 0033:0x7f424358ebf1 [ 64.862906][ T1551] Code: 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f [ 64.862923][ T1551] RSP: 002b:0000200000000420 EFLAGS: 00010217 [ 64.862942][ T1551] RAX: 0000000000000000 RBX: 00007f42437b6090 RCX: 00007f424358ebe9 [ 64.862956][ T1551] RDX: 0000200000000440 RSI: 0000200000000420 RDI: 0000000002000080 [ 64.862971][ T1551] RBP: 00007f4243611e19 R08: 00002000000004c0 R09: 00002000000004c0 [ 64.862986][ T1551] R10: 0000200000000480 R11: 0000000000000202 R12: 0000000000000000 [ 64.863000][ T1551] R13: 00007f42437b6128 R14: 00007f42437b6090 R15: 00007ffd9443a9d8 [ 64.863017][ T1551] [ 64.965057][ T1551] memory: usage 304704kB, limit 307200kB, failcnt 41970 [ 65.004007][ T451] hub 2-1:0.0: 1 port detected [ 65.067528][ T1949] devpts: called with bogus options [ 65.106732][ T1551] memory+swap: usage 413744kB, limit 9007199254740988kB, failcnt 0 [ 65.389696][ T1551] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 65.396644][ T1551] Memory cgroup stats for /syz3: [ 65.396810][ T1551] cache 303562752 [ 65.405474][ T1551] rss 811008 [ 65.408733][ T1551] rss_huge 0 [ 65.412057][ T1551] shmem 297590784 [ 65.415718][ T1551] mapped_file 5251072 [ 65.419728][ T1551] dirty 4096 [ 65.422999][ T1551] writeback 0 [ 65.430814][ T1551] workingset_refault_anon 22 [ 65.435436][ T1551] workingset_refault_file 22059 [ 65.454091][ T1551] swap 127922176 [ 65.458051][ T1551] swapcached 73728 [ 65.462090][ T1551] pgpgin 195822 [ 65.508402][ T1551] pgpgout 123027 [ 65.532723][ T1551] pgfault 33108 [ 65.536270][ T1551] pgmajfault 570 [ 65.539838][ T1551] inactive_anon 92012544 [ 65.624770][ T1551] active_anon 205938688 [ 65.669617][ T1551] inactive_file 0 [ 65.694969][ T1551] active_file 5971968 [ 65.699166][ T1551] unevictable 0 [ 65.728098][ T1551] hierarchical_memory_limit 314572800 [ 65.746678][ T1551] hierarchical_memsw_limit 9223372036854771712 [ 65.805425][ T1551] total_cache 303562752 [ 65.809657][ T1551] total_rss 811008 [ 65.850447][ T1551] total_rss_huge 0 [ 65.854236][ T1551] total_shmem 297590784 [ 65.858413][ T1551] total_mapped_file 5251072 [ 65.865380][ T1551] total_dirty 4096 [ 65.869161][ T1551] total_writeback 0 [ 65.918487][ T1551] total_workingset_refault_anon 22 [ 65.965406][ T1551] total_workingset_refault_file 22059 [ 66.020251][ T1551] total_swap 127922176 [ 66.024391][ T1551] total_swapcached 73728 [ 66.028659][ T1551] total_pgpgin 195822 [ 66.084539][ T1551] total_pgpgout 123027 [ 66.102431][ T1551] total_pgfault 33108 [ 66.121679][ T1551] total_pgmajfault 570 [ 66.136601][ T1551] total_inactive_anon 92012544 [ 66.151895][ T1551] total_active_anon 205938688 [ 66.171329][ T1551] total_inactive_file 0 [ 66.189850][ T1551] total_active_file 5971968 [ 66.210215][ T1551] total_unevictable 0 [ 66.230014][ T1551] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.337,pid=1517,uid=0 [ 66.294000][ T1551] Memory cgroup out of memory: Killed process 1517 (syz.3.337) total-vm:90104kB, anon-rss:1716kB, file-rss:22044kB, shmem-rss:0kB, UID:0 pgtables:200kB oom_score_adj:0 [ 66.441226][ T451] hub 2-1:0.0: hub_hub_status failed (err = -32) [ 66.447635][ T451] hub 2-1:0.0: config failed, can't get hub status (err -32) [ 66.456603][ T451] usbhid 2-1:0.0: can't add hid device: -32 [ 66.462596][ T451] usbhid 2-1:0.0: probe with driver usbhid failed with error -32 [ 66.484094][ T1515] syz.3.337 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0 [ 66.550261][ T1515] CPU: 1 UID: 0 PID: 1515 Comm: syz.3.337 Not tainted 6.12.38-syzkaller-g3f3a5c5e782d #0 c9247809a66a5ebb3467d1c2e99b1dedbd707993 [ 66.550302][ T1515] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 66.550317][ T1515] Call Trace: [ 66.550325][ T1515] [ 66.550334][ T1515] __dump_stack+0x21/0x30 [ 66.550371][ T1515] dump_stack_lvl+0x10c/0x190 [ 66.550401][ T1515] ? __cfi_dump_stack_lvl+0x10/0x10 [ 66.550430][ T1515] ? ___ratelimit+0x3f7/0x5a0 [ 66.550462][ T1515] dump_stack+0x19/0x20 [ 66.550490][ T1515] dump_header+0xd7/0x490 [ 66.550512][ T1515] ? __cfi_mem_cgroup_get_max+0x10/0x10 [ 66.550546][ T1515] oom_kill_process+0x4c0/0x7e0 [ 66.550572][ T1515] ? sched_clock_cpu+0x75/0x400 [ 66.550603][ T1515] out_of_memory+0x7ee/0xbd0 [ 66.550627][ T1515] ? __cfi_out_of_memory+0x10/0x10 [ 66.550652][ T1515] ? mutex_lock_killable+0x104/0x1c0 [ 66.550686][ T1515] ? __cfi_mutex_lock_killable+0x10/0x10 [ 66.550721][ T1515] mem_cgroup_out_of_memory+0x279/0x350 [ 66.550744][ T1515] ? drain_obj_stock+0xed0/0xed0 [ 66.550767][ T1515] ? memcg1_oom_prepare+0x2c6/0x3a0 [ 66.550801][ T1515] try_charge_memcg+0x8f7/0xde0 [ 66.550849][ T1515] ? __cfi_try_charge_memcg+0x10/0x10 [ 66.550878][ T1515] ? __alloc_pages_noprof+0x31f/0x7b0 [ 66.550907][ T1515] ? folio_unlock+0x12f/0x1a0 [ 66.550933][ T1515] ? __cfi___alloc_pages_noprof+0x10/0x10 [ 66.550963][ T1515] __mem_cgroup_charge+0xf6/0x410 [ 66.551005][ T1515] ? __cfi___mem_cgroup_charge+0x10/0x10 [ 66.551037][ T1515] ? do_pte_missing+0x2bdb/0x4240 [ 66.551065][ T1515] shmem_alloc_and_add_folio+0x86d/0x1050 [ 66.551093][ T1515] ? put_swap_device+0x130/0x130 [ 66.551118][ T1515] ? shmem_huge_global_enabled+0x2da/0x360 [ 66.551149][ T1515] ? shmem_allowable_huge_orders+0x1f7/0x430 [ 66.551172][ T1515] ? __kasan_check_write+0x18/0x20 [ 66.551204][ T1515] ? _raw_spin_lock+0x8c/0x120 [ 66.551231][ T1515] shmem_get_folio_gfp+0x5f0/0x1380 [ 66.551258][ T1515] ? shmem_get_folio+0xc0/0xc0 [ 66.551279][ T1515] ? inode_maybe_inc_iversion+0x17d/0x1e0 [ 66.551309][ T1515] ? __cfi_inode_maybe_inc_iversion+0x10/0x10 [ 66.551340][ T1515] ? inode_to_bdi+0x6d/0x100 [ 66.551369][ T1515] shmem_write_begin+0xf4/0x270 [ 66.551395][ T1515] generic_perform_write+0x32d/0x960 [ 66.551428][ T1515] ? __cfi_generic_perform_write+0x10/0x10 [ 66.551459][ T1515] ? down_write+0xe9/0x2a0 [ 66.551478][ T1515] ? mnt_get_write_access_file+0x1af/0x3b0 [ 66.551508][ T1515] ? mnt_put_write_access_file+0xc2/0x100 [ 66.551536][ T1515] ? file_update_time+0x1ef/0x220 [ 66.551566][ T1515] shmem_file_write_iter+0x105/0x130 [ 66.551594][ T1515] ? __cfi_shmem_file_write_iter+0x10/0x10 [ 66.551621][ T1515] __kernel_write_iter+0x392/0x830 [ 66.551654][ T1515] ? __cfi_shmem_file_write_iter+0x10/0x10 [ 66.551682][ T1515] ? __cfi___kernel_write_iter+0x10/0x10 [ 66.551715][ T1515] ? get_dump_page+0x160/0x220 [ 66.551742][ T1515] ? __asan_memset+0x39/0x50 [ 66.551773][ T1515] ? iov_iter_bvec+0xc0/0x180 [ 66.551798][ T1515] dump_user_range+0xb06/0xdf0 [ 66.551833][ T1515] ? __cfi_dump_emit+0x10/0x10 [ 66.551866][ T1515] ? __cfi_dump_user_range+0x10/0x10 [ 66.551900][ T1515] ? elf_coredump_extra_notes_write+0x42f/0x4c0 [ 66.551933][ T1515] ? __cfi_elf_coredump_extra_notes_write+0x10/0x10 [ 66.551975][ T1515] elf_core_dump+0x2cd9/0x3810 [ 66.552005][ T1515] ? __cfi_elf_core_dump+0x10/0x10 [ 66.552038][ T1515] ? dump_interrupted+0xf0/0xf0 [ 66.552070][ T1515] ? filp_open+0x182/0x1d0 [ 66.552112][ T1515] ? 0xffffffffff600000 [ 66.552139][ T1515] do_coredump+0x1bfa/0x2bd0 [ 66.552175][ T1515] ? __cfi_do_coredump+0x10/0x10 [ 66.552207][ T1515] ? asm_exc_general_protection+0x2b/0x30 [ 66.552249][ T1515] ? __kasan_slab_free+0x6a/0x80 [ 66.552271][ T1515] ? kmem_cache_free+0x1c1/0x510 [ 66.552305][ T1515] ? get_signal+0xa75/0x14f0 [ 66.552334][ T1515] get_signal+0x11fd/0x14f0 [ 66.552365][ T1515] arch_do_signal_or_restart+0x96/0x720 [ 66.552400][ T1515] ? __cfi_arch_do_signal_or_restart+0x10/0x10 [ 66.552435][ T1515] ? fixup_iopl_exception+0xdd/0x2e0 [ 66.552482][ T1515] irqentry_exit_to_user_mode+0x4e/0xb0 [ 66.552503][ T1515] irqentry_exit+0x16/0x60 [ 66.552523][ T1515] exc_general_protection+0x15a/0x1f0 [ 66.552552][ T1515] ? fpregs_assert_state_consistent+0xb7/0xe0 [ 66.552580][ T1515] asm_exc_general_protection+0x2b/0x30 [ 66.552611][ T1515] RIP: 0033:0x7f424358ebf1 [ 66.552628][ T1515] Code: 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f [ 66.552654][ T1515] RSP: 002b:0000200000000420 EFLAGS: 00010217 [ 66.552674][ T1515] RAX: 0000000000000000 RBX: 00007f42437b6090 RCX: 00007f424358ebe9 [ 66.552690][ T1515] RDX: 0000200000000440 RSI: 0000200000000420 RDI: 0000000002000080 [ 66.552706][ T1515] RBP: 00007f4243611e19 R08: 00002000000004c0 R09: 00002000000004c0 [ 66.552722][ T1515] R10: 0000200000000480 R11: 0000000000000202 R12: 0000000000000000 [ 66.552737][ T1515] R13: 00007f42437b6128 R14: 00007f42437b6090 R15: 00007ffd9443a9d8 [ 66.552756][ T1515] [ 67.049522][ T1515] memory: usage 305692kB, limit 307200kB, failcnt 46991 [ 67.056507][ T1515] memory+swap: usage 430228kB, limit 9007199254740988kB, failcnt 0 [ 67.064482][ T1515] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 67.071390][ T1515] Memory cgroup stats for /syz3: [ 67.071537][ T1515] cache 311808000 [ 67.080173][ T1515] rss 753664 [ 67.083487][ T1515] rss_huge 0 [ 67.086698][ T1515] shmem 311033856 [ 67.090388][ T1515] mapped_file 696320 [ 67.094289][ T1515] dirty 0 [ 67.097242][ T1515] writeback 16384 [ 67.100940][ T1515] workingset_refault_anon 22 [ 67.105557][ T1515] workingset_refault_file 27217 [ 67.110434][ T1515] swap 127897600 [ 67.113996][ T1515] swapcached 94208 [ 67.117721][ T1515] pgpgin 205338 [ 67.121218][ T1515] pgpgout 130539 [ 67.124771][ T1515] pgfault 33947 [ 67.128233][ T1515] pgmajfault 677 [ 67.131820][ T1515] inactive_anon 67895296 [ 67.136076][ T1515] active_anon 243183616 [ 67.140263][ T1515] inactive_file 0 [ 67.143902][ T1515] active_file 249856 [ 67.147881][ T1515] unevictable 0 [ 67.151374][ T1515] hierarchical_memory_limit 314572800 [ 67.156751][ T1515] hierarchical_memsw_limit 9223372036854771712 [ 67.162979][ T1515] total_cache 311808000 [ 67.167144][ T1515] total_rss 753664 [ 67.170896][ T1515] total_rss_huge 0 [ 67.174632][ T1515] total_shmem 311033856 [ 67.178801][ T1515] total_mapped_file 696320 [ 67.183246][ T1515] total_dirty 0 [ 67.186713][ T1515] total_writeback 16384 [ 67.190923][ T1515] total_workingset_refault_anon 22 [ 67.196045][ T1515] total_workingset_refault_file 27217 [ 67.201455][ T1515] total_swap 127897600 [ 67.205531][ T1515] total_swapcached 94208 [ 67.209968][ T1515] total_pgpgin 205338 [ 67.214198][ T1515] total_pgpgout 130539 [ 67.218436][ T1515] total_pgfault 33947 [ 67.222594][ T1515] total_pgmajfault 677 [ 67.226678][ T1515] total_inactive_anon 67895296 [ 67.231481][ T1515] total_active_anon 243183616 [ 67.236173][ T1515] total_inactive_file 0 [ 67.240515][ T1515] total_active_file 249856 [ 67.245077][ T1515] total_unevictable 0 [ 67.249208][ T1515] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.337,pid=1520,uid=0 [ 67.261784][ T36] kauditd_printk_skb: 72 callbacks suppressed [ 67.261803][ T36] audit: type=1400 audit(1755425741.561:460): avc: denied { create } for pid=2011 comm="syz.2.480" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1 [ 67.264148][ T1515] Memory cgroup out of memory: Killed process 1520 (syz.3.337) total-vm:90104kB, anon-rss:1716kB, file-rss:21996kB, shmem-rss:0kB, UID:0 pgtables:200kB oom_score_adj:0 [ 67.320272][ T1189] Bluetooth: hci0: command 0x1003 tx timeout [ 67.326387][ T1284] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 67.342350][ T36] audit: type=1400 audit(1755425741.641:461): avc: denied { unmount } for pid=289 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 67.440412][ T331] usb 2-1: USB disconnect, device number 13 [ 67.513468][ T2018] fuse: Bad value for 'fd' [ 67.824170][ T36] audit: type=1400 audit(1755425742.121:462): avc: denied { setopt } for pid=2026 comm="syz.2.485" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 67.889701][ T2029] netlink: 16 bytes leftover after parsing attributes in process `syz.2.486'. [ 68.008285][ T2039] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=57415 sclass=netlink_xfrm_socket pid=2039 comm=syz.2.489 [ 68.134266][ T36] audit: type=1400 audit(1755425742.431:463): avc: denied { sqpoll } for pid=2043 comm="syz.1.491" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1 [ 68.162630][ T36] audit: type=1400 audit(1755425742.431:464): avc: denied { sqpoll } for pid=2043 comm="syz.1.491" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1 [ 68.190714][ T2051] 9pnet_fd: Insufficient options for proto=fd [ 68.292960][ T36] audit: type=1400 audit(1755425742.591:465): avc: denied { create } for pid=2064 comm="syz.2.496" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 68.686864][ T1521] syz.3.337 