last executing test programs: 55.862600633s ago: executing program 3 (id=2544): memfd_secret$auto(0x0) socket(0xa, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x801, 0x84) r0 = socket(0x18, 0x5, 0x1) connect$auto(r0, 0x0, 0x3a) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0x9, 0x40, 0x8000000008012, 0x3, 0x8000) 55.594241912s ago: executing program 3 (id=2546): socket(0x10, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/trace_pipe\x00', 0x20c01, 0x0) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/net/dev_snmp6/veth0_virt_wifi\x00', 0x200000, 0x0) openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcsu\x00', 0x108002, 0x0) close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x2) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x8, 0xd, 0x7d48, 0x948b, 0x4, 0x15f4da0c, 0x1, 0x3, 0x0, 0x80000001, 0x7, 0x4, 0x5, 0x2, 0x1]}, 0x0) 55.310147606s ago: executing program 3 (id=2548): r0 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/mountinfo\x00', 0xe0000, 0x0) openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000001b40)='/dev/cuse\x00', 0x40, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0x40000000000002e}, 0x8000040000000001) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) ioctl$auto_PPPIOCSMRU(r0, 0xc004743e, 0x0) ioctl$auto_PPPIOCSPASS(r0, 0x40107447, &(0x7f00000000c0)={0x9, &(0x7f0000000000)={0x64, 0xff, 0x0, @raw=0xfffff020}}) 55.118131807s ago: executing program 3 (id=2551): close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x3, 0x6) lsm_list_modules$auto(0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x401c5820, 0x0) mkdir$auto(0x0, 0x353) 54.689380575s ago: executing program 3 (id=2556): close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2020009, 0x4000000000000003, 0xeb1, 0xfffffffffffffffa, 0x8000) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) bpf$auto(0x5, &(0x7f0000000300)=@bpf_attr_3={0x6, 0x24, 0xf, 0x63, 0x400, 0x0, 0xffffffffffffffff, 0x80f0c8, 0x60, "38c1d5cbcb9f6b5e511f0cd8ed068f65", 0x0, 0x113e33f2, 0xffffffffffffffff, 0xe4, 0x6, 0x5, 0x6, 0x8, 0x0, 0x3, @attach_prog_fd, 0x6, 0xffff, 0x8, 0x0, 0xfffffffe}, 0x47) r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) write$auto(r0, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) kexec_load$auto(0x5, 0x4, 0x0, 0x2) socket(0x18, 0x5, 0x1) 53.446575189s ago: executing program 3 (id=2561): sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000) bpf$auto(0x1, &(0x7f0000000000)=@batch={0xfffffffffffffffb, 0x44, 0x4, 0x9, 0x4, 0xffffffffffffffff, 0x2, 0x8}, 0x100000cf) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x29, 0x2, 0x0) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200"], 0x1ac}}, 0x40000) recvmmsg$auto(r1, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0) ioctl$auto(r0, 0x8924, 0x24) 52.929974601s ago: executing program 32 (id=2561): sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000) bpf$auto(0x1, &(0x7f0000000000)=@batch={0xfffffffffffffffb, 0x44, 0x4, 0x9, 0x4, 0xffffffffffffffff, 0x2, 0x8}, 0x100000cf) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x29, 0x2, 0x0) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200"], 0x1ac}}, 0x40000) recvmmsg$auto(r1, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0) ioctl$auto(r0, 0x8924, 0x24) 3.037086489s ago: executing program 4 (id=2847): close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80802, 0x0) io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xfffffeff, 0x2, 0x6, 0x7, 0x400, 0xffffffffffffffff, [0x5, 0x101], {0x6, 0x6, 0xf, 0x29f, 0x1, 0x5, 0x3, 0x4, 0x2}, {0xff, 0x401, 0x4f, 0x9, 0x4cd, 0x20000041, 0x7fffffff, 0x7, 0x8}}) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_SMC_NETLINK_DISABLE_SEID(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1], 0x14}, 0x1, 0x0, 0x0, 0x880}, 0x810) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f0000000180), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) sendfile$auto(0x1, 0x3, 0x0, 0x7ff) 2.85242467s ago: executing program 4 (id=2849): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0) r0 = io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3) mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000) bpf$auto_BPF_TASK_FD_QUERY(0x14, &(0x7f0000001240)=@task_fd_query={0x0, 0xffffffffffffffff, 0x1, 0x1568, 0x6, 0x15aa, r0, 0x4, 0xf}, 0x3) semctl$auto_SEM_INFO(0x0, 0xfffffffd, 0x13, 0x1) 2.756049173s ago: executing program 0 (id=2850): r0 = landlock_create_ruleset$auto(&(0x7f0000000140)={0xdaa0, 0x1, 0x9}, 0x9, 0x0) landlock_restrict_self$auto(r0, 0x3) syz_clone3(&(0x7f0000000200)={0x186800080, 0x0, 0x0, 0x0, {0x1a}, 0x0, 0x0, 0x0, 0x0}, 0x58) r1 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(r1, 0xfffffffffffff000, 0x2) landlock_create_ruleset$auto(&(0x7f0000000000)={0x0, 0x401, 0x7}, 0x9, 0x0) landlock_restrict_self$auto(r1, 0x2) kill$auto(0x0, 0x21) 2.578636854s ago: executing program 2 (id=2852): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8000, 0x0) io_uring_setup$auto(0x6, 0x0) r0 = socket(0xa, 0x801, 0x84) mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000) lsm_list_modules$auto(0x0, 0x0, 0x0) getsockopt$auto(r0, 0x84, 0x71, 0x0, 0x0) io_uring_register$auto(0x2, 0xd, 0x0, 0x20) 2.403350858s ago: executing program 2 (id=2853): r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x109401, 0x0) socket(0xa, 0x1, 0x84) epoll_create$auto(0x4) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x2200, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x8, 0xfffffffffffffffe]}, 0x0) ioctl$auto(r0, 0x540a, r0) 2.365583475s ago: executing program 0 (id=2854): close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) sendmsg$auto_TASKSTATS_CMD_GET(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)={0x14, 0x0, 0xa05, 0x70bd2b, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x44000}, 0x20000000) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto_KVM_GET_MSRS(r0, 0x4068aea3, &(0x7f0000000080)={0xd5}) 2.309919291s ago: executing program 1 (id=2855): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x10, 0x2, 0x0) clock_adjtime$auto(0x0, &(0x7f0000000040)={0xfbb, 0x0, 0x7f, 0xfffffffff7fffffe, 0x602, 0x8, 0x7, 0x0, 0x7, 0xb, 0x1, {0x3ff, 0x7}, 0xfffffffffffffffa, 0x200000a5, 0xa, 0x13c, 0x0, 0xc3, 0x7, 0x2, 0x5, 0x90, 0xfffffff5}) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00211459a600fbdbf4250200080008000300000000001b0004"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0d566b3dd008e4edd9650200000000000008"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0x200000c4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="18"], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 2.245482571s ago: executing program 4 (id=2856): close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) fanotify_init$auto(0x5, 0x2000000000002) socket(0x15, 0x5, 0x0) socket(0x26, 0x80805, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x2, 0x3a) fanotify_mark$auto(0x0, 0x201, 0x9, 0x4, 0x0) close_range$auto(0x2, 0x8000, 0x0) 2.039913431s ago: executing program 4 (id=2857): r0 = socket(0x2, 0x3, 0x100) mmap$auto(0x0, 0x1, 0xdc, 0x9b72, 0xffffffffffffffff, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_loginuid_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/loginuid\x00', 0x3c8082, 0x0) openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/debug/dynamic_debug/control\x00', 0x8101, 0x0) write$auto(0x3, 0x0, 0x29a) pipe$auto(&(0x7f0000000000)=0xffffffffffffffff) splice$auto(r1, 0x0, r0, 0x0, 0x7fffffffffffffff, 0x8) 2.032941454s ago: executing program 0 (id=2858): mmap$auto(0x0, 0x1020009, 0xdf, 0x4000000eb1, 0xffffffffffffffff, 0x8000) clone$auto(0x801ff, 0x3, 0x0, 0x0, 0x80011) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv6/conf/veth0/accept_ra_pinfo\x00', 0x2000, 0x0) read$auto(r0, 0x0, 0x1fe) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x1, 0x84) openat$auto_proc_oom_score_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_score_adj\x00', 0x142, 0x0) write$auto(0x3, 0x0, 0xfdef) 1.823304825s ago: executing program 4 (id=2859): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) unshare$auto(0x40000080) r0 = socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) socket(0x11, 0xa, 0x300) sendmmsg$auto(0x4, 0x0, 0x9a6, 0xa) socket(0x2, 0x801, 0x6) syz_genetlink_get_family_id$auto_ethtool(0x0, r0) pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xc9\xb3\xbc\x8c\x1dga08\x90\x86\xdde\x1cJ\x99\x00\x11:\x14\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xfe\x80\x12\x00\x00\x00\x00\x00\x0fo\x84\xfc\x89\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#\x1c\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd8\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xaf\n1\x80\x1a\xbc_\xef\x8b\t\xcc\xa6\xf2\xc1\"\xact\xee\xc9\x00'/232, 0xfdef, 0x3) 1.821745797s ago: executing program 0 (id=2867): madvise$auto(0x0, 0x7fffffffffffffff, 0xa) openat$auto_fops_blob_file(0xffffffffffffff9c, 0x0, 0x40002, 0x0) lstat$auto(0x0, 0x0) socketpair$auto(0xffffff6c, 0x4, 0x8000000, 0x0) sendmsg$auto_ETHTOOL_MSG_PHY_GET(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x14, 0x0, 0x200, 0x70bd2b, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x4000810}, 0x20008004) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[@ANYBLOB="1b000000", @ANYBLOB="1e0027"], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000) r0 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) 1.711041271s ago: executing program 1 (id=2860): getdents64$auto(0xffffffffffffffff, &(0x7f0000000100)={0x3, 0x4, 0x5, 0xd4, "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"}, 0x200) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket(0x1d, 0x2, 0x7) r1 = socket(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r2}, 0x6a) sendto$auto(r0, 0x0, 0x6fffff9, 0xfffffff8, &(0x7f0000000440)=@can, 0x36) 1.58944349s ago: executing program 0 (id=2861): madvise$auto(0x0, 0x2000040080000004, 0xe) sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, 0x0, 0x2000c800) poll$auto(0x0, 0x7f, 0x9) sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x2) r0 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0) pread64$auto(r0, &(0x7f0000000240)='\x03W\x96l\x15\x00'/21, 0x100000002, 0x100000001) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='./cgroup.cpu/memory.limit_in_bytes\x00', 0x182b02, 0x0) sendfile$auto(r1, r1, 0x0, 0x3) 1.487864338s ago: executing program 1 (id=2862): close_range$auto(0x2, 0x8, 0x0) r0 = socket(0x10, 0x2, 0x0) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000680), r0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000280)='/proc/thread-self/fail-nth\x00', 0x2, 0x0) write$auto(r1, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) write$auto(0x3, 0x0, 0x100082) readv$auto(r0, &(0x7f0000000540)={&(0x7f0000000500), 0x4}, 0x7) 1.358838889s ago: executing program 2 (id=2863): ptrace$auto(0x7, 0x0, 0x80007, 0xb) mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x1, 0x0) close_range$auto(0x0, 0xffffffffffffffff, 0x4000000000002) syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') socket(0x2, 0xa, 0x1) statx$auto(0xffffff9c, 0x0, 0x1000, 0x0, 0x0) ioctl$auto(0x1, 0x890b, 0x8) 1.116236229s ago: executing program 2 (id=2864): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/platform/dummy_hcd.7/usb8/remove\x00', 0xa001, 0x0) write$auto(r0, &(0x7f0000000380)='0\x81=\"\xad/\x8d\b\x00\x18\xa4\xb0\xb4\xd9\x82=~\x17\xfb&L\xeb=j\a\xf1y\xb3\"\xeb\a\xdd\xf4\xf4Ry\xee\xd7\x1e\x1c\x86\x0f\xcf\x7f\xbf\xab\x12{\xc2\xc2*\xc1M+6/v8\xea\xe9\x85s4\xfe\xe5\t\x7fc\xfb7^\xb86J_\x1d1s!\x01\xff\xff\xff\xff\xff\xff\xff\x1dF\xe6\xf6\x17\x10+\xc0\xb0\xafc\x99\xd4\x150Y~\x1e\xe2\xd6x4fW\x13\xc4U`\x9e-X\xd7\xe2H^\fLS`\xfc\xbb\r\f\x00\xeaN\t\x00\x82;\x7f\xa0.\x9a\xfb\x8d\xf3l\xf2\xd3\x95\xc1M5\xcb\xa6I\x067\xe36\xea\xe9\xe3\xf44oT_`8\xb3\xef\x04 \x05K\xf9\x87pl\xac\x86\nE\xc7e\xc5Q\x89\xcd@\x1c\x92\x00\x87\x976\x9f>\xa2\xcfm\xec\r\x11\x7f\x00\x00\x00\xb1\xde@\x02\xce\x03\xb7\xb1\xfb\x9fr\v\xb2\xe3\xc7\b\x85\x00 /zm\x7f\x8fg,p\a\xc8\x7f\xa5\x87\x02\x87\xbbR=A\x00\x1f\x8a\xa7/Q\"J\xbb\xb0m\xf2SP\x84\x84S\xf0\xba\x9a\xf6\xb6`WI\xba\xba*8\x9f\xea\xe8K/\x98\xbc7~>\x12\x9buB\xcb\xe4\x8aKf\xba\x8c\x19m\xe6I\x02\xde\x80\x9d\x87}\xf4\xbd9\xaa\xd6\xdb1]\xde\xa0r\x14\xca56^\x94\xd2\xd8\xe6}9\x91\xb6\xf7\xa1=\x96\x11\xf1\\\xa91\x0e\xd1\xe4z\xc1;Pw!\x8b\xf5{\xc7Xd\xf1\xf2}\x96EVf\xc9\xa8\xcd\xe4\xc9\x8d\x1d7\xd5\x94\\\xb5\r\xd2\xaa\xe6H\xfe)\xb3a\x04\x1eRMl\xa3F\xa8W0\x90\xc9Ky#\x03\xf5~\xd2Z\xe9(\x99\b\x00M\xde\x01]\r\xd09k\xc2\x84\xc1\xabN\x96\x8a6\x98@\xd3\xab\xa8m\xdf\x8d\x1d\b\x82\xfcP\x87\x93\x80\x97Q\x86\x8a\x9c\xf8L\x0f\xa8@VE2\x9d\x1e`#\xd8\xd7M\xd4k1\xe6\x13Y\\\x83E\xd0e\x0eM\xa9Q\xac\x0e\x1d]\a\x19H\x81\xd2\xccF\xc6\xd4\xe2R$\xfa\xd6}\xbdsN\x18\xdf\xf5\xffP\xf5\f\xccL\xef\x83\xb3$\xd4\xf4\xb5\xe6\xd0 \xb9\xa7\x8e6\t\x83q\xef\b\xd2\xdb', 0x1) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/devices/platform/dummy_hcd.0/usb1/bConfigurationValue\x00', 0x63102, 0x0) r2 = getpid() process_vm_readv$auto(r2, &(0x7f0000000000)={0x0, 0x1002}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0x401}, 0x6, 0x0) r3 = prctl$auto_PR_SCHED_CORE_SHARE_TO(0x7, 0x2, r2, 0x3, 0x2) sendfile$auto(r1, r1, 0x0, 0x2) process_madvise$auto_MADV_PAGEOUT(r3, &(0x7f0000000040)={&(0x7f0000000100)="72ce5ffafb431ec96ac41cfd6c03b9b0f71faeaa6ba05bf76e0336ba32fe482774a5f4e45113693d8167a685adc1d565b1ffdae8e3e0fef9f82b9912273b4b74432d46252965b742b70b51a55610e7175e817cc1b7a7b9efcb213e34cb5a078a69198b7a7a7eedc36e92de320ab0c4f3e601f655b6dbbc87e2d4c75af75ce8fc9f405e2987bdcf6a21de20ed0bda5821cedcf05267198162bfda42a5a0274431d9868da31892d7afa83bb1f5ef6defc07f2dd69c17", 0x101}, 0x3ff, 0x15, 0x6) 1.115369447s ago: executing program 1 (id=2873): openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) modify_ldt$auto(0xd, 0x0, 0x4) socket(0x2a, 0x2, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x80102, 0x0) r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) write$auto(r0, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) setreuid$auto(0x0, 0x7fffffffffffffff) fcntl$auto(0x3, 0x400, 0x9ec0000000000000) 754.92898ms ago: executing program 1 (id=2865): openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0) ioctl$auto(0x4000000000000c8, 0x800454cf, 0x3) open(0x0, 0x4242, 0xe1d2b27bdc14aabc) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x2000, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) capset$auto(&(0x7f0000000100)={0x20080522}, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000540)='/sys/kernel/reboot/force\x00', 0x143001, 0x0) write$auto(r0, 0x0, 0x4) 509.982253ms ago: executing program 2 (id=2866): openat$auto_ucma_fops_ucma(0xffffffffffffff9c, 0x0, 0x101002, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) ustat$auto(0x801, 0x0) r0 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0) ioctl$auto_IOCTL_VMCI_VERSION2(r0, 0x7a7, 0x0) ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, 0x6) mmap$auto(0x0, 0x400008, 0xdc, 0x9b72, 0xffffffffffffffff, 0x8000) ioctl$auto_IOCTL_VMCI_QUEUEPAIR_ALLOC(r0, 0x7a8, 0x0) 418.135908ms ago: executing program 4 (id=2868): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}, 0x1, 0x0, 0x0, 0x40000}, 0x80) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000080)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x4000000000007, 0xa505}, 0x800}, 0x4, 0x4008) r0 = socket(0x29, 0x2, 0x0) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000) recvmmsg$auto(r1, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0) ioctl$auto(r0, 0x89f1, 0x24) 397.23303ms ago: executing program 1 (id=2869): socket(0x2, 0x3, 0xa) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) lstat$auto(0x0, 0x0) bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_0={0x9, 0xb5, 0x4, 0x48d0, 0x4, 0xffffffffffffffff, 0x74b, "2af051a940806ec05be276cfc83ce63f", 0x0, 0xffffffffffffffff, 0x5, 0x4, 0xe5, 0x3}, 0x10) 230.62291ms ago: executing program 2 (id=2870): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/cpu1/online\x00', 0x62, 0x0) write$auto(r0, &(0x7f00000002c0)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef`\xd8\x9c\xf7?:\x1a\xc62\x911e\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\b};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xff\x7f\xd0UV\x11\xcb\xdd\x81\xbe\xde\f/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7\x00\x85Z\x06?\x12\x98\x0f)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1;\xe4pd$\xd7\x1b\v\x82\r\f\xd0Hq\xd9\r\x88#\x89\x8d\xcd\x1e\x87N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8HR+\a\xb7R\t\n+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb\xc8^\xa4\xe2\x05\x91|\x123\xc3:\xfd\xee\x04a\xc8\x12\xce\xa2\x12\xcb\x8c\x87f\xebGQ\xe9\x96\xd5E\x13a\xb7\x057<&\xe0\x94\xa7\xfb\x9d;\xfa\xb1\x1b4a,\'\xb2Ym\xe1:\xbf\x8cs\x06\xa3u\x8d!