last executing test programs: 4m26.400060644s ago: executing program 2 (id=3314): r0 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/ieee80211/phy0/reset\x00', 0x82, 0x0) pwritev$auto(r0, &(0x7f0000000180)={0x0, 0x765}, 0x3, 0x5, 0x5) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) ioctl$auto(0xffffffffffffffff, 0x80046f46, 0x38) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) io_uring_setup$auto(0xb, 0x0) r1 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) ioctl$auto_FIOASYNC(r1, 0x5452, 0x2) 4m26.092333035s ago: executing program 2 (id=3308): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0xffffffffffffffff, 0x0) open(0x0, 0x22241, 0xd1) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x143e00, 0x0) io_uring_setup$auto(0x12, 0x0) ioctl$auto(0x3, 0x80106f53, r0) 4m25.348808128s ago: executing program 2 (id=3311): openat$auto_random_fops_random(0xffffffffffffff9c, &(0x7f0000000180), 0x200, 0x0) openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f000000e680), 0x2, 0x0) openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socket(0x10, 0x2, 0x6) socket$nl_generic(0x10, 0x3, 0x10) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0x10, 0x0, 0x0, &(0x7f0000000140)={[0x1ff, 0x20004, 0x20d3e, 0x1, 0x6, 0x100000003, 0x800295f4da0d, 0x5, 0x3, 0x62, 0x80000001, 0x50a7, 0xc2, 0x6, 0xfffffffffffffff8, 0x3]}, 0x0) 4m24.150058962s ago: executing program 2 (id=3324): close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x3, 0x6) lsm_list_modules$auto(0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x401c5820, 0x0) mkdir$auto(0x0, 0x353) 4m23.802565458s ago: executing program 2 (id=3326): mmap$auto(0x0, 0x3, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.cpu/hugetlb.2MB.rsvd.limit_in_bytes\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x20) close_range$auto(0x0, 0x5, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty27\x00', 0x2df718a36f04b15d, 0x0) r2 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) ioctl$auto(r1, 0x541c, r2) 4m22.96271351s ago: executing program 2 (id=3332): mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) r0 = socket(0x11, 0x80003, 0x300) r1 = openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/snd/pcmC0D0p\x00', 0x80000, 0x0) ioctl$auto_SNDRV_PCM_IOCTL_PVERSION(r1, 0x80044100, 0x0) setsockopt$auto(r0, 0x107, 0x12, 0x0, 0x4) r2 = socket(0x11, 0x3, 0x9) capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48}) sendmmsg$auto(r2, &(0x7f00000001c0)={{&(0x7f0000000000), 0x5ac, &(0x7f0000000480)={0x0, 0x49}, 0x4, 0x0, 0x5, 0x11}, 0x5}, 0x2, 0x100) 4m22.630130123s ago: executing program 32 (id=3332): mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) r0 = socket(0x11, 0x80003, 0x300) r1 = openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/snd/pcmC0D0p\x00', 0x80000, 0x0) ioctl$auto_SNDRV_PCM_IOCTL_PVERSION(r1, 0x80044100, 0x0) setsockopt$auto(r0, 0x107, 0x12, 0x0, 0x4) r2 = socket(0x11, 0x3, 0x9) capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48}) sendmmsg$auto(r2, &(0x7f00000001c0)={{&(0x7f0000000000), 0x5ac, &(0x7f0000000480)={0x0, 0x49}, 0x4, 0x0, 0x5, 0x11}, 0x5}, 0x2, 0x100) 4.635598426s ago: executing program 3 (id=5200): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x7, 0x800008000) socket(0xa, 0x1, 0x84) poll$auto(0x0, 0x80000000, 0x4) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) unshare$auto(0x40000080) write$auto_console_fops_tty_io(0xffffffffffffffff, 0x0, 0x0) r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) write$auto(r0, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) close_range$auto(0x2, 0x8, 0x0) 3.963733768s ago: executing program 4 (id=5205): mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) lsm_list_modules$auto(0x0, 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000) writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1) r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC2\x00', 0x101080, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc1105517, 0x0) openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/trace\x00', 0x600, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x74c) 3.582015227s ago: executing program 0 (id=5208): socket(0x2, 0x3, 0xa) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) prctl$auto(0x16, 0x2, 0x2, 0x4000000d, 0x100) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x40000008000) sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc000}, 0x2404c800) kexec_load$auto(0x5, 0x2, &(0x7f0000000040)={@kbuf=0x0, 0x800c000, 0x4800c000, 0x800c000}, 0x4) 3.037251566s ago: executing program 1 (id=5209): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) setsockopt$auto(0x3, 0x1, 0x1d, 0x0, 0x8) mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_ETHTOOL_MSG_DEBUG_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x2000000}, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000) recvmmsg$auto(r0, &(0x7f0000000140)={{0x0, 0xfffffffe, 0x0, 0x5, 0x0, 0x200002, 0x8}, 0x801}, 0x9, 0x10, 0x0) setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88) 2.917543915s ago: executing program 3 (id=5210): mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000) get_robust_list$auto(0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = open(0x0, 0x261c2, 0x84) close_range$auto(0x2, 0x8000, 0x0) r2 = socket(0xa, 0x2, 0x88) socket$nl_generic(0x10, 0x3, 0x10) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000280)={'dummy0\x00', 0x0}) bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r4, r3, 0x4, 0x1ff, r2, @relative_fd=r1, 0xe600}, 0xf) bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, r1, 0x0, 0x3}, 0xc) 2.565309983s ago: executing program 4 (id=5211): mmap$auto(0x0, 0xfb1, 0xffffffff, 0x9b72, 0x2, 0x8000) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/neigh/vlan1/base_reachable_time\x00', 0x40400, 0x0) read$auto(r0, 0x0, 0x1ff) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0C0F:00/status\x00', 0xa140, 0x0) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x8002, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) sendmsg$auto_NL80211_CMD_NOTIFY_RADAR(0xffffffffffffffff, 0x0, 0x4) io_setup$auto(0x207ffc, 0x0) io_setup$auto(0x7, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000140)=""/122, 0x7a) 2.380696387s ago: executing program 3 (id=5212): socket(0xa, 0x3, 0x3b) mmap$auto(0x0, 0x2000b, 0xe2, 0xeb1, 0x405, 0x8000) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0xfffffffffffffffe, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000840), r0) sendmsg$auto_OVS_CT_LIMIT_CMD_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000006400)={0x2e20, r1, 0x1, 0x51bd2e, 0x25dfcbfb, {}, [@OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x4}, @OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x2e07}]}, 0x2e20}, 0x1, 0x0, 0x0, 0x2000c040}, 0x4) 2.319171913s ago: executing program 0 (id=5214): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) socket(0x10, 0x2, 0x0) sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000800}, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x8001, 0x0) ioctl$auto(r0, 0x5381, 0xffffffffffffffff) r1 = socket(0x29, 0x5, 0x0) syz_genetlink_get_family_id$auto_nl802154(0x0, 0xffffffffffffffff) sendmsg$auto_NL802154_CMD_GET_SEC_KEY(r1, 0x0, 0x50) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/ip_vs_stats_percpu\x00', 0x480, 0x0) read$auto(r2, 0x0, 0x805644) 2.244252515s ago: executing program 4 (id=5215): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x3fd, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0) openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, &(0x7f0000000040), 0x2482, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/bus/usb/drivers/spca501/unbind\x00', 0x222200, 0x0) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0) openat$auto_dfs_global_fops_debug(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/ubifs/tst_recovery\x00', 0x40aa2, 0x0) r0 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(r0, r0, 0x0) r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000140)='/dev/video4\x00', 0xa200, 0x0) ioctl$auto(r1, 0xc0585611, r1) 2.057633442s ago: executing program 0 (id=5216): r0 = socket(0x18, 0x2, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'veth0\x00'}) close_range$auto(0x0, 0xffffffffffffffff, 0x2) socket(0xa, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x801, 0x84) r2 = socket(0x18, 0x5, 0x1) connect$auto(r2, &(0x7f0000000000)=@in={0x2, 0x100}, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x40047459, 0x0) 1.984665825s ago: executing program 4 (id=5217): close_range$auto(0x2, 0x8, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/net/nr14/proto_down\x00', 0x82942, 0x0) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/dsp\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x100) mmap$auto(0x0, 0x9, 0xffb, 0x12, 0x3, 0x0) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000002940)='/dev/fb0\x00', 0x841, 0x0) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/trace_pipe\x00', 0x20c01, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D3\x00', 0x1, 0x0) select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0xffffffffffffffff, 0x15f4da07, 0x6, 0x10, 0x64, 0x80000020, 0x1000, 0xb, 0x9, 0x2, 0x8]}, 0x0) 1.944035121s ago: executing program 1 (id=5218): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) pipe$auto(0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x60742, 0x0) socket(0x10, 0x2, 0x0) statmount$auto(0x0, &(0x7f0000000040)={0x1, 0x0, 0x38, 0xffffff01, 0x9, 0x9, 0x80000009, 0x7, 0x8, 0x5, 0x5, 0x9, 0x2, 0x8, 0x1, 0xf, 0xffffffffffffffff, 0x9, 0x1, 0x5, 0x40010, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xccde, 0x0, 0x0, 0x0, 0x0, 0x1]}, 0x800, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00022abd7000dddbdf25020001000800030000000000080015"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="01"], 0x1c}, 0x1, 0x0, 0x0, 0x20040004}, 0x20008810) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="18"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f0000000000)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x3}, 0x3, 0x0) 1.190624833s ago: executing program 4 (id=5219): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x7, 0x800008000) socket(0xa, 0x1, 0x84) poll$auto(0x0, 0x80000000, 0x4) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) unshare$auto(0x40000080) write$auto_console_fops_tty_io(0xffffffffffffffff, 0x0, 0x0) r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) write$auto(r0, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) close_range$auto(0x2, 0x8, 0x0) 1.190524954s ago: executing program 3 (id=5220): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) close_range$auto(0x0, 0xfffff004, 0x2) socket(0xa, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket(0xa, 0x2, 0x88) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'bond0\x00', 0x0}) bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r3, r2, 0x8, 0xff, r0, @relative_fd, 0xe600}, 0xf) bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffffffffffffffff, 0x0, 0x1}, 0x4) bpf$auto(0x3, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0xb) 1.185552894s ago: executing program 0 (id=5227): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) getcwd$auto(0x0, 0xfffffffeffffffff) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) fanotify_init$auto(0x8, 0x2000000000002) r0 = open(&(0x7f0000000000)='./bus\x00', 0x12ba7e, 0x45) fanotify_mark$auto(0x0, 0x451, 0xa, r0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x5, 0x0) inotify_init1$auto(0x3000000000000) inotify_add_watch$auto(0x4, 0x0, 0xe6e) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, 0x0, 0x82000, 0x0) 1.185036149s ago: executing program 1 (id=5221): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sysfs$auto(0x2, 0x23, 0x0) write$auto(0xffffffffffffffff, &(0x7f0000000100)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3C', 0x4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4004814}, 0x800) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22040, 0x75) r0 = socket(0x10, 0x2, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000) sendmsg$auto_HANDSHAKE_CMD_ACCEPT(0xffffffffffffffff, 0x0, 0x20) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) socket(0x10, 0x2, 0x0) 1.132220438s ago: executing program 3 (id=5222): close_range$auto(0x0, 0xffffffffffffffff, 0x2) socket(0x15, 0x5, 0x0) epoll_create$auto(0x12b8) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x1, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0x2400, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x80040, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_GET_DEVICE_ATTR(r0, 0x4018aee2, &(0x7f0000000080)={0x1, 0x0, 0x3, 0xd4}) 840.797026ms ago: executing program 3 (id=5223): socket(0x2, 0x3, 0xa) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) prctl$auto(0x16, 0x2, 0x2, 0x4000000d, 0x100) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x40000008000) sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc000}, 0x2404c800) kexec_load$auto(0x5, 0x2, &(0x7f0000000040)={@kbuf=0x0, 0x800c000, 0x4800c000, 0x800c000}, 0x4) 837.185026ms ago: executing program 0 (id=5232): openat$auto_uhid_fops_uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2201, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/buffer_size_kb\x00', 0x40, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x0, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer\x00', 0x101401, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$dir(0xffffffffffffff9c, &(0x7f0000000280)='.\x00', 0x40400, 0x48) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) write$auto(0x3, 0x0, 0xfffffdef) 836.549157ms ago: executing program 1 (id=5224): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00df45"], 0x1ac}}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) recvmmsg$auto(r0, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000080)={&(0x7f0000000040), 0xcb}, 0x3, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x6, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="080100e6", @ANYRES16=0x0, @ANYBLOB="51032bbd7000fcdbdf2507"], 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x20000800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1c"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 664.508689ms ago: executing program 0 (id=5225): r0 = socket(0x29, 0x2, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0x2, 0x1, 0x84) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000) recvmmsg$auto(r1, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0) ioctl$auto(r0, 0x8914, 0x24) 536.175762ms ago: executing program 1 (id=5226): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) getcwd$auto(0x0, 0xffffffffffffffff) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x5, 0x0) inotify_init1$auto(0x3000000000000) inotify_add_watch$auto(0x4, 0x0, 0x4000e6e) openat2$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)={0x80040, 0xc0, 0xe}, 0x18) open(&(0x7f00000002c0)='./file0\x00', 0xc2243, 0x1c7) 258.148469ms ago: executing program 1 (id=5228): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/cpu1/online\x00', 0x62, 0x0) write$auto(r0, &(0x7f00000002c0)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef`\xd8\x9c\xf7?:\x1a\xc62\x911e\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\b};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xff\x7f\xd0UV\x11\xcb\xdd\x81\xbe\xde\f/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7\x00\x85Z\x06?\x12\x98\x0f)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1;\xe4pd$\xd7\x1b\v\x82\r\f\xd0Hq\xd9\r\x88#\x89\x8d\xcd\x1e\x87N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8HR+\a\xb7R\t\n+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb\xc8^\xa4\xe2\x05\x91|\x123\xc3:\xfd\xee\x04a\xc8\x12\xce\xa2\x12\xcb\x8c\x87f\xebGQ\xe9\x96\xd5E\x13a\xb7\x057<&\xe0\x94\xa7\xfb\x9d;\xfa\xb1\x1b4a,\'\xb2Ym\xe1:\xbf\x8cs\x06\xa3u\x8d!