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 68.801921][ T1521] CPU: 0 UID: 0 PID: 1521 Comm: syz.3.337 Not tainted 6.12.38-syzkaller-g3f3a5c5e782d #0 c9247809a66a5ebb3467d1c2e99b1dedbd707993 [ 68.801962][ T1521] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 68.801988][ T1521] Call Trace: [ 68.801995][ T1521] [ 68.802004][ T1521] __dump_stack+0x21/0x30 [ 68.802041][ T1521] dump_stack_lvl+0x10c/0x190 [ 68.802070][ T1521] ? __cfi_dump_stack_lvl+0x10/0x10 [ 68.802100][ T1521] ? ___ratelimit+0x3f7/0x5a0 [ 68.802132][ T1521] dump_stack+0x19/0x20 [ 68.802161][ T1521] dump_header+0xd7/0x490 [ 68.802184][ T1521] ? __cfi_mem_cgroup_get_max+0x10/0x10 [ 68.802212][ T1521] oom_kill_process+0x4c0/0x7e0 [ 68.802239][ T1521] ? sched_clock_cpu+0x75/0x400 [ 68.802269][ T1521] out_of_memory+0x7ee/0xbd0 [ 68.802295][ T1521] ? __cfi_out_of_memory+0x10/0x10 [ 68.802320][ T1521] ? mutex_lock_killable+0x92/0x1c0 [ 68.802354][ T1521] ? __cfi_mutex_lock_killable+0x10/0x10 [ 68.802390][ T1521] mem_cgroup_out_of_memory+0x279/0x350 [ 68.802412][ T1521] ? drain_obj_stock+0xed0/0xed0 [ 68.802435][ T1521] ? memcg1_oom_prepare+0x2c6/0x3a0 [ 68.802475][ T1521] try_charge_memcg+0x8f7/0xde0 [ 68.802504][ T1521] ? gfp_to_alloc_flags_cma+0x90/0x1c0 [ 68.802538][ T1521] ? __cfi_try_charge_memcg+0x10/0x10 [ 68.802569][ T1521] ? __alloc_pages_noprof+0x31f/0x7b0 [ 68.802598][ T1521] __mem_cgroup_charge+0xf6/0x410 [ 68.802632][ T1521] ? filemap_get_entry+0x3fb/0x460 [ 68.802658][ T1521] ? __cfi___mem_cgroup_charge+0x10/0x10 [ 68.802693][ T1521] filemap_add_folio+0x57/0x2d0 [ 68.802718][ T1521] __filemap_get_folio+0x597/0x9d0 [ 68.802748][ T1521] ? __cfi___filemap_get_folio+0x10/0x10 [ 68.802775][ T1521] ? mm_trace_rss_stat+0x20/0x130 [ 68.802807][ T1521] ? filemap_fault_recheck_pte_none+0x78/0x250 [ 68.802839][ T1521] filemap_fault+0xb41/0x16b0 [ 68.802870][ T1521] ? __cfi_filemap_fault+0x10/0x10 [ 68.802899][ T1521] ? __cfi_filemap_map_pages+0x10/0x10 [ 68.802929][ T1521] ? __cfi_lru_add+0x10/0x10 [ 68.802954][ T1521] ? folio_rotate_reclaimable+0x130/0x130 [ 68.802988][ T1521] do_pte_missing+0x298f/0x4240 [ 68.803015][ T1521] ? shmem_alloc_and_add_folio+0xcf6/0x1050 [ 68.803041][ T1521] ? pte_marker_clear+0x1b0/0x1b0 [ 68.803067][ T1521] ? put_swap_device+0x130/0x130 [ 68.803091][ T1521] ? __pte_offset_map+0x1b0/0x230 [ 68.803121][ T1521] ? pte_offset_map_rw_nolock+0xba/0x110 [ 68.803153][ T1521] handle_mm_fault+0x1166/0x1b90 [ 68.803175][ T1521] ? __kasan_check_write+0x18/0x20 [ 68.803211][ T1521] ? __cfi_handle_mm_fault+0x10/0x10 [ 68.803234][ T1521] ? follow_page_pte+0x2bd/0xb90 [ 68.803262][ T1521] ? gup_must_unshare+0x1e0/0x1e0 [ 68.803289][ T1521] ? vma_is_secretmem+0x11/0x50 [ 68.803318][ T1521] __get_user_pages+0x1169/0x22d0 [ 68.803345][ T1521] ? __kasan_check_write+0x18/0x20 [ 68.803381][ T1521] ? populate_vma_page_range+0x230/0x230 [ 68.803408][ T1521] ? __kernel_write_iter+0x65e/0x830 [ 68.803444][ T1521] get_dump_page+0x107/0x220 [ 68.803470][ T1521] ? __cfi_get_dump_page+0x10/0x10 [ 68.803496][ T1521] ? __asan_memset+0x39/0x50 [ 68.803529][ T1521] dump_user_range+0x181/0xdf0 [ 68.803564][ T1521] ? __cfi_dump_emit+0x10/0x10 [ 68.803597][ T1521] ? __cfi_dump_user_range+0x10/0x10 [ 68.803631][ T1521] ? elf_coredump_extra_notes_write+0x42f/0x4c0 [ 68.803664][ T1521] ? __cfi_elf_coredump_extra_notes_write+0x10/0x10 [ 68.803699][ T1521] elf_core_dump+0x2cd9/0x3810 [ 68.803728][ T1521] ? __cfi_elf_core_dump+0x10/0x10 [ 68.803762][ T1521] ? dump_interrupted+0xf0/0xf0 [ 68.803794][ T1521] ? filp_open+0x182/0x1d0 [ 68.803822][ T1521] ? 0xffffffffff600000 [ 68.803840][ T1521] do_coredump+0x1bfa/0x2bd0 [ 68.803876][ T1521] ? __cfi_do_coredump+0x10/0x10 [ 68.803908][ T1521] ? asm_exc_general_protection+0x2b/0x30 [ 68.803951][ T1521] ? __kasan_slab_free+0x6a/0x80 [ 68.803981][ T1521] ? kmem_cache_free+0x1c1/0x510 [ 68.804015][ T1521] ? get_signal+0xa75/0x14f0 [ 68.804044][ T1521] get_signal+0x11fd/0x14f0 [ 68.804075][ T1521] arch_do_signal_or_restart+0x96/0x720 [ 68.804110][ T1521] ? __cfi_arch_do_signal_or_restart+0x10/0x10 [ 68.804145][ T1521] ? fixup_iopl_exception+0xdd/0x2e0 [ 68.804180][ T1521] irqentry_exit_to_user_mode+0x4e/0xb0 [ 68.804202][ T1521] irqentry_exit+0x16/0x60 [ 68.804223][ T1521] exc_general_protection+0x15a/0x1f0 [ 68.804254][ T1521] ? fpregs_assert_state_consistent+0xb7/0xe0 [ 68.804284][ T1521] asm_exc_general_protection+0x2b/0x30 [ 68.804317][ T1521] RIP: 0033:0x7f424358ebf1 [ 68.804334][ T1521] Code: 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f [ 68.804355][ T1521] RSP: 002b:0000200000000420 EFLAGS: 00010217 [ 68.804376][ T1521] RAX: 0000000000000000 RBX: 00007f42437b6090 RCX: 00007f424358ebe9 [ 68.804393][ T1521] RDX: 0000200000000440 RSI: 0000200000000420 RDI: 0000000002000080 [ 68.804409][ T1521] RBP: 00007f4243611e19 R08: 00002000000004c0 R09: 00002000000004c0 [ 68.804425][ T1521] R10: 0000200000000480 R11: 0000000000000202 R12: 0000000000000000 [ 68.804440][ T1521] R13: 00007f42437b6128 R14: 00007f42437b6090 R15: 00007ffd9443a9d8 [ 68.804460][ T1521] [ 69.115600][ T1521] memory: usage 307200kB, limit 307200kB, failcnt 51078 [ 69.194880][ T36] audit: type=1400 audit(1755425743.491:466): avc: denied { execute_no_trans } for pid=2079 comm="syz.2.502" path="/235/file0" dev="tmpfs" ino=1307 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 69.198571][ T1521] memory+swap: usage 432176kB, limit 9007199254740988kB, failcnt 0 [ 69.281263][ T2096] overlayfs: missing 'lowerdir' [ 69.285340][ T1521] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 69.359002][ T1521] Memory cgroup stats for /syz3: [ 69.359154][ T1521] cache 314482688 [ 69.367761][ T1521] rss 69632 [ 69.371184][ T1521] rss_huge 0 [ 69.374480][ T1521] shmem 314454016 [ 69.377681][ T2106] overlayfs: failed to clone upperpath [ 69.378265][ T1521] mapped_file 0 [ 69.387082][ T1521] dirty 0 [ 69.390034][ T1521] writeback 0 [ 69.393358][ T1521] workingset_refault_anon 26 [ 69.397956][ T1521] workingset_refault_file 32758 [ 69.402997][ T1521] swap 127975424 [ 69.406584][ T1521] swapcached 20480 [ 69.410368][ T1521] pgpgin 227787 [ 69.413864][ T1521] pgpgout 152520 [ 69.417427][ T1521] pgfault 35600 [ 69.420929][ T1521] pgmajfault 808 [ 69.424488][ T1521] inactive_anon 196300800 [ 69.428828][ T1521] active_anon 118243328 [ 69.433021][ T1521] inactive_file 28672 [ 69.437037][ T1521] active_file 0 [ 69.440697][ T1521] unevictable 0 [ 69.444317][ T1521] hierarchical_memory_limit 314572800 [ 69.449748][ T1521] hierarchical_memsw_limit 9223372036854771712 [ 69.455934][ T1521] total_cache 314482688 [ 69.460094][ T1521] total_rss 69632 [ 69.463789][ T1521] total_rss_huge 0 [ 69.467512][ T1521] total_shmem 314454016 [ 69.471701][ T1521] total_mapped_file 0 [ 69.475691][ T1521] total_dirty 0 [ 69.479155][ T1521] total_writeback 0 [ 69.484192][ T1521] total_workingset_refault_anon 26 [ 69.489324][ T1521] total_workingset_refault_file 32758 [ 69.494763][ T1521] total_swap 127975424 [ 69.498839][ T1521] total_swapcached 20480 [ 69.503129][ T1521] total_pgpgin 227787 [ 69.507123][ T1521] total_pgpgout 152520 [ 69.511230][ T1521] total_pgfault 35600 [ 69.515245][ T1521] total_pgmajfault 808 [ 69.519317][ T1521] total_inactive_anon 196300800 [ 69.529974][ T1521] total_active_anon 118243328 [ 69.535057][ T1521] total_inactive_file 28672 [ 69.539567][ T1521] total_active_file 0 [ 69.543588][ T1521] total_unevictable 0 [ 69.547588][ T1521] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.337,pid=1521,uid=0 [ 69.562409][ T1521] Memory cgroup out of memory: Killed process 1521 (syz.3.337) total-vm:90104kB, anon-rss:1076kB, file-rss:22012kB, shmem-rss:0kB, UID:0 pgtables:180kB oom_score_adj:0 [ 69.847222][ T2114] overlayfs: failed to clone upperpath [ 69.863609][ T2114] overlayfs: failed to resolve './file0': -2 [ 69.926078][ T2120] 9pnet_fd: Insufficient options for proto=fd [ 69.995960][ T2125] overlayfs: failed to clone upperpath [ 70.050111][ T2128] overlayfs: failed to clone upperpath [ 70.268014][ T2140] fuse: Bad value for 'fd' [ 70.305677][ T2145] overlayfs: failed to clone upperpath [ 70.331189][ T2147] tipc: Enabling of bearer rejected, failed to enable media [ 70.383184][ T2152] tipc: Enabling of bearer rejected, failed to enable media [ 70.433066][ T1551] syz.3.337 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0 [ 70.466314][ T2156] overlayfs: failed to resolve './file1': -2 [ 70.604384][ T1551] CPU: 0 UID: 0 PID: 1551 Comm: syz.3.337 Not tainted 6.12.38-syzkaller-g3f3a5c5e782d #0 c9247809a66a5ebb3467d1c2e99b1dedbd707993 [ 70.604420][ T1551] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 70.604433][ T1551] Call Trace: [ 70.604440][ T1551] [ 70.604448][ T1551] __dump_stack+0x21/0x30 [ 70.604480][ T1551] dump_stack_lvl+0x10c/0x190 [ 70.604507][ T1551] ? __cfi_dump_stack_lvl+0x10/0x10 [ 70.604533][ T1551] ? ___ratelimit+0x3f7/0x5a0 [ 70.604561][ T1551] dump_stack+0x19/0x20 [ 70.604587][ T1551] dump_header+0xd7/0x490 [ 70.604608][ T1551] ? __cfi_mem_cgroup_get_max+0x10/0x10 [ 70.604635][ T1551] oom_kill_process+0x4c0/0x7e0 [ 70.604658][ T1551] ? sched_clock_cpu+0x75/0x400 [ 70.604686][ T1551] out_of_memory+0x7ee/0xbd0 [ 70.604709][ T1551] ? __cfi_out_of_memory+0x10/0x10 [ 70.604732][ T1551] ? mutex_lock_killable+0x92/0x1c0 [ 70.604763][ T1551] ? __cfi_mutex_lock_killable+0x10/0x10 [ 70.604795][ T1551] mem_cgroup_out_of_memory+0x279/0x350 [ 70.604815][ T1551] ? drain_obj_stock+0xed0/0xed0 [ 70.604836][ T1551] ? memcg1_oom_prepare+0x2c6/0x3a0 [ 70.604867][ T1551] try_charge_memcg+0x8f7/0xde0 [ 70.604895][ T1551] ? __cfi_try_charge_memcg+0x10/0x10 [ 70.604922][ T1551] ? __alloc_pages_noprof+0x31f/0x7b0 [ 70.604947][ T1551] ? folio_unlock+0x12f/0x1a0 [ 70.604970][ T1551] ? __cfi___alloc_pages_noprof+0x10/0x10 [ 70.604998][ T1551] __mem_cgroup_charge+0xf6/0x410 [ 70.605028][ T1551] ? __cfi___mem_cgroup_charge+0x10/0x10 [ 70.605057][ T1551] ? do_pte_missing+0x2bdb/0x4240 [ 70.605082][ T1551] shmem_alloc_and_add_folio+0x86d/0x1050 [ 70.605115][ T1551] ? put_swap_device+0x130/0x130 [ 70.605137][ T1551] ? shmem_huge_global_enabled+0x2da/0x360 [ 70.605158][ T1551] ? shmem_allowable_huge_orders+0x1f7/0x430 [ 70.605179][ T1551] ? __kasan_check_write+0x18/0x20 [ 70.605208][ T1551] ? _raw_spin_lock+0x8c/0x120 [ 70.605232][ T1551] shmem_get_folio_gfp+0x5f0/0x1380 [ 70.605255][ T1551] ? shmem_get_folio+0xc0/0xc0 [ 70.605274][ T1551] ? follow_page_pte+0xa5c/0xb90 [ 70.605299][ T1551] ? inode_to_bdi+0x6d/0x100 [ 70.605326][ T1551] shmem_write_begin+0xf4/0x270 [ 70.605350][ T1551] generic_perform_write+0x32d/0x960 [ 70.605381][ T1551] ? __cfi_generic_perform_write+0x10/0x10 [ 70.605409][ T1551] ? down_write+0xe9/0x2a0 [ 70.605429][ T1551] ? file_update_time+0xa3/0x220 [ 70.605455][ T1551] shmem_file_write_iter+0x105/0x130 [ 70.605492][ T1551] ? __cfi_shmem_file_write_iter+0x10/0x10 [ 70.605516][ T1551] __kernel_write_iter+0x392/0x830 [ 70.605548][ T1551] ? __cfi_shmem_file_write_iter+0x10/0x10 [ 70.605573][ T1551] ? __cfi___kernel_write_iter+0x10/0x10 [ 70.605602][ T1551] ? get_dump_page+0x160/0x220 [ 70.605624][ T1551] ? __asan_memset+0x39/0x50 [ 70.605650][ T1551] ? iov_iter_bvec+0xc0/0x180 [ 70.605689][ T1551] dump_user_range+0xb06/0xdf0 [ 70.605720][ T1551] ? __cfi_dump_emit+0x10/0x10 [ 70.605750][ T1551] ? __cfi_dump_user_range+0x10/0x10 [ 70.605793][ T1551] ? elf_coredump_extra_notes_write+0x42f/0x4c0 [ 70.605821][ T1551] ? __cfi_elf_coredump_extra_notes_write+0x10/0x10 [ 70.605850][ T1551] elf_core_dump+0x2cd9/0x3810 [ 70.605876][ T1551] ? __cfi_elf_core_dump+0x10/0x10 [ 70.605904][ T1551] ? dump_interrupted+0xf0/0xf0 [ 70.605931][ T1551] ? filp_open+0x182/0x1d0 [ 70.605955][ T1551] ? 