last executing test programs: 2.736817316s ago: executing program 2 (id=12814): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r0, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r0, @ANYRES64], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r0, 0x0) ioctl$KVM_X86_SETUP_MCE(r0, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r1, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8000) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) sysinfo(&(0x7f0000000040)=""/58) 1.487275051s ago: executing program 2 (id=12824): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="80000000", @ANYRES16=r6, @ANYBLOB="05000000000000000000020000000800", @ANYRES32, @ANYBLOB="2d000e008000"], 0x80}}, 0x0) 1.229266687s ago: executing program 2 (id=12832): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000140)) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r0, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r0, @ANYRES64], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r0, 0x0) ioctl$KVM_X86_SETUP_MCE(r0, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r1, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) iopl(0x0) 1.014808659s ago: executing program 3 (id=12841): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000005800)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8014) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) process_vm_writev(0x0, &(0x7f00000002c0)=[{&(0x7f0000000400)=""/70, 0x46}], 0x1, &(0x7f0000001540)=[{&(0x7f0000000480)=""/86, 0x56}, {&(0x7f0000000540)=""/4096, 0x1000}], 0x2, 0x0) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) r6 = syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301) ioctl$USBDEVFS_CONTROL(r6, 0xc0105500, &(0x7f0000000040)={0x0, 0x3, 0x1, 0x3, 0x0, 0x7, 0x0}) sendmmsg$inet6(r5, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x28181, 0x0) r7 = socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$gtp(&(0x7f00000015c0), r1) r9 = socket$xdp(0x2c, 0x3, 0x0) r10 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r10, 0x8933, &(0x7f0000000580)={'batadv_slave_1\x00', 0x0}) bind$xdp(r9, &(0x7f0000000100)={0x2c, 0x0, r11}, 0x10) sendmsg$GTP_CMD_ECHOREQ(r7, &(0x7f00000016c0)={&(0x7f0000001580)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000001680)={&(0x7f0000001600)={0x68, r8, 0x8, 0x70bd2c, 0x25dfdbfe, {}, [@GTPA_LINK={0x8, 0x1, r11}, @GTPA_LINK={0x8}, @GTPA_TID={0xc, 0x3, 0x4}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_FAMILY={0x5, 0xd, 0x26}, @GTPA_FAMILY={0x5, 0xd, 0x15}, @GTPA_PEER_ADDRESS={0x8, 0x4, @multicast2}, @GTPA_I_TEI={0x8}, @GTPA_PEER_ADDRESS={0x8, 0x4, @initdev={0xac, 0x1e, 0x65, 0x0}}, @GTPA_O_TEI={0x8, 0x9, 0x4}]}, 0x68}, 0x1, 0x0, 0x0, 0x4000041}, 0x4080) 948.252815ms ago: executing program 3 (id=12844): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x805, 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f0000005800)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8014) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r5 = socket$xdp(0x2c, 0x3, 0x0) r6 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r6, 0x8933, &(0x7f0000000580)={'batadv_slave_1\x00', 0x0}) bind$xdp(r5, &(0x7f0000000100)={0x2c, 0x0, r7}, 0x10) 895.42097ms ago: executing program 3 (id=12846): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00), 0x0, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r5, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="80000000", @ANYRES16=r7, @ANYBLOB="05000000000000000000020000000800", @ANYRES32, @ANYBLOB="2d000e008000"], 0x80}}, 0x0) 847.705075ms ago: executing program 3 (id=12849): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r4, 0x0, 0x0, 0x4) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="80000000", @ANYRES16=r6, @ANYBLOB="05000000000000000000020000000800", @ANYRES32, @ANYBLOB="2d000e008000"], 0x80}}, 0x0) 768.366643ms ago: executing program 3 (id=12854): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000005800)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8014) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r5 = syz_clone3(&(0x7f0000000380)={0x28000, &(0x7f0000000040), &(0x7f00000000c0), &(0x7f0000000100), {0x1e}, &(0x7f00000001c0)=""/185, 0xb9, &(0x7f0000000140)=""/30, &(0x7f0000000280)=[0x0], 0x1, {r1}}, 0x58) process_vm_writev(r5, &(0x7f00000002c0)=[{&(0x7f0000000400)=""/70, 0x46}], 0x1, &(0x7f0000001540)=[{&(0x7f0000000480)=""/86, 0x56}, {&(0x7f0000000540)=""/4096, 0x1000}], 0x2, 0x0) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) r6 = syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301) ioctl$USBDEVFS_CONTROL(r6, 0xc0105500, &(0x7f0000000040)={0x0, 0x3, 0x1, 0x3, 0x0, 0x7, 0x0}) r7 = socket$xdp(0x2c, 0x3, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) bind$xdp(r7, &(0x7f0000000100), 0x10) 738.468236ms ago: executing program 0 (id=12855): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x805, 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f0000005800)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8014) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r5 = socket$xdp(0x2c, 0x3, 0x0) r6 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r6, 0x8933, &(0x7f0000000580)={'batadv_slave_1\x00', 0x0}) bind$xdp(r5, &(0x7f0000000100)={0x2c, 0x0, r7}, 0x10) 704.350039ms ago: executing program 0 (id=12857): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00), 0x0, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r5, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="80000000", @ANYRES16=r7, @ANYBLOB="05000000000000000000020000000800", @ANYRES32, @ANYBLOB="2d000e008000"], 0x80}}, 0x0) 703.481269ms ago: executing program 3 (id=12859): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r0, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r0, @ANYRES64], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r0, 0x0) ioctl$KVM_X86_SETUP_MCE(r0, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r1, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8000) sysinfo(&(0x7f0000000040)=""/58) 661.898433ms ago: executing program 0 (id=12860): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r3, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="80000000", @ANYRES16=r6, @ANYBLOB="05000000000000000000020000000800", @ANYRES32, @ANYBLOB="2d000e0080000000"], 0x80}}, 0x0) 604.935019ms ago: executing program 0 (id=12862): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r4, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r5, 0x0, 0x0, 0x4) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="80000000", @ANYRES16=r7, @ANYBLOB="05000000000000000000020000000800", @ANYRES32, @ANYBLOB="2d000e0080000000"], 0x80}}, 0x0) 586.392461ms ago: executing program 0 (id=12864): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r3, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="80000000", @ANYRES16=r5, @ANYBLOB="05000000000000", @ANYRES32], 0x80}}, 0x0) 560.264984ms ago: executing program 2 (id=12865): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r3, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="80000000", @ANYRES16=r5, @ANYBLOB="05000000000000000000020000000800", @ANYRES32, @ANYBLOB="2d000e008000"], 0x80}}, 0x0) 559.681894ms ago: executing program 0 (id=12866): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000005800)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8014) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r5, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r6 = socket$xdp(0x2c, 0x3, 0x0) r7 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r7, 0x8933, &(0x7f0000000580)={'batadv_slave_1\x00', 0x0}) bind$xdp(r6, &(0x7f0000000100)={0x2c, 0x0, r8}, 0x10) 296.77868ms ago: executing program 1 (id=12872): rt_sigaction(0xd, 0x0, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuacct.usage_sys\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$int_in(r3, 0x5452, &(0x7f0000000040)) 215.101968ms ago: executing program 1 (id=12873): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r2, 0x0, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) iopl(0x0) 214.712748ms ago: executing program 1 (id=12874): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000005800)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8014) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r5, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r6 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r6, 0x8933, &(0x7f0000000580)={'batadv_slave_1\x00'}) 206.354029ms ago: executing program 2 (id=12875): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r3, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="80000000", @ANYRES16=r5, @ANYBLOB="05000000000000", @ANYRES32], 0x80}}, 0x0) 168.268173ms ago: executing program 2 (id=12876): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r0, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r0, @ANYRES64], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r0, 0x0) ioctl$KVM_X86_SETUP_MCE(r0, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r1, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8000) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) sysinfo(&(0x7f0000000040)=""/58) 107.266809ms ago: executing program 1 (id=12877): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000005800)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8014) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r5 = syz_clone3(&(0x7f0000000380)={0x28000, &(0x7f0000000040), &(0x7f00000000c0), &(0x7f0000000100), {0x1e}, &(0x7f00000001c0)=""/185, 0xb9, &(0x7f0000000140)=""/30, &(0x7f0000000280)=[0x0], 0x1, {r1}}, 0x58) process_vm_writev(r5, &(0x7f00000002c0)=[{&(0x7f0000000400)=""/70, 0x46}], 0x1, &(0x7f0000001540)=[{&(0x7f0000000480)=""/86, 0x56}, {&(0x7f0000000540)=""/4096, 0x1000}], 0x2, 0x0) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) r6 = syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301) ioctl$USBDEVFS_CONTROL(r6, 0xc0105500, &(0x7f0000000040)={0x0, 0x3, 0x1, 0x3, 0x0, 0x7, 0x0}) r7 = socket$xdp(0x2c, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000580)={'batadv_slave_1\x00', 0x0}) bind$xdp(r7, &(0x7f0000000100)={0x2c, 0x0, r8}, 0x10) 66.464763ms ago: executing program 1 (id=12878): rt_sigaction(0xd, &(0x7f0000000180)={0x0, 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = dup(r0) sendmsg$NL80211_CMD_TDLS_CHANNEL_SWITCH(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x4004}, 0x10000) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) select(0x40, &(0x7f0000000040)={0x0, 0x70, 0x1, 0x3, 0x8, 0x8, 0xbfc, 0xd}, &(0x7f00000000c0)={0x70c, 0x5, 0x7, 0x6, 0x1, 0xd4, 0x2, 0x1}, &(0x7f0000000100)={0xa272, 0x9, 0x0, 0x0, 0x1, 0xffffffffffffc119, 0xc50, 0x200}, &(0x7f0000000240)={r4, r5/1000+10000}) 0s ago: executing program 1 (id=12879): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8=0x0, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r0, 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = getpid() r4 = syz_pidfd_open(r3, 0x0) setns(r4, 0x24020000) syz_clone(0x52022180, 0x0, 0x0, 0x0, 0x0, 0x0) kernel console output (not intermixed with test programs): 00007ffc1dc28768 [ 167.382208][ T6580] [ 168.210176][ T6598] No source specified [ 168.467808][ T6631] capability: warning: `syz.3.3040' uses deprecated v2 capabilities in a way that may be insecure [ 168.512275][ T6631] SELinux: Context ϧ is not valid (left unmapped). [ 168.534536][ T6631] FAULT_INJECTION: forcing a failure. [ 168.534536][ T6631] name failslab, interval 1, probability 0, space 0, times 0 [ 168.565868][ T6631] CPU: 0 UID: 0 PID: 6631 Comm: syz.3.3040 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 168.565920][ T6631] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 168.565940][ T6631] Call Trace: [ 168.565948][ T6631] [ 168.565957][ T6631] __dump_stack+0x21/0x30 [ 168.565999][ T6631] dump_stack_lvl+0x10c/0x190 [ 168.566029][ T6631] ? __cfi_dump_stack_lvl+0x10/0x10 [ 168.566060][ T6631] ? __kasan_check_write+0x18/0x20 [ 168.566094][ T6631] dump_stack+0x19/0x20 [ 168.566140][ T6631] should_fail_ex+0x3d9/0x530 [ 168.566240][ T6631] should_failslab+0xac/0x100 [ 168.566276][ T6631] kmem_cache_alloc_noprof+0x42/0x430 [ 168.566296][ T6631] ? getname_flags+0xc6/0x710 [ 168.566317][ T6631] ? __cfi_ksys_write+0x10/0x10 [ 168.566337][ T6631] getname_flags+0xc6/0x710 [ 168.566367][ T6631] __x64_sys_mkdirat+0x7e/0xa0 [ 168.566396][ T6631] x64_sys_call+0x2ba8/0x2ee0 [ 168.566429][ T6631] do_syscall_64+0x58/0xf0 [ 168.566458][ T6631] ? clear_bhb_loop+0x50/0xa0 [ 168.566484][ T6631] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 168.566509][ T6631] RIP: 0033:0x7f036eb8f6c9 [ 168.566528][ T6631] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 168.566548][ T6631] RSP: 002b:00007f036f949038 EFLAGS: 00000246 ORIG_RAX: 0000000000000102 [ 168.566573][ T6631] RAX: ffffffffffffffda RBX: 00007f036ede5fa0 RCX: 00007f036eb8f6c9 [ 168.566591][ T6631] RDX: 00000000000001c0 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 168.566608][ T6631] RBP: 00007f036f949090 R08: 0000000000000000 R09: 0000000000000000 [ 168.566623][ T6631] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 168.566638][ T6631] R13: 00007f036ede6038 R14: 00007f036ede5fa0 R15: 00007ffc1dc28768 [ 168.566658][ T6631] [ 169.027273][ T36] audit: type=1400 audit(1763288898.340:161): avc: denied { connect } for pid=6670 comm="syz.0.3059" lport=7 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 169.432239][ T6699] FAULT_INJECTION: forcing a failure. [ 169.432239][ T6699] name failslab, interval 1, probability 0, space 0, times 0 [ 169.473076][ T6699] CPU: 0 UID: 0 PID: 6699 Comm: syz.1.3064 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 169.473129][ T6699] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 169.473143][ T6699] Call Trace: [ 169.473151][ T6699] [ 169.473159][ T6699] __dump_stack+0x21/0x30 [ 169.473194][ T6699] dump_stack_lvl+0x10c/0x190 [ 169.473221][ T6699] ? __cfi_dump_stack_lvl+0x10/0x10 [ 169.473253][ T6699] dump_stack+0x19/0x20 [ 169.473281][ T6699] should_fail_ex+0x3d9/0x530 [ 169.473303][ T6699] should_failslab+0xac/0x100 [ 169.473329][ T6699] kmem_cache_alloc_node_noprof+0x45/0x440 [ 169.473350][ T6699] ? __alloc_skb+0x10c/0x370 [ 169.473374][ T6699] __alloc_skb+0x10c/0x370 [ 169.473397][ T6699] __ip6_append_data+0x293a/0x3ab0 [ 169.473420][ T6699] ? __cfi_stack_trace_consume_entry+0x10/0x10 [ 169.473459][ T6699] ? __cfi_raw6_getfrag+0x10/0x10 [ 169.473484][ T6699] ? __kasan_check_write+0x18/0x20 [ 169.473515][ T6699] ? _raw_spin_lock_bh+0x90/0x120 [ 169.473544][ T6699] ? __cfi__raw_spin_lock_bh+0x10/0x10 [ 169.473573][ T6699] ? ip6_setup_cork+0x1390/0x1390 [ 169.473595][ T6699] ? __kasan_check_read+0x15/0x20 [ 169.473627][ T6699] ? ip6_setup_cork+0x9de/0x1390 [ 169.473649][ T6699] ? lock_sock_nested+0x1f5/0x290 [ 169.473673][ T6699] ip6_append_data+0x1ba/0x380 [ 169.473696][ T6699] ? __cfi_raw6_getfrag+0x10/0x10 [ 169.473722][ T6699] rawv6_sendmsg+0x1230/0x17d0 [ 169.473749][ T6699] ? __cfi_avc_has_perm+0x10/0x10 [ 169.473780][ T6699] ? __cfi_rawv6_sendmsg+0x10/0x10 [ 169.473804][ T6699] ? selinux_socket_sendmsg+0x284/0x380 [ 169.473842][ T6699] ? inet_send_prepare+0x64/0x4f0 [ 169.473863][ T6699] ? __cfi_rawv6_sendmsg+0x10/0x10 [ 169.473887][ T6699] inet_sendmsg+0x116/0x120 [ 169.473907][ T6699] ____sys_sendmsg+0x82a/0xa70 [ 169.473941][ T6699] ? __sys_sendmsg_sock+0x50/0x50 [ 169.473975][ T6699] ? import_iovec+0x81/0xb0 [ 169.474004][ T6699] ___sys_sendmsg+0x220/0x2a0 [ 169.474036][ T6699] ? __sys_sendmsg+0x280/0x280 [ 169.474069][ T6699] ? kstrtouint+0x78/0xf0 [ 169.474106][ T6699] __sys_sendmmsg+0x271/0x470 [ 169.474140][ T6699] ? __cfi___sys_sendmmsg+0x10/0x10 [ 169.474178][ T6699] ? __cfi_ksys_write+0x10/0x10 [ 169.474201][ T6699] __x64_sys_sendmmsg+0xa4/0xc0 [ 169.474235][ T6699] x64_sys_call+0xfec/0x2ee0 [ 169.474266][ T6699] do_syscall_64+0x58/0xf0 [ 169.474295][ T6699] ? clear_bhb_loop+0x50/0xa0 [ 169.474320][ T6699] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 169.474343][ T6699] RIP: 0033:0x7fc36118f6c9 [ 169.474362][ T6699] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 169.474381][ T6699] RSP: 002b:00007fc361f76038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 169.474405][ T6699] RAX: ffffffffffffffda RBX: 00007fc3613e5fa0 RCX: 00007fc36118f6c9 [ 169.474422][ T6699] RDX: 00000000000002e9 RSI: 0000200000000480 RDI: 0000000000000003 [ 169.474436][ T6699] RBP: 00007fc361f76090 R08: 0000000000000000 R09: 0000000000000000 [ 169.474451][ T6699] R10: 000000000000ffe0 R11: 0000000000000246 R12: 0000000000000001 [ 169.474464][ T6699] R13: 00007fc3613e6038 R14: 00007fc3613e5fa0 R15: 00007ffe1be00da8 [ 169.474483][ T6699] [ 169.607288][ T36] audit: type=1400 audit(1763288898.800:162): avc: denied { ioctl } for pid=6700 comm="syz.0.3074" path="socket:[39126]" dev="sockfs" ino=39126 ioctlcmd=0x89a0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 169.966702][ T6713] FAULT_INJECTION: forcing a failure. [ 169.966702][ T6713] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 170.006193][ T6713] CPU: 1 UID: 0 PID: 6713 Comm: syz.2.3080 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 170.006230][ T6713] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 170.006245][ T6713] Call Trace: [ 170.006253][ T6713] [ 170.006276][ T6713] __dump_stack+0x21/0x30 [ 170.006313][ T6713] dump_stack_lvl+0x10c/0x190 [ 170.006343][ T6713] ? __cfi_dump_stack_lvl+0x10/0x10 [ 170.006376][ T6713] dump_stack+0x19/0x20 [ 170.006405][ T6713] should_fail_ex+0x3d9/0x530 [ 170.006429][ T6713] should_fail+0xf/0x20 [ 170.006449][ T6713] should_fail_usercopy+0x1e/0x30 [ 170.006474][ T6713] strncpy_from_user+0x28/0x270 [ 170.006498][ T6713] getname_flags+0x102/0x710 [ 170.006520][ T6713] ? __fget_files+0x2c5/0x340 [ 170.006545][ T6713] user_path_at+0x2b/0x60 [ 170.006571][ T6713] __se_sys_mount+0x288/0x480 [ 170.006592][ T6713] ? ksys_write+0x1ef/0x250 [ 170.006612][ T6713] ? __x64_sys_mount+0xf0/0xf0 [ 170.006636][ T6713] __x64_sys_mount+0xc3/0xf0 [ 170.006657][ T6713] x64_sys_call+0x2021/0x2ee0 [ 170.006690][ T6713] do_syscall_64+0x58/0xf0 [ 170.006719][ T6713] ? clear_bhb_loop+0x50/0xa0 [ 170.006744][ T6713] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 170.006768][ T6713] RIP: 0033:0x7f038a78f6c9 [ 170.006788][ T6713] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 170.006808][ T6713] RSP: 002b:00007f038b623038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 170.006832][ T6713] RAX: ffffffffffffffda RBX: 00007f038a9e5fa0 RCX: 00007f038a78f6c9 [ 170.006850][ T6713] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000000 [ 170.006865][ T6713] RBP: 00007f038b623090 R08: 0000000000000000 R09: 0000000000000000 [ 170.006879][ T6713] R10: 0000000003818000 R11: 0000000000000246 R12: 0000000000000001 [ 170.006894][ T6713] R13: 00007f038a9e6038 R14: 00007f038a9e5fa0 R15: 00007ffde9bab368 [ 170.006914][ T6713] [ 170.657650][ T6750] FAULT_INJECTION: forcing a failure. [ 170.657650][ T6750] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 170.682712][ T6750] CPU: 1 UID: 0 PID: 6750 Comm: syz.1.3098 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 170.682752][ T6750] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 170.682767][ T6750] Call Trace: [ 170.682774][ T6750] [ 170.682783][ T6750] __dump_stack+0x21/0x30 [ 170.682819][ T6750] dump_stack_lvl+0x10c/0x190 [ 170.682849][ T6750] ? __cfi_dump_stack_lvl+0x10/0x10 [ 170.682882][ T6750] ? check_stack_object+0x12c/0x140 [ 170.682904][ T6750] dump_stack+0x19/0x20 [ 170.682932][ T6750] should_fail_ex+0x3d9/0x530 [ 170.682955][ T6750] should_fail+0xf/0x20 [ 170.682973][ T6750] should_fail_usercopy+0x1e/0x30 [ 170.682997][ T6750] _copy_to_user+0x24/0xa0 [ 170.683025][ T6750] simple_read_from_buffer+0xed/0x160 [ 170.683055][ T6750] proc_fail_nth_read+0x19e/0x210 [ 170.683085][ T6750] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 170.683115][ T6750] ? bpf_lsm_file_permission+0xd/0x20 [ 170.683146][ T6750] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 170.683175][ T6750] vfs_read+0x27d/0xc70 [ 170.683195][ T6750] ? ep_destroy_wakeup_source+0x70/0x70 [ 170.683233][ T6750] ? __cfi_vfs_read+0x10/0x10 [ 170.683252][ T6750] ? __kasan_check_write+0x18/0x20 [ 170.683286][ T6750] ? mutex_lock+0x92/0x1c0 [ 170.683306][ T6750] ? __cfi_mutex_lock+0x10/0x10 [ 170.683327][ T6750] ? __fget_files+0x2c5/0x340 [ 170.683353][ T6750] ksys_read+0x141/0x250 [ 170.683373][ T6750] ? __cfi_ksys_read+0x10/0x10 [ 170.683394][ T6750] ? __kasan_check_read+0x15/0x20 [ 170.683428][ T6750] __x64_sys_read+0x7f/0x90 [ 170.683448][ T6750] x64_sys_call+0x2638/0x2ee0 [ 170.683481][ T6750] do_syscall_64+0x58/0xf0 [ 170.683510][ T6750] ? clear_bhb_loop+0x50/0xa0 [ 170.683536][ T6750] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 170.683560][ T6750] RIP: 0033:0x7fc36118e0dc [ 170.683580][ T6750] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 170.683600][ T6750] RSP: 002b:00007fc361f76030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 170.683626][ T6750] RAX: ffffffffffffffda RBX: 00007fc3613e5fa0 RCX: 00007fc36118e0dc [ 170.683644][ T6750] RDX: 000000000000000f RSI: 00007fc361f760a0 RDI: 0000000000000006 [ 170.683659][ T6750] RBP: 00007fc361f76090 R08: 0000000000000000 R09: 0000000000000000 [ 170.683680][ T6750] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 170.683694][ T6750] R13: 00007fc3613e6038 R14: 00007fc3613e5fa0 R15: 00007ffe1be00da8 [ 170.683714][ T6750] [ 171.424141][ T6786] FAULT_INJECTION: forcing a failure. [ 171.424141][ T6786] name failslab, interval 1, probability 0, space 0, times 0 [ 171.437367][ T36] audit: type=1400 audit(1763288900.750:163): avc: denied { create } for pid=6784 comm="syz.3.3117" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1 [ 171.457332][ T6786] CPU: 0 UID: 0 PID: 6786 Comm: syz.2.3116 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 171.457390][ T6786] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 171.457409][ T6786] Call Trace: [ 171.457418][ T6786] [ 171.457428][ T6786] __dump_stack+0x21/0x30 [ 171.457469][ T6786] dump_stack_lvl+0x10c/0x190 [ 171.457505][ T6786] ? __cfi_dump_stack_lvl+0x10/0x10 [ 171.457540][ T6786] ? release_sock+0x171/0x1f0 [ 171.457572][ T6786] dump_stack+0x19/0x20 [ 171.457604][ T6786] should_fail_ex+0x3d9/0x530 [ 171.457632][ T6786] should_failslab+0xac/0x100 [ 171.457665][ T6786] kmem_cache_alloc_node_noprof+0x45/0x440 [ 171.457692][ T6786] ? netlink_data_ready+0x20/0x20 [ 171.457725][ T6786] ? __alloc_skb+0x10c/0x370 [ 171.457760][ T6786] __alloc_skb+0x10c/0x370 [ 171.457791][ T6786] netlink_alloc_large_skb+0xf7/0x1b0 [ 171.457825][ T6786] netlink_sendmsg+0x586/0xaf0 [ 171.457865][ T6786] ? __cfi_netlink_sendmsg+0x10/0x10 [ 171.457902][ T6786] ? bpf_lsm_socket_sendmsg+0xd/0x20 [ 171.457934][ T6786] ? security_socket_sendmsg+0x33/0xd0 [ 171.457959][ T6786] ? __cfi_netlink_sendmsg+0x10/0x10 [ 171.457996][ T6786] ____sys_sendmsg+0xa15/0xa70 [ 171.458047][ T6786] ? __sys_sendmsg_sock+0x50/0x50 [ 171.458087][ T6786] ? import_iovec+0x81/0xb0 [ 171.458124][ T6786] ___sys_sendmsg+0x220/0x2a0 [ 171.458162][ T6786] ? __sys_sendmsg+0x280/0x280 [ 171.458201][ T6786] ? proc_fail_nth_write+0x17e/0x210 [ 171.458237][ T6786] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 171.458280][ T6786] __x64_sys_sendmsg+0x1eb/0x2c0 [ 171.458317][ T6786] ? fput+0x1a5/0x240 [ 171.458349][ T6786] ? __cfi___x64_sys_sendmsg+0x10/0x10 [ 171.458385][ T6786] ? ksys_write+0x1ef/0x250 [ 171.458412][ T6786] ? __kasan_check_read+0x15/0x20 [ 171.458452][ T6786] x64_sys_call+0x2a4c/0x2ee0 [ 171.458488][ T6786] do_syscall_64+0x58/0xf0 [ 171.458521][ T6786] ? clear_bhb_loop+0x50/0xa0 [ 171.458550][ T6786] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 171.458578][ T6786] RIP: 0033:0x7f038a78f6c9 [ 171.458599][ T6786] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 171.458622][ T6786] RSP: 002b:00007f038b623038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 171.458650][ T6786] RAX: ffffffffffffffda RBX: 00007f038a9e5fa0 RCX: 00007f038a78f6c9 [ 171.458671][ T6786] RDX: 0000000000000000 RSI: 0000200000000280 RDI: 0000000000000006 [ 171.458689][ T6786] RBP: 00007f038b623090 R08: 0000000000000000 R09: 0000000000000000 [ 171.458707][ T6786] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 171.458724][ T6786] R13: 00007f038a9e6038 R14: 00007f038a9e5fa0 R15: 00007ffde9bab368 [ 171.458748][ T6786] [ 171.792687][ T36] audit: type=1400 audit(1763288900.750:164): avc: denied { write } for pid=6784 comm="syz.3.3117" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1 [ 176.799956][ T36] audit: type=1400 audit(1763288906.120:165): avc: denied { create } for pid=7207 comm="syz.2.3326" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 176.857257][ T36] audit: type=1400 audit(1763288906.150:166): avc: denied { shutdown } for pid=7207 comm="syz.2.3326" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 178.097243][ T36] audit: type=1400 audit(1763288907.410:167): avc: denied { bind } for pid=7257 comm="syz.3.3352" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 178.105465][ T7258] 9pnet_fd: Insufficient options for proto=fd [ 179.269898][ T7310] FAULT_INJECTION: forcing a failure. [ 179.269898][ T7310] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 179.305172][ T7310] CPU: 0 UID: 0 PID: 7310 Comm: syz.0.3375 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 179.305212][ T7310] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 179.305241][ T7310] Call Trace: [ 179.305249][ T7310] [ 179.305259][ T7310] __dump_stack+0x21/0x30 [ 179.305296][ T7310] dump_stack_lvl+0x10c/0x190 [ 179.305326][ T7310] ? __cfi_dump_stack_lvl+0x10/0x10 [ 179.305358][ T7310] dump_stack+0x19/0x20 [ 179.305387][ T7310] should_fail_ex+0x3d9/0x530 [ 179.305410][ T7310] should_fail+0xf/0x20 [ 179.305429][ T7310] should_fail_usercopy+0x1e/0x30 [ 179.305450][ T7310] strncpy_from_user+0x28/0x270 [ 179.305487][ T7310] getname_flags+0x102/0x710 [ 179.305510][ T7310] ? build_open_flags+0x487/0x600 [ 179.305540][ T7310] getname+0x1b/0x30 [ 179.305560][ T7310] do_sys_openat2+0xcb/0x1c0 [ 179.305588][ T7310] ? fput+0x1a5/0x240 [ 179.305614][ T7310] ? do_sys_open+0x100/0x100 [ 179.305641][ T7310] ? ksys_write+0x1ef/0x250 [ 179.305662][ T7310] ? __cfi_ksys_write+0x10/0x10 [ 179.305683][ T7310] __x64_sys_openat+0x13a/0x170 [ 179.305713][ T7310] x64_sys_call+0xe69/0x2ee0 [ 179.305747][ T7310] do_syscall_64+0x58/0xf0 [ 179.305775][ T7310] ? clear_bhb_loop+0x50/0xa0 [ 179.305801][ T7310] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 179.305824][ T7310] RIP: 0033:0x7f6f4a18df10 [ 179.305842][ T7310] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 69 95 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 bc 95 02 00 8b 44 [ 179.305861][ T7310] RSP: 002b:00007f6f4af68f10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 179.305885][ T7310] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f6f4a18df10 [ 179.305900][ T7310] RDX: 0000000000000002 RSI: 00007f6f4af68fa0 RDI: 00000000ffffff9c [ 179.305914][ T7310] RBP: 00007f6f4af68fa0 R08: 0000000000000000 R09: 0000000000000000 [ 179.305928][ T7310] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 179.305942][ T7310] R13: 00007f6f4a3e6038 R14: 00007f6f4a3e5fa0 R15: 00007ffc5d148088 [ 179.305961][ T7310] [ 179.979359][ T7330] 9pnet_fd: Insufficient options for proto=fd [ 181.747627][ T7406] 9pnet_fd: Insufficient options for proto=fd [ 182.527735][ T7426] 9pnet_fd: Insufficient options for proto=fd [ 189.213643][ T36] audit: type=1400 audit(1763288918.530:168): avc: denied { write } for pid=7788 comm="syz.3.3616" name="binder1" dev="binder" ino=11 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1 [ 189.247449][ T7789] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:843 [ 192.401204][ T7893] FAULT_INJECTION: forcing a failure. [ 192.401204][ T7893] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 192.447364][ T7893] CPU: 0 UID: 0 PID: 7893 Comm: syz.3.3668 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 192.447403][ T7893] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 192.447417][ T7893] Call Trace: [ 192.447424][ T7893] [ 192.447432][ T7893] __dump_stack+0x21/0x30 [ 192.447465][ T7893] dump_stack_lvl+0x10c/0x190 [ 192.447492][ T7893] ? __cfi_dump_stack_lvl+0x10/0x10 [ 192.447520][ T7893] ? check_stack_object+0x12c/0x140 [ 192.447541][ T7893] dump_stack+0x19/0x20 [ 192.447578][ T7893] should_fail_ex+0x3d9/0x530 [ 192.447600][ T7893] should_fail+0xf/0x20 [ 192.447618][ T7893] should_fail_usercopy+0x1e/0x30 [ 192.447640][ T7893] _copy_to_user+0x24/0xa0 [ 192.447664][ T7893] simple_read_from_buffer+0xed/0x160 [ 192.447691][ T7893] proc_fail_nth_read+0x19e/0x210 [ 192.447718][ T7893] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 192.447745][ T7893] ? bpf_lsm_file_permission+0xd/0x20 [ 192.447772][ T7893] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 192.447815][ T7893] vfs_read+0x27d/0xc70 [ 192.447835][ T7893] ? ep_destroy_wakeup_source+0x70/0x70 [ 192.447862][ T7893] ? __cfi_vfs_read+0x10/0x10 [ 192.447879][ T7893] ? __kasan_check_write+0x18/0x20 [ 192.447912][ T7893] ? mutex_lock+0x92/0x1c0 [ 192.447930][ T7893] ? __cfi_mutex_lock+0x10/0x10 [ 192.447949][ T7893] ? __fget_files+0x2c5/0x340 [ 192.447974][ T7893] ksys_read+0x141/0x250 [ 192.447993][ T7893] ? __cfi_ksys_read+0x10/0x10 [ 192.448013][ T7893] ? __kasan_check_read+0x15/0x20 [ 192.448045][ T7893] __x64_sys_read+0x7f/0x90 [ 192.448064][ T7893] x64_sys_call+0x2638/0x2ee0 [ 192.448095][ T7893] do_syscall_64+0x58/0xf0 [ 192.448121][ T7893] ? clear_bhb_loop+0x50/0xa0 [ 192.448145][ T7893] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 192.448168][ T7893] RIP: 0033:0x7f036eb8e0dc [ 192.448186][ T7893] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 192.448205][ T7893] RSP: 002b:00007f036f949030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 192.448228][ T7893] RAX: ffffffffffffffda RBX: 00007f036ede5fa0 RCX: 00007f036eb8e0dc [ 192.448245][ T7893] RDX: 000000000000000f RSI: 00007f036f9490a0 RDI: 0000000000000006 [ 192.448260][ T7893] RBP: 00007f036f949090 R08: 0000000000000000 R09: 0000000000000000 [ 192.448273][ T7893] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 192.448286][ T7893] R13: 00007f036ede6038 R14: 00007f036ede5fa0 R15: 00007ffc1dc28768 [ 192.448306][ T7893] [ 196.479797][ T36] audit: type=1400 audit(1763288925.800:169): avc: denied { create } for pid=8033 comm="syz.3.3729" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 196.559845][ T36] audit: type=1400 audit(1763288925.880:170): avc: denied { setopt } for pid=8033 comm="syz.3.3729" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 197.561454][ T8055] FAULT_INJECTION: forcing a failure. [ 197.561454][ T8055] name failslab, interval 1, probability 0, space 0, times 0 [ 197.576461][ T8055] CPU: 1 UID: 0 PID: 8055 Comm: syz.2.3748 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 197.576496][ T8055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 197.576510][ T8055] Call Trace: [ 197.576517][ T8055] [ 197.576528][ T8055] __dump_stack+0x21/0x30 [ 197.576564][ T8055] dump_stack_lvl+0x10c/0x190 [ 197.576594][ T8055] ? __cfi_dump_stack_lvl+0x10/0x10 [ 197.576626][ T8055] dump_stack+0x19/0x20 [ 197.576654][ T8055] should_fail_ex+0x3d9/0x530 [ 197.576678][ T8055] should_failslab+0xac/0x100 [ 197.576703][ T8055] kmem_cache_alloc_noprof+0x42/0x430 [ 197.576723][ T8055] ? inc_rlimit_get_ucounts+0x3fb/0x470 [ 197.576757][ T8055] ? __sigqueue_alloc+0x15e/0x2b0 [ 197.576787][ T8055] __sigqueue_alloc+0x15e/0x2b0 [ 197.576814][ T8055] __send_signal_locked+0x19d/0xb90 [ 197.576838][ T8055] ? __kasan_check_write+0x18/0x20 [ 197.576872][ T8055] ? __task_pid_nr_ns+0x1e2/0x280 [ 197.576898][ T8055] send_signal_locked+0x428/0x5a0 [ 197.576924][ T8055] do_send_sig_info+0xdb/0x220 [ 197.576949][ T8055] send_sig+0x5f/0x70 [ 197.576972][ T8055] sk_stream_error+0xb6/0x130 [ 197.577005][ T8055] tcp_sendmsg_locked+0x42e0/0x4b40 [ 197.577037][ T8055] ? __asan_memcpy+0x5a/0x80 [ 197.577059][ T8055] ? __kasan_check_write+0x18/0x20 [ 197.577092][ T8055] ? _raw_spin_lock_bh+0x90/0x120 [ 197.577121][ T8055] ? __cfi__raw_spin_lock_bh+0x10/0x10 [ 197.577152][ T8055] ? _raw_spin_unlock_bh+0x54/0x60 [ 197.577194][ T8055] ? lock_sock_nested+0x1f5/0x290 [ 197.577216][ T8055] ? __cfi_tcp_sendmsg_locked+0x10/0x10 [ 197.577246][ T8055] ? __cfi_tcp_sendmsg+0x10/0x10 [ 197.577273][ T8055] tcp_sendmsg+0x3e/0xe0 [ 197.577300][ T8055] ? __cfi_tcp_sendmsg+0x10/0x10 [ 197.577327][ T8055] inet6_sendmsg+0xb7/0x120 [ 197.577359][ T8055] ____sys_sendmsg+0x5db/0xa70 [ 197.577391][ T8055] ? __sys_sendmsg_sock+0x50/0x50 [ 197.577426][ T8055] ? import_iovec+0x81/0xb0 [ 197.577457][ T8055] ___sys_sendmsg+0x220/0x2a0 [ 197.577491][ T8055] ? __sys_sendmsg+0x280/0x280 [ 197.577524][ T8055] ? kstrtouint+0x78/0xf0 [ 197.577551][ T8055] __sys_sendmmsg+0x271/0x470 [ 197.577587][ T8055] ? __cfi___sys_sendmmsg+0x10/0x10 [ 197.577626][ T8055] ? __cfi_ksys_write+0x10/0x10 [ 197.577650][ T8055] __x64_sys_sendmmsg+0xa4/0xc0 [ 197.577685][ T8055] x64_sys_call+0xfec/0x2ee0 [ 197.577719][ T8055] do_syscall_64+0x58/0xf0 [ 197.577749][ T8055] ? clear_bhb_loop+0x50/0xa0 [ 197.577774][ T8055] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 197.577799][ T8055] RIP: 0033:0x7f038a78f6c9 [ 197.577819][ T8055] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 197.577839][ T8055] RSP: 002b:00007f038b623038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 197.577864][ T8055] RAX: ffffffffffffffda RBX: 00007f038a9e5fa0 RCX: 00007f038a78f6c9 [ 197.577882][ T8055] RDX: 0000000000000001 RSI: 0000200000003c00 RDI: 000000000000000a [ 197.577896][ T8055] RBP: 00007f038b623090 R08: 0000000000000000 R09: 0000000000000000 [ 197.577911][ T8055] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000001 [ 197.577924][ T8055] R13: 00007f038a9e6038 R14: 00007f038a9e5fa0 R15: 00007ffde9bab368 [ 197.577944][ T8055] [ 200.425242][ T8139] FAULT_INJECTION: forcing a failure. [ 200.425242][ T8139] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 200.454056][ T8139] CPU: 1 UID: 0 PID: 8139 Comm: syz.3.3790 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 200.454097][ T8139] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 200.454112][ T8139] Call Trace: [ 200.454119][ T8139] [ 200.454128][ T8139] __dump_stack+0x21/0x30 [ 200.454165][ T8139] dump_stack_lvl+0x10c/0x190 [ 200.454195][ T8139] ? __cfi_dump_stack_lvl+0x10/0x10 [ 200.454224][ T8139] ? check_stack_object+0x12c/0x140 [ 200.454247][ T8139] dump_stack+0x19/0x20 [ 200.454274][ T8139] should_fail_ex+0x3d9/0x530 [ 200.454304][ T8139] should_fail+0xf/0x20 [ 200.454322][ T8139] should_fail_usercopy+0x1e/0x30 [ 200.454344][ T8139] _copy_to_user+0x24/0xa0 [ 200.454369][ T8139] simple_read_from_buffer+0xed/0x160 [ 200.454396][ T8139] proc_fail_nth_read+0x19e/0x210 [ 200.454423][ T8139] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 200.454449][ T8139] ? bpf_lsm_file_permission+0xd/0x20 [ 200.454477][ T8139] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 200.454503][ T8139] vfs_read+0x27d/0xc70 [ 200.454521][ T8139] ? ep_destroy_wakeup_source+0x70/0x70 [ 200.454547][ T8139] ? __cfi_vfs_read+0x10/0x10 [ 200.454564][ T8139] ? __kasan_check_write+0x18/0x20 [ 200.454594][ T8139] ? mutex_lock+0x92/0x1c0 [ 200.454612][ T8139] ? __cfi_mutex_lock+0x10/0x10 [ 200.454630][ T8139] ? __fget_files+0x2c5/0x340 [ 200.454653][ T8139] ksys_read+0x141/0x250 [ 200.454675][ T8139] ? __cfi_ksys_read+0x10/0x10 [ 200.454694][ T8139] ? __kasan_check_read+0x15/0x20 [ 200.454724][ T8139] __x64_sys_read+0x7f/0x90 [ 200.454742][ T8139] x64_sys_call+0x2638/0x2ee0 [ 200.454771][ T8139] do_syscall_64+0x58/0xf0 [ 200.454797][ T8139] ? clear_bhb_loop+0x50/0xa0 [ 200.454831][ T8139] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 200.454852][ T8139] RIP: 0033:0x7f036eb8e0dc [ 200.454869][ T8139] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 200.454888][ T8139] RSP: 002b:00007f036f949030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 200.454910][ T8139] RAX: ffffffffffffffda RBX: 00007f036ede5fa0 RCX: 00007f036eb8e0dc [ 200.454926][ T8139] RDX: 000000000000000f RSI: 00007f036f9490a0 RDI: 0000000000000006 [ 200.454940][ T8139] RBP: 00007f036f949090 R08: 0000000000000000 R09: 0000000000000000 [ 200.454953][ T8139] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 200.454966][ T8139] R13: 00007f036ede6038 R14: 00007f036ede5fa0 R15: 00007ffc1dc28768 [ 200.454984][ T8139] [ 202.196557][ T8237] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3840'. [ 202.394708][ T8268] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3854'. [ 202.706102][ T8314] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3877'. [ 203.332165][ T8376] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3908'. [ 214.277230][ T10] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 214.458347][ T10] usb 1-1: config 220 has an invalid interface number: 76 but max is 2 [ 214.469742][ T10] usb 1-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config [ 214.499035][ T10] usb 1-1: config 220 has 2 interfaces, different from the descriptor's value: 3 [ 214.527254][ T10] usb 1-1: config 220 has no interface number 1 [ 214.534775][ T10] usb 1-1: config 220 interface 0 has no altsetting 0 [ 214.557243][ T10] usb 1-1: config 220 interface 76 has no altsetting 0 [ 214.568509][ T10] usb 1-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9 [ 214.580419][ T10] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 214.607429][ T10] usb 1-1: Product: syz [ 214.612914][ T10] usb 1-1: Manufacturer: syz [ 214.637233][ T10] usb 1-1: SerialNumber: syz [ 214.849217][ T10] usb 1-1: Found UVC 7.01 device syz (8086:0b07) [ 214.867276][ T10] usb 1-1: No valid video chain found. [ 214.894520][ T10] usb 1-1: USB disconnect, device number 4 [ 216.422471][ T9024] No source specified [ 217.958760][ T36] audit: type=1400 audit(1763288947.280:171): avc: denied { map } for pid=9133 comm="syz.3.4287" path="socket:[50731]" dev="sockfs" ino=50731 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 218.010949][ T36] audit: type=1400 audit(1763288947.280:172): avc: denied { read } for pid=9133 comm="syz.3.4287" path="socket:[50731]" dev="sockfs" ino=50731 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 219.004863][ T36] audit: type=1400 audit(1763288948.320:173): avc: denied { setopt } for pid=9225 comm="syz.2.4333" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 219.298321][ T36] audit: type=1400 audit(1763288948.620:174): avc: denied { ioctl } for pid=9243 comm="syz.2.4343" path="socket:[51303]" dev="sockfs" ino=51303 ioctlcmd=0x943a scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1 [ 219.731480][ T9288] rust_binder: BC_CLEAR_DEATH_NOTIFICATION invalid ref 1 [ 220.037124][ T9326] FAULT_INJECTION: forcing a failure. [ 220.037124][ T9326] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 220.072784][ T9326] CPU: 0 UID: 0 PID: 9326 Comm: syz.1.4381 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 220.072820][ T9326] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 220.072834][ T9326] Call Trace: [ 220.072841][ T9326] [ 220.072850][ T9326] __dump_stack+0x21/0x30 [ 220.072885][ T9326] dump_stack_lvl+0x10c/0x190 [ 220.072913][ T9326] ? __cfi_dump_stack_lvl+0x10/0x10 [ 220.072943][ T9326] ? kasan_save_track+0x4f/0x80 [ 220.072966][ T9326] ? kasan_save_alloc_info+0x40/0x50 [ 220.072996][ T9326] ? __kasan_kmalloc+0x96/0xb0 [ 220.073019][ T9326] ? __kmalloc_noprof+0x271/0x530 [ 220.073041][ T9326] ? splice_file_to_pipe+0x3df/0x600 [ 220.073069][ T9326] dump_stack+0x19/0x20 [ 220.073097][ T9326] should_fail_ex+0x3d9/0x530 [ 220.073119][ T9326] should_fail_alloc_page+0xeb/0x110 [ 220.073143][ T9326] __alloc_pages_noprof+0x19b/0x7b0 [ 220.073174][ T9326] ? __cfi___alloc_pages_noprof+0x10/0x10 [ 220.073209][ T9326] alloc_pages_bulk_noprof+0x3cb/0x880 [ 220.073240][ T9326] ? __kasan_kmalloc+0x96/0xb0 [ 220.073266][ T9326] ? copy_splice_read+0x161/0xc30 [ 220.073292][ T9326] copy_splice_read+0x199/0xc30 [ 220.073316][ T9326] ? __x64_sys_openat+0x13a/0x170 [ 220.073346][ T9326] ? x64_sys_call+0xe69/0x2ee0 [ 220.073378][ T9326] ? selinux_file_permission+0x309/0xb30 [ 220.073405][ T9326] ? __cfi_copy_splice_read+0x10/0x10 [ 220.073430][ T9326] ? __kasan_check_write+0x18/0x20 [ 220.073461][ T9326] ? mutex_lock+0x92/0x1c0 [ 220.073482][ T9326] ? __cfi_copy_splice_read+0x10/0x10 [ 220.073526][ T9326] splice_file_to_pipe+0x3df/0x600 [ 220.073555][ T9326] do_sendfile+0x569/0xfb0 [ 220.073582][ T9326] ? vfs_writev+0xcf0/0xcf0 [ 220.073607][ T9326] ? __kasan_check_write+0x18/0x20 [ 220.073641][ T9326] ? ksys_write+0x1ef/0x250 [ 220.073672][ T9326] __x64_sys_sendfile64+0x193/0x1f0 [ 220.073699][ T9326] ? __cfi___x64_sys_sendfile64+0x10/0x10 [ 220.073724][ T9326] ? __kasan_check_read+0x15/0x20 [ 220.073759][ T9326] x64_sys_call+0xa26/0x2ee0 [ 220.073804][ T9326] do_syscall_64+0x58/0xf0 [ 220.073833][ T9326] ? clear_bhb_loop+0x50/0xa0 [ 220.073857][ T9326] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 220.073888][ T9326] RIP: 0033:0x7fc36118f6c9 [ 220.073907][ T9326] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 220.073927][ T9326] RSP: 002b:00007fc361f76038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 220.073952][ T9326] RAX: ffffffffffffffda RBX: 00007fc3613e5fa0 RCX: 00007fc36118f6c9 [ 220.073971][ T9326] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 220.073986][ T9326] RBP: 00007fc361f76090 R08: 0000000000000000 R09: 0000000000000000 [ 220.074001][ T9326] R10: 000000000000fd85 R11: 0000000000000246 R12: 0000000000000001 [ 220.074016][ T9326] R13: 00007fc3613e6038 R14: 00007fc3613e5fa0 R15: 00007ffe1be00da8 [ 220.074037][ T9326] [ 220.319000][ T36] audit: type=1400 audit(1763288949.640:175): avc: denied { read } for pid=9331 comm="syz-executor" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 220.521187][ T36] audit: type=1400 audit(1763288949.710:176): avc: denied { open } for pid=9331 comm="syz-executor" path="net:[4026531840]" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 220.595886][ T5147] bridge_slave_1: left allmulticast mode [ 220.605898][ T5147] bridge_slave_1: left promiscuous mode [ 220.617326][ T5147] bridge0: port 2(bridge_slave_1) entered disabled state [ 220.629584][ T5147] bridge_slave_0: left allmulticast mode [ 220.635674][ T5147] bridge_slave_0: left promiscuous mode [ 220.645795][ T5147] bridge0: port 1(bridge_slave_0) entered disabled state [ 220.714051][ T9354] FAULT_INJECTION: forcing a failure. [ 220.714051][ T9354] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 220.733129][ T9331] bridge0: port 1(bridge_slave_0) entered blocking state [ 220.736086][ T9354] CPU: 0 UID: 0 PID: 9354 Comm: syz.1.4394 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 220.736127][ T9354] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 220.736144][ T9354] Call Trace: [ 220.736153][ T9354] [ 220.736163][ T9354] __dump_stack+0x21/0x30 [ 220.736210][ T9354] dump_stack_lvl+0x10c/0x190 [ 220.736245][ T9354] ? __cfi_dump_stack_lvl+0x10/0x10 [ 220.736281][ T9354] dump_stack+0x19/0x20 [ 220.736311][ T9354] should_fail_ex+0x3d9/0x530 [ 220.736337][ T9354] should_fail+0xf/0x20 [ 220.736360][ T9354] should_fail_usercopy+0x1e/0x30 [ 220.736387][ T9354] strncpy_from_user+0x28/0x270 [ 220.736414][ T9354] getname_flags+0x102/0x710 [ 220.736439][ T9354] ? __fget_files+0x2c5/0x340 [ 220.736465][ T9354] user_path_at+0x2b/0x60 [ 220.736493][ T9354] __se_sys_mount+0x288/0x480 [ 220.736516][ T9354] ? ksys_write+0x1ef/0x250 [ 220.736539][ T9354] ? __x64_sys_mount+0xf0/0xf0 [ 220.736564][ T9354] __x64_sys_mount+0xc3/0xf0 [ 220.736588][ T9354] x64_sys_call+0x2021/0x2ee0 [ 220.736624][ T9354] do_syscall_64+0x58/0xf0 [ 220.736657][ T9354] ? clear_bhb_loop+0x50/0xa0 [ 220.736684][ T9354] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 220.736711][ T9354] RIP: 0033:0x7fc36118f6c9 [ 220.736731][ T9354] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 220.736753][ T9354] RSP: 002b:00007fc361f76038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 220.736782][ T9354] RAX: ffffffffffffffda RBX: 00007fc3613e5fa0 RCX: 00007fc36118f6c9 [ 220.736801][ T9354] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000000 [ 220.736817][ T9354] RBP: 00007fc361f76090 R08: 0000000000000000 R09: 0000000000000000 [ 220.736834][ T9354] R10: 0000000003818000 R11: 0000000000000246 R12: 0000000000000001 [ 220.736851][ T9354] R13: 00007fc3613e6038 R14: 00007fc3613e5fa0 R15: 00007ffe1be00da8 [ 220.736873][ T9354] [ 220.984030][ T9331] bridge0: port 1(bridge_slave_0) entered disabled state [ 220.992203][ T9331] bridge_slave_0: entered allmulticast mode [ 221.007736][ T9331] bridge_slave_0: entered promiscuous mode [ 221.017874][ T9356] FAULT_INJECTION: forcing a failure. [ 221.017874][ T9356] name failslab, interval 1, probability 0, space 0, times 0 [ 221.039104][ T9356] CPU: 0 UID: 0 PID: 9356 Comm: syz.0.4395 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 221.039137][ T9356] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 221.039165][ T9356] Call Trace: [ 221.039173][ T9356] [ 221.039181][ T9356] __dump_stack+0x21/0x30 [ 221.039216][ T9356] dump_stack_lvl+0x10c/0x190 [ 221.039244][ T9356] ? __cfi_dump_stack_lvl+0x10/0x10 [ 221.039298][ T9356] dump_stack+0x19/0x20 [ 221.039325][ T9356] should_fail_ex+0x3d9/0x530 [ 221.039361][ T9356] should_failslab+0xac/0x100 [ 221.039395][ T9356] kmem_cache_alloc_node_noprof+0x45/0x440 [ 221.039417][ T9356] ? __alloc_skb+0x10c/0x370 [ 221.039444][ T9356] ? cred_has_capability+0x281/0x380 [ 221.039471][ T9356] __alloc_skb+0x10c/0x370 [ 221.039498][ T9356] rtmsg_ifa+0xfa/0x1f0 [ 221.039544][ T9356] __inet_del_ifa+0x80b/0xda0 [ 221.039585][ T9356] ? __cfi_mutex_lock+0x10/0x10 [ 221.039606][ T9356] ? bpf_lsm_capable+0xd/0x20 [ 221.039628][ T9356] ? full_name_hash+0xa1/0xf0 [ 221.039660][ T9356] devinet_ioctl+0x1031/0x1950 [ 221.039700][ T9356] ? __cfi_devinet_ioctl+0x10/0x10 [ 221.039729][ T9356] ? _copy_from_user+0x8b/0xb0 [ 221.039757][ T9356] ? get_user_ifreq+0x131/0x180 [ 221.039785][ T9356] inet_ioctl+0x3ca/0x4d0 [ 221.039805][ T9356] ? __cfi_inet_ioctl+0x10/0x10 [ 221.039829][ T9356] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 221.039860][ T9356] sock_do_ioctl+0x105/0x330 [ 221.039889][ T9356] ? sock_show_fdinfo+0xd0/0xd0 [ 221.039931][ T9356] ? __cfi_vfs_write+0x10/0x10 [ 221.039957][ T9356] ? __kasan_check_write+0x18/0x20 [ 221.039988][ T9356] ? mutex_unlock+0x8b/0x240 [ 221.040008][ T9356] sock_ioctl+0x634/0x7b0 [ 221.040035][ T9356] ? __cfi_sock_ioctl+0x10/0x10 [ 221.040058][ T9356] ? __fget_files+0x2c5/0x340 [ 221.040110][ T9356] ? bpf_lsm_file_ioctl+0xd/0x20 [ 221.040162][ T9356] ? security_file_ioctl+0x34/0xd0 [ 221.040204][ T9356] ? __cfi_sock_ioctl+0x10/0x10 [ 221.040227][ T9356] __se_sys_ioctl+0x135/0x1b0 [ 221.040252][ T9356] __x64_sys_ioctl+0x7f/0xa0 [ 221.040281][ T9356] x64_sys_call+0x1878/0x2ee0 [ 221.040321][ T9356] do_syscall_64+0x58/0xf0 [ 221.040350][ T9356] ? clear_bhb_loop+0x50/0xa0 [ 221.040375][ T9356] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 221.040408][ T9356] RIP: 0033:0x7f6f4a18f6c9 [ 221.040426][ T9356] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 221.040446][ T9356] RSP: 002b:00007f6f4af69038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 221.040477][ T9356] RAX: ffffffffffffffda RBX: 00007f6f4a3e5fa0 RCX: 00007f6f4a18f6c9 [ 221.040494][ T9356] RDX: 0000200000000080 RSI: 000000000000891a RDI: 0000000000000005 [ 221.040510][ T9356] RBP: 00007f6f4af69090 R08: 0000000000000000 R09: 0000000000000000 [ 221.040525][ T9356] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 221.040539][ T9356] R13: 00007f6f4a3e6038 R14: 00007f6f4a3e5fa0 R15: 00007ffc5d148088 [ 221.040558][ T9356] [ 221.042221][ T9331] bridge0: port 2(bridge_slave_1) entered blocking state [ 221.402925][ T9331] bridge0: port 2(bridge_slave_1) entered disabled state [ 221.417146][ T9331] bridge_slave_1: entered allmulticast mode [ 221.426654][ T9331] bridge_slave_1: entered promiscuous mode [ 221.477307][ T5147] veth1_macvtap: left promiscuous mode [ 221.490955][ T5147] veth0_vlan: left promiscuous mode [ 221.821679][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 221.829282][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 221.883878][ T4424] bridge0: port 2(bridge_slave_1) entered blocking state [ 221.891676][ T4424] bridge0: port 2(bridge_slave_1) entered forwarding state [ 221.961428][ T9331] veth0_vlan: entered promiscuous mode [ 221.989911][ T9331] veth1_macvtap: entered promiscuous mode [ 222.594036][ T9496] FAULT_INJECTION: forcing a failure. [ 222.594036][ T9496] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 222.619539][ T9496] CPU: 0 UID: 0 PID: 9496 Comm: syz.2.4458 