last executing test programs: 9.36685783s ago: executing program 3 (id=1681): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/oom_adj\x00', 0x300, 0x0) kexec_load$auto(0x3, 0x10, &(0x7f0000000140)={@buf=&(0x7f0000000100)="f398", 0x400, 0x5, 0x3}, 0x7f) read$auto(r0, 0x0, 0x1f40) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x8002, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0) ioctl$auto_PAGEMAP_SCAN(r2, 0xc0606610, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x2) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/rose10/napi_defer_hard_irqs\x00', 0x282180, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f00000000c0)=""/64, 0x40) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) sendmsg$auto_NL80211_CMD_SET_REKEY_OFFLOAD(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000340)={&(0x7f0000000840)=ANY=[@ANYBLOB="281e000006aec20f9b600e57a2eab630e44618f0396d9c025de3757370b35e4b95f237a73692630994fce41ef400000000", @ANYRES16=0x0, @ANYBLOB="02002dbd7000fedbdf254f00000008006100010000000500f6000100000004008e00"], 0x28}, 0x1, 0x0, 0x0, 0x440c1}, 0x800) openat$nci(0xffffffffffffff9c, 0x0, 0x2, 0x0) r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) msgctl$auto_IPC_RMID(0x2, 0x0, &(0x7f0000000240)={{0x0, 0xffffffffffffffff, 0xee00, 0x9, 0x5, 0x8, 0x5}, 0x0, 0x0, 0x1, 0xfff, 0x0, 0x7, 0x9, 0x4, 0x9, 0xf, @raw=0x98}) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r5, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) r6 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0) ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r6, 0xc0285700, 0x0) ioctl$auto(r6, 0xc0383e04, 0xffffffffffffffff) r7 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x109401, 0x0) ioctl$auto(r7, 0x540a, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/net/udp\x00', 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) 8.500269447s ago: executing program 2 (id=1683): mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) getpid() clock_nanosleep$auto(0x9, 0x0, 0x0, 0x0) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socketpair$auto(0x1, 0x3, 0x8000000000000000, 0x0) select$auto(0x11, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x6, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x1000, 0x62, 0x4000008000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) io_uring_setup$auto(0x6, 0x0) socket(0xa, 0x2, 0x0) mmap$auto(0x0, 0x400008, 0x2, 0x9b72, 0x2, 0x8000) r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer\x00', 0x1c8300, 0x0) ioctl$auto(r0, 0x8004510b, 0x3) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) r1 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/oom_adj\x00', 0x48402, 0x0) read$auto(r1, 0x0, 0x7) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) getpid() ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x4000000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) 8.017451649s ago: executing program 3 (id=1685): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/oom_adj\x00', 0x300, 0x0) kexec_load$auto(0x3, 0x10, &(0x7f0000000140)={@buf=&(0x7f0000000100)="f398", 0x400, 0x5, 0x3}, 0x7f) read$auto(r0, 0x0, 0x1f40) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x8002, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0) ioctl$auto_PAGEMAP_SCAN(r2, 0xc0606610, &(0x7f000000c380)={0x60, 0x1, 0x100000, 0x7fffffffefff, 0xfffffffffffffffe, 0x4, 0x20, 0x0, 0x2c, 0x2d, 0x7, 0x3}) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x2) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/rose10/napi_defer_hard_irqs\x00', 0x282180, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f00000000c0)=""/64, 0x40) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) sendmsg$auto_NL80211_CMD_SET_REKEY_OFFLOAD(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000340)={&(0x7f0000000840)=ANY=[@ANYBLOB="281e000006aec20f9b600e57a2eab630e44618f0396d9c025de3757370b35e4b95f237a73692630994fce41ef400000000", @ANYRES16=0x0, @ANYBLOB="02002dbd7000fedbdf254f00000008006100010000000500f600"], 0x28}, 0x1, 0x0, 0x0, 0x440c1}, 0x800) openat$nci(0xffffffffffffff9c, 0x0, 0x2, 0x0) r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) msgctl$auto_IPC_RMID(0x2, 0x0, &(0x7f0000000240)={{0x0, 0xffffffffffffffff, 0xee00, 0x9, 0x5, 0x8, 0x5}, 0x0, 0x0, 0x1, 0xfff, 0x0, 0x7, 0x9, 0x4, 0x9, 0xf, @raw=0x98}) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r5, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) r6 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0) ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r6, 0xc0285700, 0x0) ioctl$auto(r6, 0xc0383e04, 0xffffffffffffffff) r7 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x109401, 0x0) ioctl$auto(r7, 0x540a, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/net/udp\x00', 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) 7.076345811s ago: executing program 0 (id=1686): r0 = socket(0x15, 0x5, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x7, 0x800008000) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'geneve0\x00', 0x0}) bind$auto(0x3, &(0x7f0000000040)=@xdp={0x2c, 0x5, r1, 0x40000d}, 0xbf58) ustat$auto(0x801, 0x0) r2 = socket(0xa, 0x1, 0x84) mmap$auto(0x0, 0x5, 0xdf, 0x9b72, 0x7, 0x28000) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000001500), r3) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000001540)={'netdevsim0\x00', 0x0}) sendmsg$auto_NET_SHAPER_CMD_GROUP(r3, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000080)={0x30, r4, 0x1, 0x70bd29, 0x25dfdbfe, {}, [@NET_SHAPER_A_HANDLE={0xc, 0x1, 0x0, 0x1, [@NET_SHAPER_A_HANDLE_SCOPE={0x8, 0x1, 0x2}]}, @NET_SHAPER_A_IFINDEX={0x8, 0x8, r5}, @NET_SHAPER_A_METRIC={0x8, 0x2, 0x1}]}, 0x30}, 0x1, 0x0, 0x0, 0x44000}, 0x14) socketpair$auto(0xa, 0x9, 0xfffffffe, 0x0) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/system/cpu/cpu0/topology/thread_siblings_list\x00', 0x101900, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r6, &(0x7f0000002980)=""/4075, 0xfeb) r7 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x8a403, 0x0) ioctl$auto_IOCTL_VMCI_VERSION2(r7, 0x7a7, 0x0) ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r7, 0x7a0, 0x6) r8 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/module/libceph/parameters/supported_features\x00', 0x40000, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r8, &(0x7f0000000180)=""/4096, 0x1000) ioctl$auto_IOCTL_VMCI_CTX_ADD_NOTIFICATION(r7, 0x7af, 0x0) r9 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0) ioctl$auto_IOCTL_VMCI_VERSION2(r9, 0x7a7, 0x0) ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r9, 0x7a0, 0x6) close_range$auto(0x2, 0x8, 0x0) getsockopt$auto(r2, 0x84, 0x9, 0x0, 0x0) sendmsg$auto(r0, &(0x7f0000000100)={&(0x7f0000000040), 0x7fc, 0x0, 0x8, 0x0, 0xa9, 0x4}, 0x0) openat$auto_show_traces_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/available_tracers\x00', 0x48041, 0x0) r10 = socket(0x2, 0x2, 0x1) bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_4={0x1f, r10, 0x10000}, 0x10) syz_genetlink_get_family_id$auto_nlbl_unlbl(&(0x7f0000000140), r0) 5.586200411s ago: executing program 3 (id=1689): r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x2003f0, 0x15) pwrite64$auto(0xc8, &(0x7f0000000840)='\vX\xb5\x91p\xe6\x1eRN8\x99\x00\rs\x1cJ\x99\x00:c\x14\x1f>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2\xc6\xbd\xf2\xab\x96\x9e^\x86\xea\x8a\xd0\x9a-)\x8b\xefD\xc4\x14\xe4G\xa29u\xb7\xe1\a\xa2\xb0m\x98#\x15B\x890\xa9\xae\x8eon\xea\xbbJ\xaa\x9c\xfb5\xe3J8J-\xd7\x8d\xaa\x05\xd4g\t\x82\xb5\xb4\x15\xe1\x15\x1e+t7\x86\x9fv\xc9N\'\xf8\xb0', 0x4e, 0x1) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socketpair$auto(0x5, 0x6, 0x8000000000000000, 0x0) shmctl$auto_SHM_INFO(0x8, 0xe, &(0x7f0000000480)={{0x10001, 0xee01, 0xffffffffffffffff, 0x5, 0xe, 0xc89, 0x15b6}, 0x9, 0xa, 0x10000, 0xcffc, @inferred, @inferred, 0x2, 0x0, &(0x7f0000000a40)="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", &(0x7f0000000380)="ec5c04b890e2078e7ca19ef01154028957b21f5ea778a123da17212b49d9d7eee79ea976176abf400ff3a7ffc15c55bae7adf7380d121bbbfa218a8cc395af66a863d592fa0c6605274b01c0288d612b0f8a4945cd7e5e7a1ef9d642d6dfbf84650f336585436648a84a9b409345e87eb116ad144e9c0fc9b06397365b865a36fb85dbd7672ad6ae74c5b3c5143c0693cdcd4bcfd36dac4711280ac72eb8af4eb1eb56f894cbe9cc1087b69297ed619685e6cc4e7801dc984cac6838c354df5370d15cd576d0ec037db7952f"}) msgctl$auto_MSG_STAT(0x5, 0xb, &(0x7f0000000500)={{0x4, 0x0, 0xee01, 0x56, 0x2, 0x80000000, 0x3}, &(0x7f0000000040)=0x4, &(0x7f00000001c0), 0xc, 0xff, 0x8, 0x7fffffff, 0x4, 0x1, 0x2, 0x4, @inferred=0xffffffffffffffff, @raw=0x9}) fstat$auto(r0, &(0x7f0000000580)={0xfffffffffffffffe, 0x6, 0xfffffffffffffffb, 0xfff, r1, r2, 0x0, 0x7fffffff, 0x9, 0x7, 0x0, 0x6, 0x7cd, 0x400, 0x6, 0xffffffffffffffff, 0x8000000000000001}) r3 = openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/dri/vgem/clients\x00', 0x60000, 0x0) read$auto_drm_debugfs_entry_fops_drm_debugfs(r3, &(0x7f0000000100)=""/153, 0x99) r4 = getpid() sendmsg$auto_NL80211_CMD_GET_MPP(0xffffffffffffffff, &(0x7f0000000700)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000006c0)={&(0x7f0000000200)={0x144, 0x0, 0x8, 0x70bd2d, 0x25dfdbfd, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}, @NL80211_ATTR_REG_RULES={0x7c, 0x22, 0x0, 0x1, [@typed={0x8, 0x3c, 0x0, 0x0, @pid=r4}, @typed={0x14, 0x13a, 0x0, 0x0, @ipv6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, @nested={0x59, 0xc2, 0x0, 0x1, [@typed={0x8, 0xd2, 0x0, 0x0, @fd}, @generic="0e44fa88af7cd22a8d7edf7beca8fbc865f4f91db2c9c79375a38d475d98d2f0ca00c1af9a078be33c194bcab2f7dfe39ff3a6e41145fd562e22a515eeb343f1dca52d9aa7c7a884928f5d73aa"]}]}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0xfffc}, @NL80211_ATTR_S1G_CAPABILITY_MASK={0xa2, 0x129, "08fa7064bfc1458c00a9d41e8b6624f20fceba0c1a808ffbc12a3abb112abcb7ad7afc5bfdced03e378a0de31061617391af2dca7ba917be4d516f7ab9a980ec3d595ecd2f94834d0c9219dc80794259e8573d48139ce9a43ca752f208c1a8db0417085f294a177a5ed330b43646d04fc565928f039a4e849ef93f1d65756d55b8ee94564bbbe89bbd1fd3bc720295a9a199219fd7ae6d66d1b81ad7faa4"}]}, 0x144}, 0x1, 0x0, 0x0, 0x10}, 0x40) r5 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0) read$auto(r5, 0x0, 0xb4d3) socket$nl_generic(0x10, 0x3, 0x10) r6 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f00000009c0), 0x0, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_TREAD_OLD(r6, 0x40045402, &(0x7f0000000a00)=0x101) ioctl$auto_SNDRV_TIMER_IOCTL_PARAMS(r6, 0x40505412, &(0x7f0000000740)={0x8017, 0x6, 0x1a8, 0x1d5a, 0x1, "65c27c875731c1487a56c94040f33119db1b7cf3a9b1584b31ebb0f69b866a8dc75abf454c641729f2a35d2c08cf64f44e58a6ecd475e09d961d9b29"}) splice$auto(0x4, 0x0, 0x2, 0x0, 0x3, 0x9) write$auto(0x3, 0x0, 0xffd8) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mmap$auto(0x0, 0x2000009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/bonding/packets_per_slave\x00', 0x182b02, 0x0) r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000800)='/sys/devices/virtual/net/rose10/addr_len\x00', 0x20800, 0x0) read$auto(r7, 0x0, 0x9) write$auto(0x3, 0x0, 0xfdef) socket$nl_generic(0x10, 0x3, 0x10) 5.585327548s ago: executing program 0 (id=1697): r0 = ioctl$auto_TUNSETTXFILTER(0xffffffffffffffff, 0x400454d1, &(0x7f0000000040)=0x1) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) io_uring_setup$auto(0x1, 0x0) r2 = socket(0x11, 0x80003, 0x300) setsockopt$auto(r2, 0x107, 0x1, 0x0, 0x8004) unshare$auto(0x40000080) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/loop2\x00', 0x24040, 0x0) ioctl$auto_BLKTRACESETUP(r3, 0xc0481273, &(0x7f0000000540)={"ef13a5421a8765cadfca437c4d1316833843180bb151ed36e8ce6cb454168d6c", 0x3ff, 0xc9, 0x1000, 0xd, 0x9}) ioctl$auto_BLKTRACESTART(r3, 0x1274, 0x0) ioctl$auto(r1, 0x5608, 0x7) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000100), r0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'dummy0\x00'}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'vlan0\x00'}) sendmsg$auto_ETHTOOL_MSG_TSINFO_GET(r0, &(0x7f0000000340)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0xc4080000}, 0xc, &(0x7f0000000200)={&(0x7f00000005c0)=ANY=[], 0xec}, 0x1, 0x0, 0x0, 0x2004c041}, 0x0) keyctl$auto(0x3, 0xfffffffffffffffd, 0x0, 0xee01, 0xa00002) r4 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(r4, r4, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x1, 0x8000) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80502, 0x0) r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x80000000, 0x5f, 0x80000001, 0x7, 0x6d3f, 0x7, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r5, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x8f, 0x3, 0x8, 0x1, 0x948b, 0x3, 0x15f4da0d, 0x3, 0x3, 0x262, 0x8000001c, 0x2, 0x6d3e, 0xc, 0x2, 0x5]}, 0x0) sendmsg$auto_NL80211_CMD_SET_MESH_CONFIG(r4, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000098}, 0x8014) openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/tracing/trace\x00', 0x1a6b75d63882a712, 0x0) openat$auto_tracing_free_buffer_fops_trace(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/tracing/free_buffer\x00', 0x4c000, 0xebff) 5.577519778s ago: executing program 2 (id=1690): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/oom_adj\x00', 0x300, 0x0) kexec_load$auto(0x3, 0x10, &(0x7f0000000140)={@buf=&(0x7f0000000100)="f398", 0x400, 0x5, 0x3}, 0x7f) read$auto(r0, 0x0, 0x1f40) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x8002, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0) ioctl$auto_PAGEMAP_SCAN(r2, 0xc0606610, &(0x7f000000c380)={0x60, 0x1, 0x100000, 0x7fffffffefff, 0xfffffffffffffffe, 0x4, 0x20, 0x0, 0x2c, 0x2d, 0x7, 0x3}) writev$auto(r1, 0x0, 0x2) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/rose10/napi_defer_hard_irqs\x00', 0x282180, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f00000000c0)=""/64, 0x40) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) sendmsg$auto_NL80211_CMD_SET_REKEY_OFFLOAD(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000340)={&(0x7f0000000840)=ANY=[@ANYBLOB="281e000006aec20f9b600e57a2eab630e44618f0396d9c025de3757370b35e4b95f237a73692630994fce41ef400000000", @ANYRES16=0x0, @ANYBLOB="02002dbd7000fedbdf254f00000008006100010000000500f6000100000004008e00"], 0x28}, 0x1, 0x0, 0x0, 0x440c1}, 0x800) openat$nci(0xffffffffffffff9c, 0x0, 0x2, 0x0) r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) msgctl$auto_IPC_RMID(0x2, 0x0, &(0x7f0000000240)={{0x0, 0xffffffffffffffff, 0xee00, 0x9, 0x5, 0x8, 0x5}, 0x0, 0x0, 0x1, 0xfff, 0x0, 0x7, 0x9, 0x4, 0x9, 0xf, @raw=0x98}) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r5, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) r6 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0) ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r6, 0xc0285700, 0x0) ioctl$auto(r6, 0xc0383e04, 0xffffffffffffffff) r7 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x109401, 0x0) ioctl$auto(r7, 0x540a, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/net/udp\x00', 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) 5.3553232s ago: executing program 1 (id=1691): prctl$auto(0x39, 0x1, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x2, 0x1, 0x0, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x2003f0, 0x15) mmap$auto(0x0, 0x20009, 0x8, 0xeb4, 0x7f, 0x7ffc) mknod$auto(&(0x7f0000000180)=':,\x00', 0xcb, 0xfffffffa) execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x20) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) move_pages$auto(0xffffffffffffffff, 0xfffffffffffffffe, 0x0, 0x0, &(0x7f00000001c0)=0xffff, 0x81) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x90}, 0x20000081) socket(0x10, 0x2, 0x4) socket(0x10, 0x3, 0x6) syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYRES16=0x0], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}, 0x1, 0x0, 0x0, 0x2000c000}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f0000000000)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x1}, 0x2, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0xe4643, 0x0) mount$auto(&(0x7f0000000040)='gretap0\x00', &(0x7f00000000c0)=':,\x00', &(0x7f0000000100)='/sys/devices/LNXSYSTM:00/LNXSYBUS/00/PNP0A03:00/device:08/adr\x00', 0x100, &(0x7f0000000240)="e07cb3a9b1ee78ee61c62d0fd93f9671b05c2fdc019284e0b09a70b95a411f6732fa5f22120ee0ff33d1cfe1c3094b568cd3020ed038451736d6081e150e279357dbe63555668ddfe1d7fc253514c3e2412bdb58ca") bpf$auto(0x12, 0x0, 0x26) openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000380)='/sys/kernel/debug/usb/usbmon/22u\x00', 0x200, 0x0) 4.464259657s ago: executing program 1 (id=1692): socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000a, 0x8e051, 0xffffffffffffffff, 0x0) r0 = ioctl$auto_TUNSETVNETLE2(0xffffffffffffffff, 0x400454dc, &(0x7f0000000180)=0x1) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_L2TP_CMD_SESSION_CREATE(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)={0x14, r2, 0x1, 0x70bd27, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x20000010}, 0x40) sendmsg$auto_L2TP_CMD_SESSION_DELETE(r0, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x38, r2, 0x2, 0x70bd26, 0x25dfdbff, {}, [@L2TP_ATTR_IP_DADDR={0x8, 0x19, 0x4}, @L2TP_ATTR_MTU={0x6}, @L2TP_ATTR_IP6_SADDR={0x14, 0x1f, @mcast1}]}, 0x38}, 0x1, 0x0, 0x0, 0x20004000}, 0x20000000) pread64$auto(0xffffffffffffffff, 0x0, 0x2, 0x100000005) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, 0x0, 0x121900, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) ioctl$auto(0xffffffffffffffff, 0x5410, 0xffffffffffffffff) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x40001, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x10000, 0x7, 0xf, 0x40000000008fd6, 0x948b, 0x7, 0x15f4da0a, 0x3, 0x3, 0x62, 0x4, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/rose3/statistics/tx_packets\x00', 0x0, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000001100)=""/192, 0xc0) write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) madvise$auto(0x0, 0x2000040080000004, 0xe) move_pages$auto(0x0, 0x1002, 0x0, &(0x7f0000001140), 0x0, 0x2) r5 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) write$auto(r5, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.net/net_prio.ifpriomap\x00', 0x10b142, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) read$auto(0x3, 0x0, 0x80) sendfile$auto(r6, r6, 0x0, 0x5) mprotect$auto(0x200000000000, 0x806121, 0x6) syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000001f00), 0xffffffffffffffff) 4.398391612s ago: executing program 2 (id=1693): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/oom_adj\x00', 0x300, 0x0) kexec_load$auto(0x3, 0x10, &(0x7f0000000140)={@buf=&(0x7f0000000100)="f398", 0x400, 0x5, 0x3}, 0x7f) read$auto(r0, 0x0, 0x1f40) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x8002, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0) ioctl$auto_PAGEMAP_SCAN(r2, 0xc0606610, &(0x7f000000c380)={0x60, 0x1, 0x100000, 0x7fffffffefff, 0xfffffffffffffffe, 0x4, 0x20, 0x0, 0x2c, 0x2d, 0x7, 0x3}) writev$auto(r1, 0x0, 0x2) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/rose10/napi_defer_hard_irqs\x00', 0x282180, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f00000000c0)=""/64, 0x40) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) sendmsg$auto_NL80211_CMD_SET_REKEY_OFFLOAD(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000340)={&(0x7f0000000840)=ANY=[@ANYBLOB="281e000006aec20f9b600e57a2eab630e44618f0396d9c025de3757370b35e4b95f237a73692630994fce41ef400000000", @ANYRES16=0x0, @ANYBLOB="02002dbd7000fedbdf254f00000008006100010000000500f6000100000004008e00"], 0x28}, 0x1, 0x0, 0x0, 0x440c1}, 0x800) openat$nci(0xffffffffffffff9c, 0x0, 0x2, 0x0) r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) msgctl$auto_IPC_RMID(0x2, 0x0, &(0x7f0000000240)={{0x0, 0xffffffffffffffff, 0xee00, 0x9, 0x5, 0x8, 0x5}, 0x0, 0x0, 0x1, 0xfff, 0x0, 0x7, 0x9, 0x4, 0x9, 0xf, @raw=0x98}) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r5, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) r6 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0) ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r6, 0xc0285700, 0x0) ioctl$auto(r6, 0xc0383e04, 0xffffffffffffffff) r7 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x109401, 0x0) ioctl$auto(r7, 0x540a, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/net/udp\x00', 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) 3.431395983s ago: executing program 1 (id=1694): socket(0x15, 0x5, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/ieee80211/phy1/user_power\x00', 0x60a40, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1d, 0x2, 0x2) r0 = socket(0x10, 0x3, 0x6) close_range$auto(r0, 0xfffffffffffff000, 0x4000000000002) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0xa, 0x5, 0x0) io_uring_setup$auto(0x6, 0x0) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) write$auto(0x3, 0x0, 0x5c8) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) write$auto(0x3, 0x0, 0x7fffffff) write$auto(0x1, 0x0, 0x80000000) openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, 0x0, 0x200, 0x0) mmap$auto(0x0, 0x202000a, 0x3, 0xebe, 0xfffffffffffffffa, 0x8000) rt_sigprocmask$auto(0x0, &(0x7f0000000000)={0xfffffffffffffe01}, 0x0, 0x8) close_range$auto(0x2, 0x8, 0x0) pipe$auto(0x0) write$auto(0x3, 0x0, 0x200ffd8) close_range$auto(0x2, 0x8, 0x0) getcwd$auto(0x0, 0xffffffffffffffff) r1 = signalfd4$auto(0xffffffff, 0x0, 0x8, 0x800) read$auto_l2cap_debugfs_fops_(r1, &(0x7f0000000240)=""/177, 0xb1) socket(0x11, 0x2, 0x73) pipe2$auto(0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x11, 0x2, 0x14) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) 3.421516479s ago: executing program 0 (id=1703): ioprio_get$auto_IOPRIO_WHO_PROCESS(0x1, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r3, 0xc004500a, 0x0) write$auto(0x3, 0x0, 0xffd8) unshare$auto(0x40000080) rseq$auto(0x0, 0x8000, 0x0, 0x6) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) clone$auto(0x25, 0x482, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x401) mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) r4 = socket(0xa, 0x2, 0x0) setsockopt$auto(r4, 0x29, 0x30, 0x0, 0x56b) fcntl$auto(0x8000000000000001, 0x26, 0x8) write$auto(0x3, 0x0, 0x100082) ioctl$auto_SNDCTL_DSP_SYNC(r3, 0x5001, 0xfffffffffffffffc) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'virt_wifi0\x00'}) sendmsg$auto_NL80211_CMD_SET_WIPHY(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=ANY=[], 0x24}, 0x1, 0x0, 0x0, 0x4004080}, 0x0) sendmsg$auto_NL80211_CMD_PROBE_MESH_LINK(r1, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x800}, 0x40800) madvise$auto(0x0, 0x2000040080000004, 0xe) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) 3.116895663s ago: executing program 2 (id=1695): r0 = socket(0x2, 0x1, 0x106) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x54) setsockopt$auto(r0, 0x6, 0x1, &(0x7f0000000040)='l2tp\x00', 0x7) landlock_create_ruleset$auto(&(0x7f0000000000)={0x9, 0x402, 0x7}, 0x6, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x201, 0x0) ioctl$auto_TIOCSTI2(r1, 0x5412, &(0x7f0000000000)) ioctl$auto_TIOCSTI2(r1, 0x5412, &(0x7f0000000100)="15") mmap$auto(0xdf, 0x2020009, 0x8000, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000300), 0x141000, 0x0) poll$auto(&(0x7f0000000180)={r2, 0xa0b, 0x9816}, 0x7f, 0x0) ioctl$auto_VHOST_SET_OWNER(r3, 0xaf01, 0x0) ioctl$auto(0x3, 0x4008af02, r3) capset$auto(0x0, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) stat$auto(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x2, 0x3, 0x5, 0x6, 0xee01, 0x0, 0x0, 0x600000000000000, 0x77, 0xffff, 0x1, 0x6, 0xfffffffffffffff8, 0xe7ca, 0x9, 0xffffffffffffffff}) shmctl$auto_SHM_UNLOCK(0x1ff, 0xc, &(0x7f0000000200)={{0x3, r4, r5, 0x5, 0x7ff, 0x6, 0x1000}, 0x3, 0x9, 0x9, 0xa2c, @raw=0x9, @inferred=0x0, 0x3, 0x0, &(0x7f0000000140)="3f6883407375f9d7f0bbddd4eba73fdea33891d01199f49ceb008b724a9064", &(0x7f00000001c0)="5a6d7f19391a6b5942c6196aaa9bdcb2f67f57451b25a7001c5f46e5342ae0edf32d4119ac58ea4d3a6f03c980163f4d9b39e11ff419df4a"}) msgctl$auto_MSG_STAT_ANY(0x2, 0xd, &(0x7f0000000340)={{0x6, r6, r7, 0x7, 0x6, 0x3ff}, &(0x7f0000000280)=0x75, &(0x7f00000002c0)=0x3, 0x1, 0x5, 0x5, 0xffff, 0x9, 0x9, 0x1, 0x2, @raw, @inferred=r8}) setresuid$auto(r9, r6, r6) setfsuid$auto(0x0) r10 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) ioctl$auto(r10, 0x4b67, 0x1) ioctl$auto_VHOST_VSOCK_SET_RUNNING(r2, 0x4004af61, 0x0) 2.490049428s ago: executing program 2 (id=1696): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/oom_adj\x00', 0x300, 0x0) kexec_load$auto(0x3, 0x10, &(0x7f0000000140)={@buf=&(0x7f0000000100)="f398", 0x400, 0x5, 0x3}, 0x7f) read$auto(r0, 0x0, 0x1f40) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x8002, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0) ioctl$auto_PAGEMAP_SCAN(r2, 0xc0606610, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x2) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/rose10/napi_defer_hard_irqs\x00', 0x282180, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f00000000c0)=""/64, 0x40) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) sendmsg$auto_NL80211_CMD_SET_REKEY_OFFLOAD(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000340)={&(0x7f0000000840)=ANY=[@ANYBLOB="281e000006aec20f9b600e57a2eab630e44618f0396d9c025de3757370b35e4b95f237a73692630994fce41ef400000000", @ANYRES16=0x0, @ANYBLOB="02002dbd7000fedbdf254f00000008006100010000000500f6000100000004008e00"], 0x28}, 0x1, 0x0, 0x0, 0x440c1}, 0x800) openat$nci(0xffffffffffffff9c, 0x0, 0x2, 0x0) r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) msgctl$auto_IPC_RMID(0x2, 0x0, &(0x7f0000000240)={{0x0, 0xffffffffffffffff, 0xee00, 0x9, 0x5, 0x8, 0x5}, 0x0, 0x0, 0x1, 0xfff, 0x0, 0x7, 0x9, 0x4, 0x9, 0xf, @raw=0x98}) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r5, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) r6 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0) ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r6, 0xc0285700, 0x0) ioctl$auto(r6, 0xc0383e04, 0xffffffffffffffff) r7 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x109401, 0x0) ioctl$auto(r7, 0x540a, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/net/udp\x00', 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) 2.466116595s ago: executing program 3 (id=1698): r0 = socket(0x15, 0x5, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x7, 0x800008000) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'geneve0\x00', 0x0}) bind$auto(0x3, &(0x7f0000000040)=@xdp={0x2c, 0x5, r1, 0x40000d}, 0xbf58) ustat$auto(0x801, 0x0) r2 = socket(0xa, 0x1, 0x84) mmap$auto(0x0, 0x5, 0xdf, 0x9b72, 0x7, 0x28000) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000001500), r3) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000001540)={'netdevsim0\x00', 0x0}) sendmsg$auto_NET_SHAPER_CMD_GROUP(r3, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000080)={0x30, r4, 0x1, 0x70bd29, 0x25dfdbfe, {}, [@NET_SHAPER_A_HANDLE={0xc, 0x1, 0x0, 0x1, [@NET_SHAPER_A_HANDLE_SCOPE={0x8, 0x1, 0x2}]}, @NET_SHAPER_A_IFINDEX={0x8, 0x8, r5}, @NET_SHAPER_A_METRIC={0x8, 0x2, 0x1}]}, 0x30}, 0x1, 0x0, 0x0, 0x44000}, 0x14) socketpair$auto(0xa, 0x9, 0xfffffffe, 0x0) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/system/cpu/cpu0/topology/thread_siblings_list\x00', 0x101900, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r6, &(0x7f0000002980)=""/4075, 0xfeb) r7 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x8a403, 0x0) ioctl$auto_IOCTL_VMCI_VERSION2(r7, 0x7a7, 0x0) ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r7, 0x7a0, 0x6) r8 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/module/libceph/parameters/supported_features\x00', 0x40000, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r8, &(0x7f0000000180)=""/4096, 0x1000) ioctl$auto_IOCTL_VMCI_CTX_ADD_NOTIFICATION(r7, 0x7af, 0x0) r9 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0) ioctl$auto_IOCTL_VMCI_VERSION2(r9, 0x7a7, 0x0) ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r9, 0x7a0, 0x6) close_range$auto(0x2, 0x8, 0x0) getsockopt$auto(r2, 0x84, 0x9, 0x0, 0x0) sendmsg$auto(r0, &(0x7f0000000100)={&(0x7f0000000040), 0x7fc, 0x0, 0x8, 0x0, 0xa9, 0x4}, 0x0) openat$auto_show_traces_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/available_tracers\x00', 0x48041, 0x0) r10 = socket(0x2, 0x2, 0x1) bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_4={0x1f, r10, 0x10000}, 0x10) syz_genetlink_get_family_id$auto_nlbl_unlbl(&(0x7f0000000140), r0) 1.887011987s ago: executing program 1 (id=1699): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/mtd/mtd0/bitflip_threshold\x00', 0x2062, 0x0) write$auto(r0, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x20540, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) close_range$auto(0x2, 0x8, 0x0) syz_clone3(&(0x7f00000003c0)={0x1ae900080, 0x0, 0x0, 0x0, {0xd}, 0x0, 0x0, 0x0, 0x0}, 0x58) kill$auto(0x0, 0x21) 1.88424684s ago: executing program 0 (id=1708): mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0xe983, 0x7f, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket(0x1d, 0x2, 0x6) r1 = socket(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) bind$auto(r0, &(0x7f0000000040)=@can={0x1d, r2, 0xfd}, 0x6a) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={0x0, 0x6c}, 0x1, 0x0, 0x0, 0x40084}, 0x40) io_uring_setup$auto(0x9f6, 0x0) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) sendmsg$auto_L2TP_CMD_SESSION_GET(r0, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x24000004) close_range$auto(0x2, 0x8, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x401bf, 0x7352, 0x3c, 0x5, 0x1ffde, 0x7, 0x3, 0x1, 0x9, 0x3, 0x4, 0x100000004, 0xb8, 0xa, 0x9, 0x10003, 0x80, 0x4, 0x0, 0x7, 0x2000, 0x203, 0x0, 0xfffffff7, 0x4002ffffffffffd, 0xdf, 0x0, 0x80000000, 0x0, [0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x400, 0x0, 0x7, 0xfffffffffffffffe, 0x0, 0x80000, 0x1000000000, 0x0, 0x0, 0x400, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0xffffffffa1a3fb26, 0xfffffffffffffffd, 0x0, 0x7fffffff, 0x2, 0x0, 0x0, 0x6, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3]}, 0x2, 0xd) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x1ac}}, 0x40000) r3 = io_uring_setup$auto(0xfff, 0x0) r4 = socket(0x10, 0x2, 0x0) ioctl$auto_SW_SYNC_IOC_INC(r3, 0x40045701, &(0x7f0000000000)=0x3) sendmmsg$auto(r4, &(0x7f0000000200)={{0x0, 0x6000, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) 1.603343884s ago: executing program 0 (id=1700): socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000a, 0x8e051, 0xffffffffffffffff, 0x0) r0 = ioctl$auto_TUNSETVNETLE2(0xffffffffffffffff, 0x400454dc, &(0x7f0000000180)=0x1) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_L2TP_CMD_SESSION_CREATE(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)={0x14, r2, 0x1, 0x70bd27, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x20000010}, 0x40) sendmsg$auto_L2TP_CMD_SESSION_DELETE(r0, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x38, r2, 0x2, 0x70bd26, 0x25dfdbff, {}, [@L2TP_ATTR_IP_DADDR={0x8, 0x19, 0x4}, @L2TP_ATTR_MTU={0x6}, @L2TP_ATTR_IP6_SADDR={0x14, 0x1f, @mcast1}]}, 0x38}, 0x1, 0x0, 0x0, 0x20004000}, 0x20000000) pread64$auto(0xffffffffffffffff, 0x0, 0x2, 0x100000005) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, 0x0, 0x121900, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) ioctl$auto(0xffffffffffffffff, 0x5410, 0xffffffffffffffff) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x40001, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x10000, 0x7, 0xf, 0x40000000008fd6, 0x948b, 0x7, 0x15f4da0a, 0x3, 0x3, 0x62, 0x4, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/rose3/statistics/tx_packets\x00', 0x0, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000001100)=""/192, 0xc0) write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) madvise$auto(0x0, 0x2000040080000004, 0xe) move_pages$auto(0x0, 0x1002, 0x0, &(0x7f0000001140), 0x0, 0x2) r5 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) write$auto(r5, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.net/net_prio.ifpriomap\x00', 0x10b142, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) read$auto(0x3, 0x0, 0x80) sendfile$auto(r6, r6, 0x0, 0x5) mprotect$auto(0x200000000000, 0x806121, 0x6) syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000001f00), 0xffffffffffffffff) 1.60312523s ago: executing program 3 (id=1701): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/oom_adj\x00', 0x300, 0x0) kexec_load$auto(0x3, 0x10, &(0x7f0000000140)={@buf=&(0x7f0000000100)="f398", 0x400, 0x5, 0x3}, 0x7f) read$auto(r0, 0x0, 0x1f40) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x8002, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0) ioctl$auto_PAGEMAP_SCAN(r2, 0xc0606610, &(0x7f000000c380)={0x60, 0x1, 0x100000, 0x7fffffffefff, 0xfffffffffffffffe, 0x4, 0x20, 0x0, 0x2c, 0x2d, 0x7, 0x3}) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x2) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/rose10/napi_defer_hard_irqs\x00', 0x282180, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f00000000c0)=""/64, 0x40) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) sendmsg$auto_NL80211_CMD_SET_REKEY_OFFLOAD(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000340)={&(0x7f0000000840)=ANY=[@ANYBLOB="281e000006aec20f9b600e57a2eab630e44618f0396d9c025de3757370b35e4b95f237a73692630994fce41ef400000000", @ANYRES16=0x0, @ANYBLOB="02002dbd7000fedbdf254f00000008006100010000000500f60001000000"], 0x28}, 0x1, 0x0, 0x0, 0x440c1}, 0x800) openat$nci(0xffffffffffffff9c, 0x0, 0x2, 0x0) r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) msgctl$auto_IPC_RMID(0x2, 0x0, &(0x7f0000000240)={{0x0, 0xffffffffffffffff, 0xee00, 0x9, 0x5, 0x8, 0x5}, 0x0, 0x0, 0x1, 0xfff, 0x0, 0x7, 0x9, 0x4, 0x9, 0xf, @raw=0x98}) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r5, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) r6 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0) ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r6, 0xc0285700, 0x0) ioctl$auto(r6, 0xc0383e04, 0xffffffffffffffff) r7 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x109401, 0x0) ioctl$auto(r7, 0x540a, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/net/udp\x00', 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) 1.427992623s ago: executing program 1 (id=1702): openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f00000001c0), 0x1, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_IPVS_CMD_GET_SERVICE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000c00)={0x6fc, 0x0, 0x4, 0x70bd26, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_SERVICE={0x81, 0x1, 0x0, 0x1, [@generic="41597108a3129ad0b8e904fcf5d2b2bd31e6641c3e2df357da6b8529d15a21db5d183149e9109592a76e5d1536f0a688dfeb9bbf6069d9e44888acc9f8c72e439e1f9d37aa7ed8a23a03300adb1c10ff7c1e47f868274ea0823c00a4eacc7ad652263afe18fbb9a8902af4b91bc1115099aff62590", @typed={0x8, 0x5c, 0x0, 0x0, @fd=r0}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x9}, @IPVS_CMD_ATTR_DEST={0x65c, 0x2, 0x0, 0x1, [@nested={0x655, 0xda, 0x0, 0x1, [@typed={0x8, 0x9f, 0x0, 0x0, @u32=0x4}, @generic="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"]}]}]}, 0x6fc}, 0x1, 0x0, 0x0, 0x90}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000) recvmmsg$auto(r0, &(0x7f0000000140)={{0x0, 0x4, &(0x7f0000000080)={0x0, 0x803}, 0x5, 0x0, 0x2, 0x8}, 0x800}, 0x10a, 0x8, 0x0) 853.747078ms ago: executing program 2 (id=1704): socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000a, 0x8e051, 0xffffffffffffffff, 0x0) r0 = ioctl$auto_TUNSETVNETLE2(0xffffffffffffffff, 0x400454dc, &(0x7f0000000180)=0x1) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_L2TP_CMD_SESSION_CREATE(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)={0x14, r2, 0x1, 0x70bd27, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x20000010}, 0x40) sendmsg$auto_L2TP_CMD_SESSION_DELETE(r0, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x38, r2, 0x2, 0x70bd26, 0x25dfdbff, {}, [@L2TP_ATTR_IP_DADDR={0x8, 0x19, 0x4}, @L2TP_ATTR_MTU={0x6}, @L2TP_ATTR_IP6_SADDR={0x14, 0x1f, @mcast1}]}, 0x38}, 0x1, 0x0, 0x0, 0x20004000}, 0x20000000) ioctl$auto_SW_SYNC_GET_DEADLINE(0xffffffffffffffff, 0xc0105702, 0x0) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, 0x0, 0x121900, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) ioctl$auto(0xffffffffffffffff, 0x5410, 0xffffffffffffffff) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x40001, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x10000, 0x7, 0xf, 0x40000000008fd6, 0x948b, 0x7, 0x15f4da0a, 0x3, 0x3, 0x62, 0x4, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/rose3/statistics/tx_packets\x00', 0x0, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000001100)=""/192, 0xc0) write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) madvise$auto(0x0, 0x2000040080000004, 0xe) move_pages$auto(0x0, 0x1002, 0x0, &(0x7f0000001140), 0x0, 0x2) r5 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) write$auto(r5, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.net/net_prio.ifpriomap\x00', 0x10b142, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) read$auto(0x3, 0x0, 0x80) sendfile$auto(r6, r6, 0x0, 0x5) mprotect$auto(0x200000000000, 0x806121, 0x6) syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000001f00), 0xffffffffffffffff) 447.996466ms ago: executing program 3 (id=1705): r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x2003f0, 0x15) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r1 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) r2 = openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/dri/vgem/clients\x00', 0x60000, 0x0) read$auto_drm_debugfs_entry_fops_drm_debugfs(r2, &(0x7f0000000100)=""/153, 0x99) r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000001c0), r1) sendmsg$auto_NL80211_CMD_GET_MPP(0xffffffffffffffff, &(0x7f0000000700)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000006c0)={&(0x7f0000000200)={0x46c, r3, 0x200, 0x70bd2d, 0x25dfdbfd, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}, @NL80211_ATTR_REG_RULES={0x7c, 0x22, 0x0, 0x1, [@typed={0x8, 0xe9, 0x0, 0x0, @pid}, @typed={0x14, 0x13a, 0x0, 0x0, @ipv6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, @nested={0x59, 0xc2, 0x0, 0x1, [@typed={0x8, 0xd2, 0x0, 0x0, @fd}, @generic="0e44fa88af7cd22a8d7edf7beca8fbc865f4f91db2c9c79375a38d475d98d2f0ca00c1af9a078be33c194bcab2f7dfe39ff3a6e41145fd562e22a515eeb343f1dca52d9aa7c7a884928f5d73aa"]}]}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0xfffc}, @NL80211_ATTR_HW_TIMESTAMP_ENABLED={0x4}, @NL80211_ATTR_IE_RIC={0x320, 0xb2, "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"}, @NL80211_ATTR_S1G_CAPABILITY_MASK={0xa8, 0x129, "08fa7064bfc1458c00a9d41e8b6624f20fceba0c1a808ffbc12a3abb112abcb7ad7afc5bfdced03e378a0de31061617391af2dca7ba917be4d516f7ab9a980ec3d595ecd2f94834d0c9219dc80794259e8573d48139ce9a43ca752f208c1a8db0417085f294a177a5ed330b43646d04fc565928f039a4e849ef93f1d65756d55b8ee94564bbbe89bbd1fd3bc720295a9a199219fd7ae6d66d1b81ad7faa4b9e942589de3"}]}, 0x46c}, 0x1, 0x0, 0x0, 0x10}, 0x40) r4 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0) read$auto(r4, 0x0, 0xb4d3) socket$nl_generic(0x10, 0x3, 0x10) ioctl$auto_SNDRV_TIMER_IOCTL_TREAD_OLD(0xffffffffffffffff, 0x40045402, &(0x7f0000000a00)=0x101) ioctl$auto_SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000740)={0x8017, 0x6, 0x1a8, 0x1d5a, 0x1, "65c27c875731c1487a56c94040f33119db1b7cf3a9b1584b31ebb0f69b866a8dc75abf454c641729f2a35d2c08cf64f44e58a6ecd475e09d961d9b29"}) splice$auto(0x4, 0x0, 0x2, 0x0, 0x3, 0x9) write$auto(0x3, 0x0, 0xffd8) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mmap$auto(0x0, 0x2000009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/bonding/packets_per_slave\x00', 0x182b02, 0x0) write$auto(0x3, 0x0, 0xfdef) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) r5 = socket(0x2, 0x1, 0x84) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x10000000084, 0x81, 0x0, 0x8) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x2000000000000000) setsockopt$auto(r5, 0x10000000084, 0x19, 0x0, 0x8) 214.44842ms ago: executing program 1 (id=1706): mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) openat$auto_tun_fops_tun(0xffffffffffffff9c, 0x0, 0x2002, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket(0xa, 0x1, 0x100) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0xffffffffcc61daa5, 0xffffffffffffffff, 0x400000000001, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) symlink$auto(&(0x7f00000000c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f00000010c0)='./file0\x00') openat2$dir(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', &(0x7f0000000380)={0x400, 0x0, 0x31}, 0x18) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000001180), 0xebd9730ded6d5900, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) mmap$auto(0x0, 0x2000c, 0x4000000000df, 0xeb1, 0x401, 0x8000) write$auto(0xffffffffffffffff, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) ioctl$auto(0xc8, 0x54e3, 0x5c8d) r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SPEED(r2, 0xc0045002, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) write$auto(0x3, 0x0, 0x86) ioctl$auto(0x3, 0xae41, r1) select$auto(0x8, 0x0, 0x0, 0x0, 0x0) r3 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/set_event\x00', 0x20000, 0x0) read$auto_ftrace_set_event_fops_trace_events(r3, &(0x7f0000001100)=""/112, 0x70) (fail_nth: 2) 0s ago: executing program 0 (id=1707): mmap$auto(0x0, 0x10005, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/platform/vhci_hcd.9/usb28/28-0:1.0/usb28-port3/location\x00', 0x240200, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x2841, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x1e, 0x3, 0x100) r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000540), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_GET_RADIO(r2, &(0x7f0000001900)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x884}, 0x8020) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r3, &(0x7f0000004240)={0x0, 0x0, &(0x7f0000004200)={&(0x7f00000005c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="011129bd7000e84bd7d900000200"], 0x14}, 0x1, 0x0, 0x0, 0x4000060}, 0x20040014) read$auto(0xffffffffffffffff, 0x0, 0xaae2) sendfile$auto(0x1, 0x3, 0x0, 0x6) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_seg6(&(0x7f0000001980), 0xffffffffffffffff) sendmsg$auto_SEG6_CMD_GET_TUNSRC(r4, &(0x7f0000001b80)={0x0, 0x0, &(0x7f0000001b40)={&(0x7f00000002c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r5, @ANYBLOB="00000000000000100000edff5c00003ee9257b6427dd357b9979efc1b6f7146587e9be0762f3113c5b92f089dca758c166eb3cec613533359ee6bbbe580d02644fcd39e4423285afcd8a8fcf26f91a91efdb1c377e0672dd2258ae9aa0"], 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x8000) ioctl$auto_SNDRV_RAWMIDI_IOCTL_PARAMS(r0, 0xc0305710, 0x0) close_range$auto(0x2, 0x8, 0x0) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000840)='./cgroup.cpu/memory.stat\x00', 0x80200, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r6, &(0x7f0000000240)=""/118, 0x76) writev$auto(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x7}, 0x3) socket(0xa, 0x3, 0xe7) write$auto(0xca, &(0x7f0000000140)='\x04\x0e\x06\x00\x01\x00\x00\x00\x00\x00\x00\x00\x81\x00\x00\x00\xf6\xf5\x00\xdf\xbf\x00', 0x13) openat$nci(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) ioprio_set$auto(0x3, 0x0, 0x4b34) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) read$auto(0xffffffffffffffff, &(0x7f0000000000)='#\xe5.