0xffffffffff600000 [ 70.605971][ T1551] do_coredump+0x1bfa/0x2bd0 [ 70.606003][ T1551] ? __cfi_do_coredump+0x10/0x10 [ 70.606030][ T1551] ? asm_exc_general_protection+0x2b/0x30 [ 70.606066][ T1551] ? __kasan_slab_free+0x6a/0x80 [ 70.606086][ T1551] ? kmem_cache_free+0x1c1/0x510 [ 70.606121][ T1551] ? get_signal+0xa75/0x14f0 [ 70.606146][ T1551] get_signal+0x11fd/0x14f0 [ 70.606172][ T1551] arch_do_signal_or_restart+0x96/0x720 [ 70.606202][ T1551] ? __cfi_arch_do_signal_or_restart+0x10/0x10 [ 70.606232][ T1551] ? fixup_iopl_exception+0xdd/0x2e0 [ 70.606262][ T1551] irqentry_exit_to_user_mode+0x4e/0xb0 [ 70.606282][ T1551] irqentry_exit+0x16/0x60 [ 70.606298][ T1551] exc_general_protection+0x15a/0x1f0 [ 70.606324][ T1551] ? fpregs_assert_state_consistent+0xb7/0xe0 [ 70.606348][ T1551] asm_exc_general_protection+0x2b/0x30 [ 70.606376][ T1551] RIP: 0033:0x7f424358ebf1 [ 70.606391][ T1551] Code: 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f [ 70.606409][ T1551] RSP: 002b:0000200000000420 EFLAGS: 00010217 [ 70.606426][ T1551] RAX: 0000000000000000 RBX: 00007f42437b6090 RCX: 00007f424358ebe9 [ 70.606440][ T1551] RDX: 0000200000000440 RSI: 0000200000000420 RDI: 0000000002000080 [ 70.606453][ T1551] RBP: 00007f4243611e19 R08: 00002000000004c0 R09: 00002000000004c0 [ 70.606467][ T1551] R10: 0000200000000480 R11: 0000000000000202 R12: 0000000000000000 [ 70.606479][ T1551] R13: 00007f42437b6128 R14: 00007f42437b6090 R15: 00007ffd9443a9d8 [ 70.606495][ T1551] [ 71.200244][ T1551] memory: usage 304440kB, limit 307200kB, failcnt 55245 [ 71.440254][ T1551] memory+swap: usage 431072kB, limit 9007199254740988kB, failcnt 0 [ 71.544461][ T36] audit: type=1400 audit(1755425745.841:467): avc: denied { ioctl } for pid=2189 comm="syz.2.542" path="socket:[10936]" dev="sockfs" ino=10936 ioctlcmd=0x8903 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 71.590320][ T1551] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 71.625390][ T1551] Memory cgroup stats for /syz3: [ 71.625516][ T1551] cache 314327040 [ 71.687702][ T1551] rss 49152 [ 71.738855][ T1551] rss_huge 0 [ 71.803459][ T1551] shmem 310001664 [ 71.867881][ T1551] mapped_file 4235264 [ 71.935368][ T1551] dirty 0 [ 71.994721][ T1551] writeback 0 [ 72.043346][ T1551] workingset_refault_anon 28 [ 72.130667][ T1551] workingset_refault_file 37007 [ 72.235413][ T1551] swap 127889408 [ 72.263911][ T36] audit: type=1400 audit(1755425746.561:468): avc: denied { execute } for pid=2222 comm="syz.0.552" name="file0" dev="ramfs" ino=10985 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:ramfs_t tclass=file permissive=1 [ 72.310273][ T36] audit: type=1400 audit(1755425746.561:469): avc: denied { execute_no_trans } for pid=2222 comm="syz.0.552" path="/file0" dev="ramfs" ino=10985 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:ramfs_t tclass=file permissive=1 [ 72.335178][ T1551] swapcached 16384 [ 72.416270][ T1551] pgpgin 235602 [ 72.458779][ T1551] pgpgout 160337 [ 72.485981][ T1551] pgfault 36069 [ 72.502529][ T1551] pgmajfault 880 [ 72.519748][ T1551] inactive_anon 55939072 [ 72.532551][ T1551] active_anon 254128128 [ 72.546888][ T1551] inactive_file 2428928 [ 72.571463][ T1551] active_file 131072 [ 72.584233][ T1551] unevictable 0 [ 72.595731][ T1551] hierarchical_memory_limit 314572800 [ 72.625905][ T1551] hierarchical_memsw_limit 9223372036854771712 [ 72.647342][ T1551] total_cache 314327040 [ 72.661388][ T1551] total_rss 49152 [ 72.680838][ T1551] total_rss_huge 0 [ 72.695601][ T1551] total_shmem 310001664 [ 72.705374][ T1551] total_mapped_file 4235264 [ 72.712812][ T1551] total_dirty 0 [ 72.716362][ T1551] total_writeback 0 [ 72.720175][ T1551] total_workingset_refault_anon 28 [ 72.725555][ T1551] total_workingset_refault_file 37007 [ 72.731146][ T1551] total_swap 127889408 [ 72.735233][ T1551] total_swapcached 16384 [ 72.739495][ T1551] total_pgpgin 235602 [ 72.743789][ T1551] total_pgpgout 160337 [ 72.747883][ T1551] total_pgfault 36069 [ 72.752084][ T1551] total_pgmajfault 880 [ 72.756222][ T1551] total_inactive_anon 55939072 [ 72.761193][ T1551] total_active_anon 254128128 [ 72.765890][ T1551] total_inactive_file 2428928 [ 72.770816][ T1551] total_active_file 131072 [ 72.775320][ T1551] total_unevictable 0 [ 72.779315][ T1551] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.337,pid=1529,uid=0 [ 72.794463][ T1551] Memory cgroup out of memory: Killed process 1529 (syz.3.337) total-vm:90104kB, anon-rss:1076kB, file-rss:22000kB, shmem-rss:0kB, UID:0 pgtables:184kB oom_score_adj:0 [ 72.826150][ T36] audit: type=1400 audit(1755425747.121:470): avc: denied { watch watch_reads } for pid=2255 comm="syz.2.561" path="/254/file0" dev="tmpfs" ino=1414 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 72.837262][ T2260] fuseblk: Bad value for 'fd' [ 72.932290][ T1528] syz.3.337 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 72.953140][ T36] audit: type=1400 audit(1755425747.251:471): avc: denied { map } for pid=2269 comm="syz.0.566" path="socket:[12070]" dev="sockfs" ino=12070 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 72.967572][ T1528] CPU: 0 UID: 0 PID: 1528 Comm: syz.3.337 Not tainted 6.12.38-syzkaller-g3f3a5c5e782d #0 c9247809a66a5ebb3467d1c2e99b1dedbd707993 [ 72.967621][ T1528] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 72.967637][ T1528] Call Trace: [ 72.967646][ T1528] [ 72.967667][ T1528] __dump_stack+0x21/0x30 [ 72.967702][ T1528] dump_stack_lvl+0x10c/0x190 [ 72.967733][ T1528] ? __cfi_dump_stack_lvl+0x10/0x10 [ 72.967761][ T1528] ? ___ratelimit+0x3f7/0x5a0 [ 72.967795][ T1528] dump_stack+0x19/0x20 [ 72.967824][ T1528] dump_header+0xd7/0x490 [ 72.967846][ T1528] ? __cfi_mem_cgroup_get_max+0x10/0x10 [ 72.967876][ T1528] oom_kill_process+0x4c0/0x7e0 [ 72.967902][ T1528] ? sched_clock_cpu+0x75/0x400 [ 72.967934][ T1528] out_of_memory+0x7ee/0xbd0 [ 72.967960][ T1528] ? __cfi_out_of_memory+0x10/0x10 [ 72.967984][ T1528] ? mutex_lock_killable+0x104/0x1c0 [ 72.968019][ T1528] ? __cfi_mutex_lock_killable+0x10/0x10 [ 72.968056][ T1528] mem_cgroup_out_of_memory+0x279/0x350 [ 72.968077][ T1528] ? drain_obj_stock+0xed0/0xed0 [ 72.968100][ T1528] ? memcg1_oom_prepare+0x2c6/0x3a0 [ 72.968136][ T1528] try_charge_memcg+0x8f7/0xde0 [ 72.968167][ T1528] ? gfp_to_alloc_flags_cma+0x90/0x1c0 [ 72.968201][ T1528] ? __cfi_try_charge_memcg+0x10/0x10 [ 72.968232][ T1528] ? __alloc_pages_noprof+0x31f/0x7b0 [ 72.968269][ T1528] __mem_cgroup_charge+0xf6/0x410 [ 72.968301][ T1528] ? filemap_get_entry+0x3fb/0x460 [ 72.968329][ T1528] ? __cfi___mem_cgroup_charge+0x10/0x10 [ 72.968364][ T1528] filemap_add_folio+0x57/0x2d0 [ 72.968390][ T1528] __filemap_get_folio+0x597/0x9d0 [ 72.968419][ T1528] ? __cfi___filemap_get_folio+0x10/0x10 [ 72.968466][ T1528] ? filemap_fault_recheck_pte_none+0x78/0x250 [ 72.968499][ T1528] filemap_fault+0xb41/0x16b0 [ 72.968530][ T1528] ? __cfi_filemap_fault+0x10/0x10 [ 72.968568][ T1528] ? __cfi_filemap_map_pages+0x10/0x10 [ 72.968601][ T1528] ? __cfi_lru_add+0x10/0x10 [ 72.968637][ T1528] ? folio_rotate_reclaimable+0x130/0x130 [ 72.968667][ T1528] do_pte_missing+0x298f/0x4240 [ 72.968696][ T1528] ? shmem_alloc_and_add_folio+0xcf6/0x1050 [ 72.968723][ T1528] ? irqentry_exit+0x4a/0x60 [ 72.968747][ T1528] ? pte_marker_clear+0x1b0/0x1b0 [ 72.968774][ T1528] ? sysvec_apic_timer_interrupt+0x50/0x90 [ 72.968812][ T1528] ? asm_sysvec_error_interrupt+0x11/0x30 [ 72.968852][ T1528] ? __pte_offset_map+0x1b0/0x230 [ 72.968884][ T1528] ? pte_offset_map_rw_nolock+0xba/0x110 [ 72.968917][ T1528] handle_mm_fault+0x1166/0x1b90 [ 72.968942][ T1528] ? __kasan_check_write+0x18/0x20 [ 72.968979][ T1528] ? __cfi_handle_mm_fault+0x10/0x10 [ 72.969004][ T1528] ? follow_page_pte+0x2bd/0xb90 [ 72.969035][ T1528] ? gup_must_unshare+0x1e0/0x1e0 [ 72.969065][ T1528] ? vma_is_secretmem+0x11/0x50 [ 72.969096][ T1528] __get_user_pages+0x1169/0x22d0 [ 72.969126][ T1528] ? __kasan_check_write+0x18/0x20 [ 72.969164][ T1528] ? populate_vma_page_range+0x230/0x230 [ 72.969192][ T1528] ? __kernel_write_iter+0x65e/0x830 [ 72.969230][ T1528] get_dump_page+0x107/0x220 [ 72.969258][ T1528] ? __cfi_get_dump_page+0x10/0x10 [ 72.969286][ T1528] ? __asan_memset+0x39/0x50 [ 72.969320][ T1528] dump_user_range+0x181/0xdf0 [ 72.969358][ T1528] ? __cfi_dump_emit+0x10/0x10 [ 72.969395][ T1528] ? __cfi_dump_user_range+0x10/0x10 [ 72.969432][ T1528] ? elf_coredump_extra_notes_write+0x42f/0x4c0 [ 72.969467][ T1528] ? __cfi_elf_coredump_extra_notes_write+0x10/0x10 [ 72.969503][ T1528] elf_core_dump+0x2cd9/0x3810 [ 72.969535][ T1528] ? __cfi_elf_core_dump+0x10/0x10 [ 72.969571][ T1528] ? dump_interrupted+0xf0/0xf0 [ 72.969606][ T1528] ? filp_open+0x182/0x1d0 [ 72.969642][ T1528] ? 0xffffffffff600000 [ 72.969662][ T1528] do_coredump+0x1bfa/0x2bd0 [ 72.969701][ T1528] ? __cfi_do_coredump+0x10/0x10 [ 72.969735][ T1528] ? asm_exc_general_protection+0x2b/0x30 [ 72.969780][ T1528] ? __kasan_slab_free+0x6a/0x80 [ 72.969805][ T1528] ? kmem_cache_free+0x1c1/0x510 [ 72.969841][ T1528] ? get_signal+0xa75/0x14f0 [ 72.969870][ T1528] get_signal+0x11fd/0x14f0 [ 72.969904][ T1528] arch_do_signal_or_restart+0x96/0x720 [ 72.969940][ T1528] ? __cfi_arch_do_signal_or_restart+0x10/0x10 [ 72.969979][ T1528] ? fixup_iopl_exception+0xdd/0x2e0 [ 72.970019][ T1528] irqentry_exit_to_user_mode+0x4e/0xb0 [ 72.970045][ T1528] irqentry_exit+0x16/0x60 [ 72.970067][ T1528] exc_general_protection+0x15a/0x1f0 [ 72.970099][ T1528] ? fpregs_assert_state_consistent+0xb7/0xe0 [ 72.970131][ T1528] asm_exc_general_protection+0x2b/0x30 [ 72.970167][ T1528] RIP: 0033:0x7f424358ebf1 [ 72.970185][ T1528] Code: 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f [ 72.970206][ T1528] RSP: 002b:0000200000000420 EFLAGS: 00010217 [ 72.970236][ T1528] RAX: 0000000000000000 RBX: 00007f42437b6090 RCX: 00007f424358ebe9 [ 72.970253][ T1528] RDX: 0000200000000440 RSI: 0000200000000420 RDI: 0000000002000080 [ 72.970269][ T1528] RBP: 00007f4243611e19 R08: 00002000000004c0 R09: 00002000000004c0 [ 72.970287][ T1528] R10: 0000200000000480 R11: 0000000000000202 R12: 0000000000000000 [ 72.970303][ T1528] R13: 00007f42437b6128 R14: 00007f42437b6090 R15: 00007ffd9443a9d8 [ 72.970325][ T1528] [ 72.977671][ T1528] memory: usage 302928kB, limit 307200kB, failcnt 60510 [ 73.098602][ T2275] 9pnet_fd: Insufficient options for proto=fd [ 73.304217][ T2281] fuse: Bad value for 'fd' [ 73.306706][ T1528] memory+swap: usage 430596kB, limit 9007199254740988kB, failcnt 0 [ 73.508071][ T1528] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 73.515161][ T1528] Memory cgroup stats for /syz3: [ 73.515326][ T1528] cache 314114048 [ 73.524145][ T1528] rss 114688 [ 73.527364][ T1528] rss_huge 0 [ 73.530610][ T1528] shmem 303202304 [ 73.534267][ T36] audit: type=1400 audit(1755425747.831:472): avc: denied { bind } for pid=2287 comm="syz.1.573" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1 [ 73.553433][ T1528] mapped_file 10473472 [ 73.557533][ T1528] dirty 0 [ 73.560567][ T36] audit: type=1400 audit(1755425747.831:473): avc: denied { name_bind } for pid=2287 comm="syz.1.573" src=25974 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=icmp_socket permissive=1 [ 73.581419][ T1528] writeback 0 [ 73.590262][ T36] audit: type=1400 audit(1755425747.831:474): avc: denied { node_bind } for pid=2287 comm="syz.1.573" src=25974 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=icmp_socket permissive=1 [ 73.614447][ T1528] workingset_refault_anon 28 [ 73.619060][ T1528] workingset_refault_file 43654 [ 73.653304][ T1528] swap 127918080 [ 73.659186][ T1528] swapcached 69632 [ 73.663915][ T1528] pgpgin 250180 [ 73.667512][ T1528] pgpgout 174952 [ 73.680393][ T1528] pgfault 37111 [ 73.690398][ T1528] pgmajfault 1042 [ 73.704294][ T1528] inactive_anon 51363840 [ 73.708595][ T1528] active_anon 252022784 [ 73.734807][ T1528] inactive_file 5713920 [ 73.739012][ T1528] active_file 4788224 [ 73.775176][ T1528] unevictable 0 [ 73.778677][ T1528] hierarchical_memory_limit 314572800 [ 73.794683][ T1528] hierarchical_memsw_limit 9223372036854771712 [ 73.800987][ T1528] total_cache 314114048 [ 73.805538][ T1528] total_rss 114688 [ 73.810183][ T1528] total_rss_huge 0 [ 73.820260][ T1528] total_shmem 303202304 [ 73.824439][ T1528] total_mapped_file 10473472 [ 73.829030][ T1528] total_dirty 0 [ 73.853076][ T1528] total_writeback 0 [ 73.867072][ T1528] total_workingset_refault_anon 28 [ 73.889604][ T1528] total_workingset_refault_file 43654 [ 73.916726][ T1528] total_swap 127918080 [ 73.928673][ T1528] total_swapcached 69632 [ 73.948989][ T1528] total_pgpgin 250180 [ 73.955102][ T1528] total_pgpgout 174952 [ 73.959275][ T1528] total_pgfault 37111 [ 73.963305][ T1528] total_pgmajfault 1042 [ 73.967466][ T1528] total_inactive_anon 51363840 [ 73.982438][ T1528] total_active_anon 252022784 [ 73.987155][ T1528] total_inactive_file 5713920 [ 74.014048][ T1528] total_active_file 4788224 [ 74.026631][ T1528] total_unevictable 0 [ 74.046071][ T1528] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.337,pid=1519,uid=0 [ 74.076443][ T1528] Memory cgroup out of memory: Killed process 1519 (syz.3.337) total-vm:90104kB, anon-rss:1076kB, file-rss:22004kB, shmem-rss:0kB, UID:0 pgtables:180kB oom_score_adj:0 [ 74.233683][ T1533] syz.3.337 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0 [ 74.264527][ T1533] CPU: 0 UID: 0 PID: 1533 Comm: syz.3.337 Not tainted 6.12.38-syzkaller-g3f3a5c5e782d #0 c9247809a66a5ebb3467d1c2e99b1dedbd707993 [ 74.264561][ T1533] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 74.264574][ T1533] Call Trace: [ 74.264580][ T1533] [ 74.264588][ T1533] __dump_stack+0x21/0x30 [ 74.264618][ T1533] dump_stack_lvl+0x10c/0x190 [ 74.264643][ T1533] ? __cfi_dump_stack_lvl+0x10/0x10 [ 74.264669][ T1533] ? ___ratelimit+0x3f7/0x5a0 [ 74.264697][ T1533] dump_stack+0x19/0x20 [ 74.264721][ T1533] dump_header+0xd7/0x490 [ 74.264740][ T1533] ? __cfi_mem_cgroup_get_max+0x10/0x10 [ 74.264770][ T1533] oom_kill_process+0x4c0/0x7e0 [ 74.264792][ T1533] ? sched_clock_cpu+0x75/0x400 [ 74.264818][ T1533] out_of_memory+0x7ee/0xbd0 [ 74.264840][ T1533] ? __cfi_out_of_memory+0x10/0x10 [ 74.264861][ T1533] ? mutex_lock_killable+0x92/0x1c0 [ 74.264890][ T1533] ? __cfi_mutex_lock_killable+0x10/0x10 [ 74.264921][ T1533] mem_cgroup_out_of_memory+0x279/0x350 [ 74.264940][ T1533] ? drain_obj_stock+0xed0/0xed0 [ 74.264959][ T1533] ? memcg1_oom_prepare+0x2c6/0x3a0 [ 74.264989][ T1533] try_charge_memcg+0x8f7/0xde0 [ 74.265015][ T1533] ? __cfi_try_charge_memcg+0x10/0x10 [ 74.265040][ T1533] ? __alloc_pages_noprof+0x31f/0x7b0 [ 74.265066][ T1533] ? __cfi___alloc_pages_noprof+0x10/0x10 [ 74.265092][ T1533] __mem_cgroup_charge+0xf6/0x410 [ 74.265119][ T1533] ? __cfi___mem_cgroup_charge+0x10/0x10 [ 74.265148][ T1533] shmem_alloc_and_add_folio+0x86d/0x1050 [ 74.265172][ T1533] ? put_swap_device+0x130/0x130 [ 74.265192][ T1533] ? shmem_huge_global_enabled+0x2da/0x360 [ 74.265211][ T1533] ? shmem_allowable_huge_orders+0x1f7/0x430 [ 74.265230][ T1533] ? __kasan_check_write+0x18/0x20 [ 74.265256][ T1533] ? _raw_spin_lock+0x8c/0x120 [ 74.265278][ T1533] shmem_get_folio_gfp+0x5f0/0x1380 [ 74.265299][ T1533] ? shmem_get_folio+0xc0/0xc0 [ 74.265315][ T1533] ? inode_maybe_inc_iversion+0x17d/0x1e0 [ 74.265342][ T1533] ? __cfi_inode_maybe_inc_iversion+0x10/0x10 [ 74.265368][ T1533] ? inode_to_bdi+0x6d/0x100 [ 74.265393][ T1533] shmem_write_begin+0xf4/0x270 [ 74.265414][ T1533] generic_perform_write+0x32d/0x960 [ 74.265442][ T1533] ? __cfi_generic_perform_write+0x10/0x10 [ 74.265467][ T1533] ? down_write+0xe9/0x2a0 [ 74.265484][ T1533] ? mnt_get_write_access_file+0x1af/0x3b0 [ 74.265508][ T1533] ? mnt_put_write_access_file+0xc2/0x100 [ 74.265532][ T1533] ? file_update_time+0x1ef/0x220 [ 74.265556][ T1533] shmem_file_write_iter+0x105/0x130 [ 74.265580][ T1533] ? __cfi_shmem_file_write_iter+0x10/0x10 [ 74.265603][ T1533] __kernel_write_iter+0x392/0x830 [ 74.265648][ T1533] ? __cfi_shmem_file_write_iter+0x10/0x10 [ 74.265674][ T1533] ? __cfi___kernel_write_iter+0x10/0x10 [ 74.265703][ T1533] ? get_dump_page+0x160/0x220 [ 74.265727][ T1533] ? __asan_memset+0x39/0x50 [ 74.265760][ T1533] ? iov_iter_bvec+0xc0/0x180 [ 74.265783][ T1533] dump_user_range+0xb06/0xdf0 [ 74.265815][ T1533] ? __cfi_dump_emit+0x10/0x10 [ 74.265845][ T1533] ? __cfi_dump_user_range+0x10/0x10 [ 74.265875][ T1533] ? elf_coredump_extra_notes_write+0x42f/0x4c0 [ 74.265904][ T1533] ? __cfi_elf_coredump_extra_notes_write+0x10/0x10 [ 74.265933][ T1533] elf_core_dump+0x2cd9/0x3810 [ 74.265976][ T1533] ? __cfi_elf_core_dump+0x10/0x10 [ 74.266007][ T1533] ? dump_interrupted+0xf0/0xf0 [ 74.266037][ T1533] ? filp_open+0x182/0x1d0 [ 74.266064][ T1533] ? 0xffffffffff600000 [ 74.266080][ T1533] do_coredump+0x1bfa/0x2bd0 [ 74.266115][ T1533] ? __cfi_do_coredump+0x10/0x10 [ 74.266146][ T1533] ? asm_exc_general_protection+0x2b/0x30 [ 74.266188][ T1533] ? __kasan_slab_free+0x6a/0x80 [ 74.266211][ T1533] ? kmem_cache_free+0x1c1/0x510 [ 74.266243][ T1533] ? get_signal+0xa75/0x14f0 [ 74.266272][ T1533] get_signal+0x11fd/0x14f0 [ 74.266302][ T1533] arch_do_signal_or_restart+0x96/0x720 [ 74.266335][ T1533] ? __cfi_arch_do_signal_or_restart+0x10/0x10 [ 74.266370][ T1533] ? fixup_iopl_exception+0xdd/0x2e0 [ 74.266404][ T1533] irqentry_exit_to_user_mode+0x4e/0xb0 [ 74.266426][ T1533] irqentry_exit+0x16/0x60 [ 74.266446][ T1533] exc_general_protection+0x15a/0x1f0 [ 74.266474][ T1533] ? fpregs_assert_state_consistent+0xb7/0xe0 [ 74.266502][ T1533] asm_exc_general_protection+0x2b/0x30 [ 74.266534][ T1533] RIP: 0033:0x7f424358ebf1 [ 74.266551][ T1533] Code: 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f [ 74.266571][ T1533] RSP: 002b:0000200000000420 EFLAGS: 00010217 [ 74.266591][ T1533] RAX: 0000000000000000 RBX: 00007f42437b6090 RCX: 00007f424358ebe9 [ 74.266607][ T1533] RDX: 0000200000000440 RSI: 0000200000000420 RDI: 0000000002000080 [ 74.266623][ T1533] RBP: 00007f4243611e19 R08: 00002000000004c0 R09: 00002000000004c0 [ 74.266639][ T1533] R10: 0000200000000480 R11: 0000000000000202 R12: 0000000000000000 [ 74.266654][ T1533] R13: 00007f42437b6128 R14: 00007f42437b6090 R15: 00007ffd9443a9d8 [ 74.266674][ T1533] [ 74.266682][ T1533] memory: usage 303272kB, limit 307200kB, failcnt 65388 [ 74.754409][ T1533] memory+swap: usage 431268kB, limit 9007199254740988kB, failcnt 0 [ 74.762428][ T1533] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 74.769299][ T1533] Memory cgroup stats for /syz3: [ 74.769451][ T1533] cache 312868864 [ 74.813564][ T1533] rss 937984 [ 74.816912][ T1533] rss_huge 0 [ 74.820121][ T1533] shmem 304910336 [ 74.851557][ T1533] mapped_file 7610368 [ 74.890247][ T1533] dirty 0 [ 74.893237][ T1533] writeback 0 [ 74.896543][ T1533] workingset_refault_anon 653 [ 74.940242][ T1533] workingset_refault_file 48789 [ 74.945138][ T1533] swap 127049728 [ 74.948698][ T1533] swapcached 946176 [ 74.980258][ T1533] pgpgin 262595 [ 74.983763][ T1533] pgpgout 187457 [ 75.024711][ T1533] pgfault 38262 [ 75.028219][ T1533] pgmajfault 1199 [ 75.066097][ T1533] inactive_anon 41545728 [ 75.081141][ T1533] active_anon 264065024 [ 75.085324][ T1533] inactive_file 4526080 [ 75.089481][ T1533] active_file 3031040 [ 75.159664][ T1533] unevictable 0 [ 75.184765][ T1533] hierarchical_memory_limit 314572800 [ 75.190182][ T1533] hierarchical_memsw_limit 9223372036854771712 [ 75.253877][ T1533] total_cache 312868864 [ 75.258081][ T1533] total_rss 937984 [ 75.279629][ T1533] total_rss_huge 0 [ 75.291899][ T1533] total_shmem 304910336 [ 75.303231][ T1533] total_mapped_file 7610368 [ 75.313317][ T1533] total_dirty 0 [ 75.316797][ T1533] total_writeback 0 [ 75.321934][ T1533] total_workingset_refault_anon 653 [ 75.327147][ T1533] total_workingset_refault_file 48789 [ 75.332766][ T1533] total_swap 127049728 [ 75.336846][ T1533] total_swapcached 946176 [ 75.341209][ T1533] total_pgpgin 262595 [ 75.345367][ T1533] total_pgpgout 187457 [ 75.349451][ T1533] total_pgfault 38262 [ 75.353461][ T1533] total_pgmajfault 1199 [ 75.357786][ T1533] total_inactive_anon 41545728 [ 75.362608][ T1533] total_active_anon 264065024 [ 75.369990][ T1533] total_inactive_file 4526080 [ 75.374817][ T1533] total_active_file 3031040 [ 75.379607][ T1533] total_unevictable 0 [ 75.383888][ T1533] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.337,pid=1522,uid=0 [ 75.404856][ T1533] Memory cgroup out of memory: Killed process 1522 (syz.3.337) total-vm:90104kB, anon-rss:1844kB, file-rss:22312kB, shmem-rss:0kB, UID:0 pgtables:212kB oom_score_adj:0 [ 75.433216][ T1515] syz.3.337 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0 [ 75.453081][ T1515] CPU: 1 UID: 0 PID: 1515 Comm: syz.3.337 Not tainted 6.12.38-syzkaller-g3f3a5c5e782d #0 c9247809a66a5ebb3467d1c2e99b1dedbd707993 [ 75.453116][ T1515] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 75.453148][ T1515] Call Trace: [ 75.453155][ T1515] [ 75.453164][ T1515] __dump_stack+0x21/0x30 [ 75.453210][ T1515] dump_stack_lvl+0x10c/0x190 [ 75.453237][ T1515] ? __cfi_dump_stack_lvl+0x10/0x10 [ 75.453264][ T1515] ? ___ratelimit+0x3f7/0x5a0 [ 75.453293][ T1515] dump_stack+0x19/0x20 [ 75.453319][ T1515] dump_header+0xd7/0x490 [ 75.453339][ T1515] ? __cfi_mem_cgroup_get_max+0x10/0x10 [ 75.453366][ T1515] oom_kill_process+0x4c0/0x7e0 [ 75.453397][ T1515] ? sched_clock_cpu+0x75/0x400 [ 75.453426][ T1515] out_of_memory+0x7ee/0xbd0 [ 75.453450][ T1515] ? __cfi_out_of_memory+0x10/0x10 [ 75.453471][ T1515] ? mutex_lock_killable+0x104/0x1c0 [ 75.453501][ T1515] ? __cfi_mutex_lock_killable+0x10/0x10 [ 75.453533][ T1515] mem_cgroup_out_of_memory+0x279/0x350 [ 75.453553][ T1515] ? drain_obj_stock+0xed0/0xed0 [ 75.453573][ T1515] ? memcg1_oom_prepare+0x2c6/0x3a0 [ 75.453605][ T1515] try_charge_memcg+0x8f7/0xde0 [ 75.453632][ T1515] ? __cfi_try_charge_memcg+0x10/0x10 [ 75.453659][ T1515] ? __alloc_pages_noprof+0x31f/0x7b0 [ 75.453686][ T1515] ? folio_unlock+0x12f/0x1a0 [ 75.453708][ T1515] ? __cfi___alloc_pages_noprof+0x10/0x10 [ 75.453736][ T1515] __mem_cgroup_charge+0xf6/0x410 [ 75.453765][ T1515] ? __cfi___mem_cgroup_charge+0x10/0x10 [ 75.453793][ T1515] ? do_pte_missing+0x2bdb/0x4240 [ 75.453818][ T1515] shmem_alloc_and_add_folio+0x86d/0x1050 [ 75.453844][ T1515] ? put_swap_device+0x130/0x130 [ 75.453866][ T1515] ? shmem_huge_global_enabled+0x2da/0x360 [ 75.453888][ T1515] ? shmem_allowable_huge_orders+0x1f7/0x430 [ 75.453909][ T1515] ? __kasan_check_write+0x18/0x20 [ 75.453939][ T1515] ? _raw_spin_lock+0x8c/0x120 [ 75.453963][ T1515] shmem_get_folio_gfp+0x5f0/0x1380 [ 75.453986][ T1515] ? shmem_get_folio+0xc0/0xc0 [ 75.454005][ T1515] ? inode_maybe_inc_iversion+0x17d/0x1e0 [ 75.454034][ T1515] ? __cfi_inode_maybe_inc_iversion+0x10/0x10 [ 75.454062][ T1515] ? inode_to_bdi+0x6d/0x100 [ 75.454089][ T1515] shmem_write_begin+0xf4/0x270 [ 75.454113][ T1515] generic_perform_write+0x32d/0x960 [ 75.454143][ T1515] ? __cfi_generic_perform_write+0x10/0x10 [ 75.454170][ T1515] ? down_write+0xe9/0x2a0 [ 75.454188][ T1515] ? mnt_get_write_access_file+0x1af/0x3b0 [ 75.454213][ T1515] ? mnt_put_write_access_file+0xc2/0x100 [ 75.454239][ T1515] ? file_update_time+0x1ef/0x220 [ 75.454264][ T1515] shmem_file_write_iter+0x105/0x130 [ 75.454289][ T1515] ? __cfi_shmem_file_write_iter+0x10/0x10 [ 75.454314][ T1515] __kernel_write_iter+0x392/0x830 [ 75.454343][ T1515] ? __cfi_shmem_file_write_iter+0x10/0x10 [ 75.454368][ T1515] ? __cfi___kernel_write_iter+0x10/0x10 [ 75.454406][ T1515] ? get_dump_page+0x160/0x220 [ 75.454429][ T1515] ? __asan_memset+0x39/0x50 [ 75.454456][ T1515] ? iov_iter_bvec+0xc0/0x180 [ 75.454478][ T1515] dump_user_range+0xb06/0xdf0 [ 75.454509][ T1515] ? __cfi_dump_emit+0x10/0x10 [ 75.454537][ T1515] ? __cfi_dump_user_range+0x10/0x10 [ 75.454567][ T1515] ? elf_coredump_extra_notes_write+0x42f/0x4c0 [ 75.454597][ T1515] ? __cfi_elf_coredump_extra_notes_write+0x10/0x10 [ 75.454625][ T1515] elf_core_dump+0x2cd9/0x3810 [ 75.454652][ T1515] ? __cfi_elf_core_dump+0x10/0x10 [ 75.454682][ T1515] ? dump_interrupted+0xf0/0xf0 [ 75.454710][ T1515] ? filp_open+0x182/0x1d0 [ 75.454736][ T1515] ? 