last executing test programs: 9.810069335s ago: executing program 1 (id=1182): set_mempolicy$auto(0x3, &(0x7f0000000000)=0x7, 0x9) mmap$auto(0x0, 0x3, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0) ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x48140, 0x0) readv$auto(r1, &(0x7f00000000c0)={0x0, 0x5}, 0x3) ioctl$auto_TIOCVHANGUP2(r1, 0x5437, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0xfffffffffffffffc, 0x1010000, 0x100000003) read$auto(r2, 0x0, 0x20) mmap$auto(0xff0f200000000000, 0x400008, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r3 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000a40), 0xffffffffffffffff) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r4, &(0x7f0000001c00)={0x0, 0x0, &(0x7f0000001bc0)={&(0x7f0000000100)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3], 0x1c}, 0x1, 0x0, 0x0, 0x24000040}, 0x64) io_uring_setup$auto(0x6, 0x0) madvise$auto(0x0, 0x200007, 0x19) shmctl$auto_IPC_STAT(0x1, 0x2, 0x0) unshare$auto(0x40000080) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x105c0, 0x0) add_key$auto(&(0x7f0000000000)='\x00', 0x0, &(0x7f0000000240), 0x2, 0x31f) madvise$auto(0x0, 0xffffffffffff0005, 0x17) clone$auto(0x2, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x0) mmap$auto(0x0, 0xfff, 0xdf, 0x9b72, 0x400, 0x28000) 8.214467183s ago: executing program 2 (id=1187): socket(0x28, 0x1, 0x0) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES16=0x0, @ANYBLOB="2f212abd7800fd"], 0x14}}, 0x4000000) mmap$auto(0x0, 0x20009, 0xe0, 0xeb1, 0x40000000000a5, 0x8000) openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000000)='/dev/usbmon1\x00', 0x4ad03, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/fs/pipe-max-size\x00', 0x6d4382, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/user\x00') fremovexattr$auto(r1, &(0x7f0000000240)='\xe8\x8b:\x1e\x98$\xddGi\x82\x12\xc1,platform/duoiY_hcd\xb0z\x85.4/usb5/descripto') openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, 0x0, 0x200000, 0x0) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x61, 0x100001000000003, 0x9b72, 0x2, 0x8000) getsockopt$auto(0x3, 0x200000000001, 0x41, 0x0, 0x0) madvise$auto(0x108000, 0x800034, 0xa) unshare$auto(0x40000080) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x0) close_range$auto(0x2, 0x8, 0x3) r2 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x0, 0x0) ioctl$auto_MON_IOCX_MFETCH(r2, 0xc0109207, &(0x7f0000000100)={0x0, 0xcf, 0x7}) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptyz9\x00', 0x101800, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/bus/usb/010/001\x00', 0x20000, 0x0) mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/devices/platform/i8042/serio1/resolution\x00', 0x183902, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) write$auto(0x3, 0x0, 0xfdef) move_pages$auto(0x0, 0x1002, 0x0, 0x0, 0x0, 0x2) 7.788419047s ago: executing program 3 (id=1189): mmap$auto(0x0, 0x449f, 0x3, 0x38, 0xffffffffffffffff, 0x28001) socket(0x2, 0x5, 0x0) close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_drm_edid_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/dri/vkms/Virtual-1/edid_override\x00', 0xc0a82, 0x0) write$auto(r0, &(0x7f0000000500)='\x80\xa3\xf3.\x80UX\xb3\xec4\xfbX+\xa7\xbd\xaa\x10\x9c\xaa\xcaT\xdf\xa1@\xa7J:\x8ao\x8c\x90VBt\x93\x8f\xe19\x9cg\xaa\xb5w\x10\xba9\"T\xfa\'\x1aJz\xf9\x97\x1e\xba\x90\xa1\xc2K\x8f\x1aok\x88\x87\x1d\xdc\x149\b\x15\xb4\xeai\xd2\\ak\xd0O#f[\xff\x8d[\x83[\x00\xaa\xcdc\xae:\"\x1f\x95\xaa\x17\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x9e\x00\x00\x00\xe5\x0f\xe8&\xc4M\x94\xd6Y9\xebA1\x8b.\xd9\xe0\x83\t?&\x00\x00\x00\x00\x00\x00', 0x2d00) shmctl$auto_SHM_INFO(0x3, 0xe, &(0x7f0000000100)={{0x600, 0x0, 0xee00, 0x80000001, 0x10000000, 0x3cf4c3, 0x7ccb}, 0x9f, 0x2, 0x5, 0x4, @inferred=0xffffffffffffffff, @raw=0xfffffffe, 0x3, 0x0, &(0x7f00000003c0)='\x00', 0x0}) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcsu\x00', 0x108002, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r2 = epoll_create$auto(0x5a5d) epoll_ctl$auto(r2, 0x1, r1, 0x0) read$auto(0x3, 0x0, 0x80) 7.405182187s ago: executing program 3 (id=1190): mmap$auto(0x0, 0x400008, 0xdf, 0x38, 0x6, 0x8000) (async) socket(0xa, 0x1, 0x84) (async) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0) (async, rerun: 32) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg0\x00', 0x8081, 0x0) (async, rerun: 32) close_range$auto(0x2, 0x8, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80802, 0x0) (async) r0 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x9}, 0x800009}, 0x3, 0x20000000) (async, rerun: 64) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) (async, rerun: 64) recvfrom$auto(0x3, 0x0, 0x800000000e, 0xa00, 0x0, 0xfffffffffffffffd) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) (async) socket(0x1e, 0x1, 0x0) (async) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000340), r1) sendmsg$auto_TIPC_NL_NET_SET(r1, &(0x7f00000079c0)={0x0, 0x0, &(0x7f0000007980)={&(0x7f0000000040)={0x20, r2, 0x1, 0x70bd2c, 0x25dfdbff, {}, [@TIPC_NLA_NET={0xc, 0x7, 0x0, 0x1, [@typed={0x8, 0x2, 0x0, 0x0, @uid=0xee00}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x40010}, 0x2) (async) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r3 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) ioctl$auto(0xffffffffffffffff, 0x4b72, r3) 7.143443218s ago: executing program 0 (id=1191): openat$auto_uinput_fops_uinput(0xffffffffffffff9c, 0x0, 0x40080, 0x0) socket(0xa, 0x801, 0x84) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x2, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) read$auto(r0, 0x0, 0x1f40) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) bpf$auto(0xdc, 0x0, 0x6f3) getsockopt$auto_SO_PASSCRED(0xffffffffffffffff, 0x1, 0x10, 0x0, 0x0) acct$auto(&(0x7f0000000000)='/dev/snd/controlC1\x00') 6.403702363s ago: executing program 3 (id=1192): madvise$auto(0x0, 0x7fffffffffffffff, 0xa) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2b, 0x1, 0x0) r1 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000001a80)='/dev/bus/usb/040/001\x00', 0xad243, 0x0) mmap$auto(0x2000, 0x80009, 0xb, 0x8000000008011, r1, 0x0) mremap$auto(0x4000, 0xfee0, 0x3fd6, 0x3, 0x18000) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) ioctl$auto(0xffffffffffffffff, 0x64c8, 0x1e2) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000000)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1c, 0xb}, 0x5}, 0x2, 0x20000000) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0) r3 = socket(0xa, 0x2, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) unshare$auto(0x40000080) prctl$auto(0x200003b, 0x1, 0x4, 0x9, 0x10004) get_mempolicy$auto(0x0, 0x0, 0x7a, 0x1ff, 0x9) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/bdi/43:288/max_ratio_fine\x00', 0x10b543, 0x0) sendfile$auto(0xffffffffffffffff, r4, 0x0, 0x1000200) ioctl$auto_TIOCVHANGUP2(0xffffffffffffffff, 0x5437, 0x0) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r0) r5 = openat$auto_bm_status_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000000100), 0x80000, 0x0) sendfile$auto(r5, r2, 0x0, 0x5) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'batadv0\x00', 0x0}) bpf$auto(0xfffffffd, &(0x7f00000000c0)=@link_update={r4, @new_prog_fd, 0x3}, 0xf) sendmsg$auto_BATADV_CMD_GET_BLA_CLAIM(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="82ad0000002f39353936547ca680cca70907aceea640b8e98c754156114ef166d48cff26ac6af24b3ad330200f05d5627a2d84f2e8169c267a603e9c63e49c1a104f1654e099f1b0c2de01108439ea5f2466bc2fc1d34c790f8fb4ed82064c498bc4d6bf9b7fbda298fc95b426757dc33597b9a633f316cdf80721344bc29818cb7fd9249da208fafef35ceaab53e2d1259ded0ff90c471fd63a45bfaf91b967fff3c37f75fa37dfa1add879637b9afc8b8db15ecbf3c2ea850ef19027e9dca4394f1f", @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf250b00000008001a00e100000005001100080000001400040069703665727370616e3000000000000008000600", @ANYRES32=r6, @ANYBLOB="0a000700740d2b5b74f7000008001300e8d10000080032000900000008000b25ff030000"], 0x64}, 0x1, 0x0, 0x0, 0x34040080}, 0x8085) mmap$auto(0x0, 0xe9, 0xdf, 0x9b72, 0x2, 0x8000) write$auto(0x3, 0x0, 0xfffffdef) fremovexattr$auto(r4, &(0x7f0000000140)='/proc/sys/fs/finfmt7\xdc\x84\xa8d\x83\xcb}&%\x9b\x11~\xc6_misc/s\x00\x00tus\x00') recvfrom$auto(0x3, 0x0, 0x840000000e, 0xf90000, 0x0, 0xfffffffffffffffd) mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x0) 6.402335047s ago: executing program 2 (id=1193): openat$auto_uinput_fops_uinput(0xffffffffffffff9c, 0x0, 0x40080, 0x0) socket(0xa, 0x801, 0x84) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x2, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) read$auto(r0, 0x0, 0x1f40) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) bpf$auto(0xdc, 0x0, 0x6f3) getsockopt$auto_SO_PASSCRED(0xffffffffffffffff, 0x1, 0x10, 0x0, 0x0) acct$auto(&(0x7f0000000000)='/dev/snd/controlC1\x00') (fail_nth: 2) 6.378321044s ago: executing program 0 (id=1194): madvise$auto(0x0, 0x7fffffffffffffff, 0xa) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2b, 0x1, 0x0) ioctl$auto(0xffffffffffffffff, 0x64c8, 0x1e2) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000000)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0) socket(0xa, 0x2, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) unshare$auto(0x40000080) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x10004) r1 = openat$auto_vrr_range_fops_(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/kernel/debug/dri/vkms/Virtual-1/vrr_range\x00', 0x100, 0x0) pread64$auto(r1, 0x0, 0x6, 0x7fff) get_mempolicy$auto(0x0, 0x0, 0x3, 0x1ff, 0x3) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/bdi/43:288/max_ratio_fine\x00', 0x10b142, 0x0) sendfile$auto(0xffffffffffffffff, r2, 0x0, 0x1000200) ioctl$auto_TIOCVHANGUP2(0xffffffffffffffff, 0x5437, 0x0) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r0) r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/scsi/device_info\x00', 0x48041, 0x0) write$auto_proc_reg_file_ops_compat_inode(r3, &(0x7f00000000c0)="22edd92f26639ec0023a8686bd579dcf16f50e9bfa20abfa3a30", 0x1a) openat$auto_bm_status_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000000100), 0x80000, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) mmap$auto(0x0, 0xe9, 0xdf, 0x9b72, 0x2, 0x8000) write$auto(0x3, 0x0, 0xfffffdef) recvfrom$auto(0x3, 0x0, 0x840000000e, 0xf90000, 0x0, 0xfffffffffffffffd) mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000) 5.979346158s ago: executing program 2 (id=1195): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/block/parameters/events_dfl_poll_msecs\x00', 0x80002, 0x0) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) inotify_init1$auto(0x3000000000000) socket$nl_generic(0x10, 0x3, 0x10) socket(0x25, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x15, 0x5, 