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 222.619576][ T9496] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 222.619590][ T9496] Call Trace: [ 222.619597][ T9496] [ 222.619607][ T9496] __dump_stack+0x21/0x30 [ 222.619646][ T9496] dump_stack_lvl+0x10c/0x190 [ 222.619675][ T9496] ? __cfi_dump_stack_lvl+0x10/0x10 [ 222.619707][ T9496] dump_stack+0x19/0x20 [ 222.619736][ T9496] should_fail_ex+0x3d9/0x530 [ 222.619759][ T9496] should_fail+0xf/0x20 [ 222.619779][ T9496] should_fail_usercopy+0x1e/0x30 [ 222.619812][ T9496] strncpy_from_user+0x28/0x270 [ 222.619835][ T9496] getname_flags+0x102/0x710 [ 222.619857][ T9496] ? build_open_flags+0x487/0x600 [ 222.619887][ T9496] getname+0x1b/0x30 [ 222.619908][ T9496] do_sys_openat2+0xcb/0x1c0 [ 222.619936][ T9496] ? fput+0x1a5/0x240 [ 222.619961][ T9496] ? do_sys_open+0x100/0x100 [ 222.619988][ T9496] ? ksys_write+0x1ef/0x250 [ 222.620008][ T9496] ? __cfi_ksys_write+0x10/0x10 [ 222.620030][ T9496] __x64_sys_openat+0x13a/0x170 [ 222.620060][ T9496] x64_sys_call+0xe69/0x2ee0 [ 222.620092][ T9496] do_syscall_64+0x58/0xf0 [ 222.620120][ T9496] ? clear_bhb_loop+0x50/0xa0 [ 222.620145][ T9496] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 222.620169][ T9496] RIP: 0033:0x7f038a78f6c9 [ 222.620187][ T9496] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 222.620207][ T9496] RSP: 002b:00007f038b623038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 222.620232][ T9496] RAX: ffffffffffffffda RBX: 00007f038a9e5fa0 RCX: 00007f038a78f6c9 [ 222.620249][ T9496] RDX: 0000000000028181 RSI: 0000200000000180 RDI: ffffffffffffff9c [ 222.620265][ T9496] RBP: 00007f038b623090 R08: 0000000000000000 R09: 0000000000000000 [ 222.620280][ T9496] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 222.620295][ T9496] R13: 00007f038a9e6038 R14: 00007f038a9e5fa0 R15: 00007ffde9bab368 [ 222.620315][ T9496] [ 223.132643][ T9523] rust_binder: Failed to allocate buffer. len:8, is_oneway:false [ 223.137223][ T36] audit: type=1400 audit(1763288952.450:177): avc: denied { call } for pid=9522 comm="syz.2.4470" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1 [ 223.370220][ T9536] FAT-fs (rnullb0): bogus number of reserved sectors [ 223.387335][ T9536] FAT-fs (rnullb0): Can't find a valid FAT filesystem [ 223.997243][ T63] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 224.157564][ T63] usb 3-1: Using ep0 maxpacket: 16 [ 224.165659][ T63] usb 3-1: config 1 has an invalid interface number: 105 but max is 0 [ 224.183861][ T63] usb 3-1: config 1 has no interface number 0 [ 224.205482][ T63] usb 3-1: config 1 interface 105 altsetting 2 bulk endpoint 0x4 has invalid maxpacket 16 [ 224.237061][ T63] usb 3-1: config 1 interface 105 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 64 [ 224.258013][ T63] usb 3-1: config 1 interface 105 has no altsetting 0 [ 224.279310][ T63] usb 3-1: New USB device found, idVendor=20f4, idProduct=e05a, bcdDevice=6c.6d [ 224.297225][ T63] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 224.317358][ T63] usb 3-1: Product: syz [ 224.318656][ T9586] FAULT_INJECTION: forcing a failure. [ 224.318656][ T9586] name failslab, interval 1, probability 0, space 0, times 0 [ 224.327587][ T63] usb 3-1: Manufacturer: syz [ 224.357351][ T63] usb 3-1: SerialNumber: syz [ 224.367301][ T9586] CPU: 1 UID: 0 PID: 9586 Comm: syz.3.4499 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 224.367341][ T9586] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 224.367355][ T9586] Call Trace: [ 224.367363][ T9586] [ 224.367373][ T9586] __dump_stack+0x21/0x30 [ 224.367409][ T9586] dump_stack_lvl+0x10c/0x190 [ 224.367440][ T9586] ? __cfi_dump_stack_lvl+0x10/0x10 [ 224.367471][ T9586] ? __kasan_check_write+0x18/0x20 [ 224.367507][ T9586] ? proc_fail_nth_write+0x17e/0x210 [ 224.367539][ T9586] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 224.367572][ T9586] dump_stack+0x19/0x20 [ 224.367602][ T9586] should_fail_ex+0x3d9/0x530 [ 224.367627][ T9586] should_failslab+0xac/0x100 [ 224.367654][ T9586] kmem_cache_alloc_noprof+0x42/0x430 [ 224.367675][ T9586] ? getname_flags+0xc6/0x710 [ 224.367712][ T9586] getname_flags+0xc6/0x710 [ 224.367733][ T9586] ? build_open_flags+0x487/0x600 [ 224.367763][ T9586] getname+0x1b/0x30 [ 224.367785][ T9586] do_sys_openat2+0xcb/0x1c0 [ 224.367816][ T9586] ? fput+0x1a5/0x240 [ 224.367843][ T9586] ? do_sys_open+0x100/0x100 [ 224.367873][ T9586] ? ksys_write+0x1ef/0x250 [ 224.367895][ T9586] ? __cfi_ksys_write+0x10/0x10 [ 224.367919][ T9586] __x64_sys_openat+0x13a/0x170 [ 224.367952][ T9586] x64_sys_call+0xe69/0x2ee0 [ 224.368004][ T9586] do_syscall_64+0x58/0xf0 [ 224.368036][ T9586] ? clear_bhb_loop+0x50/0xa0 [ 224.368063][ T9586] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 224.368089][ T9586] RIP: 0033:0x7f82fab8f6c9 [ 224.368109][ T9586] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 224.368130][ T9586] RSP: 002b:00007f82fb97b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 224.368157][ T9586] RAX: ffffffffffffffda RBX: 00007f82fade5fa0 RCX: 00007f82fab8f6c9 [ 224.368176][ T9586] RDX: 0000000000000002 RSI: 0000000000000000 RDI: ffffffffffffff9c [ 224.368192][ T9586] RBP: 00007f82fb97b090 R08: 0000000000000000 R09: 0000000000000000 [ 224.368209][ T9586] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 224.368223][ T9586] R13: 00007f82fade6038 R14: 00007f82fade5fa0 R15: 00007ffe8436b068 [ 224.368245][ T9586] [ 224.372696][ T9554] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 224.531094][ T9592] FAULT_INJECTION: forcing a failure. [ 224.531094][ T9592] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 224.587612][ T9554] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 224.664959][ T9592] CPU: 1 UID: 0 PID: 9592 Comm: syz.3.4502 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 224.665003][ T9592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 224.665021][ T9592] Call Trace: [ 224.665035][ T9592] [ 224.665046][ T9592] __dump_stack+0x21/0x30 [ 224.665086][ T9592] dump_stack_lvl+0x10c/0x190 [ 224.665120][ T9592] ? __cfi_dump_stack_lvl+0x10/0x10 [ 224.665338][ T9592] ? kstrtoull+0x13b/0x1e0 [ 224.665375][ T9592] dump_stack+0x19/0x20 [ 224.665408][ T9592] should_fail_ex+0x3d9/0x530 [ 224.665452][ T9592] should_fail+0xf/0x20 [ 224.665482][ T9592] should_fail_usercopy+0x1e/0x30 [ 224.665510][ T9592] _copy_from_user+0x22/0xb0 [ 224.665540][ T9592] ___sys_sendmsg+0x159/0x2a0 [ 224.665578][ T9592] ? __sys_sendmsg+0x280/0x280 [ 224.665618][ T9592] ? proc_fail_nth_write+0x17e/0x210 [ 224.665650][ T9592] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 224.665691][ T9592] __x64_sys_sendmsg+0x1eb/0x2c0 [ 224.665727][ T9592] ? fput+0x1a5/0x240 [ 224.665758][ T9592] ? __cfi___x64_sys_sendmsg+0x10/0x10 [ 224.665793][ T9592] ? ksys_write+0x1ef/0x250 [ 224.665817][ T9592] ? __kasan_check_read+0x15/0x20 [ 224.665856][ T9592] x64_sys_call+0x2a4c/0x2ee0 [ 224.665893][ T9592] do_syscall_64+0x58/0xf0 [ 224.665931][ T9592] ? clear_bhb_loop+0x50/0xa0 [ 224.665959][ T9592] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 224.665985][ T9592] RIP: 0033:0x7f82fab8f6c9 [ 224.666007][ T9592] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 224.666029][ T9592] RSP: 002b:00007f82fb97b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 224.666058][ T9592] RAX: ffffffffffffffda RBX: 00007f82fade5fa0 RCX: 00007f82fab8f6c9 [ 224.666078][ T9592] RDX: 0000000000040080 RSI: 0000200000000740 RDI: 0000000000000006 [ 224.666095][ T9592] RBP: 00007f82fb97b090 R08: 0000000000000000 R09: 0000000000000000 [ 224.666110][ T9592] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 224.666127][ T9592] R13: 00007f82fade6038 R14: 00007f82fade5fa0 R15: 00007ffe8436b068 [ 224.666149][ T9592] [ 225.280603][ T9623] FAULT_INJECTION: forcing a failure. [ 225.280603][ T9623] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 225.297653][ T9623] CPU: 1 UID: 0 PID: 9623 Comm: syz.3.4516 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 225.297692][ T9623] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 225.297707][ T9623] Call Trace: [ 225.297715][ T9623] [ 225.297724][ T9623] __dump_stack+0x21/0x30 [ 225.297759][ T9623] dump_stack_lvl+0x10c/0x190 [ 225.297789][ T9623] ? __cfi_dump_stack_lvl+0x10/0x10 [ 225.297821][ T9623] ? kstrtoull+0x13b/0x1e0 [ 225.297841][ T9623] dump_stack+0x19/0x20 [ 225.297869][ T9623] should_fail_ex+0x3d9/0x530 [ 225.297893][ T9623] should_fail+0xf/0x20 [ 225.297913][ T9623] should_fail_usercopy+0x1e/0x30 [ 225.297936][ T9623] _copy_from_user+0x22/0xb0 [ 225.297965][ T9623] ___sys_sendmsg+0x159/0x2a0 [ 225.297998][ T9623] ? __sys_sendmsg+0x280/0x280 [ 225.298031][ T9623] ? proc_fail_nth_write+0x17e/0x210 [ 225.298061][ T9623] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 225.298099][ T9623] __x64_sys_sendmsg+0x1eb/0x2c0 [ 225.298132][ T9623] ? fput+0x1a5/0x240 [ 225.298159][ T9623] ? __cfi___x64_sys_sendmsg+0x10/0x10 [ 225.298191][ T9623] ? ksys_write+0x1ef/0x250 [ 225.298214][ T9623] ? __kasan_check_read+0x15/0x20 [ 225.298249][ T9623] x64_sys_call+0x2a4c/0x2ee0 [ 225.298281][ T9623] do_syscall_64+0x58/0xf0 [ 225.298309][ T9623] ? clear_bhb_loop+0x50/0xa0 [ 225.298333][ T9623] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 225.298358][ T9623] RIP: 0033:0x7f82fab8f6c9 [ 225.298376][ T9623] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 225.298397][ T9623] RSP: 002b:00007f82fb97b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 225.298423][ T9623] RAX: ffffffffffffffda RBX: 00007f82fade5fa0 RCX: 00007f82fab8f6c9 [ 225.298441][ T9623] RDX: 0000000000040080 RSI: 0000200000000740 RDI: 0000000000000006 [ 225.298457][ T9623] RBP: 00007f82fb97b090 R08: 0000000000000000 R09: 0000000000000000 [ 225.298472][ T9623] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 225.298486][ T9623] R13: 00007f82fade6038 R14: 00007f82fade5fa0 R15: 00007ffe8436b068 [ 225.298508][ T9623] [ 225.572955][ T9554] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 225.584767][ T9554] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 225.756901][ T9648] FAULT_INJECTION: forcing a failure. [ 225.756901][ T9648] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 225.776932][ T9648] CPU: 1 UID: 0 PID: 9648 Comm: syz.0.4528 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 225.776971][ T9648] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 225.776986][ T9648] Call Trace: [ 225.776993][ T9648] [ 225.777002][ T9648] __dump_stack+0x21/0x30 [ 225.777038][ T9648] dump_stack_lvl+0x10c/0x190 [ 225.777067][ T9648] ? __cfi_dump_stack_lvl+0x10/0x10 [ 225.777098][ T9648] ? kstrtoull+0x13b/0x1e0 [ 225.777119][ T9648] dump_stack+0x19/0x20 [ 225.777175][ T9648] should_fail_ex+0x3d9/0x530 [ 225.777198][ T9648] should_fail+0xf/0x20 [ 225.777218][ T9648] should_fail_usercopy+0x1e/0x30 [ 225.777242][ T9648] _copy_from_user+0x22/0xb0 [ 225.777270][ T9648] ___sys_sendmsg+0x159/0x2a0 [ 225.777304][ T9648] ? __sys_sendmsg+0x280/0x280 [ 225.777336][ T9648] ? proc_fail_nth_write+0x17e/0x210 [ 225.777366][ T9648] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 225.777408][ T9648] __x64_sys_sendmsg+0x1eb/0x2c0 [ 225.777440][ T9648] ? fput+0x1a5/0x240 [ 225.777467][ T9648] ? __cfi___x64_sys_sendmsg+0x10/0x10 [ 225.777498][ T9648] ? ksys_write+0x1ef/0x250 [ 225.777522][ T9648] ? __kasan_check_read+0x15/0x20 [ 225.777555][ T9648] x64_sys_call+0x2a4c/0x2ee0 [ 225.777599][ T9648] do_syscall_64+0x58/0xf0 [ 225.777627][ T9648] ? clear_bhb_loop+0x50/0xa0 [ 225.777652][ T9648] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 225.777677][ T9648] RIP: 0033:0x7f6f4a18f6c9 [ 225.777695][ T9648] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 225.777715][ T9648] RSP: 002b:00007f6f4af69038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 225.777739][ T9648] RAX: ffffffffffffffda RBX: 00007f6f4a3e5fa0 RCX: 00007f6f4a18f6c9 [ 225.777758][ T9648] RDX: 0000000000040080 RSI: 0000200000000740 RDI: 0000000000000006 [ 225.777773][ T9648] RBP: 00007f6f4af69090 R08: 0000000000000000 R09: 0000000000000000 [ 225.777789][ T9648] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 225.777804][ T9648] R13: 00007f6f4a3e6038 R14: 00007f6f4a3e5fa0 R15: 00007ffc5d148088 [ 225.777824][ T9648] [ 226.239061][ T63] aqc111 3-1:1.105 (unnamed net_device) (uninitialized): Failed to read(0x1) reg index 0x0001: -32 [ 226.304146][ T36] audit: type=1400 audit(1763288955.620:178): avc: denied { setopt } for pid=9674 comm="syz.0.4540" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 226.478853][ T63] aqc111 3-1:1.105 (unnamed net_device) (uninitialized): Failed to read(0x1) reg index 0x0001: -71 [ 226.503824][ T63] aqc111 3-1:1.105 eth1: register 'aqc111' at usb-dummy_hcd.2-1, USB-C 3.1 to 5GBASE-T Ethernet Adapter, 56:a6:01:3c:f3:46 [ 226.527345][ T36] audit: type=1400 audit(1763288955.850:179): avc: denied { read } for pid=149 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=1 [ 226.538718][ T63] usb 3-1: USB disconnect, device number 2 [ 226.609907][ T63] aqc111 3-1:1.105 eth1: unregister 'aqc111' usb-dummy_hcd.2-1, USB-C 3.1 to 5GBASE-T Ethernet Adapter [ 226.611655][ T36] audit: type=1400 audit(1763288955.850:180): avc: denied { read } for pid=149 comm="dhcpcd" name="n15" dev="tmpfs" ino=12813 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 226.656856][ T36] audit: type=1400 audit(1763288955.850:181): avc: denied { open } for pid=149 comm="dhcpcd" path="/run/udev/data/n15" dev="tmpfs" ino=12813 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 226.668301][ T9701] No source specified [ 226.722144][ T36] audit: type=1400 audit(1763288955.850:182): avc: denied { getattr } for pid=149 comm="dhcpcd" path="/run/udev/data/n15" dev="tmpfs" ino=12813 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 226.764181][ T63] aqc111 3-1:1.105 eth1 (unregistered): Failed to write(0x1) reg index 0x0002: -19 [ 226.793051][ T63] aqc111 3-1:1.105 eth1 (unregistered): Failed to write(0x1) reg index 0x0002: -19 [ 226.833845][ T63] aqc111 3-1:1.105 eth1 (unregistered): Failed to write(0x61) reg index 0x0000: -19 [ 226.865061][ T36] audit: type=1400 audit(1763288956.180:183): avc: denied { create } for pid=9696 comm="dhcpcd-run-hook" name="resolv.conf.eth1.link" scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 226.911866][ T36] audit: type=1400 audit(1763288956.180:184): avc: denied { write } for pid=9696 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf.eth1.link" dev="tmpfs" ino=12838 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 226.960876][ T36] audit: type=1400 audit(1763288956.180:185): avc: denied { append } for pid=9696 comm="dhcpcd-run-hook" name="resolv.conf.eth1.link" dev="tmpfs" ino=12838 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 227.011722][ T36] audit: type=1400 audit(1763288956.280:186): avc: denied { unlink } for pid=9726 comm="rm" name="resolv.conf.eth1.link" dev="tmpfs" ino=12838 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 227.141884][ T9749] No source specified [ 227.225282][ T9762] No source specified [ 227.566743][ T9803] FAULT_INJECTION: forcing a failure. [ 227.566743][ T9803] name failslab, interval 1, probability 0, space 0, times 0 [ 227.611057][ T9803] CPU: 0 UID: 0 PID: 9803 Comm: syz.2.4587 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 227.611098][ T9803] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 227.611114][ T9803] Call Trace: [ 227.611121][ T9803] [ 227.611132][ T9803] __dump_stack+0x21/0x30 [ 227.611169][ T9803] dump_stack_lvl+0x10c/0x190 [ 227.611200][ T9803] ? __cfi_dump_stack_lvl+0x10/0x10 [ 227.611248][ T9803] ? __kasan_check_write+0x18/0x20 [ 227.611283][ T9803] ? proc_fail_nth_write+0x17e/0x210 [ 227.611313][ T9803] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 227.611344][ T9803] dump_stack+0x19/0x20 [ 227.611373][ T9803] should_fail_ex+0x3d9/0x530 [ 227.611396][ T9803] should_failslab+0xac/0x100 [ 227.611428][ T9803] kmem_cache_alloc_noprof+0x42/0x430 [ 227.611449][ T9803] ? getname_flags+0xc6/0x710 [ 227.611473][ T9803] getname_flags+0xc6/0x710 [ 227.611495][ T9803] ? build_open_flags+0x487/0x600 [ 227.611524][ T9803] getname+0x1b/0x30 [ 227.611545][ T9803] do_sys_openat2+0xcb/0x1c0 [ 227.611579][ T9803] ? fput+0x1a5/0x240 [ 227.611605][ T9803] ? do_sys_open+0x100/0x100 [ 227.611633][ T9803] ? ksys_write+0x1ef/0x250 [ 227.611653][ T9803] ? __cfi_ksys_write+0x10/0x10 [ 227.611678][ T9803] __x64_sys_openat+0x13a/0x170 [ 227.611708][ T9803] x64_sys_call+0xe69/0x2ee0 [ 227.611740][ T9803] do_syscall_64+0x58/0xf0 [ 227.611769][ T9803] ? clear_bhb_loop+0x50/0xa0 [ 227.611793][ T9803] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 227.611816][ T9803] RIP: 0033:0x7f038a78f6c9 [ 227.611836][ T9803] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 227.611857][ T9803] RSP: 002b:00007f038b623038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 227.611882][ T9803] RAX: ffffffffffffffda RBX: 00007f038a9e5fa0 RCX: 00007f038a78f6c9 [ 227.611899][ T9803] RDX: 000000000000275a RSI: 0000200000000080 RDI: ffffffffffffff9c [ 227.611916][ T9803] RBP: 00007f038b623090 R08: 0000000000000000 R09: 0000000000000000 [ 227.611930][ T9803] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 227.611944][ T9803] R13: 00007f038a9e6038 R14: 00007f038a9e5fa0 R15: 00007ffde9bab368 [ 227.611963][ T9803] [ 227.945037][ T9815] FAULT_INJECTION: forcing a failure. [ 227.945037][ T9815] name failslab, interval 1, probability 0, space 0, times 0 [ 228.008601][ T9815] CPU: 1 UID: 0 PID: 9815 Comm: syz.2.4594 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 228.008643][ T9815] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 228.008659][ T9815] Call Trace: [ 228.008666][ T9815] [ 228.008676][ T9815] __dump_stack+0x21/0x30 [ 228.008712][ T9815] dump_stack_lvl+0x10c/0x190 [ 228.008743][ T9815] ? __cfi_dump_stack_lvl+0x10/0x10 [ 228.008775][ T9815] ? __kasan_check_write+0x18/0x20 [ 228.008811][ T9815] ? proc_fail_nth_write+0x17e/0x210 [ 228.008842][ T9815] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 228.008875][ T9815] dump_stack+0x19/0x20 [ 228.008906][ T9815] should_fail_ex+0x3d9/0x530 [ 228.008930][ T9815] should_failslab+0xac/0x100 [ 228.008958][ T9815] kmem_cache_alloc_noprof+0x42/0x430 [ 228.008981][ T9815] ? getname_flags+0xc6/0x710 [ 228.009007][ T9815] getname_flags+0xc6/0x710 [ 228.009030][ T9815] ? build_open_flags+0x487/0x600 [ 228.009062][ T9815] getname+0x1b/0x30 [ 228.009083][ T9815] do_sys_openat2+0xcb/0x1c0 [ 228.009113][ T9815] ? fput+0x1a5/0x240 [ 228.009141][ T9815] ? do_sys_open+0x100/0x100 [ 228.009171][ T9815] ? ksys_write+0x1ef/0x250 [ 228.009192][ T9815] ? __cfi_ksys_write+0x10/0x10 [ 228.009215][ T9815] __x64_sys_openat+0x13a/0x170 [ 228.009248][ T9815] x64_sys_call+0xe69/0x2ee0 [ 228.009282][ T9815] do_syscall_64+0x58/0xf0 [ 228.009313][ T9815] ? clear_bhb_loop+0x50/0xa0 [ 228.009339][ T9815] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 228.009365][ T9815] RIP: 0033:0x7f038a78f6c9 [ 228.009384][ T9815] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 228.009403][ T9815] RSP: 002b:00007f038b623038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 228.009429][ T9815] RAX: ffffffffffffffda RBX: 00007f038a9e5fa0 RCX: 00007f038a78f6c9 [ 228.009447][ T9815] RDX: 000000000000275a RSI: 0000200000000080 RDI: ffffffffffffff9c [ 228.009464][ T9815] RBP: 00007f038b623090 R08: 0000000000000000 R09: 0000000000000000 [ 228.009490][ T9815] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 228.009505][ T9815] R13: 00007f038a9e6038 R14: 00007f038a9e5fa0 R15: 00007ffde9bab368 [ 228.009525][ T9815] [ 228.429820][ T9854] netlink: 44 bytes leftover after parsing attributes in process `syz.1.4612'. [ 228.615756][ T9880] No source specified [ 228.765703][ T9903] No source specified [ 228.843119][ T9914] FAULT_INJECTION: forcing a failure. [ 228.843119][ T9914] name failslab, interval 1, probability 0, space 0, times 0 [ 228.860310][ T9914] CPU: 0 UID: 0 PID: 9914 Comm: syz.0.4639 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 228.860356][ T9914] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 228.860371][ T9914] Call Trace: [ 228.860379][ T9914] [ 228.860388][ T9914] __dump_stack+0x21/0x30 [ 228.860424][ T9914] dump_stack_lvl+0x10c/0x190 [ 228.860454][ T9914] ? __cfi_dump_stack_lvl+0x10/0x10 [ 228.860485][ T9914] ? release_sock+0x171/0x1f0 [ 228.860512][ T9914] dump_stack+0x19/0x20 [ 228.860540][ T9914] should_fail_ex+0x3d9/0x530 [ 228.860563][ T9914] should_failslab+0xac/0x100 [ 228.860589][ T9914] kmem_cache_alloc_node_noprof+0x45/0x440 [ 228.860611][ T9914] ? netlink_data_ready+0x20/0x20 [ 228.860640][ T9914] ? __alloc_skb+0x10c/0x370 [ 228.860667][ T9914] __alloc_skb+0x10c/0x370 [ 228.860694][ T9914] netlink_alloc_large_skb+0xf7/0x1b0 [ 228.860724][ T9914] netlink_sendmsg+0x586/0xaf0 [ 228.860758][ T9914] ? __cfi_netlink_sendmsg+0x10/0x10 [ 228.860791][ T9914] ? bpf_lsm_socket_sendmsg+0xd/0x20 [ 228.860819][ T9914] ? security_socket_sendmsg+0x33/0xd0 [ 228.860840][ T9914] ? __cfi_netlink_sendmsg+0x10/0x10 [ 228.860873][ T9914] ____sys_sendmsg+0xa15/0xa70 [ 228.860907][ T9914] ? __sys_sendmsg_sock+0x50/0x50 [ 228.860941][ T9914] ? import_iovec+0x81/0xb0 [ 228.860971][ T9914] ___sys_sendmsg+0x220/0x2a0 [ 228.861003][ T9914] ? __sys_sendmsg+0x280/0x280 [ 228.861036][ T9914] ? proc_fail_nth_write+0x17e/0x210 [ 228.861066][ T9914] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 228.861103][ T9914] __x64_sys_sendmsg+0x1eb/0x2c0 [ 228.861137][ T9914] ? fput+0x1a5/0x240 [ 228.861163][ T9914] ? __cfi___x64_sys_sendmsg+0x10/0x10 [ 228.861195][ T9914] ? ksys_write+0x1ef/0x250 [ 228.861217][ T9914] ? __kasan_check_read+0x15/0x20 [ 228.861250][ T9914] x64_sys_call+0x2a4c/0x2ee0 [ 228.861282][ T9914] do_syscall_64+0x58/0xf0 [ 228.861309][ T9914] ? clear_bhb_loop+0x50/0xa0 [ 228.861334][ T9914] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 228.861364][ T9914] RIP: 0033:0x7f6f4a18f6c9 [ 228.861382][ T9914] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 228.861402][ T9914] RSP: 002b:00007f6f4af69038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 228.861427][ T9914] RAX: ffffffffffffffda RBX: 00007f6f4a3e5fa0 RCX: 00007f6f4a18f6c9 [ 228.861444][ T9914] RDX: 0000000000000040 RSI: 0000200000000340 RDI: 0000000000000008 [ 228.861459][ T9914] RBP: 00007f6f4af69090 R08: 0000000000000000 R09: 0000000000000000 [ 228.861473][ T9914] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 228.861488][ T9914] R13: 00007f6f4a3e6038 R14: 00007f6f4a3e5fa0 R15: 00007ffc5d148088 [ 228.861508][ T9914] [ 229.332084][ T9944] FAULT_INJECTION: forcing a failure. [ 229.332084][ T9944] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 229.373538][ T9944] CPU: 0 UID: 0 PID: 9944 Comm: syz.1.4653 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 229.373577][ T9944] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 229.373591][ T9944] Call Trace: [ 229.373599][ T9944] [ 229.373608][ T9944] __dump_stack+0x21/0x30 [ 229.373645][ T9944] dump_stack_lvl+0x10c/0x190 [ 229.373676][ T9944] ? __cfi_dump_stack_lvl+0x10/0x10 [ 229.373709][ T9944] dump_stack+0x19/0x20 [ 229.373739][ T9944] should_fail_ex+0x3d9/0x530 [ 229.373763][ T9944] should_fail+0xf/0x20 [ 229.373784][ T9944] should_fail_usercopy+0x1e/0x30 [ 229.373809][ T9944] strncpy_from_user+0x28/0x270 [ 229.373832][ T9944] getname_flags+0x102/0x710 [ 229.373853][ T9944] ? build_open_flags+0x487/0x600 [ 229.373881][ T9944] getname+0x1b/0x30 [ 229.373899][ T9944] do_sys_openat2+0xcb/0x1c0 [ 229.373927][ T9944] ? fput+0x1a5/0x240 [ 229.373955][ T9944] ? do_sys_open+0x100/0x100 [ 229.373982][ T9944] ? ksys_write+0x1ef/0x250 [ 229.374002][ T9944] ? __cfi_ksys_write+0x10/0x10 [ 229.374022][ T9944] __x64_sys_openat+0x13a/0x170 [ 229.374052][ T9944] x64_sys_call+0xe69/0x2ee0 [ 229.374086][ T9944] do_syscall_64+0x58/0xf0 [ 229.374115][ T9944] ? clear_bhb_loop+0x50/0xa0 [ 229.374141][ T9944] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 229.374165][ T9944] RIP: 0033:0x7fc36118f6c9 [ 229.374182][ T9944] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 229.374202][ T9944] RSP: 002b:00007fc361f76038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 229.374226][ T9944] RAX: ffffffffffffffda RBX: 00007fc3613e5fa0 RCX: 00007fc36118f6c9 [ 229.374243][ T9944] RDX: 000000000000275a RSI: 0000200000000080 RDI: ffffffffffffff9c [ 229.374260][ T9944] RBP: 00007fc361f76090 R08: 0000000000000000 R09: 0000000000000000 [ 229.374275][ T9944] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 229.374289][ T9944] R13: 00007fc3613e6038 R14: 00007fc3613e5fa0 R15: 00007ffe1be00da8 [ 229.374308][ T9944] [ 229.751525][ T9981] FAULT_INJECTION: forcing a failure. [ 229.751525][ T9981] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 229.793184][ T9981] CPU: 1 UID: 0 PID: 9981 Comm: syz.3.4672 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 229.793224][ T9981] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 229.793240][ T9981] Call Trace: [ 229.793248][ T9981] [ 229.793258][ T9981] __dump_stack+0x21/0x30 [ 229.793294][ T9981] dump_stack_lvl+0x10c/0x190 [ 229.793324][ T9981] ? __cfi_dump_stack_lvl+0x10/0x10 [ 229.793356][ T9981] ? check_stack_object+0x12c/0x140 [ 229.793394][ T9981] dump_stack+0x19/0x20 [ 229.793424][ T9981] should_fail_ex+0x3d9/0x530 [ 229.793448][ T9981] should_fail+0xf/0x20 [ 229.793469][ T9981] should_fail_usercopy+0x1e/0x30 [ 229.793494][ T9981] _copy_to_user+0x24/0xa0 [ 229.793522][ T9981] simple_read_from_buffer+0xed/0x160 [ 229.793552][ T9981] proc_fail_nth_read+0x19e/0x210 [ 229.793583][ T9981] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 229.793613][ T9981] ? bpf_lsm_file_permission+0xd/0x20 [ 229.793645][ T9981] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 229.793674][ T9981] vfs_read+0x27d/0xc70 [ 229.793695][ T9981] ? __cfi_vfs_read+0x10/0x10 [ 229.793714][ T9981] ? __kasan_check_write+0x18/0x20 [ 229.793748][ T9981] ? mutex_lock+0x92/0x1c0 [ 229.793768][ T9981] ? __cfi_mutex_lock+0x10/0x10 [ 229.793789][ T9981] ? __fget_files+0x2c5/0x340 [ 229.793814][ T9981] ksys_read+0x141/0x250 [ 229.793834][ T9981] ? __cfi_ksys_read+0x10/0x10 [ 229.793854][ T9981] ? __kasan_check_write+0x18/0x20 [ 229.793889][ T9981] ? __kasan_check_read+0x15/0x20 [ 229.793922][ T9981] __x64_sys_read+0x7f/0x90 [ 229.793942][ T9981] x64_sys_call+0x2638/0x2ee0 [ 229.793976][ T9981] do_syscall_64+0x58/0xf0 [ 229.794004][ T9981] ? clear_bhb_loop+0x50/0xa0 [ 229.794029][ T9981] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 229.794053][ T9981] RIP: 0033:0x7f82fab8e0dc [ 229.794071][ T9981] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 229.794090][ T9981] RSP: 002b:00007f82fb97b030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 229.794115][ T9981] RAX: ffffffffffffffda RBX: 00007f82fade5fa0 RCX: 00007f82fab8e0dc [ 229.794131][ T9981] RDX: 000000000000000f RSI: 00007f82fb97b0a0 RDI: 0000000000000009 [ 229.794147][ T9981] RBP: 00007f82fb97b090 R08: 0000000000000000 R09: 0000000000000000 [ 229.794162][ T9981] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 229.794177][ T9981] R13: 00007f82fade6038 R14: 00007f82fade5fa0 R15: 00007ffe8436b068 [ 229.794197][ T9981] [ 230.304550][T10020] FAULT_INJECTION: forcing a failure. [ 230.304550][T10020] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 230.333455][T10020] CPU: 1 UID: 0 PID: 10020 Comm: syz.1.4690 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 230.333497][T10020] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 230.333520][T10020] Call Trace: [ 230.333528][T10020] [ 230.333539][T10020] __dump_stack+0x21/0x30 [ 230.333578][T10020] dump_stack_lvl+0x10c/0x190 [ 230.333611][T10020] ? __cfi_dump_stack_lvl+0x10/0x10 [ 230.333645][T10020] ? check_stack_object+0x12c/0x140 [ 230.333670][T10020] dump_stack+0x19/0x20 [ 230.333702][T10020] should_fail_ex+0x3d9/0x530 [ 230.333729][T10020] should_fail+0xf/0x20 [ 230.333751][T10020] should_fail_usercopy+0x1e/0x30 [ 230.333778][T10020] _copy_to_user+0x24/0xa0 [ 230.333809][T10020] simple_read_from_buffer+0xed/0x160 [ 230.333842][T10020] proc_fail_nth_read+0x19e/0x210 [ 230.333876][T10020] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 230.333909][T10020] ? bpf_lsm_file_permission+0xd/0x20 [ 230.333944][T10020] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 230.333977][T10020] vfs_read+0x27d/0xc70 [ 230.333999][T10020] ? sock_show_fdinfo+0xd0/0xd0 [ 230.334039][T10020] ? __cfi_vfs_read+0x10/0x10 [ 230.334060][T10020] ? __kasan_check_write+0x18/0x20 [ 230.334097][T10020] ? mutex_lock+0x92/0x1c0 [ 230.334119][T10020] ? __cfi_mutex_lock+0x10/0x10 [ 230.334138][T10020] ? __fget_files+0x2c5/0x340 [ 230.334167][T10020] ksys_read+0x141/0x250 [ 230.334188][T10020] ? __cfi_ksys_read+0x10/0x10 [ 230.334211][T10020] ? __kasan_check_read+0x15/0x20 [ 230.334249][T10020] __x64_sys_read+0x7f/0x90 [ 230.334271][T10020] x64_sys_call+0x2638/0x2ee0 [ 230.334308][T10020] do_syscall_64+0x58/0xf0 [ 230.334338][T10020] ? clear_bhb_loop+0x50/0xa0 [ 230.334365][T10020] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 230.334391][T10020] RIP: 0033:0x7fc36118e0dc [ 230.334410][T10020] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 230.334432][T10020] RSP: 002b:00007fc361f76030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 230.334458][T10020] RAX: ffffffffffffffda RBX: 00007fc3613e5fa0 RCX: 00007fc36118e0dc [ 230.334477][T10020] RDX: 000000000000000f RSI: 00007fc361f760a0 RDI: 0000000000000007 [ 230.334493][T10020] RBP: 00007fc361f76090 R08: 0000000000000000 R09: 0000000000000000 [ 230.334510][T10020] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 230.334525][T10020] R13: 00007fc3613e6038 R14: 00007fc3613e5fa0 R15: 00007ffe1be00da8 [ 230.334547][T10020] [ 230.587308][ T63] usb 1-1: new full-speed USB device number 5 using dummy_hcd [ 230.798663][ T63] usb 1-1: config 1 interface 0 altsetting 4 endpoint 0x82 has invalid maxpacket 1024, setting to 64 [ 230.811482][ T63] usb 1-1: config 1 interface 0 has no altsetting 0 [ 230.823373][ T63] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 230.837231][ T63] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 230.861945][ T63] usb 1-1: Product: syz [ 230.884462][ T63] usb 1-1: Manufacturer: syz [ 230.889856][ T63] usb 1-1: SerialNumber: syz [ 230.915482][T10030] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 230.982490][T10070] netlink: 44 bytes leftover after parsing attributes in process `syz.3.4715'. [ 231.073163][T10083] FAULT_INJECTION: forcing a failure. [ 231.073163][T10083] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 231.088032][T10083] CPU: 1 UID: 0 PID: 10083 Comm: syz.3.4722 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 231.088070][T10083] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 231.088085][T10083] Call Trace: [ 231.088093][T10083] [ 231.088103][T10083] __dump_stack+0x21/0x30 [ 231.088138][T10083] dump_stack_lvl+0x10c/0x190 [ 231.088168][T10083] ? __cfi_dump_stack_lvl+0x10/0x10 [ 231.088199][T10083] dump_stack+0x19/0x20 [ 231.088222][T10083] should_fail_ex+0x3d9/0x530 [ 231.088243][T10083] should_fail+0xf/0x20 [ 231.088264][T10083] should_fail_usercopy+0x1e/0x30 [ 231.088288][T10083] strncpy_from_user+0x28/0x270 [ 231.088311][T10083] getname_flags+0x102/0x710 [ 231.088333][T10083] ? build_open_flags+0x487/0x600 [ 231.088363][T10083] getname+0x1b/0x30 [ 231.088385][T10083] do_sys_openat2+0xcb/0x1c0 [ 231.088413][T10083] ? fput+0x1a5/0x240 [ 231.088440][T10083] ? do_sys_open+0x100/0x100 [ 231.088467][T10083] ? ksys_write+0x1ef/0x250 [ 231.088488][T10083] ? __cfi_ksys_write+0x10/0x10 [ 231.088510][T10083] __x64_sys_openat+0x13a/0x170 [ 231.088541][T10083] x64_sys_call+0xe69/0x2ee0 [ 231.088573][T10083] do_syscall_64+0x58/0xf0 [ 231.088601][T10083] ? clear_bhb_loop+0x50/0xa0 [ 231.088626][T10083] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 231.088650][T10083] RIP: 0033:0x7f82fab8f6c9 [ 231.088668][T10083] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 231.088686][T10083] RSP: 002b:00007f82fb97b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 231.088710][T10083] RAX: ffffffffffffffda RBX: 00007f82fade5fa0 RCX: 00007f82fab8f6c9 [ 231.088726][T10083] RDX: 0000000000000000 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 231.088742][T10083] RBP: 00007f82fb97b090 R08: 0000000000000000 R09: 0000000000000000 [ 231.088757][T10083] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 231.088770][T10083] R13: 00007f82fade6038 R14: 00007f82fade5fa0 R15: 00007ffe8436b068 [ 231.088790][T10083] [ 231.131752][ T63] cdc_ether 1-1:1.0: probe with driver cdc_ether failed with error -71 [ 231.367941][ T63] usb 1-1: USB disconnect, device number 5 [ 231.569691][T10130] netlink: 44 bytes leftover after parsing attributes in process `syz.2.4742'. [ 231.608931][T10133] FAULT_INJECTION: forcing a failure. [ 231.608931][T10133] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 231.639274][T10133] CPU: 0 UID: 0 PID: 10133 Comm: syz.1.4743 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 231.639313][T10133] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 231.639327][T10133] Call Trace: [ 231.639333][T10133] [ 231.639342][T10133] __dump_stack+0x21/0x30 [ 231.639376][T10133] dump_stack_lvl+0x10c/0x190 [ 231.639405][T10133] ? __cfi_dump_stack_lvl+0x10/0x10 [ 231.639435][T10133] dump_stack+0x19/0x20 [ 231.639479][T10133] should_fail_ex+0x3d9/0x530 [ 231.639500][T10133] should_fail+0xf/0x20 [ 231.639519][T10133] should_fail_usercopy+0x1e/0x30 [ 231.639541][T10133] strncpy_from_user+0x28/0x270 [ 231.639563][T10133] getname_flags+0x102/0x710 [ 231.639585][T10133] ? __fget_files+0x2c5/0x340 [ 231.639609][T10133] user_path_at+0x2b/0x60 [ 231.639634][T10133] __se_sys_mount+0x288/0x480 [ 231.639655][T10133] ? ksys_write+0x1ef/0x250 [ 231.639675][T10133] ? __x64_sys_mount+0xf0/0xf0 [ 231.639697][T10133] __x64_sys_mount+0xc3/0xf0 [ 231.639718][T10133] x64_sys_call+0x2021/0x2ee0 [ 231.639751][T10133] do_syscall_64+0x58/0xf0 [ 231.639779][T10133] ? clear_bhb_loop+0x50/0xa0 [ 231.639804][T10133] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 231.639827][T10133] RIP: 0033:0x7fc36118f6c9 [ 231.639844][T10133] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 231.639864][T10133] RSP: 002b:00007fc361f76038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 231.639889][T10133] RAX: ffffffffffffffda RBX: 00007fc3613e5fa0 RCX: 00007fc36118f6c9 [ 231.639906][T10133] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000000 [ 231.639921][T10133] RBP: 00007fc361f76090 R08: 0000000000000000 R09: 0000000000000000 [ 231.639936][T10133] R10: 0000000003818000 R11: 0000000000000246 R12: 0000000000000001 [ 231.639952][T10133] R13: 00007fc3613e6038 R14: 00007fc3613e5fa0 R15: 00007ffe1be00da8 [ 231.639969][T10133] [ 232.005413][T10144] netlink: 44 bytes leftover after parsing attributes in process `syz.1.4748'. [ 232.170377][T10147] bridge0: port 1(bridge_slave_0) entered blocking state [ 232.178415][T10147] bridge0: port 1(bridge_slave_0) entered disabled state [ 232.186587][T10147] bridge_slave_0: entered allmulticast mode [ 232.194148][T10147] bridge_slave_0: entered promiscuous mode [ 232.204789][ T5147] bridge_slave_1: left allmulticast mode [ 232.226223][ T5147] bridge_slave_1: left promiscuous mode [ 232.261485][ T5147] bridge0: port 2(bridge_slave_1) entered disabled state [ 232.290587][ T5147] bridge_slave_0: left allmulticast mode [ 232.296560][ T5147] bridge_slave_0: left promiscuous mode [ 232.334606][T10163] FAULT_INJECTION: forcing a failure. [ 232.334606][T10163] name failslab, interval 1, probability 0, space 0, times 0 [ 232.334616][ T5147] bridge0: port 1(bridge_slave_0) entered disabled state [ 232.358663][T10163] CPU: 1 UID: 0 PID: 10163 Comm: syz.2.4756 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 232.358699][T10163] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 232.358713][T10163] Call Trace: [ 232.358720][T10163] [ 232.358728][T10163] __dump_stack+0x21/0x30 [ 232.358762][T10163] dump_stack_lvl+0x10c/0x190 [ 232.358790][T10163] ? __cfi_dump_stack_lvl+0x10/0x10 [ 232.358818][T10163] ? flush_workqueue_prep_pwqs+0x40b/0x4a0 [ 232.358846][T10163] dump_stack+0x19/0x20 [ 232.358874][T10163] should_fail_ex+0x3d9/0x530 [ 232.358895][T10163] should_failslab+0xac/0x100 [ 232.358920][T10163] __kmalloc_cache_noprof+0x41/0x490 [ 232.358942][T10163] ? kvm_uevent_notify_change+0xd9/0x560 [ 232.358973][T10163] kvm_uevent_notify_change+0xd9/0x560 [ 232.359002][T10163] ? blocking_notifier_chain_unregister+0x6f/0xc0 [ 232.359038][T10163] kvm_put_kvm+0xa0/0x12c0 [ 232.359069][T10163] ? kvm_irqfd_release+0x1b0/0x1d0 [ 232.359092][T10163] ? __cfi_kvm_vm_release+0x10/0x10 [ 232.359120][T10163] kvm_vm_release+0x47/0x70 [ 232.359149][T10163] __fput+0x1fb/0xa00 [ 232.359190][T10163] ? __cfi__raw_spin_lock_irq+0x10/0x10 [ 232.359222][T10163] ____fput+0x20/0x30 [ 232.359247][T10163] task_work_run+0x1e0/0x250 [ 232.359273][T10163] ? __cfi_task_work_run+0x10/0x10 [ 232.359298][T10163] ? ksys_dup3+0x1ed/0x270 [ 232.359327][T10163] resume_user_mode_work+0x36/0x50 [ 232.359354][T10163] syscall_exit_to_user_mode+0x64/0xb0 [ 232.359379][T10163] do_syscall_64+0x64/0xf0 [ 232.359407][T10163] ? clear_bhb_loop+0x50/0xa0 [ 232.359432][T10163] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 232.359455][T10163] RIP: 0033:0x7f038a78f6c9 [ 232.359475][T10163] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 232.359495][T10163] RSP: 002b:00007f038b623038 EFLAGS: 00000246 ORIG_RAX: 0000000000000124 [ 232.359530][T10163] RAX: 0000000000000007 RBX: 00007f038a9e5fa0 RCX: 00007f038a78f6c9 [ 232.359551][T10163] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000006 [ 232.359565][T10163] RBP: 00007f038b623090 R08: 0000000000000000 R09: 0000000000000000 [ 232.359580][T10163] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 232.359599][T10163] R13: 00007f038a9e6038 R14: 00007f038a9e5fa0 R15: 00007ffde9bab368 [ 232.359619][T10163] [ 232.370385][T10165] netlink: 44 bytes leftover after parsing attributes in process `syz.1.4757'. [ 232.511426][T10169] netlink: 44 bytes leftover after parsing attributes in process `syz.3.4758'. [ 232.748232][T10147] bridge0: port 2(bridge_slave_1) entered blocking state [ 232.756661][T10147] bridge0: port 2(bridge_slave_1) entered disabled state [ 232.766345][T10147] bridge_slave_1: entered allmulticast mode [ 232.774083][T10147] bridge_slave_1: entered promiscuous mode [ 232.818938][ T5147] veth1_macvtap: left promiscuous mode [ 232.827302][ T5147] veth0_vlan: left promiscuous mode [ 232.877795][T10183] FAULT_INJECTION: forcing a failure. [ 232.877795][T10183] name failslab, interval 1, probability 0, space 0, times 0 [ 232.900577][T10183] CPU: 0 UID: 0 PID: 10183 Comm: syz.3.4764 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 232.900619][T10183] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 232.900635][T10183] Call Trace: [ 232.900642][T10183] [ 232.900652][T10183] __dump_stack+0x21/0x30 [ 232.900688][T10183] dump_stack_lvl+0x10c/0x190 [ 232.900720][T10183] ? __cfi_dump_stack_lvl+0x10/0x10 [ 232.900754][T10183] dump_stack+0x19/0x20 [ 232.900785][T10183] should_fail_ex+0x3d9/0x530 [ 232.900811][T10183] should_failslab+0xac/0x100 [ 232.900840][T10183] kmem_cache_alloc_node_noprof+0x45/0x440 [ 232.900876][T10183] ? dup_task_struct+0xbc/0xc50 [ 232.900904][T10183] ? kasan_save_alloc_info+0x40/0x50 [ 232.900939][T10183] ? __kasan_kmalloc+0x96/0xb0 [ 232.900964][T10183] ? __kmalloc_cache_noprof+0x24c/0x490 [ 232.900989][T10183] dup_task_struct+0xbc/0xc50 [ 232.901017][T10183] ? __kasan_check_write+0x18/0x20 [ 232.901052][T10183] ? _raw_spin_lock_irq+0x8d/0x120 [ 232.901085][T10183] ? copy_process+0x3220/0x3220 [ 232.901113][T10183] ? __kasan_check_write+0x18/0x20 [ 232.901150][T10183] copy_process+0x538/0x3220 [ 232.901198][T10183] ? kasan_save_alloc_info+0x40/0x50 [ 232.901231][T10183] ? __cfi_copy_process+0x10/0x10 [ 232.901262][T10183] ? __kmalloc_cache_noprof+0x24c/0x490 [ 232.901286][T10183] ? __kasan_check_write+0x18/0x20 [ 232.901320][T10183] ? __cfi_kvm_nx_huge_page_recovery_worker+0x10/0x10 [ 232.901348][T10183] vhost_task_create+0x1d6/0x350 [ 232.901372][T10183] ? __cfi_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10 [ 232.901401][T10183] ? __cfi_vhost_task_create+0x10/0x10 [ 232.901424][T10183] ? __cfi_vhost_task_fn+0x10/0x10 [ 232.901446][T10183] ? __kasan_check_write+0x18/0x20 [ 232.901480][T10183] ? mutex_lock+0x92/0x1c0 [ 232.901501][T10183] ? __cfi_mutex_lock+0x10/0x10 [ 232.901522][T10183] ? kernel_text_address+0xa9/0xe0 [ 232.901552][T10183] kvm_mmu_post_init_vm+0x156/0x2d0 [ 232.901586][T10183] kvm_arch_vcpu_ioctl_run+0xd7/0x1aa0 [ 232.901617][T10183] ? _parse_integer_limit+0x195/0x1e0 [ 232.901655][T10183] ? __cfi_kvm_arch_vcpu_ioctl_run+0x10/0x10 [ 232.901685][T10183] ? kstrtoull+0x13b/0x1e0 [ 232.901706][T10183] ? kstrtouint+0x78/0xf0 [ 232.901727][T10183] ? ioctl_has_perm+0x1aa/0x4d0 [ 232.901755][T10183] ? __asan_memcpy+0x5a/0x80 [ 232.901775][T10183] ? ioctl_has_perm+0x3e0/0x4d0 [ 232.901802][T10183] ? has_cap_mac_admin+0xd0/0xd0 [ 232.901829][T10183] ? __kasan_check_write+0x18/0x20 [ 232.901871][T10183] ? mutex_lock_killable+0x92/0x1c0 [ 232.901895][T10183] ? __cfi_mutex_lock_killable+0x10/0x10 [ 232.901918][T10183] ? proc_fail_nth_write+0x17e/0x210 [ 232.901951][T10183] kvm_vcpu_ioctl+0x96f/0xee0 [ 232.901972][T10183] ? __cfi_kvm_vcpu_ioctl+0x10/0x10 [ 232.901992][T10183] ? __cfi_vfs_write+0x10/0x10 [ 232.902014][T10183] ? __kasan_check_write+0x18/0x20 [ 232.902047][T10183] ? mutex_unlock+0x8b/0x240 [ 232.902067][T10183] ? __cfi_mutex_unlock+0x10/0x10 [ 232.902088][T10183] ? __fget_files+0x2c5/0x340 [ 232.902113][T10183] ? __fget_files+0x2c5/0x340 [ 232.902138][T10183] ? bpf_lsm_file_ioctl+0xd/0x20 [ 232.902169][T10183] ? security_file_ioctl+0x34/0xd0 [ 232.902194][T10183] ? __cfi_kvm_vcpu_ioctl+0x10/0x10 [ 232.902214][T10183] __se_sys_ioctl+0x135/0x1b0 [ 232.902239][T10183] __x64_sys_ioctl+0x7f/0xa0 [ 232.902263][T10183] x64_sys_call+0x1878/0x2ee0 [ 232.902296][T10183] do_syscall_64+0x58/0xf0 [ 232.902325][T10183] ? clear_bhb_loop+0x50/0xa0 [ 232.902350][T10183] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 232.902375][T10183] RIP: 0033:0x7f82fab8f6c9 [ 232.902393][T10183] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 232.902414][T10183] RSP: 002b:00007f82fb97b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 232.902439][T10183] RAX: ffffffffffffffda RBX: 00007f82fade5fa0 RCX: 00007f82fab8f6c9 [ 232.902457][T10183] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000008 [ 232.902471][T10183] RBP: 00007f82fb97b090 R08: 0000000000000000 R09: 0000000000000000 [ 232.902485][T10183] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 232.902499][T10183] R13: 00007f82fade6038 R14: 00007f82fade5fa0 R15: 00007ffe8436b068 [ 232.902519][T10183] [ 233.503047][T10195] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4768'. [ 233.557655][ T4424] bridge0: port 1(bridge_slave_0) entered blocking state [ 233.567865][ T4424] bridge0: port 1(bridge_slave_0) entered forwarding state [ 233.596031][ T330] bridge0: port 2(bridge_slave_1) entered blocking state [ 233.605714][ T330] bridge0: port 2(bridge_slave_1) entered forwarding state [ 233.643549][T10204] netlink: 44 bytes leftover after parsing attributes in process `syz.2.4771'. [ 233.650008][T10147] veth0_vlan: entered promiscuous mode [ 233.670537][T10147] veth1_macvtap: entered promiscuous mode [ 233.701491][ T36] kauditd_printk_skb: 4 callbacks suppressed [ 233.701511][ T36] audit: type=1400 audit(1763288963.020:191): avc: denied { unmount } for pid=10147 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 233.785381][T10217] netlink: 44 bytes leftover after parsing attributes in process `syz.2.4776'. [ 233.825727][T10221] netlink: 44 bytes leftover after parsing attributes in process `syz.1.4777'. [ 233.867811][T10228] netlink: 44 bytes leftover after parsing attributes in process `syz.3.4781'. [ 233.882591][T10224] netlink: 44 bytes leftover after parsing attributes in process `syz.2.4780'. [ 234.045119][T10261] netlink: 44 bytes leftover after parsing attributes in process `syz.3.4796'. [ 234.102825][T10269] netlink: 44 bytes leftover after parsing attributes in process `syz.2.4799'. [ 234.213109][T10292] netlink: 44 bytes leftover after parsing attributes in process `syz.3.4810'. [ 234.265889][T10302] fuseblk: Unknown parameter 'r' [ 234.422865][T10319] netlink: 44 bytes leftover after parsing attributes in process `syz.1.4822'. [ 234.545337][T10333] FAULT_INJECTION: forcing a failure. [ 234.545337][T10333] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 234.569655][T10333] CPU: 0 UID: 0 PID: 10333 Comm: syz.3.4830 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 234.569696][T10333] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 234.569711][T10333] Call Trace: [ 234.569718][T10333] [ 234.569727][T10333] __dump_stack+0x21/0x30 [ 234.569762][T10333] dump_stack_lvl+0x10c/0x190 [ 234.569793][T10333] ? __cfi_dump_stack_lvl+0x10/0x10 [ 234.569823][T10333] ? check_stack_object+0x82/0x140 [ 234.569846][T10333] dump_stack+0x19/0x20 [ 234.569874][T10333] should_fail_ex+0x3d9/0x530 [ 234.569897][T10333] should_fail+0xf/0x20 [ 234.569917][T10333] should_fail_usercopy+0x1e/0x30 [ 234.569942][T10333] _copy_from_user+0x22/0xb0 [ 234.569971][T10333] memdup_user+0x81/0x180 [ 234.570017][T10333] ? strndup_user+0x40/0xd0 [ 234.570050][T10333] strndup_user+0x6c/0xd0 [ 234.570084][T10333] __se_sys_mount+0x9f/0x480 [ 234.570106][T10333] ? ksys_write+0x1ef/0x250 [ 234.570128][T10333] ? __x64_sys_mount+0xf0/0xf0 [ 234.570151][T10333] __x64_sys_mount+0xc3/0xf0 [ 234.570172][T10333] x64_sys_call+0x2021/0x2ee0 [ 234.570206][T10333] do_syscall_64+0x58/0xf0 [ 234.570237][T10333] ? clear_bhb_loop+0x50/0xa0 [ 234.570263][T10333] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 234.570287][T10333] RIP: 0033:0x7f82fab8f6c9 [ 234.570306][T10333] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 234.570327][T10333] RSP: 002b:00007f82fb97b038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 234.570353][T10333] RAX: ffffffffffffffda RBX: 00007f82fade5fa0 RCX: 00007f82fab8f6c9 [ 234.570370][T10333] RDX: 0000200000000140 RSI: 0000200000000100 RDI: 0000000000000000 [ 234.570385][T10333] RBP: 00007f82fb97b090 R08: 00002000000001c0 R09: 0000000000000000 [ 234.570401][T10333] R10: 0000000003818000 R11: 0000000000000246 R12: 0000000000000001 [ 234.570415][T10333] R13: 00007f82fade6038 R14: 00007f82fade5fa0 R15: 00007ffe8436b068 [ 234.570434][T10333] [ 237.833730][ T5147] bridge_slave_1: left allmulticast mode [ 237.853570][ T5147] bridge_slave_1: left promiscuous mode [ 237.860152][ T5147] bridge0: port 2(bridge_slave_1) entered disabled state [ 237.871236][ T5147] bridge_slave_0: left allmulticast mode [ 237.877392][ T5147] bridge_slave_0: left promiscuous mode [ 237.883329][ T5147] bridge0: port 1(bridge_slave_0) entered disabled state [ 237.998520][T10610] bridge0: port 1(bridge_slave_0) entered blocking state [ 238.006780][T10610] bridge0: port 1(bridge_slave_0) entered disabled state [ 238.015084][T10610] bridge_slave_0: entered allmulticast mode [ 238.023346][T10610] bridge_slave_0: entered promiscuous mode [ 238.031853][T10610] bridge0: port 2(bridge_slave_1) entered blocking state [ 238.040969][T10610] bridge0: port 2(bridge_slave_1) entered disabled state [ 238.055128][T10610] bridge_slave_1: entered allmulticast mode [ 238.065425][T10610] bridge_slave_1: entered promiscuous mode [ 238.075869][ T5147] veth1_macvtap: left promiscuous mode [ 238.087797][ T5147] veth0_vlan: left promiscuous mode [ 238.277050][T10610] bridge0: port 2(bridge_slave_1) entered blocking state [ 238.286145][T10610] bridge0: port 2(bridge_slave_1) entered forwarding state [ 238.297683][T10610] bridge0: port 1(bridge_slave_0) entered blocking state [ 238.307314][T10610] bridge0: port 1(bridge_slave_0) entered forwarding state [ 238.337910][ T4424] bridge0: port 1(bridge_slave_0) entered disabled state [ 238.350020][ T4424] bridge0: port 2(bridge_slave_1) entered disabled state [ 238.392028][ T4424] bridge0: port 1(bridge_slave_0) entered blocking state [ 238.401469][ T4424] bridge0: port 1(bridge_slave_0) entered forwarding state [ 238.418216][ T4424] bridge0: port 2(bridge_slave_1) entered blocking state [ 238.425678][ T4424] bridge0: port 2(bridge_slave_1) entered forwarding state [ 238.476915][T10610] veth0_vlan: entered promiscuous mode [ 238.514582][T10610] veth1_macvtap: entered promiscuous mode [ 238.817796][T10726] __nla_validate_parse: 11 callbacks suppressed [ 238.817822][T10726] netlink: 44 bytes leftover after parsing attributes in process `syz.1.5010'. [ 239.571976][T10785] netlink: 44 bytes leftover after parsing attributes in process `syz.2.5039'. [ 239.888464][ T46] bridge_slave_1: left allmulticast mode [ 