last executing test programs: 14.485748226s ago: executing program 0 (id=1159): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x3, 0x10004) sync_file_range$auto(r0, 0xfffffffffffffff1, 0xa, 0x1) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) clone$auto(0xad8c, 0x6, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x9) setsockopt$auto(0x3, 0x6, 0x15, 0x0, 0xfb3) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) ustat$auto(0x801, 0x0) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x129800, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) setuid$auto(0xe) select$auto(0x7, 0x0, 0x0, 0x0, 0x0) close_range$auto(0x2, 0x8000, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0xfffffffd, 0x0, 0x1000) io_uring_register$auto(0x2, 0x1, 0x0, 0x0) keyctl$auto(0xa, 0xfffffffffffffffd, 0x2, 0x628, 0xfffffffffffffffd) 13.008179814s ago: executing program 1 (id=1161): r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyt3\x00', 0x0, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/devices/platform/dummy_hcd.2/usb3/power/runtime_suspended_time\x00', 0x60000, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000001080)=""/98, 0x62) r2 = socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x20008010}, 0x400d0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a0027"], 0x1ac}}, 0x20040004) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="18"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r2) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000001c0)={'wlan0\x00', 0x0}) write$auto_nsim_psample_enable_fops_psample(0xffffffffffffffff, &(0x7f0000000080), 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$auto_MACSEC_CMD_UPD_RXSA(r5, &(0x7f0000006200)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000001c0)={0x38, r6, 0x23, 0x70bd27, 0x25dfdbfc, {}, [@MACSEC_ATTR_SA_CONFIG={0x18, 0x3, 0x0, 0x1, [@nested={0x5, 0x1, 0x0, 0x1, [@generic="03"]}, @typed={0xc, 0x5, 0x0, 0x0, @u64=0xfffffffffffffffe}]}, @MACSEC_ATTR_RXSC_CONFIG={0x4}, @MACSEC_ATTR_IFINDEX={0x8}]}, 0x38}, 0x1, 0x0, 0x0, 0x4008000}, 0x0) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="2f212dbd7000fcdbdf252100000008000300", @ANYRES32=r4, @ANYBLOB="08009e00", @ANYRES16=r0], 0x24}}, 0x4000000) 12.380576054s ago: executing program 0 (id=1162): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x106) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) r1 = openat$dir(0xffffffffffffff9c, 0x0, 0x40000, 0x0) bind$auto(0x3, 0x0, 0x6a) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9) write$auto(0x3, 0x0, 0xfffffdef) r2 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000100), r0) ioctl$auto(0xffffffffffffffff, 0x900064b5, 0xc14) msgctl$auto(0x9, 0xf8, &(0x7f00000001c0)={{0x8, 0xee00, 0x0, 0x4, 0xa771, 0x7, 0x9}, &(0x7f0000000140)=0x1, &(0x7f0000000180)=0x1, 0xc28a, 0x5f52, 0x3, 0x9, 0x8, 0x2cce, 0xfffc, 0x6, @inferred, @inferred=0xffffffffffffffff}) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_macsec(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$auto_MACSEC_CMD_UPD_RXSC(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)={0x28, r4, 0x201, 0x70bd2a, 0x25dfdbfe, {}, [@MACSEC_ATTR_RXSC_CONFIG={0xc, 0x2, 0x0, 0x1, [@typed={0x8, 0x1, 0x0, 0x0, @uid}]}, @MACSEC_ATTR_IFINDEX={0x8}]}, 0x28}}, 0x48010) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f00000027c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000002780)={&(0x7f0000000240)={0x264, r2, 0x200, 0x70bd2d, 0x25dfdbfc, {}, [@OVS_VPORT_ATTR_IFINDEX={0x8}, @OVS_VPORT_ATTR_NAME={0xf, 0x3, '/dev/adsp1\x00'}, @OVS_VPORT_ATTR_OPTIONS={0x222, 0x4, 0x0, 0x1, [@nested={0xce, 0x144, 0x0, 0x1, [@typed={0x4, 0x75}, @nested={0x4, 0x68}, @generic="d1506bbd2b1ebe4d19b0d1c0ab9c296454e83f6f917ac6b0097c35d5df5abbc18838f7a7f3b46966c809d12efc3a7a069afe67a71d5567097f060e60e752058afe2f21dd8e61df70ef93aeeebfdb2433f6f4fc2a08eaf6e20011cc4749ac9c02feb7059988773029c0283338878bcccdc09ee6318737f2af18d42604ad6bba937d6dd2f5a7d9c92e8f08d40b3f052e083a9bb7bf59ad99a2501b8622414a", @typed={0x14, 0x40, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @private=0xa010100}}, @nested={0x4, 0x57}, @typed={0xc, 0x104, 0x0, 0x0, @u64=0x7}]}, @nested={0x3b, 0xab, 0x0, 0x1, [@nested={0x4, 0x12}, @nested={0x4, 0x23}, @typed={0x8, 0x69, 0x0, 0x0, @ipv4=@broadcast}, @nested={0x4, 0x5f}, @typed={0x8, 0xd0, 0x0, 0x0, @fd}, @typed={0xc, 0x7c, 0x0, 0x0, @u64=0x2}, @nested={0x4, 0x90}, @generic="79d31828245d1d", @nested={0x4, 0x54}]}, @nested={0xa1, 0xe6, 0x0, 0x1, [@generic="9a9ee0a2123a8fa92a4224c5e320835bc1df4b86308f1eb106b640770860908a7ee198191bec22d0e1fe7b49b4428100781fc9231baa218eb9dff6587e85758d2557a569379b8216c1a1a193109a24a6cbf4ca980e8cd518672d8170bfc296672040c805d2805a666b2c10da076637bada153ac529599e829086c0d426fe1187195bc35fd3", @typed={0x7, 0xa5, 0x0, 0x0, @str='}+\x00'}, @typed={0x8, 0xd8, 0x0, 0x0, @ipv4=@private=0xa010100}, @typed={0x8, 0x3f, 0x0, 0x0, @fd=r1}]}, @typed={0x8, 0xb6, 0x0, 0x0, @ipv4=@rand_addr=0x64010101}, @generic="78679f385b78dc", @typed={0xf, 0x141, 0x0, 0x0, @str='/dev/adsp1\x00'}, @generic="34dbb4a18fb580bda46a26cb741baeb66648b73e16593e6280ab1f493bdceced1b1cb8e704a055f6ba30c848e10359186bdac20f914fc3e87ed1e9d944940d1af2861a7aa210570710731e24a2b60c"]}, @OVS_VPORT_ATTR_UPCALL_STATS={0x4, 0xa, 0x0, 0x1, [@generic]}, @OVS_VPORT_ATTR_PORT_NO={0x8, 0x1, 0x5}, @OVS_VPORT_ATTR_NETNSID={0x8}]}, 0x264}, 0x1, 0x0, 0x0, 0xd5}, 0x4000040) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20002, 0x0) connect$auto(0x3, 0x0, 0x55) 10.756236602s ago: executing program 3 (id=1164): futex_waitv$auto(&(0x7f0000000000)={0xf, 0x5d94, 0x4, 0x4}, 0x77, 0x0, 0x0, 0x62bd) open(0x0, 0xa240, 0x15e) r0 = socket(0xa, 0x3, 0x3a) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffff7, 0x8000) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x3, 0x6) socket(0xa, 0x801, 0x106) socket$nl_generic(0x10, 0x3, 0x10) eventfd$auto(0x3) eventfd$auto(0x0) r1 = socket(0xa, 0x2, 0x88) bpf$auto(0x0, &(0x7f0000000000)=@link_update={r1, @new_prog_fd=0x4, 0x4, @old_map_fd=r0}, 0xa3) 10.154950923s ago: executing program 3 (id=1166): madvise$auto(0x0, 0x2000040080000004, 0xe) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x2003f2, 0x15) madvise$auto(0x0, 0x200007, 0x19) syslog$auto(0x3, 0x0, 0x5) poll$auto(0x0, 0x7f, 0x9) socket(0x25, 0x5, 0x6) ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0) pread64$auto(r1, &(0x7f0000000240)='\x03W\x96l\x15\x00'/21, 0x100000002, 0xffffffffffffff01) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='./cgroup.cpu/memory.limit_in_bytes\x00', 0x182b02, 0x0) sendfile$auto(r2, r2, 0x0, 0x3) 10.128856219s ago: executing program 1 (id=1167): prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, 0x0, 0xa00, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000004400)='/dev/dsp1\x00', 0x1, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0x20005, 0xdf, 0x12, r0, 0x4) open_by_handle_at$auto(r1, 0x0, 0x7d) mmap$auto(0x2, 0x400008, 0xdf, 0xfffffffffffffff7, 0x2, 0x8040) r2 = geteuid() keyctl$auto(0x1e, r2, r2, 0x5, 0x8) close_range$auto(0x2, 0xa, 0x0) r3 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0) sendmsg$auto_NL80211_CMD_GET_KEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="e9", @ANYRES16, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x21}, 0x51) read$auto(r3, 0x0, 0xb4d3) write$auto(0x3, 0x0, 0xffd8) 8.478282188s ago: executing program 1 (id=1169): socket(0x1a, 0x1, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x40001, 0x0) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80802, 0x0) socket(0x2b, 0x1, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) statx$auto(r1, 0x0, 0x6d7, 0x80000008, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mlock$auto(0x112, 0x80006) mlockall$auto(0x800000000000005) madvise$auto(0x0, 0x200007, 0x19) 8.094833416s ago: executing program 0 (id=1170): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0) write$auto(r0, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) write$auto(r0, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, r0, 0x8000) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) close_range$auto(0x2, 0xa, 0x0) socket(0x18, 0xa, 0x1) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'wlan0\x00', 0x0}) sendmsg$auto_NL80211_CMD_GET_INTERFACE(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000700)={0x1c, r2, 0x1, 0x70bd27, 0x25dfdbfc, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000801}, 0x4000084) socket(0xa, 0x2, 0x0) ioctl$auto_KVM_GET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [{0x491, 0x400, 0x9}]}) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r6, @ANYBLOB="01002bbd7000fcdbdf2504"], 0x1c}}, 0x4044820) 6.797618088s ago: executing program 2 (id=1173): socket$nl_generic(0x10, 0x3, 0x10) socket(0x15, 0x5, 0x0) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) userfaultfd$auto(0x1) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) socket(0xa, 0x801, 0x84) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1, 0x1, 0x1) timerfd_create$auto(0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x801, 0x84) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) socket(0xa, 0x2, 0x3a) r1 = io_uring_setup$auto(0x6, 0x0) r2 = socket(0xa, 0x2, 0x88) close_range$auto(0x0, 0xfffffffffffff000, 0x2) bpf$auto(0x0, &(0x7f0000000000)=@link_update={r2, @new_prog_fd=r0, 0x4, @old_map_fd=r1}, 0xa3) bpf$auto(0x3, &(0x7f0000000040)=@query={@target_ifindex, 0x4, 0x7, 0x9, 0x7f, @prog_cnt=0x4, 0x0, 0x80000000, 0xc, 0xb, 0x5}, 0x7) 6.450960749s ago: executing program 2 (id=1174): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/virtual/tty/ttyx8/power/runtime_status\x00', 0x3e52c0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x25, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x28, 0x801, 0x0) socket(0xf, 0x3, 0x2) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) eventfd$auto(0x3) socket(0xa, 0x2, 0x88) socket(0x2, 0x3, 0xa) socket(0x11, 0x80003, 0x2ff) socketpair$auto(0x8, 0x0, 0x0, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0xc7f16bff2a10ba01, 0x0) ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0) sendfile$auto(r0, r1, 0x0, 0x8) 6.304106856s ago: executing program 1 (id=1175): sendmsg$auto_SMC_NETLINK_REMOVE_UEID(0xffffffffffffffff, 0x0, 0x20000000) socket(0x2, 0x3, 0xa) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) openat$auto_memtype_fops_memtype(0xffffffffffffff9c, &(0x7f0000000000), 0x608841, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x4000000000008000) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb5, 0x401, 0x300000000000) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0x40, 0x0) ioctl$auto_EVIOCGMASK(r0, 0x80104592, &(0x7f0000000300)={0x2000, 0x800004, 0x105}) ioctl$auto(0x3, 0x80004509, 0x10000000000402) ioctl$auto(0x3, 0x800005411, 0x38) syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000002c0), 0xffffffffffffffff) 5.99531964s ago: executing program 2 (id=1176): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) io_uring_setup$auto(0x7, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0xa101, 0x0) socket(0x10, 0x2, 0x0) io_uring_setup$auto(0x4, 0x0) openat$auto_ftrace_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/events/vmalloc/free_vmap_area_noflush/enable\x00', 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_lowpan_enable_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x109500, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) io_uring_setup$auto(0x85, 0x0) socket(0x1d, 0x2, 0x7) socketpair$auto(0x4004, 0x7, 0x4, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0) ioctl$auto_TCFLSH2(r0, 0x800455cc, 0x0) 5.900014134s ago: executing program 3 (id=1177): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) syz_clone3(&(0x7f00000004c0)={0x2000000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58) r0 = open(&(0x7f0000000100)='.\x00', 0x0, 0x408) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) getdents$auto(r0, 0x0, 0x400018) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop6\x00', 0x169780, 0x0) ioctl$auto_SG_GET_RESERVED_SIZE(r1, 0x4c00, 0x0) ioperm$auto(0x3428, 0x80, 0x4) socket(0xa, 0x2, 0x0) openat$auto_fops_atomic_t_(0xffffffffffffff9c, 0x0, 0x2, 0x0) io_uring_setup$auto(0x6, 0x0) mknod$auto(0x0, 0x1081, 0x3) creat$auto(0x0, 0x1000) creat$auto(0x0, 0x8d00) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x20b42, 0x0) setsockopt$auto(0x400000000000003, 0x29, 0x2a, 0xffffffffffffffff, 0x3) openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, 0x0, 0xa0602, 0x0) futex_waitv$auto(0x0, 0x1, 0x0, 0x0, 0x7) 5.657399353s ago: executing program 2 (id=1178): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) mmap$auto(0x0, 0x4, 0xffffffffffffffff, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) openat$auto_bm_entry_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/fs/binfmt_misc/syz1\x00', 0x400, 0x0) unshare$auto(0x40000080) setsockopt$auto(0x400000000000003, 0x2d, 0x1c, 0x0, 0x3) r0 = socket(0x10, 0x2, 0xc) r1 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000002c0), 0xffffffffffffffff) r2 = socket(0x10, 0x2, 0xc) r3 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000002c0), 0xffffffffffffffff) sendmsg$auto_CTRL_CMD_GETPOLICY(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)={0x24, r3, 0x10, 0x70bd2c, 0x25dfdbfa, {0xa, 0x0, 0xa00}, [@CTRL_ATTR_FAMILY_NAME={0x0, 0x2, '%/\x00\xe2\xa8\\A\xe7Z\x02q[\xcb\xc0\xb0N\\\xdc\xdf(\xff\xfee\xc3\x17py\x9f\xda\xb88\xaa\xf6q*\x82\xe6(\xc9\xe6B\x9aJ82\v-i(c\x92{\xd7D\xb4\xf7\xb4\t\xb2\x98b\xd3%vu\xd4\xfd\t\xd7J\x83\x19)\xb1\x00[\xdd(\xef?\xc5\xae(\x84\xefjx\xfe\xdb\xeb\xbceaAw\x1eW\x12Bh\xc3y2\xc9\x0e\xc9\x99#\x92j\x97\xbbDOi\x03\xa4\x11\x02F0x0}) sendmsg$auto_HSR_C_GET_NODE_STATUS(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x68, 0x0, 0x200, 0x70bd26, 0x25dfdbfe, {}, [@HSR_A_IF1_SEQ={0x6, 0x6, 0x4}, @HSR_A_IF2_SEQ={0x6, 0x7, 0x8000}, @HSR_A_IFINDEX={0x8}, @HSR_A_NODE_ADDR_B={0xa, 0x5, @link_local}, @HSR_A_NODE_ADDR={0xa, 0x1, @remote}, @HSR_A_NODE_ADDR={0xa}, @HSR_A_IF1_SEQ={0x6, 0x6, 0x3}, @HSR_A_IFINDEX={0x8}, @HSR_A_IFINDEX={0x8, 0x2, r3}]}, 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40090) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 3.632991483s ago: executing program 3 (id=1182): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x26}}, 0x71) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x9, 0x20000000) r1 = io_uring_setup$auto(0x1, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0xc7f16bff2a10ba01, 0x0) socketpair$auto(0x4, 0x1, 0x20000, 0x0) socket(0x10, 0x2, 0x0) sendmsg$auto_SMC_NETLINK_GET_DEV_SMCD(0xffffffffffffffff, 0x0, 0x810) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) ioctl$auto_PPPIOCSPASS(r1, 0x40107447, 0x0) write$auto(0x3, 0x0, 0xfffffdef) openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000000)='/dev/usbmon7\x00', 0x0, 0x0) mmap$auto(0x0, 0x4000002, 0xfffffffffffffe01, 0x8051, 0x3, 0x0) unshare$auto(0x40000080) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000140), 0xffffffffffffffff) 3.278858873s ago: executing program 1 (id=1183): unshare$auto(0x40000080) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x40040, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_kmsg_fops_printk(0xffffffffffffff9c, &(0x7f0000000000), 0x40001, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) listmount$auto(0x0, &(0x7f00000001c0)=0x4, 0x4, 0x101) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/workqueue/nvme-reset-wq/cpumask\x00', 0x9c2342, 0x0) sendfile$auto(r1, r1, 0x0, 0x4000000a1f) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/security/tomoyo/manager\x00', 0x2, 0x0) pidfd_open$auto(0x1, 0x0) openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/cpu0/hotplug/target\x00', 0x201, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x2) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x4, 0x15f4da0a, 0x1, 0x3, 0x0, 0x80000001, 0x7, 0x6d39, 0x5, 0x2, 0x1]}, 0x0) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000840), 0xffffffffffffffff) 1.57225886s ago: executing program 0 (id=1184): mmap$auto(0x2, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0x3, 0x0) mkdir$auto(&(0x7f00000000c0)='./file1\x00', 0x9) mkdir$auto(&(0x7f0000000380)='./file0/file0\x00', 0x552) rename$auto(&(0x7f0000000480)='./file1\x00', &(0x7f0000000040)='./file0/file0\x00') mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x8, 0x8000) openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000080), r0) sendmsg$auto_OVS_DP_CMD_GET(r0, &(0x7f0000000200)={0x0, 0xf000, &(0x7f00000000c0)={&(0x7f0000000000)={0x1c, r1, 0x374fe8f90a251713, 0x70bd29, 0x25dfdbfc, {0x3, 0x0, 0xf000}, [@OVS_DP_ATTR_MASKS_CACHE_SIZE={0x8, 0x7, 0xfffffff7}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20044010}, 0x20000008) r2 = openat$auto_page_owner_stack_operations_page_owner(0xffffffffffffff9c, &(0x7f0000000100), 0x101000, 0x0) read$auto(r2, 0x0, 0x1f46) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyx3\x00', 0x42880, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/graphics/fbcon/rotate\x00', 0x10b842, 0x0) read$auto(0xffffffffffffffff, 0x0, 0x1ff) write$auto(0x3, 0x0, 0x7) 666.621832ms ago: executing program 2 (id=1185): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/dummy_hcd.3/usb4/4-0:1.0/authorized\x00', 0x10b142, 