last executing test programs: 1.874334842s ago: executing program 0 (id=27635): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x24000]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f0000000040)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4008040) write(r2, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000005800)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8014) newfstatat(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x4000) setresuid(r4, r4, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r5, 0x6, 0x13, &(0x7f0000000180)=0x100000001, 0x4) 1.775324472s ago: executing program 0 (id=27641): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x0, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r3, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) bind$bt_l2cap(r4, 0x0, 0x0) 1.773819252s ago: executing program 0 (id=27644): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r0, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r0, @ANYRES64], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r0, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r1, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) bind$bt_l2cap(r2, 0x0, 0x0) 1.411142788s ago: executing program 2 (id=27666): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00), 0x0, 0x4) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) sendto$inet(r2, 0x0, 0x0, 0x80, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) setrlimit(0x3, &(0x7f00000000c0)={0xffffffff, 0x2a}) 1.387240391s ago: executing program 1 (id=27667): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, 0x0) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) setrlimit(0x3, &(0x7f00000000c0)={0xffffffff, 0x2a}) 1.318660468s ago: executing program 2 (id=27668): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0xb, 0x84) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff002, 0x0, 0x2000000000032, 0xffffffffffffffff, 0x0) rt_sigprocmask(0x2, &(0x7f0000000040)={[0x40]}, &(0x7f00000000c0), 0x8) 1.318206208s ago: executing program 2 (id=27669): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) socket$inet6_tcp(0xa, 0x1, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r0, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r1 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r1, 0x0, 0x0, 0x805, 0x0, 0x0) sendto$inet(r1, 0x0, 0x0, 0x80, 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r3 = userfaultfd(0x801) ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000000000)={0xaa, 0x280}) ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000100)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x6}) 1.279444432s ago: executing program 2 (id=27670): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) (async) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) socket$inet6_tcp(0xa, 0x1, 0x0) (async) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_clone3(&(0x7f0000000540)={0x1a2140000, &(0x7f0000000100), &(0x7f0000000140), &(0x7f00000001c0), {0x14}, &(0x7f0000000200)=""/220, 0xdc, &(0x7f0000000380)=""/240, &(0x7f0000000480)=[0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff], 0x9, {r1}}, 0x58) (async) syz_clone3(&(0x7f0000000540)={0x1a2140000, &(0x7f0000000100), &(0x7f0000000140)=0x0, &(0x7f00000001c0), {0x14}, &(0x7f0000000200)=""/220, 0xdc, &(0x7f0000000380)=""/240, &(0x7f0000000480)=[0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff], 0x9, {r1}}, 0x58) syz_open_procfs(r4, &(0x7f00000004c0)='syscall\x00') (async) syz_open_procfs(r4, &(0x7f00000004c0)='syscall\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r3, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r5, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) syz_io_uring_setup(0x500, &(0x7f0000000080)={0x0, 0x0, 0x16, 0x0, 0x0, 0x0, 0x0}, 0x0, 0x0) (async) syz_io_uring_setup(0x500, &(0x7f0000000080)={0x0, 0x0, 0x16, 0x0, 0x0, 0x0, 0x0}, 0x0, 0x0) 1.214675658s ago: executing program 2 (id=27671): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x24000]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f0000000040)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4008040) write(r2, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000005800)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8014) newfstatat(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x4000) setresuid(r4, r4, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r5, 0x6, 0x13, &(0x7f0000000180)=0x100000001, 0x4) 878.592822ms ago: executing program 0 (id=27672): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) write(r5, 0x0, 0x0) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) gettid() timer_create(0x3, 0x0, &(0x7f00000002c0)=0x0) timer_gettime(r6, &(0x7f0000000140)) (fail_nth: 1) 482.515252ms ago: executing program 1 (id=27678): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) sendmmsg$inet6(r0, &(0x7f0000000480)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) setgroups(0x0, 0x0) ioctl$BTRFS_IOC_DEV_INFO(r1, 0xd000941e, &(0x7f00000004c0)={0x0, "6df72694b20897fad2232b677c414492"}) r3 = getpid() r4 = syz_pidfd_open(r3, 0x0) setns(r4, 0x24020000) mount$incfs(&(0x7f0000000140)='./file0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000040), 0x2000404, 0x0) utime(&(0x7f0000000080)='./file0/file0\x00', &(0x7f00000000c0)={0x400, 0x3}) 482.222542ms ago: executing program 0 (id=27679): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x24000]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f0000000040)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4008040) write(r2, 0x0, 0x0) newfstatat(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x4000) setresuid(r3, r3, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r4, 0x6, 0x13, &(0x7f0000000180)=0x100000001, 0x4) 472.375523ms ago: executing program 0 (id=27681): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r0, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003780)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, 0x0) sendmmsg$inet6(r4, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) bind$bt_l2cap(r5, 0x0, 0x0) 327.484807ms ago: executing program 2 (id=27686): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, 0x0, 0x0, 0x4) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) setrlimit(0x3, &(0x7f00000000c0)={0xffffffff, 0x2a}) 293.89194ms ago: executing program 3 (id=27687): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) write$UHID_CREATE2(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, 0xffffffffffffffff, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r1 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r1, 0x0, 0x0, 0x805, 0x0, 0x0) sendto$inet(r1, 0x0, 0x0, 0x80, 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r3 = userfaultfd(0x801) ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000000000)={0xaa, 0x280}) ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000100)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x6}) 223.231177ms ago: executing program 3 (id=27688): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) bind$bt_l2cap(r3, 0x0, 0x0) 171.118793ms ago: executing program 1 (id=27689): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x24000]}}, 0x0, 0x8, &(0x7f0000000300)) socket$inet6_tcp(0xa, 0x1, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r0, 0x0, 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r0, 0x0) ioctl$KVM_X86_SETUP_MCE(r0, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r1, &(0x7f0000000040)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4008040) write(r1, 0x0, 0x0) newfstatat(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x4000) setresuid(r2, r2, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r3, 0x6, 0x13, &(0x7f0000000180)=0x100000001, 0x4) 133.185767ms ago: executing program 3 (id=27690): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) sendto$inet(r2, 0x0, 0x0, 0x80, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = userfaultfd(0x801) ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f0000000000)={0xaa, 0x280}) ioctl$UFFDIO_REGISTER(r4, 0xc020aa00, &(0x7f0000000100)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x6}) 132.696856ms ago: executing program 1 (id=27691): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) sendto$inet(r2, 0x0, 0x0, 0x80, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, 0x0, 0x0, 0x4) setrlimit(0x3, &(0x7f00000000c0)={0xffffffff, 0x2a}) 66.593763ms ago: executing program 3 (id=27692): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) sendmmsg$inet6(r0, &(0x7f0000000480)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) setgroups(0x0, 0x0) ioctl$BTRFS_IOC_DEV_INFO(r1, 0xd000941e, &(0x7f00000004c0)={0x0, "6df72694b20897fad2232b677c414492"}) ioctl$BTRFS_IOC_SCRUB(0xffffffffffffffff, 0xc400941b, &(0x7f00000014c0)={r3, 0x7, 0x2, 0x1}) r4 = getpid() r5 = syz_pidfd_open(r4, 0x0) setns(r5, 0x24020000) utime(&(0x7f0000000080)='./file0/file0\x00', &(0x7f00000000c0)={0x400, 0x3}) 66.166393ms ago: executing program 1 (id=27693): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r0, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r4, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) write(r3, 0x0, 0x0) r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) bind$bt_l2cap(r5, 0x0, 0x0) 50.181005ms ago: executing program 3 (id=27694): rt_sigaction(0xd, &(0x7f0000000180)={0x0, 0x44000004, 0x0, {[0x2]}}, 0x0, 0x0, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300)) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r3, &(0x7f0000000340)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r3, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(r3, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r4 = socket(0x28, 0x5, 0x0) bind$vsock_stream(r4, &(0x7f0000000040), 0x10) listen(r4, 0x0) socket(0x2a, 0x800, 0x0) r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x0, 0x0}) close_range(r5, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=@newsa={0x138, 0x10, 0x1, 0xfffffffe, 0x100, {{@in6=@remote, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x1, 0x714, 0x4e23, 0x5, 0x0, 0x0, 0x0, 0x3a}, {@in6=@mcast2, 0x4d4, 0x6c}, @in=@loopback, {0x0, 0x192, 0x6, 0xffff, 0x8251c, 0x2, 0xfffffffffffffff8}, {0xffffffffffffffff, 0x0, 0x1f, 0xfffffffffffffffe}, {0x2, 0xfffffffc, 0x7}, 0x70bd2a, 0x3504, 0xa, 0x1, 0x0, 0x20}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}]}, 0x138}, 0x1, 0x0, 0x0, 0x8801}, 0x0) r6 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3801000018"], 0x138}, 0x1, 0x0, 0x0, 0x8801}, 0x0) 10.395309ms ago: executing program 1 (id=27695): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x24000]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f0000000040)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4008040) write(r2, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000005800)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8014) newfstatat(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x4000) setresuid(r4, r4, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r5, 0x6, 0x13, &(0x7f0000000180)=0x100000001, 0x4) 0s ago: executing program 3 (id=27696): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0xb, 0x84) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff002, 0x0, 0x2000000000032, 0xffffffffffffffff, 0x0) rt_sigprocmask(0x2, &(0x7f0000000040)={[0x40]}, &(0x7f00000000c0), 0x8) kernel console output (not intermixed with test programs): kaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 698.355332][T11667] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 698.355347][T11667] Call Trace: [ 698.355354][T11667] [ 698.355363][T11667] __dump_stack+0x21/0x30 [ 698.355398][T11667] dump_stack_lvl+0x10c/0x190 [ 698.355427][T11667] ? __cfi_dump_stack_lvl+0x10/0x10 [ 698.355457][T11667] ? check_stack_object+0x12c/0x140 [ 698.355479][T11667] dump_stack+0x19/0x20 [ 698.355507][T11667] should_fail_ex+0x3d9/0x530 [ 698.355532][T11667] should_fail+0xf/0x20 [ 698.355552][T11667] should_fail_usercopy+0x1e/0x30 [ 698.355577][T11667] _copy_to_user+0x24/0xa0 [ 698.355607][T11667] simple_read_from_buffer+0xed/0x160 [ 698.355637][T11667] proc_fail_nth_read+0x19e/0x210 [ 698.355678][T11667] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 698.355706][T11667] ? bpf_lsm_file_permission+0xd/0x20 [ 698.355739][T11667] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 698.355768][T11667] vfs_read+0x27d/0xc70 [ 698.355789][T11667] ? __cfi_vfs_read+0x10/0x10 [ 698.355807][T11667] ? __kasan_check_write+0x18/0x20 [ 698.355841][T11667] ? mutex_lock+0x92/0x1c0 [ 698.355861][T11667] ? __cfi_mutex_lock+0x10/0x10 [ 698.355883][T11667] ? __fget_files+0x2c5/0x340 [ 698.355908][T11667] ksys_read+0x141/0x250 [ 698.355928][T11667] ? __cfi_ksys_read+0x10/0x10 [ 698.355947][T11667] ? __kasan_check_read+0x15/0x20 [ 698.355980][T11667] __x64_sys_read+0x7f/0x90 [ 698.356001][T11667] x64_sys_call+0x2638/0x2ee0 [ 698.356034][T11667] do_syscall_64+0x58/0xf0 [ 698.356060][T11667] ? clear_bhb_loop+0x50/0xa0 [ 698.356085][T11667] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 698.356109][T11667] RIP: 0033:0x7ff74a78e0dc [ 698.356128][T11667] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 698.356147][T11667] RSP: 002b:00007ff74b5d3030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 698.356172][T11667] RAX: ffffffffffffffda RBX: 00007ff74a9e5fa0 RCX: 00007ff74a78e0dc [ 698.356189][T11667] RDX: 000000000000000f RSI: 00007ff74b5d30a0 RDI: 0000000000000007 [ 698.356203][T11667] RBP: 00007ff74b5d3090 R08: 0000000000000000 R09: 0000000000000000 [ 698.356219][T11667] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 698.356232][T11667] R13: 00007ff74a9e6038 R14: 00007ff74a9e5fa0 R15: 00007ffc3346c818 [ 698.356251][T11667] [ 698.387337][T11672] overlayfs: failed to resolve './file0': -2 [ 698.620128][T11676] overlayfs: missing 'lowerdir' [ 698.625824][T11679] overlayfs: failed to resolve './file1': -2 [ 698.696139][ T36] audit: type=1400 audit(1763297289.160:213): avc: denied { listen } for pid=11692 comm="syz.2.21591" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 698.721977][T11697] overlayfs: failed to resolve './file1': -2 [ 698.755403][T11703] overlayfs: failed to resolve './file0': -2 [ 698.764547][T11705] overlayfs: failed to resolve './file1': -2 [ 698.869177][T11733] overlayfs: failed to resolve './file0': -2 [ 698.875998][T11736] overlayfs: failed to resolve './file1': -2 [ 698.902338][T11739] overlayfs: failed to resolve './file1': -2 [ 698.978140][ T36] audit: type=1400 audit(1763297289.440:214): avc: denied { create } for pid=11751 comm="syz.1.21617" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=irda_socket permissive=1 [ 699.018807][T11758] overlayfs: missing 'lowerdir' [ 699.077271][ T36] audit: type=1400 audit(1763297289.540:215): avc: denied { bind } for pid=11763 comm="syz.1.21622" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 699.104754][ T36] audit: type=1400 audit(1763297289.570:216): avc: denied { connect } for pid=11763 comm="syz.1.21622" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 699.185036][ T329] bridge_slave_1: left allmulticast mode [ 699.192675][ T329] bridge_slave_1: left promiscuous mode [ 699.204488][ T329] bridge0: port 2(bridge_slave_1) entered disabled state [ 699.220471][ T329] bridge_slave_0: left allmulticast mode [ 699.234362][ T329] bridge_slave_0: left promiscuous mode [ 699.240052][ T329] bridge0: port 1(bridge_slave_0) entered disabled state [ 699.336844][T11793] overlayfs: missing 'lowerdir' [ 699.363242][T11799] FAULT_INJECTION: forcing a failure. [ 699.363242][T11799] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 699.380582][T11799] CPU: 0 UID: 0 PID: 11799 Comm: syz.0.21636 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 699.380621][T11799] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 699.380636][T11799] Call Trace: [ 699.380644][T11799] [ 699.380654][T11799] __dump_stack+0x21/0x30 [ 699.380691][T11799] dump_stack_lvl+0x10c/0x190 [ 699.380721][T11799] ? __cfi_dump_stack_lvl+0x10/0x10 [ 699.380750][T11799] dump_stack+0x19/0x20 [ 699.380777][T11799] should_fail_ex+0x3d9/0x530 [ 699.380800][T11799] should_fail+0xf/0x20 [ 699.380820][T11799] should_fail_usercopy+0x1e/0x30 [ 699.380845][T11799] strncpy_from_user+0x28/0x270 [ 699.380868][T11799] getname_flags+0x102/0x710 [ 699.380890][T11799] ? build_open_flags+0x487/0x600 [ 699.380927][T11799] getname+0x1b/0x30 [ 699.380947][T11799] do_sys_openat2+0xcb/0x1c0 [ 699.380976][T11799] ? fput+0x1a5/0x240 [ 699.381002][T11799] ? do_sys_open+0x100/0x100 [ 699.381029][T11799] ? ksys_write+0x1ef/0x250 [ 699.381049][T11799] ? __cfi_ksys_write+0x10/0x10 [ 699.381071][T11799] __x64_sys_openat+0x13a/0x170 [ 699.381102][T11799] x64_sys_call+0xe69/0x2ee0 [ 699.381136][T11799] do_syscall_64+0x58/0xf0 [ 699.381166][T11799] ? clear_bhb_loop+0x50/0xa0 [ 699.381193][T11799] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 699.381217][T11799] RIP: 0033:0x7ff01558df10 [ 699.381237][T11799] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 69 95 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 bc 95 02 00 8b 44 [ 699.381258][T11799] RSP: 002b:00007ff016366f60 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 699.381284][T11799] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007ff01558df10 [ 699.381301][T11799] RDX: 0000000000000000 RSI: 00007ff01561207e RDI: 00000000ffffff9c [ 699.381318][T11799] RBP: 00007ff01561207e R08: 0000000000000000 R09: 0000000000000000 [ 699.381334][T11799] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 699.381349][T11799] R13: 00007ff0157e6038 R14: 00007ff0157e5fa0 R15: 00007ffc806a0168 [ 699.381370][T11799] [ 699.591290][ T329] veth1_macvtap: left promiscuous mode [ 699.596885][ T329] veth0_vlan: left promiscuous mode [ 699.600046][T11815] overlayfs: missing 'lowerdir' [ 699.659747][T11823] overlayfs: failed to resolve './file0': -2 [ 699.669228][T11817] overlayfs: failed to resolve './file0': -2 [ 699.679635][T11767] bridge0: port 1(bridge_slave_0) entered blocking state [ 699.688997][T11767] bridge0: port 1(bridge_slave_0) entered disabled state [ 699.696170][T11767] bridge_slave_0: entered allmulticast mode [ 699.702883][T11767] bridge_slave_0: entered promiscuous mode [ 699.709768][T11767] bridge0: port 2(bridge_slave_1) entered blocking state [ 699.716886][T11767] bridge0: port 2(bridge_slave_1) entered disabled state [ 699.723978][T11767] bridge_slave_1: entered allmulticast mode [ 699.730413][T11767] bridge_slave_1: entered promiscuous mode [ 699.893681][T11767] bridge0: port 2(bridge_slave_1) entered blocking state [ 699.900813][T11767] bridge0: port 2(bridge_slave_1) entered forwarding state [ 699.908362][T11767] bridge0: port 1(bridge_slave_0) entered blocking state [ 699.911031][T11844] overlayfs: missing 'workdir' [ 699.915516][T11767] bridge0: port 1(bridge_slave_0) entered forwarding state [ 699.957557][T11846] overlayfs: failed to resolve './file0': -2 [ 699.997577][ T13] bridge0: port 1(bridge_slave_0) entered disabled state [ 700.008911][T11852] overlayfs: failed to resolve './file0': -2 [ 700.014871][ T13] bridge0: port 2(bridge_slave_1) entered disabled state [ 700.028052][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 700.035137][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 700.055121][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 700.060982][ T36] audit: type=1400 audit(1763297290.520:217): avc: denied { getopt } for pid=11853 comm="syz.3.21660" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 700.062475][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 700.108405][T11858] overlayfs: failed to resolve './file0': -2 [ 700.112864][T11767] veth0_vlan: entered promiscuous mode [ 700.144258][T11767] veth1_macvtap: entered promiscuous mode [ 700.191946][T11866] overlayfs: failed to resolve './file1': -2 [ 700.256759][T11874] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 700.278619][T11876] overlayfs: missing 'workdir' [ 700.286114][T11874] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 700.337898][T11879] overlayfs: failed to resolve './file0': -2 [ 700.799507][T11908] overlayfs: failed to resolve './file1': -2 [ 701.026679][T11925] overlayfs: missing 'workdir' [ 701.184717][T11939] overlayfs: failed to resolve './file1': -2 [ 701.357204][T11953] overlayfs: missing 'workdir' [ 701.376920][T11955] overlayfs: failed to resolve './file1': -2 [ 701.416114][T11959] overlayfs: failed to resolve './file1': -2 [ 701.647862][T11979] overlayfs: failed to resolve './file0': -2 [ 702.014445][T12006] overlayfs: failed to resolve './file1': -2 [ 702.254815][T12026] overlayfs: failed to resolve './file1': -2 [ 702.723519][T12073] overlayfs: missing 'lowerdir' [ 702.888286][T12091] overlayfs: failed to resolve './file0': -2 [ 703.168485][T12131] overlayfs: missing 'workdir' [ 703.183384][T12133] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 703.225851][T12133] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 703.435634][T12154] overlayfs: failed to resolve './file1': -2 [ 703.459567][T12156] overlayfs: failed to resolve './file0': -2 [ 704.132347][T12215] overlayfs: missing 'lowerdir' [ 704.902617][T12271] overlayfs: missing 'workdir' [ 705.165426][T12289] overlayfs: failed to resolve './file1': -2 [ 705.284918][T12295] overlayfs: missing 'workdir' [ 705.961656][T12355] overlayfs: missing 'workdir' [ 706.011512][T12363] overlayfs: missing 'lowerdir' [ 706.692365][T12415] overlayfs: missing 'workdir' [ 706.735994][T12417] overlayfs: missing 'lowerdir' [ 707.417205][T12451] overlayfs: missing 'workdir' [ 707.927130][T12475] overlayfs: missing 'lowerdir' [ 708.165341][T12499] overlayfs: missing 'workdir' [ 708.444766][T12512] overlayfs: missing 'lowerdir' [ 709.412223][T12530] overlayfs: missing 'workdir' [ 710.335611][T12554] overlayfs: missing 'lowerdir' [ 710.426579][T12564] overlayfs: missing 'lowerdir' [ 710.607046][T12574] overlayfs: missing 'lowerdir' [ 710.891583][T12600] overlayfs: missing 'lowerdir' [ 710.902577][T12602] overlayfs: missing 'workdir' [ 711.080388][T12614] overlayfs: missing 'workdir' [ 711.161605][T12624] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 711.180703][T12624] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 711.322577][T12632] overlayfs: missing 'workdir' [ 711.448231][T12638] overlayfs: missing 'lowerdir' [ 711.780632][T12659] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 711.804564][T12659] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 711.831298][T12661] overlayfs: missing 'lowerdir' [ 712.128705][T12683] overlayfs: missing 'lowerdir' [ 713.515245][T12738] overlayfs: missing 'lowerdir' [ 714.645432][T12776] overlayfs: missing 'lowerdir' [ 715.316989][T12816] overlayfs: missing 'lowerdir' [ 715.575453][T12820] overlayfs: missing 'workdir' [ 715.756755][T12826] overlayfs: missing 'lowerdir' [ 715.887571][T12832] overlayfs: missing 'lowerdir' [ 716.115456][T12856] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 716.144449][T12856] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 