last executing test programs: 9.895352563s ago: executing program 0 (id=3194): mmap$auto(0x0, 0x20007, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_NL802154_CMD_NEW_SEC_DEVKEY(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000008c0)={&(0x7f0000000e40)=ANY=[@ANYBLOB="ec040000", @ANYRES16=0x0, @ANYBLOB="000828bd7000fddbdf251d00000008001d00", @ANYRES32, @ANYBLOB="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"], 0x4ec}, 0x1, 0x0, 0x0, 0x6000041}, 0x44020) mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xffffffffffffffff, 0x8000) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) mmap$auto(0x0, 0xd561, 0x10000000000df, 0xeb2, 0xffffffffffffffff, 0x8000) r1 = openat$auto_percpu_stats_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) preadv$auto(r1, &(0x7f0000000080)={&(0x7f0000000040), 0x2}, 0x3, 0x5, 0x0) timer_create$auto(0x2, 0x0, 0x0) timer_settime$auto(0x0, 0x3, &(0x7f00000000c0)={{0x26b, 0x4}, {0x0, 0x3}}, 0x0) mmap$auto(0x457, 0xe983, 0x8, 0x819, 0xffffffffffffffff, 0x7fff) capset$auto(0x0, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000200)='/proc/sys/net/ipv4/tcp_tw_reuse\x00', 0x14000, 0x0) socket(0x15, 0x6, 0x6c) mmap$auto(0x20, 0x400108, 0x3, 0x9b72, 0xffffffffffffffff, 0x8000) sysfs$auto(0x2, 0x3, 0x0) r2 = fsopen$auto(0x0, 0x0) fsconfig$auto(r2, 0x8, 0x0, 0x0, 0x0) fsconfig$auto(r2, 0x3, &(0x7f0000000440)='\x00sK\xce7\x9fpL\xcb$x\x00\xf0+\xd3\xd6g[.M\x91HK\xccO+\xec\xdcS\x95\xb2\xc7\x88\xa9\x82\x10|\xe2n+\xbfI_\xf0\xdd\x0e\xa2\xf3\xc9h\xaaSF\xc6K\x8c\x9bfh\x8c\xf5\x84\xed\xc4\a\xc7\x12E\x85\x0e\xf3\xa0\xa1\xec\xc0\xe0\x83\xde+\xec\x97\n1sg\xa1\xd5\t`\x96\xfd\xf2Ms\x03\x022\x13\x9c\xc7q<\xe2\x0e\xf7\x1d\xfe{z\x04\xac\r\xeb\xe12s\x90\x00\xef\x9eA\n\xd4n\x95\xa3\v]\x97\x97b$q,/\xb7\xe1\x92-\n;\xbd>\xa8\xfb\x98F\x0f\xc4j\x8bp\xfca\x17\xd6\r\xef\xba\x9a8N\x00\x00\xff\xff\xff\xff\xd7\\A%\xc8\xad\xa3,M\xea\x8e\fl\xfa\x8f\x00\x00D\xd1\xef\xdc\xde\xd4c\x95(\\\x17\xeb}\xfe\xb6\xb7\xb9\x19v\xee\xc6\xfep\xbfY1\xact\x84p\xb0x\xba\x18n\xebN\xe4\xef3\xddh\xec\xf2\xc1\x8b\a\x82`\x84f\v\xcd\xe3X64A\x88Q\xe6\xd0>kX~\xb2\x1f+\xb8\x9d\x05\x04\x11c\xcc\xbc\xdf\xa73\at/\x95\xbd\xa8\x18\xc1@\x171x\xa8R\xd9\xc7\ff\x1a\x9br\x13\xa0\x8b\x1e\x9e\x15\x17\'\x9fU\x8a\x1e\xc7F\r\x18\xdenEI\xe4{\xce\xfa<\x06\x99\xb4\xd4h\xca\x95\xb2\x10\xceci\t\x8c\xbe\x86&WQQ6\xb5B\xb1\f9O$#M\xb4\xe6H\xb7\xa8\x8d\x9a\xaaV\x91\xda:\xdc\xcc1\xa8\x18\vp]9\'\xefV\x0e\x90;\xb4\xc2\x862\x16\x11\xd0,\xc0\xdf\xe8-N\xf2\x1f\x90\xdfi\xb4\xe2.`@H\x17s\xa1\xb48', &(0x7f0000000600)="8ece575a296d47438b2af71e8c29db5545d4a770525cb4842efb4bae289534db459a75f1852fa8e98d65b5f8567b3b47d20e59799cb1245f9732ea56fbe4e1a442b9fc772c99268df992f397439931657097feaa6d5fc1036feb5c3f418f0cb78042454c30da956c6992010000003141500a76a7b7c70980456eb526d350dd9731fc4dde25c908791c252490dfadc546012b3dd209b7ff3b53d109d61b73128a7da66d58a87a6986182e39b9064f84ccf479f2227f54c1cda195358d12f3f1788a1201ea75a685636ab129288e69311286cb345238c552b9d489459c1e326651ed3460063e2ee9bec1c776fa92c6b9cafb25167f62c388697dc1dff47e61c72ff4a12edf35ed42ab972557f632c80d4ef56a6280e032bfe2a7aebb49", 0x0) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) memfd_create$auto(0x0, 0xe) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r3, &(0x7f0000000000)='//\xf2\x00', 0x80000000) mmap$auto(0x0, 0x810006, 0xffb, 0x8000000008011, 0x3, 0x0) open(0x0, 0x22240, 0x154) kexec_load$auto(0x5, 0x1, 0x0, 0x8) ioctl$auto_FIONREAD(r3, 0x541b, 0x7fff) openat$auto_proc_mem_operations_base(0xffffffffffffff9c, 0x0, 0x40, 0x0) 9.298511127s ago: executing program 1 (id=3197): mmap$auto(0x0, 0x20007, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_NL802154_CMD_NEW_SEC_DEVKEY(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000008c0)={&(0x7f0000000e40)=ANY=[@ANYBLOB="ec040000", @ANYRES16=0x0, @ANYBLOB="000828bd7000fddbdf251d00000008001d00", @ANYRES32, @ANYBLOB="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"], 0x4ec}, 0x1, 0x0, 0x0, 0x6000041}, 0x44020) mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xffffffffffffffff, 0x8000) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) mmap$auto(0x0, 0xd561, 0x10000000000df, 0xeb2, 0xffffffffffffffff, 0x8000) r1 = openat$auto_percpu_stats_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) preadv$auto(r1, &(0x7f0000000080)={&(0x7f0000000040), 0x2}, 0x3, 0x5, 0x0) timer_create$auto(0x2, 0x0, 0x0) timer_settime$auto(0x0, 0x3, &(0x7f00000000c0)={{0x26b, 0x4}, {0x0, 0x3}}, 0x0) mmap$auto(0x457, 0xe983, 0x8, 0x819, 0xffffffffffffffff, 0x7fff) capset$auto(0x0, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000200)='/proc/sys/net/ipv4/tcp_tw_reuse\x00', 0x14000, 0x0) socket(0x15, 0x6, 0x6c) mmap$auto(0x20, 0x400108, 0x3, 0x9b72, 0xffffffffffffffff, 0x8000) sysfs$auto(0x2, 0x3, 0x0) r2 = fsopen$auto(0x0, 0x0) fsconfig$auto(r2, 0x8, 0x0, 0x0, 0x0) fsconfig$auto(r2, 0x3, &(0x7f0000000440)='\x00sK\xce7\x9fpL\xcb$x\x00\xf0+\xd3\xd6g[.M\x91HK\xccO+\xec\xdcS\x95\xb2\xc7\x88\xa9\x82\x10|\xe2n+\xbfI_\xf0\xdd\x0e\xa2\xf3\xc9h\xaaSF\xc6K\x8c\x9bfh\x8c\xf5\x84\xed\xc4\a\xc7\x12E\x85\x0e\xf3\xa0\xa1\xec\xc0\xe0\x83\xde+\xec\x97\n1sg\xa1\xd5\t`\x96\xfd\xf2Ms\x03\x022\x13\x9c\xc7q<\xe2\x0e\xf7\x1d\xfe{z\x04\xac\r\xeb\xe12s\x90\x00\xef\x9eA\n\xd4n\x95\xa3\v]\x97\x97b$q,/\xb7\xe1\x92-\n;\xbd>\xa8\xfb\x98F\x0f\xc4j\x8bp\xfca\x17\xd6\r\xef\xba\x9a8N\x00\x00\xff\xff\xff\xff\xd7\\A%\xc8\xad\xa3,M\xea\x8e\fl\xfa\x8f\x00\x00D\xd1\xef\xdc\xde\xd4c\x95(\\\x17\xeb}\xfe\xb6\xb7\xb9\x19v\xee\xc6\xfep\xbfY1\xact\x84p\xb0x\xba\x18n\xebN\xe4\xef3\xddh\xec\xf2\xc1\x8b\a\x82`\x84f\v\xcd\xe3X64A\x88Q\xe6\xd0>kX~\xb2\x1f+\xb8\x9d\x05\x04\x11c\xcc\xbc\xdf\xa73\at/\x95\xbd\xa8\x18\xc1@\x171x\xa8R\xd9\xc7\ff\x1a\x9br\x13\xa0\x8b\x1e\x9e\x15\x17\'\x9fU\x8a\x1e\xc7F\r\x18\xdenEI\xe4{\xce\xfa<\x06\x99\xb4\xd4h\xca\x95\xb2\x10\xceci\t\x8c\xbe\x86&WQQ6\xb5B\xb1\f9O$#M\xb4\xe6H\xb7\xa8\x8d\x9a\xaaV\x91\xda:\xdc\xcc1\xa8\x18\vp]9\'\xefV\x0e\x90;\xb4\xc2\x862\x16\x11\xd0,\xc0\xdf\xe8-N\xf2\x1f\x90\xdfi\xb4\xe2.`@H\x17s\xa1\xb48', &(0x7f0000000600)="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", 0x0) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) memfd_create$auto(0x0, 0xe) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r3, 0x0, 0x80000000) mmap$auto(0x0, 0x810006, 0xffb, 0x8000000008011, 0x3, 0x0) open(0x0, 0x22240, 0x154) kexec_load$auto(0x5, 0x1, &(0x7f0000000040)={@kbuf=&(0x7f0000000100), 0x2aaa, 0x6c0000c000, 0xc000}, 0x8) ioctl$auto_FIONREAD(r3, 0x541b, 0x7fff) openat$auto_proc_mem_operations_base(0xffffffffffffff9c, 0x0, 0x40, 0x0) 9.168246654s ago: executing program 2 (id=3198): mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4) open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000002f80), 0x40000, 0x0) ioctl$auto_I2C_RETRIES(r0, 0x701, 0x0) write$auto(0x3, 0x0, 0xfffffdef) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) read$auto(0xffffffffffffffff, 0x0, 0xb) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x202, 0x0) setgroups$auto(0xe32, 0x0) mmap$auto(0x6, 0xf, 0x3, 0xeb1, 0xfffffffffffffffa, 0x7ffd) r1 = getpgrp(0x0) r2 = waitid$auto_P_PGID(0x2, r1, &(0x7f00000000c0)={@siginfo_0_0={0x10001, 0xfffffff8, 0x8, @_rt={r1, 0xee00, @sival_int=0x4}}}, 0x6, &(0x7f0000000140)={{0x5, 0x6}, {0xa5, 0x6}, 0x400, 0x8, 0x5, 0x3, 0x6, 0x8, 0x30000000000, 0x800, 0x6, 0x571, 0x6, 0x6, 0xd3, 0xffff}) r3 = syz_open_procfs$namespace(r2, &(0x7f00000000c0)) getdents$auto(r3, 0x0, 0xfff) r4 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, 0x0, 0x200, 0x0) ioctl$auto_IOCTL_VMCI_VERSION2(r4, 0x7a7, 0x0) ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r4, 0x7a0, 0x6) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) r5 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop6\x00', 0x169780, 0x0) ioctl$auto_SG_GET_RESERVED_SIZE(r5, 0x127c, 0x0) close_range$auto(0x2, 0xa, 0x0) openat$auto_snapshot_fops_user(0xffffffffffffff9c, 0x0, 0x400, 0x3f) move_mount$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x104) r6 = open(&(0x7f0000000100)='.\x00', 0x0, 0x57e) fcntl$auto_F_ADD_SEALS(r6, 0x410, 0x0) read$auto_nsim_pp_hold_fops_netdev(r6, &(0x7f0000000200)=""/155, 0xfffffffffffffe74) 8.041582764s ago: executing program 1 (id=3200): mmap$auto(0x0, 0x4005, 0xb, 0x40eb2, 0x401, 0x300000000000) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) r0 = socket(0xa, 0x2, 0x0) sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x20048840}, 0x4000804) lstat$auto(0x0, &(0x7f0000000180)={0xa, 0xc2b, 0x7131, 0xfbc, 0x0, 0x0, 0x0, 0x4, 0x26, 0xc, 0x40005, 0x9, 0x0, 0x2, 0x5}) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x89fc, &(0x7f0000000040)={'bridge0\x00'}) close_range$auto(0x2, 0x8000, 0x0) r2 = socket(0x18, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000100), 0x240202, 0x0) close_range$auto(0x2, 0x8, 0x0) r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0) ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r0) ioctl$auto_KVM_CREATE_VM(r3, 0x4048aecb, 0x0) r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r1) sendmsg$auto_NL80211_CMD_SET_POWER_SAVE(r2, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x2c, r5, 0x800, 0x70bd27, 0x25dfdbff, {}, [@NL80211_ATTR_STA_SUPPORT_P2P_PS={0x5, 0xe4, 0x4}, @NL80211_ATTR_DURATION={0x8, 0x57, 0x10001}, @NL80211_ATTR_FRAME_TYPE={0x6, 0x65, 0x3}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40}, 0x1) 7.75858636s ago: executing program 0 (id=3201): openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/bus/usb/010/001\x00', 0x12b901, 0x0) mmap$auto(0x0, 0x400008, 0x5f, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) unshare$auto(0x40000080) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) ioctl$auto_TUNGETIFF2(r1, 0x800454d2, &(0x7f0000000040)) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) listen$auto(r2, 0x6) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) modify_ldt$auto(0x8011, 0x0, 0x46) syz_clone3(&(0x7f0000000300)={0x28020400, 0x0, 0x0, 0x0, {0x35}, 0x0, 0x0, 0x0, 0x0}, 0x58) keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001d00), 0xffffffffffffffff) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_ETHTOOL_MSG_PHY_GET(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x2c, r3, 0x1, 0x70bd2d, 0x25dfdbfc, {}, [@ETHTOOL_A_PHY_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvtap0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x400c0) madvise$auto(0x0, 0x2003f2, 0x15) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={0x0}}, 0x24048084) madvise$auto(0x0, 0x200007, 0x19) arch_prctl$auto_ARCH_GET_XCOMP_SUPP(0x1021, 0x1ff80000000000) socket(0x2, 0x1, 0x0) pipe$auto(0x0) getcpu$auto(0xfffffffffffffffc, 0xffffffffffffffff, 0xfffffffffffffffd) 7.75846548s ago: executing program 2 (id=3202): r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/011/001\x00', 0x1, 0x0) ioctl$auto_USBDEVFS_SETCONFIGURATION(r0, 0x80045505, &(0x7f0000000280)=0x7) 7.425136099s ago: executing program 2 (id=3203): r0 = socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) setsockopt$auto_SO_RCVMARK(r0, 0x6, 0x4b, &(0x7f00000000c0)='\x00', 0xa5cd) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) pread64$auto(0xffffffffffffffff, 0x0, 0xd, 0x6e9) close_range$auto(0x2, 0x8, 0x0) openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000340), 0x189400, 0x0) pwrite64$auto(r0, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x88\xa8s\x1c\b\x06\x8a>)\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2', 0x4e, 0x3) sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7fff) pread64$auto(r1, &(0x7f0000000080)=',[:^\'{\\\x00', 0x4000000000b, 0x18) r2 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0) read$auto(r2, &(0x7f00000002c0)='N\xd5\f\xb9GC*(,\x00\xc4bAL\xa3`\xb1\xf2\xe7\xc04b$\x99.\xb4\xcc\xc0%\xaa\xd3\xd5\xef\xa4\xd35u\xc0\xa6\r\xcaJ\x11\xaf\x93\xde\xc3|\x17\x96\xd1\x15g\x10\x1ai1(=!\xf1\xe8\xe4\xcdm\xedKW\xe7\xfbL\\\xf2sj(\v\xcd\xe5\x02B\x81ss\xdd\x8199\xa5\x1e\xb0A\xa3\xcbj7\xe9\xc9L\xcc\xc6\xa4\xaf%\xba\xda\xee\xd8%:bXj\xd5[UG\x8a\x8ab\x9a\x18\xe8K\xafU\x8d\xb1\f~\xaa\xab(\x86(\xf9\b\xf7$%\xf2\x11\xa4\x9bj\xc1)\n\x1ft\xb6\xaf\xe2\xd4\x95\xa3\xe1\x1f\xf7uw\a\xd0\x83{_>/\xff', 0x100000001) waitid$auto_P_ALL(0x0, 0x1, 0x0, 0x4005, &(0x7f0000000b40)={{0xffffffffffffffff}, {0xfffffffffffff4c5, 0x2}, 0x408, 0x8, 0x0, 0xdd0, 0x7, 0x400000000000010, 0x0, 0x4, 0x7, 0x3, 0x100000, 0x96bd, 0x7ff, 0xbf0}) r3 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) write$auto_console_fops_tty_io(r3, &(0x7f0000000000)="c80d1b5d399b3b", 0xfdef) 6.868877848s ago: executing program 1 (id=3213): mmap$auto(0x0, 0x20007, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_NL802154_CMD_NEW_SEC_DEVKEY(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000008c0)={&(0x7f0000000e40)=ANY=[@ANYBLOB="ec040000", @ANYRES16=0x0, @ANYBLOB="000828bd7000fddbdf251d00000008001d00", @ANYRES32, @ANYBLOB="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"], 0x4ec}, 0x1, 0x0, 0x0, 0x6000041}, 0x44020) mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xffffffffffffffff, 0x8000) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) mmap$auto(0x0, 0xd561, 0x10000000000df, 0xeb2, 0xffffffffffffffff, 0x8000) r1 = openat$auto_percpu_stats_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) preadv$auto(r1, &(0x7f0000000080)={&(0x7f0000000040), 0x2}, 0x3, 0x5, 0x0) timer_create$auto(0x2, 0x0, 0x0) timer_settime$auto(0x0, 0x3, &(0x7f00000000c0)={{0x26b, 0x4}, {0x0, 0x3}}, 0x0) mmap$auto(0x457, 0xe983, 0x8, 0x819, 0xffffffffffffffff, 0x7fff) capset$auto(0x0, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000200)='/proc/sys/net/ipv4/tcp_tw_reuse\x00', 0x14000, 0x0) socket(0x15, 0x6, 0x6c) mmap$auto(0x20, 0x400108, 0x3, 0x9b72, 0xffffffffffffffff, 0x8000) sysfs$auto(0x2, 0x3, 0x0) r2 = fsopen$auto(0x0, 0x0) fsconfig$auto(r2, 0x8, 0x0, 0x0, 0x0) fsconfig$auto(r2, 0x3, &(0x7f0000000440)='\x00sK\xce7\x9fpL\xcb$x\x00\xf0+\xd3\xd6g[.M\x91HK\xccO+\xec\xdcS\x95\xb2\xc7\x88\xa9\x82\x10|\xe2n+\xbfI_\xf0\xdd\x0e\xa2\xf3\xc9h\xaaSF\xc6K\x8c\x9bfh\x8c\xf5\x84\xed\xc4\a\xc7\x12E\x85\x0e\xf3\xa0\xa1\xec\xc0\xe0\x83\xde+\xec\x97\n1sg\xa1\xd5\t`\x96\xfd\xf2Ms\x03\x022\x13\x9c\xc7q<\xe2\x0e\xf7\x1d\xfe{z\x04\xac\r\xeb\xe12s\x90\x00\xef\x9eA\n\xd4n\x95\xa3\v]\x97\x97b$q,/\xb7\xe1\x92-\n;\xbd>\xa8\xfb\x98F\x0f\xc4j\x8bp\xfca\x17\xd6\r\xef\xba\x9a8N\x00\x00\xff\xff\xff\xff\xd7\\A%\xc8\xad\xa3,M\xea\x8e\fl\xfa\x8f\x00\x00D\xd1\xef\xdc\xde\xd4c\x95(\\\x17\xeb}\xfe\xb6\xb7\xb9\x19v\xee\xc6\xfep\xbfY1\xact\x84p\xb0x\xba\x18n\xebN\xe4\xef3\xddh\xec\xf2\xc1\x8b\a\x82`\x84f\v\xcd\xe3X64A\x88Q\xe6\xd0>kX~\xb2\x1f+\xb8\x9d\x05\x04\x11c\xcc\xbc\xdf\xa73\at/\x95\xbd\xa8\x18\xc1@\x171x\xa8R\xd9\xc7\ff\x1a\x9br\x13\xa0\x8b\x1e\x9e\x15\x17\'\x9fU\x8a\x1e\xc7F\r\x18\xdenEI\xe4{\xce\xfa<\x06\x99\xb4\xd4h\xca\x95\xb2\x10\xceci\t\x8c\xbe\x86&WQQ6\xb5B\xb1\f9O$#M\xb4\xe6H\xb7\xa8\x8d\x9a\xaaV\x91\xda:\xdc\xcc1\xa8\x18\vp]9\'\xefV\x0e\x90;\xb4\xc2\x862\x16\x11\xd0,\xc0\xdf\xe8-N\xf2\x1f\x90\xdfi\xb4\xe2.`@H\x17s\xa1\xb48', &(0x7f0000000600)="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", 0x0) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) memfd_create$auto(0x0, 0xe) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r3, &(0x7f0000000000)='//\xf2\x00', 0x80000000) mmap$auto(0x0, 0x810006, 0xffb, 0x8000000008011, 0x3, 0x0) open(0x0, 0x22240, 0x154) kexec_load$auto(0x5, 0x1, 0x0, 0x8) ioctl$auto_FIONREAD(r3, 0x541b, 0x7fff) openat$auto_proc_mem_operations_base(0xffffffffffffff9c, 0x0, 0x40, 0x0) 5.015969965s ago: executing program 2 (id=3208): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) statmount$auto(0x0, &(0x7f0000000180)={0x407, 0xffffffff, 0xd29e, 0x47, 0x1, 0x1007182, 0x2, 0x7, 0x6, 0x7, 0x89, 0x8, 0x4, 0x200000000001, 0x3, 0xfffffffffffffffa, 0x500000000000000, 0x0, 0x30, 0x0, 0x862, 0xe, 0x2, 0x9, 0x4, 0x83, 0xfffffffffffffffc, 0x0, 0x0, 0x80000000, 0x0, [0x0, 0x0, 0x0, 0x71, 0x0, 0x40000000000, 0x8, 0x0, 0x0, 0x0, 0x0, 0x3, 0x3, 0x2000000000000, 0x0, 0x0, 0x0, 0xf, 0x20000004, 0x800, 0x0, 0x0, 0x4000000010001, 0x1000000000, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x40000000000000, 0x0, 0x0, 0x2, 0xcc, 0x0, 0x3, 0xfffffffffffffffc, 0x1]}, 0x7, 0x9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000280)='/proc/thread-self/fail-nth\x00', 0x2, 0x0) write$auto(r0, &(0x7f0000000380)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k9\xca\xa7&\xf9E\xce9\xf2\xdaq\x8a\xd1\x87\x96\xda\x89\x00\x80\xfc\x19\x98\xe7 B?:\xf9h\xc2q\xaaA;\xe6G\xd1\x89\xcf97\xa8\x91\x85\xa2\xbd\x00ks\x82%\xe4\x92.I\x00\x00\x00\x8e.\x85\fp\x88]x\x1c\"4O\x88P\"\xcf\xb0\xcd\x89\nk;\xe8J\\{\xeb\xa6\xe3\x85\x8c\xad.\xc5\x00p\xa0!\xac%\x94\x9f{\xaf\x9b\xae6\xf6a\xf6\x93\x18\n\xe17\x8a\xd4\n\xa6$MR\xecYf\x85Qw\xe1\xc2m\xe4\xddVl\xce,V\x18\xdc\xc6\xdeZ\xd3\xcfZ!\x0ezu\x9a\xc6\v9AR_\xdb\xf7u\x9d\xaf\xe6\xf3\xd0\bd\xa4\x1dx\x83\xde\xd2\x96Gk\xa6R/\x9b\xbe\xb7\x9b\x9c\xc6\x10>A\xb8\xe6\xe10\b\xcbV\xa9\x01z\f\xad>\xe8\x913b\x00\x12\x02\xa4\xc7\xaa\x17T\xa0nm\xb7\xdco\xdd0\xa9\xf9\xa7\xa2}\xa6\x01\xffx\x15\xa9\xcd\xbc\x16\xc5\xe3\x9e\xa9\x8e\x19@\x11\vb\xc0\xc5\xdf\x0581P(\xf6!H\xafn\x9d\xb7J% 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1011.505896][T19461] RSP: 002b:00007f468dd7e028 EFLAGS: 00000246 ORIG_RAX: 00000000000000f2 [ 1011.505919][T19461] RAX: ffffffffffffffda RBX: 00007f468d216180 RCX: 00007f468cf9c819 [ 1011.505936][T19461] RDX: 0000000000000080 RSI: 0000000000000000 RDI: 0000000000000002 [ 1011.505950][T19461] RBP: 00007f468dd7e090 R08: 0000000000000000 R09: 0000000000000000 [ 1011.505965][T19461] R10: 0000000000000009 R11: 0000000000000246 R12: 0000000000000001 [ 1011.505980][T19461] R13: 00007f468d216218 R14: 00007f468d216180 R15: 00007fff2b6563a8 [ 1011.506013][T19461] [ 1011.722400][T19463] netlink: 33 bytes leftover after parsing attributes in process `syz.1.2727'. [ 1012.050020][T19468] FAULT_INJECTION: forcing a failure. [ 1012.050020][T19468] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1012.068687][T19468] CPU: 1 UID: 0 PID: 19468 Comm: syz.0.2729 Not tainted syzkaller #0 PREEMPT(full) [ 1012.068725][T19468] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1012.068740][T19468] Call Trace: [ 1012.068749][T19468] [ 1012.068759][T19468] dump_stack_lvl+0x100/0x190 [ 1012.068810][T19468] should_fail_ex.cold+0x5/0xa [ 1012.068840][T19468] ? prepare_alloc_pages+0x16d/0x5f0 [ 1012.068871][T19468] should_fail_alloc_page+0xeb/0x140 [ 1012.068917][T19468] prepare_alloc_pages+0x1f0/0x5f0 [ 1012.068957][T19468] __alloc_frozen_pages_noprof+0x19a/0x2bd0 [ 1012.068999][T19468] ? __pfx___might_resched+0x10/0x10 [ 1012.069027][T19468] ? find_held_lock+0x2b/0x80 [ 1012.069057][T19468] ? process_measurement+0x4c8/0x2350 [ 1012.069086][T19468] ? process_measurement+0x4c8/0x2350 [ 1012.069122][T19468] ? up_write+0x28c/0x4f0 [ 1012.069146][T19468] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1012.069189][T19468] ? __lock_acquire+0x4a5/0x2630 [ 1012.069237][T19468] ? __lock_acquire+0x4a5/0x2630 [ 1012.069282][T19468] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1012.069321][T19468] ? policy_nodemask+0xed/0x4f0 [ 1012.069364][T19468] alloc_pages_mpol+0x1fb/0x550 [ 1012.069405][T19468] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1012.069455][T19468] alloc_pages_noprof+0x136/0x390 [ 1012.069499][T19468] __pmd_alloc+0x3b/0x950 [ 1012.069531][T19468] __handle_mm_fault+0xa9e/0x2b60 [ 1012.069568][T19468] ? mt_find+0x45e/0x8e0 [ 1012.069608][T19468] ? __pfx___handle_mm_fault+0x10/0x10 [ 1012.069639][T19468] ? __pfx_mt_find+0x10/0x10 [ 1012.069703][T19468] ? find_vma+0xbf/0x140 [ 1012.069739][T19468] ? __pfx_find_vma+0x10/0x10 [ 1012.069778][T19468] handle_mm_fault+0x36d/0xa20 [ 1012.069816][T19468] do_user_addr_fault+0x74c/0x12f0 [ 1012.069853][T19468] ? trace_page_fault_kernel+0x7a/0x200 [ 1012.069885][T19468] exc_page_fault+0x6f/0xd0 [ 1012.069917][T19468] asm_exc_page_fault+0x26/0x30 [ 1012.069943][T19468] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 1012.069970][T19468] Code: cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 1012.069995][T19468] RSP: 0018:ffffc90003477ca0 EFLAGS: 00050202 [ 1012.070017][T19468] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000080 [ 1012.070033][T19468] RDX: 0000000000000001 RSI: 0000000000000000 RDI: ffff88801fbd7230 [ 1012.070050][T19468] RBP: 0000000000000080 R08: 0000000000000001 R09: ffffed1003f7ae55 [ 1012.070066][T19468] R10: ffff88801fbd72af R11: 0000000000000000 R12: 0000000000000000 [ 1012.070082][T19468] R13: ffff88801fbd7230 R14: 0000000000000080 R15: 0000000000002000 [ 1012.070115][T19468] _copy_from_user+0x98/0xd0 [ 1012.070150][T19468] load_msg+0x19e/0x4a0 [ 1012.070194][T19468] do_mq_timedsend+0x3ce/0xc40 [ 1012.070225][T19468] ? __pfx_do_mq_timedsend+0x10/0x10 [ 1012.070250][T19468] ? __mutex_unlock_slowpath+0x15d/0x8a0 [ 1012.070286][T19468] ? kernel_write+0x663/0x6c0 [ 1012.070322][T19468] ? __fget_files+0x215/0x3d0 [ 1012.070360][T19468] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 1012.070400][T19468] ? __fget_files+0x21f/0x3d0 [ 1012.070445][T19468] __x64_sys_mq_timedsend+0x1cd/0x260 [ 1012.070474][T19468] ? ksys_write+0x1ac/0x250 [ 1012.070511][T19468] ? __pfx___x64_sys_mq_timedsend+0x10/0x10 [ 1012.070544][T19468] ? rcu_is_watching+0x12/0xc0 [ 1012.070575][T19468] do_syscall_64+0x10b/0xf80 [ 1012.070608][T19468] ? clear_bhb_loop+0x40/0x90 [ 1012.070640][T19468] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1012.070671][T19468] RIP: 0033:0x7f8548b9c819 [ 1012.070692][T19468] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1012.070716][T19468] RSP: 002b:00007f85499e7028 EFLAGS: 00000246 ORIG_RAX: 00000000000000f2 [ 1012.070739][T19468] RAX: ffffffffffffffda RBX: 00007f8548e15fa0 RCX: 00007f8548b9c819 [ 1012.070757][T19468] RDX: 0000000000000080 RSI: 0000000000000000 RDI: 0000000000000003 [ 1012.070772][T19468] RBP: 00007f85499e7090 R08: 0000000000000000 R09: 0000000000000000 [ 1012.070788][T19468] R10: 0000000000000009 R11: 0000000000000246 R12: 0000000000000001 [ 1012.070803][T19468] R13: 00007f8548e16038 R14: 00007f8548e15fa0 R15: 00007fff97ee0758 [ 1012.070838][T19468] [ 1013.996095][T19482] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2733'. [ 1014.560402][ T5839] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 1015.290122][T19511] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2738'. [ 1015.601004][ T5839] Bluetooth: hci2: command 0x0406 tx timeout [ 1018.420923][T19555] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2747'. [ 1022.192755][T19615] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2759'. [ 1022.812251][T19616] Process accounting resumed [ 1025.723810][T19663] FAULT_INJECTION: forcing a failure. [ 1025.723810][T19663] name failslab, interval 1, probability 0, space 0, times 0 [ 1025.787484][T19663] CPU: 1 UID: 0 PID: 19663 Comm: syz.2.2770 Not tainted syzkaller #0 PREEMPT(full) [ 1025.787511][T19663] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1025.787520][T19663] Call Trace: [ 1025.787525][T19663] [ 1025.787530][T19663] dump_stack_lvl+0x100/0x190 [ 1025.787560][T19663] should_fail_ex.cold+0x5/0xa [ 1025.787579][T19663] should_failslab+0xc2/0x120 [ 1025.787602][T19663] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1025.787622][T19663] ? pidfs_register_pid+0x93/0x1b0 [ 1025.787642][T19663] ? d_instantiate+0x90/0xb0 [ 1025.787656][T19663] ? d_instantiate+0x90/0xb0 [ 1025.787672][T19663] pidfs_register_pid+0x93/0x1b0 [ 1025.787693][T19663] pidfs_stash_dentry+0x71/0xe0 [ 1025.787713][T19663] ? __pfx_pidfs_stash_dentry+0x10/0x10 [ 1025.787734][T19663] path_from_stashed+0x4dc/0x750 [ 1025.787753][T19663] pidfs_alloc_file+0xf8/0x290 [ 1025.787774][T19663] ? __pfx_pidfs_alloc_file+0x10/0x10 [ 1025.787802][T19663] pidfd_prepare+0x10c/0x1b0 [ 1025.787823][T19663] __x64_sys_pidfd_open+0x105/0x1a0 [ 1025.787846][T19663] ? __pfx___x64_sys_pidfd_open+0x10/0x10 [ 1025.787870][T19663] ? rcu_is_watching+0x12/0xc0 [ 1025.787900][T19663] do_syscall_64+0x10b/0xf80 [ 1025.787921][T19663] ? clear_bhb_loop+0x40/0x90 [ 1025.787943][T19663] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1025.787958][T19663] RIP: 0033:0x7f894339c819 [ 1025.787971][T19663] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1025.787985][T19663] RSP: 002b:00007f8944246028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b2 [ 1025.787999][T19663] RAX: ffffffffffffffda RBX: 00007f8943615fa0 RCX: 00007f894339c819 [ 1025.788009][T19663] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 1025.788017][T19663] RBP: 00007f8944246090 R08: 0000000000000000 R09: 0000000000000000 [ 1025.788026][T19663] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1025.788034][T19663] R13: 00007f8943616038 R14: 00007f8943615fa0 R15: 00007ffe5a04f6f8 [ 1025.788053][T19663] [ 1028.189784][T19693] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2776'. [ 1029.279398][T19704] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2779'. [ 1030.971884][ T5839] Bluetooth: hci1: command 0x0406 tx timeout [ 1032.535490][T19746] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2788'. [ 1033.179503][T19758] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2789'. [ 1034.759274][T19779] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2792'. [ 1035.990270][T19801] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2801'. [ 1036.398038][T19805] FAULT_INJECTION: forcing a failure. [ 1036.398038][T19805] name failslab, interval 1, probability 0, space 0, times 0 [ 1036.453728][T19805] CPU: 0 UID: 0 PID: 19805 Comm: syz.1.2803 Not tainted syzkaller #0 PREEMPT(full) [ 1036.453764][T19805] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1036.453778][T19805] Call Trace: [ 1036.453786][T19805] [ 1036.453795][T19805] dump_stack_lvl+0x100/0x190 [ 1036.453849][T19805] should_fail_ex.cold+0x5/0xa [ 1036.453880][T19805] ? lsm_blob_alloc+0x68/0x90 [ 1036.453902][T19805] should_failslab+0xc2/0x120 [ 1036.453925][T19805] __kmalloc_noprof+0xe0/0x850 [ 1036.453944][T19805] ? trace_kmem_cache_alloc+0xd5/0x100 [ 1036.453970][T19805] lsm_blob_alloc+0x68/0x90 [ 1036.453992][T19805] security_sk_alloc+0x2d/0x290 [ 1036.454009][T19805] sk_prot_alloc+0x1d1/0x2a0 [ 1036.454026][T19805] sk_alloc+0x36/0xe80 [ 1036.454045][T19805] inet_create+0x3a0/0x1060 [ 1036.454063][T19805] ? inet_create+0x94/0x1060 [ 1036.454085][T19805] __sock_create+0x339/0x860 [ 1036.454116][T19805] __sys_socket+0x14d/0x260 [ 1036.454132][T19805] ? fput+0x79/0x100 [ 1036.454146][T19805] ? __pfx___sys_socket+0x10/0x10 [ 1036.454161][T19805] ? ksys_write+0x1ac/0x250 [ 1036.454181][T19805] ? __pfx_ksys_write+0x10/0x10 [ 1036.454205][T19805] __x64_sys_socket+0x72/0xb0 [ 1036.454220][T19805] ? lockdep_hardirqs_on+0x78/0x100 [ 1036.454240][T19805] do_syscall_64+0x10b/0xf80 [ 1036.454258][T19805] ? clear_bhb_loop+0x40/0x90 [ 1036.454277][T19805] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1036.454292][T19805] RIP: 0033:0x7f1043d9c819 [ 1036.454305][T19805] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1036.454324][T19805] RSP: 002b:00007f1044b95028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 1036.454338][T19805] RAX: ffffffffffffffda RBX: 00007f1044015fa0 RCX: 00007f1043d9c819 [ 1036.454348][T19805] RDX: 00000000000000ff RSI: 0000000000000003 RDI: 0000000000000002 [ 1036.454357][T19805] RBP: 00007f1044b95090 R08: 0000000000000000 R09: 0000000000000000 [ 1036.454365][T19805] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1036.454374][T19805] R13: 00007f1044016038 R14: 00007f1044015fa0 R15: 00007fff5629b758 [ 1036.454393][T19805] [ 1037.428639][T19820] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2807'. [ 1038.027307][T19829] syz.2.2809 uses obsolete (PF_INET,SOCK_PACKET) [ 1038.196689][T19832] FAULT_INJECTION: forcing a failure. [ 1038.196689][T19832] name failslab, interval 1, probability 0, space 0, times 0 [ 1038.274652][T19832] CPU: 1 UID: 0 PID: 19832 Comm: syz.2.2809 Not tainted syzkaller #0 PREEMPT(full) [ 1038.274677][T19832] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1038.274686][T19832] Call Trace: [ 1038.274692][T19832] [ 1038.274698][T19832] dump_stack_lvl+0x100/0x190 [ 1038.274728][T19832] should_fail_ex.cold+0x5/0xa [ 1038.274747][T19832] should_failslab+0xc2/0x120 [ 1038.274770][T19832] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 1038.274790][T19832] ? alloc_inode+0x183/0x250 [ 1038.274807][T19832] ? find_inode_fast+0x1fa/0x910 [ 1038.274826][T19832] alloc_inode+0x183/0x250 [ 1038.274843][T19832] iget_locked+0x1d9/0x6d0 [ 1038.274860][T19832] ? __pfx_iget_locked+0x10/0x10 [ 1038.274876][T19832] ? kernfs_root+0xee/0x2a0 [ 1038.274895][T19832] ? kernfs_root+0xee/0x2a0 [ 1038.274918][T19832] kernfs_get_inode+0x46/0x470 [ 1038.274938][T19832] kernfs_iop_lookup+0x1a7/0x2d0 [ 1038.274968][T19832] lookup_open.isra.0+0x631/0x11b0 [ 1038.274994][T19832] ? __pfx_lookup_open.isra.0+0x10/0x10 [ 1038.275025][T19832] ? lookup_fast+0x2da/0x600 [ 1038.275046][T19832] path_openat+0xa98/0x31a0 [ 1038.275075][T19832] ? __pfx_path_openat+0x10/0x10 [ 1038.275104][T19832] do_file_open+0x20e/0x430 [ 1038.275128][T19832] ? __pfx_do_file_open+0x10/0x10 [ 1038.275163][T19832] ? alloc_fd+0x476/0x790 [ 1038.275186][T19832] ? do_getname+0x191/0x390 [ 1038.275205][T19832] do_sys_openat2+0x10d/0x1e0 [ 1038.275223][T19832] ? __pfx_do_sys_openat2+0x10/0x10 [ 1038.275247][T19832] __x64_sys_openat+0x12d/0x210 [ 1038.275265][T19832] ? __pfx___x64_sys_openat+0x10/0x10 [ 1038.275281][T19832] ? ksys_write+0x1ac/0x250 [ 1038.275304][T19832] ? rcu_is_watching+0x12/0xc0 [ 1038.275322][T19832] do_syscall_64+0x10b/0xf80 [ 1038.275340][T19832] ? clear_bhb_loop+0x40/0x90 [ 1038.275359][T19832] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1038.275374][T19832] RIP: 0033:0x7f894339c819 [ 1038.275388][T19832] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1038.275402][T19832] RSP: 002b:00007f8944225028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1038.275417][T19832] RAX: ffffffffffffffda RBX: 00007f8943616090 RCX: 00007f894339c819 [ 1038.275427][T19832] RDX: 0000000000002400 RSI: 0000200000000140 RDI: ffffffffffffff9c [ 1038.275436][T19832] RBP: 00007f8943432c91 R08: 0000000000000000 R09: 0000000000000000 [ 1038.275445][T19832] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1038.275454][T19832] R13: 00007f8943616128 R14: 00007f8943616090 R15: 00007ffe5a04f6f8 [ 1038.275474][T19832] [ 1038.723437][T19834] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2811'. [ 1039.078064][T19841] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2812'. [ 1040.891653][T19872] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2818'. [ 1041.287731][T19878] block2mtd: illegal erase size [ 1041.544468][T19881] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2821'. [ 1042.208606][T19885] FAULT_INJECTION: forcing a failure. [ 1042.208606][T19885] name failslab, interval 1, probability 0, space 0, times 0 [ 1042.233396][T19885] CPU: 1 UID: 0 PID: 19885 Comm: syz.1.2823 Not tainted syzkaller #0 PREEMPT(full) [ 1042.233421][T19885] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1042.233431][T19885] Call Trace: [ 1042.233436][T19885] [ 1042.233443][T19885] dump_stack_lvl+0x100/0x190 [ 1042.233475][T19885] should_fail_ex.cold+0x5/0xa [ 1042.233497][T19885] ? tomoyo_encode2+0xfb/0x3c0 [ 1042.233518][T19885] should_failslab+0xc2/0x120 [ 1042.233543][T19885] __kmalloc_noprof+0xe0/0x850 [ 1042.233561][T19885] ? d_absolute_path+0x136/0x1b0 [ 1042.233585][T19885] tomoyo_encode2+0xfb/0x3c0 [ 1042.233609][T19885] tomoyo_encode+0x29/0x50 [ 1042.233629][T19885] tomoyo_realpath_from_path+0x18c/0x690 [ 1042.233658][T19885] tomoyo_check_open_permission+0x2af/0x3c0 [ 1042.233678][T19885] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 1042.233704][T19885] ? hook_file_open+0x24e/0x7a0 [ 1042.233745][T19885] ? path_get+0x61/0x80 [ 1042.233762][T19885] tomoyo_file_open+0x6b/0x90 [ 1042.233778][T19885] security_file_open+0xb5/0x1e0 [ 1042.233800][T19885] do_dentry_open+0x5aa/0x1660 [ 1042.233824][T19885] ? security_inode_permission+0xbf/0x250 [ 1042.233846][T19885] vfs_open+0x82/0x3f0 [ 1042.233864][T19885] path_openat+0x208c/0x31a0 [ 1042.233893][T19885] ? __pfx_path_openat+0x10/0x10 [ 1042.233921][T19885] do_file_open+0x20e/0x430 [ 1042.233945][T19885] ? __pfx_do_file_open+0x10/0x10 [ 1042.233980][T19885] ? alloc_fd+0x476/0x790 [ 1042.234003][T19885] ? do_getname+0x191/0x390 [ 1042.234021][T19885] do_sys_openat2+0x10d/0x1e0 [ 1042.234037][T19885] ? __pfx_do_sys_openat2+0x10/0x10 [ 1042.234061][T19885] __x64_sys_openat+0x12d/0x210 [ 1042.234078][T19885] ? __pfx___x64_sys_openat+0x10/0x10 [ 1042.234094][T19885] ? ksys_write+0x1ac/0x250 [ 1042.234117][T19885] ? rcu_is_watching+0x12/0xc0 [ 1042.234135][T19885] do_syscall_64+0x10b/0xf80 [ 1042.234155][T19885] ? clear_bhb_loop+0x40/0x90 [ 1042.234174][T19885] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1042.234191][T19885] RIP: 0033:0x7f1043d9c819 [ 1042.234204][T19885] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1042.234219][T19885] RSP: 002b:00007f1044b95028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1042.234234][T19885] RAX: ffffffffffffffda RBX: 00007f1044015fa0 RCX: 00007f1043d9c819 [ 1042.234244][T19885] RDX: 0000000000002400 RSI: 0000200000000140 RDI: ffffffffffffff9c [ 1042.234253][T19885] RBP: 00007f1043e32c91 R08: 0000000000000000 R09: 0000000000000000 [ 1042.234263][T19885] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1042.234272][T19885] R13: 00007f1044016038 R14: 00007f1044015fa0 R15: 00007fff5629b758 [ 1042.234292][T19885] [ 1042.234338][T19885] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1047.658271][T19952] usb usb37: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 1047.688077][T19952] vhci_hcd vhci_hcd.2: invalid port number 0 [ 1051.033114][T19993] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2856'. [ 1052.822079][T20019] FAULT_INJECTION: forcing a failure. [ 1052.822079][T20019] name failslab, interval 1, probability 0, space 0, times 0 [ 1052.841638][T20019] CPU: 1 UID: 0 PID: 20019 Comm: syz.1.2854 Not tainted syzkaller #0 PREEMPT(full) [ 1052.841673][T20019] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1052.841688][T20019] Call Trace: [ 1052.841696][T20019] [ 1052.841706][T20019] dump_stack_lvl+0x100/0x190 [ 1052.841752][T20019] should_fail_ex.cold+0x5/0xa [ 1052.841785][T20019] should_failslab+0xc2/0x120 [ 1052.841824][T20019] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1052.841857][T20019] ? skb_clone+0x190/0x400 [ 1052.841899][T20019] skb_clone+0x190/0x400 [ 1052.841934][T20019] netlink_deliver_tap+0xaed/0xcc0 [ 1052.841981][T20019] netlink_unicast+0x62b/0x850 [ 1052.842011][T20019] ? __pfx_netlink_unicast+0x10/0x10 [ 1052.842046][T20019] netlink_sendmsg+0x8b0/0xda0 [ 1052.842077][T20019] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1052.842106][T20019] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 1052.842140][T20019] sock_write_iter+0x524/0x5a0 [ 1052.842166][T20019] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1052.842191][T20019] ? __pfx_sock_write_iter+0x10/0x10 [ 1052.842228][T20019] ? bpf_lsm_file_permission+0x9/0x10 [ 1052.842262][T20019] ? security_file_permission+0x76/0x210 [ 1052.842298][T20019] ? rw_verify_area+0xce/0x6d0 [ 1052.842332][T20019] vfs_write+0x6ac/0x1070 [ 1052.842368][T20019] ? __pfx_sock_write_iter+0x10/0x10 [ 1052.842397][T20019] ? __pfx_vfs_write+0x10/0x10 [ 1052.842430][T20019] ? find_held_lock+0x2b/0x80 [ 1052.842480][T20019] ksys_write+0x1f8/0x250 [ 1052.842520][T20019] ? __pfx_ksys_write+0x10/0x10 [ 1052.842560][T20019] ? rcu_is_watching+0x12/0xc0 [ 1052.842590][T20019] do_syscall_64+0x10b/0xf80 [ 1052.842622][T20019] ? clear_bhb_loop+0x40/0x90 [ 1052.842653][T20019] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1052.842679][T20019] RIP: 0033:0x7f1043d9c819 [ 1052.842699][T20019] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1052.842724][T20019] RSP: 002b:00007f1044b95028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1052.842748][T20019] RAX: ffffffffffffffda RBX: 00007f1044015fa0 RCX: 00007f1043d9c819 [ 1052.842763][T20019] RDX: 00000000000002fb RSI: 0000200000000000 RDI: 0000000000000003 [ 1052.842777][T20019] RBP: 00007f1044b95090 R08: 0000000000000000 R09: 0000000000000000 [ 1052.842793][T20019] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1052.842808][T20019] R13: 00007f1044016038 R14: 00007f1044015fa0 R15: 00007fff5629b758 [ 1052.842842][T20019] [ 1053.386947][T20025] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2858'. [ 1053.642592][T20004] Process accounting paused [ 1053.886439][T20034] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2860'. [ 1054.484720][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 1054.491216][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 1055.528584][T20048] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2870'. [ 1058.951076][T20116] FAULT_INJECTION: forcing a failure. [ 1058.951076][T20116] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1059.001550][T20116] CPU: 0 UID: 0 PID: 20116 Comm: syz.3.2880 Not tainted syzkaller #0 PREEMPT(full) [ 1059.001588][T20116] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1059.001605][T20116] Call Trace: [ 1059.001613][T20116] [ 1059.001624][T20116] dump_stack_lvl+0x100/0x190 [ 1059.001674][T20116] should_fail_ex.cold+0x5/0xa [ 1059.001703][T20116] ? prepare_alloc_pages+0x16d/0x5f0 [ 1059.001732][T20116] should_fail_alloc_page+0xeb/0x140 [ 1059.001777][T20116] prepare_alloc_pages+0x1f0/0x5f0 [ 1059.001811][T20116] __alloc_frozen_pages_noprof+0x19a/0x2bd0 [ 1059.001854][T20116] ? stack_trace_save+0x8e/0xc0 [ 1059.001887][T20116] ? __pfx_stack_trace_save+0x10/0x10 [ 1059.001918][T20116] ? stack_depot_save_flags+0x27/0x9d0 [ 1059.001963][T20116] ? kasan_save_stack+0x3f/0x50 [ 1059.001998][T20116] ? kasan_save_stack+0x30/0x50 [ 1059.002032][T20116] ? kasan_save_track+0x14/0x30 [ 1059.002072][T20116] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1059.002105][T20116] ? __handle_mm_fault+0xa9e/0x2b60 [ 1059.002132][T20116] ? handle_mm_fault+0x36d/0xa20 [ 1059.002160][T20116] ? do_user_addr_fault+0x74c/0x12f0 [ 1059.002197][T20116] ? asm_exc_page_fault+0x26/0x30 [ 1059.002224][T20116] ? _copy_from_user+0x98/0xd0 [ 1059.002256][T20116] ? copy_from_sockptr_offset.constprop.0+0x12c/0x150 [ 1059.002288][T20116] ? do_sock_getsockopt+0x530/0x6e0 [ 1059.002314][T20116] ? __sys_getsockopt+0x133/0x1d0 [ 1059.002350][T20116] ? __x64_sys_getsockopt+0xbd/0x160 [ 1059.002386][T20116] ? do_syscall_64+0x10b/0xf80 [ 1059.002420][T20116] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1059.002464][T20116] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1059.002503][T20116] ? policy_nodemask+0xed/0x4f0 [ 1059.002550][T20116] alloc_pages_mpol+0x1fb/0x550 [ 1059.002592][T20116] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1059.002650][T20116] alloc_pages_noprof+0x136/0x390 [ 1059.002696][T20116] pte_alloc_one+0x1c/0x3d0 [ 1059.002733][T20116] do_fault+0x88e/0x18e0 [ 1059.002760][T20116] ? __pmd_alloc+0x3fb/0x950 [ 1059.002791][T20116] __handle_mm_fault+0x1815/0x2b60 [ 1059.002829][T20116] ? mt_find+0x45e/0x8e0 [ 1059.002868][T20116] ? __pfx___handle_mm_fault+0x10/0x10 [ 1059.002899][T20116] ? __pfx_mt_find+0x10/0x10 [ 1059.002956][T20116] ? find_vma+0xbf/0x140 [ 1059.002996][T20116] ? __pfx_find_vma+0x10/0x10 [ 1059.003037][T20116] handle_mm_fault+0x36d/0xa20 [ 1059.003077][T20116] do_user_addr_fault+0x74c/0x12f0 [ 1059.003114][T20116] ? trace_page_fault_kernel+0x7a/0x200 [ 1059.003149][T20116] exc_page_fault+0x6f/0xd0 [ 1059.003192][T20116] asm_exc_page_fault+0x26/0x30 [ 1059.003219][T20116] RIP: 0010:rep_movs_alternative+0xf/0x90 [ 1059.003248][T20116] Code: c4 10 e9 94 9e 04 00 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 83 f9 40 73 44 83 f9 08 73 25 85 c9 74 0f <8a> 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 66 [ 1059.003274][T20116] RSP: 0018:ffffc90003587bd0 EFLAGS: 00050202 [ 1059.003296][T20116] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000004 [ 1059.003313][T20116] RDX: 0000000000000001 RSI: 0000000000000000 RDI: ffffc90003587cf0 [ 1059.003330][T20116] RBP: 0000000000000004 R08: 0000000000000001 R09: fffff520006b0f9e [ 1059.003347][T20116] R10: 0000000000000003 R11: 0000000000000000 R12: 0000000000000000 [ 1059.003363][T20116] R13: ffffc90003587cf0 R14: 0000000000000000 R15: 0000000000000084 [ 1059.003397][T20116] _copy_from_user+0x98/0xd0 [ 1059.003435][T20116] copy_from_sockptr_offset.constprop.0+0x12c/0x150 [ 1059.003468][T20116] ? __pfx_copy_from_sockptr_offset.constprop.0+0x10/0x10 [ 1059.003511][T20116] do_sock_getsockopt+0x530/0x6e0 [ 1059.003537][T20116] ? __lock_acquire+0x4a5/0x2630 [ 1059.003583][T20116] ? __pfx_do_sock_getsockopt+0x10/0x10 [ 1059.003609][T20116] ? find_held_lock+0x2b/0x80 [ 1059.003639][T20116] ? ksys_write+0x190/0x250 [ 1059.003702][T20116] ? find_held_lock+0x2b/0x80 [ 1059.003743][T20116] ? __fget_files+0x21f/0x3d0 [ 1059.003791][T20116] __sys_getsockopt+0x133/0x1d0 [ 1059.003833][T20116] ? __pfx_ksys_write+0x10/0x10 [ 1059.003877][T20116] ? __x64_sys_getsockopt+0xbd/0x160 [ 1059.003913][T20116] __x64_sys_getsockopt+0xbd/0x160 [ 1059.003949][T20116] ? do_syscall_64+0x90/0xf80 [ 1059.003983][T20116] ? lockdep_hardirqs_on+0x78/0x100 [ 1059.004014][T20116] do_syscall_64+0x10b/0xf80 [ 1059.004043][T20116] ? clear_bhb_loop+0x40/0x90 [ 1059.004071][T20116] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1059.004096][T20116] RIP: 0033:0x7f468cf9c819 [ 1059.004115][T20116] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1059.004138][T20116] RSP: 002b:00007f468ddc0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 1059.004153][T20116] RAX: ffffffffffffffda RBX: 00007f468d215fa0 RCX: 00007f468cf9c819 [ 1059.004163][T20116] RDX: 000000000000006d RSI: 0000000000000084 RDI: 0000000000000003 [ 1059.004171][T20116] RBP: 00007f468ddc0090 R08: 0000000000000000 R09: 0000000000000000 [ 1059.004180][T20116] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1059.004194][T20116] R13: 00007f468d216038 R14: 00007f468d215fa0 R15: 00007fff2b6563a8 [ 1059.004214][T20116] [ 1060.901857][T20133] usb usb37: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 1060.932960][T20133] vhci_hcd vhci_hcd.2: invalid port number 0 [ 1061.317188][T20147] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2889'. [ 1063.081721][T17436] Bluetooth: hci2: unexpected event 0x04 length: 64 > 10 [ 1063.081803][T17436] Bluetooth: hci2: connection err: -111 [ 1065.377767][T20224] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2909'. [ 1065.772057][T20227] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2910'. [ 1065.854374][T20229] FAULT_INJECTION: forcing a failure. [ 1065.854374][T20229] name failslab, interval 1, probability 0, space 0, times 0 [ 1065.894579][T20229] CPU: 0 UID: 0 PID: 20229 Comm: syz.3.2911 Not tainted syzkaller #0 PREEMPT(full) [ 1065.894618][T20229] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1065.894634][T20229] Call Trace: [ 1065.894643][T20229] [ 1065.894653][T20229] dump_stack_lvl+0x100/0x190 [ 1065.894704][T20229] should_fail_ex.cold+0x5/0xa [ 1065.894740][T20229] should_failslab+0xc2/0x120 [ 1065.894784][T20229] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1065.894821][T20229] ? __pmd_alloc+0xbf/0x950 [ 1065.894855][T20229] __pmd_alloc+0xbf/0x950 [ 1065.894886][T20229] __handle_mm_fault+0xa9e/0x2b60 [ 1065.894926][T20229] ? mt_find+0x45e/0x8e0 [ 1065.894966][T20229] ? __pfx___handle_mm_fault+0x10/0x10 [ 1065.894998][T20229] ? __pfx_mt_find+0x10/0x10 [ 1065.895058][T20229] ? find_vma+0xbf/0x140 [ 1065.895094][T20229] ? __pfx_find_vma+0x10/0x10 [ 1065.895137][T20229] handle_mm_fault+0x36d/0xa20 [ 1065.895178][T20229] do_user_addr_fault+0x74c/0x12f0 [ 1065.895216][T20229] ? trace_page_fault_kernel+0x7a/0x200 [ 1065.895257][T20229] exc_page_fault+0x6f/0xd0 [ 1065.895294][T20229] asm_exc_page_fault+0x26/0x30 [ 1065.895322][T20229] RIP: 0010:rep_movs_alternative+0x11/0x90 [ 1065.895350][T20229] Code: e9 94 9e 04 00 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 83 f9 40 73 44 83 f9 08 73 25 85 c9 74 0f 8a 06 <88> 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 66 2e 0f [ 1065.895373][T20229] RSP: 0018:ffffc90003877ae8 EFLAGS: 00050202 [ 1065.895393][T20229] RAX: 000000000000006f RBX: 0000000000000000 RCX: 