0x0) mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) r0 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000200), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_HWSIM_CMD_DEL_RADIO(r1, &(0x7f0000003bc0)={0x0, 0x0, &(0x7f0000003b80)={&(0x7f0000003980)={0x24, r0, 0x5, 0x70bd26, 0x25dfdbfd, {}, [@HWSIM_ATTR_RADIO_NAME={0xd, 0x11, '/dev/fb1\x00'}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000000}, 0xc044) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000980), r2) sendmsg$auto_TIPC_NL_MEDIA_SET(r2, &(0x7f000000a4c0)={0x0, 0x0, &(0x7f000000a480)={&(0x7f0000009800)={0x18, r3, 0x1, 0x70bd29, 0x25dfdbff, {}, [@TIPC_NLA_MEDIA={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x4000}, 0x20000048) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) socket(0xf, 0x3, 0x7c) readlinkat$auto(0x1, 0x0, 0x0, 0x16a) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) fstatfs$auto(0x3, 0x0) ioctl$auto(r4, 0x4b67, 0x1) 371.897896ms ago: executing program 1 (id=1186): socket(0x2, 0x1, 0x100) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @empty}, 0x51) shutdown$auto(0x200000003, 0x2) madvise$auto(0x0, 0x2003f0, 0x15) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio1\x00', 0x20b42, 0x0) r0 = open(&(0x7f0000000000)='./file0\x00', 0x149443, 0x14) fcntl$auto(r0, 0x409, 0x40003f) ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000100)=""/192, 0xc0) setsockopt$auto(0xffffffffffffffff, 0x8, 0xc, 0x0, 0x567) unshare$auto(0x40000080) sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, 0x0, 0x8080) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x7, 0x4008) unshare$auto(0x40) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0) 320.601922ms ago: executing program 0 (id=1187): ioctl$auto_SNDRV_TIMER_IOCTL_TREAD_OLD(0xffffffffffffffff, 0x40045402, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x3fd, 0x8000) mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000) fcntl$auto_F_GETOWN(0xffffffffffffffff, 0x9, 0x3) sendmsg$auto_MACSEC_CMD_ADD_RXSA(0xffffffffffffffff, 0x0, 0x2404c084) r0 = socket(0xa, 0x3, 0xff) connect$auto(r0, 0x0, 0x55) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r1, 0x0, 0x20) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) socket$nl_generic(0x10, 0x3, 0x10) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000001f00), 0xffffffffffffffff) sendmsg$auto_SMC_PNETID_ADD(r3, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f00000006c0)={0x2c, r4, 0x1, 0x70bd2c, 0x25dfdc01, {}, [@SMC_PNETID_ETHNAME={0xc, 0x2, '+o*#\x90\x80\x8b\x00'}, @SMC_PNETID_NAME={0xb, 0x1, 'netdev\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x840}, 0x40d0) mkdir$auto(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x8cd) 0s ago: executing program 3 (id=1188): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/pm_trace_dev_match\x00', 0x20080, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000280)=""/175, 0xaf) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x0, 0x0) mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000200)='/dev/sequencer2\x00', 0x80283, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) ustat$auto(0x801, 0x0) write$auto(0xffffffffffffffff, 0x0, 0x8) r1 = socket(0x11, 0xa, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000001c0)={'tunl0\x00'}) listmount$auto(&(0x7f0000000040)={0x200, @inferred=r0, 0x7f, 0x81, 0x400}, 0x0, 0xf, 0x5) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/afs/rootcell\x00', 0x1cb842, 0x0) write$auto(r2, 0x0, 0x6) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000040), 0xffffffffffffffff) mbind$auto(0x7fffffff, 0x1ff, 0xc000, 0x0, 0x8, 0x6) r3 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer\x00', 0x1c8300, 0x0) ioctl$auto(r3, 0x8004510b, 0x3) kernel console output (not intermixed with test programs): oc_cache_noprof+0x6a/0x3e0 [ 224.918911][ T7521] ? __lock_acquire+0x62e/0x1ce0 [ 224.918948][ T7521] ? tipc_nametbl_insert_publ+0x5a/0x1720 [ 224.918985][ T7521] tipc_nametbl_insert_publ+0x5a/0x1720 [ 224.919017][ T7521] ? do_raw_spin_lock+0x12c/0x2b0 [ 224.919054][ T7521] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 224.919090][ T7521] ? net_generic+0xea/0x2a0 [ 224.919124][ T7521] tipc_nametbl_publish+0x137/0x280 [ 224.919159][ T7521] tipc_sk_publish+0x1d8/0x430 [ 224.919193][ T7521] ? __pfx_tipc_sk_publish+0x10/0x10 [ 224.919234][ T7521] ? __local_bh_enable_ip+0xa4/0x120 [ 224.919278][ T7521] tipc_sk_bind+0x16f/0x380 [ 224.919321][ T7521] tipc_bind+0x190/0x2a0 [ 224.919356][ T7521] __sys_bind+0x1a7/0x260 [ 224.919381][ T7521] ? __pfx___sys_bind+0x10/0x10 [ 224.919415][ T7521] ? xfd_validate_state+0x61/0x180 [ 224.919459][ T7521] __x64_sys_bind+0x72/0xb0 [ 224.919481][ T7521] ? lockdep_hardirqs_on+0x7c/0x110 [ 224.919510][ T7521] do_syscall_64+0xcd/0x490 [ 224.919544][ T7521] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 224.919568][ T7521] RIP: 0033:0x7fa1d958ebe9 [ 224.919586][ T7521] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 224.919610][ T7521] RSP: 002b:00007fa1da4ca038 EFLAGS: 00000246 ORIG_RAX: 0000000000000031 [ 224.919647][ T7521] RAX: ffffffffffffffda RBX: 00007fa1d97b5fa0 RCX: 00007fa1d958ebe9 [ 224.919663][ T7521] RDX: 0000000000000066 RSI: 0000200000000040 RDI: 0000000000000005 [ 224.919677][ T7521] RBP: 00007fa1d9611e19 R08: 0000000000000000 R09: 0000000000000000 [ 224.919691][ T7521] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 224.919704][ T7521] R13: 00007fa1d97b6038 R14: 00007fa1d97b5fa0 R15: 00007ffe61602ee8 [ 224.919734][ T7521] [ 226.198821][ T7536] Invalid ELF header magic: != ELF [ 226.343792][ T7544] usbip-vudc usbip-vudc.0: gadget not bound [ 226.545197][ T7547] FAULT_INJECTION: forcing a failure. [ 226.545197][ T7547] name failslab, interval 1, probability 0, space 0, times 0 [ 226.568341][ T7547] CPU: 0 UID: 0 PID: 7547 Comm: syz.0.415 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) [ 226.568389][ T7547] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 226.568409][ T7547] Call Trace: [ 226.568420][ T7547] [ 226.568432][ T7547] dump_stack_lvl+0x16c/0x1f0 [ 226.568479][ T7547] should_fail_ex+0x512/0x640 [ 226.568538][ T7547] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 226.568586][ T7547] should_failslab+0xc2/0x120 [ 226.568632][ T7547] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 226.568674][ T7547] ? __alloc_skb+0x2b2/0x380 [ 226.568720][ T7547] __alloc_skb+0x2b2/0x380 [ 226.568758][ T7547] ? __pfx___alloc_skb+0x10/0x10 [ 226.568801][ T7547] ? tcp_chrono_stop+0x95/0x420 [ 226.568846][ T7547] tcp_stream_alloc_skb+0x34/0x570 [ 226.568904][ T7547] tcp_connect+0xe21/0x4e10 [ 226.568962][ T7547] ? __pfx_tcp_connect+0x10/0x10 [ 226.568998][ T7547] ? __pfx_tcp_fastopen_defer_connect+0x10/0x10 [ 226.569060][ T7547] ? inet6_hash_connect+0xe2/0x180 [ 226.569113][ T7547] tcp_v6_connect+0x157c/0x2170 [ 226.569147][ T7547] ? aa_label_sk_perm+0x195/0x600 [ 226.569198][ T7547] ? __pfx_tcp_v6_connect+0x10/0x10 [ 226.569230][ T7547] ? find_held_lock+0x2b/0x80 [ 226.569288][ T7547] ? __lock_acquire+0xb97/0x1ce0 [ 226.569340][ T7547] ? __inet_stream_connect+0x917/0xf60 [ 226.569371][ T7547] __inet_stream_connect+0x917/0xf60 [ 226.569414][ T7547] ? __pfx___inet_stream_connect+0x10/0x10 [ 226.569447][ T7547] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 226.569504][ T7547] ? __pfx_inet_stream_connect+0x10/0x10 [ 226.569548][ T7547] ? __local_bh_enable_ip+0xa4/0x120 [ 226.569594][ T7547] ? __pfx_inet_stream_connect+0x10/0x10 [ 226.569623][ T7547] inet_stream_connect+0x57/0xa0 [ 226.569659][ T7547] __sys_connect_file+0x141/0x1a0 [ 226.569700][ T7547] __sys_connect+0x13b/0x160 [ 226.569736][ T7547] ? __pfx___sys_connect+0x10/0x10 [ 226.569787][ T7547] ? xfd_validate_state+0x61/0x180 [ 226.569836][ T7547] ? __sys_setsockopt+0x140/0x1a0 [ 226.569885][ T7547] __x64_sys_connect+0x72/0xb0 [ 226.569919][ T7547] ? lockdep_hardirqs_on+0x7c/0x110 [ 226.569960][ T7547] do_syscall_64+0xcd/0x490 [ 226.570007][ T7547] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 226.570040][ T7547] RIP: 0033:0x7f8512d8ebe9 [ 226.570066][ T7547] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 226.570097][ T7547] RSP: 002b:00007f8513cb3038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 226.570128][ T7547] RAX: ffffffffffffffda RBX: 00007f8512fb5fa0 RCX: 00007f8512d8ebe9 [ 226.570150][ T7547] RDX: 000000000000001b RSI: 00002000000018c0 RDI: 0000000000000003 [ 226.570170][ T7547] RBP: 00007f8512e11e19 R08: 0000000000000000 R09: 0000000000000000 [ 226.570188][ T7547] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 226.570206][ T7547] R13: 00007f8512fb6038 R14: 00007f8512fb5fa0 R15: 00007ffed19ec928 [ 226.570248][ T7547] [ 227.676723][ T7553] ima: policy update failed [ 227.683411][ T30] audit: type=1802 audit(1755166908.837:7): pid=7553 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.417" res=0 errno=0 [ 228.880482][ T7581] FAULT_INJECTION: forcing a failure. [ 228.880482][ T7581] name failslab, interval 1, probability 0, space 0, times 0 [ 229.072617][ T7581] CPU: 0 UID: 0 PID: 7581 Comm: syz.0.425 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) [ 229.072668][ T7581] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 229.072688][ T7581] Call Trace: [ 229.072700][ T7581] [ 229.072712][ T7581] dump_stack_lvl+0x16c/0x1f0 [ 229.072760][ T7581] should_fail_ex+0x512/0x640 [ 229.072808][ T7581] ? find_held_lock+0x2b/0x80 [ 229.072845][ T7581] should_failslab+0xc2/0x120 [ 229.072892][ T7581] __kmalloc_cache_noprof+0x6a/0x3e0 [ 229.072929][ T7581] ? sctp_association_new+0xbb/0x2a00 [ 229.072983][ T7581] sctp_association_new+0xbb/0x2a00 [ 229.073033][ T7581] ? sctp_v4_scope+0x183/0x1a0 [ 229.073071][ T7581] sctp_make_temp_asoc+0x97/0x1d0 [ 229.073113][ T7581] sctp_sf_do_unexpected_init.isra.0+0x898/0x16f0 [ 229.073161][ T7581] ? __pfx_sctp_sf_do_unexpected_init.isra.0+0x10/0x10 [ 229.073200][ T7581] ? __pfx_sctp_sm_lookup_event+0x10/0x10 [ 229.073242][ T7581] ? __pfx_sctp_cname+0x10/0x10 [ 229.073274][ T7581] sctp_do_sm+0x17e/0x5c80 [ 229.073324][ T7581] ? sctp_packet_singleton+0x1a5/0x370 [ 229.073382][ T7581] ? __pfx_sctp_packet_singleton+0x10/0x10 [ 229.073436][ T7581] ? __pfx_sctp_do_sm+0x10/0x10 [ 229.073539][ T7581] ? ktime_get+0x200/0x310 [ 229.073579][ T7581] ? lockdep_hardirqs_on+0x7c/0x110 [ 229.073628][ T7581] sctp_assoc_bh_rcv+0x392/0x6f0 [ 229.073685][ T7581] sctp_inq_push+0x1d8/0x270 [ 229.073733][ T7581] sctp_backlog_rcv+0x169/0x590 [ 229.073788][ T7581] ? __pfx_sctp_backlog_rcv+0x10/0x10 [ 229.073841][ T7581] __release_sock+0x35f/0x400 [ 229.073884][ T7581] ? lockdep_hardirqs_on+0x7c/0x110 [ 229.073933][ T7581] release_sock+0x5a/0x220 [ 229.073977][ T7581] sctp_wait_for_connect+0x1c4/0x5c0 [ 229.074025][ T7581] ? __pfx_sctp_wait_for_connect+0x10/0x10 [ 229.074071][ T7581] ? __pfx_autoremove_wake_function+0x10/0x10 [ 229.074119][ T7581] ? sctp_primitive_ASSOCIATE+0x9c/0xd0 [ 229.074175][ T7581] __sctp_connect+0x9c7/0xc60 [ 229.074225][ T7581] ? do_raw_spin_lock+0x12c/0x2b0 [ 229.074280][ T7581] ? __pfx___sctp_connect+0x10/0x10 [ 229.074338][ T7581] ? __pfx_sctp_inet_connect+0x10/0x10 [ 229.074387][ T7581] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 229.074443][ T7581] ? __pfx_sctp_inet_connect+0x10/0x10 [ 229.074490][ T7581] sctp_inet_connect+0x15f/0x200 [ 229.074541][ T7581] __sys_connect_file+0x141/0x1a0 [ 229.074582][ T7581] __sys_connect+0x13b/0x160 [ 229.074618][ T7581] ? __pfx___sys_connect+0x10/0x10 [ 229.074670][ T7581] ? xfd_validate_state+0x61/0x180 [ 229.074731][ T7581] __x64_sys_connect+0x72/0xb0 [ 229.074765][ T7581] ? lockdep_hardirqs_on+0x7c/0x110 [ 229.074805][ T7581] do_syscall_64+0xcd/0x490 [ 229.074852][ T7581] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 229.074886][ T7581] RIP: 0033:0x7f8512d8ebe9 [ 229.074912][ T7581] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 229.074943][ T7581] RSP: 002b:00007f8513cb3038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 229.074975][ T7581] RAX: ffffffffffffffda RBX: 00007f8512fb5fa0 RCX: 00007f8512d8ebe9 [ 229.074996][ T7581] RDX: 0000000000000054 RSI: 0000200000000080 RDI: 0000000000000003 [ 229.075015][ T7581] RBP: 00007f8512e11e19 R08: 0000000000000000 R09: 0000000000000000 [ 229.075033][ T7581] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 229.075052][ T7581] R13: 00007f8512fb6038 R14: 00007f8512fb5fa0 R15: 00007ffed19ec928 [ 229.075093][ T7581] [ 231.893793][ T7614] netlink: 8 bytes leftover after parsing attributes in process `syz.1.434'. [ 231.904198][ T7614] netlink: 8 bytes leftover after parsing attributes in process `syz.1.434'. [ 232.416237][ T30] audit: type=1804 audit(1755166913.557:8): pid=7620 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.435" name="/newroot/118/file0" dev="tmpfs" ino=636 res=1 errno=0 [ 234.280975][ T7646] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 234.365986][ T7648] bridge0: port 3(bond0) entered blocking state [ 234.402944][ T7648] bridge0: port 3(bond0) entered disabled state [ 234.409436][ T7648] bond0: entered allmulticast mode [ 234.469734][ T7648] bond_slave_0: entered allmulticast mode [ 234.532839][ T7648] bond_slave_1: entered allmulticast mode [ 234.588869][ T7648] bond0: entered promiscuous mode [ 234.675622][ T7648] bond_slave_0: entered promiscuous mode [ 234.719745][ T7648] bond_slave_1: entered promiscuous mode [ 235.578199][ T5864] Bluetooth: hci2: SCO packet for unknown connection handle 0 [ 236.907013][ T7688] vmstat_refresh: nr_hugetlb -1024 [ 238.742131][ T7715] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 241.451096][ T7748] FAULT_INJECTION: forcing a failure. [ 241.451096][ T7748] name failslab, interval 1, probability 0, space 0, times 0 [ 241.518158][ T7748] CPU: 0 UID: 0 PID: 7748 Comm: syz.0.467 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) [ 241.518208][ T7748] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 241.518228][ T7748] Call Trace: [ 241.518239][ T7748] [ 241.518252][ T7748] dump_stack_lvl+0x16c/0x1f0 [ 241.518317][ T7748] should_fail_ex+0x512/0x640 [ 241.518363][ T7748] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 241.518410][ T7748] should_failslab+0xc2/0x120 [ 241.518455][ T7748] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 241.518498][ T7748] ? __d_alloc+0x32/0xae0 [ 241.518546][ T7748] __d_alloc+0x32/0xae0 [ 241.518593][ T7748] ? __kasan_slab_alloc+0x89/0x90 [ 241.518632][ T7748] ? kmem_cache_alloc_noprof+0x1cb/0x3b0 [ 241.518677][ T7748] d_alloc_parallel+0x111/0x1480 [ 241.518736][ T7748] ? do_syscall_64+0xcd/0x490 [ 241.518777][ T7748] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 241.518823][ T7748] ? __lock_acquire+0xb97/0x1ce0 [ 241.518869][ T7748] ? __pfx_d_alloc_parallel+0x10/0x10 [ 241.518927][ T7748] ? lockdep_init_map_type+0x5c/0x280 [ 241.518975][ T7748] ? lockdep_init_map_type+0x5c/0x280 [ 241.519029][ T7748] __lookup_slow+0x193/0x460 [ 241.519083][ T7748] ? __pfx___lookup_slow+0x10/0x10 [ 241.519140][ T7748] ? perf_trace_mm_compaction_try_to_compact_pages+0x410/0x4b0 [ 241.519207][ T7748] ? perf_trace_mm_compaction_try_to_compact_pages+0x410/0x4b0 [ 241.519260][ T7748] ? d_lookup+0xe7/0x190 [ 241.519319][ T7748] lookup_noperm+0xe1/0x110 [ 241.519373][ T7748] simple_start_creating+0xd1/0x1b0 [ 241.519414][ T7748] rpc_mkpipe_dentry+0xdf/0x560 [ 241.519477][ T7748] rpc_fill_super+0x3c6/0x4f0 [ 241.519532][ T7748] ? __pfx_rpc_fill_super+0x10/0x10 [ 241.519590][ T7748] get_tree_keyed+0x10b/0x1d0 [ 241.519640][ T7748] vfs_get_tree+0x8b/0x340 [ 241.519672][ T7748] vfs_cmd_create+0xd7/0x2a0 [ 241.519720][ T7748] __do_sys_fsconfig+0x7b8/0xbe0 [ 241.519772][ T7748] ? __pfx___do_sys_fsconfig+0x10/0x10 [ 241.519841][ T7748] do_syscall_64+0xcd/0x490 [ 241.519890][ T7748] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 241.519924][ T7748] RIP: 0033:0x7f8512d8ebe9 [ 241.519951][ T7748] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 241.519983][ T7748] RSP: 002b:00007f8513cb3038 EFLAGS: 00000246 ORIG_RAX: 00000000000001af [ 241.520015][ T7748] RAX: ffffffffffffffda RBX: 00007f8512fb5fa0 RCX: 00007f8512d8ebe9 [ 241.520036][ T7748] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000007 [ 241.520056][ T7748] RBP: 00007f8512e11e19 R08: 0000000000000000 R09: 0000000000000000 [ 241.520076][ T7748] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 241.520096][ T7748] R13: 00007f8512fb6038 R14: 00007f8512fb5fa0 R15: 00007ffed19ec928 [ 241.520139][ T7748] [ 241.520235][ T7748] rpc_mkpipe_dentry() failed to create pipe clntXX/gssd (errno = -12) [ 243.379521][ T7751] Invalid ELF header magic: != ELF [ 244.590308][ T7785] netlink: 186 bytes leftover after parsing attributes in process `syz.0.477'. [ 249.568294][ T7828] FAULT_INJECTION: forcing a failure. [ 249.568294][ T7828] name failslab, interval 1, probability 0, space 0, times 0 [ 249.592694][ T7828] CPU: 0 UID: 1 PID: 7828 Comm: syz.0.495 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) [ 249.592743][ T7828] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 249.592767][ T7828] Call Trace: [ 249.592781][ T7828] [ 249.592792][ T7828] dump_stack_lvl+0x16c/0x1f0 [ 249.592833][ T7828] should_fail_ex+0x512/0x640 [ 249.592873][ T7828] ? __kmalloc_noprof+0xbf/0x510 [ 249.592915][ T7828] ? trace_parser_get_init+0x30/0xc0 [ 249.592958][ T7828] should_failslab+0xc2/0x120 [ 