0x0) openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/arch_status\x00', 0x100382, 0x0) openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, 0x0, 0x141a41, 0x0) socket(0x10, 0x2, 0x0) socket(0x2, 0x6, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x20000, 0x0) openat$auto_console_fops_tty_io(0xffffffffffffff9c, 0x0, 0x102, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x2, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) close_range$auto(0x2, 0xffffffffffffffff, 0x0) open(0x0, 0x22240, 0x55) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2, 0x0) ioctl$auto(0x3, 0x80106f53, r0) 5.801010177s ago: executing program 1 (id=1196): syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), 0xffffffffffffffff) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r0 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000240), 0x10b000, 0x0) ioctl$auto_dma_heap_fops_dma_heap(r0, 0xffffffffffdffe00, &(0x7f0000000140)=';') mmap$auto(0x0, 0x2020009, 0x3, 0x7fff, 0xfffffffffffffffa, 0x8001) r1 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, 0x0, 0x42c883, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) prctl$auto(0x1000000003b, 0x4, 0x4, 0x9, 0x7) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) msgrcv$auto(0x71, &(0x7f0000000040)={0x4, 0x7}, 0x0, 0x7fffffffffffffff, 0x5) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x5) msgget$auto(0x0, 0x5) msgsnd$auto(0x0, &(0x7f0000000080)={0x1, 0x6}, 0x8, 0x7) madvise$auto_MADV_GUARD_INSTALL(0x3, 0x9978, 0x66) msgrcv$auto(0x0, 0x0, 0x4bd, 0x1, 0xf1) socket(0xa, 0x4, 0x6) r3 = fcntl$auto_F_GETOWN(r1, 0x9, 0x1) msgctl$auto(0x8000, 0x6, &(0x7f0000000180)={{0x442, 0xffffffffffffffff, 0xee01, 0x0, 0x1, 0x7, 0x83}, &(0x7f0000000100)=0xf8, &(0x7f0000000140)=0x2, 0x4, 0xfffffffffffffffe, 0xc869be, 0x1, 0x12c, 0xa, 0x4, 0x3, @raw=0x313, @inferred=r3}) lseek$auto(0xffffffffffffffff, 0x39, 0x1) 5.71074191s ago: executing program 2 (id=1197): syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), 0xffffffffffffffff) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r0 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000240), 0x10b000, 0x0) ioctl$auto_dma_heap_fops_dma_heap(r0, 0xffffffffffdffe00, &(0x7f0000000140)=';') mmap$auto(0x0, 0x2020009, 0x3, 0x7fff, 0xfffffffffffffffa, 0x8001) r1 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, 0x0, 0x42c883, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) prctl$auto(0x1000000003b, 0x4, 0x4, 0x9, 0x7) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) msgrcv$auto(0x71, &(0x7f0000000040)={0x4, 0x7}, 0x0, 0x7fffffffffffffff, 0x5) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x5) msgget$auto(0x0, 0x5) msgsnd$auto(0x0, &(0x7f0000000080)={0x1, 0x6}, 0x8, 0x7) madvise$auto_MADV_GUARD_INSTALL(0x3, 0x9978, 0x66) msgrcv$auto(0x0, 0x0, 0x4bd, 0x1, 0xf1) socket(0xa, 0x4, 0x6) r3 = fcntl$auto_F_GETOWN(r1, 0x9, 0x1) msgctl$auto(0x8000, 0x6, &(0x7f0000000180)={{0x442, 0xffffffffffffffff, 0xee01, 0x0, 0x1, 0x7, 0x83}, &(0x7f0000000100)=0xf8, &(0x7f0000000140)=0x2, 0x4, 0xfffffffffffffffe, 0xc869be, 0x1, 0x12c, 0xa, 0x4, 0x3, @raw=0x313, @inferred=r3}) lseek$auto(0xffffffffffffffff, 0x39, 0x1) 4.402689347s ago: executing program 2 (id=1198): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) write$auto(0x3, 0x0, 0x7fffffff) write$auto(0x1, 0x0, 0x80000000) r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000001100)='/proc/bus/pci/00/03.0\x00', 0xa0581, 0x0) write$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f0000001140)="8cbdca", 0x3) writev$auto(r0, &(0x7f0000001d40)={0x0, 0x2}, 0x6) openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5) r1 = socket(0x2b, 0x1, 0x1) openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, r1, 0x2) sendmsg$auto_NFC_CMD_DEP_LINK_DOWN(r1, 0x0, 0x20000001) mmap$auto(0x0, 0x400005, 0xe3, 0x9b72, r1, 0x7) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) add_key$auto(&(0x7f0000000000)='/dev/sda\x00', 0x0, &(0x7f0000000080), 0x100, 0x0) rt_sigprocmask$auto(0x40, &(0x7f0000000000)={0xc}, 0x0, 0x8) mmap$auto(0xfffffffffffffffe, 0x3, 0x400000000a, 0xebc, 0xffffffffffffffff, 0xfffffffffffffffa) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) prctl$auto(0x39, 0x1, 0x0, 0x0, 0x0) madvise$auto(0x0, 0x2003f0, 0x15) set_mempolicy_home_node$auto(0x100000000000000, 0xa, 0x7, 0xfffffffffffffffb) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, 0x0, 0x80080, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) 4.367070567s ago: executing program 1 (id=1199): openat$auto_uinput_fops_uinput(0xffffffffffffff9c, 0x0, 0x44080, 0x0) socket(0xa, 0x801, 0x84) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x2, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/net/bond0/queues/tx-14/xps_rxqs\x00', 0x4e0b80, 0x0) write$auto(r0, &(0x7f0000000080)='+\x00', 0x300000000000) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0xa, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card1\x00', 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_l2cap_debugfs_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0x280, 0x0) openat$auto_tracing_cpumask_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/tracing_cpumask\x00', 0x8042, 0x0) socketpair$auto(0x3, 0xa, 0x5, 0x0) socket(0x2, 0x6, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/rpc/auth.unix.gid/content\x00', 0x20000, 0x0) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ttysd\x00', 