\n\x80-\x9a\xbb;\xf4\xf3\xe1\x97\xfc8\xff\xa7\\\x8b\xf9\x95\x10$\xef\x1a #b\xfb\xfe\xe9\x06fK0\xdd\x84T,\xfa\xb5\x00\x83d\xbba\xd7\n\x92l\xdfAN\x9d\xcb\x96\xc7\xe8\xe6\x8bC\xeb\xc7EZ\xc8\x1a\x81nf\tZ-sZ\x13n\xec\xa9\xbf\xd0$\xb9\xd8\x00\x00\x00\x00\x00\x00\x00', 0x5) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) getsockopt$auto_SO_NO_CHECK(r0, 0x7, 0xb, 0x0, 0x0) read$auto(r1, 0x0, 0x1f40) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) unshare$auto(0x2) 0s ago: executing program 0 (id=2871): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x155) socket(0x2, 0x1, 0x106) r0 = socket$nl_generic(0x10, 0x3, 0x10) bpf$auto(0x0, &(0x7f0000000280)=@bpf_attr_5={@target_fd=r0, r0, 0x4, 0xf, 0xffffffffffffffff, @relative_fd, 0xe600}, 0xf) bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffffffffffffffff, 0x0, 0x3}, 0x4) kernel console output (not intermixed with test programs): 0][T11766] __x64_sys_unshare+0x31/0x40 [ 373.869355][T11766] do_syscall_64+0xcd/0xfa0 [ 373.869399][T11766] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 373.869431][T11766] RIP: 0033:0x7f3bfdf8f7c9 [ 373.869458][T11766] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 373.869489][T11766] RSP: 002b:00007f3bfeef4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 373.869520][T11766] RAX: ffffffffffffffda RBX: 00007f3bfe1e5fa0 RCX: 00007f3bfdf8f7c9 [ 373.869542][T11766] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 373.869561][T11766] RBP: 00007f3bfe013f91 R08: 0000000000000000 R09: 0000000000000000 [ 373.869580][T11766] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 373.869598][T11766] R13: 00007f3bfe1e6038 R14: 00007f3bfe1e5fa0 R15: 00007ffc97a5b1b8 [ 373.869641][T11766] [ 374.570184][T11773] netlink: 334 bytes leftover after parsing attributes in process `syz.3.2163'. [ 378.152371][T11829] netlink: 74 bytes leftover after parsing attributes in process `syz.0.2183'. [ 378.617693][T11850] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2190'. [ 378.618075][T11848] netlink: 334 bytes leftover after parsing attributes in process `syz.3.2189'. [ 378.653894][T11850] netlink: 13 bytes leftover after parsing attributes in process `syz.1.2190'. [ 379.924462][T11866] netlink: 146 bytes leftover after parsing attributes in process `syz.0.2194'. [ 380.876248][T11878] FAULT_INJECTION: forcing a failure. [ 380.876248][T11878] name failslab, interval 1, probability 0, space 0, times 0 [ 380.909662][T11878] CPU: 0 UID: 0 PID: 11878 Comm: syz.3.2199 Tainted: G I syzkaller #0 PREEMPT(full) [ 380.909718][T11878] Tainted: [I]=FIRMWARE_WORKAROUND [ 380.909730][T11878] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 380.909751][T11878] Call Trace: [ 380.909762][T11878] [ 380.909776][T11878] dump_stack_lvl+0x16c/0x1f0 [ 380.909822][T11878] should_fail_ex+0x512/0x640 [ 380.909872][T11878] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 380.909912][T11878] should_failslab+0xc2/0x120 [ 380.909957][T11878] kmem_cache_alloc_noprof+0x75/0x6e0 [ 380.909990][T11878] ? __proc_create+0x2ce/0x8e0 [ 380.910048][T11878] ? __proc_create+0x2ce/0x8e0 [ 380.910094][T11878] __proc_create+0x2ce/0x8e0 [ 380.910142][T11878] ? __pfx___proc_create+0x10/0x10 [ 380.910195][T11878] ? _raw_write_unlock+0x28/0x50 [ 380.910232][T11878] ? proc_register+0x559/0x8b0 [ 380.910287][T11878] proc_create_reg+0x7d/0x180 [ 380.910340][T11878] proc_create_data+0x86/0x110 [ 380.910391][T11878] ? __pfx_proc_create_data+0x10/0x10 [ 380.910459][T11878] ? cache_register_net+0x137/0x5e0 [ 380.910510][T11878] cache_register_net+0x25a/0x5e0 [ 380.910557][T11878] gss_svc_init_net+0x151/0x660 [ 380.910591][T11878] ? __pfx_canbcm_pernet_init+0x10/0x10 [ 380.910637][T11878] ? __pfx_rpcsec_gss_init_net+0x10/0x10 [ 380.910677][T11878] ops_init+0x1e2/0x5f0 [ 380.910715][T11878] setup_net+0x100/0x390 [ 380.910750][T11878] ? __pfx_setup_net+0x10/0x10 [ 380.910786][T11878] ? debug_mutex_init+0x37/0x70 [ 380.910826][T11878] copy_net_ns+0x2f8/0x690 [ 380.910869][T11878] create_new_namespaces+0x3ea/0xa90 [ 380.910917][T11878] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 380.910960][T11878] ksys_unshare+0x45b/0xa40 [ 380.911006][T11878] ? __pfx_ksys_unshare+0x10/0x10 [ 380.911054][T11878] ? xfd_validate_state+0x61/0x180 [ 380.911115][T11878] __x64_sys_unshare+0x31/0x40 [ 380.911160][T11878] do_syscall_64+0xcd/0xfa0 [ 380.911203][T11878] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 380.911237][T11878] RIP: 0033:0x7f9039d8f7c9 [ 380.911263][T11878] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 380.911297][T11878] RSP: 002b:00007f903abad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 380.911329][T11878] RAX: ffffffffffffffda RBX: 00007f9039fe5fa0 RCX: 00007f9039d8f7c9 [ 380.911351][T11878] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 380.911370][T11878] RBP: 00007f9039e13f91 R08: 0000000000000000 R09: 0000000000000000 [ 380.911389][T11878] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 380.911408][T11878] R13: 00007f9039fe6038 R14: 00007f9039fe5fa0 R15: 00007ffc636c8208 [ 380.911462][T11878] [ 381.921510][T11886] netlink: 'syz.3.2202': attribute type 4 has an invalid length. [ 381.957786][T11886] netlink: 314 bytes leftover after parsing attributes in process `syz.3.2202'. [ 383.692599][T11907] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2210'. [ 383.779991][T11910] netlink: 334 bytes leftover after parsing attributes in process `syz.3.2212'. [ 386.239125][T11946] netlink: 322 bytes leftover after parsing attributes in process `syz.1.2224'. [ 386.251925][T11945] FAULT_INJECTION: forcing a failure. [ 386.251925][T11945] name failslab, interval 1, probability 0, space 0, times 0 [ 386.290691][T11945] CPU: 0 UID: 0 PID: 11945 Comm: syz.0.2223 Tainted: G I syzkaller #0 PREEMPT(full) [ 386.290744][T11945] Tainted: [I]=FIRMWARE_WORKAROUND [ 386.290756][T11945] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 386.290775][T11945] Call Trace: [ 386.290785][T11945] [ 386.290797][T11945] dump_stack_lvl+0x16c/0x1f0 [ 386.290842][T11945] should_fail_ex+0x512/0x640 [ 386.290890][T11945] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 386.290928][T11945] should_failslab+0xc2/0x120 [ 386.290972][T11945] kmem_cache_alloc_noprof+0x75/0x6e0 [ 386.291007][T11945] ? __proc_create+0x2ce/0x8e0 [ 386.291063][T11945] ? __proc_create+0x2ce/0x8e0 [ 386.291107][T11945] __proc_create+0x2ce/0x8e0 [ 386.291157][T11945] ? __pfx___proc_create+0x10/0x10 [ 386.291212][T11945] ? _raw_write_unlock+0x28/0x50 [ 386.291260][T11945] ? proc_register+0x559/0x8b0 [ 386.291314][T11945] proc_create_reg+0x7d/0x180 [ 386.291369][T11945] proc_create_data+0x86/0x110 [ 386.291420][T11945] ? __pfx_proc_create_data+0x10/0x10 [ 386.291484][T11945] gss_svc_init_net+0x2ec/0x660 [ 386.291519][T11945] ? __pfx_canbcm_pernet_init+0x10/0x10 [ 386.291566][T11945] ? __pfx_rpcsec_gss_init_net+0x10/0x10 [ 386.291601][T11945] ops_init+0x1e2/0x5f0 [ 386.291640][T11945] setup_net+0x100/0x390 [ 386.291675][T11945] ? __pfx_setup_net+0x10/0x10 [ 386.291712][T11945] ? debug_mutex_init+0x37/0x70 [ 386.291752][T11945] copy_net_ns+0x2f8/0x690 [ 386.291793][T11945] create_new_namespaces+0x3ea/0xa90 [ 386.291837][T11945] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 386.291875][T11945] ksys_unshare+0x45b/0xa40 [ 386.291917][T11945] ? __pfx_ksys_unshare+0x10/0x10 [ 386.291960][T11945] ? xfd_validate_state+0x61/0x180 [ 386.292016][T11945] __x64_sys_unshare+0x31/0x40 [ 386.292057][T11945] do_syscall_64+0xcd/0xfa0 [ 386.292101][T11945] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 386.292133][T11945] RIP: 0033:0x7fad6d18f7c9 [ 386.292159][T11945] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 386.292207][T11945] RSP: 002b:00007fad6dffd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 386.292247][T11945] RAX: ffffffffffffffda RBX: 00007fad6d3e5fa0 RCX: 00007fad6d18f7c9 [ 386.292268][T11945] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 386.292287][T11945] RBP: 00007fad6d213f91 R08: 0000000000000000 R09: 0000000000000000 [ 386.292305][T11945] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 386.292323][T11945] R13: 00007fad6d3e6038 R14: 00007fad6d3e5fa0 R15: 00007ffd180afbf8 [ 386.292366][T11945] [ 387.508367][T11954] FAULT_INJECTION: forcing a failure. [ 387.508367][T11954] name failslab, interval 1, probability 0, space 0, times 0 [ 387.648926][T11954] CPU: 0 UID: 0 PID: 11954 Comm: syz.2.2227 Tainted: G I syzkaller #0 PREEMPT(full) [ 387.648981][T11954] Tainted: [I]=FIRMWARE_WORKAROUND [ 387.648993][T11954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 387.649012][T11954] Call Trace: [ 387.649022][T11954] [ 387.649035][T11954] dump_stack_lvl+0x16c/0x1f0 [ 387.649082][T11954] should_fail_ex+0x512/0x640 [ 387.649132][T11954] ? __kmalloc_cache_noprof+0x5f/0x780 [ 387.649169][T11954] should_failslab+0xc2/0x120 [ 387.649216][T11954] __kmalloc_cache_noprof+0x72/0x780 [ 387.649248][T11954] ? snd_timer_instance_new+0x47/0x2e0 [ 387.649297][T11954] ? snd_timer_instance_new+0x47/0x2e0 [ 387.649338][T11954] snd_timer_instance_new+0x47/0x2e0 [ 387.649381][T11954] snd_seq_timer_open+0x1cc/0x600 [ 387.649419][T11954] ? __pfx_snd_seq_timer_open+0x10/0x10 [ 387.649456][T11954] ? find_held_lock+0x2b/0x80 [ 387.649495][T11954] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 387.649533][T11954] ? lockdep_hardirqs_on+0x7c/0x110 [ 387.649571][T11954] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 387.649613][T11954] queue_use+0xe3/0x250 [ 387.649659][T11954] snd_seq_queue_alloc+0x2e5/0x5a0 [ 387.649716][T11954] snd_seq_ioctl_create_queue+0xa9/0x390 [ 387.649761][T11954] call_seq_client_ctl+0x9f/0x110 [ 387.649800][T11954] snd_seq_kernel_client_ctl+0x77/0xd0 [ 387.649847][T11954] alloc_seq_queue+0xda/0x180 [ 387.649889][T11954] ? __pfx_alloc_seq_queue+0x10/0x10 [ 387.649959][T11954] ? mark_held_locks+0x49/0x80 [ 387.650001][T11954] ? _raw_spin_unlock_irq+0x23/0x50 [ 387.650035][T11954] ? lockdep_hardirqs_on+0x7c/0x110 [ 387.650079][T11954] snd_seq_oss_open+0x38c/0xa20 [ 387.650130][T11954] odev_open+0x79/0xc0 [ 387.650166][T11954] ? __pfx_odev_open+0x10/0x10 [ 387.650202][T11954] soundcore_open+0x40c/0x580 [ 387.650246][T11954] ? __pfx_soundcore_open+0x10/0x10 [ 387.650284][T11954] chrdev_open+0x234/0x6a0 [ 387.650323][T11954] ? __pfx_apparmor_file_open+0x10/0x10 [ 387.650372][T11954] ? __pfx_chrdev_open+0x10/0x10 [ 387.650415][T11954] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 387.650461][T11954] do_dentry_open+0x982/0x1530 [ 387.650500][T11954] ? __pfx_chrdev_open+0x10/0x10 [ 387.650548][T11954] vfs_open+0x82/0x3f0 [ 387.650599][T11954] path_openat+0x1de4/0x2cb0 [ 387.650649][T11954] ? __pfx_path_openat+0x10/0x10 [ 387.650688][T11954] ? __lock_acquire+0xb8a/0x1c90 [ 387.650753][T11954] do_filp_open+0x20b/0x470 [ 387.650790][T11954] ? __pfx_do_filp_open+0x10/0x10 [ 387.650865][T11954] ? alloc_fd+0x471/0x7d0 [ 387.650909][T11954] do_sys_openat2+0x11b/0x1d0 [ 387.650957][T11954] ? __pfx_do_sys_openat2+0x10/0x10 [ 387.651024][T11954] __x64_sys_openat+0x174/0x210 [ 387.651072][T11954] ? __pfx___x64_sys_openat+0x10/0x10 [ 387.651139][T11954] do_syscall_64+0xcd/0xfa0 [ 387.651184][T11954] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 387.651218][T11954] RIP: 0033:0x7efddd78f7c9 [ 387.651244][T11954] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 387.651276][T11954] RSP: 002b:00007efdde57b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 387.651307][T11954] RAX: ffffffffffffffda RBX: 00007efddd9e5fa0 RCX: 00007efddd78f7c9 [ 387.651329][T11954] RDX: 00000000001c8740 RSI: 0000200000000540 RDI: ffffffffffffff9c [ 387.651351][T11954] RBP: 00007efddd813f91 R08: 0000000000000000 R09: 0000000000000000 [ 387.651370][T11954] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 387.651389][T11954] R13: 00007efddd9e6038 R14: 00007efddd9e5fa0 R15: 00007ffefdd607e8 [ 387.651433][T11954] [ 389.472795][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 389.481271][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 390.802731][T11984] FAULT_INJECTION: forcing a failure. [ 390.802731][T11984] name failslab, interval 1, probability 0, space 0, times 0 [ 390.837878][T11984] CPU: 0 UID: 0 PID: 11984 Comm: syz.1.2233 Tainted: G I syzkaller #0 PREEMPT(full) [ 390.837931][T11984] Tainted: [I]=FIRMWARE_WORKAROUND [ 390.837943][T11984] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 390.837961][T11984] Call Trace: [ 390.837970][T11984] [ 390.837981][T11984] dump_stack_lvl+0x16c/0x1f0 [ 390.838028][T11984] should_fail_ex+0x512/0x640 [ 390.838079][T11984] ? kmem_cache_alloc_lru_noprof+0x66/0x6e0 [ 390.838120][T11984] should_failslab+0xc2/0x120 [ 390.838167][T11984] kmem_cache_alloc_lru_noprof+0x79/0x6e0 [ 390.838204][T11984] ? __d_alloc+0x32/0xae0 [ 390.838251][T11984] ? __d_alloc+0x32/0xae0 [ 390.838285][T11984] __d_alloc+0x32/0xae0 [ 390.838328][T11984] d_alloc_parallel+0x111/0x1510 [ 390.838385][T11984] ? find_held_lock+0x2b/0x80 [ 390.838420][T11984] ? __d_lookup+0x25c/0x4a0 [ 390.838471][T11984] ? __pfx_d_alloc_parallel+0x10/0x10 [ 390.838520][T11984] ? __d_lookup+0x266/0x4a0 [ 390.838565][T11984] ? lockdep_init_map_type+0x5c/0x280 [ 390.838613][T11984] ? lockdep_init_map_type+0x5c/0x280 [ 390.838666][T11984] proc_fill_cache+0x2e6/0x470 [ 390.838710][T11984] ? __pfx_proc_pident_instantiate+0x10/0x10 [ 390.838756][T11984] ? __pfx_proc_fill_cache+0x10/0x10 [ 390.838853][T11984] proc_pident_readdir+0x1bc/0x530 [ 390.838908][T11984] iterate_dir+0x296/0xaf0 [ 390.838965][T11984] __x64_sys_getdents64+0x13c/0x2c0 [ 390.839016][T11984] ? __x64_sys_futex+0x1e9/0x4c0 [ 390.839063][T11984] ? __pfx___x64_sys_getdents64+0x10/0x10 [ 390.839115][T11984] ? __x64_sys_openat+0x174/0x210 [ 390.839168][T11984] ? __pfx_filldir64+0x10/0x10 [ 390.839234][T11984] do_syscall_64+0xcd/0xfa0 [ 390.839280][T11984] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 390.839315][T11984] RIP: 0033:0x7f3bfdf8f7c9 [ 390.839341][T11984] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 390.839375][T11984] RSP: 002b:00007f3bfeef4038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9 [ 390.839406][T11984] RAX: ffffffffffffffda RBX: 00007f3bfe1e5fa0 RCX: 00007f3bfdf8f7c9 [ 390.839428][T11984] RDX: 0000000000000803 RSI: 0000000000000000 RDI: 0000000000000005 [ 390.839447][T11984] RBP: 00007f3bfe013f91 R08: 0000000000000000 R09: 0000000000000000 [ 390.839467][T11984] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 390.839488][T11984] R13: 00007f3bfe1e6038 R14: 00007f3bfe1e5fa0 R15: 00007ffc97a5b1b8 [ 390.839536][T11984] [ 391.535342][T11997] FAULT_INJECTION: forcing a failure. [ 391.535342][T11997] name failslab, interval 1, probability 0, space 0, times 0 [ 391.592069][T11997] CPU: 1 UID: 0 PID: 11997 Comm: syz.2.2235 Tainted: G I syzkaller #0 PREEMPT(full) [ 391.592124][T11997] Tainted: [I]=FIRMWARE_WORKAROUND [ 391.592137][T11997] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 391.592156][T11997] Call Trace: [ 391.592167][T11997] [ 391.592180][T11997] dump_stack_lvl+0x16c/0x1f0 [ 391.592227][T11997] should_fail_ex+0x512/0x640 [ 391.592274][T11997] ? __kmalloc_noprof+0xca/0x880 [ 391.592308][T11997] should_failslab+0xc2/0x120 [ 391.592354][T11997] __kmalloc_noprof+0xdd/0x880 [ 391.592378][T11997] ? do_init_timer+0xc9/0x110 [ 391.592411][T11997] ? ops_init+0x77/0x5f0 [ 391.592455][T11997] ? ops_init+0x77/0x5f0 [ 391.592481][T11997] ops_init+0x77/0x5f0 [ 391.592512][T11997] setup_net+0x100/0x390 [ 391.592542][T11997] ? __pfx_setup_net+0x10/0x10 [ 391.592574][T11997] ? debug_mutex_init+0x37/0x70 [ 391.592608][T11997] copy_net_ns+0x2f8/0x690 [ 391.592645][T11997] create_new_namespaces+0x3ea/0xa90 [ 391.592685][T11997] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 391.592721][T11997] ksys_unshare+0x45b/0xa40 [ 391.592758][T11997] ? __pfx_ksys_unshare+0x10/0x10 [ 391.592797][T11997] ? xfd_validate_state+0x61/0x180 [ 391.592847][T11997] __x64_sys_unshare+0x31/0x40 [ 391.592882][T11997] do_syscall_64+0xcd/0xfa0 [ 391.592919][T11997] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 391.592946][T11997] RIP: 0033:0x7efddd78f7c9 [ 391.592967][T11997] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 391.592994][T11997] RSP: 002b:00007efdde57b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 391.593020][T11997] RAX: ffffffffffffffda RBX: 00007efddd9e5fa0 RCX: 00007efddd78f7c9 [ 391.593038][T11997] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 391.593056][T11997] RBP: 00007efddd813f91 R08: 0000000000000000 R09: 0000000000000000 [ 391.593075][T11997] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 391.593092][T11997] R13: 00007efddd9e6038 R14: 00007efddd9e5fa0 R15: 00007ffefdd607e8 [ 391.593128][T11997] [ 391.912812][T12001] FAULT_INJECTION: forcing a failure. [ 391.912812][T12001] name failslab, interval 1, probability 0, space 0, times 0 [ 391.987774][T12001] CPU: 0 UID: 0 PID: 12001 Comm: syz.1.2238 Tainted: G I syzkaller #0 PREEMPT(full) [ 391.987826][T12001] Tainted: [I]=FIRMWARE_WORKAROUND [ 391.987838][T12001] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 391.987857][T12001] Call Trace: [ 391.987867][T12001] [ 391.987878][T12001] dump_stack_lvl+0x16c/0x1f0 [ 391.987923][T12001] should_fail_ex+0x512/0x640 [ 391.987970][T12001] ? __kmalloc_cache_noprof+0x5f/0x780 [ 391.988005][T12001] should_failslab+0xc2/0x120 [ 391.988048][T12001] __kmalloc_cache_noprof+0x72/0x780 [ 391.988080][T12001] ? __kthread_create_on_node+0xce/0x3f0 [ 391.988128][T12001] ? __pfx_tomoyo_gc_thread+0x10/0x10 [ 391.988158][T12001] ? __kthread_create_on_node+0xce/0x3f0 [ 391.988200][T12001] __kthread_create_on_node+0xce/0x3f0 [ 391.988245][T12001] ? __pfx___kthread_create_on_node+0x10/0x10 [ 391.988307][T12001] ? __pfx_tomoyo_gc_thread+0x10/0x10 [ 391.988339][T12001] kthread_create_on_node+0xc7/0x100 [ 391.988381][T12001] ? __pfx_kthread_create_on_node+0x10/0x10 [ 391.988422][T12001] ? kasan_quarantine_put+0x10a/0x240 [ 391.988505][T12001] ? find_held_lock+0x2b/0x80 [ 391.988539][T12001] ? tomoyo_notify_gc+0xc6/0x470 [ 391.988578][T12001] tomoyo_notify_gc+0xea/0x470 [ 391.988607][T12001] ? ima_iint_find+0xea/0x130 [ 391.988653][T12001] ? __pfx_tomoyo_release+0x10/0x10 [ 391.988689][T12001] tomoyo_release+0x31/0x40 [ 391.988724][T12001] __fput+0x402/0xb70 [ 391.988781][T12001] task_work_run+0x150/0x240 [ 391.988832][T12001] ? __pfx_task_work_run+0x10/0x10 [ 391.988882][T12001] ? __pfx___do_sys_close_range+0x10/0x10 [ 391.988927][T12001] exit_to_user_mode_loop+0xec/0x130 [ 391.988976][T12001] do_syscall_64+0x426/0xfa0 [ 391.989014][T12001] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 391.989045][T12001] RIP: 0033:0x7f3bfdf8f7c9 [ 391.989069][T12001] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 391.989099][T12001] RSP: 002b:00007f3bfeef4038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 391.989128][T12001] RAX: 0000000000000000 RBX: 00007f3bfe1e5fa0 RCX: 00007f3bfdf8f7c9 [ 391.989147][T12001] RDX: 0000000000000000 RSI: 000000000000000a RDI: 0000000000000002 [ 391.989165][T12001] RBP: 00007f3bfe013f91 R08: 0000000000000000 R09: 0000000000000000 [ 391.989183][T12001] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 391.989201][T12001] R13: 00007f3bfe1e6038 R14: 00007f3bfe1e5fa0 R15: 00007ffc97a5b1b8 [ 391.989242][T12001] [ 392.372067][T12008] FAULT_INJECTION: forcing a failure. [ 392.372067][T12008] name failslab, interval 1, probability 0, space 0, times 0 [ 392.385394][T12008] CPU: 0 UID: 0 PID: 12008 Comm: syz.2.2245 Tainted: G I syzkaller #0 PREEMPT(full) [ 392.385450][T12008] Tainted: [I]=FIRMWARE_WORKAROUND [ 392.385463][T12008] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 392.385483][T12008] Call Trace: [ 392.385494][T12008] [ 392.385508][T12008] dump_stack_lvl+0x16c/0x1f0 [ 392.385557][T12008] should_fail_ex+0x512/0x640 [ 392.385609][T12008] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 392.385650][T12008] should_failslab+0xc2/0x120 [ 392.385696][T12008] kmem_cache_alloc_noprof+0x75/0x6e0 [ 392.385732][T12008] ? mas_dup_build+0x6f9/0x1e80 [ 392.385784][T12008] ? mas_dup_build+0x6f9/0x1e80 [ 392.385824][T12008] mas_dup_build+0x6f9/0x1e80 [ 392.385876][T12008] ? __lock_acquire+0xb8a/0x1c90 [ 392.385933][T12008] __mt_dup+0xeb/0x1f0 [ 392.385973][T12008] ? __pfx___mt_dup+0x10/0x10 [ 392.386055][T12008] dup_mmap+0x36c/0x2280 [ 392.386118][T12008] ? __pfx_dup_mmap+0x10/0x10 [ 392.386198][T12008] copy_process+0x3f0c/0x76a0 [ 392.386240][T12008] ? __pfx___futex_wait+0x10/0x10 [ 392.386269][T12008] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 392.386325][T12008] ? __pfx_copy_process+0x10/0x10 [ 392.386366][T12008] ? find_held_lock+0x2b/0x80 [ 392.386416][T12008] ? futex_private_hash_put+0xd5/0x190 [ 392.386468][T12008] kernel_clone+0xfc/0x930 [ 392.386513][T12008] ? __pfx_kernel_clone+0x10/0x10 [ 392.386582][T12008] __do_sys_clone+0xce/0x120 [ 392.386626][T12008] ? __pfx___do_sys_clone+0x10/0x10 [ 392.386691][T12008] ? xfd_validate_state+0x61/0x180 [ 392.386739][T12008] ? __pfx_do_writev+0x10/0x10 [ 392.386788][T12008] do_syscall_64+0xcd/0xfa0 [ 392.386835][T12008] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 392.386870][T12008] RIP: 0033:0x7efddd78f7c9 [ 392.386898][T12008] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 392.386933][T12008] RSP: 002b:00007efdde57afe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 392.386966][T12008] RAX: ffffffffffffffda RBX: 00007efddd9e5fa0 RCX: 00007efddd78f7c9 [ 392.386988][T12008] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020a08200 [ 392.387009][T12008] RBP: 