249.592996][ T7828] __kmalloc_noprof+0xd2/0x510 [ 249.593027][ T7828] ? __pfx___might_resched+0x10/0x10 [ 249.593062][ T7828] trace_parser_get_init+0x30/0xc0 [ 249.593106][ T7828] trace_pid_write+0xef/0x460 [ 249.593149][ T7828] ? __mutex_unlock_slowpath+0x163/0x800 [ 249.593187][ T7828] ? __pfx_trace_pid_write+0x10/0x10 [ 249.593229][ T7828] ? __pfx___mutex_lock+0x10/0x10 [ 249.593263][ T7828] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 249.593321][ T7828] event_pid_write.isra.0+0x1e4/0x7f0 [ 249.593363][ T7828] ? __pfx_event_pid_write.isra.0+0x10/0x10 [ 249.593410][ T7828] ? __pfx_ftrace_event_npid_write+0x10/0x10 [ 249.593448][ T7828] vfs_write+0x29d/0x11d0 [ 249.593485][ T7828] ? __pfx___mutex_lock+0x10/0x10 [ 249.593520][ T7828] ? __pfx_vfs_write+0x10/0x10 [ 249.593562][ T7828] ? __fget_files+0x20e/0x3c0 [ 249.593601][ T7828] ksys_write+0x12a/0x250 [ 249.593633][ T7828] ? __pfx_ksys_write+0x10/0x10 [ 249.593676][ T7828] do_syscall_64+0xcd/0x490 [ 249.593713][ T7828] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 249.593741][ T7828] RIP: 0033:0x7f8512d8ebe9 [ 249.593762][ T7828] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 249.593788][ T7828] RSP: 002b:00007f8513cb3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 249.593814][ T7828] RAX: ffffffffffffffda RBX: 00007f8512fb5fa0 RCX: 00007f8512d8ebe9 [ 249.593833][ T7828] RDX: 000000000000fdf3 RSI: 0000000000000000 RDI: 0000000000000003 [ 249.593852][ T7828] RBP: 00007f8512e11e19 R08: 0000000000000000 R09: 0000000000000000 [ 249.593869][ T7828] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 249.593891][ T7828] R13: 00007f8512fb6038 R14: 00007f8512fb5fa0 R15: 00007ffed19ec928 [ 249.593926][ T7828] [ 250.413433][ T7834] netlink: 28 bytes leftover after parsing attributes in process `syz.3.488'. [ 251.898223][ T7852] netlink: 330 bytes leftover after parsing attributes in process `syz.3.493'. [ 252.211565][ T30] audit: type=1800 audit(1755166933.357:9): pid=7849 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.492" name="file0" dev="tmpfs" ino=689 res=0 errno=0 [ 262.201425][ T7971] netlink: 4 bytes leftover after parsing attributes in process `syz.3.520'. [ 262.340926][ T7974] netlink: 4 bytes leftover after parsing attributes in process `syz.3.520'. [ 266.007763][ T1305] ieee802154 phy0 wpan0: encryption failed: -22 [ 266.014281][ T1305] ieee802154 phy1 wpan1: encryption failed: -22 [ 266.548515][ T7990] netlink: 4 bytes leftover after parsing attributes in process `syz.2.525'. [ 266.604329][ T7990] netlink: 25 bytes leftover after parsing attributes in process `syz.2.525'. [ 267.772274][ T8002] FAULT_INJECTION: forcing a failure. [ 267.772274][ T8002] name fail_futex, interval 1, probability 0, space 0, times 1 [ 267.862800][ T8002] CPU: 0 UID: 0 PID: 8002 Comm: syz.3.526 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) [ 267.862846][ T8002] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 267.862865][ T8002] Call Trace: [ 267.862875][ T8002] [ 267.862886][ T8002] dump_stack_lvl+0x16c/0x1f0 [ 267.862931][ T8002] should_fail_ex+0x512/0x640 [ 267.862981][ T8002] get_futex_key+0x1d0/0x1560 [ 267.863026][ T8002] ? __pfx_get_futex_key+0x10/0x10 [ 267.863065][ T8002] ? __mutex_trylock_common+0xe9/0x250 [ 267.863121][ T8002] futex_wake+0xea/0x530 [ 267.863184][ T8002] ? __pfx_futex_wake+0x10/0x10 [ 267.863253][ T8002] do_futex+0x1e3/0x350 [ 267.863296][ T8002] ? __pfx_do_futex+0x10/0x10 [ 267.863334][ T8002] ? __might_fault+0xe3/0x190 [ 267.863383][ T8002] mm_release+0x24e/0x300 [ 267.863421][ T8002] do_exit+0x68e/0x2bf0 [ 267.863476][ T8002] ? __pfx_do_exit+0x10/0x10 [ 267.863521][ T8002] ? do_raw_spin_lock+0x12c/0x2b0 [ 267.863571][ T8002] ? find_held_lock+0x2b/0x80 [ 267.863611][ T8002] do_group_exit+0xd3/0x2a0 [ 267.863661][ T8002] get_signal+0x2673/0x26d0 [ 267.863704][ T8002] ? __fget_files+0x204/0x3c0 [ 267.863746][ T8002] ? __pfx_get_signal+0x10/0x10 [ 267.863783][ T8002] ? do_futex+0x122/0x350 [ 267.863824][ T8002] ? __pfx_do_futex+0x10/0x10 [ 267.863868][ T8002] arch_do_signal_or_restart+0x8f/0x790 [ 267.863912][ T8002] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 267.863979][ T8002] exit_to_user_mode_loop+0x84/0x110 [ 267.864028][ T8002] do_syscall_64+0x3f6/0x490 [ 267.864074][ T8002] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 267.864106][ T8002] RIP: 0033:0x7f8c8b18ebe9 [ 267.864131][ T8002] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 267.864169][ T8002] RSP: 002b:00007f8c8c0560e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 267.864201][ T8002] RAX: fffffffffffffe00 RBX: 00007f8c8b3b5fa8 RCX: 00007f8c8b18ebe9 [ 267.864222][ T8002] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f8c8b3b5fa8 [ 267.864242][ T8002] RBP: 00007f8c8b3b5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 267.864262][ T8002] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 267.864281][ T8002] R13: 00007f8c8b3b6038 R14: 00007ffe9c163bf0 R15: 00007ffe9c163cd8 [ 267.864323][ T8002] [ 270.903477][ T8030] FAULT_INJECTION: forcing a failure. [ 270.903477][ T8030] name failslab, interval 1, probability 0, space 0, times 0 [ 270.995460][ T8030] CPU: 1 UID: 0 PID: 8030 Comm: syz.2.535 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) [ 270.995524][ T8030] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 270.995545][ T8030] Call Trace: [ 270.995556][ T8030] [ 270.995569][ T8030] dump_stack_lvl+0x16c/0x1f0 [ 270.995618][ T8030] should_fail_ex+0x512/0x640 [ 270.995665][ T8030] ? fs_reclaim_acquire+0xae/0x150 [ 270.995720][ T8030] ? tomoyo_encode2+0x100/0x3e0 [ 270.995764][ T8030] should_failslab+0xc2/0x120 [ 270.995808][ T8030] __kmalloc_noprof+0xd2/0x510 [ 270.995880][ T8030] ? d_absolute_path+0x136/0x1a0 [ 270.995938][ T8030] tomoyo_encode2+0x100/0x3e0 [ 270.995993][ T8030] tomoyo_encode+0x29/0x50 [ 270.996040][ T8030] tomoyo_realpath_from_path+0x18f/0x6e0 [ 270.996112][ T8030] tomoyo_mkdev_perm+0x22b/0x570 [ 270.996153][ T8030] ? tomoyo_mkdev_perm+0x217/0x570 [ 270.996198][ T8030] ? __pfx_tomoyo_mkdev_perm+0x10/0x10 [ 270.996242][ T8030] ? __lock_acquire+0xb97/0x1ce0 [ 270.996298][ T8030] ? do_raw_spin_lock+0x12c/0x2b0 [ 270.996375][ T8030] ? __pfx_current_check_access_path+0x10/0x10 [ 270.996425][ T8030] ? simple_lookup+0x105/0x1d0 [ 270.996469][ T8030] tomoyo_path_mknod+0x12a/0x190 [ 270.996501][ T8030] ? __pfx_tomoyo_path_mknod+0x10/0x10 [ 270.996537][ T8030] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 270.996594][ T8030] security_path_mknod+0x161/0x310 [ 270.996640][ T8030] do_mknodat+0x239/0x5d0 [ 270.996685][ T8030] ? __pfx_do_mknodat+0x10/0x10 [ 270.996723][ T8030] ? getname_flags.part.0+0x1c5/0x550 [ 270.996784][ T8030] __x64_sys_mknod+0x87/0xb0 [ 270.996826][ T8030] do_syscall_64+0xcd/0x490 [ 270.996874][ T8030] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 270.996909][ T8030] RIP: 0033:0x7fa1d958ebe9 [ 270.996936][ T8030] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 270.996971][ T8030] RSP: 002b:00007fa1da4ca038 EFLAGS: 00000246 ORIG_RAX: 0000000000000085 [ 270.997003][ T8030] RAX: ffffffffffffffda RBX: 00007fa1d97b5fa0 RCX: 00007fa1d958ebe9 [ 270.997026][ T8030] RDX: 0000000000000103 RSI: 00000000000020e9 RDI: 00002000000003c0 [ 270.997047][ T8030] RBP: 00007fa1d9611e19 R08: 0000000000000000 R09: 0000000000000000 [ 270.997067][ T8030] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 270.997107][ T8030] R13: 00007fa1d97b6038 R14: 00007fa1d97b5fa0 R15: 00007ffe61602ee8 [ 270.997151][ T8030] [ 270.997184][ T8030] ERROR: Out of memory at tomoyo_realpath_from_path. [ 271.037187][ T8021] kexec: Could not allocate control_code_buffer [ 271.692638][ T8038] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 271.777185][ T8038] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 271.792959][ T8038] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 271.839661][ T8038] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 273.687722][ T5864] Bluetooth: hci0: command 0x0c1a tx timeout [ 273.763595][ T5864] Bluetooth: hci1: command 0x0c1a tx timeout [ 273.842830][ T5864] Bluetooth: hci3: command 0x0c1a tx timeout [ 273.850172][ T5864] Bluetooth: hci2: command 0x0c1a tx timeout [ 275.236451][ T8082] FAULT_INJECTION: forcing a failure. [ 275.236451][ T8082] name failslab, interval 1, probability 0, space 0, times 0 [ 275.250066][ T8082] CPU: 1 UID: 0 PID: 8082 Comm: syz.2.546 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) [ 275.250115][ T8082] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 275.250136][ T8082] Call Trace: [ 275.250147][ T8082] [ 275.250159][ T8082] dump_stack_lvl+0x16c/0x1f0 [ 275.250204][ T8082] should_fail_ex+0x512/0x640 [ 275.250256][ T8082] should_failslab+0xc2/0x120 [ 275.250301][ T8082] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 275.250344][ T8082] ? __es_insert_extent+0x743/0x1440 [ 275.250409][ T8082] __es_insert_extent+0x743/0x1440 [ 275.250481][ T8082] ext4_es_insert_extent+0x502/0x11b0 [ 275.250528][ T8082] ? __pfx_ext4_es_insert_extent+0x10/0x10 [ 275.250577][ T8082] ? __pfx_ext4_ext_remove_space+0x10/0x10 [ 275.250629][ T8082] ? ext4_es_remove_extent+0x103/0x4e0 [ 275.250665][ T8082] ? __pfx_ext4_es_remove_extent+0x10/0x10 [ 275.250703][ T8082] ? __ext4_journal_start_sb+0x10c/0x690 [ 275.250764][ T8082] ext4_punch_hole+0x94c/0x1080 [ 275.250824][ T8082] ext4_fallocate+0x22d7/0x37a0 [ 275.250891][ T8082] ? __pfx_ext4_fallocate+0x10/0x10 [ 275.250942][ T8082] vfs_fallocate+0x5b4/0x10e0 [ 275.250988][ T8082] ? __pfx_vfs_fallocate+0x10/0x10 [ 275.251029][ T8082] ? madvise_vma_behavior+0x2b20/0x2d60 [ 275.251090][ T8082] madvise_vma_behavior+0x2ad7/0x2d60 [ 275.251145][ T8082] ? mas_prev_setup.constprop.0+0xb6/0x9d0 [ 275.251189][ T8082] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 275.251243][ T8082] ? __pfx_mas_prev+0x10/0x10 [ 275.251295][ T8082] ? find_vma_prev+0xda/0x160 [ 275.251341][ T8082] ? trace_pid_list_is_set+0x100/0x150 [ 275.251382][ T8082] ? __pfx_find_vma_prev+0x10/0x10 [ 275.251431][ T8082] ? trace_ignore_this_task+0xc3/0x100 [ 275.251498][ T8082] ? __lock_acquire+0x62e/0x1ce0 [ 275.251553][ T8082] madvise_walk_vmas+0x31f/0x9c0 [ 275.251611][ T8082] ? __pfx_madvise_walk_vmas+0x10/0x10 [ 275.251674][ T8082] madvise_do_behavior+0x1e2/0x530 [ 275.251721][ T8082] ? futex_private_hash_put+0x18a/0x300 [ 275.251772][ T8082] ? __pfx_madvise_do_behavior+0x10/0x10 [ 275.251824][ T8082] ? down_read+0x13d/0x480 [ 275.251878][ T8082] ? __pfx_vfs_writev+0x10/0x10 [ 275.251927][ T8082] do_madvise+0x176/0x240 [ 275.251975][ T8082] ? __pfx_do_madvise+0x10/0x10 [ 275.252022][ T8082] ? do_futex+0x122/0x350 [ 275.252097][ T8082] ? xfd_validate_state+0x61/0x180 [ 275.252157][ T8082] __x64_sys_madvise+0xa9/0x110 [ 275.252207][ T8082] ? lockdep_hardirqs_on+0x7c/0x110 [ 275.252247][ T8082] do_syscall_64+0xcd/0x490 [ 275.252294][ T8082] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 275.252328][ T8082] RIP: 0033:0x7fa1d958ebe9 [ 275.252354][ T8082] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 275.252387][ T8082] RSP: 002b:00007fa1da4ca038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 275.252419][ T8082] RAX: ffffffffffffffda RBX: 00007fa1d97b5fa0 RCX: 00007fa1d958ebe9 [ 275.252439][ T8082] RDX: 0000000000000009 RSI: 00000000000031ca RDI: 000000110c230000 [ 275.252459][ T8082] RBP: 00007fa1d9611e19 R08: 0000000000000000 R09: 0000000000000000 [ 275.252479][ T8082] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 275.252498][ T8082] R13: 00007fa1d97b6038 R14: 00007fa1d97b5fa0 R15: 00007ffe61602ee8 [ 275.252548][ T8082] [ 276.666279][ T8097] FAULT_INJECTION: forcing a failure. [ 276.666279][ T8097] name failslab, interval 1, probability 0, space 0, times 0 [ 277.165847][ T8097] CPU: 0 UID: 0 PID: 8097 Comm: syz.3.548 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) [ 277.165895][ T8097] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 277.165914][ T8097] Call Trace: [ 277.165926][ T8097] [ 277.165939][ T8097] dump_stack_lvl+0x16c/0x1f0 [ 277.165991][ T8097] should_fail_ex+0x512/0x640 [ 277.166038][ T8097] ? fs_reclaim_acquire+0xae/0x150 [ 277.166093][ T8097] ? tomoyo_encode2+0x100/0x3e0 [ 277.166138][ T8097] should_failslab+0xc2/0x120 [ 277.166184][ T8097] __kmalloc_noprof+0xd2/0x510 [ 277.166222][ T8097] ? d_absolute_path+0x136/0x1a0 [ 277.166277][ T8097] tomoyo_encode2+0x100/0x3e0 [ 277.166331][ T8097] tomoyo_encode+0x29/0x50 [ 277.166385][ T8097] tomoyo_realpath_from_path+0x18f/0x6e0 [ 277.166447][ T8097] tomoyo_mkdev_perm+0x22b/0x570 [ 277.166484][ T8097] ? tomoyo_mkdev_perm+0x217/0x570 [ 277.166527][ T8097] ? __pfx_tomoyo_mkdev_perm+0x10/0x10 [ 277.166569][ T8097] ? __lock_acquire+0xb97/0x1ce0 [ 277.166625][ T8097] ? do_raw_spin_lock+0x12c/0x2b0 [ 277.166699][ T8097] ? __pfx_current_check_access_path+0x10/0x10 [ 277.166752][ T8097] ? simple_lookup+0x105/0x1d0 [ 277.166795][ T8097] tomoyo_path_mknod+0x12a/0x190 [ 277.166827][ T8097] ? __pfx_tomoyo_path_mknod+0x10/0x10 [ 277.166862][ T8097] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 277.166919][ T8097] security_path_mknod+0x161/0x310 [ 277.166964][ T8097] do_mknodat+0x239/0x5d0 [ 277.167007][ T8097] ? __pfx_do_mknodat+0x10/0x10 [ 277.167044][ T8097] ? getname_flags.part.0+0x1c5/0x550 [ 277.167107][ T8097] __x64_sys_mknod+0x87/0xb0 [ 277.167148][ T8097] do_syscall_64+0xcd/0x490 [ 277.167196][ T8097] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 277.167229][ T8097] RIP: 0033:0x7f8c8b18ebe9 [ 277.167256][ T8097] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 277.167290][ T8097] RSP: 002b:00007f8c8c056038 EFLAGS: 00000246 ORIG_RAX: 0000000000000085 [ 277.167323][ T8097] RAX: ffffffffffffffda RBX: 00007f8c8b3b5fa0 RCX: 00007f8c8b18ebe9 [ 277.167345][ T8097] RDX: 0000000000000103 RSI: 00000000000020e9 RDI: 00002000000003c0 [ 277.167372][ T8097] RBP: 00007f8c8b211e19 R08: 0000000000000000 R09: 0000000000000000 [ 277.167393][ T8097] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 277.167413][ T8097] R13: 00007f8c8b3b6038 R14: 00007f8c8b3b5fa0 R15: 00007ffe9c163cd8 [ 277.167457][ T8097] [ 277.668288][ T8097] ERROR: Out of memory at tomoyo_realpath_from_path. [ 278.350237][ T8104] netlink: 4 bytes leftover after parsing attributes in process `syz.0.550'. [ 278.417206][ T8104] netlink: 354 bytes leftover after parsing attributes in process `syz.0.550'. [ 278.753244][ T8112] netlink: 25 bytes leftover after parsing attributes in process `syz.0.553'. [ 278.813952][ T8112] ima: policy update failed [ 278.840177][ T30] audit: type=1802 audit(1755174759.963:10): pid=8112 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.553" res=0 errno=0 [ 281.173307][ T8135] __vm_enough_memory: pid: 8135, comm: syz.0.560, bytes: 4398046511104 not enough memory for the allocation [ 283.247266][ T8157] zswap: compressor 000 not available [ 284.118017][ T8167] netlink: 28 bytes leftover after parsing attributes in process `syz.3.568'. [ 284.342860][ T8171] netlink: 186 bytes leftover after parsing attributes in process `syz.2.569'. [ 285.187409][ T8178] __vm_enough_memory: pid: 8178, comm: syz.1.572, bytes: 4398046511104 not enough memory for the allocation [ 285.840440][ T5864] Bluetooth: hci0: ISO packet for unknown connection handle 0 [ 288.067209][ T8221] FAULT_INJECTION: forcing a failure. [ 288.067209][ T8221] name failslab, interval 1, probability 0, space 0, times 0 [ 288.082746][ T8221] CPU: 1 UID: 0 PID: 8221 Comm: syz.0.579 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) [ 288.082796][ T8221] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 288.082818][ T8221] Call Trace: [ 288.082828][ T8221] [ 288.082842][ T8221] dump_stack_lvl+0x16c/0x1f0 [ 288.082890][ T8221] should_fail_ex+0x512/0x640 [ 288.082936][ T8221] ? fs_reclaim_acquire+0xae/0x150 [ 288.082992][ T8221] should_failslab+0xc2/0x120 [ 288.083035][ T8221] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 288.083082][ T8221] ? ima_alloc_tfm+0x21a/0x2e0 [ 288.083114][ T8221] ? ima_collect_measurement+0x4b5/0xa40 [ 288.083162][ T8221] krealloc_noprof+0x1ff/0x3a0 [ 288.083207][ T8221] ima_collect_measurement+0x4b5/0xa40 [ 288.083262][ T8221] ? __pfx_ima_collect_measurement+0x10/0x10 [ 288.083333][ T8221] ? __pfx_ext4_xattr_get+0x10/0x10 [ 288.083370][ T8221] ? xattr_resolve_name+0x27b/0x3f0 [ 288.083411][ T8221] ? vfs_getxattr_alloc+0xec/0x340 [ 288.083458][ T8221] ? ima_get_hash_algo+0x27c/0x400 [ 288.083486][ T8221] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 288.083527][ T8221] ? process_measurement+0x11fa/0x23e0 [ 288.083560][ T8221] process_measurement+0x11fa/0x23e0 [ 288.083605][ T8221] ? __pfx_process_measurement+0x10/0x10 [ 288.083642][ T8221] ? find_held_lock+0x2b/0x80 [ 288.083670][ T8221] ? fscrypt_file_open+0x47c/0x590 [ 288.083748][ T8221] ? __pfx___fsnotify_parent+0x10/0x10 [ 288.083776][ T8221] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 288.083817][ T8221] ima_file_check+0xc5/0x110 [ 288.083857][ T8221] ? __pfx_ima_file_check+0x10/0x10 [ 288.083887][ T8221] ? vfs_open+0x2e3/0x3f0 [ 288.083929][ T8221] security_file_post_open+0x8e/0x210 [ 288.083965][ T8221] path_openat+0x1404/0x2cb0 [ 288.084004][ T8221] ? trace_kmem_cache_alloc+0x28/0xc0 [ 288.084043][ T8221] ? kmem_cache_alloc_noprof+0x21e/0x3b0 [ 288.084076][ T8221] ? __pfx_path_openat+0x10/0x10 [ 288.084108][ T8221] ? __asan_memcpy+0x3c/0x60 [ 288.084140][ T8221] do_file_open_root+0x322/0x610 [ 288.084175][ T8221] ? __pfx_do_file_open_root+0x10/0x10 [ 288.084239][ T8221] ? vsnprintf+0x318/0x1160 [ 288.084273][ T8221] file_open_root+0x2a7/0x450 [ 288.084308][ T8221] ? __pfx_file_open_root+0x10/0x10 [ 288.084339][ T8221] ? find_held_lock+0x2b/0x80 [ 288.084366][ T8221] ? kernel_read_file_from_path_initns+0x17a/0x260 [ 288.084415][ T8221] kernel_read_file_from_path_initns+0x189/0x260 [ 288.084461][ T8221] ? __pfx_kernel_read_file_from_path_initns+0x10/0x10 [ 288.084513][ T8221] _request_firmware+0x744/0x1470 [ 288.084559][ T8221] ? __pfx__request_firmware+0x10/0x10 [ 288.084604][ T8221] request_firmware+0x35/0x50 [ 288.084636][ T8221] valid_regdb+0x184/0x590 [ 288.084668][ T8221] ? __pfx___mutex_lock+0x10/0x10 [ 288.084712][ T8221] ? __pfx_valid_regdb+0x10/0x10 [ 288.084753][ T8221] reg_reload_regdb+0x11a/0x460 [ 288.084790][ T8221] ? __pfx_reg_reload_regdb+0x10/0x10 [ 288.084830][ T8221] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 288.084856][ T8221] ? nl80211_pre_doit+0x1b0/0xb10 [ 288.084887][ T8221] genl_family_rcv_msg_doit+0x209/0x2f0 [ 288.084931][ T8221] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 288.084971][ T8221] ? rcu_is_watching+0x12/0xc0 [ 288.085008][ T8221] ? bpf_lsm_capable+0x9/0x10 [ 288.085032][ T8221] ? security_capable+0x7e/0x260 [ 288.085064][ T8221] genl_rcv_msg+0x55c/0x800 [ 288.085108][ T8221] ? __pfx_genl_rcv_msg+0x10/0x10 [ 288.085148][ T8221] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 288.085172][ T8221] ? __pfx_nl80211_reload_regdb+0x10/0x10 [ 288.085206][ T8221] ? __pfx_nl80211_post_doit+0x10/0x10 [ 288.085254][ T8221] netlink_rcv_skb+0x158/0x420 [ 288.085289][ T8221] ? __pfx_genl_rcv_msg+0x10/0x10 [ 288.085331][ T8221] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 288.085381][ T8221] ? netlink_deliver_tap+0x1ae/0xd30 [ 288.085419][ T8221] genl_rcv+0x28/0x40 [ 288.085455][ T8221] netlink_unicast+0x5a7/0x870 [ 288.085495][ T8221] ? __pfx_netlink_unicast+0x10/0x10 [ 288.085531][ T8221] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 288.085564][ T8221] ? __lock_acquire+0xb97/0x1ce0 [ 288.085607][ T8221] netlink_sendmsg+0x8d1/0xdd0 [ 288.085648][ T8221] ? __pfx_netlink_sendmsg+0x10/0x10 [ 288.085694][ T8221] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 288.085727][ T8221] ____sys_sendmsg+0xa95/0xc70 [ 288.085771][ T8221] ? copy_msghdr_from_user+0x10a/0x160 [ 288.085805][ T8221] ? __pfx_____sys_sendmsg+0x10/0x10 [ 288.085855][ T8221] ? __pfx_futex_wake_mark+0x10/0x10 [ 288.085901][ T8221] ___sys_sendmsg+0x134/0x1d0 [ 288.085937][ T8221] ? __pfx____sys_sendmsg+0x10/0x10 [ 288.086011][ T8221] __sys_sendmsg+0x16d/0x220 [ 288.086047][ T8221] ? __pfx___sys_sendmsg+0x10/0x10 [ 288.086080][ T8221] ? __x64_sys_futex+0x1e0/0x4c0 [ 288.086134][ T8221] do_syscall_64+0xcd/0x490 [ 288.086170][ T8221] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 288.086197][ T8221] RIP: 0033:0x7f8512d8ebe9 [ 288.086218][ T8221] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 288.086245][ T8221] RSP: 002b:00007f8513cb3038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 288.086271][ T8221] RAX: ffffffffffffffda RBX: 00007f8512fb5fa0 RCX: 00007f8512d8ebe9 [ 288.086289][ T8221] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 0000000000000008 [ 288.086306][ T8221] RBP: 00007f8512e11e19 R08: 0000000000000000 R09: 0000000000000000 [ 288.086322][ T8221] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 288.086339][ T8221] R13: 00007f8512fb6038 R14: 00007f8512fb5fa0 R15: 00007ffed19ec928 [ 288.086373][ T8221] [ 288.772753][ T30] audit: type=1800 audit(1755174769.783:11): pid=8221 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.579" name="regulatory.db.p7s" dev="sda1" ino=449 res=0 errno=0 [ 289.402170][ T8221] syz.0.579 (8221) used greatest stack depth: 17768 bytes left [ 289.465853][ T8225] syz.2.582 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 289.601519][ T8225] FAULT_INJECTION: forcing a failure. [ 289.601519][ T8225] name failslab, interval 1, probability 0, space 0, times 0 [ 289.652705][ T8225] CPU: 1 UID: 0 PID: 8225 Comm: syz.2.582 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) [ 289.652754][ T8225] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 289.652774][ T8225] Call Trace: [ 289.652785][ T8225] [ 289.652797][ T8225] dump_stack_lvl+0x16c/0x1f0 [ 289.652847][ T8225] should_fail_ex+0x512/0x640 [ 289.652895][ T8225] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 289.652947][ T8225] should_failslab+0xc2/0x120 [ 289.652991][ T8225] __kmalloc_cache_noprof+0x6a/0x3e0 [ 289.653026][ T8225] ? kernfs_fop_open+0x244/0xda0 [ 289.653063][ T8225] kernfs_fop_open+0x244/0xda0 [ 289.653104][ T8225] do_dentry_open+0x97f/0x1530 [ 289.653146][ T8225] ? __pfx_kernfs_fop_open+0x10/0x10 [ 289.653186][ T8225] vfs_open+0x82/0x3f0 [ 289.653239][ T8225] path_openat+0x1de4/0x2cb0 [ 289.653292][ T8225] ? __pfx_path_openat+0x10/0x10 [ 289.653350][ T8225] do_filp_open+0x20b/0x470 [ 289.653389][ T8225] ? __pfx_do_filp_open+0x10/0x10 [ 289.653461][ T8225] ? alloc_fd+0x471/0x7d0 [ 289.653507][ T8225] do_sys_openat2+0x11b/0x1d0 [ 289.653557][ T8225] ? __pfx_do_sys_openat2+0x10/0x10 [ 289.653619][ T8225] __x64_sys_openat+0x174/0x210 [ 289.653667][ T8225] ? __pfx___x64_sys_openat+0x10/0x10 [ 289.653734][ T8225] do_syscall_64+0xcd/0x490 [ 289.653777][ T8225] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 289.653810][ T8225] RIP: 0033:0x7fa1d958ebe9 [ 289.653834][ T8225] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 289.653866][ T8225] RSP: 002b:00007fa1da4ca038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 289.653897][ T8225] RAX: ffffffffffffffda RBX: 00007fa1d97b5fa0 RCX: 00007fa1d958ebe9 [ 289.653917][ T8225] RDX: 0000000000000000 RSI: 0000200000000280 RDI: ffffffffffffff9c [ 289.653938][ T8225] RBP: 00007fa1d9611e19 R08: 0000000000000000 R09: 0000000000000000 [ 289.653958][ T8225] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 289.653977][ T8225] R13: 00007fa1d97b6038 R14: 00007fa1d97b5fa0 R15: 00007ffe61602ee8 [ 289.654020][ T8225] [ 291.472662][ T8229] kexec: Could not allocate control_code_buffer [ 291.922038][ T5864] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18 [ 292.431757][ T8260] FAULT_INJECTION: forcing a failure. [ 292.431757][ T8260] name failslab, interval 1, probability 0, space 0, times 0 [ 292.474308][ T8260] CPU: 0 UID: 0 PID: 8260 Comm: syz.0.589 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) [ 292.474357][ T8260] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 292.474378][ T8260] Call Trace: [ 292.474388][ T8260] [ 292.474401][ T8260] dump_stack_lvl+0x16c/0x1f0 [ 292.474448][ T8260] should_fail_ex+0x512/0x640 [ 292.474496][ T8260] ? fs_reclaim_acquire+0xae/0x150 [ 292.474552][ T8260] ? tomoyo_encode2+0x100/0x3e0 [ 292.474597][ T8260] should_failslab+0xc2/0x120 [ 292.474643][ T8260] __kmalloc_noprof+0xd2/0x510 [ 292.474682][ T8260] ? d_absolute_path+0x136/0x1a0 [ 292.474736][ T8260] tomoyo_encode2+0x100/0x3e0 [ 292.474790][ T8260] tomoyo_encode+0x29/0x50 [ 292.474834][ T8260] tomoyo_realpath_from_path+0x18f/0x6e0 [ 292.474903][ T8260] tomoyo_check_open_permission+0x2ab/0x3c0 [ 292.474948][ T8260] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 292.475039][ T8260] ? do_raw_spin_lock+0x12c/0x2b0 [ 292.475113][ T8260] tomoyo_file_open+0x6b/0x90 [ 292.475148][ T8260] security_file_open+0x84/0x1e0 [ 292.475196][ T8260] do_dentry_open+0x596/0x1530 [ 292.475251][ T8260] vfs_open+0x82/0x3f0 [ 292.475318][ T8260] path_openat+0x1de4/0x2cb0 [ 292.475370][ T8260] ? __pfx_path_openat+0x10/0x10 [ 292.475418][ T8260] do_filp_open+0x20b/0x470 [ 292.475457][ T8260] ? __pfx_do_filp_open+0x10/0x10 [ 292.475525][ T8260] ? alloc_fd+0x471/0x7d0 [ 292.475565][ T8260] do_sys_openat2+0x11b/0x1d0 [ 292.475606][ T8260] ? __pfx_do_sys_openat2+0x10/0x10 [ 292.475660][ T8260] __x64_sys_openat+0x174/0x210 [ 292.475702][ T8260] ? __pfx___x64_sys_openat+0x10/0x10 [ 292.475758][ T8260] do_syscall_64+0xcd/0x490 [ 292.475795][ T8260] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 292.475821][ T8260] RIP: 0033:0x7f8512d8ebe9 [ 292.475842][ T8260] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 292.475868][ T8260] RSP: 002b:00007f8513c92038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 292.475894][ T8260] RAX: ffffffffffffffda RBX: 00007f8512fb6090 RCX: 00007f8512d8ebe9 [ 292.475911][ T8260] RDX: 0000000000000000 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 292.475928][ T8260] RBP: 00007f8512e11e19 R08: 0000000000000000 R09: 0000000000000000 [ 292.475944][ T8260] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 292.475960][ T8260] R13: 00007f8512fb6128 R14: 00007f8512fb6090 R15: 00007ffed19ec928 [ 292.475994][ T8260] [ 292.476026][ T8260] ERROR: Out of memory at tomoyo_realpath_from_path. [ 294.397604][ T8276] FAULT_INJECTION: forcing a failure. [ 294.397604][ T8276] name failslab, interval 1, probability 0, space 0, times 0 [ 294.434328][ T8276] CPU: 1 UID: 0 PID: 8276 Comm: syz.1.595 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) [ 294.434363][ T8276] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 294.434377][ T8276] Call Trace: [ 294.434385][ T8276] [ 294.434394][ T8276] dump_stack_lvl+0x16c/0x1f0 [ 294.434428][ T8276] should_fail_ex+0x512/0x640 [ 294.434462][ T8276] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 294.434496][ T8276] should_failslab+0xc2/0x120 [ 294.434528][ T8276] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 294.434558][ T8276] ? __alloc_skb+0x2b2/0x380 [ 294.434591][ T8276] __alloc_skb+0x2b2/0x380 [ 294.434619][ T8276] ? __pfx___alloc_skb+0x10/0x10 [ 294.434647][ T8276] ? __nla_validate_parse+0x600/0x2880 [ 294.434679][ T8276] ovs_dp_cmd_new+0x167/0xe60 [ 294.434714][ T8276] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 294.434747][ T8276] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 294.434787][ T8276] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 294.434832][ T8276] genl_family_rcv_msg_doit+0x209/0x2f0 [ 294.434871][ T8276] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 294.434918][ T8276] ? bpf_lsm_capable+0x9/0x10 [ 294.434939][ T8276] ? security_capable+0x7e/0x260 [ 294.434963][ T8276] ? ns_capable+0xd7/0x110 [ 294.434997][ T8276] genl_rcv_msg+0x55c/0x800 [ 294.435037][ T8276] ? __pfx_genl_rcv_msg+0x10/0x10 [ 294.435075][ T8276] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 294.435113][ T8276] netlink_rcv_skb+0x158/0x420 [ 294.435145][ T8276] ? __pfx_genl_rcv_msg+0x10/0x10 [ 294.435203][ T8276] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 294.435245][ T8276] ? netlink_deliver_tap+0x1ae/0xd30 [ 294.435279][ T8276] genl_rcv+0x28/0x40 [ 294.435310][ T8276] netlink_unicast+0x5a7/0x870 [ 294.435345][ T8276] ? __pfx_netlink_unicast+0x10/0x10 [ 294.435377][ T8276] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 294.435406][ T8276] ? __lock_acquire+0xb97/0x1ce0 [ 294.435445][ T8276] netlink_sendmsg+0x8d1/0xdd0 [ 294.435480][ T8276] ? __pfx_netlink_sendmsg+0x10/0x10 [ 294.435515][ T8276] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 294.435544][ T8276] ____sys_sendmsg+0xa95/0xc70 [ 294.435582][ T8276] ? copy_msghdr_from_user+0x10a/0x160 [ 294.435612][ T8276] ? __pfx_____sys_sendmsg+0x10/0x10 [ 294.435655][ T8276] ? __pfx_futex_wake_mark+0x10/0x10 [ 294.435695][ T8276] ___sys_sendmsg+0x134/0x1d0 [ 294.435726][ T8276] ? __pfx____sys_sendmsg+0x10/0x10 [ 294.435790][ T8276] __sys_sendmsg+0x16d/0x220 [ 294.435821][ T8276] ? __pfx___sys_sendmsg+0x10/0x10 [ 294.435850][ T8276] ? __x64_sys_futex+0x1e0/0x4c0 [ 294.435897][ T8276] do_syscall_64+0xcd/0x490 [ 294.435929][ T8276] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 294.435952][ T8276] RIP: 0033:0x7f07f7f8ebe9 [ 294.435970][ T8276] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 294.435992][ T8276] RSP: 002b:00007f07f8d5f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 294.436015][ T8276] RAX: ffffffffffffffda RBX: 00007f07f81b5fa0 RCX: 00007f07f7f8ebe9 [ 294.436030][ T8276] RDX: 0000000000000080 RSI: 0000200000000140 RDI: 0000000000000006 [ 294.436044][ T8276] RBP: 00007f07f8011e19 R08: 0000000000000000 R09: 0000000000000000 [ 294.436057][ T8276] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 294.436071][ T8276] R13: 00007f07f81b6038 R14: 00007f07f81b5fa0 R15: 00007fffc5a14aa8 [ 294.436099][ T8276] [ 298.963970][ T8310] size and base must be multiples of 4 kiB [ 298.977999][ T8310] CPU: 1 UID: 0 PID: 8310 Comm: syz.1.610 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) [ 298.978048][ T8310] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 298.978068][ T8310] Call Trace: [ 298.978079][ T8310] [ 298.978093][ T8310] dump_stack_lvl+0x16c/0x1f0 [ 298.978141][ T8310] mtrr_add+0xdf/0x110 [ 298.978189][ T8310] mtrr_ioctl+0x7ef/0xcf0 [ 298.978239][ T8310] ? __pfx_mtrr_ioctl+0x10/0x10 [ 298.978295][ T8310] ? find_held_lock+0x2b/0x80 [ 298.978341][ T8310] ? __fget_files+0x20e/0x3c0 [ 298.978381][ T8310] ? __pfx_mtrr_ioctl+0x10/0x10 [ 298.978430][ T8310] proc_reg_unlocked_ioctl+0x229/0x320 [ 298.978475][ T8310] ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10 [ 298.978528][ T8310] __x64_sys_ioctl+0x18e/0x210 [ 298.978586][ T8310] do_syscall_64+0xcd/0x490 [ 298.978634][ T8310] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 298.978668][ T8310] RIP: 0033:0x7f07f7f8ebe9 [ 298.978693][ T8310] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 298.978729][ T8310] RSP: 002b:00007f07f8d5f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 298.978761][ T8310] RAX: ffffffffffffffda RBX: 00007f07f81b5fa0 RCX: 00007f07f7f8ebe9 [ 298.978784][ T8310] RDX: 0000000000000005 RSI: 00000000400c4d01 RDI: 0000000000000005 [ 298.978814][ T8310] RBP: 00007f07f8011e19 R08: 0000000000000000 R09: 0000000000000000 [ 298.978835][ T8310] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 298.978855][ T8310] R13: 00007f07f81b6038 R14: 00007f07f81b5fa0 R15: 00007fffc5a14aa8 [ 298.978899][ T8310] [ 300.880402][ T8358] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input6 [ 303.887515][ T8396] netlink: 28 bytes leftover after parsing attributes in process `syz.0.620'. [ 304.447965][ T8381] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 305.721703][ T8419] zswap: compressor not available [ 307.791400][ T30] audit: type=1800 audit(1755174788.933:12): pid=8461 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.638" name="members" dev="configfs" ino=19126 res=0 errno=0 [ 308.707568][ T8475] FAULT_INJECTION: forcing a failure. [ 308.707568][ T8475] name failslab, interval 1, probability 0, space 0, times 0 [ 308.916001][ T8475] CPU: 0 UID: 0 PID: 8475 Comm: syz.2.633 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) [ 308.916053][ T8475] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 308.916075][ T8475] Call Trace: [ 308.916086][ T8475] [ 308.916099][ T8475] dump_stack_lvl+0x16c/0x1f0 [ 308.916148][ T8475] should_fail_ex+0x512/0x640 [ 308.916195][ T8475] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 308.916235][ T8475] should_failslab+0xc2/0x120 [ 308.916282][ T8475] __kmalloc_cache_noprof+0x6a/0x3e0 [ 308.916317][ T8475] ? kasan_save_stack+0x42/0x60 [ 308.916354][ T8475] ? kasan_save_stack+0x33/0x60 [ 308.916392][ T8475] ? snd_seq_queue_alloc+0x56/0x5a0 [ 308.916434][ T8475] snd_seq_queue_alloc+0x56/0x5a0 [ 308.916481][ T8475] snd_seq_ioctl_create_queue+0xa9/0x380 [ 308.916531][ T8475] snd_seq_kernel_client_ctl+0x107/0x1c0 [ 308.916589][ T8475] alloc_seq_queue+0xda/0x180 [ 308.916642][ T8475] ? __pfx_alloc_seq_queue+0x10/0x10 [ 308.916717][ T8475] ? mark_held_locks+0x49/0x80 [ 308.916770][ T8475] ? _raw_spin_unlock_irq+0x23/0x50 [ 308.916812][ T8475] snd_seq_oss_open+0x38c/0xa20 [ 308.916873][ T8475] odev_open+0x6f/0x90 [ 308.916918][ T8475] ? __pfx_odev_open+0x10/0x10 [ 308.916963][ T8475] soundcore_open+0x409/0x580 [ 308.917015][ T8475] ? __pfx_soundcore_open+0x10/0x10 [ 308.917061][ T8475] chrdev_open+0x231/0x6a0 [ 308.917103][ T8475] ? __pfx_apparmor_file_open+0x10/0x10 [ 308.917142][ T8475] ? __pfx_chrdev_open+0x10/0x10 [ 308.917188][ T8475] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 308.917235][ T8475] do_dentry_open+0x97f/0x1530 [ 308.917289][ T8475] ? __pfx_chrdev_open+0x10/0x10 [ 308.917341][ T8475] vfs_open+0x82/0x3f0 [ 308.917395][ T8475] path_openat+0x1de4/0x2cb0 [ 308.917450][ T8475] ? __pfx_path_openat+0x10/0x10 [ 308.917502][ T8475] do_filp_open+0x20b/0x470 [ 308.917541][ T8475] ? __pfx_do_filp_open+0x10/0x10 [ 308.917612][ T8475] ? alloc_fd+0x471/0x7d0 [ 308.917659][ T8475] do_sys_openat2+0x11b/0x1d0 [ 308.917709][ T8475] ? __pfx_do_sys_openat2+0x10/0x10 [ 308.917785][ T8475] __x64_sys_openat+0x174/0x210 [ 308.917838][ T8475] ? __pfx___x64_sys_openat+0x10/0x10 [ 308.917907][ T8475] do_syscall_64+0xcd/0x490 [ 308.917955][ T8475] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 308.917989][ T8475] RIP: 0033:0x7fa1d958ebe9 [ 308.918013][ T8475] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 308.918046][ T8475] RSP: 002b:00007fa1da4ca038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 308.918079][ T8475] RAX: ffffffffffffffda RBX: 00007fa1d97b5fa0 RCX: 00007fa1d958ebe9 [ 308.918100][ T8475] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 