last executing test programs: 4.759044353s ago: executing program 1 (id=442): socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x4994, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="720100"], 0x1ac}}, 0x40000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fb0\x00', 0x8002, 0x0) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socketpair$auto(0xfffffffd, 0x5, 0xffffffff, 0x0) unshare$auto(0x40000080) setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd) setsockopt$auto(0x3, 0x10000000084, 0x7c, 0x0, 0x8) 4.141523264s ago: executing program 2 (id=444): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0) ioctl$auto_PPPIOCSMRU(r0, 0xc004743e, 0x0) r1 = io_uring_setup$auto(0x5d, &(0x7f0000000080)={0x7fffffff, 0xd, 0x6, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0x6, 0x6, 0x8c48, 0x29f, 0x100, 0x80, 0x101, 0x5, 0x2}, {0x100, 0x20001, 0x52, 0x5, 0x1, 0x0, 0x76c5, 0x8, 0x100000000}}) read$auto(r2, &(0x7f00000001c0)='?\x00', 0x8) mknod$auto(&(0x7f0000000000)='./file0\x00', 0x7f, 0x6) move_mount$auto(0xffffffffffffffff, &(0x7f00000001c0)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x6) ioctl$auto_PPPIOCSPASS(r0, 0x40107447, &(0x7f0000000040)={0x6, 0x0}) capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48}) ioctl$auto_PPPIOCSPASS(r0, 0x40107447, &(0x7f00000002c0)={0x9, &(0x7f0000000000)={0x50, 0xf2, 0xb0, @raw=0x80000000}}) write$auto(0x3, 0x0, 0xfdef) openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000080), 0x48180, 0x0) socket(0xf, 0x3, 0x2) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r3 = socket(0x1e, 0x1, 0x0) socket(0x11, 0x80003, 0x300) r4 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000180)='/proc/interrupts\x00', 0x18b202, 0x0) getsockopt$auto_SO_BUF_LOCK(r3, 0x9, 0x48, &(0x7f0000000140)='@[K*({{\x00', &(0x7f0000000240)=0x3) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_BATADV_CMD_GET_MCAST_FLAGS(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000300)={0x2c, 0x0, 0x400, 0x70bd2c, 0x25dfdbfb, {}, [@BATADV_ATTR_BANDWIDTH_UP={0x8, 0x1b, 0x8}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x7}, @BATADV_ATTR_THROUGHPUT={0x8, 0x1a, 0x6}]}, 0x2c}, 0x1, 0x0, 0x0, 0x400c871}, 0xc884) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/pci0000:00/waiting_for_supplier\x00', 0x80800, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r1, 0xc0045516, 0x0) pread64$auto(r4, 0x0, 0x100000001, 0x400100) r5 = io_uring_setup$auto(0x1d48, &(0x7f0000000340)={0x7fffffff, 0x10, 0x2, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0x6, 0x8, 0x1, 0x80000000, 0x100, 0x83, 0x101, 0x6, 0x8000000000000001}, {0x100, 0x1, 0x52, 0x5, 0x11, 0x101, 0x876c5, 0xc9, 0x3}}) r6 = getpid() process_vm_readv$auto(r6, &(0x7f0000000080)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0) io_uring_register$auto(r5, 0x15, 0x0, 0x9) 4.021801111s ago: executing program 3 (id=445): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x2020009, 0x3041, 0xeb1, 0xfffffffffffffffa, 0x8000) adjtimex$auto(0x0) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0) rseq$auto(&(0x7f0000000000)={0x4, 0x800, 0x7, 0x5, 0x5, 0x1}, 0x81, 0x0, 0x1) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) capset$auto(&(0x7f0000000100)={0x20080522, 0x0}, 0x0) r1 = openat$auto_safesetid_gid_file_fops_securityfs(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0) write$auto_safesetid_gid_file_fops_securityfs(r1, 0x0, 0x0) kexec_load$auto(0x101, 0x2, &(0x7f0000000080)={@kbuf=0x0, 0x2, 0x8000, 0x3000}, 0x4) capset$auto(&(0x7f00000000c0)={0x8, r0}, &(0x7f0000000140)={0x10001, 0x6, 0xffffffff}) 3.893043087s ago: executing program 3 (id=446): mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) mmap$auto(0x0, 0x4005, 0x2, 0x40eb2, 0x401, 0x300000000000) r0 = socket(0x29, 0x2, 0x0) r1 = socket(0x10, 0x2, 0x0) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000) recvmmsg$auto(r1, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0) ioctl$auto(r0, 0x8931, 0x24) r2 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) ioctl$auto_PPPIOCSMRU(r2, 0xc004743e, 0x0) ioctl$auto_PPPIOCSPASS(r2, 0x40107447, &(0x7f00000000c0)={0x9, &(0x7f0000000000)={0x64, 0xff, 0x0, @raw=0xfffff020}}) 3.815689935s ago: executing program 1 (id=447): membarrier$auto_MEMBARRIER_CMD_PRIVATE_EXPEDITED(0x8, 0xfff, 0x500) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) epoll_create$auto(0x4) (async) r0 = epoll_create$auto(0x4) get_robust_list$auto(0x0, 0x0, 0x0) (async) get_robust_list$auto(0x0, 0x0, 0x0) ioctl$auto(0x3, 0xffffffff40088a01, 0x1) (async) ioctl$auto(0x3, 0xffffffff40088a01, 0x1) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/mm/ksm/pages_unshared\x00', 0x8400, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000b40)=""/4096, 0x1000) r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/kernel/threads-max\x00', 0x40001, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r0) (async) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r0) sendmsg$auto_NL80211_CMD_SET_QOS_MAP(r3, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x104}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[], 0x1c}, 0x1, 0x0, 0x0, 0x20040040}, 0x4000000) write$auto_proc_sys_file_operations_proc_sysctl(r2, 0x0, 0xfe5c) 3.613459463s ago: executing program 2 (id=448): mmap$auto(0x80000000, 0x4, 0x2, 0x200000fffd, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000) setsockopt$auto_SO_BUSY_POLL_BUDGET(0xffffffffffffffff, 0x3, 0x46, 0x0, 0x9) madvise$auto(0x0, 0xffffffffffff0005, 0x17) set_mempolicy_home_node$auto(0x0, 0x2010001, 0x0, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) semctl$auto(0x1ff, 0x2, 0x13, 0x4) r0 = openat$auto_ftrace_event_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f00000040c0)='/sys/kernel/tracing/events/vmalloc/alloc_vmap_area/filter\x00', 0x100, 0x0) preadv$auto(r0, &(0x7f0000004480)={0x0, 0xc}, 0x3, 0xb72, 0xfffffffffffffff7) clone3$auto(&(0x7f0000000000)={0x200, 0x5, 0x7, 0x2, 0x0, 0x1ff, 0x8, 0xb, 0x6, 0x2, 0xeb6}, 0x1fe) 3.530413469s ago: executing program 0 (id=449): r0 = socket(0xa, 0x1, 0x84) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8020) close_range$auto(r0, r0, 0x5) socket$nl_generic(0x10, 0x3, 0x10) r1 = socket(0x1e, 0x4, 0x0) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x101c82, 0x0) write$auto(r2, &(0x7f0000000080)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) mq_open$auto(&(0x7f0000000040)='nl802154\x00', 0x61df, 0xb9fb, &(0x7f0000000080)={0x8000, 0xffffffffffff0000, 0x70, 0xda20}) close_range$auto(0x2, 0x8, 0x0) socket(0x1d, 0x80000, 0x0) socket(0x2, 0x1, 0x84) listen$auto(r1, 0x4) accept$auto(0x3, 0x0, 0x0) listen$auto(0x3, 0x0) shutdown$auto(0x200000003, 0x2) r3 = socket(0x1e, 0x80000, 0x165) get_robust_list$auto(0x0, 0x0, 0x0) setsockopt$auto(r3, 0x10f, 0x87, 0x0, 0x14) setsockopt$auto(0x3, 0x10f, 0x3, 0x0, 0x15) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/platform/i8042/serio1/rate\x00', 0x8802, 0x0) read$auto(0x3, 0x0, 0x80) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/cifs/smbd_keep_alive_interval\x00', 0xaa102, 0x0) write$auto(r4, 0x0, 0x803) recvmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x8, &(0x7f0000000140)={0x0, 0x4da}, 0x8000000000000004, 0x0, 0xa, 0x800}, 0xffc}, 0x2, 0x1, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x20342, 0x0) sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x30}, 0x1, 0x0, 0x0, 0x881}, 0x8000) 3.3349392s ago: executing program 1 (id=450): r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) socket(0x2, 0x1, 0x106) accept$auto(0x3, 0xffffffffffffffff, 0xffffffffffffffff) mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0x8000000000000003, 0x8000) sendmsg$auto_NL80211_CMD_START_P2P_DEVICE(r1, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000300)={0x0, 0x28}, 0x1, 0x0, 0x0, 0x20000000}, 0x4010) sendmsg$auto_NETDEV_CMD_QUEUE_GET(r1, 0x0, 0x20000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x82, 0x0) socket(0x2, 0x3, 0x8) socket(0x2, 0x1, 0x0) r2 = epoll_create$auto(0x7) r3 = socket$nl_generic(0x10, 0x3, 0x10) epoll_ctl$auto(0x5, 0x1, r3, 0x0) r4 = bpf$auto(0x0, &(0x7f00000001c0)=@token_create, 0x6f6) capset$auto(0x0, 0x0) epoll_wait$auto(r2, 0x0, 0xe007, 0x1) pwrite64$auto(0xffffffffffffffff, &(0x7f0000000040)='/dev/vcsa\x00', 0x7b05, 0x5) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) unshare$auto(0x40000080) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/system/node/node1/compact\x00', 0xc2481, 0x0) writev$auto(r5, &(0x7f0000000080)={&(0x7f0000000040)="99e7daa24511691d42a9", 0x1000}, 0x3) close_range$auto(r4, 0xffffffffffffffff, 0x0) socket(0x6, 0x2, 0x6) fsconfig$auto_FSCONFIG_CMD_RECONFIGURE(r4, 0x7, &(0x7f0000000180)='}]\x00', &(0x7f0000000380)="cd9bd951136749835ca601ac77923a1ce77b9f253d247ab8fedb98ad45402472f2c44e096bd7bbfff8a63dbfdce136d534c54eeace2526407bd4d7c07c3619f86b27c30e6259f10867d977950a99e0204f091910046bc2c898be3b63f32fc9e1c7f557af7645230680bdbd9271221ff59a489ca202c37ea70c71d38542a7b1014bcee1f26b2083b370ec927d094ae1eb81550ce316bde58a029c3475aa507dbd3a766fd95bddd991603c6da69a04d6343cc5009df1f7405bcb47374193bc33431b06b6dfe34772a78abff335f802908272535f39c428d8e3ff5cbf049212caee854a8c8e0a1f30e84e99cbefce", 0x3) semctl$auto_SETVAL(0x0, 0xfffffff5, 0x10, 0x0) 3.054056394s ago: executing program 0 (id=451): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0) r1 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) r2 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) r3 = socket(0x8, 0x4, 0x200) r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r5 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/v4l-subdev4\x00', 0x169000, 0x0) ioctl$auto(r5, 0xc0905664, r5) r6 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r4, &(0x7f0000000340)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccW\x1c\x94t\x98\xc6\xd7\x9dh\xdf\x91\xd9\x1ew\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5,\xcc\xfa`\xfa\x90\xf0C\xdc\xbebBW\x8a\x95\xf4\x14\xc7\x90V\xe7a\xfb*\xcc6\xba\x9ef\x19R\xff\xd2\xd8\x98\xa8\x17\xcb\x84\xe8\xfb\x00`\xc2\xce~U\xca\\\xc1\xb7\xf1\n\xb9\xbfk\x1e\xdb\xed\x81{\x1f\x18j\x16\rk\x0eO\xe3\xa78&Z\x9e\xbf\x84\xd6\x1f\xe8\x88\x1f\xbc\x1eT\xa6{9hb\xbc\x1a\\\xb3\x846&\x1a\xbb\x9c:e\x9c\x18\x11\xf0\x8eQ\xd8\x8a3^?\x13\x00\xcbx\xb2\x18e\x95$\x9d\x804', 0x100000a3d9) setsockopt$auto(r1, 0x10000009, 0x69ce, &(0x7f0000000040)='(%}[\x00', 0x3) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x80080, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, r2, 0x4) mmap$auto(0x80000000, 0x400108, 0x6, 0x9b72, 0xffffffffffffffff, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/virtual/tty/ptyqe/power/control\x00', 0xa0b02, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r7 = io_uring_setup$auto(0x6, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(0x3, &(0x7f00000018c0)=@in={0x2, 0x300, @loopback=0xac14140a}, 0x55) r8 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv6/conf/veth0/accept_ra_pinfo\x00', 0x2000, 0x0) fchown$auto(r8, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) r9 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/kernel/security/tomoyo/profile\x00', 0x48802, 0x0) sendmsg$auto_ETHTOOL_MSG_PAUSE_SET(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="010039bd7000fddbdf251600000018000180140002006e657464657673696d3000000000000005000300060000000500020000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x20000890}, 0x4040000) sendmsg$auto_ETHTOOL_MSG_COALESCE_SET(r3, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000180)={&(0x7f0000000480)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00002dbd7000fddb0025140000000800080002a0bdae668d95561c3051633b8a73af00000008001105000c000700000008000f000900000008000f0009000000"], 0x44}, 0x1, 0x0, 0x0, 0x40000}, 0x4) read$auto(r9, 0x0, 0xb4d3) write$auto(r7, 0x0, 0x5cab0bbd) 2.613627285s ago: executing program 3 (id=452): mmap$auto(0x0, 0x20006, 0x9, 0xeb1, 0xffffffffffffffff, 0x8000) (async) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0xb74, 0x66a) 2.375050069s ago: executing program 3 (id=453): openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0) ioctl$auto(0x3, 0x6f2d, 0x7) mmap$auto(0x0, 0x810004, 0x400000000ffb, 0x8000000008011, 0x3, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_CTRL_CMD_GETPOLICY(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000580)={0x1c, r1, 0x301, 0x70bd2c, 0x25dfdbfb, {}, [@CTRL_ATTR_FAMILY_ID={0x6, 0x1, 0x15}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4019}, 0x0) getsockopt$auto(r0, 0x7, 0xc, &(0x7f0000000000)='/dev/nullb0\x00', &(0x7f0000000080)=0x10) sysfs$auto(0x2, 0x100000000000029, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/ip6gre0/netdev_group\x00', 0x102, 0x0) sendfile$auto(r2, r2, 0x0, 0xb) fsopen$auto(0x0, 0x2) name_to_handle_at$auto(0xffffffffffffffff, &(0x7f00000000c0)='-+\x00', &(0x7f0000000100)={0xe6, 0x4, "f56ef9e6c893ed82eba3cad362ff3d91dfc98c82c44939905fae0f7674d200c51de42e8e959f873162bfe1964e6cf42fbec7b7d5a613b1a2728f287706263e90d6a8d577f7933227e92f6af5c2221441c705b359b67b74d72f280d300c65c18016ddaaeddc39ecd04c3e907240ab11eca4f12a9d29e9d245c003b599451c0521db1708c545d2fb4af0ec62ad942504883f9f9e3654ff2e2d4c3fd52d74330245eb9237f26fb3dd214b975a3b4b21dcc32ff8af928a0d6e19fd0f7321e000416b9ca1dcf39fac984c89f98bc19a9172deb2cddeda1b2795192fe965ae711ce9126764dcdd58b3"}, &(0x7f0000000200)="03868fbda604408bd15cbb336232c7c5140ce4a4fe19d1fd75e444f0b5e9a3b4a3db169e941ca2cbc3a7bf53d0b72ad8b40b8fcb1a9828d6752f449417ae13d4d894fb8d38d6543ff44c3cc234e526af406b096e8e6a847d5ccbb32302e4d3078ef7fadf4be24cee38f6133145210f0f9cbcf8558451e35949624a7eac635c25c5d0ff9c922fa6884d833d56b3c4a943e129de7e38ad7dd85edacdf4563dd16ffccbdc3252d4237e28ba59e328a4b61520142ebf5267baa54fbd6ef3d894ba0b2940c45bcf4872f3b4a66226", 0x10001) 2.154852114s ago: executing program 3 (id=454): mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x10008000) prctl$auto(0x3e, 0x5, 0x0, 0x7, 0x0) write$auto(0xffffffffffffffff, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) socket(0x11, 0x800, 0x35) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x0, 0x5, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty12\x00', 0x101840, 0x0) r1 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) ioctl$auto(r0, 0x541c, r1) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) clock_nanosleep$auto(0x8000a, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0xfffffffffffffffe, 0x20948b, 0x2, 0x95f4da0a, 0x10001, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000010c0)='/sys/bus/scsi/drivers/st/debug_flag\x00', 0xa000, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f00000000c0)=""/4085, 0xff5) syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000680), 0xffffffffffffffff) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) madvise$auto(0x0, 0xffffffffffff0004, 0x19) madvise$auto(0x0, 0x200007, 0x8) 1.935034992s ago: executing program 2 (id=455): openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) mmap$auto(0x0, 0x101, 0x4100000000df, 0xeb1, 0x200000401, 0x2008000) getpid() (async) r0 = getpid() r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/sequencer\x00', 0x101000, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/LNXSYSTM:00/LNXPWRBN:00/input/input0/capabilities/key\x00', 0x80000, 0x0) read$auto(r2, 0x0, 0x20) (async) read$auto(r2, 0x0, 0x20) ioctl$auto_SNDCTL_SEQ_THRESHOLD(r1, 0x4004510d, 0x0) process_vm_readv$auto(r0, &(0x7f0000000040)={0x0, 0x9}, 0x5, &(0x7f0000000180)={&(0x7f00000003c0)="5c08000000bbeaa140b4f2157a20ebac7093477efe3072556c9e6c9b5da9a3c5b2d8f5b72cc70f800e1ffacabba31f43ce04b85e00753f2e51fbcbfe5e85b9d1a66171864df9f1275ae6ef0d64ca4deeb3a8ae6e922744f901eae494e248651e77ed4f220b4af38bc90c82a32cfed63a78adfcb8f6493f600fd41b5a22721756cf56968937a7", 0x407}, 0x84b, 0x0) ioctl$auto(0x3, 0x400454ca, 0x38) (async) ioctl$auto(0x3, 0x400454ca, 0x38) socket$nl_generic(0x10, 0x3, 0x10) (async) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r3, 0x89fc, &(0x7f0000000040)={'bridge0\x00'}) bpf$auto_BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)=@bpf_attr_11={0x2, 0x0, 0x1, 0x8, 0x5, 0xd, 0x74f, r3}, 0x4) waitid$auto_P_PGID(0x2, r0, &(0x7f00000001c0)={@siginfo_0_0={0x69, 0x6, 0x3, @_sigsys={&(0x7f0000000080)="a3435453867db5d491d1c7ab5cdb14002b48a9cfcf13faca75354e9a292c13f55d8f49b5c1d8e4b1d7780908832e51b82ab668a55ac96973831ca69db0ac2304ef908545d7821e92e47aaa81f3a42a8c75538f9dccc0d88ceb7f9c8ce0ba4172025bd9160609c76c0eb2bdb7ff40073eafa0e17ac8b05faecb1c56c3a129dd3aafd4e982c05a5163ea4302fba4cf003a899a3d6fa3d1688e87b8cc46bb", 0x8, 0x5}}}, 0x0, &(0x7f0000000300)={{0x3, 0x9}, {0x5, 0x5}, 0x8, 0x7, 0x1, 0x6, 0xaf, 0x76b, 0x1, 0x8, 0x4, 0x4, 0x7, 0x4, 0x9, 0x731}) 1.849442172s ago: executing program 1 (id=456): r0 = eventfd$auto(0x2) sendmsg$auto_OVS_METER_CMD_DEL(0xffffffffffffffff, &(0x7f0000000800)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000007c0)={&(0x7f0000000540)={0x274, 0x0, 0x800, 0x70bd29, 0x25dfdbfb, {}, [@OVS_METER_ATTR_MAX_BANDS={0x8, 0x8, 0x7}, @OVS_METER_ATTR_MAX_BANDS={0x8, 0x8, 0x8}, @OVS_METER_ATTR_MAX_BANDS={0x8, 0x8, 0xfff}, @OVS_METER_ATTR_BANDS={0x242, 0x4, 0x0, 0x1, [@typed={0x8, 0x37, 0x0, 0x0, @uid}, @generic="3f4cfb80c0457304b69712915a138d92364f1bff26288bf028bd570dcb5ea7f55a4260995f47156e546f5e203cf4993ca4f55432dbe70a374342dd798e2e582892be6aaba937455fc61a4d7a9fe8b19e49ff1ae3c08b2d9ee37d1757a6d34c2bbd672789431f791b375aa9578f9f0dbaf9dfbfc8b56f343baf965ba0bbc4607fbb7889363a3dae75827d0428cd20", @nested={0x199, 0xe3, 0x0, 0x1, [@generic="387d4a9491205aaa30233dba72d382f8dd545af9840a0133c29c70277a3581f30f165f9c287410dc9edcdccb9443d1573d6b5a83b318bd8f21b5fe0c0fd155ef6793374b6787faf2bd03cbdb7b7b83b4291830c415a0a2a6a94e0576601cf6e50b12db18a3d71361125131f587b39e269dc2caf9b74790f881954b5b5e6fcace47aae8a668b2ff7b51d449947d9768d6", @typed={0x14, 0xe9, 0x0, 0x0, @ipv6=@private0={0xfc, 0x0, '\x00', 0x1}}, @typed={0x8, 0x19, 0x0, 0x0, @uid}, @generic="ce5b6b677ce47c37cfeed0852ea2ae1e4f716e288868aaed5ce8925e5133448ad968ae9c722afe6631275e153b10247ed3d12cd0dbe36864b6122a48b62ab5fe90c2f59c4b72b46bd20338cbbbdc32a1312626673c6b2757e6f6ab61a3e694a2336676f80341c90965cc8ca798b4b1a4e6ff1c46ed4e60e4b1b52da16ce693ac39627424146ee55bf4765c9cfc567b0f0dc0f8dc2b911ebe2c24938234a244688e51dcc6b14f66caea446d7e3581dc44c1de04d28f27cdce9ef3730a4f3f99f4ea48910effef4cd7da4b6b8c8cefb2d63d9495b87db8e6287fc8cf076a57269d03", @typed={0x8, 0xf2, 0x0, 0x0, @fd=r0}]}, @typed={0xc, 0xdc, 0x0, 0x0, @u64=0xd862}]}, @OVS_METER_ATTR_CLEAR={0x4}]}, 0x274}, 0x1, 0x0, 0x0, 0x24040015}, 0x1) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x8000) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00df45"], 0x1ac}}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) recvmmsg$auto(r1, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000000)={&(0x7f0000000040), 0xcb}, 0x3, 0x0, 0x80000000, 0x5}, 0x9}, 0x16d, 0x6, 0x0) r2 = socket(0xa, 0x1, 0x84) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) getsockopt$auto(r2, 0x84, 0x1, 0x0, &(0x7f0000000000)=0x9d) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) memfd_secret$auto(0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/disk\x00', 0x100, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000140)=""/123, 0x7b) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="0700000000000000df250a"], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r4 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000001a80)='/dev/bus/usb/001/001\x00', 0x29202, 0x0) mmap$auto(0x2000, 0x80009, 0xb, 0x8000000008011, r4, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) read$auto(0xffffffffffffffff, 0x0, 0x1f40) socket(0x2c, 0x80003, 0x0) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r5, 0x0, 0xe8) r6 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000001240)='/proc/thread-self/fail-nth\x00', 0xa0302, 0x0) writev$auto(r6, &(0x7f0000000200)={0x0, 0x7}, 0x3) mmap$auto(0x0, 0x40008, 0xb3, 0x9b72, r5, 0x28000) r7 = openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000007380)='/sys/kernel/tracing/events/vmalloc/filter\x00', 0x109041, 0x0) write$auto(r7, 0x0, 0x40) mincore$auto(0x1000, 0x8001, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x0) 1.6231123s ago: executing program 2 (id=457): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0) ioctl$auto_PPPIOCSMRU(r0, 0xc004743e, 0x0) r1 = io_uring_setup$auto(0x5d, &(0x7f0000000080)={0x7fffffff, 0xd, 0x6, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0x6, 0x6, 0x8c48, 0x29f, 0x100, 0x80, 0x101, 0x5, 0x2}, {0x100, 0x20001, 0x52, 0x5, 0x1, 0x0, 0x76c5, 0x8, 0x100000000}}) read$auto(r2, &(0x7f00000001c0)='?