00007efddd813f91 R08: 0000000000000000 R09: 0000000000000000 [ 392.387030][T12008] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 392.387051][T12008] R13: 00007efddd9e6038 R14: 00007efddd9e5fa0 R15: 00007ffefdd607e8 [ 392.387100][T12008] [ 392.992953][T12018] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2242'. [ 393.077030][T12019] FAULT_INJECTION: forcing a failure. [ 393.077030][T12019] name failslab, interval 1, probability 0, space 0, times 0 [ 393.138131][T12019] CPU: 1 UID: 0 PID: 12019 Comm: syz.2.2249 Tainted: G I syzkaller #0 PREEMPT(full) [ 393.138185][T12019] Tainted: [I]=FIRMWARE_WORKAROUND [ 393.138197][T12019] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 393.138216][T12019] Call Trace: [ 393.138227][T12019] [ 393.138239][T12019] dump_stack_lvl+0x16c/0x1f0 [ 393.138285][T12019] should_fail_ex+0x512/0x640 [ 393.138334][T12019] ? fs_reclaim_acquire+0xae/0x150 [ 393.138381][T12019] should_failslab+0xc2/0x120 [ 393.138427][T12019] kmem_cache_alloc_noprof+0x75/0x6e0 [ 393.138460][T12019] ? __pfx_map_id_range_down+0x10/0x10 [ 393.138489][T12019] ? security_inode_alloc+0x3b/0x2b0 [ 393.138556][T12019] ? security_inode_alloc+0x3b/0x2b0 [ 393.138606][T12019] security_inode_alloc+0x3b/0x2b0 [ 393.138661][T12019] inode_init_always_gfp+0xce4/0x1030 [ 393.138703][T12019] alloc_inode+0x86/0x240 [ 393.138749][T12019] new_inode+0x22/0x1c0 [ 393.138797][T12019] proc_pid_make_inode+0x22/0x160 [ 393.138842][T12019] proc_pident_instantiate+0x85/0x310 [ 393.138891][T12019] proc_fill_cache+0x361/0x470 [ 393.138935][T12019] ? __pfx_proc_pident_instantiate+0x10/0x10 [ 393.138983][T12019] ? __pfx_proc_fill_cache+0x10/0x10 [ 393.139071][T12019] proc_pident_readdir+0x1bc/0x530 [ 393.139127][T12019] iterate_dir+0x296/0xaf0 [ 393.139184][T12019] __x64_sys_getdents64+0x13c/0x2c0 [ 393.139233][T12019] ? __x64_sys_futex+0x1e9/0x4c0 [ 393.139282][T12019] ? __pfx___x64_sys_getdents64+0x10/0x10 [ 393.139334][T12019] ? __x64_sys_openat+0x174/0x210 [ 393.139383][T12019] ? __pfx_filldir64+0x10/0x10 [ 393.139449][T12019] do_syscall_64+0xcd/0xfa0 [ 393.139494][T12019] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 393.139528][T12019] RIP: 0033:0x7efddd78f7c9 [ 393.139560][T12019] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 393.139593][T12019] RSP: 002b:00007efdde57b038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9 [ 393.139625][T12019] RAX: ffffffffffffffda RBX: 00007efddd9e5fa0 RCX: 00007efddd78f7c9 [ 393.139647][T12019] RDX: 0000000000000803 RSI: 0000000000000000 RDI: 0000000000000005 [ 393.139667][T12019] RBP: 00007efddd813f91 R08: 0000000000000000 R09: 0000000000000000 [ 393.139686][T12019] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 393.139706][T12019] R13: 00007efddd9e6038 R14: 00007efddd9e5fa0 R15: 00007ffefdd607e8 [ 393.139752][T12019] [ 393.178537][T12022] FAULT_INJECTION: forcing a failure. [ 393.178537][T12022] name failslab, interval 1, probability 0, space 0, times 0 [ 393.431593][T12022] CPU: 0 UID: 0 PID: 12022 Comm: syz.1.2250 Tainted: G I syzkaller #0 PREEMPT(full) [ 393.431643][T12022] Tainted: [I]=FIRMWARE_WORKAROUND [ 393.431654][T12022] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 393.431672][T12022] Call Trace: [ 393.431683][T12022] [ 393.431695][T12022] dump_stack_lvl+0x16c/0x1f0 [ 393.431739][T12022] should_fail_ex+0x512/0x640 [ 393.431786][T12022] ? __kmalloc_node_track_caller_noprof+0xcb/0x8a0 [ 393.431832][T12022] should_failslab+0xc2/0x120 [ 393.431874][T12022] __kmalloc_node_track_caller_noprof+0xde/0x8a0 [ 393.431914][T12022] ? kstrdup_const+0x63/0x80 [ 393.431954][T12022] ? kstrdup+0x53/0x100 [ 393.431983][T12022] kstrdup+0x53/0x100 [ 393.432018][T12022] kstrdup_const+0x63/0x80 [ 393.432051][T12022] alloc_vfsmnt+0xea/0x6b0 [ 393.432090][T12022] ? getname_flags.part.0+0x1c5/0x550 [ 393.432138][T12022] mnt_clone_internal+0x81/0x250 [ 393.432175][T12022] acct_on+0xfb/0xa00 [ 393.432224][T12022] ? __pfx_acct_on+0x10/0x10 [ 393.432271][T12022] ? bpf_lsm_capable+0x9/0x10 [ 393.432318][T12022] __x64_sys_acct+0x81/0x1e0 [ 393.432372][T12022] ? lockdep_hardirqs_on+0x7c/0x110 [ 393.432412][T12022] do_syscall_64+0xcd/0xfa0 [ 393.432454][T12022] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 393.432485][T12022] RIP: 0033:0x7f3bfdf8f7c9 [ 393.432509][T12022] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 393.432540][T12022] RSP: 002b:00007f3bfeef4038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3 [ 393.432569][T12022] RAX: ffffffffffffffda RBX: 00007f3bfe1e5fa0 RCX: 00007f3bfdf8f7c9 [ 393.432589][T12022] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000100 [ 393.432607][T12022] RBP: 00007f3bfe013f91 R08: 0000000000000000 R09: 0000000000000000 [ 393.432626][T12022] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 393.432643][T12022] R13: 00007f3bfe1e6038 R14: 00007f3bfe1e5fa0 R15: 00007ffc97a5b1b8 [ 393.432685][T12022] [ 393.526837][T12024] FAULT_INJECTION: forcing a failure. [ 393.526837][T12024] name failslab, interval 1, probability 0, space 0, times 0 [ 393.677677][T12024] CPU: 0 UID: 0 PID: 12024 Comm: syz.0.2252 Tainted: G I syzkaller #0 PREEMPT(full) [ 393.677735][T12024] Tainted: [I]=FIRMWARE_WORKAROUND [ 393.677749][T12024] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 393.677769][T12024] Call Trace: [ 393.677780][T12024] [ 393.677794][T12024] dump_stack_lvl+0x16c/0x1f0 [ 393.677845][T12024] should_fail_ex+0x512/0x640 [ 393.677899][T12024] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 393.677941][T12024] should_failslab+0xc2/0x120 [ 393.677989][T12024] kmem_cache_alloc_noprof+0x75/0x6e0 [ 393.678026][T12024] ? posix_lock_inode+0x1b7/0x2280 [ 393.678092][T12024] ? posix_lock_inode+0x1b7/0x2280 [ 393.678148][T12024] posix_lock_inode+0x1b7/0x2280 [ 393.678221][T12024] ? __pfx_posix_lock_inode+0x10/0x10 [ 393.678287][T12024] vfs_lock_file+0xfb/0x150 [ 393.678333][T12024] fcntl_setlk+0x3ff/0xe20 [ 393.678371][T12024] ? __pfx_fcntl_setlk+0x10/0x10 [ 393.678410][T12024] ? __might_fault+0xe3/0x190 [ 393.678444][T12024] ? __might_fault+0xe3/0x190 [ 393.678476][T12024] ? __might_fault+0x13b/0x190 [ 393.678529][T12024] do_fcntl+0xbce/0x15a0 [ 393.678578][T12024] ? __pfx_do_fcntl+0x10/0x10 [ 393.678654][T12024] ? tomoyo_file_fcntl+0x6c/0xc0 [ 393.678705][T12024] __x64_sys_fcntl+0x163/0x200 [ 393.678756][T12024] do_syscall_64+0xcd/0xfa0 [ 393.678801][T12024] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 393.678834][T12024] RIP: 0033:0x7fad6d18f7c9 [ 393.678861][T12024] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 393.678894][T12024] RSP: 002b:00007fad6dffd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000048 [ 393.678926][T12024] RAX: ffffffffffffffda RBX: 00007fad6d3e5fa0 RCX: 00007fad6d18f7c9 [ 393.678949][T12024] RDX: 0000000000000007 RSI: 0000000000000026 RDI: 0000000000000005 [ 393.678966][T12024] RBP: 00007fad6d213f91 R08: 0000000000000000 R09: 0000000000000000 [ 393.678985][T12024] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 393.679004][T12024] R13: 00007fad6d3e6038 R14: 00007fad6d3e5fa0 R15: 00007ffd180afbf8 [ 393.679049][T12024] [ 394.334125][T12044] netlink: 342 bytes leftover after parsing attributes in process `syz.0.2259'. [ 394.575037][T12054] netlink: 338 bytes leftover after parsing attributes in process `syz.2.2261'. [ 394.589720][T12055] netlink: 'syz.0.2263': attribute type 21 has an invalid length. [ 394.617748][T12055] netlink: 334 bytes leftover after parsing attributes in process `syz.0.2263'. [ 394.857350][T12058] FAULT_INJECTION: forcing a failure. [ 394.857350][T12058] name failslab, interval 1, probability 0, space 0, times 0 [ 394.883200][T12061] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2266'. [ 394.897799][T12058] CPU: 1 UID: 0 PID: 12058 Comm: syz.0.2265 Tainted: G I syzkaller #0 PREEMPT(full) [ 394.897851][T12058] Tainted: [I]=FIRMWARE_WORKAROUND [ 394.897862][T12058] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 394.897882][T12058] Call Trace: [ 394.897894][T12058] [ 394.897907][T12058] dump_stack_lvl+0x16c/0x1f0 [ 394.897953][T12058] should_fail_ex+0x512/0x640 [ 394.897999][T12058] ? __kmalloc_node_track_caller_noprof+0xcb/0x8a0 [ 394.898041][T12058] should_failslab+0xc2/0x120 [ 394.898080][T12058] __kmalloc_node_track_caller_noprof+0xde/0x8a0 [ 394.898116][T12058] ? drm_stub_open+0x20f/0x380 [ 394.898153][T12058] ? kasprintf+0xc7/0x100 [ 394.898177][T12058] ? do_dentry_open+0x982/0x1530 [ 394.898214][T12058] ? kvasprintf+0xbc/0x160 [ 394.898239][T12058] kvasprintf+0xbc/0x160 [ 394.898264][T12058] ? __pfx_kvasprintf+0x10/0x10 [ 394.898303][T12058] kasprintf+0xc7/0x100 [ 394.898328][T12058] ? __pfx_kasprintf+0x10/0x10 [ 394.898358][T12058] ? aa_get_newest_label+0xd2/0x250 [ 394.898399][T12058] ? lockdep_init_map_type+0x5c/0x280 [ 394.898446][T12058] drm_debugfs_clients_add+0x48/0x200 [ 394.898494][T12058] drm_file_alloc+0x5c6/0xb40 [ 394.898539][T12058] drm_open_helper+0x204/0x550 [ 394.898585][T12058] drm_open+0x1a0/0x3e0 [ 394.898623][T12058] ? __pfx_drm_open+0x10/0x10 [ 394.898663][T12058] drm_stub_open+0x20f/0x380 [ 394.898702][T12058] ? __pfx_drm_stub_open+0x10/0x10 [ 394.898740][T12058] chrdev_open+0x234/0x6a0 [ 394.898776][T12058] ? __pfx_chrdev_open+0x10/0x10 [ 394.898812][T12058] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 394.898850][T12058] do_dentry_open+0x982/0x1530 [ 394.898883][T12058] ? __pfx_chrdev_open+0x10/0x10 [ 394.898923][T12058] vfs_open+0x82/0x3f0 [ 394.898967][T12058] path_openat+0x1de4/0x2cb0 [ 394.899008][T12058] ? __pfx_path_openat+0x10/0x10 [ 394.899041][T12058] ? __lock_acquire+0xb8a/0x1c90 [ 394.899084][T12058] do_filp_open+0x20b/0x470 [ 394.899114][T12058] ? __pfx_do_filp_open+0x10/0x10 [ 394.899169][T12058] ? alloc_fd+0x471/0x7d0 [ 394.899205][T12058] do_sys_openat2+0x11b/0x1d0 [ 394.899247][T12058] ? __pfx_do_sys_openat2+0x10/0x10 [ 394.899302][T12058] __x64_sys_openat+0x174/0x210 [ 394.899344][T12058] ? __pfx___x64_sys_openat+0x10/0x10 [ 394.899400][T12058] do_syscall_64+0xcd/0xfa0 [ 394.899437][T12058] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 394.899466][T12058] RIP: 0033:0x7fad6d18f7c9 [ 394.899497][T12058] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 394.899526][T12058] RSP: 002b:00007fad6dffd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 394.899552][T12058] RAX: ffffffffffffffda RBX: 00007fad6d3e5fa0 RCX: 00007fad6d18f7c9 [ 394.899570][T12058] RDX: 0000000000000040 RSI: 0000200000000340 RDI: ffffffffffffff9c [ 394.899587][T12058] RBP: 00007fad6d213f91 R08: 0000000000000000 R09: 0000000000000000 [ 394.899605][T12058] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 394.899621][T12058] R13: 00007fad6d3e6038 R14: 00007fad6d3e5fa0 R15: 00007ffd180afbf8 [ 394.899657][T12058] [ 397.486240][T12094] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2278'. [ 398.653165][T12124] FAULT_INJECTION: forcing a failure. [ 398.653165][T12124] name failslab, interval 1, probability 0, space 0, times 0 [ 398.707894][T12124] CPU: 1 UID: 0 PID: 12124 Comm: syz.3.2290 Tainted: G I syzkaller #0 PREEMPT(full) [ 398.707947][T12124] Tainted: [I]=FIRMWARE_WORKAROUND [ 398.707959][T12124] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 398.707980][T12124] Call Trace: [ 398.707991][T12124] [ 398.708004][T12124] dump_stack_lvl+0x16c/0x1f0 [ 398.708051][T12124] should_fail_ex+0x512/0x640 [ 398.708103][T12124] ? __kmalloc_noprof+0xca/0x880 [ 398.708138][T12124] should_failslab+0xc2/0x120 [ 398.708185][T12124] __kmalloc_noprof+0xdd/0x880 [ 398.708214][T12124] ? lockdep_init_map_type+0x5c/0x280 [ 398.708258][T12124] ? ops_init+0x77/0x5f0 [ 398.708297][T12124] ? ops_init+0x77/0x5f0 [ 398.708328][T12124] ops_init+0x77/0x5f0 [ 398.708366][T12124] setup_net+0x100/0x390 [ 398.708402][T12124] ? __pfx_setup_net+0x10/0x10 [ 398.708437][T12124] ? debug_mutex_init+0x37/0x70 [ 398.708477][T12124] copy_net_ns+0x2f8/0x690 [ 398.708521][T12124] create_new_namespaces+0x3ea/0xa90 [ 398.708569][T12124] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 398.708611][T12124] ksys_unshare+0x45b/0xa40 [ 398.708654][T12124] ? __pfx_ksys_unshare+0x10/0x10 [ 398.708699][T12124] ? xfd_validate_state+0x61/0x180 [ 398.708757][T12124] __x64_sys_unshare+0x31/0x40 [ 398.708801][T12124] do_syscall_64+0xcd/0xfa0 [ 398.708858][T12124] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 398.708892][T12124] RIP: 0033:0x7f9039d8f7c9 [ 398.708920][T12124] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 398.708953][T12124] RSP: 002b:00007f903abad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 398.708985][T12124] RAX: ffffffffffffffda RBX: 00007f9039fe5fa0 RCX: 00007f9039d8f7c9 [ 398.709005][T12124] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 398.709024][T12124] RBP: 00007f9039e13f91 R08: 0000000000000000 R09: 0000000000000000 [ 398.709043][T12124] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 398.709061][T12124] R13: 00007f9039fe6038 R14: 00007f9039fe5fa0 R15: 00007ffc636c8208 [ 398.709106][T12124] [ 398.926568][T12127] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2292'. [ 398.939764][T12127] netlink: 25 bytes leftover after parsing attributes in process `syz.2.2292'. [ 401.343088][T12172] mkiss: ax0: crc mode is auto. [ 401.808532][T12185] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2312'. [ 401.848158][T12185] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2312'. [ 404.188938][T12227] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2326'. [ 404.448489][T12231] FAULT_INJECTION: forcing a failure. [ 404.448489][T12231] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 404.463018][T12231] CPU: 1 UID: 0 PID: 12231 Comm: syz.3.2327 Tainted: G I syzkaller #0 PREEMPT(full) [ 404.463069][T12231] Tainted: [I]=FIRMWARE_WORKAROUND [ 404.463080][T12231] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 404.463099][T12231] Call Trace: [ 404.463109][T12231] [ 404.463120][T12231] dump_stack_lvl+0x16c/0x1f0 [ 404.463163][T12231] should_fail_ex+0x512/0x640 [ 404.463215][T12231] should_fail_alloc_page+0xe7/0x130 [ 404.463258][T12231] prepare_alloc_pages+0x3c2/0x610 [ 404.463296][T12231] ? rcu_is_watching+0x12/0xc0 [ 404.463330][T12231] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 404.463368][T12231] ? __lock_acquire+0xb8a/0x1c90 [ 404.463423][T12231] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 404.463455][T12231] ? do_raw_spin_lock+0x12c/0x2b0 [ 404.463500][T12231] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 404.463547][T12231] ? find_held_lock+0x2b/0x80 [ 404.463603][T12231] ? __lock_acquire+0xb8a/0x1c90 [ 404.463645][T12231] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 404.463700][T12231] ? policy_nodemask+0xea/0x4e0 [ 404.463745][T12231] alloc_pages_mpol+0x1fb/0x550 [ 404.463786][T12231] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 404.463838][T12231] folio_alloc_mpol_noprof+0x36/0x2f0 [ 404.463888][T12231] shmem_alloc_folio+0x135/0x160 [ 404.463937][T12231] shmem_alloc_and_add_folio+0x494/0xc20 [ 404.463979][T12231] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 404.464012][T12231] ? shmem_allowable_huge_orders+0xd4/0x3f0 [ 404.464053][T12231] shmem_get_folio_gfp+0x67f/0x1610 [ 404.464092][T12231] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 404.464125][T12231] ? filemap_map_pages+0x12dd/0x1e30 [ 404.464162][T12231] shmem_fault+0x1fe/0xa30 [ 404.464195][T12231] ? __pfx_shmem_fault+0x10/0x10 [ 404.464233][T12231] ? __pfx_filemap_map_pages+0x10/0x10 [ 404.464273][T12231] ? __pfx_filemap_map_pages+0x10/0x10 [ 404.464302][T12231] __do_fault+0x10d/0x490 [ 404.464337][T12231] ? __pfx_filemap_map_pages+0x10/0x10 [ 404.464367][T12231] do_pte_missing+0xf4a/0x3ba0 [ 404.464417][T12231] ? find_held_lock+0x2b/0x80 [ 404.464450][T12231] ? __handle_mm_fault+0x1529/0x2aa0 [ 404.464505][T12231] __handle_mm_fault+0x1556/0x2aa0 [ 404.464564][T12231] ? __pfx___handle_mm_fault+0x10/0x10 [ 404.464628][T12231] ? __pte_offset_map_lock+0x174/0x310 [ 404.464668][T12231] ? find_held_lock+0x2b/0x80 [ 404.464727][T12231] ? follow_page_pte+0x5cf/0x1390 [ 404.464777][T12231] handle_mm_fault+0x589/0xd10 [ 404.464833][T12231] __get_user_pages+0x54e/0x3530 [ 404.464884][T12231] ? look_up_lock_class+0x59/0x150 [ 404.464919][T12231] ? __kmalloc_noprof+0x32f/0x880 [ 404.464949][T12231] ? __pfx___get_user_pages+0x10/0x10 [ 404.465002][T12231] __gup_longterm_locked+0xa92/0x17e0 [ 404.465056][T12231] ? __pfx___gup_longterm_locked+0x10/0x10 [ 404.465120][T12231] pin_user_pages_remote+0xed/0x140 [ 404.465168][T12231] ? __pfx_pin_user_pages_remote+0x10/0x10 [ 404.465210][T12231] ? mm_access+0x22d/0x2e0 [ 404.465260][T12231] process_vm_rw_core.constprop.0+0x41b/0x970 [ 404.465314][T12231] ? __pfx_process_vm_rw_core.constprop.0+0x10/0x10 [ 404.465355][T12231] ? import_ubuf+0x1b6/0x220 [ 404.465419][T12231] ? iovec_from_user+0xbb/0x140 [ 404.465451][T12231] process_vm_rw+0x216/0x2c0 [ 404.465487][T12231] ? __pfx_process_vm_rw+0x10/0x10 [ 404.465531][T12231] ? do_writev+0x218/0x340 [ 404.465609][T12231] ? xfd_validate_state+0x61/0x180 [ 404.465654][T12231] ? __task_pid_nr_ns+0x1f5/0x500 [ 404.465703][T12231] __x64_sys_process_vm_readv+0xe2/0x1c0 [ 404.465740][T12231] ? do_syscall_64+0x91/0xfa0 [ 404.465778][T12231] ? lockdep_hardirqs_on+0x7c/0x110 [ 404.465815][T12231] do_syscall_64+0xcd/0xfa0 [ 404.465857][T12231] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 404.465889][T12231] RIP: 0033:0x7f9039d8f7c9 [ 404.465915][T12231] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 404.465945][T12231] RSP: 002b:00007f903abad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000136 [ 404.465972][T12231] RAX: ffffffffffffffda RBX: 00007f9039fe5fa0 RCX: 00007f9039d8f7c9 [ 404.465992][T12231] RDX: 0000000000000001 RSI: 0000200000000000 RDI: 0000000000000615 [ 404.466009][T12231] RBP: 00007f9039e13f91 R08: 0000000000000006 R09: 0000000000000000 [ 404.466026][T12231] R10: 0000200000000280 R11: 0000000000000246 R12: 0000000000000000 [ 404.466045][T12231] R13: 00007f9039fe6038 R14: 00007f9039fe5fa0 R15: 00007ffc636c8208 [ 404.466085][T12231] [ 404.499312][T12233] FAULT_INJECTION: forcing a failure. [ 404.499312][T12233] name failslab, interval 1, probability 0, space 0, times 0 [ 404.977561][T12233] CPU: 0 UID: 0 PID: 12233 Comm: syz.0.2328 Tainted: G I syzkaller #0 PREEMPT(full) [ 404.977616][T12233] Tainted: [I]=FIRMWARE_WORKAROUND [ 404.977628][T12233] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 404.977647][T12233] Call Trace: [ 404.977657][T12233] [ 404.977670][T12233] dump_stack_lvl+0x16c/0x1f0 [ 404.977716][T12233] should_fail_ex+0x512/0x640 [ 404.977769][T12233] ? __kmalloc_cache_noprof+0x5f/0x780 [ 404.977806][T12233] should_failslab+0xc2/0x120 [ 404.977850][T12233] __kmalloc_cache_noprof+0x72/0x780 [ 404.977880][T12233] ? __debugfs_file_get+0x1fe/0x840 [ 404.977923][T12233] ? single_open+0x4d/0x1f0 [ 404.977975][T12233] ? __pfx_tk_debug_sleep_time_open+0x10/0x10 [ 404.978010][T12233] ? __pfx_tk_debug_sleep_time_show+0x10/0x10 [ 404.978047][T12233] ? single_open+0x4d/0x1f0 [ 404.978090][T12233] single_open+0x4d/0x1f0 [ 404.978136][T12233] full_proxy_open_regular+0x1b9/0x360 [ 404.978186][T12233] do_dentry_open+0x982/0x1530 [ 