0x2d8900, 0x0) socket$nl_generic(0x10, 0x3, 0x10) inotify_init1$auto(0x3000000000000) socket(0xa, 0x2, 0x3a) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) socketpair$auto(0x2, 0x9, 0x3, 0x0) openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x482, 0x0) socketpair$auto(0x8001, 0x9, 0x4, 0x0) close_range$auto(0x2, 0xffffffffffffffff, 0x0) 3.953529322s ago: executing program 3 (id=1200): close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x2, 0xf8, 0xfffffffffffffffa, 0x8000) r0 = socket(0x2, 0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = memfd_create$auto(0x0, 0xe) ioctl$auto_UI_DEV_CREATE(r1, 0x5501, 0x0) socket(0x2, 0x1, 0x106) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x31}}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) write$auto(0x3, 0x0, 0xfffffdef) shutdown$auto(r0, 0x2) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) close_range$auto(0x2, 0x8, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}}, 0x4004) 3.264462728s ago: executing program 0 (id=1201): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/block/parameters/events_dfl_poll_msecs\x00', 0x80002, 0x0) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) inotify_init1$auto(0x3000000000000) socket$nl_generic(0x10, 0x3, 0x10) socket(0x25, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x15, 0x5, 0x0) openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/arch_status\x00', 0x100382, 0x0) socket(0x10, 0x2, 0x0) socket(0x2, 0x6, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x2, 0x0) inotify_init1$auto(0x3000000000000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) close_range$auto(0x2, 0xffffffffffffffff, 0x0) open(0x0, 0x22240, 0x55) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2, 0x0) ioctl$auto(0x3, 0x80106f53, r0) (fail_nth: 2) 3.21589303s ago: executing program 1 (id=1202): socket(0x2, 0x1, 0x0) mmap$auto(0x0, 0x4, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) syz_clone(0x8500c000, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x129302, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x1a1983, 0x0) open(&(0x7f0000000080)='./file0\x00', 0x8840, 0x408) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb5, 0x401, 0x8000) mmap$auto(0x0, 0x2021009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) read$auto(r2, 0x0, 0x20) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/fail-nth\x00', 0x8882, 0x0) writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3) bpf$auto(0x0, 0x0, 0xa3) ioctl$auto(0x3, 0xc0485619, r0) write$auto(r1, 0x0, 0x800f) mmap$auto(0x2, 0x1ff, 0x3, 0xeb4, 0xfffffffffffffffa, 0x8) mbind$auto(0xc2c9, 0xb, 0x7, 0x0, 0x100000001, 0x0) r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) write$auto(r4, 0x0, 0xfffffdef) madvise$auto(0x0, 0x20499d, 0x9) socket$nl_generic(0x10, 0x3, 0x10) open_tree$auto(0xffffffffffffffff, 0x0, 0x74ee) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) ioctl$auto_SNDCTL_DSP_RESET(0xffffffffffffffff, 0x5000, 0x0) mmap$auto(0x3, 0x10400005, 0xfffffffffffffffe, 0x9b78, 0x2, 0x1) socket(0x10, 0x8c25b9db158f60e4, 0x0) syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff) 3.142476139s ago: executing program 3 (id=1203): mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) prctl$auto(0xa7, 0x1, 0x4, 0x1000000000000005, 0x7) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) openat$auto_proc_pid_set_comm_operations_base(0xffffffffffffff9c, 0x0, 0x10500, 0x0) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x8000, 0x0) ioctl$auto_SNDCTL_DSP_SPEED(r0, 0xc0045002, 0x0) read$auto(r0, 0x0, 0xcefbce6) read$auto_nsim_dev_trap_fa_cookie_fops_dev(r0, &(0x7f0000000000)=""/156, 0x9c) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) ioperm$auto(0x2, 0x4, 0x87) socket(0x2, 0x1, 0x10000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/oom_adj\x00', 0x4040, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22040, 0x75) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) setsockopt$auto(0x3, 0x4, 0xc, 0x0, 0xfffffffa) 2.272129985s ago: executing program 0 (id=1204): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000140), r0) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x14, r1, 0x1, 0x70bd26, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x44004811}, 0x40000c0) (fail_nth: 2) 1.375056208s ago: executing program 3 (id=1205): set_mempolicy$auto(0x3, &(0x7f0000000000)=0x7, 0x9) mmap$auto(0x0, 0x3, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0) ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x48140, 0x0) readv$auto(r1, &(0x7f00000000c0)={0x0, 0x5}, 0x3) ioctl$auto_TIOCVHANGUP2(r1, 0x5437, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0xfffffffffffffffc, 0x1010000, 0x100000003) read$auto(r2, 0x0, 0x20) mmap$auto(0xff0f200000000000, 0x400008, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r3 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000a40), 0xffffffffffffffff) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r4, &(0x7f0000001c00)={0x0, 0x0, &(0x7f0000001bc0)={&(0x7f0000000100)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3], 0x1c}, 0x1, 0x0, 0x0, 0x24000040}, 0x64) io_uring_setup$auto(0x6, 0x0) madvise$auto(0x0, 0x200007, 0x19) shmctl$auto_IPC_STAT(0x1, 0x2, 0x0) unshare$auto(0x40000080) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x105c0, 0x0) add_key$auto(&(0x7f0000000000)='\x00', 0x0, &(0x7f0000000240), 0x2, 