last executing test programs: 5.212336062s ago: executing program 3 (id=772): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x40040}, 0x800) sendmsg$auto_HSR_C_GET_NODE_STATUS(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)={0x6c, 0x0, 0x10, 0x70bd26, 0x25dfdbfe, {}, [@HSR_A_IF1_SEQ={0x6, 0x6, 0x81}, @HSR_A_IF2_SEQ={0x6, 0x7, 0x8000}, @HSR_A_IF1_SEQ={0x6, 0x6, 0xe}, @HSR_A_NODE_ADDR_B={0xa, 0x5, @local}, @HSR_A_NODE_ADDR={0xa}, @HSR_A_IF2_SEQ={0x0, 0x7, 0x4}, @HSR_A_IF1_AGE={0x1, 0x3, 0x3e}, @HSR_A_IF2_SEQ={0x0, 0x7, 0x6}, @HSR_A_NODE_ADDR={0xa, 0x1, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x18}}]}, 0x6c}, 0x1, 0x0, 0x0, 0x20040084}, 0x40090) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000426bd7000fddbdf250300000004000800040003374b0008"], 0x20}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="db002cbd7000fbdbdf250a"], 0x1c}, 0x1, 0x0, 0x0, 0x20040004}, 0x20008810) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="18"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 4.994110127s ago: executing program 3 (id=774): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r0, &(0x7f0000000040)='//\xf2\x00', 0x80000000) mremap$auto(0x200000000000, 0x40000000004, 0x4, 0x3, 0x100000000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x34}, 0x1, 0x0, 0x0, 0x20000800}, 0x80) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) read$auto(0x3, 0x0, 0x7) 3.561940927s ago: executing program 3 (id=781): r0 = socket(0x2, 0x5, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @local}, 0x406a) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) io_setup$auto(0x1, 0x0) setsockopt$auto(0x3, 0x10000000084, 0xb, 0x0, 0x8) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1fff8}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) 2.502083103s ago: executing program 2 (id=789): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) eventfd$auto(0x3) socketpair$auto(0x7, 0x4, 0xb, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptyd9\x00', 0x0, 0x0) ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0) r1 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) ioctl$auto_PPPIOCSMRU(r1, 0x40047438, 0x0) 2.018910622s ago: executing program 0 (id=792): openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dmmidi2\x00', 0xbea7aa0cc8a02805, 0x0) r0 = getpid() pidfd_open$auto(r0, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio1\x00', 0x40281, 0x0) openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/usbmon30\x00', 0x2080, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x2001, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3d, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x7, 0x6d3c, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) 2.009842184s ago: executing program 2 (id=793): close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) fanotify_init$auto(0x5, 0x2000000000002) r0 = open(&(0x7f0000000000)='.\x00', 0xc00, 0x409) close_range$auto(0x0, 0xfffffffffffff000, 0x2) fanotify_init$auto(0x5, 0x2000000000002) socket(0x2, 0x5, 0x0) fanotify_mark$auto(0x1000000000000, 0x65, 0x9, 0x1, 0x0) fanotify_mark$auto(0x0, 0x401, 0x9, r0, 0x0) 1.90118626s ago: executing program 2 (id=795): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) socket(0x2, 0x2, 0x0) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) setsockopt$auto(0x3, 0x1, 0x52, 0x0, 0x9) 1.708654192s ago: executing program 0 (id=796): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000140)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="24051c27c100dedbdf250307cc0008000200", @ANYRES32=0x0, @ANYBLOB="060007000080000006000700050000000a00050000000000000000000a00010000000000000000000a0001000000000000000000060006000d00000006"], 0x6c}}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4044040}, 0x24008890) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 1.426029278s ago: executing program 0 (id=798): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) r0 = socket(0x2, 0x1, 0x84) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x10000000084, 0x81, 0x0, 0x8) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x2000000000000000) setsockopt$auto(r0, 0x10000000084, 0x19, 0x0, 0x8) 1.152655946s ago: executing program 1 (id=799): memfd_secret$auto(0x0) socket(0xa, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x801, 0x84) r0 = socket(0x18, 0x5, 0x1) connect$auto(r0, 0x0, 0x3a) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0x9, 0x40, 0x8000000008012, 0x3, 0x8000) 1.074405184s ago: executing program 1 (id=800): mmap$auto(0x0, 0x9, 0x3, 0x4000000000eb1, 0xfffffffffffffffa, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) socket(0x21, 0x2, 0x200008) io_uring_setup$auto(0x6, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000000), 0x141401, 0x0) clock_adjtime$auto(0xfffffffffffffffb, 0x0) 1.025860747s ago: executing program 0 (id=801): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/module/workqueue/parameters/watchdog_thresh\x00', 0xc0182, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmsg$auto_TCP_METRICS_CMD_GET(0xffffffffffffffff, 0x0, 0x20000040) flock$auto(r0, 0x5) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0) unshare$auto(0x8000000) syz_clone(0x2360411, 0x0, 0x0, 0x0, 0x0, 0x0) write$auto(0x3, 0x0, 0xfdef) 928.81163ms ago: executing program 1 (id=802): mmap$auto(0x0, 0xfff, 0xdf, 0xeb1, 0x401, 0x8000) capget$auto(0x0, 0xfffffffffffffffe) capset$auto(0x0, &(0x7f0000000000)={0x3, 0x7, 0x8}) r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000280)='.\x00', 0x40400, 0x48) fchmod$auto(r0, 0x7439) fchown$auto(r0, 0x0, 0x400) r1 = openat2$dir(0xffffffffffffff9c, 0x0, &(0x7f0000000180)={0x80040, 0x40, 0xe}, 0x18) fremovexattr$auto(r1, &(0x7f0000000000)='system.posix_acl_access\x00') 876.712502ms ago: executing program 2 (id=803): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x10, 0x2, 0x0) statmount$auto(0x0, &(0x7f0000000040)={0x0, 0x0, 0x38, 0xffffff01, 0x9, 0x9, 0x80000009, 0x7, 0x8, 0x5, 0x5, 0x9, 0x2, 0x8, 0x5, 0xf, 0xffffffffffffffff, 0x9, 0x1, 0x5, 0x40010}, 0x800, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00022abd7000dddbdf25020001000800030000000000080015"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="01"], 0x1c}, 0x1, 0x0, 0x0, 0x20040004}, 0x20008810) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="18"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f0000000000)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x3}, 0x3, 0x0) 821.382345ms ago: executing program 0 (id=804): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'xfrm0\x00'}) r1 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) ioctl$auto_PPPIOCSMRU(r1, 0xc004743e, 0x0) r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f000001f300), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYRES32=r2], 0x1ac}}, 0x40000) ioctl$auto_PPPIOCSPASS(r1, 0x40107447, &(0x7f00000000c0)={0x9, &(0x7f0000000000)={0x30, 0xff, 0x0, @raw=0xfffff004}}) 792.588382ms ago: executing program 3 (id=805): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) open(&(0x7f0000000100)='.\x00', 0x0, 0x418) getdents$auto(0x0, 0x0, 0x18) socket(0x2, 0x80002, 0x73) fcntl$auto(0x8000000000000001, 0x26, 0x8) prctl$auto(0x41555856, 0x6, 0x2008, 0x0, 0x0) fcntl$auto(0x8000000000000001, 0x25, 0x8) 662.295729ms ago: executing program 1 (id=806): mmap$auto(0x0, 0xf4, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/nfs/parameters/nfs_idmap_cache_timeout\x00', 0xc2902, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x3, 0x1, 0x9, 0x7352, 0x3f, 0x65f, 0x1ffde, 0x7, 0x3, 0x2, 0xb, 0x3, 0x5, 0x101, 0xb4, 0x9, 0x6, 0x7ff, 0x84, 0x4, 0x0, 0x7, 0x2000, 0x203, 0x0, 0xb4, 0x0, 0x0, 0x0, 0x0, 0xfffffff9, [0x0, 0x0, 0x68, 0x0, 0x0, 0x400000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000000, 0x1000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3, 0x800000000000000, 0x7e30e0be]}, 0x1fe, 0xd) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xdc5e}, 0x800}, 0x7, 0x4008) 540.525333ms ago: executing program 3 (id=807): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x2, 0x15) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="01"], 0x14}, 0x1, 0x0, 0x0, 0x20040800}, 0x24004000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1300"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 540.268433ms ago: executing program 2 (id=808): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000) close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vbi18\x00', 0xc0400, 0x0) close_range$auto(0x2, r0, 0x0) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) sendmsg$auto_TIPC_NL_NET_SET(r0, 0x0, 0x200444d4) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) close_range$auto(0x2, 0x8, 0x0) 480.632362ms ago: executing program 2 (id=809): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc0202, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) fremovexattr$auto(0xffffffffffffffff, 0x0) utimensat$auto(r0, 0x0, 0x0, 0x400) 303.314658ms ago: executing program 1 (id=810): socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x2) openat$auto_ubifs_dir_operations_ubifs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/bluetooth/hci1/power\x00', 0x400, 0x0) mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) r0 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(r0, r0, 0x0) r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000200)='/dev/video47\x00', 0x380, 0x0) ioctl$auto(r1, 0xc0585611, r1) 150.278969ms ago: executing program 0 (id=811): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000) close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000980)='/proc/self/pagemap\x00', 0x80800, 0x0) read$auto(r0, 0x0, 0x39b8) ioctl$auto(0x3, 0xc0383e04, 0xffffffffffffffff) r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace$auto(0x10, r1, 0x4, 0x8000) ptrace$auto_PTRACE_PEEKSIGINFO(0x4209, r1, 0xb4, 0x5) 149.499652ms ago: executing program 1 (id=812): close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) write$auto(0xffffffffffffffff, &(0x7f0000000080)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbbOO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\b\xc1\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(', 0xa) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0) r1 = getpid() pipe2$auto(&(0x7f00000000c0), 0x0) process_vm_readv$auto(r1, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0) ioctl$auto(r0, 0x40246f4c, 0x38) 0s ago: executing program 3 (id=813): mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) sendmsg$auto_ETHTOOL_MSG_PSE_SET(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000000)={0x14, 0x0, 0x1, 0x70bd2e, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x4000881}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000002040)={'veth0\x00', 0x0}) sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(r0, &(0x7f0000021740)={0x0, 0x0, &(0x7f0000021700)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r1], 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) kernel console output (not intermixed with test programs): h_openat+0x10/0x10 [ 113.628527][ T6203] do_filp_open+0x20b/0x470 [ 113.628560][ T6203] ? __pfx_do_filp_open+0x10/0x10 [ 113.628623][ T6203] ? alloc_fd+0x471/0x7d0 [ 113.628666][ T6203] do_sys_openat2+0x11b/0x1d0 [ 113.628707][ T6203] ? __pfx_do_sys_openat2+0x10/0x10 [ 113.628763][ T6203] __x64_sys_openat+0x174/0x210 [ 113.628803][ T6203] ? __pfx___x64_sys_openat+0x10/0x10 [ 113.628860][ T6203] do_syscall_64+0xcd/0x490 [ 113.628898][ T6203] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 113.628926][ T6203] RIP: 0033:0x7fc33778ebe9 [ 113.628948][ T6203] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 113.628973][ T6203] RSP: 002b:00007fc338574038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 113.629007][ T6203] RAX: ffffffffffffffda RBX: 00007fc3379b5fa0 RCX: 00007fc33778ebe9 [ 113.629025][ T6203] RDX: 0000000000143900 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 113.629042][ T6203] RBP: 00007fc337811e19 R08: 0000000000000000 R09: 0000000000000000 [ 113.629059][ T6203] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 113.629075][ T6203] R13: 00007fc3379b6038 R14: 00007fc3379b5fa0 R15: 00007ffe66976578 [ 113.629114][ T6203] [ 114.053805][ T6210] netlink: 'syz.2.105': attribute type 29 has an invalid length. [ 114.061902][ T6210] netlink: 334 bytes leftover after parsing attributes in process `syz.2.105'. [ 114.594497][ T6222] netlink: 4 bytes leftover after parsing attributes in process `syz.2.113'. [ 114.650702][ T6222] netlink: 25 bytes leftover after parsing attributes in process `syz.2.113'. [ 114.951392][ T6228] mkiss: ax0: crc mode is auto. [ 115.224316][ T6218] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 115.255013][ T6235] FAULT_INJECTION: forcing a failure. [ 115.255013][ T6235] name failslab, interval 1, probability 0, space 0, times 0 [ 115.268321][ T6235] CPU: 0 UID: 0 PID: 6235 Comm: syz.3.118 Not tainted 6.17.0-rc1-syzkaller-00111-g24ea63ea3877 #0 PREEMPT(full) [ 115.268362][ T6235] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 115.268378][ T6235] Call Trace: [ 115.268388][ T6235] [ 115.268399][ T6235] dump_stack_lvl+0x16c/0x1f0 [ 115.268441][ T6235] should_fail_ex+0x512/0x640 [ 115.268482][ T6235] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 115.268518][ T6235] should_failslab+0xc2/0x120 [ 115.268559][ T6235] __kmalloc_cache_noprof+0x6a/0x3e0 [ 115.268590][ T6235] ? lockdep_init_map_type+0x5c/0x280 [ 115.268623][ T6235] ? snd_seq_prioq_new+0x3f/0x110 [ 115.268658][ T6235] snd_seq_prioq_new+0x3f/0x110 [ 115.268684][ T6235] snd_seq_queue_alloc+0x153/0x5a0 [ 115.268719][ T6235] snd_seq_ioctl_create_queue+0xa9/0x380 [ 115.268772][ T6235] snd_seq_kernel_client_ctl+0x107/0x1c0 [ 115.268819][ T6235] alloc_seq_queue+0xda/0x180 [ 115.268862][ T6235] ? __pfx_alloc_seq_queue+0x10/0x10 [ 115.268932][ T6235] ? mark_held_locks+0x49/0x80 [ 115.268971][ T6235] ? _raw_spin_unlock_irq+0x23/0x50 [ 115.269006][ T6235] snd_seq_oss_open+0x38c/0xa20 [ 115.269060][ T6235] odev_open+0x6f/0x90 [ 115.269099][ T6235] ? __pfx_odev_open+0x10/0x10 [ 115.269139][ T6235] soundcore_open+0x409/0x580 [ 115.269178][ T6235] ? __pfx_soundcore_open+0x10/0x10 [ 115.269213][ T6235] chrdev_open+0x231/0x6a0 [ 115.269245][ T6235] ? __pfx_apparmor_file_open+0x10/0x10 [ 115.269284][ T6235] ? __pfx_chrdev_open+0x10/0x10 [ 115.269322][ T6235] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 115.269363][ T6235] do_dentry_open+0x97f/0x1530 [ 115.269401][ T6235] ? __pfx_chrdev_open+0x10/0x10 [ 115.269450][ T6235] vfs_open+0x82/0x3f0 [ 115.269501][ T6235] path_openat+0x1de4/0x2cb0 [ 115.269553][ T6235] ? __pfx_path_openat+0x10/0x10 [ 115.269602][ T6235] do_filp_open+0x20b/0x470 [ 115.269634][ T6235] ? __pfx_do_filp_open+0x10/0x10 [ 115.269696][ T6235] ? alloc_fd+0x471/0x7d0 [ 115.269744][ T6235] do_sys_openat2+0x11b/0x1d0 [ 115.269784][ T6235] ? __pfx_do_sys_openat2+0x10/0x10 [ 115.269849][ T6235] __x64_sys_openat+0x174/0x210 [ 115.269889][ T6235] ? __pfx___x64_sys_openat+0x10/0x10 [ 115.269955][ T6235] do_syscall_64+0xcd/0x490 [ 115.269994][ T6235] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 115.270022][ T6235] RIP: 0033:0x7fb1e438ebe9 [ 115.270044][ T6235] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 115.270068][ T6235] RSP: 002b:00007fb1e5121038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 115.270095][ T6235] RAX: ffffffffffffffda RBX: 00007fb1e45b5fa0 RCX: 00007fb1e438ebe9 [ 115.270112][ T6235] RDX: 0000000000143900 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 115.270130][ T6235] RBP: 00007fb1e4411e19 R08: 0000000000000000 R09: 0000000000000000 [ 115.270149][ T6235] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 115.270166][ T6235] R13: 00007fb1e45b6038 R14: 00007fb1e45b5fa0 R15: 00007ffffe65a068 [ 115.270207][ T6235] [ 115.592732][ T6229] vhci_hcd: not connected 4 [ 115.690262][ T5874] Bluetooth: hci0: Malformed HCI Event [ 116.197178][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 116.206570][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 116.299997][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 116.309758][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 116.688010][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 116.696860][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 116.705740][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 116.768157][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 117.175184][ T6258] vhci_hcd: not connected 4 [ 117.802995][ T6270] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 118.170581][ T5874] Bluetooth: hci1: Malformed HCI Event [ 118.215867][ T6267] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 119.122223][ T6293] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 119.874078][ T5874] Bluetooth: hci3: Malformed HCI Event [ 120.123445][ T6307] netlink: 'syz.1.146': attribute type 4 has an invalid length. [ 120.304856][ T6312] FAULT_INJECTION: forcing a failure. [ 120.304856][ T6312] name failslab, interval 1, probability 0, space 0, times 0 [ 120.354965][ T6312] CPU: 0 UID: 0 PID: 6312 Comm: syz.1.148 Not tainted 6.17.0-rc1-syzkaller-00111-g24ea63ea3877 #0 PREEMPT(full) [ 120.355012][ T6312] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 120.355030][ T6312] Call Trace: [ 120.355040][ T6312] [ 120.355052][ T6312] dump_stack_lvl+0x16c/0x1f0 [ 120.355096][ T6312] should_fail_ex+0x512/0x640 [ 120.355139][ T6312] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 120.355185][ T6312] should_failslab+0xc2/0x120 [ 120.355225][ T6312] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 120.355265][ T6312] ? __pfx_proc_create_data+0x10/0x10 [ 120.355312][ T6312] ? cache_create_net+0x2b/0x220 [ 120.355351][ T6312] kmemdup_noprof+0x29/0x60 [ 120.355390][ T6312] cache_create_net+0x2b/0x220 [ 120.355426][ T6312] nfsd_export_init+0x11f/0x250 [ 120.355461][ T6312] ? __pfx_nfsd_net_init+0x10/0x10 [ 120.355496][ T6312] nfsd_net_init+0x33/0x3d0 [ 120.355532][ T6312] ? __pfx_nfsd_net_init+0x10/0x10 [ 120.355566][ T6312] ops_init+0x1e2/0x5f0 [ 120.355610][ T6312] setup_net+0x10f/0x380 [ 120.355648][ T6312] ? lockdep_init_map_type+0x5c/0x280 [ 120.355691][ T6312] ? __pfx_setup_net+0x10/0x10 [ 120.355732][ T6312] ? debug_mutex_init+0x37/0x70 [ 120.355765][ T6312] copy_net_ns+0x2a6/0x5f0 [ 120.355811][ T6312] create_new_namespaces+0x3ea/0xa90 [ 120.355865][ T6312] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 120.355906][ T6312] ksys_unshare+0x45b/0xa40 [ 120.355950][ T6312] ? __pfx_ksys_unshare+0x10/0x10 [ 120.355994][ T6312] ? xfd_validate_state+0x61/0x180 [ 120.356052][ T6312] __x64_sys_unshare+0x31/0x40 [ 120.356093][ T6312] do_syscall_64+0xcd/0x490 [ 120.356137][ T6312] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 120.356169][ T6312] RIP: 0033:0x7fc33778ebe9 [ 120.356193][ T6312] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 120.356222][ T6312] RSP: 002b:00007fc338574038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 120.356251][ T6312] RAX: ffffffffffffffda RBX: 00007fc3379b5fa0 RCX: 00007fc33778ebe9 [ 120.356271][ T6312] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 120.356289][ T6312] RBP: 00007fc337811e19 R08: 0000000000000000 R09: 0000000000000000 [ 120.356306][ T6312] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 120.356323][ T6312] R13: 00007fc3379b6038 R14: 00007fc3379b5fa0 R15: 00007ffe66976578 [ 120.356364][ T6312] [ 121.151898][ T6332] netlink: 4 bytes leftover after parsing attributes in process `syz.1.156'. [ 121.492844][ T6339] ovs_: entered promiscuous mode [ 121.658110][ T5874] Bluetooth: hci2: unexpected event 0x05 length: 440 > 4 [ 122.661271][ T6355] netlink: 186 bytes leftover after parsing attributes in process `syz.3.165'. [ 122.711843][ T6355] netlink: 186 bytes leftover after parsing attributes in process `syz.3.165'. [ 122.731216][ T6358] FAULT_INJECTION: forcing a failure. [ 122.731216][ T6358] name failslab, interval 1, probability 0, space 0, times 0 [ 122.797290][ T6358] CPU: 1 UID: 0 PID: 6358 Comm: syz.0.164 Not tainted 6.17.0-rc1-syzkaller-00111-g24ea63ea3877 #0 PREEMPT(full) [ 122.797346][ T6358] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 122.797364][ T6358] Call Trace: [ 122.797373][ T6358] [ 122.797386][ T6358] dump_stack_lvl+0x16c/0x1f0 [ 122.797433][ T6358] should_fail_ex+0x512/0x640 [ 122.797471][ T6358] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 122.797517][ T6358] should_failslab+0xc2/0x120 [ 122.797557][ T6358] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 122.797599][ T6358] ? cache_create_net+0x2b/0x220 [ 122.797633][ T6358] ? __pfx_nfsd_net_init+0x10/0x10 [ 122.797667][ T6358] kmemdup_noprof+0x29/0x60 [ 122.797716][ T6358] cache_create_net+0x2b/0x220 [ 122.797749][ T6358] ? __pfx_nfsd_net_init+0x10/0x10 [ 122.797784][ T6358] nfsd_idmap_init+0x62/0x250 [ 122.797827][ T6358] ? __pfx_nfsd_net_init+0x10/0x10 [ 122.797860][ T6358] nfsd_net_init+0x69/0x3d0 [ 122.797910][ T6358] ? __pfx_nfsd_net_init+0x10/0x10 [ 122.797944][ T6358] ops_init+0x1e2/0x5f0 [ 122.797991][ T6358] setup_net+0x10f/0x380 [ 122.798028][ T6358] ? lockdep_init_map_type+0x5c/0x280 [ 122.798077][ T6358] ? __pfx_setup_net+0x10/0x10 [ 122.798120][ T6358] ? debug_mutex_init+0x37/0x70 [ 122.798156][ T6358] copy_net_ns+0x2a6/0x5f0 [ 122.798211][ T6358] create_new_namespaces+0x3ea/0xa90 [ 122.798257][ T6358] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 122.798296][ T6358] ksys_unshare+0x45b/0xa40 [ 122.798340][ T6358] ? __pfx_ksys_unshare+0x10/0x10 [ 122.798384][ T6358] ? xfd_validate_state+0x61/0x180 [ 122.798443][ T6358] __x64_sys_unshare+0x31/0x40 [ 122.798483][ T6358] do_syscall_64+0xcd/0x490 [ 122.798526][ T6358] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 122.798556][ T6358] RIP: 0033:0x7f630b78ebe9 [ 122.798580][ T6358] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 122.798608][ T6358] RSP: 002b:00007f630c630038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 122.798635][ T6358] RAX: ffffffffffffffda RBX: 00007f630b9b5fa0 RCX: 00007f630b78ebe9 [ 122.798654][ T6358] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 122.798671][ T6358] RBP: 00007f630b811e19 R08: 0000000000000000 R09: 0000000000000000 [ 122.798688][ T6358] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 122.798705][ T6358] R13: 00007f630b9b6038 R14: 00007f630b9b5fa0 R15: 00007fff682016b8 [ 122.798746][ T6358] [ 123.354719][ T6362] FAULT_INJECTION: forcing a failure. [ 123.354719][ T6362] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 123.388860][ T6362] CPU: 1 UID: 0 PID: 6362 Comm: syz.2.174 Not tainted 6.17.0-rc1-syzkaller-00111-g24ea63ea3877 #0 PREEMPT(full) [ 123.388905][ T6362] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 123.388923][ T6362] Call Trace: [ 123.388933][ T6362] [ 123.388945][ T6362] dump_stack_lvl+0x16c/0x1f0 [ 123.388988][ T6362] should_fail_ex+0x512/0x640 [ 123.389036][ T6362] should_fail_alloc_page+0xe7/0x130 [ 123.389080][ T6362] prepare_alloc_pages+0x3c2/0x610 [ 123.389132][ T6362] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 123.389176][ T6362] ? stack_trace_save+0x8e/0xc0 [ 123.389212][ T6362] ? __pfx_stack_trace_save+0x10/0x10 [ 123.389244][ T6362] ? __pfx_stack_trace_save+0x10/0x10 [ 123.389278][ T6362] ? stack_depot_save_flags+0x29/0x9c0 [ 123.389329][ T6362] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 123.389364][ T6362] ? kasan_save_stack+0x42/0x60 [ 123.389397][ T6362] ? kasan_save_track+0x14/0x30 [ 123.389428][ T6362] ? snd_pcm_attach_substream+0x441/0xd60 [ 123.389460][ T6362] ? snd_pcm_open_substream+0x8d/0x17f0 [ 123.389488][ T6362] ? snd_pcm_oss_open+0x735/0x1400 [ 123.389527][ T6362] ? soundcore_open+0x409/0x580 [ 123.389560][ T6362] ? chrdev_open+0x231/0x6a0 [ 123.389589][ T6362] ? do_dentry_open+0x97f/0x1530 [ 123.389620][ T6362] ? vfs_open+0x82/0x3f0 [ 123.389661][ T6362] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 123.389700][ T6362] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 123.389744][ T6362] ? policy_nodemask+0xea/0x4e0 [ 123.389783][ T6362] alloc_pages_mpol+0x1fb/0x550 [ 123.389822][ T6362] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 123.389881][ T6362] alloc_pages_noprof+0x131/0x390 [ 123.389920][ T6362] alloc_pages_exact_noprof+0x37/0xe0 [ 123.389952][ T6362] snd_pcm_attach_substream+0x468/0xd60 [ 123.389996][ T6362] snd_pcm_open_substream+0x8d/0x17f0 [ 123.390030][ T6362] ? __pfx_snd_pcm_open_substream+0x10/0x10 [ 123.390061][ T6362] ? lockdep_init_map_type+0x5c/0x280 [ 123.390106][ T6362] ? lockdep_init_map_type+0x5c/0x280 [ 123.390148][ T6362] snd_pcm_oss_open+0x735/0x1400 [ 123.390206][ T6362] ? __pfx_snd_pcm_oss_open+0x10/0x10 [ 123.390250][ T6362] ? __lock_acquire+0xb97/0x1ce0 [ 123.390290][ T6362] ? __pfx_default_wake_function+0x10/0x10 [ 123.390322][ T6362] ? __lock_acquire+0xb97/0x1ce0 [ 123.390367][ T6362] ? do_raw_spin_lock+0x12c/0x2b0 [ 123.390410][ T6362] ? soundcore_open+0x35a/0x580 [ 123.390449][ T6362] ? __pfx_snd_pcm_oss_open+0x10/0x10 [ 123.390496][ T6362] soundcore_open+0x409/0x580 [ 123.390536][ T6362] ? __pfx_soundcore_open+0x10/0x10 [ 123.390571][ T6362] chrdev_open+0x231/0x6a0 [ 123.390607][ T6362] ? __pfx_apparmor_file_open+0x10/0x10 [ 123.390639][ T6362] ? __pfx_chrdev_open+0x10/0x10 [ 123.390679][ T6362] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 123.390719][ T6362] do_dentry_open+0x97f/0x1530 [ 123.390754][ T6362] ? __pfx_chrdev_open+0x10/0x10 [ 123.390796][ T6362] vfs_open+0x82/0x3f0 [ 123.390853][ T6362] path_openat+0x1de4/0x2cb0 [ 123.390905][ T6362] ? __pfx_path_openat+0x10/0x10 [ 123.390951][ T6362] do_filp_open+0x20b/0x470 [ 123.390986][ T6362] ? __pfx_do_filp_open+0x10/0x10 [ 123.391048][ T6362] ? alloc_fd+0x471/0x7d0 [ 123.391088][ T6362] do_sys_openat2+0x11b/0x1d0 [ 123.391128][ T6362] ? __pfx_do_sys_openat2+0x10/0x10 [ 123.391174][ T6362] ? __pfx___might_resched+0x10/0x10 [ 123.391216][ T6362] __x64_sys_openat+0x174/0x210 [ 123.391260][ T6362] ? __pfx___x64_sys_openat+0x10/0x10 [ 123.391324][ T6362] do_syscall_64+0xcd/0x490 [ 123.391365][ T6362] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 123.391394][ T6362] RIP: 0033:0x7f7865b8ebe9 [ 123.391438][ T6362] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 123.391467][ T6362] RSP: 002b:00007f7863df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 123.391495][ T6362] RAX: ffffffffffffffda RBX: 00007f7865db5fa0 RCX: 00007f7865b8ebe9 [ 123.391514][ T6362] RDX: 0000000000000102 RSI: 0000200000004000 RDI: ffffffffffffff9c [ 123.391532][ T6362] RBP: 00007f7865c11e19 R08: 0000000000000000 R09: 0000000000000000 [ 123.391550][ T6362] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 123.391567][ T6362] R13: 00007f7865db6038 R14: 00007f7865db5fa0 R15: 00007ffedde24768 [ 123.391603][ T6362] [ 125.291790][ T6380] netlink: 334 bytes leftover after parsing attributes in process `syz.3.172'. [ 125.424053][ T6384] FAULT_INJECTION: forcing a failure. [ 125.424053][ T6384] name failslab, interval 1, probability 0, space 0, times 0 [ 125.444534][ T6384] CPU: 1 UID: 0 PID: 6384 Comm: syz.1.175 Not tainted 6.17.0-rc1-syzkaller-00111-g24ea63ea3877 #0 PREEMPT(full) [ 125.444576][ T6384] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 125.444592][ T6384] Call Trace: [ 125.444602][ T6384] [ 125.444614][ T6384] dump_stack_lvl+0x16c/0x1f0 [ 125.444740][ T6384] should_fail_ex+0x512/0x640 [ 125.444786][ T6384] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 125.444820][ T6384] should_failslab+0xc2/0x120 [ 125.444871][ T6384] __kmalloc_cache_noprof+0x6a/0x3e0 [ 125.444904][ T6384] ? kfree+0x2b4/0x4d0 [ 125.444932][ T6384] ? memtype_get_idx+0x3d/0xc0 [ 125.444978][ T6384] memtype_get_idx+0x3d/0xc0 [ 125.445014][ T6384] seq_read_iter+0xa0f/0x12c0 [ 125.445065][ T6384] seq_read+0x3a3/0x570 [ 125.445095][ T6384] ? __pfx_seq_read+0x10/0x10 [ 125.445187][ T6384] full_proxy_read+0x131/0x1a0 [ 125.445232][ T6384] ? __pfx_full_proxy_read+0x10/0x10 [ 125.445281][ T6384] vfs_read+0x1e4/0xcf0 [ 125.445319][ T6384] ? __pfx___mutex_lock+0x10/0x10 [ 125.445361][ T6384] ? __pfx_vfs_read+0x10/0x10 [ 125.445406][ T6384] ? __fget_files+0x20e/0x3c0 [ 125.445454][ T6384] ksys_read+0x12a/0x250 [ 125.445503][ T6384] ? __pfx_ksys_read+0x10/0x10 [ 125.445552][ T6384] do_syscall_64+0xcd/0x490 [ 125.445594][ T6384] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 125.445622][ T6384] RIP: 0033:0x7fc33778ebe9 [ 125.445647][ T6384] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 125.445675][ T6384] RSP: 002b:00007fc338574038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 125.445704][ T6384] RAX: ffffffffffffffda RBX: 00007fc3379b5fa0 RCX: 00007fc33778ebe9 [ 125.445722][ T6384] RDX: 00000000000000f8 RSI: 0000200000000240 RDI: 0000000000000005 [ 125.445740][ T6384] RBP: 00007fc337811e19 R08: 0000000000000000 R09: 0000000000000000 [ 125.445756][ T6384] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 125.445772][ T6384] R13: 00007fc3379b6038 R14: 00007fc3379b5fa0 R15: 00007ffe66976578 [ 125.445812][ T6384] [ 125.776750][ T6391] netlink: 'syz.3.177': attribute type 19 has an invalid length. [ 125.800196][ T6378] mmap: syz.0.171 (6378) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 125.829090][ T6391] netlink: 334 bytes leftover after parsing attributes in process `syz.3.177'. [ 126.102285][ T5874] Bluetooth: hci1: SCO packet for unknown connection handle 0 [ 132.974963][ T6431] FAULT_INJECTION: forcing a failure. [ 132.974963][ T6431] name failslab, interval 1, probability 0, space 0, times 0 [ 133.030914][ T6431] CPU: 1 UID: 0 PID: 6431 Comm: syz.2.183 Not tainted 6.17.0-rc1-syzkaller-00111-g24ea63ea3877 #0 PREEMPT(full) [ 133.030958][ T6431] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 133.030974][ T6431] Call Trace: [ 133.030983][ T6431] [ 133.030994][ T6431] dump_stack_lvl+0x16c/0x1f0 [ 133.031040][ T6431] should_fail_ex+0x512/0x640 [ 133.031082][ T6431] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 133.031123][ T6431] should_failslab+0xc2/0x120 [ 133.031164][ T6431] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 133.031198][ T6431] ? __proc_create+0xc3/0x8e0 [ 133.031241][ T6431] ? __proc_create+0x2ce/0x8e0 [ 133.031290][ T6431] __proc_create+0x2ce/0x8e0 [ 133.031354][ T6431] ? __pfx___proc_create+0x10/0x10 [ 133.031416][ T6431] proc_mkdir+0x81/0x170 [ 133.031460][ T6431] ? __pfx_proc_mkdir+0x10/0x10 [ 133.031504][ T6431] ? cache_register_net+0x137/0x5e0 [ 133.031545][ T6431] cache_register_net+0x18f/0x5e0 [ 133.031595][ T6431] nfsd_export_init+0x16e/0x250 [ 133.031632][ T6431] ? __pfx_nfsd_net_init+0x10/0x10 [ 133.031665][ T6431] nfsd_net_init+0x33/0x3d0 [ 133.031702][ T6431] ? __pfx_nfsd_net_init+0x10/0x10 [ 133.031736][ T6431] ops_init+0x1e2/0x5f0 [ 133.031778][ T6431] setup_net+0x10f/0x380 [ 133.031814][ T6431] ? lockdep_init_map_type+0x5c/0x280 [ 133.031856][ T6431] ? __pfx_setup_net+0x10/0x10 [ 133.031898][ T6431] ? debug_mutex_init+0x37/0x70 [ 133.031934][ T6431] copy_net_ns+0x2a6/0x5f0 [ 133.031981][ T6431] create_new_namespaces+0x3ea/0xa90 [ 133.032026][ T6431] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 133.032065][ T6431] ksys_unshare+0x45b/0xa40 [ 133.032107][ T6431] ? __pfx_ksys_unshare+0x10/0x10 [ 133.032149][ T6431] ? xfd_validate_state+0x61/0x180 [ 133.032205][ T6431] __x64_sys_unshare+0x31/0x40 [ 133.032247][ T6431] do_syscall_64+0xcd/0x490 [ 133.032288][ T6431] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 133.032319][ T6431] RIP: 0033:0x7f7865b8ebe9 [ 133.032345][ T6431] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 133.032373][ T6431] RSP: 002b:00007f7863df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 133.032401][ T6431] RAX: ffffffffffffffda RBX: 00007f7865db5fa0 RCX: 00007f7865b8ebe9 [ 133.032419][ T6431] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 133.032434][ T6431] RBP: 00007f7865c11e19 R08: 0000000000000000 R09: 0000000000000000 [ 133.032450][ T6431] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 133.032468][ T6431] R13: 00007f7865db6038 R14: 00007f7865db5fa0 R15: 00007ffedde24768 [ 133.032510][ T6431] [ 133.442163][ T6446] netlink: 8 bytes leftover after parsing attributes in process `syz.3.187'. [ 134.049057][ T6458] netlink: 146 bytes leftover after parsing attributes in process `syz.3.195'. [ 135.312995][ T6485] netlink: 326 bytes leftover after parsing attributes in process `syz.0.205'. [ 135.524093][ T6491] netlink: 4 bytes leftover after parsing attributes in process `syz.0.208'. [ 135.579956][ T6491] netlink: 13 bytes leftover after parsing attributes in process `syz.0.208'. [ 135.775820][ T6497] mkiss: ax0: crc mode is auto. [ 136.631429][ T6516] netlink: 'syz.1.217': attribute type 14 has an invalid length. [ 136.667904][ T6516] netlink: 330 bytes leftover after parsing attributes in process `syz.1.217'. [ 137.002439][ T6526] netlink: 4 bytes leftover after parsing attributes in process `syz.2.221'. [ 137.019569][ T6526] netlink: 13 bytes leftover after parsing attributes in process `syz.2.221'. [ 138.525091][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 138.531414][ T6553] base or size exceeds the MTRR width [ 138.531996][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 139.022904][ T6565] netlink: 186 bytes leftover after parsing attributes in process `syz.2.236'. [ 139.128952][ T6561] netlink: 186 bytes leftover after parsing attributes in process `syz.2.236'. [ 139.487132][ T6576] netlink: 342 bytes leftover after parsing attributes in process `syz.1.243'. [ 139.552706][ T6576] netlink: 342 bytes leftover after parsing attributes in process `syz.1.243'. [ 139.703801][ T6578] netlink: 74 bytes leftover after parsing attributes in process `syz.2.242'. [ 140.042904][ T6591] FAULT_INJECTION: forcing a failure. [ 140.042904][ T6591] name failslab, interval 1, probability 0, space 0, times 0 [ 140.076746][ T6591] CPU: 0 UID: 0 PID: 6591 Comm: syz.2.247 Not tainted 6.17.0-rc1-syzkaller-00111-g24ea63ea3877 #0 PREEMPT(full) [ 140.076792][ T6591] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 140.076805][ T6591] Call Trace: [ 140.076813][ T6591] [ 140.076823][ T6591] dump_stack_lvl+0x16c/0x1f0 [ 140.076860][ T6591] should_fail_ex+0x512/0x640 [ 140.076894][ T6591] ? __kmalloc_noprof+0xbf/0x510 [ 140.076924][ T6591] ? ops_init+0x77/0x5f0 [ 140.076953][ T6591] should_failslab+0xc2/0x120 [ 140.076984][ T6591] __kmalloc_noprof+0xd2/0x510 [ 140.077009][ T6591] ? class_create_file_ns+0x4c/0x60 [ 140.077038][ T6591] ops_init+0x77/0x5f0 [ 140.077072][ T6591] setup_net+0x10f/0x380 [ 140.077101][ T6591] ? lockdep_init_map_type+0x5c/0x280 [ 140.077133][ T6591] ? __pfx_setup_net+0x10/0x10 [ 140.077165][ T6591] ? debug_mutex_init+0x37/0x70 [ 140.077191][ T6591] copy_net_ns+0x2a6/0x5f0 [ 140.077228][ T6591] create_new_namespaces+0x3ea/0xa90 [ 140.077265][ T6591] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 140.077295][ T6591] ksys_unshare+0x45b/0xa40 [ 140.077326][ T6591] ? __pfx_ksys_unshare+0x10/0x10 [ 140.077358][ T6591] ? xfd_validate_state+0x61/0x180 [ 140.077409][ T6591] __x64_sys_unshare+0x31/0x40 [ 140.077443][ T6591] do_syscall_64+0xcd/0x490 [ 140.077480][ T6591] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 140.077506][ T6591] RIP: 0033:0x7f7865b8ebe9 [ 140.077527][ T6591] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 140.077549][ T6591] RSP: 002b:00007f7863df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 140.077571][ T6591] RAX: ffffffffffffffda RBX: 00007f7865db5fa0 RCX: 00007f7865b8ebe9 [ 140.077585][ T6591] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 140.077598][ T6591] RBP: 00007f7865c11e19 R08: 0000000000000000 R09: 0000000000000000 [ 140.077612][ T6591] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 140.077629][ T6591] R13: 00007f7865db6038 R14: 00007f7865db5fa0 R15: 00007ffedde24768 [ 140.077660][ T6591] [ 140.657021][ T6605] FAULT_INJECTION: forcing a failure. [ 140.657021][ T6605] name failslab, interval 1, probability 0, space 0, times 0 [ 140.679591][ T6605] CPU: 1 UID: 0 PID: 6605 Comm: syz.3.253 Not tainted 6.17.0-rc1-syzkaller-00111-g24ea63ea3877 #0 PREEMPT(full) [ 140.679638][ T6605] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 140.679655][ T6605] Call Trace: [ 140.679665][ T6605] [ 140.679677][ T6605] dump_stack_lvl+0x16c/0x1f0 [ 140.679734][ T6605] should_fail_ex+0x512/0x640 [ 140.679782][ T6605] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 140.679825][ T6605] should_failslab+0xc2/0x120 [ 140.679867][ T6605] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 140.679906][ T6605] ? do_kmem_cache_create+0x1b3/0x720 [ 140.679953][ T6605] do_kmem_cache_create+0x1b3/0x720 [ 140.679992][ T6605] ? __kmem_cache_create_args+0x205/0x390 [ 140.680033][ T6605] __kmem_cache_create_args+0x225/0x390 [ 140.680068][ T6605] mon_text_open+0x313/0x4f0 [ 140.680101][ T6605] ? __pfx_mon_text_open+0x10/0x10 [ 140.680131][ T6605] ? __debugfs_file_get+0x1fe/0x840 [ 140.680178][ T6605] ? __pfx_mon_text_ctor+0x10/0x10 [ 140.680210][ T6605] ? __pfx_apparmor_file_open+0x10/0x10 [ 140.680261][ T6605] ? lockdown_is_locked_down+0x3f/0x130 [ 140.680313][ T6605] ? bpf_lsm_locked_down+0x9/0x10 [ 140.680349][ T6605] ? __pfx_mon_text_open+0x10/0x10 [ 140.680380][ T6605] full_proxy_open_regular+0x1b6/0x360 [ 140.680414][ T6605] do_dentry_open+0x97f/0x1530 [ 140.680451][ T6605] ? __pfx_full_proxy_open_regular+0x10/0x10 [ 140.680490][ T6605] vfs_open+0x82/0x3f0 [ 140.680543][ T6605] path_openat+0x1de4/0x2cb0 [ 140.680598][ T6605] ? __pfx_path_openat+0x10/0x10 [ 140.680648][ T6605] do_filp_open+0x20b/0x470 [ 140.680686][ T6605] ? __pfx_do_filp_open+0x10/0x10 [ 140.680764][ T6605] ? alloc_fd+0x471/0x7d0 [ 140.680810][ T6605] do_sys_openat2+0x11b/0x1d0 [ 140.680858][ T6605] ? __pfx_do_sys_openat2+0x10/0x10 [ 140.680923][ T6605] __x64_sys_openat+0x174/0x210 [ 140.680972][ T6605] ? __pfx___x64_sys_openat+0x10/0x10 [ 140.681038][ T6605] do_syscall_64+0xcd/0x490 [ 140.681083][ T6605] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 140.681114][ T6605] RIP: 0033:0x7fb1e438ebe9 [ 140.681140][ T6605] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 140.681166][ T6605] RSP: 002b:00007fb1e5121038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 140.681195][ T6605] RAX: ffffffffffffffda RBX: 00007fb1e45b5fa0 RCX: 00007fb1e438ebe9 [ 140.681214][ T6605] RDX: 0000000000022202 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 140.681232][ T6605] RBP: 00007fb1e4411e19 R08: 0000000000000000 R09: 0000000000000000 [ 140.681250][ T6605] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 140.681267][ T6605] R13: 00007fb1e45b6038 R14: 00007fb1e45b5fa0 R15: 00007ffffe65a068 [ 140.681310][ T6605] [ 140.682249][ T6605] __kmem_cache_create_args(mon_text_ffff88806017bc00) failed with error -22 [ 140.908976][ T6604] netlink: 12 bytes leftover after parsing attributes in process `syz.2.252'. [ 140.912802][ T6605] CPU: 1 UID: 0 PID: 6605 Comm: syz.3.253 Not tainted 6.17.0-rc1-syzkaller-00111-g24ea63ea3877 #0 PREEMPT(full) [ 140.912842][ T6605] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 140.912856][ T6605] Call Trace: [ 140.912866][ T6605] [ 140.912876][ T6605] dump_stack_lvl+0x16c/0x1f0 [ 140.912916][ T6605] __kmem_cache_create_args+0x125/0x390 [ 140.912950][ T6605] mon_text_open+0x313/0x4f0 [ 140.912981][ T6605] ? __pfx_mon_text_open+0x10/0x10 [ 140.913008][ T6605] ? __debugfs_file_get+0x1fe/0x840 [ 140.913046][ T6605] ? __pfx_mon_text_ctor+0x10/0x10 [ 140.913079][ T6605] ? __pfx_apparmor_file_open+0x10/0x10 [ 140.913106][ T6605] ? lockdown_is_locked_down+0x3f/0x130 [ 140.913146][ T6605] ? bpf_lsm_locked_down+0x9/0x10 [ 140.913176][ T6605] ? __pfx_mon_text_open+0x10/0x10 [ 140.913201][ T6605] full_proxy_open_regular+0x1b6/0x360 [ 140.913230][ T6605] do_dentry_open+0x97f/0x1530 [ 140.913262][ T6605] ? __pfx_full_proxy_open_regular+0x10/0x10 [ 140.913296][ T6605] vfs_open+0x82/0x3f0 [ 140.913338][ T6605] path_openat+0x1de4/0x2cb0 [ 140.913382][ T6605] ? __pfx_path_openat+0x10/0x10 [ 140.913423][ T6605] do_filp_open+0x20b/0x470 [ 140.913454][ T6605] ? __pfx_do_filp_open+0x10/0x10 [ 140.913519][ T6605] ? alloc_fd+0x471/0x7d0 [ 140.913558][ T6605] do_sys_openat2+0x11b/0x1d0 [ 140.913595][ T6605] ? __pfx_do_sys_openat2+0x10/0x10 [ 140.913648][ T6605] __x64_sys_openat+0x174/0x210 [ 140.913687][ T6605] ? __pfx___x64_sys_openat+0x10/0x10 [ 140.913740][ T6605] do_syscall_64+0xcd/0x490 [ 140.913776][ T6605] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 140.913802][ T6605] RIP: 0033:0x7fb1e438ebe9 [ 140.913823][ T6605] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 140.913847][ T6605] RSP: 002b:00007fb1e5121038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 140.913873][ T6605] RAX: ffffffffffffffda RBX: 00007fb1e45b5fa0 RCX: 00007fb1e438ebe9 [ 140.913889][ T6605] RDX: 0000000000022202 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 140.913905][ T6605] RBP: 00007fb1e4411e19 R08: 0000000000000000 R09: 0000000000000000 [ 140.913921][ T6605] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 140.913936][ T6605] R13: 00007fb1e45b6038 R14: 00007fb1e45b5fa0 R15: 00007ffffe65a068 [ 140.913971][ T6605] [ 140.966995][ T6608] netlink: 12 bytes leftover after parsing attributes in process `syz.2.252'. [ 141.371930][ T6616] FAULT_INJECTION: forcing a failure. [ 141.371930][ T6616] name failslab, interval 1, probability 0, space 0, times 0 [ 141.398763][ T6616] CPU: 0 UID: 60929 PID: 6616 Comm: syz.3.258 Not tainted 6.17.0-rc1-syzkaller-00111-g24ea63ea3877 #0 PREEMPT(full) [ 141.398809][ T6616] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 141.398827][ T6616] Call Trace: [ 141.398837][ T6616] [ 141.398849][ T6616] dump_stack_lvl+0x16c/0x1f0 [ 141.398892][ T6616] should_fail_ex+0x512/0x640 [ 141.398934][ T6616] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 141.398970][ T6616] should_failslab+0xc2/0x120 [ 141.399010][ T6616] __kmalloc_cache_noprof+0x6a/0x3e0 [ 141.399043][ T6616] ? alloc_ucounts+0x13d/0x440 [ 141.399087][ T6616] alloc_ucounts+0x13d/0x440 [ 141.399125][ T6616] ? __pfx_alloc_ucounts+0x10/0x10 [ 141.399174][ T6616] inc_ucount+0x81/0x370 [ 141.399213][ T6616] ? lockdep_init_map_type+0x5c/0x280 [ 141.399256][ T6616] ? __pfx_inc_ucount+0x10/0x10 [ 141.399291][ T6616] ? lockdep_init_map_type+0x5c/0x280 [ 141.399333][ T6616] ? debug_mutex_init+0x37/0x70 [ 141.399367][ T6616] __do_sys_fanotify_init+0x317/0xc00 [ 141.399414][ T6616] ? rcu_is_watching+0x12/0xc0 [ 141.399448][ T6616] do_syscall_64+0xcd/0x490 [ 141.399490][ T6616] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 141.399520][ T6616] RIP: 0033:0x7fb1e438ebe9 [ 141.399546][ T6616] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 141.399574][ T6616] RSP: 002b:00007fb1e5121038 EFLAGS: 00000246 ORIG_RAX: 000000000000012c [ 141.399610][ T6616] RAX: ffffffffffffffda RBX: 00007fb1e45b5fa0 RCX: 00007fb1e438ebe9 [ 141.399629][ T6616] RDX: 0000000000000000 RSI: 0002000000000002 RDI: 0000000000004000 [ 141.399647][ T6616] RBP: 00007fb1e4411e19 R08: 0000000000000000 R09: 0000000000000000 [ 141.399664][ T6616] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 141.399681][ T6616] R13: 00007fb1e45b6038 R14: 00007fb1e45b5fa0 R15: 00007ffffe65a068 [ 141.399728][ T6616] [ 141.818669][ T6618] netlink: 342 bytes leftover after parsing attributes in process `syz.2.260'. [ 142.249496][ T6629] FAULT_INJECTION: forcing a failure. [ 142.249496][ T6629] name failslab, interval 1, probability 0, space 0, times 0 [ 142.277731][ T6629] CPU: 0 UID: 0 PID: 6629 Comm: syz.1.273 Not tainted 6.17.0-rc1-syzkaller-00111-g24ea63ea3877 #0 PREEMPT(full) [ 142.277774][ T6629] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 142.277792][ T6629] Call Trace: [ 142.277802][ T6629] [ 142.277813][ T6629] dump_stack_lvl+0x16c/0x1f0 [ 142.277855][ T6629] should_fail_ex+0x512/0x640 [ 142.277893][ T6629] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 142.277933][ T6629] should_failslab+0xc2/0x120 [ 142.277971][ T6629] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 142.278009][ T6629] ? shmem_alloc_inode+0x25/0x50 [ 142.278052][ T6629] ? __pfx_shmem_alloc_inode+0x10/0x10 [ 142.278090][ T6629] shmem_alloc_inode+0x25/0x50 [ 142.278130][ T6629] alloc_inode+0x61/0x240 [ 142.278173][ T6629] new_inode+0x22/0x1c0 [ 142.278219][ T6629] shmem_get_inode+0x19a/0xfb0 [ 142.278276][ T6629] shmem_mknod+0x1a8/0x450 [ 142.278328][ T6629] ? __pfx_shmem_create+0x10/0x10 [ 142.278373][ T6629] lookup_open.isra.0+0x11d3/0x1580 [ 142.278427][ T6629] ? __pfx_lookup_open.isra.0+0x10/0x10 [ 142.278483][ T6629] ? __pfx_down_write+0x10/0x10 [ 142.278525][ T6629] ? mnt_get_write_access+0x20c/0x300 [ 142.278579][ T6629] path_openat+0x893/0x2cb0 [ 142.278631][ T6629] ? __pfx_path_openat+0x10/0x10 [ 142.278678][ T6629] do_filp_open+0x20b/0x470 [ 142.278716][ T6629] ? __pfx_do_filp_open+0x10/0x10 [ 142.278784][ T6629] ? alloc_fd+0x471/0x7d0 [ 142.278830][ T6629] do_sys_openat2+0x11b/0x1d0 [ 142.278877][ T6629] ? __pfx_do_sys_openat2+0x10/0x10 [ 142.278940][ T6629] __x64_sys_openat+0x174/0x210 [ 142.278989][ T6629] ? __pfx___x64_sys_openat+0x10/0x10 [ 142.279053][ T6629] do_syscall_64+0xcd/0x490 [ 142.279095][ T6629] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 142.279125][ T6629] RIP: 0033:0x7fc33778ebe9 [ 142.279149][ T6629] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 142.279176][ T6629] RSP: 002b:00007fc338574038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 142.279205][ T6629] RAX: ffffffffffffffda RBX: 00007fc3379b5fa0 RCX: 00007fc33778ebe9 [ 142.279224][ T6629] RDX: 0000000000101440 RSI: 0000000000000000 RDI: ffffffffffffff9c [ 142.279242][ T6629] RBP: 00007fc337811e19 R08: 0000000000000000 R09: 0000000000000000 [ 142.279259][ T6629] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 142.279276][ T6629] R13: 00007fc3379b6038 R14: 00007fc3379b5fa0 R15: 00007ffe66976578 [ 142.279317][ T6629] [ 142.558621][ T6633] FAULT_INJECTION: forcing a failure. [ 142.558621][ T6633] name failslab, interval 1, probability 0, space 0, times 0 [ 142.572509][ T6633] CPU: 0 UID: 0 PID: 6633 Comm: syz.3.264 Not tainted 6.17.0-rc1-syzkaller-00111-g24ea63ea3877 #0 PREEMPT(full) [ 142.572557][ T6633] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 142.572582][ T6633] Call Trace: [ 142.572592][ T6633] [ 142.572604][ T6633] dump_stack_lvl+0x16c/0x1f0 [ 142.572650][ T6633] should_fail_ex+0x512/0x640 [ 142.572693][ T6633] ? __kmalloc_noprof+0xbf/0x510 [ 142.572731][ T6633] ? ops_init+0x77/0x5f0 [ 142.572769][ T6633] should_failslab+0xc2/0x120 [ 142.572811][ T6633] __kmalloc_noprof+0xd2/0x510 [ 142.572844][ T6633] ? lockdep_init_map_type+0x5c/0x280 [ 142.572893][ T6633] ops_init+0x77/0x5f0 [ 142.572938][ T6633] setup_net+0x10f/0x380 [ 142.572976][ T6633] ? lockdep_init_map_type+0x5c/0x280 [ 142.573019][ T6633] ? __pfx_setup_net+0x10/0x10 [ 142.573063][ T6633] ? debug_mutex_init+0x37/0x70 [ 142.573100][ T6633] copy_net_ns+0x2a6/0x5f0 [ 142.573149][ T6633] create_new_namespaces+0x3ea/0xa90 [ 142.573196][ T6633] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 142.573237][ T6633] ksys_unshare+0x45b/0xa40 [ 142.573280][ T6633] ? __pfx_ksys_unshare+0x10/0x10 [ 142.573324][ T6633] ? xfd_validate_state+0x61/0x180 [ 142.573383][ T6633] __x64_sys_unshare+0x31/0x40 [ 142.573426][ T6633] do_syscall_64+0xcd/0x490 [ 142.573479][ T6633] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 142.573510][ T6633] RIP: 0033:0x7fb1e438ebe9 [ 142.573536][ T6633] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 142.573565][ T6633] RSP: 002b:00007fb1e5121038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 142.573595][ T6633] RAX: ffffffffffffffda RBX: 00007fb1e45b5fa0 RCX: 00007fb1e438ebe9 [ 142.573616][ T6633] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 142.573634][ T6633] RBP: 00007fb1e4411e19 R08: 0000000000000000 R09: 0000000000000000 [ 142.573652][ T6633] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 142.573670][ T6633] R13: 00007fb1e45b6038 R14: 00007fb1e45b5fa0 R15: 00007ffffe65a068 [ 142.573711][ T6633] [ 143.612106][ T6654] netlink: 338 bytes leftover after parsing attributes in process `syz.3.271'. [ 143.813177][ T6659] : renamed from gre0 (while UP) [ 144.416224][ T6662] mkiss: ax0: crc mode is auto. [ 144.738461][ T6672] netlink: 342 bytes leftover after parsing attributes in process `syz.3.278'. [ 144.973129][ T6670] FAULT_INJECTION: forcing a failure. [ 144.973129][ T6670] name failslab, interval 1, probability 0, space 0, times 0 [ 145.007658][ T6670] CPU: 0 UID: 0 PID: 6670 Comm: syz.2.277 Not tainted 6.17.0-rc1-syzkaller-00111-g24ea63ea3877 #0 PREEMPT(full) [ 145.007706][ T6670] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 145.007724][ T6670] Call Trace: [ 145.007735][ T6670] [ 145.007747][ T6670] dump_stack_lvl+0x16c/0x1f0 [ 145.007792][ T6670] should_fail_ex+0x512/0x640 [ 145.007833][ T6670] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 145.007875][ T6670] should_failslab+0xc2/0x120 [ 145.007916][ T6670] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 145.007954][ T6670] ? __kernfs_new_node+0xd2/0x8e0 [ 145.008001][ T6670] __kernfs_new_node+0xd2/0x8e0 [ 145.008047][ T6670] ? __pfx___kernfs_new_node+0x10/0x10 [ 145.008098][ T6670] ? find_held_lock+0x2b/0x80 [ 145.008130][ T6670] ? kernfs_root+0xee/0x2a0 [ 145.008178][ T6670] kernfs_new_node+0x13c/0x1e0 [ 145.008230][ T6670] __kernfs_create_file+0x53/0x350 [ 145.008267][ T6670] sysfs_add_file_mode_ns+0x207/0x3c0 [ 145.008315][ T6670] sysfs_merge_group+0x1aa/0x340 [ 145.008357][ T6670] ? __pfx_sysfs_merge_group+0x10/0x10 [ 145.008400][ T6670] ? __pfx_dev_add_physical_location+0x10/0x10 [ 145.008449][ T6670] ? bus_to_subsys+0x131/0x160 [ 145.008487][ T6670] dpm_sysfs_add+0x237/0x280 [ 145.008541][ T6670] device_add+0x9a6/0x1aa0 [ 145.008594][ T6670] ? __pfx_device_add+0x10/0x10 [ 145.008654][ T6670] ? lockdep_init_map_type+0x5c/0x280 [ 145.008698][ T6670] ? __init_waitqueue_head+0xca/0x150 [ 145.008757][ T6670] netdev_register_kobject+0x1a9/0x3d0 [ 145.008810][ T6670] register_netdevice+0x13dc/0x2270 [ 145.008863][ T6670] ? __pfx_register_netdevice+0x10/0x10 [ 145.008920][ T6670] ppp_dev_configure+0xa1e/0xd40 [ 145.008972][ T6670] ppp_ioctl+0x17e0/0x2660 [ 145.009016][ T6670] ? find_held_lock+0x2b/0x80 [ 145.009045][ T6670] ? __pfx_ppp_ioctl+0x10/0x10 [ 145.009095][ T6670] ? __fget_files+0x20e/0x3c0 [ 145.009135][ T6670] ? __pfx_ppp_ioctl+0x10/0x10 [ 145.009188][ T6670] __x64_sys_ioctl+0x18e/0x210 [ 145.009246][ T6670] do_syscall_64+0xcd/0x490 [ 145.009291][ T6670] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 145.009322][ T6670] RIP: 0033:0x7f7865b8ebe9 [ 145.009347][ T6670] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 145.009376][ T6670] RSP: 002b:00007f7863df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 145.009405][ T6670] RAX: ffffffffffffffda RBX: 00007f7865db5fa0 RCX: 00007f7865b8ebe9 [ 145.009425][ T6670] RDX: 0000000000000000 RSI: 00000000c004743e RDI: 0000000000000005 [ 145.009443][ T6670] RBP: 00007f7865c11e19 R08: 0000000000000000 R09: 0000000000000000 [ 145.009461][ T6670] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 145.009479][ T6670] R13: 00007f7865db6038 R14: 00007f7865db5fa0 R15: 00007ffedde24768 [ 145.009521][ T6670] [ 146.273481][ T6691] netlink: 8 bytes leftover after parsing attributes in process `syz.1.286'. [ 147.524972][ T6713] FAULT_INJECTION: forcing a failure. [ 147.524972][ T6713] name failslab, interval 1, probability 0, space 0, times 0 [ 147.565394][ T6713] CPU: 0 UID: 0 PID: 6713 Comm: syz.1.301 Not tainted 6.17.0-rc1-syzkaller-00111-g24ea63ea3877 #0 PREEMPT(full) [ 147.565441][ T6713] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 147.565458][ T6713] Call Trace: [ 147.565468][ T6713] [ 147.565480][ T6713] dump_stack_lvl+0x16c/0x1f0 [ 147.565525][ T6713] should_fail_ex+0x512/0x640 [ 147.565574][ T6713] should_failslab+0xc2/0x120 [ 147.565615][ T6713] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 147.565653][ T6713] ? __alloc_skb+0x2b2/0x380 [ 147.565694][ T6713] __alloc_skb+0x2b2/0x380 [ 147.565728][ T6713] ? __pfx___alloc_skb+0x10/0x10 [ 147.565781][ T6713] new_skb+0x21/0x230 [ 147.565814][ T6713] aoecmd_cfg+0x21c/0x7d0 [ 147.565854][ T6713] ? __pfx_aoecmd_cfg+0x10/0x10 [ 147.565902][ T6713] ? common_file_perm+0x1a9/0x340 [ 147.565948][ T6713] ? __pfx_aoechr_write+0x10/0x10 [ 147.565980][ T6713] ? aoechr_write+0x120/0x160 [ 147.566012][ T6713] aoechr_write+0x120/0x160 [ 147.566045][ T6713] vfs_writev+0x5df/0xde0 [ 147.566091][ T6713] ? __pfx_vfs_writev+0x10/0x10 [ 147.566125][ T6713] ? kmem_cache_free+0x2d1/0x4d0 [ 147.566183][ T6713] ? __fget_files+0x20e/0x3c0 [ 147.566228][ T6713] ? do_writev+0x132/0x340 [ 147.566257][ T6713] do_writev+0x132/0x340 [ 147.566289][ T6713] ? __pfx_do_writev+0x10/0x10 [ 147.566333][ T6713] do_syscall_64+0xcd/0x490 [ 147.566389][ T6713] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 147.566421][ T6713] RIP: 0033:0x7fc33778ebe9 [ 147.566446][ T6713] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 147.566474][ T6713] RSP: 002b:00007fc338574038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 147.566503][ T6713] RAX: ffffffffffffffda RBX: 00007fc3379b5fa0 RCX: 00007fc33778ebe9 [ 147.566523][ T6713] RDX: 0000000000000004 RSI: 0000200000000140 RDI: 0000000000000005 [ 147.566541][ T6713] RBP: 00007fc337811e19 R08: 0000000000000000 R09: 0000000000000000 [ 147.566558][ T6713] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 147.566574][ T6713] R13: 00007fc3379b6038 R14: 00007fc3379b5fa0 R15: 00007ffe66976578 [ 147.566615][ T6713] [ 147.677535][ T6713] aoe: skb alloc failure [ 147.878157][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 147.885129][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 148.731838][ T6728] capability: warning: `syz.0.299' uses 32-bit capabilities (legacy support in use) [ 149.463398][ T6745] FAULT_INJECTION: forcing a failure. [ 149.463398][ T6745] name failslab, interval 1, probability 0, space 0, times 0 [ 149.491065][ T6745] CPU: 1 UID: 0 PID: 6745 Comm: syz.1.306 Not tainted 6.17.0-rc1-syzkaller-00111-g24ea63ea3877 #0 PREEMPT(full) [ 149.491109][ T6745] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 149.491126][ T6745] Call Trace: [ 149.491136][ T6745] [ 149.491147][ T6745] dump_stack_lvl+0x16c/0x1f0 [ 149.491209][ T6745] should_fail_ex+0x512/0x640 [ 149.491250][ T6745] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 149.491287][ T6745] should_failslab+0xc2/0x120 [ 149.491326][ T6745] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 149.491362][ T6745] ? do_kmem_cache_create+0x1b3/0x720 [ 149.491404][ T6745] do_kmem_cache_create+0x1b3/0x720 [ 149.491440][ T6745] ? __kmem_cache_create_args+0x205/0x390 [ 149.491478][ T6745] __kmem_cache_create_args+0x225/0x390 [ 149.491516][ T6745] mon_text_open+0x313/0x4f0 [ 149.491547][ T6745] ? __pfx_mon_text_open+0x10/0x10 [ 149.491582][ T6745] ? __debugfs_file_get+0x1fe/0x840 [ 149.491623][ T6745] ? __pfx_mon_text_ctor+0x10/0x10 [ 149.491651][ T6745] ? __pfx_apparmor_file_open+0x10/0x10 [ 149.491680][ T6745] ? lockdown_is_locked_down+0x3f/0x130 [ 149.491724][ T6745] ? bpf_lsm_locked_down+0x9/0x10 [ 149.491757][ T6745] ? __pfx_mon_text_open+0x10/0x10 [ 149.491785][ T6745] full_proxy_open_regular+0x1b6/0x360 [ 149.491818][ T6745] do_dentry_open+0x97f/0x1530 [ 149.491856][ T6745] ? __pfx_full_proxy_open_regular+0x10/0x10 [ 149.491893][ T6745] vfs_open+0x82/0x3f0 [ 149.491942][ T6745] path_openat+0x1de4/0x2cb0 [ 149.491986][ T6745] ? __pfx_path_openat+0x10/0x10 [ 149.492032][ T6745] do_filp_open+0x20b/0x470 [ 149.492066][ T6745] ? __pfx_do_filp_open+0x10/0x10 [ 149.492128][ T6745] ? alloc_fd+0x471/0x7d0 [ 149.492172][ T6745] do_sys_openat2+0x11b/0x1d0 [ 149.492213][ T6745] ? __pfx_do_sys_openat2+0x10/0x10 [ 149.492271][ T6745] __x64_sys_openat+0x174/0x210 [ 149.492315][ T6745] ? __pfx___x64_sys_openat+0x10/0x10 [ 149.492376][ T6745] do_syscall_64+0xcd/0x490 [ 149.492417][ T6745] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 149.492445][ T6745] RIP: 0033:0x7fc33778ebe9 [ 149.492467][ T6745] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 149.492493][ T6745] RSP: 002b:00007fc338574038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 149.492520][ T6745] RAX: ffffffffffffffda RBX: 00007fc3379b5fa0 RCX: 00007fc33778ebe9 [ 149.492539][ T6745] RDX: 0000000000022202 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 149.492556][ T6745] RBP: 00007fc337811e19 R08: 0000000000000000 R09: 0000000000000000 [ 149.492581][ T6745] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 149.492598][ T6745] R13: 00007fc3379b6038 R14: 00007fc3379b5fa0 R15: 00007ffe66976578 [ 149.492639][ T6745] [ 149.494154][ T6745] __kmem_cache_create_args(mon_text_ffff88806158e800) failed with error -22 [ 149.845641][ T6745] CPU: 1 UID: 0 PID: 6745 Comm: syz.1.306 Not tainted 6.17.0-rc1-syzkaller-00111-g24ea63ea3877 #0 PREEMPT(full) [ 149.845684][ T6745] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 149.845700][ T6745] Call Trace: [ 149.845710][ T6745] [ 149.845720][ T6745] dump_stack_lvl+0x16c/0x1f0 [ 149.845763][ T6745] __kmem_cache_create_args+0x125/0x390 [ 149.845802][ T6745] mon_text_open+0x313/0x4f0 [ 149.845835][ T6745] ? __pfx_mon_text_open+0x10/0x10 [ 149.845862][ T6745] ? __debugfs_file_get+0x1fe/0x840 [ 149.845905][ T6745] ? __pfx_mon_text_ctor+0x10/0x10 [ 149.845934][ T6745] ? __pfx_apparmor_file_open+0x10/0x10 [ 149.845966][ T6745] ? lockdown_is_locked_down+0x3f/0x130 [ 149.846014][ T6745] ? bpf_lsm_locked_down+0x9/0x10 [ 149.846048][ T6745] ? __pfx_mon_text_open+0x10/0x10 [ 149.846076][ T6745] full_proxy_open_regular+0x1b6/0x360 [ 149.846105][ T6745] do_dentry_open+0x97f/0x1530 [ 149.846139][ T6745] ? __pfx_full_proxy_open_regular+0x10/0x10 [ 149.846174][ T6745] vfs_open+0x82/0x3f0 [ 149.846219][ T6745] path_openat+0x1de4/0x2cb0 [ 149.846268][ T6745] ? __pfx_path_openat+0x10/0x10 [ 149.846316][ T6745] do_filp_open+0x20b/0x470 [ 149.846354][ T6745] ? __pfx_do_filp_open+0x10/0x10 [ 149.846420][ T6745] ? alloc_fd+0x471/0x7d0 [ 149.846465][ T6745] do_sys_openat2+0x11b/0x1d0 [ 149.846510][ T6745] ? __pfx_do_sys_openat2+0x10/0x10 [ 149.846574][ T6745] __x64_sys_openat+0x174/0x210 [ 149.846633][ T6745] ? __pfx___x64_sys_openat+0x10/0x10 [ 149.846696][ T6745] do_syscall_64+0xcd/0x490 [ 149.846741][ T6745] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 149.846773][ T6745] RIP: 0033:0x7fc33778ebe9 [ 149.846799][ T6745] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 149.846830][ T6745] RSP: 002b:00007fc338574038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 149.846859][ T6745] RAX: ffffffffffffffda RBX: 00007fc3379b5fa0 RCX: 00007fc33778ebe9 [ 149.846889][ T6745] RDX: 0000000000022202 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 149.846907][ T6745] RBP: 00007fc337811e19 R08: 0000000000000000 R09: 0000000000000000 [ 149.846924][ T6745] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 149.846940][ T6745] R13: 00007fc3379b6038 R14: 00007fc3379b5fa0 R15: 00007ffe66976578 [ 149.846981][ T6745] [ 150.085616][ C1] vkms_vblank_simulate: vblank timer overrun [ 150.512468][ T6756] FAULT_INJECTION: forcing a failure. [ 150.512468][ T6756] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 150.547701][ T6756] CPU: 0 UID: 0 PID: 6756 Comm: syz.1.310 Not tainted 6.17.0-rc1-syzkaller-00111-g24ea63ea3877 #0 PREEMPT(full) [ 150.547747][ T6756] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 150.547765][ T6756] Call Trace: [ 150.547775][ T6756] [ 150.547787][ T6756] dump_stack_lvl+0x16c/0x1f0 [ 150.547831][ T6756] should_fail_ex+0x512/0x640 [ 150.547880][ T6756] should_fail_alloc_page+0xe7/0x130 [ 150.547921][ T6756] prepare_alloc_pages+0x3c2/0x610 [ 150.547972][ T6756] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 150.548009][ T6756] ? arch_stack_walk+0xa6/0x100 [ 150.548059][ T6756] ? stack_trace_save+0x8e/0xc0 [ 150.548093][ T6756] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 150.548128][ T6756] ? rcu_is_watching+0x12/0xc0 [ 150.548170][ T6756] ? kasan_save_track+0x14/0x30 [ 150.548203][ T6756] ? __kasan_slab_alloc+0x89/0x90 [ 150.548237][ T6756] ? kmem_cache_alloc_noprof+0x1cb/0x3b0 [ 150.548271][ T6756] ? __pmd_alloc+0xbf/0x930 [ 150.548313][ T6756] ? __handle_mm_fault+0xa06/0x2a50 [ 150.548341][ T6756] ? handle_mm_fault+0x589/0xd10 [ 150.548367][ T6756] ? __get_user_pages+0x551/0x34a0 [ 150.548418][ T6756] ? interleave_nodes+0x16b/0x410 [ 150.548464][ T6756] ? policy_nodemask+0xea/0x4e0 [ 150.548508][ T6756] alloc_pages_mpol+0x1fb/0x550 [ 150.548550][ T6756] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 150.548603][ T6756] alloc_pages_noprof+0x131/0x390 [ 150.548644][ T6756] pte_alloc_one+0x1c/0x3a0 [ 150.548677][ T6756] __pte_alloc+0x6d/0x3c0 [ 150.548716][ T6756] ? __pfx___pte_alloc+0x10/0x10 [ 150.548760][ T6756] ? do_raw_spin_lock+0x12c/0x2b0 [ 150.548811][ T6756] do_pte_missing+0x285a/0x3ba0 [ 150.548844][ T6756] ? do_raw_spin_unlock+0x172/0x230 [ 150.548891][ T6756] ? _raw_spin_unlock+0x28/0x50 [ 150.548922][ T6756] ? __pmd_alloc+0x3fb/0x930 [ 150.548971][ T6756] __handle_mm_fault+0x152a/0x2a50 [ 150.549015][ T6756] ? __pfx___handle_mm_fault+0x10/0x10 [ 150.549085][ T6756] handle_mm_fault+0x589/0xd10 [ 150.549125][ T6756] __get_user_pages+0x551/0x34a0 [ 150.549188][ T6756] ? __pfx___get_user_pages+0x10/0x10 [ 150.549240][ T6756] populate_vma_page_range+0x267/0x3f0 [ 150.549283][ T6756] ? __pfx_populate_vma_page_range+0x10/0x10 [ 150.549328][ T6756] ? __pfx_find_vma_intersection+0x10/0x10 [ 150.549374][ T6756] ? do_mmap+0x69c/0x1210 [ 150.549429][ T6756] __mm_populate+0x1d8/0x380 [ 150.549478][ T6756] ? __pfx___mm_populate+0x10/0x10 [ 150.549529][ T6756] ? up_write+0x1b2/0x520 [ 150.549578][ T6756] vm_mmap_pgoff+0x37f/0x470 [ 150.549633][ T6756] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 150.549684][ T6756] ? __x64_sys_futex+0x1e0/0x4c0 [ 150.549720][ T6756] ? __x64_sys_futex+0x1e9/0x4c0 [ 150.549765][ T6756] ksys_mmap_pgoff+0x7d/0x5c0 [ 150.549806][ T6756] ? xfd_validate_state+0x61/0x180 [ 150.549848][ T6756] ? __pfx_ksys_write+0x10/0x10 [ 150.549888][ T6756] __x64_sys_mmap+0x125/0x190 [ 150.549939][ T6756] do_syscall_64+0xcd/0x490 [ 150.549981][ T6756] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 150.550011][ T6756] RIP: 0033:0x7fc33778ebe9 [ 150.550037][ T6756] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 150.550065][ T6756] RSP: 002b:00007fc338574038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 150.550094][ T6756] RAX: ffffffffffffffda RBX: 00007fc3379b5fa0 RCX: 00007fc33778ebe9 [ 150.550114][ T6756] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 150.550132][ T6756] RBP: 00007fc337811e19 R08: 0000000000000002 R09: 0000000000008000 [ 150.550151][ T6756] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 150.550168][ T6756] R13: 00007fc3379b6038 R14: 00007fc3379b5fa0 R15: 00007ffe66976578 [ 150.550208][ T6756] [ 151.653525][ T6767] FAULT_INJECTION: forcing a failure. [ 151.653525][ T6767] name failslab, interval 1, probability 0, space 0, times 0 [ 151.687570][ T6767] CPU: 1 UID: 0 PID: 6767 Comm: syz.3.314 Not tainted 6.17.0-rc1-syzkaller-00111-g24ea63ea3877 #0 PREEMPT(full) [ 151.687615][ T6767] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 151.687633][ T6767] Call Trace: [ 151.687643][ T6767] [ 151.687655][ T6767] dump_stack_lvl+0x16c/0x1f0 [ 151.687699][ T6767] should_fail_ex+0x512/0x640 [ 151.687741][ T6767] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 151.687783][ T6767] should_failslab+0xc2/0x120 [ 151.687823][ T6767] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 151.687860][ T6767] ? __kernfs_new_node+0xd2/0x8e0 [ 151.687903][ T6767] __kernfs_new_node+0xd2/0x8e0 [ 151.687944][ T6767] ? kernfs_add_one+0x37d/0x840 [ 151.687988][ T6767] ? __pfx___kernfs_new_node+0x10/0x10 [ 151.688038][ T6767] ? find_held_lock+0x2b/0x80 [ 151.688070][ T6767] ? kernfs_root+0xee/0x2a0 [ 151.688117][ T6767] kernfs_new_node+0x13c/0x1e0 [ 151.688161][ T6767] ? net_ns_get_ownership+0xf8/0x1b0 [ 151.688205][ T6767] kernfs_create_dir_ns+0x4c/0x1a0 [ 151.688254][ T6767] internal_create_group+0x34d/0xf30 [ 151.688303][ T6767] ? __pfx_internal_create_group+0x10/0x10 [ 151.688351][ T6767] ? __pfx_internal_create_group+0x10/0x10 [ 151.688397][ T6767] ? __pfx_dev_add_physical_location+0x10/0x10 [ 151.688444][ T6767] ? bus_to_subsys+0x131/0x160 [ 151.688481][ T6767] dpm_sysfs_add+0x80/0x280 [ 151.688528][ T6767] device_add+0x9a6/0x1aa0 [ 151.688579][ T6767] ? __pfx_device_add+0x10/0x10 [ 151.688624][ T6767] ? lockdep_init_map_type+0x5c/0x280 [ 151.688666][ T6767] ? __init_waitqueue_head+0xca/0x150 [ 151.688722][ T6767] netdev_register_kobject+0x1a9/0x3d0 [ 151.688773][ T6767] register_netdevice+0x13dc/0x2270 [ 151.688826][ T6767] ? __pfx_register_netdevice+0x10/0x10 [ 151.688883][ T6767] ppp_dev_configure+0xa1e/0xd40 [ 151.688936][ T6767] ppp_ioctl+0x17e0/0x2660 [ 151.688981][ T6767] ? find_held_lock+0x2b/0x80 [ 151.689010][ T6767] ? __pfx_ppp_ioctl+0x10/0x10 [ 151.689059][ T6767] ? __fget_files+0x20e/0x3c0 [ 151.689099][ T6767] ? __pfx_ppp_ioctl+0x10/0x10 [ 151.689142][ T6767] __x64_sys_ioctl+0x18e/0x210 [ 151.689193][ T6767] do_syscall_64+0xcd/0x490 [ 151.689235][ T6767] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 151.689266][ T6767] RIP: 0033:0x7fb1e438ebe9 [ 151.689291][ T6767] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 151.689320][ T6767] RSP: 002b:00007fb1e5121038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 151.689359][ T6767] RAX: ffffffffffffffda RBX: 00007fb1e45b5fa0 RCX: 00007fb1e438ebe9 [ 151.689378][ T6767] RDX: 0000000000000000 RSI: 00000000c004743e RDI: 0000000000000005 [ 151.689396][ T6767] RBP: 00007fb1e4411e19 R08: 0000000000000000 R09: 0000000000000000 [ 151.689413][ T6767] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 151.689430][ T6767] R13: 00007fb1e45b6038 R14: 00007fb1e45b5fa0 R15: 00007ffffe65a068 [ 151.689472][ T6767] [ 151.987991][ C1] vkms_vblank_simulate: vblank timer overrun [ 153.966119][ T6825] netlink: 330 bytes leftover after parsing attributes in process `syz.3.335'. [ 155.433035][ T6844] ptp ptp0: new virtual clock ptp1 [ 155.463432][ T6844] ptp ptp0: new virtual clock ptp2 [ 155.487819][ T6844] ptp ptp0: new virtual clock ptp3 [ 155.507642][ T6844] ptp ptp0: guarantee physical clock free running [ 155.643186][ T6851] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input5 [ 156.914795][ T6878] Process accounting resumed [ 158.434121][ T6906] FAULT_INJECTION: forcing a failure. [ 158.434121][ T6906] name failslab, interval 1, probability 0, space 0, times 0 [ 158.447256][ T6906] CPU: 0 UID: 0 PID: 6906 Comm: syz.0.362 Not tainted 6.17.0-rc1-syzkaller-00111-g24ea63ea3877 #0 PREEMPT(full) [ 158.447312][ T6906] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 158.447331][ T6906] Call Trace: [ 158.447341][ T6906] [ 158.447353][ T6906] dump_stack_lvl+0x16c/0x1f0 [ 158.447400][ T6906] should_fail_ex+0x512/0x640 [ 158.447451][ T6906] should_failslab+0xc2/0x120 [ 158.447493][ T6906] __kmalloc_cache_noprof+0x6a/0x3e0 [ 158.447528][ T6906] ? tipc_nametbl_insert_publ+0x700/0x1720 [ 158.447572][ T6906] tipc_nametbl_insert_publ+0x700/0x1720 [ 158.447617][ T6906] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 158.447665][ T6906] ? net_generic+0xea/0x2a0 [ 158.447710][ T6906] tipc_nametbl_publish+0x137/0x280 [ 158.447757][ T6906] tipc_sk_publish+0x1d8/0x430 [ 158.447800][ T6906] ? __pfx_tipc_sk_publish+0x10/0x10 [ 158.447844][ T6906] ? __local_bh_enable_ip+0xa4/0x120 [ 158.447886][ T6906] tipc_sk_bind+0x16f/0x380 [ 158.447931][ T6906] tipc_bind+0x190/0x2a0 [ 158.447976][ T6906] __sys_bind+0x1a7/0x260 [ 158.448010][ T6906] ? __pfx___sys_bind+0x10/0x10 [ 158.448057][ T6906] ? xfd_validate_state+0x61/0x180 [ 158.448100][ T6906] ? __pfx_do_writev+0x10/0x10 [ 158.448143][ T6906] __x64_sys_bind+0x72/0xb0 [ 158.448172][ T6906] ? lockdep_hardirqs_on+0x7c/0x110 [ 158.448208][ T6906] do_syscall_64+0xcd/0x490 [ 158.448244][ T6906] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 158.448272][ T6906] RIP: 0033:0x7f630b78ebe9 [ 158.448307][ T6906] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 158.448336][ T6906] RSP: 002b:00007f630c630038 EFLAGS: 00000246 ORIG_RAX: 0000000000000031 [ 158.448367][ T6906] RAX: ffffffffffffffda RBX: 00007f630b9b5fa0 RCX: 00007f630b78ebe9 [ 158.448388][ T6906] RDX: 0000000000000066 RSI: 0000200000000040 RDI: 0000000000000005 [ 158.448406][ T6906] RBP: 00007f630b811e19 R08: 0000000000000000 R09: 0000000000000000 [ 158.448423][ T6906] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 158.448441][ T6906] R13: 00007f630b9b6038 R14: 00007f630b9b5fa0 R15: 00007fff682016b8 [ 158.448483][ T6906] [ 158.664265][ T6906] tipc: Failed to bind to 65,0,0 [ 159.028884][ T6911] FAULT_INJECTION: forcing a failure. [ 159.028884][ T6911] name failslab, interval 1, probability 0, space 0, times 0 [ 159.048900][ T6911] CPU: 0 UID: 0 PID: 6911 Comm: syz.0.365 Not tainted 6.17.0-rc1-syzkaller-00111-g24ea63ea3877 #0 PREEMPT(full) [ 159.048946][ T6911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 159.048964][ T6911] Call Trace: [ 159.048974][ T6911] [ 159.048986][ T6911] dump_stack_lvl+0x16c/0x1f0 [ 159.049030][ T6911] should_fail_ex+0x512/0x640 [ 159.049073][ T6911] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 159.049114][ T6911] should_failslab+0xc2/0x120 [ 159.049155][ T6911] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 159.049193][ T6911] ? vm_area_dup+0x27/0x8d0 [ 159.049231][ T6911] vm_area_dup+0x27/0x8d0 [ 159.049266][ T6911] copy_vma+0x4fa/0xaa0 [ 159.049309][ T6911] ? __pfx_copy_vma+0x10/0x10 [ 159.049359][ T6911] ? __lock_acquire+0xb97/0x1ce0 [ 159.049406][ T6911] ? register_lock_class+0x41/0x4c0 [ 159.049468][ T6911] ? rcu_is_watching+0x12/0xc0 [ 159.049499][ T6911] ? finish_task_switch.isra.0+0x221/0xc10 [ 159.049538][ T6911] copy_vma_and_data+0x1cf/0x790 [ 159.049587][ T6911] ? __pfx_copy_vma_and_data+0x10/0x10 [ 159.049632][ T6911] ? __vma_enter_locked+0x163/0x3f0 [ 159.049666][ T6911] ? find_held_lock+0x2b/0x80 [ 159.049706][ T6911] ? move_vma+0x536/0x1780 [ 159.049757][ T6911] move_vma+0x548/0x1780 [ 159.049798][ T6911] ? __pfx_move_vma+0x10/0x10 [ 159.049830][ T6911] ? mm_get_unmapped_area+0x95/0xe0 [ 159.049879][ T6911] ? shmem_get_unmapped_area+0x170/0xa00 [ 159.049912][ T6911] ? cap_mmap_addr+0x4b/0x120 [ 159.049942][ T6911] ? bpf_lsm_mmap_addr+0x9/0x10 [ 159.049985][ T6911] ? security_mmap_addr+0x6c/0x1e0 [ 159.050026][ T6911] ? __get_unmapped_area+0x267/0x440 [ 159.050076][ T6911] ? vrm_set_new_addr+0x208/0x290 [ 159.050123][ T6911] mremap_to+0x1b7/0x450 [ 159.050160][ T6911] do_mremap+0x1004/0x1f80 [ 159.050208][ T6911] ? __pfx_do_mremap+0x10/0x10 [ 159.050247][ T6911] ? up_write+0x1b2/0x520 [ 159.050292][ T6911] __do_sys_mremap+0x119/0x170 [ 159.050323][ T6911] ? __pfx___do_sys_mremap+0x10/0x10 [ 159.050364][ T6911] ? __x64_sys_futex+0x1e0/0x4c0 [ 159.050425][ T6911] do_syscall_64+0xcd/0x490 [ 159.050466][ T6911] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 159.050493][ T6911] RIP: 0033:0x7f630b78ebe9 [ 159.050517][ T6911] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 159.050543][ T6911] RSP: 002b:00007f630c630038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019 [ 159.050581][ T6911] RAX: ffffffffffffffda RBX: 00007f630b9b5fa0 RCX: 00007f630b78ebe9 [ 159.050597][ T6911] RDX: 0000000000000008 RSI: 0000000000000002 RDI: 0000000000000000 [ 159.050614][ T6911] RBP: 00007f630b811e19 R08: 00007effffffb000 R09: 0000000000000000 [ 159.050631][ T6911] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 159.050648][ T6911] R13: 00007f630b9b6038 R14: 00007f630b9b5fa0 R15: 00007fff682016b8 [ 159.050686][ T6911] [ 159.902620][ T6925] nvme_fcloop: unknown parameter or missing value '7' [ 159.984556][ T6928] netlink: 28 bytes leftover after parsing attributes in process `syz.3.373'. [ 160.019462][ T6928] veth1_macvtap: left promiscuous mode [ 160.356102][ T6935] sctp: [Deprecated]: syz.3.375 (pid 6935) Use of struct sctp_assoc_value in delayed_ack socket option. [ 160.356102][ T6935] Use struct sctp_sack_info instead [ 160.654527][ T6940] netlink: 330 bytes leftover after parsing attributes in process `syz.1.377'. [ 161.060412][ T6952] netlink: 'syz.2.382': attribute type 4 has an invalid length. [ 161.070809][ T6952] netlink: 314 bytes leftover after parsing attributes in process `syz.2.382'. [ 161.304549][ T6957] FAULT_INJECTION: forcing a failure. [ 161.304549][ T6957] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 161.356382][ T6957] CPU: 1 UID: 0 PID: 6957 Comm: syz.2.384 Not tainted 6.17.0-rc1-syzkaller-00111-g24ea63ea3877 #0 PREEMPT(full) [ 161.356444][ T6957] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 161.356460][ T6957] Call Trace: [ 161.356471][ T6957] [ 161.356481][ T6957] dump_stack_lvl+0x16c/0x1f0 [ 161.356532][ T6957] should_fail_ex+0x512/0x640 [ 161.356580][ T6957] should_fail_alloc_page+0xe7/0x130 [ 161.356622][ T6957] prepare_alloc_pages+0x3c2/0x610 [ 161.356673][ T6957] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 161.356709][ T6957] ? arch_stack_walk+0xa6/0x100 [ 161.356759][ T6957] ? stack_trace_save+0x8e/0xc0 [ 161.356793][ T6957] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 161.356827][ T6957] ? rcu_is_watching+0x12/0xc0 [ 161.356869][ T6957] ? kasan_save_track+0x14/0x30 [ 161.356900][ T6957] ? __kasan_slab_alloc+0x89/0x90 [ 161.356933][ T6957] ? kmem_cache_alloc_noprof+0x1cb/0x3b0 [ 161.356964][ T6957] ? __pmd_alloc+0xbf/0x930 [ 161.356998][ T6957] ? __handle_mm_fault+0xa06/0x2a50 [ 161.357023][ T6957] ? handle_mm_fault+0x589/0xd10 [ 161.357050][ T6957] ? __get_user_pages+0x551/0x34a0 [ 161.357090][ T6957] ? interleave_nodes+0x16b/0x410 [ 161.357136][ T6957] ? policy_nodemask+0xea/0x4e0 [ 161.357177][ T6957] alloc_pages_mpol+0x1fb/0x550 [ 161.357216][ T6957] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 161.357264][ T6957] alloc_pages_noprof+0x131/0x390 [ 161.357301][ T6957] pte_alloc_one+0x1c/0x3a0 [ 161.357331][ T6957] __pte_alloc+0x6d/0x3c0 [ 161.357383][ T6957] ? __pfx___pte_alloc+0x10/0x10 [ 161.357432][ T6957] ? do_raw_spin_lock+0x12c/0x2b0 [ 161.357482][ T6957] do_pte_missing+0x285a/0x3ba0 [ 161.357524][ T6957] ? do_raw_spin_unlock+0x172/0x230 [ 161.357570][ T6957] ? _raw_spin_unlock+0x28/0x50 [ 161.357598][ T6957] ? __pmd_alloc+0x3fb/0x930 [ 161.357647][ T6957] __handle_mm_fault+0x152a/0x2a50 [ 161.357690][ T6957] ? __pfx___handle_mm_fault+0x10/0x10 [ 161.357755][ T6957] handle_mm_fault+0x589/0xd10 [ 161.357795][ T6957] __get_user_pages+0x551/0x34a0 [ 161.357857][ T6957] ? __pfx___get_user_pages+0x10/0x10 [ 161.357913][ T6957] populate_vma_page_range+0x267/0x3f0 [ 161.357964][ T6957] ? __pfx_populate_vma_page_range+0x10/0x10 [ 161.358011][ T6957] ? __pfx_find_vma_intersection+0x10/0x10 [ 161.358056][ T6957] ? do_mmap+0x69c/0x1210 [ 161.358103][ T6957] __mm_populate+0x1d8/0x380 [ 161.358152][ T6957] ? __pfx___mm_populate+0x10/0x10 [ 161.358202][ T6957] ? up_write+0x1b2/0x520 [ 161.358249][ T6957] vm_mmap_pgoff+0x37f/0x470 [ 161.358296][ T6957] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 161.358349][ T6957] ? __x64_sys_futex+0x1e0/0x4c0 [ 161.358385][ T6957] ? __x64_sys_futex+0x1e9/0x4c0 [ 161.358428][ T6957] ksys_mmap_pgoff+0x7d/0x5c0 [ 161.358468][ T6957] ? xfd_validate_state+0x61/0x180 [ 161.358518][ T6957] ? __pfx_ksys_write+0x10/0x10 [ 161.358558][ T6957] __x64_sys_mmap+0x125/0x190 [ 161.358609][ T6957] do_syscall_64+0xcd/0x490 [ 161.358651][ T6957] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 161.358681][ T6957] RIP: 0033:0x7f7865b8ebe9 [ 161.358704][ T6957] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 161.358732][ T6957] RSP: 002b:00007f7863df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 161.358759][ T6957] RAX: ffffffffffffffda RBX: 00007f7865db5fa0 RCX: 00007f7865b8ebe9 [ 161.358778][ T6957] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 161.358794][ T6957] RBP: 00007f7865c11e19 R08: 0000000000000002 R09: 0000000000008000 [ 161.358812][ T6957] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 161.358829][ T6957] R13: 00007f7865db6038 R14: 00007f7865db5fa0 R15: 00007ffedde24768 [ 161.358868][ T6957] [ 164.294780][ T7005] FAULT_INJECTION: forcing a failure. [ 164.294780][ T7005] name failslab, interval 1, probability 0, space 0, times 0 [ 164.320141][ T7008] ptp ptp0: guarantee physical clock free running [ 164.325027][ T7005] CPU: 1 UID: 0 PID: 7005 Comm: syz.1.401 Not tainted 6.17.0-rc1-syzkaller-00111-g24ea63ea3877 #0 PREEMPT(full) [ 164.325077][ T7005] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 164.325097][ T7005] Call Trace: [ 164.325106][ T7005] [ 164.325115][ T7005] dump_stack_lvl+0x16c/0x1f0 [ 164.325154][ T7005] should_fail_ex+0x512/0x640 [ 164.325189][ T7005] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 164.325220][ T7005] should_failslab+0xc2/0x120 [ 164.325253][ T7005] __kmalloc_cache_noprof+0x6a/0x3e0 [ 164.325281][ T7005] ? snd_card_file_add+0x52/0x340 [ 164.325327][ T7005] snd_card_file_add+0x52/0x340 [ 164.325371][ T7005] snd_pcm_oss_open+0x1cf/0x1400 [ 164.325416][ T7005] ? trace_contention_end+0xdd/0x130 [ 164.325463][ T7005] ? find_held_lock+0x2b/0x80 [ 164.325490][ T7005] ? kobj_lookup+0x26d/0x4b0 [ 164.325525][ T7005] ? __pfx_snd_pcm_oss_open+0x10/0x10 [ 164.325565][ T7005] ? __lock_acquire+0xb97/0x1ce0 [ 164.325604][ T7005] ? __lock_acquire+0xb97/0x1ce0 [ 164.325646][ T7005] ? do_raw_spin_lock+0x12c/0x2b0 [ 164.325687][ T7005] ? soundcore_open+0x35a/0x580 [ 164.325722][ T7005] ? __pfx_snd_pcm_oss_open+0x10/0x10 [ 164.325763][ T7005] soundcore_open+0x409/0x580 [ 164.325799][ T7005] ? __pfx_soundcore_open+0x10/0x10 [ 164.325832][ T7005] chrdev_open+0x231/0x6a0 [ 164.325866][ T7005] ? __pfx_chrdev_open+0x10/0x10 [ 164.325902][ T7005] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 164.325938][ T7005] do_dentry_open+0x97f/0x1530 [ 164.325970][ T7005] ? __pfx_chrdev_open+0x10/0x10 [ 164.326009][ T7005] vfs_open+0x82/0x3f0 [ 164.326050][ T7005] path_openat+0x1de4/0x2cb0 [ 164.326092][ T7005] ? __pfx_path_openat+0x10/0x10 [ 164.326132][ T7005] do_filp_open+0x20b/0x470 [ 164.326163][ T7005] ? __pfx_do_filp_open+0x10/0x10 [ 164.326225][ T7005] ? alloc_fd+0x471/0x7d0 [ 164.326276][ T7005] do_sys_openat2+0x11b/0x1d0 [ 164.326314][ T7005] ? __pfx_do_sys_openat2+0x10/0x10 [ 164.326368][ T7005] __x64_sys_openat+0x174/0x210 [ 164.326407][ T7005] ? __pfx___x64_sys_openat+0x10/0x10 [ 164.326486][ T7005] do_syscall_64+0xcd/0x490 [ 164.326524][ T7005] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 164.326550][ T7005] RIP: 0033:0x7fc33778ebe9 [ 164.326573][ T7005] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 164.326596][ T7005] RSP: 002b:00007fc338574038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 164.326622][ T7005] RAX: ffffffffffffffda RBX: 00007fc3379b5fa0 RCX: 00007fc33778ebe9 [ 164.326638][ T7005] RDX: 0000000000000801 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 164.326654][ T7005] RBP: 00007fc337811e19 R08: 0000000000000000 R09: 0000000000000000 [ 164.326669][ T7005] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 164.326683][ T7005] R13: 00007fc3379b6038 R14: 00007fc3379b5fa0 R15: 00007ffe66976578 [ 164.326717][ T7005] [ 164.839452][ T7017] netlink: 334 bytes leftover after parsing attributes in process `syz.1.406'. [ 164.877269][ T7017] netlink: 334 bytes leftover after parsing attributes in process `syz.1.406'. [ 165.132705][ T7023] sctp: [Deprecated]: syz.1.408 (pid 7023) Use of struct sctp_assoc_value in delayed_ack socket option. [ 165.132705][ T7023] Use struct sctp_sack_info instead [ 166.570576][ T7043] netlink: 'syz.2.413': attribute type 1 has an invalid length. [ 166.595481][ T7043] netlink: 306 bytes leftover after parsing attributes in process `syz.2.413'. [ 167.224248][ T7054] i2c i2c-0: dvb_frontend_start: failed to start kthread (-4) [ 168.877223][ T7075] i2c i2c-0: delete_device: Can't find device in list [ 169.735671][ T7093] netlink: 'syz.2.430': attribute type 25 has an invalid length. [ 169.970746][ T7095] FAULT_INJECTION: forcing a failure. [ 169.970746][ T7095] name failslab, interval 1, probability 0, space 0, times 0 [ 170.023955][ T7095] CPU: 1 UID: 0 PID: 7095 Comm: syz.2.432 Not tainted 6.17.0-rc1-syzkaller-00111-g24ea63ea3877 #0 PREEMPT(full) [ 170.024002][ T7095] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 170.024016][ T7095] Call Trace: [ 170.024026][ T7095] [ 170.024037][ T7095] dump_stack_lvl+0x16c/0x1f0 [ 170.024081][ T7095] should_fail_ex+0x512/0x640 [ 170.024123][ T7095] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 170.024160][ T7095] should_failslab+0xc2/0x120 [ 170.024215][ T7095] __kmalloc_cache_noprof+0x6a/0x3e0 [ 170.024249][ T7095] ? vhost_net_open+0xb4/0x8a0 [ 170.024289][ T7095] ? kasan_save_track+0x14/0x30 [ 170.024329][ T7095] vhost_net_open+0xb4/0x8a0 [ 170.024367][ T7095] ? __pfx_vhost_net_open+0x10/0x10 [ 170.024407][ T7095] misc_open+0x35a/0x420 [ 170.024439][ T7095] ? __pfx_misc_open+0x10/0x10 [ 170.024469][ T7095] chrdev_open+0x231/0x6a0 [ 170.024508][ T7095] ? __pfx_apparmor_file_open+0x10/0x10 [ 170.024542][ T7095] ? __pfx_chrdev_open+0x10/0x10 [ 170.024583][ T7095] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 170.024626][ T7095] do_dentry_open+0x97f/0x1530 [ 170.024666][ T7095] ? __pfx_chrdev_open+0x10/0x10 [ 170.024713][ T7095] vfs_open+0x82/0x3f0 [ 170.024763][ T7095] path_openat+0x1de4/0x2cb0 [ 170.024814][ T7095] ? __pfx_path_openat+0x10/0x10 [ 170.024859][ T7095] do_filp_open+0x20b/0x470 [ 170.024894][ T7095] ? __pfx_do_filp_open+0x10/0x10 [ 170.024956][ T7095] ? alloc_fd+0x471/0x7d0 [ 170.024999][ T7095] do_sys_openat2+0x11b/0x1d0 [ 170.025045][ T7095] ? __pfx_do_sys_openat2+0x10/0x10 [ 170.025093][ T7095] ? do_fcntl+0x1eb/0x15a0 [ 170.025145][ T7095] __x64_sys_openat+0x174/0x210 [ 170.025200][ T7095] ? __pfx___x64_sys_openat+0x10/0x10 [ 170.025268][ T7095] do_syscall_64+0xcd/0x490 [ 170.025311][ T7095] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 170.025342][ T7095] RIP: 0033:0x7f7865b8ebe9 [ 170.025367][ T7095] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 170.025395][ T7095] RSP: 002b:00007f7863df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 170.025424][ T7095] RAX: ffffffffffffffda RBX: 00007f7865db5fa0 RCX: 00007f7865b8ebe9 [ 170.025443][ T7095] RDX: 0000000000000000 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 170.025461][ T7095] RBP: 00007f7865c11e19 R08: 0000000000000000 R09: 0000000000000000 [ 170.025479][ T7095] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 170.025496][ T7095] R13: 00007f7865db6038 R14: 00007f7865db5fa0 R15: 00007ffedde24768 [ 170.025536][ T7095] [ 171.163421][ T7115] netlink: 342 bytes leftover after parsing attributes in process `syz.0.440'. [ 171.432283][ T7124] netlink: 330 bytes leftover after parsing attributes in process `syz.2.444'. [ 171.641359][ T7128] netlink: 330 bytes leftover after parsing attributes in process `syz.0.447'. [ 171.969218][ T7131] netlink: 342 bytes leftover after parsing attributes in process `syz.2.448'. [ 172.907366][ T7162] netlink: 146 bytes leftover after parsing attributes in process `syz.0.459'. [ 174.101135][ T7188] netlink: 'syz.0.471': attribute type 22 has an invalid length. [ 174.121483][ T7188] netlink: 330 bytes leftover after parsing attributes in process `syz.0.471'. [ 174.142790][ T7190] netlink: 'syz.2.470': attribute type 16 has an invalid length. [ 174.216611][ T7190] netlink: 306 bytes leftover after parsing attributes in process `syz.2.470'. [ 175.554008][ T7231] netlink: 342 bytes leftover after parsing attributes in process `syz.2.487'. [ 176.430624][ T7252] device-mapper: ioctl: Unable to rename non-existent device, to uuid „ [ 176.883202][ T7263] FAULT_INJECTION: forcing a failure. [ 176.883202][ T7263] name failslab, interval 1, probability 0, space 0, times 0 [ 176.903456][ T7263] CPU: 1 UID: 0 PID: 7263 Comm: syz.1.500 Not tainted 6.17.0-rc1-syzkaller-00111-g24ea63ea3877 #0 PREEMPT(full) [ 176.903503][ T7263] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 176.903520][ T7263] Call Trace: [ 176.903530][ T7263] [ 176.903542][ T7263] dump_stack_lvl+0x16c/0x1f0 [ 176.903586][ T7263] should_fail_ex+0x512/0x640 [ 176.903629][ T7263] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 176.903673][ T7263] should_failslab+0xc2/0x120 [ 176.903713][ T7263] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 176.903751][ T7263] ? alloc_inode+0x61/0x240 [ 176.903800][ T7263] ? __pfx_debugfs_alloc_inode+0x10/0x10 [ 176.903832][ T7263] alloc_inode+0x61/0x240 [ 176.903876][ T7263] new_inode+0x22/0x1c0 [ 176.903924][ T7263] debugfs_create_symlink+0xd3/0x320 [ 176.903963][ T7263] ref_tracker_dir_symlink+0x255/0x360 [ 176.904011][ T7263] ? __pfx_ref_tracker_dir_symlink+0x10/0x10 [ 176.904215][ T7263] net_ns_net_init+0x19a/0x220 [ 176.904274][ T7263] ? __pfx_net_ns_net_init+0x10/0x10 [ 176.904313][ T7263] ops_init+0x1e2/0x5f0 [ 176.904361][ T7263] setup_net+0x10f/0x380 [ 176.904411][ T7263] ? lockdep_init_map_type+0x5c/0x280 [ 176.904457][ T7263] ? __pfx_setup_net+0x10/0x10 [ 176.904501][ T7263] ? debug_mutex_init+0x37/0x70 [ 176.904538][ T7263] copy_net_ns+0x2a6/0x5f0 [ 176.904590][ T7263] create_new_namespaces+0x3ea/0xa90 [ 176.904639][ T7263] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 176.904679][ T7263] ksys_unshare+0x45b/0xa40 [ 176.904724][ T7263] ? __pfx_ksys_unshare+0x10/0x10 [ 176.904764][ T7263] ? xfd_validate_state+0x61/0x180 [ 176.904818][ T7263] __x64_sys_unshare+0x31/0x40 [ 176.904855][ T7263] do_syscall_64+0xcd/0x490 [ 176.904898][ T7263] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 176.904931][ T7263] RIP: 0033:0x7fc33778ebe9 [ 176.904960][ T7263] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 176.904991][ T7263] RSP: 002b:00007fc338574038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 176.905021][ T7263] RAX: ffffffffffffffda RBX: 00007fc3379b5fa0 RCX: 00007fc33778ebe9 [ 176.905041][ T7263] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 176.905059][ T7263] RBP: 00007fc337811e19 R08: 0000000000000000 R09: 0000000000000000 [ 176.905077][ T7263] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 176.905094][ T7263] R13: 00007fc3379b6038 R14: 00007fc3379b5fa0 R15: 00007ffe66976578 [ 176.905133][ T7263] [ 176.905145][ T7263] debugfs: out of free dentries, can not create symlink 'netns-15-4026532684-notrefcnt' [ 177.244714][ T7272] Process accounting resumed [ 178.865306][ T7311] netlink: 146 bytes leftover after parsing attributes in process `syz.2.517'. [ 178.880036][ T7305] netlink: 'syz.1.515': attribute type 33 has an invalid length. [ 178.903957][ T7305] netlink: 322 bytes leftover after parsing attributes in process `syz.1.515'. [ 179.404410][ T7325] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 179.504898][ T7325] FAULT_INJECTION: forcing a failure. [ 179.504898][ T7325] name failslab, interval 1, probability 0, space 0, times 0 [ 179.538126][ T7325] CPU: 1 UID: 0 PID: 7325 Comm: syz.3.525 Not tainted 6.17.0-rc1-syzkaller-00111-g24ea63ea3877 #0 PREEMPT(full) [ 179.538179][ T7325] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 179.538197][ T7325] Call Trace: [ 179.538207][ T7325] [ 179.538218][ T7325] dump_stack_lvl+0x16c/0x1f0 [ 179.538262][ T7325] should_fail_ex+0x512/0x640 [ 179.538305][ T7325] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 179.538341][ T7325] should_failslab+0xc2/0x120 [ 179.538381][ T7325] __kmalloc_cache_noprof+0x6a/0x3e0 [ 179.538413][ T7325] ? trace_pid_list_alloc+0x27c/0x3f0 [ 179.538451][ T7325] ? kasan_save_track+0x14/0x30 [ 179.538491][ T7325] trace_pid_list_alloc+0x27c/0x3f0 [ 179.538536][ T7325] trace_pid_write+0x10e/0x460 [ 179.538581][ T7325] ? __mutex_unlock_slowpath+0x163/0x800 [ 179.538624][ T7325] ? __pfx_trace_pid_write+0x10/0x10 [ 179.538669][ T7325] ? __pfx___mutex_lock+0x10/0x10 [ 179.538706][ T7325] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 179.538747][ T7325] ? update_last_data+0xb3/0x510 [ 179.538805][ T7325] event_pid_write.isra.0+0x3f7/0x7f0 [ 179.538851][ T7325] ? __pfx_event_pid_write.isra.0+0x10/0x10 [ 179.538906][ T7325] ? __pfx_ftrace_event_pid_write+0x10/0x10 [ 179.538945][ T7325] vfs_writev+0x5df/0xde0 [ 179.538999][ T7325] ? __pfx_vfs_writev+0x10/0x10 [ 179.539028][ T7325] ? __mutex_lock+0x1c4/0x10b0 [ 179.539079][ T7325] ? __pfx___mutex_lock+0x10/0x10 [ 179.539145][ T7325] ? __fget_files+0x20e/0x3c0 [ 179.539192][ T7325] ? do_writev+0x132/0x340 [ 179.539222][ T7325] do_writev+0x132/0x340 [ 179.539254][ T7325] ? __pfx_do_writev+0x10/0x10 [ 179.539300][ T7325] do_syscall_64+0xcd/0x490 [ 179.539343][ T7325] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 179.539373][ T7325] RIP: 0033:0x7fb1e438ebe9 [ 179.539397][ T7325] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 179.539425][ T7325] RSP: 002b:00007fb1e5121038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 179.539453][ T7325] RAX: ffffffffffffffda RBX: 00007fb1e45b5fa0 RCX: 00007fb1e438ebe9 [ 179.539472][ T7325] RDX: 0000000000000008 RSI: 0000200000000100 RDI: 0000000000000003 [ 179.539489][ T7325] RBP: 00007fb1e4411e19 R08: 0000000000000000 R09: 0000000000000000 [ 179.539506][ T7325] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 179.539522][ T7325] R13: 00007fb1e45b6038 R14: 00007fb1e45b5fa0 R15: 00007ffffe65a068 [ 179.539563][ T7325] [ 180.166204][ T7335] netlink: 330 bytes leftover after parsing attributes in process `syz.0.529'. [ 180.604470][ T7352] netlink: 342 bytes leftover after parsing attributes in process `syz.3.534'. [ 181.232495][ T7362] netlink: 306 bytes leftover after parsing attributes in process `syz.1.538'. [ 183.996077][ T7394] netlink: 'syz.3.553': attribute type 29 has an invalid length. [ 184.056727][ T7394] netlink: 334 bytes leftover after parsing attributes in process `syz.3.553'. [ 184.710563][ T7405] FAULT_INJECTION: forcing a failure. [ 184.710563][ T7405] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 184.780101][ T7405] CPU: 1 UID: 0 PID: 7405 Comm: syz.3.556 Not tainted 6.17.0-rc1-syzkaller-00111-g24ea63ea3877 #0 PREEMPT(full) [ 184.780150][ T7405] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 184.780168][ T7405] Call Trace: [ 184.780179][ T7405] [ 184.780192][ T7405] dump_stack_lvl+0x16c/0x1f0 [ 184.780242][ T7405] should_fail_ex+0x512/0x640 [ 184.780302][ T7405] _copy_to_user+0x32/0xd0 [ 184.780355][ T7405] copy_to_sockptr_offset.constprop.0+0x129/0x150 [ 184.780398][ T7405] ? __pfx_copy_to_sockptr_offset.constprop.0+0x10/0x10 [ 184.780437][ T7405] ? bpf_vlog_finalize+0x1ba/0x360 [ 184.780467][ T7405] btf_new_fd+0x16b9/0x5490 [ 184.780506][ T7405] ? __lock_acquire+0xb97/0x1ce0 [ 184.780561][ T7405] ? __pfx_btf_new_fd+0x10/0x10 [ 184.780597][ T7405] ? aa_get_newest_label+0xd2/0x250 [ 184.780633][ T7405] ? apparmor_capable+0x114/0x1d0 [ 184.780669][ T7405] ? bpf_lsm_capable+0x9/0x10 [ 184.780697][ T7405] ? security_capable+0x7e/0x260 [ 184.780730][ T7405] ? ns_capable+0xd7/0x110 [ 184.780768][ T7405] __sys_bpf+0x38a/0x4de0 [ 184.780811][ T7405] ? __pfx_futex_wake+0x10/0x10 [ 184.780861][ T7405] ? __pfx___sys_bpf+0x10/0x10 [ 184.780918][ T7405] ? do_futex+0x122/0x350 [ 184.780959][ T7405] ? __pfx_do_futex+0x10/0x10 [ 184.781020][ T7405] ? xfd_validate_state+0x61/0x180 [ 184.781063][ T7405] ? __pfx_do_pwritev+0x10/0x10 [ 184.781104][ T7405] __x64_sys_bpf+0x78/0xc0 [ 184.781151][ T7405] ? lockdep_hardirqs_on+0x7c/0x110 [ 184.781187][ T7405] do_syscall_64+0xcd/0x490 [ 184.781230][ T7405] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 184.781262][ T7405] RIP: 0033:0x7fb1e438ebe9 [ 184.781297][ T7405] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 184.781326][ T7405] RSP: 002b:00007fb1e5121038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 184.781358][ T7405] RAX: ffffffffffffffda RBX: 00007fb1e45b5fa0 RCX: 00007fb1e438ebe9 [ 184.781378][ T7405] RDX: 0000000000000026 RSI: 0000000000000000 RDI: 0000000000000012 [ 184.781396][ T7405] RBP: 00007fb1e4411e19 R08: 0000000000000000 R09: 0000000000000000 [ 184.781415][ T7405] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 184.781432][ T7405] R13: 00007fb1e45b6038 R14: 00007fb1e45b5fa0 R15: 00007ffffe65a068 [ 184.781473][ T7405] [ 185.844882][ T7426] netlink: 'syz.0.565': attribute type 4 has an invalid length. [ 185.845763][ T7424] netlink: 146 bytes leftover after parsing attributes in process `syz.2.566'. [ 187.057860][ T7450] netlink: 342 bytes leftover after parsing attributes in process `syz.0.574'. [ 187.191616][ T7449] Process accounting paused [ 187.486034][ T7461] netlink: 'syz.2.577': attribute type 4 has an invalid length. [ 187.518460][ T7461] netlink: 'syz.2.577': attribute type 4 has an invalid length. [ 187.905209][ T7474] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 188.729766][ T7490] FAULT_INJECTION: forcing a failure. [ 188.729766][ T7490] name failslab, interval 1, probability 0, space 0, times 0 [ 188.743580][ T7490] CPU: 0 UID: 0 PID: 7490 Comm: syz.3.588 Not tainted 6.17.0-rc1-syzkaller-00111-g24ea63ea3877 #0 PREEMPT(full) [ 188.743628][ T7490] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 188.743647][ T7490] Call Trace: [ 188.743657][ T7490] [ 188.743669][ T7490] dump_stack_lvl+0x16c/0x1f0 [ 188.743714][ T7490] should_fail_ex+0x512/0x640 [ 188.743757][ T7490] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 188.743800][ T7490] should_failslab+0xc2/0x120 [ 188.743842][ T7490] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 188.743881][ T7490] ? alloc_inode+0x61/0x240 [ 188.743929][ T7490] ? __pfx_debugfs_alloc_inode+0x10/0x10 [ 188.743961][ T7490] alloc_inode+0x61/0x240 [ 188.744005][ T7490] new_inode+0x22/0x1c0 [ 188.744062][ T7490] debugfs_create_symlink+0xd3/0x320 [ 188.744102][ T7490] ref_tracker_dir_symlink+0x255/0x360 [ 188.744151][ T7490] ? __pfx_ref_tracker_dir_symlink+0x10/0x10 [ 188.744254][ T7490] net_ns_net_init+0x19a/0x220 [ 188.744296][ T7490] ? __pfx_net_ns_net_init+0x10/0x10 [ 188.744333][ T7490] ops_init+0x1e2/0x5f0 [ 188.744377][ T7490] setup_net+0x10f/0x380 [ 188.744412][ T7490] ? lockdep_init_map_type+0x5c/0x280 [ 188.744454][ T7490] ? __pfx_setup_net+0x10/0x10 [ 188.744496][ T7490] ? debug_mutex_init+0x37/0x70 [ 188.744532][ T7490] copy_net_ns+0x2a6/0x5f0 [ 188.744583][ T7490] create_new_namespaces+0x3ea/0xa90 [ 188.744629][ T7490] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 188.744669][ T7490] ksys_unshare+0x45b/0xa40 [ 188.744711][ T7490] ? __pfx_ksys_unshare+0x10/0x10 [ 188.744755][ T7490] ? xfd_validate_state+0x61/0x180 [ 188.744813][ T7490] __x64_sys_unshare+0x31/0x40 [ 188.744854][ T7490] do_syscall_64+0xcd/0x490 [ 188.744898][ T7490] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 188.744929][ T7490] RIP: 0033:0x7fb1e438ebe9 [ 188.744955][ T7490] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 188.744986][ T7490] RSP: 002b:00007fb1e5121038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 188.745024][ T7490] RAX: ffffffffffffffda RBX: 00007fb1e45b5fa0 RCX: 00007fb1e438ebe9 [ 188.745043][ T7490] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 188.745061][ T7490] RBP: 00007fb1e4411e19 R08: 0000000000000000 R09: 0000000000000000 [ 188.745079][ T7490] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 188.745097][ T7490] R13: 00007fb1e45b6038 R14: 00007fb1e45b5fa0 R15: 00007ffffe65a068 [ 188.745139][ T7490] [ 188.745151][ T7490] debugfs: out of free dentries, can not create symlink 'netns-19-4026532684-notrefcnt' [ 189.286321][ T7500] netlink: 330 bytes leftover after parsing attributes in process `syz.1.591'. [ 189.406806][ T7502] sctp: [Deprecated]: syz.0.592 (pid 7502) Use of struct sctp_assoc_value in delayed_ack socket option. [ 189.406806][ T7502] Use struct sctp_sack_info instead [ 189.537311][ T7500] veth0_macvtap: left promiscuous mode [ 190.994063][ T7514] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 191.854889][ T7529] FAULT_INJECTION: forcing a failure. [ 191.854889][ T7529] name failslab, interval 1, probability 0, space 0, times 0 [ 191.887247][ T7529] CPU: 1 UID: 0 PID: 7529 Comm: syz.1.602 Not tainted 6.17.0-rc1-syzkaller-00111-g24ea63ea3877 #0 PREEMPT(full) [ 191.887293][ T7529] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 191.887310][ T7529] Call Trace: [ 191.887320][ T7529] [ 191.887333][ T7529] dump_stack_lvl+0x16c/0x1f0 [ 191.887378][ T7529] should_fail_ex+0x512/0x640 [ 191.887420][ T7529] ? fs_reclaim_acquire+0xae/0x150 [ 191.887469][ T7529] ? ima_alloc_init_template+0xb5/0x720 [ 191.887504][ T7529] should_failslab+0xc2/0x120 [ 191.887544][ T7529] __kmalloc_noprof+0xd2/0x510 [ 191.887582][ T7529] ? find_held_lock+0x2b/0x80 [ 191.887619][ T7529] ima_alloc_init_template+0xb5/0x720 [ 191.887658][ T7529] ? take_dentry_name_snapshot+0x319/0x7d0 [ 191.887710][ T7529] ima_store_measurement+0x1eb/0x5c0 [ 191.887751][ T7529] ? __pfx_ima_store_measurement+0x10/0x10 [ 191.887790][ T7529] ? vfs_getxattr_alloc+0xec/0x340 [ 191.887838][ T7529] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 191.887875][ T7529] process_measurement+0x1ddb/0x23e0 [ 191.887924][ T7529] ? __pfx_process_measurement+0x10/0x10 [ 191.887954][ T7529] ? kasan_save_stack+0x33/0x60 [ 191.887987][ T7529] ? __kasan_slab_alloc+0x89/0x90 [ 191.888024][ T7529] ? security_file_alloc+0x34/0x2b0 [ 191.888063][ T7529] ? init_file+0x93/0x4c0 [ 191.888115][ T7529] ? find_held_lock+0x2b/0x80 [ 191.888211][ T7529] ima_file_mmap+0x1b1/0x1d0 [ 191.888244][ T7529] ? __pfx_ima_file_mmap+0x10/0x10 [ 191.888290][ T7529] security_mmap_file+0x88c/0x990 [ 191.888334][ T7529] vm_mmap_pgoff+0xec/0x470 [ 191.888385][ T7529] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 191.888426][ T7529] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 191.888475][ T7529] ? hugetlbfs_get_inode+0x31f/0x730 [ 191.888524][ T7529] ksys_mmap_pgoff+0x1c8/0x5c0 [ 191.888583][ T7529] __x64_sys_mmap+0x125/0x190 [ 191.888633][ T7529] do_syscall_64+0xcd/0x490 [ 191.888675][ T7529] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 191.888705][ T7529] RIP: 0033:0x7fc33778ebe9 [ 191.888728][ T7529] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 191.888756][ T7529] RSP: 002b:00007fc338574038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 191.888784][ T7529] RAX: ffffffffffffffda RBX: 00007fc3379b5fa0 RCX: 00007fc33778ebe9 [ 191.888804][ T7529] RDX: 00004000000000df RSI: 0000000000000004 RDI: 0000000000000000 [ 191.888823][ T7529] RBP: 00007fc337811e19 R08: 0000000000000401 R09: 0000300000000000 [ 191.888843][ T7529] R10: 0000000000040eb1 R11: 0000000000000246 R12: 0000000000000000 [ 191.888863][ T7529] R13: 00007fc3379b6038 R14: 00007fc3379b5fa0 R15: 00007ffe66976578 [ 191.888905][ T7529] [ 191.916777][ T30] audit: type=1804 audit(1755221602.742:2): pid=7529 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=add_template_measure cause=ENOMEM comm="syz.1.602" name="anon_hugepage" dev="hugetlbfs" ino=14884 res=0 errno=0 [ 192.327363][ T30] audit: type=1800 audit(1755221603.172:3): pid=7538 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.607" name="dbroot" dev="configfs" ino=15425 res=0 errno=0 [ 193.583044][ T7560] FAULT_INJECTION: forcing a failure. [ 193.583044][ T7560] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 193.698955][ T7560] CPU: 1 UID: 0 PID: 7560 Comm: syz.2.622 Not tainted 6.17.0-rc1-syzkaller-00111-g24ea63ea3877 #0 PREEMPT(full) [ 193.699013][ T7560] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 193.699030][ T7560] Call Trace: [ 193.699041][ T7560] [ 193.699052][ T7560] dump_stack_lvl+0x16c/0x1f0 [ 193.699094][ T7560] should_fail_ex+0x512/0x640 [ 193.699137][ T7560] _copy_from_iter+0x463/0x16f0 [ 193.699189][ T7560] ? __pfx__copy_from_iter+0x10/0x10 [ 193.699229][ T7560] ? do_raw_spin_lock+0x12c/0x2b0 [ 193.699277][ T7560] ? find_held_lock+0x2b/0x80 [ 193.699312][ T7560] ? rcu_is_watching+0x12/0xc0 [ 193.699342][ T7560] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 193.699382][ T7560] write_pool_user+0xe8/0x2f0 [ 193.699431][ T7560] ? __pfx_write_pool_user+0x10/0x10 [ 193.699489][ T7560] ? copy_iovec_from_user+0x131/0x170 [ 193.699540][ T7560] do_iter_readv_writev+0x662/0x9e0 [ 193.699578][ T7560] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 193.699618][ T7560] ? bpf_lsm_file_permission+0x9/0x10 [ 193.699660][ T7560] ? security_file_permission+0x71/0x210 [ 193.699700][ T7560] ? rw_verify_area+0xcf/0x6c0 [ 193.699733][ T7560] vfs_writev+0x35f/0xde0 [ 193.699769][ T7560] ? __lock_acquire+0x62e/0x1ce0 [ 193.699810][ T7560] ? __pfx_vfs_writev+0x10/0x10 [ 193.699843][ T7560] ? kmem_cache_free+0x2d1/0x4d0 [ 193.699902][ T7560] ? __fget_files+0x20e/0x3c0 [ 193.699947][ T7560] ? do_writev+0x132/0x340 [ 193.699987][ T7560] do_writev+0x132/0x340 [ 193.700020][ T7560] ? __pfx_do_writev+0x10/0x10 [ 193.700064][ T7560] do_syscall_64+0xcd/0x490 [ 193.700106][ T7560] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 193.700137][ T7560] RIP: 0033:0x7f7865b8ebe9 [ 193.700162][ T7560] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 193.700192][ T7560] RSP: 002b:00007f7863df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 193.700220][ T7560] RAX: ffffffffffffffda RBX: 00007f7865db5fa0 RCX: 00007f7865b8ebe9 [ 193.700239][ T7560] RDX: 0000000000000003 RSI: 00002000000003c0 RDI: 0000000000000005 [ 193.700256][ T7560] RBP: 00007f7865c11e19 R08: 0000000000000000 R09: 0000000000000000 [ 193.700273][ T7560] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 193.700289][ T7560] R13: 00007f7865db6038 R14: 00007f7865db5fa0 R15: 00007ffedde24768 [ 193.700325][ T7560] [ 196.636921][ T7617] FAULT_INJECTION: forcing a failure. [ 196.636921][ T7617] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 196.654539][ T7617] CPU: 0 UID: 0 PID: 7617 Comm: syz.2.632 Not tainted 6.17.0-rc1-syzkaller-00111-g24ea63ea3877 #0 PREEMPT(full) [ 196.654584][ T7617] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 196.654603][ T7617] Call Trace: [ 196.654612][ T7617] [ 196.654624][ T7617] dump_stack_lvl+0x16c/0x1f0 [ 196.654666][ T7617] should_fail_ex+0x512/0x640 [ 196.654714][ T7617] _copy_from_user+0x2e/0xd0 [ 196.654761][ T7617] btf_new_fd+0x70a/0x5490 [ 196.654798][ T7617] ? __lock_acquire+0xb97/0x1ce0 [ 196.654848][ T7617] ? __pfx_btf_new_fd+0x10/0x10 [ 196.654883][ T7617] ? aa_get_newest_label+0xd2/0x250 [ 196.654914][ T7617] ? apparmor_capable+0x114/0x1d0 [ 196.654963][ T7617] ? bpf_lsm_capable+0x9/0x10 [ 196.654993][ T7617] ? security_capable+0x7e/0x260 [ 196.655026][ T7617] ? ns_capable+0xd7/0x110 [ 196.655063][ T7617] __sys_bpf+0x38a/0x4de0 [ 196.655115][ T7617] ? __pfx___sys_bpf+0x10/0x10 [ 196.655174][ T7617] ? do_futex+0x122/0x350 [ 196.655214][ T7617] ? __pfx_do_futex+0x10/0x10 [ 196.655275][ T7617] ? xfd_validate_state+0x61/0x180 [ 196.655320][ T7617] ? __pfx_do_pwritev+0x10/0x10 [ 196.655363][ T7617] __x64_sys_bpf+0x78/0xc0 [ 196.655416][ T7617] ? lockdep_hardirqs_on+0x7c/0x110 [ 196.655456][ T7617] do_syscall_64+0xcd/0x490 [ 196.655498][ T7617] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 196.655530][ T7617] RIP: 0033:0x7f7865b8ebe9 [ 196.655557][ T7617] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 196.655588][ T7617] RSP: 002b:00007f7863df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 196.655619][ T7617] RAX: ffffffffffffffda RBX: 00007f7865db5fa0 RCX: 00007f7865b8ebe9 [ 196.655640][ T7617] RDX: 0000000000000026 RSI: 0000000000000000 RDI: 0000000000000012 [ 196.655659][ T7617] RBP: 00007f7865c11e19 R08: 0000000000000000 R09: 0000000000000000 [ 196.655677][ T7617] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 196.655696][ T7617] R13: 00007f7865db6038 R14: 00007f7865db5fa0 R15: 00007ffedde24768 [ 196.655735][ T7617] [ 199.963016][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 199.970413][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 200.171041][ T7677] netlink: 8 bytes leftover after parsing attributes in process `syz.0.652'. [ 200.214418][ T7677] netlink: 8 bytes leftover after parsing attributes in process `syz.0.652'. [ 200.713501][ T7691] netlink: 330 bytes leftover after parsing attributes in process `syz.2.654'. [ 200.754673][ T7691] veth0_macvtap: left promiscuous mode [ 200.980957][ T7693] FAULT_INJECTION: forcing a failure. [ 200.980957][ T7693] name failslab, interval 1, probability 0, space 0, times 0 [ 201.025811][ T7693] CPU: 0 UID: 0 PID: 7693 Comm: syz.2.655 Not tainted 6.17.0-rc1-syzkaller-00111-g24ea63ea3877 #0 PREEMPT(full) [ 201.025859][ T7693] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 201.025879][ T7693] Call Trace: [ 201.025891][ T7693] [ 201.025913][ T7693] dump_stack_lvl+0x16c/0x1f0 [ 201.025962][ T7693] should_fail_ex+0x512/0x640 [ 201.026013][ T7693] should_failslab+0xc2/0x120 [ 201.026055][ T7693] __kmalloc_cache_noprof+0x6a/0x3e0 [ 201.026087][ T7693] ? __pfx___might_resched+0x10/0x10 [ 201.026120][ T7693] ? __hw_addr_add_ex+0x3c9/0x7c0 [ 201.026167][ T7693] ? rcu_is_watching+0x12/0xc0 [ 201.026204][ T7693] __hw_addr_add_ex+0x3c9/0x7c0 [ 201.026261][ T7693] ? __pfx___hw_addr_add_ex+0x10/0x10 [ 201.026310][ T7693] ? __mutex_unlock_slowpath+0x141/0x800 [ 201.026363][ T7693] ? __pfx_ppp_setup+0x10/0x10 [ 201.026398][ T7693] dev_addr_init+0x161/0x250 [ 201.026433][ T7693] ? __pfx_dev_addr_init+0x10/0x10 [ 201.026479][ T7693] alloc_netdev_mqs+0x35e/0x1530 [ 201.026530][ T7693] ppp_ioctl+0x1761/0x2660 [ 201.026576][ T7693] ? find_held_lock+0x2b/0x80 [ 201.026605][ T7693] ? __pfx_ppp_ioctl+0x10/0x10 [ 201.026656][ T7693] ? __fget_files+0x20e/0x3c0 [ 201.026693][ T7693] ? __pfx_ppp_ioctl+0x10/0x10 [ 201.026733][ T7693] __x64_sys_ioctl+0x18e/0x210 [ 201.026777][ T7693] do_syscall_64+0xcd/0x490 [ 201.026816][ T7693] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 201.026846][ T7693] RIP: 0033:0x7f7865b8ebe9 [ 201.026873][ T7693] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 201.026912][ T7693] RSP: 002b:00007f7863df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 201.026941][ T7693] RAX: ffffffffffffffda RBX: 00007f7865db5fa0 RCX: 00007f7865b8ebe9 [ 201.026962][ T7693] RDX: 0000000000000000 RSI: 00000000c004743e RDI: 0000000000000003 [ 201.026981][ T7693] RBP: 00007f7865c11e19 R08: 0000000000000000 R09: 0000000000000000 [ 201.026999][ T7693] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 