0000000000000007 [ 1065.895407][T20229] RDX: 0000000000000001 RSI: ffff88807ce3e000 RDI: 0000000000000000 [ 1065.895422][T20229] RBP: ffffc90003877d80 R08: 0000000000000000 R09: ffffed100f9c7c00 [ 1065.895439][T20229] R10: ffff88807ce3e006 R11: 0000000000000000 R12: 0000000000000007 [ 1065.895454][T20229] R13: 00007ffffffff000 R14: ffff88807ce3e000 R15: 0000000000000007 [ 1065.895489][T20229] _copy_to_iter+0x391/0x1720 [ 1065.895535][T20229] ? __pfx__copy_to_iter+0x10/0x10 [ 1065.895574][T20229] ? kernfs_seq_stop+0xcd/0x120 [ 1065.895608][T20229] ? kernfs_put_active+0x93/0xe0 [ 1065.895655][T20229] seq_read_iter+0xdab/0x1270 [ 1065.895708][T20229] kernfs_fop_read_iter+0x46c/0x610 [ 1065.895740][T20229] ? rw_verify_area+0xce/0x6d0 [ 1065.895774][T20229] ? __pfx_kernfs_fop_read_iter+0x10/0x10 [ 1065.895805][T20229] vfs_read+0x825/0xb30 [ 1065.895846][T20229] ? __pfx_vfs_read+0x10/0x10 [ 1065.895907][T20229] ksys_read+0x12a/0x250 [ 1065.895943][T20229] ? __pfx_ksys_read+0x10/0x10 [ 1065.895980][T20229] ? rcu_is_watching+0x12/0xc0 [ 1065.896011][T20229] do_syscall_64+0x10b/0xf80 [ 1065.896041][T20229] ? clear_bhb_loop+0x40/0x90 [ 1065.896074][T20229] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1065.896100][T20229] RIP: 0033:0x7f468cf9c819 [ 1065.896123][T20229] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1065.896150][T20229] RSP: 002b:00007f468ddc0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1065.896175][T20229] RAX: ffffffffffffffda RBX: 00007f468d215fa0 RCX: 00007f468cf9c819 [ 1065.896193][T20229] RDX: 0000000000000080 RSI: 0000000000000000 RDI: 0000000000000003 [ 1065.896210][T20229] RBP: 00007f468ddc0090 R08: 0000000000000000 R09: 0000000000000000 [ 1065.896235][T20229] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1065.896252][T20229] R13: 00007f468d216038 R14: 00007f468d215fa0 R15: 00007fff2b6563a8 [ 1065.896290][T20229] [ 1066.420539][T20235] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2914'. [ 1068.945214][T20262] kexec: Could not allocate control_code_buffer [ 1069.861962][T20288] random: crng reseeded on system resumption [ 1070.296477][T20301] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2928'. [ 1070.592156][T20308] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2930'. [ 1071.340307][T20317] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2933'. [ 1072.591394][T20335] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2936'. [ 1073.749684][T20355] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2941'. [ 1073.951615][T20352] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2940'. [ 1074.726082][T20364] FAULT_INJECTION: forcing a failure. [ 1074.726082][T20364] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1074.751353][T20365] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2943'. [ 1074.763616][T20364] CPU: 0 UID: 0 PID: 20364 Comm: syz.0.2942 Not tainted syzkaller #0 PREEMPT(full) [ 1074.763655][T20364] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1074.763671][T20364] Call Trace: [ 1074.763680][T20364] [ 1074.763690][T20364] dump_stack_lvl+0x100/0x190 [ 1074.763741][T20364] should_fail_ex.cold+0x5/0xa [ 1074.763774][T20364] _copy_from_iter+0x1f4/0x1690 [ 1074.763812][T20364] ? __asan_memset+0x23/0x50 [ 1074.763843][T20364] ? __pfx__copy_from_iter+0x10/0x10 [ 1074.763879][T20364] ? __pfx___alloc_skb+0x10/0x10 [ 1074.763929][T20364] netlink_sendmsg+0x808/0xda0 [ 1074.763964][T20364] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1074.763990][T20364] ? __import_iovec+0x1d2/0x640 [ 1074.764031][T20364] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 1074.764067][T20364] ____sys_sendmsg+0x9e1/0xb70 [ 1074.764094][T20364] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1074.764125][T20364] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1074.764158][T20364] ? __pfx__kstrtoull+0x10/0x10 [ 1074.764192][T20364] ___sys_sendmsg+0x190/0x1e0 [ 1074.764225][T20364] ? __pfx____sys_sendmsg+0x10/0x10 [ 1074.764271][T20364] ? find_held_lock+0x2b/0x80 [ 1074.764325][T20364] __sys_sendmmsg+0x205/0x430 [ 1074.764368][T20364] ? __pfx___sys_sendmmsg+0x10/0x10 [ 1074.764418][T20364] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 1074.764472][T20364] ? fput+0x79/0x100 [ 1074.764499][T20364] ? ksys_write+0x1ac/0x250 [ 1074.764537][T20364] ? __pfx_ksys_write+0x10/0x10 [ 1074.764581][T20364] __x64_sys_sendmmsg+0x9c/0x100 [ 1074.764625][T20364] ? lockdep_hardirqs_on+0x78/0x100 [ 1074.764661][T20364] do_syscall_64+0x10b/0xf80 [ 1074.764695][T20364] ? clear_bhb_loop+0x40/0x90 [ 1074.764729][T20364] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1074.764757][T20364] RIP: 0033:0x7f8548b9c819 [ 1074.764780][T20364] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1074.764805][T20364] RSP: 002b:00007f85499e7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 1074.764832][T20364] RAX: ffffffffffffffda RBX: 00007f8548e15fa0 RCX: 00007f8548b9c819 [ 1074.764850][T20364] RDX: 00000000ffffffff RSI: 0000200000000080 RDI: 0000000000000003 [ 1074.764867][T20364] RBP: 00007f85499e7090 R08: 0000000000000000 R09: 0000000000000000 [ 1074.764884][T20364] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1074.764900][T20364] R13: 00007f8548e16038 R14: 00007f8548e15fa0 R15: 00007fff97ee0758 [ 1074.764936][T20364] [ 1076.471003][T20385] random: crng reseeded on system resumption [ 1076.897381][T20406] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2953'. [ 1077.558286][T20413] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2955'. [ 1077.768655][T20420] random: crng reseeded on system resumption [ 1077.796646][T20420] FAULT_INJECTION: forcing a failure. [ 1077.796646][T20420] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1077.815128][T20420] CPU: 1 UID: 0 PID: 20420 Comm: syz.1.2956 Not tainted syzkaller #0 PREEMPT(full) [ 1077.815162][T20420] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1077.815177][T20420] Call Trace: [ 1077.815185][T20420] [ 1077.815194][T20420] dump_stack_lvl+0x100/0x190 [ 1077.815243][T20420] should_fail_ex.cold+0x5/0xa [ 1077.815269][T20420] ? prepare_alloc_pages+0x16d/0x5f0 [ 1077.815297][T20420] should_fail_alloc_page+0xeb/0x140 [ 1077.815347][T20420] prepare_alloc_pages+0x1f0/0x5f0 [ 1077.815377][T20420] __alloc_frozen_pages_noprof+0x19a/0x2bd0 [ 1077.815423][T20420] ? stack_trace_save+0x8e/0xc0 [ 1077.815453][T20420] ? __pfx_stack_trace_save+0x10/0x10 [ 1077.815480][T20420] ? arch_stack_walk+0xa6/0xf0 [ 1077.815511][T20420] ? stack_depot_save_flags+0x27/0x9d0 [ 1077.815551][T20420] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1077.815591][T20420] ? kasan_save_stack+0x3f/0x50 [ 1077.815624][T20420] ? kasan_save_stack+0x30/0x50 [ 1077.815659][T20420] ? kasan_save_track+0x14/0x30 [ 1077.815696][T20420] ? __kasan_kmalloc+0xaa/0xb0 [ 1077.815737][T20420] ? memory_bm_create+0x14d/0xba0 [ 1077.815765][T20420] ? create_basic_memory_bitmaps+0x10b/0x350 [ 1077.815795][T20420] ? snapshot_open+0x230/0x2a0 [ 1077.815828][T20420] ? misc_open+0x26d/0x450 [ 1077.815866][T20420] ? do_sys_openat2+0x10d/0x1e0 [ 1077.815892][T20420] ? __x64_sys_openat+0x12d/0x210 [ 1077.815918][T20420] ? do_syscall_64+0x10b/0xf80 [ 1077.815950][T20420] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1077.815984][T20420] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1077.816022][T20420] ? policy_nodemask+0xed/0x4f0 [ 1077.816065][T20420] alloc_pages_mpol+0x1fb/0x550 [ 1077.816108][T20420] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1077.816163][T20420] alloc_pages_noprof+0x136/0x390 [ 1077.816209][T20420] get_zeroed_page_noprof+0x18/0xb0 [ 1077.816254][T20420] get_image_page+0x18/0x1a0 [ 1077.816289][T20420] memory_bm_create+0x9bd/0xba0 [ 1077.816341][T20420] create_basic_memory_bitmaps+0x10b/0x350 [ 1077.816381][T20420] snapshot_open+0x230/0x2a0 [ 1077.816419][T20420] ? __pfx_snapshot_open+0x10/0x10 [ 1077.816456][T20420] misc_open+0x26d/0x450 [ 1077.816493][T20420] ? __pfx_misc_open+0x10/0x10 [ 1077.816530][T20420] chrdev_open+0x234/0x6a0 [ 1077.816570][T20420] ? __pfx_apparmor_file_open+0x10/0x10 [ 1077.816604][T20420] ? __pfx_chrdev_open+0x10/0x10 [ 1077.816649][T20420] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 1077.816702][T20420] do_dentry_open+0x6d8/0x1660 [ 1077.816745][T20420] ? __pfx_chrdev_open+0x10/0x10 [ 1077.816797][T20420] vfs_open+0x82/0x3f0 [ 1077.816831][T20420] path_openat+0x208c/0x31a0 [ 1077.816884][T20420] ? __pfx_path_openat+0x10/0x10 [ 1077.816940][T20420] do_file_open+0x20e/0x430 [ 1077.816987][T20420] ? __pfx_do_file_open+0x10/0x10 [ 1077.817058][T20420] ? alloc_fd+0x476/0x790 [ 1077.817105][T20420] ? do_getname+0x191/0x390 [ 1077.817138][T20420] do_sys_openat2+0x10d/0x1e0 [ 1077.817171][T20420] ? __pfx_do_sys_openat2+0x10/0x10 [ 1077.817217][T20420] __x64_sys_openat+0x12d/0x210 [ 1077.817250][T20420] ? __pfx___x64_sys_openat+0x10/0x10 [ 1077.817291][T20420] ? rcu_is_watching+0x12/0xc0 [ 1077.817331][T20420] do_syscall_64+0x10b/0xf80 [ 1077.817367][T20420] ? clear_bhb_loop+0x40/0x90 [ 1077.817401][T20420] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1077.817431][T20420] RIP: 0033:0x7f1043d9c819 [ 1077.817454][T20420] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1077.817479][T20420] RSP: 002b:00007f1044b74028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1077.817504][T20420] RAX: ffffffffffffffda RBX: 00007f1044016090 RCX: 00007f1043d9c819 [ 1077.817522][T20420] RDX: 0000000000008001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 1077.817538][T20420] RBP: 00007f1043e32c91 R08: 0000000000000000 R09: 0000000000000000 [ 1077.817555][T20420] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1077.817572][T20420] R13: 00007f1044016128 R14: 00007f1044016090 R15: 00007fff5629b758 [ 1077.817610][T20420] [ 1078.393530][T20418] random: crng reseeded on system resumption [ 1078.450478][T20426] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2958'. [ 1078.755710][T20433] FAULT_INJECTION: forcing a failure. [ 1078.755710][T20433] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1078.803436][T20435] random: crng reseeded on system resumption [ 1078.850974][T20433] CPU: 0 UID: 0 PID: 20433 Comm: syz.0.2959 Not tainted syzkaller #0 PREEMPT(full) [ 1078.851016][T20433] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1078.851030][T20433] Call Trace: [ 1078.851039][T20433] [ 1078.851049][T20433] dump_stack_lvl+0x100/0x190 [ 1078.851085][T20433] should_fail_ex.cold+0x5/0xa [ 1078.851111][T20433] _copy_from_user+0x2e/0xd0 [ 1078.851132][T20433] kstrtouint_from_user+0xd6/0x1d0 [ 1078.851148][T20433] ? __pfx_kstrtouint_from_user+0x10/0x10 [ 1078.851162][T20433] ? __lock_acquire+0x4a5/0x2630 [ 1078.851187][T20433] ? lock_acquire+0x1b1/0x370 [ 1078.851210][T20433] proc_fail_nth_write+0x83/0x220 [ 1078.851229][T20433] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 1078.851254][T20433] vfs_write+0x2aa/0x1070 [ 1078.851276][T20433] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 1078.851295][T20433] ? __pfx_vfs_write+0x10/0x10 [ 1078.851315][T20433] ? __fget_files+0x215/0x3d0 [ 1078.851343][T20433] ? __fget_files+0x21f/0x3d0 [ 1078.851368][T20433] ksys_write+0x12a/0x250 [ 1078.851388][T20433] ? __pfx_ksys_write+0x10/0x10 [ 1078.851410][T20433] ? rcu_is_watching+0x12/0xc0 [ 1078.851428][T20433] do_syscall_64+0x10b/0xf80 [ 1078.851447][T20433] ? clear_bhb_loop+0x40/0x90 [ 1078.851465][T20433] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1078.851480][T20433] RIP: 0033:0x7f8548b5d04e [ 1078.851494][T20433] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 1078.851508][T20433] RSP: 002b:00007f85499c5fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1078.851523][T20433] RAX: ffffffffffffffda RBX: 00007f85499c66c0 RCX: 00007f8548b5d04e [ 1078.851533][T20433] RDX: 0000000000000001 RSI: 00007f85499c60a0 RDI: 0000000000000006 [ 1078.851542][T20433] RBP: 00007f85499c6090 R08: 0000000000000000 R09: 0000000000000000 [ 1078.851551][T20433] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1078.851559][T20433] R13: 00007f8548e16128 R14: 00007f8548e16090 R15: 00007fff97ee0758 [ 1078.851579][T20433] [ 1079.115761][T20435] FAULT_INJECTION: forcing a failure. [ 1079.115761][T20435] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1079.184671][T20435] CPU: 1 UID: 0 PID: 20435 Comm: syz.0.2959 Not tainted syzkaller #0 PREEMPT(full) [ 1079.184710][T20435] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1079.184726][T20435] Call Trace: [ 1079.184735][T20435] [ 1079.184745][T20435] dump_stack_lvl+0x100/0x190 [ 1079.184796][T20435] should_fail_ex.cold+0x5/0xa [ 1079.184825][T20435] ? prepare_alloc_pages+0x16d/0x5f0 [ 1079.184855][T20435] should_fail_alloc_page+0xeb/0x140 [ 1079.184900][T20435] prepare_alloc_pages+0x1f0/0x5f0 [ 1079.184949][T20435] __alloc_frozen_pages_noprof+0x19a/0x2bd0 [ 1079.184990][T20435] ? __alloc_frozen_pages_noprof+0x2b1/0x2bd0 [ 1079.185039][T20435] ? stack_trace_save+0x8e/0xc0 [ 1079.185074][T20435] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1079.185111][T20435] ? stack_depot_save_flags+0x27/0x9d0 [ 1079.185154][T20435] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1079.185196][T20435] ? kasan_save_stack+0x3f/0x50 [ 1079.185232][T20435] ? kasan_save_stack+0x30/0x50 [ 1079.185273][T20435] ? kasan_save_track+0x14/0x30 [ 1079.185318][T20435] ? do_sys_openat2+0x10d/0x1e0 [ 1079.185347][T20435] ? __x64_sys_openat+0x12d/0x210 [ 1079.185377][T20435] ? do_syscall_64+0x10b/0xf80 [ 1079.185412][T20435] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1079.185443][T20435] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1079.185481][T20435] ? policy_nodemask+0xed/0x4f0 [ 1079.185526][T20435] alloc_pages_mpol+0x1fb/0x550 [ 1079.185573][T20435] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1079.185616][T20435] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1079.185665][T20435] alloc_pages_noprof+0x136/0x390 [ 1079.185710][T20435] get_zeroed_page_noprof+0x18/0xb0 [ 1079.185754][T20435] get_image_page+0x18/0x1a0 [ 1079.185785][T20435] alloc_rtree_node+0x3c/0xb0 [ 1079.185815][T20435] memory_bm_create+0x65e/0xba0 [ 1079.185863][T20435] create_basic_memory_bitmaps+0x10b/0x350 [ 1079.185904][T20435] snapshot_open+0x230/0x2a0 [ 1079.185939][T20435] ? __pfx_snapshot_open+0x10/0x10 [ 1079.185976][T20435] misc_open+0x26d/0x450 [ 1079.186014][T20435] ? __pfx_misc_open+0x10/0x10 [ 1079.186051][T20435] chrdev_open+0x234/0x6a0 [ 1079.186092][T20435] ? __pfx_apparmor_file_open+0x10/0x10 [ 1079.186126][T20435] ? __pfx_chrdev_open+0x10/0x10 [ 1079.186170][T20435] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 1079.186222][T20435] do_dentry_open+0x6d8/0x1660 [ 1079.186267][T20435] ? __pfx_chrdev_open+0x10/0x10 [ 1079.186318][T20435] vfs_open+0x82/0x3f0 [ 1079.186353][T20435] path_openat+0x208c/0x31a0 [ 1079.186408][T20435] ? __pfx_path_openat+0x10/0x10 [ 1079.186464][T20435] do_file_open+0x20e/0x430 [ 1079.186509][T20435] ? __pfx_do_file_open+0x10/0x10 [ 1079.186577][T20435] ? alloc_fd+0x476/0x790 [ 1079.186621][T20435] ? do_getname+0x191/0x390 [ 1079.186655][T20435] do_sys_openat2+0x10d/0x1e0 [ 1079.186687][T20435] ? __pfx_do_sys_openat2+0x10/0x10 [ 1079.186733][T20435] __x64_sys_openat+0x12d/0x210 [ 1079.186767][T20435] ? __pfx___x64_sys_openat+0x10/0x10 [ 1079.186806][T20435] ? rcu_is_watching+0x12/0xc0 [ 1079.186840][T20435] do_syscall_64+0x10b/0xf80 [ 1079.186875][T20435] ? clear_bhb_loop+0x40/0x90 [ 1079.186909][T20435] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1079.186937][T20435] RIP: 0033:0x7f8548b9c819 [ 1079.186960][T20435] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1079.186985][T20435] RSP: 002b:00007f85499a5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1079.187011][T20435] RAX: ffffffffffffffda RBX: 00007f8548e16180 RCX: 00007f8548b9c819 [ 1079.187030][T20435] RDX: 0000000000008001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 1079.187047][T20435] RBP: 00007f8548c32c91 R08: 0000000000000000 R09: 0000000000000000 [ 1079.187064][T20435] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1079.187080][T20435] R13: 00007f8548e16218 R14: 00007f8548e16180 R15: 00007fff97ee0758 [ 1079.187118][T20435] [ 1079.831743][T20440] FAULT_INJECTION: forcing a failure. [ 1079.831743][T20440] name failslab, interval 1, probability 0, space 0, times 0 [ 1079.847967][T20440] CPU: 1 UID: 0 PID: 20440 Comm: syz.2.2962 Not tainted syzkaller #0 PREEMPT(full) [ 1079.847989][T20440] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1079.847998][T20440] Call Trace: [ 1079.848003][T20440] [ 1079.848009][T20440] dump_stack_lvl+0x100/0x190 [ 1079.848038][T20440] should_fail_ex.cold+0x5/0xa [ 1079.848058][T20440] should_failslab+0xc2/0x120 [ 1079.848081][T20440] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1079.848100][T20440] ? security_file_alloc+0x34/0x2c0 [ 1079.848120][T20440] ? trace_kmem_cache_alloc+0xd5/0x100 [ 1079.848145][T20440] security_file_alloc+0x34/0x2c0 [ 1079.848168][T20440] init_file+0x95/0x480 [ 1079.848184][T20440] alloc_empty_file+0x79/0x1c0 [ 1079.848200][T20440] path_openat+0xe8/0x31a0 [ 1079.848221][T20440] ? kasan_save_stack+0x3f/0x50 [ 1079.848240][T20440] ? kasan_save_stack+0x30/0x50 [ 1079.848258][T20440] ? kasan_save_track+0x14/0x30 [ 1079.848276][T20440] ? __kasan_slab_alloc+0x89/0x90 [ 1079.848295][T20440] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 1079.848314][T20440] ? do_getname+0x35/0x390 [ 1079.848327][T20440] ? do_sys_openat2+0xc5/0x1e0 [ 1079.848344][T20440] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1079.848362][T20440] ? __pfx_path_openat+0x10/0x10 [ 1079.848390][T20440] do_file_open+0x20e/0x430 [ 1079.848412][T20440] ? __pfx_do_file_open+0x10/0x10 [ 1079.848448][T20440] ? alloc_fd+0x476/0x790 [ 1079.848471][T20440] ? do_getname+0x191/0x390 [ 1079.848487][T20440] do_sys_openat2+0x10d/0x1e0 [ 1079.848504][T20440] ? __pfx_do_sys_openat2+0x10/0x10 [ 1079.848519][T20440] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 1079.848543][T20440] ? __fget_files+0x21f/0x3d0 [ 1079.848566][T20440] __x64_sys_openat+0x12d/0x210 [ 1079.848583][T20440] ? __pfx___x64_sys_openat+0x10/0x10 [ 1079.848599][T20440] ? ksys_write+0x1ac/0x250 [ 1079.848621][T20440] ? rcu_is_watching+0x12/0xc0 [ 1079.848639][T20440] do_syscall_64+0x10b/0xf80 [ 1079.848658][T20440] ? clear_bhb_loop+0x40/0x90 [ 1079.848676][T20440] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1079.848691][T20440] RIP: 0033:0x7f894339c819 [ 1079.848704][T20440] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1079.848719][T20440] RSP: 002b:00007f8944246028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1079.848733][T20440] RAX: ffffffffffffffda RBX: 00007f8943615fa0 RCX: 00007f894339c819 [ 1079.848743][T20440] RDX: 0000000000000802 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 1079.848752][T20440] RBP: 00007f8944246090 R08: 0000000000000000 R09: 0000000000000000 [ 1079.848761][T20440] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1079.848769][T20440] R13: 00007f8943616038 R14: 00007f8943615fa0 R15: 00007ffe5a04f6f8 [ 1079.848788][T20440] [ 1079.849309][T20440] random: crng reseeded on system resumption [ 1081.277970][T20465] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2968'. [ 1081.633793][T20470] netlink: 'syz.3.2969': attribute type 2 has an invalid length. [ 1082.485476][T20476] random: crng reseeded on system resumption [ 1082.515774][T20476] FAULT_INJECTION: forcing a failure. [ 1082.515774][T20476] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1082.568039][T20476] CPU: 1 UID: 0 PID: 20476 Comm: syz.0.2970 Not tainted syzkaller #0 PREEMPT(full) [ 1082.568070][T20476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1082.568080][T20476] Call Trace: [ 1082.568085][T20476] [ 1082.568091][T20476] dump_stack_lvl+0x100/0x190 [ 1082.568122][T20476] should_fail_ex.cold+0x5/0xa [ 1082.568140][T20476] ? prepare_alloc_pages+0x16d/0x5f0 [ 1082.568157][T20476] should_fail_alloc_page+0xeb/0x140 [ 1082.568181][T20476] prepare_alloc_pages+0x1f0/0x5f0 [ 1082.568199][T20476] __alloc_frozen_pages_noprof+0x19a/0x2bd0 [ 1082.568226][T20476] ? stack_trace_save+0x8e/0xc0 [ 1082.568245][T20476] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1082.568264][T20476] ? stack_depot_save_flags+0x27/0x9d0 [ 1082.568287][T20476] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1082.568310][T20476] ? kasan_save_stack+0x3f/0x50 [ 1082.568330][T20476] ? kasan_save_stack+0x30/0x50 [ 1082.568348][T20476] ? kasan_save_track+0x14/0x30 [ 1082.568371][T20476] ? do_sys_openat2+0x10d/0x1e0 [ 1082.568387][T20476] ? __x64_sys_openat+0x12d/0x210 [ 1082.568402][T20476] ? do_syscall_64+0x10b/0xf80 [ 1082.568420][T20476] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1082.568437][T20476] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1082.568457][T20476] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1082.568477][T20476] ? policy_nodemask+0xed/0x4f0 [ 1082.568501][T20476] alloc_pages_mpol+0x1fb/0x550 [ 1082.568524][T20476] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1082.568551][T20476] alloc_pages_noprof+0x136/0x390 [ 1082.568574][T20476] get_zeroed_page_noprof+0x18/0xb0 [ 1082.568598][T20476] get_image_page+0x18/0x1a0 [ 1082.568614][T20476] memory_bm_create+0x432/0xba0 [ 1082.568648][T20476] create_basic_memory_bitmaps+0x10b/0x350 [ 1082.568669][T20476] snapshot_open+0x230/0x2a0 [ 1082.568690][T20476] ? __pfx_snapshot_open+0x10/0x10 [ 1082.568710][T20476] misc_open+0x26d/0x450 [ 1082.568731][T20476] ? __pfx_misc_open+0x10/0x10 [ 1082.568751][T20476] chrdev_open+0x234/0x6a0 [ 1082.568772][T20476] ? __pfx_apparmor_file_open+0x10/0x10 [ 1082.568790][T20476] ? __pfx_chrdev_open+0x10/0x10 [ 1082.568813][T20476] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 1082.568840][T20476] do_dentry_open+0x6d8/0x1660 [ 1082.568862][T20476] ? __pfx_chrdev_open+0x10/0x10 [ 1082.568892][T20476] vfs_open+0x82/0x3f0 [ 1082.568910][T20476] path_openat+0x208c/0x31a0 [ 1082.568939][T20476] ? __pfx_path_openat+0x10/0x10 [ 1082.568967][T20476] do_file_open+0x20e/0x430 [ 1082.568990][T20476] ? __pfx_do_file_open+0x10/0x10 [ 1082.569026][T20476] ? alloc_fd+0x476/0x790 [ 