0x31f) madvise$auto(0x0, 0xffffffffffff0005, 0x17) clone$auto(0x2, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x0) mmap$auto(0x0, 0xfff, 0xdf, 0x9b72, 0x400, 0x28000) 1.374337539s ago: executing program 0 (id=1213): openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card1\x00', 0x539880, 0x0) remap_file_pages$auto(0x4, 0x7, 0x8, 0x7, 0x8) 1.156687153s ago: executing program 0 (id=1206): mmap$auto(0x7, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000140), 0x102, 0x0) mmap$auto(0x1000000000, 0x400008, 0xdf, 0xb5, r0, 0x8000) mprotect$auto(0x0, 0x4, 0x5) r1 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x6, 0xebd, 0xfffffffffffffffa, 0x40) r2 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000340), 0x189400, 0x0) r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/cifs/Stats\x00', 0x28102, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) mmap$auto(0x0, 0x2020005, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) getrandom$auto(0x0, 0x6000000, 0x3) remap_file_pages$auto(0xff, 0x1000, 0x0, 0x3, 0x4000000000000004) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) madvise$auto(0x110c230000, 0x1, 0x9) mmap$auto(0xfffffffffffffffd, 0x2020009, 0x0, 0x13, r3, 0x8001) r4 = openat$auto_msr_fops_msr(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cpu/0/msr\x00', 0x181f82, 0x0) mmap$auto(0x0, 0x20009, 0xe0, 0xeb1, 0xffffffffffffffff, 0x4) readv$auto(r4, &(0x7f00000000c0)={0x0, 0x101d0}, 0x400) r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty46\x00', 0x0, 0x0) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000004180), r6) sendmsg$auto_OVS_VPORT_CMD_DEL(r6, &(0x7f0000004380)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYRES8=r4, @ANYRES32=r5, @ANYRESDEC=r7, @ANYRESOCT=r2, @ANYRESDEC=r7, @ANYBLOB="f547430fac2fb269d44fbb0e03b1650ae5a7f775b38b1c60558859bb47d6e4b045122e06ff94bdabfcb6d41a398423b891354e7a8b51a20c6013849edc1a10f7333080fd6f13e90f9883222750894f05d16c1e5a01c466d8663c65723d232a718ed643c25f1aca12afe254bac7da8080a27467665c68f7f5345f40bfa19bb687a4f25d943c70cbdecbbfc8b4625cf6cd37f321fb6ba97bd97d2a19691786b9fdc2e299b56f70ff37352e9343ebbd914f1e3cb43dff", @ANYRES16=r3], 0x24}, 0x1, 0x0, 0x0, 0x20000801}, 0x4004000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) mmap$auto(0x0, 0x4, 0x800, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x28082, 0x0) mmap$auto(0x0, 0x2000d, 0x4000000200df, 0xeb1, 0x404, 0x8000) sendmsg$auto_ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000001700)={0x0, 0x0, &(0x7f00000016c0)={&(0x7f0000000100)=ANY=[@ANYRES64, @ANYRES32, @ANYRES32=r1], 0xd4}, 0x1, 0x0, 0x0, 0x20000050}, 0x20008000) mmap$auto(0x4, 0x400008, 0x4df, 0x9b72, 0x2, 0x8000) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/037/001\x00', 0xe981, 0x0) ioctl$auto_RTC_RD_TIME(r2, 0x80247009, 0x0) 1.008646304s ago: executing program 1 (id=1207): io_uring_setup$auto(0x7, 0x0) (async) r0 = socket(0x15, 0x5, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) close_range$auto(0x2, 0x8, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) (async) socket(0xf, 0x3, 0x2) (async) lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x9, 0x6, 0x63, 0x0, 0x0, 0x0, 0x8, 0x200, 0x2, 0x40000402, 0x9, 0x9, 0x2, 0xd, 0x6, 0x200000100103}) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) (async) socket(0xa, 0x2, 0x0) (async) setsockopt$auto(0x400000000000003, 0x29, 0x3a, 0x0, 0x1000) (async) r2 = socket(0x1d, 0x3, 0x1) setsockopt$auto(r2, 0x65, 0x4, 0x0, 0x4) openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/usb/usbmon/9t\x00', 0x0, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) (async) sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYRES32=r1, @ANYRES16=0x0, @ANYBLOB="0f"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4) (async) r3 = socket(0x10, 0x2, 0x6) sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="ce72830004", @ANYRESOCT=r0], 0x1ac}, 0x1, 0x0, 0x0, 0x2000c000}, 0x4004) (async) r4 = pipe$auto(&(0x7f0000000040)=r0) (async) r5 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000280), r3) ioperm$auto(0x3b, 0xf99b, 0x6) (async) close_range$auto(0x0, 0xffffffffffffefff, 0x4000000000002) (async) fanotify_init$auto(0x5, 0x2) open(&(0x7f0000000000)='./file0\x00', 0x7ffd, 0x10c) (async) pwritev$auto(0x1, 0x0, 0x0, 0x9, 0x2) socket(0xa, 0x3, 0xff) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) readv$auto(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000080), 0x65}, 0x1) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa}, 0x55) (async) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) sendmsg$auto_IPVS_CMD_SET_CONFIG(r4, &(0x7f00000014c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000001480)={&(0x7f00000002c0)={0x11bc, r5, 0x30a, 0x70bd2b, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xe}, @IPVS_CMD_ATTR_SERVICE={0x1170, 0x1, 0x0, 0x1, [@nested={0x1030, 0x10b, 0x0, 