\n\x80-\x9a\xbb;\xf4\xf3\xe1\x97\xfc8\xff\xa7\\\x8b\xf9\x95\x10$\xef\x1a #b\xfb\xfe\xe9\x06fK0\xdd\x84T,\xfa\xb5\x00\x83d\xbba\xd7\n\x92l\xdfAN\x9d\xcb\x96\xc7\xe8\xe6\x8bC\xeb\xc7EZ\xc8\x1a\x81nf\tZ-sZ\x13n\xec\xa9\xbf\xd0$\xb9\xd8\x00\x00\x00\x00\x00\x00\x00', 0x5) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) getsockopt$auto_SO_NO_CHECK(r0, 0x7, 0xb, 0x0, 0x0) getcwd$auto(0x0, 0x3) bpf$auto(0x0, &(0x7f0000000580)=@task_fd_query={0x7, 0x4, 0x200, 0x37e, 0x0, 0xf, 0xffffffffffffffff, 0x2, 0x5}, 0x6f4) read$auto_kernel_debug_fops_orangefs_debugfs(0xffffffffffffffff, &(0x7f0000000640)=""/4096, 0x1000) read$auto_l2cap_debugfs_fops_(0xffffffffffffffff, 0x0, 0x0) read$auto(r1, 0x0, 0x1f40) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) 0s ago: executing program 4 (id=5229): openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/dri/vgem/gem_names\x00', 0x62000, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x22, 0x2, 0x2) mmap$auto(0x0, 0x20009, 0x4000000000db, 0xeb1, 0x400, 0x8000) socket(0x10, 0x2, 0x0) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16, @ANYBLOB="1b0026bd7400fddbdf250300000004000800100003800c000980"], 0x40}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00211459a600fbdbdf25020000000800030000"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0) sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000200bd7000fedbdf250200000800130001"], 0x24}, 0x1, 0x0, 0x0, 0x4c894}, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="180027"], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) kernel console output (not intermixed with test programs): 88814][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 635.096623][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 635.301839][T16825] netlink: 342 bytes leftover after parsing attributes in process `syz.3.3953'. [ 635.326196][T16825] IPv6: NLM_F_REPLACE set, but no existing node found! [ 636.124607][T16838] FAULT_INJECTION: forcing a failure. [ 636.124607][T16838] name failslab, interval 1, probability 0, space 0, times 0 [ 636.140445][T16838] CPU: 1 UID: 0 PID: 16838 Comm: syz.3.3958 Tainted: G L syzkaller #0 PREEMPT(full) [ 636.140500][T16838] Tainted: [L]=SOFTLOCKUP [ 636.140514][T16838] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 636.140536][T16838] Call Trace: [ 636.140547][T16838] [ 636.140561][T16838] dump_stack_lvl+0x116/0x1f0 [ 636.140607][T16838] should_fail_ex+0x512/0x640 [ 636.140669][T16838] should_failslab+0xc2/0x120 [ 636.140722][T16838] __kmalloc_node_track_caller_noprof+0xec/0x930 [ 636.140774][T16838] ? netlink_realloc_groups+0x1b5/0x2d0 [ 636.140823][T16838] ? krealloc_node_align_noprof+0x2ea/0x3d0 [ 636.140869][T16838] krealloc_node_align_noprof+0x2ea/0x3d0 [ 636.140923][T16838] netlink_realloc_groups+0x1b5/0x2d0 [ 636.140963][T16838] ? tomoyo_socket_bind_permission+0x14f/0x350 [ 636.141007][T16838] netlink_bind+0x7a8/0x9d0 [ 636.141052][T16838] ? __pfx_netlink_bind+0x10/0x10 [ 636.141101][T16838] ? apparmor_socket_bind+0x105/0x1e0 [ 636.141154][T16838] __sys_bind+0x1a7/0x260 [ 636.141205][T16838] ? __pfx___sys_bind+0x10/0x10 [ 636.141280][T16838] ? xfd_validate_state+0x61/0x180 [ 636.141309][T16838] ? __pfx_do_writev+0x10/0x10 [ 636.141363][T16838] __x64_sys_bind+0x72/0xb0 [ 636.141407][T16838] ? lockdep_hardirqs_on+0x7c/0x110 [ 636.141449][T16838] do_syscall_64+0xcd/0xf80 [ 636.141491][T16838] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 636.141524][T16838] RIP: 0033:0x7fe5a438f7c9 [ 636.141550][T16838] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 636.141582][T16838] RSP: 002b:00007fe5a25f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000031 [ 636.141613][T16838] RAX: ffffffffffffffda RBX: 00007fe5a45e5fa0 RCX: 00007fe5a438f7c9 [ 636.141635][T16838] RDX: 0000000000000068 RSI: 0000200000000000 RDI: 0000000000000003 [ 636.141657][T16838] RBP: 00007fe5a4413f91 R08: 0000000000000000 R09: 0000000000000000 [ 636.141678][T16838] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 636.141699][T16838] R13: 00007fe5a45e6038 R14: 00007fe5a45e5fa0 R15: 00007fff17523ca8 [ 636.141743][T16838] [ 636.687942][T16849] netlink: 'syz.0.3963': attribute type 4 has an invalid length. [ 636.697396][T16849] netlink: 314 bytes leftover after parsing attributes in process `syz.0.3963'. [ 636.712194][T16849] IPv6: Can't replace route, no match found [ 637.302347][T16869] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3968'. [ 638.106573][T16884] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3972'. [ 638.123920][T16884] netlink: 13 bytes leftover after parsing attributes in process `syz.3.3972'. [ 638.985634][T16905] audit: audit_lost=1 audit_rate_limit=0 audit_backlog_limit=64 [ 638.995644][T16905] audit: out of memory in audit_log_start [ 639.758143][T16922] netlink: 504 bytes leftover after parsing attributes in process `syz.0.3986'. [ 639.803892][T16922] netlink: 504 bytes leftover after parsing attributes in process `syz.0.3986'. [ 644.638670][T17038] netlink: 'syz.1.4029': attribute type 5 has an invalid length. [ 644.650169][T17038] netlink: 314 bytes leftover after parsing attributes in process `syz.1.4029'. [ 649.401845][T17109] kexec: Could not allocate control_code_buffer [ 649.685370][T17138] netlink: 326 bytes leftover after parsing attributes in process `syz.1.4064'. [ 650.333074][T17154] netlink: 354 bytes leftover after parsing attributes in process `syz.0.4078'. [ 652.257083][T17186] sp0: Synchronizing with TNC [ 652.266999][T17164] kexec: Could not allocate control_code_buffer [ 652.733361][T17197] netlink: 326 bytes leftover after parsing attributes in process `syz.4.4084'. [ 653.476458][T17217] netlink: 146 bytes leftover after parsing attributes in process `syz.3.4092'. [ 655.283414][T17260] netlink: 'syz.3.4107': attribute type 1 has an invalid length. [ 655.301871][T17260] netlink: 'syz.3.4107': attribute type 6 has an invalid length. [ 656.285602][T17288] FAULT_INJECTION: forcing a failure. [ 656.285602][T17288] name failslab, interval 1, probability 0, space 0, times 0 [ 656.324373][T17288] CPU: 1 UID: 0 PID: 17288 Comm: syz.1.4119 Tainted: G L syzkaller #0 PREEMPT(full) [ 656.324431][T17288] Tainted: [L]=SOFTLOCKUP [ 656.324445][T17288] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 656.324467][T17288] Call Trace: [ 656.324478][T17288] [ 656.324492][T17288] dump_stack_lvl+0x16c/0x1f0 [ 656.324541][T17288] should_fail_ex+0x512/0x640 [ 656.324593][T17288] ? __kmalloc_noprof+0xca/0x910 [ 656.324633][T17288] should_failslab+0xc2/0x120 [ 656.324685][T17288] __kmalloc_noprof+0xeb/0x910 [ 656.324721][T17288] ? process_vm_rw_core.constprop.0+0x1d8/0x970 [ 656.324777][T17288] ? process_vm_rw_core.constprop.0+0x1d8/0x970 [ 656.324820][T17288] process_vm_rw_core.constprop.0+0x1d8/0x970 [ 656.324892][T17288] ? __pfx_process_vm_rw_core.constprop.0+0x10/0x10 [ 656.324964][T17288] ? iovec_from_user+0xbb/0x140 [ 656.325022][T17288] process_vm_rw+0x216/0x2c0 [ 656.325081][T17288] ? __pfx_process_vm_rw+0x10/0x10 [ 656.325175][T17288] ? xfd_validate_state+0x61/0x180 [ 656.325204][T17288] ? __pfx_kernel_set_mempolicy+0x10/0x10 [ 656.325258][T17288] __x64_sys_process_vm_readv+0xe2/0x1c0 [ 656.325302][T17288] ? do_syscall_64+0x91/0xf80 [ 656.325341][T17288] ? lockdep_hardirqs_on+0x7c/0x110 [ 656.325380][T17288] do_syscall_64+0xcd/0xf80 [ 656.325423][T17288] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 656.325456][T17288] RIP: 0033:0x7f9e08d8f7c9 [ 656.325483][T17288] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 656.325516][T17288] RSP: 002b:00007f9e06ff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000136 [ 656.325549][T17288] RAX: ffffffffffffffda RBX: 00007f9e08fe5fa0 RCX: 00007f9e08d8f7c9 [ 656.325571][T17288] RDX: 0000040000000001 RSI: 0000200000000000 RDI: 0000000000000000 [ 656.325593][T17288] RBP: 00007f9e08e13f91 R08: 000000000000000a R09: 0000000000000000 [ 656.325615][T17288] R10: 0000200000000180 R11: 0000000000000246 R12: 0000000000000000 [ 656.325637][T17288] R13: 00007f9e08fe6038 R14: 00007f9e08fe5fa0 R15: 00007fff65af0b48 [ 656.325681][T17288] [ 656.601050][T17295] futex_wake_op: syz.0.4121 tries to shift op by -2048; fix this program [ 656.628259][T17295] futex_wake_op: syz.0.4121 tries to shift op by -2048; fix this program [ 656.666901][T17296] 0x000000000001-0x000000020000 : "" [ 656.694002][T17296] ftl_cs: FTL header corrupt! [ 656.821119][T17300] ERROR: Out of memory at tomoyo_memory_ok. [ 656.996631][T17303] sp0: Synchronizing with TNC [ 657.018418][T17304] sp0: Found TNC [ 657.134766][T17307] FAULT_INJECTION: forcing a failure. [ 657.134766][T17307] name failslab, interval 1, probability 0, space 0, times 0 [ 657.236390][T17307] CPU: 0 UID: 0 PID: 17307 Comm: syz.3.4125 Tainted: G L syzkaller #0 PREEMPT(full) [ 657.236447][T17307] Tainted: [L]=SOFTLOCKUP [ 657.236461][T17307] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 657.236482][T17307] Call Trace: [ 657.236495][T17307] [ 657.236510][T17307] dump_stack_lvl+0x16c/0x1f0 [ 657.236559][T17307] should_fail_ex+0x512/0x640 [ 657.236612][T17307] ? __kmalloc_cache_noprof+0x5f/0x800 [ 657.236655][T17307] should_failslab+0xc2/0x120 [ 657.236709][T17307] __kmalloc_cache_noprof+0x80/0x800 [ 657.236749][T17307] ? do_kimage_alloc_init+0x40/0x320 [ 657.236819][T17307] ? do_kimage_alloc_init+0x40/0x320 [ 657.236872][T17307] do_kimage_alloc_init+0x40/0x320 [ 657.236926][T17307] do_kexec_load+0x1fd/0x860 [ 657.236961][T17307] ? __pfx_do_kexec_load+0x10/0x10 [ 657.236997][T17307] ? _copy_from_user+0x59/0xd0 [ 657.237053][T17307] __x64_sys_kexec_load+0x1bf/0x230 [ 657.237091][T17307] do_syscall_64+0xcd/0xf80 [ 657.237136][T17307] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 657.237170][T17307] RIP: 0033:0x7fe5a438f7c9 [ 657.237198][T17307] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 657.237233][T17307] RSP: 002b:00007fe5a25f6038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6 [ 657.237267][T17307] RAX: ffffffffffffffda RBX: 00007fe5a45e5fa0 RCX: 00007fe5a438f7c9 [ 657.237290][T17307] RDX: 0000200000000040 RSI: 0000000000000001 RDI: 0000200000000007 [ 657.237323][T17307] RBP: 00007fe5a4413f91 R08: 0000000000000000 R09: 0000000000000000 [ 657.237345][T17307] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000000 [ 657.237365][T17307] R13: 00007fe5a45e6038 R14: 00007fe5a45e5fa0 R15: 00007fff17523ca8 [ 657.237409][T17307] [ 658.353153][T17322] kvm: kvm [17321]: vcpu2, guest rIP: 0xfff0 Unhandled WRMSR(0xc0010058) = 0x2 [ 658.550453][ T30] audit: type=1800 audit(1765346922.027:11): pid=17327 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.4133" name="discovery_nqn" dev="configfs" ino=67065 res=0 errno=0 [ 658.616114][T17324] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4132'. [ 658.641494][T17324] unsupported nlmsg_type 40 [ 658.652360][T17324] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4132'. [ 659.592208][T17345] [U] [ 659.595651][T17345] [U] [ 659.598932][T17345] [U] [ 659.602211][T17345] [U] [ 659.657405][T17345] [U] [ 659.660726][T17345] [U] [ 659.664014][T17345] [U] [ 659.667296][T17345] [U] [ 659.739553][T17345] [U] [ 659.742809][T17345] [U] t-Z97E>h[|f.uᥐ3DŽ$W$ M7-e ?3؁=-4<*<.jAEh"[?Z '-omfsTT W&E҆!>xqODRZ m*pטff>'l qQ':Tuֵ5W˕tX15q>l饍!eJF",E~t8uHz$ [ 659.772411][T17345] [U] ;: iy+ FiPTF?A C:k)*D9l 0 [ 659.782454][T17345] [U] l8>Im |X'`RQ: 4J?mY| V*ǘ6⢗"X߿HY_jV0xFޔkf'\W&#xϢZ~H=Ah1 z hPݼ1=1Ejf6GZGa;uNtr(A2{TbKMeM [ 659.837327][T17345] [U] C'SiNIjPySsrd_mZrL4E=SuՎ=0VQ< GBa,rG/3eZlz']`?jP7T_,M9}Gв&a3''C=!d B\2cE*Ԍ*e0wrj"e4H [ 659.866724][T17345] [U] 5g:9 |k/mՅ  [ 659.872132][T17345] [U] {&Eѹ(0Cdz5B~j%^(~qj [ 659.880479][T17345] [U] c.UfQRg'gfdlBqKFV=J^/حh>G#xf[W"KE_N<#ǦV>Qr-хa+< !OFC%hw ˠfA9CI۫WB5tߖnc)xz<^UNbmrpiбȶ%7嶕$Xh_b)[뒟L<Z~_n1bm2cZ ye8Ne4 ZiaB- [ 659.920423][T17345] [U] r ‡Go="Ξ:I|~%Lw-"]Teҭ`~wīZc{KN-'$bv E~a+>;)GIsoal$hX|@4hU!`>NV7Raȝ8qo V [ 659.945959][T17345] [U] ֞`g=AX906 [ 659.951266][T17345] [U] w6dRDΫ,&\W$a8. [ 659.958162][T17345] [U] q}wW#U|k6Qg]e^sč\aAZ\1q2OBIY1!m0?h{s3/SD [ 660.130740][T17345] [U] Ik u8snQ20&u䌿 \EEin-^|p[,4s+F(ڼs@=Kٰ5cfD.B7|2c\"G\ɺdӱbΈ9m70;tmUR=Xh$ծˌ~ [ 660.148840][T17345] [U] &'advK*P] pSm(_ N/)!)VP+@<7nKO& 8#C2qۀ"rs$^Bz?LP!.f{/i1a5sdz1!DF+ [ 660.168616][T17345] [U] rL{FDv"D[h[kO?0'Di\oQVtz<@{ geO8{>d`QKbOj`Fy=Ð2B)2@vYjmj$+ }X\uF +/Ig6Rd=OnbcBڨg5vh\s_߶9ZF^>-ɰq$DS3/c59j9I@ѕ8= [ 660.207339][T17345] [U] yy52t [ 660.211507][T17345] [U] Z%H詉`y M\W2'eZ5K[4u8[{N}+/Zv .&3[-q&[-hژ/ʣamj [ 660.225987][T17345] [U] B]; [ 660.230560][T17345] [U] Ѳ~IY7텉!m9\Sq [ 660.238087][T17345] [U] ZTnF6naoXI6ߤ\L *yuEI,~U(`(-,lbaByHmiTVy2)(&EtXK^bCa!CС9KT~4SJęR<ֵ*4(Ѯ|9py`}%r. ֓!;,%M7cSmh,4~Ėa.bJJ`z,;돽U IB40un [ 660.325388][T17345] [U] (X#r2O;_-<BU'07J;ahU4aF3HG{Zt.B&}GDI. [ 660.343926][T17345] [U] 7@W.T7R,?vmEݐC6 #zqx}c=HWᎨ|"Q/F, [ 660.604068][T17345] [U] dw!h~| 8Y:߾EUp8a/-?E/N}Iw|.O {ww PF [ 660.616840][T17345] [U] Cy̋ӡNW?`An+?&٪"?'Xo [ 660.624255][T17345] [U] NTX8M1ڳQtVNF?[?W ,o}zU'wue [ 660.632439][T17345] [U]  [ 660.635910][T17345] [U] z'Z|t> [ 660.640721][T17345] [U] @Έ.WmJyǙD]pFd[?/#a3f(e<7j2cNRWPe:[:R1p^z9ʼn+"yCFKl@D [ 660.657523][T17345] [U]  ,1xO{՛{쎏lRhÎ [ 660.664630][T17345] [U] Th] [ 660.668565][T17345] [U] [ [ 660.671992][T17345] [U] 2mV/0A8s7hg @_L"H$$@]z (PYHy47}e߰~`lQg<ҞpYPy)ɴ?#OcRwA>hʼ$0"Yڤn+Ah' [ 660.692719][T17345] [U] Ε`v Is"}姺v ߴ:Ks$*ұ [ 660.700938][T17345] [U] aNGMDj&+@s| [ 660.706129][T17345] [U] é"ǫEN^2tIh [ 660.712044][T17345] [U] ɐT2F霧6"s [ 660.717880][T17345] [U] Nl&3FU kq c [KD8֡ˁ_kWs./0`Mc_>Sݓlӟt_o e'1:u`VfjJ,OʈKlrTrj^DKh,ՋH0.A`"- }kpj~`quha3Nڻf:jgOƯF6eQѷЗ6x [ 660.751640][T17345] [U] ߾n-I [ 660.755510][T17345] [U] %tbu3[yҍ-8%(wQ+8~0̧ӫ*+FR#:( rΟtkEH [ 660.854600][T17345] [U] 1+qOkDS0Ɇ`ID'C2!RR̼9 Xb8 [ 660.863284][T17345] [U] ;oh8{䗝,Jq`L\EoB/Go O!~94G [ 660.874134][T17345] [U] 0,}1bd覐߳\49Zp&B}k ekY^K5BzW9޴b'uۮ_iҽSF [ 660.887604][T17345] [U] NavRA$ [IZY@p@mPגwAJ!V&p6v؀em:i 8{.PC3g/ՠV[b̞+dpӹiqPD\ސ| BU9i:e6ĪY/{" [ 660.909201][T17345] [U] ps{D [ 660.913486][T17345] [U] ܦ&2u [ 660.917894][T17345] [U] }/j^"9YFFՃ x3vsn" Nƈp7.~EÝƍ`j+Aï9١zЄoD,}wP";rwvB ?^s؝bfށ֛kݨ6 [ 660.936879][T17345] [U] E6#(R|-K~ZmiZG/Y8wj`vD2|٠(4qgȉ*lc^|i{v [ 660.949918][T17345] [U] A!)׌0VƋaKcve{&'~Vy^ۃK璄]wy8 [ 660.958259][T17345] [U] =l\hI 2\wpf8\b$L5ǐySEVA8"X[߬1'h M!"үz^e0tq&wyѫڔci~ [ 660.972024][T17345] [U] Z ) [ 660.975762][T17345] [U] u!Iߺg;شulD{ˢf5ZY [ 660.982834][T17345] [U] ,LSdQ^amuѱI`pct"Ѹ ;,)RV};b [ 660.991372][T17345] [U] 1\tNrhw%\Q [ 660.996808][T17345] [U] k[5X"spyw}=NCT8v '[d c$]Cb]I5gvrݙņc,U4˫F_DlLP/9E$?愠t8!uK`}CU%< [ 661.013290][T17345] [U] PT$t ܣA208\NSܺqw?r|eஔz7SçZܴLJTF֡VBPEuƙ?7UmM/]χg2%f!;1JLuyxC<2r=/߸AX)pۯw2=tp(呷t 1KXm-zQֱ=mfz51dbD"%㧮&SegTgf2Ldzh?Hhx>&ϢZ.Nw4їhm1U,{y`Ja_(QEe&2Y(K= [ 661.244471][T17345] [U] PZ [ 661.248217][T17345] [U] DZnAo(X*:&_q3_7+lbv\Ifùz{,cl}~di7q-3 :!74'" [ 661.270425][T17360] netlink: 252 bytes leftover after parsing attributes in process `syz.1.4144'. [ 661.292131][T17360] unsupported nla_type 65535 [ 661.349816][T17345] [U] kx/DQ [ 661.931773][T17379] netlink: 326 bytes leftover after parsing attributes in process `syz.4.4153'. [ 661.963427][T17379] bridge0: port 2(bridge_slave_1) entered disabled state [ 661.973689][T17379] bridge0: port 1(bridge_slave_0) entered disabled state [ 662.419054][T17386] bond0: invalid ARP target specified [ 662.453881][T17377] : renamed from team0 (while UP) [ 663.547788][T17405] FAULT_INJECTION: forcing a failure. [ 663.547788][T17405] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 663.578958][T17391] Process accounting paused [ 663.730100][T17405] CPU: 1 UID: 0 PID: 17405 Comm: syz.1.4160 Tainted: G L syzkaller #0 PREEMPT(full) [ 663.730177][T17405] Tainted: [L]=SOFTLOCKUP [ 663.730189][T17405] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 663.730211][T17405] Call Trace: [ 663.730223][T17405] [ 663.730236][T17405] dump_stack_lvl+0x16c/0x1f0 [ 663.730284][T17405] should_fail_ex+0x512/0x640 [ 663.730350][T17405] should_fail_alloc_page+0xe7/0x130 [ 663.730408][T17405] prepare_alloc_pages+0x401/0x670 [ 663.730467][T17405] __alloc_frozen_pages_noprof+0x18b/0x2430 [ 663.730517][T17405] ? __up_read+0x2d1/0x700 [ 663.730558][T17405] ? __pfx___up_read+0x10/0x10 [ 663.730596][T17405] ? __rmap_walk_file+0x575/0x620 [ 663.730650][T17405] ? vma_interval_tree_iter_next+0x10c/0x250 [ 663.730688][T17405] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 663.730736][T17405] ? __rmap_walk_file+0x575/0x620 [ 663.730802][T17405] ? rmap_walk_file+0x174/0x1f0 [ 663.730852][T17405] ? queue_folios_pte_range+0x52f/0x11c0 [ 663.730928][T17405] __folio_alloc_noprof+0x11/0x220 [ 663.730970][T17405] alloc_migration_target+0x1a0/0x560 [ 663.731030][T17405] migrate_pages_batch+0x3bc/0x3bb0 [ 663.731070][T17405] ? __pfx_alloc_migration_target+0x10/0x10 [ 663.731147][T17405] ? __pfx_migrate_pages_batch+0x10/0x10 [ 663.731191][T17405] ? __pfx_walk_pgd_range+0x10/0x10 [ 663.731238][T17405] migrate_pages_sync+0x12d/0x8a0 [ 663.731275][T17405] ? __pfx_alloc_migration_target+0x10/0x10 [ 663.731344][T17405] ? queue_pages_test_walk+0x279/0x410 [ 663.731400][T17405] ? __pfx_migrate_pages_sync+0x10/0x10 [ 663.731437][T17405] ? walk_page_test+0x9b/0x180 [ 663.731482][T17405] ? walk_page_range_mm_unsafe+0x235/0xb40 [ 663.731537][T17405] migrate_pages+0x1b0b/0x2350 [ 663.731575][T17405] ? __pfx_alloc_migration_target+0x10/0x10 [ 663.731643][T17405] ? __pfx_migrate_pages+0x10/0x10 [ 663.731678][T17405] ? queue_pages_range+0x11e/0x180 [ 663.731732][T17405] ? __pfx___up_read+0x10/0x10 [ 663.731770][T17405] ? do_migrate_pages+0x45b/0x750 [ 663.731831][T17405] do_migrate_pages+0x491/0x750 [ 663.731893][T17405] ? __pfx_do_migrate_pages+0x10/0x10 [ 663.731972][T17405] ? rcu_is_watching+0x12/0xc0 [ 663.732021][T17405] ? cap_capable+0x10d/0x3f0 [ 663.732066][T17405] ? get_task_mm+0xc2/0xf0 [ 663.732112][T17405] ? security_capable+0x250/0x260 [ 663.732162][T17405] kernel_migrate_pages+0x55b/0x700 [ 663.732215][T17405] ? __pfx_kernel_migrate_pages+0x10/0x10 [ 663.732271][T17405] ? __pfx_do_writev+0x10/0x10 [ 663.732330][T17405] __x64_sys_migrate_pages+0x96/0x100 [ 663.732383][T17405] ? lockdep_hardirqs_on+0x7c/0x110 [ 663.732424][T17405] do_syscall_64+0xcd/0xf80 [ 663.732468][T17405] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 663.732504][T17405] RIP: 0033:0x7f9e08d8f7c9 [ 663.732531][T17405] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 663.732566][T17405] RSP: 002b:00007f9e06ff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000100 [ 663.732600][T17405] RAX: ffffffffffffffda RBX: 00007f9e08fe5fa0 RCX: 00007f9e08d8f7c9 [ 663.732624][T17405] RDX: 0000200000000100 RSI: 000000000000000a RDI: 0000000000000000 [ 663.732645][T17405] RBP: 00007f9e08e13f91 R08: 0000000000000000 R09: 0000000000000000 [ 663.732667][T17405] R10: 0000200000000140 R11: 0000000000000246 R12: 0000000000000000 [ 663.732689][T17405] R13: 00007f9e08fe6038 R14: 00007f9e08fe5fa0 R15: 00007fff65af0b48 [ 663.732734][T17405] [ 665.842051][T17434] netlink: 'syz.1.4167': attribute type 33 has an invalid length. [ 665.892676][T17434] netlink: 322 bytes leftover after parsing attributes in process `syz.1.4167'. [ 666.480279][T17457] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4176'. [ 666.525677][T17457] netlink: 354 bytes leftover after parsing attributes in process `syz.4.4176'. [ 666.620477][T17461] netlink: 342 bytes leftover after parsing attributes in process `syz.1.4177'. [ 666.921009][T17466] kvm: user requested TSC rate below hardware speed [ 669.165449][T17508] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 670.281625][T17535] netlink: 342 bytes leftover after parsing attributes in process `syz.1.4206'. [ 670.521636][T17540] FAULT_INJECTION: forcing a failure. [ 670.521636][T17540] name fail_futex, interval 1, probability 0, space 0, times 0 [ 670.550687][T17540] CPU: 0 UID: 0 PID: 17540 Comm: syz.0.4207 Tainted: G L syzkaller #0 PREEMPT(full) [ 670.550742][T17540] Tainted: [L]=SOFTLOCKUP [ 670.550754][T17540] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 670.550776][T17540] Call Trace: [ 670.550787][T17540] [ 670.550801][T17540] dump_stack_lvl+0x16c/0x1f0 [ 670.550848][T17540] should_fail_ex+0x512/0x640 [ 670.550906][T17540] get_futex_key+0x1d0/0x15f0 [ 670.550944][T17540] ? __pfx_madvise_walk_vmas+0x10/0x10 [ 670.550980][T17540] ? __pfx_get_futex_key+0x10/0x10 [ 670.551019][T17540] ? blk_finish_plug+0x53/0xa0 [ 670.551073][T17540] ? madvise_do_behavior+0x1f4/0x530 [ 670.551110][T17540] futex_wake+0xea/0x530 [ 670.551160][T17540] ? __pfx___up_read+0x10/0x10 [ 670.551198][T17540] ? __pfx_futex_wake+0x10/0x10 [ 670.551240][T17540] ? madvise_unlock+0x16d/0x220 [ 670.551301][T17540] ? madvise_unlock+0x7c/0x220 [ 670.551359][T17540] do_futex+0x1e3/0x350 [ 670.551398][T17540] ? __pfx_do_futex+0x10/0x10 [ 670.551469][T17540] __x64_sys_futex+0x1e0/0x4c0 [ 670.551514][T17540] ? __pfx___x64_sys_futex+0x10/0x10 [ 670.551561][T17540] ? xfd_validate_state+0x61/0x180 [ 670.551589][T17540] ? __pfx_ksys_write+0x10/0x10 [ 670.551646][T17540] do_syscall_64+0xcd/0xf80 [ 670.551688][T17540] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 670.551720][T17540] RIP: 0033:0x7f9cc2f8f7c9 [ 670.551745][T17540] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 670.551776][T17540] RSP: 002b:00007f9cc3d500e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 670.551807][T17540] RAX: ffffffffffffffda RBX: 00007f9cc31e5fa8 RCX: 00007f9cc2f8f7c9 [ 