\x00', 0x8) mknod$auto(&(0x7f0000000000)='./file0\x00', 0x7f, 0x6) move_mount$auto(0xffffffffffffffff, &(0x7f00000001c0)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x6) ioctl$auto_PPPIOCSPASS(r0, 0x40107447, &(0x7f0000000040)={0x6, 0x0}) capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48}) ioctl$auto_PPPIOCSPASS(r0, 0x40107447, &(0x7f00000002c0)={0x9, &(0x7f0000000000)={0x50, 0xf2, 0xb0, @raw=0x80000000}}) write$auto(0x3, 0x0, 0xfdef) openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000080), 0x48180, 0x0) socket(0xf, 0x3, 0x2) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r3 = socket(0x1e, 0x1, 0x0) socket(0x11, 0x80003, 0x300) r4 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000180)='/proc/interrupts\x00', 0x18b202, 0x0) getsockopt$auto_SO_BUF_LOCK(r3, 0x9, 0x48, &(0x7f0000000140)='@[K*({{\x00', &(0x7f0000000240)=0x3) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_BATADV_CMD_GET_MCAST_FLAGS(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000300)={0x2c, 0x0, 0x400, 0x70bd2c, 0x25dfdbfb, {}, [@BATADV_ATTR_BANDWIDTH_UP={0x8, 0x1b, 0x8}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x7}, @BATADV_ATTR_THROUGHPUT={0x8, 0x1a, 0x6}]}, 0x2c}, 0x1, 0x0, 0x0, 0x400c871}, 0xc884) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/pci0000:00/waiting_for_supplier\x00', 0x80800, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r1, 0xc0045516, 0x0) pread64$auto(r4, 0x0, 0x100000001, 0x400100) r5 = io_uring_setup$auto(0x1d48, &(0x7f0000000340)={0x7fffffff, 0x10, 0x2, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0x6, 0x8, 0x1, 0x80000000, 0x100, 0x83, 0x101, 0x6, 0x8000000000000001}, {0x100, 0x1, 0x52, 0x5, 0x11, 0x101, 0x876c5, 0xc9, 0x3}}) r6 = getpid() process_vm_readv$auto(r6, &(0x7f0000000080)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0) io_uring_register$auto(r5, 0x15, 0x0, 0x9) 1.062444562s ago: executing program 1 (id=458): openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000240)='/dev/video37\x00', 0x8a240, 0x0) (async) mmap$auto(0x0, 0x40000c, 0x45bd, 0x9b72, 0x2, 0x8000) (async) epoll_create$auto(0x4) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x2200, 0x0) (async) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async) openat$auto_tracing_mark_raw_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/trace_marker_raw\x00', 0x401, 0x0) (async) write$auto(0x3, 0x0, 0x5c8) statmount$auto(0x0, &(0x7f0000000180)={0x770, 0x1, 0x8, 0x4, 0x4005, 0x0, 0x3ffde, 0x400, 0x3, 0x9, 0x6, 0x6, 0x4, 0x11ffffffffffb, 0xb2, 0x2, 0x6, 0x10, 0x80, 0x800000029f, 0x8000, 0x1, 0x1, 0x202, 0x9, 0xbca7, 0x4, 0x0, 0x0, 0x0, 0x0, [0x0, 0x6, 0x0, 0x4, 0x0, 0x0, 0x20000000000, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x1, 0x7fffffff, 0xfffffffffffffffb, 0x0, 0x9, 0x2000000, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x8000000000000000, 0x0, 0x0, 0x0, 0x7fffffff, 0x0, 0x0, 0x20000000000000, 0x0, 0x1000000000000200, 0x0, 0x10000, 0x96, 0x9, 0x4, 0xe17, 0x0, 0x6]}, 0x1fe, 0x1) (async) openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0) (async) ioprio_get$auto_IOPRIO_WHO_PROCESS(0x1, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0xd, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r0, 0x0, 0x100000a3d9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) madvise$auto(0x0, 0x200007, 0x19) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) madvise$auto(0x0, 0xffffffffffff0005, 0x17) (async) mmap$auto(0x0, 0x400008, 0xe3, 0x9b72, 0x2, 0x8000) (async) unshare$auto(0x40000080) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) close_range$auto(0x2, 0xa, 0x0) (async) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0581, 0x0) r2 = ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) (async) ioctl$auto(0x3, 0xae60, 0x10000000000402) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$auto(r2, 0x4020ae76, r3) (async) madvise$auto(0x0, 0xffffffffffff0001, 0x15) madvise$auto(0x0, 0xffffffffffff0005, 0x19) (async) timerfd_gettime$auto(0xffffffffffffffff, 0x0) mmap$auto(0x0, 0x40009, 0x3, 0x19, 0xffffffffffffffff, 0x28000) 791.127345ms ago: executing program 0 (id=459): mmap$auto(0x0, 0x2000d, 0xdf, 0xebd, 0x40000000000a5, 0x7) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) r0 = open(&(0x7f0000000100)='./cgroup\x00', 0x50800, 0x412) getdents$auto(r0, 0x0, 0xde) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory12/power/control\x00', 0x100, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(0x3, 0x4048aec9, r1) sysfs$auto(0x2, 0xf, 0x0) fsopen$auto(0x0, 0x1) close_range$auto(0x2, 0x8, 0x0) sysfs$auto(0x6, 0xa7, 0x4) 694.820334ms ago: executing program 1 (id=460): r0 = socket(0x2, 0x5, 0x0) r1 = syz_clone(0x20100880, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0) ioctl$auto(r2, 0x4004550c, r2) bind$auto(r2, &(0x7f0000000040)=@in={0x2, 0x3, @broadcast}, 0x6a) setsockopt$auto(r2, 0xd, 0x800, 0x0, 0x0) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x10000}, 0x7, 0x0, 0x5, 0xb}, 0xfff}, 0x8, 0x311) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/ati_remote2/parameters/channel_mask\x00', 0x1e1842, 0x0) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$auto(0xffffffffffffffff, 0x0, 0xfffffffffffff4e0) open(&(0x7f0000000340)='./cgroup/file0\x00', 0x101840, 0x100) execve$auto(&(0x7f0000000180)='./file0\x00', 0x0, 0x0) rename$auto(&(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='./cgroup\x00') openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop6\x00', 0x18dd01, 0x0) get_robust_list$auto(0x0, 0x0, 0x0) r3 = socket(0xa, 0x80000, 0x1) mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000) syz_genetlink_get_family_id$auto_nl80211(0x0, r3) bpf$auto(0x0, &(0x7f0000000780)=@link_update={0xa, @new_map_fd=0x5, 0x4007, @old_prog_fd=0x13b}, 0xa3) prctl$auto(0x3e, 0x7f, 0x0, 0x1, 0x100) mmap$auto(0x20000000000, 0xe983, 0x7f, 0xeb1, 0x401, 0x8000) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001340)='/sys/module/l1oip/parameters/limit\x00', 0x80302, 0x0) sendfile$auto(r4, r4, 0x0, 0x3) prctl$auto(0x3, 0x4000000, r1, 0x1, 0x0) sendmsg$auto_NL802154_CMD_STOP_BEACONS(0xffffffffffffffff, 0x0, 0x50) sendmsg$auto_NL802154_CMD_DEL_SEC_DEVKEY(r3, 0x0, 0x20044841) ioctl$auto_SW_SYNC_IOC_INC(0xffffffffffffffff, 0x40045701, &(0x7f0000000200)=0x823) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) prctl$auto(0x23, 0x3, 0x7fffffffefff, 0x8, 0x0) 653.565691ms ago: executing program 2 (id=461): mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8802) mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4) r0 = open(&(0x7f0000000000)='./file0\x00', 0x101800, 0x181) r1 = creat$auto(&(0x7f0000000040)='./file0\x00', 0x81) splice$auto(r0, 0x0, r1, 0x0, 0xb, 0xf) mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0) chdir$auto(&(0x7f0000000000)='}[,&*}\x00') r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/nbd14/queue/logical_block_size\x00', 0x180980, 0x0) write$auto(r2, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) unshare$auto(0x20000080) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nbd14\x00', 0x20800, 0x0) ioctl$auto_BLKROSET(r3, 0x125d, 0x0) mount$auto(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0xffff, 0x0) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) unshare$auto(0x200) ioctl$auto_SNDCTL_SEQ_SYNC(r0, 0x5101, &(0x7f00000001c0)="60e75ced215e8159b62fb3f35d1de4ed70912b68747f9be17cef2feaaef75982c657f183bf0abcc9abe041f07fb0cb37456362d2450e843c2a414f5859b62652142da0500e505d98163e02701131bc0c71ac2addcf9cb29cf3471d2e9997a7ac904f36ce0f1f00bbe23616658c852b77003016") r4 = syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/mnt\x00') setns(r4, 0x0) clone$auto(0x10fffffffe22000, 0x2, 0xfffffffffffffffc, 0xfffffffffffffffc, 0xe45e) 554.460494ms ago: executing program 3 (id=462): socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000001c0), 0xffffffffffffffff) r0 = socket(0x28, 0x80005, 0x8001) sendmsg$auto_CTRL_CMD_GETPOLICY(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x30000880}, 0x28048804) ioctl$auto_SNDRV_TIMER_IOCTL_TREAD_OLD(0xffffffffffffffff, 0x40045402, &(0x7f0000000a00)=0x101) mmap$auto(0x0, 0xe981, 0xdf, 0xeb1, 0x401, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) nanosleep$auto(0x0, 0x0) getpid() clock_nanosleep$auto(0x9, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0x11, 0x0, 0x0, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r2 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000240)='/dev/usbmon32\x00', 0x640, 0x0) read$auto_mon_fops_binary_mon_bin(r2, 0x0, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/bus/usb/032/001\x00', 0x88202, 0x0) lsm_set_self_attr$auto(0x7, &(0x7f0000000040)={0x20009, 0x6454, 0x2}, 0x6, 0x9) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000005480), 0xffffffffffffffff) 499.247907ms ago: executing program 0 (id=463): openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0) ioctl$auto(0x3, 0x6f2d, 0x7) mmap$auto(0x0, 0x810004, 0x400000000ffb, 0x8000000008011, 0x3, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_CTRL_CMD_GETPOLICY(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000580)={0x1c, r1, 0x301, 0x70bd2c, 0x25dfdbfb, {}, [@CTRL_ATTR_FAMILY_ID={0x6, 0x1, 0x15}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4019}, 0x0) getsockopt$auto(r0, 0x7, 0xc, &(0x7f0000000000)='/dev/nullb0\x00', &(0x7f0000000080)=0x10) sysfs$auto(0x2, 0x100000000000029, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/ip6gre0/netdev_group\x00', 0x102, 0x0) sendfile$auto(r2, r2, 0x0, 0xb) fsopen$auto(0x0, 0x2) name_to_handle_at$auto(0xffffffffffffffff, &(0x7f00000000c0)='-+\x00', &(0x7f0000000100)={0xe6, 0x4, "f56ef9e6c893ed82eba3cad362ff3d91dfc98c82c44939905fae0f7674d200c51de42e8e959f873162bfe1964e6cf42fbec7b7d5a613b1a2728f287706263e90d6a8d577f7933227e92f6af5c2221441c705b359b67b74d72f280d300c65c18016ddaaeddc39ecd04c3e907240ab11eca4f12a9d29e9d245c003b599451c0521db1708c545d2fb4af0ec62ad942504883f9f9e3654ff2e2d4c3fd52d74330245eb9237f26fb3dd214b975a3b4b21dcc32ff8af928a0d6e19fd0f7321e000416b9ca1dcf39fac984c89f98bc19a9172deb2cddeda1b2795192fe965ae711ce9126764dcdd58b3"}, &(0x7f0000000200)="03868fbda604408bd15cbb336232c7c5140ce4a4fe19d1fd75e444f0b5e9a3b4a3db169e941ca2cbc3a7bf53d0b72ad8b40b8fcb1a9828d6752f449417ae13d4d894fb8d38d6543ff44c3cc234e526af406b096e8e6a847d5ccbb32302e4d3078ef7fadf4be24cee38f6133145210f0f9cbcf8558451e35949624a7eac635c25c5d0ff9c922fa6884d833d56b3c4a943e129de7e38ad7dd85edacdf4563dd16ffccbdc3252d4237e28ba59e328a4b61520142ebf5267baa54fbd6ef3d894ba0b2940c45bcf4872f3b4a66226", 0x10001) 299.022318ms ago: executing program 2 (id=464): r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) socket(0x2, 0x1, 0x106) accept$auto(0x3, 0xffffffffffffffff, 0xffffffffffffffff) mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0x8000000000000003, 0x8000) sendmsg$auto_NL80211_CMD_START_P2P_DEVICE(r1, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000300)={0x0, 0x28}, 0x1, 0x0, 0x0, 0x20000000}, 0x4010) sendmsg$auto_NETDEV_CMD_QUEUE_GET(r1, 0x0, 0x20000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x82, 0x0) socket(0x2, 0x3, 0x8) socket(0x2, 0x1, 0x0) r2 = epoll_create$auto(0x7) r3 = socket$nl_generic(0x10, 0x3, 0x10) epoll_ctl$auto(0x5, 0x1, r3, 0x0) r4 = bpf$auto(0x0, &(0x7f00000001c0)=@token_create, 0x6f6) capset$auto(0x0, 0x0) epoll_wait$auto(r2, 0x0, 0xe007, 0x1) pwrite64$auto(0xffffffffffffffff, &(0x7f0000000040)='/dev/vcsa\x00', 0x7b05, 0x5) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) unshare$auto(0x40000080) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/system/node/node1/compact\x00', 0xc2481, 0x0) writev$auto(r5, &(0x7f0000000080)={&(0x7f0000000040)="99e7daa24511691d42a9", 0x1000}, 0x3) close_range$auto(r4, 0xffffffffffffffff, 0x0) socket(0x6, 0x2, 0x6) fsconfig$auto_FSCONFIG_CMD_RECONFIGURE(r4, 0x7, &(0x7f0000000180)='}]\x00', &(0x7f0000000380)="cd9bd951136749835ca601ac77923a1ce77b9f253d247ab8fedb98ad45402472f2c44e096bd7bbfff8a63dbfdce136d534c54eeace2526407bd4d7c07c3619f86b27c30e6259f10867d977950a99e0204f091910046bc2c898be3b63f32fc9e1c7f557af7645230680bdbd9271221ff59a489ca202c37ea70c71d38542a7b1014bcee1f26b2083b370ec927d094ae1eb81550ce316bde58a029c3475aa507dbd3a766fd95bddd991603c6da69a04d6343cc5009df1f7405bcb47374193bc33431b06b6dfe34772a78abff335f802908272535f39c428d8e3ff5cbf049212caee854a8c8e0a1f30e84e99cbefce", 0x3) semctl$auto_SETVAL(0x0, 0xfffffff5, 0x10, 0x0) 284.552904ms ago: executing program 0 (id=465): ioctl$auto_PAGEMAP_SCAN(0xffffffffffffffff, 0xc0606610, &(0x7f0000000100)={0x62, 0x2, 0x2100000, 0x4, 0xfffffffffffffffe, 0x1, 0x0, 0xe8, 0x0, 0x4, 0x0, 0x2}) r0 = socket(0xa, 0x801, 0x84) r1 = openat$auto_safesetid_gid_file_fops_securityfs(0xffffffffffffff9c, &(0x7f0000000000), 0x8202, 0x0) readv$auto(r1, &(0x7f0000000540)={0x0, 0x8}, 0x4) mmap$auto(0x0, 0x4020009, 0xdf, 0xda5f, 0x401, 0x8000) r2 = socket(0x2, 0x5, 0x0) semctl$auto(0x7, 0x2, 0x13, 0x1) r3 = socket(0xa, 0x801, 0x84) close_range$auto(0xffffffffffffffff, r2, 0xfffffffe) socket$nl_generic(0x10, 0x3, 0x10) socket(0x11, 0x80003, 0x300) ioctl$auto(0x3, 0x5411, 0xfffffffffffff4e0) getsockopt$auto(r3, 0x84, 0x10, 0x0, 0x0) setsockopt$auto(r2, 0x0, 0x2a, 0x0, 0x108) mmap$auto(0x0, 0x3, 0xdf, 0x9b72, r0, 0x8000) r4 = getpid() mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) r5 = socket(0xa, 0x1, 0x84) getsockopt$auto(r5, 0x84, 0x8000001f, 0x0, &(0x7f00000000c0)=0x49b) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x3, 0x7) r6 = pidfd_open$auto(0x1, 0x0) setns(r6, 0x60020000) umount2$auto(&(0x7f0000000000)='.\x00', 0x8) process_vm_readv$auto(r4, &(0x7f0000000000)={0x0, 0x1000}, 0x1, &(0x7f0000000280)={&(0x7f00000000c0), 0xffffffff}, 0x6, 0x0) setsockopt$auto(r0, 0x10000000084, 0x9, 0x0, 0x9c) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'batadv_slave_0\x00', 0x0}) connect$auto(0x3, &(0x7f0000000080)=@xdp={0x2c, 0x8, r7, 0x2c}, 0xffffffff) 0s ago: executing program 0 (id=466): mmap$auto(0x0, 0x3, 0xffffffffffffffff, 0x10, 0xffffffffffffffff, 0x47ffe) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0x2000040080000004, 0xe) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3) mbind$auto(0xf000, 0x8000000000000001, 0x100000000, 0x0, 0x6, 0x2) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x848000000015, 0x805, 0x0) bind$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x6b) connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x0, @loopback}, 0x55) sendmsg$auto_OVS_DP_CMD_GET(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={0x0}, 0x1, 0x0, 0x0, 0x448d1}, 0x0) recvmmsg$auto(r2, &(0x7f0000000480)={{0x0, 0x0, &(0x7f0000000040)={0x0, 0x4}, 0x1, &(0x7f00000003c0), 0x6, 0xffffffff}, 0x3}, 0xffffffff, 0x6, &(0x7f00000004c0)={0x800, 0xd1}) read$auto(r0, 0x0, 0x20) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x882, 0x0) writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) ioctl$auto(0xffffffffffffffff, 0x8001, r0) close_range$auto(0x2, 0x8, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x1ff, 0x7, 0x5, 0x7181, 0x1ffde, 0x7, 0x3, 0x9, 0x6, 0x80003, 0x4, 0x1ffffffffffd, 0xb4, 0xffffffffffffffff, 0x8, 0x10007, 0x7e, 0x4, 0x0, 0xa, 0xffffffff, 0x200, 0x0, 0x84, 0x0, 0xfff, 0x0, 0x3, 0x2, [0x9a8, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x40, 0x800000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc]}, 0x1fe, 0xd) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x48140, 0x0) readv$auto(r4, 0x0, 0x3) ioctl$auto_TIOCVHANGUP2(r4, 0x5437, 0x0) openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0) kernel console output (not intermixed with test programs): 64.374469][ T6746] ? xfd_validate_state+0x61/0x180 [ 164.374525][ T6746] do_syscall_64+0xcd/0x4c0 [ 164.374574][ T6746] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 164.374603][ T6746] RIP: 0033:0x7f62efb8eec9 [ 164.374625][ T6746] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 164.374653][ T6746] RSP: 002b:00007f62f0ab9fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 164.374679][ T6746] RAX: ffffffffffffffda RBX: 00007f62efde6090 RCX: 00007f62efb8eec9 [ 164.374698][ T6746] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 164.374714][ T6746] RBP: 00007f62efc11f91 R08: 0000000000000000 R09: 0000000000000000 [ 164.374731][ T6746] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 164.374747][ T6746] R13: 00007f62efde6128 R14: 00007f62efde6090 R15: 00007ffeb0ac66c8 [ 164.374791][ T6746] [ 164.374925][ T6746] Mem-Info: [ 164.614605][ T6746] active_anon:11454 inactive_anon:5 isolated_anon:6 [ 164.614605][ T6746] active_file:14072 inactive_file:41137 isolated_file:15 [ 164.614605][ T6746] unevictable:768 dirty:345 writeback:0 [ 164.614605][ T6746] slab_reclaimable:10619 slab_unreclaimable:93650 [ 164.614605][ T6746] mapped:29464 shmem:2610 pagetables:1089 [ 164.614605][ T6746] sec_pagetables:0 bounce:0 [ 164.614605][ T6746] kernel_misc_reclaimable:0 [ 164.614605][ T6746] free:1324334 free_pcp:14042 free_cma:0 [ 164.712097][ T6746] Node 0 active_anon:45816kB inactive_anon:20kB active_file:56288kB inactive_file:164416kB unevictable:1536kB isolated(anon):24kB isolated(file):60kB mapped:114456kB dirty:1580kB writeback:0kB shmem:8904kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:11052kB pagetables:4208kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 164.756146][ T6746] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:132kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:48kB pagetables:148kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 164.794875][ T6746] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 164.825550][ T6746] lowmem_reserve[]: 0 2480 2481 2481 2481 [ 164.860958][ T6746] Node 0 DMA32 free:1390544kB boost:0kB min:34076kB low:42592kB high:51108kB reserved_highatomic:0KB free_highatomic:0KB active_anon:45672kB inactive_anon:20kB active_file:56288kB inactive_file:163096kB unevictable:1536kB writepending:1580kB present:3129332kB managed:2539528kB mlocked:0kB bounce:0kB free_pcp:40912kB local_pcp:21008kB free_cma:0kB [ 164.924199][ T6746] lowmem_reserve[]: 0 0 1 1 1 [ 164.929586][ T6746] Node 0 Normal free:12kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:0kB inactive_file:1320kB unevictable:0kB writepending:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:12kB local_pcp:4kB free_cma:0kB [ 164.960669][ T6746] lowmem_reserve[]: 0 0 0 0 0 [ 164.965459][ T6746] Node 1 Normal free:3892892kB boost:0kB min:55804kB low:69752kB high:83700kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:132kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:17204kB local_pcp:10592kB free_cma:0kB [ 165.052203][ T6746] lowmem_reserve[]: 0 0 0 0 0 [ 165.057811][ T6746] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 165.071907][ T6746] Node 0 DMA32: 1360*4kB (UM) 1148*8kB (UME) 729*16kB (UM) 434*32kB (UM) 312*64kB (UME) 250*128kB (UME) 158*256kB (UME) 74*512kB (UME) 24*1024kB (UME) 8*2048kB (UME) 288*4096kB (M) = 1391088kB [ 165.091387][ T6746] Node 0 Normal: 3*4kB (M) 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 12kB [ 165.148437][ T6746] Node 1 Normal: 66*4kB (UME) 45*8kB (UME) 38*16kB (UME) 232*32kB (UME) 102*64kB (UE) 37*128kB (UME) 9*256kB (UM) 4*512kB (UE) 0*1024kB 3*2048kB (UME) 943*4096kB (M) = 3892944kB [ 165.253234][ T6746] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 165.299425][ T6746] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB [ 165.312702][ T6746] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 165.358979][ T6746] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 165.414499][ T6746] 57812 total pagecache pages [ 165.448152][ T6746] 5 pages in swap cache [ 165.488915][ T6746] Free swap = 124976kB [ 165.512610][ T6746] Total swap = 124996kB [ 165.525560][ T6746] 2097051 pages RAM [ 165.537034][ T6746] 0 pages HighMem/MovableOnly [ 165.555934][ T6746] 430207 pages reserved [ 165.564235][ T6746] 0 pages cma reserved [ 166.246012][ T6780] capability: warning: `syz.3.159' uses 32-bit capabilities (legacy support in use) [ 169.223709][ T6826] binder: 6825:6826 ioctl c018620c 0 returned -1 [ 169.235895][ T6826] netlink: 28 bytes leftover after parsing attributes in process `syz.1.171'. [ 169.334842][ T6832] FAULT_INJECTION: forcing a failure. [ 169.334842][ T6832] name failslab, interval 1, probability 0, space 0, times 0 [ 169.359586][ T6832] CPU: 0 UID: 0 PID: 6832 Comm: syz.3.174 Not tainted syzkaller #0 PREEMPT(full) [ 