0x1, [@generic="f6ccb86f62f0ea5de91aaac89feab8b7817dd2fe66872ceac869bb946541ae4e7b7b3f3dcb264b66002e3d1e3eeaa01b57d3ceac9d999f3c8be0a629c4ca7a959108b42729aba4835cf3576b4f0efd60d0c8aa04ba403b8de02c10d21c60f9782419d41ba6d5a531c7681e9d88b77cff4139faf1bd0521dd35597ca237f5a0e84d23cfea98b2d7bed321f4fb0974dbd43bdc986674cdc6bfdd121e5f23bbdb4f5ec65d00e72e6fe7accb89a460eee9c23cfcd5987864dc850c47bb9fe6ec18e6142af2ef03db11782dec7cf7e2fab5a5ebf01cba04f453a7e239ecadfe6c399c21a6c3a2b83f3a8b1851ccf4ba1a9b12b2b782372ca6d57db899aa55b55cb8b576a9c58a5fafa8bd79b17701ba0ce7ea2750fc724790fd5b7088831b543ce055d32638e852a193f822699913a4add9a842aca8b98b7bef81efcaaca3289ae9cb4b98c32b1a7ec7a1dea5356e3b2d655e773ec071d07996eb0f7119ad17860988c412a21b5a2f97a94a89ba70209c81ecb326abce182bd9fb8b3aff22f7d864f04f9448703c048555269b5dcd35974141b6e541bd23e5c750e5d019452944861b8785984caf914d667662dc44c5ddd0b79b6eed22fca765a28402c2c0e3f8c3c43e962bb59d8922ae93acf2b74bbbbf4ec9e362d6136b805920f0af4218eae2eec0172165885bd13f2a1c7454fee7ef46ce204c97a8872c773a12cf5074a547c030a4c774808f2967af71bbbd100b5763a4ccc6a431183c066894a95e79a40d857c43e91ffa7f9aa8a1eda65d82db3005ebee9073df25ab70fbe4b9e1cac2575235cf7bf89bea4d421e811b0701db7e884953a2e68737251b5475a74010d1a95c2a2fad2361bad78006ba3ab997cf3e8a05971109a3861a5f12051e20b1cfebfd68f36476f56491d92ac9583d0c98f3bcc41e40e50adb411036cdc42198af2cd3496a0d6a68c86823443c3c685426a557e43289528ceb1e2e928634f9a4be55f4d16f8993f8a1d82c0ba3a04b7860f705fe3887e9babf665708104f2aadeba40c7198cdfa89ea2a537b14ebb8b7f4be1dca597e96334e1baf51497b970fda364d0d2c2034c5176ed842c3b72f3f5e6884bc063d3fd95c1436ae6b11a1a928f26b8d97bcc98042906af3e58c8c582e49f97699feed134d277ce18d9aa4cabc7752acaf9148b319b1c3c2c7d974fb65d50a0ab707a79e716806dbc8d6d064b990f4310ede02962ff59ecccb76614cf8bcd1ac27a2f4b35e16470889d58ff6772511b03e7f64aa367f3dc9ac19c3cd8b772da910acf0f1e4e581a4d76d81d7f6633e5488495a64d17d1fb66b3b004ffd0ea3110adbdde4ffb478955eea53ef5daf6a6a874de482239569b84df6559526ab091b7c3da2bfd29d64670ac59824dc51479947a8c4ed40148df365de84c2ef2d5af2b356f1df503b0f24945a14fd3e1046a363a52d2781b491112e8d4175e092d2bbfa4e1ddc2bb9f3db05849a270223a61ae7bbdac9fb0aa8e3a1225c5d6976bb4eef6ecf35009cb15aa228a4773b1c0a1198fe8649e58c519956e1998cba034672f94739cfdf90ebd692184d19432505aed22c8736c8d818789786e7dcbb1c35c1f8b30f1ad2365e32762af0065a7e381596469c744e06b734afe6586a277d100040b15e8956a77a21838ee38524ddadfd240848db3f260302bfde6e5c567eac92f76ed19289ecd2945dac4cd1f85a38d3be2d3c97bb7fba32d01781222de7b4017b91f06a9d83a86ed66da824812313fc7ff3330651abc82dc047d23017981565da2db39f2f514a5ab7877634eec277c4ff1ebeb94774804c60fcae3ba396f5792db5321946af4718462732ffcbd56341458e47bfb457c4967b51fdfa1f0721dfa1d17699305312b832ccd0480176e8541ceaf7b95f5417c6455be0993558e7638f2e32d46595dd9b15eef173c3081072932e0c503eb8d3af8dc157ac82c7e10beb1106e34bff86838939300fcf27aacd7dc23451ab3d2944be03831e5053f5d113845ae99bcae844cf54b115e2792abf918964783b1a6942faf78a485a2fe86504cba7b9434602ccd9904327ec4bb0bb70fa04018728b99d0bbff9448dca075f75b3e19bad038843085f0ef9473f98f281e03c27eada4d54879a3a339caecd23a96fe517ecd2509f9a411fc99356ed9eaf3592841d4e07b696b7d6744292d381a0dd03be6ec009de36b4ec0cea0d007cc7113856aeaf68950e9cbd58abd4f0df7fe84d195d18bfcf5c1475d94b66a1698866beb6aebd467896b68ebf755c689baa0dc948f56f78ab205a591fa97cfc4a09bd55b389f7a60b285663d10595c40bc1b00a380a3193d93428e959cf28e1c9c7c6db02eef3e228a5e59799858b76993b4cf734ed5c97cc6c637abe3b5a648dd09acd4076ed643f2568e06c1828eb2306cb58440826f0fc5a4811cd6e60ddba918b026f915bbe9a53c06dff44210ca86f8014d738e55a2fc8fbc553c3c5df9da612282fa26438382a61c935775840d9a4e06a92ce65fcd0e36a1f5f1149acf22cf14a243eefd4107e089e764740e8e50c80c71c71efe36562e289cfce7b6692afdd74be3d28f3d9f6b8d61af49f0f7c0eb87cd6da561d3f02b6c03e7cbed170d2b2ef9ec525467f172e448d7261cc7b963b06ed07f818feff0ceb7d81ec2068b969c711bc75bbd9a8cf96fcb59ef529003bd69c63d10fec335b562ea768d60a990870bf8fcfc70f2a31220861f107839b3d600b5501ab14f4762d980f6de09283330657880523dd284dfcaf1722bef3bc026f33d55488792e16dca374299a7f51131c97fcdcd67ebdb2f49394506cc9cc986f4e6f18df47d383d03c26eeef896aa3d2c014622a19334b1a15a7b897f32101fbc3fa8ba9078cdb76abaea118d1630958a5ad38a7f6c76db37a8efaaeb1bed3aa8e6b41bcaea0c1308bc1f8fc59df11824f442b8def255b271699d5dbdc46907822c2c66cfb3904b11e598c92905d4adf66b027aba5d93dea5ded4ae27be0b7cadb7016c4e0c037f7d8e360ff7bb028bf233c0faeafb6d6812d10556ec145bc2835d1c653f28d95db800ab61bbc3a3991844bcb661d88f0b30103974856f2e722cdd84e9e2323a00b6e6e025b8fea59f30ec99c7941cb8336a3f478098aa04d7bfcc601b14437826ca62c136dc7b012b6f82a7b60b1d091e8e13938355b305c4b26c890b50ba7a60cc4bb761a3390a79a5d415141852d6a1d55c79d882ad662d8c01dab2f967dad0a55700c46678def4171b15ecace706d478fd49ac41f9dbb4d61cc9d34023fd83a22da6cb4403dc0433cea29db0f6f0dc174adcea16cdaf4e8ba359f5a55eaebafeadc797381ee6ebf1b87fafe965d0239287799663770c7ddadccadf78e10f89cfca6993c0e6c2bdc08cb452643e95fad3f19cc460bfc78443112207411913fa650a876e71d9eba7b665ec49f4aaa64afcf2019332974b60f6bda680a69d4492e2fc0d5081a09e186e7f21eceb552682d7ecf3b7ef2caf047fb06e19a794eb600b89015e1c2f4675e377182da5a13cd7f2244223d6d0387ae19ca3968930c26c08f4a0f43cf64a01bdbf68f9fe03dc9af6db6c3fab570f0b2f05eed6635fb5b032dc3a72f0c5ddcb961c5408857e47a5c21782fff026afc2316c53ad7f8e54c11bcb96e191632b9524a3ea21cf2b5346bcf72463680d8ac0fb255c971af933f4ae8629c570b10acb5fc1c5fb98da1050056a3746c9582ea32b9a630028b72d4aee8c98f6bc940c96c8ae574a4befbc3722bf6544bfae217b9474987f4c60419ea6f371626261c7ec7895ca00f996db956402683522dae17dd3e2ccbc0d84e5b83085cb2aa9074541dc093860ee4a6bfa71b79a350e9d2d3bdf7fdb7ff8eec4a4011deceb62f1a8a13840ab5915050d0e4110dfed6277f1c9d30fdc57468efef4e89d860df77a7950bf9e43157f183c028c427926636b6866df32a94b3c38148371e701153e40f64fe7b8cd82f32b931fef8a6cc32d059d8d880637684c0da50208935e6f6b01420f54d9125eca88ace2e4af5eeca49727ee01bdaf3aec399c1f827468c7ac628720a5003964e9e19b1951185ebc62d6de86cd3a84bf6363bab5a7162e9dcf985c45ce31771ff73f8ba6382828eae08858e2b38281a76e39636e54d98aa9488bb2554a471249763d4c68d973dd882001