308.918122][ T8475] RBP: 00007fa1d9611e19 R08: 0000000000000000 R09: 0000000000000000 [ 308.918143][ T8475] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 308.918163][ T8475] R13: 00007fa1d97b6038 R14: 00007fa1d97b5fa0 R15: 00007ffe61602ee8 [ 308.918206][ T8475] [ 310.235854][ T8499] FAULT_INJECTION: forcing a failure. [ 310.235854][ T8499] name fail_futex, interval 1, probability 0, space 0, times 0 [ 310.285363][ T8499] CPU: 1 UID: 1 PID: 8499 Comm: syz.1.642 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) [ 310.285412][ T8499] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 310.285433][ T8499] Call Trace: [ 310.285444][ T8499] [ 310.285456][ T8499] dump_stack_lvl+0x16c/0x1f0 [ 310.285505][ T8499] should_fail_ex+0x512/0x640 [ 310.285559][ T8499] get_futex_key+0x1d0/0x1560 [ 310.285616][ T8499] ? __pfx_get_futex_key+0x10/0x10 [ 310.285656][ T8499] ? trace_pid_list_is_set+0xfb/0x150 [ 310.285701][ T8499] ? do_raw_spin_unlock+0x172/0x230 [ 310.285763][ T8499] futex_wait_setup+0x9d/0x550 [ 310.285827][ T8499] __futex_wait+0x194/0x2f0 [ 310.285891][ T8499] ? __pfx___futex_wait+0x10/0x10 [ 310.285937][ T8499] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 310.285974][ T8499] ? lockdep_hardirqs_on+0x7c/0x110 [ 310.286018][ T8499] ? __pfx_futex_wake_mark+0x10/0x10 [ 310.286074][ T8499] ? futex_private_hash_put+0x176/0x300 [ 310.286119][ T8499] ? futex_private_hash_put+0x18a/0x300 [ 310.286162][ T8499] futex_wait+0xe8/0x380 [ 310.286211][ T8499] ? __pfx_futex_wait+0x10/0x10 [ 310.286268][ T8499] ? __lock_acquire+0xb97/0x1ce0 [ 310.286323][ T8499] do_futex+0x229/0x350 [ 310.286365][ T8499] ? __pfx_do_futex+0x10/0x10 [ 310.286420][ T8499] __x64_sys_futex+0x1e0/0x4c0 [ 310.286471][ T8499] ? __pfx___x64_sys_open_tree_attr+0x10/0x10 [ 310.286521][ T8499] ? __pfx___x64_sys_futex+0x10/0x10 [ 310.286563][ T8499] ? xfd_validate_state+0x61/0x180 [ 310.286617][ T8499] ? up_write+0x1b2/0x520 [ 310.286678][ T8499] do_syscall_64+0xcd/0x490 [ 310.286724][ T8499] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 310.286776][ T8499] RIP: 0033:0x7f07f7f8ebe9 [ 310.286803][ T8499] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 310.286837][ T8499] RSP: 002b:00007f07f8d3e0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 310.286868][ T8499] RAX: ffffffffffffffda RBX: 00007f07f81b6098 RCX: 00007f07f7f8ebe9 [ 310.286891][ T8499] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f07f81b6098 [ 310.286912][ T8499] RBP: 00007f07f81b6090 R08: 0000000000000000 R09: 0000000000000000 [ 310.286933][ T8499] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 310.286954][ T8499] R13: 00007f07f81b6128 R14: 00007fffc5a149c0 R15: 00007fffc5a14aa8 [ 310.286997][ T8499] [ 310.815279][ T5864] Bluetooth: hci2: ISO packet for unknown connection handle 0 [ 312.002897][ T8520] zswap: compressor 000 not available [ 315.603667][ T8583] blktrace: Concurrent blktraces are not allowed on loop2 [ 318.729569][ T8617] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78000 [ 318.782680][ T8617] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 318.809512][ T8617] anon flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 318.824727][ T8617] page_type: f5(slab) [ 318.841214][ T8617] raw: 00fff00000000040 ffff88801b842140 0000000000000000 dead000000000001 [ 318.852167][ T8617] raw: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000 [ 318.863325][ T8617] head: 00fff00000000040 ffff88801b842140 0000000000000000 dead000000000001 [ 318.872074][ T8617] head: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000 [ 318.884055][ T8617] head: 00fff00000000003 ffffea0001e00001 00000000ffffffff 00000000ffffffff [ 318.894049][ T8617] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008 [ 318.907660][ T8617] page dumped because: unmovable page [ 318.914889][ T8617] page_owner tracks the page as allocated [ 318.927398][ T8617] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 12, tgid 12 (kworker/u8:0), ts 224720981536, free_ts 224652145906 [ 318.965164][ T8617] post_alloc_hook+0x1c0/0x230 [ 318.989100][ T8617] get_page_from_freelist+0x132b/0x38e0 [ 318.995249][ T8617] __alloc_frozen_pages_noprof+0x261/0x23f0 [ 319.001301][ T8617] alloc_pages_mpol+0x1fb/0x550 [ 319.008071][ T8617] new_slab+0x247/0x330 [ 319.012379][ T8617] ___slab_alloc+0xcf2/0x1740 [ 319.017648][ T8617] __slab_alloc.constprop.0+0x56/0xb0 [ 319.023449][ T8617] __kmalloc_node_track_caller_noprof+0x2ee/0x510 [ 319.030011][ T8617] kmalloc_reserve+0xef/0x2c0 [ 319.035528][ T8617] __alloc_skb+0x166/0x380 [ 319.040088][ T8617] nsim_dev_trap_report_work+0x2b1/0xcf0 [ 319.046313][ T8617] process_one_work+0x9cc/0x1b70 [ 319.051403][ T8617] worker_thread+0x6c8/0xf10 [ 319.060648][ T8617] kthread+0x3c5/0x780 [ 319.102717][ T8617] ret_from_fork+0x5d4/0x6f0 [ 319.111750][ T8617] ret_from_fork_asm+0x1a/0x30 [ 319.139755][ T8617] page last free pid 5234 tgid 5234 stack trace: [ 319.175042][ T8617] __free_frozen_pages+0x7d5/0x10f0 [ 319.219283][ T8617] __put_partials+0x165/0x1c0 [ 319.242632][ T8617] qlist_free_all+0x4d/0x120 [ 319.247350][ T8617] kasan_quarantine_reduce+0x195/0x1e0 [ 319.272678][ T8617] __kasan_slab_alloc+0x69/0x90 [ 319.288685][ T8617] kmem_cache_alloc_noprof+0x1cb/0x3b0 [ 319.352648][ T8617] getname_flags.part.0+0x4c/0x550 [ 319.372766][ T8617] __x64_sys_unlink+0xb0/0x110 [ 319.381858][ T8617] do_syscall_64+0xcd/0x490 [ 319.401384][ T8617] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 320.482095][ T5864] Bluetooth: hci0: unexpected subevent 0x03 length: 253 > 9                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                       syzkaller syzkaller login: [ 357.969611][ T9059] random: crng reseeded on system resumption [ 360.702904][ T5864] Bluetooth: hci2: unexpected event 0x08 length: 11 > 4 [ 367.917598][ T9177] mkiss: ax0: crc mode is auto. [ 368.802414][ T5864] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18 [ 368.823952][ T5864] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci1/hci1:0' [ 368.833377][ T5864] CPU: 0 UID: 0 PID: 5864 Comm: kworker/u9:2 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) [ 368.833423][ T5864] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 368.833445][ T5864] Workqueue: hci1 hci_rx_work [ 368.833483][ T5864] Call Trace: [ 368.833495][ T5864] [ 368.833506][ T5864] dump_stack_lvl+0x16c/0x1f0 [ 368.833549][ T5864] sysfs_warn_dup+0x7f/0xa0 [ 368.833588][ T5864] sysfs_create_dir_ns+0x24b/0x2b0 [ 368.833627][ T5864] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 368.833663][ T5864] ? find_held_lock+0x2b/0x80 [ 368.833702][ T5864] ? do_raw_spin_unlock+0x172/0x230 [ 368.833753][ T5864] kobject_add_internal+0x2c4/0x9b0 [ 368.833817][ T5864] kobject_add+0x16e/0x240 [ 368.833881][ T5864] ? __pfx_kobject_add+0x10/0x10 [ 368.833932][ T5864] ? do_raw_spin_unlock+0x172/0x230 [ 368.833983][ T5864] ? kobject_put+0xab/0x5a0 [ 368.834040][ T5864] device_add+0x288/0x1aa0 [ 368.834095][ T5864] ? __pfx_dev_set_name+0x10/0x10 [ 368.834130][ T5864] ? __pfx_device_add+0x10/0x10 [ 368.834185][ T5864] ? mgmt_send_event_skb+0x2fb/0x460 [ 368.834232][ T5864] hci_conn_add_sysfs+0x17e/0x230 [ 368.834274][ T5864] le_conn_complete_evt+0x1075/0x1d70 [ 368.834308][ T5864] ? preempt_count_sub+0xd0/0x160 [ 368.834352][ T5864] ? __pfx_le_conn_complete_evt+0x10/0x10 [ 368.834385][ T5864] ? bt_warn+0xe4/0x120 [ 368.834412][ T5864] ? __pfx_bt_warn+0x10/0x10 [ 368.834451][ T5864] hci_le_conn_complete_evt+0x23c/0x370 [ 368.834496][ T5864] hci_le_meta_evt+0x357/0x5e0 [ 368.834534][ T5864] ? __pfx_hci_le_conn_complete_evt+0x10/0x10 [ 368.834574][ T5864] hci_event_packet+0x685/0x11c0 [ 368.834608][ T5864] ? __pfx_hci_le_meta_evt+0x10/0x10 [ 368.834649][ T5864] ? __pfx_hci_event_packet+0x10/0x10 [ 368.834687][ T5864] ? kcov_remote_start+0x3c9/0x6d0 [ 368.834736][ T5864] ? lockdep_hardirqs_on+0x7c/0x110 [ 368.834793][ T5864] hci_rx_work+0x2c5/0x16b0 [ 368.834832][ T5864] ? rcu_is_watching+0x12/0xc0 [ 368.834874][ T5864] process_one_work+0x9cc/0x1b70 [ 368.834945][ T5864] ? __pfx_process_one_work+0x10/0x10 [ 368.835011][ T5864] ? assign_work+0x1a0/0x250 [ 368.835066][ T5864] worker_thread+0x6c8/0xf10 [ 368.835133][ T5864] ? __kthread_parkme+0x19e/0x250 [ 368.835176][ T5864] ? __pfx_worker_thread+0x10/0x10 [ 368.835230][ T5864] kthread+0x3c5/0x780 [ 368.835276][ T5864] ? __pfx_kthread+0x10/0x10 [ 368.835328][ T5864] ? rcu_is_watching+0x12/0xc0 [ 368.835361][ T5864] ? __pfx_kthread+0x10/0x10 [ 368.835412][ T5864] ret_from_fork+0x5d4/0x6f0 [ 368.835462][ T5864] ? __pfx_kthread+0x10/0x10 [ 368.835513][ T5864] ret_from_fork_asm+0x1a/0x30 [ 368.835573][ T5864] [ 368.835610][ T5864] kobject: kobject_add_internal failed for hci1:0 with -EEXIST, don't try to register things with the same name in the same directory. [ 369.107015][ T5864] Bluetooth: hci1: failed to register connection device [ 369.590717][ T9205] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 369.654144][ T9205] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 369.729767][ T9205] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 369.851760][ T9205] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 369.963014][ T9205] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 369.981343][ T9205] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 371.612909][ T5864] Bluetooth: hci0: command 0x0c1a tx timeout [ 371.682857][ T5864] Bluetooth: hci1: command 0x0c1a tx timeout [ 372.024382][ T5864] Bluetooth: hci3: command 0x0c1a tx timeout [ 372.024416][ T5868] Bluetooth: hci2: command 0x0c1a tx timeout [ 373.111464][ T9236] input: f as /devices/virtual/input/input8 [ 373.196755][ T9239] FAULT_INJECTION: forcing a failure. [ 373.196755][ T9239] name failslab, interval 1, probability 0, space 0, times 0 [ 373.209719][ T9239] CPU: 1 UID: 0 PID: 9239 Comm: syz.3.809 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) [ 373.209769][ T9239] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 373.209790][ T9239] Call Trace: [ 373.209802][ T9239] [ 373.209815][ T9239] dump_stack_lvl+0x16c/0x1f0 [ 373.209865][ T9239] should_fail_ex+0x512/0x640 [ 373.209918][ T9239] should_failslab+0xc2/0x120 [ 373.209964][ T9239] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 373.210004][ T9239] ? __alloc_skb+0x2b2/0x380 [ 373.210049][ T9239] __alloc_skb+0x2b2/0x380 [ 373.210087][ T9239] ? __pfx___alloc_skb+0x10/0x10 [ 373.210122][ T9239] ? skb_copy_and_csum_bits+0x127/0x980 [ 373.210169][ T9239] ? __asan_memcpy+0x3c/0x60 [ 373.210209][ T9239] skb_segment+0x971/0x3e20 [ 373.210300][ T9239] __udp_gso_segment+0xef4/0x2a70 [ 373.210353][ T9239] ? __pfx_sock_wfree+0x10/0x10 [ 373.210407][ T9239] udp4_ufo_fragment+0x51a/0x710 [ 373.210463][ T9239] ? __pfx_udp4_ufo_fragment+0x10/0x10 [ 373.210516][ T9239] inet_gso_segment+0x573/0x1330 [ 373.210561][ T9239] skb_mac_gso_segment+0x2a5/0x650 [ 373.210609][ T9239] ? __pfx_inet_gso_segment+0x10/0x10 [ 373.210640][ T9239] ? __pfx_skb_mac_gso_segment+0x10/0x10 [ 373.210695][ T9239] ? trace_fib_table_lookup+0x19f/0x220 [ 373.210740][ T9239] __skb_gso_segment+0x36e/0x700 [ 373.210794][ T9239] validate_xmit_skb+0x662/0x1200 [ 373.210838][ T9239] __dev_queue_xmit+0x976/0x4490 [ 373.210890][ T9239] ? __pfx___dev_queue_xmit+0x10/0x10 [ 373.210926][ T9239] ? register_lock_class+0x41/0x4c0 [ 373.210982][ T9239] ? __lock_acquire+0xb97/0x1ce0 [ 373.211031][ T9239] ? ___neigh_create+0x1945/0x28c0 [ 373.211094][ T9239] ? find_held_lock+0x2b/0x80 [ 373.211138][ T9239] neigh_connected_output+0x3da/0x620 [ 373.211198][ T9239] ip_finish_output2+0x7f5/0x21a0 [ 373.211246][ T9239] ? ip_skb_dst_mtu+0x5a7/0xc70 [ 373.211295][ T9239] ? __pfx_ip_finish_output2+0x10/0x10 [ 373.211338][ T9239] ? ip_skb_dst_mtu+0x5b6/0xc70 [ 373.211379][ T9239] ? skb_gso_transport_seglen+0x1a5/0x3b0 [ 373.211436][ T9239] __ip_finish_output.part.0+0x1b4/0x350 [ 373.211486][ T9239] ip_output+0x35e/0xa10 [ 373.211535][ T9239] ip_send_skb+0x437/0x590 [ 373.211586][ T9239] udp_send_skb+0x71d/0x15b0 [ 373.211642][ T9239] udp_sendmsg+0x1813/0x2870 [ 373.211696][ T9239] ? __pfx_ip_generic_getfrag+0x10/0x10 [ 373.211747][ T9239] ? __pfx_udp_sendmsg+0x10/0x10 [ 373.211814][ T9239] ? __lock_acquire+0xb97/0x1ce0 [ 373.211889][ T9239] ? __pfx_udp_sendmsg+0x10/0x10 [ 373.211935][ T9239] inet_sendmsg+0x105/0x140 [ 373.211967][ T9239] ____sys_sendmsg+0x973/0xc70 [ 373.212019][ T9239] ? copy_msghdr_from_user+0x10a/0x160 [ 373.212059][ T9239] ? __pfx_____sys_sendmsg+0x10/0x10 [ 373.212116][ T9239] ? trace_pid_list_is_set+0x100/0x150 [ 373.212160][ T9239] ? trace_ignore_this_task+0xc3/0x100 [ 373.212214][ T9239] ___sys_sendmsg+0x134/0x1d0 [ 373.212258][ T9239] ? __pfx____sys_sendmsg+0x10/0x10 [ 373.212321][ T9239] ? find_held_lock+0x2b/0x80 [ 373.212380][ T9239] __sys_sendmmsg+0x200/0x420 [ 373.212427][ T9239] ? __pfx___sys_sendmmsg+0x10/0x10 [ 373.212487][ T9239] ? __pfx_do_futex+0x10/0x10 [ 373.212527][ T9239] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 373.212592][ T9239] ? xfd_validate_state+0x61/0x180 [ 373.212632][ T9239] ? __pfx_do_writev+0x10/0x10 [ 373.212668][ T9239] __x64_sys_sendmmsg+0x9c/0x100 [ 373.212709][ T9239] ? lockdep_hardirqs_on+0x7c/0x110 [ 373.212744][ T9239] do_syscall_64+0xcd/0x490 [ 373.212784][ T9239] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 373.212812][ T9239] RIP: 0033:0x7f8c8b18ebe9 [ 373.212835][ T9239] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 373.212864][ T9239] RSP: 002b:00007f8c8c056038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 373.212891][ T9239] RAX: ffffffffffffffda RBX: 00007f8c8b3b5fa0 RCX: 00007f8c8b18ebe9 [ 373.212909][ T9239] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 373.212926][ T9239] RBP: 00007f8c8b211e19 R08: 0000000000000000 R09: 0000000000000000 [ 373.212943][ T9239] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 373.212960][ T9239] R13: 00007f8c8b3b6038 R14: 00007f8c8b3b5fa0 R15: 00007ffe9c163cd8 [ 373.212997][ T9239] [ 373.832575][ T5868] Bluetooth: hci1: command 0x0c1a tx timeout [ 374.582994][ T9248] netlink: 8 bytes leftover after parsing attributes in process `syz.1.812'. [ 375.099191][ T9253] netlink: 326 bytes leftover after parsing attributes in process `syz.2.813'. [ 375.843683][ T5868] Bluetooth: hci1: command 0x0c1a tx timeout [ 382.418657][ T9325] mkiss: ax0: crc mode is auto. [ 384.075043][ T9351] ptrace attach of "./syz-executor exec"[5866] was attempted by ""[9351] [ 386.679799][ T5868] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 388.888096][ T1305] ieee802154 phy0 wpan0: encryption failed: -22 [ 388.895916][ T1305] ieee802154 phy1 wpan1: encryption failed: -22 [ 392.089675][ T9440] FAULT_INJECTION: forcing a failure. [ 392.089675][ T9440] name failslab, interval 1, probability 0, space 0, times 0 [ 392.102908][ T9440] CPU: 1 UID: 0 PID: 9440 Comm: syz.1.853 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) [ 392.102942][ T9440] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 392.102957][ T9440] Call Trace: [ 392.102965][ T9440] [ 392.102973][ T9440] dump_stack_lvl+0x16c/0x1f0 [ 392.103009][ T9440] should_fail_ex+0x512/0x640 [ 392.103042][ T9440] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 392.103070][ T9440] should_failslab+0xc2/0x120 [ 392.103102][ T9440] __kmalloc_cache_noprof+0x6a/0x3e0 [ 392.103128][ T9440] ? snd_timer_user_open+0x6b/0x180 [ 392.103152][ T9440] ? __pfx_snd_timer_user_open+0x10/0x10 [ 392.103174][ T9440] snd_timer_user_open+0x6b/0x180 [ 392.103197][ T9440] snd_open+0x22a/0x4c0 [ 392.103231][ T9440] ? __pfx_snd_open+0x10/0x10 [ 392.103264][ T9440] chrdev_open+0x231/0x6a0 [ 392.103295][ T9440] ? __pfx_apparmor_file_open+0x10/0x10 [ 392.103321][ T9440] ? __pfx_chrdev_open+0x10/0x10 [ 392.103354][ T9440] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 392.103388][ T9440] do_dentry_open+0x97f/0x1530 [ 392.103418][ T9440] ? __pfx_chrdev_open+0x10/0x10 [ 392.103455][ T9440] vfs_open+0x82/0x3f0 [ 392.103494][ T9440] path_openat+0x1de4/0x2cb0 [ 392.103532][ T9440] ? __pfx_path_openat+0x10/0x10 [ 392.103568][ T9440] do_filp_open+0x20b/0x470 [ 392.103596][ T9440] ? __pfx_do_filp_open+0x10/0x10 [ 392.103645][ T9440] ? alloc_fd+0x471/0x7d0 [ 392.103678][ T9440] do_sys_openat2+0x11b/0x1d0 [ 392.103715][ T9440] ? __pfx_do_sys_openat2+0x10/0x10 [ 392.103763][ T9440] __x64_sys_openat+0x174/0x210 [ 392.103802][ T9440] ? __pfx___x64_sys_openat+0x10/0x10 [ 392.103859][ T9440] do_syscall_64+0xcd/0x490 [ 392.103893][ T9440] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 392.103918][ T9440] RIP: 0033:0x7f07f7f8ebe9 [ 392.103936][ T9440] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 392.103959][ T9440] RSP: 002b:00007f07f8d5f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 392.103982][ T9440] RAX: ffffffffffffffda RBX: 00007f07f81b5fa0 RCX: 00007f07f7f8ebe9 [ 392.103998][ T9440] RDX: 0000000000101440 RSI: 0000200000001cc0 RDI: ffffffffffffff9c [ 392.104013][ T9440] RBP: 00007f07f8011e19 R08: 0000000000000000 R09: 0000000000000000 [ 392.104027][ T9440] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 392.104041][ T9440] R13: 00007f07f81b6038 R14: 00007f07f81b5fa0 R15: 00007fffc5a14aa8 [ 392.104070][ T9440] [ 396.058866][ T9482] FAULT_INJECTION: forcing a failure. [ 396.058866][ T9482] name failslab, interval 1, probability 0, space 0, times 0 [ 