716.228477][T12860] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 716.244432][T12860] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 716.890514][T12876] overlayfs: missing 'workdir' [ 717.076297][T12884] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 717.095254][T12884] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 717.129420][T12888] overlayfs: missing 'lowerdir' [ 718.168244][T12908] overlayfs: missing 'workdir' [ 718.424462][T12921] overlayfs: missing 'lowerdir' [ 718.487387][T12931] overlayfs: missing 'lowerdir' [ 718.508869][T12934] overlayfs: missing 'workdir' [ 718.556392][T12940] overlayfs: missing 'workdir' [ 718.601100][T12948] overlayfs: missing 'lowerdir' [ 718.726935][T12967] overlayfs: missing 'workdir' [ 718.753589][T12970] overlayfs: missing 'lowerdir' [ 718.867615][T12988] overlayfs: missing 'workdir' [ 718.891027][T12992] overlayfs: missing 'lowerdir' [ 718.925622][T12996] overlayfs: missing 'lowerdir' [ 719.025752][T13012] overlayfs: missing 'workdir' [ 719.365585][T13046] overlayfs: missing 'lowerdir' [ 719.483276][T13061] overlayfs: missing 'lowerdir' [ 719.551975][T13069] overlayfs: missing 'lowerdir' [ 719.932999][T13098] overlayfs: missing 'lowerdir' [ 720.115330][T13111] overlayfs: missing 'lowerdir' [ 720.428016][T13160] overlayfs: missing 'workdir' [ 720.821253][T13201] overlayfs: missing 'workdir' [ 720.835669][T13202] overlayfs: missing 'lowerdir' [ 720.936743][T13212] overlayfs: missing 'lowerdir' [ 721.197027][T13244] overlayfs: missing 'lowerdir' [ 721.388599][T13265] overlayfs: missing 'lowerdir' [ 721.397558][T13266] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 721.424912][T13266] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 721.478376][T13274] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 721.498883][T13274] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 722.611712][T13303] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 722.622774][T13310] overlayfs: missing 'workdir' [ 722.630687][T13312] overlayfs: missing 'lowerdir' [ 722.740078][T13336] overlayfs: missing 'workdir' [ 722.776077][T13335] overlayfs: missing 'lowerdir' [ 722.882498][T13360] overlayfs: missing 'workdir' [ 722.901425][T13365] overlayfs: missing 'lowerdir' [ 723.039635][T13394] overlayfs: missing 'lowerdir' [ 723.144026][T13412] overlayfs: missing 'workdir' [ 723.951176][ T46] bridge_slave_1: left allmulticast mode [ 723.959697][ T46] bridge_slave_1: left promiscuous mode [ 723.974472][ T46] bridge0: port 2(bridge_slave_1) entered disabled state [ 723.989983][ T46] bridge_slave_0: left allmulticast mode [ 723.997148][ T46] bridge_slave_0: left promiscuous mode [ 724.011786][ T46] bridge0: port 1(bridge_slave_0) entered disabled state [ 724.054907][T13536] overlayfs: missing 'workdir' [ 724.144135][ T46] veth1_macvtap: left promiscuous mode [ 724.152534][ T46] veth0_vlan: left promiscuous mode [ 724.252235][T13523] bridge0: port 1(bridge_slave_0) entered blocking state [ 724.259744][T13523] bridge0: port 1(bridge_slave_0) entered disabled state [ 724.270363][T13523] bridge_slave_0: entered allmulticast mode [ 724.276891][T13523] bridge_slave_0: entered promiscuous mode [ 724.283621][T13523] bridge0: port 2(bridge_slave_1) entered blocking state [ 724.291021][T13523] bridge0: port 2(bridge_slave_1) entered disabled state [ 724.298362][T13523] bridge_slave_1: entered allmulticast mode [ 724.306515][T13523] bridge_slave_1: entered promiscuous mode [ 724.427794][T13523] bridge0: port 2(bridge_slave_1) entered blocking state [ 724.434902][T13523] bridge0: port 2(bridge_slave_1) entered forwarding state [ 724.442210][T13523] bridge0: port 1(bridge_slave_0) entered blocking state [ 724.449313][T13523] bridge0: port 1(bridge_slave_0) entered forwarding state [ 724.477999][ T329] bridge0: port 1(bridge_slave_0) entered disabled state [ 724.495945][ T329] bridge0: port 2(bridge_slave_1) entered disabled state [ 724.513957][ T329] bridge0: port 1(bridge_slave_0) entered blocking state [ 724.521080][ T329] bridge0: port 1(bridge_slave_0) entered forwarding state [ 724.528853][ T329] bridge0: port 2(bridge_slave_1) entered blocking state [ 724.536027][ T329] bridge0: port 2(bridge_slave_1) entered forwarding state [ 724.594687][T13523] veth0_vlan: entered promiscuous mode [ 724.615764][T13523] veth1_macvtap: entered promiscuous mode [ 730.023721][T13898] overlayfs: missing 'lowerdir' [ 735.641453][T14197] FAULT_INJECTION: forcing a failure. [ 735.641453][T14197] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 735.674355][T14197] CPU: 0 UID: 0 PID: 14197 Comm: syz.2.22820 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 735.674394][T14197] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 735.674409][T14197] Call Trace: [ 735.674417][T14197] [ 735.674431][T14197] __dump_stack+0x21/0x30 [ 735.674466][T14197] dump_stack_lvl+0x10c/0x190 [ 735.674497][T14197] ? __cfi_dump_stack_lvl+0x10/0x10 [ 735.674528][T14197] ? kstrtoull+0x13b/0x1e0 [ 735.674548][T14197] dump_stack+0x19/0x20 [ 735.674576][T14197] should_fail_ex+0x3d9/0x530 [ 735.674600][T14197] should_fail+0xf/0x20 [ 735.674620][T14197] should_fail_usercopy+0x1e/0x30 [ 735.674645][T14197] _copy_from_user+0x22/0xb0 [ 735.674672][T14197] ___sys_sendmsg+0x159/0x2a0 [ 735.674706][T14197] ? __sys_sendmsg+0x280/0x280 [ 735.674740][T14197] ? proc_fail_nth_write+0x17e/0x210 [ 735.674770][T14197] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 735.674808][T14197] __x64_sys_sendmsg+0x1eb/0x2c0 [ 735.674840][T14197] ? fput+0x1a5/0x240 [ 735.674875][T14197] ? __cfi___x64_sys_sendmsg+0x10/0x10 [ 735.674908][T14197] ? ksys_write+0x1ef/0x250 [ 735.674931][T14197] ? __kasan_check_read+0x15/0x20 [ 735.674985][T14197] x64_sys_call+0x2a4c/0x2ee0 [ 735.675019][T14197] do_syscall_64+0x58/0xf0 [ 735.675050][T14197] ? clear_bhb_loop+0x50/0xa0 [ 735.675076][T14197] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 735.675114][T14197] RIP: 0033:0x7f171fb8f6c9 [ 735.675133][T14197] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 735.675154][T14197] RSP: 002b:00007f17209ad038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 735.675179][T14197] RAX: ffffffffffffffda RBX: 00007f171fde5fa0 RCX: 00007f171fb8f6c9 [ 735.675197][T14197] RDX: 0000000000000000 RSI: 00002000000004c0 RDI: 0000000000000006 [ 735.675211][T14197] RBP: 00007f17209ad090 R08: 0000000000000000 R09: 0000000000000000 [ 735.675226][T14197] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 735.675240][T14197] R13: 00007f171fde6038 R14: 00007f171fde5fa0 R15: 00007ffe6f0778f8 [ 735.675260][T14197] [ 740.873656][ T36] audit: type=1400 audit(1763297331.330:218): avc: denied { bind } for pid=14514 comm="syz.0.22980" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 745.081906][T14794] overlayfs: failed to resolve './file1': -2 [ 745.374562][T14821] overlayfs: failed to resolve './file1': -2 [ 745.544579][T14835] overlayfs: failed to resolve './file0': -2 [ 746.005223][T14861] overlayfs: failed to resolve './file0': -2 [ 746.050723][T14863] rust_binder: BC_FREEZE_NOTIFICATION_DONE 0000000000000001 not found [ 746.064377][T14863] rust_binder: Write failure EINVAL in pid:934 [ 746.884966][T14888] FAULT_INJECTION: forcing a failure. [ 746.884966][T14888] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 746.913194][T14888] CPU: 0 UID: 0 PID: 14888 Comm: syz.0.23164 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 746.913235][T14888] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 746.913251][T14888] Call Trace: [ 746.913259][T14888] [ 746.913269][T14888] __dump_stack+0x21/0x30 [ 746.913305][T14888] dump_stack_lvl+0x10c/0x190 [ 746.913336][T14888] ? __cfi_dump_stack_lvl+0x10/0x10 [ 746.913368][T14888] ? check_stack_object+0x107/0x140 [ 746.913391][T14888] dump_stack+0x19/0x20 [ 746.913420][T14888] should_fail_ex+0x3d9/0x530 [ 746.913444][T14888] should_fail+0xf/0x20 [ 746.913465][T14888] should_fail_usercopy+0x1e/0x30 [ 746.913490][T14888] _copy_from_user+0x22/0xb0 [ 746.913518][T14888] __sys_bind+0x1de/0x3f0 [ 746.913546][T14888] ? __cfi___sys_bind+0x10/0x10 [ 746.913577][T14888] ? __kasan_check_read+0x15/0x20 [ 746.913611][T14888] __x64_sys_bind+0x7e/0x90 [ 746.913639][T14888] x64_sys_call+0x1ffd/0x2ee0 [ 746.913679][T14888] do_syscall_64+0x58/0xf0 [ 746.913708][T14888] ? clear_bhb_loop+0x50/0xa0 [ 746.913733][T14888] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 746.913758][T14888] RIP: 0033:0x7fb4f498f6c9 [ 746.913777][T14888] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 746.913796][T14888] RSP: 002b:00007fb4f5778038 EFLAGS: 00000246 ORIG_RAX: 0000000000000031 [ 746.913821][T14888] RAX: ffffffffffffffda RBX: 00007fb4f4be5fa0 RCX: 00007fb4f498f6c9 [ 746.913839][T14888] RDX: 000000000000000e RSI: 0000200000000000 RDI: 000000000000000a [ 746.913862][T14888] RBP: 00007fb4f5778090 R08: 0000000000000000 R09: 0000000000000000 [ 746.913877][T14888] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 746.913892][T14888] R13: 00007fb4f4be6038 R14: 00007fb4f4be5fa0 R15: 00007ffe111dacd8 [ 746.913913][T14888] [ 747.224339][T14914] overlayfs: failed to resolve './file0': -2 [ 747.314397][T14926] rust_binder: BC_FREEZE_NOTIFICATION_DONE 0000000000000001 not found [ 747.322705][T14926] rust_binder: Write failure EINVAL in pid:330 [ 748.579401][T15019] overlayfs: failed to resolve './file0': -2 [ 748.926934][T15039] overlayfs: failed to resolve './file0': -2 [ 749.060058][T15049] FAULT_INJECTION: forcing a failure. [ 749.060058][T15049] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 749.087374][T15049] CPU: 1 UID: 0 PID: 15049 Comm: syz.2.23244 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 749.087411][T15049] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 749.087426][T15049] Call Trace: [ 749.087434][T15049] [ 749.087443][T15049] __dump_stack+0x21/0x30 [ 749.087478][T15049] dump_stack_lvl+0x10c/0x190 [ 749.087507][T15049] ? __cfi_dump_stack_lvl+0x10/0x10 [ 749.087539][T15049] dump_stack+0x19/0x20 [ 749.087567][T15049] should_fail_ex+0x3d9/0x530 [ 749.087591][T15049] should_fail+0xf/0x20 [ 749.087611][T15049] should_fail_usercopy+0x1e/0x30 [ 749.087634][T15049] _copy_from_user+0x22/0xb0 [ 749.087661][T15049] get_user_ifreq+0x71/0x180 [ 749.087683][T15049] sock_ioctl+0x6fb/0x7b0 [ 749.087706][T15049] ? __cfi_sock_ioctl+0x10/0x10 [ 749.087756][T15049] ? bpf_lsm_file_ioctl+0xd/0x20 [ 749.087805][T15049] ? security_file_ioctl+0x34/0xd0 [ 749.087832][T15049] ? __cfi_sock_ioctl+0x10/0x10 [ 749.087854][T15049] __se_sys_ioctl+0x135/0x1b0 [ 749.087880][T15049] __x64_sys_ioctl+0x7f/0xa0 [ 749.087905][T15049] x64_sys_call+0x1878/0x2ee0 [ 749.087937][T15049] do_syscall_64+0x58/0xf0 [ 749.087967][T15049] ? clear_bhb_loop+0x50/0xa0 [ 749.087992][T15049] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 749.088017][T15049] RIP: 0033:0x7f171fb8f6c9 [ 749.088036][T15049] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 749.088056][T15049] RSP: 002b:00007f17209ad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 749.088082][T15049] RAX: ffffffffffffffda RBX: 00007f171fde5fa0 RCX: 00007f171fb8f6c9 [ 749.088100][T15049] RDX: 0000200000000440 RSI: 00000000000089f1 RDI: 0000000000000007 [ 749.088116][T15049] RBP: 00007f17209ad090 R08: 0000000000000000 R09: 0000000000000000 [ 749.088131][T15049] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 749.088146][T15049] R13: 00007f171fde6038 R14: 00007f171fde5fa0 R15: 00007ffe6f0778f8 [ 749.088166][T15049] [ 749.530134][T15067] FAULT_INJECTION: forcing a failure. [ 749.530134][T15067] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 749.564374][T15067] CPU: 1 UID: 0 PID: 15067 Comm: syz.2.23252 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 749.564415][T15067] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 749.564430][T15067] Call Trace: [ 749.564439][T15067] [ 749.564448][T15067] __dump_stack+0x21/0x30 [ 749.564485][T15067] dump_stack_lvl+0x10c/0x190 [ 749.564515][T15067] ? __cfi_dump_stack_lvl+0x10/0x10 [ 749.564549][T15067] dump_stack+0x19/0x20 [ 749.564578][T15067] should_fail_ex+0x3d9/0x530 [ 749.564603][T15067] should_fail+0xf/0x20 [ 749.564624][T15067] should_fail_usercopy+0x1e/0x30 [ 749.564649][T15067] _copy_from_user+0x22/0xb0 [ 749.564678][T15067] get_user_ifreq+0x71/0x180 [ 749.564708][T15067] sock_ioctl+0x6fb/0x7b0 [ 749.564732][T15067] ? __cfi_sock_ioctl+0x10/0x10 [ 749.564757][T15067] ? bpf_lsm_file_ioctl+0xd/0x20 [ 749.564788][T15067] ? security_file_ioctl+0x34/0xd0 [ 749.564815][T15067] ? __cfi_sock_ioctl+0x10/0x10 [ 749.564838][T15067] __se_sys_ioctl+0x135/0x1b0 [ 749.564864][T15067] __x64_sys_ioctl+0x7f/0xa0 [ 749.564889][T15067] x64_sys_call+0x1878/0x2ee0 [ 749.564922][T15067] do_syscall_64+0x58/0xf0 [ 749.564952][T15067] ? clear_bhb_loop+0x50/0xa0 [ 749.564978][T15067] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 749.565003][T15067] RIP: 0033:0x7f171fb8f6c9 [ 749.565023][T15067] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 749.565044][T15067] RSP: 002b:00007f17209ad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 749.565069][T15067] RAX: ffffffffffffffda RBX: 00007f171fde5fa0 RCX: 00007f171fb8f6c9 [ 749.565086][T15067] RDX: 0000200000000440 RSI: 00000000000089f1 RDI: 0000000000000007 [ 749.565102][T15067] RBP: 00007f17209ad090 R08: 0000000000000000 R09: 0000000000000000 [ 749.565118][T15067] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 749.565132][T15067] R13: 00007f171fde6038 R14: 00007f171fde5fa0 R15: 00007ffe6f0778f8 [ 749.565153][T15067] [ 750.068713][T15085] overlayfs: failed to resolve './file1': -2 [ 750.316958][T15097] FAULT_INJECTION: forcing a failure. [ 750.316958][T15097] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 750.350351][T15097] CPU: 1 UID: 0 PID: 15097 Comm: syz.0.23268 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 750.350390][T15097] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 750.350406][T15097] Call Trace: [ 750.350414][T15097] [ 750.350423][T15097] __dump_stack+0x21/0x30 [ 750.350460][T15097] dump_stack_lvl+0x10c/0x190 [ 750.350490][T15097] ? __cfi_dump_stack_lvl+0x10/0x10 [ 750.350522][T15097] dump_stack+0x19/0x20 [ 750.350551][T15097] should_fail_ex+0x3d9/0x530 [ 750.350574][T15097] should_fail+0xf/0x20 [ 750.350595][T15097] should_fail_usercopy+0x1e/0x30 [ 750.350620][T15097] _copy_from_user+0x22/0xb0 [ 750.350647][T15097] get_user_ifreq+0x71/0x180 [ 750.350670][T15097] sock_ioctl+0x6fb/0x7b0 [ 750.350701][T15097] ? __cfi_sock_ioctl+0x10/0x10 [ 750.350725][T15097] ? bpf_lsm_file_ioctl+0xd/0x20 [ 750.350756][T15097] ? security_file_ioctl+0x34/0xd0 [ 750.350781][T15097] ? __cfi_sock_ioctl+0x10/0x10 [ 750.350804][T15097] __se_sys_ioctl+0x135/0x1b0 [ 750.350830][T15097] __x64_sys_ioctl+0x7f/0xa0 [ 750.350853][T15097] x64_sys_call+0x1878/0x2ee0 [ 750.350886][T15097] do_syscall_64+0x58/0xf0 [ 750.350914][T15097] ? clear_bhb_loop+0x50/0xa0 [ 750.350940][T15097] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 750.350964][T15097] RIP: 0033:0x7fb4f498f6c9 [ 750.350983][T15097] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 750.351002][T15097] RSP: 002b:00007fb4f5778038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 750.351027][T15097] RAX: ffffffffffffffda RBX: 00007fb4f4be5fa0 RCX: 00007fb4f498f6c9 [ 750.351045][T15097] RDX: 0000200000000440 RSI: 00000000000089f1 RDI: 0000000000000007 [ 750.351061][T15097] RBP: 00007fb4f5778090 R08: 0000000000000000 R09: 0000000000000000 [ 750.351075][T15097] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 750.351090][T15097] R13: 00007fb4f4be6038 R14: 00007fb4f4be5fa0 R15: 00007ffe111dacd8 [ 750.351109][T15097] [ 750.729432][T15108] rust_binder: BC_FREEZE_NOTIFICATION_DONE 0000000000000001 not found [ 750.757603][T15108] rust_binder: Write failure EINVAL in pid:376 [ 751.223575][ T36] audit: type=1400 audit(1763297341.680:219): avc: denied { setopt } for pid=15122 comm="syz.2.23280" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 751.294344][ T36] audit: type=1400 audit(1763297341.740:220): avc: denied { setopt } for pid=15126 comm="syz.2.23282" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 751.374400][T15133] rust_binder: BC_FREEZE_NOTIFICATION_DONE 0000000000000001 not found [ 751.392851][T15133] rust_binder: Write failure EINVAL in pid:818 [ 752.696364][T15202] rust_binder: BC_FREEZE_NOTIFICATION_DONE 0000000000000001 not found [ 752.731316][T15202] rust_binder: Write failure EINVAL in pid:834 [ 753.264517][T15210] overlayfs: failed to resolve './file0': -2 [ 753.455414][T15220] rust_binder: BC_FREEZE_NOTIFICATION_DONE 0000000000000001 not found [ 753.473899][T15220] rust_binder: Write failure EINVAL in pid:1048 [ 753.674636][T15231] FAT-fs (rnullb0): bogus number of reserved sectors [ 753.704408][T15231] FAT-fs (rnullb0): Can't find a valid FAT filesystem [ 753.858454][T15243] overlayfs: failed to resolve './file0': -2 [ 755.010563][T15281] FAULT_INJECTION: forcing a failure. [ 755.010563][T15281] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 755.043956][T15281] CPU: 0 UID: 0 PID: 15281 Comm: syz.3.23356 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 755.043994][T15281] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 755.044009][T15281] Call Trace: [ 755.044017][T15281] [ 755.044028][T15281] __dump_stack+0x21/0x30 [ 755.044065][T15281] dump_stack_lvl+0x10c/0x190 [ 755.044094][T15281] ? __cfi_dump_stack_lvl+0x10/0x10 [ 755.044125][T15281] ? check_stack_object+0x12c/0x140 [ 755.044148][T15281] dump_stack+0x19/0x20 [ 755.044176][T15281] should_fail_ex+0x3d9/0x530 [ 755.044199][T15281] should_fail+0xf/0x20 [ 755.044239][T15281] should_fail_usercopy+0x1e/0x30 [ 755.044264][T15281] _copy_to_user+0x24/0xa0 [ 755.044293][T15281] simple_read_from_buffer+0xed/0x160 [ 755.044328][T15281] proc_fail_nth_read+0x19e/0x210 [ 755.044358][T15281] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 755.044386][T15281] ? l2cap_sock_setsockopt+0x136e/0x1c10 [ 755.044422][T15281] ? bpf_lsm_file_permission+0xd/0x20 [ 755.044454][T15281] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 755.044483][T15281] vfs_read+0x27d/0xc70 [ 755.044502][T15281] ? __cfi_l2cap_sock_setsockopt+0x10/0x10 [ 755.044533][T15281] ? __cfi_vfs_read+0x10/0x10 [ 755.044551][T15281] ? __kasan_check_write+0x18/0x20 [ 755.044584][T15281] ? mutex_lock+0x92/0x1c0 [ 755.044604][T15281] ? __cfi_mutex_lock+0x10/0x10 [ 755.044636][T15281] ? __fget_files+0x2c5/0x340 [ 755.044669][T15281] ksys_read+0x141/0x250 [ 755.044690][T15281] ? __cfi_ksys_read+0x10/0x10 [ 755.044710][T15281] ? __kasan_check_write+0x18/0x20 [ 755.044741][T15281] ? __kasan_check_read+0x15/0x20 [ 755.044774][T15281] __x64_sys_read+0x7f/0x90 [ 755.044795][T15281] x64_sys_call+0x2638/0x2ee0 [ 755.044827][T15281] do_syscall_64+0x58/0xf0 [ 755.044856][T15281] ? clear_bhb_loop+0x50/0xa0 [ 755.044881][T15281] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 755.044905][T15281] RIP: 0033:0x7f083f38e0dc [ 755.044924][T15281] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 755.044944][T15281] RSP: 002b:00007f0840189030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 755.044968][T15281] RAX: ffffffffffffffda RBX: 00007f083f5e5fa0 RCX: 00007f083f38e0dc [ 755.044985][T15281] RDX: 000000000000000f RSI: 00007f08401890a0 RDI: 0000000000000009 [ 755.045000][T15281] RBP: 00007f0840189090 R08: 0000000000000000 R09: 0000000000000000 [ 755.045015][T15281] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 755.045030][T15281] R13: 00007f083f5e6038 R14: 00007f083f5e5fa0 R15: 00007ffdd0660968 [ 755.045050][T15281] [ 755.614988][T15291] rust_binder: BC_FREEZE_NOTIFICATION_DONE 0000000000000001 not found [ 755.662381][T15291] rust_binder: Write failure EINVAL in pid:398 [ 755.705074][ T13] bridge_slave_1: left allmulticast mode [ 755.722290][ T13] bridge_slave_1: left promiscuous mode [ 755.729058][ T13] bridge0: port 2(bridge_slave_1) entered disabled state [ 755.738410][ T13] bridge_slave_0: left allmulticast mode [ 755.744208][ T13] bridge_slave_0: left promiscuous mode [ 755.755330][ T13] bridge0: port 1(bridge_slave_0) entered disabled state [ 755.833328][T15315] rust_binder: BC_FREEZE_NOTIFICATION_DONE 0000000000000001 not found [ 755.845603][T15315] rust_binder: Write failure EINVAL in pid:876 [ 755.888409][ T13] veth1_macvtap: left promiscuous mode [ 755.909112][ T13] veth0_vlan: left promiscuous mode [ 756.078863][T15298] bridge0: port 1(bridge_slave_0) entered blocking state [ 756.094376][T15298] bridge0: port 1(bridge_slave_0) entered disabled state [ 756.105295][T15298] bridge_slave_0: entered allmulticast mode [ 756.111760][T15298] bridge_slave_0: entered promiscuous mode [ 756.118652][T15298] bridge0: port 2(bridge_slave_1) entered blocking state [ 756.125812][T15298] bridge0: port 2(bridge_slave_1) entered disabled state [ 756.136405][T15298] bridge_slave_1: entered allmulticast mode [ 756.142814][T15298] bridge_slave_1: entered promiscuous mode [ 756.282991][T15298] bridge0: port 2(bridge_slave_1) entered blocking state [ 756.290116][T15298] bridge0: port 2(bridge_slave_1) entered forwarding state [ 756.297469][T15298] bridge0: port 1(bridge_slave_0) entered blocking state [ 756.304552][T15298] bridge0: port 1(bridge_slave_0) entered forwarding state [ 756.380702][ T13] bridge0: port 1(bridge_slave_0) entered disabled state [ 756.388532][ T13] bridge0: port 2(bridge_slave_1) entered disabled state [ 756.412330][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 756.419443][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 756.444739][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 756.451844][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 756.509659][T15298] veth0_vlan: entered promiscuous mode [ 756.538074][T15298] veth1_macvtap: entered promiscuous mode [ 757.425690][T15400] FAULT_INJECTION: forcing a failure. [ 757.425690][T15400] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 757.474210][T15400] CPU: 1 UID: 0 PID: 15400 Comm: syz.0.23410 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 757.474252][T15400] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 757.474268][T15400] Call Trace: [ 757.474277][T15400] [ 757.474287][T15400] __dump_stack+0x21/0x30 [ 757.474330][T15400] dump_stack_lvl+0x10c/0x190 [ 757.474359][T15400] ? __cfi_dump_stack_lvl+0x10/0x10 [ 757.474391][T15400] ? vfs_write+0x93e/0xf30 [ 757.474412][T15400] dump_stack+0x19/0x20 [ 757.474441][T15400] should_fail_ex+0x3d9/0x530 [ 757.474464][T15400] should_fail+0xf/0x20 [ 757.474485][T15400] should_fail_usercopy+0x1e/0x30 [ 757.474511][T15400] _copy_from_user+0x22/0xb0 [ 757.474546][T15400] do_sock_getsockopt+0x1d7/0x6d0 [ 757.474581][T15400] ? __cfi_do_sock_getsockopt+0x10/0x10 [ 757.474614][T15400] ? __fget_files+0x2c5/0x340 [ 757.474641][T15400] __x64_sys_getsockopt+0x1d5/0x280 [ 757.474675][T15400] x64_sys_call+0x10db/0x2ee0 [ 757.474708][T15400] do_syscall_64+0x58/0xf0 [ 757.474737][T15400] ? clear_bhb_loop+0x50/0xa0 [ 757.474763][T15400] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 757.474789][T15400] RIP: 0033:0x7fb4f498f6c9 [ 757.474808][T15400] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 757.474830][T15400] RSP: 