b0539fc28b7f6fa851ca333b99905419c6d3265392b621edb8884faa2c2e91b575101e96d8a141edc43bb4db5b6b1bc14aedb883c23fae8ee9a895add24dab3a75fbb26a57fc62290f6208c87f51c75e1fb83fcf49d0f1ecc9ebf6fa30c89532eb600e662ef9b2c3bb2f0e99930ad6f173c6e5f12f84a062cafc60759ef031ed45660045d26527ee8bae98f0e878f2738b7104a033dd1988e597265ab7254fa38c33abf86fab9f9cf4b5e785a38bd2fea8e5ad6ab7ad4eb8d482fafeb4042ebb6db62683e69cc4afa1dde58b9b5f7240a274a321431a3dab098cdd3a062ec47f5a8da221eef6ae5c00a771df19ca5e1c1d8d869db450c2b1702065894ce2b6c34cad7a96de2d42ba21eaef03394e492add001555be14597ff857247a7262f882bce26d8963cb6d4f28a714e890d8c2ae4c4dce75d114810e24f6fb2a100b194d4cef6250f31eaff01d809c170034af7326ee918c6b41933dce7364710da23ca8cbf39afc7b5765e7a4fa71c214e9cfda84c77946c70d341ebe2cd698ce9197f42d4346b16118737506cc0a5d5101e1ea8e8db6abaee77a24ecdcbf78de5ae0f44d5e80d1077a5c088dce34bc58ae9fb8f43bc1ff1deeb3cb9f710850bc06e74b55782846b5e3e5634c566a0c03e25514fb456ef416d9c857bf8158425ec8550fce2a8ada998f17d2ad02102b997130167ebf56c470a97f5b3ee546c0bbbe6175fa2f3b25c8908a5ed102a4ce50e9453df3e1bdb3fbc81eddc383033dbf9c2527b1aa3aaa1511780435af7d5318420b44c87b23e4995afaf8f560cf4dd371611b80ffc0502d4f5df47c89d075c36896db92872684aa794bfc58f6f469af20465fc6b6b11cfbcaf9e50801af0e1161cbf38be2472da29d351e7ff4a49df0b69f44fa935e41e818fb085a72f83203ea62d2e1e5d718f10f975d1dac79dcab0c3c57e640e80ea801108986f5a53ecaa5a900ac7d2ddab1f96725f484c87574ede18b1902a1e0e8c0a26eea9e1a9b5b93086b123b6947db6646a05fbccbf8fc45cfaa8afb9b41593ec84406587240bb413bd080d2dabeb7a317fd79d35cd740d914bc4a2aa7c66010466411167aea5c9ead0a5ba789e2c317596ee1cbf158d27f94a2e41a75a450b067b0bba90e9e8d31ecd7ac64cb7db442bc818102d98371ecb165c26a9d02eb37b6fb90773fe908219d8e99178d84a0e000ce24d2132d588a3be3891d1e04b1ed237dd7380a3db7f85b136fec0c6f31454ae24c2c7c217109e488e5e96baae91fec6dc584ed3576b364db82c9193f667927200f559d184d1d27afb25446ca27a10fb4edb9b37a114a8f634677cd53503b4eeefcfb66a2e1075e64f43779a92217e11c206646dd5f44c86642824968fe2cef508bc136d93cf38735be58fcda604edb5d7c5a0a2d0ade305e2831a73a38d353b520b5c1509bac35893f01a3d23913bba5cbae9fa575e08218f81c19c5a513dbd5e5197736f143da027283ee3fd6a87aa5b54bd8053b37849ff8530e9c8e1918274213eb5d66d231ab02274f550cdc256993912e72f4a1f33015293f1dbc6a82f5e0e737fb9779a797add43d56152b4ee1c0c9a06406adc", @typed={0x8, 0x1f, 0x0, 0x0, @u32=0xa}, @typed={0x8, 0x120, 0x0, 0x0, @u32=0x5}, @nested={0x4, 0x44}, @nested={0x4, 0x12d}, @typed={0x14, 0xcf, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @empty}}]}, @nested={0x13b, 0xe9, 0x0, 0x1, [@typed={0xba, 0x6b, 0x0, 0x0, @binary="51c4667366110c5044793ee89c309a0d42181f93549d384033ab39fc6792b8561fdea07abf8f9e636a5294736169f10404f4b595ceaaac5f49c0634ace1f65cec65db9049a02a84240493676bab1b99fd02964782c6740fb4d2c9f9aefc4debcbc9961d58da527144c44b0ad21f9b83a467db466d1e7fc454a6ae92a2c28ddcd5f70824d99f4ce0687f4c196e4d5accef9f3e02ce941c5bc1949a4474033f27b7007d7e8a20adc21272d3ab50ac4a4adb21ca3481769"}, @nested={0x4, 0x106}, @nested={0x4, 0x82}, @typed={0x8, 0x123, 0x0, 0x0, @ipv4=@remote}, @generic="7fd68c7ba268f829275bd0d23eaacb761d744ed8ade66f17490b61fcb5af56b1a322666c61e693c5c736ccd7a81f935e0c3b2f64e3c32d4fbe5fe0a8b0af8ca1c8c22e04a9aa919449f609c5047eb4f88cd625f89aee9bc89a2bd5047ffa8aa7c9e6c63907a8a3", @typed={0x4, 0x41}]}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x401}, @IPVS_CMD_ATTR_DEST={0x18, 0x2, 0x0, 0x1, [@typed={0x14, 0x7, 0x0, 0x0, @ipv6=@private1}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xb}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x9}]}, 0x11bc}}, 0x100) 153.471027ms ago: executing program 2 (id=1208): mmap$auto(0x800, 0x400008, 0x3, 0x9b72, 0xffffffffffffffff, 0x8000) r0 = socket(0x1d, 0x3, 0x1) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/rpc/nfsd.fh/flush\x00', 0xc8201, 0x0) write$auto(r1, 0x0, 0x6) r2 = getsockopt$auto(r0, 0x103, 0x4, 0xffffffffffffffff, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/module/block/parameters/events_dfl_poll_msecs\x00', 0x80002, 0x0) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) read$auto_fops_u32_ro_(r2, &(0x7f0000000200)=""/143, 0x8f) inotify_init1$auto(0x3000000000000) socket$nl_generic(0x10, 0x3, 0x10) socket(0x25, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x15, 0x5, 0x0) r3 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000340)='/dev/sg0\x00', 0x103002, 0x0) write$auto_sg_fops_sg(r3, &(0x7f0000000140)="01000000000d0000624c492f4aa7a158ad329acb69abe1d4bbe91b3ddc84d02747403bbca33c95be8fb08baf91e29260d0", 0x31) openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/arch_status\x00', 0x100382, 0x0) r4 = socket(0x10, 0x2, 0x0) socket(0x21, 0x6, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x3, 0x800, 0x0) inotify_init1$auto(0x3000000000000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) sendmsg$auto_NL80211_CMD_ABORT_SCAN(r4, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000128bd7000fd0008000900070000000800400010000000080014004a000000000000000000"], 0x2c}}, 0x40000) close_range$auto(0x2, 0xffffffffffffffff, 0x0) open(0x0, 0x22240, 0x55) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x200001, 0x0) ioctl$auto(0x3, 0x80106f53, r5) 0s ago: executing program 1 (id=1209): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/platform/vhci_hcd.7/usb24/24-0:1.0/usb24-port2/quirks\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x20) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/fail-nth\x00', 