1082.569049][T20476] ? do_getname+0x191/0x390 [ 1082.569067][T20476] do_sys_openat2+0x10d/0x1e0 [ 1082.569091][T20476] ? __pfx_do_sys_openat2+0x10/0x10 [ 1082.569133][T20476] __x64_sys_openat+0x12d/0x210 [ 1082.569165][T20476] ? __pfx___x64_sys_openat+0x10/0x10 [ 1082.569195][T20476] ? rcu_is_watching+0x12/0xc0 [ 1082.569213][T20476] do_syscall_64+0x10b/0xf80 [ 1082.569233][T20476] ? clear_bhb_loop+0x40/0x90 [ 1082.569251][T20476] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1082.569267][T20476] RIP: 0033:0x7f8548b9c819 [ 1082.569281][T20476] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1082.569296][T20476] RSP: 002b:00007f85499e7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1082.569311][T20476] RAX: ffffffffffffffda RBX: 00007f8548e15fa0 RCX: 00007f8548b9c819 [ 1082.569321][T20476] RDX: 0000000000008001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 1082.569330][T20476] RBP: 00007f8548c32c91 R08: 0000000000000000 R09: 0000000000000000 [ 1082.569339][T20476] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1082.569348][T20476] R13: 00007f8548e16038 R14: 00007f8548e15fa0 R15: 00007fff97ee0758 [ 1082.569367][T20476] [ 1083.016535][T20485] random: crng reseeded on system resumption [ 1083.049059][T20484] FAULT_INJECTION: forcing a failure. [ 1083.049059][T20484] name failslab, interval 1, probability 0, space 0, times 0 [ 1083.117984][T20484] CPU: 0 UID: 0 PID: 20484 Comm: syz.0.2973 Not tainted syzkaller #0 PREEMPT(full) [ 1083.118008][T20484] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1083.118018][T20484] Call Trace: [ 1083.118023][T20484] [ 1083.118029][T20484] dump_stack_lvl+0x100/0x190 [ 1083.118059][T20484] should_fail_ex.cold+0x5/0xa [ 1083.118080][T20484] should_failslab+0xc2/0x120 [ 1083.118102][T20484] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1083.118122][T20484] ? seq_open+0x55/0x170 [ 1083.118138][T20484] ? find_held_lock+0x2b/0x80 [ 1083.118157][T20484] seq_open+0x55/0x170 [ 1083.118174][T20484] proc_id_map_open+0x316/0x7d0 [ 1083.118194][T20484] do_dentry_open+0x6d8/0x1660 [ 1083.118216][T20484] ? __pfx_proc_projid_map_open+0x10/0x10 [ 1083.118239][T20484] vfs_open+0x82/0x3f0 [ 1083.118257][T20484] path_openat+0x208c/0x31a0 [ 1083.118284][T20484] ? __pfx_path_openat+0x10/0x10 [ 1083.118313][T20484] do_file_open+0x20e/0x430 [ 1083.118336][T20484] ? __pfx_do_file_open+0x10/0x10 [ 1083.118364][T20484] ? __pfx_kfree_link+0x10/0x10 [ 1083.118387][T20484] ? alloc_fd+0x476/0x790 [ 1083.118410][T20484] ? do_getname+0x191/0x390 [ 1083.118427][T20484] do_sys_openat2+0x10d/0x1e0 [ 1083.118444][T20484] ? __pfx_do_sys_openat2+0x10/0x10 [ 1083.118462][T20484] ? __fget_files+0x21f/0x3d0 [ 1083.118486][T20484] __x64_sys_openat+0x12d/0x210 [ 1083.118503][T20484] ? __pfx___x64_sys_openat+0x10/0x10 [ 1083.118524][T20484] ? rcu_is_watching+0x12/0xc0 [ 1083.118541][T20484] do_syscall_64+0x10b/0xf80 [ 1083.118566][T20484] ? clear_bhb_loop+0x40/0x90 [ 1083.118586][T20484] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1083.118602][T20484] RIP: 0033:0x7f8548b9c819 [ 1083.118614][T20484] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1083.118629][T20484] RSP: 002b:00007f85499e7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1083.118644][T20484] RAX: ffffffffffffffda RBX: 00007f8548e15fa0 RCX: 00007f8548b9c819 [ 1083.118653][T20484] RDX: 0000000000181000 RSI: 0000200000000140 RDI: ffffffffffffff9c [ 1083.118663][T20484] RBP: 00007f8548c32c91 R08: 0000000000000000 R09: 0000000000000000 [ 1083.118671][T20484] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1083.118680][T20484] R13: 00007f8548e16038 R14: 00007f8548e15fa0 R15: 00007fff97ee0758 [ 1083.118699][T20484] [ 1083.756042][T20484] random: crng reseeded on system resumption [ 1083.787763][T20484] FAULT_INJECTION: forcing a failure. [ 1083.787763][T20484] name failslab, interval 1, probability 0, space 0, times 0 [ 1083.823255][T20484] CPU: 1 UID: 0 PID: 20484 Comm: syz.0.2973 Not tainted syzkaller #0 PREEMPT(full) [ 1083.823279][T20484] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1083.823288][T20484] Call Trace: [ 1083.823294][T20484] [ 1083.823300][T20484] dump_stack_lvl+0x100/0x190 [ 1083.823331][T20484] should_fail_ex.cold+0x5/0xa [ 1083.823352][T20484] should_failslab+0xc2/0x120 [ 1083.823375][T20484] __kmalloc_cache_noprof+0x7a/0x6f0 [ 1083.823392][T20484] ? create_basic_memory_bitmaps+0xeb/0x350 [ 1083.823414][T20484] create_basic_memory_bitmaps+0xeb/0x350 [ 1083.823434][T20484] snapshot_open+0x230/0x2a0 [ 1083.823453][T20484] ? __pfx_snapshot_open+0x10/0x10 [ 1083.823472][T20484] misc_open+0x26d/0x450 [ 1083.823502][T20484] ? __pfx_misc_open+0x10/0x10 [ 1083.823522][T20484] chrdev_open+0x234/0x6a0 [ 1083.823546][T20484] ? __pfx_apparmor_file_open+0x10/0x10 [ 1083.823564][T20484] ? __pfx_chrdev_open+0x10/0x10 [ 1083.823587][T20484] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 1083.823615][T20484] do_dentry_open+0x6d8/0x1660 [ 1083.823638][T20484] ? __pfx_chrdev_open+0x10/0x10 [ 1083.823667][T20484] vfs_open+0x82/0x3f0 [ 1083.823686][T20484] path_openat+0x208c/0x31a0 [ 1083.823715][T20484] ? __pfx_path_openat+0x10/0x10 [ 1083.823747][T20484] do_file_open+0x20e/0x430 [ 1083.823771][T20484] ? __pfx_do_file_open+0x10/0x10 [ 1083.823807][T20484] ? alloc_fd+0x476/0x790 [ 1083.823832][T20484] ? do_getname+0x191/0x390 [ 1083.823849][T20484] do_sys_openat2+0x10d/0x1e0 [ 1083.823866][T20484] ? __pfx_do_sys_openat2+0x10/0x10 [ 1083.823890][T20484] __x64_sys_openat+0x12d/0x210 [ 1083.823907][T20484] ? __pfx___x64_sys_openat+0x10/0x10 [ 1083.823930][T20484] ? rcu_is_watching+0x12/0xc0 [ 1083.823959][T20484] do_syscall_64+0x10b/0xf80 [ 1083.823995][T20484] ? clear_bhb_loop+0x40/0x90 [ 1083.824017][T20484] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1083.824033][T20484] RIP: 0033:0x7f8548b9c819 [ 1083.824048][T20484] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1083.824063][T20484] RSP: 002b:00007f85499e7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1083.824078][T20484] RAX: ffffffffffffffda RBX: 00007f8548e15fa0 RCX: 00007f8548b9c819 [ 1083.824088][T20484] RDX: 0000000000008001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 1083.824097][T20484] RBP: 00007f8548c32c91 R08: 0000000000000000 R09: 0000000000000000 [ 1083.824107][T20484] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1083.824122][T20484] R13: 00007f8548e16038 R14: 00007f8548e15fa0 R15: 00007fff97ee0758 [ 1083.824156][T20484] [ 1084.224445][T20493] Process accounting resumed [ 1085.417402][T20516] netlink: 'syz.0.2980': attribute type 2 has an invalid length. [ 1085.816314][T20518] random: crng reseeded on system resumption [ 1086.145667][T20525] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2982'. [ 1086.592223][T20528] netlink: 334 bytes leftover after parsing attributes in process `syz.3.2983'. [ 1087.269635][T20533] FAULT_INJECTION: forcing a failure. [ 1087.269635][T20533] name failslab, interval 1, probability 0, space 0, times 0 [ 1087.307968][T20533] CPU: 0 UID: 0 PID: 20533 Comm: syz.2.2984 Not tainted syzkaller #0 PREEMPT(full) [ 1087.308009][T20533] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1087.308027][T20533] Call Trace: [ 1087.308037][T20533] [ 1087.308047][T20533] dump_stack_lvl+0x100/0x190 [ 1087.308100][T20533] should_fail_ex.cold+0x5/0xa [ 1087.308138][T20533] should_failslab+0xc2/0x120 [ 1087.308191][T20533] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1087.308230][T20533] ? seq_open+0x55/0x170 [ 1087.308261][T20533] ? find_held_lock+0x2b/0x80 [ 1087.308299][T20533] seq_open+0x55/0x170 [ 1087.308333][T20533] proc_id_map_open+0x316/0x7d0 [ 1087.308371][T20533] do_dentry_open+0x6d8/0x1660 [ 1087.308412][T20533] ? __pfx_proc_projid_map_open+0x10/0x10 [ 1087.308459][T20533] vfs_open+0x82/0x3f0 [ 1087.308493][T20533] path_openat+0x208c/0x31a0 [ 1087.308547][T20533] ? __pfx_path_openat+0x10/0x10 [ 1087.308604][T20533] do_file_open+0x20e/0x430 [ 1087.308650][T20533] ? __pfx_do_file_open+0x10/0x10 [ 1087.308705][T20533] ? __pfx_kfree_link+0x10/0x10 [ 1087.308750][T20533] ? alloc_fd+0x476/0x790 [ 1087.308794][T20533] ? do_getname+0x191/0x390 [ 1087.308829][T20533] do_sys_openat2+0x10d/0x1e0 [ 1087.308861][T20533] ? __pfx_do_sys_openat2+0x10/0x10 [ 1087.308896][T20533] ? __fget_files+0x21f/0x3d0 [ 1087.308944][T20533] __x64_sys_openat+0x12d/0x210 [ 1087.308978][T20533] ? __pfx___x64_sys_openat+0x10/0x10 [ 1087.309017][T20533] ? rcu_is_watching+0x12/0xc0 [ 1087.309050][T20533] do_syscall_64+0x10b/0xf80 [ 1087.309087][T20533] ? clear_bhb_loop+0x40/0x90 [ 1087.309121][T20533] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1087.309150][T20533] RIP: 0033:0x7f894339c819 [ 1087.309184][T20533] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1087.309212][T20533] RSP: 002b:00007f8944246028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1087.309240][T20533] RAX: ffffffffffffffda RBX: 00007f8943615fa0 RCX: 00007f894339c819 [ 1087.309259][T20533] RDX: 0000000000181000 RSI: 0000200000000140 RDI: ffffffffffffff9c [ 1087.309277][T20533] RBP: 00007f8943432c91 R08: 0000000000000000 R09: 0000000000000000 [ 1087.309295][T20533] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1087.309311][T20533] R13: 00007f8943616038 R14: 00007f8943615fa0 R15: 00007ffe5a04f6f8 [ 1087.309349][T20533] [ 1087.714785][T20542] random: crng reseeded on system resumption [ 1087.779465][T20542] FAULT_INJECTION: forcing a failure. [ 1087.779465][T20542] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1087.810434][T20542] CPU: 0 UID: 0 PID: 20542 Comm: syz.1.2985 Not tainted syzkaller #0 PREEMPT(full) [ 1087.810475][T20542] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1087.810492][T20542] Call Trace: [ 1087.810501][T20542] [ 1087.810511][T20542] dump_stack_lvl+0x100/0x190 [ 1087.810565][T20542] should_fail_ex.cold+0x5/0xa [ 1087.810595][T20542] ? prepare_alloc_pages+0x16d/0x5f0 [ 1087.810628][T20542] should_fail_alloc_page+0xeb/0x140 [ 1087.810676][T20542] prepare_alloc_pages+0x1f0/0x5f0 [ 1087.810711][T20542] __alloc_frozen_pages_noprof+0x19a/0x2bd0 [ 1087.810765][T20542] ? stack_trace_save+0x8e/0xc0 [ 1087.810799][T20542] ? __pfx_stack_trace_save+0x10/0x10 [ 1087.810831][T20542] ? arch_stack_walk+0xa6/0xf0 [ 1087.810863][T20542] ? stack_depot_save_flags+0x27/0x9d0 [ 1087.810906][T20542] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1087.810950][T20542] ? kasan_save_stack+0x3f/0x50 [ 1087.810987][T20542] ? kasan_save_stack+0x30/0x50 [ 1087.811023][T20542] ? kasan_save_track+0x14/0x30 [ 1087.811060][T20542] ? __kasan_kmalloc+0xaa/0xb0 [ 1087.811096][T20542] ? memory_bm_create+0x14d/0xba0 [ 1087.811125][T20542] ? create_basic_memory_bitmaps+0x10b/0x350 [ 1087.811157][T20542] ? snapshot_open+0x230/0x2a0 [ 1087.811193][T20542] ? misc_open+0x26d/0x450 [ 1087.811234][T20542] ? do_sys_openat2+0x10d/0x1e0 [ 1087.811264][T20542] ? __x64_sys_openat+0x12d/0x210 [ 1087.811295][T20542] ? do_syscall_64+0x10b/0xf80 [ 1087.811330][T20542] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1087.811375][T20542] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1087.811411][T20542] ? policy_nodemask+0xed/0x4f0 [ 1087.811461][T20542] alloc_pages_mpol+0x1fb/0x550 [ 1087.811503][T20542] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1087.811550][T20542] alloc_pages_noprof+0x136/0x390 [ 1087.811575][T20542] get_zeroed_page_noprof+0x18/0xb0 [ 1087.811599][T20542] get_image_page+0x18/0x1a0 [ 1087.811615][T20542] memory_bm_create+0x9bd/0xba0 [ 1087.811640][T20542] create_basic_memory_bitmaps+0x10b/0x350 [ 1087.811660][T20542] snapshot_open+0x230/0x2a0 [ 1087.811678][T20542] ? __pfx_snapshot_open+0x10/0x10 [ 1087.811698][T20542] misc_open+0x26d/0x450 [ 1087.811718][T20542] ? __pfx_misc_open+0x10/0x10 [ 1087.811737][T20542] chrdev_open+0x234/0x6a0 [ 1087.811759][T20542] ? __pfx_apparmor_file_open+0x10/0x10 [ 1087.811777][T20542] ? __pfx_chrdev_open+0x10/0x10 [ 1087.811800][T20542] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 1087.811826][T20542] do_dentry_open+0x6d8/0x1660 [ 1087.811849][T20542] ? __pfx_chrdev_open+0x10/0x10 [ 1087.811875][T20542] vfs_open+0x82/0x3f0 [ 1087.811893][T20542] path_openat+0x208c/0x31a0 [ 1087.811921][T20542] ? __pfx_path_openat+0x10/0x10 [ 1087.811950][T20542] do_file_open+0x20e/0x430 [ 1087.811974][T20542] ? __pfx_do_file_open+0x10/0x10 [ 1087.812009][T20542] ? alloc_fd+0x476/0x790 [ 1087.812033][T20542] ? do_getname+0x191/0x390 [ 1087.812050][T20542] do_sys_openat2+0x10d/0x1e0 [ 1087.812067][T20542] ? __pfx_do_sys_openat2+0x10/0x10 [ 1087.812091][T20542] __x64_sys_openat+0x12d/0x210 [ 1087.812111][T20542] ? __pfx___x64_sys_openat+0x10/0x10 [ 1087.812132][T20542] ? rcu_is_watching+0x12/0xc0 [ 1087.812149][T20542] do_syscall_64+0x10b/0xf80 [ 1087.812168][T20542] ? clear_bhb_loop+0x40/0x90 [ 1087.812186][T20542] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1087.812201][T20542] RIP: 0033:0x7f1043d9c819 [ 1087.812214][T20542] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1087.812229][T20542] RSP: 002b:00007f1044b74028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1087.812244][T20542] RAX: ffffffffffffffda RBX: 00007f1044016090 RCX: 00007f1043d9c819 [ 1087.812254][T20542] RDX: 0000000000008001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 1087.812264][T20542] RBP: 00007f1043e32c91 R08: 0000000000000000 R09: 0000000000000000 [ 1087.812274][T20542] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1087.812283][T20542] R13: 00007f1044016128 R14: 00007f1044016090 R15: 00007fff5629b758 [ 1087.812304][T20542] [ 1088.653320][T20533] random: crng reseeded on system resumption [ 1088.677832][T20533] FAULT_INJECTION: forcing a failure. [ 1088.677832][T20533] name failslab, interval 1, probability 0, space 0, times 0 [ 1088.718978][T20533] CPU: 1 UID: 0 PID: 20533 Comm: syz.2.2984 Not tainted syzkaller #0 PREEMPT(full) [ 1088.719001][T20533] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1088.719011][T20533] Call Trace: [ 1088.719016][T20533] [ 1088.719022][T20533] dump_stack_lvl+0x100/0x190 [ 1088.719062][T20533] should_fail_ex.cold+0x5/0xa [ 1088.719083][T20533] should_failslab+0xc2/0x120 [ 1088.719113][T20533] __kmalloc_cache_noprof+0x7a/0x6f0 [ 1088.719130][T20533] ? create_basic_memory_bitmaps+0xeb/0x350 [ 1088.719154][T20533] create_basic_memory_bitmaps+0xeb/0x350 [ 1088.719176][T20533] snapshot_open+0x230/0x2a0 [ 1088.719194][T20533] ? __pfx_snapshot_open+0x10/0x10 [ 1088.719218][T20533] misc_open+0x26d/0x450 [ 1088.719239][T20533] ? __pfx_misc_open+0x10/0x10 [ 1088.719260][T20533] chrdev_open+0x234/0x6a0 [ 1088.719282][T20533] ? __pfx_apparmor_file_open+0x10/0x10 [ 1088.719300][T20533] ? __pfx_chrdev_open+0x10/0x10 [ 1088.719323][T20533] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 1088.719357][T20533] do_dentry_open+0x6d8/0x1660 [ 1088.719380][T20533] ? __pfx_chrdev_open+0x10/0x10 [ 1088.719408][T20533] vfs_open+0x82/0x3f0 [ 1088.719427][T20533] path_openat+0x208c/0x31a0 [ 1088.719456][T20533] ? __pfx_path_openat+0x10/0x10 [ 1088.719485][T20533] do_file_open+0x20e/0x430 [ 1088.719511][T20533] ? __pfx_do_file_open+0x10/0x10 [ 1088.719547][T20533] ? alloc_fd+0x476/0x790 [ 1088.719571][T20533] ? do_getname+0x191/0x390 [ 1088.719588][T20533] do_sys_openat2+0x10d/0x1e0 [ 1088.719605][T20533] ? __pfx_do_sys_openat2+0x10/0x10 [ 1088.719628][T20533] __x64_sys_openat+0x12d/0x210 [ 1088.719645][T20533] ? __pfx___x64_sys_openat+0x10/0x10 [ 1088.719666][T20533] ? rcu_is_watching+0x12/0xc0 [ 1088.719684][T20533] do_syscall_64+0x10b/0xf80 [ 1088.719703][T20533] ? clear_bhb_loop+0x40/0x90 [ 1088.719722][T20533] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1088.719737][T20533] RIP: 0033:0x7f894339c819 [ 1088.719751][T20533] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1088.719765][T20533] RSP: 002b:00007f8944246028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1088.719780][T20533] RAX: ffffffffffffffda RBX: 00007f8943615fa0 RCX: 00007f894339c819 [ 1088.719790][T20533] RDX: 0000000000008001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 1088.719800][T20533] RBP: 00007f8943432c91 R08: 0000000000000000 R09: 0000000000000000 [ 1088.719809][T20533] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1088.719822][T20533] R13: 00007f8943616038 R14: 00007f8943615fa0 R15: 00007ffe5a04f6f8 [ 1088.719855][T20533] [ 1090.313094][T20558] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2990'. [ 1091.251349][T20573] FAULT_INJECTION: forcing a failure. [ 1091.251349][T20573] name failslab, interval 1, probability 0, space 0, times 0 [ 1091.321916][T20573] CPU: 1 UID: 0 PID: 20573 Comm: syz.1.2994 Not tainted syzkaller #0 PREEMPT(full) [ 1091.321950][T20573] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1091.321964][T20573] Call Trace: [ 1091.321972][T20573] [ 1091.321980][T20573] dump_stack_lvl+0x100/0x190 [ 1091.322028][T20573] should_fail_ex.cold+0x5/0xa [ 1091.322068][T20573] should_failslab+0xc2/0x120 [ 1091.322107][T20573] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1091.322139][T20573] ? security_file_alloc+0x34/0x2c0 [ 1091.322171][T20573] ? trace_kmem_cache_alloc+0xd5/0x100 [ 1091.322212][T20573] security_file_alloc+0x34/0x2c0 [ 1091.322245][T20573] init_file+0x95/0x480 [ 1091.322270][T20573] alloc_empty_file+0x79/0x1c0 [ 1091.322298][T20573] path_openat+0xe8/0x31a0 [ 1091.322335][T20573] ? kasan_save_stack+0x3f/0x50 [ 1091.322366][T20573] ? kasan_save_stack+0x30/0x50 [ 1091.322395][T20573] ? kasan_save_track+0x14/0x30 [ 1091.322426][T20573] ? __kasan_slab_alloc+0x89/0x90 [ 1091.322458][T20573] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 1091.322488][T20573] ? do_getname+0x35/0x390 [ 1091.322513][T20573] ? do_sys_openat2+0xc5/0x1e0 [ 1091.322541][T20573] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1091.322572][T20573] ? __pfx_path_openat+0x10/0x10 [ 1091.322627][T20573] do_file_open+0x20e/0x430 [ 1091.322672][T20573] ? __pfx_do_file_open+0x10/0x10 [ 1091.322736][T20573] ? alloc_fd+0x476/0x790 [ 1091.322779][T20573] ? do_getname+0x191/0x390 [ 1091.322812][T20573] do_sys_openat2+0x10d/0x1e0 [ 1091.322844][T20573] ? __pfx_do_sys_openat2+0x10/0x10 [ 1091.322869][T20573] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 1091.322910][T20573] ? __fget_files+0x21f/0x3d0 [ 1091.322953][T20573] __x64_sys_openat+0x12d/0x210 [ 1091.322982][T20573] ? __pfx___x64_sys_openat+0x10/0x10 [ 1091.323009][T20573] ? ksys_write+0x1ac/0x250 [ 1091.323056][T20573] ? rcu_is_watching+0x12/0xc0 [ 1091.323085][T20573] do_syscall_64+0x10b/0xf80 [ 1091.323117][T20573] ? clear_bhb_loop+0x40/0x90 [ 1091.323146][T20573] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1091.323170][T20573] RIP: 0033:0x7f1043d9c819 [ 1091.323191][T20573] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1091.323216][T20573] RSP: 002b:00007f1044b74028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1091.323239][T20573] RAX: ffffffffffffffda RBX: 00007f1044016090 RCX: 00007f1043d9c819 [ 1091.323255][T20573] RDX: 000000000004c000 RSI: 0000200000000180 RDI: ffffffffffffff9c [ 1091.323272][T20573] RBP: 00007f1044b74090 R08: 0000000000000000 R09: 0000000000000000 [ 1091.323287][T20573] R10: 000000000000ebff R11: 0000000000000246 R12: 0000000000000001 [ 1091.323301][T20573] R13: 00007f1044016128 R14: 00007f1044016090 R15: 00007fff5629b758 [ 1091.323333][T20573] [ 1093.281872][T20587] FAULT_INJECTION: forcing a failure. [ 1093.281872][T20587] name fail_futex, interval 1, probability 0, space 0, times 1 [ 1093.313868][T20587] CPU: 0 UID: 0 PID: 20587 Comm: syz.2.2996 Not tainted syzkaller #0 PREEMPT(full) [ 1093.313891][T20587] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1093.313901][T20587] Call Trace: [ 1093.313906][T20587] [ 1093.313912][T20587] dump_stack_lvl+0x100/0x190 [ 1093.313941][T20587] should_fail_ex.cold+0x5/0xa [ 1093.313959][T20587] ? rcu_is_watching+0x12/0xc0 [ 1093.313976][T20587] get_futex_key+0x1d2/0x1600 [ 1093.314001][T20587] ? __pfx_get_futex_key+0x10/0x10 [ 1093.314029][T20587] futex_wait_setup+0x83/0x510 [ 1093.314051][T20587] __futex_wait+0x19f/0x300 [ 1093.314069][T20587] ? __pfx___futex_wait+0x10/0x10 [ 1093.314089][T20587] ? __pfx_futex_wake_mark+0x10/0x10 [ 1093.314108][T20587] ? find_held_lock+0x2b/0x80 [ 1093.314123][T20587] ? futex_wake+0x456/0x530 [ 1093.314143][T20587] futex_wait+0xe6/0x370 [ 1093.314159][T20587] ? __pfx_futex_wait+0x10/0x10 [ 1093.314186][T20587] do_futex+0x1ef/0x350 [ 1093.314208][T20587] ? __pfx_do_futex+0x10/0x10 [ 1093.314230][T20587] ? __pfx___might_resched+0x10/0x10 [ 1093.314245][T20587] ? blkcg_maybe_throttle_current+0x5e7/0xeb0 [ 1093.314270][T20587] __x64_sys_futex+0x34f/0x4d0 [ 1093.314295][T20587] ? __pfx___x64_sys_futex+0x10/0x10 [ 1093.314321][T20587] ? rcu_is_watching+0x12/0xc0 [ 1093.314338][T20587] do_syscall_64+0x10b/0xf80 [ 1093.314357][T20587] ? clear_bhb_loop+0x40/0x90 [ 1093.314376][T20587] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1093.314392][T20587] RIP: 0033:0x7f894339c819 [ 1093.314407][T20587] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1093.314433][T20587] RSP: 002b:00007f89441e30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1093.314459][T20587] RAX: ffffffffffffffda RBX: 00007f8943616278 RCX: 00007f894339c819 [ 1093.314472][T20587] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f8943616278 [ 1093.314480][T20587] RBP: 00007f8943616270 R08: 0000000000000000 R09: 0000000000000000 [ 1093.314489][T20587] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1093.314498][T20587] R13: 00007f8943616308 R14: 00007ffe5a04f610 R15: 00007ffe5a04f6f8 [ 1093.314517][T20587] [ 1094.055851][T20600] FAULT_INJECTION: forcing a failure. [ 1094.055851][T20600] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1094.108189][T20600] CPU: 1 UID: 0 PID: 20600 Comm: syz.3.2999 Not tainted syzkaller #0 PREEMPT(full) [ 1094.108227][T20600] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1094.108241][T20600] Call Trace: [ 1094.108249][T20600] [ 1094.108259][T20600] dump_stack_lvl+0x100/0x190 [ 1094.108306][T20600] should_fail_ex.cold+0x5/0xa [ 1094.108338][T20600] get_futex_key+0x1d2/0x1600 [ 1094.108376][T20600] ? __pfx_get_futex_key+0x10/0x10 [ 