396.089758][ T9482] CPU: 1 UID: 0 PID: 9482 Comm: syz.0.860 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) [ 396.089816][ T9482] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 396.089837][ T9482] Call Trace: [ 396.089848][ T9482] [ 396.089862][ T9482] dump_stack_lvl+0x16c/0x1f0 [ 396.089911][ T9482] should_fail_ex+0x512/0x640 [ 396.089965][ T9482] should_failslab+0xc2/0x120 [ 396.090012][ T9482] __kmalloc_cache_noprof+0x6a/0x3e0 [ 396.090048][ T9482] ? sctp_add_bind_addr+0xae/0x3f0 [ 396.090086][ T9482] sctp_add_bind_addr+0xae/0x3f0 [ 396.090124][ T9482] sctp_copy_local_addr_list+0x349/0x550 [ 396.090172][ T9482] ? __pfx_sctp_copy_local_addr_list+0x10/0x10 [ 396.090218][ T9482] ? sctp_auth_asoc_copy_shkeys+0x2a5/0x360 [ 396.090262][ T9482] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 396.090316][ T9482] sctp_bind_addr_copy+0xe0/0x530 [ 396.090361][ T9482] sctp_connect_new_asoc+0x1c9/0x770 [ 396.090412][ T9482] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 396.090461][ T9482] ? sctp_endpoint_lookup_assoc+0x15c/0x2a0 [ 396.090519][ T9482] __sctp_connect+0x3f3/0xc60 [ 396.090573][ T9482] ? do_raw_spin_lock+0x12c/0x2b0 [ 396.090627][ T9482] ? __pfx___sctp_connect+0x10/0x10 [ 396.090675][ T9482] ? __pfx_sctp_inet_connect+0x10/0x10 [ 396.090722][ T9482] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 396.090776][ T9482] ? __pfx_sctp_inet_connect+0x10/0x10 [ 396.090828][ T9482] sctp_inet_connect+0x15f/0x200 [ 396.090879][ T9482] __sys_connect_file+0x141/0x1a0 [ 396.090921][ T9482] __sys_connect+0x13b/0x160 [ 396.090956][ T9482] ? __pfx___sys_connect+0x10/0x10 [ 396.091008][ T9482] ? xfd_validate_state+0x61/0x180 [ 396.091056][ T9482] ? __pfx_ksys_write+0x10/0x10 [ 396.091105][ T9482] __x64_sys_connect+0x72/0xb0 [ 396.091139][ T9482] ? lockdep_hardirqs_on+0x7c/0x110 [ 396.091180][ T9482] do_syscall_64+0xcd/0x490 [ 396.091227][ T9482] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 396.091261][ T9482] RIP: 0033:0x7f8512d8ebe9 [ 396.091287][ T9482] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 396.091321][ T9482] RSP: 002b:00007f8513c92038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 396.091353][ T9482] RAX: ffffffffffffffda RBX: 00007f8512fb6090 RCX: 00007f8512d8ebe9 [ 396.091374][ T9482] RDX: 0000000000000054 RSI: 0000200000000080 RDI: 0000000000000003 [ 396.091395][ T9482] RBP: 00007f8512e11e19 R08: 0000000000000000 R09: 0000000000000000 [ 396.091416][ T9482] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 396.091436][ T9482] R13: 00007f8512fb6128 R14: 00007f8512fb6090 R15: 00007ffed19ec928 [ 396.091481][ T9482] [ 399.745945][ T9531] netlink: 25 bytes leftover after parsing attributes in process `syz.2.876'. [ 401.234871][ T9538] program syz.1.878 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 401.535534][ T5864] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18 [ 403.602726][ T5868] Bluetooth: hci1: command 0x0c1a tx timeout [ 403.833102][ T9577] ALSA: mixer_oss: invalid OSS volume '' [ 405.754951][ T9616] device-mapper: ioctl: Unable to rename non-existent device, to uuid [ 406.060906][ T9621] binder: 9620:9621 ioctl 5380 2000000000c0 returned -22 [ 406.113695][ T9621] sd 0:0:1:0: PR command failed: 1026 [ 406.128678][ T9621] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 406.150034][ T9621] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 407.983696][ T5868] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18 [ 408.603453][ T9666] FAULT_INJECTION: forcing a failure. [ 408.603453][ T9666] name failslab, interval 1, probability 0, space 0, times 0 [ 408.645948][ T9666] CPU: 1 UID: 0 PID: 9666 Comm: syz.2.907 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) [ 408.646001][ T9666] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 408.646035][ T9666] Call Trace: [ 408.646048][ T9666] [ 408.646061][ T9666] dump_stack_lvl+0x16c/0x1f0 [ 408.646129][ T9666] should_fail_ex+0x512/0x640 [ 408.646176][ T9666] ? __kvmalloc_node_noprof+0x124/0x620 [ 408.646220][ T9666] should_failslab+0xc2/0x120 [ 408.646265][ T9666] __kvmalloc_node_noprof+0x137/0x620 [ 408.646303][ T9666] ? alloc_fdtable+0x175/0x2d0 [ 408.646342][ T9666] ? alloc_fdtable+0x175/0x2d0 [ 408.646371][ T9666] alloc_fdtable+0x175/0x2d0 [ 408.646406][ T9666] dup_fd+0x83b/0xb90 [ 408.646446][ T9666] ? apparmor_task_alloc+0x2c2/0x3b0 [ 408.646498][ T9666] copy_process+0x230c/0x7690 [ 408.646541][ T9666] ? __pfx___futex_wait+0x10/0x10 [ 408.646607][ T9666] ? __pfx_copy_process+0x10/0x10 [ 408.646648][ T9666] ? futex_private_hash_put+0x176/0x300 [ 408.646691][ T9666] ? futex_private_hash_put+0x18a/0x300 [ 408.646739][ T9666] kernel_clone+0xfc/0x930 [ 408.646783][ T9666] ? __pfx_kernel_clone+0x10/0x10 [ 408.646851][ T9666] __do_sys_clone+0xce/0x120 [ 408.646894][ T9666] ? __pfx___do_sys_clone+0x10/0x10 [ 408.646956][ T9666] ? xfd_validate_state+0x61/0x180 [ 408.647021][ T9666] do_syscall_64+0xcd/0x490 [ 408.647068][ T9666] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 408.647102][ T9666] RIP: 0033:0x7fa1d958ebe9 [ 408.647128][ T9666] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 408.647161][ T9666] RSP: 002b:00007fa1da4ca038 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 408.647193][ T9666] RAX: ffffffffffffffda RBX: 00007fa1d97b5fa0 RCX: 00007fa1d958ebe9 [ 408.647215][ T9666] RDX: 0000200000000340 RSI: 0000000000000001 RDI: 0000000000000001 [ 408.647236][ T9666] RBP: 00007fa1d9611e19 R08: 0000000000000000 R09: 0000000000000000 [ 408.647257][ T9666] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 408.647278][ T9666] R13: 00007fa1d97b6038 R14: 00007fa1d97b5fa0 R15: 00007ffe61602ee8 [ 408.647321][ T9666] [ 409.614469][ T9676] zswap: compressor not available [ 409.720461][ T9683] netlink: 4 bytes leftover after parsing attributes in process `syz.0.911'. [ 410.779202][ T9700] FAULT_INJECTION: forcing a failure. [ 410.779202][ T9700] name failslab, interval 1, probability 0, space 0, times 0 [ 410.823083][ T9700] CPU: 1 UID: 0 PID: 9700 Comm: syz.3.915 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) [ 410.823133][ T9700] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 410.823154][ T9700] Call Trace: [ 410.823166][ T9700] [ 410.823179][ T9700] dump_stack_lvl+0x16c/0x1f0 [ 410.823229][ T9700] should_fail_ex+0x512/0x640 [ 410.823284][ T9700] should_failslab+0xc2/0x120 [ 410.823331][ T9700] __kmalloc_cache_noprof+0x6a/0x3e0 [ 410.823369][ T9700] ? sctp_add_bind_addr+0xae/0x3f0 [ 410.823408][ T9700] sctp_add_bind_addr+0xae/0x3f0 [ 410.823447][ T9700] sctp_copy_local_addr_list+0x349/0x550 [ 410.823495][ T9700] ? __pfx_sctp_copy_local_addr_list+0x10/0x10 [ 410.823548][ T9700] ? sctp_auth_asoc_copy_shkeys+0x2a5/0x360 [ 410.823594][ T9700] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 410.823653][ T9700] sctp_bind_addr_copy+0xe0/0x530 [ 410.823696][ T9700] sctp_connect_new_asoc+0x1c9/0x770 [ 410.823749][ T9700] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 410.823799][ T9700] ? sctp_endpoint_lookup_assoc+0x15c/0x2a0 [ 410.823857][ T9700] __sctp_connect+0x3f3/0xc60 [ 410.823911][ T9700] ? do_raw_spin_lock+0x12c/0x2b0 [ 410.823967][ T9700] ? __pfx___sctp_connect+0x10/0x10 [ 410.824019][ T9700] ? __pfx_sctp_inet_connect+0x10/0x10 [ 410.824072][ T9700] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 410.824125][ T9700] ? __pfx_sctp_inet_connect+0x10/0x10 [ 410.824172][ T9700] sctp_inet_connect+0x15f/0x200 [ 410.824225][ T9700] __sys_connect_file+0x141/0x1a0 [ 410.824288][ T9700] __sys_connect+0x13b/0x160 [ 410.824326][ T9700] ? __pfx___sys_connect+0x10/0x10 [ 410.824379][ T9700] ? xfd_validate_state+0x61/0x180 [ 410.824428][ T9700] ? __pfx_ksys_write+0x10/0x10 [ 410.824478][ T9700] __x64_sys_connect+0x72/0xb0 [ 410.824511][ T9700] ? lockdep_hardirqs_on+0x7c/0x110 [ 410.824560][ T9700] do_syscall_64+0xcd/0x490 [ 410.824609][ T9700] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 410.824644][ T9700] RIP: 0033:0x7f8c8b18ebe9 [ 410.824671][ T9700] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 410.824705][ T9700] RSP: 002b:00007f8c8c035038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 410.824738][ T9700] RAX: ffffffffffffffda RBX: 00007f8c8b3b6090 RCX: 00007f8c8b18ebe9 [ 410.824761][ T9700] RDX: 0000000000000054 RSI: 0000200000000080 RDI: 0000000000000003 [ 410.824783][ T9700] RBP: 00007f8c8b211e19 R08: 0000000000000000 R09: 0000000000000000 [ 410.824804][ T9700] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 410.824824][ T9700] R13: 00007f8c8b3b6128 R14: 00007f8c8b3b6090 R15: 00007ffe9c163cd8 [ 410.824868][ T9700] [ 413.830437][ T9741] netlink: 12 bytes leftover after parsing attributes in process `syz.0.925'. [ 413.880844][ T9741] vcan0: entered promiscuous mode [ 415.413481][ T9768] FAULT_INJECTION: forcing a failure. [ 415.413481][ T9768] name failslab, interval 1, probability 0, space 0, times 0 [ 415.479464][ T9768] CPU: 1 UID: 0 PID: 9768 Comm: syz.2.932 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) [ 415.479518][ T9768] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 415.479539][ T9768] Call Trace: [ 415.479550][ T9768] [ 415.479563][ T9768] dump_stack_lvl+0x16c/0x1f0 [ 415.479612][ T9768] should_fail_ex+0x512/0x640 [ 415.479660][ T9768] ? __kmalloc_noprof+0xbf/0x510 [ 415.479703][ T9768] ? __netlink_kernel_create+0x17f/0x750 [ 415.479746][ T9768] should_failslab+0xc2/0x120 [ 415.479790][ T9768] __kmalloc_noprof+0xd2/0x510 [ 415.479834][ T9768] ? __netlink_create+0x208/0x2c0 [ 415.479872][ T9768] __netlink_kernel_create+0x17f/0x750 [ 415.479921][ T9768] ? __pfx___netlink_kernel_create+0x10/0x10 [ 415.479964][ T9768] ? fib4_semantics_init+0x25/0x100 [ 415.480013][ T9768] fib_net_init+0x26d/0x3f0 [ 415.480059][ T9768] ? __pfx___register_sysctl_table+0x10/0x10 [ 415.480113][ T9768] ? __pfx_fib_net_init+0x10/0x10 [ 415.480160][ T9768] ? lockdep_init_map_type+0x5c/0x280 [ 415.480215][ T9768] ? __pfx_nl_fib_input+0x10/0x10 [ 415.480270][ T9768] ? devinet_init_net+0x5c2/0x910 [ 415.480326][ T9768] ? __pfx_fib_net_init+0x10/0x10 [ 415.480371][ T9768] ops_init+0x1e2/0x5f0 [ 415.480427][ T9768] setup_net+0x10f/0x380 [ 415.480469][ T9768] ? lockdep_init_map_type+0x5c/0x280 [ 415.480517][ T9768] ? __pfx_setup_net+0x10/0x10 [ 415.480566][ T9768] ? debug_mutex_init+0x37/0x70 [ 415.480605][ T9768] copy_net_ns+0x2a6/0x5f0 [ 415.480659][ T9768] create_new_namespaces+0x3ea/0xa90 [ 415.480708][ T9768] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 415.480752][ T9768] ksys_unshare+0x45b/0xa40 [ 415.480801][ T9768] ? __pfx_ksys_unshare+0x10/0x10 [ 415.480849][ T9768] ? xfd_validate_state+0x61/0x180 [ 415.480911][ T9768] __x64_sys_unshare+0x31/0x40 [ 415.480959][ T9768] do_syscall_64+0xcd/0x490 [ 415.481006][ T9768] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 415.481040][ T9768] RIP: 0033:0x7fa1d958ebe9 [ 415.481067][ T9768] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 415.481102][ T9768] RSP: 002b:00007fa1da4ca038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 415.481134][ T9768] RAX: ffffffffffffffda RBX: 00007fa1d97b5fa0 RCX: 00007fa1d958ebe9 [ 415.481157][ T9768] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 415.481178][ T9768] RBP: 00007fa1d9611e19 R08: 0000000000000000 R09: 0000000000000000 [ 415.481206][ T9768] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 415.481226][ T9768] R13: 00007fa1d97b6038 R14: 00007fa1d97b5fa0 R15: 00007ffe61602ee8 [ 415.481271][ T9768] [ 418.751046][ T9790] program syz.0.937 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 420.202003][ T9799] netlink: 25 bytes leftover after parsing attributes in process `syz.3.947'. [ 421.430826][ T9808] netlink: 17 bytes leftover after parsing attributes in process `syz.3.943'. [ 421.468526][ T9807] ima: policy update failed [ 421.514388][ T30] audit: type=1802 audit(1755174902.653:13): pid=9807 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.943" res=0 errno=0 [ 422.897291][ T9833] could not allocate digest TFM handle [ 422.937147][ T9658] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 423.521456][ T9849] netlink: 4 bytes leftover after parsing attributes in process `syz.1.960'. [ 423.567649][ T9849] netlink: 354 bytes leftover after parsing attributes in process `syz.1.960'. [ 423.983860][ T9851] program syz.2.951 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 424.711318][ T5864] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 424.720782][ T5864] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci2/hci2:0' [ 424.734398][ T5864] CPU: 1 UID: 0 PID: 5864 Comm: kworker/u9:2 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) [ 424.734447][ T5864] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 424.734469][ T5864] Workqueue: hci2 hci_rx_work [ 424.734510][ T5864] Call Trace: [ 424.734522][ T5864] [ 424.734533][ T5864] dump_stack_lvl+0x16c/0x1f0 [ 424.734578][ T5864] sysfs_warn_dup+0x7f/0xa0 [ 424.734620][ T5864] sysfs_create_dir_ns+0x24b/0x2b0 [ 424.734662][ T5864] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 424.734702][ T5864] ? find_held_lock+0x2b/0x80 [ 424.734744][ T5864] ? do_raw_spin_unlock+0x172/0x230 [ 424.734799][ T5864] kobject_add_internal+0x2c4/0x9b0 [ 424.734854][ T5864] kobject_add+0x16e/0x240 [ 424.734902][ T5864] ? __pfx_kobject_add+0x10/0x10 [ 424.734953][ T5864] ? do_raw_spin_unlock+0x172/0x230 [ 424.735004][ T5864] ? kobject_put+0xab/0x5a0 [ 424.735061][ T5864] device_add+0x288/0x1aa0 [ 424.735114][ T5864] ? __pfx_dev_set_name+0x10/0x10 [ 424.735156][ T5864] ? __pfx_device_add+0x10/0x10 [ 424.735210][ T5864] ? mgmt_send_event_skb+0x2fb/0x460 [ 424.735258][ T5864] hci_conn_add_sysfs+0x17e/0x230 [ 424.735301][ T5864] le_conn_complete_evt+0x1075/0x1d70 [ 424.735335][ T5864] ? preempt_count_sub+0xd0/0x160 [ 424.735379][ T5864] ? __pfx_le_conn_complete_evt+0x10/0x10 [ 424.735412][ T5864] ? bt_warn+0xe4/0x120 [ 424.735440][ T5864] ? __pfx_bt_warn+0x10/0x10 [ 424.735481][ T5864] hci_le_conn_complete_evt+0x23c/0x370 [ 424.735527][ T5864] hci_le_meta_evt+0x357/0x5e0 [ 424.735565][ T5864] ? __pfx_hci_le_conn_complete_evt+0x10/0x10 [ 424.735606][ T5864] hci_event_packet+0x685/0x11c0 [ 424.735640][ T5864] ? __pfx_hci_le_meta_evt+0x10/0x10 [ 424.735681][ T5864] ? __pfx_hci_event_packet+0x10/0x10 [ 424.735720][ T5864] ? kcov_remote_start+0x3c9/0x6d0 [ 424.735768][ T5864] ? lockdep_hardirqs_on+0x7c/0x110 [ 424.735818][ T5864] hci_rx_work+0x2c5/0x16b0 [ 424.735857][ T5864] ? rcu_is_watching+0x12/0xc0 [ 424.735898][ T5864] process_one_work+0x9cc/0x1b70 [ 424.735966][ T5864] ? __pfx_process_one_work+0x10/0x10 [ 424.736023][ T5864] ? assign_work+0x1a0/0x250 [ 424.736068][ T5864] worker_thread+0x6c8/0xf10 [ 424.736127][ T5864] ? __pfx_worker_thread+0x10/0x10 [ 424.736179][ T5864] kthread+0x3c5/0x780 [ 424.736221][ T5864] ? __pfx_kthread+0x10/0x10 [ 424.736265][ T5864] ? rcu_is_watching+0x12/0xc0 [ 424.736297][ T5864] ? __pfx_kthread+0x10/0x10 [ 424.736341][ T5864] ret_from_fork+0x5d4/0x6f0 [ 424.736382][ T5864] ? __pfx_kthread+0x10/0x10 [ 424.736425][ T5864] ret_from_fork_asm+0x1a/0x30 [ 424.736475][ T5864] [ 424.736511][ T5864] kobject: kobject_add_internal failed for hci2:0 with -EEXIST, don't try to register things with the same name in the same directory. [ 425.007863][ T5864] Bluetooth: hci2: failed to register connection device [ 425.907710][ T9882] Invalid ELF header magic: != ELF [ 426.674793][ T9891] FAULT_INJECTION: forcing a failure. [ 426.674793][ T9891] name failslab, interval 1, probability 0, space 0, times 0 [ 426.712779][ T9891] CPU: 1 UID: 0 PID: 9891 Comm: syz.1.963 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) [ 426.712816][ T9891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 426.712831][ T9891] Call Trace: [ 426.712839][ T9891] [ 426.712847][ T9891] dump_stack_lvl+0x16c/0x1f0 [ 426.712883][ T9891] should_fail_ex+0x512/0x640 [ 426.712916][ T9891] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 426.712945][ T9891] should_failslab+0xc2/0x120 [ 426.712986][ T9891] __kmalloc_cache_noprof+0x6a/0x3e0 [ 426.713012][ T9891] ? snd_pcm_oss_change_params_locked+0x211/0x3a30 [ 426.713055][ T9891] ? kasan_save_track+0x14/0x30 [ 426.713085][ T9891] snd_pcm_oss_change_params_locked+0x211/0x3a30 [ 426.713133][ T9891] ? __mutex_lock+0x1c4/0x10b0 [ 426.713169][ T9891] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 426.713212][ T9891] ? __pfx___mutex_lock+0x10/0x10 [ 426.713250][ T9891] ? __fsnotify_parent+0x24b/0xc40 [ 426.713285][ T9891] snd_pcm_oss_make_ready+0xe6/0x1b0 [ 426.713326][ T9891] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 426.713347][ T9891] snd_pcm_oss_sync+0x1de/0x840 [ 426.713373][ T9891] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 426.713395][ T9891] snd_pcm_oss_release+0x28b/0x310 [ 426.713419][ T9891] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 426.713440][ T9891] __fput+0x3ff/0xb70 [ 426.713482][ T9891] task_work_run+0x150/0x240 [ 426.713522][ T9891] ? __pfx_task_work_run+0x10/0x10 [ 426.713560][ T9891] ? __pfx___do_sys_close_range+0x10/0x10 [ 426.713596][ T9891] exit_to_user_mode_loop+0xeb/0x110 [ 426.713634][ T9891] do_syscall_64+0x3f6/0x490 [ 426.713668][ T9891] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 426.713692][ T9891] RIP: 0033:0x7f07f7f8ebe9 [ 426.713710][ T9891] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 426.713733][ T9891] RSP: 002b:00007f07f8d5f038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 426.713756][ T9891] RAX: 0000000000000000 RBX: 00007f07f81b5fa0 RCX: 00007f07f7f8ebe9 [ 426.713771][ T9891] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000000 [ 426.713785][ T9891] RBP: 00007f07f8011e19 R08: 0000000000000000 R09: 0000000000000000 [ 426.713799][ T9891] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 426.713813][ T9891] R13: 00007f07f81b6038 R14: 00007f07f81b5fa0 R15: 00007fffc5a14aa8 [ 426.713842][ T9891] [ 427.052398][ T5864] Bluetooth: hci2: command 0x0c1a tx timeout [ 427.499336][ T9902] HfR: entered promiscuous mode [ 427.541702][ T9902] netlink: 12 bytes leftover after parsing attributes in process `syz.1.965'. [ 427.603359][ T9902] HfR: left promiscuous mode [ 427.784589][ T9905] HfR: entered promiscuous mode [ 430.002916][ T9658] Bluetooth: hci4: command 0x1003 tx timeout [ 430.012550][ T5864] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 430.255898][ T9913] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 430.316962][ T9909] program syz.3.967 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 431.792276][ T9934] zswap: compressor not available [ 439.655435][T10025] netlink: 25 bytes leftover after parsing attributes in process `syz.2.994'. [ 440.109616][T10030] FAULT_INJECTION: forcing a failure. [ 440.109616][T10030] name failslab, interval 1, probability 0, space 0, times 0 [ 440.165952][T10030] CPU: 1 UID: 0 PID: 10030 Comm: syz.1.1003 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) [ 440.166002][T10030] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 440.166023][T10030] Call Trace: [ 440.166036][T10030] [ 440.166049][T10030] dump_stack_lvl+0x16c/0x1f0 [ 440.166106][T10030] should_fail_ex+0x512/0x640 [ 440.166156][T10030] ? __kmalloc_noprof+0xbf/0x510 [ 440.166199][T10030] ? unregister_netdevice_many_notify+0x626/0x24c0 [ 440.166252][T10030] should_failslab+0xc2/0x120 [ 440.166298][T10030] __kmalloc_noprof+0xd2/0x510 [ 440.166349][T10030] unregister_netdevice_many_notify+0x626/0x24c0 [ 440.166400][T10030] ? __pfx___might_resched+0x10/0x10 [ 440.166441][T10030] ? trace_contention_end+0xdd/0x130 [ 440.166491][T10030] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 440.166541][T10030] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 440.166595][T10030] ? __fsnotify_parent+0x24b/0xc40 [ 440.166633][T10030] ? __pfx___mutex_lock+0x10/0x10 [ 440.166686][T10030] unregister_netdevice_queue+0x305/0x3f0 [ 440.166738][T10030] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 440.166791][T10030] ? __pfx_locks_remove_file+0x10/0x10 [ 440.166833][T10030] ? __pfx_ppp_release+0x10/0x10 [ 440.166883][T10030] ppp_release+0x209/0x230 [ 440.166930][T10030] __fput+0x3ff/0xb70 [ 440.166988][T10030] task_work_run+0x150/0x240 [ 440.167045][T10030] ? __pfx_task_work_run+0x10/0x10 [ 440.167104][T10030] ? __pfx___do_sys_close_range+0x10/0x10 [ 440.167155][T10030] exit_to_user_mode_loop+0xeb/0x110 [ 440.167209][T10030] do_syscall_64+0x3f6/0x490 [ 440.167259][T10030] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 440.167294][T10030] RIP: 0033:0x7f07f7f8ebe9 [ 440.167319][T10030] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 440.167354][T10030] RSP: 002b:00007f07f8d5f038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 440.167387][T10030] RAX: 0000000000000000 RBX: 00007f07f81b5fa0 RCX: 00007f07f7f8ebe9 [ 440.167409][T10030] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 440.167429][T10030] RBP: 00007f07f8011e19 R08: 0000000000000000 R09: 0000000000000000 [ 440.167449][T10030] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 440.167470][T10030] R13: 00007f07f81b6038 R14: 00007f07f81b5fa0 R15: 00007fffc5a14aa8 [ 440.167513][T10030] [ 441.428703][ T5864] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 441.436277][ T5864] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection [ 442.564748][ C0] vcan0: j1939_tp_rxtimer: 0xffff8880347aec00: rx timeout, send abort [ 443.074290][ C0] vcan0: j1939_tp_rxtimer: 0xffff8880347aec00: abort rx timeout. Force session deactivation [ 443.091321][T10046] kexec: Could not allocate control_code_buffer [ 445.414463][T10082] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1008'. [ 446.079812][T10087] vhci_hcd: invalid port number 16 [ 446.090454][T10087] vhci_hcd: invalid port number 16 [ 446.562781][ T9658] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 446.562853][ T5864] Bluetooth: hci4: command 0x1003 tx timeout [ 446.972763][T10089] could not allocate digest TFM handle [ 450.083208][T10133] Invalid ELF header magic: != ELF [ 450.326449][ T1305] ieee802154 phy0 wpan0: encryption failed: -22 [ 450.336285][ T1305] ieee802154 phy1 wpan1: encryption failed: -22 [ 450.629352][ T9597] Bluetooth: hci4: Frame reassembly failed (-84) [ 452.642646][T10150] Bluetooth: hci4: command 0x1003 tx timeout [ 452.650384][ T9658] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 452.742966][T10173] random: crng reseeded on system resumption [ 453.042631][T10179] Unrecognized hibernate image header format! [ 453.073741][T10179] PM: hibernation: Image mismatch: architecture specific data [ 453.443646][ T5864] Bluetooth: hci5: Opcode 0x0c03 failed: -110 [ 455.229929][T10211] netlink: 206 bytes leftover after parsing attributes in process `syz.2.1038'. [ 456.283224][T10203] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 456.302596][T10203] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 456.336196][T10203] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 456.342288][T10203] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 456.388745][T10203] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 456.399536][T10203] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 456.411794][T10203] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 456.423962][T10203] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 456.432615][T10203] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 456.730790][T10223] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1041'. [ 456.844606][T10223] mac80211_hwsim hwsim5 wlan1: entered allmulticast mode [ 456.944803][T10226] HfR: entered promiscuous mode [ 457.023738][ T5924] smpboot: CPU 1 is now offline [ 457.032679][T10226] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1042'. [ 457.043563][ T5864] Bluetooth: hci0: command 0x0c1a tx timeout [ 457.111988][T10228] openvswitch: HfR: Dropping previously announced user features [ 457.192921][T10226] HfR: left promiscuous mode [ 458.403384][ T5864] Bluetooth: hci2: command 0x0c1a tx timeout [ 458.409462][ T9658] Bluetooth: hci1: command 0x0c1a tx timeout [ 458.482702][ T9658] Bluetooth: hci3: command 0x0c1a tx timeout [ 459.124370][ T9658] Bluetooth: hci0: command 0x0c1a tx timeout [ 460.482656][ T5864] Bluetooth: hci1: command 0x0c1a tx timeout [ 460.488730][ T5864] Bluetooth: hci2: command 0x0c1a tx timeout [ 460.575836][ T5864] Bluetooth: hci3: command 0x0c1a tx timeout [ 462.109024][T10277] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1054'. [ 462.360142][T10281] random: crng reseeded on system resumption [ 462.430919][T10281] FAULT_INJECTION: forcing a failure. [ 462.430919][T10281] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 462.557321][T10281] CPU: 0 UID: 0 PID: 10281 Comm: syz.2.1055 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) [ 462.557356][T10281] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 462.557370][T10281] Call Trace: [ 462.557378][T10281] [ 462.557387][T10281] dump_stack_lvl+0x16c/0x1f0 [ 462.557423][T10281] should_fail_ex+0x512/0x640 [ 462.557462][T10281] should_fail_alloc_page+0xe7/0x130 [ 462.557498][T10281] prepare_alloc_pages+0x3c2/0x610 [ 462.557534][T10281] ? __kernel_text_address+0xd/0x40 [ 462.557561][T10281] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 462.557601][T10281] ? stack_trace_save+0x8e/0xc0 [ 462.557628][T10281] ? __pfx_stack_trace_save+0x10/0x10 [ 462.557656][T10281] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 462.557691][T10281] ? kasan_save_stack+0x42/0x60 [ 462.557717][T10281] ? kasan_save_stack+0x33/0x60 [ 462.557746][T10281] ? misc_open+0x35a/0x420 [ 462.557768][T10281] ? chrdev_open+0x231/0x6a0 [ 462.557798][T10281] ? do_dentry_open+0x97f/0x1530 [ 462.557824][T10281] ? vfs_open+0x82/0x3f0 [ 462.557857][T10281] ? path_openat+0x1de4/0x2cb0 [ 462.557882][T10281] ? do_filp_open+0x20b/0x470 [ 462.557907][T10281] ? do_sys_openat2+0x11b/0x1d0 [ 462.557941][T10281] ? __x64_sys_openat+0x174/0x210 [ 462.557977][T10281] ? do_syscall_64+0xcd/0x490 [ 462.558017][T10281] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 462.558043][T10281] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 462.558082][T10281] ? policy_nodemask+0xea/0x4e0 [ 462.558117][T10281] alloc_pages_mpol+0x1fb/0x550 [ 462.558150][T10281] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 462.558191][T10281] alloc_pages_noprof+0x131/0x390 [ 462.558224][T10281] get_zeroed_page_noprof+0x18/0xb0 [ 462.558260][T10281] get_image_page+0x18/0x190 [ 462.558283][T10281] chain_alloc+0x8c/0xd0 [ 462.558307][T10281] memory_bm_create+0x30f/0x810 [ 462.558343][T10281] create_basic_memory_bitmaps+0x10b/0x320 [ 462.558379][T10281] snapshot_open+0x235/0x2b0 [ 462.558407][T10281] ? __pfx_snapshot_open+0x10/0x10 [ 462.558437][T10281] misc_open+0x35a/0x420 [ 462.558462][T10281] ? __pfx_misc_open+0x10/0x10 [ 462.558486][T10281] chrdev_open+0x231/0x6a0 [ 462.558517][T10281] ? __pfx_apparmor_file_open+0x10/0x10 [ 462.558544][T10281] ? __pfx_chrdev_open+0x10/0x10 [ 462.558577][T10281] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 462.558610][T10281] do_dentry_open+0x97f/0x1530 [ 462.558639][T10281] ? __pfx_chrdev_open+0x10/0x10 [ 462.558677][T10281] vfs_open+0x82/0x3f0 [ 462.558717][T10281] path_openat+0x1de4/0x2cb0 [ 462.558755][T10281] ? __pfx_path_openat+0x10/0x10 [ 462.558792][T10281] do_filp_open+0x20b/0x470 [ 462.558821][T10281] ? __pfx_do_filp_open+0x10/0x10 [ 462.558871][T10281] ? alloc_fd+0x471/0x7d0 [ 462.558905][T10281] do_sys_openat2+0x11b/0x1d0 [ 462.558941][T10281] ? __pfx_do_sys_openat2+0x10/0x10 [ 462.558977][T10281] ? __fget_files+0x204/0x3c0 [ 462.559019][T10281] __x64_sys_openat+0x174/0x210 [ 462.559058][T10281] ? __pfx___x64_sys_openat+0x10/0x10 [ 462.559110][T10281] do_syscall_64+0xcd/0x490 [ 462.559143][T10281] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 462.559167][T10281] RIP: 0033:0x7fa1d958ebe9 [ 462.559186][T10281] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 462.559209][T10281] RSP: 002b:00007fa1da4ca038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 462.559232][T10281] RAX: ffffffffffffffda RBX: 00007fa1d97b5fa0 RCX: 00007fa1d958ebe9 [ 462.559248][T10281] RDX: 00000000001438bf RSI: 0000200000000000 RDI: ffffffffffffff9c [ 462.559264][T10281] RBP: 00007fa1d9611e19 R08: 0000000000000000 R09: 0000000000000000 [ 462.559278][T10281] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 462.559293][T10281] R13: 00007fa1d97b6038 R14: 00007fa1d97b5fa0 R15: 00007ffe61602ee8 [ 462.559323][T10281] [ 463.557537][ T5864] Bluetooth: hci2: command 0x0c1a tx timeout [ 465.349844][T10305] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 465.388605][T10305] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 465.532756][T10305] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 465.635533][T10305] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 466.014302][T10313] FAULT_INJECTION: forcing a failure. [ 466.014302][T10313] name failslab, interval 1, probability 0, space 0, times 0 [ 466.080746][T10313] CPU: 0 UID: 0 PID: 10313 Comm: syz.3.1063 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) [ 466.080782][T10313] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 466.080796][T10313] Call Trace: [ 466.080804][T10313] [ 466.080813][T10313] dump_stack_lvl+0x16c/0x1f0 [ 466.080847][T10313] should_fail_ex+0x512/0x640 [ 466.080881][T10313] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 466.080913][T10313] should_failslab+0xc2/0x120 [ 466.080947][T10313] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 466.080973][T10313] ? __proc_create+0xc3/0x8e0 [ 466.081009][T10313] ? __proc_create+0x2ce/0x8e0 [ 466.081047][T10313] __proc_create+0x2ce/0x8e0 [ 466.081084][T10313] ? __pfx___proc_create+0x10/0x10 [ 466.081119][T10313] ? pcpu_chunk_relocate+0x126/0x190 [ 466.081154][T10313] proc_create_reg+0x7d/0x180 [ 466.081191][T10313] ? __pfx_xfrm_statistics_seq_show+0x10/0x10 [ 466.081233][T10313] proc_create_net_single+0x86/0x180 [ 466.081271][T10313] ? __pfx_proc_create_net_single+0x10/0x10 [ 466.081316][T10313] ? __pfx_xfrm_net_init+0x10/0x10 [ 466.081350][T10313] xfrm_proc_init+0x4d/0x70 [ 466.081371][T10313] xfrm_net_init+0x1f0/0xcc0 [ 466.081409][T10313] ? __pfx_xfrm_net_init+0x10/0x10 [ 466.081442][T10313] ops_init+0x1e2/0x5f0 [ 466.081478][T10313] setup_net+0x10f/0x380 [ 466.081508][T10313] ? lockdep_init_map_type+0x5c/0x280 [ 466.081542][T10313] ? __pfx_setup_net+0x10/0x10 [ 466.081576][T10313] ? debug_mutex_init+0x37/0x70 [ 466.081603][T10313] copy_net_ns+0x2a6/0x5f0 [ 466.081641][T10313] create_new_namespaces+0x3ea/0xa90 [ 466.081676][T10313] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 466.081707][T10313] ksys_unshare+0x45b/0xa40 [ 466.081750][T10313] ? __pfx_ksys_unshare+0x10/0x10 [ 466.081785][T10313] ? xfd_validate_state+0x61/0x180 [ 466.081831][T10313] __x64_sys_unshare+0x31/0x40 [ 466.081864][T10313] do_syscall_64+0xcd/0x490 [ 466.081898][T10313] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 466.081922][T10313] RIP: 0033:0x7f8c8b18ebe9 [ 466.081941][T10313] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 466.081964][T10313] RSP: 002b:00007f8c8c056038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 466.081988][T10313] RAX: ffffffffffffffda RBX: 00007f8c8b3b5fa0 RCX: 00007f8c8b18ebe9 [ 466.082003][T10313] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 466.082017][T10313] RBP: 00007f8c8b211e19 R08: 0000000000000000 R09: 0000000000000000 [ 466.082031][T10313] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 466.082044][T10313] R13: 00007f8c8b3b6038 R14: 00007f8c8b3b5fa0 R15: 00007ffe9c163cd8 [ 466.082074][T10313] [ 467.365925][ T5864] Bluetooth: hci0: command 0x0c1a tx timeout [ 467.462976][ T5864] Bluetooth: hci1: command 0x0c1a tx timeout [ 467.608675][ T5864] Bluetooth: hci3: command 0x0c1a tx timeout [ 467.615973][ T9658] Bluetooth: hci2: command 0x0c1a tx timeout [ 468.193337][T10329] zswap: compressor 000 not available [ 477.717037][T10426] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1088'. [ 478.610756][T10433] netlink: set zone limit has 8 unknown bytes [ 479.612422][T10426] mac80211_hwsim hwsim9 wlan1: entered allmulticast mode [ 482.142725][T10463] FAULT_INJECTION: forcing a failure. [ 482.142725][T10463] name failslab, interval 1, probability 0, space 0, times 0 [ 482.205054][T10463] CPU: 0 UID: 0 PID: 10463 Comm: syz.0.1096 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) [ 482.205091][T10463] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 482.205106][T10463] Call Trace: [ 482.205114][T10463] [ 482.205123][T10463] dump_stack_lvl+0x16c/0x1f0 [ 482.205159][T10463] should_fail_ex+0x512/0x640 [ 482.205193][T10463] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 482.205222][T10463] should_failslab+0xc2/0x120 [ 482.205254][T10463] __kmalloc_cache_noprof+0x6a/0x3e0 [ 482.205277][T10463] ? trace_kmalloc+0x2b/0xd0 [ 482.205309][T10463] ? __kvmalloc_node_noprof+0x298/0x620 [ 482.205335][T10463] ? single_open+0x4d/0x1f0 [ 482.205370][T10463] ? single_open_size+0x4e/0x160 [ 482.205399][T10463] ? __pfx_show_stat+0x10/0x10 [ 482.205426][T10463] single_open+0x4d/0x1f0 [ 482.205460][T10463] ? __pfx_show_stat+0x10/0x10 [ 482.205488][T10463] single_open_size+0x6d/0x160 [ 482.205509][T10463] ? __pfx_stat_open+0x10/0x10 [ 482.205538][T10463] proc_reg_open+0x134/0x5f0 [ 482.205572][T10463] do_dentry_open+0x97f/0x1530 [ 482.205602][T10463] ? __pfx_proc_reg_open+0x10/0x10 [ 482.205639][T10463] vfs_open+0x82/0x3f0 [ 482.205679][T10463] path_openat+0x1de4/0x2cb0 [ 482.205716][T10463] ? __pfx_path_openat+0x10/0x10 [ 482.205752][T10463] do_filp_open+0x20b/0x470 [ 482.205781][T10463] ? __pfx_do_filp_open+0x10/0x10 [ 482.205830][T10463] ? alloc_fd+0x471/0x7d0 [ 482.205863][T10463] do_sys_openat2+0x11b/0x1d0 [ 482.205900][T10463] ? __pfx_do_sys_openat2+0x10/0x10 [ 482.205936][T10463] ? __fget_files+0x204/0x3c0 [ 482.205971][T10463] __x64_sys_openat+0x174/0x210 [ 482.206009][T10463] ? __pfx___x64_sys_openat+0x10/0x10 [ 482.206060][T10463] do_syscall_64+0xcd/0x490 [ 482.206093][T10463] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 482.206117][T10463] RIP: 0033:0x7f8512d8ebe9 [ 482.206136][T10463] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 482.206158][T10463] RSP: 002b:00007f8513cb3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 482.206181][T10463] RAX: ffffffffffffffda RBX: 00007f8512fb5fa0 RCX: 00007f8512d8ebe9 [ 482.206197][T10463] RDX: 0000000000000000 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 482.206212][T10463] RBP: 00007f8512e11e19 R08: 0000000000000000 R09: 0000000000000000 [ 482.206226][T10463] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 482.206240][T10463] R13: 00007f8512fb6038 