169.359626][ T6832] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 169.359642][ T6832] Call Trace: [ 169.359652][ T6832] [ 169.359663][ T6832] dump_stack_lvl+0x16c/0x1f0 [ 169.359712][ T6832] should_fail_ex+0x512/0x640 [ 169.359755][ T6832] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 169.359794][ T6832] should_failslab+0xc2/0x120 [ 169.359832][ T6832] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 169.359868][ T6832] ? __pmd_alloc+0xbf/0x930 [ 169.359918][ T6832] __pmd_alloc+0xbf/0x930 [ 169.359965][ T6832] __handle_mm_fault+0xa06/0x2a50 [ 169.360001][ T6832] ? mt_find+0x3ef/0xa30 [ 169.360039][ T6832] ? __pfx___handle_mm_fault+0x10/0x10 [ 169.360066][ T6832] ? __pfx_mt_find+0x10/0x10 [ 169.360117][ T6832] ? find_vma+0xbf/0x140 [ 169.360154][ T6832] ? __pfx_find_vma+0x10/0x10 [ 169.360197][ T6832] handle_mm_fault+0x589/0xd10 [ 169.360230][ T6832] ? trace_raw_output_exceptions+0x131/0x150 [ 169.360278][ T6832] do_user_addr_fault+0x7a6/0x1370 [ 169.360327][ T6832] ? rcu_is_watching+0x12/0xc0 [ 169.360362][ T6832] exc_page_fault+0x5c/0xb0 [ 169.360404][ T6832] asm_exc_page_fault+0x26/0x30 [ 169.360431][ T6832] RIP: 0010:rep_movs_alternative+0xf/0x90 [ 169.360466][ T6832] Code: c4 10 e9 d4 1e 04 00 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 83 f9 40 73 44 83 f9 08 73 25 85 c9 74 0f <8a> 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 66 [ 169.360494][ T6832] RSP: 0018:ffffc900031279d0 EFLAGS: 00050202 [ 169.360518][ T6832] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000007 [ 169.360535][ T6832] RDX: fffff52000624f4c RSI: 0000000000000000 RDI: ffffc90003127a58 [ 169.360554][ T6832] RBP: 0000000000000007 R08: 0000000000000001 R09: fffff52000624f4b [ 169.360571][ T6832] R10: ffffc90003127a5e R11: 0000000000000000 R12: 0000000000000000 [ 169.360588][ T6832] R13: ffffc90003127a58 R14: 1ffff92000624f45 R15: ffffc90003127d8c [ 169.360628][ T6832] _copy_from_user+0x98/0xd0 [ 169.360661][ T6832] ____sys_sendmsg+0x607/0xc70 [ 169.360699][ T6832] ? __pfx_____sys_sendmsg+0x10/0x10 [ 169.360738][ T6832] ? __pfx__kstrtoull+0x10/0x10 [ 169.360783][ T6832] ___sys_sendmsg+0x134/0x1d0 [ 169.360830][ T6832] ? __pfx____sys_sendmsg+0x10/0x10 [ 169.360894][ T6832] ? find_held_lock+0x2b/0x80 [ 169.360950][ T6832] __sys_sendmmsg+0x200/0x420 [ 169.360999][ T6832] ? __pfx___sys_sendmmsg+0x10/0x10 [ 169.361068][ T6832] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 169.361129][ T6832] ? fput+0x9b/0xd0 [ 169.361170][ T6832] ? ksys_write+0x1ac/0x250 [ 169.361202][ T6832] ? __pfx_ksys_write+0x10/0x10 [ 169.361243][ T6832] __x64_sys_sendmmsg+0x9c/0x100 [ 169.361285][ T6832] ? lockdep_hardirqs_on+0x7c/0x110 [ 169.361326][ T6832] do_syscall_64+0xcd/0x4c0 [ 169.361373][ T6832] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 169.361401][ T6832] RIP: 0033:0x7f7780b8eec9 [ 169.361423][ T6832] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 169.361448][ T6832] RSP: 002b:00007f77819d1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 169.361473][ T6832] RAX: ffffffffffffffda RBX: 00007f7780de5fa0 RCX: 00007f7780b8eec9 [ 169.361491][ T6832] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000003 [ 169.361507][ T6832] RBP: 00007f77819d1090 R08: 0000000000000000 R09: 0000000000000000 [ 169.361524][ T6832] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000001 [ 169.361541][ T6832] R13: 00007f7780de6038 R14: 00007f7780de5fa0 R15: 00007fff2403edc8 [ 169.361580][ T6832] [ 169.772209][ T6837] binder: 6835:6837 ioctl c018620c 0 returned -1 [ 169.814304][ T6837] netlink: 28 bytes leftover after parsing attributes in process `syz.1.172'. [ 170.083491][ T6839] svc: failed to register nfsdv3 RPC service (errno 111). [ 170.148566][ T6839] svc: failed to register nfsaclv3 RPC service (errno 111). [ 170.795019][ T6860] netlink: 'syz.3.180': attribute type 4 has an invalid length. [ 170.898383][ T6862] netlink: 'syz.3.180': attribute type 4 has an invalid length. [ 171.394237][ T6870] binder: 6867:6870 ioctl c018620c 0 returned -1 [ 171.472714][ T6870] netlink: 28 bytes leftover after parsing attributes in process `syz.3.181'. [ 171.537231][ T6877] FAULT_INJECTION: forcing a failure. [ 171.537231][ T6877] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 171.550741][ T6877] CPU: 0 UID: 0 PID: 6877 Comm: syz.0.184 Not tainted syzkaller #0 PREEMPT(full) [ 171.550778][ T6877] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 171.550795][ T6877] Call Trace: [ 171.550804][ T6877] [ 171.550815][ T6877] dump_stack_lvl+0x16c/0x1f0 [ 171.550865][ T6877] should_fail_ex+0x512/0x640 [ 171.550916][ T6877] should_fail_alloc_page+0xe7/0x130 [ 171.550959][ T6877] prepare_alloc_pages+0x3c2/0x610 [ 171.551020][ T6877] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 171.551059][ T6877] ? stack_trace_save+0x8e/0xc0 [ 171.551092][ T6877] ? __pfx_stack_trace_save+0x10/0x10 [ 171.551122][ T6877] ? rcu_is_watching+0x12/0xc0 [ 171.551154][ T6877] ? stack_depot_save_flags+0x29/0x9c0 [ 171.551210][ T6877] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 171.551244][ T6877] ? __kasan_slab_alloc+0x89/0x90 [ 171.551279][ T6877] ? __pmd_alloc+0xbf/0x930 [ 171.551320][ T6877] ? handle_mm_fault+0x589/0xd10 [ 171.551347][ T6877] ? do_user_addr_fault+0x7a6/0x1370 [ 171.551388][ T6877] ? exc_page_fault+0x5c/0xb0 [ 171.551424][ T6877] ? asm_exc_page_fault+0x26/0x30 [ 171.551450][ T6877] ? rep_movs_alternative+0xf/0x90 [ 171.551482][ T6877] ? _copy_from_user+0x98/0xd0 [ 171.551509][ T6877] ? ____sys_sendmsg+0x607/0xc70 [ 171.551577][ T6877] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 171.551624][ T6877] ? policy_nodemask+0xea/0x4e0 [ 171.551667][ T6877] alloc_pages_mpol+0x1fb/0x550 [ 171.551709][ T6877] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 171.551759][ T6877] alloc_pages_noprof+0x131/0x390 [ 171.551800][ T6877] pte_alloc_one+0x1c/0x3a0 [ 171.551832][ T6877] do_pte_missing+0x1afc/0x3ba0 [ 171.551865][ T6877] ? do_raw_spin_unlock+0x172/0x230 [ 171.551914][ T6877] ? __pmd_alloc+0x3fb/0x930 [ 171.551962][ T6877] __handle_mm_fault+0x152a/0x2a50 [ 171.552005][ T6877] ? mt_find+0x3ef/0xa30 [ 171.552036][ T6877] ? __pfx___handle_mm_fault+0x10/0x10 [ 171.552064][ T6877] ? __pfx_mt_find+0x10/0x10 [ 171.552117][ T6877] ? find_vma+0xbf/0x140 [ 171.552155][ T6877] ? __pfx_find_vma+0x10/0x10 [ 171.552198][ T6877] handle_mm_fault+0x589/0xd10 [ 171.552230][ T6877] ? trace_raw_output_exceptions+0x131/0x150 [ 171.552278][ T6877] do_user_addr_fault+0x7a6/0x1370 [ 171.552328][ T6877] ? rcu_is_watching+0x12/0xc0 [ 171.552363][ T6877] exc_page_fault+0x5c/0xb0 [ 171.552406][ T6877] asm_exc_page_fault+0x26/0x30 [ 171.552433][ T6877] RIP: 0010:rep_movs_alternative+0xf/0x90 [ 171.552468][ T6877] Code: c4 10 e9 d4 1e 04 00 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 83 f9 40 73 44 83 f9 08 73 25 85 c9 74 0f <8a> 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 66 [ 171.552495][ T6877] RSP: 0018:ffffc900048079d0 EFLAGS: 00050202 [ 171.552520][ T6877] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000007 [ 171.552538][ T6877] RDX: fffff52000900f4c RSI: 0000000000000000 RDI: ffffc90004807a58 [ 171.552556][ T6877] RBP: 0000000000000007 R08: 0000000000000001 R09: fffff52000900f4b [ 171.552573][ T6877] R10: ffffc90004807a5e R11: 0000000000000000 R12: 0000000000000000 [ 171.552590][ T6877] R13: ffffc90004807a58 R14: 1ffff92000900f45 R15: ffffc90004807d8c [ 171.552631][ T6877] _copy_from_user+0x98/0xd0 [ 171.552664][ T6877] ____sys_sendmsg+0x607/0xc70 [ 171.552701][ T6877] ? __pfx_____sys_sendmsg+0x10/0x10 [ 171.552741][ T6877] ? __pfx__kstrtoull+0x10/0x10 [ 171.552790][ T6877] ___sys_sendmsg+0x134/0x1d0 [ 171.552835][ T6877] ? __pfx____sys_sendmsg+0x10/0x10 [ 171.552897][ T6877] ? find_held_lock+0x2b/0x80 [ 171.552949][ T6877] __sys_sendmmsg+0x200/0x420 [ 171.553004][ T6877] ? __pfx___sys_sendmmsg+0x10/0x10 [ 171.553060][ T6877] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 171.553116][ T6877] ? fput+0x9b/0xd0 [ 171.553153][ T6877] ? ksys_write+0x1ac/0x250 [ 171.553185][ T6877] ? __pfx_ksys_write+0x10/0x10 [ 171.553223][ T6877] __x64_sys_sendmmsg+0x9c/0x100 [ 171.553265][ T6877] ? lockdep_hardirqs_on+0x7c/0x110 [ 171.553304][ T6877] do_syscall_64+0xcd/0x4c0 [ 171.553349][ T6877] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 171.553377][ T6877] RIP: 0033:0x7f5c6938eec9 [ 171.553399][ T6877] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 171.553423][ T6877] RSP: 002b:00007f5c6a1a2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 171.553447][ T6877] RAX: ffffffffffffffda RBX: 00007f5c695e5fa0 RCX: 00007f5c6938eec9 [ 171.553464][ T6877] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000003 [ 171.553479][ T6877] RBP: 00007f5c6a1a2090 R08: 0000000000000000 R09: 0000000000000000 [ 171.553494][ T6877] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000001 [ 171.553510][ T6877] R13: 00007f5c695e6038 R14: 00007f5c695e5fa0 R15: 00007ffe0fc79148 [ 171.553547][ T6877] [ 172.694682][ T6890] FAULT_INJECTION: forcing a failure. [ 172.694682][ T6890] name failslab, interval 1, probability 0, space 0, times 0 [ 172.707753][ T6890] CPU: 0 UID: 0 PID: 6890 Comm: syz.1.186 Not tainted syzkaller #0 PREEMPT(full) [ 172.707794][ T6890] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 172.707812][ T6890] Call Trace: [ 172.707823][ T6890] [ 172.707834][ T6890] dump_stack_lvl+0x16c/0x1f0 [ 172.707885][ T6890] should_fail_ex+0x512/0x640 [ 172.707942][ T6890] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 172.707979][ T6890] should_failslab+0xc2/0x120 [ 172.708019][ T6890] __kmalloc_cache_noprof+0x6a/0x3e0 [ 172.708052][ T6890] ? copy_net_ns+0x135/0x5f0 [ 172.708089][ T6890] copy_net_ns+0x135/0x5f0 [ 172.708116][ T6890] ? copy_cgroup_ns+0x71/0x700 [ 172.708153][ T6890] create_new_namespaces+0x3ea/0xa90 [ 172.708196][ T6890] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 172.708233][ T6890] ksys_unshare+0x45b/0xa40 [ 172.708269][ T6890] ? __pfx_ksys_unshare+0x10/0x10 [ 172.708313][ T6890] ? syscall_user_dispatch+0x78/0x140 [ 172.708366][ T6890] __x64_sys_unshare+0x31/0x40 [ 172.708407][ T6890] do_syscall_64+0xcd/0x4c0 [ 172.708457][ T6890] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 172.708489][ T6890] RIP: 0033:0x7f62efb8eec9 [ 172.708514][ T6890] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 172.708543][ T6890] RSP: 002b:00007f62f0a99038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 172.708570][ T6890] RAX: ffffffffffffffda RBX: 00007f62efde6180 RCX: 00007f62efb8eec9 [ 172.708589][ T6890] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 172.708605][ T6890] RBP: 00007f62efc11f91 R08: 0000000000000000 R09: 0000000000000000 [ 172.708643][ T6890] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 172.708665][ T6890] R13: 00007f62efde6218 R14: 00007f62efde6180 R15: 00007ffeb0ac66c8 [ 172.708711][ T6890] [ 173.432795][ T6897] netlink: 16 bytes leftover after parsing attributes in process `syz.3.188'. [ 173.443775][ T6897] netlink: 93 bytes leftover after parsing attributes in process `syz.3.188'. [ 173.741699][ T6898] FAULT_INJECTION: forcing a failure. [ 173.741699][ T6898] name failslab, interval 1, probability 0, space 0, times 0 [ 173.784510][ T6898] CPU: 0 UID: 0 PID: 6898 Comm: syz.0.195 Not tainted syzkaller #0 PREEMPT(full) [ 173.784556][ T6898] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 173.784574][ T6898] Call Trace: [ 173.784585][ T6898] [ 173.784597][ T6898] dump_stack_lvl+0x16c/0x1f0 [ 173.784650][ T6898] should_fail_ex+0x512/0x640 [ 173.784706][ T6898] ? fs_reclaim_acquire+0xae/0x150 [ 173.784758][ T6898] should_failslab+0xc2/0x120 [ 173.784799][ T6898] __kmalloc_cache_noprof+0x6a/0x3e0 [ 173.784835][ T6898] ? tomoyo_init_log+0x197/0x2140 [ 173.784884][ T6898] tomoyo_init_log+0x197/0x2140 [ 173.784923][ T6898] ? kasan_save_stack+0x33/0x60 [ 173.784956][ T6898] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 173.785016][ T6898] ? __pfx_tomoyo_init_log+0x10/0x10 [ 173.785055][ T6898] ? tomoyo_profile+0x47/0x60 [ 173.785080][ T6898] ? tomoyo_domain_quota_is_ok+0x2f6/0x5a0 [ 173.785120][ T6898] tomoyo_supervisor+0x302/0x13b0 [ 173.785154][ T6898] ? __pfx_tomoyo_supervisor+0x10/0x10 [ 173.785178][ T6898] ? __pfx_vsnprintf+0x10/0x10 [ 173.785238][ T6898] ? tomoyo_encode2+0x329/0x3e0 [ 173.785283][ T6898] ? tomoyo_check_path_number_acl+0xa6/0x2f0 [ 173.785332][ T6898] tomoyo_path_number_perm+0x448/0x580 [ 173.785372][ T6898] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 173.785448][ T6898] ? find_held_lock+0x2b/0x80 [ 173.785476][ T6898] ? hook_file_ioctl_common+0x145/0x410 [ 173.785523][ T6898] ? __fget_files+0x20e/0x3c0 [ 173.785561][ T6898] security_file_ioctl+0x9b/0x240 [ 173.785600][ T6898] __x64_sys_ioctl+0xb7/0x210 [ 173.785649][ T6898] do_syscall_64+0xcd/0x4c0 [ 173.785707][ T6898] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 173.785738][ T6898] RIP: 0033:0x7f5c6938eec9 [ 173.785763][ T6898] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 173.785792][ T6898] RSP: 002b:00007f5c6a160038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 173.785822][ T6898] RAX: ffffffffffffffda RBX: 00007f5c695e6180 RCX: 00007f5c6938eec9 [ 173.785843][ T6898] RDX: 0000000000000006 RSI: 00000000000007a0 RDI: 000000000000000a [ 173.785860][ T6898] RBP: 00007f5c69411f91 R08: 0000000000000000 R09: 0000000000000000 [ 173.785879][ T6898] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 173.785897][ T6898] R13: 00007f5c695e6218 R14: 00007f5c695e6180 R15: 00007ffe0fc79148 [ 173.785938][ T6898] [ 176.060196][ T6936] FAULT_INJECTION: forcing a failure. [ 176.060196][ T6936] name failslab, interval 1, probability 0, space 0, times 0 [ 176.088965][ T6936] CPU: 0 UID: 0 PID: 6936 Comm: syz.1.196 Not tainted syzkaller #0 PREEMPT(full) [ 176.089006][ T6936] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 176.089023][ T6936] Call Trace: [ 176.089032][ T6936] [ 176.089042][ T6936] dump_stack_lvl+0x16c/0x1f0 [ 176.089094][ T6936] should_fail_ex+0x512/0x640 [ 176.089147][ T6936] should_failslab+0xc2/0x120 [ 176.089188][ T6936] __kmalloc_cache_noprof+0x6a/0x3e0 [ 176.089223][ T6936] ? tipc_conn_alloc+0x48/0x590 [ 176.089265][ T6936] tipc_conn_alloc+0x48/0x590 [ 176.089304][ T6936] tipc_topsrv_kern_subscr+0x11c/0x3c0 [ 176.089348][ T6936] ? __pfx_tipc_topsrv_kern_subscr+0x10/0x10 [ 176.089394][ T6936] ? net_generic+0xea/0x2a0 [ 176.089443][ T6936] tipc_group_create+0x4ab/0x660 [ 176.089492][ T6936] tipc_setsockopt+0x7f0/0xdb0 [ 176.089526][ T6936] ? __pfx_tipc_setsockopt+0x10/0x10 [ 176.089575][ T6936] ? __pfx_tipc_setsockopt+0x10/0x10 [ 176.089608][ T6936] do_sock_setsockopt+0xf0/0x1d0 [ 176.089647][ T6936] __sys_setsockopt+0x120/0x1a0 [ 176.089698][ T6936] __x64_sys_setsockopt+0xbd/0x160 [ 176.089749][ T6936] ? do_syscall_64+0x91/0x4c0 [ 176.089796][ T6936] ? lockdep_hardirqs_on+0x7c/0x110 [ 176.089840][ T6936] do_syscall_64+0xcd/0x4c0 [ 176.089891][ T6936] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 176.089923][ T6936] RIP: 0033:0x7f62efb8eec9 [ 176.089950][ T6936] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 176.089977][ T6936] RSP: 002b:00007f62f0aba038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 176.090007][ T6936] RAX: ffffffffffffffda RBX: 00007f62efde6090 RCX: 00007f62efb8eec9 [ 176.090026][ T6936] RDX: 0000000000000087 RSI: 000000000000010f RDI: 0000000000000007 [ 176.090043][ T6936] RBP: 00007f62efc11f91 R08: 0000000000000014 R09: 0000000000000000 [ 176.090061][ T6936] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 176.090078][ T6936] R13: 00007f62efde6128 R14: 00007f62efde6090 R15: 00007ffeb0ac66c8 [ 176.090119][ T6936] [ 176.825996][ T6952] binder: 6951:6952 ioctl c018620c 0 returned -1 [ 176.846023][ T6952] netlink: 28 bytes leftover after parsing attributes in process `syz.1.200'. [ 178.039493][ T6965] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 178.047633][ T6965] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 178.093462][ T6965] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 178.118122][ T6965] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 178.156556][ T6965] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 178.238991][ T6965] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 178.370441][ T6965] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 178.409878][ T6965] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 178.420909][ T6965] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 178.477050][ T6965] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 178.525265][ T6965] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 178.549175][ T6965] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 178.564080][ T6965] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 178.858515][ T6985] sd 0:0:1:0: PR command failed: 1026 [ 178.873012][ T6985] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 178.895897][ T7004] binder: 7003:7004 ioctl c018620c 0 returned -1 [ 178.907099][ T7004] netlink: 28 bytes leftover after parsing attributes in process `syz.3.211'. [ 178.974168][ T6985] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 179.392410][ T51] Bluetooth: hci0: command 0x0c1a tx timeout [ 180.124273][ T7024] netlink: 28 bytes leftover after parsing attributes in process `syz.3.212'. [ 180.190849][ T51] Bluetooth: hci1: command 0x0c1a tx timeout [ 180.439509][ T51] Bluetooth: hci3: command 0x0c1a tx timeout [ 180.588944][ T51] Bluetooth: hci2: command 0x0c1a tx timeout [ 181.236141][ T7035] FAULT_INJECTION: forcing a failure. [ 181.236141][ T7035] name failslab, interval 1, probability 0, space 0, times 0 [ 181.260600][ T7035] CPU: 1 UID: 0 PID: 7035 Comm: syz.3.216 Not tainted syzkaller #0 PREEMPT(full) [ 181.260644][ T7035] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 181.260662][ T7035] Call Trace: [ 181.260672][ T7035] [ 181.260684][ T7035] dump_stack_lvl+0x16c/0x1f0 [ 181.260738][ T7035] should_fail_ex+0x512/0x640 [ 181.260784][ T7035] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 181.260825][ T7035] should_failslab+0xc2/0x120 [ 181.260874][ T7035] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 181.260909][ T7035] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 181.260941][ T7035] ? fuse_request_alloc+0x22/0x200 [ 181.260981][ T7035] fuse_request_alloc+0x22/0x200 [ 181.261015][ T7035] fuse_get_req+0x748/0xfd0 [ 181.261062][ T7035] ? __pfx_fuse_get_req+0x10/0x10 [ 181.261120][ T7035] fuse_simple_background+0x464/0x5f0 [ 181.261155][ T7035] ? kasan_save_track+0x14/0x30 [ 181.261195][ T7035] cuse_channel_open+0x561/0x7f0 [ 181.261238][ T7035] ? __pfx_cuse_channel_open+0x10/0x10 [ 181.261284][ T7035] misc_open+0x35a/0x420 [ 181.261322][ T7035] ? __pfx_misc_open+0x10/0x10 [ 181.261359][ T7035] chrdev_open+0x234/0x6a0 [ 181.261398][ T7035] ? __pfx_apparmor_file_open+0x10/0x10 [ 181.261432][ T7035] ? __pfx_chrdev_open+0x10/0x10 [ 181.261474][ T7035] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 181.261518][ T7035] do_dentry_open+0x982/0x1530 [ 181.261557][ T7035] ? __pfx_chrdev_open+0x10/0x10 [ 181.261606][ T7035] vfs_open+0x82/0x3f0 [ 181.261655][ T7035] path_openat+0x1de4/0x2cb0 [ 181.261706][ T7035] ? __pfx_path_openat+0x10/0x10 [ 181.261755][ T7035] do_filp_open+0x20b/0x470 [ 181.261794][ T7035] ? __pfx_do_filp_open+0x10/0x10 [ 181.261869][ T7035] ? alloc_fd+0x471/0x7d0 [ 181.261916][ T7035] do_sys_openat2+0x11b/0x1d0 [ 181.261962][ T7035] ? __pfx_do_sys_openat2+0x10/0x10 [ 181.262024][ T7035] __x64_sys_openat+0x174/0x210 [ 181.262048][ T7035] ? __pfx___x64_sys_openat+0x10/0x10 [ 181.262088][ T7035] do_syscall_64+0xcd/0x4c0 [ 181.262132][ T7035] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 181.262158][ T7035] RIP: 0033:0x7f7780b8eec9 [ 181.262176][ T7035] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 181.262193][ T7035] RSP: 002b:00007f77819d1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 181.262210][ T7035] RAX: ffffffffffffffda RBX: 00007f7780de5fa0 RCX: 00007f7780b8eec9 [ 181.262221][ T7035] RDX: 00000000001c1041 RSI: 0000200000000140 RDI: ffffffffffffff9c [ 181.262232][ T7035] RBP: 00007f7780c11f91 R08: 0000000000000000 R09: 0000000000000000 [ 181.262242][ T7035] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 181.262251][ T7035] R13: 00007f7780de6038 R14: 00007f7780de5fa0 R15: 00007fff2403edc8 [ 181.262274][ T7035] [ 181.544147][ C1] vkms_vblank_simulate: vblank timer overrun [ 181.565755][ T51] Bluetooth: hci0: command 0x0c1a tx timeout [ 182.269190][ T51] Bluetooth: hci1: command 0x0c1a tx timeout [ 182.508929][ T51] Bluetooth: hci3: command 0x0c1a tx timeout [ 182.671472][ T51] Bluetooth: hci2: command 0x0c1a tx timeout [ 182.840132][ T7070] binder: 7069:7070 ioctl c018620c 0 returned -1 [ 182.880602][ T7070] netlink: 28 bytes leftover after parsing attributes in process `syz.0.231'. [ 183.442401][ T7066] zswap: compressor 000 not available [ 183.510432][ T7073] svc: failed to register nfsdv3 RPC service (errno 111). [ 183.520534][ T7073] svc: failed to register nfsaclv3 RPC service (errno 111). [ 183.633322][ T51] Bluetooth: hci0: command 0x0c1a tx timeout [ 184.258854][ T7091] binder: 7089:7091 ioctl c018620c 0 returned -1 [ 184.350408][ T51] Bluetooth: hci1: command 0x0c1a tx timeout [ 184.371912][ T7091] netlink: 28 bytes leftover after parsing attributes in process `syz.3.224'. [ 184.588890][ T51] Bluetooth: hci3: command 0x0c1a tx timeout [ 184.749044][ T51] Bluetooth: hci2: command 0x0c1a tx timeout [ 185.724938][ T51] Bluetooth: hci0: command 0x0c1a tx timeout [ 186.109791][ T7122] binder: 7120:7122 ioctl c018620c 0 returned -1 [ 186.151795][ T7122] netlink: 28 bytes leftover after parsing attributes in process `syz.2.232'. [ 186.431769][ T7126] netlink: 16 bytes leftover after parsing attributes in process `syz.1.234'. [ 186.460919][ T7113] FAULT_INJECTION: forcing a failure. [ 186.460919][ T7113] name failslab, interval 1, probability 0, space 0, times 0 [ 186.568071][ T7113] CPU: 1 UID: 0 PID: 7113 Comm: syz.3.228 Not tainted syzkaller #0 PREEMPT(full) [ 186.568115][ T7113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 186.568132][ T7113] Call Trace: [ 186.568142][ T7113] [ 186.568154][ T7113] dump_stack_lvl+0x16c/0x1f0 [ 186.568203][ T7113] should_fail_ex+0x512/0x640 [ 186.568251][ T7113] ? fs_reclaim_acquire+0xae/0x150 [ 186.568297][ T7113] should_failslab+0xc2/0x120 [ 186.568336][ T7113] __kmalloc_cache_noprof+0x6a/0x3e0 [ 186.568367][ T7113] ? tomoyo_init_log+0x197/0x2140 [ 186.568412][ T7113] tomoyo_init_log+0x197/0x2140 [ 186.568449][ T7113] ? kasan_save_stack+0x33/0x60 [ 186.568485][ T7113] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 186.568542][ T7113] ? __pfx_tomoyo_init_log+0x10/0x10 [ 186.568583][ T7113] ? tomoyo_profile+0x47/0x60 [ 186.568609][ T7113] ? tomoyo_domain_quota_is_ok+0x2f6/0x5a0 [ 186.568654][ T7113] tomoyo_supervisor+0x302/0x13b0 [ 186.568689][ T7113] ? __pfx_tomoyo_supervisor+0x10/0x10 [ 186.568717][ T7113] ? __pfx_vsnprintf+0x10/0x10 [ 186.568782][ T7113] ? tomoyo_encode2+0x329/0x3e0 [ 186.568831][ T7113] ? tomoyo_check_path_number_acl+0xa6/0x2f0 [ 186.568891][ T7113] tomoyo_path_number_perm+0x448/0x580 [ 186.568931][ T7113] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 186.569009][ T7113] ? find_held_lock+0x2b/0x80 [ 186.569038][ T7113] ? hook_file_ioctl_common+0x145/0x410 [ 186.569085][ T7113] ? __fget_files+0x20e/0x3c0 [ 186.569123][ T7113] security_file_ioctl+0x9b/0x240 [ 186.569162][ T7113] __x64_sys_ioctl+0xb7/0x210 [ 186.569208][ T7113] do_syscall_64+0xcd/0x4c0 [ 186.569254][ T7113] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 186.569282][ T7113] RIP: 0033:0x7f7780b8eec9 [ 186.569306][ T7113] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 186.569334][ T7113] RSP: 002b:00007f778198f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 186.569363][ T7113] RAX: ffffffffffffffda RBX: 00007f7780de6180 RCX: 00007f7780b8eec9 [ 186.569380][ T7113] RDX: 0000000000000006 RSI: 00000000000007a0 RDI: 000000000000000a [ 186.569398][ T7113] RBP: 00007f7780c11f91 R08: 0000000000000000 R09: 0000000000000000 [ 186.569416][ T7113] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 186.569433][ T7113] R13: 00007f7780de6218 R14: 00007f7780de6180 R15: 00007fff2403edc8 [ 186.569474][ T7113] [ 186.806546][ T7126] netlink: 93 bytes leftover after parsing attributes in process `syz.1.234'. [ 186.833007][ T7133] binder: 7127:7133 ioctl c018620c 0 returned -1 [ 186.844430][ T7133] netlink: 28 bytes leftover after parsing attributes in process `syz.0.235'. [ 188.627450][ T7156] syz.3.239 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 189.331174][ T7153] FAULT_INJECTION: forcing a failure. [ 189.331174][ T7153] name failslab, interval 1, probability 0, space 0, times 0 [ 189.359285][ T7151] svc: failed to register nfsdv3 RPC service (errno 111). [ 189.380001][ T7151] svc: failed to register nfsaclv3 RPC service (errno 111). [ 189.409965][ T7153] CPU: 0 UID: 0 PID: 7153 Comm: syz.0.245 Not tainted syzkaller #0 PREEMPT(full) [ 189.410006][ T7153] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 189.410022][ T7153] Call Trace: [ 189.410032][ T7153] [ 189.410042][ T7153] dump_stack_lvl+0x16c/0x1f0 [ 189.410091][ T7153] should_fail_ex+0x512/0x640 [ 189.410132][ T7153] ? fs_reclaim_acquire+0xae/0x150 [ 189.410174][ T7153] ? tomoyo_encode2+0x100/0x3e0 [ 189.410210][ T7153] should_failslab+0xc2/0x120 [ 189.410244][ T7153] __kmalloc_noprof+0xd2/0x510 [ 189.410275][ T7153] ? d_absolute_path+0x136/0x1a0 [ 189.410318][ T7153] tomoyo_encode2+0x100/0x3e0 [ 189.410359][ T7153] tomoyo_encode+0x29/0x50 [ 189.410393][ T7153] tomoyo_realpath_from_path+0x18f/0x6e0 [ 189.410443][ T7153] tomoyo_path_number_perm+0x245/0x580 [ 189.410473][ T7153] ? tomoyo_path_number_perm+0x237/0x580 [ 189.410508][ T7153] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 189.410583][ T7153] ? find_held_lock+0x2b/0x80 [ 189.410611][ T7153] ? hook_file_ioctl_common+0x145/0x410 [ 189.410657][ T7153] ? __fget_files+0x20e/0x3c0 [ 189.410695][ T7153] security_file_ioctl+0x9b/0x240 [ 189.410731][ T7153] __x64_sys_ioctl+0xb7/0x210 [ 189.410785][ T7153] do_syscall_64+0xcd/0x4c0 [ 189.410830][ T7153] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 189.410858][ T7153] RIP: 0033:0x7f5c6938eec9 [ 189.410880][ T7153] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 189.410906][ T7153] RSP: 002b:00007f5c6a160038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 189.410933][ T7153] RAX: ffffffffffffffda RBX: 00007f5c695e6180 RCX: 00007f5c6938eec9 [ 189.410951][ T7153] RDX: 0000000000000006 RSI: 00000000000007a0 RDI: 000000000000000a [ 189.410967][ T7153] RBP: 00007f5c69411f91 R08: 0000000000000000 R09: 0000000000000000 [ 189.410984][ T7153] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 189.411000][ T7153] R13: 00007f5c695e6218 R14: 00007f5c695e6180 R15: 00007ffe0fc79148 [ 189.411038][ T7153] [ 189.411065][ T7153] ERROR: Out of memory at tomoyo_realpath_from_path. [ 190.593708][ T7166] FAULT_INJECTION: forcing a failure. [ 190.593708][ T7166] name failslab, interval 1, probability 0, space 0, times 0 [ 190.639128][ T7166] CPU: 0 UID: 0 PID: 7166 Comm: syz.2.240 Not tainted syzkaller #0 PREEMPT(full) [ 190.639155][ T7166] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 190.639166][ T7166] Call Trace: [ 190.639172][ T7166] [ 190.639180][ T7166] dump_stack_lvl+0x16c/0x1f0 [ 190.639213][ T7166] should_fail_ex+0x512/0x640 [ 190.639240][ T7166] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 190.639263][ T7166] should_failslab+0xc2/0x120 [ 190.639287][ T7166] __kmalloc_cache_noprof+0x6a/0x3e0 [ 190.639306][ T7166] ? alloc_netdev_mqs+0xec4/0x1530 [ 190.639337][ T7166] alloc_netdev_mqs+0xec4/0x1530 [ 190.639369][ T7166] internal_dev_create+0x8a/0x520 [ 190.639390][ T7166] ovs_vport_add+0x144/0x4d0 [ 190.639418][ T7166] new_vport+0x16/0x1d0 [ 190.639441][ T7166] ovs_dp_cmd_new+0x6ba/0xe60 [ 190.639470][ T7166] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 190.639500][ T7166] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 190.639521][ T7166] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 190.639554][ T7166] genl_family_rcv_msg_doit+0x206/0x2f0 [ 190.639575][ T7166] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 190.639601][ T7166] ? bpf_lsm_capable+0x9/0x10 [ 190.639618][ T7166] ? security_capable+0x7e/0x260 [ 190.639639][ T7166] ? ns_capable+0xd7/0x110 [ 190.639661][ T7166] genl_rcv_msg+0x55c/0x800 [ 190.639683][ T7166] ? __pfx_genl_rcv_msg+0x10/0x10 [ 190.639702][ T7166] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 190.639734][ T7166] netlink_rcv_skb+0x158/0x420 [ 190.639761][ T7166] ? __pfx_genl_rcv_msg+0x10/0x10 [ 190.639781][ T7166] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 190.639817][ T7166] ? netlink_deliver_tap+0x1ae/0xd30 [ 190.639847][ T7166] genl_rcv+0x28/0x40 [ 190.639862][ T7166] netlink_unicast+0x5a7/0x870 [ 190.639893][ T7166] ? __pfx_netlink_unicast+0x10/0x10 [ 190.639920][ T7166] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 190.639946][ T7166] ? __lock_acquire+0xb97/0x1ce0 [ 190.639976][ T7166] netlink_sendmsg+0x8d1/0xdd0 [ 190.640006][ T7166] ? __pfx_netlink_sendmsg+0x10/0x10 [ 190.640036][ T7166] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 190.640060][ T7166] ____sys_sendmsg+0xa98/0xc70 [ 190.640080][ T7166] ? copy_msghdr_from_user+0x10a/0x160 [ 190.640107][ T7166] ? __pfx_____sys_sendmsg+0x10/0x10 [ 190.640137][ T7166] ? __pfx_futex_wake_mark+0x10/0x10 [ 190.640167][ T7166] ___sys_sendmsg+0x134/0x1d0 [ 190.640195][ T7166] ? __pfx____sys_sendmsg+0x10/0x10 [ 190.640252][ T7166] __sys_sendmsg+0x16d/0x220 [ 190.640279][ T7166] ? __pfx___sys_sendmsg+0x10/0x10 [ 190.640305][ T7166] ? __x64_sys_futex+0x1e0/0x4c0 [ 190.640342][ T7166] do_syscall_64+0xcd/0x4c0 [ 190.640371][ T7166] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 190.640390][ T7166] RIP: 0033:0x7fe56138eec9 [ 190.640406][ T7166] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 190.640423][ T7166] RSP: 002b:00007fe562237038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 190.640441][ T7166] RAX: ffffffffffffffda RBX: 00007fe5615e5fa0 RCX: 00007fe56138eec9 [ 190.640452][ T7166] RDX: 0000000000000080 RSI: 0000200000000140 RDI: 000000000000000c [ 190.640462][ T7166] RBP: 00007fe561411f91 R08: 0000000000000000 R09: 0000000000000000 [ 190.640473][ T7166] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 190.640483][ T7166] R13: 00007fe5615e6038 R14: 00007fe5615e5fa0 R15: 00007fff34323258 [ 190.640505][ T7166] [ 191.507579][ T7182] FAULT_INJECTION: forcing a failure. [ 191.507579][ T7182] name fail_futex, interval 1, probability 0, space 0, times 1 [ 191.552834][ T7182] CPU: 0 UID: 0 PID: 7182 Comm: syz.2.243 Not tainted syzkaller #0 PREEMPT(full) [ 191.552882][ T7182] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 191.552900][ T7182] Call Trace: [ 191.552911][ T7182] [ 191.552923][ T7182] dump_stack_lvl+0x16c/0x1f0 [ 191.552976][ T7182] should_fail_ex+0x512/0x640 [ 191.553030][ T7182] get_futex_key+0x1d0/0x1560 [ 191.553072][ T7182] ? __pfx_get_futex_key+0x10/0x10 [ 191.553124][ T7182] futex_wake+0xea/0x530 [ 191.553169][ T7182] ? rcu_is_watching+0x12/0xc0 [ 191.553202][ T7182] ? __pfx_futex_wake+0x10/0x10 [ 191.553254][ T7182] ? kmem_cache_free+0x2d1/0x4d0 [ 191.553287][ T7182] ? fd_install+0x225/0x750 [ 191.553316][ T7182] ? putname+0x154/0x1a0 [ 191.553365][ T7182] do_futex+0x1e3/0x350 [ 191.553404][ T7182] ? __pfx_do_futex+0x10/0x10 [ 191.553454][ T7182] __x64_sys_futex+0x1e0/0x4c0 [ 191.553496][ T7182] ? __x64_sys_openat+0x174/0x210 [ 191.553535][ T7182] ? __pfx___x64_sys_futex+0x10/0x10 [ 191.553591][ T7182] do_syscall_64+0xcd/0x4c0 [ 191.553650][ T7182] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 191.553681][ T7182] RIP: 0033:0x7fe56138eec9 [ 191.553705][ T7182] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 191.553733][ T7182] RSP: 002b:00007fe5622370e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 191.553762][ T7182] RAX: ffffffffffffffda RBX: 00007fe5615e5fa8 RCX: 00007fe56138eec9 [ 191.553781][ T7182] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fe5615e5fac [ 191.553800][ T7182] RBP: 00007fe5615e5fa0 R08: 00007fe562238000 R09: 0000000000000000 [ 191.553818][ T7182] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000 [ 191.553835][ T7182] R13: 00007fe5615e6038 R14: 00007fff34323170 R15: 00007fff34323258 [ 191.553874][ T7182] [ 191.560762][ T7181] FAULT_INJECTION: forcing a failure. [ 191.560762][ T7181] name failslab, interval 1, probability 0, space 0, times 0 [ 191.813153][ T7181] CPU: 1 UID: 0 PID: 7181 Comm: syz.3.242 Not tainted syzkaller #0 PREEMPT(full) [ 191.813195][ T7181] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 191.813212][ T7181] Call Trace: [ 191.813222][ T7181] [ 191.813234][ T7181] dump_stack_lvl+0x16c/0x1f0 [ 191.813285][ T7181] should_fail_ex+0x512/0x640 [ 191.813330][ T7181] ? fs_reclaim_acquire+0xae/0x150 [ 191.813377][ T7181] should_failslab+0xc2/0x120 [ 191.813413][ T7181] __kmalloc_cache_noprof+0x6a/0x3e0 [ 191.813446][ T7181] ? tomoyo_init_log+0x197/0x2140 [ 191.813496][ T7181] tomoyo_init_log+0x197/0x2140 [ 191.813533][ T7181] ? kasan_save_stack+0x33/0x60 [ 191.813570][ T7181] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 191.813632][ T7181] ? __pfx_tomoyo_init_log+0x10/0x10 [ 191.813673][ T7181] ? tomoyo_profile+0x47/0x60 [ 191.813700][ T7181] ? tomoyo_domain_quota_is_ok+0x2f6/0x5a0 [ 191.813743][ T7181] tomoyo_supervisor+0x302/0x13b0 [ 191.813789][ T7181] ? __pfx_tomoyo_supervisor+0x10/0x10 [ 191.813815][ T7181] ? __pfx_vsnprintf+0x10/0x10 [ 191.813879][ T7181] ? tomoyo_encode2+0x329/0x3e0 [ 191.813929][ T7181] ? tomoyo_check_path_number_acl+0xa6/0x2f0 [ 191.813982][ T7181] tomoyo_path_number_perm+0x448/0x580 [ 191.814025][ T7181] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 191.814106][ T7181] ? find_held_lock+0x2b/0x80 [ 191.814136][ T7181] ? hook_file_ioctl_common+0x145/0x410 [ 191.814187][ T7181] ? __fget_files+0x20e/0x3c0 [ 191.814227][ T7181] security_file_ioctl+0x9b/0x240 [ 191.814269][ T7181] __x64_sys_ioctl+0xb7/0x210 [ 191.814322][ T7181] do_syscall_64+0xcd/0x4c0 [ 191.814372][ T7181] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 191.814402][ T7181] RIP: 0033:0x7f7780b8eec9 [ 191.814426][ T7181] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 191.814451][ T7181] RSP: 002b:00007f778198f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 191.814476][ T7181] RAX: ffffffffffffffda RBX: 00007f7780de6180 RCX: 00007f7780b8eec9 [ 191.814493][ T7181] RDX: 0000000000000006 RSI: 00000000000007a0 RDI: 000000000000000a [ 191.814509][ T7181] RBP: 00007f7780c11f91 R08: 0000000000000000 R09: 0000000000000000 [ 191.814526][ T7181] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 191.814541][ T7181] R13: 00007f7780de6218 R14: 00007f7780de6180 R15: 00007fff2403edc8 [ 191.814580][ T7181] [ 192.054063][ C1] vkms_vblank_simulate: vblank timer overrun [ 194.154905][ T7218] binder: 7216:7218 ioctl c018620c 0 returned -1 [ 194.221881][ T7218] netlink: 28 bytes leftover after parsing attributes in process `syz.2.251'. [ 194.983682][ T7225] netlink: 28 bytes leftover after parsing attributes in process `syz.1.252'. [ 195.014363][ T7237] netlink: 206 bytes leftover after parsing attributes in process `syz.0.255'. [ 195.115518][ T7247] cgroup: fork rejected by pids controller in /syz0 [ 196.547680][ T7339] FAULT_INJECTION: forcing a failure. [ 196.547680][ T7339] name failslab, interval 1, probability 0, space 0, times 0 [ 196.579550][ T7339] CPU: 1 UID: 0 PID: 7339 Comm: syz.0.260 Not tainted syzkaller #0 PREEMPT(full) [ 196.579594][ T7339] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 196.579613][ T7339] Call Trace: [ 196.579623][ T7339] [ 196.579636][ T7339] dump_stack_lvl+0x16c/0x1f0 [ 196.579687][ T7339] should_fail_ex+0x512/0x640 [ 196.579733][ T7339] ? fs_reclaim_acquire+0xae/0x150 [ 196.579779][ T7339] should_failslab+0xc2/0x120 [ 196.579817][ T7339] __kmalloc_cache_noprof+0x6a/0x3e0 [ 196.579850][ T7339] ? tomoyo_init_log+0x197/0x2140 [ 196.579899][ T7339] tomoyo_init_log+0x197/0x2140 [ 196.579937][ T7339] ? kasan_save_stack+0x33/0x60 [ 196.579973][ T7339] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 196.580033][ T7339] ? __pfx_tomoyo_init_log+0x10/0x10 [ 196.580075][ T7339] ? tomoyo_profile+0x47/0x60 [ 196.580100][ T7339] ? tomoyo_domain_quota_is_ok+0x2f6/0x5a0 [ 196.580142][ T7339] tomoyo_supervisor+0x302/0x13b0 [ 196.580179][ T7339] ? __pfx_tomoyo_supervisor+0x10/0x10 [ 196.580206][ T7339] ? __pfx_vsnprintf+0x10/0x10 [ 196.580267][ T7339] ? tomoyo_encode2+0x329/0x3e0 [ 196.580316][ T7339] ? tomoyo_check_path_number_acl+0xa6/0x2f0 [ 196.580377][ T7339] tomoyo_path_number_perm+0x448/0x580 [ 196.580420][ T7339] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 196.580515][ T7339] ? find_held_lock+0x2b/0x80 [ 196.580545][ T7339] ? hook_file_ioctl_common+0x145/0x410 [ 196.580596][ T7339] ? __fget_files+0x20e/0x3c0 [ 196.580638][ T7339] security_file_ioctl+0x9b/0x240 [ 196.580679][ T7339] __x64_sys_ioctl+0xb7/0x210 [ 196.580727][ T7339] do_syscall_64+0xcd/0x4c0 [ 196.580775][ T7339] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 196.580804][ T7339] RIP: 0033:0x7f5c6938eec9 [ 196.580828][ T7339] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 196.580856][ T7339] RSP: 002b:00007f5c6a160038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 196.580885][ T7339] RAX: ffffffffffffffda RBX: 00007f5c695e6180 RCX: 00007f5c6938eec9 [ 196.580902][ T7339] RDX: 0000000000000006 RSI: 00000000000007a0 RDI: 000000000000000a [ 196.580918][ T7339] RBP: 00007f5c69411f91 R08: 0000000000000000 R09: 0000000000000000 [ 196.580935][ T7339] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 196.580952][ T7339] R13: 00007f5c695e6218 R14: 00007f5c695e6180 R15: 00007ffe0fc79148 [ 196.580992][ T7339] [ 196.823090][ C1] vkms_vblank_simulate: vblank timer overrun [ 196.845918][ T7347] binder: 7346:7347 ioctl c018620c 0 returned -1 [ 196.857065][ T7347] netlink: 28 bytes leftover after parsing attributes in process `syz.2.263'. [ 197.320528][ T7350] FAULT_INJECTION: forcing a failure. [ 197.320528][ T7350] name failslab, interval 1, probability 0, space 0, times 0 [ 197.334449][ T7350] CPU: 1 UID: 0 PID: 7350 Comm: syz.1.264 Not tainted syzkaller #0 PREEMPT(full) [ 197.334487][ T7350] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 197.334504][ T7350] Call Trace: [ 197.334513][ T7350] [ 197.334524][ T7350] dump_stack_lvl+0x16c/0x1f0 [ 197.334573][ T7350] should_fail_ex+0x512/0x640 [ 197.334617][ T7350] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 197.334648][ T7350] should_failslab+0xc2/0x120 [ 197.334682][ T7350] __kmalloc_cache_noprof+0x6a/0x3e0 [ 197.334718][ T7350] ? find_held_lock+0x2b/0x80 [ 197.334742][ T7350] ? alloc_pipe_info+0x10e/0x590 [ 197.334780][ T7350] alloc_pipe_info+0x10e/0x590 [ 197.334816][ T7350] splice_direct_to_actor+0x77d/0xa30 [ 197.334846][ T7350] ? __lock_acquire+0x62e/0x1ce0 [ 197.334877][ T7350] ? __pfx_direct_splice_actor+0x10/0x10 [ 197.334907][ T7350] ? __pfx_aa_file_perm+0x10/0x10 [ 197.334944][ T7350] ? futex_private_hash_put+0x176/0x300 [ 197.334974][ T7350] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 197.335014][ T7350] do_splice_direct+0x174/0x240 [ 197.335042][ T7350] ? __pfx_do_splice_direct+0x10/0x10 [ 197.335070][ T7350] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 197.335099][ T7350] ? bpf_lsm_file_permission+0x9/0x10 [ 197.335136][ T7350] ? security_file_permission+0x71/0x210 [ 197.335172][ T7350] ? rw_verify_area+0xcf/0x6c0 [ 197.335203][ T7350] do_sendfile+0xb06/0xe50 [ 197.335239][ T7350] ? __pfx_do_sendfile+0x10/0x10 [ 197.335275][ T7350] ? __x64_sys_futex+0x1e0/0x4c0 [ 197.335306][ T7350] ? __x64_sys_futex+0x1e9/0x4c0 [ 197.335343][ T7350] __x64_sys_sendfile64+0x1d8/0x220 [ 197.335379][ T7350] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 197.335427][ T7350] do_syscall_64+0xcd/0x4c0 [ 197.335469][ T7350] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 197.335496][ T7350] RIP: 0033:0x7f62efb8eec9 [ 197.335520][ T7350] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 197.335546][ T7350] RSP: 002b:00007f62f0adb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 197.335572][ T7350] RAX: ffffffffffffffda RBX: 00007f62efde5fa0 RCX: 00007f62efb8eec9 [ 197.335590][ T7350] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000008 [ 197.335605][ T7350] RBP: 00007f62efc11f91 R08: 0000000000000000 R09: 0000000000000000 [ 197.335620][ T7350] R10: 0000000000000200 R11: 0000000000000246 R12: 0000000000000000 [ 197.335636][ T7350] R13: 00007f62efde6038 R14: 00007f62efde5fa0 R15: 00007ffeb0ac66c8 [ 197.335672][ T7350] [ 197.584058][ C1] vkms_vblank_simulate: vblank timer overrun [ 198.215702][ T7361] FAULT_INJECTION: forcing a failure. [ 198.215702][ T7361] name failslab, interval 1, probability 0, space 0, times 0 [ 198.228845][ T7361] CPU: 0 UID: 