002b:00007fb4f5778038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 757.474856][T15400] RAX: ffffffffffffffda RBX: 00007fb4f4be5fa0 RCX: 00007fb4f498f6c9 [ 757.474875][T15400] RDX: 0000000000000483 RSI: 0000000000000000 RDI: 0000000000000007 [ 757.474891][T15400] RBP: 00007fb4f5778090 R08: 0000000000000000 R09: 0000000000000000 [ 757.474907][T15400] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 757.474922][T15400] R13: 00007fb4f4be6038 R14: 00007fb4f4be5fa0 R15: 00007ffe111dacd8 [ 757.474943][T15400] [ 758.055993][T15454] overlayfs: failed to resolve './file1': -2 [ 758.383335][T15497] FAULT_INJECTION: forcing a failure. [ 758.383335][T15497] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 758.426949][T15497] CPU: 1 UID: 0 PID: 15497 Comm: syz.2.23458 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 758.426987][T15497] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 758.427003][T15497] Call Trace: [ 758.427011][T15497] [ 758.427021][T15497] __dump_stack+0x21/0x30 [ 758.427059][T15497] dump_stack_lvl+0x10c/0x190 [ 758.427090][T15497] ? __cfi_dump_stack_lvl+0x10/0x10 [ 758.427134][T15497] ? check_stack_object+0x107/0x140 [ 758.427175][T15497] dump_stack+0x19/0x20 [ 758.427228][T15497] should_fail_ex+0x3d9/0x530 [ 758.427259][T15497] should_fail+0xf/0x20 [ 758.427281][T15497] should_fail_usercopy+0x1e/0x30 [ 758.427306][T15497] _copy_from_user+0x22/0xb0 [ 758.427335][T15497] __sys_bind+0x1de/0x3f0 [ 758.427363][T15497] ? putname+0x113/0x150 [ 758.427386][T15497] ? __cfi___sys_bind+0x10/0x10 [ 758.427413][T15497] ? __kasan_check_read+0x15/0x20 [ 758.427451][T15497] ? __kasan_check_read+0x15/0x20 [ 758.427498][T15497] __x64_sys_bind+0x7e/0x90 [ 758.427525][T15497] x64_sys_call+0x1ffd/0x2ee0 [ 758.427558][T15497] do_syscall_64+0x58/0xf0 [ 758.427585][T15497] ? clear_bhb_loop+0x50/0xa0 [ 758.427610][T15497] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 758.427634][T15497] RIP: 0033:0x7f171fb8f6c9 [ 758.427652][T15497] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 758.427672][T15497] RSP: 002b:00007f17209ad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000031 [ 758.427697][T15497] RAX: ffffffffffffffda RBX: 00007f171fde5fa0 RCX: 00007f171fb8f6c9 [ 758.427715][T15497] RDX: 0000000000000010 RSI: 0000200000000080 RDI: 0000000000000007 [ 758.427730][T15497] RBP: 00007f17209ad090 R08: 0000000000000000 R09: 0000000000000000 [ 758.427746][T15497] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 758.427760][T15497] R13: 00007f171fde6038 R14: 00007f171fde5fa0 R15: 00007ffe6f0778f8 [ 758.427781][T15497] [ 759.033030][T15529] rust_binder: BC_FREEZE_NOTIFICATION_DONE 0000000000000001 not found [ 759.057436][T15529] rust_binder: Write failure EINVAL in pid:482 [ 759.218016][T15556] rust_binder: BC_FREEZE_NOTIFICATION_DONE 0000000000000001 not found [ 759.244531][T15556] rust_binder: Write failure EINVAL in pid:492 [ 760.192626][T15696] rust_binder: BC_FREEZE_NOTIFICATION_DONE 0000000000000001 not found [ 760.221702][T15696] rust_binder: Write failure EINVAL in pid:1127 [ 760.432673][T15730] rust_binder: BC_FREEZE_NOTIFICATION_DONE 0000000000000001 not found [ 760.462897][T15730] rust_binder: Write failure EINVAL in pid:987 [ 760.521374][ T36] audit: type=1400 audit(1763297350.980:221): avc: denied { connect } for pid=15741 comm="syz.1.23579" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 760.790128][T15784] rust_binder: BC_FREEZE_NOTIFICATION_DONE 0000000000000001 not found [ 760.810394][T15784] rust_binder: Write failure EINVAL in pid:1003 [ 761.243870][T15866] FAULT_INJECTION: forcing a failure. [ 761.243870][T15866] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 761.263584][T15866] CPU: 0 UID: 0 PID: 15866 Comm: syz.2.23640 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 761.263623][T15866] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 761.263638][T15866] Call Trace: [ 761.263646][T15866] [ 761.263655][T15866] __dump_stack+0x21/0x30 [ 761.263692][T15866] dump_stack_lvl+0x10c/0x190 [ 761.263723][T15866] ? __cfi_dump_stack_lvl+0x10/0x10 [ 761.263755][T15866] ? vfs_write+0x93e/0xf30 [ 761.263778][T15866] dump_stack+0x19/0x20 [ 761.263807][T15866] should_fail_ex+0x3d9/0x530 [ 761.263832][T15866] should_fail+0xf/0x20 [ 761.263853][T15866] should_fail_usercopy+0x1e/0x30 [ 761.263877][T15866] _copy_from_user+0x22/0xb0 [ 761.263902][T15866] do_sock_getsockopt+0x1d7/0x6d0 [ 761.263936][T15866] ? __cfi_do_sock_getsockopt+0x10/0x10 [ 761.263969][T15866] ? __fget_files+0x2c5/0x340 [ 761.263995][T15866] __x64_sys_getsockopt+0x1d5/0x280 [ 761.264029][T15866] x64_sys_call+0x10db/0x2ee0 [ 761.264072][T15866] do_syscall_64+0x58/0xf0 [ 761.264102][T15866] ? clear_bhb_loop+0x50/0xa0 [ 761.264128][T15866] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 761.264153][T15866] RIP: 0033:0x7f171fb8f6c9 [ 761.264173][T15866] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 761.264195][T15866] RSP: 002b:00007f17209ad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 761.264221][T15866] RAX: ffffffffffffffda RBX: 00007f171fde5fa0 RCX: 00007f171fb8f6c9 [ 761.264239][T15866] RDX: 0000000000000483 RSI: 0000000000000000 RDI: 0000000000000008 [ 761.264255][T15866] RBP: 00007f17209ad090 R08: 0000000000000000 R09: 0000000000000000 [ 761.264271][T15866] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 761.264286][T15866] R13: 00007f171fde6038 R14: 00007f171fde5fa0 R15: 00007ffe6f0778f8 [ 761.264311][T15866] [ 763.968270][T16005] overlayfs: option "uuid=on" requires an upper fs, falling back to uuid=null. [ 765.174594][T16085] rust_binder: BC_FREEZE_NOTIFICATION_DONE 0000000000000001 not found [ 765.193290][T16085] rust_binder: Write failure EINVAL in pid:1108 [ 765.575229][T16119] rust_binder: BC_FREEZE_NOTIFICATION_DONE 0000000000000001 not found [ 765.624391][T16119] rust_binder: Write failure EINVAL in pid:1127 [ 765.934638][ T329] bridge_slave_1: left allmulticast mode [ 765.964340][ T329] bridge_slave_1: left promiscuous mode [ 765.979250][ T329] bridge0: port 2(bridge_slave_1) entered disabled state [ 765.994893][ T329] bridge_slave_0: left allmulticast mode [ 766.014344][ T329] bridge_slave_0: left promiscuous mode [ 766.024633][ T329] bridge0: port 1(bridge_slave_0) entered disabled state [ 766.156499][ T329] veth1_macvtap: left promiscuous mode [ 766.162058][ T329] veth0_vlan: left promiscuous mode [ 766.374525][T16137] bridge0: port 1(bridge_slave_0) entered blocking state [ 766.381799][T16137] bridge0: port 1(bridge_slave_0) entered disabled state [ 766.404637][T16137] bridge_slave_0: entered allmulticast mode [ 766.417157][T16137] bridge_slave_0: entered promiscuous mode [ 766.425461][T16137] bridge0: port 2(bridge_slave_1) entered blocking state [ 766.432538][T16137] bridge0: port 2(bridge_slave_1) entered disabled state [ 766.454423][T16137] bridge_slave_1: entered allmulticast mode [ 766.460961][T16137] bridge_slave_1: entered promiscuous mode [ 766.668861][T16137] bridge0: port 2(bridge_slave_1) entered blocking state [ 766.675979][T16137] bridge0: port 2(bridge_slave_1) entered forwarding state [ 766.683320][T16137] bridge0: port 1(bridge_slave_0) entered blocking state [ 766.690415][T16137] bridge0: port 1(bridge_slave_0) entered forwarding state [ 766.757216][ T13] bridge0: port 1(bridge_slave_0) entered disabled state [ 766.770506][ T13] bridge0: port 2(bridge_slave_1) entered disabled state [ 766.787769][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 766.794902][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 766.813427][ T46] bridge0: port 2(bridge_slave_1) entered blocking state [ 766.820572][ T46] bridge0: port 2(bridge_slave_1) entered forwarding state [ 766.885388][T16137] veth0_vlan: entered promiscuous mode [ 766.920057][T16137] veth1_macvtap: entered promiscuous mode [ 768.534826][T16222] rust_binder: BC_FREEZE_NOTIFICATION_DONE 0000000000000001 not found [ 768.554388][T16222] rust_binder: Write failure EINVAL in pid:1165 [ 769.146413][T16252] rust_binder: BC_FREEZE_NOTIFICATION_DONE 0000000000000001 not found [ 769.194373][T16252] rust_binder: Write failure EINVAL in pid:1193 [ 769.505101][T16275] rust_binder: BC_FREEZE_NOTIFICATION_DONE 0000000000000001 not found [ 769.534378][T16275] rust_binder: Write failure EINVAL in pid:1208 [ 769.902547][ T46] bridge_slave_1: left allmulticast mode [ 769.944330][ T46] bridge_slave_1: left promiscuous mode [ 769.954433][ T46] bridge0: port 2(bridge_slave_1) entered disabled state [ 769.984807][ T46] bridge_slave_0: left allmulticast mode [ 769.990608][ T46] bridge_slave_0: left promiscuous mode [ 770.014417][ T46] bridge0: port 1(bridge_slave_0) entered disabled state [ 770.106655][T16279] bridge0: port 1(bridge_slave_0) entered blocking state [ 770.122366][T16279] bridge0: port 1(bridge_slave_0) entered disabled state [ 770.129881][T16279] bridge_slave_0: entered allmulticast mode [ 770.145294][T16279] bridge_slave_0: entered promiscuous mode [ 770.165233][T16279] bridge0: port 2(bridge_slave_1) entered blocking state [ 770.174335][T16279] bridge0: port 2(bridge_slave_1) entered disabled state [ 770.181511][T16279] bridge_slave_1: entered allmulticast mode [ 770.195035][T16279] bridge_slave_1: entered promiscuous mode [ 770.216114][ T46] veth1_macvtap: left promiscuous mode [ 770.221795][ T46] veth0_vlan: left promiscuous mode [ 770.487020][T16279] bridge0: port 2(bridge_slave_1) entered blocking state [ 770.494186][T16279] bridge0: port 2(bridge_slave_1) entered forwarding state [ 770.501548][T16279] bridge0: port 1(bridge_slave_0) entered blocking state [ 770.508634][T16279] bridge0: port 1(bridge_slave_0) entered forwarding state [ 770.540807][ T13] bridge0: port 1(bridge_slave_0) entered disabled state [ 770.548999][ T13] bridge0: port 2(bridge_slave_1) entered disabled state [ 770.577195][ T329] bridge0: port 1(bridge_slave_0) entered blocking state [ 770.584315][ T329] bridge0: port 1(bridge_slave_0) entered forwarding state [ 770.592521][T16318] overlayfs: missing 'lowerdir' [ 770.610079][ T329] bridge0: port 2(bridge_slave_1) entered blocking state [ 770.617285][ T329] bridge0: port 2(bridge_slave_1) entered forwarding state [ 770.675306][T16279] veth0_vlan: entered promiscuous mode [ 770.697565][T16279] veth1_macvtap: entered promiscuous mode [ 770.779011][T16337] overlayfs: missing 'lowerdir' [ 770.859219][T16350] rust_binder: BC_FREEZE_NOTIFICATION_DONE 0000000000000001 not found [ 770.875026][T16350] rust_binder: Write failure EINVAL in pid:188 [ 771.210501][T16401] rust_binder: BC_FREEZE_NOTIFICATION_DONE 0000000000000001 not found [ 771.238639][T16401] rust_binder: Write failure EINVAL in pid:55 [ 771.947089][T16448] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 771.980329][T16448] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 772.274788][T16461] rust_binder: BC_FREEZE_NOTIFICATION_DONE 0000000000000001 not found [ 772.283167][T16461] rust_binder: Write failure EINVAL in pid:61 [ 772.510008][T16487] rust_binder: BC_FREEZE_NOTIFICATION_DONE 0000000000000001 not found [ 772.530104][T16487] rust_binder: Write failure EINVAL in pid:71 [ 774.944864][T16587] rust_binder: BC_FREEZE_NOTIFICATION_DONE 0000000000000001 not found [ 774.964441][T16587] rust_binder: Write failure EINVAL in pid:244 [ 775.942179][T16636] rust_binder: BC_FREEZE_NOTIFICATION_DONE 0000000000000001 not found [ 775.965125][T16636] rust_binder: Write failure EINVAL in pid:69 [ 776.384466][T16672] rust_binder: BC_FREEZE_NOTIFICATION_DONE 0000000000000001 not found [ 776.408654][T16672] rust_binder: Write failure EINVAL in pid:264 [ 776.894715][T16710] rust_binder: BC_FREEZE_NOTIFICATION_DONE 0000000000000001 not found [ 776.918621][T16710] rust_binder: Write failure EINVAL in pid:131 [ 777.348098][T16749] rust_binder: BC_FREEZE_NOTIFICATION_DONE 0000000000000001 not found [ 777.382880][T16749] rust_binder: Write failure EINVAL in pid:148 [ 780.713871][T16905] rust_binder: BC_FREEZE_NOTIFICATION_DONE 0000000000000001 not found [ 780.744381][T16905] rust_binder: Write failure EINVAL in pid:204 [ 783.243132][T17002] rust_binder: BC_FREEZE_NOTIFICATION_DONE 0000000000000001 not found [ 783.274392][T17002] rust_binder: Write failure EINVAL in pid:234 [ 783.393719][T17008] overlayfs: missing 'workdir' [ 783.627811][T17023] rust_binder: BC_FREEZE_NOTIFICATION_DONE 0000000000000001 not found [ 783.645489][T17023] rust_binder: Write failure EINVAL in pid:251 [ 783.944568][T17042] overlayfs: missing 'workdir' [ 784.346273][T17062] rust_binder: BC_FREEZE_NOTIFICATION_DONE 0000000000000001 not found [ 784.364400][T17062] rust_binder: Write failure EINVAL in pid:194 [ 784.398839][T17064] overlayfs: missing 'workdir' [ 800.220727][T17908] FAULT_INJECTION: forcing a failure. [ 800.220727][T17908] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 800.254374][T17908] CPU: 0 UID: 0 PID: 17908 Comm: syz.0.24625 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 800.254413][T17908] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 800.254428][T17908] Call Trace: [ 800.254435][T17908] [ 800.254446][T17908] __dump_stack+0x21/0x30 [ 800.254480][T17908] dump_stack_lvl+0x10c/0x190 [ 800.254511][T17908] ? __cfi_dump_stack_lvl+0x10/0x10 [ 800.254542][T17908] ? vfs_write+0x93e/0xf30 [ 800.254564][T17908] dump_stack+0x19/0x20 [ 800.254593][T17908] should_fail_ex+0x3d9/0x530 [ 800.254618][T17908] should_fail+0xf/0x20 [ 800.254639][T17908] should_fail_usercopy+0x1e/0x30 [ 800.254664][T17908] _copy_from_user+0x22/0xb0 [ 800.254693][T17908] do_sock_getsockopt+0x1d7/0x6d0 [ 800.254728][T17908] ? __cfi_do_sock_getsockopt+0x10/0x10 [ 800.254761][T17908] ? __fget_files+0x2c5/0x340 [ 800.254788][T17908] __x64_sys_getsockopt+0x1d5/0x280 [ 800.254823][T17908] x64_sys_call+0x10db/0x2ee0 [ 800.254855][T17908] do_syscall_64+0x58/0xf0 [ 800.254896][T17908] ? clear_bhb_loop+0x50/0xa0 [ 800.254922][T17908] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 800.254947][T17908] RIP: 0033:0x7fb4f498f6c9 [ 800.254967][T17908] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 800.254988][T17908] RSP: 002b:00007fb4f5778038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 800.255015][T17908] RAX: ffffffffffffffda RBX: 00007fb4f4be5fa0 RCX: 00007fb4f498f6c9 [ 800.255033][T17908] RDX: 0000000000000483 RSI: 0000000000000000 RDI: 0000000000000007 [ 800.255047][T17908] RBP: 00007fb4f5778090 R08: 0000000000000000 R09: 0000000000000000 [ 800.255063][T17908] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 800.255078][T17908] R13: 00007fb4f4be6038 R14: 00007fb4f4be5fa0 R15: 00007ffe111dacd8 [ 800.255099][T17908] [ 801.695587][T18044] FAULT_INJECTION: forcing a failure. [ 801.695587][T18044] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 801.729385][T18044] CPU: 1 UID: 0 PID: 18044 Comm: syz.0.24691 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 801.729427][T18044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 801.729442][T18044] Call Trace: [ 801.729450][T18044] [ 801.729459][T18044] __dump_stack+0x21/0x30 [ 801.729497][T18044] dump_stack_lvl+0x10c/0x190 [ 801.729527][T18044] ? __cfi_dump_stack_lvl+0x10/0x10 [ 801.729559][T18044] ? vfs_write+0x93e/0xf30 [ 801.729581][T18044] dump_stack+0x19/0x20 [ 801.729609][T18044] should_fail_ex+0x3d9/0x530 [ 801.729633][T18044] should_fail+0xf/0x20 [ 801.729653][T18044] should_fail_usercopy+0x1e/0x30 [ 801.729678][T18044] _copy_from_user+0x22/0xb0 [ 801.729705][T18044] do_sock_getsockopt+0x1d7/0x6d0 [ 801.729739][T18044] ? __cfi_do_sock_getsockopt+0x10/0x10 [ 801.729771][T18044] ? __fget_files+0x2c5/0x340 [ 801.729798][T18044] __x64_sys_getsockopt+0x1d5/0x280 [ 801.729833][T18044] x64_sys_call+0x10db/0x2ee0 [ 801.729866][T18044] do_syscall_64+0x58/0xf0 [ 801.729895][T18044] ? clear_bhb_loop+0x50/0xa0 [ 801.729922][T18044] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 801.729945][T18044] RIP: 0033:0x7fb4f498f6c9 [ 801.729962][T18044] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 801.729982][T18044] RSP: 002b:00007fb4f5778038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 801.730006][T18044] RAX: ffffffffffffffda RBX: 00007fb4f4be5fa0 RCX: 00007fb4f498f6c9 [ 801.730031][T18044] RDX: 0000000000000483 RSI: 0000000000000000 RDI: 0000000000000007 [ 801.730047][T18044] RBP: 00007fb4f5778090 R08: 0000000000000000 R09: 0000000000000000 [ 801.730062][T18044] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 801.730078][T18044] R13: 00007fb4f4be6038 R14: 00007fb4f4be5fa0 R15: 00007ffe111dacd8 [ 801.730098][T18044] [ 802.422762][T18136] FAULT_INJECTION: forcing a failure. [ 802.422762][T18136] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 802.454346][T18136] CPU: 0 UID: 0 PID: 18136 Comm: syz.3.24729 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 802.454387][T18136] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 802.454407][T18136] Call Trace: [ 802.454415][T18136] [ 802.454425][T18136] __dump_stack+0x21/0x30 [ 802.454462][T18136] dump_stack_lvl+0x10c/0x190 [ 802.454492][T18136] ? __cfi_dump_stack_lvl+0x10/0x10 [ 802.454524][T18136] ? __kasan_check_write+0x18/0x20 [ 802.454558][T18136] ? check_stack_object+0x107/0x140 [ 802.454581][T18136] dump_stack+0x19/0x20 [ 802.454610][T18136] should_fail_ex+0x3d9/0x530 [ 802.454634][T18136] should_fail+0xf/0x20 [ 802.454655][T18136] should_fail_usercopy+0x1e/0x30 [ 802.454681][T18136] _copy_from_user+0x22/0xb0 [ 802.454718][T18136] __sys_sendto+0x29e/0x6f0 [ 802.454750][T18136] ? __cfi___sys_sendto+0x10/0x10 [ 802.454783][T18136] ? __kasan_check_write+0x18/0x20 [ 802.454819][T18136] ? __cfi_ksys_write+0x10/0x10 [ 802.454842][T18136] __x64_sys_sendto+0xe9/0x100 [ 802.454870][T18136] x64_sys_call+0x2c2c/0x2ee0 [ 802.454902][T18136] do_syscall_64+0x58/0xf0 [ 802.454929][T18136] ? clear_bhb_loop+0x50/0xa0 [ 802.454956][T18136] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 802.454982][T18136] RIP: 0033:0x7f02add8f6c9 [ 802.455001][T18136] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 802.455022][T18136] RSP: 002b:00007f02aecd2038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 802.455047][T18136] RAX: ffffffffffffffda RBX: 00007f02adfe5fa0 RCX: 00007f02add8f6c9 [ 802.455065][T18136] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006 [ 802.455080][T18136] RBP: 00007f02aecd2090 R08: 0000200000000040 R09: 000000000000001c [ 802.455097][T18136] R10: 0000000000004000 R11: 0000000000000246 R12: 0000000000000001 [ 802.455112][T18136] R13: 00007f02adfe6038 R14: 00007f02adfe5fa0 R15: 00007ffe7abb3f58 [ 802.455131][T18136] [ 803.874709][T18222] FAULT_INJECTION: forcing a failure. [ 803.874709][T18222] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 803.889281][T18222] CPU: 0 UID: 0 PID: 18222 Comm: syz.1.24771 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 803.889317][T18222] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 803.889333][T18222] Call Trace: [ 803.889341][T18222] [ 803.889351][T18222] __dump_stack+0x21/0x30 [ 803.889387][T18222] dump_stack_lvl+0x10c/0x190 [ 803.889418][T18222] ? __cfi_dump_stack_lvl+0x10/0x10 [ 803.889451][T18222] ? __kasan_check_write+0x18/0x20 [ 803.889484][T18222] ? check_stack_object+0x107/0x140 [ 803.889506][T18222] dump_stack+0x19/0x20 [ 803.889533][T18222] should_fail_ex+0x3d9/0x530 [ 803.889557][T18222] should_fail+0xf/0x20 [ 803.889577][T18222] should_fail_usercopy+0x1e/0x30 [ 803.889601][T18222] _copy_from_user+0x22/0xb0 [ 803.889628][T18222] __sys_sendto+0x29e/0x6f0 [ 803.889659][T18222] ? __cfi___sys_sendto+0x10/0x10 [ 803.889691][T18222] ? __kasan_check_write+0x18/0x20 [ 803.889726][T18222] ? __cfi_ksys_write+0x10/0x10 [ 803.889748][T18222] __x64_sys_sendto+0xe9/0x100 [ 803.889779][T18222] x64_sys_call+0x2c2c/0x2ee0 [ 803.889811][T18222] do_syscall_64+0x58/0xf0 [ 803.889839][T18222] ? clear_bhb_loop+0x50/0xa0 [ 803.889889][T18222] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 803.889913][T18222] RIP: 0033:0x7f2156d8f6c9 [ 803.889933][T18222] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 803.889953][T18222] RSP: 002b:00007f2157be6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 803.889979][T18222] RAX: ffffffffffffffda RBX: 00007f2156fe5fa0 RCX: 00007f2156d8f6c9 [ 803.889997][T18222] RDX: 0000000000000001 RSI: 0000200000000180 RDI: 0000000000000009 [ 803.890013][T18222] RBP: 00007f2157be6090 R08: 0000200000000140 R09: 0000000000000014 [ 803.890029][T18222] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 803.890042][T18222] R13: 00007f2156fe6038 R14: 00007f2156fe5fa0 R15: 00007ffc481a3788 [ 803.890062][T18222] [ 804.207888][T18261] FAULT_INJECTION: forcing a failure. [ 804.207888][T18261] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 804.245256][T18261] CPU: 0 UID: 0 PID: 18261 Comm: syz.3.24786 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 804.245296][T18261] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 804.245311][T18261] Call Trace: [ 804.245320][T18261] [ 804.245329][T18261] __dump_stack+0x21/0x30 [ 804.245366][T18261] dump_stack_lvl+0x10c/0x190 [ 804.245397][T18261] ? __cfi_dump_stack_lvl+0x10/0x10 [ 804.245428][T18261] ? __kasan_check_write+0x18/0x20 [ 804.245464][T18261] ? check_stack_object+0x107/0x140 [ 804.245487][T18261] dump_stack+0x19/0x20 [ 804.245516][T18261] should_fail_ex+0x3d9/0x530 [ 804.245541][T18261] should_fail+0xf/0x20 [ 804.245562][T18261] should_fail_usercopy+0x1e/0x30 [ 804.245588][T18261] _copy_from_user+0x22/0xb0 [ 804.245617][T18261] __sys_sendto+0x29e/0x6f0 [ 804.245649][T18261] ? __cfi___sys_sendto+0x10/0x10 [ 804.245682][T18261] ? __kasan_check_write+0x18/0x20 [ 804.245718][T18261] ? __cfi_ksys_write+0x10/0x10 [ 804.245740][T18261] __x64_sys_sendto+0xe9/0x100 [ 804.245770][T18261] x64_sys_call+0x2c2c/0x2ee0 [ 804.245803][T18261] do_syscall_64+0x58/0xf0 [ 804.245833][T18261] ? clear_bhb_loop+0x50/0xa0 [ 804.245867][T18261] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 804.245893][T18261] RIP: 0033:0x7f02add8f6c9 [ 804.245913][T18261] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 804.245934][T18261] RSP: 002b:00007f02aecd2038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 804.245959][T18261] RAX: ffffffffffffffda RBX: 00007f02adfe5fa0 RCX: 00007f02add8f6c9 [ 804.245977][T18261] RDX: 0000000000000001 RSI: 0000200000000180 RDI: 000000000000000a [ 804.245991][T18261] RBP: 00007f02aecd2090 R08: 0000200000000140 R09: 0000000000000014 [ 804.246007][T18261] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 804.246022][T18261] R13: 00007f02adfe6038 R14: 00007f02adfe5fa0 R15: 00007ffe7abb3f58 [ 804.246042][T18261] [ 804.304687][ T36] audit: type=1400 audit(1763297394.730:222): avc: denied { nlmsg_read } for pid=18267 comm="syz.0.24789" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1 [ 804.475656][T18275] FAULT_INJECTION: forcing a failure. [ 804.475656][T18275] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 804.518939][T18275] CPU: 0 UID: 0 PID: 18275 Comm: syz.0.24792 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 804.518978][T18275] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 804.518994][T18275] Call Trace: [ 804.519002][T18275] [ 804.519012][T18275] __dump_stack+0x21/0x30 [ 804.519049][T18275] dump_stack_lvl+0x10c/0x190 [ 804.519080][T18275] ? __cfi_dump_stack_lvl+0x10/0x10 [ 804.519111][T18275] ? __kasan_check_write+0x18/0x20 [ 804.519147][T18275] ? check_stack_object+0x107/0x140 [ 804.519171][T18275] dump_stack+0x19/0x20 [ 804.519200][T18275] should_fail_ex+0x3d9/0x530 [ 804.519225][T18275] should_fail+0xf/0x20 [ 804.519246][T18275] should_fail_usercopy+0x1e/0x30 [ 804.519272][T18275] _copy_from_user+0x22/0xb0 [ 804.519301][T18275] __sys_sendto+0x29e/0x6f0 [ 804.519333][T18275] ? __cfi___sys_sendto+0x10/0x10 [ 804.519366][T18275] ? __kasan_check_write+0x18/0x20 [ 804.519402][T18275] ? __cfi_ksys_write+0x10/0x10 [ 804.519425][T18275] __x64_sys_sendto+0xe9/0x100 [ 804.519457][T18275] x64_sys_call+0x2c2c/0x2ee0 [ 804.519491][T18275] do_syscall_64+0x58/0xf0 [ 804.519524][T18275] ? clear_bhb_loop+0x50/0xa0 [ 804.519550][T18275] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 804.519576][T18275] RIP: 0033:0x7fb4f498f6c9 [ 804.519595][T18275] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 804.519625][T18275] RSP: 002b:00007fb4f5778038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 804.519652][T18275] RAX: ffffffffffffffda RBX: 00007fb4f4be5fa0 RCX: 00007fb4f498f6c9 [ 804.519670][T18275] RDX: 0000000000000001 RSI: 0000200000000180 RDI: 0000000000000008 [ 804.519686][T18275] RBP: 00007fb4f5778090 R08: 0000200000000140 R09: 0000000000000014 [ 804.519703][T18275] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 804.519718][T18275] R13: 00007fb4f4be6038 R14: 00007fb4f4be5fa0 R15: 00007ffe111dacd8 [ 804.519738][T18275] [ 804.971894][T18305] FAULT_INJECTION: forcing a failure. [ 804.971894][T18305] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 805.017907][T18305] CPU: 1 UID: 0 PID: 18305 Comm: syz.3.24807 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 805.017949][T18305] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 805.017965][T18305] Call Trace: [ 805.017974][T18305] [ 805.017984][T18305] __dump_stack+0x21/0x30 [ 805.018023][T18305] dump_stack_lvl+0x10c/0x190 [ 805.018055][T18305] ? __cfi_dump_stack_lvl+0x10/0x10 [ 805.018089][T18305] ? __kasan_check_write+0x18/0x20 [ 805.018126][T18305] ? check_stack_object+0x107/0x140 [ 805.018150][T18305] dump_stack+0x19/0x20 [ 805.018181][T18305] should_fail_ex+0x3d9/0x530 [ 805.018206][T18305] should_fail+0xf/0x20 [ 805.018228][T18305] should_fail_usercopy+0x1e/0x30 [ 805.018255][T18305] _copy_from_user+0x22/0xb0 [ 805.018283][T18305] __sys_sendto+0x29e/0x6f0 [ 805.018313][T18305] ? __cfi___sys_sendto+0x10/0x10 [ 805.018346][T18305] ? __kasan_check_write+0x18/0x20 [ 805.018384][T18305] ? __cfi_ksys_write+0x10/0x10 [ 805.018408][T18305] __x64_sys_sendto+0xe9/0x100 [ 805.018439][T18305] x64_sys_call+0x2c2c/0x2ee0 [ 805.018474][T18305] do_syscall_64+0x58/0xf0 [ 805.018505][T18305] ? clear_bhb_loop+0x50/0xa0 [ 805.018531][T18305] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 805.018557][T18305] RIP: 0033:0x7f02add8f6c9 [ 805.018577][T18305] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 805.018619][T18305] RSP: 002b:00007f02aecd2038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 805.018644][T18305] RAX: ffffffffffffffda RBX: 00007f02adfe5fa0 RCX: 00007f02add8f6c9 [ 805.018663][T18305] RDX: 0000000000000001 RSI: 0000200000000180 RDI: 0000000000000009 [ 805.018679][T18305] RBP: 00007f02aecd2090 R08: 0000200000000140 R09: 0000000000000014 [ 805.018695][T18305] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 805.018710][T18305] R13: 00007f02adfe6038 R14: 00007f02adfe5fa0 R15: 00007ffe7abb3f58 [ 805.018731][T18305] [ 806.125235][T18345] netlink: 'syz.1.24826': attribute type 1 has an invalid length. [ 806.144367][T18345] netlink: 'syz.1.24826': attribute type 2 has an invalid length. [ 806.585591][T18355] FAULT_INJECTION: forcing a failure. [ 806.585591][T18355] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 806.614360][T18355] CPU: 0 UID: 0 PID: 18355 Comm: syz.3.24829 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 806.614401][T18355] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 806.614418][T18355] Call Trace: [ 806.614426][T18355] [ 806.614436][T18355] __dump_stack+0x21/0x30 [ 806.614481][T18355] dump_stack_lvl+0x10c/0x190 [ 806.614513][T18355] ? __cfi_dump_stack_lvl+0x10/0x10 [ 806.614545][T18355] ? kstrtoull+0x13b/0x1e0 [ 806.614567][T18355] dump_stack+0x19/0x20 [ 806.614597][T18355] should_fail_ex+0x3d9/0x530 [ 806.614621][T18355] should_fail+0xf/0x20 [ 806.614642][T18355] should_fail_usercopy+0x1e/0x30 [ 806.614680][T18355] _copy_from_user+0x22/0xb0 [ 806.614708][T18355] ___sys_sendmsg+0x159/0x2a0 [ 806.614741][T18355] ? __sys_sendmsg+0x280/0x280 [ 806.614774][T18355] ? proc_fail_nth_write+0x17e/0x210 [ 806.614804][T18355] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 806.614841][T18355] __x64_sys_sendmsg+0x1eb/0x2c0 [ 806.614873][T18355] ? fput+0x1a5/0x240 [ 806.614899][T18355] ? __cfi___x64_sys_sendmsg+0x10/0x10 [ 806.614932][T18355] ? ksys_write+0x1ef/0x250 [ 806.614954][T18355] ? __kasan_check_read+0x15/0x20 [ 806.614990][T18355] x64_sys_call+0x2a4c/0x2ee0 [ 806.615022][T18355] do_syscall_64+0x58/0xf0 [ 806.615051][T18355] ? clear_bhb_loop+0x50/0xa0 [ 806.615076][T18355] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 806.615100][T18355] RIP: 0033:0x7f02add8f6c9 [ 806.615119][T18355] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 806.615140][T18355] RSP: 002b:00007f02aecd2038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 806.615164][T18355] RAX: ffffffffffffffda RBX: 00007f02adfe5fa0 RCX: 00007f02add8f6c9 [ 806.615182][T18355] RDX: 00000000200000c0 RSI: 0000200000000040 RDI: 0000000000000007 [ 806.615196][T18355] RBP: 00007f02aecd2090 R08: 0000000000000000 R09: 0000000000000000 [ 806.615210][T18355] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 806.615223][T18355] R13: 00007f02adfe6038 R14: 00007f02adfe5fa0 R15: 00007ffe7abb3f58 [ 806.615243][T18355] [ 806.838948][T18360] fuseblk: Unknown parameter 'ܽh@ÚÊÞQsîáɶÅ#’"yU(fÙ' [ 807.387217][T18392] FAULT_INJECTION: forcing a failure. [ 807.387217][T18392] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 807.400724][T18392] CPU: 0 UID: 0 PID: 18392 Comm: syz.0.24840 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 807.400765][T18392] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 807.400782][T18392] Call Trace: [ 807.400790][T18392] [ 807.400801][T18392] __dump_stack+0x21/0x30 [ 807.400840][T18392] dump_stack_lvl+0x10c/0x190 [ 807.400871][T18392] ? __cfi_dump_stack_lvl+0x10/0x10 [ 807.400904][T18392] ? __kasan_check_read+0x15/0x20 [ 807.400942][T18392] ? __perf_event_task_sched_in+0x116e/0x1340 [ 807.400975][T18392] dump_stack+0x19/0x20 [ 807.401005][T18392] should_fail_ex+0x3d9/0x530 [ 807.401037][T18392] should_fail+0xf/0x20 [ 807.401060][T18392] should_fail_usercopy+0x1e/0x30 [ 807.401086][T18392] _copy_from_user+0x22/0xb0 [ 807.401116][T18392] do_ipv6_setsockopt+0x321/0x2ec0 [ 807.401149][T18392] ? __cfi_do_ipv6_setsockopt+0x10/0x10 [ 807.401179][T18392] ? __schedule+0x132a/0x1df0 [ 807.401216][T18392] ? __sched_text_start+0x10/0x10 [ 807.401249][T18392] ? avc_has_perm+0x144/0x220 [ 807.401283][T18392] ? __cfi_avc_has_perm+0x10/0x10 [ 807.401318][T18392] ? preempt_schedule_irq+0x9c/0x100 [ 807.401353][T18392] ? __cfi_preempt_schedule_irq+0x10/0x10 [ 807.401388][T18392] ? __cfi_selinux_socket_setsockopt+0x10/0x10 [ 807.401437][T18392] ipv6_setsockopt+0x5d/0x170 [ 807.401467][T18392] udpv6_setsockopt+0xa3/0xc0 [ 807.401490][T18392] sock_common_setsockopt+0xb5/0xd0 [ 807.401518][T18392] ? __cfi_sock_common_setsockopt+0x10/0x10 [ 807.401546][T18392] do_sock_setsockopt+0x26d/0x400 [ 807.401581][T18392] ? __cfi_do_sock_setsockopt+0x10/0x10 [ 807.401619][T18392] __x64_sys_setsockopt+0x1b8/0x250 [ 807.401655][T18392] x64_sys_call+0x2adc/0x2ee0 [ 807.401690][T18392] do_syscall_64+0x58/0xf0 [ 807.401720][T18392] ? clear_bhb_loop+0x50/0xa0 [ 807.401747][T18392] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 807.401773][T18392] RIP: 0033:0x7fb4f498f6c9 [ 807.401794][T18392] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 807.401816][T18392] RSP: 002b:00007fb4f5778038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 807.401842][T18392] RAX: ffffffffffffffda RBX: 00007fb4f4be5fa0 RCX: 00007fb4f498f6c9 [ 807.401862][T18392] RDX: 0000000000000006 RSI: 0000000000000029 RDI: 0000000000000007 [ 807.401883][T18392] RBP: 00007fb4f5778090 R08: 0000000000000010 R09: 0000000000000000 [ 807.401899][T18392] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000001 [ 807.401916][T18392] R13: 00007fb4f4be6038 R14: 00007fb4f4be5fa0 R15: 00007ffe111dacd8 [ 807.401937][T18392] [ 807.813215][T18410] fuseblk: Unknown parameter 'ܽh@ÚÊÞQsîáɶÅ#’"' [ 807.895822][T18414] FAULT_INJECTION: forcing a failure. [ 807.895822][T18414] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 807.921320][T18414] CPU: 0 UID: 0 PID: 18414 Comm: syz.0.24857 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 807.921362][T18414] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 807.921377][T18414] Call Trace: [ 807.921386][T18414] [ 807.921395][T18414] __dump_stack+0x21/0x30 [ 807.921443][T18414] dump_stack_lvl+0x10c/0x190 [ 807.921475][T18414] ? __cfi_dump_stack_lvl+0x10/0x10 [ 807.921506][T18414] ? is_bpf_text_address+0x17b/0x1a0 [ 807.921534][T18414] dump_stack+0x19/0x20 [ 807.921563][T18414] should_fail_ex+0x3d9/0x530 [ 807.921587][T18414] should_fail+0xf/0x20 [ 807.921608][T18414] should_fail_usercopy+0x1e/0x30 [ 807.921634][T18414] _copy_from_user+0x22/0xb0 [ 807.921663][T18414] do_ipv6_setsockopt+0x321/0x2ec0 [ 807.921694][T18414] ? _parse_integer+0x2e/0x40 [ 807.921728][T18414] ? __cfi_do_ipv6_setsockopt+0x10/0x10 [ 807.921757][T18414] ? avc_has_perm_noaudit+0x268/0x360 [ 807.921791][T18414] ? __asan_memcpy+0x5a/0x80 [ 807.921812][T18414] ? avc_has_perm_noaudit+0x286/0x360 [ 807.921846][T18414] ? avc_has_perm+0x144/0x220 [ 807.921878][T18414] ? __cfi_avc_has_perm+0x10/0x10 [ 807.921911][T18414] ? selinux_socket_setsockopt+0x2ea/0x390 [ 807.921948][T18414] ? __cfi_selinux_socket_setsockopt+0x10/0x10 [ 807.921986][T18414] ipv6_setsockopt+0x5d/0x170 [ 807.922015][T18414] udpv6_setsockopt+0xa3/0xc0 [ 807.922037][T18414] sock_common_setsockopt+0xb5/0xd0 [ 807.922063][T18414] ? __cfi_sock_common_setsockopt+0x10/0x10 [ 807.922090][T18414] do_sock_setsockopt+0x26d/0x400 [ 807.922124][T18414] ? __cfi_do_sock_setsockopt+0x10/0x10 [ 807.922160][T18414] __x64_sys_setsockopt+0x1b8/0x250 [ 807.922194][T18414] x64_sys_call+0x2adc/0x2ee0 [ 807.922229][T18414] do_syscall_64+0x58/0xf0 [ 807.922259][T18414] ? clear_bhb_loop+0x50/0xa0 [ 807.922286][T18414] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 807.922311][T18414] RIP: 0033:0x7fb4f498f6c9 [ 807.922331][T18414] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 807.922352][T18414] RSP: 002b:00007fb4f5778038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 807.922378][T18414] RAX: ffffffffffffffda RBX: 00007fb4f4be5fa0 RCX: 00007fb4f498f6c9 [ 807.922397][T18414] RDX: 0000000000000006 RSI: 0000000000000029 RDI: 0000000000000008 [ 807.922419][T18414] RBP: 00007fb4f5778090 R08: 0000000000000010 R09: 0000000000000000 [ 807.922435][T18414] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000001 [ 807.922451][T18414] R13: 00007fb4f4be6038 R14: 00007fb4f4be5fa0 R15: 00007ffe111dacd8 [ 807.922472][T18414] [ 808.388546][T18425] FAULT_INJECTION: forcing a failure. [ 808.388546][T18425] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 808.424373][T18425] CPU: 1 UID: 0 PID: 18425 Comm: syz.1.24863 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 808.424415][T18425] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 808.424431][T18425] Call Trace: [ 808.424439][T18425] [ 808.424449][T18425] __dump_stack+0x21/0x30 [ 808.424486][T18425] dump_stack_lvl+0x10c/0x190 [ 808.424517][T18425] ? __cfi_dump_stack_lvl+0x10/0x10 [ 808.424549][T18425] ? vfs_write+0x93e/0xf30 [ 808.424571][T18425] dump_stack+0x19/0x20 [ 808.424600][T18425] should_fail_ex+0x3d9/0x530 [ 808.424626][T18425] should_fail+0xf/0x20 [ 808.424647][T18425] should_fail_usercopy+0x1e/0x30 [ 808.424672][T18425] _copy_from_user+0x22/0xb0 [ 808.424701][T18425] do_sock_getsockopt+0x1d7/0x6d0 [ 808.424737][T18425] ? __cfi_do_sock_getsockopt+0x10/0x10 [ 808.424770][T18425] ? __fget_files+0x2c5/0x340 [ 808.424796][T18425] __x64_sys_getsockopt+0x1d5/0x280 [ 808.424831][T18425] x64_sys_call+0x10db/0x2ee0 [ 808.424865][T18425] do_syscall_64+0x58/0xf0 [ 808.424894][T18425] ? clear_bhb_loop+0x50/0xa0 [ 808.424921][T18425] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 808.424945][T18425] RIP: 0033:0x7f2156d8f6c9 [ 808.424965][T18425] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 808.424985][T18425] RSP: 002b:00007f2157be6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 808.425011][T18425] RAX: ffffffffffffffda RBX: 00007f2156fe5fa0 RCX: 00007f2156d8f6c9 [ 808.425029][T18425] RDX: 0000000000000483 RSI: 0000000000000000 RDI: 0000000000000008 [ 808.425044][T18425] RBP: 00007f2157be6090 R08: 0000000000000000 R09: 0000000000000000 [ 808.425059][T18425] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 808.425074][T18425] R13: 00007f2156fe6038 R14: 00007f2156fe5fa0 R15: 00007ffc481a3788 [ 808.425095][T18425] [ 809.601627][T18461] FAULT_INJECTION: forcing a failure. [ 809.601627][T18461] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 809.654319][T18461] CPU: 1 UID: 0 PID: 18461 Comm: syz.3.24879 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 809.654368][T18461] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 809.654385][T18461] Call Trace: [ 809.654394][T18461] [ 809.654403][T18461] __dump_stack+0x21/0x30 [ 809.654442][T18461] dump_stack_lvl+0x10c/0x190 [ 809.654471][T18461] ? __cfi_dump_stack_lvl+0x10/0x10 [ 809.654503][T18461] ? is_bpf_text_address+0x17b/0x1a0 [ 809.654530][T18461] dump_stack+0x19/0x20 [ 809.654565][T18461] should_fail_ex+0x3d9/0x530 [ 809.654589][T18461] should_fail+0xf/0x20 [ 809.654610][T18461] should_fail_usercopy+0x1e/0x30 [ 809.654635][T18461] _copy_from_user+0x22/0xb0 [ 809.654664][T18461] do_ipv6_setsockopt+0x321/0x2ec0 [ 809.654694][T18461] ? _parse_integer+0x2e/0x40 [ 809.654727][T18461] ? __cfi_do_ipv6_setsockopt+0x10/0x10 [ 809.654755][T18461] ? avc_has_perm_noaudit+0x268/0x360 [ 809.654788][T18461] ? __asan_memcpy+0x5a/0x80 [ 809.654808][T18461] ? avc_has_perm_noaudit+0x286/0x360 [ 809.654841][T18461] ? avc_has_perm+0x144/0x220 [ 809.654873][T18461] ? __cfi_avc_has_perm+0x10/0x10 [ 809.654907][T18461] ? selinux_socket_setsockopt+0x2ea/0x390 [ 809.654943][T18461] ? __cfi_selinux_socket_setsockopt+0x10/0x10 [ 809.654980][T18461] ipv6_setsockopt+0x5d/0x170 [ 809.655009][T18461] udpv6_setsockopt+0xa3/0xc0 [ 809.655030][T18461] sock_common_setsockopt+0xb5/0xd0 [ 809.655055][T18461] ? __cfi_sock_common_setsockopt+0x10/0x10 [ 809.655082][T18461] do_sock_setsockopt+0x26d/0x400 [ 809.655115][T18461] ? __cfi_do_sock_setsockopt+0x10/0x10 [ 809.655150][T18461] __x64_sys_setsockopt+0x1b8/0x250 [ 809.655184][T18461] x64_sys_call+0x2adc/0x2ee0 [ 809.655217][T18461] do_syscall_64+0x58/0xf0 [ 809.655245][T18461] ? clear_bhb_loop+0x50/0xa0 [ 809.655271][T18461] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 809.655294][T18461] RIP: 0033:0x7f02add8f6c9 [ 809.655313][T18461] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 809.655334][T18461] RSP: 002b:00007f02aecd2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 809.655374][T18461] RAX: ffffffffffffffda RBX: 00007f02adfe5fa0 RCX: 00007f02add8f6c9 [ 809.655392][T18461] RDX: 0000000000000006 RSI: 0000000000000029 RDI: 0000000000000006 [ 809.655407][T18461] RBP: 00007f02aecd2090 R08: 0000000000000010 R09: 0000000000000000 [ 809.655423][T18461] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000001 [ 809.655439][T18461] R13: 00007f02adfe6038 R14: 00007f02adfe5fa0 R15: 00007ffe7abb3f58 [ 809.655459][T18461] [ 810.310813][T18489] FAULT_INJECTION: forcing a failure. [ 810.310813][T18489] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 810.340652][T18489] CPU: 1 UID: 0 PID: 18489 Comm: syz.1.24892 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 810.340693][T18489] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 810.340708][T18489] Call Trace: [ 810.340717][T18489] [ 810.340727][T18489] __dump_stack+0x21/0x30 [ 810.340764][T18489] dump_stack_lvl+0x10c/0x190 [ 810.340796][T18489] ? __cfi_dump_stack_lvl+0x10/0x10 [ 810.340830][T18489] dump_stack+0x19/0x20 [ 810.340859][T18489] should_fail_ex+0x3d9/0x530 [ 810.340884][T18489] should_fail+0xf/0x20 [ 810.340905][T18489] should_fail_usercopy+0x1e/0x30 [ 810.340929][T18489] _copy_from_user+0x22/0xb0 [ 810.340959][T18489] get_user_ifreq+0x71/0x180 [ 810.340982][T18489] sock_ioctl+0x6fb/0x7b0 [ 810.341006][T18489] ? __cfi_sock_ioctl+0x10/0x10 [ 810.341033][T18489] ? bpf_lsm_file_ioctl+0xd/0x20 [ 810.341065][T18489] ? security_file_ioctl+0x34/0xd0 [ 810.341092][T18489] ? __cfi_sock_ioctl+0x10/0x10 [ 810.341114][T18489] __se_sys_ioctl+0x135/0x1b0 [ 810.341141][T18489] __x64_sys_ioctl+0x7f/0xa0 [ 810.341165][T18489] x64_sys_call+0x1878/0x2ee0 [ 810.341199][T18489] do_syscall_64+0x58/0xf0 [ 810.341229][T18489] ? clear_bhb_loop+0x50/0xa0 [ 810.341256][T18489] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 810.341290][T18489] RIP: 0033:0x7f2156d8f6c9 [ 810.341310][T18489] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 810.341331][T18489] RSP: 002b:00007f2157be6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 810.341356][T18489] RAX: ffffffffffffffda RBX: 00007f2156fe5fa0 RCX: 00007f2156d8f6c9 [ 810.341374][T18489] RDX: 0000200000000440 RSI: 00000000000089f1 RDI: 0000000000000007 [ 810.341390][T18489] RBP: 00007f2157be6090 R08: 0000000000000000 R09: 0000000000000000 [ 810.341406][T18489] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 810.341421][T18489] R13: 00007f2156fe6038 R14: 00007f2156fe5fa0 R15: 00007ffc481a3788 [ 810.341441][T18489] [ 810.547511][T18494] process 'syz.3.24894' launched './file1' with NULL argv: empty string added [ 810.566529][ T36] audit: type=1400 audit(1763297401.020:223): avc: denied { execute_no_trans } for pid=18493 comm="syz.3.24894" path="/370/file1" dev="tmpfs" ino=2307 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 810.766725][T18516] FAULT_INJECTION: forcing a failure. [ 810.766725][T18516] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 810.804396][T18516] CPU: 1 UID: 0 PID: 18516 Comm: syz.1.24906 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 810.804437][T18516] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 810.804453][T18516] Call Trace: [ 810.804461][T18516] [ 810.804471][T18516] __dump_stack+0x21/0x30 [ 810.804508][T18516] dump_stack_lvl+0x10c/0x190 [ 810.804539][T18516] ? __cfi_dump_stack_lvl+0x10/0x10 [ 810.804578][T18516] ? mutex_unlock+0x8b/0x240 [ 810.804601][T18516] ? __cfi_mutex_unlock+0x10/0x10 [ 810.804623][T18516] ? __fget_files+0x2c5/0x340 [ 810.804648][T18516] dump_stack+0x19/0x20 [ 810.804676][T18516] should_fail_ex+0x3d9/0x530 [ 810.804700][T18516] should_fail+0xf/0x20 [ 810.804722][T18516] should_fail_usercopy+0x1e/0x30 [ 810.804746][T18516] _copy_from_user+0x22/0xb0 [ 810.804773][T18516] __x64_sys_setrlimit+0xc5/0x140 [ 810.804806][T18516] ? __cfi___x64_sys_setrlimit+0x10/0x10 [ 810.804840][T18516] ? __kasan_check_read+0x15/0x20 [ 810.804876][T18516] x64_sys_call+0x2c38/0x2ee0 [ 810.804910][T18516] do_syscall_64+0x58/0xf0 [ 810.804937][T18516] ? clear_bhb_loop+0x50/0xa0 [ 810.804963][T18516] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 810.804987][T18516] RIP: 0033:0x7f2156d8f6c9 [ 810.805007][T18516] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 810.805028][T18516] RSP: 002b:00007f2157be6038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a0 [ 810.805055][T18516] RAX: ffffffffffffffda RBX: 00007f2156fe5fa0 RCX: 00007f2156d8f6c9 [ 810.805073][T18516] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000000 [ 810.805089][T18516] RBP: 00007f2157be6090 R08: 0000000000000000 R09: 0000000000000000 [ 810.805105][T18516] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 810.805120][T18516] R13: 00007f2156fe6038 R14: 00007f2156fe5fa0 R15: 00007ffc481a3788 [ 810.805141][T18516] [ 811.021702][T18531] FAULT_INJECTION: forcing a failure. [ 811.021702][T18531] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 811.096824][T18531] CPU: 0 UID: 0 PID: 18531 Comm: syz.3.24912 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 811.096874][T18531] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 811.096890][T18531] Call Trace: [ 811.096899][T18531] [ 811.096909][T18531] __dump_stack+0x21/0x30 [ 811.096946][T18531] dump_stack_lvl+0x10c/0x190 [ 811.096977][T18531] ? __cfi_dump_stack_lvl+0x10/0x10 [ 811.097012][T18531] dump_stack+0x19/0x20 [ 811.097042][T18531] should_fail_ex+0x3d9/0x530 [ 811.097068][T18531] should_fail+0xf/0x20 [ 811.097090][T18531] should_fail_usercopy+0x1e/0x30 [ 811.097116][T18531] _copy_to_user+0x24/0xa0 [ 811.097145][T18531] simple_read_from_buffer+0xed/0x160 [ 811.097176][T18531] proc_fail_nth_read+0x19e/0x210 [ 811.097207][T18531] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 811.097238][T18531] ? l2cap_sock_setsockopt+0x136e/0x1c10 [ 811.097275][T18531] ? bpf_lsm_file_permission+0xd/0x20 [ 811.097319][T18531] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 811.097349][T18531] vfs_read+0x27d/0xc70 [ 811.097371][T18531] ? __cfi_l2cap_sock_setsockopt+0x10/0x10 [ 811.097406][T18531] ? __cfi_vfs_read+0x10/0x10 [ 811.097426][T18531] ? __kasan_check_write+0x18/0x20 [ 811.097460][T18531] ? mutex_lock+0x92/0x1c0 [ 811.097481][T18531] ? __cfi_mutex_lock+0x10/0x10 [ 811.097503][T18531] ? __fget_files+0x2c5/0x340 [ 811.097530][T18531] ksys_read+0x141/0x250 [ 811.097552][T18531] ? __cfi_ksys_read+0x10/0x10 [ 811.097572][T18531] ? __kasan_check_write+0x18/0x20 [ 811.097607][T18531] ? __kasan_check_read+0x15/0x20 [ 811.097641][T18531] __x64_sys_read+0x7f/0x90 [ 811.097662][T18531] x64_sys_call+0x2638/0x2ee0 [ 811.097696][T18531] do_syscall_64+0x58/0xf0 [ 811.097726][T18531] ? clear_bhb_loop+0x50/0xa0 [ 811.097752][T18531] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 811.097777][T18531] RIP: 0033:0x7f02add8e0dc [ 811.097797][T18531] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 811.097818][T18531] RSP: 002b:00007f02aecd2030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 811.097843][T18531] RAX: ffffffffffffffda RBX: 00007f02adfe5fa0 RCX: 00007f02add8e0dc [ 811.097862][T18531] RDX: 000000000000000f RSI: 00007f02aecd20a0 RDI: 0000000000000006 [ 811.097878][T18531] RBP: 00007f02aecd2090 R08: 0000000000000000 R09: 0000000000000000 [ 811.097894][T18531] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 811.097909][T18531] R13: 00007f02adfe6038 R14: 00007f02adfe5fa0 R15: 00007ffe7abb3f58 [ 811.097930][T18531] [ 812.441738][T18572] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 812.606131][ T36] audit: type=1400 audit(1763297403.070:224): avc: denied { name_bind } for pid=18587 comm="syz.1.24937" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=udp_socket permissive=1 [ 