404.978226][T12233] ? __pfx_full_proxy_open_regular+0x10/0x10 [ 404.978285][T12233] vfs_open+0x82/0x3f0 [ 404.978329][T12233] path_openat+0x1de4/0x2cb0 [ 404.978373][T12233] ? __pfx_path_openat+0x10/0x10 [ 404.978413][T12233] ? __lock_acquire+0xb8a/0x1c90 [ 404.978460][T12233] do_filp_open+0x20b/0x470 [ 404.978498][T12233] ? __pfx_do_filp_open+0x10/0x10 [ 404.978598][T12233] ? alloc_fd+0x471/0x7d0 [ 404.978643][T12233] do_sys_openat2+0x11b/0x1d0 [ 404.978690][T12233] ? __pfx_do_sys_openat2+0x10/0x10 [ 404.978753][T12233] __x64_sys_openat+0x174/0x210 [ 404.978805][T12233] ? __pfx___x64_sys_openat+0x10/0x10 [ 404.978871][T12233] do_syscall_64+0xcd/0xfa0 [ 404.978913][T12233] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 404.978948][T12233] RIP: 0033:0x7fad6d18f7c9 [ 404.978974][T12233] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 404.979006][T12233] RSP: 002b:00007fad6dffd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 404.979037][T12233] RAX: ffffffffffffffda RBX: 00007fad6d3e5fa0 RCX: 00007fad6d18f7c9 [ 404.979059][T12233] RDX: 0000000000040000 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 404.979079][T12233] RBP: 00007fad6d213f91 R08: 0000000000000000 R09: 0000000000000000 [ 404.979097][T12233] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 404.979114][T12233] R13: 00007fad6d3e6038 R14: 00007fad6d3e5fa0 R15: 00007ffd180afbf8 [ 404.979157][T12233] [ 405.606945][T12241] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2332'. [ 406.073052][T12254] FAULT_INJECTION: forcing a failure. [ 406.073052][T12254] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 406.126164][T12254] CPU: 1 UID: 0 PID: 12254 Comm: syz.2.2336 Tainted: G I syzkaller #0 PREEMPT(full) [ 406.126227][T12254] Tainted: [I]=FIRMWARE_WORKAROUND [ 406.126246][T12254] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 406.126264][T12254] Call Trace: [ 406.126275][T12254] [ 406.126287][T12254] dump_stack_lvl+0x16c/0x1f0 [ 406.126332][T12254] should_fail_ex+0x512/0x640 [ 406.126387][T12254] should_fail_alloc_page+0xe7/0x130 [ 406.126436][T12254] prepare_alloc_pages+0x3c2/0x610 [ 406.126543][T12254] ? rcu_is_watching+0x12/0xc0 [ 406.126602][T12254] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 406.126638][T12254] ? kasan_save_stack+0x33/0x60 [ 406.126676][T12254] ? kasan_save_track+0x14/0x30 [ 406.126723][T12254] ? __lock_acquire+0x622/0x1c90 [ 406.126773][T12254] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 406.126814][T12254] ? css_rstat_updated+0x1c2/0x510 [ 406.126862][T12254] ? __lock_acquire+0x622/0x1c90 [ 406.126911][T12254] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 406.126969][T12254] ? policy_nodemask+0xea/0x4e0 [ 406.127017][T12254] alloc_pages_mpol+0x1fb/0x550 [ 406.127069][T12254] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 406.127127][T12254] folio_alloc_mpol_noprof+0x36/0x2f0 [ 406.127179][T12254] vma_alloc_folio_noprof+0xed/0x1e0 [ 406.127232][T12254] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 406.127299][T12254] do_pte_missing+0x2202/0x3ba0 [ 406.127355][T12254] ? find_held_lock+0x2b/0x80 [ 406.127400][T12254] __handle_mm_fault+0x1556/0x2aa0 [ 406.127496][T12254] ? __pfx___handle_mm_fault+0x10/0x10 [ 406.127548][T12254] ? __pte_offset_map_lock+0x174/0x310 [ 406.127588][T12254] ? find_held_lock+0x2b/0x80 [ 406.127636][T12254] ? follow_page_pte+0x5cf/0x1390 [ 406.127691][T12254] handle_mm_fault+0x589/0xd10 [ 406.127751][T12254] __get_user_pages+0x54e/0x3530 [ 406.127815][T12254] ? __pfx___get_user_pages+0x10/0x10 [ 406.127872][T12254] populate_vma_page_range+0x267/0x3f0 [ 406.127923][T12254] ? __pfx_populate_vma_page_range+0x10/0x10 [ 406.127975][T12254] ? __pfx_find_vma_intersection+0x10/0x10 [ 406.128021][T12254] ? do_mmap+0x69c/0x1210 [ 406.128068][T12254] __mm_populate+0x1d8/0x380 [ 406.128118][T12254] ? __pfx___mm_populate+0x10/0x10 [ 406.128168][T12254] ? up_write+0x1b2/0x520 [ 406.128223][T12254] vm_mmap_pgoff+0x37f/0x470 [ 406.128272][T12254] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 406.128328][T12254] ? __x64_sys_futex+0x1e0/0x4c0 [ 406.128377][T12254] ? __x64_sys_futex+0x1e9/0x4c0 [ 406.128438][T12254] ksys_mmap_pgoff+0x7d/0x5c0 [ 406.128480][T12254] ? xfd_validate_state+0x61/0x180 [ 406.128531][T12254] ? __pfx_do_writev+0x10/0x10 [ 406.128571][T12254] __x64_sys_mmap+0x125/0x190 [ 406.128636][T12254] do_syscall_64+0xcd/0xfa0 [ 406.128681][T12254] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 406.128716][T12254] RIP: 0033:0x7efddd78f7c9 [ 406.128743][T12254] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 406.128779][T12254] RSP: 002b:00007efdde57b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 406.128810][T12254] RAX: ffffffffffffffda RBX: 00007efddd9e5fa0 RCX: 00007efddd78f7c9 [ 406.128832][T12254] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 406.128851][T12254] RBP: 00007efddd813f91 R08: 0000000000000002 R09: 0000000000008000 [ 406.128870][T12254] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 406.128890][T12254] R13: 00007efddd9e6038 R14: 00007efddd9e5fa0 R15: 00007ffefdd607e8 [ 406.128935][T12254] [ 406.651056][T12260] ovs_: entered promiscuous mode [ 406.885747][T12263] mkiss: ax0: crc mode is auto. [ 407.238931][T12273] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2343'. [ 408.740753][T12309] netlink: 334 bytes leftover after parsing attributes in process `syz.3.2356'. [ 409.728399][T12336] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2366'. [ 409.779480][T12336] netlink: 25 bytes leftover after parsing attributes in process `syz.3.2366'. [ 410.334303][T12344] ALSA: mixer_oss: invalid OSS volume '' [ 411.253932][T12361] netlink: 330 bytes leftover after parsing attributes in process `syz.0.2377'. [ 413.333808][T12390] ovs_: entered promiscuous mode [ 414.280956][T12411] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2392'. [ 416.195546][T12432] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2399'. [ 416.278485][T12442] FAULT_INJECTION: forcing a failure. [ 416.278485][T12442] name failslab, interval 1, probability 0, space 0, times 0 [ 416.337702][T12442] CPU: 0 UID: 0 PID: 12442 Comm: syz.2.2401 Tainted: G I syzkaller #0 PREEMPT(full) [ 416.337759][T12442] Tainted: [I]=FIRMWARE_WORKAROUND [ 416.337771][T12442] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 416.337789][T12442] Call Trace: [ 416.337799][T12442] [ 416.337811][T12442] dump_stack_lvl+0x16c/0x1f0 [ 416.337855][T12442] should_fail_ex+0x512/0x640 [ 416.337902][T12442] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 416.337940][T12442] should_failslab+0xc2/0x120 [ 416.337986][T12442] kmem_cache_alloc_noprof+0x75/0x6e0 [ 416.338020][T12442] ? __proc_create+0x2ce/0x8e0 [ 416.338074][T12442] ? __proc_create+0x2ce/0x8e0 [ 416.338118][T12442] __proc_create+0x2ce/0x8e0 [ 416.338163][T12442] ? __pfx___proc_create+0x10/0x10 [ 416.338224][T12442] proc_create_reg+0x7d/0x180 [ 416.338277][T12442] proc_create_data+0x86/0x110 [ 416.338342][T12442] ? __pfx_proc_create_data+0x10/0x10 [ 416.338409][T12442] gss_svc_init_net+0x238/0x660 [ 416.338445][T12442] ? __pfx_canbcm_pernet_init+0x10/0x10 [ 416.338492][T12442] ? __pfx_rpcsec_gss_init_net+0x10/0x10 [ 416.338531][T12442] ops_init+0x1e2/0x5f0 [ 416.338570][T12442] setup_net+0x100/0x390 [ 416.338607][T12442] ? __pfx_setup_net+0x10/0x10 [ 416.338645][T12442] ? debug_mutex_init+0x37/0x70 [ 416.338686][T12442] copy_net_ns+0x2f8/0x690 [ 416.338728][T12442] create_new_namespaces+0x3ea/0xa90 [ 416.338778][T12442] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 416.338821][T12442] ksys_unshare+0x45b/0xa40 [ 416.338866][T12442] ? __pfx_ksys_unshare+0x10/0x10 [ 416.338912][T12442] ? xfd_validate_state+0x61/0x180 [ 416.338974][T12442] __x64_sys_unshare+0x31/0x40 [ 416.339017][T12442] do_syscall_64+0xcd/0xfa0 [ 416.339063][T12442] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 416.339096][T12442] RIP: 0033:0x7efddd78f7c9 [ 416.339123][T12442] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 416.339155][T12442] RSP: 002b:00007efdde57b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 416.339186][T12442] RAX: ffffffffffffffda RBX: 00007efddd9e5fa0 RCX: 00007efddd78f7c9 [ 416.339207][T12442] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 416.339227][T12442] RBP: 00007efddd813f91 R08: 0000000000000000 R09: 0000000000000000 [ 416.339247][T12442] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 416.339266][T12442] R13: 00007efddd9e6038 R14: 00007efddd9e5fa0 R15: 00007ffefdd607e8 [ 416.339320][T12442] [ 418.430376][T12470] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 419.056506][T12478] FAULT_INJECTION: forcing a failure. [ 419.056506][T12478] name failslab, interval 1, probability 0, space 0, times 0 [ 419.077728][T12478] CPU: 0 UID: 0 PID: 12478 Comm: syz.0.2414 Tainted: G I syzkaller #0 PREEMPT(full) [ 419.077781][T12478] Tainted: [I]=FIRMWARE_WORKAROUND [ 419.077793][T12478] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 419.077813][T12478] Call Trace: [ 419.077824][T12478] [ 419.077836][T12478] dump_stack_lvl+0x16c/0x1f0 [ 419.077882][T12478] should_fail_ex+0x512/0x640 [ 419.077930][T12478] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 419.077968][T12478] should_failslab+0xc2/0x120 [ 419.078013][T12478] kmem_cache_alloc_noprof+0x75/0x6e0 [ 419.078046][T12478] ? __x64_sys_openat+0x174/0x210 [ 419.078093][T12478] ? do_syscall_64+0xcd/0xfa0 [ 419.078131][T12478] ? fuse_request_alloc+0x22/0x200 [ 419.078190][T12478] ? fuse_request_alloc+0x22/0x200 [ 419.078236][T12478] fuse_request_alloc+0x22/0x200 [ 419.078287][T12478] fuse_get_req+0x748/0xfd0 [ 419.078336][T12478] ? __pfx_fuse_get_req+0x10/0x10 [ 419.078387][T12478] fuse_simple_background+0x464/0x5f0 [ 419.078420][T12478] ? kasan_save_track+0x14/0x30 [ 419.078462][T12478] cuse_channel_open+0x561/0x7f0 [ 419.078500][T12478] ? __pfx_cuse_channel_open+0x10/0x10 [ 419.078539][T12478] misc_open+0x26d/0x450 [ 419.078586][T12478] ? __pfx_misc_open+0x10/0x10 [ 419.078633][T12478] chrdev_open+0x234/0x6a0 [ 419.078672][T12478] ? __pfx_apparmor_file_open+0x10/0x10 [ 419.078723][T12478] ? __pfx_chrdev_open+0x10/0x10 [ 419.078764][T12478] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 419.078810][T12478] do_dentry_open+0x982/0x1530 [ 419.078849][T12478] ? __pfx_chrdev_open+0x10/0x10 [ 419.078897][T12478] vfs_open+0x82/0x3f0 [ 419.078948][T12478] path_openat+0x1de4/0x2cb0 [ 419.079000][T12478] ? __pfx_path_openat+0x10/0x10 [ 419.079040][T12478] ? __lock_acquire+0xb8a/0x1c90 [ 419.079085][T12478] do_filp_open+0x20b/0x470 [ 419.079118][T12478] ? __pfx_do_filp_open+0x10/0x10 [ 419.079177][T12478] ? alloc_fd+0x471/0x7d0 [ 419.079232][T12478] do_sys_openat2+0x11b/0x1d0 [ 419.079301][T12478] ? __pfx_do_sys_openat2+0x10/0x10 [ 419.079428][T12478] __x64_sys_openat+0x174/0x210 [ 419.079493][T12478] ? __pfx___x64_sys_openat+0x10/0x10 [ 419.079574][T12478] do_syscall_64+0xcd/0xfa0 [ 419.079627][T12478] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 419.079660][T12478] RIP: 0033:0x7fad6d18f7c9 [ 419.079686][T12478] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 419.079717][T12478] RSP: 002b:00007fad6dffd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 419.079747][T12478] RAX: ffffffffffffffda RBX: 00007fad6d3e5fa0 RCX: 00007fad6d18f7c9 [ 419.079767][T12478] RDX: 0000000000000000 RSI: 0000200000000380 RDI: ffffffffffffff9c [ 419.079786][T12478] RBP: 00007fad6d213f91 R08: 0000000000000000 R09: 0000000000000000 [ 419.079804][T12478] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 419.079821][T12478] R13: 00007fad6d3e6038 R14: 00007fad6d3e5fa0 R15: 00007ffd180afbf8 [ 419.079862][T12478] [ 419.693105][T12482] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2415'. [ 421.913127][T12520] netlink: 'syz.2.2429': attribute type 22 has an invalid length. [ 421.941497][T12520] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2429'. [ 422.628182][T12526] netlink: 342 bytes leftover after parsing attributes in process `syz.0.2439'. [ 422.798580][T12525] FAULT_INJECTION: forcing a failure. [ 422.798580][T12525] name failslab, interval 1, probability 0, space 0, times 0 [ 422.847636][T12525] CPU: 1 UID: 0 PID: 12525 Comm: syz.2.2433 Tainted: G I syzkaller #0 PREEMPT(full) [ 422.847690][T12525] Tainted: [I]=FIRMWARE_WORKAROUND [ 422.847702][T12525] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 422.847722][T12525] Call Trace: [ 422.847734][T12525] [ 422.847747][T12525] dump_stack_lvl+0x16c/0x1f0 [ 422.847796][T12525] should_fail_ex+0x512/0x640 [ 422.847845][T12525] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 422.847883][T12525] should_failslab+0xc2/0x120 [ 422.847937][T12525] kmem_cache_alloc_noprof+0x75/0x6e0 [ 422.847970][T12525] ? copy_time_ns+0x346/0x510 [ 422.848004][T12525] ? copy_net_ns+0x31f/0x690 [ 422.848041][T12525] ? copy_fs_struct+0x49/0x340 [ 422.848097][T12525] ? copy_fs_struct+0x49/0x340 [ 422.848144][T12525] copy_fs_struct+0x49/0x340 [ 422.848194][T12525] __do_sys_setns+0x50e/0x1920 [ 422.848233][T12525] ? fput+0x9b/0xd0 [ 422.848276][T12525] ? __pfx___do_sys_setns+0x10/0x10 [ 422.848328][T12525] do_syscall_64+0xcd/0xfa0 [ 422.848371][T12525] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 422.848404][T12525] RIP: 0033:0x7efddd78f7c9 [ 422.848430][T12525] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 422.848463][T12525] RSP: 002b:00007efdde57b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000134 [ 422.848496][T12525] RAX: ffffffffffffffda RBX: 00007efddd9e5fa0 RCX: 00007efddd78f7c9 [ 422.848517][T12525] RDX: 0000000000000000 RSI: 0000000060020000 RDI: 0000000000000004 [ 422.848537][T12525] RBP: 00007efddd813f91 R08: 0000000000000000 R09: 0000000000000000 [ 422.848557][T12525] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 422.848576][T12525] R13: 00007efddd9e6038 R14: 00007efddd9e5fa0 R15: 00007ffefdd607e8 [ 422.848620][T12525] [ 424.384836][T12560] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(16) [ 424.429268][T12560] device-mapper: ioctl: Invalid data size in the ioctl structure: 0 [ 425.132939][T12577] vivid-007: ================= START STATUS ================= [ 425.169154][T12577] vivid-007: Generate PTS: true [ 425.196127][T12577] vivid-007: Generate SCR: true [ 425.239168][T12577] tpg source WxH: 320x240 (Y'CbCr) [ 425.244358][T12577] tpg field: 1 [ 425.407141][T12577] tpg crop: (0,0)/320x240 [ 425.590529][T12577] tpg compose: (0,0)/320x240 [ 425.600708][T12577] tpg colorspace: 8 [ 425.604581][T12577] tpg transfer function: 0/0 [ 425.657750][T12577] tpg Y'CbCr encoding: 0/0 [ 425.697700][T12577] tpg quantization: 0/0 [ 425.737556][T12577] tpg RGB range: 0/2 [ 425.818840][T12577] vivid-007: ================== END STATUS ================== [ 426.245183][T12594] netlink: 'syz.3.2454': attribute type 4 has an invalid length. [ 426.394182][T12596] FAULT_INJECTION: forcing a failure. [ 426.394182][T12596] name failslab, interval 1, probability 0, space 0, times 0 [ 426.437600][T12596] CPU: 0 UID: 0 PID: 12596 Comm: syz.0.2455 Tainted: G I syzkaller #0 PREEMPT(full) [ 426.437660][T12596] Tainted: [I]=FIRMWARE_WORKAROUND [ 426.437672][T12596] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 426.437691][T12596] Call Trace: [ 426.437702][T12596] [ 426.437715][T12596] dump_stack_lvl+0x16c/0x1f0 [ 426.437762][T12596] should_fail_ex+0x512/0x640 [ 426.437811][T12596] ? kmem_cache_alloc_node_noprof+0x65/0x770 [ 426.437852][T12596] should_failslab+0xc2/0x120 [ 426.437899][T12596] kmem_cache_alloc_node_noprof+0x78/0x770 [ 426.437935][T12596] ? __alloc_skb+0x2b2/0x380 [ 426.437994][T12596] ? __alloc_skb+0x2b2/0x380 [ 426.438041][T12596] __alloc_skb+0x2b2/0x380 [ 426.438094][T12596] ? __pfx___alloc_skb+0x10/0x10 [ 426.438150][T12596] ? idr_get_next+0xec/0x150 [ 426.438186][T12596] ? __pfx_idr_get_next+0x10/0x10 [ 426.438228][T12596] ctrl_build_family_msg+0x36/0xa0 [ 426.438278][T12596] ctrl_getfamily+0x354/0x540 [ 426.438321][T12596] ? __pfx_ctrl_getfamily+0x10/0x10 [ 426.438366][T12596] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 426.438411][T12596] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 426.438465][T12596] genl_family_rcv_msg_doit+0x209/0x2f0 [ 426.438513][T12596] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 426.438557][T12596] ? genl_get_cmd+0x194/0x580 [ 426.438609][T12596] ? __radix_tree_lookup+0x21f/0x2c0 [ 426.438659][T12596] genl_rcv_msg+0x55c/0x800 [ 426.438705][T12596] ? __pfx_genl_rcv_msg+0x10/0x10 [ 426.438750][T12596] ? __pfx_ctrl_getfamily+0x10/0x10 [ 426.438805][T12596] netlink_rcv_skb+0x158/0x420 [ 426.438841][T12596] ? __pfx_genl_rcv_msg+0x10/0x10 [ 426.438884][T12596] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 426.438946][T12596] genl_rcv+0x28/0x40 [ 426.438980][T12596] netlink_unicast+0x5aa/0x870 [ 426.439019][T12596] ? __pfx_netlink_unicast+0x10/0x10 [ 426.439068][T12596] netlink_sendmsg+0x8c8/0xdd0 [ 426.439115][T12596] ? __pfx_netlink_sendmsg+0x10/0x10 [ 426.439157][T12596] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 426.439211][T12596] __sys_sendto+0x4a3/0x520 [ 426.439272][T12596] ? __pfx___sys_sendto+0x10/0x10 [ 426.439335][T12596] ? find_held_lock+0x2b/0x80 [ 426.439402][T12596] __x64_sys_sendto+0xe0/0x1c0 [ 426.439451][T12596] ? do_syscall_64+0x91/0xfa0 [ 426.439491][T12596] ? lockdep_hardirqs_on+0x7c/0x110 [ 426.439531][T12596] do_syscall_64+0xcd/0xfa0 [ 426.439571][T12596] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 426.439604][T12596] RIP: 0033:0x7fad6d19165c [ 426.439629][T12596] Code: 2a 5f 02 00 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 70 5f 02 00 48 8b [ 426.439669][T12596] RSP: 002b:00007fad6dffbec0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 426.439702][T12596] RAX: ffffffffffffffda RBX: 00007fad6dffbfc0 RCX: 00007fad6d19165c [ 426.439725][T12596] RDX: 0000000000000024 RSI: 00007fad6dffc010 RDI: 0000000000000003 [ 426.439746][T12596] RBP: 0000000000000000 R08: 00007fad6dffbf14 R09: 000000000000000c [ 426.439767][T12596] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003 [ 426.439787][T12596] R13: 00007fad6dffbf68 R14: 00007fad6dffc010 R15: 0000000000000000 [ 426.439832][T12596] [ 429.003996][T12629] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2466'. [ 430.232081][T12650] usbip-vudc usbip-vudc.0: gadget not bound [ 433.813586][T12699] netlink: 'syz.0.2499': attribute type 4 has an invalid length. [ 435.276448][T12732] netlink: 146 bytes leftover after parsing attributes in process `syz.0.2505'. [ 435.362608][T12730] FAULT_INJECTION: forcing a failure. [ 435.362608][T12730] name failslab, interval 1, probability 0, space 0, times 0 [ 435.420124][T12730] CPU: 0 UID: 0 PID: 12730 Comm: syz.2.2504 Tainted: G I syzkaller #0 PREEMPT(full) [ 435.420180][T12730] Tainted: [I]=FIRMWARE_WORKAROUND [ 435.420193][T12730] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 435.420212][T12730] Call Trace: [ 435.420223][T12730] [ 435.420235][T12730] dump_stack_lvl+0x16c/0x1f0 [ 435.420283][T12730] should_fail_ex+0x512/0x640 [ 435.420336][T12730] ? __kmalloc_cache_noprof+0x5f/0x780 [ 435.420376][T12730] should_failslab+0xc2/0x120 [ 435.420422][T12730] __kmalloc_cache_noprof+0x72/0x780 [ 435.420457][T12730] ? snd_seq_prioq_new+0x3f/0x110 [ 435.420496][T12730] ? snd_seq_prioq_new+0x3f/0x110 [ 435.420528][T12730] snd_seq_prioq_new+0x3f/0x110 [ 435.420558][T12730] snd_seq_queue_alloc+0x12b/0x5a0 [ 435.420624][T12730] snd_seq_ioctl_create_queue+0xa9/0x390 [ 435.420672][T12730] call_seq_client_ctl+0x9f/0x110 [ 435.420711][T12730] snd_seq_kernel_client_ctl+0x77/0xd0 [ 435.420751][T12730] alloc_seq_queue+0xda/0x180 [ 435.420795][T12730] ? __pfx_alloc_seq_queue+0x10/0x10 [ 435.420859][T12730] ? mark_held_locks+0x49/0x80 [ 435.420903][T12730] ? _raw_spin_unlock_irq+0x23/0x50 [ 435.420939][T12730] ? lockdep_hardirqs_on+0x7c/0x110 [ 435.420983][T12730] snd_seq_oss_open+0x38c/0xa20 [ 435.421035][T12730] odev_open+0x79/0xc0 [ 435.421070][T12730] ? __pfx_odev_open+0x10/0x10 [ 435.421107][T12730] soundcore_open+0x40c/0x580 [ 435.421150][T12730] ? __pfx_soundcore_open+0x10/0x10 [ 435.421190][T12730] chrdev_open+0x234/0x6a0 [ 435.421230][T12730] ? __pfx_apparmor_file_open+0x10/0x10 [ 435.421281][T12730] ? __pfx_chrdev_open+0x10/0x10 [ 435.421324][T12730] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 435.421372][T12730] do_dentry_open+0x982/0x1530 [ 435.421412][T12730] ? __pfx_chrdev_open+0x10/0x10 [ 435.421463][T12730] vfs_open+0x82/0x3f0 [ 435.421517][T12730] path_openat+0x1de4/0x2cb0 [ 435.421615][T12730] ? __pfx_path_openat+0x10/0x10 [ 435.421658][T12730] ? __lock_acquire+0xb8a/0x1c90 [ 435.421708][T12730] do_filp_open+0x20b/0x470 [ 435.421747][T12730] ? __pfx_do_filp_open+0x10/0x10 [ 435.421816][T12730] ? alloc_fd+0x471/0x7d0 [ 435.421863][T12730] do_sys_openat2+0x11b/0x1d0 [ 435.421916][T12730] ? __pfx_do_sys_openat2+0x10/0x10 [ 435.421969][T12730] ? __pfx___might_resched+0x10/0x10 [ 435.422016][T12730] __x64_sys_openat+0x174/0x210 [ 435.422065][T12730] ? __pfx___x64_sys_openat+0x10/0x10 [ 435.422133][T12730] do_syscall_64+0xcd/0xfa0 [ 435.422178][T12730] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 435.422210][T12730] RIP: 0033:0x7efddd78f7c9 [ 435.422237][T12730] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 435.422269][T12730] RSP: 002b:00007efdde57b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 435.422300][T12730] RAX: ffffffffffffffda RBX: 00007efddd9e5fa0 RCX: 00007efddd78f7c9 [ 435.422322][T12730] RDX: 00000000001c8340 RSI: 0000200000000540 RDI: ffffffffffffff9c [ 435.422342][T12730] RBP: 00007efddd813f91 R08: 0000000000000000 R09: 0000000000000000 [ 435.422361][T12730] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 435.422381][T12730] R13: 00007efddd9e6038 R14: 00007efddd9e5fa0 R15: 00007ffefdd607e8 [ 435.422426][T12730] [ 436.637781][T12742] netlink: 334 bytes leftover after parsing attributes in process `syz.3.2508'. [ 436.719872][T12750] netlink: 186 bytes leftover after parsing attributes in process `syz.2.2509'. [ 437.296329][T12760] FAULT_INJECTION: forcing a failure. [ 437.296329][T12760] name failslab, interval 1, probability 0, space 0, times 0 [ 437.329095][T12760] CPU: 0 UID: 0 PID: 12760 Comm: syz.0.2516 Tainted: G I syzkaller #0 PREEMPT(full) [ 437.329150][T12760] Tainted: [I]=FIRMWARE_WORKAROUND [ 437.329162][T12760] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 437.329181][T12760] Call Trace: [ 437.329192][T12760] [ 437.329204][T12760] dump_stack_lvl+0x16c/0x1f0 [ 437.329249][T12760] should_fail_ex+0x512/0x640 [ 437.329301][T12760] ? __kmalloc_cache_noprof+0x5f/0x780 [ 437.329337][T12760] should_failslab+0xc2/0x120 [ 437.329383][T12760] __kmalloc_cache_noprof+0x72/0x780 [ 437.329416][T12760] ? sw_sync_debugfs_open+0x177/0x410 [ 437.329468][T12760] ? sw_sync_debugfs_open+0x177/0x410 [ 437.329509][T12760] sw_sync_debugfs_open+0x177/0x410 [ 437.329550][T12760] ? __debugfs_file_get+0x1fe/0x840 [ 437.329593][T12760] ? __pfx_sw_sync_debugfs_open+0x10/0x10 [ 437.329635][T12760] ? do_raw_spin_lock+0x12c/0x2b0 [ 437.329697][T12760] ? lockdown_is_locked_down+0x3f/0x130 [ 437.329742][T12760] ? bpf_lsm_locked_down+0x9/0x10 [ 437.329790][T12760] ? __pfx_sw_sync_debugfs_open+0x10/0x10 [ 437.329834][T12760] open_proxy_open+0x21f/0x320 [ 437.329885][T12760] do_dentry_open+0x982/0x1530 [ 437.329925][T12760] ? __pfx_open_proxy_open+0x10/0x10 [ 437.329978][T12760] vfs_open+0x82/0x3f0 [ 437.330030][T12760] path_openat+0x1de4/0x2cb0 [ 437.330080][T12760] ? __pfx_path_openat+0x10/0x10 [ 437.330120][T12760] ? __lock_acquire+0xb8a/0x1c90 [ 437.330167][T12760] do_filp_open+0x20b/0x470 [ 437.330204][T12760] ? __pfx_do_filp_open+0x10/0x10 [ 437.330271][T12760] ? alloc_fd+0x471/0x7d0 [ 437.330318][T12760] do_sys_openat2+0x11b/0x1d0 [ 437.330366][T12760] ? __pfx_do_sys_openat2+0x10/0x10 [ 437.330435][T12760] __x64_sys_openat+0x174/0x210 [ 437.330484][T12760] ? __pfx___x64_sys_openat+0x10/0x10 [ 437.330552][T12760] do_syscall_64+0xcd/0xfa0 [ 437.330595][T12760] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 437.330628][T12760] RIP: 0033:0x7fad6d18f7c9 [ 437.330653][T12760] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 437.330691][T12760] RSP: 002b:00007fad6dffd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 437.330723][T12760] RAX: ffffffffffffffda RBX: 00007fad6d3e5fa0 RCX: 00007fad6d18f7c9 [ 437.330745][T12760] RDX: 00000000000c0040 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 437.330766][T12760] RBP: 00007fad6d213f91 R08: 0000000000000000 R09: 0000000000000000 [ 437.330786][T12760] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 437.330806][T12760] R13: 00007fad6d3e6038 R14: 00007fad6d3e5fa0 R15: 00007ffd180afbf8 [ 437.330849][T12760] [ 437.784633][T12764] ERROR: Out of memory at tomoyo_memory_ok. [ 438.248723][T12768] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff) [ 438.465742][T12762] FAULT_INJECTION: forcing a failure. [ 438.465742][T12762] name failslab, interval 1, probability 0, space 0, times 0 [ 438.557656][T12762] CPU: 0 UID: 0 PID: 12762 Comm: syz.2.2515 Tainted: G I syzkaller #0 PREEMPT(full) [ 438.557708][T12762] Tainted: [I]=FIRMWARE_WORKAROUND [ 438.557727][T12762] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 438.557745][T12762] Call Trace: [ 438.557755][T12762] [ 438.557767][T12762] dump_stack_lvl+0x16c/0x1f0 [ 438.557813][T12762] should_fail_ex+0x512/0x640 [ 438.557864][T12762] ? __kmalloc_noprof+0xca/0x880 [ 438.557899][T12762] should_failslab+0xc2/0x120 [ 438.557945][T12762] __kmalloc_noprof+0xdd/0x880 [ 438.557978][T12762] ? realloc_user_queue+0x288/0x320 [ 438.558033][T12762] ? realloc_user_queue+0x288/0x320 [ 438.558079][T12762] realloc_user_queue+0x288/0x320 [ 438.558128][T12762] ? __pfx_snd_timer_user_open+0x10/0x10 [ 438.558176][T12762] snd_timer_user_open+0xfc/0x180 [ 438.558226][T12762] snd_open+0x22d/0x4c0 [ 438.558318][T12762] ? __pfx_snd_open+0x10/0x10 [ 438.558359][T12762] chrdev_open+0x234/0x6a0 [ 438.558400][T12762] ? __pfx_apparmor_file_open+0x10/0x10 [ 438.558453][T12762] ? __pfx_chrdev_open+0x10/0x10 [ 438.558496][T12762] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 438.558543][T12762] do_dentry_open+0x982/0x1530 [ 438.558583][T12762] ? __pfx_chrdev_open+0x10/0x10 [ 438.558634][T12762] vfs_open+0x82/0x3f0 [ 438.558688][T12762] path_openat+0x1de4/0x2cb0 [ 438.558739][T12762] ? __pfx_path_openat+0x10/0x10 [ 438.558778][T12762] ? __lock_acquire+0xb8a/0x1c90 [ 438.558830][T12762] do_filp_open+0x20b/0x470 [ 438.558869][T12762] ? __pfx_do_filp_open+0x10/0x10 [ 438.558936][T12762] ? alloc_fd+0x471/0x7d0 [ 438.558982][T12762] do_sys_openat2+0x11b/0x1d0 [ 438.559033][T12762] ? __pfx_do_sys_openat2+0x10/0x10 [ 438.559087][T12762] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 438.559171][T12762] __x64_sys_openat+0x174/0x210 [ 438.559223][T12762] ? __pfx___x64_sys_openat+0x10/0x10 [ 438.559299][T12762] do_syscall_64+0xcd/0xfa0 [ 438.559344][T12762] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 438.559379][T12762] RIP: 0033:0x7efddd78f7c9 [ 438.559407][T12762] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 438.559440][T12762] RSP: 002b:00007efdde57b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 438.559471][T12762] RAX: ffffffffffffffda RBX: 00007efddd9e5fa0 RCX: 00007efddd78f7c9 [ 438.559493][T12762] RDX: 0000000000000001 RSI: 0000200000000240 RDI: ffffffffffffff9c [ 438.559512][T12762] RBP: 00007efddd813f91 R08: 0000000000000000 R09: 0000000000000000 [ 438.559530][T12762] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 438.559548][T12762] R13: 00007efddd9e6038 R14: 00007efddd9e5fa0 R15: 00007ffefdd607e8 [ 438.559592][T12762] [ 438.945024][T12783] netlink: 318 bytes leftover after parsing attributes in process `syz.1.2523'. [ 440.759774][T12806] netlink: 146 bytes leftover after parsing attributes in process `syz.0.2531'. [ 441.989620][T12821] FAULT_INJECTION: forcing a failure. [ 441.989620][T12821] name failslab, interval 1, probability 0, space 0, times 0 [ 442.027900][T12821] CPU: 1 UID: 0 PID: 12821 Comm: syz.1.2536 Tainted: G I syzkaller #0 PREEMPT(full) [ 442.027954][T12821] Tainted: [I]=FIRMWARE_WORKAROUND [ 442.027967][T12821] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 442.027987][T12821] Call Trace: [ 442.027998][T12821] [ 442.028010][T12821] dump_stack_lvl+0x16c/0x1f0 [ 442.028056][T12821] should_fail_ex+0x512/0x640 [ 442.028105][T12821] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 442.028144][T12821] should_failslab+0xc2/0x120 [ 442.028191][T12821] kmem_cache_alloc_noprof+0x75/0x6e0 [ 442.028233][T12821] ? alloc_vfsmnt+0x23/0x6b0 [ 442.028283][T12821] ? alloc_vfsmnt+0x23/0x6b0 [ 442.028325][T12821] alloc_vfsmnt+0x23/0x6b0 [ 442.028366][T12821] ? getname_flags.part.0+0x1c5/0x550 [ 442.028417][T12821] mnt_clone_internal+0x81/0x250 [ 442.028458][T12821] acct_on+0xfb/0xa00 [ 442.028511][T12821] ? __pfx_acct_on+0x10/0x10 [ 442.028563][T12821] ? bpf_lsm_capable+0x9/0x10 [ 442.028616][T12821] __x64_sys_acct+0x81/0x1e0 [ 442.028662][T12821] ? lockdep_hardirqs_on+0x7c/0x110 [ 442.028704][T12821] do_syscall_64+0xcd/0xfa0 [ 442.028746][T12821] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 442.028778][T12821] RIP: 0033:0x7f3bfdf8f7c9 [ 442.028804][T12821] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 442.028837][T12821] RSP: 002b:00007f3bfeef4038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3 [ 442.028868][T12821] RAX: ffffffffffffffda RBX: 00007f3bfe1e5fa0 RCX: 00007f3bfdf8f7c9 [ 442.028890][T12821] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000100 [ 442.028909][T12821] RBP: 00007f3bfe013f91 R08: 0000000000000000 R09: 0000000000000000 [ 442.028928][T12821] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 442.028946][T12821] R13: 00007f3bfe1e6038 R14: 00007f3bfe1e5fa0 R15: 00007ffc97a5b1b8 [ 442.028989][T12821] [ 442.728098][T12828] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2538'. [ 442.791848][T12828] netlink: 214 bytes leftover after parsing attributes in process `syz.2.2538'. [ 442.821099][T12828] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 442.828937][T12828] IPv6: NLM_F_CREATE should be set when creating new route [ 442.836243][T12828] IPv6: NLM_F_CREATE should be set when creating new route [ 442.843588][T12828] IPv6: NLM_F_CREATE should be set when creating new route [ 444.375483][T12869] FAULT_INJECTION: forcing a failure. [ 444.375483][T12869] name failslab, interval 1, probability 0, space 0, times 0 [ 444.393214][T12870] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0] [ 444.405634][T12869] CPU: 1 UID: 0 PID: 12869 Comm: syz.0.2554 Tainted: G I syzkaller #0 PREEMPT(full) [ 444.405684][T12869] Tainted: [I]=FIRMWARE_WORKAROUND [ 444.405696][T12869] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 444.405716][T12869] Call Trace: [ 444.405726][T12869] [ 444.405738][T12869] dump_stack_lvl+0x16c/0x1f0 [ 444.405793][T12869] should_fail_ex+0x512/0x640 [ 444.405842][T12869] ? __kmalloc_noprof+0xca/0x880 [ 444.405877][T12869] should_failslab+0xc2/0x120 [ 444.405923][T12869] __kmalloc_noprof+0xdd/0x880 [ 444.405956][T12869] ? __register_sysctl_table+0xea2/0x1900 [ 444.406016][T12869] ? __register_sysctl_table+0xea2/0x1900 [ 444.406064][T12869] __register_sysctl_table+0xea2/0x1900 [ 444.406124][T12869] ? __pfx___register_sysctl_table+0x10/0x10 [ 444.406173][T12869] ? is_module_address+0x69/0xf0 [ 444.406221][T12869] ? register_net_sysctl_sz+0x228/0x3e0 [ 444.406281][T12869] __devinet_sysctl_register+0x1b9/0x360 [ 444.406330][T12869] ? rcu_is_watching+0x12/0xc0 [ 444.406364][T12869] ? __pfx___devinet_sysctl_register+0x10/0x10 [ 444.406408][T12869] ? __kmalloc_node_track_caller_noprof+0x362/0x8a0 [ 444.406461][T12869] ? __asan_memcpy+0x3c/0x60 [ 444.406500][T12869] devinet_init_net+0x315/0x910 [ 444.406547][T12869] ? __pfx_devinet_init_net+0x10/0x10 [ 444.406591][T12869] ops_init+0x1e2/0x5f0 [ 444.406630][T12869] setup_net+0x100/0x390 [ 444.406664][T12869] ? __pfx_setup_net+0x10/0x10 [ 444.406700][T12869] ? debug_mutex_init+0x37/0x70 [ 444.406739][T12869] copy_net_ns+0x2f8/0x690 [ 444.406789][T12869] create_new_namespaces+0x3ea/0xa90 [ 444.406837][T12869] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 444.406880][T12869] ksys_unshare+0x45b/0xa40 [ 444.406924][T12869] ? __pfx_ksys_unshare+0x10/0x10 [ 444.406970][T12869] ? xfd_validate_state+0x61/0x180 [ 444.407030][T12869] __x64_sys_unshare+0x31/0x40 [ 444.407073][T12869] do_syscall_64+0xcd/0xfa0 [ 444.407116][T12869] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 444.407148][T12869] RIP: 0033:0x7fad6d18f7c9 [ 444.407174][T12869] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 444.407207][T12869] RSP: 002b:00007fad6dffd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 444.407236][T12869] RAX: ffffffffffffffda RBX: 00007fad6d3e5fa0 RCX: 00007fad6d18f7c9 [ 444.407257][T12869] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 444.407276][T12869] RBP: 00007fad6d213f91 R08: 0000000000000000 R09: 0000000000000000 [ 444.407296][T12869] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 444.407316][T12869] R13: 00007fad6d3e6038 R14: 00007fad6d3e5fa0 R15: 00007ffd180afbf8 [ 444.407361][T12869] [ 444.407375][T12869] sysctl could not get directory: /net/ipv4/conf/all -12 [ 444.738989][T12872] FAULT_INJECTION: forcing a failure. [ 444.738989][T12872] name failslab, interval 1, probability 0, space 0, times 0 [ 444.752413][T12872] CPU: 1 UID: 0 PID: 12872 Comm: syz.2.2557 Tainted: G I syzkaller #0 PREEMPT(full) [ 444.752467][T12872] Tainted: [I]=FIRMWARE_WORKAROUND [ 444.752480][T12872] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 444.752500][T12872] Call Trace: [ 444.752510][T12872] [ 444.752521][T12872] dump_stack_lvl+0x16c/0x1f0 [ 444.752569][T12872] should_fail_ex+0x512/0x640 [ 444.752627][T12872] should_failslab+0xc2/0x120 [ 444.752672][T12872] kmem_cache_alloc_node_noprof+0x78/0x770 [ 444.752710][T12872] ? __alloc_skb+0x2b2/0x380 [ 444.752795][T12872] ? __alloc_skb+0x2b2/0x380 [ 444.752843][T12872] __alloc_skb+0x2b2/0x380 [ 444.752894][T12872] ? __pfx___alloc_skb+0x10/0x10 [ 444.752943][T12872] ? net_generic+0xf4/0x2a0 [ 444.752991][T12872] tipc_buf_acquire+0x26/0xe0 [ 444.753023][T12872] tipc_msg_reverse+0x1e9/0x920 [ 444.753066][T12872] tipc_sk_rcv+0x164f/0x1c40 [ 444.753114][T12872] ? __pfx_tipc_sk_rcv+0x10/0x10 [ 444.753147][T12872] ? __lock_acquire+0x622/0x1c90 [ 444.753216][T12872] ? find_held_lock+0x2b/0x80 [ 444.753253][T12872] ? lockdep_init_map_type+0x5c/0x280 [ 444.753306][T12872] tipc_node_xmit+0x232/0xfc0 [ 444.753348][T12872] ? __pfx_tipc_node_xmit+0x10/0x10 [ 444.753402][T12872] ? skb_clone+0x1e8/0x3f0 [ 444.753444][T12872] ? __tipc_sendmsg+0xb3f/0x19a0 [ 444.753472][T12872] __tipc_sendmsg+0xb3f/0x19a0 [ 444.753517][T12872] ? __pfx___tipc_sendmsg+0x10/0x10 [ 444.753562][T12872] ? __pfx_woken_wake_function+0x10/0x10 [ 444.753619][T12872] ? __local_bh_enable_ip+0xa4/0x120 [ 444.753663][T12872] tipc_connect+0x53a/0x690 [ 444.753694][T12872] ? __pfx_tipc_connect+0x10/0x10 [ 444.753730][T12872] ? aa_sk_perm+0x2f4/0xb10 [ 444.753768][T12872] ? __pfx_tomoyo_socket_connect_permission+0x10/0x10 [ 444.753829][T12872] ? apparmor_socket_connect+0x100/0x1d0 [ 444.753880][T12872] ? __pfx_tipc_connect+0x10/0x10 [ 444.753908][T12872] __sys_connect_file+0x141/0x1a0 [ 444.753961][T12872] __sys_connect+0x13b/0x160 [ 444.754009][T12872] ? __pfx___sys_connect+0x10/0x10 [ 444.754074][T12872] ? xfd_validate_state+0x61/0x180 [ 444.754122][T12872] ? __pfx_do_writev+0x10/0x10 [ 444.754164][T12872] __x64_sys_connect+0x72/0xb0 [ 444.754210][T12872] ? lockdep_hardirqs_on+0x7c/0x110 [ 444.754251][T12872] do_syscall_64+0xcd/0xfa0 [ 444.754296][T12872] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 444.754329][T12872] RIP: 0033:0x7efddd78f7c9 [ 444.754356][T12872] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 444.754390][T12872] RSP: 002b:00007efdde57b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 444.754421][T12872] RAX: ffffffffffffffda RBX: 00007efddd9e5fa0 RCX: 00007efddd78f7c9 [ 444.754443][T12872] RDX: 0000000000000010 RSI: 0000200000000040 RDI: 0000000000000005 [ 444.754462][T12872] RBP: 00007efddd813f91 R08: 0000000000000000 R09: 0000000000000000 [ 444.754482][T12872] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 444.754501][T12872] R13: 00007efddd9e6038 R14: 00007efddd9e5fa0 R15: 00007ffefdd607e8 [ 444.754545][T12872] [ 445.794457][ T2997] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 445.942799][ T2997] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 446.053802][ T2997] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 446.186259][T12882] EXT4-fs error (device sda1): ext4_validate_inode_bitmap:104: comm syz-executor: Corrupt inode bitmap - block_group = 0, inode_bitmap = 137 [ 446.218313][ T2997] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 446.231039][T12882] EXT4-fs error (device sda1): ext4_validate_inode_bitmap:104: comm syz-executor: Corrupt inode bitmap - block_group = 1, inode_bitmap = 138 [ 446.268737][T12882] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm syz-executor: bg 0: bad block bitmap checksum [ 446.577891][ T2997] bridge_slave_1: left allmulticast mode [ 446.584311][ T2997] bridge_slave_1: left promiscuous mode [ 446.603688][ T2997] bridge0: port 2(bridge_slave_1) entered disabled state [ 446.682846][ T2997] bridge_slave_0: left allmulticast mode [ 446.704309][ T2997] bridge_slave_0: left promiscuous mode [ 446.717813][ T2997] bridge0: port 1(bridge_slave_0) entered disabled state [ 447.167511][T12901] FAULT_INJECTION: forcing a failure. [ 447.167511][T12901] name failslab, interval 1, probability 0, space 0, times 0 [ 447.240938][T12901] CPU: 1 UID: 0 PID: 12901 Comm: syz.1.2570 Tainted: G I syzkaller #0 PREEMPT(full) [ 447.240990][T12901] Tainted: [I]=FIRMWARE_WORKAROUND [ 447.241003][T12901] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 447.241023][T12901] Call Trace: [ 447.241033][T12901] [ 447.241047][T12901] dump_stack_lvl+0x16c/0x1f0 [ 447.241093][T12901] should_fail_ex+0x512/0x640 [ 447.241143][T12901] ? __kmalloc_noprof+0xca/0x880 [ 447.241180][T12901] should_failslab+0xc2/0x120 [ 447.241227][T12901] __kmalloc_noprof+0xdd/0x880 [ 447.241260][T12901] ? lsm_blob_alloc+0x68/0x90 [ 447.241310][T12901] ? lsm_blob_alloc+0x68/0x90 [ 447.241352][T12901] lsm_blob_alloc+0x68/0x90 [ 447.241396][T12901] security_sk_alloc+0x30/0x270 [ 447.241448][T12901] sk_prot_alloc+0xfb/0x2a0 [ 447.241491][T12901] sk_alloc+0x36/0xc20 [ 447.241554][T12901] inet_create+0x3a1/0x1040 [ 447.241605][T12901] ? inet_create+0x93/0x1040 [ 447.241655][T12901] __sock_create+0x338/0x8d0 [ 447.241707][T12901] mptcp_subflow_create_socket+0xec/0xa10 [ 447.241761][T12901] ? __pfx_mptcp_subflow_create_socket+0x10/0x10 [ 447.241811][T12901] ? find_held_lock+0x2b/0x80 [ 447.241853][T12901] __mptcp_nmpc_sk+0x182/0x890 [ 447.241903][T12901] ? __pfx___mptcp_nmpc_sk+0x10/0x10 [ 447.241954][T12901] ? register_lock_class+0x41/0x4c0 [ 447.242012][T12901] mptcp_connect+0x7e/0xae0 [ 447.242068][T12901] __inet_stream_connect+0x915/0xf50 [ 447.242128][T12901] ? __pfx___inet_stream_connect+0x10/0x10 [ 447.242180][T12901] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 447.242239][T12901] ? __pfx_inet_stream_connect+0x10/0x10 [ 447.242289][T12901] ? __local_bh_enable_ip+0xa4/0x120 [ 447.242332][T12901] ? __pfx_inet_stream_connect+0x10/0x10 [ 447.242380][T12901] inet_stream_connect+0x57/0xa0 [ 447.242432][T12901] __sys_connect_file+0x141/0x1a0 [ 447.242487][T12901] __sys_connect+0x13b/0x160 [ 447.242547][T12901] ? __pfx___sys_connect+0x10/0x10 [ 447.242612][T12901] ? xfd_validate_state+0x61/0x180 [ 447.242658][T12901] ? __pfx_ksys_write+0x10/0x10 [ 447.242705][T12901] __x64_sys_connect+0x72/0xb0 [ 447.242752][T12901] ? lockdep_hardirqs_on+0x7c/0x110 [ 447.242791][T12901] do_syscall_64+0xcd/0xfa0 [ 447.242835][T12901] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 447.242866][T12901] RIP: 0033:0x7f3bfdf8f7c9 [ 447.242892][T12901] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 447.242925][T12901] RSP: 002b:00007f3bfeef4038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 447.242957][T12901] RAX: ffffffffffffffda RBX: 00007f3bfe1e5fa0 RCX: 00007f3bfdf8f7c9 [ 447.242978][T12901] RDX: 0000000000000054 RSI: 0000200000000080 RDI: 0000000000000003 [ 447.242998][T12901] RBP: 00007f3bfe013f91 R08: 0000000000000000 R09: 0000000000000000 [ 447.243018][T12901] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 447.243036][T12901] R13: 00007f3bfe1e6038 R14: 00007f3bfe1e5fa0 R15: 00007ffc97a5b1b8 [ 447.243080][T12901] [ 447.809465][ T5841] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 447.822595][ T5841] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 447.847641][ T5841] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 447.856673][ T5841] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 447.864842][ T5841] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 448.474395][ T2997] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 448.500511][ T2997] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 448.514244][ T2997] bond0 (unregistering): Released all slaves [ 448.613490][ T2997] ovs_: left promiscuous mode [ 449.223719][ T2997] hsr_slave_0: left promiscuous mode [ 449.266204][ T2997] hsr_slave_1: left promiscuous mode [ 449.333808][ T2997] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 449.368080][ T2997] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 449.479316][ T2997] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 449.513145][ T2997] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 449.697555][ T2997] veth1_macvtap: left promiscuous mode [ 449.704057][ T2997] veth0_macvtap: left promiscuous mode [ 449.728212][ T2997] veth1_vlan: left promiscuous mode [ 449.733820][ T2997] veth0_vlan: left promiscuous mode [ 449.952990][ T5841] Bluetooth: hci1: command tx timeout [ 450.052631][T12936] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2582'. [ 450.888256][ T2997] team0 (unregistering): Port device team_slave_1 removed [ 450.912340][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 450.926196][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 450.984644][ T2997] team0 (unregistering): Port device team_slave_0 removed [ 451.991548][T12946] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2584'. [ 452.029644][ T5841] Bluetooth: hci1: command tx timeout [ 452.056846][T12905] chnl_net:caif_netlink_parms(): no params data found [ 452.321262][T12955] syz.1.2586 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 452.406189][T12905] bridge0: port 1(bridge_slave_0) entered blocking state [ 452.437288][T12905] bridge0: port 1(bridge_slave_0) entered disabled state [ 452.468956][T12905] bridge_slave_0: entered allmulticast mode [ 452.494242][T12905] bridge_slave_0: entered promiscuous mode [ 452.534508][T12905] bridge0: port 2(bridge_slave_1) entered blocking state [ 452.547743][T12905] bridge0: port 2(bridge_slave_1) entered disabled state [ 452.565401][T12905] bridge_slave_1: entered allmulticast mode [ 452.585524][T12905] bridge_slave_1: entered promiscuous mode [ 452.695047][T12905] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 452.744185][T12905] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 452.872029][T12905] team0: Port device team_slave_0 added [ 452.872367][T12964] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input6 [ 452.890244][T12905] team0: Port device team_slave_1 added [ 452.973884][T12905] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 453.002683][T12905] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 453.068948][T12905] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 453.093147][T12905] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 453.112349][T12905] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 453.140991][T12971] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2592'. [ 453.172035][T12905] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 453.321869][T12905] hsr_slave_0: entered promiscuous mode [ 453.338969][T12905] hsr_slave_1: entered promiscuous mode [ 453.351435][T12905] debugfs: 'hsr0' already exists in 'hsr' [ 453.364046][T12905] Cannot create hsr debugfs directory [ 453.406854][T12976] FAULT_INJECTION: forcing a failure. [ 453.406854][T12976] name failslab, interval 1, probability 0, space 0, times 0 [ 453.440723][T12976] CPU: 0 UID: 0 PID: 12976 Comm: syz.0.2594 Tainted: G I syzkaller #0 PREEMPT(full) [ 453.440774][T12976] Tainted: [I]=FIRMWARE_WORKAROUND [ 453.440786][T12976] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 453.440805][T12976] Call Trace: [ 453.440816][T12976] [ 453.440829][T12976] dump_stack_lvl+0x16c/0x1f0 [ 453.440874][T12976] should_fail_ex+0x512/0x640 [ 453.440921][T12976] ? fs_reclaim_acquire+0xae/0x150 [ 453.440972][T12976] should_failslab+0xc2/0x120 [ 453.441016][T12976] kmem_cache_alloc_noprof+0x75/0x6e0 [ 453.441051][T12976] ? __pfx_map_id_range_down+0x10/0x10 [ 453.441081][T12976] ? security_inode_alloc+0x3b/0x2b0 [ 453.441140][T12976] ? security_inode_alloc+0x3b/0x2b0 [ 453.441188][T12976] security_inode_alloc+0x3b/0x2b0 [ 453.441249][T12976] inode_init_always_gfp+0xce4/0x1030 [ 453.441286][T12976] alloc_inode+0x86/0x240 [ 453.441328][T12976] alloc_anon_inode+0x28/0x3e0 [ 453.441358][T12976] ? alloc_fd+0x471/0x7d0 [ 453.441388][T12976] anon_inode_make_secure_inode+0x31/0x140 [ 453.441432][T12976] secretmem_file_create.constprop.0+0x43/0x290 [ 453.441475][T12976] __x64_sys_memfd_secret+0xc1/0x150 [ 453.441513][T12976] do_syscall_64+0xcd/0xfa0 [ 453.441554][T12976] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 453.441585][T12976] RIP: 0033:0x7fad6d18f7c9 [ 453.441609][T12976] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 453.441639][T12976] RSP: 002b:00007fad6dffd038 EFLAGS: 00000246 ORIG_RAX: 00000000000001bf [ 453.441667][T12976] RAX: ffffffffffffffda RBX: 00007fad6d3e5fa0 RCX: 00007fad6d18f7c9 [ 453.441687][T12976] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 453.441704][T12976] RBP: 00007fad6d213f91 R08: 0000000000000000 R09: 0000000000000000 [ 453.441722][T12976] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 453.441739][T12976] R13: 00007fad6d3e6038 R14: 00007fad6d3e5fa0 R15: 00007ffd180afbf8 [ 453.441780][T12976] [ 453.846528][T12978] ERROR: Out of memory at tomoyo_memory_ok. [ 454.108541][ T5841] Bluetooth: hci1: command tx timeout [ 454.164415][T12905] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 454.184343][T12905] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 454.204366][T12905] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 454.231419][T12905] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 454.555467][T12905] 8021q: adding VLAN 0 to HW filter on device bond0 [ 454.610294][T12905] 8021q: adding VLAN 0 to HW filter on device team0 [ 454.681949][ T638] bridge0: port 1(bridge_slave_0) entered blocking state [ 454.689231][ T638] bridge0: port 1(bridge_slave_0) entered forwarding state [ 454.728555][ T638] bridge0: port 2(bridge_slave_1) entered blocking state [ 454.735820][ T638] bridge0: port 2(bridge_slave_1) entered forwarding state [ 455.347778][T12905] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 455.659814][T13019] netlink: 234 bytes leftover after parsing attributes in process `syz.1.2605'. [ 455.934229][T13025] netlink: 342 bytes leftover after parsing attributes in process `syz.0.2606'. [ 455.969050][T13025] IPv6: NLM_F_CREATE should be specified when creating new route [ 455.976977][T13025] IPv6: Can't replace route, no match found [ 456.009323][T13025] netlink: 342 bytes leftover after parsing attributes in process `syz.0.2606'. [ 456.071521][T13025] IPv6: Can't replace route, no match found [ 456.153595][T12905] veth0_vlan: entered promiscuous mode [ 456.190948][T12905] veth1_vlan: entered promiscuous mode [ 456.197537][ T5841] Bluetooth: hci1: command tx timeout [ 456.356841][T12905] veth0_macvtap: entered promiscuous mode [ 456.398620][T12905] veth1_macvtap: entered promiscuous mode [ 456.464975][T12905] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 456.509441][T12905] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 456.545283][ T36] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 456.568173][T13031] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2609'. [ 456.597012][ T36] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 456.615896][ T36] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 456.648811][ T36] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 456.665540][T13037] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2611'. [ 456.709918][T13037] netlink: 158 bytes leftover after parsing attributes in process `syz.1.2611'. [ 456.870970][ T50] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 456.898229][ T50] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 456.980181][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 457.007525][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 463.029745][T13140] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2646'. [ 463.047892][T13140] netlink: 354 bytes leftover after parsing attributes in process `syz.2.2646'. [ 464.475309][T13165] netlink: 302 bytes leftover after parsing attributes in process `syz.1.2654'. [ 465.263565][T13176] zswap: compressor not available [ 465.812573][T13190] mkiss: ax0: crc mode is auto. [ 467.562219][T13221] FAULT_INJECTION: forcing a failure. [ 467.562219][T13221] name failslab, interval 1, probability 0, space 0, times 0 [ 467.606592][T13221] CPU: 0 UID: 0 PID: 13221 Comm: syz.2.2672 Tainted: G I syzkaller #0 PREEMPT(full) [ 467.606645][T13221] Tainted: [I]=FIRMWARE_WORKAROUND [ 467.606657][T13221] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 467.606675][T13221] Call Trace: [ 467.606700][T13221] [ 467.606712][T13221] dump_stack_lvl+0x16c/0x1f0 [ 467.606758][T13221] should_fail_ex+0x512/0x640 [ 467.606806][T13221] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 467.606847][T13221] should_failslab+0xc2/0x120 [ 467.606893][T13221] kmem_cache_alloc_noprof+0x75/0x6e0 [ 467.606927][T13221] ? fcntl_setlk+0xaa/0xe20 [ 467.606966][T13221] ? fcntl_setlk+0xaa/0xe20 [ 467.606996][T13221] ? __pfx_futex_wait+0x10/0x10 [ 467.607022][T13221] fcntl_setlk+0xaa/0xe20 [ 467.607059][T13221] ? __pfx_fcntl_setlk+0x10/0x10 [ 467.607096][T13221] ? find_held_lock+0x2b/0x80 [ 467.607126][T13221] ? __might_fault+0xe3/0x190 [ 467.607158][T13221] ? __might_fault+0xe3/0x190 [ 467.607189][T13221] ? __might_fault+0x13b/0x190 [ 467.607238][T13221] do_fcntl+0xbce/0x15a0 [ 467.607284][T13221] ? __pfx_do_fcntl+0x10/0x10 [ 467.607337][T13221] ? tomoyo_file_fcntl+0x6c/0xc0 [ 467.607388][T13221] __x64_sys_fcntl+0x163/0x200 [ 467.607438][T13221] do_syscall_64+0xcd/0xfa0 [ 467.607479][T13221] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 467.607510][T13221] RIP: 0033:0x7efddd78f7c9 [ 467.607536][T13221] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 467.607567][T13221] RSP: 002b:00007efdde57b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000048 [ 467.607597][T13221] RAX: ffffffffffffffda RBX: 00007efddd9e5fa0 RCX: 00007efddd78f7c9 [ 467.607619][T13221] RDX: 0000000000000007 RSI: 0000000000000026 RDI: 0000000000000005 [ 467.607638][T13221] RBP: 00007efddd813f91 R08: 0000000000000000 R09: 0000000000000000 [ 467.607658][T13221] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 467.607685][T13221] R13: 00007efddd9e6038 R14: 00007efddd9e5fa0 R15: 00007ffefdd607e8 [ 467.607731][T13221] [ 469.291955][T13243] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2679'. [ 469.553284][T13245] FAULT_INJECTION: forcing a failure. [ 469.553284][T13245] name failslab, interval 1, probability 0, space 0, times 0 [ 469.581777][T13245] CPU: 1 UID: 0 PID: 13245 Comm: syz.4.2680 Tainted: G I syzkaller #0 PREEMPT(full) [ 469.581829][T13245] Tainted: [I]=FIRMWARE_WORKAROUND [ 469.581842][T13245] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 469.581861][T13245] Call Trace: [ 469.581873][T13245] [ 469.581886][T13245] dump_stack_lvl+0x16c/0x1f0 [ 469.581931][T13245] should_fail_ex+0x512/0x640 [ 469.581980][T13245] ? __kmalloc_cache_noprof+0x5f/0x780 [ 469.582017][T13245] should_failslab+0xc2/0x120 [ 469.582062][T13245] __kmalloc_cache_noprof+0x72/0x780 [ 469.582095][T13245] ? percpu_ref_init+0xec/0x410 [ 469.582142][T13245] ? percpu_ref_init+0xec/0x410 [ 469.582181][T13245] ? __pfx_io_ring_ctx_ref_free+0x10/0x10 [ 469.582226][T13245] percpu_ref_init+0xec/0x410 [ 469.582271][T13245] io_uring_setup+0x4a6/0x20e0 [ 469.582312][T13245] ? __pfx_io_uring_setup+0x10/0x10 [ 469.582351][T13245] ? do_futex+0x122/0x350 [ 469.582395][T13245] ? __pfx_do_futex+0x10/0x10 [ 469.582457][T13245] ? xfd_validate_state+0x61/0x180 [ 469.582511][T13245] __x64_sys_io_uring_setup+0xc2/0x170 [ 469.582569][T13245] do_syscall_64+0xcd/0xfa0 [ 469.582617][T13245] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 469.582652][T13245] RIP: 0033:0x7f15cf78f7c9 [ 469.582679][T13245] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 469.582708][T13245] RSP: 002b:00007f15d06cb038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 469.582737][T13245] RAX: ffffffffffffffda RBX: 00007f15cf9e5fa0 RCX: 00007f15cf78f7c9 [ 469.582758][T13245] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 469.582776][T13245] RBP: 00007f15cf813f91 R08: 0000000000000000 R09: 0000000000000000 [ 469.582793][T13245] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 469.582810][T13245] R13: 00007f15cf9e6038 R14: 00007f15cf9e5fa0 R15: 00007ffedc354e98 [ 469.582851][T13245] [ 471.088704][T13270] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2690'. [ 471.792004][T13293] netlink: 334 bytes leftover after parsing attributes in process `syz.0.2697'. [ 473.754554][T13328] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2709'. [ 473.777926][T13328] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 473.785317][T13328] IPv6: NLM_F_CREATE should be set when creating new route [ 473.792690][T13328] IPv6: NLM_F_CREATE should be set when creating new route [ 473.841030][T13333] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2709'. [ 473.897610][T13333] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 473.966793][T13335] ACPI: button: Initial lid state set to 'ignore' [ 475.693059][T13363] FAULT_INJECTION: forcing a failure. [ 475.693059][T13363] name failslab, interval 1, probability 0, space 0, times 0 [ 475.722002][T13363] CPU: 0 UID: 0 PID: 13363 Comm: syz.0.2723 Tainted: G I syzkaller #0 PREEMPT(full) [ 475.722057][T13363] Tainted: [I]=FIRMWARE_WORKAROUND [ 475.722069][T13363] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 475.722088][T13363] Call Trace: [ 475.722100][T13363] [ 475.722112][T13363] dump_stack_lvl+0x16c/0x1f0 [ 475.722163][T13363] should_fail_ex+0x512/0x640 [ 475.722213][T13363] ? fs_reclaim_acquire+0xae/0x150 [ 475.722262][T13363] should_failslab+0xc2/0x120 [ 475.722318][T13363] __kmalloc_noprof+0xdd/0x880 [ 475.722349][T13363] ? tomoyo_encode2+0x100/0x3e0 [ 475.722395][T13363] ? tomoyo_encode2+0x100/0x3e0 [ 475.722431][T13363] tomoyo_encode2+0x100/0x3e0 [ 475.722474][T13363] tomoyo_encode+0x29/0x50 [ 475.722510][T13363] tomoyo_realpath_from_path+0x18f/0x6e0 [ 475.722561][T13363] tomoyo_path_number_perm+0x245/0x580 [ 475.722614][T13363] ? tomoyo_path_number_perm+0x237/0x580 [ 475.722673][T13363] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 475.722744][T13363] ? find_held_lock+0x2b/0x80 [ 475.722802][T13363] ? __pfx___d_add+0x10/0x10 [ 475.722844][T13363] ? d_alloc+0x176/0x1e0 [ 475.722879][T13363] ? current_check_access_path+0x33c/0x460 [ 475.722923][T13363] ? __pfx_current_check_access_path+0x10/0x10 [ 475.722965][T13363] ? simple_lookup+0x105/0x1d0 [ 475.722999][T13363] ? lookup_one_qstr_excl+0xb3/0x250 [ 475.723051][T13363] tomoyo_path_mkdir+0x9b/0xe0 [ 475.723095][T13363] ? __pfx_tomoyo_path_mkdir+0x10/0x10 [ 475.723154][T13363] security_path_mkdir+0x154/0x2f0 [ 475.723189][T13363] do_mkdirat+0x175/0x3e0 [ 475.723229][T13363] ? __pfx_do_mkdirat+0x10/0x10 [ 475.723280][T13363] ? getname_flags.part.0+0x1c5/0x550 [ 475.723338][T13363] __x64_sys_mkdir+0xef/0x140 [ 475.723380][T13363] do_syscall_64+0xcd/0xfa0 [ 475.723423][T13363] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 475.723457][T13363] RIP: 0033:0x7fad6d18f7c9 [ 475.723484][T13363] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 475.723517][T13363] RSP: 002b:00007fad6dffd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 475.723547][T13363] RAX: ffffffffffffffda RBX: 00007fad6d3e5fa0 RCX: 00007fad6d18f7c9 [ 475.723567][T13363] RDX: 0000000000000000 RSI: 0000000000008001 RDI: 0000200000000100 [ 475.723585][T13363] RBP: 00007fad6d213f91 R08: 0000000000000000 R09: 0000000000000000 [ 475.723602][T13363] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 475.723620][T13363] R13: 00007fad6d3e6038 R14: 00007fad6d3e5fa0 R15: 00007ffd180afbf8 [ 475.723664][T13363] [ 475.723694][T13363] ERROR: Out of memory at tomoyo_realpath_from_path. [ 475.764676][T13372] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2725'. [ 475.940341][T13374] FAULT_INJECTION: forcing a failure. [ 475.940341][T13374] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 476.157790][T13374] CPU: 0 UID: 0 PID: 13374 Comm: syz.1.2726 Tainted: G I syzkaller #0 PREEMPT(full) [ 476.157843][T13374] Tainted: [I]=FIRMWARE_WORKAROUND [ 476.157856][T13374] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 476.157875][T13374] Call Trace: [ 476.157886][T13374] [ 476.157898][T13374] dump_stack_lvl+0x16c/0x1f0 [ 