0 PID: 7361 Comm: syz.1.266 Not tainted syzkaller #0 PREEMPT(full) [ 198.228878][ T7361] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 198.228889][ T7361] Call Trace: [ 198.228896][ T7361] [ 198.228903][ T7361] dump_stack_lvl+0x16c/0x1f0 [ 198.228936][ T7361] should_fail_ex+0x512/0x640 [ 198.228965][ T7361] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 198.228992][ T7361] should_failslab+0xc2/0x120 [ 198.229016][ T7361] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 198.229040][ T7361] ? mark_held_locks+0x49/0x80 [ 198.229062][ T7361] ? kstrdup_const+0x63/0x80 [ 198.229087][ T7361] kstrdup+0x53/0x100 [ 198.229111][ T7361] kstrdup_const+0x63/0x80 [ 198.229132][ T7361] kvasprintf_const+0x10f/0x1a0 [ 198.229154][ T7361] kobject_set_name_vargs+0x5a/0x140 [ 198.229174][ T7361] dev_set_name+0xc7/0x100 [ 198.229195][ T7361] ? __pfx_dev_set_name+0x10/0x10 [ 198.229219][ T7361] ? lockdep_init_map_type+0x5c/0x280 [ 198.229244][ T7361] ? __init_waitqueue_head+0xca/0x150 [ 198.229276][ T7361] netdev_register_kobject+0xc5/0x3d0 [ 198.229299][ T7361] register_netdevice+0x13dc/0x2270 [ 198.229322][ T7361] ? __pfx_register_netdevice+0x10/0x10 [ 198.229347][ T7361] internal_dev_create+0x2d3/0x520 [ 198.229367][ T7361] ovs_vport_add+0x144/0x4d0 [ 198.229395][ T7361] new_vport+0x16/0x1d0 [ 198.229418][ T7361] ovs_dp_cmd_new+0x6ba/0xe60 [ 198.229448][ T7361] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 198.229486][ T7361] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 198.229507][ T7361] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 198.229532][ T7361] genl_family_rcv_msg_doit+0x206/0x2f0 [ 198.229553][ T7361] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 198.229580][ T7361] ? bpf_lsm_capable+0x9/0x10 [ 198.229598][ T7361] ? security_capable+0x7e/0x260 [ 198.229617][ T7361] ? ns_capable+0xd7/0x110 [ 198.229639][ T7361] genl_rcv_msg+0x55c/0x800 [ 198.229661][ T7361] ? __pfx_genl_rcv_msg+0x10/0x10 [ 198.229681][ T7361] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 198.229712][ T7361] netlink_rcv_skb+0x158/0x420 [ 198.229740][ T7361] ? __pfx_genl_rcv_msg+0x10/0x10 [ 198.229760][ T7361] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 198.229796][ T7361] ? netlink_deliver_tap+0x1ae/0xd30 [ 198.229826][ T7361] genl_rcv+0x28/0x40 [ 198.229842][ T7361] netlink_unicast+0x5a7/0x870 [ 198.229873][ T7361] ? __pfx_netlink_unicast+0x10/0x10 [ 198.229900][ T7361] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 198.229926][ T7361] ? __lock_acquire+0xb97/0x1ce0 [ 198.229955][ T7361] netlink_sendmsg+0x8d1/0xdd0 [ 198.229986][ T7361] ? __pfx_netlink_sendmsg+0x10/0x10 [ 198.230016][ T7361] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 198.230040][ T7361] ____sys_sendmsg+0xa98/0xc70 [ 198.230061][ T7361] ? copy_msghdr_from_user+0x10a/0x160 [ 198.230087][ T7361] ? __pfx_____sys_sendmsg+0x10/0x10 [ 198.230112][ T7361] ? __pfx_futex_wake_mark+0x10/0x10 [ 198.230143][ T7361] ___sys_sendmsg+0x134/0x1d0 [ 198.230171][ T7361] ? __pfx____sys_sendmsg+0x10/0x10 [ 198.230225][ T7361] __sys_sendmsg+0x16d/0x220 [ 198.230252][ T7361] ? __pfx___sys_sendmsg+0x10/0x10 [ 198.230278][ T7361] ? __x64_sys_futex+0x1e0/0x4c0 [ 198.230314][ T7361] do_syscall_64+0xcd/0x4c0 [ 198.230343][ T7361] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 198.230362][ T7361] RIP: 0033:0x7f62efb8eec9 [ 198.230378][ T7361] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 198.230394][ T7361] RSP: 002b:00007f62f0aba038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 198.230411][ T7361] RAX: ffffffffffffffda RBX: 00007f62efde6090 RCX: 00007f62efb8eec9 [ 198.230423][ T7361] RDX: 0000000000000080 RSI: 0000200000000140 RDI: 000000000000000c [ 198.230433][ T7361] RBP: 00007f62efc11f91 R08: 0000000000000000 R09: 0000000000000000 [ 198.230443][ T7361] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 198.230453][ T7361] R13: 00007f62efde6128 R14: 00007f62efde6090 R15: 00007ffeb0ac66c8 [ 198.230475][ T7361] [ 199.737965][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 199.745061][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 201.171891][ T7405] netlink: 16 bytes leftover after parsing attributes in process `syz.0.274'. [ 201.191640][ T7405] netlink: 93 bytes leftover after parsing attributes in process `syz.0.274'. [ 201.971627][ T7411] FAULT_INJECTION: forcing a failure. [ 201.971627][ T7411] name failslab, interval 1, probability 0, space 0, times 0 [ 202.044009][ T7411] CPU: 0 UID: 0 PID: 7411 Comm: syz.2.277 Not tainted syzkaller #0 PREEMPT(full) [ 202.044053][ T7411] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 202.044071][ T7411] Call Trace: [ 202.044081][ T7411] [ 202.044092][ T7411] dump_stack_lvl+0x16c/0x1f0 [ 202.044144][ T7411] should_fail_ex+0x512/0x640 [ 202.044191][ T7411] ? fs_reclaim_acquire+0xae/0x150 [ 202.044242][ T7411] should_failslab+0xc2/0x120 [ 202.044283][ T7411] __kmalloc_cache_noprof+0x6a/0x3e0 [ 202.044318][ T7411] ? tomoyo_init_log+0x197/0x2140 [ 202.044368][ T7411] tomoyo_init_log+0x197/0x2140 [ 202.044415][ T7411] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 202.044476][ T7411] ? __pfx_tomoyo_init_log+0x10/0x10 [ 202.044523][ T7411] ? tomoyo_profile+0x47/0x60 [ 202.044551][ T7411] ? tomoyo_domain_quota_is_ok+0x2f6/0x5a0 [ 202.044595][ T7411] tomoyo_supervisor+0x302/0x13b0 [ 202.044634][ T7411] ? __pfx_tomoyo_supervisor+0x10/0x10 [ 202.044662][ T7411] ? __pfx_vsnprintf+0x10/0x10 [ 202.044718][ T7411] ? irqentry_exit+0x3b/0x90 [ 202.044777][ T7411] ? kasan_check_range+0x146/0x1b0 [ 202.044842][ T7411] tomoyo_path_number_perm+0x448/0x580 [ 202.044887][ T7411] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 202.044967][ T7411] ? find_held_lock+0x2b/0x80 [ 202.044997][ T7411] ? hook_file_ioctl_common+0x145/0x410 [ 202.045044][ T7411] ? __fget_files+0x20e/0x3c0 [ 202.045085][ T7411] security_file_ioctl+0x9b/0x240 [ 202.045126][ T7411] __x64_sys_ioctl+0xb7/0x210 [ 202.045177][ T7411] do_syscall_64+0xcd/0x4c0 [ 202.045224][ T7411] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 202.045255][ T7411] RIP: 0033:0x7fe56138eec9 [ 202.045280][ T7411] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 202.045308][ T7411] RSP: 002b:00007fe562216038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 202.045338][ T7411] RAX: ffffffffffffffda RBX: 00007fe5615e6090 RCX: 00007fe56138eec9 [ 202.045358][ T7411] RDX: 0000000000000006 RSI: 00000000000007a0 RDI: 000000000000000a [ 202.045375][ T7411] RBP: 00007fe561411f91 R08: 0000000000000000 R09: 0000000000000000 [ 202.045393][ T7411] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 202.045411][ T7411] R13: 00007fe5615e6128 R14: 00007fe5615e6090 R15: 00007fff34323258 [ 202.045451][ T7411] [ 202.565141][ T7420] FAULT_INJECTION: forcing a failure. [ 202.565141][ T7420] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 202.582396][ T7420] CPU: 1 UID: 0 PID: 7420 Comm: syz.3.278 Not tainted syzkaller #0 PREEMPT(full) [ 202.582449][ T7420] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 202.582467][ T7420] Call Trace: [ 202.582478][ T7420] [ 202.582490][ T7420] dump_stack_lvl+0x16c/0x1f0 [ 202.582549][ T7420] should_fail_ex+0x512/0x640 [ 202.582604][ T7420] should_fail_alloc_page+0xe7/0x130 [ 202.582648][ T7420] prepare_alloc_pages+0x3c2/0x610 [ 202.582701][ T7420] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 202.582740][ T7420] ? copy_splice_read+0x1a8/0xc20 [ 202.582770][ T7420] ? stack_trace_save+0x8e/0xc0 [ 202.582805][ T7420] ? __pfx_stack_trace_save+0x10/0x10 [ 202.582842][ T7420] ? stack_depot_save_flags+0x29/0x9c0 [ 202.582896][ T7420] ? bpf_ksym_find+0x124/0x1c0 [ 202.582930][ T7420] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 202.582966][ T7420] ? kasan_save_stack+0x33/0x60 [ 202.583000][ T7420] ? __kasan_kmalloc+0xaa/0xb0 [ 202.583033][ T7420] ? copy_splice_read+0x1a8/0xc20 [ 202.583060][ T7420] ? do_splice_read+0x285/0x370 [ 202.583087][ T7420] ? splice_direct_to_actor+0x2a1/0xa30 [ 202.583116][ T7420] ? do_splice_direct+0x174/0x240 [ 202.583144][ T7420] ? do_sendfile+0xb06/0xe50 [ 202.583174][ T7420] ? __x64_sys_sendfile64+0x1d8/0x220 [ 202.583214][ T7420] ? do_syscall_64+0xcd/0x4c0 [ 202.583290][ T7420] alloc_pages_bulk_noprof+0x71c/0x1410 [ 202.583342][ T7420] ? __pfx_alloc_pages_bulk_noprof+0x10/0x10 [ 202.583390][ T7420] ? trace_kmalloc+0x2b/0xd0 [ 202.583431][ T7420] ? __kmalloc_noprof+0x242/0x510 [ 202.583485][ T7420] copy_splice_read+0x1e1/0xc20 [ 202.583526][ T7420] ? __pfx_copy_splice_read+0x10/0x10 [ 202.583561][ T7420] ? look_up_lock_class+0x59/0x150 [ 202.583614][ T7420] ? lockdep_init_map_type+0x5c/0x280 [ 202.583660][ T7420] ? __pfx_pipe_lock_cmp_fn+0x10/0x10 [ 202.583698][ T7420] ? __pfx_copy_splice_read+0x10/0x10 [ 202.583728][ T7420] do_splice_read+0x285/0x370 [ 202.583764][ T7420] splice_direct_to_actor+0x2a1/0xa30 [ 202.583799][ T7420] ? __pfx_direct_splice_actor+0x10/0x10 [ 202.583840][ T7420] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 202.583885][ T7420] do_splice_direct+0x174/0x240 [ 202.583919][ T7420] ? __pfx_do_splice_direct+0x10/0x10 [ 202.583952][ T7420] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 202.583986][ T7420] ? bpf_lsm_file_permission+0x9/0x10 [ 202.584031][ T7420] ? security_file_permission+0x71/0x210 [ 202.584075][ T7420] ? rw_verify_area+0xcf/0x6c0 [ 202.584110][ T7420] do_sendfile+0xb06/0xe50 [ 202.584151][ T7420] ? __pfx_do_sendfile+0x10/0x10 [ 202.584192][ T7420] ? __x64_sys_futex+0x1e0/0x4c0 [ 202.584228][ T7420] ? __x64_sys_futex+0x1e9/0x4c0 [ 202.584271][ T7420] __x64_sys_sendfile64+0x1d8/0x220 [ 202.584314][ T7420] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 202.584370][ T7420] do_syscall_64+0xcd/0x4c0 [ 202.584421][ T7420] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 202.584459][ T7420] RIP: 0033:0x7f7780b8eec9 [ 202.584485][ T7420] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 202.584512][ T7420] RSP: 002b:00007f77819d1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 202.584542][ T7420] RAX: ffffffffffffffda RBX: 00007f7780de5fa0 RCX: 00007f7780b8eec9 [ 202.584563][ T7420] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000008 [ 202.584582][ T7420] RBP: 00007f7780c11f91 R08: 0000000000000000 R09: 0000000000000000 [ 202.584600][ T7420] R10: 0000000000000200 R11: 0000000000000246 R12: 0000000000000000 [ 202.584617][ T7420] R13: 00007f7780de6038 R14: 00007f7780de5fa0 R15: 00007fff2403edc8 [ 202.584656][ T7420] [ 203.497065][ T7438] binder: 7437:7438 ioctl c018620c 0 returned -1 [ 203.533979][ T7438] netlink: 28 bytes leftover after parsing attributes in process `syz.0.282'. [ 203.957738][ T7431] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 203.966436][ T7431] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 203.990846][ T7431] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 203.998995][ T7431] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 204.240021][ T7448] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet. [ 204.781131][ T7459] zswap: compressor not available [ 205.708777][ T51] Bluetooth: hci0: command 0x0c1a tx timeout [ 206.028891][ T5863] Bluetooth: hci3: command 0x0c1a tx timeout [ 206.036853][ T5867] Bluetooth: hci1: command 0x0c1a tx timeout [ 206.043063][ T51] Bluetooth: hci2: command 0x0c1a tx timeout [ 207.118512][ T7515] FAULT_INJECTION: forcing a failure. [ 207.118512][ T7515] name failslab, interval 1, probability 0, space 0, times 0 [ 207.132143][ T7515] CPU: 1 UID: 0 PID: 7515 Comm: syz.0.299 Not tainted syzkaller #0 PREEMPT(full) [ 207.132185][ T7515] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 207.132202][ T7515] Call Trace: [ 207.132213][ T7515] [ 207.132224][ T7515] dump_stack_lvl+0x16c/0x1f0 [ 207.132276][ T7515] should_fail_ex+0x512/0x640 [ 207.132320][ T7515] ? __kmalloc_noprof+0xbf/0x510 [ 207.132355][ T7515] ? alloc_pipe_info+0x1ec/0x590 [ 207.132390][ T7515] should_failslab+0xc2/0x120 [ 207.132426][ T7515] __kmalloc_noprof+0xd2/0x510 [ 207.132463][ T7515] alloc_pipe_info+0x1ec/0x590 [ 207.132509][ T7515] splice_direct_to_actor+0x77d/0xa30 [ 207.132544][ T7515] ? __lock_acquire+0x62e/0x1ce0 [ 207.132579][ T7515] ? __pfx_direct_splice_actor+0x10/0x10 [ 207.132613][ T7515] ? __pfx_aa_file_perm+0x10/0x10 [ 207.132657][ T7515] ? futex_private_hash_put+0x176/0x300 [ 207.132702][ T7515] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 207.132747][ T7515] do_splice_direct+0x174/0x240 [ 207.132781][ T7515] ? __pfx_do_splice_direct+0x10/0x10 [ 207.132814][ T7515] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 207.132848][ T7515] ? bpf_lsm_file_permission+0x9/0x10 [ 207.132888][ T7515] ? security_file_permission+0x71/0x210 [ 207.132928][ T7515] ? rw_verify_area+0xcf/0x6c0 [ 207.132960][ T7515] do_sendfile+0xb06/0xe50 [ 207.132996][ T7515] ? __pfx_do_sendfile+0x10/0x10 [ 207.133032][ T7515] ? __x64_sys_futex+0x1e0/0x4c0 [ 207.133065][ T7515] ? __x64_sys_futex+0x1e9/0x4c0 [ 207.133105][ T7515] __x64_sys_sendfile64+0x1d8/0x220 [ 207.133149][ T7515] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 207.133205][ T7515] do_syscall_64+0xcd/0x4c0 [ 207.133256][ T7515] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 207.133287][ T7515] RIP: 0033:0x7f5c6938eec9 [ 207.133311][ T7515] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 207.133340][ T7515] RSP: 002b:00007f5c6a1a2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 207.133370][ T7515] RAX: ffffffffffffffda RBX: 00007f5c695e5fa0 RCX: 00007f5c6938eec9 [ 207.133390][ T7515] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000008 [ 207.133407][ T7515] RBP: 00007f5c69411f91 R08: 0000000000000000 R09: 0000000000000000 [ 207.133425][ T7515] R10: 0000000000000200 R11: 0000000000000246 R12: 0000000000000000 [ 207.133440][ T7515] R13: 00007f5c695e6038 R14: 00007f5c695e5fa0 R15: 00007ffe0fc79148 [ 207.133472][ T7515] [ 207.385965][ T7525] workqueue: Failed to create a rescuer kthread for wq "nfc5_nci_rx_wq": -EINTR [ 208.623305][ T7559] FAULT_INJECTION: forcing a failure. [ 208.623305][ T7559] name fail_futex, interval 1, probability 0, space 0, times 0 [ 208.664747][ T7559] CPU: 0 UID: 0 PID: 7559 Comm: syz.2.304 Not tainted syzkaller #0 PREEMPT(full) [ 208.664781][ T7559] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 208.664791][ T7559] Call Trace: [ 208.664798][ T7559] [ 208.664805][ T7559] dump_stack_lvl+0x16c/0x1f0 [ 208.664838][ T7559] should_fail_ex+0x512/0x640 [ 208.664870][ T7559] get_futex_key+0x1d0/0x1560 [ 208.664896][ T7559] ? __pfx_get_futex_key+0x10/0x10 [ 208.664918][ T7559] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 208.664943][ T7559] futex_wake+0xea/0x530 [ 208.664968][ T7559] ? do_splice_direct+0x1b4/0x240 [ 208.664989][ T7559] ? __pfx_futex_wake+0x10/0x10 [ 208.665018][ T7559] ? bpf_lsm_file_permission+0x9/0x10 [ 208.665044][ T7559] ? security_file_permission+0x71/0x210 [ 208.665074][ T7559] do_futex+0x1e3/0x350 [ 208.665097][ T7559] ? __pfx_do_futex+0x10/0x10 [ 208.665120][ T7559] ? __pfx_do_sendfile+0x10/0x10 [ 208.665144][ T7559] __x64_sys_futex+0x1e0/0x4c0 [ 208.665169][ T7559] ? __pfx___x64_sys_futex+0x10/0x10 [ 208.665192][ T7559] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 208.665223][ T7559] do_syscall_64+0xcd/0x4c0 [ 208.665252][ T7559] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 208.665270][ T7559] RIP: 0033:0x7fe56138eec9 [ 208.665286][ T7559] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 208.665303][ T7559] RSP: 002b:00007fe5622370e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 208.665320][ T7559] RAX: ffffffffffffffda RBX: 00007fe5615e5fa8 RCX: 00007fe56138eec9 [ 208.665331][ T7559] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fe5615e5fac [ 208.665341][ T7559] RBP: 00007fe5615e5fa0 R08: 00007fe562238000 R09: 0000000000000000 [ 208.665352][ T7559] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 208.665362][ T7559] R13: 00007fe5615e6038 R14: 00007fff34323170 R15: 00007fff34323258 [ 208.665391][ T7559] [ 209.116087][ T7564] usb usb37: usbfs: process 7564 (syz.2.305) did not claim interface 0 before use [ 209.647070][ T7579] binder: 7578:7579 ioctl c018620c 0 returned -1 [ 209.679218][ T7579] netlink: 28 bytes leftover after parsing attributes in process `syz.1.308'. [ 210.876416][ T7601] syz.2.312 uses obsolete (PF_INET,SOCK_PACKET) [ 210.893516][ T7595] FAULT_INJECTION: forcing a failure. [ 210.893516][ T7595] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 210.912910][ T7595] CPU: 0 UID: 0 PID: 7595 Comm: syz.1.311 Not tainted syzkaller #0 PREEMPT(full) [ 210.912955][ T7595] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 210.912973][ T7595] Call Trace: [ 210.912983][ T7595] [ 210.912995][ T7595] dump_stack_lvl+0x16c/0x1f0 [ 210.913049][ T7595] should_fail_ex+0x512/0x640 [ 210.913105][ T7595] should_fail_alloc_page+0xe7/0x130 [ 210.913151][ T7595] prepare_alloc_pages+0x3c2/0x610 [ 210.913207][ T7595] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 210.913249][ T7595] ? copy_splice_read+0x1a8/0xc20 [ 210.913280][ T7595] ? stack_trace_save+0x8e/0xc0 [ 210.913316][ T7595] ? __pfx_stack_trace_save+0x10/0x10 [ 210.913363][ T7595] ? stack_depot_save_flags+0x29/0x9c0 [ 210.913411][ T7595] ? bpf_ksym_find+0x124/0x1c0 [ 210.913446][ T7595] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 210.913490][ T7595] ? kasan_save_stack+0x33/0x60 [ 210.913526][ T7595] ? __kasan_kmalloc+0xaa/0xb0 [ 210.913560][ T7595] ? copy_splice_read+0x1a8/0xc20 [ 210.913589][ T7595] ? do_splice_read+0x285/0x370 [ 210.913615][ T7595] ? splice_direct_to_actor+0x2a1/0xa30 [ 210.913644][ T7595] ? do_splice_direct+0x174/0x240 [ 210.913672][ T7595] ? do_sendfile+0xb06/0xe50 [ 210.913703][ T7595] ? __x64_sys_sendfile64+0x1d8/0x220 [ 210.913744][ T7595] ? do_syscall_64+0xcd/0x4c0 [ 210.913820][ T7595] alloc_pages_bulk_noprof+0x71c/0x1410 [ 210.913873][ T7595] ? __pfx_alloc_pages_bulk_noprof+0x10/0x10 [ 210.913921][ T7595] ? trace_kmalloc+0x2b/0xd0 [ 210.913963][ T7595] ? __kmalloc_noprof+0x242/0x510 [ 210.914010][ T7595] copy_splice_read+0x1e1/0xc20 [ 210.914053][ T7595] ? __pfx_copy_splice_read+0x10/0x10 [ 210.914089][ T7595] ? look_up_lock_class+0x59/0x150 [ 210.914142][ T7595] ? lockdep_init_map_type+0x5c/0x280 [ 210.914188][ T7595] ? __pfx_pipe_lock_cmp_fn+0x10/0x10 [ 210.914227][ T7595] ? __pfx_copy_splice_read+0x10/0x10 [ 210.914257][ T7595] do_splice_read+0x285/0x370 [ 210.914292][ T7595] splice_direct_to_actor+0x2a1/0xa30 [ 210.914328][ T7595] ? __pfx_direct_splice_actor+0x10/0x10 [ 210.914382][ T7595] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 210.914428][ T7595] do_splice_direct+0x174/0x240 [ 210.914462][ T7595] ? __pfx_do_splice_direct+0x10/0x10 [ 210.914497][ T7595] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 210.914531][ T7595] ? bpf_lsm_file_permission+0x9/0x10 [ 210.914576][ T7595] ? security_file_permission+0x71/0x210 [ 210.914715][ T7595] ? rw_verify_area+0xcf/0x6c0 [ 210.914755][ T7595] do_sendfile+0xb06/0xe50 [ 210.914796][ T7595] ? __pfx_do_sendfile+0x10/0x10 [ 210.914838][ T7595] ? __x64_sys_futex+0x1e0/0x4c0 [ 210.914877][ T7595] ? __x64_sys_futex+0x1e9/0x4c0 [ 210.914922][ T7595] __x64_sys_sendfile64+0x1d8/0x220 [ 210.914967][ T7595] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 210.915025][ T7595] do_syscall_64+0xcd/0x4c0 [ 210.915077][ T7595] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 210.915109][ T7595] RIP: 0033:0x7f62efb8eec9 [ 210.915135][ T7595] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 210.915166][ T7595] RSP: 002b:00007f62f0adb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 210.915195][ T7595] RAX: ffffffffffffffda RBX: 00007f62efde5fa0 RCX: 00007f62efb8eec9 [ 210.915216][ T7595] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000008 [ 210.915233][ T7595] RBP: 00007f62efc11f91 R08: 0000000000000000 R09: 0000000000000000 [ 210.915252][ T7595] R10: 0000000000000200 R11: 0000000000000246 R12: 0000000000000000 [ 210.915270][ T7595] R13: 00007f62efde6038 R14: 00007f62efde5fa0 R15: 00007ffeb0ac66c8 [ 210.915310][ T7595] [ 211.699851][ T7605] FAULT_INJECTION: forcing a failure. [ 211.699851][ T7605] name failslab, interval 1, probability 0, space 0, times 0 [ 211.717818][ T7605] CPU: 0 UID: 0 PID: 7605 Comm: syz.3.313 Not tainted syzkaller #0 PREEMPT(full) [ 211.717859][ T7605] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 211.717877][ T7605] Call Trace: [ 211.717886][ T7605] [ 211.717898][ T7605] dump_stack_lvl+0x16c/0x1f0 [ 211.717949][ T7605] should_fail_ex+0x512/0x640 [ 211.717995][ T7605] ? __kvmalloc_node_noprof+0x124/0x620 [ 211.718032][ T7605] should_failslab+0xc2/0x120 [ 211.718072][ T7605] __kvmalloc_node_noprof+0x137/0x620 [ 211.718105][ T7605] ? __pfx_net_ctl_permissions+0x10/0x10 [ 211.718132][ T7605] ? proc_sys_call_handler+0x281/0x570 [ 211.718171][ T7605] ? ns_capable_noaudit+0xda/0x110 [ 211.718209][ T7605] ? proc_sys_call_handler+0x281/0x570 [ 211.718247][ T7605] proc_sys_call_handler+0x281/0x570 [ 211.718288][ T7605] ? __pfx_proc_sys_call_handler+0x10/0x10 [ 211.718329][ T7605] ? trace_kmalloc+0x2b/0xd0 [ 211.718381][ T7605] copy_splice_read+0x615/0xc20 [ 211.718433][ T7605] ? __pfx_copy_splice_read+0x10/0x10 [ 211.718468][ T7605] ? look_up_lock_class+0x59/0x150 [ 211.718515][ T7605] ? lockdep_init_map_type+0x5c/0x280 [ 211.718556][ T7605] ? __pfx_pipe_lock_cmp_fn+0x10/0x10 [ 211.718590][ T7605] ? __pfx_copy_splice_read+0x10/0x10 [ 211.718622][ T7605] do_splice_read+0x285/0x370 [ 211.718655][ T7605] splice_direct_to_actor+0x2a1/0xa30 [ 211.718686][ T7605] ? __pfx_direct_splice_actor+0x10/0x10 [ 211.718724][ T7605] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 211.718769][ T7605] do_splice_direct+0x174/0x240 [ 211.718803][ T7605] ? __pfx_do_splice_direct+0x10/0x10 [ 211.718835][ T7605] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 211.718868][ T7605] ? bpf_lsm_file_permission+0x9/0x10 [ 211.718911][ T7605] ? security_file_permission+0x71/0x210 [ 211.718955][ T7605] ? rw_verify_area+0xcf/0x6c0 [ 211.718989][ T7605] do_sendfile+0xb06/0xe50 [ 211.719031][ T7605] ? __pfx_do_sendfile+0x10/0x10 [ 211.719072][ T7605] ? __x64_sys_futex+0x1e0/0x4c0 [ 211.719109][ T7605] ? __x64_sys_futex+0x1e9/0x4c0 [ 211.719151][ T7605] __x64_sys_sendfile64+0x1d8/0x220 [ 211.719195][ T7605] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 211.719249][ T7605] do_syscall_64+0xcd/0x4c0 [ 211.719298][ T7605] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 211.719329][ T7605] RIP: 0033:0x7f7780b8eec9 [ 211.719354][ T7605] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 211.719383][ T7605] RSP: 002b:00007f77819d1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 211.719420][ T7605] RAX: ffffffffffffffda RBX: 00007f7780de5fa0 RCX: 00007f7780b8eec9 [ 211.719441][ T7605] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000008 [ 211.719459][ T7605] RBP: 00007f7780c11f91 R08: 0000000000000000 R09: 0000000000000000 [ 211.719477][ T7605] R10: 0000000000000200 R11: 0000000000000246 R12: 0000000000000000 [ 211.719495][ T7605] R13: 00007f7780de6038 R14: 00007f7780de5fa0 R15: 00007fff2403edc8 [ 211.719536][ T7605] [ 212.957788][ T7636] binder: 7635:7636 ioctl c018620c 0 returned -1 [ 213.076148][ T7636] netlink: 28 bytes leftover after parsing attributes in process `syz.1.318'. [ 213.473183][ T7642] Invalid ELF header magic: != ELF [ 213.484235][ T7645] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 213.544003][ T7645] CIFS mount error: No usable UNC path provided in device string! [ 213.544003][ T7645] [ 213.569210][ T7645] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 214.157812][ T7663] netlink: 28 bytes leftover after parsing attributes in process `syz.3.324'. [ 215.285540][ T7679] netlink: 28 bytes leftover after parsing attributes in process `syz.2.326'. [ 215.406929][ T51] Bluetooth: hci2: unexpected event 0x01 length: 5 > 1 [ 215.473113][ T7673] FAULT_INJECTION: forcing a failure. [ 215.473113][ T7673] name fail_futex, interval 1, probability 0, space 0, times 0 [ 215.508922][ T7673] CPU: 0 UID: 0 PID: 7673 Comm: syz.3.327 Not tainted syzkaller #0 PREEMPT(full) [ 215.508965][ T7673] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 215.508982][ T7673] Call Trace: [ 215.508992][ T7673] [ 215.509004][ T7673] dump_stack_lvl+0x16c/0x1f0 [ 215.509058][ T7673] should_fail_ex+0x512/0x640 [ 215.509111][ T7673] get_futex_key+0x1d0/0x1560 [ 215.509155][ T7673] ? __pfx_get_futex_key+0x10/0x10 [ 215.509193][ T7673] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 215.509237][ T7673] futex_wake+0xea/0x530 [ 215.509279][ T7673] ? do_splice_direct+0x1b4/0x240 [ 215.509315][ T7673] ? __pfx_futex_wake+0x10/0x10 [ 215.509362][ T7673] ? bpf_lsm_file_permission+0x9/0x10 [ 215.509407][ T7673] ? security_file_permission+0x71/0x210 [ 215.509460][ T7673] do_futex+0x1e3/0x350 [ 215.509500][ T7673] ? __pfx_do_futex+0x10/0x10 [ 215.509540][ T7673] ? __pfx_do_sendfile+0x10/0x10 [ 215.509590][ T7673] __x64_sys_futex+0x1e0/0x4c0 [ 215.509635][ T7673] ? __pfx___x64_sys_futex+0x10/0x10 [ 215.509676][ T7673] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 215.509729][ T7673] do_syscall_64+0xcd/0x4c0 [ 215.509780][ T7673] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 215.509810][ T7673] RIP: 0033:0x7f7780b8eec9 [ 215.509835][ T7673] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 215.509864][ T7673] RSP: 002b:00007f77819d10e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 215.509893][ T7673] RAX: ffffffffffffffda RBX: 00007f7780de5fa8 RCX: 00007f7780b8eec9 [ 215.509912][ T7673] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f7780de5fac [ 215.509930][ T7673] RBP: 00007f7780de5fa0 R08: 00007f77819d2000 R09: 0000000000000000 [ 215.509949][ T7673] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 215.509967][ T7673] R13: 00007f7780de6038 R14: 00007fff2403ece0 R15: 00007fff2403edc8 [ 215.510007][ T7673] [ 216.613347][ T7692] binder: 7691:7692 ioctl c018620c 0 returned -1 [ 216.656777][ T7692] netlink: 28 bytes leftover after parsing attributes in process `syz.3.332'. [ 218.948275][ T7729] __vm_enough_memory: pid: 7729, comm: syz.1.338, bytes: 4398046511104 not enough memory for the allocation [ 219.786567][ T7742] netlink: 28 bytes leftover after parsing attributes in process `syz.0.340'. [ 220.105503][ T7737] FAULT_INJECTION: forcing a failure. [ 220.105503][ T7737] name failslab, interval 1, probability 0, space 0, times 0 [ 220.133244][ T7737] CPU: 1 UID: 0 PID: 7737 Comm: syz.3.339 Not tainted syzkaller #0 PREEMPT(full) [ 220.133270][ T7737] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 220.133281][ T7737] Call Trace: [ 220.133287][ T7737] [ 220.133300][ T7737] dump_stack_lvl+0x16c/0x1f0 [ 220.133334][ T7737] should_fail_ex+0x512/0x640 [ 220.133362][ T7737] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 220.133386][ T7737] should_failslab+0xc2/0x120 [ 220.133411][ T7737] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 220.133432][ T7737] ? security_file_alloc+0x34/0x2b0 [ 220.133461][ T7737] security_file_alloc+0x34/0x2b0 [ 220.133486][ T7737] init_file+0x93/0x4c0 [ 220.133513][ T7737] alloc_empty_file+0x73/0x1e0 [ 220.133540][ T7737] alloc_file_pseudo+0x13a/0x230 [ 220.133568][ T7737] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 220.133595][ T7737] ? alloc_fd+0x471/0x7d0 [ 220.133618][ T7737] sock_alloc_file+0x50/0x210 [ 220.133636][ T7737] __sys_socket+0x1c0/0x260 [ 220.133657][ T7737] ? __pfx___sys_socket+0x10/0x10 [ 220.133678][ T7737] ? xfd_validate_state+0x61/0x180 [ 220.133704][ T7737] ? __pfx_kernel_set_mempolicy+0x10/0x10 [ 220.133732][ T7737] __x64_sys_socket+0x72/0xb0 [ 220.133752][ T7737] ? lockdep_hardirqs_on+0x7c/0x110 [ 220.133778][ T7737] do_syscall_64+0xcd/0x4c0 [ 220.133807][ T7737] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 220.133825][ T7737] RIP: 0033:0x7f7780b8eec9 [ 220.133841][ T7737] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 220.133858][ T7737] RSP: 002b:00007f77819d1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 220.133876][ T7737] RAX: ffffffffffffffda RBX: 00007f7780de5fa0 RCX: 00007f7780b8eec9 [ 220.133887][ T7737] RDX: 0000000000000088 RSI: 0000000000000002 RDI: 0000000000000002 [ 220.133897][ T7737] RBP: 00007f7780c11f91 R08: 0000000000000000 R09: 0000000000000000 [ 220.133907][ T7737] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 220.133917][ T7737] R13: 00007f7780de6038 R14: 00007f7780de5fa0 R15: 00007fff2403edc8 [ 220.133939][ T7737] [ 221.550308][ T7758] netlink: 268 bytes leftover after parsing attributes in process `syz.1.342'. [ 223.370723][ T7785] FAULT_INJECTION: forcing a failure. [ 223.370723][ T7785] name failslab, interval 1, probability 0, space 0, times 0 [ 223.384364][ T7785] CPU: 0 UID: 0 PID: 7785 Comm: syz.0.348 Not tainted syzkaller #0 PREEMPT(full) [ 223.384405][ T7785] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 223.384423][ T7785] Call Trace: [ 223.384433][ T7785] [ 223.384444][ T7785] dump_stack_lvl+0x16c/0x1f0 [ 223.384500][ T7785] should_fail_ex+0x512/0x640 [ 223.384544][ T7785] ? fs_reclaim_acquire+0xae/0x150 [ 223.384592][ T7785] ? tomoyo_supervisor+0x45b/0x13b0 [ 223.384619][ T7785] should_failslab+0xc2/0x120 [ 223.384658][ T7785] __kmalloc_noprof+0xd2/0x510 [ 223.384687][ T7785] ? tomoyo_profile+0x47/0x60 [ 223.384723][ T7785] tomoyo_supervisor+0x45b/0x13b0 [ 223.384758][ T7785] ? __pfx_tomoyo_supervisor+0x10/0x10 [ 223.384783][ T7785] ? __pfx_vsnprintf+0x10/0x10 [ 223.384843][ T7785] ? tomoyo_encode2+0x329/0x3e0 [ 223.384886][ T7785] ? tomoyo_check_path_number_acl+0xa6/0x2f0 [ 223.384935][ T7785] tomoyo_path_number_perm+0x448/0x580 [ 223.384972][ T7785] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 223.385006][ T7785] ? futex_wake+0x1ad/0x530 [ 223.385092][ T7785] ? find_held_lock+0x2b/0x80 [ 223.385119][ T7785] ? hook_file_ioctl_common+0x145/0x410 [ 223.385166][ T7785] ? __fget_files+0x20e/0x3c0 [ 223.385207][ T7785] security_file_ioctl+0x9b/0x240 [ 223.385246][ T7785] __x64_sys_ioctl+0xb7/0x210 [ 223.385290][ T7785] do_syscall_64+0xcd/0x4c0 [ 223.385333][ T7785] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 223.385360][ T7785] RIP: 0033:0x7f5c6938eec9 [ 223.385383][ T7785] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 223.385409][ T7785] RSP: 002b:00007f5c6a160038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 223.385437][ T7785] RAX: ffffffffffffffda RBX: 00007f5c695e6180 RCX: 00007f5c6938eec9 [ 223.385456][ T7785] RDX: 0000000000000006 RSI: 00000000000007a0 RDI: 000000000000000a [ 223.385473][ T7785] RBP: 00007f5c69411f91 R08: 0000000000000000 R09: 0000000000000000 [ 223.385497][ T7785] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 223.385514][ T7785] R13: 00007f5c695e6218 R14: 00007f5c695e6180 R15: 00007ffe0fc79148 [ 223.385554][ T7785] [ 224.166718][ T7803] uvcvideo: [Deprecated]: nodrop parameter will be eventually removed. [ 224.731435][ T7814] binder: 7813:7814 ioctl c018620c 0 returned -1 [ 224.740678][ T7814] netlink: 28 bytes leftover after parsing attributes in process `syz.2.355'. [ 225.540511][ T7828] FAULT_INJECTION: forcing a failure. [ 225.540511][ T7828] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 225.597699][ T7828] CPU: 0 UID: 0 PID: 7828 Comm: syz.1.357 Not tainted syzkaller #0 PREEMPT(full) [ 225.597741][ T7828] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 225.597759][ T7828] Call Trace: [ 225.597769][ T7828] [ 225.597780][ T7828] dump_stack_lvl+0x16c/0x1f0 [ 225.597829][ T7828] should_fail_ex+0x512/0x640 [ 225.597879][ T7828] _copy_from_user+0x2e/0xd0 [ 225.597912][ T7828] copy_msghdr_from_user+0x98/0x160 [ 225.597957][ T7828] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 225.598007][ T7828] ? kfree+0x24f/0x4d0 [ 225.598033][ T7828] ? __pfx__kstrtoull+0x10/0x10 [ 225.598080][ T7828] ___sys_sendmsg+0xfe/0x1d0 [ 225.598125][ T7828] ? __pfx____sys_sendmsg+0x10/0x10 [ 225.598207][ T7828] ? __pfx___might_resched+0x10/0x10 [ 225.598254][ T7828] __sys_sendmmsg+0x200/0x420 [ 225.598303][ T7828] ? __pfx___sys_sendmmsg+0x10/0x10 [ 225.598359][ T7828] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 225.598422][ T7828] ? fput+0x9b/0xd0 [ 225.598464][ T7828] ? ksys_write+0x1ac/0x250 [ 225.598496][ T7828] ? __pfx_ksys_write+0x10/0x10 [ 225.598538][ T7828] __x64_sys_sendmmsg+0x9c/0x100 [ 225.598582][ T7828] ? lockdep_hardirqs_on+0x7c/0x110 [ 225.598631][ T7828] do_syscall_64+0xcd/0x4c0 [ 225.598676][ T7828] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 225.598706][ T7828] RIP: 0033:0x7f62efb8eec9 [ 225.598728][ T7828] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 225.598756][ T7828] RSP: 002b:00007f62f0adb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 225.598783][ T7828] RAX: ffffffffffffffda RBX: 00007f62efde5fa0 RCX: 00007f62efb8eec9 [ 225.598801][ T7828] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000003 [ 225.598817][ T7828] RBP: 00007f62f0adb090 R08: 0000000000000000 R09: 0000000000000000 [ 225.598833][ T7828] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000002 [ 225.598850][ T7828] R13: 00007f62efde6038 R14: 00007f62efde5fa0 R15: 00007ffeb0ac66c8 [ 225.598886][ T7828] [ 225.798712][ C0] vkms_vblank_simulate: vblank timer overrun [ 227.907744][ T7850] FAULT_INJECTION: forcing a failure. [ 227.907744][ T7850] name failslab, interval 1, probability 0, space 0, times 0 [ 227.923241][ T7850] CPU: 0 UID: 0 PID: 7850 Comm: syz.3.361 Not tainted syzkaller #0 PREEMPT(full) [ 227.923287][ T7850] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 227.923306][ T7850] Call Trace: [ 227.923315][ T7850] [ 227.923325][ T7850] dump_stack_lvl+0x16c/0x1f0 [ 227.923378][ T7850] should_fail_ex+0x512/0x640 [ 227.923433][ T7850] ? vmci_handle_arr_create+0x67/0x140 [ 227.923473][ T7850] should_failslab+0xc2/0x120 [ 227.923513][ T7850] __kmalloc_noprof+0xd2/0x510 [ 227.923546][ T7850] ? lockdep_init_map_type+0x5c/0x280 [ 227.923600][ T7850] ? lockdep_init_map_type+0x5c/0x280 [ 227.923648][ T7850] vmci_handle_arr_create+0x67/0x140 [ 227.923693][ T7850] vmci_ctx_create+0x22a/0x740 [ 227.923733][ T7850] vmci_host_unlocked_ioctl+0x1ad8/0x2040 [ 227.923783][ T7850] ? __pfx_vmci_host_unlocked_ioctl+0x10/0x10 [ 227.923832][ T7850] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 227.923881][ T7850] ? do_vfs_ioctl+0x128/0x14f0 [ 227.923932][ T7850] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 227.923992][ T7850] ? find_held_lock+0x2b/0x80 [ 227.924022][ T7850] ? hook_file_ioctl_common+0x145/0x410 [ 227.924072][ T7850] ? __fget_files+0x20e/0x3c0 [ 227.924113][ T7850] ? __pfx_vmci_host_unlocked_ioctl+0x10/0x10 [ 227.924162][ T7850] __x64_sys_ioctl+0x18e/0x210 [ 227.924221][ T7850] do_syscall_64+0xcd/0x4c0 [ 227.924272][ T7850] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 227.924304][ T7850] RIP: 0033:0x7f7780b8eec9 [ 227.924331][ T7850] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 227.924362][ T7850] RSP: 002b:00007f778198f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 227.924391][ T7850] RAX: ffffffffffffffda RBX: 00007f7780de6180 RCX: 00007f7780b8eec9 [ 227.924412][ T7850] RDX: 0000000000000006 RSI: 00000000000007a0 RDI: 000000000000000a [ 227.924430][ T7850] RBP: 00007f7780c11f91 R08: 0000000000000000 R09: 0000000000000000 [ 227.924447][ T7850] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 227.924465][ T7850] R13: 00007f7780de6218 R14: 00007f7780de6180 R15: 00007fff2403edc8 [ 227.924507][ T7850] [ 228.138851][ C0] vkms_vblank_simulate: vblank timer overrun [ 228.426469][ T7862] binder: 7861:7862 ioctl c018620c 0 returned -1 [ 228.443559][ T7862] netlink: 28 bytes leftover after parsing attributes in process `syz.0.364'. [ 229.147843][ T7868] FAULT_INJECTION: forcing a failure. [ 229.147843][ T7868] name fail_futex, interval 1, probability 0, space 0, times 0 [ 229.294205][ T7868] CPU: 0 UID: 0 PID: 7868 Comm: syz.0.365 Not tainted syzkaller #0 PREEMPT(full) [ 229.294259][ T7868] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 229.294277][ T7868] Call Trace: [ 229.294287][ T7868] [ 229.294299][ T7868] dump_stack_lvl+0x16c/0x1f0 [ 229.294351][ T7868] should_fail_ex+0x512/0x640 [ 229.294406][ T7868] get_futex_key+0x1d0/0x1560 [ 229.294450][ T7868] ? __pfx_get_futex_key+0x10/0x10 [ 229.294499][ T7868] futex_wake+0xea/0x530 [ 229.294549][ T7868] ? __pfx_futex_wake+0x10/0x10 [ 229.294599][ T7868] ? errseq_sample+0x53/0x70 [ 229.294630][ T7868] ? file_init_path+0x4fe/0x760 [ 229.294682][ T7868] do_futex+0x1e3/0x350 [ 229.294722][ T7868] ? __pfx_do_futex+0x10/0x10 [ 229.294761][ T7868] ? fd_install+0x225/0x750 [ 229.294801][ T7868] __x64_sys_futex+0x1e0/0x4c0 [ 229.294844][ T7868] ? __sys_socket+0xac/0x260 [ 229.294881][ T7868] ? __pfx___x64_sys_futex+0x10/0x10 [ 229.294921][ T7868] ? xfd_validate_state+0x61/0x180 [ 229.294964][ T7868] ? __pfx_kernel_set_mempolicy+0x10/0x10 [ 229.295018][ T7868] do_syscall_64+0xcd/0x4c0 [ 229.295068][ T7868] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 229.295100][ T7868] RIP: 0033:0x7f5c6938eec9 [ 229.295125][ T7868] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 229.295155][ T7868] RSP: 002b:00007f5c6a1a20e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 229.295184][ T7868] RAX: ffffffffffffffda RBX: 00007f5c695e5fa8 RCX: 00007f5c6938eec9 [ 229.295204][ T7868] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f5c695e5fac [ 229.295230][ T7868] RBP: 00007f5c695e5fa0 R08: 00007f5c6a1a3000 R09: 0000000000000000 [ 229.295249][ T7868] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000 [ 229.295267][ T7868] R13: 00007f5c695e6038 R14: 00007ffe0fc79060 R15: 00007ffe0fc79148 [ 229.295307][ T7868] [ 229.488615][ C0] vkms_vblank_simulate: vblank timer overrun [ 230.368284][ T7872] FAULT_INJECTION: forcing a failure. [ 230.368284][ T7872] name fail_futex, interval 1, probability 0, space 0, times 0 [ 230.381421][ T7872] CPU: 0 UID: 0 PID: 7872 Comm: syz.2.367 Not tainted syzkaller #0 PREEMPT(full) [ 230.381463][ T7872] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 230.381481][ T7872] Call Trace: [ 230.381491][ T7872] [ 230.381502][ T7872] dump_stack_lvl+0x16c/0x1f0 [ 230.381562][ T7872] should_fail_ex+0x512/0x640 [ 230.381612][ T7872] get_futex_key+0x1d0/0x1560 [ 230.381652][ T7872] ? __pfx_get_futex_key+0x10/0x10 [ 230.381701][ T7872] futex_wake+0xea/0x530 [ 230.381747][ T7872] ? __pfx_futex_wake+0x10/0x10 [ 230.381798][ T7872] ? errseq_sample+0x53/0x70 [ 230.381830][ T7872] ? file_init_path+0x4fe/0x760 [ 230.381881][ T7872] do_futex+0x1e3/0x350 [ 230.381921][ T7872] ? __pfx_do_futex+0x10/0x10 [ 230.381959][ T7872] ? fd_install+0x225/0x750 [ 230.382001][ T7872] __x64_sys_futex+0x1e0/0x4c0 [ 230.382042][ T7872] ? __sys_socket+0xac/0x260 [ 230.382080][ T7872] ? __pfx___x64_sys_futex+0x10/0x10 [ 230.382120][ T7872] ? xfd_validate_state+0x61/0x180 [ 230.382164][ T7872] ? __pfx_kernel_set_mempolicy+0x10/0x10 [ 230.382218][ T7872] do_syscall_64+0xcd/0x4c0 [ 230.382267][ T7872] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 230.382298][ T7872] RIP: 0033:0x7fe56138eec9 [ 230.382322][ T7872] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 230.382352][ T7872] RSP: 002b:00007fe5622370e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 230.382382][ T7872] RAX: ffffffffffffffda RBX: 00007fe5615e5fa8 RCX: 00007fe56138eec9 [ 230.382402][ T7872] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fe5615e5fac [ 230.382420][ T7872] RBP: 00007fe5615e5fa0 R08: 00007fe562238000 R09: 0000000000000000 [ 230.382439][ T7872] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000 [ 230.382456][ T7872] R13: 00007fe5615e6038 R14: 00007fff34323170 R15: 00007fff34323258 [ 230.382496][ T7872] [ 230.576850][ C0] vkms_vblank_simulate: vblank timer overrun [ 232.184990][ T7919] FAULT_INJECTION: forcing a failure. [ 232.184990][ T7919] name failslab, interval 1, probability 0, space 0, times 0 [ 232.203164][ T7919] CPU: 0 UID: 0 PID: 7919 Comm: syz.1.375 Not tainted syzkaller #0 PREEMPT(full) [ 232.203216][ T7919] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 232.203235][ T7919] Call Trace: [ 232.203245][ T7919] [ 232.203257][ T7919] dump_stack_lvl+0x16c/0x1f0 [ 232.203304][ T7919] should_fail_ex+0x512/0x640 [ 232.203345][ T7919] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 232.203380][ T7919] should_failslab+0xc2/0x120 [ 232.203417][ T7919] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 232.203452][ T7919] ? security_file_alloc+0x34/0x2b0 [ 232.203496][ T7919] security_file_alloc+0x34/0x2b0 [ 232.203535][ T7919] init_file+0x93/0x4c0 [ 232.203575][ T7919] alloc_empty_file+0x73/0x1e0 [ 232.203619][ T7919] alloc_file_pseudo+0x13a/0x230 [ 232.203667][ T7919] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 232.203712][ T7919] ? alloc_fd+0x471/0x7d0 [ 232.203751][ T7919] sock_alloc_file+0x50/0x210 [ 232.203781][ T7919] __sys_socket+0x1c0/0x260 [ 232.203816][ T7919] ? __pfx___sys_socket+0x10/0x10 [ 232.203853][ T7919] ? xfd_validate_state+0x61/0x180 [ 232.203898][ T7919] ? __pfx_kernel_set_mempolicy+0x10/0x10 [ 232.203947][ T7919] __x64_sys_socket+0x72/0xb0 [ 232.203982][ T7919] ? lockdep_hardirqs_on+0x7c/0x110 [ 232.204027][ T7919] do_syscall_64+0xcd/0x4c0 [ 232.204075][ T7919] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 232.204106][ T7919] RIP: 0033:0x7f62efb8eec9 [ 232.204130][ T7919] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 232.204160][ T7919] RSP: 002b:00007f62f0adb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 232.204202][ T7919] RAX: ffffffffffffffda RBX: 00007f62efde5fa0 RCX: 00007f62efb8eec9 [ 232.204223][ T7919] RDX: 0000000000000088 RSI: 0000000000000002 RDI: 0000000000000002 [ 232.204241][ T7919] RBP: 00007f62efc11f91 R08: 0000000000000000 R09: 0000000000000000 [ 232.204258][ T7919] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 232.204276][ T7919] R13: 00007f62efde6038 R14: 00007f62efde5fa0 R15: 00007ffeb0ac66c8 [ 232.204314][ T7919] [ 232.414101][ C0] vkms_vblank_simulate: vblank timer overrun [ 233.367446][ T7934] FAULT_INJECTION: forcing a failure. [ 233.367446][ T7934] name failslab, interval 1, probability 0, space 0, times 0 [ 233.447010][ T7934] CPU: 1 UID: 0 PID: 7934 Comm: syz.1.377 Not tainted syzkaller #0 PREEMPT(full) [ 233.447038][ T7934] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 233.447050][ T7934] Call Trace: [ 233.447057][ T7934] [ 233.447064][ T7934] dump_stack_lvl+0x16c/0x1f0 [ 233.447099][ T7934] should_fail_ex+0x512/0x640 [ 233.447128][ T7934] ? fs_reclaim_acquire+0xae/0x150 [ 233.447161][ T7934] should_failslab+0xc2/0x120 [ 233.447196][ T7934] __kmalloc_cache_noprof+0x6a/0x3e0 [ 233.447227][ T7934] ? tomoyo_init_log+0x197/0x2140 [ 233.447266][ T7934] tomoyo_init_log+0x197/0x2140 [ 233.447298][ T7934] ? kasan_save_stack+0x33/0x60 [ 233.447320][ T7934] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 233.447355][ T7934] ? __pfx_tomoyo_init_log+0x10/0x10 [ 233.447379][ T7934] ? tomoyo_profile+0x47/0x60 [ 233.447395][ T7934] ? tomoyo_domain_quota_is_ok+0x2f6/0x5a0 [ 233.447419][ T7934] tomoyo_supervisor+0x302/0x13b0 [ 233.447440][ T7934] ? __pfx_tomoyo_supervisor+0x10/0x10 [ 233.447456][ T7934] ? __pfx_vsnprintf+0x10/0x10 [ 233.447498][ T7934] ? tomoyo_encode2+0x329/0x3e0 [ 233.447526][ T7934] ? tomoyo_check_path_number_acl+0xa6/0x2f0 [ 233.447555][ T7934] tomoyo_path_number_perm+0x448/0x580 [ 233.447580][ T7934] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 233.447625][ T7934] ? find_held_lock+0x2b/0x80 [ 233.447643][ T7934] ? hook_file_ioctl_common+0x145/0x410 [ 233.447672][ T7934] ? __fget_files+0x20e/0x3c0 [ 233.447696][ T7934] security_file_ioctl+0x9b/0x240 [ 233.447721][ T7934] __x64_sys_ioctl+0xb7/0x210 [ 233.447751][ T7934] do_syscall_64+0xcd/0x4c0 [ 233.447780][ T7934] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 233.447798][ T7934] RIP: 0033:0x7f62efb8eec9 [ 233.447813][ T7934] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 233.447832][ T7934] RSP: 002b:00007f62f0a99038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 233.447849][ T7934] RAX: ffffffffffffffda RBX: 00007f62efde6180 RCX: 00007f62efb8eec9 [ 233.447860][ T7934] RDX: 0000000000000006 RSI: 00000000000007a0 RDI: 000000000000000a [ 233.447871][ T7934] RBP: 00007f62efc11f91 R08: 0000000000000000 R09: 0000000000000000 [ 233.447881][ T7934] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 233.447891][ T7934] R13: 00007f62efde6218 R14: 00007f62efde6180 R15: 00007ffeb0ac66c8 [ 233.447913][ T7934] [ 234.220886][ T7943] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 234.408478][ T7944] netlink: set zone limit has 8 unknown bytes [ 235.127426][ T7966] ima: policy update failed [ 235.158113][ T30] audit: type=1802 audit(4294967410.850:2): pid=7966 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.382" res=0 errno=0 [ 235.817657][ T7973] sp0: Synchronizing with TNC [ 236.666980][ T7980] random: crng reseeded on system resumption [ 237.507980][ T7994] FAULT_INJECTION: forcing a failure. [ 237.507980][ T7994] name fail_futex, interval 1, probability 0, space 0, times 0 [ 237.543008][ T7994] CPU: 0 UID: 0 PID: 7994 Comm: syz.2.386 Not tainted syzkaller #0 PREEMPT(full) [ 237.543054][ T7994] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 237.543073][ T7994] Call Trace: [ 237.543084][ T7994] [ 237.543096][ T7994] dump_stack_lvl+0x16c/0x1f0 [ 237.543148][ T7994] should_fail_ex+0x512/0x640 [ 237.543202][ T7994] get_futex_key+0x1d0/0x1560 [ 237.543245][ T7994] ? __pfx_get_futex_key+0x10/0x10 [ 237.543296][ T7994] futex_wake+0xea/0x530 [ 237.543348][ T7994] ? __pfx_futex_wake+0x10/0x10 [ 237.543408][ T7994] ? errseq_sample+0x53/0x70 [ 237.543441][ T7994] ? file_init_path+0x4fe/0x760 [ 237.543494][ T7994] do_futex+0x1e3/0x350 [ 237.543535][ T7994] ? __pfx_do_futex+0x10/0x10 [ 237.543576][ T7994] ? fd_install+0x225/0x750 [ 237.543616][ T7994] __x64_sys_futex+0x1e0/0x4c0 [ 237.543658][ T7994] ? __sys_socket+0xac/0x260 [ 237.543697][ T7994] ? __pfx___x64_sys_futex+0x10/0x10 [ 237.543738][ T7994] ? xfd_validate_state+0x61/0x180 [ 237.543782][ T7994] ? __pfx_kernel_set_mempolicy+0x10/0x10 [ 237.543836][ T7994] do_syscall_64+0xcd/0x4c0 [ 237.543888][ T7994] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 237.543919][ T7994] RIP: 0033:0x7fe56138eec9 [ 237.543945][ T7994] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 237.543975][ T7994] RSP: 002b:00007fe5622370e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 237.544007][ T7994] RAX: ffffffffffffffda RBX: 00007fe5615e5fa8 RCX: 00007fe56138eec9 [ 237.544028][ T7994] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fe5615e5fac [ 237.544047][ T7994] RBP: 00007fe5615e5fa0 R08: 00007fe562238000 R09: 0000000000000000 [ 237.544066][ T7994] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000 [ 237.544084][ T7994] R13: 00007fe5615e6038 R14: 00007fff34323170 R15: 00007fff34323258 [ 237.544124][ T7994] [ 237.736664][ C0] vkms_vblank_simulate: vblank timer overrun [ 237.887429][ T7998] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable [ 238.461611][ T8008] FAULT_INJECTION: forcing a failure. [ 238.461611][ T8008] name failslab, interval 1, probability 0, space 0, times 0 [ 238.474680][ T8008] CPU: 1 UID: 0 PID: 8008 Comm: syz.2.390 Not tainted syzkaller #0 PREEMPT(full) [ 238.474722][ T8008] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 238.474738][ T8008] Call Trace: [ 238.474749][ T8008] [ 238.474761][ T8008] dump_stack_lvl+0x16c/0x1f0 [ 238.474814][ T8008] should_fail_ex+0x512/0x640 [ 238.474860][ T8008] ? fs_reclaim_acquire+0xae/0x150 [ 238.474910][ T8008] ? tomoyo_supervisor+0x45b/0x13b0 [ 238.474939][ T8008] should_failslab+0xc2/0x120 [ 238.474982][ T8008] __kmalloc_noprof+0xd2/0x510 [ 238.475016][ T8008] ? tomoyo_profile+0x47/0x60 [ 238.475055][ T8008] tomoyo_supervisor+0x45b/0x13b0 [ 238.475093][ T8008] ? __pfx_tomoyo_supervisor+0x10/0x10 [ 238.475133][ T8008] ? __pfx_vsnprintf+0x10/0x10 [ 238.475208][ T8008] ? tomoyo_encode2+0x329/0x3e0 [ 238.475260][ T8008] ? tomoyo_check_path_number_acl+0xa6/0x2f0 [ 238.475314][ T8008] tomoyo_path_number_perm+0x448/0x580 [ 238.475358][ T8008] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 238.475394][ T8008] ? futex_wake+0x1ad/0x530 [ 238.475480][ T8008] ? find_held_lock+0x2b/0x80 [ 238.475512][ T8008] ? hook_file_ioctl_common+0x145/0x410 [ 238.475563][ T8008] ? __fget_files+0x20e/0x3c0 [ 238.475605][ T8008] security_file_ioctl+0x9b/0x240 [ 238.475648][ T8008] __x64_sys_ioctl+0xb7/0x210 [ 238.475700][ T8008] do_syscall_64+0xcd/0x4c0 [ 238.475751][ T8008] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 238.475782][ T8008] RIP: 0033:0x7fe56138eec9 [ 238.475808][ T8008] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 238.475837][ T8008] RSP: 002b:00007fe5621f5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 238.475866][ T8008] RAX: ffffffffffffffda RBX: 00007fe5615e6180 RCX: 00007fe56138eec9 [ 238.475886][ T8008] RDX: 0000000000000006 RSI: 00000000000007a0 RDI: 000000000000000a [ 238.475904][ T8008] RBP: 00007fe561411f91 R08: 0000000000000000 R09: 0000000000000000 [ 238.475923][ T8008] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 238.475941][ T8008] R13: 00007fe5615e6218 R14: 00007fe5615e6180 R15: 00007fff34323258 [ 238.475983][ T8008] [ 238.838024][ T8012] FAULT_INJECTION: forcing a failure. [ 238.838024][ T8012] name failslab, interval 1, probability 0, space 0, times 0 [ 238.854606][ T8012] CPU: 1 UID: 0 PID: 8012 Comm: syz.3.391 Not tainted syzkaller #0 PREEMPT(full) [ 238.854652][ T8012] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 238.854671][ T8012] Call Trace: [ 238.854680][ T8012] [ 238.854692][ T8012] dump_stack_lvl+0x16c/0x1f0 [ 238.854744][ T8012] should_fail_ex+0x512/0x640 [ 238.854790][ T8012] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 238.854830][ T8012] should_failslab+0xc2/0x120 [ 238.854871][ T8012] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 238.854907][ T8012] ? security_file_alloc+0x34/0x2b0 [ 238.854954][ T8012] security_file_alloc+0x34/0x2b0 [ 238.854995][ T8012] init_file+0x93/0x4c0 [ 238.855037][ T8012] alloc_empty_file+0x73/0x1e0 [ 238.855095][ T8012] alloc_file_pseudo+0x13a/0x230 [ 238.855145][ T8012] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 238.855191][ T8012] ? alloc_fd+0x471/0x7d0 [ 238.855232][ T8012] sock_alloc_file+0x50/0x210 [ 238.855262][ T8012] __sys_socket+0x1c0/0x260 [ 238.855300][ T8012] ? __pfx___sys_socket+0x10/0x10 [ 238.855335][ T8012] ? xfd_validate_state+0x61/0x180 [ 238.855376][ T8012] ? __pfx_kernel_set_mempolicy+0x10/0x10 [ 238.855427][ T8012] __x64_sys_socket+0x72/0xb0 [ 238.855461][ T8012] ? lockdep_hardirqs_on+0x7c/0x110 [ 238.855508][ T8012] do_syscall_64+0xcd/0x4c0 [ 238.855558][ T8012] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 238.855588][ T8012] RIP: 0033:0x7f7780b8eec9 [ 238.855613][ T8012] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 238.855643][ T8012] RSP: 002b:00007f77819d1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 238.855673][ T8012] RAX: ffffffffffffffda RBX: 00007f7780de5fa0 RCX: 00007f7780b8eec9 [ 238.855693][ T8012] RDX: 0000000000000088 RSI: 0000000000000002 RDI: 0000000000000002 [ 238.855710][ T8012] RBP: 00007f7780c11f91 R08: 0000000000000000 R09: 0000000000000000 [ 238.855729][ T8012] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 238.855747][ T8012] R13: 00007f7780de6038 R14: 00007f7780de5fa0 R15: 00007fff2403edc8 [ 238.855788][ T8012] [ 241.382526][ T8024] netlink: 268 bytes leftover after parsing attributes in process `syz.0.393'. [ 241.836879][ T8046] FAULT_INJECTION: forcing a failure. [ 241.836879][ T8046] name failslab, interval 1, probability 0, space 0, times 0 [ 241.869929][ T8046] CPU: 0 UID: 0 PID: 8046 Comm: syz.2.399 Not tainted syzkaller #0 PREEMPT(full) [ 241.869976][ T8046] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 241.869995][ T8046] Call Trace: [ 241.870006][ T8046] [ 241.870019][ T8046] dump_stack_lvl+0x16c/0x1f0 [ 241.870073][ T8046] should_fail_ex+0x512/0x640 [ 241.870117][ T8046] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 241.870160][ T8046] should_failslab+0xc2/0x120 [ 241.870201][ T8046] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 241.870241][ T8046] ? __kernfs_new_node+0xd2/0x8e0 [ 241.870288][ T8046] __kernfs_new_node+0xd2/0x8e0 [ 241.870343][ T8046] ? __pfx___kernfs_new_node+0x10/0x10 [ 241.870396][ T8046] ? find_held_lock+0x2b/0x80 [ 241.870431][ T8046] ? kernfs_root+0xee/0x2a0 [ 241.870482][ T8046] kernfs_new_node+0x13c/0x1e0 [ 241.870537][ T8046] __kernfs_create_file+0x53/0x350 [ 241.870576][ T8046] sysfs_add_file_mode_ns+0x207/0x3c0 [ 241.870628][ T8046] internal_create_group+0x578/0xf30 [ 241.870684][ T8046] ? __pfx_internal_create_group+0x10/0x10 [ 241.870735][ T8046] ? kernfs_create_link+0x1bd/0x240 [ 241.870775][ T8046] internal_create_groups+0x9d/0x150 [ 241.870822][ T8046] device_add+0xf30/0x1aa0 [ 241.870862][ T8046] ? __pfx_device_add+0x10/0x10 [ 241.870895][ T8046] ? lockdep_init_map_type+0x5c/0x280 [ 241.870955][ T8046] ? __init_waitqueue_head+0xca/0x150 [ 241.871014][ T8046] netdev_register_kobject+0x1a9/0x3d0 [ 241.871056][ T8046] register_netdevice+0x13dc/0x2270 [ 241.871094][ T8046] ? __pfx_register_netdevice+0x10/0x10 [ 241.871138][ T8046] __ip_tunnel_create+0x540/0x6e0 [ 241.871171][ T8046] ? __pfx___ip_tunnel_create+0x10/0x10 [ 241.871215][ T8046] ip_tunnel_init_net+0x22f/0x7d0 [ 241.871252][ T8046] ? __pfx_ip_tunnel_init_net+0x10/0x10 [ 241.871293][ T8046] ? trace_kmalloc+0x2b/0xd0 [ 241.871343][ T8046] ? __kmalloc_noprof+0x242/0x510 [ 241.871377][ T8046] ? lockdep_init_map_type+0x5c/0x280 [ 241.871425][ T8046] ? __pfx_ipgre_init_net+0x10/0x10 [ 241.871469][ T8046] ops_init+0x1e2/0x5f0 [ 241.871522][ T8046] setup_net+0x10f/0x380 [ 241.871547][ T8046] ? lockdep_init_map_type+0x5c/0x280 [ 241.871591][ T8046] ? __pfx_setup_net+0x10/0x10 [ 241.871621][ T8046] ? debug_mutex_init+0x37/0x70 [ 241.871658][ T8046] copy_net_ns+0x2a6/0x5f0 [ 241.871695][ T8046] create_new_namespaces+0x3ea/0xa90 [ 241.871742][ T8046] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 241.871782][ T8046] ksys_unshare+0x45b/0xa40 [ 241.871825][ T8046] ? __pfx_ksys_unshare+0x10/0x10 [ 241.871869][ T8046] ? xfd_validate_state+0x61/0x180 [ 241.871928][ T8046] __x64_sys_unshare+0x31/0x40 [ 241.871970][ T8046] do_syscall_64+0xcd/0x4c0 [ 241.872020][ T8046] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 241.872047][ T8046] RIP: 0033:0x7fe56138eec9 [ 241.872072][ T8046] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 241.872098][ T8046] RSP: 002b:00007fe562237038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 241.872125][ T8046] RAX: ffffffffffffffda RBX: 00007fe5615e5fa0 RCX: 00007fe56138eec9 [ 241.872141][ T8046] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 241.872151][ T8046] RBP: 00007fe561411f91 R08: 0000000000000000 R09: 0000000000000000 [ 241.872162][ T8046] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 241.872172][ T8046] R13: 00007fe5615e6038 R14: 00007fe5615e5fa0 R15: 00007fff34323258 [ 241.872195][ T8046] [ 242.435190][ T8052] netlink: 28 bytes leftover after parsing attributes in process `syz.1.401'. [ 244.155783][ T8080] FAULT_INJECTION: forcing a failure. [ 244.155783][ T8080] name failslab, interval 1, probability 0, space 0, times 0 [ 244.232457][ T8080] CPU: 1 UID: 0 PID: 8080 Comm: syz.1.405 Not tainted syzkaller #0 PREEMPT(full) [ 244.232503][ T8080] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 244.232527][ T8080] Call Trace: [ 244.232538][ T8080] [ 244.232550][ T8080] dump_stack_lvl+0x16c/0x1f0 [ 244.232604][ T8080] should_fail_ex+0x512/0x640 [ 244.232652][ T8080] ? fs_reclaim_acquire+0xae/0x150 [ 244.232704][ T8080] should_failslab+0xc2/0x120 [ 244.232746][ T8080] __kmalloc_cache_noprof+0x6a/0x3e0 [ 244.232782][ T8080] ? tomoyo_init_log+0x197/0x2140 [ 244.232834][ T8080] tomoyo_init_log+0x197/0x2140 [ 244.232874][ T8080] ? kasan_save_stack+0x33/0x60 [ 244.232912][ T8080] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 244.232976][ T8080] ? __pfx_tomoyo_init_log+0x10/0x10 [ 244.233019][ T8080] ? tomoyo_profile+0x47/0x60 [ 244.233046][ T8080] ? tomoyo_domain_quota_is_ok+0x2f6/0x5a0 [ 244.233100][ T8080] tomoyo_supervisor+0x302/0x13b0 [ 244.233140][ T8080] ? __pfx_tomoyo_supervisor+0x10/0x10 [ 244.233167][ T8080] ? __pfx_vsnprintf+0x10/0x10 [ 244.233230][ T8080] ? tomoyo_encode2+0x329/0x3e0 [ 244.233279][ T8080] ? tomoyo_check_path_number_acl+0xa6/0x2f0 [ 244.233333][ T8080] tomoyo_path_number_perm+0x448/0x580 [ 244.233378][ T8080] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 244.233470][ T8080] ? find_held_lock+0x2b/0x80 [ 244.233502][ T8080] ? hook_file_ioctl_common+0x145/0x410 [ 244.233554][ T8080] ? __fget_files+0x20e/0x3c0 [ 244.233599][ T8080] security_file_ioctl+0x9b/0x240 [ 244.233643][ T8080] __x64_sys_ioctl+0xb7/0x210 [ 244.233696][ T8080] do_syscall_64+0xcd/0x4c0 [ 244.233749][ T8080] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 244.233780][ T8080] RIP: 0033:0x7f62efb8eec9 [ 244.233804][ T8080] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 244.233834][ T8080] RSP: 002b:00007f62f0a78038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 244.233865][ T8080] RAX: ffffffffffffffda RBX: 00007f62efde6270 RCX: 00007f62efb8eec9 [ 244.233885][ T8080] RDX: 0000000000000006 RSI: 00000000000007a0 RDI: 000000000000000a [ 244.233903][ T8080] RBP: 00007f62efc11f91 R08: 0000000000000000 R09: 0000000000000000 [ 244.233922][ T8080] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 244.233940][ T8080] R13: 00007f62efde6308 R14: 00007f62efde6270 R15: 00007ffeb0ac66c8 [ 244.233982][ T8080] [ 244.475124][ C1] vkms_vblank_simulate: vblank timer overrun [ 244.653126][ T8089] netlink: 'syz.2.408': attribute type 16 has an invalid length. [ 244.662185][ T8089] netlink: 'syz.2.408': attribute type 17 has an invalid length. [ 244.670260][ T8089] netlink: 'syz.2.408': attribute type 19 has an invalid length. [ 244.708877][ T8089] netlink: 102 bytes leftover after parsing attributes in process `syz.2.408'. [ 245.022635][ T8093] FAULT_INJECTION: forcing a failure. [ 245.022635][ T8093] name failslab, interval 1, probability 0, space 0, times 0 [ 245.037100][ T8093] CPU: 1 UID: 0 PID: 8093 Comm: syz.3.409 Not tainted syzkaller #0 PREEMPT(full) [ 245.037144][ T8093] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 245.037161][ T8093] Call Trace: [ 245.037172][ T8093] [ 245.037184][ T8093] dump_stack_lvl+0x16c/0x1f0 [ 245.037238][ T8093] should_fail_ex+0x512/0x640 [ 245.037285][ T8093] ? __kmalloc_noprof+0xbf/0x510 [ 245.037325][ T8093] ? lsm_blob_alloc+0x68/0x90 [ 245.037349][ T8093] should_failslab+0xc2/0x120 [ 245.037390][ T8093] __kmalloc_noprof+0xd2/0x510 [ 245.037436][ T8093] lsm_blob_alloc+0x68/0x90 [ 245.037464][ T8093] security_prepare_creds+0x30/0x270 [ 245.037510][ T8093] prepare_creds+0x56f/0x7d0 [ 245.037552][ T8093] __sys_setfsuid+0xda/0x350 [ 245.037584][ T8093] ? rcu_is_watching+0x12/0xc0 [ 245.037617][ T8093] do_syscall_64+0xcd/0x4c0 [ 245.037655][ T8093] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 245.037682][ T8093] RIP: 0033:0x7f7780b8eec9 [ 245.037707][ T8093] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 245.037736][ T8093] RSP: 002b:00007f77819d1038 EFLAGS: 00000246 ORIG_RAX: 000000000000007a [ 245.037765][ T8093] RAX: ffffffffffffffda RBX: 00007f7780de5fa0 RCX: 00007f7780b8eec9 [ 245.037785][ T8093] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 245.037802][ T8093] RBP: 00007f7780c11f91 R08: 0000000000000000 R09: 0000000000000000 [ 245.037820][ T8093] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 245.037838][ T8093] R13: 00007f7780de6038 R14: 00007f7780de5fa0 R15: 00007fff2403edc8 [ 245.037877][ T8093] [ 245.993099][ T8113] FAULT_INJECTION: forcing a failure. [ 245.993099][ T8113] name failslab, interval 1, probability 0, space 0, times 0 [ 246.031540][ T8113] CPU: 1 UID: 0 PID: 8113 Comm: syz.1.413 Not tainted syzkaller #0 PREEMPT(full) [ 246.031585][ T8113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 246.031604][ T8113] Call Trace: [ 246.031614][ T8113] [ 246.031626][ T8113] dump_stack_lvl+0x16c/0x1f0 [ 246.031679][ T8113] should_fail_ex+0x512/0x640 [ 246.031724][ T8113] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 246.031762][ T8113] should_failslab+0xc2/0x120 [ 246.031804][ T8113] __kmalloc_cache_noprof+0x6a/0x3e0 [ 246.031837][ T8113] ? kobject_uevent_env+0x265/0x1870 [ 246.031878][ T8113] kobject_uevent_env+0x265/0x1870 [ 246.031912][ T8113] ? __pfx_dev_uevent_name+0x10/0x10 [ 246.031962][ T8113] ? bus_to_subsys+0x131/0x160 [ 246.032005][ T8113] device_add+0x10dd/0x1aa0 [ 246.032042][ T8113] ? __pfx_device_add+0x10/0x10 [ 246.032075][ T8113] ? lockdep_init_map_type+0x5c/0x280 [ 246.032119][ T8113] ? __init_waitqueue_head+0xca/0x150 [ 246.032177][ T8113] netdev_register_kobject+0x1a9/0x3d0 [ 246.032218][ T8113] register_netdevice+0x13dc/0x2270 [ 246.032258][ T8113] ? __pfx_register_netdevice+0x10/0x10 [ 246.032301][ T8113] __ip_tunnel_create+0x540/0x6e0 [ 246.032334][ T8113] ? __pfx___ip_tunnel_create+0x10/0x10 [ 246.032386][ T8113] ip_tunnel_init_net+0x22f/0x7d0 [ 246.032423][ T8113] ? __pfx_ip_tunnel_init_net+0x10/0x10 [ 246.032463][ T8113] ? trace_kmalloc+0x2b/0xd0 [ 246.032504][ T8113] ? __kmalloc_noprof+0x242/0x510 [ 246.032539][ T8113] ? lockdep_init_map_type+0x5c/0x280 [ 246.032592][ T8113] ? __pfx_ipgre_init_net+0x10/0x10 [ 246.032636][ T8113] ops_init+0x1e2/0x5f0 [ 246.032689][ T8113] setup_net+0x10f/0x380 [ 246.032713][ T8113] ? lockdep_init_map_type+0x5c/0x280 [ 246.032756][ T8113] ? __pfx_setup_net+0x10/0x10 [ 246.032786][ T8113] ? debug_mutex_init+0x37/0x70 [ 246.032824][ T8113] copy_net_ns+0x2a6/0x5f0 [ 246.032861][ T8113] create_new_namespaces+0x3ea/0xa90 [ 246.032906][ T8113] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 246.032946][ T8113] ksys_unshare+0x45b/0xa40 [ 246.032991][ T8113] ? __pfx_ksys_unshare+0x10/0x10 [ 246.033036][ T8113] ? xfd_validate_state+0x61/0x180 [ 246.033094][ T8113] __x64_sys_unshare+0x31/0x40 [ 246.033133][ T8113] do_syscall_64+0xcd/0x4c0 [ 246.033185][ T8113] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 246.033216][ T8113] RIP: 0033:0x7f62efb8eec9 [ 246.033241][ T8113] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 246.033272][ T8113] RSP: 002b:00007f62f0adb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 246.033301][ T8113] RAX: ffffffffffffffda RBX: 00007f62efde5fa0 RCX: 00007f62efb8eec9 [ 246.033322][ T8113] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 246.033340][ T8113] RBP: 00007f62efc11f91 R08: 0000000000000000 R09: 0000000000000000 [ 246.033359][ T8113] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 246.033384][ T8113] R13: 00007f62efde6038 R14: 00007f62efde5fa0 R15: 00007ffeb0ac66c8 [ 246.033426][ T8113] [ 247.458810][ T8146] netlink: 206 bytes leftover after parsing attributes in process `syz.0.420'. [ 248.222465][ T8152] FAULT_INJECTION: forcing a failure. [ 248.222465][ T8152] name failslab, interval 1, probability 0, space 0, times 0 [ 248.242188][ T8152] CPU: 1 UID: 0 PID: 8152 Comm: syz.0.421 Not tainted syzkaller #0 PREEMPT(full) [ 248.242228][ T8152] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 248.242245][ T8152] Call Trace: [ 248.242255][ T8152] [ 248.242267][ T8152] dump_stack_lvl+0x16c/0x1f0 [ 248.242330][ T8152] should_fail_ex+0x512/0x640 [ 248.242377][ T8152] ? fs_reclaim_acquire+0xae/0x150 [ 248.242427][ T8152] ? tomoyo_init_log+0x1385/0x2140 [ 248.242469][ T8152] should_failslab+0xc2/0x120 [ 248.242511][ T8152] __kmalloc_noprof+0xd2/0x510 [ 248.242546][ T8152] ? __pfx_from_kuid+0x10/0x10 [ 248.242602][ T8152] tomoyo_init_log+0x1385/0x2140 [ 248.242670][ T8152] ? __pfx_tomoyo_init_log+0x10/0x10 [ 248.242714][ T8152] ? tomoyo_profile+0x47/0x60 [ 248.242743][ T8152] ? tomoyo_domain_quota_is_ok+0x2f6/0x5a0 [ 248.242778][ T8152] tomoyo_supervisor+0x302/0x13b0 [ 248.242814][ T8152] ? __pfx_tomoyo_supervisor+0x10/0x10 [ 248.242839][ T8152] ? __pfx_vsnprintf+0x10/0x10 [ 248.242896][ T8152] ? tomoyo_encode2+0x329/0x3e0 [ 248.242939][ T8152] ? tomoyo_check_path_number_acl+0xa6/0x2f0 [ 248.242985][ T8152] tomoyo_path_number_perm+0x448/0x580 [ 248.243025][ T8152] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 248.243092][ T8152] ? find_held_lock+0x2b/0x80 [ 248.243120][ T8152] ? hook_file_ioctl_common+0x145/0x410 [ 248.243171][ T8152] ? __fget_files+0x20e/0x3c0 [ 248.243210][ T8152] security_file_ioctl+0x9b/0x240 [ 248.243249][ T8152] __x64_sys_ioctl+0xb7/0x210 [ 248.243315][ T8152] do_syscall_64+0xcd/0x4c0 [ 248.243365][ T8152] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 248.243394][ T8152] RIP: 0033:0x7f5c6938eec9 [ 248.243417][ T8152] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 248.243446][ T8152] RSP: 002b:00007f5c6a160038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 248.243475][ T8152] RAX: ffffffffffffffda RBX: 00007f5c695e6180 RCX: 00007f5c6938eec9 [ 248.243494][ T8152] RDX: 0000000000000006 RSI: 00000000000007a0 RDI: 000000000000000a [ 248.243512][ T8152] RBP: 00007f5c69411f91 R08: 0000000000000000 R09: 0000000000000000 [ 248.243530][ T8152] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 248.243549][ T8152] R13: 00007f5c695e6218 R14: 00007f5c695e6180 R15: 00007ffe0fc79148 [ 248.243588][ T8152] [ 249.750719][ T8177] FAULT_INJECTION: forcing a failure. [ 249.750719][ T8177] name failslab, interval 1, probability 0, space 0, times 0 [ 249.780173][ T8177] CPU: 1 UID: 0 PID: 8177 Comm: syz.1.426 Not tainted syzkaller #0 PREEMPT(full) [ 249.780218][ T8177] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 249.780237][ T8177] Call Trace: [ 249.780254][ T8177] [ 249.780266][ T8177] dump_stack_lvl+0x16c/0x1f0 [ 249.780320][ T8177] should_fail_ex+0x512/0x640 [ 249.780367][ T8177] ? fs_reclaim_acquire+0xae/0x150 [ 249.780418][ T8177] should_failslab+0xc2/0x120 [ 249.780458][ T8177] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 249.780489][ T8177] ? security_inode_alloc+0x3b/0x2b0 [ 249.780513][ T8177] security_inode_alloc+0x3b/0x2b0 [ 249.780535][ T8177] inode_init_always_gfp+0xce4/0x1030 [ 249.780559][ T8177] alloc_inode+0x86/0x240 [ 249.780585][ T8177] new_inode+0x22/0x1c0 [ 249.780609][ T8177] ? trace_cap_capable+0x18d/0x200 [ 249.780629][ T8177] shmem_get_inode+0x19a/0xfb0 [ 249.780658][ T8177] ? __vm_enough_memory+0x184/0x3f0 [ 249.780686][ T8177] __shmem_file_setup+0x279/0x330 [ 249.780706][ T8177] shmem_zero_setup+0x93/0x1a0 [ 249.780730][ T8177] __mmap_region+0x2081/0x27b0 [ 249.780752][ T8177] ? finish_task_switch.isra.0+0x21c/0xc10 [ 249.780773][ T8177] ? __pfx___mmap_region+0x10/0x10 [ 249.780793][ T8177] ? rcu_is_watching+0x12/0xc0 [ 249.780816][ T8177] ? rcu_is_watching+0x12/0xc0 [ 249.780834][ T8177] ? trace_sched_exit_tp+0xd1/0x120 [ 249.780861][ T8177] ? __schedule+0x11a3/0x5de0 [ 249.780884][ T8177] ? __lock_acquire+0x62e/0x1ce0 [ 249.780919][ T8177] ? __pfx___schedule+0x10/0x10 [ 249.780968][ T8177] ? trace_cap_capable+0x18d/0x200 [ 249.780994][ T8177] mmap_region+0x1ab/0x3f0 [ 249.781018][ T8177] ? __get_unmapped_area+0x267/0x440 [ 249.781046][ T8177] do_mmap+0xa3e/0x1210 [ 249.781076][ T8177] ? __pfx_do_mmap+0x10/0x10 [ 249.781101][ T8177] ? __pfx_down_write_killable+0x10/0x10 [ 249.781124][ T8177] vm_mmap_pgoff+0x29e/0x470 [ 249.781153][ T8177] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 249.781179][ T8177] ? __pfx_sched_core_share_pid+0x10/0x10 [ 249.781202][ T8177] ? __x64_sys_futex+0x1e0/0x4c0 [ 249.781224][ T8177] ? __x64_sys_futex+0x1e9/0x4c0 [ 249.781256][ T8177] ksys_mmap_pgoff+0x7d/0x5c0 [ 249.781281][ T8177] ? xfd_validate_state+0x61/0x180 [ 249.781306][ T8177] ? __pfx___do_sys_prctl+0x10/0x10 [ 249.781338][ T8177] __x64_sys_mmap+0x125/0x190 [ 249.781368][ T8177] do_syscall_64+0xcd/0x4c0 [ 249.781397][ T8177] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 249.781416][ T8177] RIP: 0033:0x7f62efb8eec9 [ 249.781432][ T8177] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 249.781450][ T8177] RSP: 002b:00007f62f0adb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 249.781468][ T8177] RAX: ffffffffffffffda RBX: 00007f62efde5fa0 RCX: 00007f62efb8eec9 [ 249.781480][ T8177] RDX: 00000000000000da RSI: 0000000004020009 RDI: 0000000000000000 [ 249.781490][ T8177] RBP: 00007f62efc11f91 R08: 0000000000000401 R09: 0000000000008000 [ 249.781501][ T8177] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 249.781511][ T8177] R13: 00007f62efde6038 R14: 00007f62efde5fa0 R15: 00007ffeb0ac66c8 [ 249.781533][ T8177] [ 253.055208][ T8235] Console: switching to colour frame buffer device 128x48 [ 253.190669][ T8242] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input8 [ 253.430411][ T8213] netlink: 4 bytes leftover after parsing attributes in process `syz.2.434'. [ 253.621016][ T8254] netlink: 28 bytes leftover after parsing attributes in process `syz.3.440'. [ 254.088023][ T8248] hub 8-0:1.0: USB hub found [ 254.106840][ T8248] hub 8-0:1.0: 1 port detected [ 255.000805][ T8289] FAULT_INJECTION: forcing a failure. [ 255.000805][ T8289] name failslab, interval 1, probability 0, space 0, times 0 [ 255.038448][ T8289] CPU: 1 UID: 0 PID: 8289 Comm: syz.0.449 Not tainted syzkaller #0 PREEMPT(full) [ 255.038494][ T8289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 255.038512][ T8289] Call Trace: [ 255.038523][ T8289] [ 255.038535][ T8289] dump_stack_lvl+0x16c/0x1f0 [ 255.038595][ T8289] should_fail_ex+0x512/0x640 [ 255.038638][ T8289] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 255.038679][ T8289] should_failslab+0xc2/0x120 [ 255.038718][ T8289] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 255.038754][ T8289] ? mqueue_alloc_inode+0x25/0x50 [ 255.038791][ T8289] ? __pfx_mqueue_alloc_inode+0x10/0x10 [ 255.038820][ T8289] mqueue_alloc_inode+0x25/0x50 [ 255.038849][ T8289] alloc_inode+0x64/0x240 [ 255.038894][ T8289] new_inode+0x22/0x1c0 [ 255.038944][ T8289] mqueue_get_inode+0x2e/0xdd0 [ 255.038982][ T8289] mqueue_create_attr+0x261/0x440 [ 255.039033][ T8289] vfs_mkobj+0x3d8/0x620 [ 255.039062][ T8289] ? __pfx_mqueue_create_attr+0x10/0x10 [ 255.039137][ T8289] do_mq_open+0x71e/0x8c0 [ 255.039177][ T8289] ? __pfx_do_mq_open+0x10/0x10 [ 255.039220][ T8289] __x64_sys_mq_open+0x155/0x1e0 [ 255.039255][ T8289] ? __pfx___x64_sys_mq_open+0x10/0x10 [ 255.039310][ T8289] do_syscall_64+0xcd/0x4c0 [ 255.039363][ T8289] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 255.039395][ T8289] RIP: 0033:0x7f5c6938eec9 [ 255.039422][ T8289] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 255.039453][ T8289] RSP: 002b:00007f5c6a1a2038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f0 [ 255.039483][ T8289] RAX: ffffffffffffffda RBX: 00007f5c695e5fa0 RCX: 00007f5c6938eec9 [ 255.039503][ T8289] RDX: 000000000000b9fb RSI: 00000000000061df RDI: 0000200000000040 [ 255.039522][ T8289] RBP: 00007f5c69411f91 R08: 0000000000000000 R09: 0000000000000000 [ 255.039541][ T8289] R10: 0000200000000080 R11: 0000000000000246 R12: 0000000000000000 [ 255.039559][ T8289] R13: 00007f5c695e6038 R14: 00007f5c695e5fa0 R15: 00007ffe0fc79148 [ 255.039601][ T8289] [ 255.298008][ T8289] can: request_module (can-proto-0) failed. [ 256.841137][ T8319] netlink: 342 bytes leftover after parsing attributes in process `syz.1.456'. [ 256.958186][ T8319] FAULT_INJECTION: forcing a failure. [ 256.958186][ T8319] name failslab, interval 1, probability 0, space 0, times 0 [ 256.971520][ T8319] CPU: 0 UID: 0 PID: 8319 Comm: syz.1.456 Not tainted syzkaller #0 PREEMPT(full) [ 256.971547][ T8319] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 256.971557][ T8319] Call Trace: [ 256.971564][ T8319] [ 256.971571][ T8319] dump_stack_lvl+0x16c/0x1f0 [ 256.971604][ T8319] should_fail_ex+0x512/0x640 [ 256.971632][ T8319] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 256.971660][ T8319] should_failslab+0xc2/0x120 [ 256.971684][ T8319] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 256.971708][ T8319] ? append_filter_err+0x3c0/0x5e0 [ 256.971729][ T8319] ? seq_buf_putc+0xde/0x140 [ 256.971758][ T8319] kmemdup_nul+0x49/0xf0 [ 256.971782][ T8319] append_filter_err+0x3c0/0x5e0 [ 256.971806][ T8319] apply_subsystem_event_filter+0x75a/0x17e0 [ 256.971836][ T8319] ? __pfx_apply_subsystem_event_filter+0x10/0x10 [ 256.971864][ T8319] ? _copy_from_user+0x59/0xd0 [ 256.971887][ T8319] subsystem_filter_write+0x95/0x120 [ 256.971911][ T8319] ? __pfx_subsystem_filter_write+0x10/0x10 [ 256.971933][ T8319] vfs_write+0x2a0/0x11d0 [ 256.971957][ T8319] ? __pfx___mutex_lock+0x10/0x10 [ 256.971995][ T8319] ? __pfx_vfs_write+0x10/0x10 [ 256.972022][ T8319] ? __fget_files+0x20e/0x3c0 [ 256.972049][ T8319] ksys_write+0x12a/0x250 [ 256.972071][ T8319] ? __pfx_ksys_write+0x10/0x10 [ 256.972108][ T8319] do_syscall_64+0xcd/0x4c0 [ 256.972152][ T8319] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 256.972180][ T8319] RIP: 0033:0x7f62efb8eec9 [ 256.972205][ T8319] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 256.972232][ T8319] RSP: 002b:00007f62f0adb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 256.972255][ T8319] RAX: ffffffffffffffda RBX: 00007f62efde5fa0 RCX: 00007f62efb8eec9 [ 256.972267][ T8319] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 000000000000000c [ 256.972277][ T8319] RBP: 00007f62efc11f91 R08: 0000000000000000 R09: 0000000000000000 [ 256.972288][ T8319] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 256.972298][ T8319] R13: 00007f62efde6038 R14: 00007f62efde5fa0 R15: 00007ffeb0ac66c8 [ 256.972320][ T8319] [ 257.192909][ C0] vkms_vblank_simulate: vblank timer overrun [ 258.517491][ T5860] ------------[ cut here ]------------ [ 258.524015][ T5860] ODEBUG: free active (active state 0) object: ffff888034705360 object type: timer_list hint: hci_devcd_timeout+0x0/0x2e0 [ 258.544267][ T5860] WARNING: CPU: 0 PID: 5860 at lib/debugobjects.c:612 debug_print_object+0x1a2/0x2b0 [ 258.553944][ T5860] Modules linked in: [ 258.557938][ T5860] CPU: 0 UID: 0 PID: 5860 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) [ 258.567442][ T5860] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 258.577601][ T5860] RIP: 0010:debug_print_object+0x1a2/0x2b0 [ 258.583630][ T5860] Code: fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 54 41 56 48 8b 14 dd e0 48 16 8c 4c 89 e6 48 c7 c7 60 3d 16 8c e8 4f 8e 91 fc 90 <0f> 0b 90 90 58 83 05 26 6b c3 0b 01 48 83 c4 18 5b 5d 41 5c 41 5d [ 258.603638][ T5860] RSP: 0018:ffffc90003f9f978 EFLAGS: 00010282 [ 258.610573][ T5860] RAX: 0000000000000000 RBX: 0000000000000003 RCX: ffffffff817a02f8 [ 258.618588][ T5860] RDX: ffff888021b40000 RSI: ffffffff817a0305 RDI: 0000000000000001 [ 258.627797][ T5860] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000 [ 258.636104][ T5860] R10: 0000000000000001 R11: 0000000000000001 R12: ffffffff8c164400 [ 258.644427][ T5860] R13: ffffffff8bafee80 R14: ffffffff8a9b7710 R15: ffffc90003f9fa78 [ 258.652604][ T5860] FS: 0000000000000000(0000) GS:ffff8881246ba000(0000) knlGS:0000000000000000 [ 258.661625][ T5860] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 258.668241][ T5860] CR2: 0000200000226000 CR3: 000000002749c000 CR4: 00000000003526f0 [ 258.676486][ T5860] Call Trace: [ 258.679797][ T5860] [ 258.682727][ T5860] ? __pfx_hci_devcd_timeout+0x10/0x10 [ 258.688199][ T5860] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 258.694095][ T5860] debug_check_no_obj_freed+0x4b7/0x600 [ 258.699799][ T5860] ? __pfx_debug_check_no_obj_freed+0x10/0x10 [ 258.705904][ T5860] ? rcu_is_watching+0x12/0xc0 [ 258.711278][ T5860] ? kmem_cache_free+0x2d1/0x4d0 [ 258.716253][ T5860] kfree+0x28f/0x4d0 [ 258.720608][ T5860] ? hci_release_dev+0x4ef/0x610 [ 258.725588][ T5860] hci_release_dev+0x4ef/0x610 [ 258.730475][ T5860] ? __pfx_hci_release_dev+0x10/0x10 [ 258.736239][ T5860] ? rcu_is_watching+0x12/0xc0 [ 258.741276][ T5860] ? kfree+0x24f/0x4d0 [ 258.745362][ T5860] bt_host_release+0x6a/0xb0 [ 258.750063][ T5860] ? __pfx_bt_host_release+0x10/0x10 [ 258.755364][ T5860] device_release+0xa1/0x240 [ 258.760019][ T5860] kobject_put+0x1e7/0x5a0 [ 258.764441][ T5860] put_device+0x1f/0x30 [ 258.768649][ T5860] vhci_release+0x185/0x230 [ 258.773205][ T5860] ? __pfx_vhci_release+0x10/0x10 [ 258.778267][ T5860] __fput+0x402/0xb70 [ 258.782330][ T5860] task_work_run+0x14d/0x240 [ 258.786952][ T5860] ? __pfx_task_work_run+0x10/0x10 [ 258.792141][ T5860] ? switch_task_namespaces+0xeb/0x100 [ 258.797619][ T5860] do_exit+0x86f/0x2bf0 [ 258.801823][ T5860] ? do_raw_spin_lock+0x12c/0x2b0 [ 258.806885][ T5860] ? __pfx_do_exit+0x10/0x10 [ 258.811775][ T5860] ? rcu_is_watching+0x12/0xc0 [ 258.816568][ T5860] do_group_exit+0xd3/0x2a0 [ 258.821421][ T5860] __x64_sys_exit_group+0x3e/0x50 [ 258.826592][ T5860] x64_sys_call+0x14fa/0x1720 [ 258.831376][ T5860] do_syscall_64+0xcd/0x4c0 [ 258.836005][ T5860] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 258.841996][ T5860] RIP: 0033:0x7f5c6938eec9 [ 258.846431][ T5860] Code: Unable to access opcode bytes at 0x7f5c6938ee9f. [ 258.853532][ T5860] RSP: 002b:00007ffe0fc793a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 258.862004][ T5860] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f5c6938eec9 [ 258.870016][ T5860] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000043 [ 258.878020][ T5860] RBP: 00007f5c694137bb R08: 00007ffe0fc77146 R09: 00000000000927c0 [ 258.886078][ T5860] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000001e [ 258.894096][ T5860] R13: 00000000000927c0 R14: 000000000003f124 R15: 00007ffe0fc79560 [ 258.902118][ T5860] [ 258.905139][ T5860] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 258.912431][ T5860] CPU: 0 UID: 0 PID: 5860 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) [ 258.921944][ T5860] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 258.932018][ T5860] Call Trace: [ 258.935306][ T5860] [ 258.938248][ T5860] dump_stack_lvl+0x3d/0x1f0 [ 258.942869][ T5860] vpanic+0x6e8/0x7a0 [ 258.946891][ T5860] ? __pfx_vpanic+0x10/0x10 [ 258.951695][ T5860] ? debug_print_object+0x1a2/0x2b0 [ 258.956908][ T5860] panic+0xca/0xd0 [ 258.960658][ T5860] ? __pfx_panic+0x10/0x10 [ 258.965193][ T5860] ? check_panic_on_warn+0x1f/0xb0 [ 258.970328][ T5860] check_panic_on_warn+0xab/0xb0 [ 258.975289][ T5860] __warn+0xf6/0x3c0 [ 258.979207][ T5860] ? debug_print_object+0x1a2/0x2b0 [ 258.984418][ T5860] report_bug+0x3c3/0x580 [ 258.988768][ T5860] ? debug_print_object+0x1a2/0x2b0 [ 258.993980][ T5860] handle_bug+0x184/0x210 [ 258.998320][ T5860] exc_invalid_op+0x17/0x50 [ 259.002833][ T5860] asm_exc_invalid_op+0x1a/0x20 [ 259.007700][ T5860] RIP: 0010:debug_print_object+0x1a2/0x2b0 [ 259.013612][ T5860] Code: fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 54 41 56 48 8b 14 dd e0 48 16 8c 4c 89 e6 48 c7 c7 60 3d 16 8c e8 4f 8e 91 fc 90 <0f> 0b 90 90 58 83 05 26 6b c3 0b 01 48 83 c4 18 5b 5d 41 5c 41 5d [ 259.033242][ T5860] RSP: 0018:ffffc90003f9f978 EFLAGS: 00010282 [ 259.039365][ T5860] RAX: 0000000000000000 RBX: 0000000000000003 RCX: ffffffff817a02f8 [ 259.047346][ T5860] RDX: ffff888021b40000 RSI: ffffffff817a0305 RDI: 0000000000000001 [ 259.055328][ T5860] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000 [ 259.063311][ T5860] R10: 0000000000000001 R11: 0000000000000001 R12: ffffffff8c164400 [ 259.071293][ T5860] R13: ffffffff8bafee80 R14: ffffffff8a9b7710 R15: ffffc90003f9fa78 [ 259.079282][ T5860] ? __pfx_hci_devcd_timeout+0x10/0x10 [ 259.084763][ T5860] ? __warn_printk+0x198/0x350 [ 259.089551][ T5860] ? __warn_printk+0x1a5/0x350 [ 259.094341][ T5860] ? debug_print_object+0x1a1/0x2b0 [ 259.099556][ T5860] ? __pfx_hci_devcd_timeout+0x10/0x10 [ 259.105030][ T5860] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 259.110858][ T5860] debug_check_no_obj_freed+0x4b7/0x600 [ 259.116439][ T5860] ? __pfx_debug_check_no_obj_freed+0x10/0x10 [ 259.122523][ T5860] ? rcu_is_watching+0x12/0xc0 [ 259.127307][ T5860] ? kmem_cache_free+0x2d1/0x4d0 [ 259.132274][ T5860] kfree+0x28f/0x4d0 [ 259.136183][ T5860] ? hci_release_dev+0x4ef/0x610 [ 259.141145][ T5860] hci_release_dev+0x4ef/0x610 [ 259.145933][ T5860] ? __pfx_hci_release_dev+0x10/0x10 [ 259.151236][ T5860] ? rcu_is_watching+0x12/0xc0 [ 259.156012][ T5860] ? kfree+0x24f/0x4d0 [ 259.160131][ T5860] bt_host_release+0x6a/0xb0 [ 259.164748][ T5860] ? __pfx_bt_host_release+0x10/0x10 [ 259.170054][ T5860] device_release+0xa1/0x240 [ 259.174662][ T5860] kobject_put+0x1e7/0x5a0 [ 259.179181][ T5860] put_device+0x1f/0x30 [ 259.183356][ T5860] vhci_release+0x185/0x230 [ 259.187881][ T5860] ? __pfx_vhci_release+0x10/0x10 [ 259.192969][ T5860] __fput+0x402/0xb70 [ 259.196979][ T5860] task_work_run+0x14d/0x240 [ 259.201596][ T5860] ? __pfx_task_work_run+0x10/0x10 [ 259.206739][ T5860] ? switch_task_namespaces+0xeb/0x100 [ 259.212315][ T5860] do_exit+0x86f/0x2bf0 [ 259.216498][ T5860] ? do_raw_spin_lock+0x12c/0x2b0 [ 259.221544][ T5860] ? __pfx_do_exit+0x10/0x10 [ 259.226158][ T5860] ? rcu_is_watching+0x12/0xc0 [ 259.230942][ T5860] do_group_exit+0xd3/0x2a0 [ 259.235470][ T5860] __x64_sys_exit_group+0x3e/0x50 [ 259.240515][ T5860] x64_sys_call+0x14fa/0x1720 [ 259.245208][ T5860] do_syscall_64+0xcd/0x4c0 [ 259.249736][ T5860] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 259.255648][ T5860] RIP: 0033:0x7f5c6938eec9 [ 259.260076][ T5860] Code: Unable to access opcode bytes at 0x7f5c6938ee9f. [ 259.267274][ T5860] RSP: 002b:00007ffe0fc793a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 259.275704][ T5860] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f5c6938eec9 [ 259.283789][ T5860] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000043 [ 259.291865][ T5860] RBP: 00007f5c694137bb R08: 00007ffe0fc77146 R09: 00000000000927c0 [ 259.299936][ T5860] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000001e [ 259.307924][ T5860] R13: 00000000000927c0 R14: 000000000003f124 R15: 00007ffe0fc79560 [ 259.315935][ T5860] [ 259.319275][ T5860] Kernel Offset: disabled [ 259.323598][ T5860] Rebooting in 86400 seconds..