201.027017][ T7693] R13: 00007f7865db6038 R14: 00007f7865db5fa0 R15: 00007ffedde24768 [ 201.027057][ T7693] [ 201.904218][ T7711] FAULT_INJECTION: forcing a failure. [ 201.904218][ T7711] name failslab, interval 1, probability 0, space 0, times 0 [ 201.929346][ T7711] CPU: 1 UID: 0 PID: 7711 Comm: syz.0.664 Not tainted 6.17.0-rc1-syzkaller-00111-g24ea63ea3877 #0 PREEMPT(full) [ 201.929394][ T7711] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 201.929413][ T7711] Call Trace: [ 201.929424][ T7711] [ 201.929435][ T7711] dump_stack_lvl+0x16c/0x1f0 [ 201.929479][ T7711] should_fail_ex+0x512/0x640 [ 201.929521][ T7711] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 201.929564][ T7711] should_failslab+0xc2/0x120 [ 201.929606][ T7711] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 201.929645][ T7711] ? alloc_inode+0x61/0x240 [ 201.929692][ T7711] ? __pfx_debugfs_alloc_inode+0x10/0x10 [ 201.929725][ T7711] alloc_inode+0x61/0x240 [ 201.929768][ T7711] new_inode+0x22/0x1c0 [ 201.929816][ T7711] debugfs_create_symlink+0xd3/0x320 [ 201.929854][ T7711] ref_tracker_dir_symlink+0x255/0x360 [ 201.929902][ T7711] ? __pfx_ref_tracker_dir_symlink+0x10/0x10 [ 201.930023][ T7711] net_ns_net_init+0x19a/0x220 [ 201.930064][ T7711] ? __pfx_net_ns_net_init+0x10/0x10 [ 201.930101][ T7711] ops_init+0x1e2/0x5f0 [ 201.930146][ T7711] setup_net+0x10f/0x380 [ 201.930183][ T7711] ? lockdep_init_map_type+0x5c/0x280 [ 201.930226][ T7711] ? __pfx_setup_net+0x10/0x10 [ 201.930273][ T7711] ? debug_mutex_init+0x37/0x70 [ 201.930310][ T7711] copy_net_ns+0x2a6/0x5f0 [ 201.930360][ T7711] create_new_namespaces+0x3ea/0xa90 [ 201.930450][ T7711] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 201.930489][ T7711] ksys_unshare+0x45b/0xa40 [ 201.930532][ T7711] ? __pfx_ksys_unshare+0x10/0x10 [ 201.930576][ T7711] ? xfd_validate_state+0x61/0x180 [ 201.930632][ T7711] __x64_sys_unshare+0x31/0x40 [ 201.930673][ T7711] do_syscall_64+0xcd/0x490 [ 201.930735][ T7711] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 201.930767][ T7711] RIP: 0033:0x7f630b78ebe9 [ 201.930793][ T7711] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 201.930822][ T7711] RSP: 002b:00007f630c630038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 201.930851][ T7711] RAX: ffffffffffffffda RBX: 00007f630b9b5fa0 RCX: 00007f630b78ebe9 [ 201.930872][ T7711] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 201.930890][ T7711] RBP: 00007f630b811e19 R08: 0000000000000000 R09: 0000000000000000 [ 201.930908][ T7711] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 201.930934][ T7711] R13: 00007f630b9b6038 R14: 00007f630b9b5fa0 R15: 00007fff682016b8 [ 201.930975][ T7711] [ 201.933321][ T7711] debugfs: out of free dentries, can not create symlink 'netns-1c-4026532684-notrefcnt' [ 203.061997][ T7737] FAULT_INJECTION: forcing a failure. [ 203.061997][ T7737] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 203.079034][ T7737] CPU: 0 UID: 0 PID: 7737 Comm: syz.1.672 Not tainted 6.17.0-rc1-syzkaller-00111-g24ea63ea3877 #0 PREEMPT(full) [ 203.079083][ T7737] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 203.079101][ T7737] Call Trace: [ 203.079111][ T7737] [ 203.079124][ T7737] dump_stack_lvl+0x16c/0x1f0 [ 203.079168][ T7737] should_fail_ex+0x512/0x640 [ 203.079217][ T7737] should_fail_alloc_page+0xe7/0x130 [ 203.079262][ T7737] prepare_alloc_pages+0x3c2/0x610 [ 203.079315][ T7737] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 203.079357][ T7737] ? css_rstat_updated+0x1c2/0x510 [ 203.079391][ T7737] ? __pfx_css_rstat_updated+0x10/0x10 [ 203.079436][ T7737] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 203.079479][ T7737] ? register_lock_class+0x41/0x4c0 [ 203.079533][ T7737] ? __lock_acquire+0xb97/0x1ce0 [ 203.079582][ T7737] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 203.079630][ T7737] ? policy_nodemask+0xea/0x4e0 [ 203.079674][ T7737] alloc_pages_mpol+0x1fb/0x550 [ 203.079717][ T7737] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 203.079770][ T7737] alloc_pages_noprof+0x131/0x390 [ 203.079812][ T7737] __pmd_alloc+0x3b/0x930 [ 203.079863][ T7737] huge_pte_alloc+0x41d/0x5b0 [ 203.079909][ T7737] hugetlb_fault+0x373/0x2f40 [ 203.079947][ T7737] ? __pfx_hugetlb_fault+0x10/0x10 [ 203.079995][ T7737] ? find_vma+0xbf/0x140 [ 203.080034][ T7737] ? __pfx_find_vma+0x10/0x10 [ 203.080080][ T7737] handle_mm_fault+0xbfa/0xd10 [ 203.080115][ T7737] ? __bpf_trace_exceptions+0x1/0x40 [ 203.080164][ T7737] do_user_addr_fault+0x7a6/0x1370 [ 203.080215][ T7737] ? rcu_is_watching+0x12/0xc0 [ 203.080251][ T7737] exc_page_fault+0x5c/0xb0 [ 203.080289][ T7737] asm_exc_page_fault+0x26/0x30 [ 203.080318][ T7737] RIP: 0010:rep_movs_alternative+0x30/0x90 [ 203.080348][ T7737] Code: 83 f9 08 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 [ 203.080378][ T7737] RSP: 0018:ffffc900183d7cf8 EFLAGS: 00050246 [ 203.080403][ T7737] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000008 [ 203.080421][ T7737] RDX: ffffed100e91b259 RSI: 0000000000000000 RDI: ffff8880748d92c0 [ 203.080440][ T7737] RBP: 0000000000000008 R08: 0000000000000001 R09: ffffed100e91b258 [ 203.080458][ T7737] R10: ffff8880748d92c7 R11: 0000000000000000 R12: 0000000000000000 [ 203.080476][ T7737] R13: ffff8880748d92c0 R14: 0000000000000000 R15: 0000000000000008 [ 203.080518][ T7737] _copy_from_user+0x98/0xd0 [ 203.080568][ T7737] sctp_setsockopt+0x2045/0xb870 [ 203.080622][ T7737] ? __pfx_sctp_setsockopt+0x10/0x10 [ 203.080665][ T7737] ? find_held_lock+0x2b/0x80 [ 203.080699][ T7737] ? aa_sock_opt_perm+0xfd/0x1c0 [ 203.080747][ T7737] ? sock_common_setsockopt+0x2e/0xf0 [ 203.080793][ T7737] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 203.080842][ T7737] do_sock_setsockopt+0xf3/0x1d0 [ 203.080902][ T7737] __sys_setsockopt+0x120/0x1a0 [ 203.080947][ T7737] __x64_sys_setsockopt+0xbd/0x160 [ 203.080983][ T7737] ? do_syscall_64+0x91/0x490 [ 203.081021][ T7737] ? lockdep_hardirqs_on+0x7c/0x110 [ 203.081054][ T7737] do_syscall_64+0xcd/0x490 [ 203.081089][ T7737] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 203.081118][ T7737] RIP: 0033:0x7fc33778ebe9 [ 203.081141][ T7737] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 203.081169][ T7737] RSP: 002b:00007fc338574038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 203.081197][ T7737] RAX: ffffffffffffffda RBX: 00007fc3379b5fa0 RCX: 00007fc33778ebe9 [ 203.081215][ T7737] RDX: 0000000000000081 RSI: 0000010000000084 RDI: 0000000000000003 [ 203.081234][ T7737] RBP: 00007fc337811e19 R08: 0000000000000008 R09: 0000000000000000 [ 203.081252][ T7737] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 203.081270][ T7737] R13: 00007fc3379b6038 R14: 00007fc3379b5fa0 R15: 00007ffe66976578 [ 203.081311][ T7737] [ 203.531303][ T7736] netlink: 326 bytes leftover after parsing attributes in process `syz.0.671'. [ 203.898923][ T7740] random: crng reseeded on system resumption [ 203.991760][ T7740] Restarting kernel threads ... [ 204.010763][ T7740] Done restarting kernel threads. [ 204.774950][ T7756] [U]  [ 204.778028][ T7756] [U] [ 204.780773][ T7756] [U] [ 204.783503][ T7756] [U] [ 204.797066][ T7756] [U] [ 204.799894][ T7756] [U] [ 204.802634][ T7756] [U] [ 204.805463][ T7756] [U] [ 204.848973][ T7756] [U] [ 204.851942][ T7756] [U] [ 204.854689][ T7756] [U] [ 204.857433][ T7756] [U] [ 204.865584][ T7756] [U] [ 204.868374][ T7756] [U] [ 204.871200][ T7756] [U] [ 204.873949][ T7756] [U] [ 204.899561][ T7756] [U] [ 204.902372][ T7756] [U] [ 204.905227][ T7756] [U] [ 204.907979][ T7756] [U] [ 204.923904][ T7756] [U] [ 204.926683][ T7756] [U] [ 204.929606][ T7756] [U] [ 204.932362][ T7756] [U] [ 204.955992][ T7756] [U] [ 204.958886][ T7756] [U] [ 204.961635][ T7756] [U] [ 204.964378][ T7756] [U] [ 204.993764][ T7756] [U] [ 204.996732][ T7756] [U] [ 204.999473][ T7756] [U] [ 205.002313][ T7756] [U] [ 205.006231][ T7756] [U] [ 205.009046][ T7756] [U] [ 205.011884][ T7756] [U] [ 205.014634][ T7756] [U] [ 205.030098][ T7756] [U] [ 205.032884][ T7756] [U] [ 205.035631][ T7756] [U] [ 205.038551][ T7756] [U] [ 205.078409][ T7756] [U] [ 205.081198][ T7756] [U] [ 205.083939][ T7756] [U] [ 205.086696][ T7756] [U] [ 205.097954][ T7756] [U] [ 205.100739][ T7756] [U] [ 205.103478][ T7756] [U] [ 205.106214][ T7756] [U] [ 205.127083][ T7756] [U] [ 205.129870][ T7756] [U] [ 205.132799][ T7756] [U] [ 205.135541][ T7756] [U] [ 205.141626][ T7761] FAULT_INJECTION: forcing a failure. [ 205.141626][ T7761] name failslab, interval 1, probability 0, space 0, times 0 [ 205.161418][ T7756] [U] [ 205.164209][ T7756] [U] [ 205.166957][ T7756] [U] [ 205.169692][ T7756] [U] [ 205.180371][ T7761] CPU: 1 UID: 0 PID: 7761 Comm: syz.2.681 Not tainted 6.17.0-rc1-syzkaller-00111-g24ea63ea3877 #0 PREEMPT(full) [ 205.180418][ T7761] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 205.180435][ T7761] Call Trace: [ 205.180445][ T7761] [ 205.180456][ T7761] dump_stack_lvl+0x16c/0x1f0 [ 205.180499][ T7761] should_fail_ex+0x512/0x640 [ 205.180541][ T7761] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 205.180583][ T7761] should_failslab+0xc2/0x120 [ 205.180623][ T7761] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 205.180660][ T7761] ? __d_alloc+0x32/0xae0 [ 205.180704][ T7761] __d_alloc+0x32/0xae0 [ 205.180756][ T7761] d_alloc_parallel+0x111/0x1480 [ 205.180829][ T7761] ? __pfx_d_alloc_parallel+0x10/0x10 [ 205.180881][ T7761] ? lockdep_init_map_type+0x5c/0x280 [ 205.180933][ T7761] ? lockdep_init_map_type+0x5c/0x280 [ 205.180983][ T7761] __lookup_slow+0x193/0x460 [ 205.181030][ T7761] ? __pfx___lookup_slow+0x10/0x10 [ 205.181089][ T7761] ? perf_trace_mm_compaction_try_to_compact_pages+0x410/0x4b0 [ 205.181145][ T7761] ? perf_trace_mm_compaction_try_to_compact_pages+0x410/0x4b0 [ 205.181191][ T7761] ? d_lookup+0xe7/0x190 [ 205.181243][ T7761] lookup_noperm+0xe1/0x110 [ 205.181291][ T7761] simple_start_creating+0xd1/0x1b0 [ 205.181328][ T7761] start_creating.part.0+0x82/0x190 [ 205.181373][ T7761] __debugfs_create_file+0xa7/0x6b0 [ 205.181414][ T7761] debugfs_create_file_full+0x41/0x60 [ 205.181454][ T7761] ref_tracker_dir_debugfs+0x19d/0x290 [ 205.181499][ T7761] ? __pfx_ref_tracker_dir_debugfs+0x10/0x10 [ 205.181582][ T7761] ? lockdep_init_map_type+0x5c/0x280 [ 205.181631][ T7761] preinit_net+0x47f/0x8f0 [ 205.181676][ T7761] copy_net_ns+0x1da/0x5f0 [ 205.181724][ T7761] create_new_namespaces+0x3ea/0xa90 [ 205.181769][ T7761] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 205.181808][ T7761] ksys_unshare+0x45b/0xa40 [ 205.181857][ T7761] ? __pfx_ksys_unshare+0x10/0x10 [ 205.181899][ T7761] ? xfd_validate_state+0x61/0x180 [ 205.181955][ T7761] __x64_sys_unshare+0x31/0x40 [ 205.181995][ T7761] do_syscall_64+0xcd/0x490 [ 205.182036][ T7761] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 205.182067][ T7761] RIP: 0033:0x7f7865b8ebe9 [ 205.182091][ T7761] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 205.182120][ T7761] RSP: 002b:00007f7863df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 205.182158][ T7761] RAX: ffffffffffffffda RBX: 00007f7865db5fa0 RCX: 00007f7865b8ebe9 [ 205.182177][ T7761] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 205.182201][ T7761] RBP: 00007f7865c11e19 R08: 0000000000000000 R09: 0000000000000000 [ 205.182220][ T7761] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 205.182238][ T7761] R13: 00007f7865db6038 R14: 00007f7865db5fa0 R15: 00007ffedde24768 [ 205.182279][ T7761] [ 205.193273][ T7756] [U] [ 205.473998][ T7756] [U] [ 205.476716][ T7756] [U] [ 205.479449][ T7756] [U] [ 205.497080][ T7756] [U] [ 205.499869][ T7756] [U] [ 205.502616][ T7756] [U] [ 205.505439][ T7756] [U] [ 205.531739][ T7756] [U] [ 205.534604][ T7756] [U] [ 205.537334][ T7756] [U] [ 205.540065][ T7756] [U] [ 205.587084][ T7756] [U] [ 205.589868][ T7756] [U] [ 205.592610][ T7756] [U] [ 205.595343][ T7756] [U] [ 205.652105][ T7756] [U] [ 205.654895][ T7756] [U] [ 205.657634][ T7756] [U] [ 205.660462][ T7756] [U] [ 205.797083][ T7756] [U] [ 205.800029][ T7756] [U] [ 205.802784][ T7756] [U] [ 205.805611][ T7756] [U] [ 205.865278][ T7768] FAULT_INJECTION: forcing a failure. [ 205.865278][ T7768] name failslab, interval 1, probability 0, space 0, times 0 [ 205.879484][ T7768] CPU: 1 UID: 0 PID: 7768 Comm: syz.2.686 Not tainted 6.17.0-rc1-syzkaller-00111-g24ea63ea3877 #0 PREEMPT(full) [ 205.879531][ T7768] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 205.879552][ T7768] Call Trace: [ 205.879562][ T7768] [ 205.879573][ T7768] dump_stack_lvl+0x16c/0x1f0 [ 205.879619][ T7768] should_fail_ex+0x512/0x640 [ 205.879660][ T7768] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 205.879700][ T7768] should_failslab+0xc2/0x120 [ 205.879740][ T7768] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 205.879778][ T7768] ? __kernfs_new_node+0xd2/0x8e0 [ 205.879824][ T7768] __kernfs_new_node+0xd2/0x8e0 [ 205.879866][ T7768] ? __pfx___kernfs_new_node+0x10/0x10 [ 205.879915][ T7768] ? find_held_lock+0x2b/0x80 [ 205.879948][ T7768] ? kernfs_root+0xee/0x2a0 [ 205.879994][ T7768] kernfs_new_node+0x13c/0x1e0 [ 205.880044][ T7768] __kernfs_create_file+0x53/0x350 [ 205.880079][ T7768] sysfs_add_file_mode_ns+0x207/0x3c0 [ 205.880135][ T7768] internal_create_group+0x578/0xf30 [ 205.880185][ T7768] ? __pfx_internal_create_group+0x10/0x10 [ 205.880232][ T7768] ? kernfs_create_link+0x1bd/0x240 [ 205.880270][ T7768] internal_create_groups+0x9d/0x150 [ 205.880315][ T7768] device_add+0x77f/0x1aa0 [ 205.880366][ T7768] ? __pfx_device_add+0x10/0x10 [ 205.880413][ T7768] ? lockdep_init_map_type+0x5c/0x280 [ 205.880455][ T7768] ? __init_waitqueue_head+0xca/0x150 [ 205.880513][ T7768] netdev_register_kobject+0x1a9/0x3d0 [ 205.880563][ T7768] register_netdevice+0x13dc/0x2270 [ 205.880615][ T7768] ? __pfx_register_netdevice+0x10/0x10 [ 205.880670][ T7768] ppp_dev_configure+0xa1e/0xd40 [ 205.880721][ T7768] ppp_ioctl+0x17e0/0x2660 [ 205.880765][ T7768] ? find_held_lock+0x2b/0x80 [ 205.880794][ T7768] ? __pfx_ppp_ioctl+0x10/0x10 [ 205.880843][ T7768] ? __fget_files+0x20e/0x3c0 [ 205.880882][ T7768] ? __pfx_ppp_ioctl+0x10/0x10 [ 205.880924][ T7768] __x64_sys_ioctl+0x18e/0x210 [ 205.880975][ T7768] do_syscall_64+0xcd/0x490 [ 205.881017][ T7768] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 205.881048][ T7768] RIP: 0033:0x7f7865b8ebe9 [ 205.881074][ T7768] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 205.881111][ T7768] RSP: 002b:00007f7863df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 205.881141][ T7768] RAX: ffffffffffffffda RBX: 00007f7865db5fa0 RCX: 00007f7865b8ebe9 [ 205.881161][ T7768] RDX: 0000000000000000 RSI: 00000000c004743e RDI: 0000000000000005 [ 205.881178][ T7768] RBP: 00007f7865c11e19 R08: 0000000000000000 R09: 0000000000000000 [ 205.881196][ T7768] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 205.881213][ T7768] R13: 00007f7865db6038 R14: 00007f7865db5fa0 R15: 00007ffedde24768 [ 205.881253][ T7768] [ 205.895563][ T7756] [U] [ 206.163792][ T7756] [U] [ 206.166528][ T7756] [U] [ 206.169237][ T7756] [U] [ 206.199456][ T7756] [U] [ 207.591405][ T7795] FAULT_INJECTION: forcing a failure. [ 207.591405][ T7795] name failslab, interval 1, probability 0, space 0, times 0 [ 207.604459][ T7795] CPU: 0 UID: 0 PID: 7795 Comm: syz.3.696 Not tainted 6.17.0-rc1-syzkaller-00111-g24ea63ea3877 #0 PREEMPT(full) [ 207.604508][ T7795] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 207.604525][ T7795] Call Trace: [ 207.604535][ T7795] [ 207.604544][ T7795] dump_stack_lvl+0x16c/0x1f0 [ 207.604580][ T7795] should_fail_ex+0x512/0x640 [ 207.604618][ T7795] should_failslab+0xc2/0x120 [ 207.604650][ T7795] __kmalloc_cache_noprof+0x6a/0x3e0 [ 207.604675][ T7795] ? tipc_service_create+0xb1/0x350 [ 207.604709][ T7795] tipc_service_create+0xb1/0x350 [ 207.604736][ T7795] ? tipc_service_find+0x161/0x1c0 [ 207.604766][ T7795] tipc_nametbl_subscribe+0x892/0xb00 [ 207.604804][ T7795] ? __pfx_tipc_nametbl_subscribe+0x10/0x10 [ 207.604840][ T7795] ? lockdep_init_map_type+0x5c/0x280 [ 207.604878][ T7795] tipc_sub_subscribe+0x59a/0x870 [ 207.604909][ T7795] tipc_conn_rcv_sub+0x1fa/0x400 [ 207.604936][ T7795] tipc_topsrv_kern_subscr+0x20b/0x3c0 [ 207.604962][ T7795] ? __pfx_tipc_topsrv_kern_subscr+0x10/0x10 [ 207.604991][ T7795] ? net_generic+0xea/0x2a0 [ 207.605022][ T7795] tipc_group_create+0x4ab/0x660 [ 207.605052][ T7795] tipc_setsockopt+0x7f0/0xdb0 [ 207.605086][ T7795] ? __pfx_tipc_setsockopt+0x10/0x10 [ 207.605139][ T7795] ? __pfx_tipc_setsockopt+0x10/0x10 [ 207.605171][ T7795] do_sock_setsockopt+0xf3/0x1d0 [ 207.605210][ T7795] __sys_setsockopt+0x120/0x1a0 [ 207.605244][ T7795] __x64_sys_setsockopt+0xbd/0x160 [ 207.605270][ T7795] ? do_syscall_64+0x91/0x490 [ 207.605298][ T7795] ? lockdep_hardirqs_on+0x7c/0x110 [ 207.605325][ T7795] do_syscall_64+0xcd/0x490 [ 207.605358][ T7795] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 207.605382][ T7795] RIP: 0033:0x7fb1e438ebe9 [ 207.605401][ T7795] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 207.605424][ T7795] RSP: 002b:00007fb1e5121038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 207.605447][ T7795] RAX: ffffffffffffffda RBX: 00007fb1e45b5fa0 RCX: 00007fb1e438ebe9 [ 207.605462][ T7795] RDX: 0000000000000087 RSI: 000000000000010f RDI: 0000000000000004 [ 207.605476][ T7795] RBP: 00007fb1e4411e19 R08: 0000000000000014 R09: 0000000000000000 [ 207.605490][ T7795] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 207.605504][ T7795] R13: 00007fb1e45b6038 R14: 00007fb1e45b5fa0 R15: 00007ffffe65a068 [ 207.605535][ T7795] [ 207.605548][ T7795] tipc: Service creation failed, no memory [ 207.850896][ T7795] tipc: Failed to subscribe for {668977,0,4294967295} [ 208.261496][ T7804] process 'syz.1.705' launched ':,' with