476.157945][T13374] should_fail_ex+0x512/0x640 [ 476.158013][T13374] should_fail_alloc_page+0xe7/0x130 [ 476.158063][T13374] prepare_alloc_pages+0x3c2/0x610 [ 476.158114][T13374] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 476.158147][T13374] ? __alloc_frozen_pages_noprof+0x292/0x2470 [ 476.158183][T13374] ? css_rstat_updated+0x1c2/0x510 [ 476.158237][T13374] ? find_held_lock+0x2b/0x80 [ 476.158270][T13374] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 476.158303][T13374] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 476.158356][T13374] ? __alloc_frozen_pages_noprof+0x292/0x2470 [ 476.158395][T13374] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 476.158456][T13374] ? policy_nodemask+0xea/0x4e0 [ 476.158505][T13374] alloc_pages_mpol+0x1fb/0x550 [ 476.158551][T13374] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 476.158594][T13374] ? do_raw_spin_lock+0x12c/0x2b0 [ 476.158643][T13374] ? find_held_lock+0x2b/0x80 [ 476.158685][T13374] alloc_pages_noprof+0x131/0x390 [ 476.158730][T13374] __pmd_alloc+0x3b/0x8b0 [ 476.158771][T13374] ? __pud_alloc+0x51f/0x6b0 [ 476.158816][T13374] walk_to_pmd+0x3a6/0x4c0 [ 476.158866][T13374] __get_locked_pte+0x25/0xc0 [ 476.158915][T13374] map_ldt_struct+0x3b0/0xa60 [ 476.158967][T13374] ? __pfx_map_ldt_struct+0x10/0x10 [ 476.159003][T13374] ? alloc_pages_noprof+0x23c/0x390 [ 476.159056][T13374] write_ldt+0x8fa/0xd20 [ 476.159086][T13374] ? rcu_is_watching+0x12/0xc0 [ 476.159121][T13374] ? __rseq_handle_notify_resume+0x66e/0x10c0 [ 476.159157][T13374] ? blkcg_maybe_throttle_current+0x650/0xf30 [ 476.159198][T13374] ? __pfx_write_ldt+0x10/0x10 [ 476.159230][T13374] ? __pfx___rseq_handle_notify_resume+0x10/0x10 [ 476.159271][T13374] ? __pfx_ksys_write+0x10/0x10 [ 476.159319][T13374] __x64_sys_modify_ldt+0xb1/0x170 [ 476.159356][T13374] do_syscall_64+0xcd/0xfa0 [ 476.159401][T13374] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 476.159433][T13374] RIP: 0033:0x7f3bfdf8f7c9 [ 476.159459][T13374] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 476.159492][T13374] RSP: 002b:00007f3bfeef4038 EFLAGS: 00000246 ORIG_RAX: 000000000000009a [ 476.159524][T13374] RAX: ffffffffffffffda RBX: 00007f3bfe1e5fa0 RCX: 00007f3bfdf8f7c9 [ 476.159546][T13374] RDX: 0000000000000010 RSI: 0000000000000000 RDI: 0000000000000001 [ 476.159565][T13374] RBP: 00007f3bfe013f91 R08: 0000000000000000 R09: 0000000000000000 [ 476.159584][T13374] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 476.159602][T13374] R13: 00007f3bfe1e6038 R14: 00007f3bfe1e5fa0 R15: 00007ffc97a5b1b8 [ 476.159647][T13374] [ 476.632321][T13378] FAULT_INJECTION: forcing a failure. [ 476.632321][T13378] name failslab, interval 1, probability 0, space 0, times 0 [ 476.645181][T13378] CPU: 0 UID: 0 PID: 13378 Comm: syz.4.2730 Tainted: G I syzkaller #0 PREEMPT(full) [ 476.645234][T13378] Tainted: [I]=FIRMWARE_WORKAROUND [ 476.645247][T13378] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 476.645267][T13378] Call Trace: [ 476.645278][T13378] [ 476.645290][T13378] dump_stack_lvl+0x16c/0x1f0 [ 476.645337][T13378] should_fail_ex+0x512/0x640 [ 476.645387][T13378] ? __kmalloc_noprof+0xca/0x880 [ 476.645419][T13378] should_failslab+0xc2/0x120 [ 476.645465][T13378] __kmalloc_noprof+0xdd/0x880 [ 476.645495][T13378] ? lsm_blob_alloc+0x68/0x90 [ 476.645543][T13378] ? lsm_blob_alloc+0x68/0x90 [ 476.645580][T13378] lsm_blob_alloc+0x68/0x90 [ 476.645621][T13378] security_task_alloc+0x2d/0x260 [ 476.645659][T13378] copy_process+0x220b/0x76a0 [ 476.645702][T13378] ? __pfx___futex_wait+0x10/0x10 [ 476.645728][T13378] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 476.645782][T13378] ? __pfx_copy_process+0x10/0x10 [ 476.645822][T13378] ? find_held_lock+0x2b/0x80 [ 476.645861][T13378] ? futex_private_hash_put+0xd5/0x190 [ 476.645908][T13378] kernel_clone+0xfc/0x930 [ 476.645951][T13378] ? __pfx_kernel_clone+0x10/0x10 [ 476.646024][T13378] __do_sys_clone+0xce/0x120 [ 476.646066][T13378] ? __pfx___do_sys_clone+0x10/0x10 [ 476.646106][T13378] ? __sys_sendmsg+0x18c/0x220 [ 476.646157][T13378] ? xfd_validate_state+0x61/0x180 [ 476.646218][T13378] do_syscall_64+0xcd/0xfa0 [ 476.646262][T13378] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 476.646295][T13378] RIP: 0033:0x7f15cf78f7c9 [ 476.646322][T13378] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 476.646354][T13378] RSP: 002b:00007f15d06cafe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 476.646385][T13378] RAX: ffffffffffffffda RBX: 00007f15cf9e5fa0 RCX: 00007f15cf78f7c9 [ 476.646406][T13378] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 476.646423][T13378] RBP: 00007f15cf813f91 R08: 0000000000000000 R09: 0000000000000000 [ 476.646442][T13378] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 476.646459][T13378] R13: 00007f15cf9e6038 R14: 00007f15cf9e5fa0 R15: 00007ffedc354e98 [ 476.646503][T13378] [ 477.157983][T13380] netlink: 326 bytes leftover after parsing attributes in process `syz.0.2731'. [ 477.334374][T13393] netlink: 342 bytes leftover after parsing attributes in process `syz.0.2735'. [ 478.113086][T13404] netlink: 342 bytes leftover after parsing attributes in process `syz.0.2737'. [ 478.878668][T13425] netlink: 334 bytes leftover after parsing attributes in process `syz.4.2743'. [ 479.671445][T13433] netlink: 'syz.4.2747': attribute type 16 has an invalid length. [ 479.718252][T13433] netlink: 50 bytes leftover after parsing attributes in process `syz.4.2747'. [ 480.021027][ T5841] Bluetooth: hci2: Received unexpected HCI Event 0x00 [ 481.174303][T13462] sp0: Synchronizing with TNC [ 482.189998][T13481] netlink: 'syz.0.2765': attribute type 27 has an invalid length. [ 482.207644][T13481] netlink: 334 bytes leftover after parsing attributes in process `syz.0.2765'. [ 482.738110][T13493] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2769'. [ 482.965620][T13499] vivid-003: ================= START STATUS ================= [ 482.991094][T13499] vivid-003: Radio HW Seek Mode: Bounded [ 482.996916][T13499] vivid-003: Radio Programmable HW Seek: false [ 483.039958][T13499] vivid-003: RDS Rx I/O Mode: Block I/O [ 483.045700][T13499] vivid-003: Generate RBDS Instead of RDS: false [ 483.063033][T13499] vivid-003: RDS Reception: true [ 483.073145][T13499] vivid-003: RDS Program Type: 0 inactive [ 483.114871][T13499] vivid-003: RDS PS Name: inactive [ 483.135216][T13499] vivid-003: RDS Radio Text: inactive [ 483.199599][T13499] vivid-003: RDS Traffic Announcement: false inactive [ 483.214351][T13499] vivid-003: RDS Traffic Program: false inactive [ 483.240039][T13499] vivid-003: RDS Music: false inactive [ 483.257655][T13499] vivid-003: ================== END STATUS ================== [ 486.850734][T13568] netlink: 326 bytes leftover after parsing attributes in process `syz.0.2791'. [ 486.953980][T13569] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2792'. [ 487.242660][T13573] FAULT_INJECTION: forcing a failure. [ 487.242660][T13573] name failslab, interval 1, probability 0, space 0, times 0 [ 487.287647][T13573] CPU: 0 UID: 0 PID: 13573 Comm: syz.1.2794 Tainted: G I syzkaller #0 PREEMPT(full) [ 487.287702][T13573] Tainted: [I]=FIRMWARE_WORKAROUND [ 487.287714][T13573] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 487.287735][T13573] Call Trace: [ 487.287746][T13573] [ 487.287760][T13573] dump_stack_lvl+0x16c/0x1f0 [ 487.287806][T13573] should_fail_ex+0x512/0x640 [ 487.287855][T13573] ? __kmalloc_noprof+0xca/0x880 [ 487.287889][T13573] should_failslab+0xc2/0x120 [ 487.287933][T13573] __kmalloc_noprof+0xdd/0x880 [ 487.287963][T13573] ? drm_atomic_state_init+0x17b/0x320 [ 487.288029][T13573] ? drm_atomic_state_init+0x17b/0x320 [ 487.288075][T13573] drm_atomic_state_init+0x17b/0x320 [ 487.288123][T13573] ? __kasan_kmalloc+0xaa/0xb0 [ 487.288166][T13573] drm_atomic_state_alloc+0xd3/0x120 [ 487.288220][T13573] drm_client_modeset_commit_atomic+0xcc/0x7e0 [ 487.288273][T13573] ? __pfx___might_resched+0x10/0x10 [ 487.288320][T13573] ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10 [ 487.288375][T13573] ? __mutex_lock+0x1c5/0x1060 [ 487.288415][T13573] ? rcu_is_watching+0x12/0xc0 [ 487.288494][T13573] drm_client_modeset_commit_locked+0x14d/0x580 [ 487.288554][T13573] drm_client_modeset_commit+0x4f/0x80 [ 487.288607][T13573] __drm_fb_helper_restore_fbdev_mode_unlocked+0x19f/0x200 [ 487.288663][T13573] ? __pfx_drm_fbdev_client_restore+0x10/0x10 [ 487.288707][T13573] drm_fbdev_client_restore+0x2c/0x40 [ 487.288746][T13573] drm_client_dev_restore+0x1f6/0x2a0 [ 487.288806][T13573] drm_release+0x2c4/0x360 [ 487.288854][T13573] ? __pfx_drm_release+0x10/0x10 [ 487.288899][T13573] __fput+0x402/0xb70 [ 487.288955][T13573] task_work_run+0x150/0x240 [ 487.289011][T13573] ? __pfx_task_work_run+0x10/0x10 [ 487.289075][T13573] ? __pfx___do_sys_close_range+0x10/0x10 [ 487.289124][T13573] exit_to_user_mode_loop+0xec/0x130 [ 487.289179][T13573] do_syscall_64+0x426/0xfa0 [ 487.289225][T13573] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 487.289259][T13573] RIP: 0033:0x7f3bfdf8f7c9 [ 487.289283][T13573] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 487.289315][T13573] RSP: 002b:00007f3bfeef4038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 487.289346][T13573] RAX: 0000000000000000 RBX: 00007f3bfe1e5fa0 RCX: 00007f3bfdf8f7c9 [ 487.289366][T13573] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 487.289385][T13573] RBP: 00007f3bfe013f91 R08: 0000000000000000 R09: 0000000000000000 [ 487.289404][T13573] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 487.289422][T13573] R13: 00007f3bfe1e6038 R14: 00007f3bfe1e5fa0 R15: 00007ffc97a5b1b8 [ 487.289469][T13573] [ 488.062039][T13585] FAULT_INJECTION: forcing a failure. [ 488.062039][T13585] name failslab, interval 1, probability 0, space 0, times 0 [ 488.099643][T13585] CPU: 0 UID: 0 PID: 13585 Comm: syz.1.2798 Tainted: G I syzkaller #0 PREEMPT(full) [ 488.099697][T13585] Tainted: [I]=FIRMWARE_WORKAROUND [ 488.099711][T13585] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 488.099729][T13585] Call Trace: [ 488.099740][T13585] [ 488.099752][T13585] dump_stack_lvl+0x16c/0x1f0 [ 488.099798][T13585] should_fail_ex+0x512/0x640 [ 488.099846][T13585] ? __kmalloc_noprof+0xca/0x880 [ 488.099880][T13585] should_failslab+0xc2/0x120 [ 488.099923][T13585] __kmalloc_noprof+0xdd/0x880 [ 488.100003][T13585] ? __lock_acquire+0x622/0x1c90 [ 488.100046][T13585] ? sk_prot_alloc+0x1a8/0x2a0 [ 488.100093][T13585] ? sk_prot_alloc+0x1a8/0x2a0 [ 488.100131][T13585] sk_prot_alloc+0x1a8/0x2a0 [ 488.100175][T13585] sk_alloc+0x36/0xc20 [ 488.100223][T13585] pppoe_create+0x32/0x360 [ 488.100265][T13585] pppox_create+0x15c/0x2c0 [ 488.100308][T13585] __sock_create+0x338/0x8d0 [ 488.100358][T13585] __sys_socket+0x14d/0x260 [ 488.100398][T13585] ? __fget_files+0x20e/0x3c0 [ 488.100430][T13585] ? __pfx___sys_socket+0x10/0x10 [ 488.100474][T13585] ? xfd_validate_state+0x61/0x180 [ 488.100530][T13585] __x64_sys_socket+0x72/0xb0 [ 488.100572][T13585] ? lockdep_hardirqs_on+0x7c/0x110 [ 488.100618][T13585] do_syscall_64+0xcd/0xfa0 [ 488.100662][T13585] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 488.100696][T13585] RIP: 0033:0x7f3bfdf8f7c9 [ 488.100723][T13585] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 488.100756][T13585] RSP: 002b:00007f3bfeed3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 488.100788][T13585] RAX: ffffffffffffffda RBX: 00007f3bfe1e6090 RCX: 00007f3bfdf8f7c9 [ 488.100808][T13585] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000018 [ 488.100826][T13585] RBP: 00007f3bfe013f91 R08: 0000000000000000 R09: 0000000000000000 [ 488.100845][T13585] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 488.100862][T13585] R13: 00007f3bfe1e6128 R14: 00007f3bfe1e6090 R15: 00007ffc97a5b1b8 [ 488.100905][T13585] [ 489.230213][T13594] netlink: 334 bytes leftover after parsing attributes in process `syz.1.2800'. [ 490.499215][T13612] netlink: 146 bytes leftover after parsing attributes in process `syz.4.2809'. [ 491.235233][T13631] netlink: 98 bytes leftover after parsing attributes in process `syz.2.2816'. [ 491.370392][T13633] random: crng reseeded on system resumption [ 492.098154][T13650] FAULT_INJECTION: forcing a failure. [ 492.098154][T13650] name failslab, interval 1, probability 0, space 0, times 0 [ 492.112085][T13650] CPU: 0 UID: 0 PID: 13650 Comm: syz.2.2823 Tainted: G I syzkaller #0 PREEMPT(full) [ 492.112140][T13650] Tainted: [I]=FIRMWARE_WORKAROUND [ 492.112156][T13650] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 492.112175][T13650] Call Trace: [ 492.112186][T13650] [ 492.112199][T13650] dump_stack_lvl+0x16c/0x1f0 [ 492.112246][T13650] should_fail_ex+0x512/0x640 [ 492.112293][T13650] ? fs_reclaim_acquire+0xae/0x150 [ 492.112342][T13650] should_failslab+0xc2/0x120 [ 492.112385][T13650] __kmalloc_noprof+0xdd/0x880 [ 492.112414][T13650] ? __pfx_from_kuid+0x10/0x10 [ 492.112444][T13650] ? tomoyo_init_log+0x1385/0x2140 [ 492.112486][T13650] ? tomoyo_init_log+0x1385/0x2140 [ 492.112519][T13650] tomoyo_init_log+0x1385/0x2140 [ 492.112587][T13650] ? __pfx_tomoyo_init_log+0x10/0x10 [ 492.112639][T13650] tomoyo_write_log2+0x2f7/0xc10 [ 492.112685][T13650] tomoyo_supervisor+0x15e/0x13b0 [ 492.112738][T13650] ? __pfx_tomoyo_supervisor+0x10/0x10 [ 492.112802][T13650] ? lockdep_hardirqs_on+0x7c/0x110 [ 492.112850][T13650] ? tomoyo_check_path_acl+0xad/0x210 [ 492.112904][T13650] ? tomoyo_check_acl+0x1f7/0x410 [ 492.112956][T13650] tomoyo_path_permission+0x270/0x3b0 [ 492.113013][T13650] tomoyo_check_open_permission+0x37b/0x3c0 [ 492.113048][T13650] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 492.113125][T13650] ? do_raw_spin_lock+0x12c/0x2b0 [ 492.113190][T13650] tomoyo_file_open+0x6b/0x90 [ 492.113236][T13650] security_file_open+0x84/0x1e0 [ 492.113272][T13650] do_dentry_open+0x596/0x1530 [ 492.113323][T13650] vfs_open+0x82/0x3f0 [ 492.113373][T13650] path_openat+0x1de4/0x2cb0 [ 492.113424][T13650] ? __pfx_path_openat+0x10/0x10 [ 492.113461][T13650] ? __lock_acquire+0xb8a/0x1c90 [ 492.113511][T13650] do_filp_open+0x20b/0x470 [ 492.113549][T13650] ? __pfx_do_filp_open+0x10/0x10 [ 492.113624][T13650] ? alloc_fd+0x471/0x7d0 [ 492.113670][T13650] do_sys_openat2+0x11b/0x1d0 [ 492.113716][T13650] ? __pfx_do_sys_openat2+0x10/0x10 [ 492.113781][T13650] __x64_sys_openat+0x174/0x210 [ 492.113833][T13650] ? __pfx___x64_sys_openat+0x10/0x10 [ 492.113898][T13650] do_syscall_64+0xcd/0xfa0 [ 492.113941][T13650] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 492.113973][T13650] RIP: 0033:0x7efddd78f7c9 [ 492.113999][T13650] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 492.114033][T13650] RSP: 002b:00007efdde57b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 492.114065][T13650] RAX: ffffffffffffffda RBX: 00007efddd9e5fa0 RCX: 00007efddd78f7c9 [ 492.114085][T13650] RDX: 00000000001e3800 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 492.114106][T13650] RBP: 00007efddd813f91 R08: 0000000000000000 R09: 0000000000000000 [ 492.114126][T13650] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 492.114145][T13650] R13: 00007efddd9e6038 R14: 00007efddd9e5fa0 R15: 00007ffefdd607e8 [ 492.114190][T13650] [ 492.700121][T13657] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2826'. [ 494.566970][T13690] FAULT_INJECTION: forcing a failure. [ 494.566970][T13690] name failslab, interval 1, probability 0, space 0, times 0 [ 494.627696][T13690] CPU: 1 UID: 0 PID: 13690 Comm: syz.0.2836 Tainted: G I syzkaller #0 PREEMPT(full) [ 494.627752][T13690] Tainted: [I]=FIRMWARE_WORKAROUND [ 494.627764][T13690] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 494.627785][T13690] Call Trace: [ 494.627796][T13690] [ 494.627809][T13690] dump_stack_lvl+0x16c/0x1f0 [ 494.627855][T13690] should_fail_ex+0x512/0x640 [ 494.627905][T13690] ? fs_reclaim_acquire+0xae/0x150 [ 494.627953][T13690] should_failslab+0xc2/0x120 [ 494.628000][T13690] __kmalloc_cache_noprof+0x72/0x780 [ 494.628030][T13690] ? __pfx_tomoyo_init_log+0x10/0x10 [ 494.628069][T13690] ? tomoyo_write_log2+0x33d/0xc10 [ 494.628113][T13690] ? tomoyo_write_log2+0x33d/0xc10 [ 494.628149][T13690] tomoyo_write_log2+0x33d/0xc10 [ 494.628194][T13690] tomoyo_supervisor+0x15e/0x13b0 [ 494.628247][T13690] ? __pfx_tomoyo_supervisor+0x10/0x10 [ 494.628312][T13690] ? lockdep_hardirqs_on+0x7c/0x110 [ 494.628359][T13690] ? tomoyo_check_path_acl+0xad/0x210 [ 494.628414][T13690] ? tomoyo_check_acl+0x1f7/0x410 [ 494.628468][T13690] tomoyo_path_permission+0x270/0x3b0 [ 494.628525][T13690] tomoyo_check_open_permission+0x37b/0x3c0 [ 494.628560][T13690] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 494.628644][T13690] ? do_raw_spin_lock+0x12c/0x2b0 [ 494.628715][T13690] tomoyo_file_open+0x6b/0x90 [ 494.628762][T13690] security_file_open+0x84/0x1e0 [ 494.628799][T13690] do_dentry_open+0x596/0x1530 [ 494.628851][T13690] vfs_open+0x82/0x3f0 [ 494.628905][T13690] path_openat+0x1de4/0x2cb0 [ 494.628957][T13690] ? __pfx_path_openat+0x10/0x10 [ 494.628999][T13690] ? __lock_acquire+0xb8a/0x1c90 [ 494.629048][T13690] do_filp_open+0x20b/0x470 [ 494.629086][T13690] ? __pfx_do_filp_open+0x10/0x10 [ 494.629153][T13690] ? alloc_fd+0x471/0x7d0 [ 494.629198][T13690] do_sys_openat2+0x11b/0x1d0 [ 494.629247][T13690] ? __pfx_do_sys_openat2+0x10/0x10 [ 494.629314][T13690] __x64_sys_openat+0x174/0x210 [ 494.629367][T13690] ? __pfx___x64_sys_openat+0x10/0x10 [ 494.629435][T13690] do_syscall_64+0xcd/0xfa0 [ 494.629480][T13690] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 494.629514][T13690] RIP: 0033:0x7fad6d18f7c9 [ 494.629540][T13690] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 494.629573][T13690] RSP: 002b:00007fad6dffd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 494.629605][T13690] RAX: ffffffffffffffda RBX: 00007fad6d3e5fa0 RCX: 00007fad6d18f7c9 [ 494.629636][T13690] RDX: 0000000000101600 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 494.629658][T13690] RBP: 00007fad6d213f91 R08: 0000000000000000 R09: 0000000000000000 [ 494.629677][T13690] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 494.629698][T13690] R13: 00007fad6d3e6038 R14: 00007fad6d3e5fa0 R15: 00007ffd180afbf8 [ 494.629745][T13690] [ 495.115264][T13696] netlink: 146 bytes leftover after parsing attributes in process `syz.4.2839'. [ 495.872368][T13714] netlink: 334 bytes leftover after parsing attributes in process `syz.4.2846'. [ 496.567049][T13725] hub 1-0:1.0: USB hub found [ 496.586295][T13725] hub 1-0:1.0: 1 port detected [ 497.074522][T13736] netlink: 'syz.1.2855': attribute type 4 has an invalid length. [ 497.097559][T13736] netlink: 314 bytes leftover after parsing attributes in process `syz.1.2855'. [ 497.594300][T13733] [U]  [ 498.024307][T13764] FAULT_INJECTION: forcing a failure. [ 498.024307][T13764] name failslab, interval 1, probability 0, space 0, times 0 [ 498.078466][T13764] CPU: 0 UID: 0 PID: 13764 Comm: syz.1.2873 Tainted: G I syzkaller #0 PREEMPT(full) [ 498.078520][T13764] Tainted: [I]=FIRMWARE_WORKAROUND [ 498.078532][T13764] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 498.078552][T13764] Call Trace: [ 498.078562][T13764] [ 498.078575][T13764] dump_stack_lvl+0x16c/0x1f0 [ 498.078621][T13764] should_fail_ex+0x512/0x640 [ 498.078670][T13764] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 498.078708][T13764] should_failslab+0xc2/0x120 [ 498.078751][T13764] kmem_cache_alloc_noprof+0x75/0x6e0 [ 498.078784][T13764] ? __pfx_futex_wait+0x10/0x10 [ 498.078812][T13764] ? fcntl_setlease+0xc6/0x5a0 [ 498.078848][T13764] ? fcntl_setlease+0xc6/0x5a0 [ 498.078875][T13764] fcntl_setlease+0xc6/0x5a0 [ 498.078907][T13764] ? __pfx_fcntl_setlease+0x10/0x10 [ 498.078959][T13764] do_fcntl+0x751/0x15a0 [ 498.079013][T13764] ? __pfx_do_fcntl+0x10/0x10 [ 498.079069][T13764] ? tomoyo_file_fcntl+0x6c/0xc0 [ 498.079118][T13764] __x64_sys_fcntl+0x163/0x200 [ 498.079170][T13764] do_syscall_64+0xcd/0xfa0 [ 498.079212][T13764] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 498.079245][T13764] RIP: 0033:0x7f3bfdf8f7c9 [ 498.079271][T13764] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 498.079305][T13764] RSP: 002b:00007f3bfeef4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000048 [ 498.079336][T13764] RAX: ffffffffffffffda RBX: 00007f3bfe1e5fa0 RCX: 00007f3bfdf8f7c9 [ 498.079357][T13764] RDX: 9ec0000000000000 RSI: 0000000000000400 RDI: 0000000000000003 [ 498.079377][T13764] RBP: 00007f3bfe013f91 R08: 0000000000000000 R09: 0000000000000000 [ 498.079402][T13764] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 498.079421][T13764] R13: 00007f3bfe1e6038 R14: 00007f3bfe1e5fa0 R15: 00007ffc97a5b1b8 [ 498.079472][T13764] [ 498.087561][T13765] hub 1-0:1.0: USB hub found [ 498.307251][T13765] hub 1-0:1.0: 1 port detected [ 499.159725][ T10] smpboot: CPU 1 is now offline [ 499.227157][T13780] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 499.257709][T13772] ------------[ cut here ]------------ [ 499.258459][T13772] [ 499.258467][T13772] ====================================================== [ 499.258478][T13772] WARNING: possible circular locking dependency detected [ 499.258493][T13772] syzkaller #0 Tainted: G I [ 499.258509][T13772] ------------------------------------------------------ [ 499.258522][T13772] syz.1.2869/13772 is trying to acquire lock: [ 499.258537][T13772] ffffffff8e2d1820 (console_owner){-.