670.551829][T17540] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f9cc31e5fac [ 670.551849][T17540] RBP: 00007f9cc31e5fa0 R08: 00007f9cc3d51000 R09: 0000000000000000 [ 670.551869][T17540] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 670.551889][T17540] R13: 00007f9cc31e6038 R14: 00007ffc0c795200 R15: 00007ffc0c7952e8 [ 670.551930][T17540] [ 670.954846][T17546] netlink: 330 bytes leftover after parsing attributes in process `syz.1.4210'. [ 672.666506][T17591] FAULT_INJECTION: forcing a failure. [ 672.666506][T17591] name failslab, interval 1, probability 0, space 0, times 0 [ 672.701642][T17591] CPU: 0 UID: 0 PID: 17591 Comm: syz.1.4227 Tainted: G L syzkaller #0 PREEMPT(full) [ 672.701711][T17591] Tainted: [L]=SOFTLOCKUP [ 672.701724][T17591] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 672.701750][T17591] Call Trace: [ 672.701768][T17591] [ 672.701781][T17591] dump_stack_lvl+0x16c/0x1f0 [ 672.701830][T17591] should_fail_ex+0x512/0x640 [ 672.701882][T17591] ? __kmalloc_noprof+0xca/0x910 [ 672.701922][T17591] should_failslab+0xc2/0x120 [ 672.701973][T17591] __kmalloc_noprof+0xeb/0x910 [ 672.702016][T17591] ? create_ruleset+0x21/0x140 [ 672.702086][T17591] ? create_ruleset+0x21/0x140 [ 672.702142][T17591] create_ruleset+0x21/0x140 [ 672.702204][T17591] landlock_merge_ruleset+0xbb/0x870 [ 672.702258][T17591] ? prepare_creds+0x5ea/0x940 [ 672.702302][T17591] __do_sys_landlock_restrict_self+0x2a1/0x910 [ 672.702358][T17591] do_syscall_64+0xcd/0xf80 [ 672.702403][T17591] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 672.702437][T17591] RIP: 0033:0x7f9e08d8f7c9 [ 672.702464][T17591] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 672.702500][T17591] RSP: 002b:00007f9e06ff6038 EFLAGS: 00000246 ORIG_RAX: 00000000000001be [ 672.702532][T17591] RAX: ffffffffffffffda RBX: 00007f9e08fe5fa0 RCX: 00007f9e08d8f7c9 [ 672.702556][T17591] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000005 [ 672.702577][T17591] RBP: 00007f9e08e13f91 R08: 0000000000000000 R09: 0000000000000000 [ 672.702600][T17591] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 672.702626][T17591] R13: 00007f9e08fe6038 R14: 00007f9e08fe5fa0 R15: 00007fff65af0b48 [ 672.702680][T17591] [ 674.055976][T17617] random: crng reseeded on system resumption [ 674.060660][T17615] futex_wake_op: syz.3.4239 tries to shift op by -2048; fix this program [ 674.179898][T17620] size and base must be multiples of 4 kiB [ 674.230029][T17620] CPU: 1 UID: 0 PID: 17620 Comm: syz.3.4239 Tainted: G L syzkaller #0 PREEMPT(full) [ 674.230069][T17620] Tainted: [L]=SOFTLOCKUP [ 674.230078][T17620] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 674.230093][T17620] Call Trace: [ 674.230101][T17620] [ 674.230116][T17620] dump_stack_lvl+0x16c/0x1f0 [ 674.230150][T17620] mtrr_add+0xdf/0x110 [ 674.230191][T17620] mtrr_ioctl+0x7ef/0xcf0 [ 674.230214][T17620] ? __pfx_mtrr_ioctl+0x10/0x10 [ 674.230241][T17620] ? find_held_lock+0x2b/0x80 [ 674.230286][T17620] ? __fget_files+0x20e/0x3c0 [ 674.230321][T17620] ? __pfx_mtrr_ioctl+0x10/0x10 [ 674.230343][T17620] proc_reg_unlocked_ioctl+0x229/0x320 [ 674.230374][T17620] ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10 [ 674.230407][T17620] __x64_sys_ioctl+0x18e/0x210 [ 674.230438][T17620] do_syscall_64+0xcd/0xf80 [ 674.230470][T17620] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 674.230495][T17620] RIP: 0033:0x7fe5a438f7c9 [ 674.230517][T17620] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 674.230543][T17620] RSP: 002b:00007fe5a25d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 674.230566][T17620] RAX: ffffffffffffffda RBX: 00007fe5a45e6090 RCX: 00007fe5a438f7c9 [ 674.230582][T17620] RDX: 0000000000000000 RSI: 0000000040104d01 RDI: 0000000000000000 [ 674.230597][T17620] RBP: 00007fe5a4413f91 R08: 0000000000000000 R09: 0000000000000000 [ 674.230612][T17620] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 674.230627][T17620] R13: 00007fe5a45e6128 R14: 00007fe5a45e6090 R15: 00007fff17523ca8 [ 674.230659][T17620] [ 675.161069][T17633] [U] [ 675.164507][T17633] [U] [ 675.167788][T17633] [U] [ 675.171091][T17633] [U] [ 675.189167][T17633] [U] [ 675.192486][T17633] [U] [ 675.195775][T17633] [U] [ 675.199062][T17633] [U] [ 675.209145][T17633] [U] [ 675.212453][T17633] [U] [ 675.215742][T17633] [U] [ 675.219023][T17633] [U] [ 675.258750][T17633] [U] [ 675.262093][T17633] [U] [ 675.265373][T17633] [U] [ 675.268643][T17633] [U] [ 675.322971][T17633] [U] [ 675.326398][T17633] [U] [ 675.329676][T17633] [U] [ 675.332951][T17633] [U] [ 675.345623][T17633] [U] [ 675.348939][T17633] [U] [ 675.352222][T17633] [U] [ 675.355510][T17633] [U] [ 675.360505][T17633] [U] [ 675.363754][T17633] [U] d-_e [ 675.368027][T17633] [U] '-qyR8D?M[xd O [ 675.374927][T17633] [U] ȖN{l>Q>@7EZ+`߲iP'Z1s)cY!*Ȟᓼqpgx]F#01t˛?!&=D#J)lTd?`BK ; ]2:SSmy"7 Od6`I-B?f oƠBTAMAixڬa.'6wZcJz$3fN'1/ّdu)nH~@yhzd7ToY|maYYu~c$: [ 675.413094][T17633] [U] H!hT Z&^gc4s ^86)Sb|m,hi$P"q:fqDцE [ 675.425604][T17633] [U] ϣ*_1~"$,DB [ 675.431558][T17633] [U] ۦCJA~*,B+9h=/K(X&a{sg(,BW%3᧥JHYS= xt~Jh.QSz{pSo$ [ 675.446063][T17633] [U] {w{Vvr(;Dw2a ӗ*l/!r^,ٯ[Ղ=`~O""K [ 675.457739][T17633] [U] :Km [ 675.462213][T17633] [U] sJ\$/rX;;U [ 675.467531][T17633] [U] cr*o?beTP'ruoiꉞT$k }]8f/ $ [ 675.476910][T17633] [U] H/( [<+&ɧ1WVHc籠{S~u [ 675.484219][T17633] [U] q.w m 1Q(bWyBlP׃i9%}H \5JU!~7JP îgxZפB@e)8]-jr44N`v.) `|F{'{tJsL"ڟDɜl)۲1,zR [ 675.503724][T17633] [U] J̡jĦ2$hm2@#~y?N@۽ӳ)61IWWfܽTg3 s(G1FAi"%CQdhF<=# [ 675.519927][T17633] [U] D~AezEaKaP"m{bʥEʸҿaH%pnv-N0kW򏛨øz [ 675.531505][T17633] [U] 'A [ 675.534944][T17633] [U] l|1ѺSgeoq]m]Y+{:Гx( ޷MF-yҹsھW/J=}ձ [ 675.547063][T17633] [U] ؅ Jc1|kket8ko?ȆU`,h/}DŰ;o*fȊ3F{^lCJ!&v_hZ$j3 [ 675.559986][T17633] [U] LK?=|z\M+T4b1)4k BsH%ܣ. D|!gLD\sapXvakɌn[*v'9/0W*ipJHT@=*X\z. [ 675.756523][T17633] [U] DhТ8oŧ2ph͑ۍ`73$^K4rDp]n~^ڼA#Y3]+n}6P2Fk5X]dɱ퐇VNzӣ;}4+iʪÿc Q8i [ 675.808904][T17633] [U] AtCY<%ƿW.~kG{P/yV34؈ݯJo`W рj׀;4/Fh [ 675.820198][T17633] [U] [<^2p[rOo?E/\BU`r:A8e֘$s&;5A >疠]cRn59 [ 675.833555][T17633] [U] Y' [ 675.837216][T17633] [U] V1h%e c%rȋb!Mޢm{{ڱYMG\ްyZq(N14V‹=x~ [ 675.852583][T17633] [U] K [ 675.856243][T17633] [U] 8:ϰt~ctYG3%5pf=j4Z>NE[R4%֙(e^>*US@r9?) [ 675.867333][T17633] [U] ƷS~_5u?vMm^iǼC|W*18d*8Y??ZfA~T{ŹiGly):T;; €nW' dEJŒ|9";{|\F΢oV-oN6æռB/S.8O}~E^ :0^sJ?cPsu"1p.J+og` `JLwB}XX;L^MLDJjw_Dן10vse`…ם͞dhH2fVB4Hr'kTNf [ 675.905849][T17633] [U] 3RnqR9)v4jercR0˗Z#BO>L]]r!aO{Mewكʉi֎nWkc;Cux";'eJkd( [ 675.923081][T17633] [U] orA$4唍_~0ÃJ]*%L㚹L1'VK'~$2Rus=]UHؼ~]SV,jt|V'-}FL[s [ 676.008591][T17633] [U] `̰q1c|4):6]{b@xNn]HK0An_p^1yʳ\r=\͊lZo}?7q3aMV:)%-5丶E#6bd9ߢC^J)U*ag}6ǷD [ 676.028131][T17633] [U] 3VӥYPH [ 676.032731][T17633] [U] [EaNKYݑ ?k;Y*S#RBz}dOС73>ʅ8_6uq:5[pFR<_ ]W[OsUg0Kk.{S=e,O.I*/WDzjӆt8Naܚ >ivk(O&MߙsubfBDo3tW~3fퟕGuHesQ+$ӽmIۍS [ 676.101065][T17633] [U] /Zᭈ3REGly-<݀AF/&g>J9S ;U#E~ [ 676.110658][T17633] [U] _BzIz9eM [ 676.115764][T17633] [U] 2şAP5Ɂ0{ [ 676.122118][T17633] [U] BtAl~l؈>p+Ykm<<4X`5 ek0 [ 676.132041][T17633] [U] p<҃Tˈ [ 676.136640][T17633] [U] FH|:@qE9?U&ʥf%dV%qLP(+D/K510DYMrz8mj[qG]Qm'_gn0ɧB"XTAO.7+F⡳zr{|ŗԣ8+M#޴إ),,U [ 676.158544][T17633] [U] 4-iB5*i^ mA3/"qNHF [ 676.166271][T17633] [U] i#Ku"cMڜ|?85K+T?.AY`d.1oi [ 676.220041][T17642] netlink: 314 bytes leftover after parsing attributes in process `syz.1.4247'. [ 676.276680][T17633] [U] ^J>D̘䯡b`W] f Eg ~0z< ԴƪCȖt [ 676.454466][T17645] netlink: 330 bytes leftover after parsing attributes in process `syz.3.4249'. [ 676.469509][T17645] \: renamed from lo [ 676.704624][T17657] ERROR: Out of memory at tomoyo_memory_ok. [ 677.014445][T17670] hub 1-0:1.0: USB hub found [ 677.034032][T17670] hub 1-0:1.0: 1 port detected [ 677.676876][T17679] zswap: compressor not available [ 678.330945][T17695] KVM: debugfs: duplicate directory 17695-3 [ 678.419627][T17698] futex_wake_op: syz.0.4265 tries to shift op by -2048; fix this program [ 678.487680][T17701] size and base must be multiples of 4 kiB [ 678.494885][T17701] CPU: 0 UID: 0 PID: 17701 Comm: syz.0.4265 Tainted: G L syzkaller #0 PREEMPT(full) [ 678.494933][T17701] Tainted: [L]=SOFTLOCKUP [ 678.494945][T17701] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 678.494965][T17701] Call Trace: [ 678.494976][T17701] [ 678.494988][T17701] dump_stack_lvl+0x16c/0x1f0 [ 678.495032][T17701] mtrr_add+0xdf/0x110 [ 678.495107][T17701] mtrr_ioctl+0x7ef/0xcf0 [ 678.495139][T17701] ? __pfx_mtrr_ioctl+0x10/0x10 [ 678.495178][T17701] ? find_held_lock+0x2b/0x80 [ 678.495231][T17701] ? __fget_files+0x20e/0x3c0 [ 678.495286][T17701] ? __pfx_mtrr_ioctl+0x10/0x10 [ 678.495317][T17701] proc_reg_unlocked_ioctl+0x229/0x320 [ 678.495359][T17701] ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10 [ 678.495404][T17701] __x64_sys_ioctl+0x18e/0x210 [ 678.495462][T17701] do_syscall_64+0xcd/0xf80 [ 678.495507][T17701] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 678.495541][T17701] RIP: 0033:0x7f9cc2f8f7c9 [ 678.495567][T17701] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 678.495599][T17701] RSP: 002b:00007f9cc11f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 678.495631][T17701] RAX: ffffffffffffffda RBX: 00007f9cc31e6090 RCX: 00007f9cc2f8f7c9 [ 678.495653][T17701] RDX: 0000000000000000 RSI: 0000000040104d01 RDI: 0000000000000000 [ 678.495673][T17701] RBP: 00007f9cc3013f91 R08: 0000000000000000 R09: 0000000000000000 [ 678.495694][T17701] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 678.495714][T17701] R13: 00007f9cc31e6128 R14: 00007f9cc31e6090 R15: 00007ffc0c7952e8 [ 678.495757][T17701] [ 678.930620][T17709] netlink: 326 bytes leftover after parsing attributes in process `syz.4.4268'. [ 680.653459][T17736] mkiss: ax0: crc mode is auto. [ 680.678303][T17738] netlink: 346 bytes leftover after parsing attributes in process `syz.0.4279'. [ 681.479723][T17758] FAULT_INJECTION: forcing a failure. [ 681.479723][T17758] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 681.501793][T17758] CPU: 1 UID: 0 PID: 17758 Comm: syz.0.4286 Tainted: G L syzkaller #0 PREEMPT(full) [ 681.501848][T17758] Tainted: [L]=SOFTLOCKUP [ 681.501859][T17758] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 681.501877][T17758] Call Trace: [ 681.501887][T17758] [ 681.501899][T17758] dump_stack_lvl+0x16c/0x1f0 [ 681.501940][T17758] should_fail_ex+0x512/0x640 [ 681.502015][T17758] should_fail_alloc_page+0xe7/0x130 [ 681.502063][T17758] prepare_alloc_pages+0x401/0x670 [ 681.502114][T17758] __alloc_frozen_pages_noprof+0x18b/0x2430 [ 681.502150][T17758] ? __pfx_try_to_migrate_one+0x10/0x10 [ 681.502188][T17758] ? __up_read+0x2d1/0x700 [ 681.502220][T17758] ? __pfx___up_read+0x10/0x10 [ 681.502251][T17758] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 681.502284][T17758] ? rmap_walk_anon+0x559/0x790 [ 681.502356][T17758] __folio_alloc_noprof+0x11/0x220 [ 681.502390][T17758] alloc_migration_target+0x1a0/0x560 [ 681.502443][T17758] migrate_pages_batch+0x3bc/0x3bb0 [ 681.502476][T17758] ? __pfx_alloc_migration_target+0x10/0x10 [ 681.502534][T17758] ? __pfx_migrate_pages_batch+0x10/0x10 [ 681.502568][T17758] ? __pfx_walk_pgd_range+0x10/0x10 [ 681.502606][T17758] migrate_pages_sync+0x12d/0x8a0 [ 681.502636][T17758] ? __pfx_alloc_migration_target+0x10/0x10 [ 681.502687][T17758] ? queue_pages_test_walk+0x279/0x410 [ 681.502733][T17758] ? __pfx_migrate_pages_sync+0x10/0x10 [ 681.502766][T17758] ? walk_page_test+0x9b/0x180 [ 681.502803][T17758] ? walk_page_range_mm_unsafe+0x235/0xb40 [ 681.502848][T17758] migrate_pages+0x1b0b/0x2350 [ 681.502880][T17758] ? __pfx_alloc_migration_target+0x10/0x10 [ 681.502936][T17758] ? __pfx_migrate_pages+0x10/0x10 [ 681.502965][T17758] ? queue_pages_range+0x11e/0x180 [ 681.503016][T17758] ? __pfx___up_read+0x10/0x10 [ 681.503053][T17758] ? do_migrate_pages+0x45b/0x750 [ 681.503103][T17758] do_migrate_pages+0x491/0x750 [ 681.503156][T17758] ? __pfx_do_migrate_pages+0x10/0x10 [ 681.503207][T17758] ? rcu_is_watching+0x12/0xc0 [ 681.503247][T17758] ? cap_capable+0x10d/0x3f0 [ 681.503283][T17758] ? get_task_mm+0xc2/0xf0 [ 681.503320][T17758] ? security_capable+0x250/0x260 [ 681.503361][T17758] kernel_migrate_pages+0x55b/0x700 [ 681.503405][T17758] ? __pfx_kernel_migrate_pages+0x10/0x10 [ 681.503451][T17758] ? __pfx_do_writev+0x10/0x10 [ 681.503494][T17758] __x64_sys_migrate_pages+0x96/0x100 [ 681.503539][T17758] ? lockdep_hardirqs_on+0x7c/0x110 [ 681.503574][T17758] do_syscall_64+0xcd/0xf80 [ 681.503611][T17758] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 681.503640][T17758] RIP: 0033:0x7f9cc2f8f7c9 [ 681.503663][T17758] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 681.503692][T17758] RSP: 002b:00007f9cc3d50038 EFLAGS: 00000246 ORIG_RAX: 0000000000000100 [ 681.503719][T17758] RAX: ffffffffffffffda RBX: 00007f9cc31e5fa0 RCX: 00007f9cc2f8f7c9 [ 681.503740][T17758] RDX: 0000200000000100 RSI: 000000000000000a RDI: 0000000000000000 [ 681.503758][T17758] RBP: 00007f9cc3013f91 R08: 0000000000000000 R09: 0000000000000000 [ 681.503776][T17758] R10: 0000200000000140 R11: 0000000000000246 R12: 0000000000000000 [ 681.503794][T17758] R13: 00007f9cc31e6038 R14: 00007f9cc31e5fa0 R15: 00007ffc0c7952e8 [ 681.503830][T17758] [ 682.614824][T17771] input: jJǸ-9%vJ86 as /devices/virtual/input/input8 [ 683.330892][T17787] kvm_intel: kvm [17786]: vcpu2, guest rIP: 0xfff0 Unhandled WRMSR(0x1d9) = 0x2 [ 683.708409][T17792] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 683.870569][T17797] netlink: 25 bytes leftover after parsing attributes in process `syz.1.4301'. [ 685.003864][T17823] mkiss: ax0: crc mode is auto. [ 685.247411][T17821] input: jJǸ-9%vJ86 as /devices/virtual/input/input9 [ 686.228789][T17847] random: crng reseeded on system resumption [ 686.400528][T17851] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4321'. [ 686.445460][T17851] netlink: 13 bytes leftover after parsing attributes in process `syz.3.4321'. [ 686.457546][T17851] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4321'. [ 687.648139][T17874] netlink: 25 bytes leftover after parsing attributes in process `syz.3.4329'. [ 687.724887][T17876] netlink: 146 bytes leftover after parsing attributes in process `syz.4.4330'. [ 688.072829][T17885] netlink: 186 bytes leftover after parsing attributes in process `syz.3.4333'. [ 689.599471][T17920] netlink: 342 bytes leftover after parsing attributes in process `syz.1.4345'. [ 689.630056][T17920] netlink: 146 bytes leftover after parsing attributes in process `syz.1.4345'. [ 690.160826][T17930] mkiss: ax0: crc mode is auto. [ 690.575384][T17948] FAULT_INJECTION: forcing a failure. [ 690.575384][T17948] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 690.593117][T17948] CPU: 0 UID: 0 PID: 17948 Comm: syz.0.4353 Tainted: G L syzkaller #0 PREEMPT(full) [ 690.593170][T17948] Tainted: [L]=SOFTLOCKUP [ 690.593182][T17948] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 690.593203][T17948] Call Trace: [ 690.593215][T17948] [ 690.593227][T17948] dump_stack_lvl+0x16c/0x1f0 [ 690.593274][T17948] should_fail_ex+0x512/0x640 [ 690.593332][T17948] should_fail_alloc_page+0xe7/0x130 [ 690.593386][T17948] prepare_alloc_pages+0x401/0x670 [ 690.593444][T17948] __alloc_frozen_pages_noprof+0x18b/0x2430 [ 690.593486][T17948] ? should_fail_alloc_page+0xee/0x130 [ 690.593541][T17948] ? rcu_is_watching+0x12/0xc0 [ 690.593587][T17948] ? trace_mm_page_alloc+0x11b/0x180 [ 690.593637][T17948] ? __alloc_frozen_pages_noprof+0x292/0x2430 [ 690.593676][T17948] ? kasan_save_track+0x14/0x30 [ 690.593718][T17948] ? kasan_save_free_info+0x3b/0x60 [ 690.593752][T17948] ? kfree+0x2f8/0x6e0 [ 690.593781][T17948] ? tomoyo_path_number_perm+0x470/0x580 [ 690.593831][T17948] ? security_file_ioctl+0x9b/0x240 [ 690.593862][T17948] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 690.593912][T17948] ? register_lock_class+0x41/0x4b0 [ 690.593956][T17948] ? __lock_acquire+0x436/0x2890 [ 690.593994][T17948] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 690.594046][T17948] ? policy_nodemask+0xea/0x4e0 [ 690.594162][T17948] alloc_pages_mpol+0x1fb/0x550 [ 690.594211][T17948] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 690.594267][T17948] ___kmalloc_large_node+0x10c/0x150 [ 690.594322][T17948] __kmalloc_large_node_noprof+0x1c/0x70 [ 690.594372][T17948] ? lruvec_stat_mod_folio+0x25b/0x3b0 [ 690.594414][T17948] __kmalloc_noprof.cold+0xc/0x62 [ 690.594462][T17948] ? vhost_dev_set_owner+0x191/0xa50 [ 690.594508][T17948] ? vhost_dev_set_owner+0x191/0xa50 [ 690.594547][T17948] vhost_dev_set_owner+0x191/0xa50 [ 690.594601][T17948] vhost_net_ioctl+0x87f/0x1850 [ 690.594633][T17948] ? do_vfs_ioctl+0x128/0x14f0 [ 690.594671][T17948] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 690.594711][T17948] ? __pfx_vhost_net_ioctl+0x10/0x10 [ 690.594754][T17948] ? find_held_lock+0x2b/0x80 [ 690.594796][T17948] ? hook_file_ioctl_common+0x144/0x410 [ 690.594858][T17948] ? __fget_files+0x20e/0x3c0 [ 690.594910][T17948] ? __pfx_vhost_net_ioctl+0x10/0x10 [ 690.594945][T17948] __x64_sys_ioctl+0x18e/0x210 [ 690.594987][T17948] do_syscall_64+0xcd/0xf80 [ 690.595030][T17948] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 690.595063][T17948] RIP: 0033:0x7f9cc2f8f7c9 [ 690.595100][T17948] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 690.595135][T17948] RSP: 002b:00007f9cc3d50038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 690.595167][T17948] RAX: ffffffffffffffda RBX: 00007f9cc31e5fa0 RCX: 00007f9cc2f8f7c9 [ 690.595190][T17948] RDX: 0000000000000005 RSI: 000000000000af01 RDI: 0000000000000003 [ 690.595211][T17948] RBP: 00007f9cc3013f91 R08: 0000000000000000 R09: 0000000000000000 [ 690.595232][T17948] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 690.595253][T17948] R13: 00007f9cc31e6038 R14: 00007f9cc31e5fa0 R15: 00007ffc0c7952e8 [ 690.595299][T17948] [ 692.121811][T17978] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input10 [ 692.205331][ T5181] ERROR: Out of memory at tomoyo_memory_ok. [ 693.665397][T17994] Process accounting resumed [ 696.560896][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 696.576310][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 696.665512][T18072] netlink: 17 bytes leftover after parsing attributes in process `syz.1.4395'. [ 697.836404][T18097] FAULT_INJECTION: forcing a failure. [ 697.836404][T18097] name failslab, interval 1, probability 0, space 0, times 0 [ 697.867477][T18097] CPU: 1 UID: 0 PID: 18097 Comm: syz.1.4404 Tainted: G L syzkaller #0 PREEMPT(full) [ 697.867533][T18097] Tainted: [L]=SOFTLOCKUP [ 697.867546][T18097] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 697.867566][T18097] Call Trace: [ 697.867578][T18097] [ 697.867592][T18097] dump_stack_lvl+0x16c/0x1f0 [ 697.867641][T18097] should_fail_ex+0x512/0x640 [ 