R14: 00007f8512fb5fa0 R15: 00007ffed19ec928 [ 482.206269][T10463] [ 486.630052][T10494] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1105'. [ 489.266240][T10526] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1112'. [ 489.476058][T10526] : renamed from vxcan1 (while UP) [ 489.601162][T10528] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1113'. [ 490.334044][T10540] random: crng reseeded on system resumption [ 491.524504][T10541] Unrecognized hibernate image header format! [ 491.575791][T10541] PM: hibernation: Image mismatch: architecture specific data [ 493.986809][T10586] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1129'. [ 494.049276][T10587] netlink: 354 bytes leftover after parsing attributes in process `syz.3.1129'. [ 494.689724][T10590] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 494.813592][T10590] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 494.872958][T10590] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 495.032863][T10590] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 496.726282][ T5864] Bluetooth: hci0: command 0x0c1a tx timeout [ 496.882681][ T5864] Bluetooth: hci2: command 0x0c1a tx timeout [ 496.888853][ T5864] Bluetooth: hci1: command 0x0c1a tx timeout [ 497.042587][ T9658] Bluetooth: hci3: command 0x0c1a tx timeout [ 497.122050][T10619] FAULT_INJECTION: forcing a failure. [ 497.122050][T10619] name failslab, interval 1, probability 0, space 0, times 0 [ 497.285779][T10619] CPU: 0 UID: 0 PID: 10619 Comm: syz.2.1136 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) [ 497.285816][T10619] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 497.285830][T10619] Call Trace: [ 497.285838][T10619] [ 497.285847][T10619] dump_stack_lvl+0x16c/0x1f0 [ 497.285883][T10619] should_fail_ex+0x512/0x640 [ 497.285917][T10619] ? __kmalloc_noprof+0xbf/0x510 [ 497.285948][T10619] ? devlink_fmsg_put_name+0xf0/0x3f0 [ 497.285978][T10619] should_failslab+0xc2/0x120 [ 497.286009][T10619] __kmalloc_noprof+0xd2/0x510 [ 497.286044][T10619] devlink_fmsg_put_name+0xf0/0x3f0 [ 497.286078][T10619] devlink_fmsg_string_pair_put+0xb6/0x1b0 [ 497.286115][T10619] nsim_dev_dummy_fmsg_put+0x77/0x1e0 [ 497.286157][T10619] devlink_health_do_dump+0x243/0x620 [ 497.286196][T10619] devlink_health_report+0x3c9/0x9c0 [ 497.286237][T10619] ? __pfx_devlink_health_report+0x10/0x10 [ 497.286272][T10619] ? _copy_from_user+0x59/0xd0 [ 497.286314][T10619] nsim_dev_health_break_write+0x166/0x210 [ 497.286347][T10619] ? __pfx_nsim_dev_health_break_write+0x10/0x10 [ 497.286389][T10619] full_proxy_write+0x12e/0x1a0 [ 497.286428][T10619] ? __pfx_full_proxy_write+0x10/0x10 [ 497.286464][T10619] vfs_write+0x29d/0x11d0 [ 497.286497][T10619] ? __pfx___mutex_lock+0x10/0x10 [ 497.286528][T10619] ? __pfx_vfs_write+0x10/0x10 [ 497.286564][T10619] ? __fget_files+0x20e/0x3c0 [ 497.286598][T10619] ksys_write+0x12a/0x250 [ 497.286626][T10619] ? __pfx_ksys_write+0x10/0x10 [ 497.286662][T10619] do_syscall_64+0xcd/0x490 [ 497.286695][T10619] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 497.286720][T10619] RIP: 0033:0x7fa1d958ebe9 [ 497.286739][T10619] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 497.286762][T10619] RSP: 002b:00007fa1da4ca038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 497.286784][T10619] RAX: ffffffffffffffda RBX: 00007fa1d97b5fa0 RCX: 00007fa1d958ebe9 [ 497.286800][T10619] RDX: 00000000000001ff RSI: 0000000000000000 RDI: 0000000000000006 [ 497.286814][T10619] RBP: 00007fa1d9611e19 R08: 0000000000000000 R09: 0000000000000000 [ 497.286828][T10619] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 497.286842][T10619] R13: 00007fa1d97b6038 R14: 00007fa1d97b5fa0 R15: 00007ffe61602ee8 [ 497.286872][T10619] [ 497.523102][ C0] vkms_vblank_simulate: vblank timer overrun [ 498.555508][ T30] audit: type=1804 audit(1755174979.653:14): pid=10627 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.1138" name="/newroot/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter" dev="tracefs" ino=19680823 res=1 errno=0 [ 500.759672][ C0] vcan0: j1939_tp_rxtimer: 0xffff88805b638c00: rx timeout, send abort [ 500.777677][ C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88805b638c00: 0x40000: (3) A timeout occurred and this is the connection abort to close the session. [ 501.148369][T10640] input: jJǸ;9%vlQ J86 as /devices/virtual/input/input9 [ 504.961841][T10678] bond0: option all_slaves_active: invalid value () [ 506.792045][T10695] netlink: 346 bytes leftover after parsing attributes in process `syz.2.1153'. [ 507.200619][T10688] kexec: Could not allocate control_code_buffer [ 509.587731][T10719] FAULT_INJECTION: forcing a failure. [ 509.587731][T10719] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 509.679903][T10719] CPU: 0 UID: 0 PID: 10719 Comm: syz.3.1158 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) [ 509.679939][T10719] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 509.679954][T10719] Call Trace: [ 509.679962][T10719] [ 509.679970][T10719] dump_stack_lvl+0x16c/0x1f0 [ 509.680004][T10719] should_fail_ex+0x512/0x640 [ 509.680044][T10719] should_fail_alloc_page+0xe7/0x130 [ 509.680080][T10719] prepare_alloc_pages+0x3c2/0x610 [ 509.680117][T10719] ? rcu_is_watching+0x12/0xc0 [ 509.680160][T10719] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 509.680195][T10719] ? rcu_is_watching+0x12/0xc0 [ 509.680219][T10719] ? trace_mm_page_alloc+0x11f/0x1a0 [ 509.680257][T10719] ? __alloc_frozen_pages_noprof+0x294/0x23f0 [ 509.680287][T10719] ? stack_trace_save+0x8e/0xc0 [ 509.680316][T10719] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 509.680356][T10719] ? kmem_cache_alloc_node_noprof+0x1d5/0x3b0 [ 509.680385][T10719] ? __get_vm_area_node+0x1ca/0x330 [ 509.680420][T10719] ? __vmalloc_node_noprof+0xad/0xf0 [ 509.680458][T10719] ? pcpu_mem_zalloc+0x54/0xb0 [ 509.680478][T10719] ? pcpu_create_chunk+0x432/0x730 [ 509.680503][T10719] ? pcpu_alloc_noprof+0x11e3/0x1470 [ 509.680528][T10719] ? bpf_map_alloc_percpu+0x9a/0x4b0 [ 509.680558][T10719] ? htab_map_alloc+0x10ca/0x1570 [ 509.680578][T10719] ? map_create+0x592/0x1f80 [ 509.680620][T10719] alloc_pages_bulk_noprof+0x71c/0x1410 [ 509.680649][T10719] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 509.680693][T10719] ? policy_nodemask+0xea/0x4e0 [ 509.680728][T10719] ? __pfx_alloc_pages_bulk_noprof+0x10/0x10 [ 509.680759][T10719] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 509.680804][T10719] kasan_populate_vmalloc+0xf1/0x1f0 [ 509.680836][T10719] alloc_vmap_area+0x959/0x29c0 [ 509.680884][T10719] ? __pfx_alloc_vmap_area+0x10/0x10 [ 509.680927][T10719] __get_vm_area_node+0x1ca/0x330 [ 509.680969][T10719] __vmalloc_node_range_noprof+0x271/0x14b0 [ 509.680993][T10719] ? pcpu_mem_zalloc+0x54/0xb0 [ 509.681024][T10719] ? pcpu_mem_zalloc+0x54/0xb0 [ 509.681054][T10719] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 509.681088][T10719] ? pcpu_mem_zalloc+0x54/0xb0 [ 509.681109][T10719] __vmalloc_node_noprof+0xad/0xf0 [ 509.681154][T10719] ? pcpu_mem_zalloc+0x54/0xb0 [ 509.681180][T10719] pcpu_mem_zalloc+0x54/0xb0 [ 509.681204][T10719] pcpu_create_chunk+0x432/0x730 [ 509.681234][T10719] pcpu_alloc_noprof+0x11e3/0x1470 [ 509.681274][T10719] bpf_map_alloc_percpu+0x9a/0x4b0 [ 509.681309][T10719] htab_map_alloc+0x10ca/0x1570 [ 509.681337][T10719] ? ns_capable+0xd7/0x110 [ 509.681365][T10719] map_create+0x592/0x1f80 [ 509.681408][T10719] ? __pfx_map_create+0x10/0x10 [ 509.681439][T10719] ? __might_fault+0xe3/0x190 [ 509.681464][T10719] ? __might_fault+0xe3/0x190 [ 509.681490][T10719] ? __might_fault+0x13b/0x190 [ 509.681527][T10719] __sys_bpf+0x44d2/0x4de0 [ 509.681567][T10719] ? __pfx___sys_bpf+0x10/0x10 [ 509.681602][T10719] ? do_writev+0x218/0x340 [ 509.681634][T10719] ? do_futex+0x122/0x350 [ 509.681665][T10719] ? __pfx_do_futex+0x10/0x10 [ 509.681712][T10719] ? xfd_validate_state+0x61/0x180 [ 509.681746][T10719] ? __pfx_do_writev+0x10/0x10 [ 509.681776][T10719] __x64_sys_bpf+0x78/0xc0 [ 509.681813][T10719] ? lockdep_hardirqs_on+0x7c/0x110 [ 509.681841][T10719] do_syscall_64+0xcd/0x490 [ 509.681874][T10719] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 509.681898][T10719] RIP: 0033:0x7f8c8b18ebe9 [ 509.681917][T10719] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 509.681941][T10719] RSP: 002b:00007f8c8c056038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 509.681964][T10719] RAX: ffffffffffffffda RBX: 00007f8c8b3b5fa0 RCX: 00007f8c8b18ebe9 [ 509.681980][T10719] RDX: 00000000000000a3 RSI: 0000200000000780 RDI: 0000000000000000 [ 509.681994][T10719] RBP: 00007f8c8b211e19 R08: 0000000000000000 R09: 0000000000000000 [ 509.682008][T10719] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 509.682022][T10719] R13: 00007f8c8b3b6038 R14: 00007f8c8b3b5fa0 R15: 00007ffe9c163cd8 [ 509.682052][T10719] [ 511.804599][ T1305] ieee802154 phy0 wpan0: encryption failed: -22 [ 511.810925][ T1305] ieee802154 phy1 wpan1: encryption failed: -22 [ 512.987479][T10736] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1163'. [ 513.600620][T10745] binder: 10744:10745 unknown command 4294967282 [ 513.653053][T10745] binder: 10744:10745 ioctl c0306201 2000000000c0 returned -22 [ 514.131165][T10742] netlink: 'syz.0.1162': attribute type 1 has an invalid length. [ 516.266437][T10772] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input10 [ 516.899876][T10777] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1170'. [ 517.869710][T10776] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input11 [ 518.568177][T10803] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1178'. [ 518.688877][T10805] netlink: 93 bytes leftover after parsing attributes in process `syz.2.1178'. [ 520.643626][T10818] Invalid ELF header magic: != ELF [ 521.718344][T10818] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1181'. [ 524.153676][T10848] FAULT_INJECTION: forcing a failure. [ 524.153676][T10848] name failslab, interval 1, probability 0, space 0, times 0 [ 524.450439][T10848] CPU: 0 UID: 0 PID: 10848 Comm: syz.0.1187 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) [ 524.450476][T10848] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 524.450491][T10848] Call Trace: [ 524.450498][T10848] [ 524.450508][T10848] dump_stack_lvl+0x16c/0x1f0 [ 524.450542][T10848] should_fail_ex+0x512/0x640 [ 524.450576][T10848] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 524.450604][T10848] should_failslab+0xc2/0x120 [ 524.450638][T10848] __kmalloc_cache_noprof+0x6a/0x3e0 [ 524.450664][T10848] ? percpu_ref_init+0xec/0x410 [ 524.450702][T10848] ? __pfx_css_release+0x10/0x10 [ 524.450735][T10848] percpu_ref_init+0xec/0x410 [ 524.450764][T10848] ? init_and_link_css+0x32c/0x700 [ 524.450792][T10848] cgroup_apply_control_enable+0x50b/0xbb0 [ 524.450840][T10848] cgroup_mkdir+0x5e7/0x11f0 [ 524.450889][T10848] ? __pfx_cgroup_mkdir+0x10/0x10 [ 524.450927][T10848] kernfs_iop_mkdir+0x111/0x190 [ 524.450961][T10848] ? bpf_lsm_inode_mkdir+0x9/0x10 [ 524.450994][T10848] vfs_mkdir+0x590/0x8c0 [ 524.451021][T10848] do_mkdirat+0x304/0x3e0 [ 524.451051][T10848] ? __pfx_do_mkdirat+0x10/0x10 [ 524.451083][T10848] ? getname_flags.part.0+0x1c5/0x550 [ 524.451124][T10848] __x64_sys_mkdir+0xef/0x140 [ 524.451154][T10848] do_syscall_64+0xcd/0x490 [ 524.451187][T10848] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 524.451211][T10848] RIP: 0033:0x7f8512d8ebe9 [ 524.451229][T10848] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 524.451253][T10848] RSP: 002b:00007f8513cb3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 524.451275][T10848] RAX: ffffffffffffffda RBX: 00007f8512fb5fa0 RCX: 00007f8512d8ebe9 [ 524.451291][T10848] RDX: 0000000000000000 RSI: 00000000000008cd RDI: 0000200000000000 [ 524.451305][T10848] RBP: 00007f8512e11e19 R08: 0000000000000000 R09: 0000000000000000 [ 524.451319][T10848] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 524.451333][T10848] R13: 00007f8512fb6038 R14: 00007f8512fb5fa0 R15: 00007ffed19ec928 [ 524.451363][T10848] [ 524.659330][ C0] vkms_vblank_simulate: vblank timer overrun [ 525.105674][T10324] ------------[ cut here ]------------ [ 525.112034][T10324] WARNING: CPU: 0 PID: 10324 at kernel/cgroup/rstat.c:488 css_rstat_exit+0x368/0x470 [ 525.121594][T10324] Modules linked in: [ 525.125880][T10324] CPU: 0 UID: 0 PID: 10324 Comm: kworker/0:1 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) [ 525.138692][T10324] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 525.149252][T10324] Workqueue: cgroup_destroy css_free_rwork_fn [ 525.155383][T10324] RIP: 0010:css_rstat_exit+0x368/0x470 [ 525.161010][T10324] Code: 00 00 00 fc ff df 48 c1 ea 03 80 3c 02 00 0f 85 0e 01 00 00 49 c7 85 70 05 00 00 00 00 00 00 e9 00 ff ff ff e8 19 08 07 00 90 <0f> 0b 90 e9 3e ff ff ff e8 0b 08 07 00 90 0f 0b 90 e9 30 ff ff ff [ 525.180711][T10324] RSP: 0018:ffffc9000451fbc0 EFLAGS: 00010293 [ 525.186838][T10324] RAX: 0000000000000000 RBX: ffff88814048b400 RCX: ffff8881246c6000 [ 525.194880][T10324] RDX: ffff888028c13c00 RSI: ffffffff81b407c7 RDI: ffffffff8df57e60 [ 525.203652][T10324] RBP: ffff88814048b408 R08: 0000000000000005 R09: 0000000000000007 [ 525.211814][T10324] R10: 0000000000000000 R11: 0000000000000000 R12: ffff88814048b420 [ 525.219868][T10324] R13: 0000000000000000 R14: 0000000000000003 R15: dffffc0000000000 [ 525.227880][T10324] FS: 0000000000000000(0000) GS:ffff8881246c6000(0000) knlGS:0000000000000000 [ 525.236865][T10324] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 525.244101][T10324] CR2: 0000000002fbf000 CR3: 0000000076878000 CR4: 00000000003526f0 [ 525.252085][T10324] Call Trace: [ 525.255867][T10324] [ 525.258821][T10324] css_free_rwork_fn+0x80/0x12e0 [ 525.263910][T10324] ? rcu_is_watching+0x12/0xc0 [ 525.268695][T10324] process_one_work+0x9cc/0x1b70 [ 525.273719][T10324] ? __pfx_wq_barrier_func+0x10/0x10 [ 525.279023][T10324] ? __pfx_process_one_work+0x10/0x10 [ 525.284717][T10324] ? assign_work+0x1a0/0x250 [ 525.289352][T10324] worker_thread+0x6c8/0xf10 [ 525.294039][T10324] ? __kthread_parkme+0x19e/0x250 [ 525.299092][T10324] ? __pfx_worker_thread+0x10/0x10 [ 525.304274][T10324] kthread+0x3c5/0x780 [ 525.308391][T10324] ? __pfx_kthread+0x10/0x10 [ 525.313058][T10324] ? rcu_is_watching+0x12/0xc0 [ 525.317837][T10324] ? __pfx_kthread+0x10/0x10 [ 525.322493][T10324] ret_from_fork+0x5d4/0x6f0 [ 525.327126][T10324] ? __pfx_kthread+0x10/0x10 [ 525.331744][T10324] ret_from_fork_asm+0x1a/0x30 [ 525.336586][T10324] [ 525.339631][T10324] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 525.346920][T10324] CPU: 0 UID: 0 PID: 10324 Comm: kworker/0:1 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) [ 525.359084][T10324] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 525.369147][T10324] Workqueue: cgroup_destroy css_free_rwork_fn [ 525.375241][T10324] Call Trace: [ 525.378527][T10324] [ 525.381459][T10324] dump_stack_lvl+0x3d/0x1f0 [ 525.386069][T10324] vpanic+0x6e8/0x7a0 [ 525.390078][T10324] ? __pfx_vpanic+0x10/0x10 [ 525.394607][T10324] ? css_rstat_exit+0x368/0x470 [ 525.399489][T10324] panic+0xca/0xd0 [ 525.403233][T10324] ? __pfx_panic+0x10/0x10 [ 525.407681][T10324] ? check_panic_on_warn+0x1f/0xb0 [ 525.412814][T10324] check_panic_on_warn+0xab/0xb0 [ 525.417776][T10324] __warn+0xf6/0x3c0 [ 525.421691][T10324] ? css_rstat_exit+0x368/0x470 [ 525.426552][T10324] report_bug+0x3c3/0x580 [ 525.430892][T10324] ? css_rstat_exit+0x368/0x470 [ 525.435778][T10324] handle_bug+0x184/0x210 [ 525.440130][T10324] exc_invalid_op+0x17/0x50 [ 525.444654][T10324] asm_exc_invalid_op+0x1a/0x20 [ 525.449543][T10324] RIP: 0010:css_rstat_exit+0x368/0x470 [ 525.455017][T10324] Code: 00 00 00 fc ff df 48 c1 ea 03 80 3c 02 00 0f 85 0e 01 00 00 49 c7 85 70 05 00 00 00 00 00 00 e9 00 ff ff ff e8 19 08 07 00 90 <0f> 0b 90 e9 3e ff ff ff e8 0b 08 07 00 90 0f 0b 90 e9 30 ff ff ff [ 525.474635][T10324] RSP: 0018:ffffc9000451fbc0 EFLAGS: 00010293 [ 525.480710][T10324] RAX: 0000000000000000 RBX: ffff88814048b400 RCX: ffff8881246c6000 [ 525.488688][T10324] RDX: ffff888028c13c00 RSI: ffffffff81b407c7 RDI: ffffffff8df57e60 [ 525.496665][T10324] RBP: ffff88814048b408 R08: 0000000000000005 R09: 0000000000000007 [ 525.504654][T10324] R10: 0000000000000000 R11: 0000000000000000 R12: ffff88814048b420 [ 525.512642][T10324] R13: 0000000000000000 R14: 0000000000000003 R15: dffffc0000000000 [ 525.520636][T10324] ? css_rstat_exit+0x367/0x470 [ 525.525518][T10324] css_free_rwork_fn+0x80/0x12e0 [ 525.530486][T10324] ? rcu_is_watching+0x12/0xc0 [ 525.535269][T10324] process_one_work+0x9cc/0x1b70 [ 525.540241][T10324] ? __pfx_wq_barrier_func+0x10/0x10 [ 525.545542][T10324] ? __pfx_process_one_work+0x10/0x10 [ 525.550944][T10324] ? assign_work+0x1a0/0x250 [ 525.555562][T10324] worker_thread+0x6c8/0xf10 [ 525.560189][T10324] ? __kthread_parkme+0x19e/0x250 [ 525.565235][T10324] ? __pfx_worker_thread+0x10/0x10 [ 525.570369][T10324] kthread+0x3c5/0x780 [ 525.574459][T10324] ? __pfx_kthread+0x10/0x10 [ 525.579071][T10324] ? rcu_is_watching+0x12/0xc0 [ 525.583846][T10324] ? __pfx_kthread+0x10/0x10 [ 525.588458][T10324] ret_from_fork+0x5d4/0x6f0 [ 525.593068][T10324] ? __pfx_kthread+0x10/0x10 [ 525.597678][T10324] ret_from_fork_asm+0x1a/0x30 [ 525.602470][T10324] [ 525.605555][T10324] Kernel Offset: disabled [ 525.609889][T10324] Rebooting in 86400 seconds..