812.631249][T18588] syz.1.24937 uses obsolete (PF_INET,SOCK_PACKET) [ 813.036035][T18609] FAULT_INJECTION: forcing a failure. [ 813.036035][T18609] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 813.064363][T18609] CPU: 1 UID: 0 PID: 18609 Comm: syz.0.24948 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 813.064404][T18609] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 813.064420][T18609] Call Trace: [ 813.064429][T18609] [ 813.064438][T18609] __dump_stack+0x21/0x30 [ 813.064477][T18609] dump_stack_lvl+0x10c/0x190 [ 813.064509][T18609] ? __cfi_dump_stack_lvl+0x10/0x10 [ 813.064544][T18609] dump_stack+0x19/0x20 [ 813.064574][T18609] should_fail_ex+0x3d9/0x530 [ 813.064600][T18609] should_fail+0xf/0x20 [ 813.064622][T18609] should_fail_usercopy+0x1e/0x30 [ 813.064649][T18609] _copy_from_user+0x22/0xb0 [ 813.064679][T18609] __x64_sys_rt_sigaction+0x152/0x270 [ 813.064705][T18609] ? __cfi___x64_sys_rt_sigaction+0x10/0x10 [ 813.064732][T18609] ? __kasan_check_read+0x15/0x20 [ 813.064770][T18609] x64_sys_call+0x1bed/0x2ee0 [ 813.064806][T18609] do_syscall_64+0x58/0xf0 [ 813.064837][T18609] ? clear_bhb_loop+0x50/0xa0 [ 813.064864][T18609] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 813.064889][T18609] RIP: 0033:0x7fb4f498f6c9 [ 813.064910][T18609] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 813.064932][T18609] RSP: 002b:00007fb4f5778038 EFLAGS: 00000246 ORIG_RAX: 000000000000000d [ 813.064958][T18609] RAX: ffffffffffffffda RBX: 00007fb4f4be5fa0 RCX: 00007fb4f498f6c9 [ 813.064977][T18609] RDX: 0000000000000000 RSI: 0000200000000180 RDI: 000000000000000d [ 813.064994][T18609] RBP: 00007fb4f5778090 R08: 0000200000000300 R09: 0000000000000000 [ 813.065011][T18609] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000001 [ 813.065027][T18609] R13: 00007fb4f4be6038 R14: 00007fb4f4be5fa0 R15: 00007ffe111dacd8 [ 813.065049][T18609] [ 814.493682][T18669] bridge0: port 1(bridge_slave_0) entered blocking state [ 814.514363][T18669] bridge0: port 1(bridge_slave_0) entered disabled state [ 814.521507][T18669] bridge_slave_0: entered allmulticast mode [ 814.535297][T18669] bridge_slave_0: entered promiscuous mode [ 814.542015][T18669] bridge0: port 2(bridge_slave_1) entered blocking state [ 814.549472][T18669] bridge0: port 2(bridge_slave_1) entered disabled state [ 814.556783][T18669] bridge_slave_1: entered allmulticast mode [ 814.563664][T18669] bridge_slave_1: entered promiscuous mode [ 814.628982][T24445] bridge_slave_1: left allmulticast mode [ 814.642352][T24445] bridge_slave_1: left promiscuous mode [ 814.648365][T24445] bridge0: port 2(bridge_slave_1) entered disabled state [ 814.663078][T24445] bridge_slave_0: left allmulticast mode [ 814.670164][T24445] bridge_slave_0: left promiscuous mode [ 814.676774][T24445] bridge0: port 1(bridge_slave_0) entered disabled state [ 814.827598][ T36] audit: type=1400 audit(1763297405.290:225): avc: denied { bind } for pid=18691 comm="syz.3.24985" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 814.829114][T18669] bridge0: port 2(bridge_slave_1) entered blocking state [ 814.854407][T18669] bridge0: port 2(bridge_slave_1) entered forwarding state [ 814.861746][T18669] bridge0: port 1(bridge_slave_0) entered blocking state [ 814.868846][T18669] bridge0: port 1(bridge_slave_0) entered forwarding state [ 814.880154][T24445] veth1_macvtap: left promiscuous mode [ 814.886098][T24445] veth0_vlan: left promiscuous mode [ 815.002791][ T46] bridge0: port 1(bridge_slave_0) entered disabled state [ 815.012610][ T46] bridge0: port 2(bridge_slave_1) entered disabled state [ 815.027297][ T46] bridge0: port 1(bridge_slave_0) entered blocking state [ 815.034408][ T46] bridge0: port 1(bridge_slave_0) entered forwarding state [ 815.058790][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 815.065921][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 815.118852][T18669] veth0_vlan: entered promiscuous mode [ 815.141629][T18669] veth1_macvtap: entered promiscuous mode [ 815.304085][T18737] FAULT_INJECTION: forcing a failure. [ 815.304085][T18737] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 815.322645][T18737] CPU: 1 UID: 0 PID: 18737 Comm: syz.1.25001 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 815.322685][T18737] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 815.322700][T18737] Call Trace: [ 815.322709][T18737] [ 815.322718][T18737] __dump_stack+0x21/0x30 [ 815.322756][T18737] dump_stack_lvl+0x10c/0x190 [ 815.322786][T18737] ? __cfi_dump_stack_lvl+0x10/0x10 [ 815.322818][T18737] ? kstrtoull+0x13b/0x1e0 [ 815.322839][T18737] dump_stack+0x19/0x20 [ 815.322867][T18737] should_fail_ex+0x3d9/0x530 [ 815.322890][T18737] should_fail+0xf/0x20 [ 815.322910][T18737] should_fail_usercopy+0x1e/0x30 [ 815.322935][T18737] _copy_from_user+0x22/0xb0 [ 815.322964][T18737] ___sys_sendmsg+0x159/0x2a0 [ 815.323000][T18737] ? __sys_sendmsg+0x280/0x280 [ 815.323044][T18737] ? proc_fail_nth_write+0x17e/0x210 [ 815.323075][T18737] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 815.323112][T18737] __x64_sys_sendmsg+0x1eb/0x2c0 [ 815.323145][T18737] ? fput+0x1a5/0x240 [ 815.323172][T18737] ? __cfi___x64_sys_sendmsg+0x10/0x10 [ 815.323204][T18737] ? ksys_write+0x1ef/0x250 [ 815.323227][T18737] ? __kasan_check_read+0x15/0x20 [ 815.323263][T18737] x64_sys_call+0x2a4c/0x2ee0 [ 815.323298][T18737] do_syscall_64+0x58/0xf0 [ 815.323329][T18737] ? clear_bhb_loop+0x50/0xa0 [ 815.323354][T18737] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 815.323378][T18737] RIP: 0033:0x7f2156d8f6c9 [ 815.323396][T18737] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 815.323417][T18737] RSP: 002b:00007f2157be6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 815.323442][T18737] RAX: ffffffffffffffda RBX: 00007f2156fe5fa0 RCX: 00007f2156d8f6c9 [ 815.323461][T18737] RDX: 0000000000000000 RSI: 00002000000004c0 RDI: 0000000000000006 [ 815.323476][T18737] RBP: 00007f2157be6090 R08: 0000000000000000 R09: 0000000000000000 [ 815.323491][T18737] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 815.323505][T18737] R13: 00007f2156fe6038 R14: 00007f2156fe5fa0 R15: 00007ffc481a3788 [ 815.323525][T18737] [ 815.783496][T18759] FAULT_INJECTION: forcing a failure. [ 815.783496][T18759] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 815.826226][T18759] CPU: 1 UID: 0 PID: 18759 Comm: syz.1.25012 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 815.826270][T18759] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 815.826286][T18759] Call Trace: [ 815.826294][T18759] [ 815.826304][T18759] __dump_stack+0x21/0x30 [ 815.826340][T18759] dump_stack_lvl+0x10c/0x190 [ 815.826371][T18759] ? __cfi_dump_stack_lvl+0x10/0x10 [ 815.826402][T18759] ? mutex_unlock+0x8b/0x240 [ 815.826423][T18759] ? __cfi_mutex_unlock+0x10/0x10 [ 815.826443][T18759] ? __fget_files+0x2c5/0x340 [ 815.826469][T18759] dump_stack+0x19/0x20 [ 815.826497][T18759] should_fail_ex+0x3d9/0x530 [ 815.826522][T18759] should_fail+0xf/0x20 [ 815.826543][T18759] should_fail_usercopy+0x1e/0x30 [ 815.826569][T18759] _copy_from_user+0x22/0xb0 [ 815.826596][T18759] __x64_sys_setrlimit+0xc5/0x140 [ 815.826631][T18759] ? __cfi___x64_sys_setrlimit+0x10/0x10 [ 815.826664][T18759] ? __kasan_check_read+0x15/0x20 [ 815.826700][T18759] x64_sys_call+0x2c38/0x2ee0 [ 815.826733][T18759] do_syscall_64+0x58/0xf0 [ 815.826762][T18759] ? clear_bhb_loop+0x50/0xa0 [ 815.826787][T18759] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 815.826812][T18759] RIP: 0033:0x7f2156d8f6c9 [ 815.826831][T18759] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 815.826852][T18759] RSP: 002b:00007f2157be6038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a0 [ 815.826878][T18759] RAX: ffffffffffffffda RBX: 00007f2156fe5fa0 RCX: 00007f2156d8f6c9 [ 815.826896][T18759] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000000 [ 815.826911][T18759] RBP: 00007f2157be6090 R08: 0000000000000000 R09: 0000000000000000 [ 815.826928][T18759] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 815.826942][T18759] R13: 00007f2156fe6038 R14: 00007f2156fe5fa0 R15: 00007ffc481a3788 [ 815.826963][T18759] [ 817.456410][T18813] FAULT_INJECTION: forcing a failure. [ 817.456410][T18813] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 817.485233][T18813] CPU: 1 UID: 0 PID: 18813 Comm: syz.2.25038 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 817.485274][T18813] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 817.485290][T18813] Call Trace: [ 817.485299][T18813] [ 817.485308][T18813] __dump_stack+0x21/0x30 [ 817.485346][T18813] dump_stack_lvl+0x10c/0x190 [ 817.485378][T18813] ? __cfi_dump_stack_lvl+0x10/0x10 [ 817.485410][T18813] ? check_stack_object+0x12c/0x140 [ 817.485434][T18813] dump_stack+0x19/0x20 [ 817.485464][T18813] should_fail_ex+0x3d9/0x530 [ 817.485489][T18813] should_fail+0xf/0x20 [ 817.485510][T18813] should_fail_usercopy+0x1e/0x30 [ 817.485536][T18813] _copy_to_user+0x24/0xa0 [ 817.485564][T18813] simple_read_from_buffer+0xed/0x160 [ 817.485592][T18813] proc_fail_nth_read+0x19e/0x210 [ 817.485622][T18813] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 817.485654][T18813] ? bpf_lsm_file_permission+0xd/0x20 [ 817.485686][T18813] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 817.485717][T18813] vfs_read+0x27d/0xc70 [ 817.485739][T18813] ? __cfi_vfs_read+0x10/0x10 [ 817.485758][T18813] ? __kasan_check_write+0x18/0x20 [ 817.485794][T18813] ? mutex_lock+0x92/0x1c0 [ 817.485815][T18813] ? __cfi_mutex_lock+0x10/0x10 [ 817.485845][T18813] ? __fget_files+0x2c5/0x340 [ 817.485872][T18813] ksys_read+0x141/0x250 [ 817.485893][T18813] ? __cfi_ksys_read+0x10/0x10 [ 817.485914][T18813] ? __kasan_check_read+0x15/0x20 [ 817.485949][T18813] __x64_sys_read+0x7f/0x90 [ 817.485971][T18813] x64_sys_call+0x2638/0x2ee0 [ 817.486005][T18813] do_syscall_64+0x58/0xf0 [ 817.486034][T18813] ? clear_bhb_loop+0x50/0xa0 [ 817.486060][T18813] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 817.486086][T18813] RIP: 0033:0x7fbe1498e0dc [ 817.486107][T18813] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 817.486127][T18813] RSP: 002b:00007fbe157ac030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 817.486154][T18813] RAX: ffffffffffffffda RBX: 00007fbe14be5fa0 RCX: 00007fbe1498e0dc [ 817.486171][T18813] RDX: 000000000000000f RSI: 00007fbe157ac0a0 RDI: 0000000000000008 [ 817.486186][T18813] RBP: 00007fbe157ac090 R08: 0000000000000000 R09: 0000000000000000 [ 817.486202][T18813] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000001 [ 817.486217][T18813] R13: 00007fbe14be6038 R14: 00007fbe14be5fa0 R15: 00007ffc7b795a98 [ 817.486237][T18813] [ 817.865225][T18833] FAULT_INJECTION: forcing a failure. [ 817.865225][T18833] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 817.888617][T18833] CPU: 0 UID: 0 PID: 18833 Comm: syz.2.25046 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 817.888653][T18833] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 817.888670][T18833] Call Trace: [ 817.888678][T18833] [ 817.888688][T18833] __dump_stack+0x21/0x30 [ 817.888726][T18833] dump_stack_lvl+0x10c/0x190 [ 817.888758][T18833] ? __cfi_dump_stack_lvl+0x10/0x10 [ 817.888789][T18833] ? is_bpf_text_address+0x17b/0x1a0 [ 817.888817][T18833] dump_stack+0x19/0x20 [ 817.888846][T18833] should_fail_ex+0x3d9/0x530 [ 817.888871][T18833] should_fail+0xf/0x20 [ 817.888893][T18833] should_fail_usercopy+0x1e/0x30 [ 817.888918][T18833] _copy_from_user+0x22/0xb0 [ 817.888948][T18833] do_ipv6_setsockopt+0x321/0x2ec0 [ 817.888979][T18833] ? _parse_integer+0x2e/0x40 [ 817.889013][T18833] ? __cfi_do_ipv6_setsockopt+0x10/0x10 [ 817.889042][T18833] ? avc_has_perm_noaudit+0x268/0x360 [ 817.889084][T18833] ? __asan_memcpy+0x5a/0x80 [ 817.889105][T18833] ? avc_has_perm_noaudit+0x286/0x360 [ 817.889139][T18833] ? avc_has_perm+0x144/0x220 [ 817.889171][T18833] ? __cfi_avc_has_perm+0x10/0x10 [ 817.889205][T18833] ? selinux_socket_setsockopt+0x2ea/0x390 [ 817.889242][T18833] ? __cfi_selinux_socket_setsockopt+0x10/0x10 [ 817.889281][T18833] ipv6_setsockopt+0x5d/0x170 [ 817.889309][T18833] udpv6_setsockopt+0xa3/0xc0 [ 817.889332][T18833] sock_common_setsockopt+0xb5/0xd0 [ 817.889358][T18833] ? __cfi_sock_common_setsockopt+0x10/0x10 [ 817.889384][T18833] do_sock_setsockopt+0x26d/0x400 [ 817.889418][T18833] ? __cfi_do_sock_setsockopt+0x10/0x10 [ 817.889455][T18833] __x64_sys_setsockopt+0x1b8/0x250 [ 817.889489][T18833] x64_sys_call+0x2adc/0x2ee0 [ 817.889523][T18833] do_syscall_64+0x58/0xf0 [ 817.889553][T18833] ? clear_bhb_loop+0x50/0xa0 [ 817.889579][T18833] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 817.889604][T18833] RIP: 0033:0x7fbe1498f6c9 [ 817.889624][T18833] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 817.889658][T18833] RSP: 002b:00007fbe157ac038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 817.889684][T18833] RAX: ffffffffffffffda RBX: 00007fbe14be5fa0 RCX: 00007fbe1498f6c9 [ 817.889702][T18833] RDX: 0000000000000006 RSI: 0000000000000029 RDI: 0000000000000006 [ 817.889716][T18833] RBP: 00007fbe157ac090 R08: 0000000000000010 R09: 0000000000000000 [ 817.889732][T18833] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000001 [ 817.889747][T18833] R13: 00007fbe14be6038 R14: 00007fbe14be5fa0 R15: 00007ffc7b795a98 [ 817.889767][T18833] [ 818.835606][T18886] FAULT_INJECTION: forcing a failure. [ 818.835606][T18886] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 818.869093][T18886] CPU: 0 UID: 0 PID: 18886 Comm: syz.1.25071 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 818.869137][T18886] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 818.869153][T18886] Call Trace: [ 818.869162][T18886] [ 818.869173][T18886] __dump_stack+0x21/0x30 [ 818.869212][T18886] dump_stack_lvl+0x10c/0x190 [ 818.869245][T18886] ? __cfi_dump_stack_lvl+0x10/0x10 [ 818.869279][T18886] ? mutex_unlock+0x8b/0x240 [ 818.869302][T18886] ? __cfi_mutex_unlock+0x10/0x10 [ 818.869324][T18886] ? __fget_files+0x2c5/0x340 [ 818.869351][T18886] dump_stack+0x19/0x20 [ 818.869381][T18886] should_fail_ex+0x3d9/0x530 [ 818.869407][T18886] should_fail+0xf/0x20 [ 818.869430][T18886] should_fail_usercopy+0x1e/0x30 [ 818.869458][T18886] _copy_from_user+0x22/0xb0 [ 818.869489][T18886] __x64_sys_setrlimit+0xc5/0x140 [ 818.869526][T18886] ? __cfi___x64_sys_setrlimit+0x10/0x10 [ 818.869563][T18886] ? __kasan_check_read+0x15/0x20 [ 818.869598][T18886] x64_sys_call+0x2c38/0x2ee0 [ 818.869634][T18886] do_syscall_64+0x58/0xf0 [ 818.869664][T18886] ? clear_bhb_loop+0x50/0xa0 [ 818.869691][T18886] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 818.869717][T18886] RIP: 0033:0x7f2156d8f6c9 [ 818.869737][T18886] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 818.869760][T18886] RSP: 002b:00007f2157be6038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a0 [ 818.869786][T18886] RAX: ffffffffffffffda RBX: 00007f2156fe5fa0 RCX: 00007f2156d8f6c9 [ 818.869805][T18886] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000000 [ 818.869822][T18886] RBP: 00007f2157be6090 R08: 0000000000000000 R09: 0000000000000000 [ 818.869837][T18886] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 818.869853][T18886] R13: 00007f2156fe6038 R14: 00007f2156fe5fa0 R15: 00007ffc481a3788 [ 818.869874][T18886] [ 822.379090][T19118] rust_binder: BC_CLEAR_DEATH_NOTIFICATION invalid ref 1 [ 847.188503][ T46] bridge_slave_1: left allmulticast mode [ 847.194492][ T46] bridge_slave_1: left promiscuous mode [ 847.200133][ T46] bridge0: port 2(bridge_slave_1) entered disabled state [ 847.244521][ T46] bridge_slave_0: left allmulticast mode [ 847.250221][ T46] bridge_slave_0: left promiscuous mode [ 847.264608][ T46] bridge0: port 1(bridge_slave_0) entered disabled state [ 847.384951][T20357] bridge0: port 1(bridge_slave_0) entered blocking state [ 847.392168][T20357] bridge0: port 1(bridge_slave_0) entered disabled state [ 847.424357][T20357] bridge_slave_0: entered allmulticast mode [ 847.430965][T20357] bridge_slave_0: entered promiscuous mode [ 847.455020][T20357] bridge0: port 2(bridge_slave_1) entered blocking state [ 847.462214][T20357] bridge0: port 2(bridge_slave_1) entered disabled state [ 847.484357][T20357] bridge_slave_1: entered allmulticast mode [ 847.490819][T20357] bridge_slave_1: entered promiscuous mode [ 847.505374][ T46] veth1_macvtap: left promiscuous mode [ 847.510942][ T46] veth0_vlan: left promiscuous mode [ 847.805413][T20357] bridge0: port 2(bridge_slave_1) entered blocking state [ 847.812729][T20357] bridge0: port 2(bridge_slave_1) entered forwarding state [ 847.820101][T20357] bridge0: port 1(bridge_slave_0) entered blocking state [ 847.827203][T20357] bridge0: port 1(bridge_slave_0) entered forwarding state [ 847.900153][T24445] bridge0: port 1(bridge_slave_0) entered disabled state [ 847.914708][T24445] bridge0: port 2(bridge_slave_1) entered disabled state [ 847.945215][T24445] bridge0: port 1(bridge_slave_0) entered blocking state [ 847.952342][T24445] bridge0: port 1(bridge_slave_0) entered forwarding state [ 847.982644][ T329] bridge0: port 2(bridge_slave_1) entered blocking state [ 847.989794][ T329] bridge0: port 2(bridge_slave_1) entered forwarding state [ 848.048273][T20357] veth0_vlan: entered promiscuous mode [ 848.078064][T20357] veth1_macvtap: entered promiscuous mode [ 850.682484][T20525] bridge0: port 1(bridge_slave_0) entered blocking state [ 850.704329][T20525] bridge0: port 1(bridge_slave_0) entered disabled state [ 850.711485][T20525] bridge_slave_0: entered allmulticast mode [ 850.734806][T20525] bridge_slave_0: entered promiscuous mode [ 850.743909][T20525] bridge0: port 2(bridge_slave_1) entered blocking state [ 850.764322][T20525] bridge0: port 2(bridge_slave_1) entered disabled state [ 850.771459][T20525] bridge_slave_1: entered allmulticast mode [ 850.786992][T20525] bridge_slave_1: entered promiscuous mode [ 850.794200][ T46] bridge_slave_1: left allmulticast mode [ 850.800306][ T46] bridge_slave_1: left promiscuous mode [ 850.806268][ T46] bridge0: port 2(bridge_slave_1) entered disabled state [ 850.813999][ T46] bridge_slave_0: left allmulticast mode [ 850.820312][ T46] bridge_slave_0: left promiscuous mode [ 850.826353][ T46] bridge0: port 1(bridge_slave_0) entered disabled state [ 850.956635][ T46] veth1_macvtap: left promiscuous mode [ 850.969915][ T46] veth0_vlan: left promiscuous mode [ 851.145042][T20525] bridge0: port 2(bridge_slave_1) entered blocking state [ 851.152134][T20525] bridge0: port 2(bridge_slave_1) entered forwarding state [ 851.159486][T20525] bridge0: port 1(bridge_slave_0) entered blocking state [ 851.166569][T20525] bridge0: port 1(bridge_slave_0) entered forwarding state [ 851.221816][T24445] bridge0: port 1(bridge_slave_0) entered disabled state [ 851.229386][T24445] bridge0: port 2(bridge_slave_1) entered disabled state [ 851.244586][ T329] bridge0: port 1(bridge_slave_0) entered blocking state [ 851.251693][ T329] bridge0: port 1(bridge_slave_0) entered forwarding state [ 851.269660][T24445] bridge0: port 2(bridge_slave_1) entered blocking state [ 851.276793][T24445] bridge0: port 2(bridge_slave_1) entered forwarding state [ 851.330596][T20525] veth0_vlan: entered promiscuous mode [ 851.378723][T20525] veth1_macvtap: entered promiscuous mode [ 873.633521][ T36] audit: type=1400 audit(1763297464.090:226): avc: denied { lock } for pid=21718 comm="syz.1.26444" path="socket:[365909]" dev="sockfs" ino=365909 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tcp_socket permissive=1 [ 876.495810][T21833] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22 [ 877.225023][T21843] FAULT_INJECTION: forcing a failure. [ 877.225023][T21843] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 877.254334][T21843] CPU: 1 UID: 0 PID: 21843 Comm: syz.0.26504 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 877.254375][T21843] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 877.254392][T21843] Call Trace: [ 877.254400][T21843] [ 877.254411][T21843] __dump_stack+0x21/0x30 [ 877.254450][T21843] dump_stack_lvl+0x10c/0x190 [ 877.254482][T21843] ? __cfi_dump_stack_lvl+0x10/0x10 [ 877.254516][T21843] ? check_stack_object+0x82/0x140 [ 877.254540][T21843] dump_stack+0x19/0x20 [ 877.254571][T21843] should_fail_ex+0x3d9/0x530 [ 877.254596][T21843] should_fail+0xf/0x20 [ 877.254618][T21843] should_fail_usercopy+0x1e/0x30 [ 877.254644][T21843] _copy_from_user+0x22/0xb0 [ 877.254684][T21843] memdup_user+0x81/0x180 [ 877.254719][T21843] ? strndup_user+0x40/0xd0 [ 877.254753][T21843] strndup_user+0x6c/0xd0 [ 877.254788][T21843] __se_sys_mount+0x9f/0x480 [ 877.254811][T21843] ? ksys_write+0x1ef/0x250 [ 877.254833][T21843] ? __x64_sys_mount+0xf0/0xf0 [ 877.254857][T21843] __x64_sys_mount+0xc3/0xf0 [ 877.254880][T21843] x64_sys_call+0x2021/0x2ee0 [ 877.254914][T21843] do_syscall_64+0x58/0xf0 [ 877.254946][T21843] ? clear_bhb_loop+0x50/0xa0 [ 877.254973][T21843] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 877.254998][T21843] RIP: 0033:0x7f14ebb8f6c9 [ 877.255019][T21843] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 877.255041][T21843] RSP: 002b:00007f14ec9be038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 877.255067][T21843] RAX: ffffffffffffffda RBX: 00007f14ebde5fa0 RCX: 00007f14ebb8f6c9 [ 877.255086][T21843] RDX: 0000200000000140 RSI: 0000200000000100 RDI: 00002000000000c0 [ 877.255103][T21843] RBP: 00007f14ec9be090 R08: 0000000000000000 R09: 0000000000000000 [ 877.255119][T21843] R10: 0000000003818000 R11: 0000000000000246 R12: 0000000000000001 [ 877.255134][T21843] R13: 00007f14ebde6038 R14: 00007f14ebde5fa0 R15: 00007ffcf1292e38 [ 877.255171][T21843] [ 877.818544][T21874] FAULT_INJECTION: forcing a failure. [ 877.818544][T21874] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 877.834319][T21874] CPU: 0 UID: 0 PID: 21874 Comm: syz.0.26520 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 877.834357][T21874] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 877.834373][T21874] Call Trace: [ 877.834381][T21874] [ 877.834391][T21874] __dump_stack+0x21/0x30 [ 877.834437][T21874] dump_stack_lvl+0x10c/0x190 [ 877.834469][T21874] ? __cfi_dump_stack_lvl+0x10/0x10 [ 877.834503][T21874] dump_stack+0x19/0x20 [ 877.834532][T21874] should_fail_ex+0x3d9/0x530 [ 877.834557][T21874] should_fail+0xf/0x20 [ 877.834579][T21874] should_fail_usercopy+0x1e/0x30 [ 877.834604][T21874] _copy_from_user+0x22/0xb0 [ 877.834634][T21874] __x64_sys_setrlimit+0xc5/0x140 [ 877.834669][T21874] ? __cfi___x64_sys_setrlimit+0x10/0x10 [ 877.834704][T21874] ? switch_fpu_return+0x12/0x20 [ 877.834732][T21874] x64_sys_call+0x2c38/0x2ee0 [ 877.834765][T21874] do_syscall_64+0x58/0xf0 [ 877.834796][T21874] ? clear_bhb_loop+0x50/0xa0 [ 877.834822][T21874] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 877.834846][T21874] RIP: 0033:0x7f14ebb8f6c9 [ 877.834865][T21874] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 877.834886][T21874] RSP: 002b:00007f14ec9be038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a0 [ 877.834912][T21874] RAX: ffffffffffffffda RBX: 00007f14ebde5fa0 RCX: 00007f14ebb8f6c9 [ 877.834930][T21874] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000000 [ 