(\x00', 0x0) mbind$auto(0x2000, 0x1, 0x100000000, 0x0, 0x1004, 0x9) kernel console output (not intermixed with test programs): [ 711.309526][T13030] ksys_mmap_pgoff+0x7d/0x5c0 [ 711.309572][T13030] ? xfd_validate_state+0x61/0x180 [ 711.309629][T13030] ? __pfx_ksys_write+0x10/0x10 [ 711.309674][T13030] __x64_sys_mmap+0x125/0x190 [ 711.309734][T13030] do_syscall_64+0xcd/0x490 [ 711.309777][T13030] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 711.309812][T13030] RIP: 0033:0x7f771138ebe9 [ 711.309838][T13030] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 711.309872][T13030] RSP: 002b:00007f7712278038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 711.309905][T13030] RAX: ffffffffffffffda RBX: 00007f77115b5fa0 RCX: 00007f771138ebe9 [ 711.309928][T13030] RDX: 00000000000001ff RSI: 0000000000020004 RDI: 0000000000000000 [ 711.309949][T13030] RBP: 00007f7711411e19 R08: 8000000000000024 R09: 0000000000008000 [ 711.309971][T13030] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 711.309991][T13030] R13: 00007f77115b6038 R14: 00007f77115b5fa0 R15: 00007ffc04a9c628 [ 711.310036][T13030] [ 714.169218][ T30] audit: type=1800 audit(1754593395.526:17): pid=13060 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1285" name="SYSV0000000a" dev="hugetlbfs" ino=0 res=0 errno=0 [ 716.605643][T13101] netlink: 186 bytes leftover after parsing attributes in process `syz.0.1294'. [ 716.680554][T13102] could not allocate digest TFM handle [ 718.865382][T13125] zswap: compressor not available [ 719.185548][ C1] vcan0: j1939_tp_rxtimer: 0xffff88805c3ffc00: rx timeout, send abort [ 719.196064][ C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88805c3ffc00: 0x40000: (3) A timeout occurred and this is the connection abort to close the session. [ 723.551666][T13170] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1312'. [ 725.069366][T13178] FAULT_INJECTION: forcing a failure. [ 725.069366][T13178] name failslab, interval 1, probability 0, space 0, times 0 [ 725.161146][T13178] CPU: 1 UID: 0 PID: 13178 Comm: syz.2.1315 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(full) [ 725.161198][T13178] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 725.161219][T13178] Call Trace: [ 725.161231][T13178] [ 725.161245][T13178] dump_stack_lvl+0x16c/0x1f0 [ 725.161290][T13178] should_fail_ex+0x512/0x640 [ 725.161332][T13178] ? fs_reclaim_acquire+0xae/0x150 [ 725.161389][T13178] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 725.161435][T13178] should_failslab+0xc2/0x120 [ 725.161480][T13178] __kmalloc_noprof+0xd2/0x510 [ 725.161530][T13178] tomoyo_realpath_from_path+0xc2/0x6e0 [ 725.161588][T13178] ? tomoyo_profile+0x47/0x60 [ 725.161641][T13178] tomoyo_path_number_perm+0x245/0x580 [ 725.161677][T13178] ? tomoyo_path_number_perm+0x237/0x580 [ 725.161718][T13178] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 725.161754][T13178] ? futex_wake+0x1ad/0x530 [ 725.161844][T13178] ? find_held_lock+0x2b/0x80 [ 725.161878][T13178] ? hook_file_ioctl_common+0x145/0x410 [ 725.161928][T13178] ? __fget_files+0x20e/0x3c0 [ 725.161974][T13178] security_file_ioctl+0x9b/0x240 [ 725.162014][T13178] __x64_sys_ioctl+0xb7/0x210 [ 725.162071][T13178] do_syscall_64+0xcd/0x490 [ 725.162113][T13178] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 725.162148][T13178] RIP: 0033:0x7f093b78ebe9 [ 725.162176][T13178] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 725.162211][T13178] RSP: 002b:00007f093c60a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 725.162242][T13178] RAX: ffffffffffffffda RBX: 00007f093b9b5fa0 RCX: 00007f093b78ebe9 [ 725.162265][T13178] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000007 [ 725.162285][T13178] RBP: 00007f093b811e19 R08: 0000000000000000 R09: 0000000000000000 [ 725.162306][T13178] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 725.162326][T13178] R13: 00007f093b9b6038 R14: 00007f093b9b5fa0 R15: 00007ffe061d8dc8 [ 725.162371][T13178] [ 725.162386][T13178] ERROR: Out of memory at tomoyo_realpath_from_path. [ 725.764498][T13184] bcachefs: bch2_ioctl_fsck_offline() ret EFAULT [ 730.028358][T13227] netlink: 'syz.0.1327': attribute type 1 has an invalid length. [ 730.064943][T13227] netlink: 'syz.0.1327': attribute type 1 has an invalid length. [ 730.150339][T13227] netlink: 'syz.0.1327': attribute type 1 has an invalid length. [ 730.307532][T13227] netlink: 'syz.0.1327': attribute type 1 has an invalid length. [ 730.362618][T13227] netlink: 'syz.0.1327': attribute type 1 has an invalid length. [ 730.480261][T13227] netlink: 'syz.0.1327': attribute type 1 has an invalid length. [ 730.537904][T13227] netlink: 'syz.0.1327': attribute type 1 has an invalid length. [ 730.563911][T13227] netlink: 'syz.0.1327': attribute type 1 has an invalid length. [ 730.602897][T13227] netlink: 'syz.0.1327': attribute type 1 has an invalid length. [ 730.662490][T13227] netlink: 'syz.0.1327': attribute type 1 has an invalid length. [ 732.817413][T13240] FAULT_INJECTION: forcing a failure. [ 732.817413][T13240] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 732.859490][T13240] CPU: 0 UID: 0 PID: 13240 Comm: syz.0.1332 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(full) [ 732.859537][T13240] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 732.859557][T13240] Call Trace: [ 732.859569][T13240] [ 732.859582][T13240] dump_stack_lvl+0x16c/0x1f0 [ 732.859624][T13240] should_fail_ex+0x512/0x640 [ 732.859668][T13240] _copy_from_user+0x2e/0xd0 [ 732.859713][T13240] get_timespec64+0x8b/0x1b0 [ 732.859752][T13240] ? __pfx_get_timespec64+0x10/0x10 [ 732.859802][T13240] ? find_held_lock+0x2b/0x80 [ 732.859846][T13240] __x64_sys_futex+0x288/0x4c0 [ 732.859895][T13240] ? __pfx___x64_sys_futex+0x10/0x10 [ 732.859956][T13240] do_syscall_64+0xcd/0x490 [ 732.859997][T13240] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 732.860031][T13240] RIP: 0033:0x7f771138ebe9 [ 732.860057][T13240] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 732.860091][T13240] RSP: 002b:00007ffc04a9c788 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 732.860121][T13240] RAX: ffffffffffffffda RBX: 00000000000b2d38 RCX: 00007f771138ebe9 [ 732.860142][T13240] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f77115b5fac [ 732.860163][T13240] RBP: 0000000000000032 R08: 00007f7712279000 R09: 0000001004a9ca7f [ 732.860183][T13240] R10: 00007ffc04a9c880 R11: 0000000000000246 R12: 00007f77115b5fac [ 732.860205][T13240] R13: 00007ffc04a9c880 R14: 00000000000b2d6a R15: 00007ffc04a9c8a0 [ 732.860247][T13240] [ 733.654743][T13258] XFS: Clearing xfsstats [ 736.135461][T13286] FAULT_INJECTION: forcing a failure. [ 736.135461][T13286] name fail_futex, interval 1, probability 0, space 0, times 0 [ 736.135517][T13286] CPU: 1 UID: 0 PID: 13286 Comm: syz.1.1341 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(full) [ 736.135562][T13286] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 736.135582][T13286] Call Trace: [ 736.135594][T13286] [ 736.135607][T13286] dump_stack_lvl+0x16c/0x1f0 [ 736.135699][T13286] should_fail_ex+0x512/0x640 [ 736.135747][T13286] get_futex_key+0x1d0/0x1560 [ 736.135794][T13286] ? __pfx_get_futex_key+0x10/0x10 [ 736.135851][T13286] futex_wake+0xea/0x530 [ 736.135900][T13286] ? rcu_is_watching+0x12/0xc0 [ 736.135936][T13286] ? __pfx_futex_wake+0x10/0x10 [ 736.135990][T13286] ? kmem_cache_free+0x2d1/0x4d0 [ 736.136028][T13286] ? fd_install+0x225/0x750 [ 736.136061][T13286] ? putname+0x154/0x1a0 [ 736.136116][T13286] do_futex+0x1e3/0x350 [ 736.136160][T13286] ? __pfx_do_futex+0x10/0x10 [ 736.136214][T13286] __x64_sys_futex+0x1e0/0x4c0 [ 736.136261][T13286] ? __x64_sys_openat+0x174/0x210 [ 736.136317][T13286] ? __pfx___x64_sys_futex+0x10/0x10 [ 736.136375][T13286] do_syscall_64+0xcd/0x490 [ 736.136413][T13286] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 736.136438][T13286] RIP: 0033:0x7f3aa698ebe9 [ 736.136457][T13286] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 736.136481][T13286] RSP: 002b:00007f3aa77970e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 736.136503][T13286] RAX: ffffffffffffffda RBX: 00007f3aa6bb5fa8 RCX: 00007f3aa698ebe9 [ 736.136519][T13286] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f3aa6bb5fac [ 736.136535][T13286] RBP: 00007f3aa6bb5fa0 R08: 00007f3aa7798000 R09: 0000000000000000 [ 736.136550][T13286] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000 [ 736.136564][T13286] R13: 00007f3aa6bb6038 R14: 00007ffcef608ed0 R15: 00007ffcef608fb8 [ 736.136594][T13286] [ 736.865411][T13294] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1342'. [ 736.865953][T13294] ipvlan0: entered allmulticast mode [ 736.866032][T13294] veth0_vlan: entered allmulticast mode [ 738.885566][T13307] netlink: 330 bytes leftover after parsing attributes in process `syz.2.1347'. [ 739.118713][T13307] : renamed from lo (while UP) [ 742.658135][T13327] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 745.243462][T13398] FAULT_INJECTION: forcing a failure. [ 745.243462][T13398] name failslab, interval 1, probability 0, space 0, times 0 [ 745.256642][T13398] CPU: 0 UID: 0 PID: 13398 Comm: syz.1.1371 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(full) [ 745.256693][T13398] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 745.256715][T13398] Call Trace: [ 745.256728][T13398] [ 745.256741][T13398] dump_stack_lvl+0x16c/0x1f0 [ 745.256793][T13398] should_fail_ex+0x512/0x640 [ 745.256834][T13398] ? fs_reclaim_acquire+0xae/0x150 [ 745.256890][T13398] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 745.256934][T13398] should_failslab+0xc2/0x120 [ 745.256989][T13398] __kmalloc_noprof+0xd2/0x510 [ 745.257039][T13398] tomoyo_realpath_from_path+0xc2/0x6e0 [ 745.257088][T13398] ? tomoyo_profile+0x47/0x60 [ 745.257139][T13398] tomoyo_path_number_perm+0x245/0x580 [ 745.257174][T13398] ? tomoyo_path_number_perm+0x237/0x580 [ 745.257215][T13398] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 745.257251][T13398] ? futex_wake+0x1ad/0x530 [ 745.257341][T13398] ? find_held_lock+0x2b/0x80 [ 745.257375][T13398] ? hook_file_ioctl_common+0x145/0x410 [ 745.257423][T13398] ? __fget_files+0x20e/0x3c0 [ 745.257469][T13398] security_file_ioctl+0x9b/0x240 [ 745.257510][T13398] __x64_sys_ioctl+0xb7/0x210 [ 745.257568][T13398] do_syscall_64+0xcd/0x490 [ 745.257610][T13398] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 745.257645][T13398] RIP: 0033:0x7f3aa698ebe9 [ 745.257673][T13398] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 745.257708][T13398] RSP: 002b:00007f3aa7797038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 745.257741][T13398] RAX: ffffffffffffffda RBX: 00007f3aa6bb5fa0 RCX: 00007f3aa698ebe9 [ 745.257764][T13398] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000007 [ 745.257785][T13398] RBP: 00007f3aa6a11e19 R08: 0000000000000000 R09: 0000000000000000 [ 745.257806][T13398] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 745.257826][T13398] R13: 00007f3aa6bb6038 R14: 00007f3aa6bb5fa0 R15: 00007ffcef608fb8 [ 745.257871][T13398] [ 745.257886][T13398] ERROR: Out of memory at tomoyo_realpath_from_path. [ 747.322245][T13423] input: jJǸ-¶š9ã%vø“û¨lÐQ  J86Ö‘ as /devices/virtual/input/input9 [ 747.403344][T13419] FAULT_INJECTION: forcing a failure. [ 747.403344][T13419] name failslab, interval 1, probability 0, space 0, times 0 [ 747.444491][T13419] CPU: 0 UID: 0 PID: 13419 Comm: syz.2.1376 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(full) [ 747.444542][T13419] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 747.444564][T13419] Call Trace: [ 747.444575][T13419] [ 747.444588][T13419] dump_stack_lvl+0x16c/0x1f0 [ 747.444634][T13419] should_fail_ex+0x512/0x640 [ 747.444674][T13419] ? fs_reclaim_acquire+0xae/0x150 [ 747.444729][T13419] should_failslab+0xc2/0x120 [ 747.444781][T13419] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 747.444855][T13419] ? getname_flags.part.0+0x4c/0x550 [ 747.444914][T13419] getname_flags.part.0+0x4c/0x550 [ 747.444973][T13419] getname_flags+0x93/0xf0 [ 747.445011][T13419] do_sys_openat2+0xb8/0x1d0 [ 747.445062][T13419] ? __pfx_do_sys_openat2+0x10/0x10 [ 747.445130][T13419] __x64_sys_openat+0x174/0x210 [ 747.445182][T13419] ? __pfx___x64_sys_openat+0x10/0x10 [ 747.445253][T13419] do_syscall_64+0xcd/0x490 [ 747.445294][T13419] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 747.445328][T13419] RIP: 0033:0x7f093b78ebe9 [ 747.445355][T13419] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 747.445389][T13419] RSP: 002b:00007f093c60a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 747.445422][T13419] RAX: ffffffffffffffda RBX: 00007f093b9b5fa0 RCX: 00007f093b78ebe9 [ 747.445445][T13419] RDX: 0000000000000200 RSI: 0000200000000380 RDI: ffffffffffffff9c [ 747.445467][T13419] RBP: 00007f093b811e19 R08: 0000000000000000 R09: 0000000000000000 [ 747.445489][T13419] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 747.445509][T13419] R13: 00007f093b9b6038 R14: 00007f093b9b5fa0 R15: 00007ffe061d8dc8 [ 747.445554][T13419] [ 749.834754][T13464] FAULT_INJECTION: forcing a failure. [ 749.834754][T13464] name failslab, interval 1, probability 0, space 0, times 0 [ 749.923617][T13464] CPU: 1 UID: 0 PID: 13464 Comm: syz.0.1389 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(full) [ 749.923665][T13464] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 749.923686][T13464] Call Trace: [ 749.923697][T13464] [ 749.923710][T13464] dump_stack_lvl+0x16c/0x1f0 [ 749.923755][T13464] should_fail_ex+0x512/0x640 [ 749.923797][T13464] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 749.923840][T13464] should_failslab+0xc2/0x120 [ 749.923885][T13464] __kmalloc_cache_noprof+0x6a/0x3e0 [ 749.923921][T13464] ? read_tsc+0x9/0x20 [ 749.923960][T13464] ? ktime_get_mono_fast_ns+0x1be/0x3c0 [ 749.923999][T13464] ? init_srcu_struct_fields+0x97a/0xde0 [ 749.924050][T13464] ? do_init_timer+0xc9/0x110 [ 749.924095][T13464] init_srcu_struct_fields+0x97a/0xde0 [ 749.924147][T13464] ? lockdep_init_map_type+0x5c/0x280 [ 749.924197][T13464] kvm_dev_ioctl+0x7a0/0x1af0 [ 749.924237][T13464] ? find_held_lock+0x2b/0x80 [ 749.924272][T13464] ? hook_file_ioctl_common+0x145/0x410 [ 749.924312][T13464] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 749.924352][T13464] ? __fget_files+0x20e/0x3c0 [ 749.924394][T13464] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 749.924431][T13464] __x64_sys_ioctl+0x18e/0x210 [ 749.924497][T13464] do_syscall_64+0xcd/0x490 [ 749.924538][T13464] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 749.924574][T13464] RIP: 0033:0x7f771138ebe9 [ 749.924601][T13464] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 749.924634][T13464] RSP: 002b:00007f7712278038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 749.924667][T13464] RAX: ffffffffffffffda RBX: 00007f77115b5fa0 RCX: 00007f771138ebe9 [ 749.924689][T13464] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000007 [ 749.924708][T13464] RBP: 00007f7711411e19 R08: 0000000000000000 R09: 0000000000000000 [ 749.924729][T13464] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 749.924749][T13464] R13: 00007f77115b6038 R14: 00007f77115b5fa0 R15: 00007ffc04a9c628 [ 749.924789][T13464] [ 751.120172][T13476] FAULT_INJECTION: forcing a failure. [ 751.120172][T13476] name fail_futex, interval 1, probability 0, space 0, times 0 [ 751.135351][T13476] CPU: 1 UID: 0 PID: 13476 Comm: syz.0.1391 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(full) [ 751.135387][T13476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 751.135403][T13476] Call Trace: [ 751.135412][T13476] [ 751.135422][T13476] dump_stack_lvl+0x16c/0x1f0 [ 751.135452][T13476] should_fail_ex+0x512/0x640 [ 751.135486][T13476] get_futex_key+0x1d0/0x1560 [ 751.135518][T13476] ? __pfx_get_futex_key+0x10/0x10 [ 751.135554][T13476] ? kasan_quarantine_put+0x10a/0x240 [ 751.135582][T13476] ? lockdep_hardirqs_on+0x7c/0x110 [ 751.135616][T13476] futex_wait_setup+0x9d/0x550 [ 751.135662][T13476] __futex_wait+0x194/0x2f0 [ 751.135700][T13476] ? __pfx___futex_wait+0x10/0x10 [ 751.135741][T13476] ? __pfx_futex_wake_mark+0x10/0x10 [ 751.135783][T13476] ? futex_private_hash_put+0x176/0x300 [ 751.135816][T13476] ? futex_private_hash_put+0x18a/0x300 [ 751.135848][T13476] futex_wait+0xe8/0x380 [ 751.135883][T13476] ? __pfx_futex_wait+0x10/0x10 [ 751.135936][T13476] do_futex+0x229/0x350 [ 751.135967][T13476] ? __pfx_do_futex+0x10/0x10 [ 751.136006][T13476] __x64_sys_futex+0x1e0/0x4c0 [ 751.136042][T13476] ? __pfx___x64_sys_futex+0x10/0x10 [ 751.136074][T13476] ? xfd_validate_state+0x61/0x180 [ 751.136109][T13476] ? __pfx___x64_sys_mount+0x10/0x10 [ 751.136156][T13476] do_syscall_64+0xcd/0x490 [ 751.136186][T13476] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 751.136211][T13476] RIP: 0033:0x7f771138ebe9 [ 751.136230][T13476] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 751.136254][T13476] RSP: 002b:00007f77122780e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 751.136277][T13476] RAX: ffffffffffffffda RBX: 00007f77115b5fa8 RCX: 00007f771138ebe9 [ 751.136293][T13476] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f77115b5fa8 [ 751.136309][T13476] RBP: 00007f77115b5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 751.136324][T13476] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 751.136338][T13476] R13: 00007f77115b6038 R14: 00007ffc04a9c540 R15: 00007ffc04a9c628 [ 751.136369][T13476] [ 751.138784][T13479] random: crng reseeded on system resumption [ 752.031301][T13488] FAULT_INJECTION: forcing a failure. [ 752.031301][T13488] name failslab, interval 1, probability 0, space 0, times 0 [ 752.064355][T13488] CPU: 0 UID: 0 PID: 13488 Comm: syz.0.1393 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(full) [ 752.064398][T13488] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 752.064417][T13488] Call Trace: [ 752.064428][T13488] [ 752.064439][T13488] dump_stack_lvl+0x16c/0x1f0 [ 752.064481][T13488] should_fail_ex+0x512/0x640 [ 752.064518][T13488] ? __kvmalloc_node_noprof+0x124/0x620 [ 752.064561][T13488] should_failslab+0xc2/0x120 [ 752.064606][T13488] __kvmalloc_node_noprof+0x137/0x620 [ 752.064645][T13488] ? __pfx___mutex_lock+0x10/0x10 [ 