697.867694][T18097] ? __kmalloc_noprof+0xca/0x910 [ 697.867737][T18097] should_failslab+0xc2/0x120 [ 697.867789][T18097] __kmalloc_noprof+0xeb/0x910 [ 697.867838][T18097] ? drm_atomic_state_init+0xec/0x540 [ 697.867902][T18097] ? drm_atomic_state_init+0xec/0x540 [ 697.867953][T18097] drm_atomic_state_init+0xec/0x540 [ 697.868005][T18097] ? kasan_save_track+0x14/0x30 [ 697.868066][T18097] drm_atomic_state_alloc+0xd3/0x120 [ 697.868120][T18097] drm_client_modeset_commit_atomic+0xcc/0x7e0 [ 697.868155][T18097] ? rcu_is_watching+0x12/0xc0 [ 697.868203][T18097] ? trace_contention_end+0xdd/0x110 [ 697.868238][T18097] ? __mutex_lock+0x27b/0x1ca0 [ 697.868282][T18097] ? __mutex_lock+0x27b/0x1ca0 [ 697.868324][T18097] ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10 [ 697.868359][T18097] ? trace_contention_end+0xdd/0x110 [ 697.868433][T18097] drm_client_modeset_commit_locked+0x14d/0x580 [ 697.868482][T18097] drm_client_modeset_commit+0x4f/0x80 [ 697.868519][T18097] __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160 [ 697.868582][T18097] drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0 [ 697.868644][T18097] drm_fbdev_client_restore+0x1b/0x30 [ 697.868692][T18097] ? __pfx_drm_fbdev_client_restore+0x10/0x10 [ 697.868736][T18097] drm_client_dev_restore+0x200/0x2a0 [ 697.868779][T18097] drm_release+0x2c6/0x360 [ 697.868842][T18097] ? __pfx_drm_release+0x10/0x10 [ 697.868894][T18097] __fput+0x402/0xb70 [ 697.868937][T18097] task_work_run+0x150/0x240 [ 697.868976][T18097] ? __pfx_task_work_run+0x10/0x10 [ 697.869010][T18097] ? __do_sys_close_range+0x278/0x730 [ 697.869075][T18097] exit_to_user_mode_loop+0xfb/0x540 [ 697.869122][T18097] do_syscall_64+0x4ee/0xf80 [ 697.869166][T18097] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 697.869201][T18097] RIP: 0033:0x7f9e08d8f7c9 [ 697.869228][T18097] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 697.869281][T18097] RSP: 002b:00007f9e06ff6038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 697.869315][T18097] RAX: 0000000000000000 RBX: 00007f9e08fe5fa0 RCX: 00007f9e08d8f7c9 [ 697.869339][T18097] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 697.869359][T18097] RBP: 00007f9e08e13f91 R08: 0000000000000000 R09: 0000000000000000 [ 697.869381][T18097] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 697.869423][T18097] R13: 00007f9e08fe6038 R14: 00007f9e08fe5fa0 R15: 00007fff65af0b48 [ 697.869471][T18097] [ 698.628813][T18110] netlink: 334 bytes leftover after parsing attributes in process `syz.0.4408'. [ 698.721969][T18106] zswap: compressor not available [ 700.835607][T18152] ERROR: Out of memory at tomoyo_memory_ok. [ 700.973701][T18155] warning: `syz.1.4422' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 701.426466][T18165] netlink: 338 bytes leftover after parsing attributes in process `syz.1.4425'. [ 701.472382][T18165] ipvlan1: entered allmulticast mode [ 701.497561][T18165] veth0_vlan: entered allmulticast mode [ 701.521474][T18161] zswap: compressor not available [ 702.927360][T18196] mkiss: ax0: crc mode is auto. [ 704.591636][T18244] netlink: 334 bytes leftover after parsing attributes in process `syz.4.4452'. [ 704.693507][T18248] netlink: 334 bytes leftover after parsing attributes in process `syz.4.4453'. [ 707.407345][T18311] FAULT_INJECTION: forcing a failure. [ 707.407345][T18311] name failslab, interval 1, probability 0, space 0, times 0 [ 707.450841][T18311] CPU: 0 UID: 0 PID: 18311 Comm: syz.0.4470 Tainted: G L syzkaller #0 PREEMPT(full) [ 707.450894][T18311] Tainted: [L]=SOFTLOCKUP [ 707.450907][T18311] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 707.450928][T18311] Call Trace: [ 707.450939][T18311] [ 707.450951][T18311] dump_stack_lvl+0x16c/0x1f0 [ 707.450996][T18311] should_fail_ex+0x512/0x640 [ 707.451055][T18311] should_failslab+0xc2/0x120 [ 707.451118][T18311] kmem_cache_alloc_node_noprof+0x86/0x800 [ 707.451159][T18311] ? __alloc_skb+0x156/0x410 [ 707.451210][T18311] ? __alloc_skb+0x35d/0x410 [ 707.451267][T18311] ? __alloc_skb+0x156/0x410 [ 707.451317][T18311] __alloc_skb+0x156/0x410 [ 707.451380][T18311] ? __alloc_skb+0x35d/0x410 [ 707.451429][T18311] ? __pfx___alloc_skb+0x10/0x10 [ 707.451487][T18311] ? __pfx_aa_file_perm+0x10/0x10 [ 707.451530][T18311] new_skb+0x21/0x230 [ 707.451566][T18311] aoecmd_cfg+0x21c/0x7d0 [ 707.451608][T18311] ? __pfx_aoecmd_cfg+0x10/0x10 [ 707.451657][T18311] ? common_file_perm+0x1b1/0x500 [ 707.451718][T18311] ? __pfx_aoechr_write+0x10/0x10 [ 707.451755][T18311] ? aoechr_write+0x120/0x160 [ 707.451788][T18311] aoechr_write+0x120/0x160 [ 707.451825][T18311] vfs_writev+0x5df/0xde0 [ 707.451881][T18311] ? __pfx_vfs_writev+0x10/0x10 [ 707.451927][T18311] ? putname+0xf5/0x1a0 [ 707.451975][T18311] ? __fget_files+0x20e/0x3c0 [ 707.452032][T18311] ? do_writev+0x132/0x340 [ 707.452072][T18311] do_writev+0x132/0x340 [ 707.452125][T18311] ? __pfx_do_writev+0x10/0x10 [ 707.452180][T18311] do_syscall_64+0xcd/0xf80 [ 707.452226][T18311] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 707.452260][T18311] RIP: 0033:0x7f9cc2f8f7c9 [ 707.452285][T18311] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 707.452319][T18311] RSP: 002b:00007f9cc3d50038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 707.452353][T18311] RAX: ffffffffffffffda RBX: 00007f9cc31e5fa0 RCX: 00007f9cc2f8f7c9 [ 707.452377][T18311] RDX: 0000000000000004 RSI: 0000200000000140 RDI: 0000000000000005 [ 707.452400][T18311] RBP: 00007f9cc3013f91 R08: 0000000000000000 R09: 0000000000000000 [ 707.452422][T18311] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 707.452443][T18311] R13: 00007f9cc31e6038 R14: 00007f9cc31e5fa0 R15: 00007ffc0c7952e8 [ 707.452490][T18311] [ 707.516365][T18313] netlink: 346 bytes leftover after parsing attributes in process `syz.1.4472'. [ 707.749589][T18311] aoe: skb alloc failure [ 707.762172][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 707.770855][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 708.531284][T18333] serio: Serial port pty6 [ 709.904561][T18364] random: crng reseeded on system resumption [ 710.159236][T18377] netlink: 25 bytes leftover after parsing attributes in process `syz.4.4491'. [ 710.325373][T18382] netlink: 354 bytes leftover after parsing attributes in process `syz.0.4495'. [ 711.488559][T18403] zswap: compressor not available [ 711.499011][T18415] serio: Serial port pty6 [ 711.522065][T18412] phram: not enough arguments [ 711.575296][T18411] netlink: 342 bytes leftover after parsing attributes in process `syz.0.4505'. [ 711.921246][ T30] audit: type=1800 audit(1765346975.370:12): pid=18429 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.4511" name="dbroot" dev="configfs" ino=75969 res=0 errno=0 [ 711.942159][T18431] mkiss: ax0: crc mode is auto. [ 712.321828][T18436] netlink: 146 bytes leftover after parsing attributes in process `syz.0.4522'. [ 712.531477][T18443] hub 1-0:1.0: USB hub found [ 712.558245][T18443] hub 1-0:1.0: 1 port detected [ 712.626514][T18445] hub 1-0:1.0: USB hub found [ 712.651866][T18447] netlink: 25 bytes leftover after parsing attributes in process `syz.1.4517'. [ 712.655293][T18445] hub 1-0:1.0: 1 port detected [ 712.853609][T18440] mkiss: ax0: crc mode is auto. [ 712.995729][T18450] serio: Serial port pty6 [ 713.694138][T18468] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed [ 713.704437][T18468] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff) [ 714.099644][T18472] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4526'. [ 714.112651][T18472] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4526'. [ 715.775263][T18513] XFS: Clearing xfsstats [ 715.967774][T18522] FAULT_INJECTION: forcing a failure. [ 715.967774][T18522] name failslab, interval 1, probability 0, space 0, times 0 [ 716.009328][T18522] CPU: 1 UID: 0 PID: 18522 Comm: syz.1.4544 Tainted: G L syzkaller #0 PREEMPT(full) [ 716.009384][T18522] Tainted: [L]=SOFTLOCKUP [ 716.009399][T18522] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 716.009430][T18522] Call Trace: [ 716.009443][T18522] [ 716.009457][T18522] dump_stack_lvl+0x16c/0x1f0 [ 716.009513][T18522] should_fail_ex+0x512/0x640 [ 716.009567][T18522] ? kmem_cache_alloc_noprof+0x62/0x770 [ 716.009613][T18522] should_failslab+0xc2/0x120 [ 716.009665][T18522] kmem_cache_alloc_noprof+0x83/0x770 [ 716.009706][T18522] ? __pfx_acpi_ut_track_stack_ptr+0x10/0x10 [ 716.009743][T18522] ? acpi_ut_create_thread_state+0x6d/0x170 [ 716.009807][T18522] ? acpi_ut_create_thread_state+0x6d/0x170 [ 716.009862][T18522] acpi_ut_create_thread_state+0x6d/0x170 [ 716.009919][T18522] acpi_ps_parse_aml+0x12e/0x1170 [ 716.009950][T18522] ? acpi_ut_ptr_exit+0xfe/0x180 [ 716.009992][T18522] acpi_ps_execute_method+0x5c4/0xe90 [ 716.010039][T18522] acpi_ns_evaluate+0x98c/0x16d0 [ 716.010090][T18522] acpi_evaluate_object+0x4ca/0xdf0 [ 716.010143][T18522] ? ksys_read+0x12a/0x250 [ 716.010195][T18522] ? __pfx_acpi_evaluate_object+0x10/0x10 [ 716.010254][T18522] ? __pfx___might_resched+0x10/0x10 [ 716.010307][T18522] acpi_evaluate_integer+0xdd/0x230 [ 716.010351][T18522] ? __pfx_acpi_evaluate_integer+0x10/0x10 [ 716.010414][T18522] ? __pfx_status_show+0x10/0x10 [ 716.010475][T18522] status_show+0xa0/0x120 [ 716.010524][T18522] ? __pfx_status_show+0x10/0x10 [ 716.010587][T18522] dev_attr_show+0x56/0xe0 [ 716.010625][T18522] ? __pfx_dev_attr_show+0x10/0x10 [ 716.010660][T18522] sysfs_kf_seq_show+0x216/0x3e0 [ 716.010703][T18522] seq_read_iter+0x50e/0x12d0 [ 716.010768][T18522] kernfs_fop_read_iter+0x46c/0x610 [ 716.010821][T18522] ? rw_verify_area+0xcf/0x6c0 [ 716.010869][T18522] vfs_read+0x8bf/0xcf0 [ 716.010926][T18522] ? __pfx_vfs_read+0x10/0x10 [ 716.011002][T18522] ksys_read+0x12a/0x250 [ 716.011048][T18522] ? __pfx_ksys_read+0x10/0x10 [ 716.011107][T18522] do_syscall_64+0xcd/0xf80 [ 716.011154][T18522] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 716.011190][T18522] RIP: 0033:0x7f9e08d8f7c9 [ 716.011219][T18522] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 716.011253][T18522] RSP: 002b:00007f9e06ff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 716.011288][T18522] RAX: ffffffffffffffda RBX: 00007f9e08fe5fa0 RCX: 00007f9e08d8f7c9 [ 716.011312][T18522] RDX: 000000000000007a RSI: 0000200000000140 RDI: 0000000000000003 [ 716.011334][T18522] RBP: 00007f9e08e13f91 R08: 0000000000000000 R09: 0000000000000000 [ 716.011355][T18522] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 716.011377][T18522] R13: 00007f9e08fe6038 R14: 00007f9e08fe5fa0 R15: 00007fff65af0b48 [ 716.011432][T18522] [ 716.011548][T18522] ACPI Error: [ 716.048232][T18518] netlink: 'syz.4.4542': attribute type 33 has an invalid length. [ 716.087792][T18522] ffff88805f060000 walk still has a scope list [ 716.202929][T18518] netlink: 322 bytes leftover after parsing attributes in process `syz.4.4542'. [ 716.207320][T18522] (20250807/dswstate-694) [ 716.331291][T18523] zswap: compressor not available [ 716.929608][T18545] netlink: 'syz.1.4561': attribute type 32 has an invalid length. [ 716.949944][T18545] netlink: 'syz.1.4561': attribute type 32 has an invalid length. [ 716.980675][T18547] XFS: Clearing xfsstats [ 717.457027][T18554] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed [ 717.466019][T18554] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff) [ 717.800640][T18567] random: crng reseeded on system resumption [ 719.513876][T18604] netlink: 138 bytes leftover after parsing attributes in process `syz.3.4573'. [ 721.156094][T18641] netlink: 326 bytes leftover after parsing attributes in process `syz.1.4586'. [ 721.891935][T18651] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed [ 721.904148][T18651] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff) [ 723.715062][T18704] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4607'. [ 723.726311][T18704] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 723.735692][T18704] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 723.768904][T18704] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 723.778215][T18704] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 723.929501][T18703] Process accounting paused [ 725.365165][T18737] random: crng reseeded on system resumption [ 725.951341][T18746] netlink: 342 bytes leftover after parsing attributes in process `syz.3.4626'. [ 725.994691][T18746] netlink: 302 bytes leftover after parsing attributes in process `syz.3.4626'. [ 726.099144][T18749] nvme_fabrics: missing parameter 'transport=%s' [ 726.150879][T18749] nvme_fabrics: missing parameter 'nqn=%s' [ 726.786041][ T5831] Bluetooth: hci0: unexpected event 0x08 length: 435 > 4 [ 727.317293][T18784] FAULT_INJECTION: forcing a failure. [ 727.317293][T18784] name failslab, interval 1, probability 0, space 0, times 0 [ 727.343969][T18784] CPU: 1 UID: 0 PID: 18784 Comm: syz.0.4637 Tainted: G L syzkaller #0 PREEMPT(full) [ 727.344034][T18784] Tainted: [L]=SOFTLOCKUP [ 727.344049][T18784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 727.344072][T18784] Call Trace: [ 727.344084][T18784] [ 727.344098][T18784] dump_stack_lvl+0x16c/0x1f0 [ 727.344147][T18784] should_fail_ex+0x512/0x640 [ 727.344199][T18784] ? kmem_cache_alloc_noprof+0x62/0x770 [ 727.344244][T18784] should_failslab+0xc2/0x120 [ 727.344296][T18784] kmem_cache_alloc_noprof+0x83/0x770 [ 727.344337][T18784] ? acpi_ut_allocate_object_desc_dbg+0x86/0x240 [ 727.344400][T18784] ? acpi_ut_allocate_object_desc_dbg+0x86/0x240 [ 727.344448][T18784] acpi_ut_allocate_object_desc_dbg+0x86/0x240 [ 727.344502][T18784] acpi_ut_create_internal_object_dbg+0x51/0x270 [ 727.344559][T18784] acpi_ut_create_integer_object+0x46/0xd0 [ 727.344621][T18784] acpi_ps_execute_method+0x582/0xe90 [ 727.344669][T18784] acpi_ns_evaluate+0x98c/0x16d0 [ 727.344718][T18784] acpi_evaluate_object+0x4ca/0xdf0 [ 727.344768][T18784] ? ksys_read+0x12a/0x250 [ 727.344821][T18784] ? __pfx_acpi_evaluate_object+0x10/0x10 [ 727.344876][T18784] ? __pfx___might_resched+0x10/0x10 [ 727.344929][T18784] acpi_evaluate_integer+0xdd/0x230 [ 727.344973][T18784] ? __pfx_acpi_evaluate_integer+0x10/0x10 [ 727.345035][T18784] ? __pfx_status_show+0x10/0x10 [ 727.345083][T18784] status_show+0xa0/0x120 [ 727.345134][T18784] ? __pfx_status_show+0x10/0x10 [ 727.345195][T18784] dev_attr_show+0x56/0xe0 [ 727.345234][T18784] ? __pfx_dev_attr_show+0x10/0x10 [ 727.345269][T18784] sysfs_kf_seq_show+0x216/0x3e0 [ 727.345313][T18784] seq_read_iter+0x50e/0x12d0 [ 727.345377][T18784] kernfs_fop_read_iter+0x46c/0x610 [ 727.345430][T18784] ? rw_verify_area+0xcf/0x6c0 [ 727.345472][T18784] vfs_read+0x8bf/0xcf0 [ 727.345526][T18784] ? __pfx_vfs_read+0x10/0x10 [ 727.345569][T18784] ? do_futex+0x122/0x350 [ 727.345621][T18784] ? fdget+0x187/0x210 [ 727.345677][T18784] ? __x64_sys_futex+0x1e0/0x4c0 [ 727.345714][T18784] ? __x64_sys_futex+0x1e9/0x4c0 [ 727.345758][T18784] ksys_read+0x12a/0x250 [ 727.345802][T18784] ? __pfx_ksys_read+0x10/0x10 [ 727.345864][T18784] do_syscall_64+0xcd/0xf80 [ 727.345909][T18784] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 727.345942][T18784] RIP: 0033:0x7f9cc2f8f7c9 [ 727.345969][T18784] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 727.346005][T18784] RSP: 002b:00007f9cc3d50038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 727.346038][T18784] RAX: ffffffffffffffda RBX: 00007f9cc31e5fa0 RCX: 00007f9cc2f8f7c9 [ 727.346062][T18784] RDX: 000000000000007a RSI: 0000200000000140 RDI: 0000000000000003 [ 727.346084][T18784] RBP: 00007f9cc3013f91 R08: 0000000000000000 R09: 0000000000000000 [ 727.346106][T18784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 727.346128][T18784] R13: 00007f9cc31e6038 R14: 00007f9cc31e5fa0 R15: 00007ffc0c7952e8 [ 727.346174][T18784] [ 727.715312][T18784] ACPI Error: Could not allocate an object descriptor (20250807/utobject-180) [ 727.726182][T18784] ACPI Error: ffff88805e77e000 walk still has a scope list (20250807/dswstate-694) [ 727.980071][T18792] FAULT_INJECTION: forcing a failure. [ 727.980071][T18792] name failslab, interval 1, probability 0, space 0, times 0 [ 727.995879][T18792] CPU: 1 UID: 0 PID: 18792 Comm: syz.3.4641 Tainted: G L syzkaller #0 PREEMPT(full) [ 727.995932][T18792] Tainted: [L]=SOFTLOCKUP [ 727.995946][T18792] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 727.995966][T18792] Call Trace: [ 727.995978][T18792] [ 727.995991][T18792] dump_stack_lvl+0x16c/0x1f0 [ 727.996040][T18792] should_fail_ex+0x512/0x640 [ 727.996092][T18792] ? __kmalloc_cache_noprof+0x5f/0x800 [ 727.996134][T18792] should_failslab+0xc2/0x120 [ 727.996185][T18792] __kmalloc_cache_noprof+0x80/0x800 [ 727.996223][T18792] ? vhost_vsock_dev_open+0x2b/0x390 [ 727.996259][T18792] ? vhost_vsock_dev_open+0x71/0x390 [ 727.996301][T18792] ? __pfx_vhost_vsock_dev_open+0x10/0x10 [ 727.996348][T18792] ? vhost_vsock_dev_open+0x71/0x390 [ 727.996386][T18792] vhost_vsock_dev_open+0x71/0x390 [ 727.996422][T18792] ? __pfx_vhost_vsock_dev_open+0x10/0x10 [ 727.996461][T18792] misc_open+0x26d/0x450 [ 727.996515][T18792] ? __pfx_misc_open+0x10/0x10 [ 727.996569][T18792] chrdev_open+0x234/0x6a0 [ 727.996620][T18792] ? __pfx_apparmor_file_open+0x10/0x10 [ 727.996671][T18792] ? __pfx_chrdev_open+0x10/0x10 [ 727.996725][T18792] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 727.996787][T18792] do_dentry_open+0x748/0x1590 [ 727.996836][T18792] ? __pfx_chrdev_open+0x10/0x10 [ 727.996901][T18792] vfs_open+0x82/0x3f0 [ 727.996941][T18792] path_openat+0x2078/0x3140 [ 727.997004][T18792] ? __pfx_path_openat+0x10/0x10 [ 727.997071][T18792] do_filp_open+0x20b/0x470 [ 727.997124][T18792] ? __pfx_do_filp_open+0x10/0x10 [ 727.997214][T18792] ? alloc_fd+0x471/0x7d0 [ 727.997277][T18792] do_sys_openat2+0x11f/0x280 [ 727.997316][T18792] ? __pfx_do_sys_openat2+0x10/0x10 [ 727.997365][T18792] ? find_held_lock+0x2b/0x80 [ 727.997421][T18792] __x64_sys_openat+0x174/0x210 [ 727.997461][T18792] ? __pfx___x64_sys_openat+0x10/0x10 [ 727.997517][T18792] do_syscall_64+0xcd/0xf80 [ 727.997565][T18792] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 727.997600][T18792] RIP: 0033:0x7fe5a438f7c9 [ 727.997629][T18792] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 727.997663][T18792] RSP: 002b:00007fe5a25f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 727.997696][T18792] RAX: ffffffffffffffda RBX: 00007fe5a45e5fa0 RCX: 00007fe5a438f7c9 [ 727.997720][T18792] RDX: 0000000000121900 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 727.997742][T18792] RBP: 00007fe5a4413f91 R08: 0000000000000000 R09: 0000000000000000 [ 727.997762][T18792] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 727.997783][T18792] R13: 00007fe5a45e6038 R14: 00007fe5a45e5fa0 R15: 00007fff17523ca8 [ 727.997829][T18792] [ 