877.834946][T21874] RBP: 00007f14ec9be090 R08: 0000000000000000 R09: 0000000000000000 [ 877.834962][T21874] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 877.834977][T21874] R13: 00007f14ebde6038 R14: 00007f14ebde5fa0 R15: 00007ffcf1292e38 [ 877.834998][T21874] [ 878.487842][T21908] FAULT_INJECTION: forcing a failure. [ 878.487842][T21908] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 878.521615][T21908] CPU: 0 UID: 0 PID: 21908 Comm: syz.0.26538 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 878.521657][T21908] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 878.521673][T21908] Call Trace: [ 878.521681][T21908] [ 878.521691][T21908] __dump_stack+0x21/0x30 [ 878.521727][T21908] dump_stack_lvl+0x10c/0x190 [ 878.521758][T21908] ? __cfi_dump_stack_lvl+0x10/0x10 [ 878.521788][T21908] ? mutex_unlock+0x8b/0x240 [ 878.521810][T21908] ? __cfi_mutex_unlock+0x10/0x10 [ 878.521830][T21908] ? __fget_files+0x2c5/0x340 [ 878.521856][T21908] dump_stack+0x19/0x20 [ 878.521884][T21908] should_fail_ex+0x3d9/0x530 [ 878.521909][T21908] should_fail+0xf/0x20 [ 878.521930][T21908] should_fail_usercopy+0x1e/0x30 [ 878.521956][T21908] _copy_from_user+0x22/0xb0 [ 878.521984][T21908] __x64_sys_setrlimit+0xc5/0x140 [ 878.522019][T21908] ? __cfi___x64_sys_setrlimit+0x10/0x10 [ 878.522053][T21908] ? __kasan_check_read+0x15/0x20 [ 878.522087][T21908] x64_sys_call+0x2c38/0x2ee0 [ 878.522118][T21908] do_syscall_64+0x58/0xf0 [ 878.522145][T21908] ? clear_bhb_loop+0x50/0xa0 [ 878.522171][T21908] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 878.522194][T21908] RIP: 0033:0x7f14ebb8f6c9 [ 878.522213][T21908] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 878.522234][T21908] RSP: 002b:00007f14ec9be038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a0 [ 878.522259][T21908] RAX: ffffffffffffffda RBX: 00007f14ebde5fa0 RCX: 00007f14ebb8f6c9 [ 878.522283][T21908] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000000 [ 878.522299][T21908] RBP: 00007f14ec9be090 R08: 0000000000000000 R09: 0000000000000000 [ 878.522314][T21908] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 878.522329][T21908] R13: 00007f14ebde6038 R14: 00007f14ebde5fa0 R15: 00007ffcf1292e38 [ 878.522357][T21908] [ 878.869929][T24445] bridge_slave_1: left allmulticast mode [ 878.875860][T24445] bridge_slave_1: left promiscuous mode [ 878.881538][T24445] bridge0: port 2(bridge_slave_1) entered disabled state [ 878.896884][T24445] bridge_slave_0: left allmulticast mode [ 878.902600][T24445] bridge_slave_0: left promiscuous mode [ 878.914235][T24445] bridge0: port 1(bridge_slave_0) entered disabled state [ 879.017542][T21909] bridge0: port 1(bridge_slave_0) entered blocking state [ 879.044350][T21909] bridge0: port 1(bridge_slave_0) entered disabled state [ 879.051497][T21909] bridge_slave_0: entered allmulticast mode [ 879.058291][T21909] bridge_slave_0: entered promiscuous mode [ 879.065589][T24445] veth1_macvtap: left promiscuous mode [ 879.071371][T24445] veth0_vlan: left promiscuous mode [ 879.130802][T21909] bridge0: port 2(bridge_slave_1) entered blocking state [ 879.138146][T21909] bridge0: port 2(bridge_slave_1) entered disabled state [ 879.145689][T21909] bridge_slave_1: entered allmulticast mode [ 879.152142][T21909] bridge_slave_1: entered promiscuous mode [ 879.284936][T21909] bridge0: port 2(bridge_slave_1) entered blocking state [ 879.292062][T21909] bridge0: port 2(bridge_slave_1) entered forwarding state [ 879.299515][T21909] bridge0: port 1(bridge_slave_0) entered blocking state [ 879.306608][T21909] bridge0: port 1(bridge_slave_0) entered forwarding state [ 879.384890][ T329] bridge0: port 1(bridge_slave_0) entered disabled state [ 879.392382][ T329] bridge0: port 2(bridge_slave_1) entered disabled state [ 879.408716][T29404] bridge0: port 1(bridge_slave_0) entered blocking state [ 879.415850][T29404] bridge0: port 1(bridge_slave_0) entered forwarding state [ 879.433952][T29404] bridge0: port 2(bridge_slave_1) entered blocking state [ 879.441101][T29404] bridge0: port 2(bridge_slave_1) entered forwarding state [ 879.509338][T21909] veth0_vlan: entered promiscuous mode [ 879.533411][T21909] veth1_macvtap: entered promiscuous mode [ 880.935946][T21996] FAULT_INJECTION: forcing a failure. [ 880.935946][T21996] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 880.964312][T21996] CPU: 0 UID: 0 PID: 21996 Comm: syz.0.26574 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 880.964352][T21996] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 880.964368][T21996] Call Trace: [ 880.964375][T21996] [ 880.964383][T21996] __dump_stack+0x21/0x30 [ 880.964418][T21996] dump_stack_lvl+0x10c/0x190 [ 880.964447][T21996] ? __cfi_dump_stack_lvl+0x10/0x10 [ 880.964477][T21996] ? __kasan_check_read+0x15/0x20 [ 880.964510][T21996] dump_stack+0x19/0x20 [ 880.964537][T21996] should_fail_ex+0x3d9/0x530 [ 880.964560][T21996] should_fail+0xf/0x20 [ 880.964577][T21996] should_fail_usercopy+0x1e/0x30 [ 880.964599][T21996] __kvm_read_guest_page+0x177/0x210 [ 880.964623][T21996] kvm_vcpu_read_guest_page+0x31a/0x400 [ 880.964649][T21996] kvm_fetch_guest_virt+0x146/0x190 [ 880.964683][T21996] ? __cfi_kvm_fetch_guest_virt+0x10/0x10 [ 880.964716][T21996] __do_insn_fetch_bytes+0x321/0x730 [ 880.964741][T21996] ? x86_decode_insn+0x4fb0/0x4fb0 [ 880.964762][T21996] ? hva_to_pfn+0x153/0xa60 [ 880.964783][T21996] ? __asan_memcpy+0x5a/0x80 [ 880.964804][T21996] x86_decode_insn+0x33b/0x4fb0 [ 880.964831][T21996] ? __cfi_x86_decode_insn+0x10/0x10 [ 880.964852][T21996] ? __kasan_check_write+0x18/0x20 [ 880.964886][T21996] ? vmx_read_guest_seg_ar+0x1c8/0x350 [ 880.964914][T21996] ? __asan_memset+0x39/0x50 [ 880.964934][T21996] ? init_decode_cache+0x7c/0x90 [ 880.964956][T21996] ? init_emulate_ctxt+0x410/0x540 [ 880.964982][T21996] ? kvm_inject_realmode_interrupt+0x2e0/0x2e0 [ 880.965010][T21996] ? __kasan_check_write+0x18/0x20 [ 880.965043][T21996] ? kvm_multiple_exception+0x6d8/0xad0 [ 880.965072][T21996] x86_decode_emulated_instruction+0x66/0x190 [ 880.965100][T21996] x86_emulate_instruction+0x2d3/0x1870 [ 880.965129][T21996] handle_ud+0x19e/0x320 [ 880.965149][T21996] ? __cfi_handle_ud+0x10/0x10 [ 880.965171][T21996] ? __cfi_rcu_note_context_switch+0x10/0x10 [ 880.965214][T21996] ? clear_bhb_loop+0x50/0xa0 [ 880.965240][T21996] ? clear_bhb_loop+0x50/0xa0 [ 880.965265][T21996] ? clear_bhb_loop+0x50/0xa0 [ 880.965291][T21996] ? clear_bhb_loop+0x50/0xa0 [ 880.965316][T21996] ? clear_bhb_loop+0x12/0xa0 [ 880.965342][T21996] handle_exception_nmi+0x194/0xeb0 [ 880.965368][T21996] ? __cfi_handle_exception_nmi+0x10/0x10 [ 880.965391][T21996] vmx_handle_exit+0x12c2/0x1b40 [ 880.965423][T21996] ? kvm_deliver_exception_payload+0xd7/0x200 [ 880.965455][T21996] ? __cfi_vmx_vcpu_run+0x10/0x10 [ 880.965488][T21996] ? vmx_handle_exit_irqoff+0x401/0x7a0 [ 880.965522][T21996] vcpu_run+0x4bd0/0x7830 [ 880.965550][T21996] ? x64_sys_call+0xe69/0x2ee0 [ 880.965600][T21996] ? signal_pending+0xc0/0xc0 [ 880.965648][T21996] ? __kasan_check_write+0x18/0x20 [ 880.965682][T21996] ? kvm_pmu_trigger_event+0x604/0x660 [ 880.965711][T21996] ? complete_fast_pio_out+0xfd/0x140 [ 880.965744][T21996] kvm_arch_vcpu_ioctl_run+0x101a/0x1aa0 [ 880.965777][T21996] ? __cfi_kvm_arch_vcpu_ioctl_run+0x10/0x10 [ 880.965808][T21996] ? kstrtoull+0x13b/0x1e0 [ 880.965829][T21996] ? kstrtouint+0x78/0xf0 [ 880.965850][T21996] ? ioctl_has_perm+0x1aa/0x4d0 [ 880.965879][T21996] ? __asan_memcpy+0x5a/0x80 [ 880.965900][T21996] ? ioctl_has_perm+0x3e0/0x4d0 [ 880.965927][T21996] ? has_cap_mac_admin+0xd0/0xd0 [ 880.965955][T21996] ? __kasan_check_write+0x18/0x20 [ 880.965989][T21996] ? mutex_lock_killable+0x92/0x1c0 [ 880.966013][T21996] ? __cfi_mutex_lock_killable+0x10/0x10 [ 880.966036][T21996] ? proc_fail_nth_write+0x17e/0x210 [ 880.966067][T21996] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 880.966099][T21996] kvm_vcpu_ioctl+0x96f/0xee0 [ 880.966121][T21996] ? __cfi_kvm_vcpu_ioctl+0x10/0x10 [ 880.966142][T21996] ? __cfi_vfs_write+0x10/0x10 [ 880.966164][T21996] ? __kasan_check_write+0x18/0x20 [ 880.966207][T21996] ? mutex_unlock+0x8b/0x240 [ 880.966228][T21996] ? __cfi_mutex_unlock+0x10/0x10 [ 880.966249][T21996] ? __fget_files+0x2c5/0x340 [ 880.966275][T21996] ? __fget_files+0x2c5/0x340 [ 880.966300][T21996] ? bpf_lsm_file_ioctl+0xd/0x20 [ 880.966332][T21996] ? security_file_ioctl+0x34/0xd0 [ 880.966358][T21996] ? __cfi_kvm_vcpu_ioctl+0x10/0x10 [ 880.966379][T21996] __se_sys_ioctl+0x135/0x1b0 [ 880.966404][T21996] __x64_sys_ioctl+0x7f/0xa0 [ 880.966429][T21996] x64_sys_call+0x1878/0x2ee0 [ 880.966463][T21996] do_syscall_64+0x58/0xf0 [ 880.966492][T21996] ? clear_bhb_loop+0x50/0xa0 [ 880.966517][T21996] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 880.966543][T21996] RIP: 0033:0x7f14ebb8f6c9 [ 880.966563][T21996] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 880.966584][T21996] RSP: 002b:00007f14ec9be038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 880.966610][T21996] RAX: ffffffffffffffda RBX: 00007f14ebde5fa0 RCX: 00007f14ebb8f6c9 [ 880.966629][T21996] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000008 [ 880.966644][T21996] RBP: 00007f14ec9be090 R08: 0000000000000000 R09: 0000000000000000 [ 880.966660][T21996] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 880.966675][T21996] R13: 00007f14ebde6038 R14: 00007f14ebde5fa0 R15: 00007ffcf1292e38 [ 880.966696][T21996] [ 882.637553][T22047] FAULT_INJECTION: forcing a failure. [ 882.637553][T22047] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 882.672162][T22047] CPU: 0 UID: 0 PID: 22047 Comm: syz.2.26600 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 882.672205][T22047] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 882.672221][T22047] Call Trace: [ 882.672230][T22047] [ 882.672239][T22047] __dump_stack+0x21/0x30 [ 882.672276][T22047] dump_stack_lvl+0x10c/0x190 [ 882.672307][T22047] ? __cfi_dump_stack_lvl+0x10/0x10 [ 882.672338][T22047] ? check_stack_object+0x82/0x140 [ 882.672361][T22047] dump_stack+0x19/0x20 [ 882.672389][T22047] should_fail_ex+0x3d9/0x530 [ 882.672414][T22047] should_fail+0xf/0x20 [ 882.672435][T22047] should_fail_usercopy+0x1e/0x30 [ 882.672460][T22047] _copy_from_user+0x22/0xb0 [ 882.672488][T22047] memdup_user+0x81/0x180 [ 882.672521][T22047] ? strndup_user+0x40/0xd0 [ 882.672553][T22047] strndup_user+0x6c/0xd0 [ 882.672586][T22047] __se_sys_mount+0x9f/0x480 [ 882.672608][T22047] ? ksys_write+0x1ef/0x250 [ 882.672629][T22047] ? __x64_sys_mount+0xf0/0xf0 [ 882.672652][T22047] __x64_sys_mount+0xc3/0xf0 [ 882.672673][T22047] x64_sys_call+0x2021/0x2ee0 [ 882.672707][T22047] do_syscall_64+0x58/0xf0 [ 882.672736][T22047] ? clear_bhb_loop+0x50/0xa0 [ 882.672761][T22047] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 882.672785][T22047] RIP: 0033:0x7f628938f6c9 [ 882.672805][T22047] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 882.672825][T22047] RSP: 002b:00007f6287de3038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 882.672851][T22047] RAX: ffffffffffffffda RBX: 00007f62895e5fa0 RCX: 00007f628938f6c9 [ 882.672869][T22047] RDX: 0000200000000140 RSI: 0000200000000100 RDI: 00002000000000c0 [ 882.672887][T22047] RBP: 00007f6287de3090 R08: 0000000000000000 R09: 0000000000000000 [ 882.672903][T22047] R10: 0000000003818000 R11: 0000000000000246 R12: 0000000000000001 [ 882.672919][T22047] R13: 00007f62895e6038 R14: 00007f62895e5fa0 R15: 00007ffdc43d76b8 [ 882.672940][T22047] [ 882.964226][T22054] FAULT_INJECTION: forcing a failure. [ 882.964226][T22054] name failslab, interval 1, probability 0, space 0, times 0 [ 882.977054][T22054] CPU: 0 UID: 0 PID: 22054 Comm: syz.0.26603 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 882.977091][T22054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 882.977107][T22054] Call Trace: [ 882.977116][T22054] [ 882.977125][T22054] __dump_stack+0x21/0x30 [ 882.977172][T22054] dump_stack_lvl+0x10c/0x190 [ 882.977203][T22054] ? __cfi_dump_stack_lvl+0x10/0x10 [ 882.977237][T22054] dump_stack+0x19/0x20 [ 882.977266][T22054] should_fail_ex+0x3d9/0x530 [ 882.977290][T22054] should_failslab+0xac/0x100 [ 882.977316][T22054] kmem_cache_alloc_lru_noprof+0x44/0x430 [ 882.977339][T22054] ? __d_alloc+0x42/0x8e0 [ 882.977371][T22054] __d_alloc+0x42/0x8e0 [ 882.977404][T22054] d_alloc+0x4c/0x1c0 [ 882.977435][T22054] ? lookup_one_qstr_excl+0xba/0x280 [ 882.977461][T22054] lookup_one_qstr_excl+0xcf/0x280 [ 882.977487][T22054] filename_create+0x21d/0x460 [ 882.977518][T22054] ? kern_path_create+0x70/0x70 [ 882.977547][T22054] do_mkdirat+0x56/0x420 [ 882.977574][T22054] ? __kasan_check_write+0x18/0x20 [ 882.977608][T22054] ? getname_flags+0x209/0x710 [ 882.977632][T22054] __x64_sys_mkdirat+0x8b/0xa0 [ 882.977659][T22054] x64_sys_call+0x2ba8/0x2ee0 [ 882.977690][T22054] do_syscall_64+0x58/0xf0 [ 882.977719][T22054] ? clear_bhb_loop+0x50/0xa0 [ 882.977745][T22054] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 882.977769][T22054] RIP: 0033:0x7f14ebb8f6c9 [ 882.977789][T22054] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 882.977809][T22054] RSP: 002b:00007f14ec9be038 EFLAGS: 00000246 ORIG_RAX: 0000000000000102 [ 882.977834][T22054] RAX: ffffffffffffffda RBX: 00007f14ebde5fa0 RCX: 00007f14ebb8f6c9 [ 882.977852][T22054] RDX: 00000000000001c0 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 882.977869][T22054] RBP: 00007f14ec9be090 R08: 0000000000000000 R09: 0000000000000000 [ 882.977884][T22054] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 882.977898][T22054] R13: 00007f14ebde6038 R14: 00007f14ebde5fa0 R15: 00007ffcf1292e38 [ 882.977919][T22054] [ 883.723357][ T36] audit: type=1400 audit(1763297474.180:227): avc: denied { write } for pid=22109 comm="syz.1.26628" name="001" dev="devtmpfs" ino=120 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1 [ 884.001089][T22141] FAULT_INJECTION: forcing a failure. [ 884.001089][T22141] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 884.022202][T22141] CPU: 1 UID: 0 PID: 22141 Comm: syz.1.26643 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 884.022245][T22141] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 884.022262][T22141] Call Trace: [ 884.022271][T22141] [ 884.022282][T22141] __dump_stack+0x21/0x30 [ 884.022331][T22141] dump_stack_lvl+0x10c/0x190 [ 884.022365][T22141] ? __cfi_dump_stack_lvl+0x10/0x10 [ 884.022400][T22141] ? mutex_unlock+0x8b/0x240 [ 884.022423][T22141] ? __cfi_mutex_unlock+0x10/0x10 [ 884.022447][T22141] ? __fget_files+0x2c5/0x340 [ 884.022475][T22141] dump_stack+0x19/0x20 [ 884.022507][T22141] should_fail_ex+0x3d9/0x530 [ 884.022534][T22141] should_fail+0xf/0x20 [ 884.022558][T22141] should_fail_usercopy+0x1e/0x30 [ 884.022585][T22141] _copy_from_user+0x22/0xb0 [ 884.022617][T22141] __x64_sys_setrlimit+0xc5/0x140 [ 884.022655][T22141] ? __cfi___x64_sys_setrlimit+0x10/0x10 [ 884.022693][T22141] ? __kasan_check_read+0x15/0x20 [ 884.022732][T22141] x64_sys_call+0x2c38/0x2ee0 [ 884.022768][T22141] do_syscall_64+0x58/0xf0 [ 884.022801][T22141] ? clear_bhb_loop+0x50/0xa0 [ 884.022829][T22141] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 884.022856][T22141] RIP: 0033:0x7f9ec518f6c9 [ 884.022877][T22141] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 884.022898][T22141] RSP: 002b:00007f9ec5f6e038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a0 [ 884.022926][T22141] RAX: ffffffffffffffda RBX: 00007f9ec53e5fa0 RCX: 00007f9ec518f6c9 [ 884.022946][T22141] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000000 [ 884.022963][T22141] RBP: 00007f9ec5f6e090 R08: 0000000000000000 R09: 0000000000000000 [ 884.022980][T22141] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 884.022996][T22141] R13: 00007f9ec53e6038 R14: 00007f9ec53e5fa0 R15: 00007ffce2078458 [ 884.023019][T22141] [ 884.811549][T22186] FAULT_INJECTION: forcing a failure. [ 884.811549][T22186] name failslab, interval 1, probability 0, space 0, times 0 [ 884.844346][T22186] CPU: 0 UID: 0 PID: 22186 Comm: syz.1.26664 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 884.844387][T22186] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 884.844402][T22186] Call Trace: [ 884.844411][T22186] [ 884.844420][T22186] __dump_stack+0x21/0x30 [ 884.844458][T22186] dump_stack_lvl+0x10c/0x190 [ 884.844489][T22186] ? __cfi_dump_stack_lvl+0x10/0x10 [ 884.844520][T22186] ? kasan_save_track+0x4f/0x80 [ 884.844545][T22186] ? kasan_save_track+0x3e/0x80 [ 884.844572][T22186] ? kasan_save_alloc_info+0x40/0x50 [ 884.844604][T22186] ? kmem_cache_alloc_noprof+0x1cb/0x430 [ 884.844628][T22186] dump_stack+0x19/0x20 [ 884.844657][T22186] should_fail_ex+0x3d9/0x530 [ 884.844682][T22186] should_failslab+0xac/0x100 [ 884.844707][T22186] kmem_cache_alloc_noprof+0x42/0x430 [ 884.844728][T22186] ? mas_alloc_nodes+0x254/0x9e0 [ 884.844754][T22186] mas_alloc_nodes+0x254/0x9e0 [ 884.844779][T22186] mas_preallocate+0x762/0xc60 [ 884.844803][T22186] ? kasan_save_alloc_info+0x40/0x50 [ 884.844836][T22186] ? __cfi_mas_preallocate+0x10/0x10 [ 884.844860][T22186] ? __kasan_check_read+0x15/0x20 [ 884.844894][T22186] ? anon_vma_name+0x51/0xa0 [ 884.844927][T22186] ? vm_area_dup+0x41c/0x570 [ 884.844951][T22186] __split_vma+0x412/0xa80 [ 884.844977][T22186] ? vms_gather_munmap_vmas+0xdd0/0xdd0 [ 884.845003][T22186] vms_gather_munmap_vmas+0x273/0xdd0 [ 884.845040][T22186] mmap_region+0x598/0x1bc0 [ 884.845064][T22186] ? __cfi_mmap_region+0x10/0x10 [ 884.845089][T22186] ? __kasan_check_read+0x15/0x20 [ 884.845123][T22186] ? arch_get_unmapped_area_topdown+0x232/0x8d0 [ 884.845152][T22186] ? file_mmap_ok+0x147/0x1a0 [ 884.845173][T22186] do_mmap+0xb6d/0x13c0 [ 884.845195][T22186] ? __cfi_do_mmap+0x10/0x10 [ 884.845214][T22186] ? down_write_killable+0xe9/0x2d0 [ 884.845239][T22186] ? __cfi_down_write_killable+0x10/0x10 [ 884.845266][T22186] vm_mmap_pgoff+0x38f/0x4e0 [ 884.845289][T22186] ? __cfi_vm_mmap_pgoff+0x10/0x10 [ 884.845311][T22186] ? __fget_files+0x2c5/0x340 [ 884.845337][T22186] ksys_mmap_pgoff+0x166/0x1e0 [ 884.845359][T22186] __x64_sys_mmap+0x121/0x140 [ 884.845394][T22186] x64_sys_call+0x13bf/0x2ee0 [ 884.845428][T22186] do_syscall_64+0x58/0xf0 [ 884.845456][T22186] ? clear_bhb_loop+0x50/0xa0 [ 884.845482][T22186] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 884.845506][T22186] RIP: 0033:0x7f9ec518f6c9 [ 884.845526][T22186] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 884.845548][T22186] RSP: 002b:00007f9ec5f6e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 884.845574][T22186] RAX: ffffffffffffffda RBX: 00007f9ec53e5fa0 RCX: 00007f9ec518f6c9 [ 884.845593][T22186] RDX: 0000000000000000 RSI: 0000000000001000 RDI: 0000200000701000 [ 884.845609][T22186] RBP: 00007f9ec5f6e090 R08: 0000000000000007 R09: 0000000000000000 [ 884.845625][T22186] R10: 0000000000000012 R11: 0000000000000246 R12: 0000000000000001 [ 884.845640][T22186] R13: 00007f9ec53e6038 R14: 00007f9ec53e5fa0 R15: 00007ffce2078458 [ 884.845661][T22186] [ 886.347889][ T36] audit: type=1400 audit(1763297476.810:228): avc: denied { mount } for pid=22239 comm="syz.2.26692" name="/" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1 [ 886.404306][ T36] audit: type=1400 audit(1763297476.810:229): avc: denied { remount } for pid=22239 comm="syz.2.26692" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1 [ 886.444512][ T36] audit: type=1400 audit(1763297476.840:230): avc: denied { unmount } for pid=21909 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1 [ 886.605741][T22260] fuseblk: Bad value for 'fd' [ 887.810012][T22338] FAULT_INJECTION: forcing a failure. [ 887.810012][T22338] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 887.843611][T22338] CPU: 1 UID: 0 PID: 22338 Comm: syz.1.26740 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 887.843653][T22338] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 887.843669][T22338] Call Trace: [ 887.843678][T22338] [ 887.843688][T22338] __dump_stack+0x21/0x30 [ 887.843725][T22338] dump_stack_lvl+0x10c/0x190 [ 887.843755][T22338] ? __cfi_dump_stack_lvl+0x10/0x10 [ 887.843786][T22338] ? mutex_unlock+0x8b/0x240 [ 887.843808][T22338] ? __cfi_mutex_unlock+0x10/0x10 [ 887.843829][T22338] ? __fget_files+0x2c5/0x340 [ 887.843855][T22338] dump_stack+0x19/0x20 [ 887.843884][T22338] should_fail_ex+0x3d9/0x530 [ 887.843908][T22338] should_fail+0xf/0x20 [ 887.843930][T22338] should_fail_usercopy+0x1e/0x30 [ 887.843956][T22338] _copy_from_user+0x22/0xb0 [ 887.843985][T22338] __x64_sys_setrlimit+0xc5/0x140 [ 887.844020][T22338] ? __cfi___x64_sys_setrlimit+0x10/0x10 [ 887.844061][T22338] ? __kasan_check_read+0x15/0x20 [ 887.844097][T22338] x64_sys_call+0x2c38/0x2ee0 [ 887.844131][T22338] do_syscall_64+0x58/0xf0 [ 887.844160][T22338] ? clear_bhb_loop+0x50/0xa0 [ 887.844186][T22338] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 887.844211][T22338] RIP: 0033:0x7f9ec518f6c9 [ 887.844231][T22338] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 887.844255][T22338] RSP: 002b:00007f9ec5f6e038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a0 [ 887.844280][T22338] RAX: ffffffffffffffda RBX: 00007f9ec53e5fa0 RCX: 00007f9ec518f6c9 [ 887.844297][T22338] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000000 [ 887.844312][T22338] RBP: 00007f9ec5f6e090 R08: 0000000000000000 R09: 0000000000000000 [ 887.844327][T22338] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 887.844340][T22338] R13: 00007f9ec53e6038 R14: 00007f9ec53e5fa0 R15: 00007ffce2078458 [ 887.844359][T22338] [ 888.395800][T22346] Invalid ELF header type: 1241 != 1 [ 888.401344][ T36] audit: type=1400 audit(1763297478.860:231): avc: denied { module_load } for pid=22345 comm="syz.1.26744" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=system permissive=1 [ 890.776130][T22493] 9pnet_fd: Insufficient options for proto=fd [ 891.216058][T22513] 9pnet_fd: Insufficient options for proto=fd [ 891.424687][T22540] FAULT_INJECTION: forcing a failure. [ 891.424687][T22540] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 891.458156][T22540] CPU: 0 UID: 0 PID: 22540 Comm: syz.3.26839 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 891.458196][T22540] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 891.458212][T22540] Call Trace: [ 891.458221][T22540] [ 891.458231][T22540] __dump_stack+0x21/0x30 [ 891.458267][T22540] dump_stack_lvl+0x10c/0x190 [ 891.458298][T22540] ? __cfi_dump_stack_lvl+0x10/0x10 [ 891.458329][T22540] ? mutex_unlock+0x8b/0x240 [ 891.458350][T22540] ? __cfi_mutex_unlock+0x10/0x10 [ 891.458371][T22540] ? __fget_files+0x2c5/0x340 [ 891.458398][T22540] dump_stack+0x19/0x20 [ 891.458426][T22540] should_fail_ex+0x3d9/0x530 [ 891.458450][T22540] should_fail+0xf/0x20 [ 891.458471][T22540] should_fail_usercopy+0x1e/0x30 [ 891.458496][T22540] _copy_from_user+0x22/0xb0 [ 891.458524][T22540] __x64_sys_setrlimit+0xc5/0x140 [ 891.458559][T22540] ? __cfi___x64_sys_setrlimit+0x10/0x10 [ 891.458593][T22540] ? __kasan_check_read+0x15/0x20 [ 891.458628][T22540] x64_sys_call+0x2c38/0x2ee0 [ 891.458670][T22540] do_syscall_64+0x58/0xf0 [ 891.458699][T22540] ? clear_bhb_loop+0x50/0xa0 [ 891.458725][T22540] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 891.458750][T22540] RIP: 