-.}-{0:0}, at: console_lock_spinning_enable+0x61/0x80 [ 499.258602][T13772] [ 499.258602][T13772] but task is already holding lock: [ 499.258610][T13772] ffff8880b843a4d8 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x7e/0x130 [ 499.258666][T13772] [ 499.258666][T13772] which lock already depends on the new lock. [ 499.258666][T13772] [ 499.258674][T13772] [ 499.258674][T13772] the existing dependency chain (in reverse order) is: [ 499.258684][T13772] [ 499.258684][T13772] -> #4 (&rq->__lock){-.-.}-{2:2}: [ 499.258716][T13772] _raw_spin_lock_nested+0x31/0x40 [ 499.258746][T13772] raw_spin_rq_lock_nested+0x29/0x130 [ 499.258772][T13772] task_rq_lock+0xcf/0x490 [ 499.258798][T13772] cgroup_move_task+0x81/0x2a0 [ 499.258829][T13772] css_set_move_task+0x288/0x5f0 [ 499.258867][T13772] cgroup_post_fork+0x201/0x9d0 [ 499.258902][T13772] copy_process+0x602d/0x76a0 [ 499.258935][T13772] kernel_clone+0xfc/0x930 [ 499.258966][T13772] user_mode_thread+0xc8/0x110 [ 499.258998][T13772] rest_init+0x23/0x2b0 [ 499.259038][T13772] start_kernel+0x3f6/0x4e0 [ 499.259082][T13772] x86_64_start_reservations+0x18/0x30 [ 499.259107][T13772] x86_64_start_kernel+0x130/0x190 [ 499.259130][T13772] common_startup_64+0x13e/0x148 [ 499.259159][T13772] [ 499.259159][T13772] -> #3 (&p->pi_lock){-.-.}-{2:2}: [ 499.259192][T13772] _raw_spin_lock_irqsave+0x3a/0x60 [ 499.259222][T13772] try_to_wake_up+0xb7/0x1870 [ 499.259246][T13772] __wake_up_common+0x135/0x1f0 [ 499.259282][T13772] __wake_up+0x31/0x60 [ 499.259309][T13772] tty_port_default_wakeup+0x47/0x60 [ 499.259344][T13772] serial8250_tx_chars+0x68e/0x860 [ 499.259377][T13772] serial8250_handle_irq+0x761/0xcb0 [ 499.259412][T13772] serial8250_default_handle_irq+0x9e/0x270 [ 499.259448][T13772] serial8250_interrupt+0xf8/0x1d0 [ 499.259487][T13772] __handle_irq_event_percpu+0x236/0x920 [ 499.259515][T13772] handle_irq_event+0xab/0x1e0 [ 499.259541][T13772] handle_edge_irq+0x3ca/0x9e0 [ 499.259564][T13772] __common_interrupt+0xd0/0x2f0 [ 499.259599][T13772] common_interrupt+0xba/0xe0 [ 499.259640][T13772] asm_common_interrupt+0x26/0x40 [ 499.259667][T13772] pv_native_safe_halt+0xf/0x20 [ 499.259697][T13772] default_idle+0x13/0x20 [ 499.259734][T13772] default_idle_call+0x6c/0xb0 [ 499.259772][T13772] do_idle+0x38d/0x500 [ 499.259796][T13772] cpu_startup_entry+0x4f/0x60 [ 499.259823][T13772] rest_init+0x16b/0x2b0 [ 499.259863][T13772] start_kernel+0x3f6/0x4e0 [ 499.259910][T13772] x86_64_start_reservations+0x18/0x30 [ 499.259934][T13772] x86_64_start_kernel+0x130/0x190 [ 499.259958][T13772] common_startup_64+0x13e/0x148 [ 499.259984][T13772] [ 499.259984][T13772] -> #2 (&tty->write_wait){-...}-{3:3}: [ 499.260019][T13772] _raw_spin_lock_irqsave+0x3a/0x60 [ 499.260047][T13772] __wake_up+0x1c/0x60 [ 499.260075][T13772] tty_port_default_wakeup+0x47/0x60 [ 499.260108][T13772] serial8250_tx_chars+0x68e/0x860 [ 499.260142][T13772] serial8250_handle_irq+0x761/0xcb0 [ 499.260176][T13772] serial8250_default_handle_irq+0x9e/0x270 [ 499.260213][T13772] serial8250_interrupt+0xf8/0x1d0 [ 499.260253][T13772] __handle_irq_event_percpu+0x236/0x920 [ 499.260281][T13772] handle_irq_event+0xab/0x1e0 [ 499.260307][T13772] handle_edge_irq+0x3ca/0x9e0 [ 499.260332][T13772] __common_interrupt+0xd0/0x2f0 [ 499.260367][T13772] common_interrupt+0xba/0xe0 [ 499.260408][T13772] asm_common_interrupt+0x26/0x40 [ 499.260434][T13772] pv_native_safe_halt+0xf/0x20 [ 499.260464][T13772] default_idle+0x13/0x20 [ 499.260501][T13772] default_idle_call+0x6c/0xb0 [ 499.260540][T13772] do_idle+0x38d/0x500 [ 499.260563][T13772] cpu_startup_entry+0x4f/0x60 [ 499.260590][T13772] rest_init+0x16b/0x2b0 [ 499.260630][T13772] start_kernel+0x3f6/0x4e0 [ 499.260672][T13772] x86_64_start_reservations+0x18/0x30 [ 499.260697][T13772] x86_64_start_kernel+0x130/0x190 [ 499.260721][T13772] common_startup_64+0x13e/0x148 [ 499.260747][T13772] [ 499.260747][T13772] -> #1 (&port_lock_key){-.-.}-{3:3}: [ 499.260782][T13772] _raw_spin_lock_irqsave+0x3a/0x60 [ 499.260819][T13772] serial8250_console_write+0x181/0x1890 [ 499.260856][T13772] console_flush_all+0x801/0xc60 [ 499.260887][T13772] console_unlock+0xd8/0x210 [ 499.260911][T13772] vprintk_emit+0x3d7/0x680 [ 499.260938][T13772] _printk+0xc7/0x100 [ 499.260974][T13772] register_console+0xc2d/0x11b0 [ 499.261002][T13772] univ8250_console_init+0x5f/0x90 [ 499.261029][T13772] console_init+0x152/0x680 [ 499.261055][T13772] start_kernel+0x29f/0x4e0 [ 499.261096][T13772] x86_64_start_reservations+0x18/0x30 [ 499.261121][T13772] x86_64_start_kernel+0x130/0x190 [ 499.261146][T13772] common_startup_64+0x13e/0x148 [ 499.261173][T13772] [ 499.261173][T13772] -> #0 (console_owner){-.-.}-{0:0}: [ 499.261208][T13772] __lock_acquire+0x126f/0x1c90 [ 499.261243][T13772] lock_acquire+0x179/0x350 [ 499.261280][T13772] console_lock_spinning_enable+0x72/0x80 [ 499.261304][T13772] console_flush_all+0x7aa/0xc60 [ 499.261329][T13772] console_unlock+0xd8/0x210 [ 499.261352][T13772] vprintk_emit+0x3d7/0x680 [ 499.261379][T13772] _printk+0xc7/0x100 [ 499.261414][T13772] report_bug+0x435/0x580 [ 499.261440][T13772] handle_bug+0x184/0x210 [ 499.261474][T13772] exc_invalid_op+0x17/0x50 [ 499.261511][T13772] asm_exc_invalid_op+0x1a/0x20 [ 499.261536][T13772] update_rq_clock+0x34a/0xc70 [ 499.261562][T13772] __schedule+0x27fc/0x5de0 [ 499.261589][T13772] schedule+0xe7/0x3a0 [ 499.261616][T13772] irqentry_exit_to_user_mode+0x11a/0x310 [ 499.261651][T13772] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 499.261680][T13772] [ 499.261680][T13772] other info that might help us debug this: [ 499.261680][T13772] [ 499.261688][T13772] Chain exists of: [ 499.261688][T13772] console_owner --> &p->pi_lock --> &rq->__lock [ 499.261688][T13772] [ 499.261727][T13772] Possible unsafe locking scenario: [ 499.261727][T13772] [ 499.261735][T13772] CPU0 CPU1 [ 499.261742][T13772] ---- ---- [ 499.261750][T13772] lock(&rq->__lock); [ 499.261766][T13772] lock(&p->pi_lock); [ 499.261785][T13772] lock(&rq->__lock); [ 499.261803][T13772] lock(console_owner); [ 499.261820][T13772] [ 499.261820][T13772] *** DEADLOCK *** [ 499.261820][T13772] [ 499.261826][T13772] 3 locks held by syz.1.2869/13772: [ 499.261842][T13772] #0: ffff8880b843a4d8 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x7e/0x130 [ 499.261911][T13772] #1: ffffffff8e3b1c60 (console_lock){+.+.}-{0:0}, at: _printk+0xc7/0x100 [ 499.261985][T13772] #2: ffffffff8e3b1cd0 (console_srcu){....}-{0:0}, at: console_flush_all+0x158/0xc60 [ 499.262048][T13772] [ 499.262048][T13772] stack backtrace: [ 499.262063][T13772] CPU: 0 UID: 0 PID: 13772 Comm: syz.1.2869 Tainted: G I syzkaller #0 PREEMPT(full) [ 499.262102][T13772] Tainted: [I]=FIRMWARE_WORKAROUND [ 499.262112][T13772] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 499.262129][T13772] Call Trace: [ 499.262138][T13772] [ 499.262148][T13772] dump_stack_lvl+0x116/0x1f0 [ 499.262180][T13772] print_circular_bug+0x275/0x350 [ 499.262218][T13772] check_noncircular+0x14c/0x170 [ 499.262259][T13772] __lock_acquire+0x126f/0x1c90 [ 499.262303][T13772] lock_acquire+0x179/0x350 [ 499.262340][T13772] ? console_lock_spinning_enable+0x61/0x80 [ 499.262369][T13772] ? console_lock_spinning_enable+0x4a/0x80 [ 499.262400][T13772] console_lock_spinning_enable+0x72/0x80 [ 499.262427][T13772] ? console_lock_spinning_enable+0x61/0x80 [ 499.262455][T13772] console_flush_all+0x7aa/0xc60 [ 499.262487][T13772] ? __pfx_console_flush_all+0x10/0x10 [ 499.262520][T13772] ? is_printk_cpu_sync_owner+0x32/0x40 [ 499.262556][T13772] console_unlock+0xd8/0x210 [ 499.262582][T13772] ? __pfx_console_unlock+0x10/0x10 [ 499.262608][T13772] ? do_raw_spin_unlock+0xe0/0x230 [ 499.262634][T13772] ? _printk+0xc7/0x100 [ 499.262671][T13772] ? __down_trylock_console_sem+0xb0/0x140 [ 499.262713][T13772] vprintk_emit+0x3d7/0x680 [ 499.262741][T13772] ? __pfx_vprintk_emit+0x10/0x10 [ 499.262775][T13772] _printk+0xc7/0x100 [ 499.262812][T13772] ? __pfx__printk+0x10/0x10 [ 499.262855][T13772] ? report_bug+0x429/0x580 [ 499.262971][T13772] ? report_bug+0x417/0x580 [ 499.263000][T13772] ? update_rq_clock+0x34a/0xc70 [ 499.263029][T13772] report_bug+0x435/0x580 [ 499.263057][T13772] ? update_rq_clock+0x34a/0xc70 [ 499.263086][T13772] handle_bug+0x184/0x210 [ 499.263124][T13772] exc_invalid_op+0x17/0x50 [ 499.263164][T13772] asm_exc_invalid_op+0x1a/0x20 [ 499.263189][T13772] RIP: 0010:update_rq_clock+0x34a/0xc70 [ 499.263220][T13772] Code: ab 48 0b 00 00 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e 41 5f e9 88 f8 d6 09 a8 04 0f 84 9c fd ff ff 90 0f 0b 90 e9 93 fd ff ff 90 <0f> 0b 90 e9 4f fd ff ff 48 8d bb 18 0e 00 00 48 b8 00 00 00 00 00 [ 499.263248][T13772] RSP: 0018:ffffc90004a8fce8 EFLAGS: 00010046 [ 499.263269][T13772] RAX: 0000000000000000 RBX: ffff8880b853a4c0 RCX: 0000000000000001 [ 499.263287][T13772] RDX: 0000000000000000 RSI: ffffffff8da03cd1 RDI: ffffffff8bf07940 [ 499.263304][T13772] RBP: 0000000000000001 R08: 0000000000000000 R09: fffffbfff2104a7a [ 499.263321][T13772] R10: ffffffff908253d7 R11: 0000000000000001 R12: ffffffff90828434 [ 499.263339][T13772] R13: ffff88801d683c80 R14: ffff8880b853a4c0 R15: ffff8880b843afc8 [ 499.263367][T13772] ? update_rq_clock+0x99/0xc70 [ 499.263400][T13772] __schedule+0x27fc/0x5de0 [ 499.263430][T13772] ? find_held_lock+0x2b/0x80 [ 499.263468][T13772] ? __pfx___schedule+0x10/0x10 [ 499.263497][T13772] ? sched_clock_cpu+0x6c/0x530 [ 499.263534][T13772] ? __pfx_sched_clock_cpu+0x10/0x10 [ 499.263573][T13772] ? preempt_schedule_notrace_thunk+0x16/0x30 [ 499.263625][T13772] schedule+0xe7/0x3a0 [ 499.263655][T13772] irqentry_exit_to_user_mode+0x11a/0x310 [ 499.263693][T13772] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 499.263725][T13772] RIP: 0033:0x7f3bfde68370 [ 499.263747][T13772] Code: 72 48 39 f0 0f 82 b9 00 00 00 48 39 f2 72 6e 41 0f 11 0c 24 48 8b 77 f8 48 89 f8 48 89 eb eb 12 66 2e 0f 1f 84 00 00 00 00 00 <48> 8b 4b 08 48 83 c3 08 48 39 d1 72 f3 48 83 e8 08 48 39 f2 73 17 [ 499.263773][T13772] RSP: 002b:00007ffc97a5b150 EFLAGS: 00000293 [ 499.263795][T13772] RAX: 00007f3bfd9829e0 RBX: 00007f3bfd971688 RCX: ffffffff89ea41b2 [ 499.263815][T13772] RDX: ffffffff89ea4205 RSI: ffffffff89ea4205 RDI: 00007f3bfd98a738 [ 499.263834][T13772] RBP: 00007f3bfd96d1f0 R08: 00007f3bfd97bc90 R09: 00007f3bfe1d2000 [ 499.263854][T13772] R10: 00007f3bfd5fd008 R11: 0000000000000005 R12: 00007f3bfd96d1e8 [ 499.263873][T13772] R13: 000000000000001c R14: 00007ffc97a5b2d8 R15: 00007f3bfd5fd008 [ 499.263902][T13772] ? ipt_do_table+0x2c2/0x1ae0 [ 499.263943][T13772] ? ipt_do_table+0x315/0x1ae0 [ 499.263980][T13772] ? ipt_do_table+0x315/0x1ae0 [ 499.264022][T13772] [ 500.372712][T13772] WARNING: CPU: 0 PID: 13772 at kernel/sched/sched.h:1538 update_rq_clock+0x34a/0xc70 [ 500.382295][T13772] Modules linked in: [ 500.386215][T13772] CPU: 0 UID: 0 PID: 13772 Comm: syz.1.2869 Tainted: G I syzkaller #0 PREEMPT(full) [ 500.397179][T13772] Tainted: [I]=FIRMWARE_WORKAROUND [ 500.402296][T13772] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 500.412366][T13772] RIP: 0010:update_rq_clock+0x34a/0xc70 [ 500.417948][T13772] Code: ab 48 0b 00 00 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e 41 5f e9 88 f8 d6 09 a8 04 0f 84 9c fd ff ff 90 0f 0b 90 e9 93 fd ff ff 90 <0f> 0b 90 e9 4f fd ff ff 48 8d bb 18 0e 00 00 48 b8 00 00 00 00 00 [ 500.437585][T13772] RSP: 0018:ffffc90004a8fce8 EFLAGS: 00010046 [ 500.443677][T13772] RAX: 0000000000000000 RBX: ffff8880b853a4c0 RCX: 0000000000000001 [ 500.451672][T13772] RDX: 0000000000000000 RSI: ffffffff8da03cd1 RDI: ffffffff8bf07940 [ 500.459670][T13772] RBP: 0000000000000001 R08: 0000000000000000 R09: fffffbfff2104a7a [ 500.467662][T13772] R10: ffffffff908253d7 R11: 0000000000000001 R12: ffffffff90828434 [ 500.475659][T13772] R13: ffff88801d683c80 R14: ffff8880b853a4c0 R15: ffff8880b843afc8 [ 500.483655][T13772] FS: 0000555580ed5500(0000) GS:ffff888124a0d000(0000) knlGS:0000000000000000 [ 500.492613][T13772] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 500.499226][T13772] CR2: 0000000000d5e000 CR3: 0000000041ac2000 CR4: 00000000003526f0 [ 500.507226][T13772] Call Trace: [ 500.510530][T13772] [ 500.513480][T13772] __schedule+0x27fc/0x5de0 [ 500.518015][T13772] ? find_held_lock+0x2b/0x80 [ 500.522907][T13772] ? __pfx___schedule+0x10/0x10 [ 500.527785][T13772] ? sched_clock_cpu+0x6c/0x530 [ 500.532673][T13772] ? __pfx_sched_clock_cpu+0x10/0x10 [ 500.537991][T13772] ? preempt_schedule_notrace_thunk+0x16/0x30 [ 500.544111][T13772] schedule+0xe7/0x3a0 [ 500.548211][T13772] irqentry_exit_to_user_mode+0x11a/0x310 [ 500.553966][T13772] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 500.559975][T13772] RIP: 0033:0x7f3bfde68370 [ 500.564412][T13772] Code: 72 48 39 f0 0f 82 b9 00 00 00 48 39 f2 72 6e 41 0f 11 0c 24 48 8b 77 f8 48 89 f8 48 89 eb eb 12 66 2e 0f 1f 84 00 00 00 00 00 <48> 8b 4b 08 48 83 c3 08 48 39 d1 72 f3 48 83 e8 08 48 39 f2 73 17 [ 500.584051][T13772] RSP: 002b:00007ffc97a5b150 EFLAGS: 00000293 [ 500.590155][T13772] RAX: 00007f3bfd9829e0 RBX: 00007f3bfd971688 RCX: ffffffff89ea41b2 [ 500.598148][T13772] RDX: ffffffff89ea4205 RSI: ffffffff89ea4205 RDI: 00007f3bfd98a738 [ 500.606142][T13772] RBP: 00007f3bfd96d1f0 R08: 00007f3bfd97bc90 R09: 00007f3bfe1d2000 [ 500.614133][T13772] R10: 00007f3bfd5fd008 R11: 0000000000000005 R12: 00007f3bfd96d1e8 [ 500.622126][T13772] R13: 000000000000001c R14: 00007ffc97a5b2d8 R15: 00007f3bfd5fd008 [ 500.630126][T13772] ? ipt_do_table+0x2c2/0x1ae0 [ 500.634934][T13772] ? ipt_do_table+0x315/0x1ae0 [ 500.639737][T13772] ? ipt_do_table+0x315/0x1ae0 [ 500.644540][T13772] [ 500.647585][T13772] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 500.654911][T13772] CPU: 0 UID: 0 PID: 13772 Comm: syz.1.2869 Tainted: G I syzkaller #0 PREEMPT(full) [ 500.665879][T13772] Tainted: [I]=FIRMWARE_WORKAROUND [ 500.671005][T13772] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 500.681098][T13772] Call Trace: [ 500.684412][T13772] [ 500.687368][T13772] dump_stack_lvl+0x3d/0x1f0 [ 500.692014][T13772] vpanic+0x640/0x6f0 [ 500.696069][T13772] ? update_rq_clock+0x34a/0xc70 [ 500.701047][T13772] panic+0xca/0xd0 [ 500.704815][T13772] ? __pfx_panic+0x10/0x10 [ 500.709274][T13772] ? check_panic_on_warn+0x1f/0xb0 [ 500.714512][T13772] check_panic_on_warn+0xab/0xb0 [ 500.719495][T13772] __warn+0xf6/0x3c0 [ 500.723430][T13772] ? update_rq_clock+0x34a/0xc70 [ 500.728394][T13772] report_bug+0x3c3/0x580 [ 500.732758][T13772] ? update_rq_clock+0x34a/0xc70 [ 500.737723][T13772] handle_bug+0x184/0x210 [ 500.742095][T13772] exc_invalid_op+0x17/0x50 [ 500.746655][T13772] asm_exc_invalid_op+0x1a/0x20 [ 500.751548][T13772] RIP: 0010:update_rq_clock+0x34a/0xc70 [ 500.757140][T13772] Code: ab 48 0b 00 00 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e 41 5f e9 88 f8 d6 09 a8 04 0f 84 9c fd ff ff 90 0f 0b 90 e9 93 fd ff ff 90 <0f> 0b 90 e9 4f fd ff ff 48 8d bb 18 0e 00 00 48 b8 00 00 00 00 00 [ 500.776807][T13772] RSP: 0018:ffffc90004a8fce8 EFLAGS: 00010046 [ 500.782904][T13772] RAX: 0000000000000000 RBX: ffff8880b853a4c0 RCX: 0000000000000001 [ 500.790902][T13772] RDX: 0000000000000000 RSI: ffffffff8da03cd1 RDI: ffffffff8bf07940 [ 500.798902][T13772] RBP: 0000000000000001 R08: 0000000000000000 R09: fffffbfff2104a7a [ 500.807087][T13772] R10: ffffffff908253d7 R11: 0000000000000001 R12: ffffffff90828434 [ 500.815096][T13772] R13: ffff88801d683c80 R14: ffff8880b853a4c0 R15: ffff8880b843afc8 [ 500.823110][T13772] ? update_rq_clock+0x99/0xc70 [ 500.828009][T13772] __schedule+0x27fc/0x5de0 [ 500.832551][T13772] ? find_held_lock+0x2b/0x80 [ 500.837276][T13772] ? __pfx___schedule+0x10/0x10 [ 500.842162][T13772] ? sched_clock_cpu+0x6c/0x530 [ 500.847048][T13772] ? __pfx_sched_clock_cpu+0x10/0x10 [ 500.852387][T13772] ? preempt_schedule_notrace_thunk+0x16/0x30 [ 500.858525][T13772] schedule+0xe7/0x3a0 [ 500.862649][T13772] irqentry_exit_to_user_mode+0x11a/0x310 [ 500.868409][T13772] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 500.874428][T13772] RIP: 0033:0x7f3bfde68370 [ 500.878883][T13772] Code: 72 48 39 f0 0f 82 b9 00 00 00 48 39 f2 72 6e 41 0f 11 0c 24 48 8b 77 f8 48 89 f8 48 89 eb eb 12 66 2e 0f 1f 84 00 00 00 00 00 <48> 8b 4b 08 48 83 c3 08 48 39 d1 72 f3 48 83 e8 08 48 39 f2 73 17 [ 500.898538][T13772] RSP: 002b:00007ffc97a5b150 EFLAGS: 00000293 [ 500.904648][T13772] RAX: 00007f3bfd9829e0 RBX: 00007f3bfd971688 RCX: ffffffff89ea41b2 [ 500.912665][T13772] RDX: ffffffff89ea4205 RSI: ffffffff89ea4205 RDI: 00007f3bfd98a738 [ 500.920660][T13772] RBP: 00007f3bfd96d1f0 R08: 00007f3bfd97bc90 R09: 00007f3bfe1d2000 [ 500.928657][T13772] R10: 00007f3bfd5fd008 R11: 0000000000000005 R12: 00007f3bfd96d1e8 [ 500.936650][T13772] R13: 000000000000001c R14: 00007ffc97a5b2d8 R15: 00007f3bfd5fd008 [ 500.944652][T13772] ? ipt_do_table+0x2c2/0x1ae0 [ 500.949457][T13772] ? ipt_do_table+0x315/0x1ae0 [ 500.954259][T13772] ? ipt_do_table+0x315/0x1ae0 [ 500.959160][T13772] [ 500.966968][T13772] Kernel Offset: disabled [ 500.971339][T13772] Rebooting in 86400 seconds..