0xffffffffff600000 [ 75.454752][ T1515] do_coredump+0x1bfa/0x2bd0 [ 75.454786][ T1515] ? __cfi_do_coredump+0x10/0x10 [ 75.454813][ T1515] ? asm_exc_general_protection+0x2b/0x30 [ 75.454851][ T1515] ? __kasan_slab_free+0x6a/0x80 [ 75.454871][ T1515] ? kmem_cache_free+0x1c1/0x510 [ 75.454901][ T1515] ? get_signal+0xa75/0x14f0 [ 75.454927][ T1515] get_signal+0x11fd/0x14f0 [ 75.454955][ T1515] arch_do_signal_or_restart+0x96/0x720 [ 75.454986][ T1515] ? __cfi_arch_do_signal_or_restart+0x10/0x10 [ 75.455018][ T1515] ? fixup_iopl_exception+0xdd/0x2e0 [ 75.455051][ T1515] irqentry_exit_to_user_mode+0x4e/0xb0 [ 75.455071][ T1515] irqentry_exit+0x16/0x60 [ 75.455090][ T1515] exc_general_protection+0x15a/0x1f0 [ 75.455118][ T1515] ? fpregs_assert_state_consistent+0xb7/0xe0 [ 75.455144][ T1515] asm_exc_general_protection+0x2b/0x30 [ 75.455174][ T1515] RIP: 0033:0x7f424358ebf1 [ 75.455190][ T1515] Code: 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f [ 75.455208][ T1515] RSP: 002b:0000200000000420 EFLAGS: 00010217 [ 75.455244][ T1515] RAX: 0000000000000000 RBX: 00007f42437b6090 RCX: 00007f424358ebe9 [ 75.455261][ T1515] RDX: 0000200000000440 RSI: 0000200000000420 RDI: 0000000002000080 [ 75.455277][ T1515] RBP: 00007f4243611e19 R08: 00002000000004c0 R09: 00002000000004c0 [ 75.455294][ T1515] R10: 0000200000000480 R11: 0000000000000202 R12: 0000000000000000 [ 75.455309][ T1515] R13: 00007f42437b6128 R14: 00007f42437b6090 R15: 00007ffd9443a9d8 [ 75.455328][ T1515] [ 75.455336][ T1515] memory: usage 306676kB, limit 307200kB, failcnt 69355 [ 75.957369][ T1515] memory+swap: usage 403380kB, limit 9007199254740988kB, failcnt 0 [ 75.965543][ T1515] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 75.978760][ T1515] Memory cgroup stats for /syz3: [ 75.978902][ T1515] cache 285736960 [ 75.994542][ T1515] rss 2142208 [ 75.998082][ T1515] rss_huge 0 [ 76.003152][ T1515] shmem 285208576 [ 76.007510][ T1515] mapped_file 503808 [ 76.017526][ T1515] dirty 0 [ 76.020642][ T1515] writeback 4096 [ 76.024285][ T1515] workingset_refault_anon 1049 [ 76.029156][ T1515] workingset_refault_file 53729 [ 76.034215][ T1515] swap 125419520 [ 76.092581][ T1515] swapcached 2531328 [ 76.105241][ T1515] pgpgin 273612 [ 76.121505][ T1515] pgpgout 204759 [ 76.134065][ T1515] pgfault 39329 [ 76.153083][ T1515] pgmajfault 1367 [ 76.158014][ T1515] inactive_anon 39047168 [ 76.280245][ T1515] active_anon 248451072 [ 76.284453][ T1515] inactive_file 0 [ 76.288100][ T1515] active_file 528384 [ 76.292263][ T1515] unevictable 0 [ 76.295742][ T1515] hierarchical_memory_limit 314572800 [ 76.301385][ T1515] hierarchical_memsw_limit 9223372036854771712 [ 76.308969][ T1515] total_cache 285736960 [ 76.319307][ T1515] total_rss 2142208 [ 76.324619][ T1515] total_rss_huge 0 [ 76.328361][ T1515] total_shmem 285208576 [ 76.334387][ T1515] total_mapped_file 503808 [ 76.344390][ T1515] total_dirty 0 [ 76.347877][ T1515] total_writeback 4096 [ 76.352174][ T1515] total_workingset_refault_anon 1049 [ 76.380243][ T1515] total_workingset_refault_file 53729 [ 76.400240][ T1515] total_swap 125419520 [ 76.404349][ T1515] total_swapcached 2531328 [ 76.439086][ T1515] total_pgpgin 273612 [ 76.450258][ T1515] total_pgpgout 204759 [ 76.463822][ T1515] total_pgfault 39329 [ 76.475251][ T1515] total_pgmajfault 1367 [ 76.480226][ T1515] total_inactive_anon 39047168 [ 76.485215][ T1515] total_active_anon 248451072 [ 76.489943][ T1515] total_inactive_file 0 [ 76.494318][ T1515] total_active_file 528384 [ 76.498761][ T1515] total_unevictable 0 [ 76.502977][ T1515] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.337,pid=1533,uid=0 [ 76.517943][ T1515] Memory cgroup out of memory: Killed process 1533 (syz.3.337) total-vm:90104kB, anon-rss:1460kB, file-rss:22272kB, shmem-rss:0kB, UID:0 pgtables:212kB oom_score_adj:0 [ 76.680898][ T1532] syz.3.337 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0 [ 76.735144][ T1532] CPU: 0 UID: 0 PID: 1532 Comm: syz.3.337 Not tainted 6.12.38-syzkaller-g3f3a5c5e782d #0 c9247809a66a5ebb3467d1c2e99b1dedbd707993 [ 76.735183][ T1532] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 76.735198][ T1532] Call Trace: [ 76.735205][ T1532] [ 76.735214][ T1532] __dump_stack+0x21/0x30 [ 76.735249][ T1532] dump_stack_lvl+0x10c/0x190 [ 76.735278][ T1532] ? __cfi_dump_stack_lvl+0x10/0x10 [ 76.735307][ T1532] ? ___ratelimit+0x3f7/0x5a0 [ 76.735338][ T1532] dump_stack+0x19/0x20 [ 76.735366][ T1532] dump_header+0xd7/0x490 [ 76.735388][ T1532] ? __cfi_mem_cgroup_get_max+0x10/0x10 [ 76.735418][ T1532] oom_kill_process+0x4c0/0x7e0 [ 76.735455][ T1532] ? sched_clock_cpu+0x75/0x400 [ 76.735485][ T1532] out_of_memory+0x7ee/0xbd0 [ 76.735510][ T1532] ? __cfi_out_of_memory+0x10/0x10 [ 76.735540][ T1532] ? mutex_lock_killable+0x92/0x1c0 [ 76.735573][ T1532] ? __cfi_mutex_lock_killable+0x10/0x10 [ 76.735608][ T1532] mem_cgroup_out_of_memory+0x279/0x350 [ 76.735630][ T1532] ? drain_obj_stock+0xed0/0xed0 [ 76.735651][ T1532] ? memcg1_oom_prepare+0x2c6/0x3a0 [ 76.735685][ T1532] try_charge_memcg+0x8f7/0xde0 [ 76.735715][ T1532] ? __cfi_try_charge_memcg+0x10/0x10 [ 76.735744][ T1532] ? __alloc_pages_noprof+0x31f/0x7b0 [ 76.735771][ T1532] ? folio_unlock+0x12f/0x1a0 [ 76.735795][ T1532] ? __cfi___alloc_pages_noprof+0x10/0x10 [ 76.735824][ T1532] __mem_cgroup_charge+0xf6/0x410 [ 76.735855][ T1532] ? __cfi___mem_cgroup_charge+0x10/0x10 [ 76.735886][ T1532] ? do_pte_missing+0x2bdb/0x4240 [ 76.735913][ T1532] shmem_alloc_and_add_folio+0x86d/0x1050 [ 76.735937][ T1532] ? finish_task_switch+0x13a/0x780 [ 76.735965][ T1532] ? put_swap_device+0x130/0x130 [ 76.735988][ T1532] ? shmem_huge_global_enabled+0x2da/0x360 [ 76.736011][ T1532] ? shmem_allowable_huge_orders+0x1f7/0x430 [ 76.736033][ T1532] ? __kasan_check_write+0x18/0x20 [ 76.736063][ T1532] ? _raw_spin_lock+0x8c/0x120 [ 76.736089][ T1532] shmem_get_folio_gfp+0x5f0/0x1380 [ 76.736113][ T1532] ? shmem_get_folio+0xc0/0xc0 [ 76.736137][ T1532] ? inode_maybe_inc_iversion+0x17d/0x1e0 [ 76.736168][ T1532] ? __cfi_inode_maybe_inc_iversion+0x10/0x10 [ 76.736198][ T1532] ? inode_to_bdi+0x6d/0x100 [ 76.736226][ T1532] shmem_write_begin+0xf4/0x270 [ 76.736251][ T1532] generic_perform_write+0x32d/0x960 [ 76.736283][ T1532] ? __cfi_generic_perform_write+0x10/0x10 [ 76.736312][ T1532] ? down_write+0xe9/0x2a0 [ 76.736332][ T1532] ? mnt_get_write_access_file+0x1af/0x3b0 [ 76.736360][ T1532] ? mnt_put_write_access_file+0xc2/0x100 [ 76.736387][ T1532] ? file_update_time+0x1ef/0x220 [ 76.736416][ T1532] shmem_file_write_iter+0x105/0x130 [ 76.736443][ T1532] ? __cfi_shmem_file_write_iter+0x10/0x10 [ 76.736471][ T1532] __kernel_write_iter+0x392/0x830 [ 76.736503][ T1532] ? __cfi_shmem_file_write_iter+0x10/0x10 [ 76.736536][ T1532] ? __cfi___kernel_write_iter+0x10/0x10 [ 76.736569][ T1532] ? get_dump_page+0x160/0x220 [ 76.736595][ T1532] ? __asan_memset+0x39/0x50 [ 76.736625][ T1532] ? iov_iter_bvec+0xc0/0x180 [ 76.736649][ T1532] dump_user_range+0xb06/0xdf0 [ 76.736684][ T1532] ? __cfi_dump_emit+0x10/0x10 [ 76.736715][ T1532] ? __cfi_dump_user_range+0x10/0x10 [ 76.736749][ T1532] ? elf_coredump_extra_notes_write+0x42f/0x4c0 [ 76.736781][ T1532] ? __cfi_elf_coredump_extra_notes_write+0x10/0x10 [ 76.736814][ T1532] elf_core_dump+0x2cd9/0x3810 [ 76.736842][ T1532] ? __cfi_elf_core_dump+0x10/0x10 [ 76.736874][ T1532] ? dump_interrupted+0xf0/0xf0 [ 76.736905][ T1532] ? filp_open+0x182/0x1d0 [ 76.736932][ T1532] ? 0xffffffffff600000 [ 76.736949][ T1532] do_coredump+0x1bfa/0x2bd0 [ 76.736984][ T1532] ? __cfi_do_coredump+0x10/0x10 [ 76.737015][ T1532] ? asm_exc_general_protection+0x2b/0x30 [ 76.737056][ T1532] ? __kasan_slab_free+0x6a/0x80 [ 76.737079][ T1532] ? kmem_cache_free+0x1c1/0x510 [ 76.737111][ T1532] ? get_signal+0xa75/0x14f0 [ 76.737138][ T1532] get_signal+0x11fd/0x14f0 [ 76.737168][ T1532] arch_do_signal_or_restart+0x96/0x720 [ 76.737200][ T1532] ? __cfi_arch_do_signal_or_restart+0x10/0x10 [ 76.737234][ T1532] ? fixup_iopl_exception+0xdd/0x2e0 [ 76.737268][ T1532] irqentry_exit_to_user_mode+0x4e/0xb0 [ 76.737291][ T1532] irqentry_exit+0x16/0x60 [ 76.737310][ T1532] exc_general_protection+0x15a/0x1f0 [ 76.737339][ T1532] ? fpregs_assert_state_consistent+0xb7/0xe0 [ 76.737367][ T1532] asm_exc_general_protection+0x2b/0x30 [ 76.737399][ T1532] RIP: 0033:0x7f424358ebf1 [ 76.737417][ T1532] Code: 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f [ 76.737453][ T1532] RSP: 002b:0000200000000420 EFLAGS: 00010217 [ 76.737473][ T1532] RAX: 0000000000000000 RBX: 00007f42437b6090 RCX: 00007f424358ebe9 [ 76.737489][ T1532] RDX: 0000200000000440 RSI: 0000200000000420 RDI: 0000000002000080 [ 76.737505][ T1532] RBP: 00007f4243611e19 R08: 00002000000004c0 R09: 00002000000004c0 [ 76.737521][ T1532] R10: 0000200000000480 R11: 0000000000000202 R12: 0000000000000000 [ 76.737542][ T1532] R13: 00007f42437b6128 R14: 00007f42437b6090 R15: 00007ffd9443a9d8 [ 76.737562][ T1532] [ 76.955029][ T1532] memory: usage 305816kB, limit 307200kB, failcnt 72729 [ 76.990323][ T36] audit: type=1400 audit(1755425751.261:475): avc: denied { map } for pid=2400 comm="syz.1.624" path="socket:[12236]" dev="sockfs" ino=12236 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 77.155886][ T1532] memory+swap: usage 422960kB, limit 9007199254740988kB, failcnt 0 [ 77.195389][ T36] audit: type=1400 audit(1755425751.261:476): avc: denied { accept } for pid=2400 comm="syz.1.624" path="socket:[12236]" dev="sockfs" ino=12236 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 77.421678][ T1532] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 77.428587][ T1532] Memory cgroup stats for /syz3: [ 77.428735][ T1532] cache 307351552 [ 77.520250][ T1532] rss 2211840 [ 77.523607][ T1532] rss_huge 0 [ 77.526814][ T1532] shmem 302145536 [ 77.620273][ T1532] mapped_file 4788224 [ 77.624310][ T1532] dirty 0 [ 77.627262][ T1532] writeback 53248 [ 77.676871][ T2430] netlink: 68 bytes leftover after parsing attributes in process `syz.0.637'. [ 77.684425][ T1532] workingset_refault_anon 1056 [ 77.720297][ T1532] workingset_refault_file 58921 [ 77.745427][ T1532] swap 124821504 [ 77.749015][ T1532] swapcached 2560000 [ 77.790246][ T1532] pgpgin 287806 [ 77.793755][ T1532] pgpgout 213601 [ 77.826846][ T2434] tipc: Can't bind to reserved service type 0 [ 77.826848][ T1532] pgfault 40054 [ 77.882530][ T1532] pgmajfault 1415 [ 77.916897][ T1532] inactive_anon 123809792 [ 77.964040][ T1532] active_anon 180944896 [ 77.968243][ T1532] inactive_file 1257472 [ 77.992739][ T1532] active_file 3444736 [ 78.010273][ T1532] unevictable 0 [ 78.020853][ T1532] hierarchical_memory_limit 314572800 [ 78.044731][ T1532] hierarchical_memsw_limit 9223372036854771712 [ 78.068467][ T1532] total_cache 307351552 [ 78.083953][ T1532] total_rss 2211840 [ 78.099938][ T1532] total_rss_huge 0 [ 78.116141][ T1532] total_shmem 302145536 [ 78.130103][ T1532] total_mapped_file 4788224 [ 78.139242][ T1532] total_dirty 0 [ 78.146245][ T1532] total_writeback 53248 [ 78.158268][ T1532] total_workingset_refault_anon 1056 [ 78.169330][ T1532] total_workingset_refault_file 58921 [ 78.180300][ T1532] total_swap 124821504 [ 78.188823][ T1532] total_swapcached 2560000 [ 78.197627][ T1532] total_pgpgin 287806 [ 78.206015][ T1532] total_pgpgout 213601 [ 78.214564][ T1532] total_pgfault 40054 [ 78.223053][ T1532] total_pgmajfault 1415 [ 78.231599][ T1532] total_inactive_anon 123809792 [ 78.242201][ T1532] total_active_anon 180944896 [ 78.251311][ T1532] total_inactive_file 1257472 [ 78.261613][ T1532] total_active_file 3444736 [ 78.270554][ T1532] total_unevictable 0 [ 78.278986][ T1532] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.337,pid=1518,uid=0 [ 78.309158][ T1532] Memory cgroup out of memory: Killed process 1518 (syz.3.337) total-vm:90104kB, anon-rss:1844kB, file-rss:22252kB, shmem-rss:0kB, UID:0 pgtables:212kB oom_score_adj:0 [ 78.350312][ T1551] syz.3.337 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 78.389583][ T1551] CPU: 0 UID: 0 PID: 1551 Comm: syz.3.337 Not tainted 6.12.38-syzkaller-g3f3a5c5e782d #0 c9247809a66a5ebb3467d1c2e99b1dedbd707993 [ 78.389618][ T1551] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 78.389632][ T1551] Call Trace: [ 78.389639][ T1551] [ 78.389647][ T1551] __dump_stack+0x21/0x30 [ 78.389679][ T1551] dump_stack_lvl+0x10c/0x190 [ 78.389706][ T1551] ? __cfi_dump_stack_lvl+0x10/0x10 [ 78.389732][ T1551] ? ___ratelimit+0x3f7/0x5a0 [ 78.389761][ T1551] dump_stack+0x19/0x20 [ 78.389804][ T1551] dump_header+0xd7/0x490 [ 78.389825][ T1551] ? __cfi_mem_cgroup_get_max+0x10/0x10 [ 78.389853][ T1551] oom_kill_process+0x4c0/0x7e0 [ 78.389877][ T1551] ? sched_clock_cpu+0x75/0x400 [ 78.389907][ T1551] out_of_memory+0x7ee/0xbd0 [ 78.389931][ T1551] ? __cfi_out_of_memory+0x10/0x10 [ 78.389955][ T1551] ? mutex_lock_killable+0x104/0x1c0 [ 78.389995][ T1551] ? __cfi_mutex_lock_killable+0x10/0x10 [ 78.390030][ T1551] mem_cgroup_out_of_memory+0x279/0x350 [ 78.390050][ T1551] ? drain_obj_stock+0xed0/0xed0 [ 78.390072][ T1551] ? memcg1_oom_prepare+0x2c6/0x3a0 [ 78.390105][ T1551] try_charge_memcg+0x8f7/0xde0 [ 78.390133][ T1551] ? gfp_to_alloc_flags_cma+0x90/0x1c0 [ 78.390173][ T1551] ? __cfi_try_charge_memcg+0x10/0x10 [ 78.390202][ T1551] ? __alloc_pages_noprof+0x31f/0x7b0 [ 78.390234][ T1551] __mem_cgroup_charge+0xf6/0x410 [ 78.390265][ T1551] ? filemap_get_entry+0x3fb/0x460 [ 78.390291][ T1551] ? __cfi___mem_cgroup_charge+0x10/0x10 [ 78.390324][ T1551] filemap_add_folio+0x57/0x2d0 [ 78.390348][ T1551] __filemap_get_folio+0x597/0x9d0 [ 78.390375][ T1551] ? __cfi___filemap_get_folio+0x10/0x10 [ 78.390401][ T1551] ? mm_trace_rss_stat+0x20/0x130 [ 78.390433][ T1551] ? filemap_fault_recheck_pte_none+0x78/0x250 [ 78.390463][ T1551] filemap_fault+0xb41/0x16b0 [ 78.390491][ T1551] ? __cfi_filemap_fault+0x10/0x10 [ 78.390538][ T1551] ? __cfi_filemap_map_pages+0x10/0x10 [ 78.390569][ T1551] ? __cfi_lru_add+0x10/0x10 [ 78.390594][ T1551] ? folio_rotate_reclaimable+0x130/0x130 [ 78.390621][ T1551] do_pte_missing+0x298f/0x4240 [ 78.390648][ T1551] ? shmem_alloc_and_add_folio+0xcf6/0x1050 [ 78.390674][ T1551] ? pte_marker_clear+0x1b0/0x1b0 [ 78.390699][ T1551] ? put_swap_device+0x130/0x130 [ 78.390723][ T1551] ? __pte_offset_map+0x1b0/0x230 [ 78.390754][ T1551] ? pte_offset_map_rw_nolock+0xba/0x110 [ 78.390786][ T1551] handle_mm_fault+0x1166/0x1b90 [ 78.390807][ T1551] ? __kasan_check_write+0x18/0x20 [ 78.390843][ T1551] ? __cfi_handle_mm_fault+0x10/0x10 [ 78.390866][ T1551] ? follow_page_pte+0x2bd/0xb90 [ 78.390893][ T1551] ? gup_must_unshare+0x1e0/0x1e0 [ 78.390921][ T1551] ? vma_is_secretmem+0x11/0x50 [ 78.390950][ T1551] __get_user_pages+0x1169/0x22d0 [ 78.390977][ T1551] ? __kasan_check_write+0x18/0x20 [ 78.391012][ T1551] ? populate_vma_page_range+0x230/0x230 [ 78.391038][ T1551] ? __kernel_write_iter+0x65e/0x830 [ 78.391073][ T1551] get_dump_page+0x107/0x220 [ 78.391100][ T1551] ? __cfi_get_dump_page+0x10/0x10 [ 78.391137][ T1551] ? __asan_memset+0x39/0x50 [ 78.391175][ T1551] dump_user_range+0x181/0xdf0 [ 78.391211][ T1551] ? __cfi_dump_emit+0x10/0x10 [ 78.391244][ T1551] ? __cfi_dump_user_range+0x10/0x10 [ 78.391279][ T1551] ? elf_coredump_extra_notes_write+0x42f/0x4c0 [ 78.391312][ T1551] ? __cfi_elf_coredump_extra_notes_write+0x10/0x10 [ 78.391346][ T1551] elf_core_dump+0x2cd9/0x3810 [ 78.391375][ T1551] ? __cfi_elf_core_dump+0x10/0x10 [ 78.391408][ T1551] ? dump_interrupted+0xf0/0xf0 [ 78.391440][ T1551] ? filp_open+0x182/0x1d0 [ 78.391468][ T1551] ? 