728.463237][T18799] netlink: 334 bytes leftover after parsing attributes in process `syz.3.4644'. [ 731.560118][T18845] binder: 18844:18845 ioctl 400c620e 0 returned -22 [ 732.167355][T18872] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4672'. [ 732.181600][T18872] netlink: 13 bytes leftover after parsing attributes in process `syz.3.4672'. [ 732.458011][T18878] FAULT_INJECTION: forcing a failure. [ 732.458011][T18878] name failslab, interval 1, probability 0, space 0, times 0 [ 732.494361][T18878] CPU: 0 UID: 0 PID: 18878 Comm: syz.3.4675 Tainted: G L syzkaller #0 PREEMPT(full) [ 732.494400][T18878] Tainted: [L]=SOFTLOCKUP [ 732.494409][T18878] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 732.494424][T18878] Call Trace: [ 732.494449][T18878] [ 732.494459][T18878] dump_stack_lvl+0x16c/0x1f0 [ 732.494494][T18878] should_fail_ex+0x512/0x640 [ 732.494536][T18878] should_failslab+0xc2/0x120 [ 732.494575][T18878] __kmalloc_cache_noprof+0x80/0x800 [ 732.494603][T18878] ? tipc_conn_alloc+0x48/0x590 [ 732.494632][T18878] ? tipc_conn_alloc+0x48/0x590 [ 732.494654][T18878] tipc_conn_alloc+0x48/0x590 [ 732.494680][T18878] tipc_topsrv_kern_subscr+0x11c/0x3c0 [ 732.494708][T18878] ? __pfx_tipc_topsrv_kern_subscr+0x10/0x10 [ 732.494738][T18878] ? net_generic+0xea/0x2a0 [ 732.494775][T18878] tipc_group_create+0x4ab/0x660 [ 732.494822][T18878] tipc_setsockopt+0x7c5/0xe00 [ 732.494874][T18878] ? __pfx_tipc_setsockopt+0x10/0x10 [ 732.494935][T18878] ? __pfx_tipc_setsockopt+0x10/0x10 [ 732.494980][T18878] do_sock_setsockopt+0xf3/0x1d0 [ 732.495027][T18878] __sys_setsockopt+0x120/0x1a0 [ 732.495064][T18878] __x64_sys_setsockopt+0xbd/0x160 [ 732.495093][T18878] ? do_syscall_64+0x91/0xf80 [ 732.495131][T18878] ? lockdep_hardirqs_on+0x7c/0x110 [ 732.495169][T18878] do_syscall_64+0xcd/0xf80 [ 732.495210][T18878] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 732.495252][T18878] RIP: 0033:0x7fe5a438f7c9 [ 732.495278][T18878] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 732.495311][T18878] RSP: 002b:00007fe5a25f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 732.495341][T18878] RAX: ffffffffffffffda RBX: 00007fe5a45e5fa0 RCX: 00007fe5a438f7c9 [ 732.495363][T18878] RDX: 0000000000000087 RSI: 000000000000010f RDI: 0000000000000005 [ 732.495384][T18878] RBP: 00007fe5a4413f91 R08: 0000000000000014 R09: 0000000000000000 [ 732.495405][T18878] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 732.495426][T18878] R13: 00007fe5a45e6038 R14: 00007fe5a45e5fa0 R15: 00007fff17523ca8 [ 732.495470][T18878] [ 733.417993][T18897] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 733.524045][T18901] netlink: 'syz.1.4684': attribute type 21 has an invalid length. [ 733.533715][T18901] netlink: 326 bytes leftover after parsing attributes in process `syz.1.4684'. [ 733.994086][T18907] FAULT_INJECTION: forcing a failure. [ 733.994086][T18907] name failslab, interval 1, probability 0, space 0, times 0 [ 734.010834][T18907] CPU: 1 UID: 0 PID: 18907 Comm: syz.1.4687 Tainted: G L syzkaller #0 PREEMPT(full) [ 734.010889][T18907] Tainted: [L]=SOFTLOCKUP [ 734.010902][T18907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 734.010922][T18907] Call Trace: [ 734.010933][T18907] [ 734.010946][T18907] dump_stack_lvl+0x16c/0x1f0 [ 734.010991][T18907] should_fail_ex+0x512/0x640 [ 734.011042][T18907] ? kmem_cache_alloc_noprof+0x62/0x770 [ 734.011087][T18907] should_failslab+0xc2/0x120 [ 734.011146][T18907] kmem_cache_alloc_noprof+0x83/0x770 [ 734.011189][T18907] ? __kernfs_new_node+0xd2/0x990 [ 734.011233][T18907] ? __kernfs_new_node+0xd2/0x990 [ 734.011268][T18907] __kernfs_new_node+0xd2/0x990 [ 734.011313][T18907] ? __pfx___kernfs_new_node+0x10/0x10 [ 734.011362][T18907] ? find_held_lock+0x2b/0x80 [ 734.011409][T18907] ? kernfs_root+0xee/0x2a0 [ 734.011457][T18907] kernfs_new_node+0x13c/0x1e0 [ 734.011509][T18907] __kernfs_create_file+0x53/0x350 [ 734.011568][T18907] sysfs_add_file_mode_ns+0x207/0x3c0 [ 734.011615][T18907] internal_create_group+0x597/0xf70 [ 734.011668][T18907] ? __pfx_internal_create_group+0x10/0x10 [ 734.011716][T18907] ? kernfs_create_link+0x1bd/0x240 [ 734.011776][T18907] internal_create_groups+0x9d/0x150 [ 734.011822][T18907] device_add+0xf56/0x1980 [ 734.011867][T18907] ? __pfx_device_add+0x10/0x10 [ 734.011907][T18907] ? lockdep_init_map_type+0x5c/0x270 [ 734.011944][T18907] ? __init_waitqueue_head+0xca/0x150 [ 734.011993][T18907] netdev_register_kobject+0x1a9/0x3d0 [ 734.012044][T18907] register_netdevice+0x13ac/0x21d0 [ 734.012093][T18907] ? __pfx_register_netdevice+0x10/0x10 [ 734.012157][T18907] __tun_chr_ioctl+0x1eb6/0x4880 [ 734.012207][T18907] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 734.012254][T18907] ? __pfx___tun_chr_ioctl+0x10/0x10 [ 734.012309][T18907] ? hook_file_ioctl_common+0x144/0x410 [ 734.012374][T18907] ? __fget_files+0x20e/0x3c0 [ 734.012423][T18907] ? __pfx_tun_chr_ioctl+0x10/0x10 [ 734.012467][T18907] __x64_sys_ioctl+0x18e/0x210 [ 734.012504][T18907] do_syscall_64+0xcd/0xf80 [ 734.012542][T18907] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 734.012572][T18907] RIP: 0033:0x7f9e08d8f7c9 [ 734.012595][T18907] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 734.012624][T18907] RSP: 002b:00007f9e06ff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 734.012652][T18907] RAX: ffffffffffffffda RBX: 00007f9e08fe5fa0 RCX: 00007f9e08d8f7c9 [ 734.012671][T18907] RDX: 0000000000000038 RSI: 00000000400454ca RDI: 0000000000000005 [ 734.012690][T18907] RBP: 00007f9e08e13f91 R08: 0000000000000000 R09: 0000000000000000 [ 734.012708][T18907] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 734.012727][T18907] R13: 00007f9e08fe6038 R14: 00007f9e08fe5fa0 R15: 00007fff65af0b48 [ 734.012765][T18907] [ 734.577277][T18923] netlink: 330 bytes leftover after parsing attributes in process `syz.4.4698'. [ 734.846829][T18930] FAULT_INJECTION: forcing a failure. [ 734.846829][T18930] name failslab, interval 1, probability 0, space 0, times 0 [ 734.905473][T18930] CPU: 0 UID: 0 PID: 18930 Comm: syz.0.4691 Tainted: G L syzkaller #0 PREEMPT(full) [ 734.905530][T18930] Tainted: [L]=SOFTLOCKUP [ 734.905542][T18930] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 734.905565][T18930] Call Trace: [ 734.905577][T18930] [ 734.905592][T18930] dump_stack_lvl+0x16c/0x1f0 [ 734.905641][T18930] should_fail_ex+0x512/0x640 [ 734.905693][T18930] ? __kmalloc_node_track_caller_noprof+0xcb/0x930 [ 734.905750][T18930] should_failslab+0xc2/0x120 [ 734.905875][T18930] __kmalloc_node_track_caller_noprof+0xec/0x930 [ 734.905913][T18930] ? kasprintf+0xc7/0x100 [ 734.905957][T18930] ? kvasprintf+0xbc/0x150 [ 734.905993][T18930] kvasprintf+0xbc/0x150 [ 734.906030][T18930] ? __pfx_kvasprintf+0x10/0x10 [ 734.906081][T18930] kasprintf+0xc7/0x100 [ 734.906121][T18930] ? __pfx_kasprintf+0x10/0x10 [ 734.906161][T18930] ? __is_module_percpu_address+0x1e0/0x440 [ 734.906198][T18930] alloc_workqueue_noprof+0x114/0x200 [ 734.906237][T18930] ? __pfx_alloc_workqueue_noprof+0x10/0x10 [ 734.906301][T18930] nci_register_device+0x394/0xb80 [ 734.906343][T18930] ? __pfx_nci_register_device+0x10/0x10 [ 734.906388][T18930] ? lockdep_init_map_type+0x5c/0x270 [ 734.906418][T18930] virtual_ncidev_open+0x141/0x220 [ 734.906452][T18930] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 734.906486][T18930] misc_open+0x26d/0x450 [ 734.906525][T18930] ? __pfx_misc_open+0x10/0x10 [ 734.906563][T18930] chrdev_open+0x234/0x6a0 [ 734.906599][T18930] ? __pfx_apparmor_file_open+0x10/0x10 [ 734.906636][T18930] ? __pfx_chrdev_open+0x10/0x10 [ 734.906689][T18930] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 734.906735][T18930] do_dentry_open+0x748/0x1590 [ 734.906771][T18930] ? __pfx_chrdev_open+0x10/0x10 [ 734.906821][T18930] vfs_open+0x82/0x3f0 [ 734.906850][T18930] path_openat+0x2078/0x3140 [ 734.906897][T18930] ? __pfx_path_openat+0x10/0x10 [ 734.906944][T18930] do_filp_open+0x20b/0x470 [ 734.906982][T18930] ? __pfx_do_filp_open+0x10/0x10 [ 734.907039][T18930] ? alloc_fd+0x471/0x7d0 [ 734.907085][T18930] do_sys_openat2+0x11f/0x280 [ 734.907112][T18930] ? __pfx_do_sys_openat2+0x10/0x10 [ 734.907140][T18930] ? __fput+0x68d/0xb70 [ 734.907169][T18930] __x64_sys_openat+0x174/0x210 [ 734.907197][T18930] ? __pfx___x64_sys_openat+0x10/0x10 [ 734.907236][T18930] do_syscall_64+0xcd/0xf80 [ 734.907268][T18930] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 734.907294][T18930] RIP: 0033:0x7f9cc2f8f7c9 [ 734.907314][T18930] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 734.907339][T18930] RSP: 002b:00007f9cc3d50038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 734.907362][T18930] RAX: ffffffffffffffda RBX: 00007f9cc31e5fa0 RCX: 00007f9cc2f8f7c9 [ 734.907379][T18930] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 734.907396][T18930] RBP: 00007f9cc3013f91 R08: 0000000000000000 R09: 0000000000000000 [ 734.907411][T18930] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 734.907427][T18930] R13: 00007f9cc31e6038 R14: 00007f9cc31e5fa0 R15: 00007ffc0c7952e8 [ 734.907459][T18930] [ 737.477749][T18972] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4714'. [ 738.985234][T19004] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 739.452850][T19019] sp0: Synchronizing with TNC [ 740.266279][T19035] Console: switching to colour VGA+ 80x25 [ 740.475428][T19035] Console: switching to colour frame buffer device 4x6 [ 740.738528][T19034] FAULT_INJECTION: forcing a failure. [ 740.738528][T19034] name failslab, interval 1, probability 0, space 0, times 0 [ 740.808555][T19034] CPU: 0 UID: 0 PID: 19034 Comm: syz.3.4729 Tainted: G L syzkaller #0 PREEMPT(full) [ 740.808612][T19034] Tainted: [L]=SOFTLOCKUP [ 740.808625][T19034] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 740.808646][T19034] Call Trace: [ 740.808668][T19034] [ 740.808682][T19034] dump_stack_lvl+0x16c/0x1f0 [ 740.808731][T19034] should_fail_ex+0x512/0x640 [ 740.808783][T19034] ? kmem_cache_alloc_noprof+0x62/0x770 [ 740.808829][T19034] should_failslab+0xc2/0x120 [ 740.808880][T19034] kmem_cache_alloc_noprof+0x83/0x770 [ 740.808926][T19034] ? __kernfs_new_node+0xd2/0x990 [ 740.808972][T19034] ? __kernfs_new_node+0xd2/0x990 [ 740.809009][T19034] __kernfs_new_node+0xd2/0x990 [ 740.809051][T19034] ? __lock_acquire+0x436/0x2890 [ 740.809082][T19034] ? __pfx___kernfs_new_node+0x10/0x10 [ 740.809132][T19034] ? find_held_lock+0x2b/0x80 [ 740.809178][T19034] ? kernfs_root+0xee/0x2a0 [ 740.809227][T19034] kernfs_new_node+0x13c/0x1e0 [ 740.809280][T19034] __kernfs_create_file+0x53/0x350 [ 740.809340][T19034] sysfs_add_file_mode_ns+0x207/0x3c0 [ 740.809386][T19034] internal_create_group+0x597/0xf70 [ 740.809437][T19034] ? __pfx_internal_create_group+0x10/0x10 [ 740.809486][T19034] ? kernfs_create_link+0x1bd/0x240 [ 740.809548][T19034] internal_create_groups+0x9d/0x150 [ 740.809593][T19034] device_add+0xf56/0x1980 [ 740.809636][T19034] ? __pfx_device_add+0x10/0x10 [ 740.809684][T19034] ? lockdep_init_map_type+0x5c/0x270 [ 740.809721][T19034] ? __init_waitqueue_head+0xca/0x150 [ 740.809773][T19034] netdev_register_kobject+0x1a9/0x3d0 [ 740.809824][T19034] register_netdevice+0x13ac/0x21d0 [ 740.809881][T19034] ? __pfx_register_netdevice+0x10/0x10 [ 740.809936][T19034] __tun_chr_ioctl+0x1eb6/0x4880 [ 740.809986][T19034] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 740.810034][T19034] ? __pfx___tun_chr_ioctl+0x10/0x10 [ 740.810088][T19034] ? hook_file_ioctl_common+0x144/0x410 [ 740.810155][T19034] ? __fget_files+0x20e/0x3c0 [ 740.810209][T19034] ? __pfx_tun_chr_ioctl+0x10/0x10 [ 740.810261][T19034] __x64_sys_ioctl+0x18e/0x210 [ 740.810305][T19034] do_syscall_64+0xcd/0xf80 [ 740.810352][T19034] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 740.810387][T19034] RIP: 0033:0x7fe5a438f7c9 [ 740.810416][T19034] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 740.810451][T19034] RSP: 002b:00007fe5a25f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 740.810483][T19034] RAX: ffffffffffffffda RBX: 00007fe5a45e5fa0 RCX: 00007fe5a438f7c9 [ 740.810505][T19034] RDX: 0000000000000038 RSI: 00000000400454ca RDI: 0000000000000005 [ 740.810525][T19034] RBP: 00007fe5a4413f91 R08: 0000000000000000 R09: 0000000000000000 [ 740.810546][T19034] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 740.810564][T19034] R13: 00007fe5a45e6038 R14: 00007fe5a45e5fa0 R15: 00007fff17523ca8 [ 740.810605][T19034] [ 741.337566][T19045] netlink: 334 bytes leftover after parsing attributes in process `syz.4.4731'. [ 741.351655][T19047] FAULT_INJECTION: forcing a failure. [ 741.351655][T19047] name failslab, interval 1, probability 0, space 0, times 0 [ 741.370042][T19047] CPU: 0 UID: 0 PID: 19047 Comm: syz.3.4733 Tainted: G L syzkaller #0 PREEMPT(full) [ 741.370090][T19047] Tainted: [L]=SOFTLOCKUP [ 741.370101][T19047] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 741.370120][T19047] Call Trace: [ 741.370131][T19047] [ 741.370142][T19047] dump_stack_lvl+0x16c/0x1f0 [ 741.370202][T19047] should_fail_ex+0x512/0x640 [ 741.370250][T19047] ? kmem_cache_alloc_noprof+0x62/0x770 [ 741.370293][T19047] should_failslab+0xc2/0x120 [ 741.370341][T19047] kmem_cache_alloc_noprof+0x83/0x770 [ 741.370374][T19047] ? __pfx_acct_collect+0x10/0x10 [ 741.370419][T19047] ? taskstats_exit+0x654/0xbe0 [ 741.370474][T19047] ? taskstats_exit+0x654/0xbe0 [ 741.370517][T19047] taskstats_exit+0x654/0xbe0 [ 741.370567][T19047] ? __pfx_taskstats_exit+0x10/0x10 [ 741.370627][T19047] ? exit_signals+0x388/0xb00 [ 741.370676][T19047] do_exit+0x5e4/0x2bd0 [ 741.370714][T19047] ? __pfx_do_exit+0x10/0x10 [ 741.370745][T19047] ? do_raw_spin_lock+0x12c/0x2b0 [ 741.370782][T19047] ? find_held_lock+0x2b/0x80 [ 741.370830][T19047] do_group_exit+0xd3/0x2a0 [ 741.370865][T19047] get_signal+0x2671/0x26d0 [ 741.370923][T19047] ? __pfx_get_signal+0x10/0x10 [ 741.370974][T19047] ? do_futex+0x122/0x350 [ 741.371014][T19047] arch_do_signal_or_restart+0x8f/0x7a0 [ 741.371059][T19047] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 741.371116][T19047] ? __pfx___x64_sys_futex+0x10/0x10 [ 741.371162][T19047] exit_to_user_mode_loop+0x8c/0x540 [ 741.371207][T19047] do_syscall_64+0x4ee/0xf80 [ 741.371248][T19047] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 741.371280][T19047] RIP: 0033:0x7fe5a438f7c9 [ 741.371306][T19047] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 741.371339][T19047] RSP: 002b:00007fe5a25f60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 741.371369][T19047] RAX: fffffffffffffe00 RBX: 00007fe5a45e5fa8 RCX: 00007fe5a438f7c9 [ 741.371403][T19047] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fe5a45e5fa8 [ 741.371422][T19047] RBP: 00007fe5a45e5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 741.371442][T19047] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 741.371463][T19047] R13: 00007fe5a45e6038 R14: 00007fff17523bc0 R15: 00007fff17523ca8 [ 741.371505][T19047] [ 743.962831][T19099] netlink: 18 bytes leftover after parsing attributes in process `syz.1.4749'. [ 745.385774][T19124] netlink: 13 bytes leftover after parsing attributes in process `syz.4.4758'. [ 745.397859][T19124] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4758'. [ 747.046904][T19170] FAULT_INJECTION: forcing a failure. [ 747.046904][T19170] name failslab, interval 1, probability 0, space 0, times 0 [ 747.075442][T19170] CPU: 0 UID: 0 PID: 19170 Comm: syz.0.4782 Tainted: G L syzkaller #0 PREEMPT(full) [ 747.075499][T19170] Tainted: [L]=SOFTLOCKUP [ 747.075513][T19170] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 747.075534][T19170] Call Trace: [ 747.075547][T19170] [ 747.075561][T19170] dump_stack_lvl+0x16c/0x1f0 [ 747.075611][T19170] should_fail_ex+0x512/0x640 [ 747.075663][T19170] ? kmem_cache_alloc_noprof+0x62/0x770 [ 747.075708][T19170] should_failslab+0xc2/0x120 [ 747.075758][T19170] kmem_cache_alloc_noprof+0x83/0x770 [ 747.075797][T19170] ? __kernfs_new_node+0xd2/0x990 [ 747.075844][T19170] ? __kernfs_new_node+0xd2/0x990 [ 747.075881][T19170] __kernfs_new_node+0xd2/0x990 [ 747.075925][T19170] ? __pfx___kernfs_new_node+0x10/0x10 [ 747.075975][T19170] ? find_held_lock+0x2b/0x80 [ 747.076021][T19170] ? kernfs_root+0xee/0x2a0 [ 747.076067][T19170] kernfs_new_node+0x13c/0x1e0 [ 747.076118][T19170] __kernfs_create_file+0x53/0x350 [ 747.076187][T19170] sysfs_add_file_mode_ns+0x207/0x3c0 [ 747.076233][T19170] internal_create_group+0x597/0xf70 [ 747.076285][T19170] ? __pfx_internal_create_group+0x10/0x10 [ 747.076342][T19170] sysfs_slab_add+0x1a9/0x1f0 [ 747.076387][T19170] do_kmem_cache_create+0x5c1/0x740 [ 747.076445][T19170] __kmem_cache_create_args+0x1fc/0x3b0 [ 747.076488][T19170] mon_text_open+0x333/0x510 [ 747.076526][T19170] ? __pfx_mon_text_open+0x10/0x10 [ 747.076568][T19170] ? __pfx_mon_text_ctor+0x10/0x10 [ 747.076602][T19170] ? find_held_lock+0x2b/0x80 [ 747.076645][T19170] ? __pfx_apparmor_file_open+0x10/0x10 [ 747.076693][T19170] ? lockdown_is_locked_down+0x3f/0x130 [ 747.076736][T19170] ? bpf_lsm_locked_down+0x9/0x10 [ 747.076787][T19170] ? __pfx_mon_text_open+0x10/0x10 [ 747.076822][T19170] full_proxy_open_regular+0x1b9/0x350 [ 747.076878][T19170] do_dentry_open+0x748/0x1590 [ 747.076926][T19170] ? __pfx_full_proxy_open_regular+0x10/0x10 [ 747.076988][T19170] vfs_open+0x82/0x3f0 [ 747.077029][T19170] path_openat+0x2078/0x3140 [ 747.077095][T19170] ? __pfx_path_openat+0x10/0x10 [ 747.077172][T19170] do_filp_open+0x20b/0x470 [ 747.077226][T19170] ? __pfx_do_filp_open+0x10/0x10 [ 747.077311][T19170] ? alloc_fd+0x471/0x7d0 [ 747.077372][T19170] do_sys_openat2+0x11f/0x280 [ 747.077411][T19170] ? __pfx_do_sys_openat2+0x10/0x10 [ 747.077448][T19170] ? __pfx___might_resched+0x10/0x10 [ 747.077497][T19170] ? blkcg_maybe_throttle_current+0x650/0xf30 [ 747.077531][T19170] ? _raw_spin_unlock_irq+0x23/0x50 [ 747.077580][T19170] __x64_sys_openat+0x174/0x210 [ 747.077620][T19170] ? __pfx___x64_sys_openat+0x10/0x10 [ 747.077678][T19170] do_syscall_64+0xcd/0xf80 [ 747.077726][T19170] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 747.077761][T19170] RIP: 0033:0x7f9cc2f8f7c9 [ 747.077790][T19170] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 747.077825][T19170] RSP: 002b:00007f9cc3d50038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 747.077860][T19170] RAX: ffffffffffffffda RBX: 00007f9cc31e5fa0 RCX: 00007f9cc2f8f7c9 [ 747.077883][T19170] RDX: 0000000000022202 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 747.077905][T19170] RBP: 00007f9cc3013f91 R08: 0000000000000000 R09: 0000000000000000 [ 747.077928][T19170] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 747.077949][T19170] R13: 00007f9cc31e6038 R14: 00007f9cc31e5fa0 R15: 00007ffc0c7952e8 [ 