1094.108423][T20600] futex_wake+0xea/0x530 [ 1094.108449][T20600] ? rcu_is_watching+0x12/0xc0 [ 1094.108479][T20600] ? __pfx_futex_wake+0x10/0x10 [ 1094.108524][T20600] ? putname+0xb1/0x110 [ 1094.108548][T20600] ? kmem_cache_free+0x124/0x690 [ 1094.108586][T20600] do_futex+0x32b/0x350 [ 1094.108628][T20600] ? __pfx_do_futex+0x10/0x10 [ 1094.108667][T20600] ? __pfx_do_sys_openat2+0x10/0x10 [ 1094.108701][T20600] ? __fget_files+0x21f/0x3d0 [ 1094.108745][T20600] __x64_sys_futex+0x34f/0x4d0 [ 1094.108790][T20600] ? __x64_sys_openat+0x12d/0x210 [ 1094.108821][T20600] ? __pfx___x64_sys_futex+0x10/0x10 [ 1094.108868][T20600] ? rcu_is_watching+0x12/0xc0 [ 1094.108900][T20600] do_syscall_64+0x10b/0xf80 [ 1094.108936][T20600] ? clear_bhb_loop+0x40/0x90 [ 1094.108971][T20600] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1094.108998][T20600] RIP: 0033:0x7f468cf9c819 [ 1094.109022][T20600] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1094.109050][T20600] RSP: 002b:00007f468ddc00e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1094.109079][T20600] RAX: ffffffffffffffda RBX: 00007f468d215fa8 RCX: 00007f468cf9c819 [ 1094.109099][T20600] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f468d215fac [ 1094.109116][T20600] RBP: 00007f468d215fa0 R08: 0000000000000001 R09: 0000000000000000 [ 1094.109134][T20600] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000000 [ 1094.109151][T20600] R13: 00007f468d216038 R14: 00007fff2b6562c0 R15: 00007fff2b6563a8 [ 1094.109190][T20600] [ 1094.749478][T20600] random: crng reseeded on system resumption [ 1094.777387][T20600] FAULT_INJECTION: forcing a failure. [ 1094.777387][T20600] name failslab, interval 1, probability 0, space 0, times 0 [ 1094.792411][T20600] CPU: 1 UID: 0 PID: 20600 Comm: syz.3.2999 Not tainted syzkaller #0 PREEMPT(full) [ 1094.792448][T20600] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1094.792470][T20600] Call Trace: [ 1094.792479][T20600] [ 1094.792489][T20600] dump_stack_lvl+0x100/0x190 [ 1094.792539][T20600] should_fail_ex.cold+0x5/0xa [ 1094.792574][T20600] should_failslab+0xc2/0x120 [ 1094.792618][T20600] __kmalloc_cache_noprof+0x7a/0x6f0 [ 1094.792648][T20600] ? create_basic_memory_bitmaps+0xeb/0x350 [ 1094.792684][T20600] create_basic_memory_bitmaps+0xeb/0x350 [ 1094.792722][T20600] snapshot_open+0x230/0x2a0 [ 1094.792761][T20600] ? __pfx_snapshot_open+0x10/0x10 [ 1094.792795][T20600] misc_open+0x26d/0x450 [ 1094.792836][T20600] ? __pfx_misc_open+0x10/0x10 [ 1094.792872][T20600] chrdev_open+0x234/0x6a0 [ 1094.792911][T20600] ? __pfx_apparmor_file_open+0x10/0x10 [ 1094.792943][T20600] ? __pfx_chrdev_open+0x10/0x10 [ 1094.792990][T20600] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 1094.793043][T20600] do_dentry_open+0x6d8/0x1660 [ 1094.793082][T20600] ? __pfx_chrdev_open+0x10/0x10 [ 1094.793130][T20600] vfs_open+0x82/0x3f0 [ 1094.793164][T20600] path_openat+0x208c/0x31a0 [ 1094.793212][T20600] ? __pfx_path_openat+0x10/0x10 [ 1094.793260][T20600] do_file_open+0x20e/0x430 [ 1094.793301][T20600] ? __pfx_do_file_open+0x10/0x10 [ 1094.793362][T20600] ? alloc_fd+0x476/0x790 [ 1094.793406][T20600] ? do_getname+0x191/0x390 [ 1094.793438][T20600] do_sys_openat2+0x10d/0x1e0 [ 1094.793492][T20600] ? __pfx_do_sys_openat2+0x10/0x10 [ 1094.793540][T20600] __x64_sys_openat+0x12d/0x210 [ 1094.793572][T20600] ? __pfx___x64_sys_openat+0x10/0x10 [ 1094.793611][T20600] ? rcu_is_watching+0x12/0xc0 [ 1094.793643][T20600] do_syscall_64+0x10b/0xf80 [ 1094.793678][T20600] ? clear_bhb_loop+0x40/0x90 [ 1094.793711][T20600] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1094.793740][T20600] RIP: 0033:0x7f468cf9c819 [ 1094.793764][T20600] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1094.793793][T20600] RSP: 002b:00007f468ddc0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1094.793817][T20600] RAX: ffffffffffffffda RBX: 00007f468d215fa0 RCX: 00007f468cf9c819 [ 1094.793835][T20600] RDX: 0000000000008001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 1094.793852][T20600] RBP: 00007f468d032c91 R08: 0000000000000000 R09: 0000000000000000 [ 1094.793868][T20600] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1094.793883][T20600] R13: 00007f468d216038 R14: 00007f468d215fa0 R15: 00007fff2b6563a8 [ 1094.793917][T20600] [ 1099.825401][T20672] FAULT_INJECTION: forcing a failure. [ 1099.825401][T20672] name failslab, interval 1, probability 0, space 0, times 0 [ 1099.838473][T20672] CPU: 1 UID: 0 PID: 20672 Comm: syz.1.3012 Not tainted syzkaller #0 PREEMPT(full) [ 1099.838508][T20672] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1099.838523][T20672] Call Trace: [ 1099.838531][T20672] [ 1099.838540][T20672] dump_stack_lvl+0x100/0x190 [ 1099.838597][T20672] should_fail_ex.cold+0x5/0xa [ 1099.838631][T20672] should_failslab+0xc2/0x120 [ 1099.838674][T20672] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1099.838709][T20672] ? seq_open+0x55/0x170 [ 1099.838739][T20672] ? find_held_lock+0x2b/0x80 [ 1099.838774][T20672] seq_open+0x55/0x170 [ 1099.838804][T20672] proc_id_map_open+0x316/0x7d0 [ 1099.838840][T20672] do_dentry_open+0x6d8/0x1660 [ 1099.838880][T20672] ? __pfx_proc_projid_map_open+0x10/0x10 [ 1099.838922][T20672] vfs_open+0x82/0x3f0 [ 1099.838953][T20672] path_openat+0x208c/0x31a0 [ 1099.839005][T20672] ? __pfx_path_openat+0x10/0x10 [ 1099.839058][T20672] do_file_open+0x20e/0x430 [ 1099.839101][T20672] ? __pfx_do_file_open+0x10/0x10 [ 1099.839153][T20672] ? __pfx_kfree_link+0x10/0x10 [ 1099.839203][T20672] ? alloc_fd+0x476/0x790 [ 1099.839246][T20672] ? do_getname+0x191/0x390 [ 1099.839278][T20672] do_sys_openat2+0x10d/0x1e0 [ 1099.839309][T20672] ? __pfx_do_sys_openat2+0x10/0x10 [ 1099.839342][T20672] ? __fget_files+0x21f/0x3d0 [ 1099.839388][T20672] __x64_sys_openat+0x12d/0x210 [ 1099.839420][T20672] ? __pfx___x64_sys_openat+0x10/0x10 [ 1099.839461][T20672] ? rcu_is_watching+0x12/0xc0 [ 1099.839493][T20672] do_syscall_64+0x10b/0xf80 [ 1099.839528][T20672] ? clear_bhb_loop+0x40/0x90 [ 1099.839560][T20672] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1099.839587][T20672] RIP: 0033:0x7f1043d9c819 [ 1099.839609][T20672] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1099.839634][T20672] RSP: 002b:00007f1044b95028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1099.839660][T20672] RAX: ffffffffffffffda RBX: 00007f1044015fa0 RCX: 00007f1043d9c819 [ 1099.839677][T20672] RDX: 0000000000181000 RSI: 0000200000000140 RDI: ffffffffffffff9c [ 1099.839695][T20672] RBP: 00007f1043e32c91 R08: 0000000000000000 R09: 0000000000000000 [ 1099.839711][T20672] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1099.839726][T20672] R13: 00007f1044016038 R14: 00007f1044015fa0 R15: 00007fff5629b758 [ 1099.839760][T20672] [ 1100.638049][T20672] random: crng reseeded on system resumption [ 1100.681880][T20672] FAULT_INJECTION: forcing a failure. [ 1100.681880][T20672] name failslab, interval 1, probability 0, space 0, times 0 [ 1100.711165][T20672] CPU: 0 UID: 0 PID: 20672 Comm: syz.1.3012 Not tainted syzkaller #0 PREEMPT(full) [ 1100.711201][T20672] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1100.711218][T20672] Call Trace: [ 1100.711227][T20672] [ 1100.711237][T20672] dump_stack_lvl+0x100/0x190 [ 1100.711297][T20672] should_fail_ex.cold+0x5/0xa [ 1100.711337][T20672] should_failslab+0xc2/0x120 [ 1100.711383][T20672] __kmalloc_cache_noprof+0x7a/0x6f0 [ 1100.711416][T20672] ? create_basic_memory_bitmaps+0xeb/0x350 [ 1100.711459][T20672] create_basic_memory_bitmaps+0xeb/0x350 [ 1100.711499][T20672] snapshot_open+0x230/0x2a0 [ 1100.711537][T20672] ? __pfx_snapshot_open+0x10/0x10 [ 1100.711576][T20672] misc_open+0x26d/0x450 [ 1100.711618][T20672] ? __pfx_misc_open+0x10/0x10 [ 1100.711657][T20672] chrdev_open+0x234/0x6a0 [ 1100.711702][T20672] ? __pfx_apparmor_file_open+0x10/0x10 [ 1100.711737][T20672] ? __pfx_chrdev_open+0x10/0x10 [ 1100.711783][T20672] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 1100.711839][T20672] do_dentry_open+0x6d8/0x1660 [ 1100.711879][T20672] ? __pfx_chrdev_open+0x10/0x10 [ 1100.711932][T20672] vfs_open+0x82/0x3f0 [ 1100.711969][T20672] path_openat+0x208c/0x31a0 [ 1100.712026][T20672] ? __pfx_path_openat+0x10/0x10 [ 1100.712085][T20672] do_file_open+0x20e/0x430 [ 1100.712140][T20672] ? __pfx_do_file_open+0x10/0x10 [ 1100.712215][T20672] ? alloc_fd+0x476/0x790 [ 1100.712264][T20672] ? do_getname+0x191/0x390 [ 1100.712300][T20672] do_sys_openat2+0x10d/0x1e0 [ 1100.712333][T20672] ? __pfx_do_sys_openat2+0x10/0x10 [ 1100.712378][T20672] __x64_sys_openat+0x12d/0x210 [ 1100.712408][T20672] ? __pfx___x64_sys_openat+0x10/0x10 [ 1100.712443][T20672] ? rcu_is_watching+0x12/0xc0 [ 1100.712473][T20672] do_syscall_64+0x10b/0xf80 [ 1100.712509][T20672] ? clear_bhb_loop+0x40/0x90 [ 1100.712542][T20672] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1100.712569][T20672] RIP: 0033:0x7f1043d9c819 [ 1100.712594][T20672] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1100.712619][T20672] RSP: 002b:00007f1044b95028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1100.712634][T20672] RAX: ffffffffffffffda RBX: 00007f1044015fa0 RCX: 00007f1043d9c819 [ 1100.712645][T20672] RDX: 0000000000008001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 1100.712655][T20672] RBP: 00007f1043e32c91 R08: 0000000000000000 R09: 0000000000000000 [ 1100.712665][T20672] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1100.712674][T20672] R13: 00007f1044016038 R14: 00007f1044015fa0 R15: 00007fff5629b758 [ 1100.712696][T20672] [ 1102.303771][T20700] random: crng reseeded on system resumption [ 1103.101127][T20710] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3021'. [ 1103.327064][T20707] random: crng reseeded on system resumption [ 1103.512802][T20717] FAULT_INJECTION: forcing a failure. [ 1103.512802][T20717] name failslab, interval 1, probability 0, space 0, times 0 [ 1103.550729][T20717] CPU: 1 UID: 0 PID: 20717 Comm: syz.3.3022 Not tainted syzkaller #0 PREEMPT(full) [ 1103.550766][T20717] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1103.550782][T20717] Call Trace: [ 1103.550791][T20717] [ 1103.550801][T20717] dump_stack_lvl+0x100/0x190 [ 1103.550851][T20717] should_fail_ex.cold+0x5/0xa [ 1103.550893][T20717] ? constrain_params_by_rules+0x175/0xcc0 [ 1103.550928][T20717] should_failslab+0xc2/0x120 [ 1103.550969][T20717] __kmalloc_noprof+0xe0/0x850 [ 1103.551004][T20717] ? unwind_get_return_address+0x59/0xa0 [ 1103.551042][T20717] constrain_params_by_rules+0x175/0xcc0 [ 1103.551083][T20717] ? stack_trace_save+0x8e/0xc0 [ 1103.551119][T20717] ? __pfx_constrain_params_by_rules+0x10/0x10 [ 1103.551161][T20717] ? __kasan_kmalloc+0xaa/0xb0 [ 1103.551196][T20717] ? snd_pcm_oss_change_params_locked+0x247/0x39f0 [ 1103.551226][T20717] ? snd_pcm_oss_make_ready_locked+0xb7/0x130 [ 1103.551256][T20717] ? snd_pcm_oss_sync+0x265/0x840 [ 1103.551291][T20717] ? rcu_is_watching+0x12/0xc0 [ 1103.551317][T20717] ? snd_interval_refine+0x2d0/0x580 [ 1103.551359][T20717] snd_pcm_hw_refine+0x7e7/0xad0 [ 1103.551396][T20717] ? __pfx_snd_pcm_hw_refine+0x10/0x10 [ 1103.551440][T20717] ? __asan_memset+0x23/0x50 [ 1103.551470][T20717] ? _snd_pcm_hw_param_min+0x1ea/0x670 [ 1103.551503][T20717] snd_pcm_oss_change_params_locked+0x2594/0x39f0 [ 1103.551546][T20717] ? snd_pcm_oss_sync+0x243/0x840 [ 1103.551574][T20717] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 1103.551603][T20717] ? task_work_add+0x201/0x3b0 [ 1103.551646][T20717] ? __pfx___mutex_lock+0x10/0x10 [ 1103.551701][T20717] snd_pcm_oss_make_ready_locked+0xb7/0x130 [ 1103.551735][T20717] snd_pcm_oss_sync+0x265/0x840 [ 1103.551768][T20717] snd_pcm_oss_release+0x238/0x300 [ 1103.551795][T20717] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 1103.551825][T20717] __fput+0x3ff/0xb50 [ 1103.551859][T20717] task_work_run+0x150/0x240 [ 1103.551884][T20717] ? __pfx_task_work_run+0x10/0x10 [ 1103.551932][T20717] ? rcu_is_watching+0x12/0xc0 [ 1103.551961][T20717] exit_to_user_mode_loop+0x100/0x4a0 [ 1103.551997][T20717] ? do_syscall_64+0x519/0xf80 [ 1103.552030][T20717] do_syscall_64+0x6f2/0xf80 [ 1103.552060][T20717] ? clear_bhb_loop+0x40/0x90 [ 1103.552090][T20717] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1103.552117][T20717] RIP: 0033:0x7f468cf9c819 [ 1103.552139][T20717] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1103.552163][T20717] RSP: 002b:00007f468ddc0028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 1103.552187][T20717] RAX: 0000000000000000 RBX: 00007f468d215fa0 RCX: 00007f468cf9c819 [ 1103.552204][T20717] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000002 [ 1103.552218][T20717] RBP: 00007f468ddc0090 R08: 0000000000000000 R09: 0000000000000000 [ 1103.552232][T20717] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1103.552247][T20717] R13: 00007f468d216038 R14: 00007f468d215fa0 R15: 00007fff2b6563a8 [ 1103.552279][T20717] [ 1106.874218][T20753] random: crng reseeded on system resumption [ 1107.221122][T20765] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3032'. [ 1108.122579][T20787] FAULT_INJECTION: forcing a failure. [ 1108.122579][T20787] name failslab, interval 1, probability 0, space 0, times 0 [ 1108.169938][T20787] CPU: 0 UID: 0 PID: 20787 Comm: syz.2.3038 Not tainted syzkaller #0 PREEMPT(full) [ 1108.169975][T20787] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1108.169992][T20787] Call Trace: [ 1108.170001][T20787] [ 1108.170011][T20787] dump_stack_lvl+0x100/0x190 [ 1108.170063][T20787] should_fail_ex.cold+0x5/0xa [ 1108.170099][T20787] should_failslab+0xc2/0x120 [ 1108.170141][T20787] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1108.170177][T20787] ? security_file_alloc+0x34/0x2c0 [ 1108.170215][T20787] ? trace_kmem_cache_alloc+0xd5/0x100 [ 1108.170262][T20787] security_file_alloc+0x34/0x2c0 [ 1108.170300][T20787] init_file+0x95/0x480 [ 1108.170329][T20787] alloc_empty_file+0x79/0x1c0 [ 1108.170360][T20787] path_openat+0xe8/0x31a0 [ 1108.170405][T20787] ? stack_trace_save+0x8e/0xc0 [ 1108.170437][T20787] ? __pfx_stack_trace_save+0x10/0x10 [ 1108.170477][T20787] ? stack_depot_save_flags+0x27/0x9d0 [ 1108.170519][T20787] ? __pfx_path_openat+0x10/0x10 [ 1108.170563][T20787] ? kasan_save_stack+0x3f/0x50 [ 1108.170599][T20787] ? kasan_save_stack+0x30/0x50 [ 1108.170632][T20787] ? kasan_save_track+0x14/0x30 [ 1108.170668][T20787] ? __kasan_slab_alloc+0x89/0x90 [ 1108.170702][T20787] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 1108.170740][T20787] ? do_getname+0x35/0x390 [ 1108.170772][T20787] do_file_open+0x20e/0x430 [ 1108.170816][T20787] ? __pfx_do_file_open+0x10/0x10 [ 1108.170886][T20787] ? find_held_lock+0x2b/0x80 [ 1108.170917][T20787] ? __might_fault+0xc5/0x140 [ 1108.170949][T20787] ? __might_fault+0xc5/0x140 [ 1108.170988][T20787] file_open_name+0x198/0x3b0 [ 1108.171019][T20787] ? __pfx_file_open_name+0x10/0x10 [ 1108.171058][T20787] ? do_getname+0x191/0x390 [ 1108.171091][T20787] acct_on+0xa4/0x9e0 [ 1108.171122][T20787] ? __pfx_acct_on+0x10/0x10 [ 1108.171152][T20787] ? bpf_lsm_capable+0x9/0x10 [ 1108.171192][T20787] ? security_capable+0x80/0x260 [ 1108.171225][T20787] __x64_sys_acct+0x81/0x1e0 [ 1108.171253][T20787] ? lockdep_hardirqs_on+0x78/0x100 [ 1108.171289][T20787] do_syscall_64+0x10b/0xf80 [ 1108.171323][T20787] ? clear_bhb_loop+0x40/0x90 [ 1108.171357][T20787] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1108.171385][T20787] RIP: 0033:0x7f894339c819 [ 1108.171408][T20787] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1108.171435][T20787] RSP: 002b:00007f8944246028 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3 [ 1108.171461][T20787] RAX: ffffffffffffffda RBX: 00007f8943615fa0 RCX: 00007f894339c819 [ 1108.171486][T20787] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000280 [ 1108.171503][T20787] RBP: 00007f8944246090 R08: 0000000000000000 R09: 0000000000000000 [ 1108.171520][T20787] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1108.171536][T20787] R13: 00007f8943616038 R14: 00007f8943615fa0 R15: 00007ffe5a04f6f8 [ 1108.171573][T20787] [ 1108.729795][T20771] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3033'. [ 1109.614468][T20793] syz.2.3039 (20793) used greatest stack depth: 18784 bytes left [ 1109.859197][T20815] random: crng reseeded on system resumption [ 1110.362611][T20829] random: crng reseeded on system resumption [ 1110.665371][T20833] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3044'. [ 1112.297830][T20867] FAULT_INJECTION: forcing a failure. [ 1112.297830][T20867] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1112.326302][T20867] CPU: 0 UID: 0 PID: 20867 Comm: syz.3.3048 Not tainted syzkaller #0 PREEMPT(full) [ 1112.326343][T20867] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1112.326360][T20867] Call Trace: [ 1112.326369][T20867] [ 1112.326379][T20867] dump_stack_lvl+0x100/0x190 [ 1112.326429][T20867] should_fail_ex.cold+0x5/0xa [ 1112.326463][T20867] get_futex_key+0x1d2/0x1600 [ 1112.326507][T20867] ? __pfx_get_futex_key+0x10/0x10 [ 1112.326551][T20867] ? __fput+0x68d/0xb50 [ 1112.326581][T20867] futex_wait_setup+0x83/0x510 [ 1112.326621][T20867] __futex_wait+0x19f/0x300 [ 1112.326656][T20867] ? __pfx___futex_wait+0x10/0x10 [ 1112.326693][T20867] ? __pfx_futex_wake_mark+0x10/0x10 [ 1112.326729][T20867] ? futex_hash+0x2ad/0x370 [ 1112.326767][T20867] ? futex_hash+0x141/0x370 [ 1112.326819][T20867] futex_wait+0xe6/0x370 [ 1112.326852][T20867] ? __pfx_futex_wait+0x10/0x10 [ 1112.326906][T20867] do_futex+0x1ef/0x350 [ 1112.326952][T20867] ? __pfx_do_futex+0x10/0x10 [ 1112.326996][T20867] ? __pfx___might_resched+0x10/0x10 [ 1112.327023][T20867] ? blkcg_maybe_throttle_current+0x5e7/0xeb0 [ 1112.327073][T20867] __x64_sys_futex+0x34f/0x4d0 [ 1112.327121][T20867] ? __pfx_task_work_run+0x10/0x10 [ 1112.327168][T20867] ? __pfx___x64_sys_futex+0x10/0x10 [ 1112.327216][T20867] ? exit_to_user_mode_loop+0xdd/0x4a0 [ 1112.327258][T20867] ? rcu_is_watching+0x12/0xc0 [ 1112.327290][T20867] ? rcu_is_watching+0x12/0xc0 [ 1112.327324][T20867] do_syscall_64+0x10b/0xf80 [ 1112.327360][T20867] ? clear_bhb_loop+0x40/0x90 [ 1112.327396][T20867] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1112.327423][T20867] RIP: 0033:0x7f468cf9c819 [ 1112.327448][T20867] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1112.327475][T20867] RSP: 002b:00007f468adf40e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1112.327502][T20867] RAX: ffffffffffffffda RBX: 00007f468d216278 RCX: 00007f468cf9c819 [ 1112.327518][T20867] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f468d216278 [ 1112.327533][T20867] RBP: 00007f468d216270 R08: 0000000000000000 R09: 0000000000000000 [ 1112.327547][T20867] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1112.327560][T20867] R13: 00007f468d216308 R14: 00007fff2b6562c0 R15: 00007fff2b6563a8 [ 1112.327588][T20867] [ 1113.988336][T20900] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3055'. [ 1114.018064][T20891] random: crng reseeded on system resumption [ 1114.372982][T20900] Process accounting paused [ 1114.459898][T20907] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3064'. [ 1115.925781][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 1115.934043][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 1116.774737][T20925] FAULT_INJECTION: forcing a failure. [ 1116.774737][T20925] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1116.792694][T20925] CPU: 0 UID: 0 PID: 20925 Comm: syz.2.3060 Not tainted syzkaller #0 PREEMPT(full) [ 1116.792730][T20925] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1116.792746][T20925] Call Trace: [ 1116.792754][T20925] [ 1116.792762][T20925] dump_stack_lvl+0x100/0x190 [ 1116.792806][T20925] should_fail_ex.cold+0x5/0xa [ 1116.792839][T20925] get_futex_key+0x295/0x1600 [ 1116.792879][T20925] ? __pfx_get_futex_key+0x10/0x10 [ 1116.792914][T20925] ? lock_acquire+0x1b1/0x370 [ 1116.792962][T20925] futex_wake+0xea/0x530 [ 1116.792996][T20925] ? __pfx_futex_wake+0x10/0x10 [ 1116.793025][T20925] ? exit_mm_release+0x19/0x30 [ 1116.793074][T20925] do_futex+0x32b/0x350 [ 1116.793118][T20925] ? __pfx_do_futex+0x10/0x10 [ 1116.793157][T20925] ? __might_fault+0xc5/0x140 [ 1116.793201][T20925] mm_release+0x24a/0x2f0 [ 1116.793233][T20925] do_exit+0x704/0x2b50 [ 1116.793277][T20925] ? __pfx_do_exit+0x10/0x10 [ 1116.793316][T20925] ? do_raw_spin_lock+0x128/0x260 [ 1116.793342][T20925] ? find_held_lock+0x2b/0x80 [ 1116.793370][T20925] ? get_signal+0x7e0/0x21e0 [ 1116.793403][T20925] do_group_exit+0xd5/0x2a0 [ 1116.793452][T20925] get_signal+0x1ec7/0x21e0 [ 1116.793473][T20925] ? ksys_write+0x190/0x250 [ 1116.793496][T20925] ? __pfx_get_signal+0x10/0x10 [ 1116.793518][T20925] ? do_futex+0x192/0x350 [ 1116.793542][T20925] arch_do_signal_or_restart+0x91/0x770 [ 1116.793565][T20925] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 1116.793591][T20925] ? __pfx___x64_sys_futex+0x10/0x10 [ 1116.793614][T20925] ? rcu_is_watching+0x12/0xc0 [ 1116.793631][T20925] exit_to_user_mode_loop+0x86/0x4a0 [ 1116.793652][T20925] ? do_syscall_64+0x519/0xf80 [ 1116.793676][T20925] do_syscall_64+0x6f2/0xf80 [ 1116.793694][T20925] ? clear_bhb_loop+0x40/0x90 [ 1116.793712][T20925] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1116.793727][T20925] RIP: 0033:0x7f894339c819 [ 1116.793741][T20925] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1116.793755][T20925] RSP: 002b:00007f89442460e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1116.793770][T20925] RAX: fffffffffffffe00 RBX: 00007f8943615fa8 RCX: 00007f894339c819 [ 1116.793780][T20925] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f8943615fa8 [ 1116.793788][T20925] RBP: 00007f8943615fa0 R08: 0000000000000000 R09: 0000000000000000 [ 1116.793797][T20925] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1116.793805][T20925] R13: 00007f8943616038 R14: 00007ffe5a04f610 R15: 00007ffe5a04f6f8 [ 1116.793824][T20925] [ 1117.147095][T20943] FAULT_INJECTION: forcing a failure. [ 1117.147095][T20943] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1117.162304][T20943] CPU: 0 UID: 0 PID: 20943 Comm: syz.1.3062 Not tainted syzkaller #0 PREEMPT(full) [ 