NULL argv: empty string added [ 208.603587][ T7812] netlink: 146 bytes leftover after parsing attributes in process `syz.1.700'. [ 208.994704][ T7819] netlink: 330 bytes leftover after parsing attributes in process `syz.3.702'. [ 209.147366][ T7819] veth0_macvtap: left promiscuous mode [ 210.318633][ T7842] netlink: 20 bytes leftover after parsing attributes in process `syz.1.711'. [ 211.941145][ T7870] netlink: 326 bytes leftover after parsing attributes in process `syz.2.719'. [ 211.974490][ T7872] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 212.469947][ T7881] netlink: 206 bytes leftover after parsing attributes in process `syz.2.725'. [ 212.518836][ T7883] fanotify: failed to encode fid (type=0, len=0, err=-2) [ 213.026008][ T7899] netlink: 12 bytes leftover after parsing attributes in process `syz.0.731'. [ 213.051186][ T7899] netlink: 12 bytes leftover after parsing attributes in process `syz.0.731'. [ 213.138590][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 214.183694][ T7923] Invalid ELF header magic: != ELF [ 214.989611][ T7938] netlink: 338 bytes leftover after parsing attributes in process `syz.3.746'. [ 215.559229][ T7952] netlink: 4 bytes leftover after parsing attributes in process `syz.3.751'. [ 215.589982][ T7952] netlink: 354 bytes leftover after parsing attributes in process `syz.3.751'. [ 215.851331][ T7958] netlink: 350 bytes leftover after parsing attributes in process `syz.3.753'. [ 216.192922][ T7964] netlink: 330 bytes leftover after parsing attributes in process `syz.0.758'. [ 216.897518][ T7966] binder: 7965:7966 ioctl c0306201 0 returned -14 [ 217.493908][ T7971] Process accounting resumed [ 217.752529][ T7996] i2c i2c-0: dvb_frontend_start: failed to start kthread (-4) [ 218.180356][ T8009] netlink: 266 bytes leftover after parsing attributes in process `syz.3.772'. [ 218.202671][ T8009] IPv6: NLM_F_CREATE should be specified when creating new route [ 218.636004][ T8017] __vm_enough_memory: pid: 8017, comm: syz.3.774, bytes: 4398046511104 not enough memory for the allocation [ 218.986414][ T8023] netlink: 'syz.1.776': attribute type 4 has an invalid length. [ 219.035234][ T8023] netlink: 314 bytes leftover after parsing attributes in process `syz.1.776'. [ 219.695676][ T8032] netlink: 342 bytes leftover after parsing attributes in process `syz.1.778'. [ 219.761525][ T8032] IPv6: NLM_F_CREATE should be specified when creating new route [ 219.779917][ T8032] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 219.787667][ T8032] IPv6: NLM_F_CREATE should be set when creating new route [ 219.795087][ T8032] IPv6: NLM_F_CREATE should be set when creating new route [ 219.837577][ T8034] netlink: 330 bytes leftover after parsing attributes in process `syz.2.782'. [ 220.375826][ T8047] netlink: 'syz.2.786': attribute type 27 has an invalid length. [ 220.387597][ T8041] FAULT_INJECTION: forcing a failure. [ 220.387597][ T8041] name failslab, interval 1, probability 0, space 0, times 0 [ 220.401650][ T8047] netlink: 334 bytes leftover after parsing attributes in process `syz.2.786'. [ 220.414886][ T8041] CPU: 1 UID: 0 PID: 8041 Comm: syz.1.784 Not tainted 6.17.0-rc1-syzkaller-00111-g24ea63ea3877 #0 PREEMPT(full) [ 220.414935][ T8041] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 220.414954][ T8041] Call Trace: [ 220.414964][ T8041] [ 220.414976][ T8041] dump_stack_lvl+0x16c/0x1f0 [ 220.415022][ T8041] should_fail_ex+0x512/0x640 [ 220.415063][ T8041] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 220.415104][ T8041] should_failslab+0xc2/0x120 [ 220.415144][ T8041] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 220.415182][ T8041] ? __kernfs_new_node+0xd2/0x8e0 [ 220.415228][ T8041] __kernfs_new_node+0xd2/0x8e0 [ 220.415269][ T8041] ? __lock_acquire+0x62e/0x1ce0 [ 220.415309][ T8041] ? __pfx___kernfs_new_node+0x10/0x10 [ 220.415359][ T8041] ? find_held_lock+0x2b/0x80 [ 220.415389][ T8041] ? kernfs_root+0xee/0x2a0 [ 220.415438][ T8041] kernfs_new_node+0x13c/0x1e0 [ 220.415485][ T8041] __kernfs_create_file+0x53/0x350 [ 220.415524][ T8041] sysfs_add_file_mode_ns+0x207/0x3c0 [ 220.415572][ T8041] internal_create_group+0x578/0xf30 [ 220.415621][ T8041] ? __pfx_internal_create_group+0x10/0x10 [ 220.415664][ T8041] ? kernfs_create_link+0x1bd/0x240 [ 220.415699][ T8041] internal_create_groups+0x9d/0x150 [ 220.415748][ T8041] device_add+0x77f/0x1aa0 [ 220.415795][ T8041] ? __pfx_device_add+0x10/0x10 [ 220.415836][ T8041] ? lockdep_init_map_type+0x5c/0x280 [ 220.415874][ T8041] ? __init_waitqueue_head+0xca/0x150 [ 220.415931][ T8041] netdev_register_kobject+0x1a9/0x3d0 [ 220.415980][ T8041] register_netdevice+0x13dc/0x2270 [ 220.416032][ T8041] ? __pfx_register_netdevice+0x10/0x10 [ 220.416084][ T8041] br_add_bridge+0x9a/0xf0 [ 220.416118][ T8041] br_ioctl_stub+0x482/0x4c0 [ 220.416160][ T8041] ? __pfx_br_ioctl_stub+0x10/0x10 [ 220.416198][ T8041] ? __pfx___mutex_lock+0x10/0x10 [ 220.416257][ T8041] ? __pfx_br_ioctl_stub+0x10/0x10 [ 220.416298][ T8041] br_ioctl_call+0x50/0xa0 [ 220.416330][ T8041] sock_ioctl+0x365/0x6b0 [ 220.416359][ T8041] ? __pfx_sock_ioctl+0x10/0x10 [ 220.416383][ T8041] ? hook_file_ioctl_common+0x145/0x410 [ 220.416434][ T8041] ? __fget_files+0x20e/0x3c0 [ 220.416472][ T8041] ? __pfx_sock_ioctl+0x10/0x10 [ 220.416498][ T8041] __x64_sys_ioctl+0x18e/0x210 [ 220.416546][ T8041] do_syscall_64+0xcd/0x490 [ 220.416585][ T8041] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 220.416611][ T8041] RIP: 0033:0x7fc33778ebe9 [ 220.416634][ T8041] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 220.416662][ T8041] RSP: 002b:00007fc338574038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 220.416690][ T8041] RAX: ffffffffffffffda RBX: 00007fc3379b5fa0 RCX: 00007fc33778ebe9 [ 220.416708][ T8041] RDX: 0000000000000004 RSI: 00000000000089a0 RDI: 0000000000000005 [ 220.416732][ T8041] RBP: 00007fc337811e19 R08: 0000000000000000 R09: 0000000000000000 [ 220.416749][ T8041] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 220.416765][ T8041] R13: 00007fc3379b6038 R14: 00007fc3379b5fa0 R15: 00007ffe66976578 [ 220.416804][ T8041] [ 220.780593][ T8051] netlink: 330 bytes leftover after parsing attributes in process `syz.0.788'. [ 221.677305][ T8072] netlink: 338 bytes leftover after parsing attributes in process `syz.0.796'. [ 221.731578][ T8072] bridge0: port 2(bridge_slave_1) entered disabled state [ 221.740988][ T8072] bridge0: port 1(bridge_slave_0) entered disabled state [ 222.277607][ T8083] ptp: physical clock is free running [ 222.472921][ T8088] netlink: 'syz.2.803': attribute type 21 has an invalid length. [ 222.487468][ T8088] netlink: 326 bytes leftover after parsing attributes in process `syz.2.803'. [ 222.603408][ T5874] Bluetooth: hci2: command 0x0406 tx timeout [ 222.610321][ T5874] Bluetooth: hci3: command 0x0406 tx timeout [ 222.746895][ T8097] netlink: 28 bytes leftover after parsing attributes in process `syz.1.806'. [ 222.842785][ T5186] Bluetooth: hci0: command 0x0406 tx timeout [ 222.849543][ T5874] Bluetooth: hci1: command 0x0406 tx timeout [ 223.169554][ T8101] netlink: 146 bytes leftover after parsing attributes in process `syz.3.807'. [ 223.283056][ T8113] ================================================================== [ 223.291192][ T8113] BUG: KASAN: slab-use-after-free in dvb_device_open+0x36a/0x3b0 [ 223.298973][ T8113] Read of size 8 at addr ffff888140a9de18 by task syz.1.812/8113 [ 223.306823][ T8113] [ 223.309189][ T8113] CPU: 1 UID: 0 PID: 8113 Comm: syz.1.812 Not tainted 6.17.0-rc1-syzkaller-00111-g24ea63ea3877 #0 PREEMPT(full) [ 223.309223][ T8113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 223.309239][ T8113] Call Trace: [ 223.309248][ T8113] [ 223.309257][ T8113] dump_stack_lvl+0x116/0x1f0 [ 223.309291][ T8113] print_report+0xcd/0x630 [ 223.309320][ T8113] ? __virt_addr_valid+0x81/0x610 [ 223.309348][ T8113] ? __phys_addr+0xe8/0x180 [ 223.309376][ T8113] ? dvb_device_open+0x36a/0x3b0 [ 223.309408][ T8113] kasan_report+0xe0/0x110 [ 223.309437][ T8113] ? dvb_device_open+0x36a/0x3b0 [ 223.309470][ T8113] ? __pfx_dvb_device_open+0x10/0x10 [ 223.309502][ T8113] dvb_device_open+0x36a/0x3b0 [ 223.309534][ T8113] ? __pfx_dvb_device_open+0x10/0x10 [ 223.309565][ T8113] chrdev_open+0x231/0x6a0 [ 223.309594][ T8113] ? __pfx_apparmor_file_open+0x10/0x10 [ 223.309620][ T8113] ? __pfx_chrdev_open+0x10/0x10 [ 223.309649][ T8113] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 223.309678][ T8113] do_dentry_open+0x97f/0x1530 [ 223.309712][ T8113] ? __pfx_chrdev_open+0x10/0x10 [ 223.309744][ T8113] vfs_open+0x82/0x3f0 [ 223.309778][ T8113] path_openat+0x1de4/0x2cb0 [ 223.309809][ T8113] ? __pfx_path_openat+0x10/0x10 [ 223.309839][ T8113] do_filp_open+0x20b/0x470 [ 223.309865][ T8113] ? __pfx_do_filp_open+0x10/0x10 [ 223.309900][ T8113] ? alloc_fd+0x471/0x7d0 [ 223.309927][ T8113] do_sys_openat2+0x11b/0x1d0 [ 223.309962][ T8113] ? __pfx_do_sys_openat2+0x10/0x10 [ 223.310002][ T8113] __x64_sys_openat+0x174/0x210 [ 223.310037][ T8113] ? __pfx___x64_sys_openat+0x10/0x10 [ 223.310078][ T8113] do_syscall_64+0xcd/0x490 [ 223.310108][ T8113] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 223.310132][ T8113] RIP: 0033:0x7fc33778ebe9 [ 223.310150][ T8113] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 223.310174][ T8113] RSP: 002b:00007fc338574038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 223.310196][ T8113] RAX: ffffffffffffffda RBX: 00007fc3379b5fa0 RCX: 00007fc33778ebe9 [ 223.310211][ T8113] RDX: 0000000000000001 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 223.310226][ T8113] RBP: 00007fc337811e19 R08: 0000000000000000 R09: 0000000000000000 [ 223.310240][ T8113] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 223.310254][ T8113] R13: 00007fc3379b6038 R14: 00007fc3379b5fa0 R15: 00007ffe66976578 [ 223.310276][ T8113] [ 223.310284][ T8113] [ 223.555022][ T8113] Allocated by task 1: [ 223.559098][ T8113] kasan_save_stack+0x33/0x60 [ 223.563903][ T8113] kasan_save_track+0x14/0x30 [ 223.568597][ T8113] __kasan_kmalloc+0xaa/0xb0 [ 223.573200][ T8113] dvb_register_device+0x1e4/0x2370 [ 223.578504][ T8113] dvb_register_frontend+0x5a6/0x880 [ 223.583896][ T8113] vidtv_bridge_probe+0x459/0xa90 [ 223.588941][ T8113] platform_probe+0x103/0x1d0 [ 223.593631][ T8113] really_probe+0x241/0xa90 [ 223.598154][ T8113] __driver_probe_device+0x1de/0x440 [ 223.603474][ T8113] driver_probe_device+0x4c/0x1b0 [ 223.608631][ T8113] __driver_attach+0x283/0x580 [ 223.613424][ T8113] bus_for_each_dev+0x13e/0x1d0 [ 223.618380][ T8113] bus_add_driver+0x2e9/0x690 [ 223.623139][ T8113] driver_register+0x15c/0x4b0 [ 223.627926][ T8113] vidtv_bridge_init+0x45/0x80 [ 223.632711][ T8113] do_one_initcall+0x120/0x6e0 [ 223.637519][ T8113] kernel_init_freeable+0x5c2/0x910 [ 223.642729][ T8113] kernel_init+0x1c/0x2b0 [ 223.647088][ T8113] ret_from_fork+0x5d4/0x6f0 [ 223.651873][ T8113] ret_from_fork_asm+0x1a/0x30 [ 223.656672][ T8113] [ 223.659002][ T8113] Freed by task 7996: [ 223.662985][ T8113] kasan_save_stack+0x33/0x60 [ 223.667678][ T8113] kasan_save_track+0x14/0x30 [ 223.672370][ T8113] kasan_save_free_info+0x3b/0x60 [ 223.677418][ T8113] __kasan_slab_free+0x60/0x70 [ 223.682198][ T8113] kfree+0x2b4/0x4d0 [ 223.686111][ T8113] dvb_device_put.part.0+0x60/0x90 [ 223.691240][ T8113] dvb_device_open+0x2a4/0x3b0 [ 223.696109][ T8113] chrdev_open+0x231/0x6a0 [ 223.700540][ T8113] do_dentry_open+0x97f/0x1530 [ 223.705332][ T8113] vfs_open+0x82/0x3f0 [ 223.709433][ T8113] path_openat+0x1de4/0x2cb0 [ 223.714086][ T8113] do_filp_open+0x20b/0x470 [ 223.718787][ T8113] do_sys_openat2+0x11b/0x1d0 [ 223.723509][ T8113] __x64_sys_openat+0x174/0x210 [ 223.728428][ T8113] do_syscall_64+0xcd/0x490 [ 223.732999][ T8113] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 223.739143][ T8113] [ 223.741476][ T8113] The buggy address belongs to the object at ffff888140a9de00 [ 223.741476][ T8113] which belongs to the cache kmalloc-256 of size 256 [ 223.755565][ T8113] The buggy address is located 24 bytes inside of [ 223.755565][ T8113] freed 256-byte region [ffff888140a9de00, ffff888140a9df00) [ 223.769555][ T8113] [ 223.771895][ T8113] The buggy address belongs to the physical page: [ 223.778309][ T8113] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x140a9c [ 223.787259][ T8113] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 223.796297][ T8113] flags: 0x57ff00000000040(head|node=1|zone=2|lastcpupid=0x7ff) [ 223.804115][ T8113] page_type: f5(slab) [ 223.808197][ T8113] raw: 057ff00000000040 ffff88801b841b40 dead000000000122 0000000000000000 [ 223.816878][ T8113] raw: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000 [ 223.825671][ T8113] head: 057ff00000000040 ffff88801b841b40 dead000000000122 0000000000000000 [ 223.834531][ T8113] head: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000 [ 223.843212][ T8113] head: 057ff00000000001 ffffea000502a701 00000000ffffffff 00000000ffffffff [ 223.851893][ T8113] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002 [ 223.860562][ T8113] page dumped because: kasan: bad access detected [ 223.867257][ T8113] page_owner tracks the page as allocated [ 223.873160][ T8113] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 1, tgid 1 (swapper/0), ts 25303915005, free_ts 0 [ 223.892987][ T8113] post_alloc_hook+0x1c0/0x230 [ 223.898210][ T8113] get_page_from_freelist+0x132b/0x38e0 [ 223.903797][ T8113] __alloc_frozen_pages_noprof+0x261/0x23f0 [ 223.909879][ T8113] alloc_pages_mpol+0x1fb/0x550 [ 223.914840][ T8113] new_slab+0x247/0x330 [ 223.919012][ T8113] ___slab_alloc+0xcf2/0x1740 [ 223.923803][ T8113] __slab_alloc.constprop.0+0x56/0xb0 [ 223.929185][ T8113] __kmalloc_cache_noprof+0xfb/0x3e0 [ 223.934515][ T8113] bus_add_driver+0x92/0x690 [ 223.939124][ T8113] driver_register+0x15c/0x4b0 [ 223.943911][ T8113] usb_register_driver+0x216/0x4d0 [ 223.949104][ T8113] do_one_initcall+0x120/0x6e0 [ 223.953916][ T8113] kernel_init_freeable+0x5c2/0x910 [ 223.959248][ T8113] kernel_init+0x1c/0x2b0 [ 223.963773][ T8113] ret_from_fork+0x5d4/0x6f0 [ 223.968386][ T8113] ret_from_fork_asm+0x1a/0x30 [ 223.973167][ T8113] page_owner free stack trace missing [ 223.978557][ T8113] [ 223.980882][ T8113] Memory state around the buggy address: [ 223.986602][ T8113] ffff888140a9dd00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 223.995030][ T8113] ffff888140a9dd80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 224.003199][ T8113] >ffff888140a9de00: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 224.011266][ T8113] ^ [ 224.016120][ T8113] ffff888140a9de80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 224.024192][ T8113] ffff888140a9df00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 224.032275][ T8113] ================================================================== [ 224.053092][ T8113] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 224.060369][ T8113] CPU: 0 UID: 0 PID: 8113 Comm: syz.1.812 Not tainted 6.17.0-rc1-syzkaller-00111-g24ea63ea3877 #0 PREEMPT(full) [ 224.072292][ T8113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 224.082639][ T8113] Call Trace: [ 224.086043][ T8113] [ 224.088980][ T8113] dump_stack_lvl+0x3d/0x1f0 [ 224.093680][ T8113] vpanic+0x6e8/0x7a0 [ 224.097798][ T8113] ? __pfx_vpanic+0x10/0x10 [ 224.102595][ T8113] ? __pfx_vprintk_emit+0x10/0x10 [ 224.107639][ T8113] ? dvb_device_open+0x36a/0x3b0 [ 224.112594][ T8113] panic+0xca/0xd0 [ 224.116334][ T8113] ? __pfx_panic+0x10/0x10 [ 224.120942][ T8113] ? dvb_device_open+0x36a/0x3b0 [ 224.126077][ T8113] ? preempt_schedule_common+0x44/0xc0 [ 224.131554][ T8113] ? preempt_schedule_thunk+0x16/0x30 [ 224.136972][ T8113] check_panic_on_warn+0xab/0xb0 [ 224.141944][ T8113] end_report+0x107/0x170 [ 224.146313][ T8113] kasan_report+0xee/0x110 [ 224.150759][ T8113] ? dvb_device_open+0x36a/0x3b0 [ 224.155726][ T8113] ? __pfx_dvb_device_open+0x10/0x10 [ 224.161033][ T8113] dvb_device_open+0x36a/0x3b0 [ 224.165820][ T8113] ? __pfx_dvb_device_open+0x10/0x10 [ 224.171233][ T8113] chrdev_open+0x231/0x6a0 [ 224.175674][ T8113] ? __pfx_apparmor_file_open+0x10/0x10 [ 224.181238][ T8113] ? __pfx_chrdev_open+0x10/0x10 [ 224.186226][ T8113] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 224.192659][ T8113] do_dentry_open+0x97f/0x1530 [ 224.197446][ T8113] ? __pfx_chrdev_open+0x10/0x10 [ 224.202408][ T8113] vfs_open+0x82/0x3f0 [ 224.206500][ T8113] path_openat+0x1de4/0x2cb0 [ 224.211113][ T8113] ? __pfx_path_openat+0x10/0x10 [ 224.216068][ T8113] do_filp_open+0x20b/0x470 [ 224.220589][ T8113] ? __pfx_do_filp_open+0x10/0x10 [ 224.225636][ T8113] ? alloc_fd+0x471/0x7d0 [ 224.229984][ T8113] do_sys_openat2+0x11b/0x1d0 [ 224.234683][ T8113] ? __pfx_do_sys_openat2+0x10/0x10 [ 224.239916][ T8113] __x64_sys_openat+0x174/0x210 [ 224.244845][ T8113] ? __pfx___x64_sys_openat+0x10/0x10 [ 224.250248][ T8113] do_syscall_64+0xcd/0x490 [ 224.254780][ T8113] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 224.260785][ T8113] RIP: 0033:0x7fc33778ebe9 [ 224.265209][ T8113] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 224.285016][ T8113] RSP: 002b:00007fc338574038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 224.293455][ T8113] RAX: ffffffffffffffda RBX: 00007fc3379b5fa0 RCX: 00007fc33778ebe9 [ 224.301701][ T8113] RDX: 0000000000000001 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 224.309689][ T8113] RBP: 00007fc337811e19 R08: 0000000000000000 R09: 0000000000000000 [ 224.318193][ T8113] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 224.326440][ T8113] R13: 00007fc3379b6038 R14: 00007fc3379b5fa0 R15: 00007ffe66976578 [ 224.335054][ T8113] [ 224.338431][ T8113] Kernel Offset: disabled [ 224.342775][ T8113] Rebooting in 86400 seconds..