747.077996][T19170] [ 747.079139][T19170] SLUB: Unable to add cache mon_text_ffff88807e044c00 to sysfs [ 748.459390][T19193] Console: switching to colour VGA+ 80x25 [ 748.981738][T19202] bridge0: port 3(bond0) entered blocking state [ 749.003407][T19202] bridge0: port 3(bond0) entered disabled state [ 749.020066][T19202] bond0: entered allmulticast mode [ 749.042568][T19202] bond_slave_0: entered allmulticast mode [ 749.083208][T19202] bond0: entered promiscuous mode [ 749.089463][T19202] bond_slave_0: entered promiscuous mode [ 749.122729][T19202] bridge0: port 3(bond0) entered blocking state [ 749.130481][T19202] bridge0: port 3(bond0) entered forwarding state [ 749.945899][T19225] openvswitch: netlink: IP tunnel dst address not specified [ 751.301225][T19246] FAULT_INJECTION: forcing a failure. [ 751.301225][T19246] name failslab, interval 1, probability 0, space 0, times 0 [ 751.375915][T19246] CPU: 0 UID: 0 PID: 19246 Comm: syz.1.4798 Tainted: G L syzkaller #0 PREEMPT(full) [ 751.375973][T19246] Tainted: [L]=SOFTLOCKUP [ 751.375986][T19246] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 751.376007][T19246] Call Trace: [ 751.376018][T19246] [ 751.376032][T19246] dump_stack_lvl+0x16c/0x1f0 [ 751.376080][T19246] should_fail_ex+0x512/0x640 [ 751.376133][T19246] ? kmem_cache_alloc_node_noprof+0x65/0x800 [ 751.376182][T19246] should_failslab+0xc2/0x120 [ 751.376236][T19246] kmem_cache_alloc_node_noprof+0x86/0x800 [ 751.376278][T19246] ? __alloc_skb+0x156/0x410 [ 751.376339][T19246] ? __alloc_skb+0x156/0x410 [ 751.376390][T19246] __alloc_skb+0x156/0x410 [ 751.376440][T19246] ? __alloc_skb+0x35d/0x410 [ 751.376492][T19246] ? __pfx___alloc_skb+0x10/0x10 [ 751.376552][T19246] ? netlink_has_listeners+0x20f/0x430 [ 751.376596][T19246] alloc_uevent_skb+0x7d/0x210 [ 751.376657][T19246] kobject_uevent_env+0xd05/0x1920 [ 751.376720][T19246] ? bus_to_subsys+0x131/0x160 [ 751.376770][T19246] device_add+0x1103/0x1980 [ 751.376824][T19246] ? __pfx_device_add+0x10/0x10 [ 751.376888][T19246] nfc_register_device+0x41/0x410 [ 751.376935][T19246] nci_register_device+0x7f1/0xb80 [ 751.376993][T19246] ? __pfx_nci_register_device+0x10/0x10 [ 751.377052][T19246] ? lockdep_init_map_type+0x5c/0x270 [ 751.377095][T19246] virtual_ncidev_open+0x141/0x220 [ 751.377141][T19246] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 751.377187][T19246] misc_open+0x26d/0x450 [ 751.377241][T19246] ? __pfx_misc_open+0x10/0x10 [ 751.377293][T19246] chrdev_open+0x234/0x6a0 [ 751.377343][T19246] ? __pfx_apparmor_file_open+0x10/0x10 [ 751.377394][T19246] ? __pfx_chrdev_open+0x10/0x10 [ 751.377448][T19246] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 751.377511][T19246] do_dentry_open+0x748/0x1590 [ 751.377559][T19246] ? __pfx_chrdev_open+0x10/0x10 [ 751.377627][T19246] vfs_open+0x82/0x3f0 [ 751.377669][T19246] path_openat+0x2078/0x3140 [ 751.377732][T19246] ? __pfx_path_openat+0x10/0x10 [ 751.377801][T19246] do_filp_open+0x20b/0x470 [ 751.377860][T19246] ? __pfx_do_filp_open+0x10/0x10 [ 751.377945][T19246] ? alloc_fd+0x471/0x7d0 [ 751.378008][T19246] do_sys_openat2+0x11f/0x280 [ 751.378046][T19246] ? __pfx_do_sys_openat2+0x10/0x10 [ 751.378086][T19246] ? __fput+0x68d/0xb70 [ 751.378129][T19246] __x64_sys_openat+0x174/0x210 [ 751.378167][T19246] ? __pfx___x64_sys_openat+0x10/0x10 [ 751.378221][T19246] do_syscall_64+0xcd/0xf80 [ 751.378266][T19246] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 751.378300][T19246] RIP: 0033:0x7f9e08d8f7c9 [ 751.378326][T19246] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 751.378359][T19246] RSP: 002b:00007f9e06ff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 751.378391][T19246] RAX: ffffffffffffffda RBX: 00007f9e08fe5fa0 RCX: 00007f9e08d8f7c9 [ 751.378413][T19246] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 751.378435][T19246] RBP: 00007f9e08e13f91 R08: 0000000000000000 R09: 0000000000000000 [ 751.378457][T19246] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 751.378477][T19246] R13: 00007f9e08fe6038 R14: 00007f9e08fe5fa0 R15: 00007fff65af0b48 [ 751.378524][T19246] [ 751.985895][T19276] netlink: 266 bytes leftover after parsing attributes in process `syz.3.4810'. [ 752.015198][T19277] FAULT_INJECTION: forcing a failure. [ 752.015198][T19277] name failslab, interval 1, probability 0, space 0, times 0 [ 752.041559][T19277] CPU: 1 UID: 0 PID: 19277 Comm: syz.0.4809 Tainted: G L syzkaller #0 PREEMPT(full) [ 752.041614][T19277] Tainted: [L]=SOFTLOCKUP [ 752.041627][T19277] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 752.041649][T19277] Call Trace: [ 752.041661][T19277] [ 752.041675][T19277] dump_stack_lvl+0x16c/0x1f0 [ 752.041724][T19277] should_fail_ex+0x512/0x640 [ 752.041777][T19277] ? __kvmalloc_node_noprof+0x129/0xa40 [ 752.041838][T19277] should_failslab+0xc2/0x120 [ 752.041891][T19277] __kvmalloc_node_noprof+0x14a/0xa40 [ 752.041956][T19277] ? __pfx__mutex_trylock_nest_lock+0x10/0x10 [ 752.042001][T19277] ? file_tty_write.constprop.0+0x6f3/0x9b0 [ 752.042051][T19277] ? file_tty_write.constprop.0+0x6f3/0x9b0 [ 752.042090][T19277] file_tty_write.constprop.0+0x6f3/0x9b0 [ 752.042156][T19277] ? copy_iovec_from_user+0x131/0x170 [ 752.042212][T19277] do_iter_readv_writev+0x662/0x9e0 [ 752.042263][T19277] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 752.042309][T19277] ? common_file_perm+0x1b1/0x500 [ 752.042368][T19277] ? bpf_lsm_file_permission+0x9/0x10 [ 752.042410][T19277] ? security_file_permission+0x71/0x210 [ 752.042446][T19277] ? rw_verify_area+0xcf/0x6c0 [ 752.042491][T19277] vfs_writev+0x35f/0xde0 [ 752.042541][T19277] ? __lock_acquire+0x436/0x2890 [ 752.042578][T19277] ? __pfx_vfs_writev+0x10/0x10 [ 752.042654][T19277] ? __fget_files+0x20e/0x3c0 [ 752.042713][T19277] ? do_writev+0x132/0x340 [ 752.042755][T19277] do_writev+0x132/0x340 [ 752.042807][T19277] ? __pfx_do_writev+0x10/0x10 [ 752.042868][T19277] do_syscall_64+0xcd/0xf80 [ 752.042913][T19277] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 752.042947][T19277] RIP: 0033:0x7f9cc2f8f7c9 [ 752.042975][T19277] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 752.043007][T19277] RSP: 002b:00007f9cc3d50038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 752.043041][T19277] RAX: ffffffffffffffda RBX: 00007f9cc31e5fa0 RCX: 00007f9cc2f8f7c9 [ 752.043064][T19277] RDX: 0000000000000008 RSI: 0000200000000100 RDI: 0000000000000003 [ 752.043084][T19277] RBP: 00007f9cc3013f91 R08: 0000000000000000 R09: 0000000000000000 [ 752.043105][T19277] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 752.043125][T19277] R13: 00007f9cc31e6038 R14: 00007f9cc31e5fa0 R15: 00007ffc0c7952e8 [ 752.043170][T19277] [ 752.702104][T19294] bond0: option all_slaves_active: invalid value () [ 753.109986][T19306] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4819'. [ 753.127565][T19306] netlink: 13 bytes leftover after parsing attributes in process `syz.1.4819'. [ 753.529287][T19319] netlink: 342 bytes leftover after parsing attributes in process `syz.1.4825'. [ 753.566131][T19319] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 753.574890][T19319] IPv6: NLM_F_CREATE should be set when creating new route [ 753.583565][T19319] IPv6: NLM_F_CREATE should be set when creating new route [ 753.680220][T19319] netlink: 342 bytes leftover after parsing attributes in process `syz.1.4825'. [ 754.047675][T19329] netlink: 244 bytes leftover after parsing attributes in process `syz.1.4829'. [ 754.352657][T19330] Process accounting resumed [ 754.829001][T19342] mkiss: ax0: crc mode is auto. [ 755.665193][T19362] FAULT_INJECTION: forcing a failure. [ 755.665193][T19362] name failslab, interval 1, probability 0, space 0, times 0 [ 755.684332][T19362] CPU: 0 UID: 7 PID: 19362 Comm: syz.3.4840 Tainted: G L syzkaller #0 PREEMPT(full) [ 755.684388][T19362] Tainted: [L]=SOFTLOCKUP [ 755.684402][T19362] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 755.684423][T19362] Call Trace: [ 755.684435][T19362] [ 755.684449][T19362] dump_stack_lvl+0x16c/0x1f0 [ 755.684500][T19362] should_fail_ex+0x512/0x640 [ 755.684553][T19362] ? __kmalloc_cache_noprof+0x5f/0x800 [ 755.684596][T19362] should_failslab+0xc2/0x120 [ 755.684648][T19362] __kmalloc_cache_noprof+0x80/0x800 [ 755.684687][T19362] ? mqueue_init_fs_context+0x4b/0x680 [ 755.684743][T19362] ? __pfx_mqueue_init_fs_context+0x10/0x10 [ 755.684791][T19362] ? mqueue_init_fs_context+0x4b/0x680 [ 755.684850][T19362] mqueue_init_fs_context+0x4b/0x680 [ 755.684899][T19362] ? __pfx_mqueue_init_fs_context+0x10/0x10 [ 755.684952][T19362] alloc_fs_context+0x629/0xf50 [ 755.684994][T19362] mq_init_ns+0x16e/0x810 [ 755.685048][T19362] copy_ipcs+0x3db/0x7d0 [ 755.685103][T19362] create_new_namespaces+0x20a/0xab0 [ 755.685169][T19362] ? security_capable+0x7e/0x260 [ 755.685222][T19362] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 755.685282][T19362] ksys_unshare+0x45b/0xa40 [ 755.685339][T19362] ? __pfx_ksys_unshare+0x10/0x10 [ 755.685395][T19362] ? xfd_validate_state+0x61/0x180 [ 755.685443][T19362] __x64_sys_unshare+0x31/0x40 [ 755.685497][T19362] do_syscall_64+0xcd/0xf80 [ 755.685543][T19362] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 755.685579][T19362] RIP: 0033:0x7fe5a438f7c9 [ 755.685606][T19362] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 755.685638][T19362] RSP: 002b:00007fe5a25f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 755.685668][T19362] RAX: ffffffffffffffda RBX: 00007fe5a45e5fa0 RCX: 00007fe5a438f7c9 [ 755.685691][T19362] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000008000000 [ 755.685712][T19362] RBP: 00007fe5a4413f91 R08: 0000000000000000 R09: 0000000000000000 [ 755.685734][T19362] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 755.685754][T19362] R13: 00007fe5a45e6038 R14: 00007fe5a45e5fa0 R15: 00007fff17523ca8 [ 755.685800][T19362] [ 757.391490][T19404] FAULT_INJECTION: forcing a failure. [ 757.391490][T19404] name failslab, interval 1, probability 0, space 0, times 0 [ 757.430292][T19404] CPU: 1 UID: 0 PID: 19404 Comm: syz.3.4854 Tainted: G L syzkaller #0 PREEMPT(full) [ 757.430344][T19404] Tainted: [L]=SOFTLOCKUP [ 757.430356][T19404] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 757.430378][T19404] Call Trace: [ 757.430389][T19404] [ 757.430402][T19404] dump_stack_lvl+0x16c/0x1f0 [ 757.430451][T19404] should_fail_ex+0x512/0x640 [ 757.430504][T19404] ? fs_reclaim_acquire+0xae/0x150 [ 757.430562][T19404] should_failslab+0xc2/0x120 [ 757.430614][T19404] __kmalloc_noprof+0xeb/0x910 [ 757.430652][T19404] ? ima_alloc_init_template+0x19d/0x720 [ 757.430711][T19404] ? ima_alloc_init_template+0x19d/0x720 [ 757.430763][T19404] ima_alloc_init_template+0x19d/0x720 [ 757.430818][T19404] ? __pfx_d_absolute_path+0x10/0x10 [ 757.430864][T19404] ima_add_violation+0x123/0x3d0 [ 757.430921][T19404] ? __pfx_ima_add_violation+0x10/0x10 [ 757.430974][T19404] ? ima_d_path+0x12b/0x2a0 [ 757.431027][T19404] ? __pfx_ima_d_path+0x10/0x10 [ 757.431086][T19404] ? lockdep_init_map_type+0x5c/0x270 [ 757.431123][T19404] ? ima_inode_get+0x39d/0x580 [ 757.431184][T19404] process_measurement+0x16d7/0x22d0 [ 757.431246][T19404] ? __pfx_process_measurement+0x10/0x10 [ 757.431297][T19404] ? trace_contention_end+0xdd/0x110 [ 757.431334][T19404] ? __mutex_lock+0x27b/0x1ca0 [ 757.431380][T19404] ? find_held_lock+0x2b/0x80 [ 757.431427][T19404] ? tracing_check_open_get_tr.part.0+0xdc/0x190 [ 757.431514][T19404] ? tracing_check_open_get_tr.part.0+0xe1/0x190 [ 757.431564][T19404] ? inode_to_bdi+0x9e/0x160 [ 757.431615][T19404] ima_file_check+0xc7/0x110 [ 757.431662][T19404] ? __pfx_ima_file_check+0x10/0x10 [ 757.431721][T19404] security_file_post_open+0x8e/0x210 [ 757.431757][T19404] path_openat+0xe5f/0x3140 [ 757.431822][T19404] ? __pfx_path_openat+0x10/0x10 [ 757.431888][T19404] do_filp_open+0x20b/0x470 [ 757.431941][T19404] ? __pfx_do_filp_open+0x10/0x10 [ 757.432024][T19404] ? alloc_fd+0x471/0x7d0 [ 757.432085][T19404] do_sys_openat2+0x11f/0x280 [ 757.432123][T19404] ? __pfx_do_sys_openat2+0x10/0x10 [ 757.432186][T19404] __x64_sys_openat+0x174/0x210 [ 757.432226][T19404] ? __pfx___x64_sys_openat+0x10/0x10 [ 757.432282][T19404] do_syscall_64+0xcd/0xf80 [ 757.432328][T19404] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 757.432365][T19404] RIP: 0033:0x7fe5a438f7c9 [ 757.432392][T19404] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 757.432427][T19404] RSP: 002b:00007fe5a25f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 757.432460][T19404] RAX: ffffffffffffffda RBX: 00007fe5a45e5fa0 RCX: 00007fe5a438f7c9 [ 757.432483][T19404] RDX: 0000000000040000 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 757.432507][T19404] RBP: 00007fe5a4413f91 R08: 0000000000000000 R09: 0000000000000000 [ 757.432529][T19404] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 757.432551][T19404] R13: 00007fe5a45e6038 R14: 00007fe5a45e5fa0 R15: 00007fff17523ca8 [ 757.432597][T19404] [ 757.437990][ T30] audit: type=1804 audit(1765351114.862:13): pid=19404 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.4854" name="/newroot/sys/kernel/tracing/current_tracer" dev="tracefs" ino=1066 res=0 errno=0 [ 758.037621][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 758.045451][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 759.843175][T19454] netlink: 338 bytes leftover after parsing attributes in process `syz.4.4871'. [ 759.856109][T19454] netlink: 338 bytes leftover after parsing attributes in process `syz.4.4871'. [ 759.878921][T19454] netlink: 170 bytes leftover after parsing attributes in process `syz.4.4871'. [ 760.021035][T19458] netlink: 338 bytes leftover after parsing attributes in process `syz.4.4873'. [ 760.105471][T19458] bond_slave_0: entered allmulticast mode [ 761.047653][T19477] : entered promiscuous mode [ 761.065441][T19477] : entered allmulticast mode [ 763.192152][T19511] netlink: 186 bytes leftover after parsing attributes in process `syz.3.4888'. [ 763.216953][T19516] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4890'. [ 763.260973][T19511] netlink: 186 bytes leftover after parsing attributes in process `syz.3.4888'. [ 763.281819][T19516] : Port device team_slave_1 removed [ 764.327111][T19540] mkiss: ax0: crc mode is auto. [ 765.267879][T19555] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4903'. [ 765.368879][T19558] FAULT_INJECTION: forcing a failure. [ 765.368879][T19558] name failslab, interval 1, probability 0, space 0, times 0 [ 765.409203][T19558] CPU: 0 UID: 8 PID: 19558 Comm: syz.1.4904 Tainted: G L syzkaller #0 PREEMPT(full) [ 765.409257][T19558] Tainted: [L]=SOFTLOCKUP [ 765.409270][T19558] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 765.409292][T19558] Call Trace: [ 765.409303][T19558] [ 765.409316][T19558] dump_stack_lvl+0x16c/0x1f0 [ 765.409363][T19558] should_fail_ex+0x512/0x640 [ 765.409414][T19558] ? kmem_cache_alloc_noprof+0x62/0x770 [ 765.409457][T19558] should_failslab+0xc2/0x120 [ 765.409507][T19558] kmem_cache_alloc_noprof+0x83/0x770 [ 765.409546][T19558] ? __pfx_acct_collect+0x10/0x10 [ 765.409590][T19558] ? taskstats_exit+0x654/0xbe0 [ 765.409653][T19558] ? taskstats_exit+0x654/0xbe0 [ 765.409698][T19558] taskstats_exit+0x654/0xbe0 [ 765.409750][T19558] ? __pfx_taskstats_exit+0x10/0x10 [ 765.409801][T19558] ? exit_signals+0x388/0xb00 [ 765.409851][T19558] do_exit+0x5e4/0x2bd0 [ 765.409891][T19558] ? __pfx_do_exit+0x10/0x10 [ 765.409922][T19558] ? do_raw_spin_lock+0x12c/0x2b0 [ 765.409957][T19558] ? find_held_lock+0x2b/0x80 [ 765.410006][T19558] do_group_exit+0xd3/0x2a0 [ 765.410041][T19558] get_signal+0x2671/0x26d0 [ 765.410093][T19558] ? lookup_user_key+0x2ce/0x1300 [ 765.410148][T19558] ? __pfx_get_signal+0x10/0x10 [ 765.410196][T19558] ? do_futex+0x122/0x350 [ 765.410236][T19558] arch_do_signal_or_restart+0x8f/0x7a0 [ 765.410280][T19558] ? __pfx_lookup_user_key_possessed+0x10/0x10 [ 765.410332][T19558] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 765.410392][T19558] ? __pfx___x64_sys_futex+0x10/0x10 [ 765.410437][T19558] exit_to_user_mode_loop+0x8c/0x540 [ 765.410484][T19558] do_syscall_64+0x4ee/0xf80 [ 765.410526][T19558] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 765.410558][T19558] RIP: 0033:0x7f9e08d8f7c9 [ 765.410584][T19558] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 765.410625][T19558] RSP: 002b:00007f9e06ff60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 765.410657][T19558] RAX: fffffffffffffe00 RBX: 00007f9e08fe5fa8 RCX: 00007f9e08d8f7c9 [ 765.410679][T19558] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f9e08fe5fa8 [ 765.410699][T19558] RBP: 00007f9e08fe5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 765.410721][T19558] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 765.410741][T19558] R13: 00007f9e08fe6038 R14: 00007fff65af0a60 R15: 00007fff65af0b48 [ 765.410786][T19558] [ 766.652234][T19577] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4910'. [ 771.362175][T19687] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4945'. [ 771.401592][T19687] netlink: 25 bytes leftover after parsing attributes in process `syz.1.4945'. [ 773.171234][T19713] sp0: Synchronizing with TNC [ 774.408524][T19745] netlink: 154 bytes leftover after parsing attributes in process `syz.1.4961'. [ 774.597294][T19749] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4963'. syzkaller syzkaller login: [ 778.592457][T19848] FAULT_INJECTION: forcing a failure. [ 778.592457][T19848] name failslab, interval 1, probability 0, space 0, times 0 [ 778.750710][T19848] CPU: 0 UID: 0 PID: 19848 Comm: syz.1.4990 Tainted: G L syzkaller #0 PREEMPT(full) [ 778.750765][T19848] Tainted: [L]=SOFTLOCKUP [ 778.750779][T19848] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 778.750808][T19848] Call Trace: [ 778.750821][T19848] [ 778.750834][T19848] dump_stack_lvl+0x16c/0x1f0 [ 778.750883][T19848] should_fail_ex+0x512/0x640 [ 778.750936][T19848] ? __kmalloc_cache_noprof+0x5f/0x800 [ 778.750981][T19848] should_failslab+0xc2/0x120 [ 778.751033][T19848] __kmalloc_cache_noprof+0x80/0x800 [ 778.751073][T19848] ? seq_create_client1+0x4d/0x630 [ 778.751121][T19848] ? seq_create_client1+0x4d/0x630 [ 778.751157][T19848] ? __pfx_snd_seq_open+0x10/0x10 [ 778.751193][T19848] seq_create_client1+0x4d/0x630 [ 778.751237][T19848] ? __pfx_snd_seq_open+0x10/0x10 [ 778.751277][T19848] snd_seq_open+0x59/0x590 [ 778.751318][T19848] ? __pfx_snd_seq_open+0x10/0x10 [ 778.751356][T19848] snd_open+0x22d/0x4c0 [ 778.751401][T19848] ? __pfx_snd_open+0x10/0x10 [ 778.751442][T19848] chrdev_open+0x234/0x6a0 [ 778.751493][T19848] ? __pfx_apparmor_file_open+0x10/0x10 [ 778.751545][T19848] ? __pfx_chrdev_open+0x10/0x10 [ 778.751599][T19848] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 