239.894642][ T46] bridge_slave_1: left promiscuous mode [ 239.902212][ T46] bridge0: port 2(bridge_slave_1) entered disabled state [ 239.920279][ T46] bridge_slave_0: left allmulticast mode [ 239.932144][ T46] bridge_slave_0: left promiscuous mode [ 239.939401][ T46] bridge0: port 1(bridge_slave_0) entered disabled state [ 240.100569][ T46] veth1_macvtap: left promiscuous mode [ 240.124024][ T46] veth0_vlan: left promiscuous mode [ 240.262584][T10821] bridge0: port 1(bridge_slave_0) entered blocking state [ 240.281767][T10821] bridge0: port 1(bridge_slave_0) entered disabled state [ 240.292407][T10821] bridge_slave_0: entered allmulticast mode [ 240.299913][T10821] bridge_slave_0: entered promiscuous mode [ 240.307085][T10821] bridge0: port 2(bridge_slave_1) entered blocking state [ 240.331413][T10821] bridge0: port 2(bridge_slave_1) entered disabled state [ 240.347067][T10821] bridge_slave_1: entered allmulticast mode [ 240.357156][T10821] bridge_slave_1: entered promiscuous mode [ 240.525487][T10821] bridge0: port 2(bridge_slave_1) entered blocking state [ 240.533741][T10821] bridge0: port 2(bridge_slave_1) entered forwarding state [ 240.543509][T10821] bridge0: port 1(bridge_slave_0) entered blocking state [ 240.551833][T10821] bridge0: port 1(bridge_slave_0) entered forwarding state [ 240.597465][ T4424] bridge0: port 1(bridge_slave_0) entered disabled state [ 240.609705][ T4424] bridge0: port 2(bridge_slave_1) entered disabled state [ 240.647778][ T4424] bridge0: port 1(bridge_slave_0) entered blocking state [ 240.656746][ T4424] bridge0: port 1(bridge_slave_0) entered forwarding state [ 240.678108][ T4424] bridge0: port 2(bridge_slave_1) entered blocking state [ 240.687244][ T4424] bridge0: port 2(bridge_slave_1) entered forwarding state [ 240.753339][T10821] veth0_vlan: entered promiscuous mode [ 240.775419][T10821] veth1_macvtap: entered promiscuous mode [ 240.941776][T10934] netlink: 44 bytes leftover after parsing attributes in process `syz.1.5102'. [ 243.138508][T11019] netlink: 44 bytes leftover after parsing attributes in process `syz.1.5144'. [ 246.116866][T11111] netlink: 44 bytes leftover after parsing attributes in process `syz.3.5185'. [ 247.486672][T11174] netlink: 44 bytes leftover after parsing attributes in process `syz.1.5215'. [ 250.502270][T11236] netlink: 44 bytes leftover after parsing attributes in process `syz.2.5245'. [ 250.889725][T11256] netlink: 44 bytes leftover after parsing attributes in process `syz.2.5254'. [ 252.222113][T11286] netlink: 44 bytes leftover after parsing attributes in process `syz.2.5264'. [ 252.605020][T11316] netlink: 44 bytes leftover after parsing attributes in process `syz.1.5281'. [ 255.468029][T11427] netlink: 44 bytes leftover after parsing attributes in process `syz.1.5333'. [ 259.669030][T11555] netlink: 44 bytes leftover after parsing attributes in process `syz.1.5397'. [ 272.111918][T12189] netlink: 44 bytes leftover after parsing attributes in process `syz.1.5697'. [ 273.149404][T12278] netlink: 44 bytes leftover after parsing attributes in process `syz.0.5737'. [ 273.795633][T12297] netlink: 44 bytes leftover after parsing attributes in process `syz.2.5747'. [ 276.525680][T12417] netlink: 44 bytes leftover after parsing attributes in process `syz.3.5802'. [ 276.745133][T12442] netlink: 44 bytes leftover after parsing attributes in process `syz.2.5814'. [ 279.360558][T12585] netlink: 44 bytes leftover after parsing attributes in process `syz.0.5880'. [ 282.351273][T12748] netlink: 44 bytes leftover after parsing attributes in process `syz.0.5957'. [ 282.690219][T12795] netlink: 44 bytes leftover after parsing attributes in process `syz.3.5978'. [ 285.934481][T12948] netlink: 44 bytes leftover after parsing attributes in process `syz.0.6054'. [ 287.976379][T13067] netlink: 44 bytes leftover after parsing attributes in process `syz.3.6110'. [ 288.032180][T13071] netlink: 44 bytes leftover after parsing attributes in process `syz.2.6112'. [ 288.687339][T13126] netlink: 44 bytes leftover after parsing attributes in process `syz.1.6139'. [ 289.536718][T13226] netlink: 44 bytes leftover after parsing attributes in process `syz.0.6185'. [ 289.713007][T13240] netlink: 44 bytes leftover after parsing attributes in process `syz.0.6191'. [ 289.856839][T13246] netlink: 44 bytes leftover after parsing attributes in process `syz.0.6194'. [ 290.637545][T13262] netlink: 44 bytes leftover after parsing attributes in process `syz.1.6203'. [ 291.126948][T13305] netlink: 44 bytes leftover after parsing attributes in process `syz.0.6220'. [ 291.428700][T13325] netlink: 44 bytes leftover after parsing attributes in process `syz.0.6229'. [ 291.651705][T13337] 9pnet_fd: Insufficient options for proto=fd [ 291.710563][T13343] netlink: 44 bytes leftover after parsing attributes in process `syz.2.6238'. [ 292.873926][T13445] netlink: 44 bytes leftover after parsing attributes in process `syz.2.6284'. [ 293.499712][T13492] netlink: 44 bytes leftover after parsing attributes in process `syz.1.6305'. [ 293.961468][T13518] netlink: 44 bytes leftover after parsing attributes in process `syz.3.6317'. [ 294.099893][T13522] netlink: 44 bytes leftover after parsing attributes in process `syz.3.6319'. [ 294.553585][T13543] netlink: 44 bytes leftover after parsing attributes in process `syz.2.6326'. [ 295.419172][T13633] netlink: 44 bytes leftover after parsing attributes in process `syz.0.6368'. [ 295.462018][T13631] netlink: 44 bytes leftover after parsing attributes in process `syz.1.6367'. [ 296.445836][T13723] __nla_validate_parse: 3 callbacks suppressed [ 296.445864][T13723] netlink: 44 bytes leftover after parsing attributes in process `syz.2.6409'. [ 296.537766][T13727] netlink: 44 bytes leftover after parsing attributes in process `syz.0.6412'. [ 296.833304][T13749] netlink: 44 bytes leftover after parsing attributes in process `syz.2.6423'. [ 296.880642][T13751] netlink: 44 bytes leftover after parsing attributes in process `syz.0.6424'. [ 297.368986][T13773] netlink: 44 bytes leftover after parsing attributes in process `syz.1.6434'. [ 298.042288][T13806] netlink: 44 bytes leftover after parsing attributes in process `syz.0.6450'. [ 298.424753][T13835] netlink: 44 bytes leftover after parsing attributes in process `syz.3.6463'. [ 298.849590][T13870] netlink: 44 bytes leftover after parsing attributes in process `syz.3.6478'. [ 299.077371][T13896] netlink: 44 bytes leftover after parsing attributes in process `syz.1.6490'. [ 299.161976][T13904] netlink: 44 bytes leftover after parsing attributes in process `syz.0.6492'. [ 300.882136][T14078] cgroup: fork rejected by pids controller in /syz3 [ 301.487966][T14124] __nla_validate_parse: 9 callbacks suppressed [ 301.487991][T14124] netlink: 44 bytes leftover after parsing attributes in process `syz.2.6592'. [ 301.926665][T14155] netlink: 44 bytes leftover after parsing attributes in process `syz.1.6606'. [ 302.110401][T14163] cgroup: fork rejected by pids controller in /syz1 [ 302.195925][T14168] netlink: 44 bytes leftover after parsing attributes in process `syz.3.6605'. [ 302.671078][T14198] netlink: 44 bytes leftover after parsing attributes in process `syz.3.6625'. [ 302.767013][T14207] cgroup: fork rejected by pids controller in /syz2 [ 302.803286][T14212] netlink: 44 bytes leftover after parsing attributes in process `syz.0.6621'. [ 303.073890][T14227] netlink: 44 bytes leftover after parsing attributes in process `syz.0.6636'. [ 303.471982][T14252] netlink: 44 bytes leftover after parsing attributes in process `syz.2.6647'. [ 303.563802][T14257] netlink: 44 bytes leftover after parsing attributes in process `syz.2.6649'. [ 303.848378][T14289] netlink: 44 bytes leftover after parsing attributes in process `syz.3.6663'. [ 304.006593][T14311] netlink: 44 bytes leftover after parsing attributes in process `syz.1.6672'. [ 304.787757][T14356] bridge0: port 1(bridge_slave_0) entered blocking state [ 304.808623][T14356] bridge0: port 1(bridge_slave_0) entered disabled state [ 304.827261][T14356] bridge_slave_0: entered allmulticast mode [ 304.845006][T14356] bridge_slave_0: entered promiscuous mode [ 304.872625][T14356] bridge0: port 2(bridge_slave_1) entered blocking state [ 304.906205][T14356] bridge0: port 2(bridge_slave_1) entered disabled state [ 304.925347][T14356] bridge_slave_1: entered allmulticast mode [ 304.943242][T14356] bridge_slave_1: entered promiscuous mode [ 305.099734][ T5147] bridge_slave_1: left allmulticast mode [ 305.109390][ T5147] bridge_slave_1: left promiscuous mode [ 305.115541][ T5147] bridge0: port 2(bridge_slave_1) entered disabled state [ 305.140052][ T5147] bridge_slave_0: left allmulticast mode [ 305.159977][ T5147] bridge_slave_0: left promiscuous mode [ 305.166791][ T5147] bridge0: port 1(bridge_slave_0) entered disabled state [ 305.334287][T14356] bridge0: port 2(bridge_slave_1) entered blocking state [ 305.341805][T14356] bridge0: port 2(bridge_slave_1) entered forwarding state [ 305.351392][T14356] bridge0: port 1(bridge_slave_0) entered blocking state [ 305.360784][T14356] bridge0: port 1(bridge_slave_0) entered forwarding state [ 305.393455][ T5147] veth1_macvtap: left promiscuous mode [ 305.400889][ T5147] veth0_vlan: left promiscuous mode [ 305.549052][ T4424] bridge0: port 1(bridge_slave_0) entered disabled state [ 305.564564][ T4424] bridge0: port 2(bridge_slave_1) entered disabled state [ 305.588585][ T4424] bridge0: port 1(bridge_slave_0) entered blocking state [ 305.596449][ T4424] bridge0: port 1(bridge_slave_0) entered forwarding state [ 305.622125][ T330] bridge0: port 2(bridge_slave_1) entered blocking state [ 305.629977][ T330] bridge0: port 2(bridge_slave_1) entered forwarding state [ 305.693659][T14356] veth0_vlan: entered promiscuous mode [ 305.710069][T14356] veth1_macvtap: entered promiscuous mode [ 306.548859][T14490] __nla_validate_parse: 3 callbacks suppressed [ 306.548884][T14490] netlink: 44 bytes leftover after parsing attributes in process `syz.2.6747'. [ 306.647438][T14492] netlink: 44 bytes leftover after parsing attributes in process `syz.3.6749'. [ 306.907530][T14514] netlink: 44 bytes leftover after parsing attributes in process `syz.3.6760'. [ 307.292004][T14544] cgroup: fork rejected by pids controller in /syz0 [ 307.878426][T14582] netlink: 44 bytes leftover after parsing attributes in process `syz.0.6790'. [ 307.930459][T14586] netlink: 100 bytes leftover after parsing attributes in process `syz.3.6792'. [ 308.335537][T14607] netlink: 44 bytes leftover after parsing attributes in process `syz.1.6801'. [ 309.248455][T14641] netlink: 100 bytes leftover after parsing attributes in process `syz.0.6818'. [ 309.517487][T14654] netlink: 44 bytes leftover after parsing attributes in process `syz.0.6823'. [ 310.037320][T14682] netlink: 44 bytes leftover after parsing attributes in process `syz.2.6837'. [ 310.505663][T14726] netlink: 44 bytes leftover after parsing attributes in process `syz.0.6858'. [ 311.592027][T14890] __nla_validate_parse: 2 callbacks suppressed [ 311.592053][T14890] netlink: 44 bytes leftover after parsing attributes in process `syz.1.6931'. [ 311.948214][T15012] netlink: 44 bytes leftover after parsing attributes in process `syz.2.6941'. [ 312.029098][T15016] netlink: 44 bytes leftover after parsing attributes in process `syz.1.6944'. [ 312.272870][T15036] netlink: 44 bytes leftover after parsing attributes in process `syz.1.6953'. [ 313.862031][T15093] netlink: 44 bytes leftover after parsing attributes in process `syz.0.6972'. [ 315.048689][T15129] netlink: 44 bytes leftover after parsing attributes in process `syz.0.6989'. [ 315.228512][T15146] netlink: 52 bytes leftover after parsing attributes in process `syz.1.7002'. [ 315.499184][T15156] netlink: 44 bytes leftover after parsing attributes in process `syz.2.7008'. [ 315.637345][T15162] netlink: 44 bytes leftover after parsing attributes in process `syz.2.7011'. [ 315.781082][T15168] netlink: 52 bytes leftover after parsing attributes in process `syz.2.7014'. [ 316.818683][T15270] __nla_validate_parse: 4 callbacks suppressed [ 316.818709][T15270] netlink: 44 bytes leftover after parsing attributes in process `syz.2.7062'. [ 317.258636][T15284] netlink: 44 bytes leftover after parsing attributes in process `syz.2.7069'. [ 317.626551][T15296] netlink: 44 bytes leftover after parsing attributes in process `syz.1.7071'. [ 318.069492][T15305] netlink: 44 bytes leftover after parsing attributes in process `syz.3.7078'. [ 318.553547][T15313] netlink: 44 bytes leftover after parsing attributes in process `syz.2.7084'. [ 318.914192][T15326] netlink: 44 bytes leftover after parsing attributes in process `syz.1.7083'. [ 320.063266][T15347] netlink: 100 bytes leftover after parsing attributes in process `syz.0.7094'. [ 321.485763][T15385] netlink: 44 bytes leftover after parsing attributes in process `syz.0.7115'. [ 321.783700][T15404] netlink: 44 bytes leftover after parsing attributes in process `syz.3.7116'. [ 323.482578][T15460] netlink: 44 bytes leftover after parsing attributes in process `syz.3.7150'. [ 323.770840][T15484] netlink: 44 bytes leftover after parsing attributes in process `syz.2.7160'. [ 324.409389][T15555] netlink: 44 bytes leftover after parsing attributes in process `syz.0.7195'. [ 324.724082][T15580] netlink: 44 bytes leftover after parsing attributes in process `syz.0.7207'. [ 324.953131][T15593] netlink: 108 bytes leftover after parsing attributes in process `syz.0.7214'. [ 325.249272][T15613] netlink: 44 bytes leftover after parsing attributes in process `syz.0.7224'. [ 325.955928][T15638] netlink: 44 bytes leftover after parsing attributes in process `syz.2.7235'. [ 327.737348][T15703] bridge0: port 1(bridge_slave_0) entered blocking state [ 327.745502][T15703] bridge0: port 1(bridge_slave_0) entered disabled state [ 327.797233][T15703] bridge_slave_0: entered allmulticast mode [ 327.805094][T15703] bridge_slave_0: entered promiscuous mode [ 327.844851][T15703] bridge0: port 2(bridge_slave_1) entered blocking state [ 327.889119][T15703] bridge0: port 2(bridge_slave_1) entered disabled state [ 327.907833][T15703] bridge_slave_1: entered allmulticast mode [ 327.927905][T15703] bridge_slave_1: entered promiscuous mode [ 328.011414][ T4424] bridge_slave_1: left allmulticast mode [ 328.020185][ T4424] bridge_slave_1: left promiscuous mode [ 328.026621][ T4424] bridge0: port 2(bridge_slave_1) entered disabled state [ 328.036659][ T4424] bridge_slave_0: left allmulticast mode [ 328.043696][ T4424] bridge_slave_0: left promiscuous mode [ 328.050856][ T4424] bridge0: port 1(bridge_slave_0) entered disabled state [ 328.181266][ T4424] veth1_macvtap: left promiscuous mode [ 328.191040][ T4424] veth0_vlan: left promiscuous mode [ 328.289650][T15737] netlink: 44 bytes leftover after parsing attributes in process `syz.3.7280'. [ 328.379177][T15742] netlink: 100 bytes leftover after parsing attributes in process `syz.3.7281'. [ 328.399569][T15703] bridge0: port 2(bridge_slave_1) entered blocking state [ 328.409139][T15703] bridge0: port 2(bridge_slave_1) entered forwarding state [ 328.418844][T15703] bridge0: port 1(bridge_slave_0) entered blocking state [ 328.426884][T15703] bridge0: port 1(bridge_slave_0) entered forwarding state [ 328.500435][ T46] bridge0: port 1(bridge_slave_0) entered disabled state [ 328.517482][ T46] bridge0: port 2(bridge_slave_1) entered disabled state [ 328.541272][ T5147] bridge0: port 1(bridge_slave_0) entered blocking state [ 328.548738][ T5147] bridge0: port 1(bridge_slave_0) entered forwarding state [ 328.566838][ T46] bridge0: port 2(bridge_slave_1) entered blocking state [ 328.575794][ T46] bridge0: port 2(bridge_slave_1) entered forwarding state [ 328.664535][T15703] veth0_vlan: entered promiscuous mode [ 328.699140][T15703] veth1_macvtap: entered promiscuous mode [ 328.740749][T15763] netlink: 44 bytes leftover after parsing attributes in process `syz.3.7289'. [ 328.799257][T15770] netlink: 44 bytes leftover after parsing attributes in process `syz.2.7291'. [ 328.922519][T15791] netlink: 44 bytes leftover after parsing attributes in process `syz.0.7300'. [ 329.072874][T15806] netlink: 100 bytes leftover after parsing attributes in process `syz.3.7307'. [ 329.088062][T15810] netlink: 44 bytes leftover after parsing attributes in process `syz.2.7309'. [ 329.498944][T15850] netlink: 44 bytes leftover after parsing attributes in process `syz.2.7327'. [ 329.530993][T15854] netlink: 44 bytes leftover after parsing attributes in process `syz.3.7329'. [ 329.799766][T15877] netlink: 44 bytes leftover after parsing attributes in process `syz.1.7340'. [ 329.988137][T15884] bridge0: port 1(bridge_slave_0) entered blocking state [ 330.017227][T15884] bridge0: port 1(bridge_slave_0) entered disabled state [ 330.038659][T15884] bridge_slave_0: entered allmulticast mode [ 330.046745][T15884] bridge_slave_0: entered promiscuous mode [ 330.055174][T15884] bridge0: port 2(bridge_slave_1) entered blocking state [ 330.064390][T15884] bridge0: port 2(bridge_slave_1) entered disabled state [ 330.076589][T15884] bridge_slave_1: entered allmulticast mode [ 330.084145][T15884] bridge_slave_1: entered promiscuous mode [ 330.172240][T16004] netlink: 44 bytes leftover after parsing attributes in process `syz.1.7352'. [ 330.252669][T15884] bridge0: port 2(bridge_slave_1) entered blocking state [ 330.263069][T15884] bridge0: port 2(bridge_slave_1) entered forwarding state [ 330.275491][T15884] bridge0: port 1(bridge_slave_0) entered blocking state [ 330.284890][T15884] bridge0: port 1(bridge_slave_0) entered forwarding state [ 330.340345][ T5147] bridge_slave_1: left allmulticast mode [ 330.346276][ T5147] bridge_slave_1: left promiscuous mode [ 330.366890][ T5147] bridge0: port 2(bridge_slave_1) entered disabled state [ 330.396078][ T5147] bridge_slave_0: left allmulticast mode [ 330.406323][ T5147] bridge_slave_0: left promiscuous mode [ 330.413885][ T5147] bridge0: port 1(bridge_slave_0) entered disabled state [ 330.463142][T16033] netlink: 44 bytes leftover after parsing attributes in process `syz.1.7361'. [ 330.556900][ T46] bridge0: port 1(bridge_slave_0) entered disabled state [ 330.569211][ T46] bridge0: port 2(bridge_slave_1) entered disabled state [ 330.600085][ T5147] veth1_macvtap: left promiscuous mode [ 330.609203][ T5147] veth0_vlan: left promiscuous mode [ 330.730017][ T46] bridge0: port 1(bridge_slave_0) entered blocking state [ 330.739166][ T46] bridge0: port 1(bridge_slave_0) entered forwarding state [ 330.752088][ T46] bridge0: port 2(bridge_slave_1) entered blocking state [ 330.760115][ T46] bridge0: port 2(bridge_slave_1) entered forwarding state [ 330.815541][T15884] veth0_vlan: entered promiscuous mode [ 330.858761][T15884] veth1_macvtap: entered promiscuous mode [ 333.958174][T16320] __nla_validate_parse: 7 callbacks suppressed [ 333.958201][T16320] netlink: 44 bytes leftover after parsing attributes in process `syz.2.7494'. [ 334.260293][T16345] netlink: 44 bytes leftover after parsing attributes in process `syz.3.7504'. [ 335.551279][T16395] netlink: 44 bytes leftover after parsing attributes in process `syz.1.7528'. [ 335.609517][T16397] netlink: 44 bytes leftover after parsing attributes in process `syz.2.7523'. [ 335.984618][T16418] netlink: 44 bytes leftover after parsing attributes in process `syz.0.7529'. [ 336.020825][T16414] bridge0: port 1(bridge_slave_0) entered blocking state [ 336.037441][T16414] bridge0: port 1(bridge_slave_0) entered disabled state [ 336.055509][T16414] bridge_slave_0: entered allmulticast mode [ 336.083438][T16414] bridge_slave_0: entered promiscuous mode [ 336.109346][T16414] bridge0: port 2(bridge_slave_1) entered blocking state [ 336.138421][T16414] bridge0: port 2(bridge_slave_1) entered disabled state [ 336.167256][T16414] bridge_slave_1: entered allmulticast mode [ 336.187672][T16414] bridge_slave_1: entered promiscuous mode [ 336.327398][ T5147] bridge_slave_1: left allmulticast mode [ 336.347194][ T5147] bridge_slave_1: left promiscuous mode [ 336.377393][ T5147] bridge0: port 2(bridge_slave_1) entered disabled state [ 336.407718][ T5147] bridge_slave_0: left allmulticast mode [ 336.413719][ T5147] bridge_slave_0: left promiscuous mode [ 336.432991][ T5147] bridge0: port 1(bridge_slave_0) entered disabled state [ 336.575988][ T5147] veth1_macvtap: left promiscuous mode [ 336.584911][ T5147] veth0_vlan: left promiscuous mode [ 336.772497][T16414] bridge0: port 2(bridge_slave_1) entered blocking state [ 336.782919][T16414] bridge0: port 2(bridge_slave_1) entered forwarding state [ 336.793167][T16414] bridge0: port 1(bridge_slave_0) entered blocking state [ 336.800475][T16414] bridge0: port 1(bridge_slave_0) entered forwarding state [ 336.829107][ T330] bridge0: port 1(bridge_slave_0) entered disabled state [ 336.857664][ T330] bridge0: port 2(bridge_slave_1) entered disabled state [ 336.903354][ T4424] bridge0: port 1(bridge_slave_0) entered blocking state [ 336.912425][ T4424] bridge0: port 1(bridge_slave_0) entered forwarding state [ 336.937576][ T4424] bridge0: port 2(bridge_slave_1) entered blocking state [ 336.946288][ T4424] bridge0: port 2(bridge_slave_1) entered forwarding state [ 337.023819][T16414] veth0_vlan: entered promiscuous mode [ 337.062493][T16414] veth1_macvtap: entered promiscuous mode [ 337.166729][T16440] netlink: 44 bytes leftover after parsing attributes in process `syz.3.7541'. [ 337.256802][T16449] netlink: 44 bytes leftover after parsing attributes in process `syz.1.7548'. [ 337.476875][T16469] netlink: 44 bytes leftover after parsing attributes in process `syz.1.7556'. [ 337.656486][T16488] netlink: 44 bytes leftover after parsing attributes in process `syz.1.7564'. [ 340.181172][T16538] netlink: 44 bytes leftover after parsing attributes in process `syz.1.7589'. [ 340.193511][T16539] netlink: 44 bytes leftover after parsing attributes in process `syz.2.7590'. [ 340.372033][T16563] netlink: 44 bytes leftover after parsing attributes in process `syz.1.7599'. [ 340.508282][T16583] netlink: 44 bytes leftover after parsing attributes in process `syz.2.7609'. [ 340.560699][T16590] netlink: 44 bytes leftover after parsing attributes in process `syz.2.7611'. [ 340.744147][T16612] netlink: 44 bytes leftover after parsing attributes in process `syz.2.7622'. [ 340.808549][T16619] netlink: 44 bytes leftover after parsing attributes in process `syz.2.7624'. [ 340.870653][T16628] netlink: 44 bytes leftover after parsing attributes in process `syz.3.7628'. [ 340.968142][T16638] netlink: 44 bytes leftover after parsing attributes in process `syz.2.7633'. [ 341.109056][T16656] netlink: 44 bytes leftover after parsing attributes in process `syz.1.7641'. [ 345.269287][T16993] __nla_validate_parse: 23 callbacks suppressed [ 345.269313][T16993] netlink: 44 bytes leftover after parsing attributes in process `syz.3.7799'. [ 345.388140][T16997] netlink: 44 bytes leftover after parsing attributes in process `syz.3.7802'. [ 345.888656][T17008] netlink: 44 bytes leftover after parsing attributes in process `syz.0.7808'. [ 346.181618][T17017] netlink: 44 bytes leftover after parsing attributes in process `syz.1.7812'. [ 346.361270][T17029] netlink: 44 bytes leftover after parsing attributes in process `syz.2.7816'. [ 346.639883][T17052] netlink: 44 bytes leftover after parsing attributes in process `syz.2.7827'. [ 346.743210][T17056] netlink: 44 bytes leftover after parsing attributes in process `syz.2.7829'. [ 346.993216][T17074] netlink: 44 bytes leftover after parsing attributes in process `syz.3.7837'. [ 347.084256][T17082] netlink: 44 bytes leftover after parsing attributes in process `syz.2.7840'. [ 347.118344][T17086] netlink: 44 bytes leftover after parsing attributes in process `syz.0.7841'. [ 350.401458][T17364] __nla_validate_parse: 12 callbacks suppressed [ 350.401486][T17364] netlink: 44 bytes leftover after parsing attributes in process `syz.1.7969'. [ 350.420072][T17370] netlink: 44 bytes leftover after parsing attributes in process `syz.0.7972'. [ 350.614755][T17410] netlink: 44 bytes leftover after parsing attributes in process `syz.3.7990'. [ 350.626884][T17411] netlink: 44 bytes leftover after parsing attributes in process `syz.0.7989'. [ 350.762760][T17438] netlink: 44 bytes leftover after parsing attributes in process `syz.3.8003'. [ 350.861375][T17450] netlink: 44 bytes leftover after parsing attributes in process `syz.3.8008'. [ 