0033:0x7fb97ef8f6c9 [ 891.458769][T22540] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 891.458790][T22540] RSP: 002b:00007fb97fd8b038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a0 [ 891.458815][T22540] RAX: ffffffffffffffda RBX: 00007fb97f1e5fa0 RCX: 00007fb97ef8f6c9 [ 891.458833][T22540] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000000 [ 891.458849][T22540] RBP: 00007fb97fd8b090 R08: 0000000000000000 R09: 0000000000000000 [ 891.458864][T22540] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 891.458897][T22540] R13: 00007fb97f1e6038 R14: 00007fb97f1e5fa0 R15: 00007fff48437b28 [ 891.458918][T22540] [ 891.808261][T22574] FAULT_INJECTION: forcing a failure. [ 891.808261][T22574] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 891.822030][T22574] CPU: 0 UID: 0 PID: 22574 Comm: syz.3.26855 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 891.822069][T22574] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 891.822084][T22574] Call Trace: [ 891.822092][T22574] [ 891.822101][T22574] __dump_stack+0x21/0x30 [ 891.822139][T22574] dump_stack_lvl+0x10c/0x190 [ 891.822169][T22574] ? __cfi_dump_stack_lvl+0x10/0x10 [ 891.822199][T22574] ? __x64_sys_openat+0x13a/0x170 [ 891.822229][T22574] ? do_syscall_64+0x58/0xf0 [ 891.822258][T22574] ? entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 891.822283][T22574] dump_stack+0x19/0x20 [ 891.822311][T22574] should_fail_ex+0x3d9/0x530 [ 891.822334][T22574] should_fail_alloc_page+0xeb/0x110 [ 891.822361][T22574] __alloc_pages_noprof+0x19b/0x7b0 [ 891.822393][T22574] ? avc_has_perm_noaudit+0x286/0x360 [ 891.822425][T22574] ? __cfi___alloc_pages_noprof+0x10/0x10 [ 891.822459][T22574] ? avc_has_perm+0x144/0x220 [ 891.822491][T22574] ? kasan_save_alloc_info+0x40/0x50 [ 891.822525][T22574] __folio_alloc_noprof+0x14/0x80 [ 891.822555][T22574] shmem_alloc_and_add_folio+0x452/0x1050 [ 891.822597][T22574] ? put_swap_device+0x130/0x130 [ 891.822623][T22574] ? shmem_huge_global_enabled+0x2da/0x360 [ 891.822649][T22574] ? shmem_allowable_huge_orders+0x1f7/0x430 [ 891.822673][T22574] ? is_bpf_text_address+0x17b/0x1a0 [ 891.822700][T22574] shmem_get_folio_gfp+0x5f0/0x1380 [ 891.822728][T22574] ? shmem_get_folio+0xc0/0xc0 [ 891.822751][T22574] ? inode_to_bdi+0x6d/0x100 [ 891.822784][T22574] shmem_write_begin+0xf4/0x270 [ 891.822810][T22574] generic_perform_write+0x330/0x960 [ 891.822847][T22574] ? __cfi_generic_perform_write+0x10/0x10 [ 891.822879][T22574] ? down_write+0xe9/0x2a0 [ 891.822903][T22574] ? file_update_time+0xa3/0x220 [ 891.822934][T22574] shmem_file_write_iter+0x105/0x130 [ 891.822965][T22574] vfs_write+0x718/0xf30 [ 891.822986][T22574] ? __cfi_shmem_file_write_iter+0x10/0x10 [ 891.823017][T22574] ? __cfi_vfs_write+0x10/0x10 [ 891.823037][T22574] ? __cfi_mutex_lock+0x10/0x10 [ 891.823061][T22574] ksys_write+0x141/0x250 [ 891.823081][T22574] ? __cfi_ksys_write+0x10/0x10 [ 891.823102][T22574] ? __kasan_check_read+0x15/0x20 [ 891.823136][T22574] __x64_sys_write+0x7f/0x90 [ 891.823157][T22574] x64_sys_call+0x271c/0x2ee0 [ 891.823189][T22574] do_syscall_64+0x58/0xf0 [ 891.823217][T22574] ? clear_bhb_loop+0x50/0xa0 [ 891.823242][T22574] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 891.823266][T22574] RIP: 0033:0x7fb97ef8f6c9 [ 891.823285][T22574] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 891.823306][T22574] RSP: 002b:00007fb97fd8b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 891.823331][T22574] RAX: ffffffffffffffda RBX: 00007fb97f1e5fa0 RCX: 00007fb97ef8f6c9 [ 891.823349][T22574] RDX: 0000000000000118 RSI: 0000200000000340 RDI: 0000000000000008 [ 891.823363][T22574] RBP: 00007fb97fd8b090 R08: 0000000000000000 R09: 0000000000000000 [ 891.823379][T22574] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 891.823393][T22574] R13: 00007fb97f1e6038 R14: 00007fb97f1e5fa0 R15: 00007fff48437b28 [ 891.823414][T22574] [ 892.422835][T22638] FAULT_INJECTION: forcing a failure. [ 892.422835][T22638] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 892.458331][T22638] CPU: 1 UID: 0 PID: 22638 Comm: syz.3.26886 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 892.458371][T22638] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 892.458386][T22638] Call Trace: [ 892.458394][T22638] [ 892.458403][T22638] __dump_stack+0x21/0x30 [ 892.458439][T22638] dump_stack_lvl+0x10c/0x190 [ 892.458469][T22638] ? __cfi_dump_stack_lvl+0x10/0x10 [ 892.458500][T22638] ? mutex_unlock+0x8b/0x240 [ 892.458523][T22638] ? __cfi_mutex_unlock+0x10/0x10 [ 892.458543][T22638] ? __fget_files+0x2c5/0x340 [ 892.458569][T22638] dump_stack+0x19/0x20 [ 892.458597][T22638] should_fail_ex+0x3d9/0x530 [ 892.458620][T22638] should_fail+0xf/0x20 [ 892.458641][T22638] should_fail_usercopy+0x1e/0x30 [ 892.458666][T22638] _copy_from_user+0x22/0xb0 [ 892.458694][T22638] __x64_sys_setrlimit+0xc5/0x140 [ 892.458727][T22638] ? __cfi___x64_sys_setrlimit+0x10/0x10 [ 892.458760][T22638] ? __kasan_check_read+0x15/0x20 [ 892.458794][T22638] x64_sys_call+0x2c38/0x2ee0 [ 892.458834][T22638] do_syscall_64+0x58/0xf0 [ 892.458862][T22638] ? clear_bhb_loop+0x50/0xa0 [ 892.458888][T22638] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 892.458911][T22638] RIP: 0033:0x7fb97ef8f6c9 [ 892.458930][T22638] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 892.458950][T22638] RSP: 002b:00007fb97fd8b038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a0 [ 892.458974][T22638] RAX: ffffffffffffffda RBX: 00007fb97f1e5fa0 RCX: 00007fb97ef8f6c9 [ 892.458992][T22638] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000000 [ 892.459008][T22638] RBP: 00007fb97fd8b090 R08: 0000000000000000 R09: 0000000000000000 [ 892.459023][T22638] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 892.459037][T22638] R13: 00007fb97f1e6038 R14: 00007fb97f1e5fa0 R15: 00007fff48437b28 [ 892.459058][T22638] [ 892.878480][T22666] binder: Bad value for 'max' [ 892.934565][T22672] 9pnet_fd: Insufficient options for proto=fd [ 894.385783][T22784] FAULT_INJECTION: forcing a failure. [ 894.385783][T22784] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 894.414274][T22784] CPU: 1 UID: 0 PID: 22784 Comm: syz.1.26958 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 894.414314][T22784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 894.414329][T22784] Call Trace: [ 894.414337][T22784] [ 894.414348][T22784] __dump_stack+0x21/0x30 [ 894.414384][T22784] dump_stack_lvl+0x10c/0x190 [ 894.414424][T22784] ? __cfi_dump_stack_lvl+0x10/0x10 [ 894.414456][T22784] ? mutex_unlock+0x8b/0x240 [ 894.414478][T22784] ? __cfi_mutex_unlock+0x10/0x10 [ 894.414500][T22784] ? __fget_files+0x2c5/0x340 [ 894.414525][T22784] dump_stack+0x19/0x20 [ 894.414554][T22784] should_fail_ex+0x3d9/0x530 [ 894.414579][T22784] should_fail+0xf/0x20 [ 894.414599][T22784] should_fail_usercopy+0x1e/0x30 [ 894.414623][T22784] _copy_from_user+0x22/0xb0 [ 894.414652][T22784] __x64_sys_setrlimit+0xc5/0x140 [ 894.414686][T22784] ? __cfi___x64_sys_setrlimit+0x10/0x10 [ 894.414722][T22784] ? __kasan_check_read+0x15/0x20 [ 894.414758][T22784] x64_sys_call+0x2c38/0x2ee0 [ 894.414790][T22784] do_syscall_64+0x58/0xf0 [ 894.414819][T22784] ? clear_bhb_loop+0x50/0xa0 [ 894.414844][T22784] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 894.414869][T22784] RIP: 0033:0x7f9ec518f6c9 [ 894.414887][T22784] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 894.414910][T22784] RSP: 002b:00007f9ec5f6e038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a0 [ 894.414936][T22784] RAX: ffffffffffffffda RBX: 00007f9ec53e5fa0 RCX: 00007f9ec518f6c9 [ 894.414955][T22784] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 894.414970][T22784] RBP: 00007f9ec5f6e090 R08: 0000000000000000 R09: 0000000000000000 [ 894.414986][T22784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 894.415000][T22784] R13: 00007f9ec53e6038 R14: 00007f9ec53e5fa0 R15: 00007ffce2078458 [ 894.415021][T22784] [ 895.625888][T22879] netlink: 140 bytes leftover after parsing attributes in process `syz.2.27004'. [ 896.169373][T22915] FAULT_INJECTION: forcing a failure. [ 896.169373][T22915] name failslab, interval 1, probability 0, space 0, times 0 [ 896.194349][T22915] CPU: 0 UID: 0 PID: 22915 Comm: syz.0.27022 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 896.194390][T22915] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 896.194406][T22915] Call Trace: [ 896.194415][T22915] [ 896.194424][T22915] __dump_stack+0x21/0x30 [ 896.194461][T22915] dump_stack_lvl+0x10c/0x190 [ 896.194491][T22915] ? __cfi_dump_stack_lvl+0x10/0x10 [ 896.194525][T22915] dump_stack+0x19/0x20 [ 896.194553][T22915] should_fail_ex+0x3d9/0x530 [ 896.194586][T22915] should_failslab+0xac/0x100 [ 896.194612][T22915] kmem_cache_alloc_noprof+0x42/0x430 [ 896.194646][T22915] ? vm_area_alloc+0x3f/0x1a0 [ 896.194669][T22915] vm_area_alloc+0x3f/0x1a0 [ 896.194692][T22915] mmap_region+0xb89/0x1bc0 [ 896.194714][T22915] ? __cfi_mmap_region+0x10/0x10 [ 896.194737][T22915] ? __cfi_arch_get_unmapped_area_topdown+0x10/0x10 [ 896.194765][T22915] ? __kasan_check_read+0x15/0x20 [ 896.194800][T22915] ? __get_unmapped_area+0x407/0x470 [ 896.194821][T22915] ? file_mmap_ok+0x147/0x1a0 [ 896.194841][T22915] do_mmap+0xb6d/0x13c0 [ 896.194862][T22915] ? __cfi_do_mmap+0x10/0x10 [ 896.194881][T22915] ? down_write_killable+0xe9/0x2d0 [ 896.194905][T22915] ? __cfi_down_write_killable+0x10/0x10 [ 896.194931][T22915] vm_mmap_pgoff+0x38f/0x4e0 [ 896.194953][T22915] ? __cfi_vm_mmap_pgoff+0x10/0x10 [ 896.194974][T22915] ? __fget_files+0x2c5/0x340 [ 896.195000][T22915] ksys_mmap_pgoff+0x166/0x1e0 [ 896.195022][T22915] __x64_sys_mmap+0x121/0x140 [ 896.195055][T22915] x64_sys_call+0x13bf/0x2ee0 [ 896.195087][T22915] do_syscall_64+0x58/0xf0 [ 896.195114][T22915] ? clear_bhb_loop+0x50/0xa0 [ 896.195139][T22915] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 896.195163][T22915] RIP: 0033:0x7f14ebb8f6c9 [ 896.195182][T22915] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 896.195201][T22915] RSP: 002b:00007f14ec9be038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 896.195225][T22915] RAX: ffffffffffffffda RBX: 00007f14ebde5fa0 RCX: 00007f14ebb8f6c9 [ 896.195244][T22915] RDX: 88fd537e5c114b6e RSI: 0000000000003000 RDI: 0000200000000000 [ 896.195260][T22915] RBP: 00007f14ec9be090 R08: 0000000000000009 R09: 0000000000000000 [ 896.195275][T22915] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000001 [ 896.195290][T22915] R13: 00007f14ebde6038 R14: 00007f14ebde5fa0 R15: 00007ffcf1292e38 [ 896.195320][T22915] [ 898.975209][T23020] FAULT_INJECTION: forcing a failure. [ 898.975209][T23020] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 898.994276][T23020] CPU: 0 UID: 0 PID: 23020 Comm: syz.1.27075 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 898.994312][T23020] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 898.994326][T23020] Call Trace: [ 898.994334][T23020] [ 898.994343][T23020] __dump_stack+0x21/0x30 [ 898.994378][T23020] dump_stack_lvl+0x10c/0x190 [ 898.994408][T23020] ? __cfi_dump_stack_lvl+0x10/0x10 [ 898.994439][T23020] ? check_stack_object+0x12c/0x140 [ 898.994461][T23020] dump_stack+0x19/0x20 [ 898.994490][T23020] should_fail_ex+0x3d9/0x530 [ 898.994514][T23020] should_fail+0xf/0x20 [ 898.994535][T23020] should_fail_usercopy+0x1e/0x30 [ 898.994560][T23020] _copy_to_user+0x24/0xa0 [ 898.994588][T23020] simple_read_from_buffer+0xed/0x160 [ 898.994617][T23020] proc_fail_nth_read+0x19e/0x210 [ 898.994648][T23020] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 898.994678][T23020] ? bpf_lsm_file_permission+0xd/0x20 [ 898.994709][T23020] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 898.994738][T23020] vfs_read+0x27d/0xc70 [ 898.994758][T23020] ? ipv6_setsockopt+0xf0/0x170 [ 898.994786][T23020] ? __cfi_vfs_read+0x10/0x10 [ 898.994805][T23020] ? __kasan_check_write+0x18/0x20 [ 898.994839][T23020] ? mutex_lock+0x92/0x1c0 [ 898.994859][T23020] ? __cfi_mutex_lock+0x10/0x10 [ 898.994879][T23020] ? __fget_files+0x2c5/0x340 [ 898.994905][T23020] ksys_read+0x141/0x250 [ 898.994925][T23020] ? __cfi_ksys_read+0x10/0x10 [ 898.994946][T23020] ? __kasan_check_write+0x18/0x20 [ 898.994978][T23020] ? __kasan_check_read+0x15/0x20 [ 898.995022][T23020] __x64_sys_read+0x7f/0x90 [ 898.995041][T23020] x64_sys_call+0x2638/0x2ee0 [ 898.995071][T23020] do_syscall_64+0x58/0xf0 [ 898.995097][T23020] ? clear_bhb_loop+0x50/0xa0 [ 898.995121][T23020] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 898.995153][T23020] RIP: 0033:0x7f9ec518e0dc [ 898.995171][T23020] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 898.995189][T23020] RSP: 002b:00007f9ec5f6e030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 898.995213][T23020] RAX: ffffffffffffffda RBX: 00007f9ec53e5fa0 RCX: 00007f9ec518e0dc [ 898.995229][T23020] RDX: 000000000000000f RSI: 00007f9ec5f6e0a0 RDI: 0000000000000009 [ 898.995243][T23020] RBP: 00007f9ec5f6e090 R08: 0000000000000000 R09: 0000000000000000 [ 898.995257][T23020] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 898.995271][T23020] R13: 00007f9ec53e6038 R14: 00007f9ec53e5fa0 R15: 00007ffce2078458 [ 898.995290][T23020] [ 903.709173][ T36] audit: type=1400 audit(1763297494.170:232): avc: denied { read } for pid=23191 comm="syz.2.27159" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1 [ 903.756892][ T36] audit: type=1400 audit(1763297494.220:233): avc: denied { setopt } for pid=23191 comm="syz.2.27159" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1 [ 903.794286][ T36] audit: type=1400 audit(1763297494.220:234): avc: denied { read } for pid=23191 comm="syz.2.27159" name="msr" dev="devtmpfs" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1 [ 903.855349][ T36] audit: type=1400 audit(1763297494.220:235): avc: denied { open } for pid=23191 comm="syz.2.27159" path="/dev/cpu/0/msr" dev="devtmpfs" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1 [ 905.061655][T23224] FAULT_INJECTION: forcing a failure. [ 905.061655][T23224] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 905.092110][T23224] CPU: 1 UID: 0 PID: 23224 Comm: syz.1.27173 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 905.092144][T23224] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 905.092158][T23224] Call Trace: [ 905.092165][T23224] [ 905.092174][T23224] __dump_stack+0x21/0x30 [ 905.092207][T23224] dump_stack_lvl+0x10c/0x190 [ 905.092235][T23224] ? __cfi_dump_stack_lvl+0x10/0x10 [ 905.092263][T23224] ? mutex_unlock+0x8b/0x240 [ 905.092282][T23224] ? __cfi_mutex_unlock+0x10/0x10 [ 905.092301][T23224] ? __fget_files+0x2c5/0x340 [ 905.092324][T23224] dump_stack+0x19/0x20 [ 905.092350][T23224] should_fail_ex+0x3d9/0x530 [ 905.092372][T23224] should_fail+0xf/0x20 [ 905.092391][T23224] should_fail_usercopy+0x1e/0x30 [ 905.092414][T23224] _copy_from_user+0x22/0xb0 [ 905.092440][T23224] __x64_sys_setrlimit+0xc5/0x140 [ 905.092471][T23224] ? __cfi___x64_sys_setrlimit+0x10/0x10 [ 905.092502][T23224] ? __kasan_check_read+0x15/0x20 [ 905.092534][T23224] x64_sys_call+0x2c38/0x2ee0 [ 905.092564][T23224] do_syscall_64+0x58/0xf0 [ 905.092609][T23224] ? clear_bhb_loop+0x50/0xa0 [ 905.092633][T23224] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 905.092657][T23224] RIP: 0033:0x7f9ec518f6c9 [ 905.092675][T23224] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 905.092696][T23224] RSP: 002b:00007f9ec5f6e038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a0 [ 905.092719][T23224] RAX: ffffffffffffffda RBX: 00007f9ec53e5fa0 RCX: 00007f9ec518f6c9 [ 905.092737][T23224] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 905.092751][T23224] RBP: 00007f9ec5f6e090 R08: 0000000000000000 R09: 0000000000000000 [ 905.092766][T23224] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 905.092780][T23224] R13: 00007f9ec53e6038 R14: 00007f9ec53e5fa0 R15: 00007ffce2078458 [ 905.092808][T23224] [ 908.264930][T23349] FAULT_INJECTION: forcing a failure. [ 908.264930][T23349] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 908.294277][T23349] CPU: 1 UID: 0 PID: 23349 Comm: syz.1.27234 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 908.294314][T23349] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 908.294334][T23349] Call Trace: [ 908.294344][T23349] [ 908.294353][T23349] __dump_stack+0x21/0x30 [ 908.294388][T23349] dump_stack_lvl+0x10c/0x190 [ 908.294418][T23349] ? __cfi_dump_stack_lvl+0x10/0x10 [ 908.294449][T23349] ? check_stack_object+0x107/0x140 [ 908.294472][T23349] dump_stack+0x19/0x20 [ 908.294500][T23349] should_fail_ex+0x3d9/0x530 [ 908.294524][T23349] should_fail+0xf/0x20 [ 908.294544][T23349] should_fail_usercopy+0x1e/0x30 [ 908.294569][T23349] _copy_from_user+0x22/0xb0 [ 908.294596][T23349] do_sys_poll+0x246/0x1190 [ 908.294629][T23349] ? poll_select_finish+0x600/0x600 [ 908.294659][T23349] ? kernel_text_address+0xa9/0xe0 [ 908.294687][T23349] ? __kernel_text_address+0x11/0x40 [ 908.294726][T23349] ? unwind_get_return_address+0x51/0x90 [ 908.294751][T23349] ? __cfi_stack_trace_consume_entry+0x10/0x10 [ 908.294814][T23349] ? proc_fail_nth_write+0x17e/0x210 [ 908.294844][T23349] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 908.294881][T23349] ? bpf_lsm_file_permission+0xd/0x20 [ 908.294917][T23349] ? __cfi_timespec64_add_safe+0x10/0x10 [ 908.294944][T23349] __se_sys_poll+0x129/0x320 [ 908.294972][T23349] ? __x64_sys_poll+0xa0/0xa0 [ 908.295000][T23349] ? __kasan_check_read+0x15/0x20 [ 908.295034][T23349] __x64_sys_poll+0x7f/0xa0 [ 908.295061][T23349] x64_sys_call+0x2668/0x2ee0 [ 908.295094][T23349] do_syscall_64+0x58/0xf0 [ 908.295123][T23349] ? clear_bhb_loop+0x50/0xa0 [ 908.295148][T23349] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 908.295172][T23349] RIP: 0033:0x7f9ec518f6c9 [ 908.295191][T23349] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 908.295210][T23349] RSP: 002b:00007f9ec5f6e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000007 [ 908.295234][T23349] RAX: ffffffffffffffda RBX: 00007f9ec53e5fa0 RCX: 00007f9ec518f6c9 [ 908.295252][T23349] RDX: 0000000000000101 RSI: 0000000000000001 RDI: 00002000000001c0 [ 908.295268][T23349] RBP: 00007f9ec5f6e090 R08: 0000000000000000 R09: 0000000000000000 [ 908.295283][T23349] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 908.295297][T23349] R13: 00007f9ec53e6038 R14: 00007f9ec53e5fa0 R15: 00007ffce2078458 [ 908.295317][T23349] [ 909.015068][T23379] FAULT_INJECTION: forcing a failure. [ 909.015068][T23379] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 909.062669][T23379] CPU: 1 UID: 0 PID: 23379 Comm: syz.2.27250 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 909.062710][T23379] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 909.062725][T23379] Call Trace: [ 909.062733][T23379] [ 909.062743][T23379] __dump_stack+0x21/0x30 [ 909.062778][T23379] dump_stack_lvl+0x10c/0x190 [ 909.062807][T23379] ? __cfi_dump_stack_lvl+0x10/0x10 [ 909.062837][T23379] ? mutex_unlock+0x8b/0x240 [ 909.062857][T23379] ? __cfi_mutex_unlock+0x10/0x10 [ 909.062877][T23379] ? __fget_files+0x2c5/0x340 [ 909.062901][T23379] dump_stack+0x19/0x20 [ 909.062929][T23379] should_fail_ex+0x3d9/0x530 [ 909.062952][T23379] should_fail+0xf/0x20 [ 909.062971][T23379] should_fail_usercopy+0x1e/0x30 [ 909.062994][T23379] _copy_from_user+0x22/0xb0 [ 909.063021][T23379] __x64_sys_setrlimit+0xc5/0x140 [ 909.063054][T23379] ? __cfi___x64_sys_setrlimit+0x10/0x10 [ 909.063085][T23379] ? __kasan_check_read+0x15/0x20 [ 909.063119][T23379] x64_sys_call+0x2c38/0x2ee0 [ 909.063150][T23379] do_syscall_64+0x58/0xf0 [ 909.063178][T23379] ? clear_bhb_loop+0x50/0xa0 [ 909.063202][T23379] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 909.063225][T23379] RIP: 0033:0x7f628938f6c9 [ 909.063243][T23379] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 909.063263][T23379] RSP: 002b:00007f6287de3038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a0 [ 909.063287][T23379] RAX: ffffffffffffffda RBX: 00007f62895e5fa0 RCX: 00007f628938f6c9 [ 909.063305][T23379] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 909.063318][T23379] RBP: 00007f6287de3090 R08: 0000000000000000 R09: 0000000000000000 [ 909.063333][T23379] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 909.063347][T23379] R13: 00007f62895e6038 R14: 00007f62895e5fa0 R15: 00007ffdc43d76b8 [ 909.063366][T23379] [ 910.705354][T23449] FAULT_INJECTION: forcing a failure. [ 910.705354][T23449] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 910.718530][T23449] CPU: 1 UID: 0 PID: 23449 Comm: syz.1.27284 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 910.718567][T23449] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 910.718583][T23449] Call Trace: [ 910.718591][T23449] [ 910.718601][T23449] __dump_stack+0x21/0x30 [ 910.718638][T23449] dump_stack_lvl+0x10c/0x190 [ 910.718670][T23449] ? __cfi_dump_stack_lvl+0x10/0x10 [ 910.718701][T23449] ? mutex_unlock+0x8b/0x240 [ 910.718730][T23449] ? __cfi_mutex_unlock+0x10/0x10 [ 910.718752][T23449] ? __fget_files+0x2c5/0x340 [ 910.718778][T23449] dump_stack+0x19/0x20 [ 910.718808][T23449] should_fail_ex+0x3d9/0x530 [ 910.718832][T23449] should_fail+0xf/0x20 [ 910.718854][T23449] should_fail_usercopy+0x1e/0x30 [ 910.718879][T23449] _copy_from_user+0x22/0xb0 [ 910.718908][T23449] __x64_sys_setrlimit+0xc5/0x140 [ 910.718943][T23449] ? __cfi___x64_sys_setrlimit+0x10/0x10 [ 910.718977][T23449] ? __kasan_check_read+0x15/0x20 [ 910.719014][T23449] x64_sys_call+0x2c38/0x2ee0 [ 910.719048][T23449] do_syscall_64+0x58/0xf0 [ 910.719078][T23449] ? clear_bhb_loop+0x50/0xa0 [ 910.719104][T23449] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 910.719128][T23449] RIP: 0033:0x7f9ec518f6c9 [ 910.719147][T23449] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 910.719168][T23449] RSP: 002b:00007f9ec5f6e038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a0 [ 910.719195][T23449] RAX: ffffffffffffffda RBX: 00007f9ec53e5fa0 RCX: 00007f9ec518f6c9 [ 910.719213][T23449] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 910.719228][T23449] RBP: 00007f9ec5f6e090 R08: 0000000000000000 R09: 0000000000000000 [ 910.719244][T23449] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 910.719259][T23449] R13: 00007f9ec53e6038 R14: 00007f9ec53e5fa0 R15: 00007ffce2078458 [ 910.719280][T23449] [ 912.177716][T23509] FAULT_INJECTION: forcing a failure. [ 912.177716][T23509] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 912.214302][T23509] CPU: 0 UID: 0 PID: 23509 Comm: syz.1.27308 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 912.214339][T23509] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 912.214353][T23509] Call Trace: [ 912.214361][T23509] [ 912.214370][T23509] __dump_stack+0x21/0x30 [ 912.214402][T23509] dump_stack_lvl+0x10c/0x190 [ 912.214430][T23509] ? __cfi_dump_stack_lvl+0x10/0x10 [ 912.214457][T23509] ? mutex_unlock+0x8b/0x240 [ 912.214477][T23509] ? __cfi_mutex_unlock+0x10/0x10 [ 912.214496][T23509] ? __fget_files+0x2c5/0x340 [ 912.214517][T23509] dump_stack+0x19/0x20 [ 912.214543][T23509] should_fail_ex+0x3d9/0x530 [ 912.214564][T23509] should_fail+0xf/0x20 [ 912.214582][T23509] should_fail_usercopy+0x1e/0x30 [ 912.214604][T23509] _copy_from_user+0x22/0xb0 [ 912.214629][T23509] __x64_sys_setrlimit+0xc5/0x140 [ 912.214660][T23509] ? __cfi___x64_sys_setrlimit+0x10/0x10 [ 912.214696][T23509] ? __kasan_check_read+0x15/0x20 [ 912.214728][T23509] x64_sys_call+0x2c38/0x2ee0 [ 912.214756][T23509] do_syscall_64+0x58/0xf0 [ 912.214782][T23509] ? clear_bhb_loop+0x50/0xa0 [ 912.214805][T23509] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 912.214827][T23509] RIP: 0033:0x7f9ec518f6c9 [ 912.214844][T23509] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 912.214862][T23509] RSP: 002b:00007f9ec5f6e038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a0 [ 912.214885][T23509] RAX: ffffffffffffffda RBX: 00007f9ec53e5fa0 RCX: 00007f9ec518f6c9 [ 912.214901][T23509] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 912.214914][T23509] RBP: 00007f9ec5f6e090 R08: 0000000000000000 R09: 0000000000000000 [ 912.214928][T23509] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 912.214941][T23509] R13: 00007f9ec53e6038 R14: 00007f9ec53e5fa0 R15: 00007ffce2078458 [ 912.214959][T23509] [ 913.127539][T23566] FAULT_INJECTION: forcing a failure. [ 913.127539][T23566] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 913.150784][T23566] CPU: 0 UID: 0 PID: 23566 Comm: syz.3.27341 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 913.150823][T23566] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 913.150837][T23566] Call Trace: [ 913.150844][T23566] [ 913.150853][T23566] __dump_stack+0x21/0x30 [ 913.150887][T23566] dump_stack_lvl+0x10c/0x190 [ 913.150915][T23566] ? __cfi_dump_stack_lvl+0x10/0x10 [ 913.150943][T23566] ? check_stack_object+0x12c/0x140 [ 913.150964][T23566] dump_stack+0x19/0x20 [ 913.150990][T23566] should_fail_ex+0x3d9/0x530 [ 913.151012][T23566] should_fail+0xf/0x20 [ 913.151031][T23566] should_fail_usercopy+0x1e/0x30 [ 913.151053][T23566] _copy_to_user+0x24/0xa0 [ 913.151079][T23566] simple_read_from_buffer+0xed/0x160 [ 913.151106][T23566] proc_fail_nth_read+0x19e/0x210 [ 913.151134][T23566] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 913.151161][T23566] ? __cfi_fcntl_setlease+0x10/0x10 [ 913.151182][T23566] ? bpf_lsm_file_permission+0xd/0x20 [ 913.151210][T23566] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 913.151237][T23566] vfs_read+0x27d/0xc70 [ 913.151257][T23566] ? __cfi_vfs_read+0x10/0x10 [ 913.151274][T23566] ? __kasan_check_write+0x18/0x20 [ 913.151304][T23566] ? mutex_lock+0x92/0x1c0 [ 913.151323][T23566] ? __cfi_mutex_lock+0x10/0x10 [ 913.151341][T23566] ? __fget_files+0x2c5/0x340 [ 913.151364][T23566] ksys_read+0x141/0x250 [ 913.151382][T23566] ? __cfi_ksys_read+0x10/0x10 [ 913.151400][T23566] ? __kasan_check_write+0x18/0x20 [ 913.151430][T23566] ? fput+0x1a5/0x240 [ 913.151455][T23566] ? __kasan_check_read+0x15/0x20 [ 913.151485][T23566] __x64_sys_read+0x7f/0x90 [ 913.151504][T23566] x64_sys_call+0x2638/0x2ee0 [ 913.151535][T23566] do_syscall_64+0x58/0xf0 [ 913.151561][T23566] ? clear_bhb_loop+0x50/0xa0 [ 913.151590][T23566] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 913.151613][T23566] RIP: 0033:0x7fb97ef8e0dc [ 913.151631][T23566] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 913.151651][T23566] RSP: 002b:00007fb97fd8b030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 913.151674][T23566] RAX: ffffffffffffffda RBX: 00007fb97f1e5fa0 RCX: 00007fb97ef8e0dc [ 913.151691][T23566] RDX: 000000000000000f RSI: 00007fb97fd8b0a0 RDI: 0000000000000008 [ 913.151705][T23566] RBP: 00007fb97fd8b090 R08: 0000000000000000 R09: 0000000000000000 [ 913.151719][T23566] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 913.151733][T23566] R13: 00007fb97f1e6038 R14: 00007fb97f1e5fa0 R15: 00007fff48437b28 [ 913.151752][T23566] [ 913.534333][ T36] audit: type=1400 audit(1763297503.990:236): avc: denied { sqpoll } for pid=23581 comm="syz.3.27349" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1 [ 913.648966][T23586] FAULT_INJECTION: forcing a failure. [ 913.648966][T23586] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 913.684337][T23586] CPU: 1 UID: 0 PID: 23586 Comm: syz.3.27351 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 913.684377][T23586] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 913.684392][T23586] Call Trace: [ 913.684400][T23586] [ 913.684410][T23586] __dump_stack+0x21/0x30 [ 913.684446][T23586] dump_stack_lvl+0x10c/0x190 [ 913.684477][T23586] ? __cfi_dump_stack_lvl+0x10/0x10 [ 913.684522][T23586] dump_stack+0x19/0x20 [ 913.684550][T23586] should_fail_ex+0x3d9/0x530 [ 913.684574][T23586] should_fail+0xf/0x20 [ 913.684601][T23586] should_fail_usercopy+0x1e/0x30 [ 913.684625][T23586] _copy_from_user+0x22/0xb0 [ 913.684652][T23586] __x64_sys_rt_sigaction+0x152/0x270 [ 913.684675][T23586] ? __cfi___x64_sys_rt_sigaction+0x10/0x10 [ 913.684700][T23586] ? __kasan_check_read+0x15/0x20 [ 913.684734][T23586] x64_sys_call+0x1bed/0x2ee0 [ 913.684766][T23586] do_syscall_64+0x58/0xf0 [ 913.684793][T23586] ? clear_bhb_loop+0x50/0xa0 [ 913.684819][T23586] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 913.684842][T23586] RIP: 0033:0x7fb97ef8f6c9 [ 913.684860][T23586] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 913.684880][T23586] RSP: 002b:00007fb97fd8b038 EFLAGS: 00000246 ORIG_RAX: 000000000000000d [ 913.684905][T23586] RAX: ffffffffffffffda RBX: 00007fb97f1e5fa0 RCX: 00007fb97ef8f6c9 [ 913.684921][T23586] RDX: 0000000000000000 RSI: 0000200000000180 RDI: 000000000000000d [ 913.684937][T23586] RBP: 00007fb97fd8b090 R08: 0000200000000300 R09: 0000000000000000 [ 913.684954][T23586] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000001 [ 913.684968][T23586] R13: 00007fb97f1e6038 R14: 00007fb97f1e5fa0 R15: 00007fff48437b28 [ 913.684989][T23586] [ 914.004305][ T36] audit: type=1326 audit(1763297504.440:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23587 comm="syz.0.27352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14ebb8f6c9 code=0x7ffc0000 [ 914.072287][ T36] audit: type=1326 audit(1763297504.440:238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23587 comm="syz.0.27352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14ebb8f6c9 code=0x7ffc0000 [ 914.144302][ T36] audit: type=1326 audit(1763297504.440:239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23587 comm="syz.0.27352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f14ebb8f6c9 code=0x7ffc0000 [ 914.175786][ T36] audit: type=1326 audit(1763297504.440:240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23587 comm="syz.0.27352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14ebb8f6c9 code=0x7ffc0000 [ 914.205004][ T36] audit: type=1326 audit(1763297504.440:241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23587 comm="syz.0.27352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f14ebb8f6c9 code=0x7ffc0000 [ 914.229143][ T36] audit: type=1326 audit(1763297504.440:242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23587 comm="syz.0.27352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14ebb8f6c9 code=0x7ffc0000 [ 914.253317][ T36] audit: type=1326 audit(1763297504.440:243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23587 comm="syz.0.27352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f14ebb8f6c9 code=0x7ffc0000 [ 914.277592][ T36] audit: type=1326 audit(1763297504.440:244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23587 comm="syz.0.27352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14ebb8f6c9 code=0x7ffc0000 [ 914.342411][ T36] audit: type=1326 audit(1763297504.440:245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23587 comm="syz.0.27352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f14ebb8f6c9 code=0x7ffc0000 [ 914.386838][T23614] netlink: 'syz.3.27366': attribute type 4 has an invalid length. [ 914.646373][T23643] incfs: Options parsing error. -22 [ 914.651733][T23643] incfs: mount failed -22 [ 914.669576][T23644] FAULT_INJECTION: forcing a failure. [ 914.669576][T23644] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 914.692287][T23644] CPU: 1 UID: 0 PID: 23644 Comm: syz.1.27379 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 914.692325][T23644] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 914.692340][T23644] Call Trace: [ 914.692348][T23644] [ 914.692357][T23644] __dump_stack+0x21/0x30 [ 914.692392][T23644] dump_stack_lvl+0x10c/0x190 [ 914.692422][T23644] ? __cfi_dump_stack_lvl+0x10/0x10 [ 914.692454][T23644] ? check_stack_object+0x12c/0x140 [ 914.692476][T23644] dump_stack+0x19/0x20 [ 914.692503][T23644] should_fail_ex+0x3d9/0x530 [ 914.692525][T23644] should_fail+0xf/0x20 [ 914.692554][T23644] should_fail_usercopy+0x1e/0x30 [ 914.692578][T23644] _copy_to_user+0x24/0xa0 [ 914.692606][T23644] simple_read_from_buffer+0xed/0x160 [ 914.692634][T23644] proc_fail_nth_read+0x19e/0x210 [ 914.692663][T23644] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 914.692692][T23644] ? __cfi_fcntl_setlease+0x10/0x10 [ 914.692714][T23644] ? bpf_lsm_file_permission+0xd/0x20 [ 914.692745][T23644] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 914.692775][T23644] vfs_read+0x27d/0xc70 [ 914.692794][T23644] ? __cfi_vfs_read+0x10/0x10 [ 914.692812][T23644] ? __kasan_check_write+0x18/0x20 [ 914.692845][T23644] ? mutex_lock+0x92/0x1c0 [ 914.692866][T23644] ? __cfi_mutex_lock+0x10/0x10 [ 914.692886][T23644] ? __fget_files+0x2c5/0x340 [ 914.692912][T23644] ksys_read+0x141/0x250 [ 914.692932][T23644] ? __cfi_ksys_read+0x10/0x10 [ 914.692963][T23644] ? __kasan_check_write+0x18/0x20 [ 914.692994][T23644] ? fput+0x1a5/0x240 [ 914.693019][T23644] ? __kasan_check_read+0x15/0x20 [ 914.693052][T23644] __x64_sys_read+0x7f/0x90 [ 914.693071][T23644] x64_sys_call+0x2638/0x2ee0 [ 914.693103][T23644] do_syscall_64+0x58/0xf0 [ 914.693130][T23644] ? clear_bhb_loop+0x50/0xa0 [ 914.693154][T23644] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 914.693181][T23644] RIP: 0033:0x7f9ec518e0dc [ 914.693199][T23644] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 914.693219][T23644] RSP: 002b:00007f9ec5f6e030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 914.693242][T23644] RAX: ffffffffffffffda RBX: 00007f9ec53e5fa0 RCX: 00007f9ec518e0dc [ 914.693258][T23644] RDX: 000000000000000f RSI: 00007f9ec5f6e0a0 RDI: 0000000000000009 [ 914.693272][T23644] RBP: 00007f9ec5f6e090 R08: 0000000000000000 R09: 0000000000000000 [ 914.693286][T23644] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 914.693299][T23644] R13: 00007f9ec53e6038 R14: 00007f9ec53e5fa0 R15: 00007ffce2078458 [ 914.693318][T23644] [ 918.146504][T23718] netlink: 'syz.1.27411': attribute type 4 has an invalid length. [ 918.254324][T23722] netlink: 'syz.1.27413': attribute type 4 has an invalid length. [ 918.841070][T23734] netlink: 'syz.0.27421': attribute type 4 has an invalid length. [ 919.207464][T29404] bridge_slave_1: left allmulticast mode [ 919.213279][T29404] bridge_slave_1: left promiscuous mode [ 919.225042][T29404] bridge0: port 2(bridge_slave_1) entered disabled state [ 919.253236][T29404] bridge_slave_0: left allmulticast mode [ 919.264391][T29404] bridge_slave_0: left promiscuous mode [ 919.293560][T29404] bridge0: port 1(bridge_slave_0) entered disabled state [ 919.446780][T23744] bridge0: port 1(bridge_slave_0) entered blocking state [ 919.453872][T23744] bridge0: port 1(bridge_slave_0) entered disabled state [ 919.484322][T23744] bridge_slave_0: entered allmulticast mode [ 919.504737][T23744] bridge_slave_0: entered promiscuous mode [ 919.525624][T29404] veth1_macvtap: left promiscuous mode [ 919.531252][T29404] veth0_vlan: left promiscuous mode [ 919.651980][T23744] bridge0: port 2(bridge_slave_1) entered blocking state [ 919.664327][T23744] bridge0: port 2(bridge_slave_1) entered disabled state [ 919.674575][T23744] bridge_slave_1: entered allmulticast mode [ 919.681190][T23744] bridge_slave_1: entered promiscuous mode [ 919.704506][T23759] netlink: 'syz.1.27430': attribute type 4 has an invalid length. [ 919.878278][T23744] bridge0: port 2(bridge_slave_1) entered blocking state [ 919.885392][T23744] bridge0: port 2(bridge_slave_1) entered forwarding state [ 919.892692][T23744] bridge0: port 1(bridge_slave_0) entered blocking state [ 919.899756][T23744] bridge0: port 1(bridge_slave_0) entered forwarding state [ 919.967712][T29404] bridge0: port 1(bridge_slave_0) entered disabled state [ 919.994393][T29404] bridge0: port 2(bridge_slave_1) entered disabled state [ 920.006413][T29404] bridge0: port 1(bridge_slave_0) entered blocking state [ 920.013493][T29404] bridge0: port 1(bridge_slave_0) entered forwarding state [ 920.041508][T29404] bridge0: port 2(bridge_slave_1) entered blocking state [ 920.048697][T29404] bridge0: port 2(bridge_slave_1) entered forwarding state [ 920.120323][T23744] veth0_vlan: entered promiscuous mode [ 920.148415][T23744] veth1_macvtap: entered promiscuous mode [ 920.181123][ T36] kauditd_printk_skb: 30 callbacks suppressed [ 920.181144][ T36] audit: type=1400 audit(1763297510.640:276): avc: denied { mounton } for pid=23744 comm="syz-executor" path="/root/syzkaller.TBLrPn/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1 [ 920.256986][T23777] netlink: 'syz.0.27423': attribute type 4 has an invalid length. [ 921.307005][ T36] audit: type=1400 audit(1763297511.770:277): avc: denied { associate } for pid=23834 comm="syz.2.27465" name="file0" scontext=root:object_r:etc_runtime_t tcontext=system_u:object_r:root_t tclass=filesystem permissive=1 [ 921.485404][T23852] netlink: 'syz.0.27470': attribute type 4 has an invalid length. [ 921.685391][T23876] netlink: 'syz.3.27483': attribute type 4 has an invalid length. [ 921.764933][T23882] netlink: 'syz.3.27486': attribute type 4 has an invalid length. [ 921.783219][T23888] FAULT_INJECTION: forcing a failure. [ 921.783219][T23888] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 921.824279][T23888] CPU: 0 UID: 0 PID: 23888 Comm: syz.0.27489 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 921.824336][T23888] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 921.824352][T23888] Call Trace: [ 921.824360][T23888] [ 921.824370][T23888] __dump_stack+0x21/0x30 [ 921.824408][T23888] dump_stack_lvl+0x10c/0x190 [ 921.824439][T23888] ? __cfi_dump_stack_lvl+0x10/0x10 [ 921.824473][T23888] dump_stack+0x19/0x20 [ 921.824503][T23888] should_fail_ex+0x3d9/0x530 [ 921.824528][T23888] should_fail+0xf/0x20 [ 921.824550][T23888] should_fail_usercopy+0x1e/0x30 [ 921.824575][T23888] _copy_from_user+0x22/0xb0 [ 921.824604][T23888] get_timespec64+0x8f/0x1a0 [ 921.824628][T23888] ? __cfi_get_timespec64+0x10/0x10 [ 921.824652][T23888] ? vfs_write+0x93e/0xf30 [ 921.824675][T23888] __se_sys_futex_waitv+0x198/0x690 [ 921.824714][T23888] ? mutex_unlock+0x8b/0x240 [ 921.824735][T23888] ? __x64_sys_futex_waitv+0xf0/0xf0 [ 921.824758][T23888] ? __fget_files+0x2c5/0x340 [ 921.824783][T23888] ? __kasan_check_write+0x18/0x20 [ 921.824814][T23888] ? fput+0x1a5/0x240 [ 921.824841][T23888] ? __cfi_ksys_write+0x10/0x10 [ 921.824863][T23888] __x64_sys_futex_waitv+0xc3/0xf0 [ 921.824889][T23888] x64_sys_call+0x2dc4/0x2ee0 [ 921.824921][T23888] do_syscall_64+0x58/0xf0 [ 921.824949][T23888] ? clear_bhb_loop+0x50/0xa0 [ 921.824975][T23888] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 921.824999][T23888] RIP: 0033:0x7f15f5f8f6c9 [ 921.825018][T23888] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 921.825038][T23888] RSP: 002b:00007f15f49f7038 EFLAGS: 00000246 ORIG_RAX: 00000000000001c1 [ 921.825063][T23888] RAX: ffffffffffffffda RBX: 00007f15f61e5fa0 RCX: 00007f15f5f8f6c9 [ 921.825081][T23888] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000200000000400 [ 921.825105][T23888] RBP: 00007f15f49f7090 R08: 0000000000000000 R09: 0000000000000000 [ 921.825121][T23888] R10: 0000200000000500 R11: 0000000000000246 R12: 0000000000000001 [ 921.825137][T23888] R13: 00007f15f61e6038 R14: 00007f15f61e5fa0 R15: 00007fff83867d08 [ 921.825157][T23888] [ 922.050350][T23899] netlink: 64 bytes leftover after parsing attributes in process `syz.1.27494'. [ 922.107984][T23906] netlink: 'syz.0.27497': attribute type 4 has an invalid length. [ 922.193990][T23918] netlink: 'syz.3.27504': attribute type 4 has an invalid length. [ 922.301456][ T36] audit: type=1400 audit(1763297512.760:278): avc: denied { write } for pid=23928 comm="syz.0.27509" name="/" dev="incremental-fs" ino=131 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 922.355146][ T36] audit: type=1400 audit(1763297512.790:279): avc: denied { add_name } for pid=23928 comm="syz.0.27509" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 922.396258][ T36] audit: type=1400 audit(1763297512.790:280): avc: denied { create } for pid=23928 comm="syz.0.27509" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 922.438678][ T36] audit: type=1400 audit(1763297512.790:281): avc: denied { associate } for pid=23928 comm="syz.0.27509" name="file0" scontext=root:object_r:unlabeled_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 922.514869][T23943] netlink: 'syz.0.27515': attribute type 4 has an invalid length. [ 922.894463][T23970] netlink: 'syz.2.27528': attribute type 4 has an invalid length. [ 923.026260][ T36] audit: type=1400 audit(1763297513.490:282): avc: denied { map } for pid=23984 comm="syz.2.27537" path="socket:[379097]" dev="sockfs" ino=379097 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 923.082840][ T36] audit: type=1400 audit(1763297513.490:283): avc: denied { read } for pid=23984 comm="syz.2.27537" path="socket:[379097]" dev="sockfs" ino=379097 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 923.322447][T24014] netlink: 'syz.3.27551': attribute type 4 has an invalid length. [ 925.046836][ T36] audit: type=1400 audit(1763297515.510:284): avc: denied { read } for pid=24088 comm="syz.1.27588" name="file0" dev="incremental-fs" ino=378286 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 925.909948][ T36] audit: type=1400 audit(1763297516.370:285): avc: denied { read } for pid=24139 comm="poweroff" name="log" dev="sda1" ino=2010 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1 Stopping sshd: stopped /usr/sbin/sshd (pid 202) OK Stopping crond: stopped /usr/sbin/crond (pid 194) OK Stopping dhcpcd... stopped /sbin/dhcpcd (pid 148) [ 926.502075][ T36] audit: type=1400 audit(1763297516.960:286): avc: denied { search } for pid=24151 comm="dhcpcd-run-hook" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 Stopping network: [ 926.702611][ T36] audit: type=1400 audit(1763297517.160:287): avc: denied { write } for pid=149 comm="dhcpcd" name="dhcpcd" dev="tmpfs" ino=421 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 926.784296][ T36] audit: type=1400 audit(1763297517.160:288): avc: denied { remove_name } for pid=149 comm="dhcpcd" name="sock" dev="tmpfs" ino=423 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 926.839899][ T36] audit: type=1400 audit(1763297517.160:289): avc: denied { unlink } for pid=149 comm="dhcpcd" name="sock" dev="tmpfs" ino=423 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=sock_file permissive=1 [ 926.884314][ T36] audit: type=1400 audit(1763297517.210:290): avc: denied { unlink } for pid=149 comm="dhcpcd" name="pid" dev="tmpfs" ino=422 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 OK [ 926.929685][ T36] audit: type=1400 audit(1763297517.220:291): avc: denied { execute } for pid=24162 comm="syz.3.27613" path="/469/blkio.bfq.group_wait_time" dev="tmpfs" ino=2905 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 926.954914][ T36] audit: type=1400 audit(1763297517.300:292): avc: denied { read write } for pid=24170 comm="ip" path="/dev/console" dev="rootfs" ino=88 scontext=system_u:system_r:ifconfig_t tcontext=system_u:object_r:root_t tclass=chr_file permissive=1 Stopping iptables: [ 927.002920][ T36] audit: type=1400 audit(1763297517.450:293): avc: denied { read write } for pid=24187 comm="iptables" path="/dev/console" dev="rootfs" ino=88 scontext=system_u:system_r:iptables_t tcontext=system_u:object_r:root_t tclass=chr_file permissive=1 [ 927.045101][ T36] audit: type=1400 audit(1763297517.470:294): avc: denied { search } for pid=24187 comm="iptables" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:iptables_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 OK Stopping system message bus: done Stopping klogd: OK Stopping acpid: [ 927.623920][T24289] incfs: mount failed -22 OK Stopping syslogd: stopped /sbin/syslogd (pid 92) OK umount: can't remount debugfs read-only [ 928.822317][T24340] incfs: mount failed -22 [ 928.989158][T24353] netlink: 64 bytes leftover after parsing attributes in process `syz.3.27694'. Connection to 10.128.0.165 closed by remote host. umount: sysfs busy - remounted read-only umount: devtmpfs busy - remounted read-only umount: can't remount /dev/root read-only The system is going down NOW! [ 929.279436][T24445] bridge_slave_1: left allmulticast mode [ 929.285206][T24445] bridge_slave_1: left promiscuous mode [ 929.290853][T24445] bridge0: port 2(bridge_slave_1) entered disabled state [ 929.298580][T24445] bridge_slave_0: left allmulticast mode [ 929.304293][T24445] bridge_slave_0: left promiscuous mode [ 929.311273][T24445] bridge0: port 1(bridge_slave_0) entered disabled state [ 929.456721][T24445] veth1_macvtap: left promiscuous mode [ 929.462339][T24445] veth0_vlan: left promiscuous mode [ 929.707698][T24445] bridge_slave_1: left allmulticast mode [ 929.713371][T24445] bridge_slave_1: left promiscuous mode [ 929.719032][T24445] bridge0: port 2(bridge_slave_1) entered disabled state [ 929.726626][T24445] bridge_slave_0: left allmulticast mode [ 929.732288][T24445] bridge_slave_0: left promiscuous mode [ 929.737902][T24445] bridge0: port 1(bridge_slave_0) entered disabled state [ 929.745547][T24445] bridge_slave_1: left allmulticast mode [ 929.751192][T24445] bridge_slave_1: left promiscuous mode [ 929.756917][T24445] bridge0: port 2(bridge_slave_1) entered disabled state [ 929.764489][T24445] bridge_slave_0: left allmulticast mode [ 929.770138][T24445] bridge_slave_0: left promiscuous mode [ 929.775777][T24445] bridge0: port 1(bridge_slave_0) entered disabled state [ 929.783460][T24445] bridge_slave_1: left allmulticast mode [ 929.789160][T24445] bridge_slave_1: left promiscuous mode [ 929.794816][T24445] bridge0: port 2(bridge_slave_1) entered disabled state [ 929.802336][T24445] bridge_slave_0: left allmulticast mode [ 929.808023][T24445] bridge_slave_0: left promiscuous mode [ 929.813617][T24445] bridge0: port 1(bridge_slave_0) entered disabled state [ 930.070025][T24445] veth1_macvtap: left promiscuous mode [ 930.075633][T24445] veth0_vlan: left promiscuous mode [ 930.081145][T24445] veth1_macvtap: left promiscuous mode [ 930.086680][T24445] veth0_vlan: left promiscuous mode [ 930.092187][T24445] veth1_macvtap: left promiscuous mode [ 930.097792][T24445] veth0_vlan: left promiscuous mode Sent SIGKILL to all processes Requesting system poweroff [ 931.153247][T24362] sd 0:0:1:0: [sda] Synchronizing SCSI cache [ 931.160134][T24362] ACPI: PM: Preparing to enter system sleep state S5 [ 931.167464][T24362] kvm: exiting hardware virtualization [ 931.173066][T24362] reboot: Power down serialport: VM disconnected.