1117.162339][T20943] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1117.162355][T20943] Call Trace: [ 1117.162364][T20943] [ 1117.162373][T20943] dump_stack_lvl+0x100/0x190 [ 1117.162424][T20943] should_fail_ex.cold+0x5/0xa [ 1117.162458][T20943] _copy_to_user+0x32/0xd0 [ 1117.162497][T20943] simple_read_from_buffer+0xcb/0x170 [ 1117.162535][T20943] proc_fail_nth_read+0x1af/0x230 [ 1117.162568][T20943] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1117.162601][T20943] ? rw_verify_area+0xce/0x6d0 [ 1117.162635][T20943] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1117.162665][T20943] vfs_read+0x1e4/0xb30 [ 1117.162704][T20943] ? __pfx_vfs_read+0x10/0x10 [ 1117.162738][T20943] ? __fget_files+0x215/0x3d0 [ 1117.162781][T20943] ? __fget_files+0x21f/0x3d0 [ 1117.162826][T20943] ksys_read+0x12a/0x250 [ 1117.162860][T20943] ? __pfx_ksys_read+0x10/0x10 [ 1117.162897][T20943] ? rcu_is_watching+0x12/0xc0 [ 1117.162929][T20943] do_syscall_64+0x10b/0xf80 [ 1117.162961][T20943] ? clear_bhb_loop+0x40/0x90 [ 1117.162993][T20943] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1117.163019][T20943] RIP: 0033:0x7f1043d5d04e [ 1117.163039][T20943] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 1117.163063][T20943] RSP: 002b:00007f1044b94fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1117.163088][T20943] RAX: ffffffffffffffda RBX: 00007f1044b956c0 RCX: 00007f1043d5d04e [ 1117.163105][T20943] RDX: 000000000000000f RSI: 00007f1044b950a0 RDI: 0000000000000004 [ 1117.163120][T20943] RBP: 00007f1044b95090 R08: 0000000000000000 R09: 0000000000000000 [ 1117.163136][T20943] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1117.163151][T20943] R13: 00007f1044016038 R14: 00007f1044015fa0 R15: 00007fff5629b758 [ 1117.163186][T20943] [ 1117.407945][T20946] __vm_enough_memory: pid: 20946, comm: syz.2.3063, bytes: 4398046511104 not enough memory for the allocation [ 1117.487951][T20951] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3066'. [ 1118.884496][T20957] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3069'. [ 1119.410753][T20978] FAULT_INJECTION: forcing a failure. [ 1119.410753][T20978] name failslab, interval 1, probability 0, space 0, times 0 [ 1119.455313][T20978] CPU: 1 UID: 0 PID: 20978 Comm: syz.1.3074 Not tainted syzkaller #0 PREEMPT(full) [ 1119.455351][T20978] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1119.455367][T20978] Call Trace: [ 1119.455376][T20978] [ 1119.455386][T20978] dump_stack_lvl+0x100/0x190 [ 1119.455438][T20978] should_fail_ex.cold+0x5/0xa [ 1119.455473][T20978] should_failslab+0xc2/0x120 [ 1119.455516][T20978] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1119.455553][T20978] ? security_file_alloc+0x34/0x2c0 [ 1119.455590][T20978] ? trace_kmem_cache_alloc+0xd5/0x100 [ 1119.455639][T20978] security_file_alloc+0x34/0x2c0 [ 1119.455679][T20978] init_file+0x95/0x480 [ 1119.455712][T20978] alloc_empty_file+0x79/0x1c0 [ 1119.455743][T20978] path_openat+0xe8/0x31a0 [ 1119.455784][T20978] ? kasan_save_stack+0x3f/0x50 [ 1119.455822][T20978] ? kasan_save_stack+0x30/0x50 [ 1119.455858][T20978] ? kasan_save_track+0x14/0x30 [ 1119.455903][T20978] ? __kasan_slab_alloc+0x89/0x90 [ 1119.455941][T20978] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 1119.455977][T20978] ? do_getname+0x35/0x390 [ 1119.456001][T20978] ? do_sys_openat2+0xc5/0x1e0 [ 1119.456029][T20978] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1119.456050][T20978] ? __pfx_path_openat+0x10/0x10 [ 1119.456078][T20978] do_file_open+0x20e/0x430 [ 1119.456102][T20978] ? __pfx_do_file_open+0x10/0x10 [ 1119.456136][T20978] ? alloc_fd+0x476/0x790 [ 1119.456166][T20978] ? do_getname+0x191/0x390 [ 1119.456183][T20978] do_sys_openat2+0x10d/0x1e0 [ 1119.456200][T20978] ? __pfx_do_sys_openat2+0x10/0x10 [ 1119.456215][T20978] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 1119.456239][T20978] ? __fget_files+0x21f/0x3d0 [ 1119.456262][T20978] __x64_sys_openat+0x12d/0x210 [ 1119.456279][T20978] ? __pfx___x64_sys_openat+0x10/0x10 [ 1119.456295][T20978] ? ksys_write+0x1ac/0x250 [ 1119.456318][T20978] ? rcu_is_watching+0x12/0xc0 [ 1119.456336][T20978] do_syscall_64+0x10b/0xf80 [ 1119.456354][T20978] ? clear_bhb_loop+0x40/0x90 [ 1119.456372][T20978] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1119.456387][T20978] RIP: 0033:0x7f1043d9c819 [ 1119.456401][T20978] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1119.456415][T20978] RSP: 002b:00007f1044b95028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1119.456429][T20978] RAX: ffffffffffffffda RBX: 00007f1044015fa0 RCX: 00007f1043d9c819 [ 1119.456439][T20978] RDX: 0000000000002100 RSI: 0000200000000640 RDI: ffffffffffffff9c [ 1119.456448][T20978] RBP: 00007f1044b95090 R08: 0000000000000000 R09: 0000000000000000 [ 1119.456457][T20978] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1119.456465][T20978] R13: 00007f1044016038 R14: 00007f1044015fa0 R15: 00007fff5629b758 [ 1119.456484][T20978] [ 1119.901592][T20987] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3076'. [ 1120.535805][T21007] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3078'. [ 1123.195216][T21047] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3082'. [ 1123.604925][T21063] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3093'. [ 1124.784259][T21080] smpboot: CPU 1 is now offline [ 1125.742517][T21084] program syz.1.3090 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1125.801755][ T29] audit: type=1807 audit(1776270954.999:5): UNKNOWN=0"]$|1j0B|dӉO+/xWӦ^gq%ḦrO res=0 [ 1125.855852][ T29] audit: type=1802 audit(1776270954.999:6): pid=21084 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.1.3090" res=0 errno=0 [ 1125.974333][T21083] ima: policy update failed [ 1126.015909][ T29] audit: type=1802 audit(1776270955.209:7): pid=21083 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.3090" res=0 errno=0 [ 1126.345194][T21095] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3096'. [ 1127.085248][T21096] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3095'. [ 1127.415190][T21112] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3098'. [ 1129.747716][T21150] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3108'. [ 1131.650097][T21192] FAULT_INJECTION: forcing a failure. [ 1131.650097][T21192] name failslab, interval 1, probability 0, space 0, times 0 [ 1131.735090][T21192] CPU: 0 UID: 0 PID: 21192 Comm: syz.1.3103 Not tainted syzkaller #0 PREEMPT(full) [ 1131.735112][T21192] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1131.735121][T21192] Call Trace: [ 1131.735126][T21192] [ 1131.735131][T21192] dump_stack_lvl+0x100/0x190 [ 1131.735160][T21192] should_fail_ex.cold+0x5/0xa [ 1131.735180][T21192] should_failslab+0xc2/0x120 [ 1131.735203][T21192] __kmalloc_cache_noprof+0x7a/0x6f0 [ 1131.735220][T21192] ? alloc_pipe_info+0x10e/0x590 [ 1131.735242][T21192] ? find_held_lock+0x2b/0x80 [ 1131.735262][T21192] alloc_pipe_info+0x10e/0x590 [ 1131.735286][T21192] splice_direct_to_actor+0x78f/0xa30 [ 1131.735309][T21192] ? __lock_acquire+0x4a5/0x2630 [ 1131.735329][T21192] ? __pfx_direct_splice_actor+0x10/0x10 [ 1131.735352][T21192] ? __pfx_aa_file_perm+0x10/0x10 [ 1131.735375][T21192] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 1131.735403][T21192] do_splice_direct+0x174/0x240 [ 1131.735425][T21192] ? __pfx_do_splice_direct+0x10/0x10 [ 1131.735447][T21192] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 1131.735472][T21192] ? rw_verify_area+0xce/0x6d0 [ 1131.735493][T21192] do_sendfile+0xadc/0xe20 [ 1131.735520][T21192] ? __pfx_do_sendfile+0x10/0x10 [ 1131.735539][T21192] ? __fget_files+0x21f/0x3d0 [ 1131.735564][T21192] __x64_sys_sendfile64+0x1d8/0x220 [ 1131.735578][T21192] ? ksys_write+0x1ac/0x250 [ 1131.735598][T21192] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 1131.735614][T21192] ? rcu_is_watching+0x12/0xc0 [ 1131.735635][T21192] do_syscall_64+0x10b/0xf80 [ 1131.735654][T21192] ? clear_bhb_loop+0x40/0x90 [ 1131.735672][T21192] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1131.735687][T21192] RIP: 0033:0x7f1043d9c819 [ 1131.735699][T21192] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1131.735714][T21192] RSP: 002b:00007f1044b74028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1131.735729][T21192] RAX: ffffffffffffffda RBX: 00007f1044016090 RCX: 00007f1043d9c819 [ 1131.735739][T21192] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000004 [ 1131.735747][T21192] RBP: 00007f1044b74090 R08: 0000000000000000 R09: 0000000000000000 [ 1131.735756][T21192] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000001 [ 1131.735765][T21192] R13: 00007f1044016128 R14: 00007f1044016090 R15: 00007fff5629b758 [ 1131.735784][T21192] [ 1132.038445][T21195] usb usb11: usbfs: interface 0 claimed by hub while 'syz.3.3104' sets config #7 [ 1132.049438][T21190] zswap: compressor not available [ 1132.347991][T21195] zswap: compressor not available [ 1133.251714][T21210] random: crng reseeded on system resumption [ 1133.277872][T21213] FAULT_INJECTION: forcing a failure. [ 1133.277872][T21213] name failslab, interval 1, probability 0, space 0, times 0 [ 1133.361356][T21213] CPU: 0 UID: 0 PID: 21213 Comm: syz.3.3112 Not tainted syzkaller #0 PREEMPT(full) [ 1133.361379][T21213] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1133.361389][T21213] Call Trace: [ 1133.361394][T21213] [ 1133.361399][T21213] dump_stack_lvl+0x100/0x190 [ 1133.361428][T21213] should_fail_ex.cold+0x5/0xa [ 1133.361448][T21213] should_failslab+0xc2/0x120 [ 1133.361470][T21213] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1133.361490][T21213] ? copy_net_ns+0xe8/0x7c0 [ 1133.361508][T21213] copy_net_ns+0xe8/0x7c0 [ 1133.361520][T21213] ? copy_cgroup_ns+0x71/0x970 [ 1133.361543][T21213] create_new_namespaces+0x3ea/0xac0 [ 1133.361567][T21213] unshare_nsproxy_namespaces+0xf2/0x220 [ 1133.361587][T21213] ksys_unshare+0x438/0xa90 [ 1133.361608][T21213] ? __pfx_ksys_unshare+0x10/0x10 [ 1133.361628][T21213] ? xfd_validate_state+0x129/0x190 [ 1133.361657][T21213] __x64_sys_unshare+0x31/0x40 [ 1133.361677][T21213] do_syscall_64+0x10b/0xf80 [ 1133.361696][T21213] ? clear_bhb_loop+0x40/0x90 [ 1133.361715][T21213] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1133.361730][T21213] RIP: 0033:0x7f468cf9c819 [ 1133.361747][T21213] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1133.361760][T21213] RSP: 002b:00007f468ddc0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 1133.361775][T21213] RAX: ffffffffffffffda RBX: 00007f468d215fa0 RCX: 00007f468cf9c819 [ 1133.361784][T21213] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 1133.361800][T21213] RBP: 00007f468d032c91 R08: 0000000000000000 R09: 0000000000000000 [ 1133.361809][T21213] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1133.361817][T21213] R13: 00007f468d216038 R14: 00007f468d215fa0 R15: 00007fff2b6563a8 [ 1133.361837][T21213] [ 1133.873414][T21227] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3114'. [ 1134.275187][T21233] FAULT_INJECTION: forcing a failure. [ 1134.275187][T21233] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1134.341405][T21233] CPU: 0 UID: 0 PID: 21233 Comm: syz.2.3115 Not tainted syzkaller #0 PREEMPT(full) [ 1134.341429][T21233] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1134.341438][T21233] Call Trace: [ 1134.341443][T21233] [ 1134.341449][T21233] dump_stack_lvl+0x100/0x190 [ 1134.341478][T21233] should_fail_ex.cold+0x5/0xa [ 1134.341498][T21233] _copy_from_user+0x2e/0xd0 [ 1134.341519][T21233] __x64_sys_mq_notify+0xde/0x170 [ 1134.341536][T21233] ? __pfx___x64_sys_mq_notify+0x10/0x10 [ 1134.341557][T21233] ? rcu_is_watching+0x12/0xc0 [ 1134.341576][T21233] do_syscall_64+0x10b/0xf80 [ 1134.341595][T21233] ? clear_bhb_loop+0x40/0x90 [ 1134.341613][T21233] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1134.341634][T21233] RIP: 0033:0x7f894339c819 [ 1134.341647][T21233] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1134.341661][T21233] RSP: 002b:00007f8944246028 EFLAGS: 00000246 ORIG_RAX: 00000000000000f4 [ 1134.341676][T21233] RAX: ffffffffffffffda RBX: 00007f8943615fa0 RCX: 00007f894339c819 [ 1134.341686][T21233] RDX: 0000000000000000 RSI: 0000200000000180 RDI: 0000000000000003 [ 1134.341694][T21233] RBP: 00007f8944246090 R08: 0000000000000000 R09: 0000000000000000 [ 1134.341703][T21233] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1134.341711][T21233] R13: 00007f8943616038 R14: 00007f8943615fa0 R15: 00007ffe5a04f6f8 [ 1134.341730][T21233] [ 1134.688799][T21240] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3117'. [ 1136.819664][T21271] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3124'. [ 1137.384370][T21284] random: crng reseeded on system resumption [ 1137.502944][T21284] ptrace attach of "./syz-executor exec"[17434] was attempted by "./syz-executor exec"[21284] Ijn9_UVQ8j@:Un M%Ux[ 1138.058354][T21298] usb usb11: usbfs: interface 0 claimed by hub while 'syz.0.3128' sets config #7 [ 1138.196056][T21297] zero sized request [ 1138.350337][T21298] zswap: compressor not available [ 1139.159290][T21314] FAULT_INJECTION: forcing a failure. [ 1139.159290][T21314] name failslab, interval 1, probability 0, space 0, times 0 [ 1139.190228][T21311] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 1139.349069][T21314] CPU: 0 UID: 0 PID: 21314 Comm: syz.3.3130 Not tainted syzkaller #0 PREEMPT(full) [ 1139.349093][T21314] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1139.349102][T21314] Call Trace: [ 1139.349107][T21314] [ 1139.349112][T21314] dump_stack_lvl+0x100/0x190 [ 1139.349151][T21314] should_fail_ex.cold+0x5/0xa [ 1139.349171][T21314] should_failslab+0xc2/0x120 [ 1139.349194][T21314] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1139.349214][T21314] ? create_new_namespaces+0x30/0xac0 [ 1139.349233][T21314] ? rcu_is_watching+0x12/0xc0 [ 1139.349251][T21314] create_new_namespaces+0x30/0xac0 [ 1139.349268][T21314] ? bpf_lsm_capable+0x9/0x10 [ 1139.349290][T21314] ? security_capable+0x80/0x260 [ 1139.349307][T21314] unshare_nsproxy_namespaces+0xf2/0x220 [ 1139.349327][T21314] ksys_unshare+0x438/0xa90 [ 1139.349348][T21314] ? __pfx_ksys_unshare+0x10/0x10 [ 1139.349368][T21314] ? ksys_write+0x1ac/0x250 [ 1139.349393][T21314] __x64_sys_unshare+0x31/0x40 [ 1139.349413][T21314] do_syscall_64+0x10b/0xf80 [ 1139.349432][T21314] ? clear_bhb_loop+0x40/0x90 [ 1139.349450][T21314] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1139.349465][T21314] RIP: 0033:0x7f468cf9c819 [ 1139.349478][T21314] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1139.349492][T21314] RSP: 002b:00007f468b1f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 1139.349507][T21314] RAX: ffffffffffffffda RBX: 00007f468d216270 RCX: 00007f468cf9c819 [ 1139.349516][T21314] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000080 [ 1139.349525][T21314] RBP: 00007f468b1f6090 R08: 0000000000000000 R09: 0000000000000000 [ 1139.349533][T21314] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1139.349542][T21314] R13: 00007f468d216308 R14: 00007f468d216270 R15: 00007fff2b6563a8 [ 1139.349560][T21314] [ 1139.649931][T21313] smpboot: CPU 1 is now offline [ 1139.925124][T21332] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3134'. [ 1139.955432][T21333] FAULT_INJECTION: forcing a failure. [ 1139.955432][T21333] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1139.993180][T21333] CPU: 0 UID: 0 PID: 21333 Comm: syz.1.3133 Not tainted syzkaller #0 PREEMPT(full) [ 1139.993203][T21333] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1139.993213][T21333] Call Trace: [ 1139.993218][T21333] [ 1139.993224][T21333] dump_stack_lvl+0x100/0x190 [ 1139.993253][T21333] should_fail_ex.cold+0x5/0xa [ 1139.993273][T21333] _copy_to_user+0x32/0xd0 [ 1139.993294][T21333] simple_read_from_buffer+0xcb/0x170 [ 1139.993318][T21333] proc_fail_nth_read+0x1af/0x230 [ 1139.993336][T21333] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1139.993355][T21333] ? rw_verify_area+0xce/0x6d0 [ 1139.993373][T21333] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1139.993390][T21333] vfs_read+0x1e4/0xb30 [ 1139.993412][T21333] ? __pfx_vfs_read+0x10/0x10 [ 1139.993431][T21333] ? __fget_files+0x215/0x3d0 [ 1139.993455][T21333] ? __fget_files+0x21f/0x3d0 [ 1139.993481][T21333] ksys_read+0x12a/0x250 [ 1139.993500][T21333] ? __pfx_ksys_read+0x10/0x10 [ 1139.993522][T21333] ? rcu_is_watching+0x12/0xc0 [ 1139.993540][T21333] do_syscall_64+0x10b/0xf80 [ 1139.993559][T21333] ? clear_bhb_loop+0x40/0x90 [ 1139.993577][T21333] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1139.993593][T21333] RIP: 0033:0x7f1043d5d04e [ 1139.993606][T21333] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 1139.993620][T21333] RSP: 002b:00007f1044b73fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1139.993634][T21333] RAX: ffffffffffffffda RBX: 00007f1044b746c0 RCX: 00007f1043d5d04e [ 1139.993644][T21333] RDX: 000000000000000f RSI: 00007f1044b740a0 RDI: 0000000000000005 [ 1139.993653][T21333] RBP: 00007f1044b74090 R08: 0000000000000000 R09: 0000000000000000 [ 1139.993662][T21333] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1139.993670][T21333] R13: 00007f1044016128 R14: 00007f1044016090 R15: 00007fff5629b758 [ 1139.993689][T21333] [ 1140.991568][T21353] FAULT_INJECTION: forcing a failure. [ 1140.991568][T21353] name failslab, interval 1, probability 0, space 0, times 0 [ 1141.118622][T21356] netlink: 330 bytes leftover after parsing attributes in process `syz.0.3135'. [ 1141.160447][T21353] CPU: 0 UID: 0 PID: 21353 Comm: syz.1.3138 Not tainted syzkaller #0 PREEMPT(full) [ 1141.160473][T21353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1141.160482][T21353] Call Trace: [ 1141.160486][T21353] [ 1141.160492][T21353] dump_stack_lvl+0x100/0x190 [ 1141.160522][T21353] should_fail_ex.cold+0x5/0xa [ 1141.160542][T21353] should_failslab+0xc2/0x120 [ 1141.160564][T21353] __kvmalloc_node_noprof+0xfa/0xa00 [ 1141.160584][T21353] ? traverse.part.0.constprop.0+0x397/0x650 [ 1141.160606][T21353] ? kernel_text_address+0x8d/0x100 [ 1141.160624][T21353] traverse.part.0.constprop.0+0x397/0x650 [ 1141.160650][T21353] seq_read_iter+0x93f/0x1270 [ 1141.160671][T21353] ? aa_file_perm+0x7f3/0x14d0 [ 1141.160698][T21353] seq_read+0x33b/0x4c0 [ 1141.160718][T21353] ? __pfx_seq_read+0x10/0x10 [ 1141.160741][T21353] ? iovec_from_user+0xda/0x140 [ 1141.160769][T21353] full_proxy_read+0x135/0x1a0 [ 1141.160793][T21353] ? __pfx_full_proxy_read+0x10/0x10 [ 1141.160814][T21353] vfs_readv+0x5d8/0x8d0 [ 1141.160839][T21353] ? __pfx_vfs_readv+0x10/0x10 [ 1141.160858][T21353] ? find_held_lock+0x2b/0x80 [ 1141.160886][T21353] ? __fget_files+0x21f/0x3d0 [ 1141.160911][T21353] ? do_preadv+0x1ac/0x270 [ 1141.160928][T21353] do_preadv+0x1ac/0x270 [ 1141.160948][T21353] ? __pfx_do_preadv+0x10/0x10 [ 1141.160968][T21353] ? rcu_is_watching+0x12/0xc0 [ 1141.160986][T21353] do_syscall_64+0x10b/0xf80 [ 1141.161005][T21353] ? clear_bhb_loop+0x40/0x90 [ 1141.161023][T21353] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1141.161039][T21353] RIP: 0033:0x7f1043d9c819 [ 1141.161082][T21353] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1141.161096][T21353] RSP: 002b:00007f1044b74028 EFLAGS: 00000246 ORIG_RAX: 0000000000000127 [ 1141.161111][T21353] RAX: ffffffffffffffda RBX: 00007f1044016090 RCX: 00007f1043d9c819 [ 1141.161120][T21353] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000004 [ 1141.161129][T21353] RBP: 00007f1044b74090 R08: 0000000000000000 R09: 0000000000000000 [ 1141.161138][T21353] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000001 [ 1141.161147][T21353] R13: 00007f1044016128 R14: 00007f1044016090 R15: 00007fff5629b758 [ 1141.161166][T21353] Ijn9_UVQ8j@:Un M%Ux[ 1142.739593][T21405] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 1143.171107][T21454] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3144'. [ 1144.061964][T21468] snd_virmidi snd_virmidi.0: control 61678:131081:3:y:65534 is already present [ 1144.450730][T21473] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3148'. [ 1144.958017][T21472] Process accounting resumed Ijn9_UVQ8j@:Un M%Ux[ 1145.205963][T21492] FAULT_INJECTION: forcing a failure. [ 1145.205963][T21492] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1145.255710][T21492] CPU: 1 UID: 0 PID: 21492 Comm: syz.0.3152 Not tainted syzkaller #0 PREEMPT(full) [ 1145.255748][T21492] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1145.255762][T21492] Call Trace: [ 1145.255770][T21492] [ 1145.255779][T21492] dump_stack_lvl+0x100/0x190 [ 1145.255827][T21492] should_fail_ex.cold+0x5/0xa [ 1145.255867][T21492] _copy_to_user+0x32/0xd0 [ 1145.255904][T21492] simple_read_from_buffer+0xcb/0x170 [ 1145.255942][T21492] proc_fail_nth_read+0x1af/0x230 [ 1145.255973][T21492] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1145.256004][T21492] ? rw_verify_area+0xce/0x6d0 [ 1145.256035][T21492] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1145.256064][T21492] vfs_read+0x1e4/0xb30 [ 1145.256104][T21492] ? __pfx_vfs_read+0x10/0x10 [ 1145.256137][T21492] ? __fget_files+0x215/0x3d0 [ 1145.256178][T21492] ? __fget_files+0x21f/0x3d0 [ 1145.256222][T21492] ksys_read+0x12a/0x250 [ 1145.256255][T21492] ? __pfx_ksys_read+0x10/0x10 [ 1145.256292][T21492] ? rcu_is_watching+0x12/0xc0 [ 1145.256322][T21492] do_syscall_64+0x10b/0xf80 [ 1145.256353][T21492] ? clear_bhb_loop+0x40/0x90 [ 1145.256384][T21492] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1145.256410][T21492] RIP: 0033:0x7f8548b5d04e [ 1145.256431][T21492] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 1145.256455][T21492] RSP: 002b:00007f85499a4fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1145.256478][T21492] RAX: ffffffffffffffda RBX: 00007f85499a56c0 RCX: 00007f8548b5d04e [ 1145.256494][T21492] RDX: 000000000000000f RSI: 00007f85499a50a0 RDI: 0000000000000003 [ 1145.256509][T21492] RBP: 00007f85499a5090 R08: 0000000000000000 R09: 0000000000000000 [ 1145.256524][T21492] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1145.256538][T21492] R13: 00007f8548e16218 R14: 00007f8548e16180 R15: 00007fff97ee0758 [ 1145.256573][T21492] [ 1147.190770][T21533] snd_virmidi snd_virmidi.0: control 