778.751663][T19848] do_dentry_open+0x748/0x1590 [ 778.751711][T19848] ? __pfx_chrdev_open+0x10/0x10 [ 778.751776][T19848] vfs_open+0x82/0x3f0 [ 778.751826][T19848] path_openat+0x2078/0x3140 [ 778.751892][T19848] ? __pfx_path_openat+0x10/0x10 [ 778.751960][T19848] do_filp_open+0x20b/0x470 [ 778.752012][T19848] ? __pfx_do_filp_open+0x10/0x10 [ 778.752093][T19848] ? alloc_fd+0x471/0x7d0 [ 778.752155][T19848] do_sys_openat2+0x11f/0x280 [ 778.752193][T19848] ? __pfx_do_sys_openat2+0x10/0x10 [ 778.752248][T19848] __x64_sys_openat+0x174/0x210 [ 778.752287][T19848] ? __pfx___x64_sys_openat+0x10/0x10 [ 778.752343][T19848] do_syscall_64+0xcd/0xf80 [ 778.752388][T19848] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 778.752423][T19848] RIP: 0033:0x7f9e08d8f7c9 [ 778.752452][T19848] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 778.752486][T19848] RSP: 002b:00007f9e06ff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 778.752520][T19848] RAX: ffffffffffffffda RBX: 00007f9e08fe5fa0 RCX: 00007f9e08d8f7c9 [ 778.752544][T19848] RDX: 00000000001e3800 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 778.752567][T19848] RBP: 00007f9e08e13f91 R08: 0000000000000000 R09: 0000000000000000 [ 778.752590][T19848] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 778.752612][T19848] R13: 00007f9e08fe6038 R14: 00007f9e08fe5fa0 R15: 00007fff65af0b48 [ 778.752659][T19848] [ 779.320019][T19857] ERROR: Out of memory at tomoyo_memory_ok. [ 780.633860][T19845] kexec: Could not allocate control_code_buffer [ 780.988948][T19885] netlink: 342 bytes leftover after parsing attributes in process `syz.3.5001'. [ 783.167022][T19933] netlink: 28 bytes leftover after parsing attributes in process `syz.1.5024'. [ 783.208848][T19933] netdevsim netdevsim1 netdevsim1: left allmulticast mode [ 783.217727][T19933] netdevsim netdevsim1 netdevsim1: left promiscuous mode [ 783.227454][T19933] bridge0: port 3(netdevsim1) entered disabled state [ 783.241317][T19933] bridge_slave_1: left allmulticast mode [ 783.250845][T19933] bridge0: port 2(bridge_slave_1) entered disabled state [ 783.300627][T19933] bridge_slave_0: left allmulticast mode [ 783.328543][T19933] bridge_slave_0: left promiscuous mode [ 783.352566][T19933] bridge0: port 1(bridge_slave_0) entered disabled state [ 784.579704][T19951] Process accounting paused [ 784.870513][T19961] netlink: 206 bytes leftover after parsing attributes in process `syz.4.5029'. [ 784.912991][T19961] netlink: 266 bytes leftover after parsing attributes in process `syz.4.5029'. [ 785.021036][T19967] ERROR: Out of memory at tomoyo_memory_ok. [ 785.391338][T19972] sp0: Synchronizing with TNC [ 785.842594][T19983] zswap: compressor not available [ 786.150411][T19992] zswap: compressor not available [ 786.158264][T20000] netlink: 330 bytes leftover after parsing attributes in process `syz.1.5041'. [ 786.207977][T20000] : renamed from bridge_slave_1 (while UP) [ 786.234780][T20000] : left promiscuous mode [ 786.240572][T20000] : entered allmulticast mode [ 786.386318][T20002] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5043'. [ 786.435653][T20002] netlink: 354 bytes leftover after parsing attributes in process `syz.3.5043'. [ 786.455802][T20006] ERROR: Out of memory at tomoyo_memory_ok. [ 787.837246][T20028] mkiss: ax0: crc mode is auto. [ 788.060550][T20031] netlink: set zone limit has 8 unknown bytes [ 789.296226][T20060] mkiss: ax0: crc mode is auto. [ 789.476025][T20064] random: crng reseeded on system resumption [ 789.485982][T20062] netlink: 'syz.0.5065': attribute type 7 has an invalid length. [ 789.499491][T20062] netlink: 17 bytes leftover after parsing attributes in process `syz.0.5065'. [ 789.538367][T20064] hub 1-0:1.0: USB hub found [ 789.555157][T20064] hub 1-0:1.0: 1 port detected [ 790.042068][T20075] netlink: 28 bytes leftover after parsing attributes in process `syz.4.5071'. [ 790.389534][T20084] netlink: 342 bytes leftover after parsing attributes in process `syz.3.5074'. [ 790.432330][T20084] netlink: 'syz.3.5074': attribute type 3 has an invalid length. [ 790.461533][T20084] netlink: 290 bytes leftover after parsing attributes in process `syz.3.5074'. [ 790.935230][T20094] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5078'. [ 791.143886][T20097] sp0: Synchronizing with TNC [ 791.294923][T20103] sp0: Synchronizing with TNC [ 792.796557][T20145] netlink: 266 bytes leftover after parsing attributes in process `syz.3.5095'. [ 793.399536][T20160] netlink: 70 bytes leftover after parsing attributes in process `syz.3.5100'. [ 793.435323][T20160] netlink: 290 bytes leftover after parsing attributes in process `syz.3.5100'. [ 794.112903][T20169] netlink: 330 bytes leftover after parsing attributes in process `syz.3.5104'. [ 794.521952][T20170] FAULT_INJECTION: forcing a failure. [ 794.521952][T20170] name fail_futex, interval 1, probability 0, space 0, times 0 [ 794.549356][T20170] CPU: 0 UID: 0 PID: 20170 Comm: syz.0.5102 Tainted: G L syzkaller #0 PREEMPT(full) [ 794.549407][T20170] Tainted: [L]=SOFTLOCKUP [ 794.549419][T20170] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 794.549438][T20170] Call Trace: [ 794.549449][T20170] [ 794.549462][T20170] dump_stack_lvl+0x16c/0x1f0 [ 794.549508][T20170] should_fail_ex+0x512/0x640 [ 794.549565][T20170] get_futex_key+0x293/0x15f0 [ 794.549605][T20170] ? __pfx_get_futex_key+0x10/0x10 [ 794.549663][T20170] futex_wake+0xea/0x530 [ 794.549712][T20170] ? __pfx_futex_wake+0x10/0x10 [ 794.549775][T20170] do_futex+0x1e3/0x350 [ 794.549814][T20170] ? __pfx_do_futex+0x10/0x10 [ 794.549847][T20170] ? __might_fault+0xe3/0x190 [ 794.549892][T20170] mm_release+0x24e/0x300 [ 794.549936][T20170] do_exit+0x69e/0x2bd0 [ 794.549976][T20170] ? __pfx_do_exit+0x10/0x10 [ 794.550006][T20170] ? do_raw_spin_lock+0x12c/0x2b0 [ 794.550044][T20170] ? find_held_lock+0x2b/0x80 [ 794.550093][T20170] do_group_exit+0xd3/0x2a0 [ 794.550128][T20170] get_signal+0x2671/0x26d0 [ 794.550193][T20170] ? __pfx_get_signal+0x10/0x10 [ 794.550242][T20170] ? do_futex+0x122/0x350 [ 794.550283][T20170] arch_do_signal_or_restart+0x8f/0x7a0 [ 794.550333][T20170] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 794.550392][T20170] ? __do_sys_close_range+0x278/0x730 [ 794.550443][T20170] ? __pfx___x64_sys_futex+0x10/0x10 [ 794.550490][T20170] exit_to_user_mode_loop+0x8c/0x540 [ 794.550536][T20170] do_syscall_64+0x4ee/0xf80 [ 794.550580][T20170] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 794.550620][T20170] RIP: 0033:0x7f9cc2f8f7c9 [ 794.550646][T20170] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 794.550680][T20170] RSP: 002b:00007f9cc11d50e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 794.550712][T20170] RAX: fffffffffffffe00 RBX: 00007f9cc31e6188 RCX: 00007f9cc2f8f7c9 [ 794.550734][T20170] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f9cc31e6188 [ 794.550755][T20170] RBP: 00007f9cc31e6180 R08: 0000000000000000 R09: 0000000000000000 [ 794.550776][T20170] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 794.550797][T20170] R13: 00007f9cc31e6218 R14: 00007ffc0c795200 R15: 00007ffc0c7952e8 [ 794.550841][T20170] [ 794.989325][ T5831] Bluetooth: hci1: unexpected event 0x06 length: 435 > 3 [ 795.211166][T20182] netlink: 'syz.3.5109': attribute type 33 has an invalid length. [ 795.380397][T20190] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5111'. [ 795.453416][T20190] netlink: 25 bytes leftover after parsing attributes in process `syz.4.5111'. [ 796.124598][T20201] mkiss: ax0: crc mode is auto. [ 796.286441][T20203] netlink: 342 bytes leftover after parsing attributes in process `syz.0.5115'. [ 796.317978][T20203] netlink: 302 bytes leftover after parsing attributes in process `syz.0.5115'. [ 796.574395][T20213] netlink: 'syz.4.5120': attribute type 22 has an invalid length. [ 796.584181][T20213] netlink: 330 bytes leftover after parsing attributes in process `syz.4.5120'. [ 798.298491][ T30] audit: type=1800 audit(1765351155.924:14): pid=20248 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.5133" name="dbroot" dev="configfs" ino=87136 res=0 errno=0 [ 798.546194][T20257] netlink: 186 bytes leftover after parsing attributes in process `syz.0.5137'. [ 801.440961][T20306] bond0: invalid ARP target specified [ 801.898390][T20309] netlink: set zone limit has 8 unknown bytes [ 802.271922][ T5831] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 802.523661][T20319] FAULT_INJECTION: forcing a failure. [ 802.523661][T20319] name failslab, interval 1, probability 0, space 0, times 0 [ 802.567702][T20319] CPU: 0 UID: 0 PID: 20319 Comm: syz.3.5154 Tainted: G L syzkaller #0 PREEMPT(full) [ 802.567754][T20319] Tainted: [L]=SOFTLOCKUP [ 802.567767][T20319] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 802.567787][T20319] Call Trace: [ 802.567798][T20319] [ 802.567812][T20319] dump_stack_lvl+0x16c/0x1f0 [ 802.567861][T20319] should_fail_ex+0x512/0x640 [ 802.567914][T20319] ? kmem_cache_alloc_noprof+0x62/0x770 [ 802.567959][T20319] should_failslab+0xc2/0x120 [ 802.568011][T20319] kmem_cache_alloc_noprof+0x83/0x770 [ 802.568079][T20319] ? alloc_empty_file+0x55/0x1e0 [ 802.568126][T20319] ? alloc_empty_file+0x55/0x1e0 [ 802.568160][T20319] alloc_empty_file+0x55/0x1e0 [ 802.568199][T20319] alloc_file_clone+0x5f/0x110 [ 802.568239][T20319] create_pipe_files+0x41b/0x9a0 [ 802.568298][T20319] do_pipe2+0xaf/0x1c0 [ 802.568348][T20319] ? __pfx_do_pipe2+0x10/0x10 [ 802.568401][T20319] ? xfd_validate_state+0x61/0x180 [ 802.568431][T20319] ? __pfx_do_writev+0x10/0x10 [ 802.568486][T20319] __x64_sys_pipe+0x33/0x50 [ 802.568539][T20319] do_syscall_64+0xcd/0xf80 [ 802.568584][T20319] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 802.568620][T20319] RIP: 0033:0x7fe5a438f7c9 [ 802.568649][T20319] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 802.568683][T20319] RSP: 002b:00007fe5a25f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000016 [ 802.568717][T20319] RAX: ffffffffffffffda RBX: 00007fe5a45e5fa0 RCX: 00007fe5a438f7c9 [ 802.568741][T20319] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 802.568762][T20319] RBP: 00007fe5a4413f91 R08: 0000000000000000 R09: 0000000000000000 [ 802.568782][T20319] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 802.568801][T20319] R13: 00007fe5a45e6038 R14: 00007fe5a45e5fa0 R15: 00007fff17523ca8 [ 802.568845][T20319] [ 803.718894][T20337] netlink: 266 bytes leftover after parsing attributes in process `syz.3.5159'. [ 804.130810][T20348] kernel profiling enabled (shift: 63) [ 804.138765][T20348] profiling shift: 63 too large [ 804.162206][T20345] netlink: 330 bytes leftover after parsing attributes in process `syz.1.5162'. [ 804.359322][ T5146] Bluetooth: hci0: command 0x0406 tx timeout [ 805.471351][T20372] netlink: 'syz.0.5171': attribute type 1 has an invalid length. [ 805.512625][T20372] nbd: error processing sock list [ 805.579584][T20376] FAULT_INJECTION: forcing a failure. [ 805.579584][T20376] name failslab, interval 1, probability 0, space 0, times 0 [ 805.634040][T20376] CPU: 0 UID: 0 PID: 20376 Comm: syz.3.5172 Tainted: G L syzkaller #0 PREEMPT(full) [ 805.634079][T20376] Tainted: [L]=SOFTLOCKUP [ 805.634088][T20376] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 805.634103][T20376] Call Trace: [ 805.634112][T20376] [ 805.634121][T20376] dump_stack_lvl+0x16c/0x1f0 [ 805.634156][T20376] should_fail_ex+0x512/0x640 [ 805.634195][T20376] ? __kmalloc_cache_noprof+0x5f/0x800 [ 805.634226][T20376] should_failslab+0xc2/0x120 [ 805.634264][T20376] __kmalloc_cache_noprof+0x80/0x800 [ 805.634292][T20376] ? drm_atomic_helper_connector_duplicate_state+0x70/0xd0 [ 805.634328][T20376] ? drm_atomic_helper_connector_duplicate_state+0x70/0xd0 [ 805.634358][T20376] drm_atomic_helper_connector_duplicate_state+0x70/0xd0 [ 805.634388][T20376] drm_atomic_get_connector_state+0x3f8/0x900 [ 805.634432][T20376] drm_atomic_add_affected_connectors+0x2e0/0x3f0 [ 805.634474][T20376] ? __pfx_drm_atomic_add_affected_connectors+0x10/0x10 [ 805.634515][T20376] ? modeset_lock+0x114/0x6d0 [ 805.634554][T20376] __drm_atomic_helper_set_config+0x5ef/0xea0 [ 805.634596][T20376] ? __pfx___drm_atomic_helper_set_config+0x10/0x10 [ 805.634640][T20376] ? drm_client_rotation+0x4da/0x6a0 [ 805.634668][T20376] drm_client_modeset_commit_atomic+0x53d/0x7e0 [ 805.634702][T20376] ? __mutex_lock+0x27b/0x1ca0 [ 805.634733][T20376] ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10 [ 805.634758][T20376] ? trace_contention_end+0xdd/0x110 [ 805.634819][T20376] drm_client_modeset_commit_locked+0x14d/0x580 [ 805.634851][T20376] drm_client_modeset_commit+0x4f/0x80 [ 805.634878][T20376] __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160 [ 805.634924][T20376] drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0 [ 805.634970][T20376] drm_fbdev_client_restore+0x1b/0x30 [ 805.635004][T20376] ? __pfx_drm_fbdev_client_restore+0x10/0x10 [ 805.635038][T20376] drm_client_dev_restore+0x200/0x2a0 [ 805.635068][T20376] drm_release+0x2c6/0x360 [ 805.635109][T20376] ? __pfx_drm_release+0x10/0x10 [ 805.635146][T20376] __fput+0x402/0xb70 [ 805.635177][T20376] task_work_run+0x150/0x240 [ 805.635210][T20376] ? __pfx_task_work_run+0x10/0x10 [ 805.635235][T20376] ? __do_sys_close_range+0x278/0x730 [ 805.635282][T20376] exit_to_user_mode_loop+0xfb/0x540 [ 805.635317][T20376] do_syscall_64+0x4ee/0xf80 [ 805.635349][T20376] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 805.635383][T20376] RIP: 0033:0x7fe5a438f7c9 [ 805.635411][T20376] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 805.635454][T20376] RSP: 002b:00007fe5a25d5038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 805.635488][T20376] RAX: 0000000000000000 RBX: 00007fe5a45e6090 RCX: 00007fe5a438f7c9 [ 805.635513][T20376] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 805.635531][T20376] RBP: 00007fe5a4413f91 R08: 0000000000000000 R09: 0000000000000000 [ 805.635546][T20376] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 805.635560][T20376] R13: 00007fe5a45e6128 R14: 00007fe5a45e6090 R15: 00007fff17523ca8 [ 805.635594][T20376] [ 806.432607][ T5146] Bluetooth: hci0: command 0x0406 tx timeout [ 808.894555][T20443] netlink: set zone limit has 8 unknown bytes [ 809.018190][T20446] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5198'. [ 809.049186][T20446] netlink: 13 bytes leftover after parsing attributes in process `syz.4.5198'. [ 809.663911][T20461] serio: Serial port ttyS2 [ 810.042760][T20462] FAULT_INJECTION: forcing a failure. [ 810.042760][T20462] name fail_futex, interval 1, probability 0, space 0, times 0 [ 810.083415][T20462] CPU: 1 UID: 0 PID: 20462 Comm: syz.3.5200 Tainted: G L syzkaller #0 PREEMPT(full) [ 810.083464][T20462] Tainted: [L]=SOFTLOCKUP [ 810.083488][T20462] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 810.083508][T20462] Call Trace: [ 810.083519][T20462] [ 810.083532][T20462] dump_stack_lvl+0x16c/0x1f0 [ 810.083579][T20462] should_fail_ex+0x512/0x640 [ 810.083636][T20462] get_futex_key+0x293/0x15f0 [ 810.083675][T20462] ? __pfx_get_futex_key+0x10/0x10 [ 810.083723][T20462] futex_wake+0xea/0x530 [ 810.083769][T20462] ? __pfx_futex_wake+0x10/0x10 [ 810.083831][T20462] do_futex+0x1e3/0x350 [ 810.083869][T20462] ? __pfx_do_futex+0x10/0x10 [ 810.083901][T20462] ? __might_fault+0xe3/0x190 [ 810.083944][T20462] mm_release+0x24e/0x300 [ 810.083988][T20462] do_exit+0x69e/0x2bd0 [ 810.084025][T20462] ? __pfx_do_exit+0x10/0x10 [ 810.084055][T20462] ? do_raw_spin_lock+0x12c/0x2b0 [ 810.084091][T20462] ? find_held_lock+0x2b/0x80 [ 810.084138][T20462] do_group_exit+0xd3/0x2a0 [ 810.084173][T20462] get_signal+0x2671/0x26d0 [ 810.084233][T20462] ? __pfx_get_signal+0x10/0x10 [ 810.084281][T20462] ? do_futex+0x122/0x350 [ 810.084323][T20462] arch_do_signal_or_restart+0x8f/0x7a0 [ 810.084369][T20462] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 810.084420][T20462] ? __do_sys_close_range+0x278/0x730 [ 810.084470][T20462] ? __pfx___x64_sys_futex+0x10/0x10 [ 810.084525][T20462] exit_to_user_mode_loop+0x8c/0x540 [ 810.084572][T20462] do_syscall_64+0x4ee/0xf80 [ 810.084614][T20462] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 810.084647][T20462] RIP: 0033:0x7fe5a438f7c9 [ 810.084672][T20462] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 810.084706][T20462] RSP: 002b:00007fe5a25b40e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 810.084735][T20462] RAX: fffffffffffffe00 RBX: 00007fe5a45e6188 RCX: 00007fe5a438f7c9 [ 810.084755][T20462] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fe5a45e6188 [ 810.084773][T20462] RBP: 00007fe5a45e6180 R08: 0000000000000000 R09: 0000000000000000 [ 810.084791][T20462] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 810.084809][T20462] R13: 00007fe5a45e6218 R14: 00007fff17523bc0 R15: 00007fff17523ca8 [ 810.084847][T20462] [ 810.543619][T20475] netlink: 28 bytes leftover after parsing attributes in process `syz.1.5207'. [ 811.666857][T20493] netlink: set zone limit has 8 unknown bytes [ 811.914061][T20501] netlink: 'syz.1.5218': attribute type 21 has an invalid length. [ 811.923878][T20501] netlink: 326 bytes leftover after parsing attributes in process `syz.1.5218'. [ 813.065565][T20520] netlink: 342 bytes leftover after parsing attributes in process `syz.1.5224'. [ 813.130239][T20520] netlink: 298 bytes leftover after parsing attributes in process `syz.1.5224'. [ 813.797510][ T5894] smpboot: CPU 1 is now offline [ 813.987731][T20533] crash hp: kexec_trylock() failed, kdump image may be inaccurate [ 814.041474][T20533] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 814.082473][T20518] ------------[ cut here ]------------ [ 814.083352][T20518] [ 814.083361][T20518] ====================================================== [ 814.083371][T20518] WARNING: possible circular locking dependency detected [ 814.083386][T20518] syzkaller #0 Tainted: G L [ 814.083400][T20518] ------------------------------------------------------ [ 814.083414][T20518] syz.3.5223/20518 is trying to acquire lock: [ 814.083428][T20518] ffffffff8e2d6a20 (console_owner){-.-.}-{0:0}, at: console_lock_spinning_enable+0x61/0x80 [ 814.083497][T20518] [ 814.083497][T20518] but task is already holding lock: [ 814.083505][T20518] ffff8880b843add8 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x7e/0x130 [ 814.083567][T20518] [ 814.083567][T20518] which lock already depends on the new lock. [ 814.083567][T20518] [ 814.083576][T20518] [ 814.083576][T20518] the existing dependency chain (in reverse order) is: [ 814.083585][T20518] [ 814.083585][T20518] -> #4 (&rq->__lock){-.-.