350.952001][T17463] netlink: 44 bytes leftover after parsing attributes in process `syz.1.8014'. [ 352.264548][T17506] netlink: 100 bytes leftover after parsing attributes in process `syz.1.8037'. [ 352.283523][T17508] netlink: 44 bytes leftover after parsing attributes in process `syz.3.8033'. [ 352.457924][T17531] netlink: 100 bytes leftover after parsing attributes in process `syz.2.8047'. [ 355.445266][T17808] __nla_validate_parse: 8 callbacks suppressed [ 355.445293][T17808] netlink: 52 bytes leftover after parsing attributes in process `syz.0.8169'. [ 355.642403][T17837] netlink: 100 bytes leftover after parsing attributes in process `syz.0.8181'. [ 355.807538][T17856] 9pnet_fd: Insufficient options for proto=fd [ 355.923446][T17871] netlink: 44 bytes leftover after parsing attributes in process `syz.2.8195'. [ 356.039879][T17888] netlink: 44 bytes leftover after parsing attributes in process `syz.3.8201'. [ 356.465632][T17934] netlink: 44 bytes leftover after parsing attributes in process `syz.0.8224'. [ 356.629092][T17952] netlink: 44 bytes leftover after parsing attributes in process `syz.3.8231'. [ 357.143787][T18016] netlink: 44 bytes leftover after parsing attributes in process `syz.1.8260'. [ 357.221446][T18029] netlink: 44 bytes leftover after parsing attributes in process `syz.1.8265'. [ 357.254199][T18027] netlink: 52 bytes leftover after parsing attributes in process `syz.0.8263'. [ 357.448446][T18052] netlink: 44 bytes leftover after parsing attributes in process `syz.3.8276'. [ 359.145609][T18166] 9pnet_fd: Insufficient options for proto=fd [ 360.556376][T18303] __nla_validate_parse: 17 callbacks suppressed [ 360.556403][T18303] netlink: 44 bytes leftover after parsing attributes in process `syz.1.8385'. [ 361.092171][T18326] netlink: 44 bytes leftover after parsing attributes in process `syz.1.8395'. [ 361.598856][T18357] netlink: 44 bytes leftover after parsing attributes in process `syz.2.8409'. [ 361.749025][T18388] netlink: 44 bytes leftover after parsing attributes in process `syz.1.8423'. [ 361.768356][T18390] netlink: 100 bytes leftover after parsing attributes in process `syz.0.8424'. [ 361.795907][T18394] netlink: 44 bytes leftover after parsing attributes in process `syz.2.8426'. [ 361.964586][T18419] netlink: 44 bytes leftover after parsing attributes in process `syz.2.8437'. [ 362.020285][T18422] netlink: 44 bytes leftover after parsing attributes in process `syz.0.8439'. [ 362.154794][T18433] netlink: 44 bytes leftover after parsing attributes in process `syz.2.8444'. [ 362.691480][T18477] netlink: 44 bytes leftover after parsing attributes in process `syz.2.8466'. [ 362.707568][T18484] 9pnet_fd: Insufficient options for proto=fd [ 363.055466][T18534] 9pnet_fd: Insufficient options for proto=fd [ 364.389481][T18641] 9pnet_fd: Insufficient options for proto=fd [ 365.380575][T18735] 9pnet_fd: Insufficient options for proto=fd [ 365.663164][T18763] __nla_validate_parse: 21 callbacks suppressed [ 365.663190][T18763] netlink: 44 bytes leftover after parsing attributes in process `syz.0.8597'. [ 366.148163][T18812] netlink: 108 bytes leftover after parsing attributes in process `syz.0.8618'. [ 366.278084][T18822] netlink: 44 bytes leftover after parsing attributes in process `syz.0.8622'. [ 366.627758][T18834] netlink: 108 bytes leftover after parsing attributes in process `syz.0.8630'. [ 367.171901][T18864] netlink: 44 bytes leftover after parsing attributes in process `syz.1.8643'. [ 367.474675][T18891] netlink: 108 bytes leftover after parsing attributes in process `syz.1.8655'. [ 367.987456][T18939] netlink: 44 bytes leftover after parsing attributes in process `syz.2.8677'. [ 368.088282][T18947] 9pnet: Could not find request transport: fd0x0000000000000008 [ 368.401577][T18962] netlink: 44 bytes leftover after parsing attributes in process `syz.3.8688'. [ 368.642423][T18978] netlink: 108 bytes leftover after parsing attributes in process `syz.3.8697'. [ 368.732092][T18985] netlink: 100 bytes leftover after parsing attributes in process `syz.1.8690'. [ 369.011749][T19004] 9pnet: Could not find request transport: fd0x0000000000000008 [ 370.417995][T19054] 9pnet_fd: Insufficient options for proto=fd [ 370.857829][T19091] __nla_validate_parse: 9 callbacks suppressed [ 370.857856][T19091] netlink: 44 bytes leftover after parsing attributes in process `syz.1.8748'. [ 370.965163][T19103] 9pnet_fd: Insufficient options for proto=fd [ 370.980863][T19105] netlink: 100 bytes leftover after parsing attributes in process `syz.2.8753'. [ 371.014907][T19109] netlink: 44 bytes leftover after parsing attributes in process `syz.3.8756'. [ 371.172031][T19132] netlink: 44 bytes leftover after parsing attributes in process `syz.3.8767'. [ 371.183663][T19130] netlink: 44 bytes leftover after parsing attributes in process `syz.1.8766'. [ 371.357472][T19156] netlink: 44 bytes leftover after parsing attributes in process `syz.3.8779'. [ 371.406174][T19161] netlink: 44 bytes leftover after parsing attributes in process `syz.2.8781'. [ 371.476387][T19173] netlink: 100 bytes leftover after parsing attributes in process `syz.2.8786'. [ 371.511718][T19179] netlink: 44 bytes leftover after parsing attributes in process `syz.1.8789'. [ 371.578298][T19196] netlink: 100 bytes leftover after parsing attributes in process `syz.1.8797'. [ 375.937846][T19456] __nla_validate_parse: 21 callbacks suppressed [ 375.937875][T19456] netlink: 44 bytes leftover after parsing attributes in process `syz.0.8923'. [ 376.240691][T19474] netlink: 108 bytes leftover after parsing attributes in process `syz.2.8930'. [ 377.049847][T19505] netlink: 108 bytes leftover after parsing attributes in process `syz.0.8943'. [ 378.277733][T19538] bridge0: port 1(bridge_slave_0) entered blocking state [ 378.284846][T19538] bridge0: port 1(bridge_slave_0) entered disabled state [ 378.329698][T19545] netlink: 108 bytes leftover after parsing attributes in process `syz.0.8960'. [ 378.339352][T19538] bridge_slave_0: entered allmulticast mode [ 378.345840][T19538] bridge_slave_0: entered promiscuous mode [ 378.357486][T19538] bridge0: port 2(bridge_slave_1) entered blocking state [ 378.369697][T19538] bridge0: port 2(bridge_slave_1) entered disabled state [ 378.376922][T19538] bridge_slave_1: entered allmulticast mode [ 378.397673][T19538] bridge_slave_1: entered promiscuous mode [ 378.508465][ T330] bridge_slave_1: left allmulticast mode [ 378.514563][ T330] bridge_slave_1: left promiscuous mode [ 378.524581][ T330] bridge0: port 2(bridge_slave_1) entered disabled state [ 378.540265][ T330] bridge_slave_0: left allmulticast mode [ 378.561596][ T330] bridge_slave_0: left promiscuous mode [ 378.571793][ T330] bridge0: port 1(bridge_slave_0) entered disabled state [ 378.723210][ T330] veth1_macvtap: left promiscuous mode [ 378.740487][ T330] veth0_vlan: left promiscuous mode [ 378.897919][T19538] bridge0: port 2(bridge_slave_1) entered blocking state [ 378.905048][T19538] bridge0: port 2(bridge_slave_1) entered forwarding state [ 378.912425][T19538] bridge0: port 1(bridge_slave_0) entered blocking state [ 378.919518][T19538] bridge0: port 1(bridge_slave_0) entered forwarding state [ 378.949915][T19569] netlink: 44 bytes leftover after parsing attributes in process `syz.2.8968'. [ 379.003305][ T5147] bridge0: port 1(bridge_slave_0) entered disabled state [ 379.023998][ T5147] bridge0: port 2(bridge_slave_1) entered disabled state [ 379.060067][ T5147] bridge0: port 1(bridge_slave_0) entered blocking state [ 379.067472][ T5147] bridge0: port 1(bridge_slave_0) entered forwarding state [ 379.092876][ T5147] bridge0: port 2(bridge_slave_1) entered blocking state [ 379.100014][ T5147] bridge0: port 2(bridge_slave_1) entered forwarding state [ 379.180297][T19538] veth0_vlan: entered promiscuous mode [ 379.207874][T19538] veth1_macvtap: entered promiscuous mode [ 379.357282][T19584] netlink: 44 bytes leftover after parsing attributes in process `syz.1.8975'. [ 379.403237][T19586] netlink: 108 bytes leftover after parsing attributes in process `syz.3.8976'. [ 379.512074][T19592] netlink: 44 bytes leftover after parsing attributes in process `syz.1.8979'. [ 379.620201][T19604] netlink: 44 bytes leftover after parsing attributes in process `syz.3.8984'. [ 379.820129][T19617] netlink: 108 bytes leftover after parsing attributes in process `syz.3.8997'. [ 381.018067][T19717] __nla_validate_parse: 6 callbacks suppressed [ 381.018093][T19717] netlink: 44 bytes leftover after parsing attributes in process `syz.2.9036'. [ 381.103276][T19724] netlink: 44 bytes leftover after parsing attributes in process `syz.0.9040'. [ 381.153420][T19731] netlink: 100 bytes leftover after parsing attributes in process `syz.1.9042'. [ 381.337654][T19749] netlink: 44 bytes leftover after parsing attributes in process `syz.1.9050'. [ 381.600954][T19763] netlink: 100 bytes leftover after parsing attributes in process `syz.1.9057'. [ 382.887960][T19812] netlink: 100 bytes leftover after parsing attributes in process `syz.0.9081'. [ 383.244604][T19837] netlink: 44 bytes leftover after parsing attributes in process `syz.2.9084'. [ 383.340271][T19848] netlink: 44 bytes leftover after parsing attributes in process `syz.2.9097'. [ 384.008276][T19883] netlink: 44 bytes leftover after parsing attributes in process `syz.0.9113'. [ 384.140940][T19889] netlink: 100 bytes leftover after parsing attributes in process `syz.0.9117'. [ 387.007496][T19975] __nla_validate_parse: 5 callbacks suppressed [ 387.007522][T19975] netlink: 108 bytes leftover after parsing attributes in process `syz.0.9157'. [ 387.120248][T19979] netlink: 44 bytes leftover after parsing attributes in process `syz.0.9159'. [ 387.170873][T19982] netlink: 100 bytes leftover after parsing attributes in process `syz.1.9155'. [ 387.300392][T19992] netlink: 44 bytes leftover after parsing attributes in process `syz.0.9164'. [ 387.606019][T20002] netlink: 100 bytes leftover after parsing attributes in process `syz.0.9169'. [ 387.687660][T20006] netlink: 100 bytes leftover after parsing attributes in process `syz.0.9171'. [ 387.761409][T20012] netlink: 44 bytes leftover after parsing attributes in process `syz.3.9174'. [ 388.758663][T20036] netlink: 44 bytes leftover after parsing attributes in process `syz.3.9186'. [ 388.908534][T20047] netlink: 108 bytes leftover after parsing attributes in process `syz.0.9183'. [ 389.028398][T20057] netlink: 44 bytes leftover after parsing attributes in process `syz.0.9196'. [ 392.050308][T20280] __nla_validate_parse: 14 callbacks suppressed [ 392.050340][T20280] netlink: 108 bytes leftover after parsing attributes in process `syz.1.9300'. [ 392.160160][T20284] netlink: 44 bytes leftover after parsing attributes in process `syz.1.9302'. [ 393.050937][T20329] netlink: 44 bytes leftover after parsing attributes in process `syz.3.9324'. [ 393.080083][T20335] netlink: 44 bytes leftover after parsing attributes in process `syz.3.9327'. [ 393.368964][T20371] netlink: 44 bytes leftover after parsing attributes in process `syz.0.9343'. [ 393.410717][T20377] netlink: 108 bytes leftover after parsing attributes in process `syz.0.9347'. [ 393.459376][T20382] netlink: 44 bytes leftover after parsing attributes in process `syz.0.9349'. [ 393.649274][T20406] netlink: 108 bytes leftover after parsing attributes in process `syz.1.9359'. [ 393.764275][T20414] netlink: 108 bytes leftover after parsing attributes in process `syz.1.9363'. [ 393.975026][T20432] netlink: 108 bytes leftover after parsing attributes in process `syz.0.9372'. [ 397.243813][T20650] __nla_validate_parse: 19 callbacks suppressed [ 397.243838][T20650] netlink: 100 bytes leftover after parsing attributes in process `syz.3.9471'. [ 397.319213][T20656] netlink: 108 bytes leftover after parsing attributes in process `syz.3.9473'. [ 397.519696][T20674] netlink: 100 bytes leftover after parsing attributes in process `syz.1.9482'. [ 397.607472][T20680] netlink: 108 bytes leftover after parsing attributes in process `syz.1.9484'. [ 397.757406][T20693] netlink: 44 bytes leftover after parsing attributes in process `syz.1.9490'. [ 397.771675][T20695] netlink: 108 bytes leftover after parsing attributes in process `syz.3.9491'. [ 397.808032][T20698] netlink: 100 bytes leftover after parsing attributes in process `syz.1.9493'. [ 397.908381][T20711] netlink: 100 bytes leftover after parsing attributes in process `syz.2.9498'. [ 398.232901][T20729] netlink: 108 bytes leftover after parsing attributes in process `syz.2.9506'. [ 398.445183][T20737] netlink: 108 bytes leftover after parsing attributes in process `syz.2.9510'. [ 402.437438][T20996] __nla_validate_parse: 20 callbacks suppressed [ 402.437464][T20996] netlink: 100 bytes leftover after parsing attributes in process `syz.3.9634'. [ 402.510948][T21002] netlink: 44 bytes leftover after parsing attributes in process `syz.3.9637'. [ 402.588188][T21013] netlink: 108 bytes leftover after parsing attributes in process `syz.1.9641'. [ 402.628588][T21017] netlink: 44 bytes leftover after parsing attributes in process `syz.2.9643'. [ 402.654925][T21020] netlink: 100 bytes leftover after parsing attributes in process `syz.3.9645'. [ 402.671137][T21021] netlink: 108 bytes leftover after parsing attributes in process `syz.1.9644'. [ 402.753558][T21032] netlink: 44 bytes leftover after parsing attributes in process `syz.3.9650'. [ 403.087470][T21049] netlink: 100 bytes leftover after parsing attributes in process `syz.0.9656'. [ 403.222146][T21053] netlink: 100 bytes leftover after parsing attributes in process `syz.0.9660'. [ 404.010986][T21066] netlink: 108 bytes leftover after parsing attributes in process `syz.3.9667'. [ 405.136696][T21160] bridge0: port 1(bridge_slave_0) entered blocking state [ 405.157141][T21160] bridge0: port 1(bridge_slave_0) entered disabled state [ 405.177180][T21160] bridge_slave_0: entered allmulticast mode [ 405.197676][T21160] bridge_slave_0: entered promiscuous mode [ 405.204361][T21160] bridge0: port 2(bridge_slave_1) entered blocking state [ 405.227148][T21160] bridge0: port 2(bridge_slave_1) entered disabled state [ 405.234552][T21160] bridge_slave_1: entered allmulticast mode [ 405.257677][T21160] bridge_slave_1: entered promiscuous mode [ 405.430646][T21160] bridge0: port 2(bridge_slave_1) entered blocking state [ 405.437873][T21160] bridge0: port 2(bridge_slave_1) entered forwarding state [ 405.445244][T21160] bridge0: port 1(bridge_slave_0) entered blocking state [ 405.452350][T21160] bridge0: port 1(bridge_slave_0) entered forwarding state [ 405.513570][ T330] bridge_slave_1: left allmulticast mode [ 405.530423][ T330] bridge_slave_1: left promiscuous mode [ 405.538298][ T330] bridge0: port 2(bridge_slave_1) entered disabled state [ 405.558004][ T330] bridge_slave_0: left allmulticast mode [ 405.563881][ T330] bridge_slave_0: left promiscuous mode [ 405.577426][ T330] bridge0: port 1(bridge_slave_0) entered disabled state [ 405.730878][ T4424] bridge0: port 1(bridge_slave_0) entered disabled state [ 405.738608][ T4424] bridge0: port 2(bridge_slave_1) entered disabled state [ 405.762136][ T330] veth1_macvtap: left promiscuous mode [ 405.776278][ T330] veth0_vlan: left promiscuous mode [ 405.914082][ T4424] bridge0: port 1(bridge_slave_0) entered blocking state [ 405.921221][ T4424] bridge0: port 1(bridge_slave_0) entered forwarding state [ 405.964319][ T5147] bridge0: port 2(bridge_slave_1) entered blocking state [ 405.971651][ T5147] bridge0: port 2(bridge_slave_1) entered forwarding state [ 406.049682][T21160] veth0_vlan: entered promiscuous mode [ 406.063124][T21160] veth1_macvtap: entered promiscuous mode [ 407.480966][T21353] __nla_validate_parse: 16 callbacks suppressed [ 407.480991][T21353] netlink: 108 bytes leftover after parsing attributes in process `syz.3.9791'. [ 407.509086][T21351] netlink: 44 bytes leftover after parsing attributes in process `syz.0.9790'. [ 407.730230][T21375] netlink: 108 bytes leftover after parsing attributes in process `syz.0.9801'. [ 408.031812][T21389] netlink: 108 bytes leftover after parsing attributes in process `syz.3.9808'. [ 408.138022][T21387] bridge0: port 1(bridge_slave_0) entered blocking state [ 408.157148][T21387] bridge0: port 1(bridge_slave_0) entered disabled state [ 408.159425][T21394] netlink: 108 bytes leftover after parsing attributes in process `syz.3.9810'. [ 408.164286][T21387] bridge_slave_0: entered allmulticast mode [ 408.187876][T21387] bridge_slave_0: entered promiscuous mode [ 408.194575][T21387] bridge0: port 2(bridge_slave_1) entered blocking state [ 408.207935][T21387] bridge0: port 2(bridge_slave_1) entered disabled state [ 408.215063][T21387] bridge_slave_1: entered allmulticast mode [ 408.221759][T21387] bridge_slave_1: entered promiscuous mode [ 408.289177][T21396] netlink: 108 bytes leftover after parsing attributes in process `syz.3.9811'. [ 408.340478][T21398] netlink: 44 bytes leftover after parsing attributes in process `syz.3.9812'. [ 408.366210][ T4424] bridge_slave_1: left allmulticast mode [ 408.372506][ T4424] bridge_slave_1: left promiscuous mode [ 408.378551][ T4424] bridge0: port 2(bridge_slave_1) entered disabled state [ 408.386470][ T4424] bridge_slave_0: left allmulticast mode [ 408.394319][ T4424] bridge_slave_0: left promiscuous mode [ 408.402659][ T4424] bridge0: port 1(bridge_slave_0) entered disabled state [ 408.538094][ T4424] veth1_macvtap: left promiscuous mode [ 408.543717][ T4424] veth0_vlan: left promiscuous mode [ 408.687919][T21387] bridge0: port 2(bridge_slave_1) entered blocking state [ 408.695036][T21387] bridge0: port 2(bridge_slave_1) entered forwarding state [ 408.702399][T21387] bridge0: port 1(bridge_slave_0) entered blocking state [ 408.709575][T21387] bridge0: port 1(bridge_slave_0) entered forwarding state [ 408.792030][ T330] bridge0: port 1(bridge_slave_0) entered disabled state [ 408.799917][ T330] bridge0: port 2(bridge_slave_1) entered disabled state [ 408.819831][ T330] bridge0: port 1(bridge_slave_0) entered blocking state [ 408.826919][ T330] bridge0: port 1(bridge_slave_0) entered forwarding state [ 408.866027][ T330] bridge0: port 2(bridge_slave_1) entered blocking state [ 408.873181][ T330] bridge0: port 2(bridge_slave_1) entered forwarding state [ 408.916327][T21414] netlink: 108 bytes leftover after parsing attributes in process `syz.1.9816'. [ 408.923562][T21387] veth0_vlan: entered promiscuous mode [ 408.956835][T21387] veth1_macvtap: entered promiscuous mode [ 409.507453][T21437] netlink: 100 bytes leftover after parsing attributes in process `syz.2.9827'. [ 409.592900][T21442] netlink: 108 bytes leftover after parsing attributes in process `syz.3.9826'. [ 411.973815][T21572] bridge0: port 1(bridge_slave_0) entered blocking state [ 411.980982][T21572] bridge0: port 1(bridge_slave_0) entered disabled state [ 411.988145][T21572] bridge_slave_0: entered allmulticast mode [ 411.994830][T21572] bridge_slave_0: entered promiscuous mode [ 412.002025][T21572] bridge0: port 2(bridge_slave_1) entered blocking state [ 412.009175][T21572] bridge0: port 2(bridge_slave_1) entered disabled state [ 412.016284][T21572] bridge_slave_1: entered allmulticast mode [ 412.022848][T21572] bridge_slave_1: entered promiscuous mode [ 412.232501][T21572] bridge0: port 2(bridge_slave_1) entered blocking state [ 412.239610][T21572] bridge0: port 2(bridge_slave_1) entered forwarding state [ 412.246941][T21572] bridge0: port 1(bridge_slave_0) entered blocking state [ 412.254125][T21572] bridge0: port 1(bridge_slave_0) entered forwarding state [ 412.359932][ T330] bridge0: port 1(bridge_slave_0) entered disabled state [ 412.378016][ T330] bridge0: port 2(bridge_slave_1) entered disabled state [ 412.389444][ T4424] bridge_slave_1: left allmulticast mode [ 412.395129][ T4424] bridge_slave_1: left promiscuous mode [ 412.410963][ T4424] bridge0: port 2(bridge_slave_1) entered disabled state [ 412.428257][ T4424] bridge_slave_0: left allmulticast mode [ 412.437138][ T4424] bridge_slave_0: left promiscuous mode [ 412.442832][ T4424] bridge0: port 1(bridge_slave_0) entered disabled state [ 412.575018][ T5147] bridge0: port 1(bridge_slave_0) entered blocking state [ 412.582183][ T5147] bridge0: port 1(bridge_slave_0) entered forwarding state [ 412.608903][ T330] bridge0: port 2(bridge_slave_1) entered blocking state [ 412.616229][ T330] bridge0: port 2(bridge_slave_1) entered forwarding state [ 412.663164][ T4424] veth1_macvtap: left promiscuous mode [ 412.668785][ T4424] veth0_vlan: left promiscuous mode [ 412.836155][T21572] veth0_vlan: entered promiscuous mode [ 412.870575][T21572] veth1_macvtap: entered promiscuous mode [ 413.046165][T21611] __nla_validate_parse: 13 callbacks suppressed [ 413.046191][T21611] netlink: 44 bytes leftover after parsing attributes in process `syz.1.9903'. [ 413.100756][T21616] netlink: 108 bytes leftover after parsing attributes in process `syz.2.9905'. [ 413.115884][T21617] netlink: 108 bytes leftover after parsing attributes in process `syz.1.9906'. [ 413.159653][T21620] netlink: 52 bytes leftover after parsing attributes in process `syz.2.9907'. [ 413.170662][T21621] netlink: 108 bytes leftover after parsing attributes in process `syz.1.9908'. [ 413.278808][T21634] netlink: 44 bytes leftover after parsing attributes in process `syz.2.9913'. [ 413.297405][T21636] netlink: 100 bytes leftover after parsing attributes in process `syz.0.9914'. [ 413.325521][T21638] netlink: 108 bytes leftover after parsing attributes in process `syz.1.9915'. [ 413.336895][T21640] netlink: 108 bytes leftover after parsing attributes in process `syz.2.9916'. [ 413.412977][T21650] netlink: 108 bytes leftover after parsing attributes in process `syz.0.9922'. [ 418.047939][T22034] __nla_validate_parse: 36 callbacks suppressed [ 418.047967][T22034] netlink: 108 bytes leftover after parsing attributes in process `syz.0.10103'. [ 418.688246][T22056] netlink: 44 bytes leftover after parsing attributes in process `syz.1.10115'. [ 418.699362][T22058] netlink: 108 bytes leftover after parsing attributes in process `syz.3.10114'. [ 418.749864][T22060] netlink: 108 bytes leftover after parsing attributes in process `syz.1.10116'. [ 418.800599][T22064] netlink: 100 bytes leftover after parsing attributes in process `syz.3.10118'. [ 418.971198][T22076] netlink: 44 bytes leftover after parsing attributes in process `syz.1.10125'. [ 419.038731][T22080] netlink: 108 bytes leftover after parsing attributes in process `syz.1.10128'. [ 419.065683][T22082] netlink: 108 bytes leftover after parsing attributes in process `syz.1.10129'. [ 419.290258][T22088] netlink: 100 bytes leftover after parsing attributes in process `syz.2.10123'. [ 419.357199][T22092] netlink: 108 bytes leftover after parsing attributes in process `syz.0.10126'. [ 423.330344][T22417] __nla_validate_parse: 43 callbacks suppressed [ 423.330369][T22417] netlink: 100 bytes leftover after parsing attributes in process `syz.3.10287'. [ 423.436980][T22421] netlink: 100 bytes leftover after parsing attributes in process `syz.3.10290'. [ 423.679396][T22435] netlink: 44 bytes leftover after parsing attributes in process `syz.2.10288'. [ 423.963071][T22451] netlink: 108 bytes leftover after parsing attributes in process `syz.2.10304'. [ 424.013360][T22453] netlink: 108 bytes leftover after parsing attributes in process `syz.1.10300'. [ 424.066198][T22459] netlink: 108 bytes leftover after parsing attributes in process `syz.2.10308'. [ 424.164573][T22470] netlink: 108 bytes leftover after parsing attributes in process `syz.1.10312'. [ 424.244179][T22477] netlink: 108 bytes leftover after parsing attributes in process `syz.2.10316'. [ 424.297337][T22483] netlink: 100 bytes leftover after parsing attributes in process `syz.0.10305'. [ 424.472655][T22506] netlink: 108 bytes leftover after parsing attributes in process `syz.0.10327'. [ 428.345778][T22726] __nla_validate_parse: 11 callbacks suppressed [ 428.345804][T22726] netlink: 84 bytes leftover after parsing attributes in process `syz.2.10431'. [ 428.481045][T22752] netlink: 108 bytes leftover after parsing attributes in process `syz.2.10441'. [ 428.535143][T22758] netlink: 84 bytes leftover after parsing attributes in process `syz.0.10444'. [ 428.627033][T22781] netlink: 100 bytes leftover after parsing attributes in process `syz.0.10454'. [ 428.650881][T22783] netlink: 108 bytes leftover after parsing attributes