61678:131081:3:y:65534 is already present Ijn9_UVQ8j@:Un M%Ux[ 1150.511166][T21583] usb usb11: usbfs: interface 0 claimed by hub while 'syz.1.3170' sets config #7 [ 1152.451569][T21606] FAULT_INJECTION: forcing a failure. [ 1152.451569][T21606] name failslab, interval 1, probability 0, space 0, times 0 [ 1152.451625][T21606] CPU: 0 UID: 0 PID: 21606 Comm: syz.2.3175 Not tainted syzkaller #0 PREEMPT(full) [ 1152.451642][T21606] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1152.451651][T21606] Call Trace: [ 1152.451656][T21606] [ 1152.451661][T21606] dump_stack_lvl+0x100/0x190 [ 1152.451690][T21606] should_fail_ex.cold+0x5/0xa [ 1152.451709][T21606] should_failslab+0xc2/0x120 [ 1152.451732][T21606] __kmalloc_cache_noprof+0x7a/0x6f0 [ 1152.451749][T21606] ? sctp_auth_shkey_create+0x9e/0x210 [ 1152.451777][T21606] ? __genradix_ptr_alloc+0x347/0x610 [ 1152.451801][T21606] sctp_auth_shkey_create+0x9e/0x210 [ 1152.451825][T21606] sctp_auth_asoc_copy_shkeys+0x1f2/0x360 [ 1152.451851][T21606] sctp_association_new+0x19ab/0x2990 [ 1152.451871][T21606] sctp_connect_new_asoc+0x1a8/0x770 [ 1152.451896][T21606] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 1152.451912][T21606] ? sctp_endpoint_lookup_assoc+0x15c/0x2a0 [ 1152.451936][T21606] ? sctp_endpoint_lookup_assoc+0x15c/0x2a0 [ 1152.451970][T21606] __sctp_connect+0x3e7/0xc70 [ 1152.452003][T21606] ? __pfx___sctp_connect+0x10/0x10 [ 1152.452031][T21606] ? __pfx_sctp_inet_connect+0x10/0x10 [ 1152.452048][T21606] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1152.452069][T21606] ? __pfx_sctp_inet_connect+0x10/0x10 [ 1152.452084][T21606] sctp_inet_connect+0x15f/0x220 [ 1152.452101][T21606] __sys_connect_file+0x141/0x1a0 [ 1152.452122][T21606] __sys_connect+0x141/0x170 [ 1152.452142][T21606] ? __pfx___sys_connect+0x10/0x10 [ 1152.452159][T21606] ? __fget_files+0x21f/0x3d0 [ 1152.452187][T21606] ? __pfx_ksys_write+0x10/0x10 [ 1152.452212][T21606] __x64_sys_connect+0x72/0xb0 [ 1152.452228][T21606] ? lockdep_hardirqs_on+0x78/0x100 [ 1152.452248][T21606] do_syscall_64+0x10b/0xf80 [ 1152.452266][T21606] ? clear_bhb_loop+0x40/0x90 [ 1152.452284][T21606] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1152.452299][T21606] RIP: 0033:0x7f894339c819 [ 1152.452315][T21606] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1152.452329][T21606] RSP: 002b:00007f8944246028 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 1152.452343][T21606] RAX: ffffffffffffffda RBX: 00007f8943615fa0 RCX: 00007f894339c819 [ 1152.452353][T21606] RDX: 0000000000000054 RSI: 0000200000000080 RDI: 0000000000000003 [ 1152.452362][T21606] RBP: 00007f8944246090 R08: 0000000000000000 R09: 0000000000000000 [ 1152.452370][T21606] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1152.452379][T21606] R13: 00007f8943616038 R14: 00007f8943615fa0 R15: 00007ffe5a04f6f8 [ 1152.452398][T21606] [ 1154.516532][T21629] usb usb11: usbfs: interface 0 claimed by hub while 'syz.3.3180' sets config #7 [ 1154.844448][T21634] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3181'. [ 1156.941383][T21657] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3186'. [ 1159.418141][T21680] usb usb11: usbfs: interface 0 claimed by hub while 'syz.0.3190' sets config #7 [ 1160.283875][T21696] netlink: zone id is out of range [ 1160.316177][T21696] netlink: zone id is out of range [ 1160.336441][T21696] netlink: zone id is out of range [ 1160.358941][T21696] netlink: zone id is out of range [ 1160.369938][T21696] netlink: zone id is out of range [ 1160.375722][T21696] netlink: zone id is out of range [ 1160.382411][T21696] netlink: zone id is out of range [ 1160.409300][T21696] netlink: zone id is out of range [ 1160.441225][T21696] netlink: zone id is out of range [ 1160.469199][T21696] netlink: zone id is out of range [ 1161.948824][T21718] usb usb11: usbfs: interface 0 claimed by hub while 'syz.2.3202' sets config #7 [ 1165.873195][T21769] usb usb11: usbfs: interface 0 claimed by hub while 'syz.3.3211' sets config #7 [ 1166.215608][T21774] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3214'. [ 1167.535298][T21780] smpboot: CPU 1 is now offline [ 1168.549676][T21800] usb usb11: usbfs: interface 0 claimed by hub while 'syz.3.3222' sets config #7 [ 1168.678789][T21789] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 1168.772202][T21803] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3223'. [ 1169.051304][T21794] smpboot: CPU 1 is now offline [ 1169.748122][T21808] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 1169.795122][T21781] ------------[ cut here ]------------ [ 1169.796330][T21781] [ 1169.796338][T21781] ====================================================== [ 1169.796348][T21781] WARNING: possible circular locking dependency detected [ 1169.796358][T21781] syzkaller #0 Not tainted [ 1169.796371][T21781] ------------------------------------------------------ [ 1169.796380][T21781] syz.0.3216/21781 is trying to acquire lock: [ 1169.796393][T21781] ffffffff8e6f31c0 (console_owner){-...}-{0:0}, at: console_lock_spinning_enable+0x61/0x80 [ 1169.796458][T21781] [ 1169.796458][T21781] but task is already holding lock: [ 1169.796466][T21781] ffff8880b843b3e0 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x88/0x140 [ 1169.796526][T21781] [ 1169.796526][T21781] which lock already depends on the new lock. [ 1169.796526][T21781] [ 1169.796534][T21781] [ 1169.796534][T21781] the existing dependency chain (in reverse order) is: [ 1169.796543][T21781] [ 1169.796543][T21781] -> #4 (&rq->__lock){-.-.}-{2:2}: [ 1169.796579][T21781] _raw_spin_lock_nested+0x31/0x40 [ 1169.796609][T21781] raw_spin_rq_lock_nested+0x2c/0x140 [ 1169.796638][T21781] _task_rq_lock+0xcf/0x510 [ 1169.796666][T21781] cgroup_move_task+0x81/0x320 [ 1169.796696][T21781] css_set_move_task+0x285/0x600 [ 1169.796728][T21781] cgroup_post_fork+0x202/0x9b0 [ 1169.796760][T21781] copy_process+0x6399/0x7e30 [ 1169.796789][T21781] kernel_clone+0x12e/0x9c0 [ 1169.796822][T21781] user_mode_thread+0xcc/0x110 [ 1169.796854][T21781] rest_init+0x21/0x260 [ 1169.796875][T21781] start_kernel+0x484/0x490 [ 1169.796996][T21781] x86_64_start_reservations+0x24/0x30 [ 1169.797061][T21781] x86_64_start_kernel+0x12b/0x130 [ 1169.797103][T21781] common_startup_64+0x13e/0x148 [ 1169.797135][T21781] [ 1169.797135][T21781] -> #3 (&p->pi_lock){-.-.}-{2:2}: [ 1169.797168][T21781] _raw_spin_lock_irqsave+0x3a/0x60 [ 1169.797197][T21781] try_to_wake_up+0xb5/0x1900 [ 1169.797224][T21781] __wake_up_common+0x135/0x1f0 [ 1169.797266][T21781] __wake_up+0x31/0x60 [ 1169.797296][T21781] tty_port_default_wakeup+0x52/0x70 [ 1169.797326][T21781] serial8250_tx_chars+0x68f/0x860 [ 1169.797352][T21781] serial8250_handle_irq_locked+0x5e6/0x7e0 [ 1169.797382][T21781] serial8250_handle_irq.part.0+0xb4/0x530 [ 1169.797411][T21781] serial8250_default_handle_irq+0xc2/0x290 [ 1169.797441][T21781] serial8250_interrupt+0xf8/0x1c0 [ 1169.797474][T21781] __handle_irq_event_percpu+0x235/0x8c0 [ 1169.797503][T21781] handle_irq_event+0xab/0x1e0 [ 1169.797529][T21781] handle_edge_irq+0x35e/0x960 [ 1169.797553][T21781] __common_interrupt+0xd8/0x2f0 [ 1169.797591][T21781] common_interrupt+0xb9/0xe0 [ 1169.797614][T21781] asm_common_interrupt+0x26/0x40 [ 1169.797640][T21781] finish_task_switch.isra.0+0x2d3/0x1010 [ 1169.797669][T21781] __schedule+0x10f1/0x6820 [ 1169.797698][T21781] schedule+0xdd/0x390 [ 1169.797724][T21781] worker_thread+0x53b/0xe50 [ 1169.797765][T21781] kthread+0x370/0x450 [ 1169.797801][T21781] ret_from_fork+0x72b/0xd50 [ 1169.797823][T21781] ret_from_fork_asm+0x1a/0x30 [ 1169.797855][T21781] [ 1169.797855][T21781] -> #2 (&tty->write_wait){-.-.}-{3:3}: [ 1169.797889][T21781] _raw_spin_lock_irqsave+0x3a/0x60 [ 1169.797917][T21781] __wake_up+0x1c/0x60 [ 1169.797952][T21781] tty_port_default_wakeup+0x52/0x70 [ 1169.797980][T21781] serial8250_tx_chars+0x68f/0x860 [ 1169.798006][T21781] serial8250_handle_irq_locked+0x5e6/0x7e0 [ 1169.798036][T21781] serial8250_handle_irq.part.0+0xb4/0x530 [ 1169.798065][T21781] serial8250_default_handle_irq+0xc2/0x290 [ 1169.798095][T21781] serial8250_interrupt+0xf8/0x1c0 [ 1169.798128][T21781] __handle_irq_event_percpu+0x235/0x8c0 [ 1169.798156][T21781] handle_irq_event+0xab/0x1e0 [ 1169.798182][T21781] handle_edge_irq+0x35e/0x960 [ 1169.798206][T21781] __common_interrupt+0xd8/0x2f0 [ 1169.798244][T21781] common_interrupt+0xb9/0xe0 [ 1169.798270][T21781] asm_common_interrupt+0x26/0x40 [ 1169.798295][T21781] finish_task_switch.isra.0+0x2d3/0x1010 [ 1169.798324][T21781] __schedule+0x10f1/0x6820 [ 1169.798353][T21781] schedule+0xdd/0x390 [ 1169.798381][T21781] worker_thread+0x53b/0xe50 [ 1169.798420][T21781] kthread+0x370/0x450 [ 1169.798456][T21781] ret_from_fork+0x72b/0xd50 [ 1169.798479][T21781] ret_from_fork_asm+0x1a/0x30 [ 1169.798510][T21781] [ 1169.798510][T21781] -> #1 (&port_lock_key){-.-.}-{3:3}: [ 1169.798543][T21781] _raw_spin_lock_irqsave+0x3a/0x60 [ 1169.798572][T21781] serial8250_console_write+0x17e/0x1900 [ 1169.798604][T21781] console_flush_one_record+0x790/0xe50 [ 1169.798631][T21781] console_unlock+0x103/0x260 [ 1169.798656][T21781] vprintk_emit+0x407/0x6b0 [ 1169.798683][T21781] _printk+0xcf/0x110 [ 1169.798706][T21781] register_console.cold+0xc0/0x248 [ 1169.798732][T21781] univ8250_console_init+0x6f/0x80 [ 1169.798810][T21781] console_init+0x3f7/0x5e0 [ 1169.798861][T21781] start_kernel+0x30a/0x490 [ 1169.798898][T21781] x86_64_start_reservations+0x24/0x30 [ 1169.798939][T21781] x86_64_start_kernel+0x12b/0x130 [ 1169.798979][T21781] common_startup_64+0x13e/0x148 [ 1169.799010][T21781] [ 1169.799010][T21781] -> #0 (console_owner){-...}-{0:0}: [ 1169.799043][T21781] __lock_acquire+0x14b8/0x2630 [ 1169.799079][T21781] lock_acquire+0x1b1/0x370 [ 1169.799113][T21781] console_lock_spinning_enable+0x72/0x80 [ 1169.799139][T21781] console_flush_one_record+0x739/0xe50 [ 1169.799167][T21781] console_unlock+0x103/0x260 [ 1169.799192][T21781] vprintk_emit+0x407/0x6b0 [ 1169.799219][T21781] _printk+0xcf/0x110 [ 1169.799241][T21781] __report_bug.cold+0x15/0x137 [ 1169.799285][T21781] report_bug+0xb2/0x220 [ 1169.799313][T21781] handle_bug+0x16a/0x2a0 [ 1169.799350][T21781] exc_invalid_op+0x17/0x50 [ 1169.799387][T21781] asm_exc_invalid_op+0x1a/0x20 [ 1169.799411][T21781] update_rq_clock+0x40a/0xd20 [ 1169.799441][T21781] __schedule+0x1cd8/0x6820 [ 1169.799469][T21781] preempt_schedule_irq+0x50/0x90 [ 1169.799500][T21781] irqentry_exit+0x1fe/0x790 [ 1169.799532][T21781] asm_sysvec_reschedule_ipi+0x1a/0x20 [ 1169.799559][T21781] lock_acquire+0x5e/0x370 [ 1169.799593][T21781] is_module_text_address+0x33/0x220 [ 1169.799632][T21781] kernel_text_address+0x81/0x100 [ 1169.799654][T21781] __kernel_text_address+0xd/0x30 [ 1169.799678][T21781] unwind_get_return_address+0x59/0xa0 [ 1169.799710][T21781] arch_stack_walk+0xa6/0xf0 [ 1169.799738][T21781] stack_trace_save+0x8e/0xc0 [ 1169.799767][T21781] kasan_save_stack+0x30/0x50 [ 1169.799801][T21781] kasan_save_track+0x14/0x30 [ 1169.799835][T21781] __kasan_kmalloc+0xaa/0xb0 [ 1169.799869][T21781] kmem_cache_free+0x415/0x690 [ 1169.799898][T21781] mempool_free+0xde/0x130 [ 1169.799934][T21781] bio_put+0x34f/0x5b0 [ 1169.799958][T21781] bio_endio+0x78f/0x8f0 [ 1169.799982][T21781] blk_update_request+0x741/0x1380 [ 1169.800014][T21781] blk_mq_end_request+0x5b/0x420 [ 1169.800046][T21781] blk_mq_complete_request+0x8b/0xb0 [ 1169.800077][T21781] null_queue_rq+0xb48/0xfb0 [ 1169.800108][T21781] null_queue_rqs+0xe9/0x2f0 [ 1169.800138][T21781] __blk_mq_flush_list+0x9a/0xc0 [ 1169.800167][T21781] blk_mq_dispatch_queue_requests+0x184/0x7c0 [ 1169.800208][T21781] blk_mq_flush_plug_list+0x1f2/0x600 [ 1169.800248][T21781] __blk_flush_plug+0x2c4/0x4b0 [ 1169.800289][T21781] blk_finish_plug+0x5c/0xa0 [ 1169.800325][T21781] blkdev_writepages+0xf6/0x150 [ 1169.800362][T21781] do_writepages+0x278/0x600 [ 1169.800386][T21781] filemap_writeback+0x22d/0x2e0 [ 1169.800410][T21781] filemap_write_and_wait_range+0xa6/0x130 [ 1169.800441][T21781] blkdev_flush_mapping+0x9d/0x2e0 [ 1169.800474][T21781] blkdev_put_whole+0xc9/0xf0 [ 1169.800506][T21781] bdev_release+0x47f/0x6d0 [ 1169.800541][T21781] blkdev_release+0x15/0x20 [ 1169.800578][T21781] __fput+0x3ff/0xb50 [ 1169.800601][T21781] task_work_run+0x150/0x240 [ 1169.800622][T21781] do_exit+0x8cf/0x2b50 [ 1169.800659][T21781] do_group_exit+0xd5/0x2a0 [ 1169.800697][T21781] __x64_sys_exit_group+0x3e/0x50 [ 1169.800735][T21781] x64_sys_call+0x102c/0x1530 [ 1169.800766][T21781] do_syscall_64+0x10b/0xf80 [ 1169.800799][T21781] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1169.800825][T21781] [ 1169.800825][T21781] other info that might help us debug this: [ 1169.800825][T21781] [ 1169.800832][T21781] Chain exists of: [ 1169.800832][T21781] console_owner --> &p->pi_lock --> &rq->__lock [ 1169.800832][T21781] [ 1169.800869][T21781] Possible unsafe locking scenario: [ 1169.800869][T21781] [ 1169.800877][T21781] CPU0 CPU1 [ 1169.800884][T21781] ---- ---- [ 1169.800891][T21781] lock(&rq->__lock); [ 1169.800907][T21781] lock(&p->pi_lock); [ 1169.800924][T21781] lock(&rq->__lock); [ 1169.800941][T21781] lock(console_owner); [ 1169.800957][T21781] [ 1169.800957][T21781] *** DEADLOCK *** [ 1169.800957][T21781] [ 1169.800963][T21781] 6 locks held by syz.0.3216/21781: [ 1169.800978][T21781] #0: ffff888027f9a350 (&disk->open_mutex){+.+.}-{4:4}, at: bdev_release+0x15a/0x6d0 [ 1169.801049][T21781] #1: ffffffff8e7e70a0 (rcu_read_lock){....}-{1:3}, at: blk_mq_dispatch_queue_requests+0x148/0x7c0 [ 1169.801128][T21781] #2: ffffffff8e7e70a0 (rcu_read_lock){....}-{1:3}, at: is_module_text_address+0x1f/0x220 [ 1169.801201][T21781] #3: ffff8880b843b3e0 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x88/0x140 [ 1169.801271][T21781] #4: ffffffff8e7d3600 (console_lock){+.+.}-{0:0}, at: _printk+0xcf/0x110 [ 1169.801329][T21781] #5: ffffffff8e7d3678 (console_srcu){....}-{0:0}, at: console_flush_one_record+0xfd/0xe50 [ 1169.801392][T21781] [ 1169.801392][T21781] stack backtrace: [ 1169.801404][T21781] CPU: 0 UID: 0 PID: 21781 Comm: syz.0.3216 Not tainted syzkaller #0 PREEMPT(full) [ 1169.801435][T21781] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1169.801451][T21781] Call Trace: [ 1169.801460][T21781] [ 1169.801469][T21781] dump_stack_lvl+0x100/0x190 [ 1169.801511][T21781] print_circular_bug.cold+0x178/0x1c7 [ 1169.801554][T21781] check_noncircular+0x146/0x160 [ 1169.801593][T21781] __lock_acquire+0x14b8/0x2630 [ 1169.801637][T21781] lock_acquire+0x1b1/0x370 [ 1169.801674][T21781] ? console_lock_spinning_enable+0x61/0x80 [ 1169.801703][T21781] ? console_lock_spinning_enable+0x4a/0x80 [ 1169.801735][T21781] console_lock_spinning_enable+0x72/0x80 [ 1169.801762][T21781] ? console_lock_spinning_enable+0x61/0x80 [ 1169.801790][T21781] console_flush_one_record+0x739/0xe50 [ 1169.801822][T21781] ? __pfx_console_flush_one_record+0x10/0x10 [ 1169.801856][T21781] ? is_printk_cpu_sync_owner+0x32/0x40 [ 1169.801891][T21781] console_unlock+0x103/0x260 [ 1169.801919][T21781] ? __pfx_console_unlock+0x10/0x10 [ 1169.801948][T21781] ? do_raw_spin_unlock+0x145/0x1e0 [ 1169.801975][T21781] ? _printk+0xcf/0x110 [ 1169.802002][T21781] vprintk_emit+0x407/0x6b0 [ 1169.802032][T21781] ? __pfx_vprintk_emit+0x10/0x10 [ 1169.802062][T21781] ? __schedule+0x10fb/0x6820 [ 1169.802094][T21781] _printk+0xcf/0x110 [ 1169.802119][T21781] ? __pfx__printk+0x10/0x10 [ 1169.802145][T21781] ? debug_object_activate+0x331/0x490 [ 1169.802178][T21781] ? debug_object_activate+0x331/0x490 [ 1169.802210][T21781] ? do_raw_spin_unlock+0x145/0x1e0 [ 1169.802235][T21781] ? __report_bug.cold+0x5/0x137 [ 1169.802280][T21781] ? __report_bug+0x377/0x3d0 [ 1169.802311][T21781] __report_bug.cold+0x15/0x137 [ 1169.802350][T21781] ? update_rq_clock+0x40a/0xd20 [ 1169.802382][T21781] ? __pfx___report_bug+0x10/0x10 [ 1169.802420][T21781] ? update_rq_clock+0x40a/0xd20 [ 1169.802452][T21781] report_bug+0xb2/0x220 [ 1169.802482][T21781] ? update_rq_clock+0x40a/0xd20 [ 1169.802512][T21781] handle_bug+0x16a/0x2a0 [ 1169.802548][T21781] exc_invalid_op+0x17/0x50 [ 1169.802588][T21781] asm_exc_invalid_op+0x1a/0x20 [ 1169.802614][T21781] RIP: 0010:update_rq_clock+0x40a/0xd20 [ 1169.802649][T21781] Code: ab 88 0b 00 00 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e 41 5f e9 d8 cd c0 09 a8 04 0f 84 df fc ff ff 90 0f 0b 90 e9 d6 fc ff ff 90 <0f> 0b 90 e9 92 fc ff ff 4c 8d 83 80 0b 00 00 48 b8 00 00 00 00 00 [ 1169.802675][T21781] RSP: 0018:ffffc90003686b08 EFLAGS: 00010046 [ 1169.802695][T21781] RAX: 0000000000000000 RBX: ffff8880b853b380 RCX: 0000000000000001 [ 1169.802713][T21781] RDX: 0000000000000046 RSI: ffffffff8df0e9a7 RDI: ffffffff8c1b4e60 [ 1169.802731][T21781] RBP: ffffc90003686cb8 R08: 0000000000000001 R09: 0000000000000001 [ 1169.802748][T21781] R10: ffffffff90dac717 R11: 0000000000000000 R12: ffffffff90dafaa4 [ 1169.802766][T21781] R13: ffff8880b853c220 R14: ffff88801e6a1ec0 R15: ffff8880b853b380 [ 1169.802792][T21781] ? update_rq_clock+0x9c/0xd20 [ 1169.802826][T21781] __schedule+0x1cd8/0x6820 [ 1169.802867][T21781] ? __pfx___schedule+0x10/0x10 [ 1169.802899][T21781] ? mark_held_locks+0x40/0x70 [ 1169.802938][T21781] preempt_schedule_irq+0x50/0x90 [ 1169.802971][T21781] irqentry_exit+0x1fe/0x790 [ 1169.803007][T21781] asm_sysvec_reschedule_ipi+0x1a/0x20 [ 1169.803035][T21781] RIP: 0010:lock_acquire+0x5e/0x370 [ 1169.803073][T21781] Code: 05 3b 3a 2c 12 83 f8 07 0f 87 d9 02 00 00 48 0f a3 05 06 41 f6 0e 0f 82 a4 02 00 00 8b 35 8e 74 f6 0e 85 f6 0f 85 bf 00 00 00 <48> 8b 44 24 30 65 48 2b 05 dd 39 2c 12 0f 85 ed 02 00 00 48 83 c4 [ 1169.803099][T21781] RSP: 0018:ffffc90003686dc8 EFLAGS: 00000206 [ 1169.803119][T21781] RAX: 0000000000000046 RBX: 0000000000000000 RCX: 0000000000000002 [ 1169.803135][T21781] RDX: 0000000000000000 RSI: ffffffff8df0e9a7 RDI: ffffffff8c1b4e60 [ 1169.803153][T21781] RBP: ffffffff8e7e70a0 R08: 00000000f10cf92a R09: 0000000000000007 [ 1169.803170][T21781] R10: 0000000000000200 R11: 0000000000000000 R12: 0000000000000002 [ 1169.803186][T21781] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1169.803211][T21781] ? unwind_next_frame+0x3be/0x2090 [ 1169.803246][T21781] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 1169.803284][T21781] is_module_text_address+0x33/0x220 [ 1169.803324][T21781] ? is_module_text_address+0x1f/0x220 [ 1169.803364][T21781] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 1169.803394][T21781] kernel_text_address+0x81/0x100 [ 1169.803419][T21781] __kernel_text_address+0xd/0x30 [ 1169.803444][T21781] unwind_get_return_address+0x59/0xa0 [ 1169.803477][T21781] arch_stack_walk+0xa6/0xf0 [ 1169.803512][T21781] ? mempool_free+0xde/0x130 [ 1169.803551][T21781] stack_trace_save+0x8e/0xc0 [ 1169.803582][T21781] ? __pfx_stack_trace_save+0x10/0x10 [ 1169.803614][T21781] ? __lock_acquire+0x4a5/0x2630 [ 1169.803650][T21781] ? kasan_save_stack+0x30/0x50 [ 1169.803686][T21781] ? kasan_record_aux_stack+0xa7/0xc0 [ 1169.803715][T21781] ? __call_rcu_common.constprop.0+0xa5/0x9b0 [ 1169.803757][T21781] kasan_save_stack+0x30/0x50 [ 1169.803792][T21781] ? kasan_save_stack+0x30/0x50 [ 1169.803826][T21781] ? kasan_save_track+0x14/0x30 [ 1169.803862][T21781] ? __kasan_kmalloc+0xaa/0xb0 [ 1169.803897][T21781] ? kmem_cache_free+0x415/0x690 [ 1169.803927][T21781] ? mempool_free+0xde/0x130 [ 1169.803964][T21781] ? bio_put+0x34f/0x5b0 [ 1169.803989][T21781] ? bio_endio+0x78f/0x8f0 [ 1169.804014][T21781] ? blk_update_request+0x741/0x1380 [ 1169.804046][T21781] ? blk_mq_end_request+0x5b/0x420 [ 1169.804080][T21781] ? blk_mq_complete_request+0x8b/0xb0 [ 1169.804111][T21781] ? null_queue_rq+0xb48/0xfb0 [ 1169.804142][T21781] ? null_queue_rqs+0xe9/0x2f0 [ 1169.804174][T21781] ? __blk_mq_flush_list+0x9a/0xc0 [ 1169.804203][T21781] ? blk_mq_dispatch_queue_requests+0x184/0x7c0 [ 1169.804245][T21781] ? blk_mq_flush_plug_list+0x1f2/0x600 [ 1169.804292][T21781] ? __blk_flush_plug+0x2c4/0x4b0 [ 1169.804328][T21781] ? blk_finish_plug+0x5c/0xa0 [ 1169.804366][T21781] ? blkdev_writepages+0xf6/0x150 [ 1169.804404][T21781] ? do_writepages+0x278/0x600 [ 1169.804428][T21781] ? filemap_writeback+0x22d/0x2e0 [ 1169.804454][T21781] ? filemap_write_and_wait_range+0xa6/0x130 [ 1169.804486][T21781] ? blkdev_flush_mapping+0x9d/0x2e0 [ 1169.804521][T21781] ? blkdev_put_whole+0xc9/0xf0 [ 1169.804554][T21781] ? bdev_release+0x47f/0x6d0 [ 1169.804590][T21781] ? blkdev_release+0x15/0x20 [ 1169.804628][T21781] ? __fput+0x3ff/0xb50 [ 1169.804651][T21781] ? task_work_run+0x150/0x240 [ 1169.804674][T21781] ? do_exit+0x8cf/0x2b50 [ 1169.804710][T21781] ? do_group_exit+0xd5/0x2a0 [ 1169.804748][T21781] ? __x64_sys_exit_group+0x3e/0x50 [ 1169.804788][T21781] ? x64_sys_call+0x102c/0x1530 [ 1169.804821][T21781] ? do_syscall_64+0x10b/0xf80 [ 1169.804854][T21781] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1169.804893][T21781] kasan_save_track+0x14/0x30 [ 1169.804929][T21781] __kasan_kmalloc+0xaa/0xb0 [ 1169.804965][T21781] kmem_cache_free+0x415/0x690 [ 1169.804995][T21781] ? do_raw_spin_lock+0x128/0x260 [ 1169.805021][T21781] ? __pfx_mempool_free_slab+0x10/0x10 [ 1169.805062][T21781] mempool_free+0xde/0x130 [ 1169.805101][T21781] ? __pfx_mempool_free+0x10/0x10 [ 1169.805139][T21781] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 1169.805171][T21781] ? lockdep_hardirqs_on+0x78/0x100 [ 1169.805204][T21781] ? bio_uninit+0x116/0x160 [ 1169.805229][T21781] ? bio_free+0x105/0x2c0 [ 1169.805254][T21781] ? __pfx_end_bio_bh_io_sync+0x10/0x10 [ 1169.805286][T21781] bio_put+0x34f/0x5b0 [ 1169.805311][T21781] ? __pfx_end_bio_bh_io_sync+0x10/0x10 [ 1169.805337][T21781] bio_endio+0x78f/0x8f0 [ 1169.805364][T21781] blk_update_request+0x741/0x1380 [ 1169.805403][T21781] blk_mq_end_request+0x5b/0x420 [ 1169.805439][T21781] blk_mq_complete_request+0x8b/0xb0 [ 1169.805471][T21781] null_queue_rq+0xb48/0xfb0 [ 1169.805507][T21781] null_queue_rqs+0xe9/0x2f0 [ 1169.805540][T21781] ? __pfx_null_queue_rqs+0x10/0x10 [ 1169.805578][T21781] __blk_mq_flush_list+0x9a/0xc0 [ 1169.805609][T21781] blk_mq_dispatch_queue_requests+0x184/0x7c0 [ 1169.805655][T21781] blk_mq_flush_plug_list+0x1f2/0x600 [ 1169.805700][T21781] ? __pfx_blk_mq_flush_plug_list+0x10/0x10 [ 1169.805743][T21781] ? folios_put_refs+0x66d/0x840 [ 1169.805782][T21781] __blk_flush_plug+0x2c4/0x4b0 [ 1169.805820][T21781] ? __pfx___might_resched+0x10/0x10 [ 1169.805847][T21781] ? __pfx___blk_flush_plug+0x10/0x10 [ 1169.805886][T21781] ? writeback_iter+0x62d/0x1370 [ 1169.805929][T21781] blk_finish_plug+0x5c/0xa0 [ 1169.805966][T21781] blkdev_writepages+0xf6/0x150 [ 1169.806006][T21781] ? __pfx_blkdev_writepages+0x10/0x10 [ 1169.806045][T21781] ? __lock_acquire+0x4a5/0x2630 [ 1169.806089][T21781] ? __pfx_blkdev_writepages+0x10/0x10 [ 1169.806131][T21781] do_writepages+0x278/0x600 [ 1169.806158][T21781] ? __pfx_do_writepages+0x10/0x10 [ 1169.806183][T21781] ? do_raw_spin_unlock+0x145/0x1e0 [ 1169.806210][T21781] ? _raw_spin_unlock+0x28/0x50 [ 1169.806240][T21781] filemap_writeback+0x22d/0x2e0 [ 1169.806273][T21781] ? __pfx_filemap_writeback+0x10/0x10 [ 1169.806316][T21781] ? __pfx___mutex_lock+0x10/0x10 [ 1169.806358][T21781] filemap_write_and_wait_range+0xa6/0x130 [ 1169.806392][T21781] blkdev_flush_mapping+0x9d/0x2e0 [ 1169.806431][T21781] blkdev_put_whole+0xc9/0xf0 [ 1169.806465][T21781] bdev_release+0x47f/0x6d0 [ 1169.806505][T21781] ? __pfx_blkdev_release+0x10/0x10 [ 1169.806544][T21781] blkdev_release+0x15/0x20 [ 1169.806582][T21781] __fput+0x3ff/0xb50 [ 1169.806610][T21781] task_work_run+0x150/0x240 [ 1169.806634][T21781] ? __pfx_task_work_run+0x10/0x10 [ 1169.806677][T21781] ? do_raw_spin_unlock+0x145/0x1e0 [ 1169.806706][T21781] do_exit+0x8cf/0x2b50 [ 1169.806744][T21781] ? preempt_schedule_thunk+0x16/0x30 [ 1169.806783][T21781] ? __pfx_do_exit+0x10/0x10 [ 1169.806819][T21781] ? preempt_schedule_thunk+0x16/0x30 [ 1169.806860][T21781] do_group_exit+0xd5/0x2a0 [ 1169.806900][T21781] __x64_sys_exit_group+0x3e/0x50 [ 1169.806940][T21781] x64_sys_call+0x102c/0x1530 [ 1169.806972][T21781] do_syscall_64+0x10b/0xf80 [ 1169.807006][T21781] ? clear_bhb_loop+0x40/0x90 [ 1169.807036][T21781] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1169.807063][T21781] RIP: 0033:0x7f8548b9c819 [ 1169.807083][T21781] Code: Unable to access opcode bytes at 0x7f8548b9c7ef. [ 1169.807096][T21781] RSP: 002b:00007fff97ee0a98 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 1169.807120][T21781] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f8548b9c819 [ 1169.807138][T21781] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000 [ 1169.807154][T21781] RBP: 00007fff97ee0afc R08: 0000000000000000 R09: 00000000000927c0 [ 1169.807171][T21781] R10: 0000000000000006 R11: 0000000000000246 R12: 00000000000000ce [ 1169.807187][T21781] R13: 00000000000927c0 R14: 000000000011cc7e R15: 00007fff97ee0b50 [ 1169.807213][T21781] [ 1171.760502][T21781] debug_locks && !