}-{2:2}: [ 814.083615][T20518] _raw_spin_lock_nested+0x31/0x40 [ 814.083641][T20518] raw_spin_rq_lock_nested+0x29/0x130 [ 814.083674][T20518] task_rq_lock+0xcf/0x490 [ 814.083707][T20518] cgroup_move_task+0x81/0x2a0 [ 814.083744][T20518] css_set_move_task+0x288/0x5f0 [ 814.083784][T20518] cgroup_post_fork+0x201/0x9e0 [ 814.083822][T20518] copy_process+0x56b6/0x7430 [ 814.083860][T20518] kernel_clone+0xfc/0x910 [ 814.083902][T20518] user_mode_thread+0xc8/0x110 [ 814.083939][T20518] rest_init+0x23/0x2b0 [ 814.083976][T20518] start_kernel+0x3ef/0x4d0 [ 814.084008][T20518] x86_64_start_reservations+0x18/0x30 [ 814.084044][T20518] x86_64_start_kernel+0x130/0x190 [ 814.084073][T20518] common_startup_64+0x13e/0x148 [ 814.084103][T20518] [ 814.084103][T20518] -> #3 (&p->pi_lock){-.-.}-{2:2}: [ 814.084134][T20518] _raw_spin_lock_irqsave+0x3a/0x60 [ 814.084159][T20518] try_to_wake_up+0xb7/0x1860 [ 814.084191][T20518] __wake_up_common+0x135/0x1f0 [ 814.084212][T20518] __wake_up+0x31/0x60 [ 814.084247][T20518] tty_port_default_wakeup+0x4d/0x60 [ 814.084284][T20518] serial8250_tx_chars+0x68e/0x860 [ 814.084311][T20518] serial8250_handle_irq+0x761/0xcb0 [ 814.084340][T20518] serial8250_default_handle_irq+0x9e/0x270 [ 814.084371][T20518] serial8250_interrupt+0xf8/0x1d0 [ 814.084403][T20518] __handle_irq_event_percpu+0x236/0x890 [ 814.084432][T20518] handle_irq_event+0xab/0x1e0 [ 814.084460][T20518] handle_edge_irq+0x3ca/0x9e0 [ 814.084486][T20518] __common_interrupt+0xd0/0x2f0 [ 814.084519][T20518] common_interrupt+0xba/0xe0 [ 814.084552][T20518] asm_common_interrupt+0x26/0x40 [ 814.084573][T20518] lock_acquire+0x62/0x330 [ 814.084592][T20518] _raw_spin_trylock+0x63/0x80 [ 814.084612][T20518] free_unref_folios+0x757/0x1610 [ 814.084636][T20518] folios_put_refs+0x4be/0x750 [ 814.084661][T20518] free_pages_and_swap_cache+0x245/0x4a0 [ 814.084687][T20518] __tlb_batch_free_encoded_pages+0xf9/0x290 [ 814.084730][T20518] tlb_finish_mmu+0x168/0x7c0 [ 814.084750][T20518] exit_mmap+0x3f9/0xb60 [ 814.084782][T20518] __mmput+0x12a/0x410 [ 814.084812][T20518] mmput+0x62/0x70 [ 814.084840][T20518] do_exit+0x7d7/0x2bd0 [ 814.084859][T20518] do_group_exit+0xd3/0x2a0 [ 814.084879][T20518] __x64_sys_exit_group+0x3e/0x50 [ 814.084900][T20518] x64_sys_call+0x151c/0x1740 [ 814.084933][T20518] do_syscall_64+0xcd/0xf80 [ 814.084958][T20518] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 814.084980][T20518] [ 814.084980][T20518] -> #2 (&tty->write_wait){-.-.}-{3:3}: [ 814.085021][T20518] _raw_spin_lock_irqsave+0x3a/0x60 [ 814.085049][T20518] __wake_up+0x1c/0x60 [ 814.085096][T20518] tty_port_default_wakeup+0x4d/0x60 [ 814.085123][T20518] serial8250_tx_chars+0x68e/0x860 [ 814.085149][T20518] serial8250_handle_irq+0x761/0xcb0 [ 814.085190][T20518] serial8250_default_handle_irq+0x9e/0x270 [ 814.085219][T20518] serial8250_interrupt+0xf8/0x1d0 [ 814.085249][T20518] __handle_irq_event_percpu+0x236/0x890 [ 814.085277][T20518] handle_irq_event+0xab/0x1e0 [ 814.085306][T20518] handle_edge_irq+0x3ca/0x9e0 [ 814.085330][T20518] __common_interrupt+0xd0/0x2f0 [ 814.085360][T20518] common_interrupt+0xba/0xe0 [ 814.085392][T20518] asm_common_interrupt+0x26/0x40 [ 814.085412][T20518] _raw_spin_unlock_irqrestore+0x31/0x80 [ 814.085434][T20518] uart_write+0x2a4/0xb30 [ 814.085458][T20518] n_tty_write+0x434/0x1280 [ 814.085486][T20518] file_tty_write.constprop.0+0x503/0x9b0 [ 814.085510][T20518] redirected_tty_write+0xd4/0x120 [ 814.085533][T20518] vfs_write+0x7d3/0x11d0 [ 814.085561][T20518] ksys_write+0x12a/0x250 [ 814.085589][T20518] do_syscall_64+0xcd/0xf80 [ 814.085616][T20518] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 814.085637][T20518] [ 814.085637][T20518] -> #1 (&port_lock_key){-.-.}-{3:3}: [ 814.085664][T20518] _raw_spin_lock_irqsave+0x3a/0x60 [ 814.085685][T20518] serial8250_console_write+0x181/0x1890 [ 814.085716][T20518] console_flush_one_record+0x796/0xc60 [ 814.085744][T20518] console_unlock+0xef/0x240 [ 814.085770][T20518] vprintk_emit+0x407/0x6b0 [ 814.085797][T20518] _printk+0xc7/0x100 [ 814.085837][T20518] register_console+0x823/0x1210 [ 814.085869][T20518] univ8250_console_init+0x5f/0x90 [ 814.085901][T20518] console_init+0x152/0x600 [ 814.085929][T20518] start_kernel+0x298/0x4d0 [ 814.085952][T20518] x86_64_start_reservations+0x18/0x30 [ 814.085978][T20518] x86_64_start_kernel+0x130/0x190 [ 814.086004][T20518] common_startup_64+0x13e/0x148 [ 814.086036][T20518] [ 814.086036][T20518] -> #0 (console_owner){-.-.}-{0:0}: [ 814.086063][T20518] __lock_acquire+0x1669/0x2890 [ 814.086082][T20518] lock_acquire+0x179/0x330 [ 814.086100][T20518] console_lock_spinning_enable+0x72/0x80 [ 814.086128][T20518] console_flush_one_record+0x73f/0xc60 [ 814.086156][T20518] console_unlock+0xef/0x240 [ 814.086182][T20518] vprintk_emit+0x407/0x6b0 [ 814.086212][T20518] _printk+0xc7/0x100 [ 814.086232][T20518] __report_bug+0x3a6/0x520 [ 814.086253][T20518] report_bug+0xb2/0x220 [ 814.086273][T20518] handle_bug+0x127/0x260 [ 814.086305][T20518] exc_invalid_op+0x17/0x50 [ 814.086336][T20518] asm_exc_invalid_op+0x1a/0x20 [ 814.086356][T20518] update_rq_clock+0x34a/0xc70 [ 814.086386][T20518] __schedule+0x212d/0x6150 [ 814.086408][T20518] schedule+0xe7/0x3a0 [ 814.086429][T20518] do_nanosleep+0x219/0x580 [ 814.086464][T20518] hrtimer_nanosleep+0x155/0x380 [ 814.086495][T20518] common_nsleep+0xa1/0xd0 [ 814.086517][T20518] __x64_sys_clock_nanosleep+0x34d/0x4a0 [ 814.086551][T20518] do_syscall_64+0xcd/0xf80 [ 814.086576][T20518] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 814.086599][T20518] [ 814.086599][T20518] other info that might help us debug this: [ 814.086599][T20518] [ 814.086606][T20518] Chain exists of: [ 814.086606][T20518] console_owner --> &p->pi_lock --> &rq->__lock [ 814.086606][T20518] [ 814.086637][T20518] Possible unsafe locking scenario: [ 814.086637][T20518] [ 814.086644][T20518] CPU0 CPU1 [ 814.086650][T20518] ---- ---- [ 814.086657][T20518] lock(&rq->__lock); [ 814.086670][T20518] lock(&p->pi_lock); [ 814.086684][T20518] lock(&rq->__lock); [ 814.086699][T20518] lock(console_owner); [ 814.086712][T20518] [ 814.086712][T20518] *** DEADLOCK *** [ 814.086712][T20518] [ 814.086718][T20518] 3 locks held by syz.3.5223/20518: [ 814.086731][T20518] #0: ffff8880b843add8 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x7e/0x130 [ 814.086790][T20518] #1: ffffffff8e3b6e60 (console_lock){+.+.}-{0:0}, at: _printk+0xc7/0x100 [ 814.086839][T20518] #2: ffffffff8e3b6ed8 (console_srcu){....}-{0:0}, at: console_flush_one_record+0x103/0xc60 [ 814.086897][T20518] [ 814.086897][T20518] stack backtrace: [ 814.086910][T20518] CPU: 0 UID: 0 PID: 20518 Comm: syz.3.5223 Tainted: G L syzkaller #0 PREEMPT(full) [ 814.086943][T20518] Tainted: [L]=SOFTLOCKUP [ 814.086951][T20518] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 814.086965][T20518] Call Trace: [ 814.086973][T20518] [ 814.086982][T20518] dump_stack_lvl+0x116/0x1f0 [ 814.087010][T20518] print_circular_bug+0x275/0x340 [ 814.087053][T20518] check_noncircular+0x146/0x160 [ 814.087094][T20518] __lock_acquire+0x1669/0x2890 [ 814.087121][T20518] lock_acquire+0x179/0x330 [ 814.087141][T20518] ? console_lock_spinning_enable+0x61/0x80 [ 814.087172][T20518] ? console_lock_spinning_enable+0x4a/0x80 [ 814.087204][T20518] console_lock_spinning_enable+0x72/0x80 [ 814.087234][T20518] ? console_lock_spinning_enable+0x61/0x80 [ 814.087263][T20518] console_flush_one_record+0x73f/0xc60 [ 814.087299][T20518] ? __pfx_console_flush_one_record+0x10/0x10 [ 814.087331][T20518] ? __lock_acquire+0x436/0x2890 [ 814.087355][T20518] ? is_printk_cpu_sync_owner+0x32/0x40 [ 814.087391][T20518] console_unlock+0xef/0x240 [ 814.087420][T20518] ? __pfx_console_unlock+0x10/0x10 [ 814.087451][T20518] ? do_raw_spin_unlock+0x130/0x230 [ 814.087479][T20518] ? _printk+0xc7/0x100 [ 814.087500][T20518] ? __down_trylock_console_sem+0xb0/0x140 [ 814.087528][T20518] vprintk_emit+0x407/0x6b0 [ 814.087559][T20518] ? __pfx_vprintk_emit+0x10/0x10 [ 814.087590][T20518] ? __pfx_css_rstat_updated+0x10/0x10 [ 814.087615][T20518] _printk+0xc7/0x100 [ 814.087637][T20518] ? __pfx__printk+0x10/0x10 [ 814.087661][T20518] ? trace_ignore_this_task+0x56/0x100 [ 814.087698][T20518] ? __report_bug+0x396/0x520 [ 814.087720][T20518] ? __report_bug+0x385/0x520 [ 814.087743][T20518] __report_bug+0x3a6/0x520 [ 814.087765][T20518] ? update_rq_clock+0x34a/0xc70 [ 814.087798][T20518] ? __pfx___report_bug+0x10/0x10 [ 814.087820][T20518] ? __pfx_css_rstat_updated+0x10/0x10 [ 814.087848][T20518] ? update_rq_clock+0x34a/0xc70 [ 814.087880][T20518] report_bug+0xb2/0x220 [ 814.087902][T20518] ? update_rq_clock+0x34a/0xc70 [ 814.087934][T20518] handle_bug+0x127/0x260 [ 814.087965][T20518] exc_invalid_op+0x17/0x50 [ 814.087997][T20518] asm_exc_invalid_op+0x1a/0x20 [ 814.088019][T20518] RIP: 0010:update_rq_clock+0x34a/0xc70 [ 814.088058][T20518] Code: ab 48 0b 00 00 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e 41 5f e9 58 01 ed 09 a8 04 0f 84 9c fd ff ff 90 0f 0b 90 e9 93 fd ff ff 90 <0f> 0b 90 e9 4f fd ff ff 48 8d bb 18 0e 00 00 48 b8 00 00 00 00 00 [ 814.088082][T20518] RSP: 0018:ffffc900034b7a90 EFLAGS: 00010046 [ 814.088100][T20518] RAX: 0000000000000000 RBX: ffff8880b853adc0 RCX: 0000000000000001 [ 814.088115][T20518] RDX: 0000000000000000 RSI: ffffffff8daa1eaa RDI: ffffffff8bf2a700 [ 814.088129][T20518] RBP: 0000000000000001 R08: ffff8880b843b8c8 R09: fffffbfff21115ba [ 814.088144][T20518] R10: ffffffff9088add7 R11: 0000000000000001 R12: ffffffff9088de54 [ 814.088159][T20518] R13: ffffffff8dd62160 R14: ffff88802f188000 R15: ffff8880b853adc0 [ 814.088182][T20518] ? pick_task_fair+0x85/0x350 [ 814.088214][T20518] __schedule+0x212d/0x6150 [ 814.088245][T20518] ? __pfx___schedule+0x10/0x10 [ 814.088268][T20518] ? find_held_lock+0x2b/0x80 [ 814.088300][T20518] ? schedule+0x2d7/0x3a0 [ 814.088326][T20518] schedule+0xe7/0x3a0 [ 814.088349][T20518] do_nanosleep+0x219/0x580 [ 814.088387][T20518] ? __pfx_do_nanosleep+0x10/0x10 [ 814.088424][T20518] ? __asan_memset+0x23/0x50 [ 814.088451][T20518] ? __hrtimer_setup+0x176/0x280 [ 814.088480][T20518] hrtimer_nanosleep+0x155/0x380 [ 814.088513][T20518] ? __pfx_hrtimer_nanosleep+0x10/0x10 [ 814.088548][T20518] ? __pfx_hrtimer_wakeup+0x10/0x10 [ 814.088578][T20518] ? get_timespec64+0x136/0x1b0 [ 814.088600][T20518] ? __pfx_get_timespec64+0x10/0x10 [ 814.088623][T20518] common_nsleep+0xa1/0xd0 [ 814.088648][T20518] __x64_sys_clock_nanosleep+0x34d/0x4a0 [ 814.088684][T20518] ? __pfx___x64_sys_clock_nanosleep+0x10/0x10 [ 814.088724][T20518] do_syscall_64+0xcd/0xf80 [ 814.088752][T20518] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 814.088775][T20518] RIP: 0033:0x7fe5a43c2085 [ 814.088793][T20518] Code: 24 0c 89 3c 24 48 89 4c 24 18 e8 f6 54 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 <44> 89 c7 48 89 04 24 e8 4f 55 ff ff 48 8b 04 24 48 83 c4 28 f7 d8 [ 814.088816][T20518] RSP: 002b:00007fff17523da0 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6 [ 814.088837][T20518] RAX: ffffffffffffffda RBX: 00007fe5a45e5fa0 RCX: 00007fe5a43c2085 [ 814.088853][T20518] RDX: 00007fff17523de0 RSI: 0000000000000000 RDI: 0000000000000000 [ 814.088868][T20518] RBP: 00007fe5a45e7da0 R08: 0000000000000000 R09: 00007fe5a5126000 [ 814.088883][T20518] R10: 0000000000000000 R11: 0000000000000293 R12: 00000000000c6c86 [ 814.088897][T20518] R13: 00007fff17523f00 R14: ffffffffffffffff R15: 00007fff17523f20 [ 814.088920][T20518] [ 815.569506][T20518] WARNING: kernel/sched/sched.h:1549 at update_rq_clock+0x34a/0xc70, CPU#0: syz.3.5223/20518 [ 815.581729][T20518] Modules linked in: [ 815.586395][T20518] CPU: 0 UID: 0 PID: 20518 Comm: syz.3.5223 Tainted: G L syzkaller #0 PREEMPT(full) [ 815.599508][T20518] Tainted: [L]=SOFTLOCKUP [ 815.604680][T20518] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 815.616732][T20518] RIP: 0010:update_rq_clock+0x34a/0xc70 [ 815.623398][T20518] Code: ab 48 0b 00 00 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e 41 5f e9 58 01 ed 09 a8 04 0f 84 9c fd ff ff 90 0f 0b 90 e9 93 fd ff ff 90 <0f> 0b 90 e9 4f fd ff ff 48 8d bb 18 0e 00 00 48 b8 00 00 00 00 00 [ 815.646922][T20518] RSP: 0018:ffffc900034b7a90 EFLAGS: 00010046 [ 815.654193][T20518] RAX: 0000000000000000 RBX: ffff8880b853adc0 RCX: 0000000000000001 [ 815.663879][T20518] RDX: 0000000000000000 RSI: ffffffff8daa1eaa RDI: ffffffff8bf2a700 [ 815.673437][T20518] RBP: 0000000000000001 R08: ffff8880b843b8c8 R09: fffffbfff21115ba [ 815.682992][T20518] R10: ffffffff9088add7 R11: 0000000000000001 R12: ffffffff9088de54 [ 815.692566][T20518] R13: ffffffff8dd62160 R14: ffff88802f188000 R15: ffff8880b853adc0 [ 815.702121][T20518] FS: 0000555559d7c500(0000) GS:ffff888124904000(0000) knlGS:0000000000000000 [ 815.712848][T20518] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 815.720747][T20518] CR2: 000000110cad91cc CR3: 00000000908b6000 CR4: 00000000003526f0 [ 815.730302][T20518] Call Trace: [ 815.734225][T20518] [ 815.737731][T20518] ? pick_task_fair+0x85/0x350 [ 815.743450][T20518] __schedule+0x212d/0x6150 [ 815.748862][T20518] ? __pfx___schedule+0x10/0x10 [ 815.754676][T20518] ? find_held_lock+0x2b/0x80 [ 815.760284][T20518] ? schedule+0x2d7/0x3a0 [ 815.765472][T20518] schedule+0xe7/0x3a0 [ 815.770382][T20518] do_nanosleep+0x219/0x580 [ 815.775810][T20518] ? __pfx_do_nanosleep+0x10/0x10 [ 815.781851][T20518] ? __asan_memset+0x23/0x50 [ 815.787360][T20518] ? __hrtimer_setup+0x176/0x280 [ 815.793283][T20518] hrtimer_nanosleep+0x155/0x380 [ 815.799212][T20518] ? __pfx_hrtimer_nanosleep+0x10/0x10 [ 815.805785][T20518] ? __pfx_hrtimer_wakeup+0x10/0x10 [ 815.812048][T20518] ? get_timespec64+0x136/0x1b0 [ 815.817865][T20518] ? __pfx_get_timespec64+0x10/0x10 [ 815.824095][T20518] common_nsleep+0xa1/0xd0 [ 815.829388][T20518] __x64_sys_clock_nanosleep+0x34d/0x4a0 [ 815.836155][T20518] ? __pfx___x64_sys_clock_nanosleep+0x10/0x10 [ 815.843545][T20518] do_syscall_64+0xcd/0xf80 [ 815.848946][T20518] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 815.856012][T20518] RIP: 0033:0x7fe5a43c2085 [ 815.861299][T20518] Code: 24 0c 89 3c 24 48 89 4c 24 18 e8 f6 54 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 <44> 89 c7 48 89 04 24 e8 4f 55 ff ff 48 8b 04 24 48 83 c4 28 f7 d8 [ 815.884837][T20518] RSP: 002b:00007fff17523da0 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6 [ 815.894944][T20518] RAX: ffffffffffffffda RBX: 00007fe5a45e5fa0 RCX: 00007fe5a43c2085 [ 815.904509][T20518] RDX: 00007fff17523de0 RSI: 0000000000000000 RDI: 0000000000000000 [ 815.914095][T20518] RBP: 00007fe5a45e7da0 R08: 0000000000000000 R09: 00007fe5a5126000 [ 815.923649][T20518] R10: 0000000000000000 R11: 0000000000000293 R12: 00000000000c6c86 [ 815.933213][T20518] R13: 00007fff17523f00 R14: ffffffffffffffff R15: 00007fff17523f20 [ 815.942796][T20518] [ 815.946428][T20518] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 815.955153][T20518] CPU: 0 UID: 0 PID: 20518 Comm: syz.3.5223 Tainted: G L syzkaller #0 PREEMPT(full) [ 815.968271][T20518] Tainted: [L]=SOFTLOCKUP [ 815.973445][T20518] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 815.985500][T20518] Call Trace: [ 815.989424][T20518] [ 815.993021][T20518] dump_stack_lvl+0x3d/0x1f0 [ 815.998545][T20518] vpanic+0x640/0x6f0 [ 816.003329][T20518] ? update_rq_clock+0x34a/0xc70 [ 816.009262][T20518] panic+0xca/0xd0 [ 816.013731][T20518] ? __pfx_panic+0x10/0x10 [ 816.019031][T20518] ? check_panic_on_warn+0x1f/0xb0 [ 816.025175][T20518] check_panic_on_warn+0xab/0xb0 [ 816.031096][T20518] __warn+0x108/0x3c0 [ 816.035869][T20518] __report_bug+0x2a0/0x520 [ 816.041271][T20518] ? update_rq_clock+0x34a/0xc70 [ 816.047200][T20518] ? __pfx___report_bug+0x10/0x10 [ 816.053218][T20518] ? __pfx_css_rstat_updated+0x10/0x10 [ 816.059767][T20518] ? update_rq_clock+0x34a/0xc70 [ 816.065702][T20518] report_bug+0xb2/0x220 [ 816.070801][T20518] ? update_rq_clock+0x34a/0xc70 [ 816.076743][T20518] handle_bug+0x127/0x260 [ 816.082056][T20518] exc_invalid_op+0x17/0x50 [ 816.087469][T20518] asm_exc_invalid_op+0x1a/0x20 [ 816.093284][T20518] RIP: 0010:update_rq_clock+0x34a/0xc70 [ 816.100045][T20518] Code: ab 48 0b 00 00 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e 41 5f e9 58 01 ed 09 a8 04 0f 84 9c fd ff ff 90 0f 0b 90 e9 93 fd ff ff 90 <0f> 0b 90 e9 4f fd ff ff 48 8d bb 18 0e 00 00 48 b8 00 00 00 00 00 [ 816.123587][T20518] RSP: 0018:ffffc900034b7a90 EFLAGS: 00010046 [ 816.130857][T20518] RAX: 0000000000000000 RBX: ffff8880b853adc0 RCX: 0000000000000001 [ 816.140427][T20518] RDX: 0000000000000000 RSI: ffffffff8daa1eaa RDI: ffffffff8bf2a700 [ 816.149996][T20518] RBP: 0000000000000001 R08: ffff8880b843b8c8 R09: fffffbfff21115ba [ 816.159573][T20518] R10: ffffffff9088add7 R11: 0000000000000001 R12: ffffffff9088de54 [ 816.169142][T20518] R13: ffffffff8dd62160 R14: ffff88802f188000 R15: ffff8880b853adc0 [ 816.178713][T20518] ? pick_task_fair+0x85/0x350 [ 816.184435][T20518] __schedule+0x212d/0x6150 [ 816.189841][T20518] ? __pfx___schedule+0x10/0x10 [ 816.195703][T20518] ? find_held_lock+0x2b/0x80 [ 816.201316][T20518] ? schedule+0x2d7/0x3a0 [ 816.206512][T20518] schedule+0xe7/0x3a0 [ 816.211390][T20518] do_nanosleep+0x219/0x580 [ 816.216801][T20518] ? __pfx_do_nanosleep+0x10/0x10 [ 816.222836][T20518] ? __asan_memset+0x23/0x50 [ 816.228341][T20518] ? __hrtimer_setup+0x176/0x280 [ 816.234266][T20518] hrtimer_nanosleep+0x155/0x380 [ 816.240196][T20518] ? __pfx_hrtimer_nanosleep+0x10/0x10 [ 816.246774][T20518] ? __pfx_hrtimer_wakeup+0x10/0x10 [ 816.253012][T20518] ? get_timespec64+0x136/0x1b0 [ 816.258827][T20518] ? __pfx_get_timespec64+0x10/0x10 [ 816.265060][T20518] common_nsleep+0xa1/0xd0 [ 816.270359][T20518] __x64_sys_clock_nanosleep+0x34d/0x4a0 [ 816.277132][T20518] ? __pfx___x64_sys_clock_nanosleep+0x10/0x10 [ 816.284522][T20518] do_syscall_64+0xcd/0xf80 [ 816.289930][T20518] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 816.297000][T20518] RIP: 0033:0x7fe5a43c2085 [ 816.302288][T20518] Code: 24 0c 89 3c 24 48 89 4c 24 18 e8 f6 54 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 <44> 89 c7 48 89 04 24 e8 4f 55 ff ff 48 8b 04 24 48 83 c4 28 f7 d8 [ 816.325811][T20518] RSP: 002b:00007fff17523da0 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6 [ 816.335901][T20518] RAX: ffffffffffffffda RBX: 00007fe5a45e5fa0 RCX: 00007fe5a43c2085 [ 816.345459][T20518] RDX: 00007fff17523de0 RSI: 0000000000000000 RDI: 0000000000000000 [ 816.355014][T20518] RBP: 00007fe5a45e7da0 R08: 0000000000000000 R09: 00007fe5a5126000 [ 816.364573][T20518] R10: 0000000000000000 R11: 0000000000000293 R12: 00000000000c6c86 [ 816.374128][T20518] R13: 00007fff17523f00 R14: ffffffffffffffff R15: 00007fff17523f20 [ 816.383696][T20518] [ 816.387508][T20518] Kernel Offset: disabled [ 816.392701][T20518] Rebooting in 86400 seconds..