0xffffffffff600000 [ 78.391485][ T1551] do_coredump+0x1bfa/0x2bd0 [ 78.391522][ T1551] ? __cfi_do_coredump+0x10/0x10 [ 78.391553][ T1551] ? asm_exc_general_protection+0x2b/0x30 [ 78.391595][ T1551] ? __kasan_slab_free+0x6a/0x80 [ 78.391618][ T1551] ? kmem_cache_free+0x1c1/0x510 [ 78.391652][ T1551] ? get_signal+0xa75/0x14f0 [ 78.391680][ T1551] get_signal+0x11fd/0x14f0 [ 78.391710][ T1551] arch_do_signal_or_restart+0x96/0x720 [ 78.391743][ T1551] ? __cfi_arch_do_signal_or_restart+0x10/0x10 [ 78.391778][ T1551] ? fixup_iopl_exception+0xdd/0x2e0 [ 78.391813][ T1551] irqentry_exit_to_user_mode+0x4e/0xb0 [ 78.391836][ T1551] irqentry_exit+0x16/0x60 [ 78.391856][ T1551] exc_general_protection+0x15a/0x1f0 [ 78.391886][ T1551] ? fpregs_assert_state_consistent+0xb7/0xe0 [ 78.391915][ T1551] asm_exc_general_protection+0x2b/0x30 [ 78.391947][ T1551] RIP: 0033:0x7f424358ebf1 [ 78.391965][ T1551] Code: 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f [ 78.391984][ T1551] RSP: 002b:0000200000000420 EFLAGS: 00010217 [ 78.392005][ T1551] RAX: 0000000000000000 RBX: 00007f42437b6090 RCX: 00007f424358ebe9 [ 78.392021][ T1551] RDX: 0000200000000440 RSI: 0000200000000420 RDI: 0000000002000080 [ 78.392037][ T1551] RBP: 00007f4243611e19 R08: 00002000000004c0 R09: 00002000000004c0 [ 78.392053][ T1551] R10: 0000200000000480 R11: 0000000000000202 R12: 0000000000000000 [ 78.392068][ T1551] R13: 00007f42437b6128 R14: 00007f42437b6090 R15: 00007ffd9443a9d8 [ 78.392087][ T1551] [ 78.903502][ T1551] memory: usage 287884kB, limit 307200kB, failcnt 75308 [ 78.910601][ T1551] memory+swap: usage 396444kB, limit 9007199254740988kB, failcnt 0 [ 78.918511][ T1551] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 78.925383][ T1551] Memory cgroup stats for /syz3: [ 78.925520][ T1551] cache 293163008 [ 78.934105][ T1551] rss 1363968 [ 78.937416][ T1551] rss_huge 0 [ 78.940642][ T1551] shmem 286543872 [ 78.944277][ T1551] mapped_file 6557696 [ 78.948272][ T1551] dirty 0 [ 78.951233][ T1551] writeback 4096 [ 78.954791][ T1551] workingset_refault_anon 1554 [ 78.959555][ T1551] workingset_refault_file 64256 [ 78.964436][ T1551] swap 111165440 [ 78.967991][ T1551] swapcached 1449984 [ 78.971899][ T1551] pgpgin 305479 [ 78.975363][ T1551] pgpgout 235041 [ 78.978906][ T1551] pgfault 42354 [ 78.982386][ T1551] pgmajfault 1572 [ 78.986039][ T1551] inactive_anon 182792192 [ 78.990388][ T1551] active_anon 105340928 [ 78.994557][ T1551] inactive_file 0 [ 78.998220][ T1551] active_file 6619136 [ 79.002233][ T1551] unevictable 0 [ 79.007291][ T1551] hierarchical_memory_limit 314572800 [ 79.012712][ T1551] hierarchical_memsw_limit 9223372036854771712 [ 79.018869][ T1551] total_cache 293163008 [ 79.023051][ T1551] total_rss 1363968 [ 79.026865][ T1551] total_rss_huge 0 [ 79.030605][ T1551] total_shmem 286543872 [ 79.034770][ T1551] total_mapped_file 6557696 [ 79.039276][ T1551] total_dirty 0 [ 79.042764][ T1551] total_writeback 4096 [ 79.046839][ T1551] total_workingset_refault_anon 1554 [ 79.052150][ T1551] total_workingset_refault_file 64256 [ 79.057536][ T1551] total_swap 111165440 [ 79.061654][ T1551] total_swapcached 1449984 [ 79.066080][ T1551] total_pgpgin 305479 [ 79.070061][ T1551] total_pgpgout 235041 [ 79.074159][ T1551] total_pgfault 42354 [ 79.078167][ T1551] total_pgmajfault 1572 [ 79.082409][ T1551] total_inactive_anon 182792192 [ 79.087310][ T1551] total_active_anon 105340928 [ 79.092024][ T1551] total_inactive_file 0 [ 79.096187][ T1551] total_active_file 6619136 [ 79.100719][ T1551] total_unevictable 0 [ 79.104705][ T1551] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.337,pid=1530,uid=0 [ 79.119572][ T1551] Memory cgroup out of memory: Killed process 1530 (syz.3.337) total-vm:90104kB, anon-rss:1076kB, file-rss:22324kB, shmem-rss:0kB, UID:0 pgtables:212kB oom_score_adj:0 [ 79.871059][ T36] audit: type=1326 audit(1755425754.171:477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2505 comm="syz.2.671" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1294b8ebe9 code=0x7ffc0000 [ 79.900366][ T36] audit: type=1326 audit(1755425754.171:478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2505 comm="syz.2.671" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1294b8ebe9 code=0x7ffc0000 [ 79.935407][ T36] audit: type=1326 audit(1755425754.191:479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2505 comm="syz.2.671" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f1294b8ebe9 code=0x7ffc0000 [ 79.965133][ T36] audit: type=1326 audit(1755425754.191:480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2505 comm="syz.2.671" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1294b8ebe9 code=0x7ffc0000 [ 80.008740][ T36] audit: type=1326 audit(1755425754.191:481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2505 comm="syz.2.671" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1294b8ebe9 code=0x7ffc0000 [ 80.041476][ T36] audit: type=1326 audit(1755425754.191:482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2505 comm="syz.2.671" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f1294b8ebe9 code=0x7ffc0000 [ 80.073805][ T36] audit: type=1326 audit(1755425754.191:483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2505 comm="syz.2.671" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1294b8ebe9 code=0x7ffc0000 [ 80.097409][ T36] audit: type=1326 audit(1755425754.191:484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2505 comm="syz.2.671" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1294b8ebe9 code=0x7ffc0000 [ 80.120988][ T36] audit: type=1326 audit(1755425754.191:485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2505 comm="syz.2.671" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f1294b8ebe9 code=0x7ffc0000 [ 80.144372][ T36] audit: type=1326 audit(1755425754.191:486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2505 comm="syz.2.671" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1294b8ebe9 code=0x7ffc0000 [ 80.661950][ T1531] syz.3.337 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0 [ 80.731481][ T1531] CPU: 0 UID: 0 PID: 1531 Comm: syz.3.337 Not tainted 6.12.38-syzkaller-g3f3a5c5e782d #0 c9247809a66a5ebb3467d1c2e99b1dedbd707993 [ 80.731521][ T1531] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 80.731535][ T1531] Call Trace: [ 80.731544][ T1531] [ 80.731553][ T1531] __dump_stack+0x21/0x30 [ 80.731588][ T1531] dump_stack_lvl+0x10c/0x190 [ 80.731622][ T1531] ? __cfi_dump_stack_lvl+0x10/0x10 [ 80.731652][ T1531] ? ___ratelimit+0x3f7/0x5a0 [ 80.731684][ T1531] dump_stack+0x19/0x20 [ 80.731712][ T1531] dump_header+0xd7/0x490 [ 80.731734][ T1531] ? __cfi_mem_cgroup_get_max+0x10/0x10 [ 80.731765][ T1531] oom_kill_process+0x4c0/0x7e0 [ 80.731791][ T1531] ? sched_clock_cpu+0x75/0x400 [ 80.731822][ T1531] out_of_memory+0x7ee/0xbd0 [ 80.731847][ T1531] ? __cfi_out_of_memory+0x10/0x10 [ 80.731872][ T1531] ? mutex_lock_killable+0x92/0x1c0 [ 80.731907][ T1531] ? __cfi_mutex_lock_killable+0x10/0x10 [ 80.731944][ T1531] mem_cgroup_out_of_memory+0x279/0x350 [ 80.731966][ T1531] ? drain_obj_stock+0xed0/0xed0 [ 80.731988][ T1531] ? memcg1_oom_prepare+0x2c6/0x3a0 [ 80.732023][ T1531] try_charge_memcg+0x8f7/0xde0 [ 80.732054][ T1531] ? __cfi_try_charge_memcg+0x10/0x10 [ 80.732085][ T1531] ? __alloc_pages_noprof+0x31f/0x7b0 [ 80.732114][ T1531] ? __cfi___alloc_pages_noprof+0x10/0x10 [ 80.732143][ T1531] ? __folio_batch_add_and_move+0x2ab/0x370 [ 80.732172][ T1531] __mem_cgroup_charge+0xf6/0x410 [ 80.732205][ T1531] ? _raw_spin_lock+0x8c/0x120 [ 80.732243][ T1531] ? __cfi___mem_cgroup_charge+0x10/0x10 [ 80.732278][ T1531] shmem_alloc_and_add_folio+0x86d/0x1050 [ 80.732306][ T1531] ? put_swap_device+0x130/0x130 [ 80.732331][ T1531] ? shmem_huge_global_enabled+0x2da/0x360 [ 80.732355][ T1531] ? shmem_allowable_huge_orders+0x1f7/0x430 [ 80.732378][ T1531] ? __kasan_check_write+0x18/0x20 [ 80.732411][ T1531] ? _raw_spin_lock+0x8c/0x120 [ 80.732437][ T1531] shmem_get_folio_gfp+0x5f0/0x1380 [ 80.732475][ T1531] ? shmem_get_folio+0xc0/0xc0 [ 80.732495][ T1531] ? follow_page_pte+0xa5c/0xb90 [ 80.732534][ T1531] ? inode_to_bdi+0x6d/0x100 [ 80.732562][ T1531] shmem_write_begin+0xf4/0x270 [ 80.732586][ T1531] generic_perform_write+0x32d/0x960 [ 80.732617][ T1531] ? __cfi_generic_perform_write+0x10/0x10 [ 80.732645][ T1531] ? down_write+0xe9/0x2a0 [ 80.732664][ T1531] ? file_update_time+0xa3/0x220 [ 80.732691][ T1531] shmem_file_write_iter+0x105/0x130 [ 80.732717][ T1531] ? __cfi_shmem_file_write_iter+0x10/0x10 [ 80.732743][ T1531] __kernel_write_iter+0x392/0x830 [ 80.732775][ T1531] ? __cfi_shmem_file_write_iter+0x10/0x10 [ 80.732802][ T1531] ? __cfi___kernel_write_iter+0x10/0x10 [ 80.732832][ T1531] ? get_dump_page+0x160/0x220 [ 80.732856][ T1531] ? __asan_memset+0x39/0x50 [ 80.732884][ T1531] ? iov_iter_bvec+0xc0/0x180 [ 80.732907][ T1531] dump_user_range+0xb06/0xdf0 [ 80.732940][ T1531] ? __cfi_dump_emit+0x10/0x10 [ 80.732972][ T1531] ? __cfi_dump_user_range+0x10/0x10 [ 80.733003][ T1531] ? elf_coredump_extra_notes_write+0x42f/0x4c0 [ 80.733033][ T1531] ? __cfi_elf_coredump_extra_notes_write+0x10/0x10 [ 80.733064][ T1531] elf_core_dump+0x2cd9/0x3810 [ 80.733091][ T1531] ? __cfi_elf_core_dump+0x10/0x10 [ 80.733121][ T1531] ? dump_interrupted+0xf0/0xf0 [ 80.733150][ T1531] ? filp_open+0x182/0x1d0 [ 80.733177][ T1531] ? 