(lock_is_held(&(__rq_lockp(rq))->dep_map) != 0) [ 1171.760521][T21781] WARNING: kernel/sched/sched.h:1606 at update_rq_clock+0x40a/0xd20, CPU#0: syz.0.3216/21781 [ 1171.778480][T21781] Modules linked in: [ 1171.782471][T21781] CPU: 0 UID: 0 PID: 21781 Comm: syz.0.3216 Not tainted syzkaller #0 PREEMPT(full) [ 1171.791849][T21781] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1171.801906][T21781] RIP: 0010:update_rq_clock+0x40a/0xd20 [ 1171.807470][T21781] Code: ab 88 0b 00 00 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e 41 5f e9 d8 cd c0 09 a8 04 0f 84 df fc ff ff 90 0f 0b 90 e9 d6 fc ff ff 90 <0f> 0b 90 e9 92 fc ff ff 4c 8d 83 80 0b 00 00 48 b8 00 00 00 00 00 [ 1171.827171][T21781] RSP: 0018:ffffc90003686b08 EFLAGS: 00010046 [ 1171.833242][T21781] RAX: 0000000000000000 RBX: ffff8880b853b380 RCX: 0000000000000001 [ 1171.841225][T21781] RDX: 0000000000000046 RSI: ffffffff8df0e9a7 RDI: ffffffff8c1b4e60 [ 1171.849209][T21781] RBP: ffffc90003686cb8 R08: 0000000000000001 R09: 0000000000000001 [ 1171.857197][T21781] R10: ffffffff90dac717 R11: 0000000000000000 R12: ffffffff90dafaa4 [ 1171.865187][T21781] R13: ffff8880b853c220 R14: ffff88801e6a1ec0 R15: ffff8880b853b380 [ 1171.873181][T21781] FS: 0000000000000000(0000) GS:ffff888124314000(0000) knlGS:0000000000000000 [ 1171.882205][T21781] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1171.888796][T21781] CR2: 00002000000cf000 CR3: 0000000075b6c000 CR4: 00000000003526f0 [ 1171.896790][T21781] Call Trace: [ 1171.900067][T21781] [ 1171.903000][T21781] __schedule+0x1cd8/0x6820 [ 1171.907535][T21781] ? __pfx___schedule+0x10/0x10 [ 1171.912396][T21781] ? mark_held_locks+0x40/0x70 [ 1171.917178][T21781] preempt_schedule_irq+0x50/0x90 [ 1171.922221][T21781] irqentry_exit+0x1fe/0x790 [ 1171.926836][T21781] asm_sysvec_reschedule_ipi+0x1a/0x20 [ 1171.932311][T21781] RIP: 0010:lock_acquire+0x5e/0x370 [ 1171.937526][T21781] Code: 05 3b 3a 2c 12 83 f8 07 0f 87 d9 02 00 00 48 0f a3 05 06 41 f6 0e 0f 82 a4 02 00 00 8b 35 8e 74 f6 0e 85 f6 0f 85 bf 00 00 00 <48> 8b 44 24 30 65 48 2b 05 dd 39 2c 12 0f 85 ed 02 00 00 48 83 c4 [ 1171.957148][T21781] RSP: 0018:ffffc90003686dc8 EFLAGS: 00000206 [ 1171.963222][T21781] RAX: 0000000000000046 RBX: 0000000000000000 RCX: 0000000000000002 [ 1171.971193][T21781] RDX: 0000000000000000 RSI: ffffffff8df0e9a7 RDI: ffffffff8c1b4e60 [ 1171.979250][T21781] RBP: ffffffff8e7e70a0 R08: 00000000f10cf92a R09: 0000000000000007 [ 1171.987308][T21781] R10: 0000000000000200 R11: 0000000000000000 R12: 0000000000000002 [ 1171.995280][T21781] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1172.003263][T21781] ? unwind_next_frame+0x3be/0x2090 [ 1172.008478][T21781] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 1172.014652][T21781] is_module_text_address+0x33/0x220 [ 1172.019960][T21781] ? is_module_text_address+0x1f/0x220 [ 1172.025452][T21781] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 1172.031626][T21781] kernel_text_address+0x81/0x100 [ 1172.036669][T21781] __kernel_text_address+0xd/0x30 [ 1172.041698][T21781] unwind_get_return_address+0x59/0xa0 [ 1172.047170][T21781] arch_stack_walk+0xa6/0xf0 [ 1172.051782][T21781] ? mempool_free+0xde/0x130 [ 1172.056401][T21781] stack_trace_save+0x8e/0xc0 [ 1172.061086][T21781] ? __pfx_stack_trace_save+0x10/0x10 [ 1172.066483][T21781] ? __lock_acquire+0x4a5/0x2630 [ 1172.071444][T21781] ? kasan_save_stack+0x30/0x50 [ 1172.076308][T21781] ? kasan_record_aux_stack+0xa7/0xc0 [ 1172.081688][T21781] ? __call_rcu_common.constprop.0+0xa5/0x9b0 [ 1172.087775][T21781] kasan_save_stack+0x30/0x50 [ 1172.092491][T21781] ? kasan_save_stack+0x30/0x50 [ 1172.097359][T21781] ? kasan_save_track+0x14/0x30 [ 1172.102223][T21781] ? __kasan_kmalloc+0xaa/0xb0 [ 1172.107003][T21781] ? kmem_cache_free+0x415/0x690 [ 1172.111949][T21781] ? mempool_free+0xde/0x130 [ 1172.116589][T21781] ? bio_put+0x34f/0x5b0 [ 1172.120840][T21781] ? bio_endio+0x78f/0x8f0 [ 1172.125257][T21781] ? blk_update_request+0x741/0x1380 [ 1172.130553][T21781] ? blk_mq_end_request+0x5b/0x420 [ 1172.135676][T21781] ? blk_mq_complete_request+0x8b/0xb0 [ 1172.141145][T21781] ? null_queue_rq+0xb48/0xfb0 [ 1172.145920][T21781] ? null_queue_rqs+0xe9/0x2f0 [ 1172.150695][T21781] ? __blk_mq_flush_list+0x9a/0xc0 [ 1172.155817][T21781] ? blk_mq_dispatch_queue_requests+0x184/0x7c0 [ 1172.162199][T21781] ? blk_mq_flush_plug_list+0x1f2/0x600 [ 1172.167852][T21781] ? __blk_flush_plug+0x2c4/0x4b0 [ 1172.172982][T21781] ? blk_finish_plug+0x5c/0xa0 [ 1172.177822][T21781] ? blkdev_writepages+0xf6/0x150 [ 1172.182866][T21781] ? do_writepages+0x278/0x600 [ 1172.187640][T21781] ? filemap_writeback+0x22d/0x2e0 [ 1172.192773][T21781] ? filemap_write_and_wait_range+0xa6/0x130 [ 1172.198784][T21781] ? blkdev_flush_mapping+0x9d/0x2e0 [ 1172.204180][T21781] ? blkdev_put_whole+0xc9/0xf0 [ 1172.209237][T21781] ? bdev_release+0x47f/0x6d0 [ 1172.213990][T21781] ? blkdev_release+0x15/0x20 [ 1172.218700][T21781] ? __fput+0x3ff/0xb50 [ 1172.222970][T21781] ? task_work_run+0x150/0x240 [ 1172.227749][T21781] ? do_exit+0x8cf/0x2b50 [ 1172.232100][T21781] ? do_group_exit+0xd5/0x2a0 [ 1172.236799][T21781] ? __x64_sys_exit_group+0x3e/0x50 [ 1172.242065][T21781] ? x64_sys_call+0x102c/0x1530 [ 1172.246927][T21781] ? do_syscall_64+0x10b/0xf80 [ 1172.251707][T21781] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1172.257796][T21781] kasan_save_track+0x14/0x30 [ 1172.262575][T21781] __kasan_kmalloc+0xaa/0xb0 [ 1172.267181][T21781] kmem_cache_free+0x415/0x690 [ 1172.271956][T21781] ? do_raw_spin_lock+0x128/0x260 [ 1172.276986][T21781] ? __pfx_mempool_free_slab+0x10/0x10 [ 1172.282472][T21781] mempool_free+0xde/0x130 [ 1172.286909][T21781] ? __pfx_mempool_free+0x10/0x10 [ 1172.291959][T21781] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 1172.297866][T21781] ? lockdep_hardirqs_on+0x78/0x100 [ 1172.303265][T21781] ? bio_uninit+0x116/0x160 [ 1172.307772][T21781] ? bio_free+0x105/0x2c0 [ 1172.312122][T21781] ? __pfx_end_bio_bh_io_sync+0x10/0x10 [ 1172.317691][T21781] bio_put+0x34f/0x5b0 [ 1172.321865][T21781] ? __pfx_end_bio_bh_io_sync+0x10/0x10 [ 1172.327429][T21781] bio_endio+0x78f/0x8f0 [ 1172.331692][T21781] blk_update_request+0x741/0x1380 [ 1172.336834][T21781] blk_mq_end_request+0x5b/0x420 [ 1172.341791][T21781] blk_mq_complete_request+0x8b/0xb0 [ 1172.347221][T21781] null_queue_rq+0xb48/0xfb0 [ 1172.351836][T21781] null_queue_rqs+0xe9/0x2f0 [ 1172.356440][T21781] ? __pfx_null_queue_rqs+0x10/0x10 [ 1172.361655][T21781] __blk_mq_flush_list+0x9a/0xc0 [ 1172.366606][T21781] blk_mq_dispatch_queue_requests+0x184/0x7c0 [ 1172.372698][T21781] blk_mq_flush_plug_list+0x1f2/0x600 [ 1172.378111][T21781] ? __pfx_blk_mq_flush_plug_list+0x10/0x10 [ 1172.384303][T21781] ? folios_put_refs+0x66d/0x840 [ 1172.389274][T21781] __blk_flush_plug+0x2c4/0x4b0 [ 1172.394154][T21781] ? __pfx___might_resched+0x10/0x10 [ 1172.399450][T21781] ? __pfx___blk_flush_plug+0x10/0x10 [ 1172.404883][T21781] ? writeback_iter+0x62d/0x1370 [ 1172.409860][T21781] blk_finish_plug+0x5c/0xa0 [ 1172.414487][T21781] blkdev_writepages+0xf6/0x150 [ 1172.419373][T21781] ? __pfx_blkdev_writepages+0x10/0x10 [ 1172.424865][T21781] ? __lock_acquire+0x4a5/0x2630 [ 1172.429841][T21781] ? __pfx_blkdev_writepages+0x10/0x10 [ 1172.435322][T21781] do_writepages+0x278/0x600 [ 1172.440023][T21781] ? __pfx_do_writepages+0x10/0x10 [ 1172.445143][T21781] ? do_raw_spin_unlock+0x145/0x1e0 [ 1172.450350][T21781] ? _raw_spin_unlock+0x28/0x50 [ 1172.455213][T21781] filemap_writeback+0x22d/0x2e0 [ 1172.460157][T21781] ? __pfx_filemap_writeback+0x10/0x10 [ 1172.465643][T21781] ? __pfx___mutex_lock+0x10/0x10 [ 1172.470690][T21781] filemap_write_and_wait_range+0xa6/0x130 [ 1172.476514][T21781] blkdev_flush_mapping+0x9d/0x2e0 [ 1172.481715][T21781] blkdev_put_whole+0xc9/0xf0 [ 1172.486409][T21781] bdev_release+0x47f/0x6d0 [ 1172.490928][T21781] ? __pfx_blkdev_release+0x10/0x10 [ 1172.496149][T21781] blkdev_release+0x15/0x20 [ 1172.500674][T21781] __fput+0x3ff/0xb50 [ 1172.504670][T21781] task_work_run+0x150/0x240 [ 1172.509266][T21781] ? __pfx_task_work_run+0x10/0x10 [ 1172.514402][T21781] ? do_raw_spin_unlock+0x145/0x1e0 [ 1172.519609][T21781] do_exit+0x8cf/0x2b50 [ 1172.523785][T21781] ? preempt_schedule_thunk+0x16/0x30 [ 1172.529182][T21781] ? __pfx_do_exit+0x10/0x10 [ 1172.533788][T21781] ? preempt_schedule_thunk+0x16/0x30 [ 1172.539181][T21781] do_group_exit+0xd5/0x2a0 [ 1172.543704][T21781] __x64_sys_exit_group+0x3e/0x50 [ 1172.548842][T21781] x64_sys_call+0x102c/0x1530 [ 1172.553535][T21781] do_syscall_64+0x10b/0xf80 [ 1172.558140][T21781] ? clear_bhb_loop+0x40/0x90 [ 1172.562832][T21781] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1172.568822][T21781] RIP: 0033:0x7f8548b9c819 [ 1172.573262][T21781] Code: Unable to access opcode bytes at 0x7f8548b9c7ef. [ 1172.580291][T21781] RSP: 002b:00007fff97ee0a98 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 1172.588725][T21781] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f8548b9c819 [ 1172.596709][T21781] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000 [ 1172.604686][T21781] RBP: 00007fff97ee0afc R08: 0000000000000000 R09: 00000000000927c0 [ 1172.612658][T21781] R10: 0000000000000006 R11: 0000000000000246 R12: 00000000000000ce [ 1172.620641][T21781] R13: 00000000000927c0 R14: 000000000011cc7e R15: 00007fff97ee0b50 [ 1172.628629][T21781] [ 1172.631659][T21781] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 1172.638957][T21781] CPU: 0 UID: 0 PID: 21781 Comm: syz.0.3216 Not tainted syzkaller #0 PREEMPT(full) [ 1172.648339][T21781] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1172.658406][T21781] Call Trace: [ 1172.661717][T21781] [ 1172.664649][T21781] dump_stack_lvl+0x100/0x190 [ 1172.669361][T21781] vpanic+0x552/0x970 [ 1172.673359][T21781] ? __pfx_vpanic+0x10/0x10 [ 1172.677871][T21781] ? lock_release+0x245/0x310 [ 1172.682585][T21781] panic+0xd1/0xe0 [ 1172.686402][T21781] ? __pfx_panic+0x10/0x10 [ 1172.690837][T21781] ? check_panic_on_warn+0x1f/0x90 [ 1172.695974][T21781] check_panic_on_warn.cold+0x19/0x34 [ 1172.701366][T21781] ? update_rq_clock+0x40a/0xd20 [ 1172.706320][T21781] __warn.cold+0x191/0x328 [ 1172.710745][T21781] __report_bug+0x296/0x3d0 [ 1172.715279][T21781] ? update_rq_clock+0x40a/0xd20 [ 1172.720247][T21781] ? __pfx___report_bug+0x10/0x10 [ 1172.725299][T21781] ? update_rq_clock+0x40a/0xd20 [ 1172.730249][T21781] report_bug+0xb2/0x220 [ 1172.734508][T21781] ? update_rq_clock+0x40a/0xd20 [ 1172.739455][T21781] handle_bug+0x16a/0x2a0 [ 1172.743806][T21781] exc_invalid_op+0x17/0x50 [ 1172.748332][T21781] asm_exc_invalid_op+0x1a/0x20 [ 1172.753201][T21781] RIP: 0010:update_rq_clock+0x40a/0xd20 [ 1172.758769][T21781] Code: ab 88 0b 00 00 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e 41 5f e9 d8 cd c0 09 a8 04 0f 84 df fc ff ff 90 0f 0b 90 e9 d6 fc ff ff 90 <0f> 0b 90 e9 92 fc ff ff 4c 8d 83 80 0b 00 00 48 b8 00 00 00 00 00 [ 1172.778386][T21781] RSP: 0018:ffffc90003686b08 EFLAGS: 00010046 [ 1172.784461][T21781] RAX: 0000000000000000 RBX: ffff8880b853b380 RCX: 0000000000000001 [ 1172.792444][T21781] RDX: 0000000000000046 RSI: ffffffff8df0e9a7 RDI: ffffffff8c1b4e60 [ 1172.800433][T21781] RBP: ffffc90003686cb8 R08: 0000000000000001 R09: 0000000000000001 [ 1172.808415][T21781] R10: ffffffff90dac717 R11: 0000000000000000 R12: ffffffff90dafaa4 [ 1172.816402][T21781] R13: ffff8880b853c220 R14: ffff88801e6a1ec0 R15: ffff8880b853b380 [ 1172.824404][T21781] ? update_rq_clock+0x9c/0xd20 [ 1172.829276][T21781] __schedule+0x1cd8/0x6820 [ 1172.833814][T21781] ? __pfx___schedule+0x10/0x10 [ 1172.838677][T21781] ? mark_held_locks+0x40/0x70 [ 1172.843476][T21781] preempt_schedule_irq+0x50/0x90 [ 1172.848530][T21781] irqentry_exit+0x1fe/0x790 [ 1172.853146][T21781] asm_sysvec_reschedule_ipi+0x1a/0x20 [ 1172.858636][T21781] RIP: 0010:lock_acquire+0x5e/0x370 [ 1172.863881][T21781] Code: 05 3b 3a 2c 12 83 f8 07 0f 87 d9 02 00 00 48 0f a3 05 06 41 f6 0e 0f 82 a4 02 00 00 8b 35 8e 74 f6 0e 85 f6 0f 85 bf 00 00 00 <48> 8b 44 24 30 65 48 2b 05 dd 39 2c 12 0f 85 ed 02 00 00 48 83 c4 [ 1172.883594][T21781] RSP: 0018:ffffc90003686dc8 EFLAGS: 00000206 [ 1172.889757][T21781] RAX: 0000000000000046 RBX: 0000000000000000 RCX: 0000000000000002 [ 1172.897733][T21781] RDX: 0000000000000000 RSI: ffffffff8df0e9a7 RDI: ffffffff8c1b4e60 [ 1172.905709][T21781] RBP: ffffffff8e7e70a0 R08: 00000000f10cf92a R09: 0000000000000007 [ 1172.913698][T21781] R10: 0000000000000200 R11: 0000000000000000 R12: 0000000000000002 [ 1172.921694][T21781] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1172.929691][T21781] ? unwind_next_frame+0x3be/0x2090 [ 1172.934930][T21781] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 1172.941107][T21781] is_module_text_address+0x33/0x220 [ 1172.946422][T21781] ? is_module_text_address+0x1f/0x220 [ 1172.951934][T21781] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 1172.958156][T21781] kernel_text_address+0x81/0x100 [ 1172.963201][T21781] __kernel_text_address+0xd/0x30 [ 1172.968233][T21781] unwind_get_return_address+0x59/0xa0 [ 1172.973802][T21781] arch_stack_walk+0xa6/0xf0 [ 1172.978411][T21781] ? mempool_free+0xde/0x130 [ 1172.983035][T21781] stack_trace_save+0x8e/0xc0 [ 1172.987744][T21781] ? __pfx_stack_trace_save+0x10/0x10 [ 1172.993139][T21781] ? __lock_acquire+0x4a5/0x2630 [ 1172.998106][T21781] ? kasan_save_stack+0x30/0x50 [ 1173.002981][T21781] ? kasan_record_aux_stack+0xa7/0xc0 [ 1173.008375][T21781] ? __call_rcu_common.constprop.0+0xa5/0x9b0 [ 1173.014464][T21781] kasan_save_stack+0x30/0x50 [ 1173.019169][T21781] ? kasan_save_stack+0x30/0x50 [ 1173.024064][T21781] ? kasan_save_track+0x14/0x30 [ 1173.028929][T21781] ? __kasan_kmalloc+0xaa/0xb0 [ 1173.033705][T21781] ? kmem_cache_free+0x415/0x690 [ 1173.038656][T21781] ? mempool_free+0xde/0x130 [ 1173.043266][T21781] ? bio_put+0x34f/0x5b0 [ 1173.047516][T21781] ? bio_endio+0x78f/0x8f0 [ 1173.051943][T21781] ? blk_update_request+0x741/0x1380 [ 1173.057329][T21781] ? blk_mq_end_request+0x5b/0x420 [ 1173.062463][T21781] ? blk_mq_complete_request+0x8b/0xb0 [ 1173.067933][T21781] ? null_queue_rq+0xb48/0xfb0 [ 1173.072714][T21781] ? null_queue_rqs+0xe9/0x2f0 [ 1173.077576][T21781] ? __blk_mq_flush_list+0x9a/0xc0 [ 1173.082700][T21781] ? blk_mq_dispatch_queue_requests+0x184/0x7c0 [ 1173.088970][T21781] ? blk_mq_flush_plug_list+0x1f2/0x600 [ 1173.094541][T21781] ? __blk_flush_plug+0x2c4/0x4b0 [ 1173.099701][T21781] ? blk_finish_plug+0x5c/0xa0 [ 1173.104485][T21781] ? blkdev_writepages+0xf6/0x150 [ 1173.109528][T21781] ? do_writepages+0x278/0x600 [ 1173.114297][T21781] ? filemap_writeback+0x22d/0x2e0 [ 1173.119412][T21781] ? filemap_write_and_wait_range+0xa6/0x130 [ 1173.125404][T21781] ? blkdev_flush_mapping+0x9d/0x2e0 [ 1173.130704][T21781] ? blkdev_put_whole+0xc9/0xf0 [ 1173.135567][T21781] ? bdev_release+0x47f/0x6d0 [ 1173.140261][T21781] ? blkdev_release+0x15/0x20 [ 1173.144966][T21781] ? __fput+0x3ff/0xb50 [ 1173.149216][T21781] ? task_work_run+0x150/0x240 [ 1173.153986][T21781] ? do_exit+0x8cf/0x2b50 [ 1173.158330][T21781] ? do_group_exit+0xd5/0x2a0 [ 1173.163026][T21781] ? __x64_sys_exit_group+0x3e/0x50 [ 1173.168341][T21781] ? x64_sys_call+0x102c/0x1530 [ 1173.173223][T21781] ? do_syscall_64+0x10b/0xf80 [ 1173.178020][T21781] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1173.184119][T21781] kasan_save_track+0x14/0x30 [ 1173.188830][T21781] __kasan_kmalloc+0xaa/0xb0 [ 1173.193447][T21781] kmem_cache_free+0x415/0x690 [ 1173.198261][T21781] ? do_raw_spin_lock+0x128/0x260 [ 1173.203301][T21781] ? __pfx_mempool_free_slab+0x10/0x10 [ 1173.208794][T21781] mempool_free+0xde/0x130 [ 1173.213251][T21781] ? __pfx_mempool_free+0x10/0x10 [ 1173.218302][T21781] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 1173.224131][T21781] ? lockdep_hardirqs_on+0x78/0x100 [ 1173.229363][T21781] ? bio_uninit+0x116/0x160 [ 1173.233897][T21781] ? bio_free+0x105/0x2c0 [ 1173.238274][T21781] ? __pfx_end_bio_bh_io_sync+0x10/0x10 [ 1173.243843][T21781] bio_put+0x34f/0x5b0 [ 1173.247966][T21781] ? __pfx_end_bio_bh_io_sync+0x10/0x10 [ 1173.253520][T21781] bio_endio+0x78f/0x8f0 [ 1173.257772][T21781] blk_update_request+0x741/0x1380 [ 1173.262907][T21781] blk_mq_end_request+0x5b/0x420 [ 1173.267862][T21781] blk_mq_complete_request+0x8b/0xb0 [ 1173.273165][T21781] null_queue_rq+0xb48/0xfb0 [ 1173.277777][T21781] null_queue_rqs+0xe9/0x2f0 [ 1173.282380][T21781] ? __pfx_null_queue_rqs+0x10/0x10 [ 1173.287594][T21781] __blk_mq_flush_list+0x9a/0xc0 [ 1173.292554][T21781] blk_mq_dispatch_queue_requests+0x184/0x7c0 [ 1173.298655][T21781] blk_mq_flush_plug_list+0x1f2/0x600 [ 1173.304141][T21781] ? __pfx_blk_mq_flush_plug_list+0x10/0x10 [ 1173.310054][T21781] ? folios_put_refs+0x66d/0x840 [ 1173.315008][T21781] __blk_flush_plug+0x2c4/0x4b0 [ 1173.319885][T21781] ? __pfx___might_resched+0x10/0x10 [ 1173.325176][T21781] ? __pfx___blk_flush_plug+0x10/0x10 [ 1173.330569][T21781] ? writeback_iter+0x62d/0x1370 [ 1173.335528][T21781] blk_finish_plug+0x5c/0xa0 [ 1173.340224][T21781] blkdev_writepages+0xf6/0x150 [ 1173.345098][T21781] ? __pfx_blkdev_writepages+0x10/0x10 [ 1173.350576][T21781] ? __lock_acquire+0x4a5/0x2630 [ 1173.355536][T21781] ? __pfx_blkdev_writepages+0x10/0x10 [ 1173.361017][T21781] do_writepages+0x278/0x600 [ 1173.365613][T21781] ? __pfx_do_writepages+0x10/0x10 [ 1173.370727][T21781] ? do_raw_spin_unlock+0x145/0x1e0 [ 1173.375940][T21781] ? _raw_spin_unlock+0x28/0x50 [ 1173.380814][T21781] filemap_writeback+0x22d/0x2e0 [ 1173.385766][T21781] ? __pfx_filemap_writeback+0x10/0x10 [ 1173.391333][T21781] ? __pfx___mutex_lock+0x10/0x10 [ 1173.396380][T21781] filemap_write_and_wait_range+0xa6/0x130 [ 1173.402226][T21781] blkdev_flush_mapping+0x9d/0x2e0 [ 1173.407381][T21781] blkdev_put_whole+0xc9/0xf0 [ 1173.412087][T21781] bdev_release+0x47f/0x6d0 [ 1173.416620][T21781] ? __pfx_blkdev_release+0x10/0x10 [ 1173.421848][T21781] blkdev_release+0x15/0x20 [ 1173.426384][T21781] __fput+0x3ff/0xb50 [ 1173.430383][T21781] task_work_run+0x150/0x240 [ 1173.434981][T21781] ? __pfx_task_work_run+0x10/0x10 [ 1173.440116][T21781] ? do_raw_spin_unlock+0x145/0x1e0 [ 1173.445334][T21781] do_exit+0x8cf/0x2b50 [ 1173.449531][T21781] ? preempt_schedule_thunk+0x16/0x30 [ 1173.454925][T21781] ? __pfx_do_exit+0x10/0x10 [ 1173.459534][T21781] ? preempt_schedule_thunk+0x16/0x30 [ 1173.464929][T21781] do_group_exit+0xd5/0x2a0 [ 1173.469457][T21781] __x64_sys_exit_group+0x3e/0x50 [ 1173.474504][T21781] x64_sys_call+0x102c/0x1530 [ 1173.479195][T21781] do_syscall_64+0x10b/0xf80 [ 1173.483803][T21781] ? clear_bhb_loop+0x40/0x90 [ 1173.488493][T21781] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1173.494398][T21781] RIP: 0033:0x7f8548b9c819 [ 1173.498821][T21781] Code: Unable to access opcode bytes at 0x7f8548b9c7ef. [ 1173.505864][T21781] RSP: 002b:00007fff97ee0a98 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 1173.514293][T21781] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f8548b9c819 [ 1173.522267][T21781] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000 [ 1173.530244][T21781] RBP: 00007fff97ee0afc R08: 0000000000000000 R09: 00000000000927c0 [ 1173.538219][T21781] R10: 0000000000000006 R11: 0000000000000246 R12: 00000000000000ce [ 1173.546279][T21781] R13: 00000000000927c0 R14: 000000000011cc7e R15: 00007fff97ee0b50 [ 1173.554267][T21781] [ 1173.557642][T21781] Kernel Offset: disabled [ 1173.561984][T21781] Rebooting in 86400 seconds..