752.064682][T13488] ? traverse.part.0.constprop.0+0x392/0x640 [ 752.064726][T13488] ? traverse.part.0.constprop.0+0x392/0x640 [ 752.064758][T13488] traverse.part.0.constprop.0+0x392/0x640 [ 752.064807][T13488] seq_read_iter+0x932/0x12c0 [ 752.064860][T13488] seq_read+0x39e/0x4e0 [ 752.064894][T13488] ? __pfx_seq_read+0x10/0x10 [ 752.064935][T13488] ? get_pid_task+0xfc/0x250 [ 752.064997][T13488] ? __pfx_seq_read+0x10/0x10 [ 752.065029][T13488] proc_reg_read+0x240/0x330 [ 752.065084][T13488] ? __pfx_proc_reg_read+0x10/0x10 [ 752.065131][T13488] vfs_read+0x1e4/0xc60 [ 752.065178][T13488] ? __pfx_vfs_read+0x10/0x10 [ 752.065212][T13488] ? find_held_lock+0x2b/0x80 [ 752.065244][T13488] ? __fget_files+0x204/0x3c0 [ 752.065275][T13488] ? __fget_files+0x20e/0x3c0 [ 752.065299][T13488] ? __fget_files+0x200/0x3c0 [ 752.065332][T13488] __x64_sys_pread64+0x1eb/0x250 [ 752.065362][T13488] ? __pfx___x64_sys_pread64+0x10/0x10 [ 752.065400][T13488] do_syscall_64+0xcd/0x490 [ 752.065429][T13488] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 752.065453][T13488] RIP: 0033:0x7f771138ebe9 [ 752.065472][T13488] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 752.065496][T13488] RSP: 002b:00007f7712257038 EFLAGS: 00000246 ORIG_RAX: 0000000000000011 [ 752.065518][T13488] RAX: ffffffffffffffda RBX: 00007f77115b6090 RCX: 00007f771138ebe9 [ 752.065535][T13488] RDX: 0000000000000008 RSI: 0000000000000000 RDI: 0000000000000005 [ 752.065549][T13488] RBP: 00007f7712257090 R08: 0000000000000000 R09: 0000000000000000 [ 752.065564][T13488] R10: 000000000000ffff R11: 0000000000000246 R12: 0000000000000001 [ 752.065579][T13488] R13: 00007f77115b6128 R14: 00007f77115b6090 R15: 00007ffc04a9c628 [ 752.065609][T13488] [ 753.308089][T13498] FAULT_INJECTION: forcing a failure. [ 753.308089][T13498] name failslab, interval 1, probability 0, space 0, times 0 [ 753.388493][T13498] CPU: 1 UID: 0 PID: 13498 Comm: syz.0.1396 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(full) [ 753.388528][T13498] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 753.388542][T13498] Call Trace: [ 753.388550][T13498] [ 753.388559][T13498] dump_stack_lvl+0x16c/0x1f0 [ 753.388590][T13498] should_fail_ex+0x512/0x640 [ 753.388619][T13498] ? kmem_cache_alloc_bulk_noprof+0x6d/0xbc0 [ 753.388652][T13498] should_failslab+0xc2/0x120 [ 753.388684][T13498] kmem_cache_alloc_bulk_noprof+0x85/0xbc0 [ 753.388717][T13498] ? trace_kmem_cache_alloc+0x28/0xc0 [ 753.388752][T13498] ? kmem_cache_alloc_noprof+0x21e/0x3b0 [ 753.388780][T13498] ? mas_alloc_nodes+0x18b/0x8b0 [ 753.388805][T13498] ? mas_alloc_nodes+0x2f1/0x8b0 [ 753.388825][T13498] mas_alloc_nodes+0x2f1/0x8b0 [ 753.388853][T13498] mas_node_count_gfp+0x105/0x130 [ 753.388877][T13498] mas_preallocate+0x7e0/0xde0 [ 753.388906][T13498] ? __memcg_slab_post_alloc_hook+0x482/0x960 [ 753.388945][T13498] ? __pfx_mas_preallocate+0x10/0x10 [ 753.388992][T13498] ? anon_vma_name+0x81/0x2f0 [ 753.389031][T13498] __split_vma+0x34a/0x1070 [ 753.389062][T13498] ? __pfx___split_vma+0x10/0x10 [ 753.389095][T13498] ? __pfx_mas_prev+0x10/0x10 [ 753.389128][T13498] vms_gather_munmap_vmas+0x3b1/0x1340 [ 753.389161][T13498] ? __pfx_vms_gather_munmap_vmas+0x10/0x10 [ 753.389193][T13498] ? mas_walk+0x6f5/0x980 [ 753.389225][T13498] __mmap_region+0x436/0x27b0 [ 753.389259][T13498] ? __pfx___mmap_region+0x10/0x10 [ 753.389296][T13498] ? __lock_acquire+0xb97/0x1ce0 [ 753.389332][T13498] ? find_held_lock+0x2b/0x80 [ 753.389361][T13498] ? lock_acquire+0x179/0x350 [ 753.389392][T13498] ? find_held_lock+0x2b/0x80 [ 753.389418][T13498] ? mark_held_locks+0x49/0x80 [ 753.389448][T13498] ? finish_task_switch.isra.0+0x221/0xc10 [ 753.389512][T13498] ? trace_cap_capable+0x18d/0x200 [ 753.389563][T13498] mmap_region+0x1ab/0x3f0 [ 753.389591][T13498] ? __get_unmapped_area+0x267/0x440 [ 753.389632][T13498] do_mmap+0xa3e/0x1210 [ 753.389671][T13498] ? __pfx_do_mmap+0x10/0x10 [ 753.389706][T13498] ? __pfx_down_write_killable+0x10/0x10 [ 753.389743][T13498] vm_mmap_pgoff+0x29e/0x470 [ 753.389783][T13498] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 753.389822][T13498] ? __fget_files+0x20e/0x3c0 [ 753.389856][T13498] ksys_mmap_pgoff+0x7d/0x5c0 [ 753.389889][T13498] ? __pfx_ksys_write+0x10/0x10 [ 753.389920][T13498] __x64_sys_mmap+0x125/0x190 [ 753.389961][T13498] do_syscall_64+0xcd/0x490 [ 753.389995][T13498] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 753.390020][T13498] RIP: 0033:0x7f771138ebe9 [ 753.390039][T13498] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 753.390062][T13498] RSP: 002b:00007f7712278038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 753.390084][T13498] RAX: ffffffffffffffda RBX: 00007f77115b5fa0 RCX: 00007f771138ebe9 [ 753.390100][T13498] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 753.390115][T13498] RBP: 00007f7712278090 R08: 0000000000000002 R09: 0000000000008000 [ 753.390130][T13498] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000001 [ 753.390145][T13498] R13: 00007f77115b6038 R14: 00007f77115b5fa0 R15: 00007ffc04a9c628 [ 753.390175][T13498] [ 754.591047][T13514] FAULT_INJECTION: forcing a failure. [ 754.591047][T13514] name failslab, interval 1, probability 0, space 0, times 0 [ 754.614830][T13514] CPU: 1 UID: 0 PID: 13514 Comm: syz.2.1398 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(full) [ 754.614878][T13514] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 754.614897][T13514] Call Trace: [ 754.614908][T13514] [ 754.614921][T13514] dump_stack_lvl+0x16c/0x1f0 [ 754.614962][T13514] should_fail_ex+0x512/0x640 [ 754.614998][T13514] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 754.615041][T13514] should_failslab+0xc2/0x120 [ 754.615083][T13514] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 754.615123][T13514] ? apparmor_capable+0x114/0x1d0 [ 754.615153][T13514] ? prepare_creds+0x2c/0x7d0 [ 754.615216][T13514] prepare_creds+0x2c/0x7d0 [ 754.615270][T13514] __do_sys_landlock_restrict_self+0x67d/0x910 [ 754.615327][T13514] ? rcu_is_watching+0x12/0xc0 [ 754.615366][T13514] do_syscall_64+0xcd/0x490 [ 754.615410][T13514] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 754.615445][T13514] RIP: 0033:0x7f093b78ebe9 [ 754.615473][T13514] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 754.615511][T13514] RSP: 002b:00007f093c60a038 EFLAGS: 00000246 ORIG_RAX: 00000000000001be [ 754.615542][T13514] RAX: ffffffffffffffda RBX: 00007f093b9b5fa0 RCX: 00007f093b78ebe9 [ 754.615564][T13514] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffffffffffffffff [ 754.615584][T13514] RBP: 00007f093b811e19 R08: 0000000000000000 R09: 0000000000000000 [ 754.615604][T13514] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 754.615623][T13514] R13: 00007f093b9b6038 R14: 00007f093b9b5fa0 R15: 00007ffe061d8dc8 [ 754.615666][T13514] [ 757.986952][T13567] netlink: 504 bytes leftover after parsing attributes in process `syz.1.1411'. [ 758.061968][T13567] netlink: 504 bytes leftover after parsing attributes in process `syz.1.1411'. [ 758.194111][ T1306] ieee802154 phy0 wpan0: encryption failed: -22 [ 758.217786][ T1306] ieee802154 phy1 wpan1: encryption failed: -22 [ 761.191830][T13636] device-mapper: ioctl: dm_ctl_ioctl: unknown command 0xeffffd32 [ 761.622384][T13646] FAULT_INJECTION: forcing a failure. [ 761.622384][T13646] name fail_futex, interval 1, probability 0, space 0, times 0 [ 761.646569][T13646] CPU: 0 UID: 0 PID: 13646 Comm: syz.2.1430 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(full) [ 761.646617][T13646] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 761.646637][T13646] Call Trace: [ 761.646650][T13646] [ 761.646664][T13646] dump_stack_lvl+0x16c/0x1f0 [ 761.646706][T13646] should_fail_ex+0x512/0x640 [ 761.646754][T13646] get_futex_key+0x1d0/0x1560 [ 761.646801][T13646] ? __pfx_get_futex_key+0x10/0x10 [ 761.646856][T13646] futex_wake+0xea/0x530 [ 761.646907][T13646] ? rcu_is_watching+0x12/0xc0 [ 761.646943][T13646] ? __pfx_futex_wake+0x10/0x10 [ 761.646996][T13646] ? kmem_cache_free+0x2d1/0x4d0 [ 761.647032][T13646] ? fd_install+0x225/0x750 [ 761.647065][T13646] ? putname+0x154/0x1a0 [ 761.647116][T13646] do_futex+0x1e3/0x350 [ 761.647161][T13646] ? __pfx_do_futex+0x10/0x10 [ 761.647212][T13646] __x64_sys_futex+0x1e0/0x4c0 [ 761.647259][T13646] ? __x64_sys_openat+0x174/0x210 [ 761.647312][T13646] ? __pfx___x64_sys_futex+0x10/0x10 [ 761.647386][T13646] do_syscall_64+0xcd/0x490 [ 761.647429][T13646] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 761.647464][T13646] RIP: 0033:0x7f093b78ebe9 [ 761.647492][T13646] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 761.647527][T13646] RSP: 002b:00007f093c60a0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 761.647561][T13646] RAX: ffffffffffffffda RBX: 00007f093b9b5fa8 RCX: 00007f093b78ebe9 [ 761.647583][T13646] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f093b9b5fac [ 761.647605][T13646] RBP: 00007f093b9b5fa0 R08: 00007f093c60b000 R09: 0000000000000000 [ 761.647628][T13646] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000 [ 761.647649][T13646] R13: 00007f093b9b6038 R14: 00007ffe061d8ce0 R15: 00007ffe061d8dc8 [ 761.647692][T13646] [ 761.844030][ C0] vkms_vblank_simulate: vblank timer overrun [ 763.836555][T13680] netlink: 98 bytes leftover after parsing attributes in process `syz.2.1440'. [ 763.871854][T13680] netlink: 250 bytes leftover after parsing attributes in process `syz.2.1440'. [ 764.133636][T13684] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input10 [ 764.439269][T13672] random: crng reseeded on system resumption [ 764.947901][T13697] FAULT_INJECTION: forcing a failure. [ 764.947901][T13697] name fail_futex, interval 1, probability 0, space 0, times 0 [ 764.992015][T13697] CPU: 1 UID: 0 PID: 13697 Comm: syz.1.1444 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(full) [ 764.992067][T13697] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 764.992089][T13697] Call Trace: [ 764.992101][T13697] [ 764.992115][T13697] dump_stack_lvl+0x16c/0x1f0 [ 764.992167][T13697] should_fail_ex+0x512/0x640 [ 764.992213][T13697] get_futex_key+0x1d0/0x1560 [ 764.992259][T13697] ? __pfx_get_futex_key+0x10/0x10 [ 764.992322][T13697] futex_wake+0xea/0x530 [ 764.992374][T13697] ? rcu_is_watching+0x12/0xc0 [ 764.992412][T13697] ? __pfx_futex_wake+0x10/0x10 [ 764.992466][T13697] ? kmem_cache_free+0x2d1/0x4d0 [ 764.992504][T13697] ? fd_install+0x225/0x750 [ 764.992539][T13697] ? putname+0x154/0x1a0 [ 764.992594][T13697] do_futex+0x1e3/0x350 [ 764.992639][T13697] ? __pfx_do_futex+0x10/0x10 [ 764.992695][T13697] __x64_sys_futex+0x1e0/0x4c0 [ 764.992742][T13697] ? __x64_sys_openat+0x174/0x210 [ 764.992798][T13697] ? __pfx___x64_sys_futex+0x10/0x10 [ 764.992843][T13697] ? xfd_validate_state+0x61/0x180 [ 764.992908][T13697] do_syscall_64+0xcd/0x490 [ 764.992952][T13697] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 764.992988][T13697] RIP: 0033:0x7f3aa698ebe9 [ 764.993016][T13697] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 764.993051][T13697] RSP: 002b:00007f3aa77970e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 764.993085][T13697] RAX: ffffffffffffffda RBX: 00007f3aa6bb5fa8 RCX: 00007f3aa698ebe9 [ 764.993109][T13697] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f3aa6bb5fac [ 764.993132][T13697] RBP: 00007f3aa6bb5fa0 R08: 00007f3aa7798000 R09: 0000000000000000 [ 764.993154][T13697] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000 [ 764.993176][T13697] R13: 00007f3aa6bb6038 R14: 00007ffcef608ed0 R15: 00007ffcef608fb8 [ 764.993221][T13697] syzkaller syzkaller login: [ 771.945731][T13788] FAULT_INJECTION: forcing a failure. [ 771.945731][T13788] name failslab, interval 1, probability 0, space 0, times 0 [ 772.001784][T13788] CPU: 0 UID: 0 PID: 13788 Comm: syz.2.1467 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(full) [ 772.001838][T13788] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 772.001859][T13788] Call Trace: [ 772.001871][T13788] [ 772.001886][T13788] dump_stack_lvl+0x16c/0x1f0 [ 772.001931][T13788] should_fail_ex+0x512/0x640 [ 772.001972][T13788] ? fs_reclaim_acquire+0xae/0x150 [ 772.002026][T13788] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 772.002068][T13788] should_failslab+0xc2/0x120 [ 772.002113][T13788] __kmalloc_noprof+0xd2/0x510 [ 772.002163][T13788] tomoyo_realpath_from_path+0xc2/0x6e0 [ 772.002221][T13788] tomoyo_check_open_permission+0x2ab/0x3c0 [ 772.002261][T13788] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 772.002343][T13788] ? do_raw_spin_lock+0x12c/0x2b0 [ 772.002420][T13788] tomoyo_file_open+0x6b/0x90 [ 772.002477][T13788] security_file_open+0x84/0x1e0 [ 772.002519][T13788] do_dentry_open+0x596/0x1530 [ 772.002575][T13788] vfs_open+0x82/0x3f0 [ 772.002633][T13788] path_openat+0x1de4/0x2cb0 [ 772.002688][T13788] ? __pfx_path_openat+0x10/0x10 [ 772.002741][T13788] do_filp_open+0x20b/0x470 [ 772.002784][T13788] ? __pfx_do_filp_open+0x10/0x10 [ 772.002855][T13788] ? alloc_fd+0x471/0x7d0 [ 772.002905][T13788] do_sys_openat2+0x11b/0x1d0 [ 772.002956][T13788] ? __pfx_do_sys_openat2+0x10/0x10 [ 772.003024][T13788] __x64_sys_openat+0x174/0x210 [ 772.003078][T13788] ? __pfx___x64_sys_openat+0x10/0x10 [ 772.003150][T13788] do_syscall_64+0xcd/0x490 [ 772.003194][T13788] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 772.003229][T13788] RIP: 0033:0x7f093b78ebe9 [ 772.003257][T13788] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 772.003293][T13788] RSP: 002b:00007f093c60a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 772.003326][T13788] RAX: ffffffffffffffda RBX: 00007f093b9b5fa0 RCX: 00007f093b78ebe9 [ 772.003349][T13788] RDX: 0000000000000200 RSI: 0000200000000380 RDI: ffffffffffffff9c [ 772.003371][T13788] RBP: 00007f093b811e19 R08: 0000000000000000 R09: 0000000000000000 [ 772.003392][T13788] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 772.003524][T13788] R13: 00007f093b9b6038 R14: 00007f093b9b5fa0 R15: 00007ffe061d8dc8 [ 772.003571][T13788] [ 772.003738][T13788] ERROR: Out of memory at tomoyo_realpath_from_path. [ 772.912658][T13803] program syz.3.1471 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 774.001800][T13814] FAULT_INJECTION: forcing a failure. [ 774.001800][T13814] name failslab, interval 1, probability 0, space 0, times 0 [ 774.014644][T13814] CPU: 0 UID: 0 PID: 13814 Comm: syz.1.1474 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(full) [ 774.014698][T13814] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 774.014791][T13814] Call Trace: [ 774.014807][T13814] [ 774.014822][T13814] dump_stack_lvl+0x16c/0x1f0 [ 774.014867][T13814] should_fail_ex+0x512/0x640 [ 774.014908][T13814] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 774.014950][T13814] should_failslab+0xc2/0x120 [ 774.014995][T13814] __kmalloc_cache_noprof+0x6a/0x3e0 [ 774.015031][T13814] ? ptmx_open+0xdb/0x360 [ 774.015059][T13814] ? alloc_tty_struct+0x96/0x8c0 [ 774.015109][T13814] alloc_tty_struct+0x96/0x8c0 [ 774.015148][T13814] ? __pfx___mutex_lock+0x10/0x10 [ 774.015188][T13814] ? __pfx_alloc_tty_struct+0x10/0x10 [ 774.015233][T13814] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 774.015282][T13814] tty_init_dev.part.0+0x1e/0x500 [ 774.015330][T13814] tty_init_dev+0x60/0x80 [ 774.015372][T13814] ? __pfx_ptmx_open+0x10/0x10 [ 774.015400][T13814] ptmx_open+0x10d/0x360 [ 774.015441][T13814] ? __pfx_ptmx_open+0x10/0x10 [ 774.015473][T13814] chrdev_open+0x231/0x6a0 [ 774.015518][T13814] ? __pfx_apparmor_file_open+0x10/0x10 [ 774.015575][T13814] ? __pfx_chrdev_open+0x10/0x10 [ 774.015622][T13814] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 774.015670][T13814] do_dentry_open+0x97f/0x1530 [ 774.015713][T13814] ? __pfx_chrdev_open+0x10/0x10 [ 774.015766][T13814] vfs_open+0x82/0x3f0 [ 774.015823][T13814] path_openat+0x1de4/0x2cb0 [ 774.015880][T13814] ? __pfx_path_openat+0x10/0x10 [ 774.015935][T13814] do_filp_open+0x20b/0x470 [ 774.015978][T13814] ? __pfx_do_filp_open+0x10/0x10 [ 774.016051][T13814] ? alloc_fd+0x471/0x7d0 [ 774.016101][T13814] do_sys_openat2+0x11b/0x1d0 [ 774.016152][T13814] ? __pfx_do_sys_openat2+0x10/0x10 [ 774.016225][T13814] __x64_sys_openat+0x174/0x210 [ 774.016279][T13814] ? __pfx___x64_sys_openat+0x10/0x10 [ 774.016353][T13814] do_syscall_64+0xcd/0x490 [ 774.016396][T13814] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 774.016441][T13814] RIP: 0033:0x7f3aa698ebe9 [ 774.016470][T13814] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 774.016506][T13814] RSP: 002b:00007f3aa7797038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 774.016541][T13814] RAX: ffffffffffffffda RBX: 00007f3aa6bb5fa0 RCX: 00007f3aa698ebe9 [ 774.016564][T13814] RDX: 0000000000040001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 774.016588][T13814] RBP: 00007f3aa6a11e19 R08: 0000000000000000 R09: 0000000000000000 [ 774.016609][T13814] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 774.016631][T13814] R13: 00007f3aa6bb6038 R14: 00007f3aa6bb5fa0 R15: 00007ffcef608fb8 [ 774.016677][T13814] [ 774.986134][T13816] netlink: 338 bytes leftover after parsing attributes in process `syz.2.1472'. [ 776.091427][T13828] FAULT_INJECTION: forcing a failure. [ 776.091427][T13828] name failslab, interval 1, probability 0, space 0, times 0 [ 776.258141][T13828] CPU: 1 UID: 0 PID: 13828 Comm: syz.3.1476 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(full) [ 776.258187][T13828] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 776.258207][T13828] Call Trace: [ 776.258218][T13828] [ 776.258231][T13828] dump_stack_lvl+0x16c/0x1f0 [ 776.258274][T13828] should_fail_ex+0x512/0x640 [ 776.258314][T13828] ? __kmalloc_noprof+0xbf/0x510 [ 776.258357][T13828] ? __d_alloc+0x673/0xae0 [ 776.258395][T13828] should_failslab+0xc2/0x120 [ 776.258439][T13828] __kmalloc_noprof+0xd2/0x510 [ 776.258476][T13828] ? __pfx_stack_trace_save+0x10/0x10 [ 776.258515][T13828] ? __d_alloc+0x32/0xae0 [ 776.258560][T13828] __d_alloc+0x673/0xae0 [ 776.258608][T13828] d_alloc_parallel+0x111/0x1480 [ 776.258672][T13828] ? find_held_lock+0x2b/0x80 [ 776.258709][T13828] ? __pfx_d_alloc_parallel+0x10/0x10 [ 776.258766][T13828] ? __d_lookup+0x266/0x4a0 [ 776.258826][T13828] lookup_open.isra.0+0x665/0x1580 [ 776.258870][T13828] ? __pfx_lookup_open.isra.0+0x10/0x10 [ 776.258925][T13828] ? __pfx_down_write+0x10/0x10 [ 776.258965][T13828] ? mnt_get_write_access+0x20c/0x300 [ 776.259032][T13828] path_openat+0x893/0x2cb0 [ 776.259082][T13828] ? do_syscall_64+0xcd/0x490 [ 776.259117][T13828] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 776.259159][T13828] ? __pfx_path_openat+0x10/0x10 [ 776.259202][T13828] ? __lock_acquire+0xb97/0x1ce0 [ 776.259250][T13828] do_filp_open+0x20b/0x470 [ 776.259291][T13828] ? __pfx_do_filp_open+0x10/0x10 [ 776.259361][T13828] ? _raw_spin_unlock+0x28/0x50 [ 776.259393][T13828] ? alloc_fd+0x471/0x7d0 [ 776.259442][T13828] do_sys_openat2+0x11b/0x1d0 [ 776.259495][T13828] ? __pfx_do_sys_openat2+0x10/0x10 [ 776.259550][T13828] ? __fget_files+0x20e/0x3c0 [ 776.259596][T13828] __x64_sys_open+0x153/0x1e0 [ 776.259648][T13828] ? __pfx___x64_sys_open+0x10/0x10 [ 776.259710][T13828] ? rcu_is_watching+0x12/0xc0 [ 776.259748][T13828] do_syscall_64+0xcd/0x490 [ 776.259790][T13828] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 776.259824][T13828] RIP: 0033:0x7f3dff98ebe9 [ 776.259851][T13828] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 776.259884][T13828] RSP: 002b:00007f3e00782038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 776.259916][T13828] RAX: ffffffffffffffda RBX: 00007f3dffbb5fa0 RCX: 00007f3dff98ebe9 [ 776.259939][T13828] RDX: 00000000000000d1 RSI: 0000000000103040 RDI: 0000200000000380 [ 776.259960][T13828] RBP: 00007f3e00782090 R08: 0000000000000000 R09: 0000000000000000 [ 776.259981][T13828] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 776.260009][T13828] R13: 00007f3dffbb6038 R14: 00007f3dffbb5fa0 R15: 00007ffd4c85e768 [ 776.260053][T13828] [ 779.417444][T13865] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1484'. [ 780.239609][T13874] FAULT_INJECTION: forcing a failure. [ 780.239609][T13874] name fail_futex, interval 1, probability 0, space 0, times 0 [ 780.315522][T13874] CPU: 1 UID: 0 PID: 13874 Comm: syz.3.1487 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(full) [ 780.315574][T13874] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 780.315595][T13874] Call Trace: [ 780.315607][T13874] [ 780.315622][T13874] dump_stack_lvl+0x16c/0x1f0 [ 780.315666][T13874] should_fail_ex+0x512/0x640 [ 780.315715][T13874] get_futex_key+0x1d0/0x1560 [ 780.315768][T13874] ? __pfx_get_futex_key+0x10/0x10 [ 780.315826][T13874] futex_wake+0xea/0x530 [ 780.315877][T13874] ? rcu_is_watching+0x12/0xc0 [ 780.315914][T13874] ? __pfx_futex_wake+0x10/0x10 [ 780.315969][T13874] ? kmem_cache_free+0x2d1/0x4d0 [ 780.316015][T13874] ? fd_install+0x225/0x750 [ 780.316049][T13874] ? putname+0x154/0x1a0 [ 780.316102][T13874] do_futex+0x1e3/0x350 [ 780.316147][T13874] ? __pfx_do_futex+0x10/0x10 [ 780.316203][T13874] __x64_sys_futex+0x1e0/0x4c0 [ 780.316250][T13874] ? __x64_sys_openat+0x174/0x210 [ 780.316304][T13874] ? __pfx___x64_sys_futex+0x10/0x10 [ 780.316365][T13874] do_syscall_64+0xcd/0x490 [ 780.316410][T13874] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 780.316446][T13874] RIP: 0033:0x7f3dff98ebe9 [ 780.316472][T13874] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 780.316508][T13874] RSP: 002b:00007f3e007820e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 780.316541][T13874] RAX: ffffffffffffffda RBX: 00007f3dffbb5fa8 RCX: 00007f3dff98ebe9 [ 780.316564][T13874] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f3dffbb5fac [ 780.316587][T13874] RBP: 00007f3dffbb5fa0 R08: 00007f3e00783000 R09: 0000000000000000 [ 780.316609][T13874] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000 [ 780.316631][T13874] R13: 00007f3dffbb6038 R14: 00007ffd4c85e680 R15: 00007ffd4c85e768 [ 780.316675][T13874] [ 782.448341][T13889] FAULT_INJECTION: forcing a failure. [ 782.448341][T13889] name failslab, interval 1, probability 0, space 0, times 0 [ 782.461629][T13889] CPU: 0 UID: 0 PID: 13889 Comm: syz.1.1492 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(full) [ 782.461678][T13889] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 782.461700][T13889] Call Trace: [ 782.461712][T13889] [ 782.461728][T13889] dump_stack_lvl+0x16c/0x1f0 [ 782.461772][T13889] should_fail_ex+0x512/0x640 [ 782.461813][T13889] ? fs_reclaim_acquire+0xae/0x150 [ 782.461867][T13889] should_failslab+0xc2/0x120 [ 782.461911][T13889] __kmalloc_cache_noprof+0x6a/0x3e0 [ 782.461947][T13889] ? tomoyo_init_log+0x197/0x2140 [ 782.461994][T13889] tomoyo_init_log+0x197/0x2140 [ 782.462040][T13889] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 782.462105][T13889] ? __pfx_tomoyo_init_log+0x10/0x10 [ 782.462147][T13889] ? tomoyo_profile+0x47/0x60 [ 782.462192][T13889] ? tomoyo_domain_quota_is_ok+0x2f6/0x5a0 [ 782.462233][T13889] tomoyo_supervisor+0x302/0x13b0 [ 782.462290][T13889] ? __pfx_tomoyo_supervisor+0x10/0x10 [ 782.462368][T13889] ? tomoyo_check_path_acl+0xad/0x210 [ 782.462405][T13889] ? tomoyo_check_acl+0x1f7/0x410 [ 782.462472][T13889] tomoyo_path_permission+0x270/0x3b0 [ 782.462512][T13889] tomoyo_check_open_permission+0x37b/0x3c0 [ 782.462552][T13889] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 782.462636][T13889] ? do_raw_spin_lock+0x12c/0x2b0 [ 782.462699][T13889] tomoyo_file_open+0x6b/0x90 [ 782.462751][T13889] security_file_open+0x84/0x1e0 [ 782.462792][T13889] do_dentry_open+0x596/0x1530 [ 782.462845][T13889] vfs_open+0x82/0x3f0 [ 782.462899][T13889] path_openat+0x1de4/0x2cb0 [ 782.462952][T13889] ? __pfx_path_openat+0x10/0x10 [ 782.463005][T13889] do_filp_open+0x20b/0x470 [ 782.463047][T13889] ? __pfx_do_filp_open+0x10/0x10 [ 782.463115][T13889] ? alloc_fd+0x471/0x7d0 [ 782.463155][T13889] do_sys_openat2+0x11b/0x1d0 [ 782.463195][T13889] ? __pfx_do_sys_openat2+0x10/0x10 [ 782.463244][T13889] __x64_sys_openat+0x174/0x210 [ 782.463285][T13889] ? __pfx___x64_sys_openat+0x10/0x10 [ 782.463335][T13889] do_syscall_64+0xcd/0x490 [ 782.463366][T13889] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 782.463391][T13889] RIP: 0033:0x7f3aa698ebe9 [ 782.463410][T13889] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 782.463434][T13889] RSP: 002b:00007f3aa7797038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 782.463457][T13889] RAX: ffffffffffffffda RBX: 00007f3aa6bb5fa0 RCX: 00007f3aa698ebe9 [ 782.463483][T13889] RDX: 0000000000000200 RSI: 0000200000000380 RDI: ffffffffffffff9c [ 782.463499][T13889] RBP: 00007f3aa6a11e19 R08: 0000000000000000 R09: 0000000000000000 [ 782.463514][T13889] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 782.463529][T13889] R13: 00007f3aa6bb6038 R14: 00007f3aa6bb5fa0 R15: 00007ffcef608fb8 [ 782.463560][T13889] [ 784.631030][T13929] FAULT_INJECTION: forcing a failure. [ 784.631030][T13929] name failslab, interval 1, probability 0, space 0, times 0 [ 784.649039][T13929] CPU: 0 UID: 0 PID: 13929 Comm: syz.2.1498 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(full) [ 784.649091][T13929] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 784.649112][T13929] Call Trace: [ 784.649124][T13929] [ 784.649159][T13929] dump_stack_lvl+0x16c/0x1f0 [ 784.649205][T13929] should_fail_ex+0x512/0x640 [ 784.649245][T13929] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 784.649293][T13929] should_failslab+0xc2/0x120 [ 784.649347][T13929] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 784.649390][T13929] ? vm_area_dup+0x27/0x8d0 [ 784.649434][T13929] vm_area_dup+0x27/0x8d0 [ 784.649474][T13929] copy_vma+0x4fa/0xaa0 [ 784.649521][T13929] ? __pfx_copy_vma+0x10/0x10 [ 784.649560][T13929] ? __lock_acquire+0xb97/0x1ce0 [ 784.649613][T13929] ? register_lock_class+0x41/0x4c0 [ 784.649680][T13929] ? rcu_is_watching+0x12/0xc0 [ 784.649714][T13929] ? finish_task_switch.isra.0+0x221/0xc10 [ 784.649758][T13929] copy_vma_and_data+0x1cf/0x790 [ 784.649802][T13929] ? __pfx_copy_vma_and_data+0x10/0x10 [ 784.649853][T13929] ? __vma_enter_locked+0x163/0x3f0 [ 784.649892][T13929] ? find_held_lock+0x2b/0x80 [ 784.649927][T13929] ? move_vma+0x536/0x1780 [ 784.649974][T13929] move_vma+0x548/0x1780 [ 784.650019][T13929] ? __pfx_move_vma+0x10/0x10 [ 784.650056][T13929] ? mm_get_unmapped_area+0x95/0xe0 [ 784.650108][T13929] ? shmem_get_unmapped_area+0x170/0xa00 [ 784.650144][T13929] ? cap_mmap_addr+0x4b/0x120 [ 784.650194][T13929] ? bpf_lsm_mmap_addr+0x9/0x10 [ 784.650245][T13929] ? security_mmap_addr+0x6c/0x1e0 [ 784.650285][T13929] ? __get_unmapped_area+0x267/0x440 [ 784.650349][T13929] ? vrm_set_new_addr+0x208/0x290 [ 784.650393][T13929] mremap_to+0x1b7/0x450 [ 784.650435][T13929] do_mremap+0x1004/0x1f80 [ 784.650493][T13929] ? __pfx_do_mremap+0x10/0x10 [ 784.650544][T13929] ? up_write+0x1b2/0x520 [ 784.650601][T13929] __do_sys_mremap+0x119/0x170 [ 784.650639][T13929] ? __pfx___do_sys_mremap+0x10/0x10 [ 784.650692][T13929] ? __x64_sys_futex+0x1e0/0x4c0 [ 784.650761][T13929] do_syscall_64+0xcd/0x490 [ 784.650805][T13929] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 784.650840][T13929] RIP: 0033:0x7f093b78ebe9 [ 784.650868][T13929] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 784.650905][T13929] RSP: 002b:00007f093c5a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019 [ 784.650939][T13929] RAX: ffffffffffffffda RBX: 00007f093b9b6270 RCX: 00007f093b78ebe9 [ 784.650963][T13929] RDX: 0000000000000008 RSI: 0000000000000002 RDI: 0000000000000000 [ 784.650983][T13929] RBP: 00007f093b811e19 R08: 00007effffffb000 R09: 0000000000000000 [ 784.651004][T13929] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 784.651024][T13929] R13: 00007f093b9b6308 R14: 00007f093b9b6270 R15: 00007ffe061d8dc8 [ 784.651068][T13929] [ 785.825709][T13933] FAULT_INJECTION: forcing a failure. [ 785.825709][T13933] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 785.880622][T13933] CPU: 0 UID: 0 PID: 13933 Comm: syz.1.1500 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(full) [ 785.880667][T13933] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 785.880686][T13933] Call Trace: [ 785.880697][T13933] [ 785.880710][T13933] dump_stack_lvl+0x16c/0x1f0 [ 785.880754][T13933] should_fail_ex+0x512/0x640 [ 785.880798][T13933] _copy_to_user+0x32/0xd0 [ 785.880847][T13933] simple_read_from_buffer+0xcb/0x170 [ 785.880886][T13933] proc_fail_nth_read+0x197/0x240 [ 785.880922][T13933] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 785.880961][T13933] ? rw_verify_area+0xcf/0x6c0 [ 785.880993][T13933] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 785.881030][T13933] vfs_read+0x1e4/0xc60 [ 785.881073][T13933] ? __pfx___mutex_lock+0x10/0x10 [ 785.881109][T13933] ? __pfx_vfs_read+0x10/0x10 [ 785.881160][T13933] ? __fget_files+0x20e/0x3c0 [ 785.881207][T13933] ksys_read+0x12a/0x250 [ 785.881244][T13933] ? __pfx_ksys_read+0x10/0x10 [ 785.881293][T13933] do_syscall_64+0xcd/0x490 [ 785.881333][T13933] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 785.881367][T13933] RIP: 0033:0x7f3aa698d5fc [ 785.881394][T13933] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 785.881434][T13933] RSP: 002b:00007f3aa7797030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 785.881465][T13933] RAX: ffffffffffffffda RBX: 00007f3aa6bb5fa0 RCX: 00007f3aa698d5fc [ 785.881487][T13933] RDX: 000000000000000f RSI: 00007f3aa77970a0 RDI: 0000000000000006 [ 785.881507][T13933] RBP: 00007f3aa7797090 R08: 0000000000000000 R09: 0000000000000000 [ 785.881527][T13933] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 785.881548][T13933] R13: 00007f3aa6bb6038 R14: 00007f3aa6bb5fa0 R15: 00007ffcef608fb8 [ 785.881593][T13933] [ 786.004141][T13938] FAULT_INJECTION: forcing a failure. [ 786.004141][T13938] name fail_futex, interval 1, probability 0, space 0, times 0 [ 786.211977][T13938] CPU: 0 UID: 0 PID: 13938 Comm: syz.2.1502 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(full) [ 786.212026][T13938] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 786.212048][T13938] Call Trace: [ 786.212059][T13938] [ 786.212073][T13938] dump_stack_lvl+0x16c/0x1f0 [ 786.212115][T13938] should_fail_ex+0x512/0x640 [ 786.212162][T13938] get_futex_key+0x1d0/0x1560 [ 786.212210][T13938] ? __pfx_get_futex_key+0x10/0x10 [ 786.212267][T13938] futex_wake+0xea/0x530 [ 786.212316][T13938] ? rcu_is_watching+0x12/0xc0 [ 786.212352][T13938] ? __pfx_futex_wake+0x10/0x10 [ 786.212414][T13938] ? kmem_cache_free+0x2d1/0x4d0 [ 786.212451][T13938] ? fd_install+0x225/0x750 [ 786.212484][T13938] ? putname+0x154/0x1a0 [ 786.212541][T13938] do_futex+0x1e3/0x350 [ 786.212585][T13938] ? __pfx_do_futex+0x10/0x10 [ 786.212643][T13938] __x64_sys_futex+0x1e0/0x4c0 [ 786.212687][T13938] ? __x64_sys_openat+0x174/0x210 [ 786.212739][T13938] ? __pfx___x64_sys_futex+0x10/0x10 [ 786.212799][T13938] do_syscall_64+0xcd/0x490 [ 786.212841][T13938] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 786.212877][T13938] RIP: 0033:0x7f093b78ebe9 [ 786.212904][T13938] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 786.212939][T13938] RSP: 002b:00007f093c60a0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 786.212971][T13938] RAX: ffffffffffffffda RBX: 00007f093b9b5fa8 RCX: 00007f093b78ebe9 [ 786.212995][T13938] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f093b9b5fac [ 786.213017][T13938] RBP: 00007f093b9b5fa0 R08: 00007f093c60b000 R09: 0000000000000000 [ 786.213038][T13938] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000 [ 786.213057][T13938] R13: 00007f093b9b6038 R14: 00007ffe061d8ce0 R15: 00007ffe061d8dc8 [ 786.213101][T13938] [ 790.057616][T13995] FAULT_INJECTION: forcing a failure. [ 790.057616][T13995] name fail_futex, interval 1, probability 0, space 0, times 0 [ 790.071308][T13995] CPU: 0 UID: 0 PID: 13995 Comm: syz.1.1515 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(full) [ 790.071343][T13995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 790.071358][T13995] Call Trace: [ 790.071366][T13995] [ 790.071376][T13995] dump_stack_lvl+0x16c/0x1f0 [ 790.071407][T13995] should_fail_ex+0x512/0x640 [ 790.071441][T13995] get_futex_key+0x1d0/0x1560 [ 790.071474][T13995] ? __pfx_get_futex_key+0x10/0x10 [ 790.071501][T13995] ? do_raw_spin_lock+0x12c/0x2b0 [ 790.071541][T13995] ? find_held_lock+0x2b/0x80 [ 790.071570][T13995] futex_wait_setup+0x9d/0x550 [ 790.071614][T13995] __futex_wait+0x194/0x2f0 [ 790.071652][T13995] ? __pfx___futex_wait+0x10/0x10 [ 790.071686][T13995] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 790.071710][T13995] ? lockdep_hardirqs_on+0x7c/0x110 [ 790.071738][T13995] ? __pfx_futex_wake_mark+0x10/0x10 [ 790.071779][T13995] ? futex_private_hash_put+0x176/0x300 [ 790.071818][T13995] ? futex_private_hash_put+0x18a/0x300 [ 790.071849][T13995] futex_wait+0xe8/0x380 [ 790.071888][T13995] ? __pfx_futex_wait+0x10/0x10 [ 790.071930][T13995] ? kmem_cache_free+0x2d1/0x4d0 [ 790.071957][T13995] ? fd_install+0x225/0x750 [ 790.071990][T13995] do_futex+0x229/0x350 [ 790.072021][T13995] ? __pfx_do_futex+0x10/0x10 [ 790.072060][T13995] __x64_sys_futex+0x1e0/0x4c0 [ 790.072093][T13995] ? fdget_pos+0x2b8/0x370 [ 790.072129][T13995] ? __pfx___x64_sys_futex+0x10/0x10 [ 790.072159][T13995] ? ksys_read+0x1ac/0x250 [ 790.072187][T13995] ? __pfx_ksys_read+0x10/0x10 [ 790.072223][T13995] do_syscall_64+0xcd/0x490 [ 790.072252][T13995] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 790.072277][T13995] RIP: 0033:0x7f3aa698ebe9 [ 790.072296][T13995] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 790.072320][T13995] RSP: 002b:00007f3aa77970e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 790.072342][T13995] RAX: ffffffffffffffda RBX: 00007f3aa6bb5fa8 RCX: 00007f3aa698ebe9 [ 790.072359][T13995] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f3aa6bb5fa8 [ 790.072374][T13995] RBP: 00007f3aa6bb5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 790.072388][T13995] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 790.072402][T13995] R13: 00007f3aa6bb6038 R14: 00007ffcef608ed0 R15: 00007ffcef608fb8 [ 790.072432][T13995] [ 791.865853][T14020] FAULT_INJECTION: forcing a failure. [ 791.865853][T14020] name fail_futex, interval 1, probability 0, space 0, times 0 [ 791.904733][T14020] CPU: 0 UID: 0 PID: 14020 Comm: syz.1.1520 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(full) [ 791.904785][T14020] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 791.904807][T14020] Call Trace: [ 791.904819][T14020] [ 791.904833][T14020] dump_stack_lvl+0x16c/0x1f0 [ 791.904875][T14020] should_fail_ex+0x512/0x640 [ 791.904939][T14020] get_futex_key+0x1d0/0x1560 [ 791.904987][T14020] ? __pfx_get_futex_key+0x10/0x10 [ 791.905043][T14020] futex_wake+0xea/0x530 [ 791.905097][T14020] ? __pfx_futex_wake+0x10/0x10 [ 791.905152][T14020] ? errseq_sample+0x53/0x70 [ 791.905198][T14020] ? file_init_path+0x4fe/0x760 [ 791.905260][T14020] do_futex+0x1e3/0x350 [ 791.905305][T14020] ? __pfx_do_futex+0x10/0x10 [ 791.905348][T14020] ? fd_install+0x225/0x750 [ 791.905392][T14020] __x64_sys_futex+0x1e0/0x4c0 [ 791.905438][T14020] ? __sys_socket+0xac/0x260 [ 791.905488][T14020] ? __pfx___x64_sys_futex+0x10/0x10 [ 791.905532][T14020] ? xfd_validate_state+0x61/0x180 [ 791.905590][T14020] ? __pfx_do_writev+0x10/0x10 [ 791.905638][T14020] do_syscall_64+0xcd/0x490 [ 791.905680][T14020] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 791.905714][T14020] RIP: 0033:0x7f3aa698ebe9 [ 791.905741][T14020] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 791.905774][T14020] RSP: 002b:00007f3aa77970e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 791.905806][T14020] RAX: ffffffffffffffda RBX: 00007f3aa6bb5fa8 RCX: 00007f3aa698ebe9 [ 791.905829][T14020] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f3aa6bb5fac [ 791.905851][T14020] RBP: 00007f3aa6bb5fa0 R08: 00007f3aa7798000 R09: 0000000000000000 [ 791.905872][T14020] R10: 000000000000000a R11: 0000000000000246 R12: 0000000000000000 [ 791.905893][T14020] R13: 00007f3aa6bb6038 R14: 00007ffcef608ed0 R15: 00007ffcef608fb8 [ 791.905946][T14020] [ 794.491521][T14051] FAULT_INJECTION: forcing a failure. [ 794.491521][T14051] name failslab, interval 1, probability 0, space 0, times 0 [ 794.541692][T14051] CPU: 1 UID: 0 PID: 14051 Comm: syz.3.1527 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(full) [ 794.541745][T14051] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 794.541772][T14051] Call Trace: [ 794.541785][T14051] [ 794.541800][T14051] dump_stack_lvl+0x16c/0x1f0 [ 794.541849][T14051] should_fail_ex+0x512/0x640 [ 794.541901][T14051] ? fs_reclaim_acquire+0xae/0x150 [ 794.541958][T14051] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 794.542004][T14051] should_failslab+0xc2/0x120 [ 794.542051][T14051] __kmalloc_noprof+0xd2/0x510 [ 794.542101][T14051] tomoyo_realpath_from_path+0xc2/0x6e0 [ 794.542149][T14051] ? tomoyo_profile+0x47/0x60 [ 794.542203][T14051] tomoyo_path_number_perm+0x245/0x580 [ 794.542239][T14051] ? tomoyo_path_number_perm+0x237/0x580 [ 794.542278][T14051] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 794.542322][T14051] ? futex_wake+0x1ad/0x530 [ 794.542414][T14051] ? find_held_lock+0x2b/0x80 [ 794.542449][T14051] ? hook_file_ioctl_common+0x145/0x410 [ 794.542497][T14051] ? __fget_files+0x20e/0x3c0 [ 794.542549][T14051] security_file_ioctl+0x9b/0x240 [ 794.542589][T14051] __x64_sys_ioctl+0xb7/0x210 [ 794.542648][T14051] do_syscall_64+0xcd/0x490 [ 794.542691][T14051] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 794.542727][T14051] RIP: 0033:0x7f3dff98ebe9 [ 794.542754][T14051] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 794.542799][T14051] RSP: 002b:00007f3e00782038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 794.542832][T14051] RAX: ffffffffffffffda RBX: 00007f3dffbb5fa0 RCX: 00007f3dff98ebe9 [ 794.542855][T14051] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000007 [ 794.542876][T14051] RBP: 00007f3dffa11e19 R08: 0000000000000000 R09: 0000000000000000 [ 794.542898][T14051] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 794.542918][T14051] R13: 00007f3dffbb6038 R14: 00007f3dffbb5fa0 R15: 00007ffd4c85e768 [ 794.542961][T14051] [ 794.543016][T14051] ERROR: Out of memory at tomoyo_realpath_from_path. [ 799.393525][T14105] FAULT_INJECTION: forcing a failure. [ 799.393525][T14105] name failslab, interval 1, probability 0, space 0, times 0 [ 799.457686][T14105] CPU: 0 UID: 0 PID: 14105 Comm: syz.1.1541 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(full) [ 799.457732][T14105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 799.457752][T14105] Call Trace: [ 799.457763][T14105] [ 799.457776][T14105] dump_stack_lvl+0x16c/0x1f0 [ 799.457819][T14105] should_fail_ex+0x512/0x640 [ 799.457857][T14105] ? fs_reclaim_acquire+0xae/0x150 [ 799.457915][T14105] ? tomoyo_encode2+0x100/0x3e0 [ 799.457953][T14105] should_failslab+0xc2/0x120 [ 799.457995][T14105] __kmalloc_noprof+0xd2/0x510 [ 799.458034][T14105] ? d_absolute_path+0x136/0x1a0 [ 799.458088][T14105] tomoyo_encode2+0x100/0x3e0 [ 799.458134][T14105] tomoyo_encode+0x29/0x50 [ 799.458173][T14105] tomoyo_realpath_from_path+0x18f/0x6e0 [ 799.458229][T14105] tomoyo_path_number_perm+0x245/0x580 [ 799.458264][T14105] ? tomoyo_path_number_perm+0x237/0x580 [ 799.458314][T14105] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 799.458351][T14105] ? find_held_lock+0x2b/0x80 [ 799.458423][T14105] ? __pfx___might_resched+0x10/0x10 [ 799.458455][T14105] ? hook_file_ioctl_common+0x145/0x410 [ 799.458513][T14105] security_file_ioctl+0x9b/0x240 [ 799.458552][T14105] __x64_sys_ioctl+0xb7/0x210 [ 799.458608][T14105] do_syscall_64+0xcd/0x490 [ 799.458650][T14105] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 799.458688][T14105] RIP: 0033:0x7f3aa698ebe9 [ 799.458714][T14105] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 799.458747][T14105] RSP: 002b:00007f3aa7797038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 799.458778][T14105] RAX: ffffffffffffffda RBX: 00007f3aa6bb5fa0 RCX: 00007f3aa698ebe9 [ 799.458800][T14105] RDX: 0000000000000000 RSI: 00000000c0585611 RDI: 0000000000000000 [ 799.458820][T14105] RBP: 00007f3aa7797090 R08: 0000000000000000 R09: 0000000000000000 [ 799.458841][T14105] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 799.458862][T14105] R13: 00007f3aa6bb6038 R14: 00007f3aa6bb5fa0 R15: 00007ffcef608fb8 [ 799.458906][T14105] [ 799.669015][ C0] vkms_vblank_simulate: vblank timer overrun [ 799.748298][T14105] ERROR: Out of memory at tomoyo_realpath_from_path. [ 800.006028][T14109] FAULT_INJECTION: forcing a failure. [ 800.006028][T14109] name fail_futex, interval 1, probability 0, space 0, times 0 [ 800.038414][T14109] CPU: 1 UID: 0 PID: 14109 Comm: syz.3.1542 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(full) [ 800.038450][T14109] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 800.038465][T14109] Call Trace: [ 800.038474][T14109] [ 800.038485][T14109] dump_stack_lvl+0x16c/0x1f0 [ 800.038516][T14109] should_fail_ex+0x512/0x640 [ 800.038550][T14109] get_futex_key+0x1d0/0x1560 [ 800.038584][T14109] ? __pfx_get_futex_key+0x10/0x10 [ 800.038638][T14109] futex_wake+0xea/0x530 [ 800.038687][T14109] ? rcu_is_watching+0x12/0xc0 [ 800.038725][T14109] ? __pfx_futex_wake+0x10/0x10 [ 800.038769][T14109] ? kmem_cache_free+0x2d1/0x4d0 [ 800.038797][T14109] ? fd_install+0x225/0x750 [ 800.038822][T14109] ? putname+0x154/0x1a0 [ 800.038860][T14109] do_futex+0x1e3/0x350 [ 800.038892][T14109] ? __pfx_do_futex+0x10/0x10 [ 800.038930][T14109] __x64_sys_futex+0x1e0/0x4c0 [ 800.038964][T14109] ? __x64_sys_openat+0x174/0x210 [ 800.039005][T14109] ? __pfx___x64_sys_futex+0x10/0x10 [ 800.039048][T14109] do_syscall_64+0xcd/0x490 [ 800.039079][T14109] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 800.039103][T14109] RIP: 0033:0x7f3dff98ebe9 [ 800.039123][T14109] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 800.039147][T14109] RSP: 002b:00007f3e007820e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 800.039169][T14109] RAX: ffffffffffffffda RBX: 00007f3dffbb5fa8 RCX: 00007f3dff98ebe9 [ 800.039184][T14109] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f3dffbb5fac [ 800.039199][T14109] RBP: 00007f3dffbb5fa0 R08: 00007f3e00783000 R09: 0000000000000000 [ 800.039215][T14109] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000 [ 800.039239][T14109] R13: 00007f3dffbb6038 R14: 00007ffd4c85e680 R15: 00007ffd4c85e768 [ 800.039269][T14109] [ 800.299375][T14112] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1543'. [ 801.186850][T14121] FAULT_INJECTION: forcing a failure. [ 801.186850][T14121] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 801.229143][T14121] CPU: 0 UID: 0 PID: 14121 Comm: syz.1.1546 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(full) [ 801.229192][T14121] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 801.229211][T14121] Call Trace: [ 801.229223][T14121] [ 801.229235][T14121] dump_stack_lvl+0x16c/0x1f0 [ 801.229276][T14121] should_fail_ex+0x512/0x640 [ 801.229321][T14121] _copy_to_user+0x32/0xd0 [ 801.229371][T14121] simple_read_from_buffer+0xcb/0x170 [ 801.229408][T14121] proc_fail_nth_read+0x197/0x240 [ 801.229446][T14121] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 801.229485][T14121] ? rw_verify_area+0xcf/0x6c0 [ 801.229519][T14121] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 801.229555][T14121] vfs_read+0x1e4/0xc60 [ 801.229599][T14121] ? __pfx___mutex_lock+0x10/0x10 [ 801.229640][T14121] ? __pfx_vfs_read+0x10/0x10 [ 801.229690][T14121] ? __fget_files+0x20e/0x3c0 [ 801.229739][T14121] ksys_read+0x12a/0x250 [ 801.229777][T14121] ? __pfx_ksys_read+0x10/0x10 [ 801.229812][T14121] ? syscall_user_dispatch+0x78/0x140 [ 801.229879][T14121] do_syscall_64+0xcd/0x490 [ 801.229921][T14121] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 801.229956][T14121] RIP: 0033:0x7f3aa698d5fc [ 801.229983][T14121] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 801.230015][T14121] RSP: 002b:00007f3aa7797030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 801.230045][T14121] RAX: ffffffffffffffda RBX: 00007f3aa6bb5fa0 RCX: 00007f3aa698d5fc [ 801.230067][T14121] RDX: 000000000000000f RSI: 00007f3aa77970a0 RDI: 0000000000000005 [ 801.230087][T14121] RBP: 00007f3aa7797090 R08: 0000000000000000 R09: 0000000000000000 [ 801.230107][T14121] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 801.230135][T14121] R13: 00007f3aa6bb6038 R14: 00007f3aa6bb5fa0 R15: 00007ffcef608fb8 [ 801.230178][T14121] [ 801.431947][ C0] vkms_vblank_simulate: vblank timer overrun [ 802.189842][T14128] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input12 [ 802.583275][T14125] FAULT_INJECTION: forcing a failure. [ 802.583275][T14125] name failslab, interval 1, probability 0, space 0, times 0 [ 802.623201][T14125] CPU: 1 UID: 0 PID: 14125 Comm: syz.1.1547 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(full) [ 802.623251][T14125] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 802.623272][T14125] Call Trace: [ 802.623285][T14125] [ 802.623299][T14125] dump_stack_lvl+0x16c/0x1f0 [ 802.623343][T14125] should_fail_ex+0x512/0x640 [ 802.623384][T14125] ? fs_reclaim_acquire+0xae/0x150 [ 802.623439][T14125] should_failslab+0xc2/0x120 [ 802.623485][T14125] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 802.623528][T14125] ? __kernfs_new_node+0xd2/0x8e0 [ 802.623577][T14125] __kernfs_new_node+0xd2/0x8e0 [ 802.623626][T14125] ? __pfx___kernfs_new_node+0x10/0x10 [ 802.623681][T14125] ? find_held_lock+0x2b/0x80 [ 802.623716][T14125] ? kernfs_root+0xee/0x2a0 [ 802.623768][T14125] kernfs_new_node+0x13c/0x1e0 [ 802.623842][T14125] __kernfs_create_file+0x53/0x350 [ 802.623883][T14125] sysfs_add_file_mode_ns+0x207/0x3c0 [ 802.623935][T14125] internal_create_group+0x578/0xf30 [ 802.623994][T14125] ? __pfx_internal_create_group+0x10/0x10 [ 802.624054][T14125] sysfs_slab_add+0x1a3/0x1e0 [ 802.624093][T14125] do_kmem_cache_create+0x529/0x720 [ 802.624135][T14125] ? __kmem_cache_create_args+0x205/0x390 [ 802.624177][T14125] __kmem_cache_create_args+0x225/0x390 [ 802.624220][T14125] mon_text_open+0x313/0x4f0 [ 802.624253][T14125] ? __pfx_mon_text_open+0x10/0x10 [ 802.624282][T14125] ? __debugfs_file_get+0x1fe/0x840 [ 802.624337][T14125] ? __pfx_mon_text_ctor+0x10/0x10 [ 802.624391][T14125] ? __pfx_apparmor_file_open+0x10/0x10 [ 802.624443][T14125] ? lockdown_is_locked_down+0x3f/0x130 [ 802.624491][T14125] ? bpf_lsm_locked_down+0x9/0x10 [ 802.624529][T14125] ? __pfx_mon_text_open+0x10/0x10 [ 802.624557][T14125] full_proxy_open_regular+0x1b9/0x360 [ 802.624614][T14125] do_dentry_open+0x97f/0x1530 [ 802.624658][T14125] ? __pfx_full_proxy_open_regular+0x10/0x10 [ 802.624720][T14125] vfs_open+0x82/0x3f0 [ 802.624775][T14125] path_openat+0x1de4/0x2cb0 [ 802.624841][T14125] ? __pfx_path_openat+0x10/0x10 [ 802.624893][T14125] do_filp_open+0x20b/0x470 [ 802.624936][T14125] ? __pfx_do_filp_open+0x10/0x10 [ 802.625010][T14125] ? alloc_fd+0x471/0x7d0 [ 802.625056][T14125] do_sys_openat2+0x11b/0x1d0 [ 802.625107][T14125] ? __pfx_do_sys_openat2+0x10/0x10 [ 802.625176][T14125] __x64_sys_openat+0x174/0x210 [ 802.625229][T14125] ? __pfx___x64_sys_openat+0x10/0x10 [ 802.625300][T14125] do_syscall_64+0xcd/0x490 [ 802.625343][T14125] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 802.625379][T14125] RIP: 0033:0x7f3aa698ebe9 [ 802.625407][T14125] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 802.625442][T14125] RSP: 002b:00007f3aa7797038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 802.625474][T14125] RAX: ffffffffffffffda RBX: 00007f3aa6bb5fa0 RCX: 00007f3aa698ebe9 [ 802.625497][T14125] RDX: 0000000000000200 RSI: 0000200000000380 RDI: ffffffffffffff9c [ 802.625519][T14125] RBP: 00007f3aa6a11e19 R08: 0000000000000000 R09: 0000000000000000 [ 802.625541][T14125] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 802.625562][T14125] R13: 00007f3aa6bb6038 R14: 00007f3aa6bb5fa0 R15: 00007ffcef608fb8 [ 802.625608][T14125] [ 802.627539][T14125] SLUB: Unable to add cache mon_text_ffff88802a8d0c00 to sysfs [ 803.605231][T14141] FAULT_INJECTION: forcing a failure. [ 803.605231][T14141] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 803.789302][T14141] CPU: 1 UID: 0 PID: 14141 Comm: syz.2.1550 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(full) [ 803.789336][T14141] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 803.789351][T14141] Call Trace: [ 803.789359][T14141] [ 803.789368][T14141] dump_stack_lvl+0x16c/0x1f0 [ 803.789399][T14141] should_fail_ex+0x512/0x640 [ 803.789431][T14141] _copy_from_user+0x2e/0xd0 [ 803.789466][T14141] snd_seq_oss_write+0x397/0x7d0 [ 803.789508][T14141] ? __pfx_snd_seq_oss_write+0x10/0x10 [ 803.789547][T14141] ? common_file_perm+0x1a9/0x340 [ 803.789575][T14141] ? bpf_lsm_file_permission+0x9/0x10 [ 803.789614][T14141] ? __pfx_odev_write+0x10/0x10 [ 803.789644][T14141] odev_write+0x51/0xa0 [ 803.789674][T14141] vfs_write+0x29d/0x1150 [ 803.789708][T14141] ? __pfx_vfs_write+0x10/0x10 [ 803.789733][T14141] ? find_held_lock+0x2b/0x80 [ 803.789820][T14141] ? __fget_files+0x204/0x3c0 [ 803.789851][T14141] ? __fget_files+0x20e/0x3c0 [ 803.789884][T14141] ksys_write+0x12a/0x250 [ 803.789911][T14141] ? __pfx_ksys_write+0x10/0x10 [ 803.789947][T14141] do_syscall_64+0xcd/0x490 [ 803.789977][T14141] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 803.790001][T14141] RIP: 0033:0x7f093b78ebe9 [ 803.790020][T14141] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 803.790043][T14141] RSP: 002b:00007f093c60a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 803.790065][T14141] RAX: ffffffffffffffda RBX: 00007f093b9b5fa0 RCX: 00007f093b78ebe9 [ 803.790088][T14141] RDX: 000000000000fe04 RSI: 0000200000000040 RDI: 0000000000000003 [ 803.790108][T14141] RBP: 00007f093c60a090 R08: 0000000000000000 R09: 0000000000000000 [ 803.790127][T14141] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 803.790145][T14141] R13: 00007f093b9b6038 R14: 00007f093b9b5fa0 R15: 00007ffe061d8dc8 [ 803.790183][T14141] [ 804.772714][T14150] FAULT_INJECTION: forcing a failure. [ 804.772714][T14150] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 805.030935][T14150] CPU: 0 UID: 0 PID: 14150 Comm: syz.2.1552 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(full) [ 805.030978][T14150] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 805.030997][T14150] Call Trace: [ 805.031008][T14150] [ 805.031020][T14150] dump_stack_lvl+0x16c/0x1f0 [ 805.031061][T14150] should_fail_ex+0x512/0x640 [ 805.031105][T14150] _copy_to_iter+0x463/0x16f0 [ 805.031161][T14150] ? __pfx__copy_to_iter+0x10/0x10 [ 805.031230][T14150] ? const_folio_flags+0x5b/0x100 [ 805.031269][T14150] ? folio_mark_accessed+0xc1/0xc00 [ 805.031314][T14150] ? __pfx_folio_mark_accessed+0x10/0x10 [ 805.031372][T14150] copy_page_to_iter+0x12a/0x1e0 [ 805.031424][T14150] filemap_read+0x6b1/0xe40 [ 805.031485][T14150] ? __pfx_filemap_read+0x10/0x10 [ 805.031557][T14150] ? __pfx_down_read+0x10/0x10 [ 805.031607][T14150] ? __pfx__kstrtoull+0x10/0x10 [ 805.031641][T14150] ? __pfx_aa_file_perm+0x10/0x10 [ 805.031691][T14150] blkdev_read_iter+0x1ac/0x500 [ 805.031735][T14150] do_iter_readv_writev+0x735/0x950 [ 805.031777][T14150] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 805.031825][T14150] ? bpf_lsm_file_permission+0x9/0x10 [ 805.031871][T14150] ? security_file_permission+0x71/0x210 [ 805.031911][T14150] ? rw_verify_area+0xcf/0x6c0 [ 805.031949][T14150] vfs_readv+0x4cb/0x8b0 [ 805.031992][T14150] ? __pfx_vfs_readv+0x10/0x10 [ 805.032059][T14150] ? __fget_files+0x20e/0x3c0 [ 805.032106][T14150] ? do_readv+0x132/0x340 [ 805.032137][T14150] do_readv+0x132/0x340 [ 805.032172][T14150] ? __pfx_do_readv+0x10/0x10 [ 805.032206][T14150] ? ksys_write+0x1ac/0x250 [ 805.032244][T14150] ? __pfx_ksys_write+0x10/0x10 [ 805.032288][T14150] __x64_sys_preadv2+0x11f/0x160 [ 805.032334][T14150] do_syscall_64+0xcd/0x490 [ 805.032370][T14150] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 805.032401][T14150] RIP: 0033:0x7f093b78ebe9 [ 805.032427][T14150] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 805.032460][T14150] RSP: 002b:00007f093c5e9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000147 [ 805.032490][T14150] RAX: ffffffffffffffda RBX: 00007f093b9b6090 RCX: 00007f093b78ebe9 [ 805.032512][T14150] RDX: 0000000000000006 RSI: 0000200000000080 RDI: 0000000000000003 [ 805.032533][T14150] RBP: 00007f093c5e9090 R08: 0000000000000000 R09: 000000000000002f [ 805.032553][T14150] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000002 [ 805.032572][T14150] R13: 00007f093b9b6128 R14: 00007f093b9b6090 R15: 00007ffe061d8dc8 [ 805.032621][T14150] [ 805.307757][ C0] vkms_vblank_simulate: vblank timer overrun [ 806.670051][T14156] [ 806.715293][T14157] [ 807.923089][T14167] FAULT_INJECTION: forcing a failure. [ 807.923089][T14167] name fail_futex, interval 1, probability 0, space 0, times 0 [ 808.007292][T14167] CPU: 1 UID: 0 PID: 14167 Comm: syz.2.1557 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(full) [ 808.007342][T14167] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 808.007363][T14167] Call Trace: [ 808.007375][T14167] [ 808.007388][T14167] dump_stack_lvl+0x16c/0x1f0 [ 808.007432][T14167] should_fail_ex+0x512/0x640 [ 808.007480][T14167] get_futex_key+0x1d0/0x1560 [ 808.007529][T14167] ? __pfx_get_futex_key+0x10/0x10 [ 808.007596][T14167] futex_wake+0xea/0x530 [ 808.007647][T14167] ? rcu_is_watching+0x12/0xc0 [ 808.007685][T14167] ? __pfx_futex_wake+0x10/0x10 [ 808.007740][T14167] ? kmem_cache_free+0x2d1/0x4d0 [ 808.007778][T14167] ? fd_install+0x225/0x750 [ 808.007811][T14167] ? putname+0x154/0x1a0 [ 808.007864][T14167] do_futex+0x1e3/0x350 [ 808.007906][T14167] ? __pfx_do_futex+0x10/0x10 [ 808.007961][T14167] __x64_sys_futex+0x1e0/0x4c0 [ 808.008009][T14167] ? __x64_sys_openat+0x174/0x210 [ 808.008063][T14167] ? __pfx___x64_sys_futex+0x10/0x10 [ 808.008125][T14167] do_syscall_64+0xcd/0x490 [ 808.008169][T14167] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 808.008204][T14167] RIP: 0033:0x7f093b78ebe9 [ 808.008231][T14167] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 808.008266][T14167] RSP: 002b:00007f093c60a0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 808.008298][T14167] RAX: ffffffffffffffda RBX: 00007f093b9b5fa8 RCX: 00007f093b78ebe9 [ 808.008320][T14167] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f093b9b5fac [ 808.008342][T14167] RBP: 00007f093b9b5fa0 R08: 00007f093c60b000 R09: 0000000000000000 [ 808.008364][T14167] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000 [ 808.008384][T14167] R13: 00007f093b9b6038 R14: 00007ffe061d8ce0 R15: 00007ffe061d8dc8 [ 808.008428][T14167] [ 812.602696][T14196] netlink: zone id is out of range [ 812.647319][T14195] netlink: set zone limit has 8 unknown bytes [ 812.690398][T14196] netlink: del zone limit has 4 unknown bytes [ 814.474296][T14222] netlink: zone id is out of range [ 814.524532][T14222] netlink: zone id is out of range [ 816.620302][T14233] vhci_hcd: invalid port number 16 [ 816.696835][T14233] vhci_hcd: invalid port number 16 [ 817.037890][T14243] FAULT_INJECTION: forcing a failure. [ 817.037890][T14243] name failslab, interval 1, probability 0, space 0, times 0 [ 817.157022][T14243] CPU: 0 UID: 0 PID: 14243 Comm: syz.2.1578 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(full) [ 817.157069][T14243] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 817.157089][T14243] Call Trace: [ 817.157100][T14243] [ 817.157113][T14243] dump_stack_lvl+0x16c/0x1f0 [ 817.157155][T14243] should_fail_ex+0x512/0x640 [ 817.157194][T14243] ? __kmalloc_noprof+0xbf/0x510 [ 817.157236][T14243] ? sk_prot_alloc+0x1a8/0x2a0 [ 817.157279][T14243] should_failslab+0xc2/0x120 [ 817.157324][T14243] __kmalloc_noprof+0xd2/0x510 [ 817.157378][T14243] sk_prot_alloc+0x1a8/0x2a0 [ 817.157427][T14243] sk_alloc+0x36/0xc20 [ 817.157463][T14243] __netlink_create+0x5e/0x2c0 [ 817.157512][T14243] ? __wake_up+0x3f/0x60 [ 817.157552][T14243] netlink_create+0x39e/0x620 [ 817.157594][T14243] ? __pfx_genl_bind+0x10/0x10 [ 817.157634][T14243] ? __pfx_genl_unbind+0x10/0x10 [ 817.157671][T14243] ? __pfx_genl_release+0x10/0x10 [ 817.157718][T14243] __sock_create+0x335/0x8d0 [ 817.157771][T14243] __sys_socket+0x14d/0x260 [ 817.157819][T14243] ? __pfx___sys_socket+0x10/0x10 [ 817.157870][T14243] ? do_user_addr_fault+0x843/0x1370 [ 817.157930][T14243] __x64_sys_socket+0x72/0xb0 [ 817.157974][T14243] ? lockdep_hardirqs_on+0x7c/0x110 [ 817.158010][T14243] do_syscall_64+0xcd/0x490 [ 817.158050][T14243] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 817.158083][T14243] RIP: 0033:0x7f093b790b07 [ 817.158110][T14243] Code: f0 ff ff 77 06 c3 0f 1f 44 00 00 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 817.158144][T14243] RSP: 002b:00007f093c608fa8 EFLAGS: 00000286 ORIG_RAX: 0000000000000029 [ 817.158176][T14243] RAX: ffffffffffffffda RBX: 00007f093b9b5fa0 RCX: 00007f093b790b07 [ 817.158199][T14243] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 817.158219][T14243] RBP: 00000000ffffffff R08: 0000000000000000 R09: 0000000000000000 [ 817.158239][T14243] R10: 0000000000000000 R11: 0000000000000286 R12: 0000000000000000 [ 817.158259][T14243] R13: 00007f093b9b6038 R14: 00007f093b9b5fa0 R15: 00007ffe061d8dc8 [ 817.158302][T14243] [ 817.162244][T14239] FAULT_INJECTION: forcing a failure. [ 817.162244][T14239] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 817.647677][T14239] CPU: 0 UID: 0 PID: 14239 Comm: syz.1.1577 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(full) [ 817.647727][T14239] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 817.647791][T14239] Call Trace: [ 817.647804][T14239] [ 817.647818][T14239] dump_stack_lvl+0x16c/0x1f0 [ 817.647862][T14239] should_fail_ex+0x512/0x640 [ 817.647910][T14239] strncpy_from_user+0x3b/0x2e0 [ 817.647952][T14239] getname_flags.part.0+0x8f/0x550 [ 817.648012][T14239] getname_flags+0x93/0xf0 [ 817.648049][T14239] do_sys_openat2+0xb8/0x1d0 [ 817.648101][T14239] ? __pfx_do_sys_openat2+0x10/0x10 [ 817.648170][T14239] __x64_sys_openat+0x174/0x210 [ 817.648223][T14239] ? __pfx___x64_sys_openat+0x10/0x10 [ 817.648294][T14239] do_syscall_64+0xcd/0x490 [ 817.648335][T14239] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 817.648367][T14239] RIP: 0033:0x7f3aa698ebe9 [ 817.648392][T14239] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 817.648457][T14239] RSP: 002b:00007f3aa7797038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 817.648490][T14239] RAX: ffffffffffffffda RBX: 00007f3aa6bb5fa0 RCX: 00007f3aa698ebe9 [ 817.648515][T14239] RDX: 0000000000000200 RSI: 0000200000000380 RDI: ffffffffffffff9c [ 817.648538][T14239] RBP: 00007f3aa6a11e19 R08: 0000000000000000 R09: 0000000000000000 [ 817.648559][T14239] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 817.648581][T14239] R13: 00007f3aa6bb6038 R14: 00007f3aa6bb5fa0 R15: 00007ffcef608fb8 [ 817.648624][T14239] [ 819.035194][T14269] Line length is too long: Should be less than 4094 [ 819.745712][ T1306] ieee802154 phy0 wpan0: encryption failed: -22 [ 819.752726][ T1306] ieee802154 phy1 wpan1: encryption failed: -22 [ 820.314613][T14284] syz_tun: tun_chr_ioctl cmd 1074025673 [ 822.606741][T14296] FAULT_INJECTION: forcing a failure. [ 822.606741][T14296] name failslab, interval 1, probability 0, space 0, times 0 [ 822.668065][T14296] CPU: 1 UID: 0 PID: 14296 Comm: syz.0.1590 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(full) [ 822.668117][T14296] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 822.668138][T14296] Call Trace: [ 822.668151][T14296] [ 822.668165][T14296] dump_stack_lvl+0x16c/0x1f0 [ 822.668211][T14296] should_fail_ex+0x512/0x640 [ 822.668253][T14296] ? fs_reclaim_acquire+0xae/0x150 [ 822.668318][T14296] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 822.668364][T14296] should_failslab+0xc2/0x120 [ 822.668411][T14296] __kmalloc_noprof+0xd2/0x510 [ 822.668463][T14296] tomoyo_realpath_from_path+0xc2/0x6e0 [ 822.668521][T14296] tomoyo_check_open_permission+0x2ab/0x3c0 [ 822.668562][T14296] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 822.668649][T14296] ? do_raw_spin_lock+0x12c/0x2b0 [ 822.668716][T14296] tomoyo_file_open+0x6b/0x90 [ 822.668781][T14296] security_file_open+0x84/0x1e0 [ 822.668825][T14296] do_dentry_open+0x596/0x1530 [ 822.668889][T14296] vfs_open+0x82/0x3f0 [ 822.668946][T14296] path_openat+0x1de4/0x2cb0 [ 822.669005][T14296] ? __pfx_path_openat+0x10/0x10 [ 822.669057][T14296] do_filp_open+0x20b/0x470 [ 822.669100][T14296] ? __pfx_do_filp_open+0x10/0x10 [ 822.669173][T14296] ? alloc_fd+0x471/0x7d0 [ 822.669222][T14296] do_sys_openat2+0x11b/0x1d0 [ 822.669273][T14296] ? __pfx_do_sys_openat2+0x10/0x10 [ 822.669350][T14296] __x64_sys_openat+0x174/0x210 [ 822.669406][T14296] ? __pfx___x64_sys_openat+0x10/0x10 [ 822.669492][T14296] do_syscall_64+0xcd/0x490 [ 822.669535][T14296] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 822.669572][T14296] RIP: 0033:0x7f771138ebe9 [ 822.669600][T14296] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 822.669634][T14296] RSP: 002b:00007f7712278038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 822.669668][T14296] RAX: ffffffffffffffda RBX: 00007f77115b5fa0 RCX: 00007f771138ebe9 [ 822.669691][T14296] RDX: 0000000000000200 RSI: 0000200000000380 RDI: ffffffffffffff9c [ 822.669714][T14296] RBP: 00007f7711411e19 R08: 0000000000000000 R09: 0000000000000000 [ 822.669736][T14296] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 822.669757][T14296] R13: 00007f77115b6038 R14: 00007f77115b5fa0 R15: 00007ffc04a9c628 [ 822.669803][T14296] [ 822.999748][T14296] ERROR: Out of memory at tomoyo_realpath_from_path. [ 825.001865][T14317] FAULT_INJECTION: forcing a failure. [ 