0xffffffffff600000 [ 80.733194][ T1531] do_coredump+0x1bfa/0x2bd0 [ 80.733234][ T1531] ? __cfi_do_coredump+0x10/0x10 [ 80.733263][ T1531] ? asm_exc_general_protection+0x2b/0x30 [ 80.733302][ T1531] ? __kasan_slab_free+0x6a/0x80 [ 80.733323][ T1531] ? kmem_cache_free+0x1c1/0x510 [ 80.733353][ T1531] ? get_signal+0xa75/0x14f0 [ 80.733379][ T1531] get_signal+0x11fd/0x14f0 [ 80.733407][ T1531] arch_do_signal_or_restart+0x96/0x720 [ 80.733438][ T1531] ? __cfi_arch_do_signal_or_restart+0x10/0x10 [ 80.733474][ T1531] ? fixup_iopl_exception+0xdd/0x2e0 [ 80.733513][ T1531] irqentry_exit_to_user_mode+0x4e/0xb0 [ 80.733533][ T1531] irqentry_exit+0x16/0x60 [ 80.733552][ T1531] exc_general_protection+0x15a/0x1f0 [ 80.733580][ T1531] ? fpregs_assert_state_consistent+0xb7/0xe0 [ 80.733607][ T1531] asm_exc_general_protection+0x2b/0x30 [ 80.733638][ T1531] RIP: 0033:0x7f424358ebf1 [ 80.733654][ T1531] Code: 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f [ 80.733671][ T1531] RSP: 002b:0000200000000420 EFLAGS: 00010217 [ 80.733690][ T1531] RAX: 0000000000000000 RBX: 00007f42437b6090 RCX: 00007f424358ebe9 [ 80.733705][ T1531] RDX: 0000200000000440 RSI: 0000200000000420 RDI: 0000000002000080 [ 80.733719][ T1531] RBP: 00007f4243611e19 R08: 00002000000004c0 R09: 00002000000004c0 [ 80.733734][ T1531] R10: 0000200000000480 R11: 0000000000000202 R12: 0000000000000000 [ 80.733747][ T1531] R13: 00007f42437b6128 R14: 00007f42437b6090 R15: 00007ffd9443a9d8 [ 80.733765][ T1531] [ 80.733813][ T1531] memory: usage 307200kB, limit 307200kB, failcnt 81014 [ 81.213262][ T1531] memory+swap: usage 430808kB, limit 9007199254740988kB, failcnt 0 [ 81.221471][ T1531] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 81.228342][ T1531] Memory cgroup stats for /syz3: [ 81.228481][ T1531] cache 312983552 [ 81.237326][ T1531] rss 1282048 [ 81.240762][ T1531] rss_huge 0 [ 81.243997][ T1531] shmem 312979456 [ 81.247633][ T1531] mapped_file 0 [ 81.251347][ T1531] dirty 0 [ 81.255814][ T1531] writeback 0 [ 81.259125][ T1531] workingset_refault_anon 2215 [ 81.264884][ T1531] workingset_refault_file 66727 [ 81.271480][ T1531] swap 126574592 [ 81.275725][ T1531] swapcached 1417216 [ 81.279626][ T1531] pgpgin 328472 [ 81.283475][ T1531] pgpgout 253205 [ 81.287038][ T1531] pgfault 46389 [ 81.292232][ T1531] pgmajfault 1719 [ 81.295890][ T1531] inactive_anon 73428992 [ 81.300152][ T1531] active_anon 241139712 [ 81.312074][ T1531] inactive_file 0 [ 81.315731][ T1531] active_file 4096 [ 81.319455][ T1531] unevictable 0 [ 81.329749][ T2559] ------------[ cut here ]------------ [ 81.335279][ T2559] WARNING: CPU: 0 PID: 2559 at mm/page_alloc.c:5225 __alloc_pages_noprof+0xe8/0x7b0 [ 81.344716][ T2559] Modules linked in: [ 81.348635][ T2559] CPU: 0 UID: 0 PID: 2559 Comm: syz.2.695 Not tainted 6.12.38-syzkaller-g3f3a5c5e782d #0 c9247809a66a5ebb3467d1c2e99b1dedbd707993 [ 81.362041][ T2559] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 81.372136][ T2559] RIP: 0010:__alloc_pages_noprof+0xe8/0x7b0 [ 81.378076][ T2559] Code: 00 0f 1f 44 00 00 83 fb 0b 72 28 b8 00 20 00 00 23 44 24 40 75 1d 80 3d a1 27 ee 05 00 0f 85 be 00 00 00 c6 05 94 27 ee 05 01 <0f> 0b 31 c0 e9 b0 00 00 00 83 fb 0a 0f 87 a5 00 00 00 44 8b 64 24 [ 81.397742][ T2559] RSP: 0018:ffffc9000f11f880 EFLAGS: 00010246 [ 81.403862][ T2559] RAX: 0000000000000000 RBX: 000000000000000c RCX: 0000000000000000 [ 81.411887][ T2559] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffc9000f11f938 [ 81.419887][ T2559] RBP: ffffc9000f11f9b0 R08: ffffc9000f11f937 R09: 0000000000000000 [ 81.425781][ T1531] hierarchical_memory_limit 314572800 [ 81.427900][ T2559] R10: ffffc9000f11f920 R11: fffff52001e23f27 R12: ffffc9000f11f8c0 [ 81.441279][ T2559] R13: dffffc0000000000 R14: 1ffff92001e23f14 R15: 0000000000000000 [ 81.443363][ T1531] hierarchical_memsw_limit 9223372036854771712 [ 81.449296][ T2559] FS: 00007f129597c6c0(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000 [ 81.449322][ T2559] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 81.467802][ T1531] total_cache 312983552 [ 81.471061][ T2559] CR2: 0000200000001000 CR3: 000000011d528000 CR4: 00000000003526b0 [ 81.480309][ T1531] total_rss 1282048 [ 81.483220][ T2559] Call Trace: [ 81.490299][ T2559] [ 81.492411][ T1531] total_rss_huge 0 [ 81.493241][ T2559] ? entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 81.501356][ T1531] total_shmem 312979456 [ 81.503031][ T2559] ? __cfi___alloc_pages_noprof+0x10/0x10 [ 81.512917][ T2559] ? incfs_realloc_mount_info+0xa7/0x4d0 [ 81.514275][ T1531] total_mapped_file 0 [ 81.518580][ T2559] ___kmalloc_large_node+0x9c/0x1d0 [ 81.527780][ T2559] ? incfs_realloc_mount_info+0xa7/0x4d0 [ 81.531308][ T1531] total_dirty 0 [ 81.533455][ T2559] __kmalloc_large_node_noprof+0x1e/0xe0 [ 81.539165][ T1531] total_writeback 0 [ 81.542582][ T2559] ? incfs_realloc_mount_info+0xa7/0x4d0 [ 81.547647][ T1531] total_workingset_refault_anon 2215 [ 81.552027][ T2559] __kmalloc_noprof+0x26d/0x450 [ 81.557396][ T1531] total_workingset_refault_file 66727 [ 81.562179][ T2559] incfs_realloc_mount_info+0xa7/0x4d0 [ 81.562207][ T2559] ? incfs_add_sysfs_node+0x118/0x240 [ 81.562240][ T2559] incfs_alloc_mount_info+0x479/0x600 [ 81.562262][ T2559] incfs_mount_fs+0x3ca/0x960 [ 81.562293][ T2559] ? __cfi_incfs_mount_fs+0x10/0x10 [ 81.562328][ T2559] ? vfs_parse_fs_string+0x102/0x170 [ 81.568074][ T1531] total_swap 126574592 [ 81.573301][ T2559] ? selinux_capable+0x38/0x50 [ 81.578755][ T1531] total_swapcached 1417216 [ 81.584054][ T2559] legacy_get_tree+0x103/0x1b0 [ 81.588756][ T1531] total_pgpgin 328472 [ 81.593945][ T2559] ? __cfi_incfs_mount_fs+0x10/0x10 [ 81.599312][ T1531] total_pgpgout 253205 [ 81.603311][ T2559] vfs_get_tree+0xa1/0x290 [ 81.603349][ T2559] do_new_mount+0x251/0xb40 [ 81.610487][ T1531] total_pgfault 46389 [ 81.612550][ T2559] ? security_capable+0xcf/0xf0 [ 81.617333][ T1531] total_pgmajfault 1719 [ 81.621300][ T2559] path_mount+0x688/0x1050 [ 81.626582][ T1531] total_inactive_anon 73428992 [ 81.630600][ T2559] ? putname+0x113/0x150 [ 81.635041][ T1531] total_active_anon 241139712 [ 81.639588][ T2559] __se_sys_mount+0x2bd/0x480 [ 81.639615][ T2559] ? __x64_sys_mount+0xf0/0xf0 [ 81.643739][ T1531] total_inactive_file 0 [ 81.648582][ T2559] ? __kasan_check_write+0x18/0x20 [ 81.652776][ T1531] total_active_file 4096 [ 81.657160][ T2559] ? fpregs_restore_userregs+0x11d/0x260 [ 81.657190][ T2559] __x64_sys_mount+0xc3/0xf0 [ 81.662106][ T1531] total_unevictable 0 [ 81.666281][ T2559] x64_sys_call+0x2021/0x2ee0 [ 81.671039][ T1531] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null) [ 81.675654][ T2559] do_syscall_64+0x58/0xf0 [ 81.680506][ T1531] ,cpuset= [ 81.684587][ T2559] ? clear_bhb_loop+0x50/0xa0 [ 81.689722][ T1531] syz3 [ 81.693943][ T2559] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 81.700976][ T1531] ,mems_allowed=0 [ 81.704135][ T2559] RIP: 0033:0x7f1294b8ebe9 [ 81.708152][ T1531] ,oom_memcg= [ 81.712792][ T2559] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 81.719984][ T1531] /syz3 [ 81.724064][ T2559] RSP: 002b:00007f129597c038 EFLAGS: 00000246 [ 81.727258][ T1531] ,task_memcg= [ 81.731762][ T2559] ORIG_RAX: 00000000000000a5 [ 81.731778][ T2559] RAX: ffffffffffffffda RBX: 00007f1294db5fa0 RCX: 00007f1294b8ebe9 [ 81.734516][ T1531] /syz3 [ 81.740331][ T2559] RDX: 0000200000000140 RSI: 0000200000000080 RDI: 0000200000000000 [ 81.744015][ T1531] ,task=syz.3.337,pid=1551,uid=0 [ 81.748351][ T2559] RBP: 00007f1294c11e19 R08: 0000200000000040 R09: 0000000000000000 [ 81.748371][ T2559] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 81.751772][ T1531] Memory cgroup out of memory: Killed process 1551 (syz.3.337) total-vm:90104kB, anon-rss:1460kB, file-rss:22208kB, shmem-rss:0kB, UID:0 pgtables:212kB oom_score_adj:0 [ 81.771314][ T2559] R13: 00007f1294db6038 R14: 00007f1294db5fa0 R15: 00007ffe22b55b88 [ 81.771348][ T2559] [ 81.855824][ T2559] ---[ end trace 0000000000000000 ]--- [ 81.885917][ T2559] incfs: Error allocating mount info. -12 [ 81.891711][ T2559] incfs: mount failed -12 [ 81.906031][ T290] syz-executor invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0 [ 81.947506][ T290] CPU: 0 UID: 0 PID: 290 Comm: syz-executor Tainted: G W 6.12.38-syzkaller-g3f3a5c5e782d #0 c9247809a66a5ebb3467d1c2e99b1dedbd707993 [ 81.947549][ T290] Tainted: [W]=WARN [ 81.947557][ T290] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 81.947570][ T290] Call Trace: [ 81.947577][ T290] [ 81.947585][ T290] __dump_stack+0x21/0x30 [ 81.947620][ T290] dump_stack_lvl+0x10c/0x190 [ 81.947649][ T290] ? __cfi_dump_stack_lvl+0x10/0x10 [ 81.947678][ T290] ? ___ratelimit+0x3f7/0x5a0 [ 81.947709][ T290] dump_stack+0x19/0x20 [ 81.947737][ T290] dump_header+0xd7/0x490 [ 81.947759][ T290] ? __cfi_mem_cgroup_get_max+0x10/0x10 [ 81.947788][ T290] oom_kill_process+0x4c0/0x7e0 [ 81.947813][ T290] ? sched_clock_cpu+0x75/0x400 [ 81.947843][ T290] out_of_memory+0x7ee/0xbd0 [ 81.947868][ T290] ? __cfi_out_of_memory+0x10/0x10 [ 81.947899][ T290] ? mutex_lock_killable+0x104/0x1c0 [ 81.947932][ T290] ? __cfi_mutex_lock_killable+0x10/0x10 [ 81.947965][ T290] mem_cgroup_out_of_memory+0x279/0x350 [ 81.947986][ T290] ? drain_obj_stock+0xed0/0xed0 [ 81.948008][ T290] ? memcg1_oom_prepare+0x2c6/0x3a0 [ 81.948041][ T290] try_charge_memcg+0x8f7/0xde0 [ 81.948071][ T290] ? sched_clock_cpu+0x75/0x400 [ 81.948100][ T290] ? __cfi_try_charge_memcg+0x10/0x10 [ 81.948127][ T290] ? __alloc_pages_noprof+0x31f/0x7b0 [ 81.948157][ T290] ? __cfi___alloc_pages_noprof+0x10/0x10 [ 81.948186][ T290] __mem_cgroup_charge+0xf6/0x410 [ 81.948218][ T290] ? __cfi___mem_cgroup_charge+0x10/0x10 [ 81.948252][ T290] folio_prealloc+0x67/0x240 [ 81.948276][ T290] do_wp_page+0x1885/0x2ed0 [ 81.948300][ T290] ? folio_put+0x90/0x90 [ 81.948320][ T290] ? __cfi__raw_spin_lock+0x10/0x10 [ 81.948346][ T290] ? __pte_offset_map+0x1b0/0x230 [ 81.948376][ T290] ? pte_offset_map_rw_nolock+0xba/0x110 [ 81.948406][ T290] handle_mm_fault+0xff7/0x1b90 [ 81.948431][ T290] ? __cfi_handle_mm_fault+0x10/0x10 [ 81.948452][ T290] ? lock_vma_under_rcu+0x49d/0x530 [ 81.948477][ T290] ? __cfi___x64_sys_clone+0x10/0x10 [ 81.948502][ T290] ? __kasan_check_read+0x15/0x20 [ 81.948535][ T290] do_user_addr_fault+0x96c/0x1200 [ 81.948569][ T290] exc_page_fault+0x59/0xc0 [ 81.948588][ T290] asm_exc_page_fault+0x2b/0x30 [ 81.948619][ T290] RIP: 0033:0x7f4243584fc8 [ 81.948636][ T290] Code: 84 e4 74 66 e8 89 04 00 00 41 89 c4 85 c0 0f 84 4e 01 00 00 49 c7 c5 a8 ff ff ff 64 45 8b 75 00 48 89 da 89 ee bf 02 00 00 00 93 09 00 00 45 85 e4 79 05 64 45 89 75 00 48 8b 84 24 c8 00 00 [ 81.948655][ T290] RSP: 002b:00007ffd9443ac60 EFLAGS: 00010202 [ 81.948675][ T290] RAX: 00000000000001dc RBX: 0000000000000000 RCX: 00007f4243585453 [ 81.948690][ T290] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000002 [ 81.948703][ T290] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000001 [ 81.948715][ T290] R10: 000055557e5cb7d0 R11: 0000000000000246 R12: 00000000000001dc [ 81.948730][ T290] R13: ffffffffffffffa8 R14: 0000000000000002 R15: 00007ffd9443adf0 [ 81.948748][ T290] [ 81.948757][ T290] memory: usage 306948kB, limit 307200kB, failcnt 81730 [ 82.249915][ T290] memory+swap: usage 430112kB, limit 9007199254740988kB, failcnt 0 [ 82.257871][ T290] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 82.264755][ T290] Memory cgroup stats for /syz3: [ 82.264910][ T290] cache 312213504 [ 82.273648][ T290] rss 1683456 [ 82.276948][ T290] rss_huge 0 [ 82.280161][ T290] shmem 311246848 [ 82.285624][ T290] mapped_file 708608 [ 82.289539][ T290] dirty 0 [ 82.305438][ T290] writeback 0 [ 82.308765][ T290] workingset_refault_anon 2347 [ 82.325138][ T290] workingset_refault_file 67681 [ 82.330111][ T290] swap 126255104 [ 82.365216][ T290] swapcached 1740800 [ 82.369254][ T290] pgpgin 336955 [ 82.404167][ T290] pgpgout 261712 [ 82.407764][ T290] pgfault 46815 [ 82.422332][ T290] pgmajfault 1757 [ 82.426010][ T290] inactive_anon 18567168 [ 82.442977][ T290] active_anon 294445056 [ 82.447173][ T290] inactive_file 602112 [ 82.460246][ T290] active_file 45056 [ 82.464087][ T290] unevictable 0 [ 82.467549][ T290] hierarchical_memory_limit 314572800 [ 82.485039][ T290] hierarchical_memsw_limit 9223372036854771712 [ 82.495621][ T290] total_cache 312213504 [ 82.499860][ T290] total_rss 1683456 [ 82.503731][ T290] total_rss_huge 0 [ 82.507447][ T290] total_shmem 311246848 [ 82.511621][ T290] total_mapped_file 708608 [ 82.516063][ T290] total_dirty 0 [ 82.519511][ T290] total_writeback 0 [ 82.523352][ T290] total_workingset_refault_anon 2347 [ 82.528639][ T290] total_workingset_refault_file 67681 [ 82.534023][ T290] total_swap 126255104 [ 82.538095][ T290] total_swapcached 1740800 [ 82.542531][ T290] total_pgpgin 336955 [ 82.546512][ T290] total_pgpgout 261712 [ 82.550593][ T290] total_pgfault 46815 [ 82.554580][ T290] total_pgmajfault 1757 [ 82.558724][ T290] total_inactive_anon 18567168 [ 82.563506][ T290] total_active_anon 294445056 [ 82.568204][ T290] total_inactive_file 602112 [ 82.572820][ T290] total_active_file 45056 [ 82.577151][ T290] total_unevictable 0 [ 82.581152][ T290] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.337,pid=1527,uid=0 [ 82.595975][ T290] Memory cgroup out of memory: Killed process 1527 (syz.3.337) total-vm:90104kB, anon-rss:1716kB, file-rss:22188kB, shmem-rss:0kB, UID:0 pgtables:212kB oom_score_adj:0 [ 82.649116][ T290] syz-executor invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0 [ 82.683922][ T290] CPU: 0 UID: 0 PID: 290 Comm: syz-executor Tainted: G W 6.12.38-syzkaller-g3f3a5c5e782d #0 c9247809a66a5ebb3467d1c2e99b1dedbd707993 [ 82.683965][ T290] Tainted: [W]=WARN [ 82.683974][ T290] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 82.683988][ T290] Call Trace: [ 82.683995][ T290] [ 82.684003][ T290] __dump_stack+0x21/0x30 [ 82.684047][ T290] dump_stack_lvl+0x10c/0x190 [ 82.684082][ T290] ? __cfi_dump_stack_lvl+0x10/0x10 [ 82.684110][ T290] ? ___ratelimit+0x3f7/0x5a0 [ 82.684140][ T290] dump_stack+0x19/0x20 [ 82.684168][ T290] dump_header+0xd7/0x490 [ 82.684189][ T290] ? __cfi_mem_cgroup_get_max+0x10/0x10 [ 82.684218][ T290] oom_kill_process+0x4c0/0x7e0 [ 82.684244][ T290] ? sched_clock_cpu+0x75/0x400 [ 82.684274][ T290] out_of_memory+0x7ee/0xbd0 [ 82.684299][ T290] ? __cfi_out_of_memory+0x10/0x10 [ 82.684323][ T290] ? mutex_lock_killable+0x92/0x1c0 [ 82.684357][ T290] ? __cfi_mutex_lock_killable+0x10/0x10 [ 82.684394][ T290] mem_cgroup_out_of_memory+0x279/0x350 [ 82.684415][ T290] ? drain_obj_stock+0xed0/0xed0 [ 82.684438][ T290] ? memcg1_oom_prepare+0x2c6/0x3a0 [ 82.684472][ T290] try_charge_memcg+0x8f7/0xde0 [ 82.684502][ T290] ? sched_clock_cpu+0x75/0x400 [ 82.684532][ T290] ? __cfi_try_charge_memcg+0x10/0x10 [ 82.684561][ T290] ? __alloc_pages_noprof+0x31f/0x7b0 [ 82.684590][ T290] ? __cfi___alloc_pages_noprof+0x10/0x10 [ 82.684620][ T290] __mem_cgroup_charge+0xf6/0x410 [ 82.684654][ T290] ? __cfi___mem_cgroup_charge+0x10/0x10 [ 82.684690][ T290] folio_prealloc+0x67/0x240 [ 82.684715][ T290] do_wp_page+0x1885/0x2ed0 [ 82.684740][ T290] ? folio_put+0x90/0x90 [ 82.684760][ T290] ? __cfi__raw_spin_lock+0x10/0x10 [ 82.684786][ T290] ? __pte_offset_map+0x1b0/0x230 [ 82.684817][ T290] ? pte_offset_map_rw_nolock+0xba/0x110 [ 82.684850][ T290] handle_mm_fault+0xff7/0x1b90 [ 82.684876][ T290] ? __cfi_handle_mm_fault+0x10/0x10 [ 82.684898][ T290] ? lock_vma_under_rcu+0x49d/0x530 [ 82.684940][ T290] ? __cfi___x64_sys_clone+0x10/0x10 [ 82.684967][ T290] ? __kasan_check_read+0x15/0x20 [ 82.685001][ T290] do_user_addr_fault+0x96c/0x1200 [ 82.685045][ T290] exc_page_fault+0x59/0xc0 [ 82.685088][ T290] asm_exc_page_fault+0x2b/0x30 [ 82.685117][ T290] RIP: 0033:0x7f4243584fc8 [ 82.685133][ T290] Code: 84 e4 74 66 e8 89 04 00 00 41 89 c4 85 c0 0f 84 4e 01 00 00 49 c7 c5 a8 ff ff ff 64 45 8b 75 00 48 89 da 89 ee bf 02 00 00 00 93 09 00 00 45 85 e4 79 05 64 45 89 75 00 48 8b 84 24 c8 00 00 [ 82.685149][ T290] RSP: 002b:00007ffd9443ac60 EFLAGS: 00010202 [ 82.685168][ T290] RAX: 00000000000001dc RBX: 0000000000000000 RCX: 00007f4243585453 [ 82.685181][ T290] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000002 [ 82.685192][ T290] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000001 [ 82.685204][ T290] R10: 000055557e5cb7d0 R11: 0000000000000246 R12: 00000000000001dc [ 82.685217][ T290] R13: ffffffffffffffa8 R14: 0000000000000002 R15: 00007ffd9443adf0 [ 82.685237][ T290] [ 82.685245][ T290] memory: usage 307200kB, limit 307200kB, failcnt 84184 [ 82.986292][ T290] memory+swap: usage 423888kB, limit 9007199254740988kB, failcnt 0 [ 82.994240][ T290] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 83.010248][ T290] Memory cgroup stats for /syz3: [ 83.011375][ T290] cache 302473216 [ 83.019973][ T290] rss 647168 [ 83.030279][ T290] rss_huge 0 [ 83.033505][ T290] shmem 302469120 [ 83.037130][ T290] mapped_file 0 [ 83.060265][ T290] dirty 0 [ 83.063252][ T290] writeback 61440 [ 83.066895][ T290] workingset_refault_anon 2371 [ 83.091416][ T290] workingset_refault_file 68606 [ 83.096313][ T290] swap 123174912 [ 83.099881][ T290] swapcached 1593344 [ 83.130248][ T290] pgpgin 343136 [ 83.133849][ T290] pgpgout 270320 [ 83.137405][ T290] pgfault 46911 [ 83.170249][ T290] pgmajfault 1780 [ 83.173934][ T290] inactive_anon 222371840 [ 83.178280][ T290] active_anon 81747968 [ 83.210246][ T290] inactive_file 0 [ 83.213944][ T290] active_file 4096 [ 83.217866][ T290] unevictable 0 [ 83.230270][ T290] hierarchical_memory_limit 314572800 [ 83.246703][ T290] hierarchical_memsw_limit 9223372036854771712 [ 83.256881][ T290] total_cache 302473216 [ 83.261189][ T290] total_rss 647168 [ 83.264920][ T290] total_rss_huge 0 [ 83.268643][ T290] total_shmem 302469120 [ 83.272841][ T290] total_mapped_file 0 [ 83.276836][ T290] total_dirty 0 [ 83.280317][ T290] total_writeback 61440 [ 83.284489][ T290] total_workingset_refault_anon 2371 [ 83.289769][ T290] total_workingset_refault_file 68606 [ 83.295176][ T290] total_swap 123174912 [ 83.299248][ T290] total_swapcached 1593344 [ 83.303696][ T290] total_pgpgin 343136 [ 83.307679][ T290] total_pgpgout 270320 [ 83.311771][ T290] total_pgfault 46911 [ 83.315751][ T290] total_pgmajfault 1780 [ 83.319894][ T290] total_inactive_anon 222371840 [ 83.324795][ T290] total_active_anon 81747968 [ 83.329388][ T290] total_inactive_file 0 [ 83.333598][ T290] total_active_file 4096 [ 83.337848][ T290] total_unevictable 0 [ 83.341850][ T290] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.337,pid=1528,uid=0 [ 83.356641][ T290] Memory cgroup out of memory: Killed process 1528 (syz.3.337) total-vm:90104kB, anon-rss:1076kB, file-rss:22296kB, shmem-rss:0kB, UID:0 pgtables:212kB oom_score_adj:0 [ 83.392147][ T1547] syz.3.337 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0 [ 83.450257][ T1547] CPU: 0 UID: 0 PID: 1547 Comm: syz.3.337 Tainted: G W 6.12.38-syzkaller-g3f3a5c5e782d #0 c9247809a66a5ebb3467d1c2e99b1dedbd707993 [ 83.450300][ T1547] Tainted: [W]=WARN [ 83.450309][ T1547] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 83.450323][ T1547] Call Trace: [ 83.450331][ T1547] [ 83.450340][ T1547] __dump_stack+0x21/0x30 [ 83.450374][ T1547] dump_stack_lvl+0x10c/0x190 [ 83.450404][ T1547] ? __cfi_dump_stack_lvl+0x10/0x10 [ 83.450433][ T1547] ? ___ratelimit+0x3f7/0x5a0 [ 83.450466][ T1547] dump_stack+0x19/0x20 [ 83.450494][ T1547] dump_header+0xd7/0x490 [ 83.450516][ T1547] ? __cfi_mem_cgroup_get_max+0x10/0x10 [ 83.450546][ T1547] oom_kill_process+0x4c0/0x7e0 [ 83.450572][ T1547] ? sched_clock_cpu+0x75/0x400 [ 83.450604][ T1547] out_of_memory+0x7ee/0xbd0 [ 83.450629][ T1547] ? __cfi_out_of_memory+0x10/0x10 [ 83.450654][ T1547] ? mutex_lock_killable+0x92/0x1c0 [ 83.450688][ T1547] ? __cfi_mutex_lock_killable+0x10/0x10 [ 83.450743][ T1547] mem_cgroup_out_of_memory+0x279/0x350 [ 83.450770][ T1547] ? drain_obj_stock+0xed0/0xed0 [ 83.450793][ T1547] ? memcg1_oom_prepare+0x2c6/0x3a0 [ 83.450828][ T1547] try_charge_memcg+0x8f7/0xde0 [ 83.450858][ T1547] ? __cfi_try_charge_memcg+0x10/0x10 [ 83.450888][ T1547] ? __alloc_pages_noprof+0x31f/0x7b0 [ 83.450918][ T1547] ? __cfi___alloc_pages_noprof+0x10/0x10 [ 83.450947][ T1547] ? __folio_batch_add_and_move+0x2ab/0x370 [ 83.450975][ T1547] __mem_cgroup_charge+0xf6/0x410 [ 83.451014][ T1547] ? _raw_spin_lock+0x8c/0x120 [ 83.451041][ T1547] ? __cfi___mem_cgroup_charge+0x10/0x10 [ 83.451075][ T1547] shmem_alloc_and_add_folio+0x86d/0x1050 [ 83.451104][ T1547] ? put_swap_device+0x130/0x130 [ 83.451129][ T1547] ? shmem_huge_global_enabled+0x2da/0x360 [ 83.451153][ T1547] ? shmem_allowable_huge_orders+0x1f7/0x430 [ 83.451176][ T1547] ? __kasan_check_write+0x18/0x20 [ 83.451208][ T1547] ? _raw_spin_lock+0x8c/0x120 [ 83.451234][ T1547] shmem_get_folio_gfp+0x5f0/0x1380 [ 83.451260][ T1547] ? shmem_get_folio+0xc0/0xc0 [ 83.451281][ T1547] ? follow_page_pte+0xa5c/0xb90 [ 83.451309][ T1547] ? inode_to_bdi+0x6d/0x100 [ 83.451339][ T1547] shmem_write_begin+0xf4/0x270 [ 83.451364][ T1547] generic_perform_write+0x32d/0x960 [ 83.451398][ T1547] ? __cfi_generic_perform_write+0x10/0x10 [ 83.451428][ T1547] ? down_write+0xe9/0x2a0 [ 83.451450][ T1547] ? file_update_time+0xa3/0x220 [ 83.451480][ T1547] shmem_file_write_iter+0x105/0x130 [ 83.451508][ T1547] ? __cfi_shmem_file_write_iter+0x10/0x10 [ 83.451537][ T1547] __kernel_write_iter+0x392/0x830 [ 83.451570][ T1547] ? __cfi_shmem_file_write_iter+0x10/0x10 [ 83.451599][ T1547] ? __cfi___kernel_write_iter+0x10/0x10 [ 83.451633][ T1547] ? get_dump_page+0x160/0x220 [ 83.451658][ T1547] ? __asan_memset+0x39/0x50 [ 83.451688][ T1547] ? iov_iter_bvec+0xc0/0x180 [ 83.451713][ T1547] dump_user_range+0xb06/0xdf0 [ 83.451747][ T1547] ? __cfi_dump_emit+0x10/0x10 [ 83.451781][ T1547] ? __cfi_dump_user_range+0x10/0x10 [ 83.451815][ T1547] ? elf_coredump_extra_notes_write+0x42f/0x4c0 [ 83.451847][ T1547] ? __cfi_elf_coredump_extra_notes_write+0x10/0x10 [ 83.451880][ T1547] elf_core_dump+0x2cd9/0x3810 [ 83.451908][ T1547] ? __cfi_elf_core_dump+0x10/0x10 [ 83.451941][ T1547] ? dump_interrupted+0xf0/0xf0 [ 83.451973][ T1547] ? filp_open+0x182/0x1d0 [ 83.452008][ T1547] ? 0xffffffffff600000 [ 83.452026][ T1547] do_coredump+0x1bfa/0x2bd0 [ 83.452063][ T1547] ? __cfi_do_coredump+0x10/0x10 [ 83.452095][ T1547] ? asm_exc_general_protection+0x2b/0x30 [ 83.452138][ T1547] ? __kasan_slab_free+0x6a/0x80 [ 83.452161][ T1547] ? kmem_cache_free+0x1c1/0x510 [ 83.452193][ T1547] ? get_signal+0xa75/0x14f0 [ 83.452220][ T1547] get_signal+0x11fd/0x14f0 [ 83.452250][ T1547] arch_do_signal_or_restart+0x96/0x720 [ 83.452283][ T1547] ? __cfi_arch_do_signal_or_restart+0x10/0x10 [ 83.452316][ T1547] ? fixup_iopl_exception+0xdd/0x2e0 [ 83.452351][ T1547] irqentry_exit_to_user_mode+0x4e/0xb0 [ 83.452374][ T1547] irqentry_exit+0x16/0x60 [ 83.452393][ T1547] exc_general_protection+0x15a/0x1f0 [ 83.452422][ T1547] ? fpregs_assert_state_consistent+0xb7/0xe0 [ 83.452451][ T1547] asm_exc_general_protection+0x2b/0x30 [ 83.452482][ T1547] RIP: 0033:0x7f424358ebf1 [ 83.452499][ T1547] Code: 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f [ 83.452519][ T1547] RSP: 002b:0000200000000420 EFLAGS: 00010217 [ 83.452541][ T1547] RAX: 0000000000000000 RBX: 00007f42437b6090 RCX: 00007f424358ebe9 [ 83.452557][ T1547] RDX: 0000200000000440 RSI: 0000200000000420 RDI: 0000000002000080 [ 83.452573][ T1547] RBP: 00007f4243611e19 R08: 00002000000004c0 R09: 00002000000004c0 [ 83.452589][ T1547] R10: 0000200000000480 R11: 0000000000000202 R12: 0000000000000000 [ 83.452605][ T1547] R13: 00007f42437b6128 R14: 00007f42437b6090 R15: 00007ffd9443a9d8 [ 83.452626][ T1547] [ 83.452635][ T1547] memory: usage 303584kB, limit 307200kB, failcnt 84782 [ 83.938402][ T1547] memory+swap: usage 411072kB, limit 9007199254740988kB, failcnt 0 [ 83.946352][ T1547] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 83.953241][ T1547] Memory cgroup stats for /syz3: [ 83.953387][ T1547] cache 291938304 [ 83.962152][ T1547] rss 1859584 [ 83.965450][ T1547] rss_huge 0 [ 83.968650][ T1547] shmem 288923648 [ 83.972544][ T1547] mapped_file 3010560 [ 83.976537][ T1547] dirty 0 [ 83.979480][ T1547] writeback 425984 [ 83.983387][ T1547] workingset_refault_anon 2814 [ 83.988160][ T1547] workingset_refault_file 69383 [ 83.993199][ T1547] swap 125157376 [ 83.996757][ T1547] swapcached 2629632 [ 84.001028][ T1547] pgpgin 354819 [ 84.004507][ T1547] pgpgout 284396 [ 84.008064][ T1547] pgfault 47574 [ 84.040362][ T1547] pgmajfault 1869 [ 84.044146][ T1547] inactive_anon 88768512 [ 84.050373][ T1547] active_anon 202145792 [ 84.054546][ T1547] inactive_file 0 [ 84.058192][ T1547] active_file 3014656 [ 84.120249][ T1547] unevictable 0 [ 84.123778][ T1547] hierarchical_memory_limit 314572800 [ 84.129172][ T1547] hierarchical_memsw_limit 9223372036854771712 [ 84.160249][ T1547] total_cache 291938304 [ 84.164457][ T1547] total_rss 1859584 [ 84.168286][ T1547] total_rss_huge 0 [ 84.200287][ T1547] total_shmem 288923648 [ 84.204493][ T1547] total_mapped_file 3010560 [ 84.209009][ T1547] total_dirty 0 [ 84.240251][ T1547] total_writeback 425984 [ 84.244540][ T1547] total_workingset_refault_anon 2814 [ 84.249850][ T1547] total_workingset_refault_file 69383 [ 84.280278][ T1547] total_swap 125157376 [ 84.284536][ T1547] total_swapcached 2629632 [ 84.288973][ T1547] total_pgpgin 354819 [ 84.320247][ T1547] total_pgpgout 284396 [ 84.324363][ T1547] total_pgfault 47574 [ 84.328361][ T1547] total_pgmajfault 1869 [ 84.350249][ T1547] total_inactive_anon 88768512 [ 84.355146][ T1547] total_active_anon 202145792 [ 84.359841][ T1547] total_inactive_file 0 [ 84.385853][ T1547] total_active_file 3014656 [ 84.410262][ T1547] total_unevictable 0 [ 84.414281][ T1547] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.337,pid=1535,uid=0 [ 84.470259][ T1547] Memory cgroup out of memory: Killed process 1535 (syz.3.337) total-vm:90104kB, anon-rss:1076kB, file-rss:22260kB, shmem-rss:0kB, UID:0 pgtables:212kB oom_score_adj:0