in process `syz.2.10455'. [ 428.669212][T22786] netlink: 100 bytes leftover after parsing attributes in process `syz.1.10457'. [ 428.764110][T22810] netlink: 100 bytes leftover after parsing attributes in process `syz.3.10467'. [ 428.788545][T22812] netlink: 108 bytes leftover after parsing attributes in process `syz.1.10468'. [ 428.805953][T22814] netlink: 100 bytes leftover after parsing attributes in process `syz.2.10469'. [ 428.837130][T22820] netlink: 108 bytes leftover after parsing attributes in process `syz.3.10473'. [ 433.383725][T23271] __nla_validate_parse: 62 callbacks suppressed [ 433.383752][T23271] netlink: 100 bytes leftover after parsing attributes in process `syz.1.10687'. [ 433.469208][T23277] netlink: 100 bytes leftover after parsing attributes in process `syz.1.10690'. [ 433.490424][T23279] netlink: 108 bytes leftover after parsing attributes in process `syz.3.10691'. [ 433.641593][T23287] netlink: 108 bytes leftover after parsing attributes in process `syz.3.10695'. [ 433.788609][T23296] netlink: 108 bytes leftover after parsing attributes in process `syz.3.10702'. [ 433.988651][T23319] netlink: 100 bytes leftover after parsing attributes in process `syz.1.10711'. [ 434.090496][T23335] netlink: 108 bytes leftover after parsing attributes in process `syz.2.10718'. [ 434.141663][T23341] netlink: 100 bytes leftover after parsing attributes in process `syz.2.10720'. [ 434.141828][T23340] netlink: 108 bytes leftover after parsing attributes in process `syz.1.10721'. [ 434.327473][T23355] netlink: 108 bytes leftover after parsing attributes in process `syz.2.10727'. [ 438.889755][T23575] __nla_validate_parse: 22 callbacks suppressed [ 438.889779][T23575] netlink: 108 bytes leftover after parsing attributes in process `syz.0.10827'. [ 438.909992][T23577] netlink: 84 bytes leftover after parsing attributes in process `syz.3.10834'. [ 438.955496][T23579] netlink: 108 bytes leftover after parsing attributes in process `syz.3.10835'. [ 439.042640][T23590] netlink: 100 bytes leftover after parsing attributes in process `syz.3.10841'. [ 439.417396][T23604] netlink: 108 bytes leftover after parsing attributes in process `syz.1.10845'. [ 439.616321][T23614] netlink: 84 bytes leftover after parsing attributes in process `syz.1.10852'. [ 439.706081][T23618] netlink: 100 bytes leftover after parsing attributes in process `syz.1.10854'. [ 440.049774][T23634] netlink: 108 bytes leftover after parsing attributes in process `syz.1.10863'. [ 440.139318][T23640] netlink: 100 bytes leftover after parsing attributes in process `syz.0.10859'. [ 440.286114][T23656] netlink: 108 bytes leftover after parsing attributes in process `syz.0.10872'. [ 444.527442][T24080] __nla_validate_parse: 43 callbacks suppressed [ 444.527469][T24080] netlink: 100 bytes leftover after parsing attributes in process `syz.3.11068'. [ 444.726245][T24094] netlink: 84 bytes leftover after parsing attributes in process `syz.3.11074'. [ 444.755858][T24096] netlink: 108 bytes leftover after parsing attributes in process `syz.0.11075'. [ 444.869155][T24102] netlink: 108 bytes leftover after parsing attributes in process `syz.1.11071'. [ 444.980551][T24111] netlink: 100 bytes leftover after parsing attributes in process `syz.1.11082'. [ 445.150576][T24119] netlink: 84 bytes leftover after parsing attributes in process `syz.1.11085'. [ 445.288006][T24127] netlink: 108 bytes leftover after parsing attributes in process `syz.1.11089'. [ 445.897635][T24142] netlink: 108 bytes leftover after parsing attributes in process `syz.3.11096'. [ 445.986035][T24151] netlink: 108 bytes leftover after parsing attributes in process `syz.3.11100'. [ 446.224831][T24165] netlink: 100 bytes leftover after parsing attributes in process `syz.0.11108'. [ 449.578041][T24546] __nla_validate_parse: 32 callbacks suppressed [ 449.578065][T24546] netlink: 100 bytes leftover after parsing attributes in process `syz.3.11286'. [ 449.826872][T24585] netlink: 108 bytes leftover after parsing attributes in process `syz.1.11303'. [ 449.880005][T24589] netlink: 108 bytes leftover after parsing attributes in process `syz.3.11306'. [ 450.014835][T24597] netlink: 108 bytes leftover after parsing attributes in process `syz.1.11310'. [ 450.069654][T24604] netlink: 100 bytes leftover after parsing attributes in process `syz.1.11312'. [ 450.071748][T24602] netlink: 108 bytes leftover after parsing attributes in process `syz.0.11305'. [ 450.208152][T24614] netlink: 84 bytes leftover after parsing attributes in process `syz.0.11317'. [ 450.287377][T24620] netlink: 108 bytes leftover after parsing attributes in process `syz.0.11320'. [ 450.438641][T24630] netlink: 108 bytes leftover after parsing attributes in process `syz.0.11325'. [ 450.481764][T24632] netlink: 108 bytes leftover after parsing attributes in process `syz.0.11327'. [ 455.459464][T24923] __nla_validate_parse: 32 callbacks suppressed [ 455.459492][T24923] netlink: 100 bytes leftover after parsing attributes in process `syz.1.11466'. [ 455.563894][T24927] netlink: 108 bytes leftover after parsing attributes in process `syz.2.11467'. [ 455.833084][T24943] netlink: 108 bytes leftover after parsing attributes in process `syz.1.11478'. [ 455.891674][T24951] netlink: 100 bytes leftover after parsing attributes in process `syz.3.11480'. [ 456.280790][T24984] netlink: 100 bytes leftover after parsing attributes in process `syz.1.11496'. [ 456.366228][T24994] netlink: 84 bytes leftover after parsing attributes in process `syz.3.11501'. [ 456.378735][T24996] netlink: 84 bytes leftover after parsing attributes in process `syz.1.11502'. [ 456.428854][T25001] netlink: 84 bytes leftover after parsing attributes in process `syz.1.11504'. [ 456.494533][T25007] netlink: 108 bytes leftover after parsing attributes in process `syz.3.11507'. [ 456.577881][T25017] netlink: 100 bytes leftover after parsing attributes in process `syz.3.11511'. [ 457.747996][T25115] bridge0: port 1(bridge_slave_0) entered blocking state [ 457.755086][T25115] bridge0: port 1(bridge_slave_0) entered disabled state [ 457.779914][T25115] bridge_slave_0: entered allmulticast mode [ 457.795436][T25115] bridge_slave_0: entered promiscuous mode [ 457.814036][T25115] bridge0: port 2(bridge_slave_1) entered blocking state [ 457.847136][T25115] bridge0: port 2(bridge_slave_1) entered disabled state [ 457.872653][T25115] bridge_slave_1: entered allmulticast mode [ 457.887576][T25115] bridge_slave_1: entered promiscuous mode [ 458.003514][ T46] bridge_slave_1: left allmulticast mode [ 458.009270][ T46] bridge_slave_1: left promiscuous mode [ 458.014931][ T46] bridge0: port 2(bridge_slave_1) entered disabled state [ 458.025534][ T46] bridge_slave_0: left allmulticast mode [ 458.034605][ T46] bridge_slave_0: left promiscuous mode [ 458.040636][ T46] bridge0: port 1(bridge_slave_0) entered disabled state [ 458.168915][T25115] bridge0: port 2(bridge_slave_1) entered blocking state [ 458.176037][T25115] bridge0: port 2(bridge_slave_1) entered forwarding state [ 458.183437][T25115] bridge0: port 1(bridge_slave_0) entered blocking state [ 458.190507][T25115] bridge0: port 1(bridge_slave_0) entered forwarding state [ 458.206553][ T46] veth1_macvtap: left promiscuous mode [ 458.213182][ T46] veth0_vlan: left promiscuous mode [ 458.348194][ T4424] bridge0: port 1(bridge_slave_0) entered disabled state [ 458.361965][ T4424] bridge0: port 2(bridge_slave_1) entered disabled state [ 458.381572][ T5147] bridge0: port 1(bridge_slave_0) entered blocking state [ 458.388720][ T5147] bridge0: port 1(bridge_slave_0) entered forwarding state [ 458.416692][ T5147] bridge0: port 2(bridge_slave_1) entered blocking state [ 458.424061][ T5147] bridge0: port 2(bridge_slave_1) entered forwarding state [ 458.463498][T25115] veth0_vlan: entered promiscuous mode [ 458.478845][T25115] veth1_macvtap: entered promiscuous mode [ 460.670702][T25363] __nla_validate_parse: 48 callbacks suppressed [ 460.670728][T25363] netlink: 100 bytes leftover after parsing attributes in process `syz.2.11656'. [ 461.022368][T25381] netlink: 100 bytes leftover after parsing attributes in process `syz.2.11676'. [ 461.172243][T25395] netlink: 84 bytes leftover after parsing attributes in process `syz.3.11682'. [ 461.243684][T25400] netlink: 84 bytes leftover after parsing attributes in process `syz.3.11684'. [ 461.424088][T25422] netlink: 84 bytes leftover after parsing attributes in process `syz.3.11696'. [ 461.433703][T25421] netlink: 84 bytes leftover after parsing attributes in process `syz.2.11695'. [ 461.477376][T25425] netlink: 84 bytes leftover after parsing attributes in process `syz.3.11697'. [ 461.638858][T25446] netlink: 84 bytes leftover after parsing attributes in process `syz.3.11706'. [ 461.770821][T25473] netlink: 84 bytes leftover after parsing attributes in process `syz.1.11718'. [ 461.833997][T25481] netlink: 108 bytes leftover after parsing attributes in process `syz.2.11721'. [ 465.210947][ T36] audit: type=1400 audit(1763289194.530:192): avc: denied { create } for pid=26085 comm="syz.2.11941" name="file2" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 465.287026][ T36] audit: type=1400 audit(1763289194.570:193): avc: denied { unlink } for pid=21572 comm="syz-executor" name="file2" dev="tmpfs" ino=3342 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 465.382161][T26087] bridge0: port 1(bridge_slave_0) entered blocking state [ 465.407105][T26087] bridge0: port 1(bridge_slave_0) entered disabled state [ 465.440825][T26087] bridge_slave_0: entered allmulticast mode [ 465.461249][T26087] bridge_slave_0: entered promiscuous mode [ 465.471858][T26087] bridge0: port 2(bridge_slave_1) entered blocking state [ 465.487111][T26087] bridge0: port 2(bridge_slave_1) entered disabled state [ 465.499933][T26087] bridge_slave_1: entered allmulticast mode [ 465.510814][T26087] bridge_slave_1: entered promiscuous mode [ 465.557156][ T5147] bridge_slave_1: left allmulticast mode [ 465.562949][ T5147] bridge_slave_1: left promiscuous mode [ 465.577220][ T5147] bridge0: port 2(bridge_slave_1) entered disabled state [ 465.595187][ T5147] bridge_slave_0: left allmulticast mode [ 465.601547][ T5147] bridge_slave_0: left promiscuous mode [ 465.617410][ T5147] bridge0: port 1(bridge_slave_0) entered disabled state [ 465.778295][ T5147] veth1_macvtap: left promiscuous mode [ 465.783871][ T5147] veth0_vlan: left promiscuous mode [ 466.025962][T26087] bridge0: port 2(bridge_slave_1) entered blocking state [ 466.033082][T26087] bridge0: port 2(bridge_slave_1) entered forwarding state [ 466.040417][T26087] bridge0: port 1(bridge_slave_0) entered blocking state [ 466.047493][T26087] bridge0: port 1(bridge_slave_0) entered forwarding state [ 466.108452][ T46] bridge0: port 1(bridge_slave_0) entered disabled state [ 466.117330][ T46] bridge0: port 2(bridge_slave_1) entered disabled state [ 466.131515][ T46] bridge0: port 1(bridge_slave_0) entered blocking state [ 466.138617][ T46] bridge0: port 1(bridge_slave_0) entered forwarding state [ 466.169555][ T4424] bridge0: port 2(bridge_slave_1) entered blocking state [ 466.176634][ T4424] bridge0: port 2(bridge_slave_1) entered forwarding state [ 466.216545][T26087] veth0_vlan: entered promiscuous mode [ 466.256959][T26087] veth1_macvtap: entered promiscuous mode [ 466.276814][T26113] __nla_validate_parse: 56 callbacks suppressed [ 466.276835][T26113] netlink: 108 bytes leftover after parsing attributes in process `syz.0.11962'. [ 466.333818][T26115] raw_sendmsg: syz.1.11950 forgot to set AF_INET. Fix it! [ 466.357510][T26117] netlink: 8 bytes leftover after parsing attributes in process `syz.1.11950'. [ 466.454364][T26122] netlink: 84 bytes leftover after parsing attributes in process `syz.1.11967'. [ 466.579123][T26130] netlink: 100 bytes leftover after parsing attributes in process `syz.1.11970'. [ 466.593690][T26132] netlink: 100 bytes leftover after parsing attributes in process `syz.2.11971'. [ 466.611376][T26134] netlink: 84 bytes leftover after parsing attributes in process `syz.3.11964'. [ 466.635304][ T36] audit: type=1400 audit(1763289195.950:194): avc: denied { map } for pid=26137 comm="syz.2.11973" path="/dev/binderfs/binder0" dev="binder" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1 [ 466.635867][T26138] rust_binder: validate_parent_fixup: new_min_offset=16777240, sg_entry.length=0 [ 466.672688][T26138] rust_binder: Error while translating object. [ 466.682263][T26138] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL } [ 466.698454][T26138] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:1189 [ 466.784458][T26152] netlink: 84 bytes leftover after parsing attributes in process `syz.1.11979'. [ 466.805809][T26153] netlink: 84 bytes leftover after parsing attributes in process `syz.3.11980'. [ 466.820393][T26155] netlink: 100 bytes leftover after parsing attributes in process `syz.2.11981'. [ 466.868159][T26159] netlink: 100 bytes leftover after parsing attributes in process `syz.1.11983'. [ 467.157108][ T36] audit: type=1400 audit(1763289196.470:195): avc: denied { write } for pid=26199 comm="syz.3.12003" name="001" dev="devtmpfs" ino=108 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1 [ 467.667502][T26237] FAULT_INJECTION: forcing a failure. [ 467.667502][T26237] name failslab, interval 1, probability 0, space 0, times 0 [ 467.727582][T26237] CPU: 1 UID: 0 PID: 26237 Comm: syz.1.12017 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 467.727624][T26237] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 467.727643][T26237] Call Trace: [ 467.727652][T26237] [ 467.727666][T26237] __dump_stack+0x21/0x30 [ 467.727704][T26237] dump_stack_lvl+0x10c/0x190 [ 467.727735][T26237] ? __cfi_dump_stack_lvl+0x10/0x10 [ 467.727767][T26237] dump_stack+0x19/0x20 [ 467.727796][T26237] should_fail_ex+0x3d9/0x530 [ 467.727820][T26237] should_failslab+0xac/0x100 [ 467.727846][T26237] kmem_cache_alloc_noprof+0x42/0x430 [ 467.727868][T26237] ? security_inode_alloc+0x51/0x200 [ 467.727902][T26237] ? __cfi_make_kgid+0x10/0x10 [ 467.727959][T26237] security_inode_alloc+0x51/0x200 [ 467.728004][T26237] inode_init_always_gfp+0x756/0x9e0 [ 467.728031][T26237] ? __cfi_sock_alloc_inode+0x10/0x10 [ 467.728056][T26237] alloc_inode+0xc5/0x270 [ 467.728082][T26237] ? bpf_lsm_socket_create+0xd/0x20 [ 467.728111][T26237] new_inode_pseudo+0x19/0x40 [ 467.728137][T26237] __sock_create+0x130/0x810 [ 467.728165][T26237] __sys_socket+0xe2/0x1c0 [ 467.728191][T26237] __x64_sys_socket+0x7e/0x90 [ 467.728218][T26237] x64_sys_call+0x2608/0x2ee0 [ 467.728250][T26237] do_syscall_64+0x58/0xf0 [ 467.728279][T26237] ? clear_bhb_loop+0x50/0xa0 [ 467.728304][T26237] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 467.728328][T26237] RIP: 0033:0x7f6c9838f6c9 [ 467.728353][T26237] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 467.728375][T26237] RSP: 002b:00007f6c99245038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 467.728402][T26237] RAX: ffffffffffffffda RBX: 00007f6c985e5fa0 RCX: 00007f6c9838f6c9 [ 467.728420][T26237] RDX: 0000000000000006 RSI: 0000000000000003 RDI: 0000000000000010 [ 467.728435][T26237] RBP: 00007f6c99245090 R08: 0000000000000000 R09: 0000000000000000 [ 467.728450][T26237] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 467.728465][T26237] R13: 00007f6c985e6038 R14: 00007f6c985e5fa0 R15: 00007ffebebacbb8 [ 467.728485][T26237] [ 467.728509][T26237] socket: no more sockets [ 468.248535][T26246] FAULT_INJECTION: forcing a failure. [ 468.248535][T26246] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 468.322567][T26246] CPU: 0 UID: 0 PID: 26246 Comm: syz.1.12024 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 468.322605][T26246] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 468.322621][T26246] Call Trace: [ 468.322629][T26246] [ 468.322639][T26246] __dump_stack+0x21/0x30 [ 468.322682][T26246] dump_stack_lvl+0x10c/0x190 [ 468.322714][T26246] ? __cfi_dump_stack_lvl+0x10/0x10 [ 468.322747][T26246] dump_stack+0x19/0x20 [ 468.322777][T26246] should_fail_ex+0x3d9/0x530 [ 468.322802][T26246] should_fail+0xf/0x20 [ 468.322823][T26246] should_fail_usercopy+0x1e/0x30 [ 468.322849][T26246] strncpy_from_user+0x28/0x270 [ 468.322873][T26246] getname_flags+0x102/0x710 [ 468.322901][T26246] ? build_open_flags+0x487/0x600 [ 468.322933][T26246] getname+0x1b/0x30 [ 468.322954][T26246] do_sys_openat2+0xcb/0x1c0 [ 468.322983][T26246] ? fput+0x1a5/0x240 [ 468.323010][T26246] ? do_sys_open+0x100/0x100 [ 468.323039][T26246] ? ksys_write+0x1ef/0x250 [ 468.323060][T26246] ? __cfi_ksys_write+0x10/0x10 [ 468.323096][T26246] __x64_sys_openat+0x13a/0x170 [ 468.323127][T26246] x64_sys_call+0xe69/0x2ee0 [ 468.323169][T26246] do_syscall_64+0x58/0xf0 [ 468.323198][T26246] ? clear_bhb_loop+0x50/0xa0 [ 468.323225][T26246] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 468.323249][T26246] RIP: 0033:0x7f6c9838f6c9 [ 468.323268][T26246] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 468.323288][T26246] RSP: 002b:00007f6c99245038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 468.323314][T26246] RAX: ffffffffffffffda RBX: 00007f6c985e5fa0 RCX: 00007f6c9838f6c9 [ 468.323332][T26246] RDX: 0000000000028181 RSI: 0000200000000180 RDI: ffffffffffffff9c [ 468.323349][T26246] RBP: 00007f6c99245090 R08: 0000000000000000 R09: 0000000000000000 [ 468.323365][T26246] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 468.323379][T26246] R13: 00007f6c985e6038 R14: 00007f6c985e5fa0 R15: 00007ffebebacbb8 [ 468.323399][T26246] [ 469.190164][T26309] FAULT_INJECTION: forcing a failure. [ 469.190164][T26309] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 469.213574][T26309] CPU: 1 UID: 0 PID: 26309 Comm: syz.1.12053 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 469.213612][T26309] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 469.213628][T26309] Call Trace: [ 469.213636][T26309] [ 469.213645][T26309] __dump_stack+0x21/0x30 [ 469.213682][T26309] dump_stack_lvl+0x10c/0x190 [ 469.213713][T26309] ? __cfi_dump_stack_lvl+0x10/0x10 [ 469.213746][T26309] ? check_stack_object+0x12c/0x140 [ 469.213769][T26309] dump_stack+0x19/0x20 [ 469.213798][T26309] should_fail_ex+0x3d9/0x530 [ 469.213823][T26309] should_fail+0xf/0x20 [ 469.213855][T26309] should_fail_usercopy+0x1e/0x30 [ 469.213876][T26309] _copy_to_user+0x24/0xa0 [ 469.213904][T26309] simple_read_from_buffer+0xed/0x160 [ 469.213934][T26309] proc_fail_nth_read+0x19e/0x210 [ 469.213965][T26309] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 469.213997][T26309] ? bpf_lsm_file_permission+0xd/0x20 [ 469.214090][T26309] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 469.214132][T26309] vfs_read+0x27d/0xc70 [ 469.214171][T26309] ? __cfi_kvm_vcpu_ioctl+0x10/0x10 [ 469.214193][T26309] ? __cfi_vfs_read+0x10/0x10 [ 469.214211][T26309] ? __kasan_check_write+0x18/0x20 [ 469.214242][T26309] ? mutex_lock+0x92/0x1c0 [ 469.214264][T26309] ? __cfi_mutex_lock+0x10/0x10 [ 469.214284][T26309] ? __fget_files+0x2c5/0x340 [ 469.214325][T26309] ksys_read+0x141/0x250 [ 469.214345][T26309] ? __cfi_ksys_read+0x10/0x10 [ 469.214368][T26309] ? __kasan_check_read+0x15/0x20 [ 469.214403][T26309] __x64_sys_read+0x7f/0x90 [ 469.214424][T26309] x64_sys_call+0x2638/0x2ee0 [ 469.214458][T26309] do_syscall_64+0x58/0xf0 [ 469.214486][T26309] ? clear_bhb_loop+0x50/0xa0 [ 469.214511][T26309] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 469.214535][T26309] RIP: 0033:0x7f6c9838e0dc [ 469.214566][T26309] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 469.214587][T26309] RSP: 002b:00007f6c99245030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 469.214611][T26309] RAX: ffffffffffffffda RBX: 00007f6c985e5fa0 RCX: 00007f6c9838e0dc [ 469.214629][T26309] RDX: 000000000000000f RSI: 00007f6c992450a0 RDI: 0000000000000009 [ 469.214644][T26309] RBP: 00007f6c99245090 R08: 0000000000000000 R09: 0000000000000000 [ 469.214659][T26309] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 469.214674][T26309] R13: 00007f6c985e6038 R14: 00007f6c985e5fa0 R15: 00007ffebebacbb8 [ 469.214694][T26309] [ 469.494335][ T36] audit: type=1400 audit(1763289198.800:196): avc: denied { write } for pid=26313 comm="syz.3.12055" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 469.549800][ T36] audit: type=1400 audit(1763289198.810:197): avc: denied { nlmsg_write } for pid=26313 comm="syz.3.12055" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 469.748099][T26344] FAULT_INJECTION: forcing a failure. [ 469.748099][T26344] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 469.761538][T26344] CPU: 0 UID: 0 PID: 26344 Comm: syz.1.12070 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 469.761574][T26344] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 469.761589][T26344] Call Trace: [ 469.761597][T26344] [ 469.761606][T26344] __dump_stack+0x21/0x30 [ 469.761644][T26344] dump_stack_lvl+0x10c/0x190 [ 469.761674][T26344] ? __cfi_dump_stack_lvl+0x10/0x10 [ 469.761706][T26344] ? check_stack_object+0x107/0x140 [ 469.761730][T26344] dump_stack+0x19/0x20 [ 469.761759][T26344] should_fail_ex+0x3d9/0x530 [ 469.761784][T26344] should_fail+0xf/0x20 [ 469.761806][T26344] should_fail_usercopy+0x1e/0x30 [ 469.761833][T26344] _copy_from_user+0x22/0xb0 [ 469.761862][T26344] __sys_connect+0x136/0x440 [ 469.761894][T26344] ? __cfi___sys_connect+0x10/0x10 [ 469.761928][T26344] ? __kasan_check_read+0x15/0x20 [ 469.761963][T26344] __x64_sys_connect+0x7e/0x90 [ 469.761991][T26344] x64_sys_call+0x1c2f/0x2ee0 [ 469.762024][T26344] do_syscall_64+0x58/0xf0 [ 469.762054][T26344] ? clear_bhb_loop+0x50/0xa0 [ 469.762080][T26344] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 469.762104][T26344] RIP: 0033:0x7f6c9838f6c9 [ 469.762122][T26344] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 469.762143][T26344] RSP: 002b:00007f6c99245038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 469.762169][T26344] RAX: ffffffffffffffda RBX: 00007f6c985e5fa0 RCX: 00007f6c9838f6c9 [ 469.762188][T26344] RDX: 000000000000001c RSI: 0000200000000040 RDI: 0000000000000008 [ 469.762204][T26344] RBP: 00007f6c99245090 R08: 0000000000000000 R09: 0000000000000000 [ 469.762220][T26344] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 469.762235][T26344] R13: 00007f6c985e6038 R14: 00007f6c985e5fa0 R15: 00007ffebebacbb8 [ 469.762256][T26344] [ 469.997695][ T36] audit: type=1326 audit(1763289199.310:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26452 comm="syz.1.12074" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c9838f6c9 code=0x7ffc0000 [ 470.061823][ T36] audit: type=1326 audit(1763289199.310:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26452 comm="syz.1.12074" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c9838f6c9 code=0x7ffc0000 [ 470.086020][ T36] audit: type=1326 audit(1763289199.330:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26452 comm="syz.1.12074" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f6c9838f6c9 code=0x7ffc0000 [ 470.110027][ T36] audit: type=1326 audit(1763289199.330:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26452 comm="syz.1.12074" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c9838f6c9 code=0x7ffc0000 [ 471.344506][T26607] __nla_validate_parse: 27 callbacks suppressed [ 471.344531][T26607] netlink: 84 bytes leftover after parsing attributes in process `syz.3.12102'. [ 471.437570][T26613] netlink: 84 bytes leftover after parsing attributes in process `syz.3.12104'. [ 471.488577][T26617] FAULT_INJECTION: forcing a failure. [ 471.488577][T26617] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 471.513632][T26617] CPU: 0 UID: 0 PID: 26617 Comm: syz.2.12106 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 471.513670][T26617] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 471.513685][T26617] Call Trace: [ 471.513694][T26617] [ 471.513704][T26617] __dump_stack+0x21/0x30 [ 471.513740][T26617] dump_stack_lvl+0x10c/0x190 [ 471.513771][T26617] ? __cfi_dump_stack_lvl+0x10/0x10 [ 471.513805][T26617] dump_stack+0x19/0x20 [ 471.513834][T26617] should_fail_ex+0x3d9/0x530 [ 471.513858][T26617] should_fail+0xf/0x20 [ 471.513880][T26617] should_fail_usercopy+0x1e/0x30 [ 471.513905][T26617] strncpy_from_user+0x28/0x270 [ 471.513929][T26617] getname_flags+0x102/0x710 [ 471.513953][T26617] ? build_open_flags+0x487/0x600 [ 471.513984][T26617] getname+0x1b/0x30 [ 471.514005][T26617] do_sys_openat2+0xcb/0x1c0 [ 471.514034][T26617] ? fput+0x1a5/0x240 [ 471.514061][T26617] ? do_sys_open+0x100/0x100 [ 471.514090][T26617] ? ksys_write+0x1ef/0x250 [ 471.514113][T26617] ? __cfi_ksys_write+0x10/0x10 [ 471.514135][T26617] __x64_sys_openat+0x13a/0x170 [ 471.514166][T26617] x64_sys_call+0xe69/0x2ee0 [ 471.514209][T26617] do_syscall_64+0x58/0xf0 [ 471.514239][T26617] ? clear_bhb_loop+0x50/0xa0 [ 471.514265][T26617] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 471.514290][T26617] RIP: 0033:0x7fb27ab8f6c9 [ 471.514309][T26617] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 471.514330][T26617] RSP: 002b:00007fb27bad5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 471.514356][T26617] RAX: ffffffffffffffda RBX: 00007fb27ade5fa0 RCX: 00007fb27ab8f6c9 [ 471.514374][T26617] RDX: 0000000000028181 RSI: 0000200000000180 RDI: ffffffffffffff9c [ 471.514392][T26617] RBP: 00007fb27bad5090 R08: 0000000000000000 R09: 0000000000000000 [ 471.514408][T26617] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 471.514423][T26617] R13: 00007fb27ade6038 R14: 00007fb27ade5fa0 R15: 00007fff48de0ed8 [ 471.514444][T26617] [ 471.804111][T26738] netlink: 84 bytes leftover after parsing attributes in process `syz.3.12114'. [ 471.823585][ T36] kauditd_printk_skb: 11 callbacks suppressed [ 471.823607][ T36] audit: type=1400 audit(1763289201.130:213): avc: denied { setattr } for pid=26739 comm="syz.2.12116" name="PACKET" dev="sockfs" ino=143646 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 471.913766][ T36] audit: type=1400 audit(1763289201.140:214): avc: denied { getopt } for pid=26739 comm="syz.2.12116" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 471.940374][T26747] netlink: 108 bytes leftover after parsing attributes in process `syz.3.12118'. [ 472.168380][T26764] netlink: 84 bytes leftover after parsing attributes in process `syz.3.12127'. [ 472.340164][T26777] netlink: 84 bytes leftover after parsing attributes in process `syz.1.12123'. [ 472.430138][T26781] netlink: 84 bytes leftover after parsing attributes in process `syz.1.12134'. [ 472.480875][ T36] audit: type=1326 audit(1763289201.800:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26782 comm="syz.1.12135" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c9838f6c9 code=0x7ffc0000 [ 472.505612][T26783] FAULT_INJECTION: forcing a failure. [ 472.505612][T26783] name failslab, interval 1, probability 0, space 0, times 0 [ 472.537142][T26783] CPU: 1 UID: 0 PID: 26783 Comm: syz.1.12135 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 472.537209][T26783] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 472.537226][T26783] Call Trace: [ 472.537235][T26783] [ 472.537247][T26783] __dump_stack+0x21/0x30 [ 472.537287][T26783] dump_stack_lvl+0x10c/0x190 [ 472.537322][T26783] ? __cfi_dump_stack_lvl+0x10/0x10 [ 472.537360][T26783] dump_stack+0x19/0x20 [ 472.537392][T26783] should_fail_ex+0x3d9/0x530 [ 472.537420][T26783] should_failslab+0xac/0x100 [ 472.537451][T26783] kmem_cache_alloc_node_noprof+0x45/0x440 [ 472.537478][T26783] ? kasan_save_alloc_info+0x40/0x50 [ 472.537514][T26783] ? __alloc_skb+0x10c/0x370 [ 472.537545][T26783] ? __kasan_slab_alloc+0x73/0x90 [ 472.537576][T26783] __alloc_skb+0x10c/0x370 [ 472.537608][T26783] audit_log_start+0x3d5/0x8f0 [ 472.537641][T26783] ? __cfi_audit_log_start+0x10/0x10 [ 472.537677][T26783] ? __cfi_migrate_enable+0x10/0x10 [ 472.537701][T26783] ? proc_fail_nth_write+0x17e/0x210 [ 472.537738][T26783] audit_seccomp+0x67/0x170 [ 472.537766][T26783] __seccomp_filter+0xaad/0x1a70 [ 472.537792][T26783] ? __cfi_vfs_write+0x10/0x10 [ 472.537816][T26783] ? __secure_computing+0x2b0/0x2b0 [ 472.537840][T26783] ? __kasan_check_write+0x18/0x20 [ 472.537879][T26783] ? mutex_unlock+0x8b/0x240 [ 472.537903][T26783] ? __cfi_mutex_unlock+0x10/0x10 [ 472.537926][T26783] ? __fget_files+0x2c5/0x340 [ 472.537956][T26783] ? ksys_write+0x1ef/0x250 [ 472.537980][T26783] ? __cfi_ksys_write+0x10/0x10 [ 472.538005][T26783] __secure_computing+0xef/0x2b0 [ 472.538030][T26783] syscall_trace_enter+0xaf/0x170 [ 472.538070][T26783] do_syscall_64+0x38/0xf0 [ 472.538102][T26783] ? clear_bhb_loop+0x50/0xa0 [ 472.538132][T26783] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 472.538160][T26783] RIP: 0033:0x7f6c9838f6c9 [ 472.538180][T26783] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 472.538204][T26783] RSP: 002b:00007f6c99245038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 472.538232][T26783] RAX: ffffffffffffffda RBX: 00007f6c985e5fa0 RCX: 00007f6c9838f6c9 [ 472.538253][T26783] RDX: 0000000000028181 RSI: 0000200000000180 RDI: ffffffffffffff9c [ 472.538272][T26783] RBP: 00007f6c99245090 R08: 0000000000000000 R09: 0000000000000000 [ 472.538289][T26783] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 472.538306][T26783] R13: 00007f6c985e6038 R14: 00007f6c985e5fa0 R15: 00007ffebebacbb8 [ 472.538329][T26783] [ 472.538366][T26783] audit: audit_lost=1 audit_rate_limit=0 audit_backlog_limit=64 [ 472.666884][ T36] audit: type=1326 audit(1763289201.820:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26782 comm="syz.1.12135" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f6c9838f6c9 code=0x7ffc0000 [ 472.669573][T26783] audit: out of memory in audit_log_start [ 472.684739][ T36] audit: type=1326 audit(1763289201.820:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26782 comm="syz.1.12135" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c9838f6c9 code=0x7ffc0000 [ 472.792576][T26787] netlink: 84 bytes leftover after parsing attributes in process `syz.1.12137'. [ 472.877119][ T36] audit: type=1326 audit(1763289201.820:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26782 comm="syz.1.12135" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f6c9838f6c9 code=0x7ffc0000 [ 472.937193][ T36] audit: type=1326 audit(1763289201.820:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26782 comm="syz.1.12135" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c9838f6c9 code=0x7ffc0000 [ 472.987129][ T36] audit: type=1326 audit(1763289201.820:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26782 comm="syz.1.12135" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f6c9838f6c9 code=0x7ffc0000 [ 473.108163][T26798] netlink: 100 bytes leftover after parsing attributes in process `syz.1.12142'. [ 473.249752][T26805] netlink: 100 bytes leftover after parsing attributes in process `syz.1.12145'. [ 473.363568][T26815] FAULT_INJECTION: forcing a failure. [ 473.363568][T26815] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 473.381254][T26815] CPU: 0 UID: 0 PID: 26815 Comm: syz.1.12147 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 473.381292][T26815] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 473.381307][T26815] Call Trace: [ 473.381314][T26815] [ 473.381323][T26815] __dump_stack+0x21/0x30 [ 473.381358][T26815] dump_stack_lvl+0x10c/0x190 [ 473.381388][T26815] ? __cfi_dump_stack_lvl+0x10/0x10 [ 473.381419][T26815] ? check_stack_object+0x12c/0x140 [ 473.381442][T26815] dump_stack+0x19/0x20 [ 473.381470][T26815] should_fail_ex+0x3d9/0x530 [ 473.381493][T26815] should_fail+0xf/0x20 [ 473.381519][T26815] should_fail_usercopy+0x1e/0x30 [ 473.381543][T26815] _copy_to_user+0x24/0xa0 [ 473.381571][T26815] simple_read_from_buffer+0xed/0x160 [ 473.381600][T26815] proc_fail_nth_read+0x19e/0x210 [ 473.381630][T26815] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 473.381659][T26815] ? bpf_lsm_file_permission+0xd/0x20 [ 473.381691][T26815] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 473.381721][T26815] vfs_read+0x27d/0xc70 [ 473.381740][T26815] ? __cfi_selinux_file_ioctl+0x10/0x10 [ 473.381767][T26815] ? __cfi_vfs_read+0x10/0x10 [ 473.381786][T26815] ? __kasan_check_write+0x18/0x20 [ 473.381818][T26815] ? mutex_lock+0x92/0x1c0 [ 473.381839][T26815] ? __cfi_mutex_lock+0x10/0x10 [ 473.381860][T26815] ? __fget_files+0x2c5/0x340 [ 473.381886][T26815] ksys_read+0x141/0x250 [ 473.381906][T26815] ? __cfi_ksys_read+0x10/0x10 [ 473.381927][T26815] ? __kasan_check_read+0x15/0x20 [ 473.381960][T26815] __x64_sys_read+0x7f/0x90 [ 473.381980][T26815] x64_sys_call+0x2638/0x2ee0 [ 473.382017][T26815] do_syscall_64+0x58/0xf0 [ 473.382045][T26815] ? clear_bhb_loop+0x50/0xa0 [ 473.382069][T26815] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 473.382093][T26815] RIP: 0033:0x7f6c9838e0dc [ 473.382111][T26815] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 473.382132][T26815] RSP: 002b:00007f6c99224030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 473.382156][T26815] RAX: ffffffffffffffda RBX: 00007f6c985e6090 RCX: 00007f6c9838e0dc [ 473.382174][T26815] RDX: 000000000000000f RSI: 00007f6c992240a0 RDI: 0000000000000008 [ 473.382189][T26815] RBP: 00007f6c99224090 R08: 0000000000000000 R09: 0000000000000000 [ 473.382203][T26815] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 473.382218][T26815] R13: 00007f6c985e6128 R14: 00007f6c985e6090 R15: 00007ffebebacbb8 [ 473.382236][T26815] [ 474.424137][T26867] bridge0: port 1(bridge_slave_0) entered blocking state [ 474.431724][T26867] bridge0: port 1(bridge_slave_0) entered disabled state [ 474.457153][T26867] bridge_slave_0: entered allmulticast mode [ 474.475655][T26867] bridge_slave_0: entered promiscuous mode [ 474.497907][T26867] bridge0: port 2(bridge_slave_1) entered blocking state [ 474.504985][T26867] bridge0: port 2(bridge_slave_1) entered disabled state [ 474.544024][T26867] bridge_slave_1: entered allmulticast mode [ 474.554558][T26867] bridge_slave_1: entered promiscuous mode [ 474.719634][ T5147] bridge_slave_1: left allmulticast mode [ 474.725338][ T5147] bridge_slave_1: left promiscuous mode [ 474.747176][ T5147] bridge0: port 2(bridge_slave_1) entered disabled state [ 474.754953][ T5147] bridge_slave_0: left allmulticast mode [ 474.760950][ T5147] bridge_slave_0: left promiscuous mode [ 474.766659][ T5147] bridge0: port 1(bridge_slave_0) entered disabled state [ 474.854242][T26867] bridge0: port 2(bridge_slave_1) entered blocking state [ 474.861350][T26867] bridge0: port 2(bridge_slave_1) entered forwarding state [ 474.868695][T26867] bridge0: port 1(bridge_slave_0) entered blocking state [ 474.875756][T26867] bridge0: port 1(bridge_slave_0) entered forwarding state [ 474.911201][ T5147] veth1_macvtap: left promiscuous mode [ 474.918690][ T5147] veth0_vlan: left promiscuous mode [ 475.089471][ T46] bridge0: port 1(bridge_slave_0) entered disabled state [ 475.096943][ T46] bridge0: port 2(bridge_slave_1) entered disabled state [ 475.127847][ T4424] bridge0: port 1(bridge_slave_0) entered blocking state [ 475.134967][ T4424] bridge0: port 1(bridge_slave_0) entered forwarding state [ 475.143831][ T4424] bridge0: port 2(bridge_slave_1) entered blocking state [ 475.150923][ T4424] bridge0: port 2(bridge_slave_1) entered forwarding state [ 475.203915][T26867] veth0_vlan: entered promiscuous mode [ 475.255687][T26867] veth1_macvtap: entered promiscuous mode [ 475.486308][T26941] FAULT_INJECTION: forcing a failure. [ 475.486308][T26941] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 475.507321][T26941] CPU: 1 UID: 0 PID: 26941 Comm: syz.2.12202 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 475.507359][T26941] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 475.507374][T26941] Call Trace: [ 475.507383][T26941] [ 475.507391][T26941] __dump_stack+0x21/0x30 [ 475.507427][T26941] dump_stack_lvl+0x10c/0x190 [ 475.507458][T26941] ? __cfi_dump_stack_lvl+0x10/0x10 [ 475.507490][T26941] dump_stack+0x19/0x20 [ 475.507519][T26941] should_fail_ex+0x3d9/0x530 [ 475.507543][T26941] should_fail+0xf/0x20 [ 475.507564][T26941] should_fail_usercopy+0x1e/0x30 [ 475.507589][T26941] strncpy_from_user+0x28/0x270 [ 475.507623][T26941] getname_flags+0x102/0x710 [ 475.507646][T26941] ? build_open_flags+0x487/0x600 [ 475.507677][T26941] getname+0x1b/0x30 [ 475.507697][T26941] do_sys_openat2+0xcb/0x1c0 [ 475.507726][T26941] ? fput+0x1a5/0x240 [ 475.507753][T26941] ? do_sys_open+0x100/0x100 [ 475.507781][T26941] ? ksys_write+0x1ef/0x250 [ 475.507802][T26941] ? __cfi_ksys_write+0x10/0x10 [ 475.507824][T26941] __x64_sys_openat+0x13a/0x170 [ 475.507854][T26941] x64_sys_call+0xe69/0x2ee0 [ 475.507887][T26941] do_syscall_64+0x58/0xf0 [ 475.507916][T26941] ? clear_bhb_loop+0x50/0xa0 [ 475.507941][T26941] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 475.507966][T26941] RIP: 0033:0x7fe50a58f6c9 [ 475.507984][T26941] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 475.508004][T26941] RSP: 002b:00007fe50b3d0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 475.508029][T26941] RAX: ffffffffffffffda RBX: 00007fe50a7e5fa0 RCX: 00007fe50a58f6c9 [ 475.508047][T26941] RDX: 000000000000275a RSI: 0000200000000080 RDI: ffffffffffffff9c [ 475.508064][T26941] RBP: 00007fe50b3d0090 R08: 0000000000000000 R09: 0000000000000000 [ 475.508079][T26941] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 475.508094][T26941] R13: 00007fe50a7e6038 R14: 00007fe50a7e5fa0 R15: 00007ffd3f123cc8 [ 475.508114][T26941] [ 476.365504][T27071] __nla_validate_parse: 29 callbacks suppressed [ 476.365536][T27071] netlink: 84 bytes leftover after parsing attributes in process `syz.0.12264'. [ 476.425199][T27084] netlink: 84 bytes leftover after parsing attributes in process `syz.3.12270'. [ 476.433037][T27086] netlink: 84 bytes leftover after parsing attributes in process `syz.0.12271'. [ 476.553566][T27109] netlink: 84 bytes leftover after parsing attributes in process `syz.0.12282'. [ 476.626102][T27124] netlink: 84 bytes leftover after parsing attributes in process `syz.2.12290'. [ 476.679352][T27137] netlink: 84 bytes leftover after parsing attributes in process `syz.1.12295'. [ 476.727285][T27145] netlink: 108 bytes leftover after parsing attributes in process `syz.0.12300'. [ 476.745321][T27147] netlink: 84 bytes leftover after parsing attributes in process `syz.1.12301'. [ 476.772629][T27150] netlink: 100 bytes leftover after parsing attributes in process `syz.0.12302'. [ 476.787213][T27151] netlink: 84 bytes leftover after parsing attributes in process `syz.2.12303'. [ 481.419134][T27539] __nla_validate_parse: 33 callbacks suppressed [ 481.419158][T27539] netlink: 108 bytes leftover after parsing attributes in process `syz.0.12493'. [ 481.506388][T27545] netlink: 84 bytes leftover after parsing attributes in process `syz.1.12495'. [ 482.719933][T27569] netlink: 84 bytes leftover after parsing attributes in process `syz.3.12508'. [ 482.764555][T27571] netlink: 84 bytes leftover after parsing attributes in process `syz.3.12509'. [ 482.821660][T27575] netlink: 84 bytes leftover after parsing attributes in process `syz.2.12503'. [ 482.875877][T27582] netlink: 84 bytes leftover after parsing attributes in process `syz.1.12504'. [ 482.905723][T27586] netlink: 108 bytes leftover after parsing attributes in process `syz.2.12514'. [ 482.958360][T27590] netlink: 84 bytes leftover after parsing attributes in process `syz.2.12516'. [ 483.122232][T27604] netlink: 84 bytes leftover after parsing attributes in process `syz.2.12523'. [ 483.180411][T27606] netlink: 84 bytes leftover after parsing attributes in process `syz.1.12524'. [ 485.234860][T27728] bridge0: port 1(bridge_slave_0) entered blocking state [ 485.252181][T27728] bridge0: port 1(bridge_slave_0) entered disabled state [ 485.280481][T27728] bridge_slave_0: entered allmulticast mode [ 485.307297][T27728] bridge_slave_0: entered promiscuous mode [ 485.313967][T27728] bridge0: port 2(bridge_slave_1) entered blocking state [ 485.359838][T27728] bridge0: port 2(bridge_slave_1) entered disabled state [ 485.387180][T27728] bridge_slave_1: entered allmulticast mode [ 485.393642][T27728] bridge_slave_1: entered promiscuous mode [ 485.548144][ T46] bridge_slave_1: left allmulticast mode [ 485.553855][ T46] bridge_slave_1: left promiscuous mode [ 485.567173][ T46] bridge0: port 2(bridge_slave_1) entered disabled state [ 485.587547][ T46] bridge_slave_0: left allmulticast mode [ 485.593244][ T46] bridge_slave_0: left promiscuous mode [ 485.607379][ T46] bridge0: port 1(bridge_slave_0) entered disabled state [ 485.766804][T27728] bridge0: port 2(bridge_slave_1) entered blocking state [ 485.773936][T27728] bridge0: port 2(bridge_slave_1) entered forwarding state [ 485.781282][T27728] bridge0: port 1(bridge_slave_0) entered blocking state [ 485.788364][T27728] bridge0: port 1(bridge_slave_0) entered forwarding state [ 485.800681][ T46] veth1_macvtap: left promiscuous mode [ 485.806260][ T46] veth0_vlan: left promiscuous mode [ 485.896679][ T4424] bridge0: port 1(bridge_slave_0) entered disabled state [ 485.904667][ T4424] bridge0: port 2(bridge_slave_1) entered disabled state [ 485.935239][ T5147] bridge0: port 1(bridge_slave_0) entered blocking state [ 485.942348][ T5147] bridge0: port 1(bridge_slave_0) entered forwarding state [ 485.958563][ T5147] bridge0: port 2(bridge_slave_1) entered blocking state [ 485.965678][ T5147] bridge0: port 2(bridge_slave_1) entered forwarding state [ 486.037699][T27728] veth0_vlan: entered promiscuous mode [ 486.065593][T27728] veth1_macvtap: entered promiscuous mode [ 486.494225][T27833] __nla_validate_parse: 19 callbacks suppressed [ 486.494249][T27833] netlink: 84 bytes leftover after parsing attributes in process `syz.1.12629'. [ 486.583100][T27845] netlink: 84 bytes leftover after parsing attributes in process `syz.3.12634'. [ 486.669085][T27859] netlink: 84 bytes leftover after parsing attributes in process `syz.3.12641'. [ 486.779974][T27873] netlink: 84 bytes leftover after parsing attributes in process `syz.3.12649'. [ 486.848795][T27887] netlink: 84 bytes leftover after parsing attributes in process `syz.3.12656'. [ 487.058932][T27909] netlink: 84 bytes leftover after parsing attributes in process `syz.3.12667'. [ 487.226966][T27923] netlink: 84 bytes leftover after parsing attributes in process `syz.1.12674'. [ 487.350706][T27933] netlink: 84 bytes leftover after parsing attributes in process `syz.3.12679'. [ 487.521830][T27945] netlink: 84 bytes leftover after parsing attributes in process `syz.3.12684'. [ 487.974165][T27975] netlink: 84 bytes leftover after parsing attributes in process `syz.0.12699'. [ 490.748609][ T36] kauditd_printk_skb: 9 callbacks suppressed [ 490.748634][ T36] audit: type=1400 audit(1763289220.070:230): avc: denied { read } for pid=28144 comm="poweroff" name="log" dev="sda1" ino=2010 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1 Stopping sshd: stopped /usr/sbin/sshd (pid 202) OK Stopping crond: stopped /usr/sbin/crond (pid 194) OK [ 491.512958][T28214] __nla_validate_parse: 17 callbacks suppressed [ 491.512983][T28214] netlink: 84 bytes leftover after parsing attributes in process `syz.3.12811'. Stopping dhcpcd... stopped /sbin/dhcpcd (pid 148) [ 491.617094][ T36] audit: type=1400 audit(1763289220.930:231): avc: denied { search } for pid=28221 comm="dhcpcd-run-hook" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 Stopping network: [ 491.837192][ T36] audit: type=1400 audit(1763289221.150:232): avc: denied { write } for pid=149 comm="dhcpcd" name="dhcpcd" dev="tmpfs" ino=421 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 491.907101][ T36] audit: type=1400 audit(1763289221.150:233): avc: denied { remove_name } for pid=149 comm="dhcpcd" name="sock" dev="tmpfs" ino=423 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 491.959929][ T36] audit: type=1400 audit(1763289221.150:234): avc: denied { unlink } for pid=149 comm="dhcpcd" name="sock" dev="tmpfs" ino=423 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=sock_file permissive=1 OK Stopping iptables: OK [ 492.117109][ T36] audit: type=1400 audit(1763289221.420:235): avc: denied { search } for pid=28238 comm="iptables" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:iptables_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 492.157110][ T36] audit: type=1400 audit(1763289221.420:236): avc: denied { write } for pid=28238 comm="iptables" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:iptables_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 Stopping system message bus: [ 492.217107][ T36] audit: type=1400 audit(1763289221.420:237): avc: denied { add_name } for pid=28238 comm="iptables" name="xtables.lock" scontext=system_u:system_r:iptables_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 492.277100][ T36] audit: type=1400 audit(1763289221.420:238): avc: denied { create } for pid=28238 comm="iptables" name="xtables.lock" scontext=system_u:system_r:iptables_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 492.327111][ T36] audit: type=1400 audit(1763289221.420:239): avc: denied { read open } for pid=28238 comm="iptables" path="/run/xtables.lock" dev="tmpfs" ino=15250 scontext=system_u:system_r:iptables_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 done [ 492.493594][T28247] netlink: 84 bytes leftover after parsing attributes in process `syz.0.12816'. Stopping klogd: OK Stopping acpid: [ 492.907172][T28271] netlink: 84 bytes leftover after parsing attributes in process `syz.0.12825'. [ 493.105692][T28283] netlink: 84 bytes leftover after parsing attributes in process `syz.2.12824'. [ 493.136983][T28285] netlink: 84 bytes leftover after parsing attributes in process `syz.0.12831'. [ 493.225401][T28295] netlink: 84 bytes leftover after parsing attributes in process `syz.0.12835'. [ 493.249918][T28297] netlink: 108 bytes leftover after parsing attributes in process `syz.3.12836'. [ 493.495861][T28316] netlink: 84 bytes leftover after parsing attributes in process `syz.3.12846'. [ 493.555758][T28321] netlink: 84 bytes leftover after parsing attributes in process `syz.3.12849'. [ 493.578266][T28327] netlink: 84 bytes leftover after parsing attributes in process `syz.0.12851'. OK Stopping syslogd: stopped /sbin/syslogd (pid 92) OK umount: can't remount debugfs read-only Connection to 10.128.1.33 closed by remote host. umount: sysfs busy - remounted read-only umount: devtmpfs busy - remounted read-only umount: can't remount /dev/root read-only The system is going down NOW! Sent SIGTERM to all processes [ 494.888798][ T4424] bridge_slave_1: left allmulticast mode [ 494.894505][ T4424] bridge_slave_1: left promiscuous mode [ 494.907368][ T4424] bridge0: port 2(bridge_slave_1) entered disabled state [ 494.927573][ T4424] bridge_slave_0: left allmulticast mode [ 494.933282][ T4424] bridge_slave_0: left promiscuous mode [ 494.947600][ T4424] bridge0: port 1(bridge_slave_0) entered disabled state [ 494.968520][ T4424] bridge_slave_1: left allmulticast mode [ 494.974198][ T4424] bridge_slave_1: left promiscuous mode [ 494.982251][ T4424] bridge0: port 2(bridge_slave_1) entered disabled state [ 494.990018][ T4424] bridge_slave_0: left allmulticast mode [ 494.995678][ T4424] bridge_slave_0: left promiscuous mode [ 495.003275][ T4424] bridge0: port 1(bridge_slave_0) entered disabled state [ 495.152980][ T4424] veth1_macvtap: left promiscuous mode [ 495.158547][ T4424] veth0_vlan: left promiscuous mode [ 495.164127][ T4424] veth1_macvtap: left promiscuous mode [ 495.169691][ T4424] veth0_vlan: left promiscuous mode Sent SIGKILL to all processes Requesting system poweroff [ 495.629435][ T4424] bridge_slave_1: left allmulticast mode [ 495.635113][ T4424] bridge_slave_1: left promiscuous mode [ 495.640779][ T4424] bridge0: port 2(bridge_slave_1) entered disabled state [ 495.648243][ T4424] bridge_slave_0: left allmulticast mode [ 495.653890][ T4424] bridge_slave_0: left promiscuous mode [ 495.659564][ T4424] bridge0: port 1(bridge_slave_0) entered disabled state [ 495.667227][ T4424] bridge_slave_1: left allmulticast mode [ 495.672939][ T4424] bridge_slave_1: left promiscuous mode [ 495.678587][ T4424] bridge0: port 2(bridge_slave_1) entered disabled state [ 495.686008][ T4424] bridge_slave_0: left allmulticast mode [ 495.691726][ T4424] bridge_slave_0: left promiscuous mode [ 495.697365][ T4424] bridge0: port 1(bridge_slave_0) entered disabled state [ 495.841645][ T4424] veth1_macvtap: left promiscuous mode [ 495.847267][ T4424] veth0_vlan: left promiscuous mode [ 495.852832][ T4424] veth1_macvtap: left promiscuous mode [ 495.858403][ T4424] veth0_vlan: left promiscuous mode [ 496.498537][T28391] sd 0:0:1:0: [sda] Synchronizing SCSI cache [ 496.505288][T28391] ACPI: PM: Preparing to enter system sleep state S5 [ 496.512317][T28391] kvm: exiting hardware virtualization [ 496.517874][T28391] reboot: Power down serialport: VM disconnected.