825.001865][T14317] name fail_futex, interval 1, probability 0, space 0, times 0 [ 825.014947][T14317] CPU: 1 UID: 0 PID: 14317 Comm: syz.1.1594 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(full) [ 825.014995][T14317] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 825.015017][T14317] Call Trace: [ 825.015029][T14317] [ 825.015042][T14317] dump_stack_lvl+0x16c/0x1f0 [ 825.015086][T14317] should_fail_ex+0x512/0x640 [ 825.015135][T14317] get_futex_key+0x1d0/0x1560 [ 825.015182][T14317] ? __pfx_get_futex_key+0x10/0x10 [ 825.015238][T14317] futex_wake+0xea/0x530 [ 825.015288][T14317] ? rcu_is_watching+0x12/0xc0 [ 825.015324][T14317] ? __pfx_futex_wake+0x10/0x10 [ 825.015379][T14317] ? kmem_cache_free+0x2d1/0x4d0 [ 825.015416][T14317] ? fd_install+0x225/0x750 [ 825.015450][T14317] ? putname+0x154/0x1a0 [ 825.015505][T14317] do_futex+0x1e3/0x350 [ 825.015548][T14317] ? __pfx_do_futex+0x10/0x10 [ 825.015603][T14317] __x64_sys_futex+0x1e0/0x4c0 [ 825.015649][T14317] ? __x64_sys_openat+0x174/0x210 [ 825.015704][T14317] ? __pfx___x64_sys_futex+0x10/0x10 [ 825.015765][T14317] do_syscall_64+0xcd/0x490 [ 825.015806][T14317] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 825.015840][T14317] RIP: 0033:0x7f3aa698ebe9 [ 825.015875][T14317] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 825.015906][T14317] RSP: 002b:00007f3aa77970e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 825.015935][T14317] RAX: ffffffffffffffda RBX: 00007f3aa6bb5fa8 RCX: 00007f3aa698ebe9 [ 825.015953][T14317] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f3aa6bb5fac [ 825.015971][T14317] RBP: 00007f3aa6bb5fa0 R08: 00007f3aa7798000 R09: 0000000000000000 [ 825.015988][T14317] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000 [ 825.016005][T14317] R13: 00007f3aa6bb6038 R14: 00007ffcef608ed0 R15: 00007ffcef608fb8 [ 825.016085][T14317] [ 826.191593][T14333] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input13 [ 828.275369][T14341] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input14 [ 829.809630][T14342] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input15 [ 832.706910][T14389] netlink: 25 bytes leftover after parsing attributes in process `syz.2.1606'. [ 834.374651][T14410] FAULT_INJECTION: forcing a failure. [ 834.374651][T14410] name failslab, interval 1, probability 0, space 0, times 0 [ 834.387711][T14410] CPU: 1 UID: 0 PID: 14410 Comm: syz.0.1613 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(full) [ 834.387744][T14410] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 834.387759][T14410] Call Trace: [ 834.387770][T14410] [ 834.387780][T14410] dump_stack_lvl+0x16c/0x1f0 [ 834.387811][T14410] should_fail_ex+0x512/0x640 [ 834.387839][T14410] ? fs_reclaim_acquire+0xae/0x150 [ 834.387877][T14410] should_failslab+0xc2/0x120 [ 834.387909][T14410] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 834.387938][T14410] ? getname_flags.part.0+0x4c/0x550 [ 834.387980][T14410] getname_flags.part.0+0x4c/0x550 [ 834.388020][T14410] getname_flags+0x93/0xf0 [ 834.388047][T14410] user_path_at+0x24/0x60 [ 834.388074][T14410] __x64_sys_mount+0x1fc/0x310 [ 834.388108][T14410] ? __pfx___x64_sys_mount+0x10/0x10 [ 834.388147][T14410] do_syscall_64+0xcd/0x490 [ 834.388177][T14410] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 834.388201][T14410] RIP: 0033:0x7f771138ebe9 [ 834.388220][T14410] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 834.388242][T14410] RSP: 002b:00007f7712278038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 834.388264][T14410] RAX: ffffffffffffffda RBX: 00007f77115b5fa0 RCX: 00007f771138ebe9 [ 834.388280][T14410] RDX: 0000200000000100 RSI: 00002000000000c0 RDI: 0000200000000040 [ 834.388295][T14410] RBP: 00007f7712278090 R08: 0000200000000240 R09: 0000000000000000 [ 834.388310][T14410] R10: 0000000000000100 R11: 0000000000000246 R12: 0000000000000001 [ 834.388324][T14410] R13: 00007f77115b6038 R14: 00007f77115b5fa0 R15: 00007ffc04a9c628 [ 834.388361][T14410] [ 834.887002][T14407] syz.1.1607 (14407): attempted to duplicate a private mapping with mremap. This is not supported. [ 835.019816][T14412] FAULT_INJECTION: forcing a failure. [ 835.019816][T14412] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 835.245332][T14412] CPU: 0 UID: 0 PID: 14412 Comm: syz.2.1612 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(full) [ 835.245375][T14412] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 835.245390][T14412] Call Trace: [ 835.245399][T14412] [ 835.245409][T14412] dump_stack_lvl+0x16c/0x1f0 [ 835.245441][T14412] should_fail_ex+0x512/0x640 [ 835.245475][T14412] strncpy_from_user+0x3b/0x2e0 [ 835.245506][T14412] getname_flags.part.0+0x8f/0x550 [ 835.245549][T14412] getname_flags+0x93/0xf0 [ 835.245575][T14412] do_sys_openat2+0xb8/0x1d0 [ 835.245611][T14412] ? __pfx_do_sys_openat2+0x10/0x10 [ 835.245659][T14412] __x64_sys_openat+0x174/0x210 [ 835.245696][T14412] ? __pfx___x64_sys_openat+0x10/0x10 [ 835.245754][T14412] do_syscall_64+0xcd/0x490 [ 835.245790][T14412] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 835.245825][T14412] RIP: 0033:0x7f093b78ebe9 [ 835.245855][T14412] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 835.245880][T14412] RSP: 002b:00007f093c5e9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 835.245901][T14412] RAX: ffffffffffffffda RBX: 00007f093b9b6090 RCX: 00007f093b78ebe9 [ 835.245917][T14412] RDX: 0000000000000200 RSI: 0000200000000380 RDI: ffffffffffffff9c [ 835.245933][T14412] RBP: 00007f093b811e19 R08: 0000000000000000 R09: 0000000000000000 [ 835.245947][T14412] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 835.245962][T14412] R13: 00007f093b9b6128 R14: 00007f093b9b6090 R15: 00007ffe061d8dc8 [ 835.245992][T14412] [ 836.221496][T14420] FAULT_INJECTION: forcing a failure. [ 836.221496][T14420] name fail_futex, interval 1, probability 0, space 0, times 0 [ 836.296411][T14420] CPU: 0 UID: 0 PID: 14420 Comm: syz.0.1615 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(full) [ 836.296446][T14420] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 836.296461][T14420] Call Trace: [ 836.296469][T14420] [ 836.296478][T14420] dump_stack_lvl+0x16c/0x1f0 [ 836.296508][T14420] should_fail_ex+0x512/0x640 [ 836.296541][T14420] get_futex_key+0x1d0/0x1560 [ 836.296573][T14420] ? __pfx_get_futex_key+0x10/0x10 [ 836.296612][T14420] futex_wake+0xea/0x530 [ 836.296658][T14420] ? rcu_is_watching+0x12/0xc0 [ 836.296684][T14420] ? __pfx_futex_wake+0x10/0x10 [ 836.296723][T14420] ? kmem_cache_free+0x2d1/0x4d0 [ 836.296751][T14420] ? fd_install+0x225/0x750 [ 836.296775][T14420] ? putname+0x154/0x1a0 [ 836.296815][T14420] do_futex+0x1e3/0x350 [ 836.296848][T14420] ? __pfx_do_futex+0x10/0x10 [ 836.296887][T14420] __x64_sys_futex+0x1e0/0x4c0 [ 836.296926][T14420] ? __x64_sys_openat+0x174/0x210 [ 836.296968][T14420] ? __pfx___x64_sys_futex+0x10/0x10 [ 836.297012][T14420] do_syscall_64+0xcd/0x490 [ 836.297043][T14420] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 836.297068][T14420] RIP: 0033:0x7f771138ebe9 [ 836.297087][T14420] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 836.297111][T14420] RSP: 002b:00007f77122780e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 836.297133][T14420] RAX: ffffffffffffffda RBX: 00007f77115b5fa8 RCX: 00007f771138ebe9 [ 836.297149][T14420] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f77115b5fac [ 836.297164][T14420] RBP: 00007f77115b5fa0 R08: 00007f7712279000 R09: 0000000000000000 [ 836.297180][T14420] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000 [ 836.297194][T14420] R13: 00007f77115b6038 R14: 00007ffc04a9c540 R15: 00007ffc04a9c628 [ 836.297224][T14420] [ 838.842291][T14443] FAULT_INJECTION: forcing a failure. [ 838.842291][T14443] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 838.927861][T14443] CPU: 0 UID: 0 PID: 14443 Comm: syz.3.1621 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(full) [ 838.927909][T14443] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 838.927928][T14443] Call Trace: [ 838.927939][T14443] [ 838.927952][T14443] dump_stack_lvl+0x16c/0x1f0 [ 838.928001][T14443] should_fail_ex+0x512/0x640 [ 838.928046][T14443] should_fail_alloc_page+0xe7/0x130 [ 838.928096][T14443] prepare_alloc_pages+0x3c2/0x610 [ 838.928144][T14443] ? rcu_is_watching+0x12/0xc0 [ 838.928182][T14443] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 838.928230][T14443] ? rcu_is_watching+0x12/0xc0 [ 838.928265][T14443] ? trace_mm_page_alloc+0x11f/0x1a0 [ 838.928318][T14443] ? __alloc_frozen_pages_noprof+0x294/0x23f0 [ 838.928364][T14443] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 838.928411][T14443] ? is_bpf_text_address+0x8a/0x1a0 [ 838.928468][T14443] ? get_il_weight+0xea/0x290 [ 838.928515][T14443] ? get_il_weight+0xf4/0x290 [ 838.928561][T14443] alloc_pages_bulk_noprof+0x71c/0x1410 [ 838.928606][T14443] ? policy_nodemask+0xea/0x4e0 [ 838.928654][T14443] ? __pfx_alloc_pages_bulk_noprof+0x10/0x10 [ 838.928698][T14443] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 838.928867][T14443] kasan_populate_vmalloc+0xf1/0x1f0 [ 838.928922][T14443] alloc_vmap_area+0x959/0x29c0 [ 838.929029][T14443] ? __pfx_alloc_vmap_area+0x10/0x10 [ 838.929091][T14443] __get_vm_area_node+0x1ca/0x330 [ 838.929152][T14443] __vmalloc_node_range_noprof+0x271/0x14b0 [ 838.929188][T14443] ? array_map_alloc+0x3b0/0x760 [ 838.929231][T14443] ? is_bpf_text_address+0x94/0x1a0 [ 838.929274][T14443] ? kernel_text_address+0x8d/0x100 [ 838.929311][T14443] ? arch_stack_walk+0xa6/0x100 [ 838.929349][T14443] ? array_map_alloc+0x3b0/0x760 [ 838.929404][T14443] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 838.929443][T14443] ? aa_get_newest_label+0xd2/0x250 [ 838.929501][T14443] ? apparmor_capable+0x114/0x1d0 [ 838.929539][T14443] ? array_map_alloc+0x3b0/0x760 [ 838.929610][T14443] __bpf_map_area_alloc+0x12e/0x200 [ 838.929666][T14443] ? array_map_alloc+0x3b0/0x760 [ 838.929716][T14443] array_map_alloc+0x3b0/0x760 [ 838.929770][T14443] map_create+0x58f/0x1f80 [ 838.929831][T14443] ? __pfx_map_create+0x10/0x10 [ 838.929877][T14443] ? __might_fault+0xe3/0x190 [ 838.929915][T14443] ? __might_fault+0xe3/0x190 [ 838.929961][T14443] ? __might_fault+0x13b/0x190 [ 838.930017][T14443] __sys_bpf+0x44d2/0x4de0 [ 838.930074][T14443] ? __pfx___sys_bpf+0x10/0x10 [ 838.930123][T14443] ? ksys_write+0x190/0x250 [ 838.930169][T14443] ? __mutex_unlock_slowpath+0x163/0x800 [ 838.930234][T14443] ? fput+0x9b/0xd0 [ 838.930282][T14443] ? ksys_write+0x1ac/0x250 [ 838.930389][T14443] ? __pfx_ksys_write+0x10/0x10 [ 838.930435][T14443] __x64_sys_bpf+0x78/0xc0 [ 838.930488][T14443] ? lockdep_hardirqs_on+0x7c/0x110 [ 838.930522][T14443] do_syscall_64+0xcd/0x490 [ 838.930563][T14443] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 838.930597][T14443] RIP: 0033:0x7f3dff98ebe9 [ 838.930624][T14443] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 838.930658][T14443] RSP: 002b:00007f3e00782038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 838.930806][T14443] RAX: ffffffffffffffda RBX: 00007f3dffbb5fa0 RCX: 00007f3dff98ebe9 [ 838.930826][T14443] RDX: 00000000000006f4 RSI: 0000200000000100 RDI: 0000000000000000 [ 838.930845][T14443] RBP: 00007f3e00782090 R08: 0000000000000000 R09: 0000000000000000 [ 838.930863][T14443] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 838.930880][T14443] R13: 00007f3dffbb6038 R14: 00007f3dffbb5fa0 R15: 00007ffd4c85e768 [ 838.930915][T14443] [ 839.603060][T14446] openvswitch: netlink: nsh attribute has unmatched MD type 0. [ 839.614458][T14446] FAULT_INJECTION: forcing a failure. [ 839.614458][T14446] name failslab, interval 1, probability 0, space 0, times 0 [ 839.627541][T14446] CPU: 0 UID: 0 PID: 14446 Comm: syz.3.1622 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(full) [ 839.627598][T14446] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 839.627621][T14446] Call Trace: [ 839.627633][T14446] [ 839.627647][T14446] dump_stack_lvl+0x16c/0x1f0 [ 839.627707][T14446] should_fail_ex+0x512/0x640 [ 839.627750][T14446] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 839.627798][T14446] should_failslab+0xc2/0x120 [ 839.627845][T14446] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 839.627895][T14446] ? find_held_lock+0x2b/0x80 [ 839.627934][T14446] ? __alloc_skb+0x2b2/0x380 [ 839.627991][T14446] __alloc_skb+0x2b2/0x380 [ 839.628024][T14446] ? __pfx___alloc_skb+0x10/0x10 [ 839.628059][T14446] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 839.628103][T14446] netlink_alloc_large_skb+0x69/0x130 [ 839.628143][T14446] netlink_sendmsg+0x6a1/0xdd0 [ 839.628204][T14446] ? __pfx_netlink_sendmsg+0x10/0x10 [ 839.628250][T14446] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 839.628311][T14446] __sys_sendto+0x4a0/0x520 [ 839.628344][T14446] ? __pfx___sys_sendto+0x10/0x10 [ 839.628391][T14446] ? fd_install+0x225/0x750 [ 839.628443][T14446] ? __pfx___sys_socket+0x10/0x10 [ 839.628493][T14446] ? xfd_validate_state+0x61/0x180 [ 839.628540][T14446] ? __pfx_ksys_write+0x10/0x10 [ 839.628585][T14446] __x64_sys_sendto+0xe0/0x1c0 [ 839.628616][T14446] ? do_syscall_64+0x91/0x490 [ 839.628653][T14446] ? lockdep_hardirqs_on+0x7c/0x110 [ 839.628688][T14446] do_syscall_64+0xcd/0x490 [ 839.628730][T14446] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 839.628764][T14446] RIP: 0033:0x7f3dff990a7c [ 839.628791][T14446] Code: 2a 5f 02 00 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 70 5f 02 00 48 8b [ 839.628824][T14446] RSP: 002b:00007f3e00780ec0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 839.628857][T14446] RAX: ffffffffffffffda RBX: 00007f3e00780fc0 RCX: 00007f3dff990a7c [ 839.628880][T14446] RDX: 0000000000000028 RSI: 00007f3e00781010 RDI: 0000000000000009 [ 839.628914][T14446] RBP: 0000000000000000 R08: 00007f3e00780f14 R09: 000000000000000c [ 839.628935][T14446] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000009 [ 839.628963][T14446] R13: 00007f3e00780f68 R14: 00007f3e00781010 R15: 0000000000000000 [ 839.629007][T14446] [ 843.306389][T14481] Invalid ELF header magic: != ELF [ 844.170957][T14491] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1631'. [ 846.530584][T14516] ima: policy update failed [ 846.555382][ T30] audit: type=1802 audit(4294967428.545:18): pid=14516 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.1638" res=0 errno=0 [ 849.919557][T14567] FAULT_INJECTION: forcing a failure. [ 849.919557][T14567] name fail_futex, interval 1, probability 0, space 0, times 0 [ 849.953657][T14567] CPU: 1 UID: 0 PID: 14567 Comm: syz.1.1651 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(full) [ 849.953704][T14567] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 849.953726][T14567] Call Trace: [ 849.953738][T14567] [ 849.953752][T14567] dump_stack_lvl+0x16c/0x1f0 [ 849.953797][T14567] should_fail_ex+0x512/0x640 [ 849.953837][T14567] ? unwind_get_return_address+0x59/0xa0 [ 849.953884][T14567] get_futex_key+0x1d0/0x1560 [ 849.953929][T14567] ? __pfx_get_futex_key+0x10/0x10 [ 849.953970][T14567] ? stack_trace_save+0x8e/0xc0 [ 849.954007][T14567] ? __pfx_stack_trace_save+0x10/0x10 [ 849.954052][T14567] futex_wait_setup+0x9d/0x550 [ 849.954235][T14567] __futex_wait+0x194/0x2f0 [ 849.954287][T14567] ? __pfx___futex_wait+0x10/0x10 [ 849.954344][T14567] ? __pfx_futex_wake_mark+0x10/0x10 [ 849.954401][T14567] ? futex_private_hash_put+0x176/0x300 [ 849.954448][T14567] ? futex_private_hash_put+0x18a/0x300 [ 849.954489][T14567] futex_wait+0xe8/0x380 [ 849.954541][T14567] ? __pfx_futex_wait+0x10/0x10 [ 849.954602][T14567] ? kmem_cache_free+0x2d1/0x4d0 [ 849.954640][T14567] ? fd_install+0x225/0x750 [ 849.954675][T14567] ? putname+0x154/0x1a0 [ 849.954730][T14567] do_futex+0x229/0x350 [ 849.954775][T14567] ? __pfx_do_futex+0x10/0x10 [ 849.954830][T14567] __x64_sys_futex+0x1e0/0x4c0 [ 849.954878][T14567] ? __x64_sys_openat+0x174/0x210 [ 849.954933][T14567] ? __pfx___x64_sys_futex+0x10/0x10 [ 849.954979][T14567] ? xfd_validate_state+0x61/0x180 [ 849.955093][T14567] do_syscall_64+0xcd/0x490 [ 849.955140][T14567] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 849.955173][T14567] RIP: 0033:0x7f3aa698ebe9 [ 849.955200][T14567] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 849.955233][T14567] RSP: 002b:00007f3aa77970e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 849.955266][T14567] RAX: ffffffffffffffda RBX: 00007f3aa6bb5fa8 RCX: 00007f3aa698ebe9 [ 849.955288][T14567] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f3aa6bb5fa8 [ 849.955310][T14567] RBP: 00007f3aa6bb5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 849.955330][T14567] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 849.955352][T14567] R13: 00007f3aa6bb6038 R14: 00007ffcef608ed0 R15: 00007ffcef608fb8 [ 849.955396][T14567] [ 851.050645][T14573] ima: policy update failed [ 851.067937][ T30] audit: type=1802 audit(4294967433.063:19): pid=14573 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.1653" res=0 errno=0 [ 853.690779][T14610] netlink: 206 bytes leftover after parsing attributes in process `syz.1.1661'. [ 854.327956][T14620] FAULT_INJECTION: forcing a failure. [ 854.327956][T14620] name fail_futex, interval 1, probability 0, space 0, times 0 [ 854.404989][T14620] CPU: 0 UID: 0 PID: 14620 Comm: syz.1.1663 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(full) [ 854.405029][T14620] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 854.405044][T14620] Call Trace: [ 854.405052][T14620] [ 854.405061][T14620] dump_stack_lvl+0x16c/0x1f0 [ 854.405092][T14620] should_fail_ex+0x512/0x640 [ 854.405127][T14620] get_futex_key+0x1d0/0x1560 [ 854.405160][T14620] ? __pfx_get_futex_key+0x10/0x10 [ 854.405199][T14620] futex_wake+0xea/0x530 [ 854.405235][T14620] ? rcu_is_watching+0x12/0xc0 [ 854.405261][T14620] ? __pfx_futex_wake+0x10/0x10 [ 854.405300][T14620] ? kmem_cache_free+0x2d1/0x4d0 [ 854.405326][T14620] ? fd_install+0x225/0x750 [ 854.405350][T14620] ? putname+0x154/0x1a0 [ 854.405406][T14620] do_futex+0x1e3/0x350 [ 854.405450][T14620] ? __pfx_do_futex+0x10/0x10 [ 854.405490][T14620] __x64_sys_futex+0x1e0/0x4c0 [ 854.405524][T14620] ? __x64_sys_openat+0x174/0x210 [ 854.405562][T14620] ? __pfx___x64_sys_futex+0x10/0x10 [ 854.405604][T14620] do_syscall_64+0xcd/0x490 [ 854.405635][T14620] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 854.405661][T14620] RIP: 0033:0x7f3aa698ebe9 [ 854.405685][T14620] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 854.405709][T14620] RSP: 002b:00007f3aa77970e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 854.405732][T14620] RAX: ffffffffffffffda RBX: 00007f3aa6bb5fa8 RCX: 00007f3aa698ebe9 [ 854.405748][T14620] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f3aa6bb5fac [ 854.405764][T14620] RBP: 00007f3aa6bb5fa0 R08: 00007f3aa7798000 R09: 0000000000000000 [ 854.405779][T14620] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000 [ 854.405794][T14620] R13: 00007f3aa6bb6038 R14: 00007ffcef608ed0 R15: 00007ffcef608fb8 [ 854.405824][T14620] [ 855.662092][T14624] FAULT_INJECTION: forcing a failure. [ 855.662092][T14624] name failslab, interval 1, probability 0, space 0, times 0 [ 855.756642][T14624] CPU: 0 UID: 0 PID: 14624 Comm: syz.3.1664 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(full) [ 855.756694][T14624] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 855.756716][T14624] Call Trace: [ 855.756729][T14624] [ 855.756742][T14624] dump_stack_lvl+0x16c/0x1f0 [ 855.756787][T14624] should_fail_ex+0x512/0x640 [ 855.756833][T14624] ? fs_reclaim_acquire+0xae/0x150 [ 855.756888][T14624] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 855.756932][T14624] should_failslab+0xc2/0x120 [ 855.756978][T14624] __kmalloc_noprof+0xd2/0x510 [ 855.757028][T14624] tomoyo_realpath_from_path+0xc2/0x6e0 [ 855.757085][T14624] tomoyo_check_open_permission+0x2ab/0x3c0 [ 855.757125][T14624] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 855.757205][T14624] ? do_raw_spin_lock+0x12c/0x2b0 [ 855.757268][T14624] tomoyo_file_open+0x6b/0x90 [ 855.757320][T14624] security_file_open+0x84/0x1e0 [ 855.757361][T14624] do_dentry_open+0x596/0x1530 [ 855.757412][T14624] vfs_open+0x82/0x3f0 [ 855.757466][T14624] path_openat+0x1de4/0x2cb0 [ 855.757519][T14624] ? __pfx_path_openat+0x10/0x10 [ 855.757572][T14624] do_filp_open+0x20b/0x470 [ 855.757608][T14624] ? __pfx_do_filp_open+0x10/0x10 [ 855.757673][T14624] ? alloc_fd+0x471/0x7d0 [ 855.757714][T14624] do_sys_openat2+0x11b/0x1d0 [ 855.757758][T14624] ? __pfx_do_sys_openat2+0x10/0x10 [ 855.757816][T14624] __x64_sys_openat+0x174/0x210 [ 855.757862][T14624] ? __pfx___x64_sys_openat+0x10/0x10 [ 855.757921][T14624] do_syscall_64+0xcd/0x490 [ 855.757957][T14624] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 855.757986][T14624] RIP: 0033:0x7f3dff98ebe9 [ 855.758009][T14624] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 855.758037][T14624] RSP: 002b:00007f3e00782038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 855.758064][T14624] RAX: ffffffffffffffda RBX: 00007f3dffbb5fa0 RCX: 00007f3dff98ebe9 [ 855.758083][T14624] RDX: 0000000000000200 RSI: 0000200000000380 RDI: ffffffffffffff9c [ 855.758101][T14624] RBP: 00007f3dffa11e19 R08: 0000000000000000 R09: 0000000000000000 [ 855.758120][T14624] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 855.758137][T14624] R13: 00007f3dffbb6038 R14: 00007f3dffbb5fa0 R15: 00007ffd4c85e768 [ 855.758174][T14624] [ 855.763277][T14624] ERROR: Out of memory at tomoyo_realpath_from_path. [ 857.259711][T14640] ima: policy update failed [ 857.287111][ T30] audit: type=1802 audit(4294967439.280:20): pid=14640 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.1668" res=0 errno=0 [ 860.802353][T14687] FAULT_INJECTION: forcing a failure. [ 860.802353][T14687] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 860.850215][T14687] CPU: 0 UID: 0 PID: 14687 Comm: syz.3.1673 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(full) [ 860.850263][T14687] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 860.850283][T14687] Call Trace: [ 860.850295][T14687] [ 860.850308][T14687] dump_stack_lvl+0x16c/0x1f0 [ 860.850351][T14687] should_fail_ex+0x512/0x640 [ 860.850398][T14687] _copy_to_user+0x32/0xd0 [ 860.850447][T14687] __do_sys_sched_getattr+0x282/0x310 [ 860.850501][T14687] ? __pfx___do_sys_sched_getattr+0x10/0x10 [ 860.850575][T14687] do_syscall_64+0xcd/0x490 [ 860.850618][T14687] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 860.850651][T14687] RIP: 0033:0x7f3dff98ebe9 [ 860.850677][T14687] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 860.850710][T14687] RSP: 002b:00007f3e00782038 EFLAGS: 00000246 ORIG_RAX: 000000000000013b [ 860.850741][T14687] RAX: ffffffffffffffda RBX: 00007f3dffbb5fa0 RCX: 00007f3dff98ebe9 [ 860.850762][T14687] RDX: 0000000000000eaf RSI: 0000200000003e00 RDI: 0000000000000000 [ 860.850784][T14687] RBP: 00007f3e00782090 R08: 0000000000000000 R09: 0000000000000000 [ 860.850804][T14687] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 860.850832][T14687] R13: 00007f3dffbb6038 R14: 00007f3dffbb5fa0 R15: 00007ffd4c85e768 [ 860.850876][T14687] [ 861.879701][T14698] FAULT_INJECTION: forcing a failure. [ 861.879701][T14698] name failslab, interval 1, probability 0, space 0, times 0 [ 861.949500][T14698] CPU: 0 UID: 0 PID: 14698 Comm: syz.1.1675 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(full) [ 861.949547][T14698] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 861.949567][T14698] Call Trace: [ 861.949579][T14698] [ 861.949598][T14698] dump_stack_lvl+0x16c/0x1f0 [ 861.949642][T14698] should_fail_ex+0x512/0x640 [ 861.949684][T14698] ? fs_reclaim_acquire+0xae/0x150 [ 861.949747][T14698] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 861.949793][T14698] should_failslab+0xc2/0x120 [ 861.949840][T14698] __kmalloc_noprof+0xd2/0x510 [ 861.949893][T14698] tomoyo_realpath_from_path+0xc2/0x6e0 [ 861.949942][T14698] ? tomoyo_profile+0x47/0x60 [ 861.949995][T14698] tomoyo_path_number_perm+0x245/0x580 [ 861.950030][T14698] ? tomoyo_path_number_perm+0x237/0x580 [ 861.950070][T14698] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 861.950108][T14698] ? futex_wake+0x1ad/0x530 [ 861.950199][T14698] ? find_held_lock+0x2b/0x80 [ 861.950233][T14698] ? hook_file_ioctl_common+0x145/0x410 [ 861.950283][T14698] ? __fget_files+0x20e/0x3c0 [ 861.950327][T14698] security_file_ioctl+0x9b/0x240 [ 861.950367][T14698] __x64_sys_ioctl+0xb7/0x210 [ 861.950424][T14698] do_syscall_64+0xcd/0x490 [ 861.950466][T14698] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 861.950499][T14698] RIP: 0033:0x7f3aa698ebe9 [ 861.950525][T14698] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 861.950560][T14698] RSP: 002b:00007f3aa7797038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 861.950592][T14698] RAX: ffffffffffffffda RBX: 00007f3aa6bb5fa0 RCX: 00007f3aa698ebe9 [ 861.950614][T14698] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000007 [ 861.950635][T14698] RBP: 00007f3aa6a11e19 R08: 0000000000000000 R09: 0000000000000000 [ 861.950656][T14698] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 861.950677][T14698] R13: 00007f3aa6bb6038 R14: 00007f3aa6bb5fa0 R15: 00007ffcef608fb8 [ 861.950729][T14698] [ 861.950761][T14698] ERROR: Out of memory at tomoyo_realpath_from_path. [ 865.318658][T14750] FAULT_INJECTION: forcing a failure. [ 865.318658][T14750] name fail_futex, interval 1, probability 0, space 0, times 0 [ 865.401351][T14750] CPU: 1 UID: 0 PID: 14750 Comm: syz.3.1681 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(full) [ 865.401400][T14750] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 865.401421][T14750] Call Trace: [ 865.401442][T14750] [ 865.401455][T14750] dump_stack_lvl+0x16c/0x1f0 [ 865.401501][T14750] should_fail_ex+0x512/0x640 [ 865.401555][T14750] get_futex_key+0x1d0/0x1560 [ 865.401602][T14750] ? __pfx_get_futex_key+0x10/0x10 [ 865.401658][T14750] futex_wake+0xea/0x530 [ 865.401714][T14750] ? rcu_is_watching+0x12/0xc0 [ 865.401749][T14750] ? __pfx_futex_wake+0x10/0x10 [ 865.401803][T14750] ? kmem_cache_free+0x2d1/0x4d0 [ 865.401841][T14750] ? fd_install+0x225/0x750 [ 865.401874][T14750] ? putname+0x154/0x1a0 [ 865.401927][T14750] do_futex+0x1e3/0x350 [ 865.401971][T14750] ? __pfx_do_futex+0x10/0x10 [ 865.402024][T14750] __x64_sys_futex+0x1e0/0x4c0 [ 865.402070][T14750] ? __x64_sys_openat+0x174/0x210 [ 865.402120][T14750] ? __pfx___x64_sys_futex+0x10/0x10 [ 865.402180][T14750] do_syscall_64+0xcd/0x490 [ 865.402222][T14750] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 865.402256][T14750] RIP: 0033:0x7f3dff98ebe9 [ 865.402306][T14750] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 865.402341][T14750] RSP: 002b:00007f3e007820e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 865.402375][T14750] RAX: ffffffffffffffda RBX: 00007f3dffbb5fa8 RCX: 00007f3dff98ebe9 [ 865.402397][T14750] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f3dffbb5fac [ 865.402418][T14750] RBP: 00007f3dffbb5fa0 R08: 00007f3e00783000 R09: 0000000000000000 [ 865.402445][T14750] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000 [ 865.402466][T14750] R13: 00007f3dffbb6038 R14: 00007ffd4c85e680 R15: 00007ffd4c85e768 [ 865.402509][T14750] [ 865.826795][T14741] ima: policy update failed [ 865.851442][ T30] audit: type=1802 audit(4294967447.826:21): pid=14741 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.1680" res=0 errno=0 [ 866.720823][T14767] FAULT_INJECTION: forcing a failure. [ 866.720823][T14767] name fail_futex, interval 1, probability 0, space 0, times 0 [ 866.793961][T14767] CPU: 0 UID: 0 PID: 14767 Comm: syz.3.1685 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(full) [ 866.794008][T14767] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 866.794030][T14767] Call Trace: [ 866.794040][T14767] [ 866.794053][T14767] dump_stack_lvl+0x16c/0x1f0 [ 866.794095][T14767] should_fail_ex+0x512/0x640 [ 866.794140][T14767] get_futex_key+0x1d0/0x1560 [ 866.794181][T14767] ? __pfx_get_futex_key+0x10/0x10 [ 866.794229][T14767] futex_wake+0xea/0x530 [ 866.794273][T14767] ? rcu_is_watching+0x12/0xc0 [ 866.794304][T14767] ? __pfx_futex_wake+0x10/0x10 [ 866.794351][T14767] ? kmem_cache_free+0x2d1/0x4d0 [ 866.794385][T14767] ? fd_install+0x225/0x750 [ 866.794415][T14767] ? putname+0x154/0x1a0 [ 866.794461][T14767] do_futex+0x1e3/0x350 [ 866.794499][T14767] ? __pfx_do_futex+0x10/0x10 [ 866.794545][T14767] __x64_sys_futex+0x1e0/0x4c0 [ 866.794585][T14767] ? __x64_sys_openat+0x174/0x210 [ 866.794641][T14767] ? __pfx___x64_sys_futex+0x10/0x10 [ 866.794694][T14767] do_syscall_64+0xcd/0x490 [ 866.794730][T14767] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 866.794760][T14767] RIP: 0033:0x7f3dff98ebe9 [ 866.794783][T14767] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 866.794814][T14767] RSP: 002b:00007f3e007820e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 866.794842][T14767] RAX: ffffffffffffffda RBX: 00007f3dffbb5fa8 RCX: 00007f3dff98ebe9 [ 866.794863][T14767] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f3dffbb5fac [ 866.794882][T14767] RBP: 00007f3dffbb5fa0 R08: 00007f3e00783000 R09: 0000000000000000 [ 866.794900][T14767] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000 [ 866.794918][T14767] R13: 00007f3dffbb6038 R14: 00007ffd4c85e680 R15: 00007ffd4c85e768 [ 866.794956][T14767] [ 869.093790][T14778] lo: entered allmulticast mode [ 869.213856][T14783] lo: left allmulticast mode [ 869.564020][T14786] FAULT_INJECTION: forcing a failure. [ 869.564020][T14786] name failslab, interval 1, probability 0, space 0, times 0 [ 869.584236][T14786] CPU: 0 UID: 0 PID: 14786 Comm: syz.1.1691 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(full) [ 869.584284][T14786] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 869.584310][T14786] Call Trace: [ 869.584321][T14786] [ 869.584335][T14786] dump_stack_lvl+0x16c/0x1f0 [ 869.584380][T14786] should_fail_ex+0x512/0x640 [ 869.584421][T14786] ? fs_reclaim_acquire+0xae/0x150 [ 869.584478][T14786] should_failslab+0xc2/0x120 [ 869.584524][T14786] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 869.584566][T14786] ? security_file_alloc+0x34/0x2b0 [ 869.584614][T14786] security_file_alloc+0x34/0x2b0 [ 869.584654][T14786] init_file+0x93/0x4c0 [ 869.584701][T14786] alloc_empty_file+0x73/0x1e0 [ 869.584750][T14786] path_openat+0xda/0x2cb0 [ 869.584787][T14786] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 869.584837][T14786] ? __pfx_path_openat+0x10/0x10 [ 869.584888][T14786] do_filp_open+0x20b/0x470 [ 869.584929][T14786] ? __pfx_do_filp_open+0x10/0x10 [ 869.584999][T14786] ? alloc_fd+0x471/0x7d0 [ 869.585040][T14786] do_sys_openat2+0x11b/0x1d0 [ 869.585090][T14786] ? __pfx_do_sys_openat2+0x10/0x10 [ 869.585167][T14786] __x64_sys_openat+0x174/0x210 [ 869.585221][T14786] ? __pfx___x64_sys_openat+0x10/0x10 [ 869.585291][T14786] do_syscall_64+0xcd/0x490 [ 869.585331][T14786] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 869.585364][T14786] RIP: 0033:0x7f3aa698ebe9 [ 869.585391][T14786] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 869.585424][T14786] RSP: 002b:00007f3aa7797038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 869.585457][T14786] RAX: ffffffffffffffda RBX: 00007f3aa6bb5fa0 RCX: 00007f3aa698ebe9 [ 869.585479][T14786] RDX: 0000000000000200 RSI: 0000200000000380 RDI: ffffffffffffff9c [ 869.585500][T14786] RBP: 00007f3aa6a11e19 R08: 0000000000000000 R09: 0000000000000000 [ 869.585520][T14786] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 869.585541][T14786] R13: 00007f3aa6bb6038 R14: 00007f3aa6bb5fa0 R15: 00007ffcef608fb8 [ 869.585582][T14786] [ 872.189271][T14822] FAULT_INJECTION: forcing a failure. [ 872.189271][T14822] name fail_futex, interval 1, probability 0, space 0, times 0 [ 872.290309][T14822] CPU: 0 UID: 0 PID: 14822 Comm: syz.2.1696 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(full) [ 872.290359][T14822] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 872.290381][T14822] Call Trace: [ 872.290394][T14822] [ 872.290409][T14822] dump_stack_lvl+0x16c/0x1f0 [ 872.290452][T14822] should_fail_ex+0x512/0x640 [ 872.290499][T14822] get_futex_key+0x1d0/0x1560 [ 872.290548][T14822] ? __pfx_get_futex_key+0x10/0x10 [ 872.290605][T14822] futex_wake+0xea/0x530 [ 872.290656][T14822] ? rcu_is_watching+0x12/0xc0 [ 872.290693][T14822] ? __pfx_futex_wake+0x10/0x10 [ 872.290775][T14822] ? kmem_cache_free+0x2d1/0x4d0 [ 872.290812][T14822] ? fd_install+0x225/0x750 [ 872.290845][T14822] ? putname+0x154/0x1a0 [ 872.290898][T14822] do_futex+0x1e3/0x350 [ 872.290942][T14822] ? __pfx_do_futex+0x10/0x10 [ 872.290997][T14822] __x64_sys_futex+0x1e0/0x4c0 [ 872.291042][T14822] ? __x64_sys_openat+0x174/0x210 [ 872.291101][T14822] ? __pfx___x64_sys_futex+0x10/0x10 [ 872.291172][T14822] do_syscall_64+0xcd/0x490 [ 872.291221][T14822] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 872.291255][T14822] RIP: 0033:0x7f093b78ebe9 [ 872.291283][T14822] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 872.291316][T14822] RSP: 002b:00007f093c60a0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 872.291349][T14822] RAX: ffffffffffffffda RBX: 00007f093b9b5fa8 RCX: 00007f093b78ebe9 [ 872.291372][T14822] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f093b9b5fac [ 872.291394][T14822] RBP: 00007f093b9b5fa0 R08: 00007f093c60b000 R09: 0000000000000000 [ 872.291421][T14822] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000 [ 872.291442][T14822] R13: 00007f093b9b6038 R14: 00007ffe061d8ce0 R15: 00007ffe061d8dc8 [ 872.291484][T14822] [ 873.087367][T14834] FAULT_INJECTION: forcing a failure. [ 873.087367][T14834] name fail_futex, interval 1, probability 0, space 0, times 0 [ 873.129331][T14834] CPU: 0 UID: 0 PID: 14834 Comm: syz.3.1701 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(full) [ 873.129380][T14834] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 873.129401][T14834] Call Trace: [ 873.129413][T14834] [ 873.129427][T14834] dump_stack_lvl+0x16c/0x1f0 [ 873.129469][T14834] should_fail_ex+0x512/0x640 [ 873.129516][T14834] get_futex_key+0x1d0/0x1560 [ 873.129564][T14834] ? __pfx_get_futex_key+0x10/0x10 [ 873.129617][T14834] futex_wake+0xea/0x530 [ 873.129667][T14834] ? rcu_is_watching+0x12/0xc0 [ 873.129702][T14834] ? __pfx_futex_wake+0x10/0x10 [ 873.129762][T14834] ? kmem_cache_free+0x2d1/0x4d0 [ 873.129799][T14834] ? fd_install+0x225/0x750 [ 873.129832][T14834] ? putname+0x154/0x1a0 [ 873.129886][T14834] do_futex+0x1e3/0x350 [ 873.129929][T14834] ? __pfx_do_futex+0x10/0x10 [ 873.129983][T14834] __x64_sys_futex+0x1e0/0x4c0 [ 873.130041][T14834] ? __x64_sys_openat+0x174/0x210 [ 873.130094][T14834] ? __pfx___x64_sys_futex+0x10/0x10 [ 873.130152][T14834] do_syscall_64+0xcd/0x490 [ 873.130193][T14834] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 873.130227][T14834] RIP: 0033:0x7f3dff98ebe9 [ 873.130254][T14834] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 873.130294][T14834] RSP: 002b:00007f3e007820e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 873.130333][T14834] RAX: ffffffffffffffda RBX: 00007f3dffbb5fa8 RCX: 00007f3dff98ebe9 [ 873.130355][T14834] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f3dffbb5fac [ 873.130376][T14834] RBP: 00007f3dffbb5fa0 R08: 00007f3e00783000 R09: 0000000000000000 [ 873.130396][T14834] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000 [ 873.130416][T14834] R13: 00007f3dffbb6038 R14: 00007ffd4c85e680 R15: 00007ffd4c85e768 [ 873.130459][T14834] [ 874.424934][T14855] syz_tun: tun_chr_ioctl cmd 21731 [ 874.728591][T12329] Bluetooth: hci2: unexpected event for opcode 0x0001 [ 874.738557][T14859] FAULT_INJECTION: forcing a failure. [ 874.738557][T14859] name failslab, interval 1, probability 0, space 0, times 0 [ 874.854090][T14859] CPU: 0 UID: 0 PID: 14859 Comm: syz.1.1706 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(full) [ 874.854128][T14859] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 874.854143][T14859] Call Trace: [ 874.854151][T14859] [ 874.854161][T14859] dump_stack_lvl+0x16c/0x1f0 [ 874.854191][T14859] should_fail_ex+0x512/0x640 [ 874.854222][T14859] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 874.854253][T14859] should_failslab+0xc2/0x120 [ 874.854287][T14859] __kmalloc_cache_noprof+0x6a/0x3e0 [ 874.854310][T14859] ? rcu_is_watching+0x12/0xc0 [ 874.854334][T14859] ? s_start+0x7b/0x320 [ 874.854366][T14859] ? find_held_lock+0x2b/0x80 [ 874.854391][T14859] s_start+0x7b/0x320 [ 874.854427][T14859] seq_read_iter+0x2c1/0x12c0 [ 874.854463][T14859] seq_read+0x39e/0x4e0 [ 874.854485][T14859] ? __pfx_seq_read+0x10/0x10 [ 874.854524][T14859] ? rw_verify_area+0xcf/0x6c0 [ 874.854548][T14859] ? __pfx_seq_read+0x10/0x10 [ 874.854570][T14859] vfs_read+0x1e4/0xc60 [ 874.854600][T14859] ? __pfx___mutex_lock+0x10/0x10 [ 874.854635][T14859] ? __pfx_vfs_read+0x10/0x10 [ 874.854670][T14859] ? __fget_files+0x20e/0x3c0 [ 874.854705][T14859] ksys_read+0x12a/0x250 [ 874.854732][T14859] ? __pfx_ksys_read+0x10/0x10 [ 874.854768][T14859] do_syscall_64+0xcd/0x490 [ 874.854797][T14859] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 874.854822][T14859] RIP: 0033:0x7f3aa698ebe9 [ 874.854841][T14859] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 874.854866][T14859] RSP: 002b:00007f3aa7755038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 874.854888][T14859] RAX: ffffffffffffffda RBX: 00007f3aa6bb6180 RCX: 00007f3aa698ebe9 [ 874.854904][T14859] RDX: 0000000000000070 RSI: 0000200000001100 RDI: 0000000000000006 [ 874.854919][T14859] RBP: 00007f3aa7755090 R08: 0000000000000000 R09: 0000000000000000 [ 874.854933][T14859] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 874.854947][T14859] R13: 00007f3aa6bb6218 R14: 00007f3aa6bb6180 R15: 00007ffcef608fb8 [ 874.854978][T14859] [ 874.854990][T14859] [ 875.071698][T14859] ===================================== [ 875.077529][T14859] WARNING: bad unlock balance detected! [ 875.083206][T14859] 6.16.0-syzkaller-11952-g6e64f4580381 #0 Not tainted [ 875.090070][T14859] ------------------------------------- [ 875.095708][T14859] syz.1.1706/14859 is trying to release lock (event_mutex) at: [ 875.103457][T14859] [] seq_read_iter+0x60d/0x12c0 [ 875.110567][T14859] but there are no more locks to release! [ 875.116380][T14859] [ 875.116380][T14859] other info that might help us debug this: [ 875.124826][T14859] 2 locks held by syz.1.1706/14859: [ 875.130177][T14859] #0: ffff88807ed47b38 (&f->f_pos_lock){+.+.}-{4:4}, at: fdget_pos+0x2a2/0x370 [ 875.139469][T14859] #1: ffff888033eb09e0 (&p->lock){+.+.}-{4:4}, at: seq_read_iter+0xe1/0x12c0 [ 875.148653][T14859] [ 875.148653][T14859] stack backtrace: [ 875.154682][T14859] CPU: 0 UID: 0 PID: 14859 Comm: syz.1.1706 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(full) [ 875.154720][T14859] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 875.154737][T14859] Call Trace: [ 875.154746][T14859] [ 875.154757][T14859] dump_stack_lvl+0x116/0x1f0 [ 875.154789][T14859] ? seq_read_iter+0x60d/0x12c0 [ 875.154815][T14859] print_unlock_imbalance_bug+0x11b/0x130 [ 875.154851][T14859] ? seq_read_iter+0x60d/0x12c0 [ 875.154877][T14859] lock_release+0x242/0x2f0 [ 875.154914][T14859] __mutex_unlock_slowpath+0xa7/0x800 [ 875.154947][T14859] ? rcu_is_watching+0x12/0xc0 [ 875.154975][T14859] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 875.155009][T14859] ? rcu_is_watching+0x12/0xc0 [ 875.155036][T14859] ? kfree+0x24f/0x4d0 [ 875.155060][T14859] ? __kasan_kmalloc+0x8a/0xb0 [ 875.155095][T14859] seq_read_iter+0x60d/0x12c0 [ 875.155128][T14859] seq_read+0x39e/0x4e0 [ 875.155153][T14859] ? __pfx_seq_read+0x10/0x10 [ 875.155187][T14859] ? rw_verify_area+0xcf/0x6c0 [ 875.155214][T14859] ? __pfx_seq_read+0x10/0x10 [ 875.155239][T14859] vfs_read+0x1e4/0xc60 [ 875.155271][T14859] ? __pfx___mutex_lock+0x10/0x10 [ 875.155303][T14859] ? __pfx_vfs_read+0x10/0x10 [ 875.155338][T14859] ? __fget_files+0x20e/0x3c0 [ 875.155372][T14859] ksys_read+0x12a/0x250 [ 875.155403][T14859] ? __pfx_ksys_read+0x10/0x10 [ 875.155438][T14859] do_syscall_64+0xcd/0x490 [ 875.155470][T14859] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 875.155498][T14859] RIP: 0033:0x7f3aa698ebe9 [ 875.155520][T14859] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 875.155546][T14859] RSP: 002b:00007f3aa7755038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 875.155572][T14859] RAX: ffffffffffffffda RBX: 00007f3aa6bb6180 RCX: 00007f3aa698ebe9 [ 875.155591][T14859] RDX: 0000000000000070 RSI: 0000200000001100 RDI: 0000000000000006 [ 875.155615][T14859] RBP: 00007f3aa7755090 R08: 0000000000000000 R09: 0000000000000000 [ 875.155632][T14859] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 875.155649][T14859] R13: 00007f3aa6bb6218 R14: 00007f3aa6bb6180 R15: 00007ffcef608fb8 [ 875.155675][T14859] [ 878.807748][T12329] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0 [ 878.816352][T12329] Bluetooth: hci2: Injecting HCI hardware error event [ 878.824026][ T5867] Bluetooth: hci2: hardware error 0x00 [ 880.888833][ T5867] Bluetooth: hci2: Opcode 0x0c03 failed: -110 [ 881.131492][ T1306] ieee802154 phy0 wpan0: encryption failed: -22 [ 881.137960][ T1306] ieee802154 phy1 wpan1: encryption failed: -22