0x802, 0x0) r2 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, 0x0, 0xe000, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r3, 0x40049409, 0x0) ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r2, 0xc0285700, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty17\x00', 0x1, 0x0) close_range$auto(0x2, 0x8, 0x0) r4 = socket(0x29, 0x2, 0x0) openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsu\x00', 0x20042, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0x10003}, 0x1) syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000080), r4) mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0x8000000000000003, 0x8000) write$auto(0x3, 0x0, 0xfffffdf2) ioctl$auto(0x3, 0x80000541b, 0x38) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) socket(0x2b, 0x1, 0x1) listen$auto(0x3, 0x81) mmap$auto(0x0, 0x400008, 0x2, 0x9b72, 0x2, 0x8000) setsockopt$auto(0x3, 0x6, 0xa, 0x0, 0xfb3) write$auto_drm_edid_fops_drm_debugfs(0xffffffffffffffff, 0x0, 0x0) r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000240), r4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="040029bd7000fedbdf251f00000006004800897e0100"], 0x1c}, 0x1, 0x0, 0x0, 0x5}, 0x24008081) close_range$auto(0x0, 0xfffffffffffff000, 0x2) bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x0, r1, 0x7f, 0x2, 0x8, 0x4, 0xe3, 0x4000000002, 0x3}, 0x6f4) bpf$auto(0x8000000000000018, 0xfffffffffffffffe, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/adsp1\x00', 0x1, 0x0) kernel console output (not intermixed with test programs): U: 0 UID: 0 PID: 11113 Comm: syz.1.939 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 466.128581][T11113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 466.128594][T11113] Call Trace: [ 466.128601][T11113] [ 466.128609][T11113] dump_stack_lvl+0x16c/0x1f0 [ 466.128647][T11113] should_fail_ex+0x512/0x640 [ 466.128677][T11113] _copy_from_user+0x2e/0xd0 [ 466.128707][T11113] get_timespec64+0x8b/0x1b0 [ 466.128752][T11113] ? __pfx_get_timespec64+0x10/0x10 [ 466.128781][T11113] ? find_held_lock+0x2b/0x80 [ 466.128808][T11113] futex2_setup_timeout+0xe6/0x2c0 [ 466.128836][T11113] ? __pfx_futex2_setup_timeout+0x10/0x10 [ 466.128862][T11113] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 466.128899][T11113] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 466.128949][T11113] __do_sys_futex_waitv+0xf9/0x2c0 [ 466.128990][T11113] ? __pfx___do_sys_futex_waitv+0x10/0x10 [ 466.129045][T11113] do_syscall_64+0xcd/0x230 [ 466.129080][T11113] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 466.129102][T11113] RIP: 0033:0x7fa4b878e969 [ 466.129120][T11113] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 466.129147][T11113] RSP: 002b:00007fa4b65f6038 EFLAGS: 00000246 ORIG_RAX: 00000000000001c1 [ 466.129168][T11113] RAX: ffffffffffffffda RBX: 00007fa4b89b5fa0 RCX: 00007fa4b878e969 [ 466.129183][T11113] RDX: 0000000000000000 RSI: 0000000000000040 RDI: 00002000000004c0 [ 466.129197][T11113] RBP: 00007fa4b65f6090 R08: 0000000000000000 R09: 0000000000000000 [ 466.129210][T11113] R10: 0000200000000500 R11: 0000000000000246 R12: 0000000000000001 [ 466.129224][T11113] R13: 0000000000000001 R14: 00007fa4b89b5fa0 R15: 00007ffc29c84128 [ 466.129251][T11113] [ 467.506762][ T30] audit: type=1804 audit(6040429434.602:2): pid=11133 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.943" name="/newroot/237/file0" dev="tmpfs" ino=1242 res=1 errno=0 [ 467.548062][ T30] audit: type=1800 audit(6040429434.602:3): pid=11133 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.943" name="file0" dev="tmpfs" ino=1242 res=0 errno=0 [ 467.580727][ T30] audit: type=1804 audit(6040429434.632:4): pid=11133 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.943" name="/newroot/237/file0" dev="tmpfs" ino=1242 res=1 errno=0 [ 469.633221][T11173] FAULT_INJECTION: forcing a failure. [ 469.633221][T11173] name failslab, interval 1, probability 0, space 0, times 0 [ 469.692815][T11173] CPU: 1 UID: 0 PID: 11173 Comm: syz.0.952 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 469.692859][T11173] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 469.692876][T11173] Call Trace: [ 469.692886][T11173] [ 469.692897][T11173] dump_stack_lvl+0x16c/0x1f0 [ 469.692947][T11173] should_fail_ex+0x512/0x640 [ 469.692982][T11173] ? __kvmalloc_node_noprof+0x122/0x600 [ 469.693021][T11173] should_failslab+0xc2/0x120 [ 469.693063][T11173] __kvmalloc_node_noprof+0x135/0x600 [ 469.693097][T11173] ? sysctl_head_grab+0x51/0x70 [ 469.693129][T11173] ? proc_sys_call_handler+0x2a6/0x5c0 [ 469.693185][T11173] ? proc_sys_call_handler+0x2a6/0x5c0 [ 469.693222][T11173] proc_sys_call_handler+0x2a6/0x5c0 [ 469.693259][T11173] ? __pfx_proc_sys_call_handler+0x10/0x10 [ 469.693308][T11173] vfs_write+0x5ba/0x1180 [ 469.693340][T11173] ? __pfx_proc_sys_write+0x10/0x10 [ 469.693374][T11173] ? __pfx___mutex_lock+0x10/0x10 [ 469.693427][T11173] ? __pfx_vfs_write+0x10/0x10 [ 469.693480][T11173] ksys_write+0x12a/0x240 [ 469.693508][T11173] ? __pfx_ksys_write+0x10/0x10 [ 469.693566][T11173] do_syscall_64+0xcd/0x230 [ 469.693612][T11173] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 469.693640][T11173] RIP: 0033:0x7ff90a58e969 [ 469.693663][T11173] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 469.693690][T11173] RSP: 002b:00007ff90b3c3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 469.693715][T11173] RAX: ffffffffffffffda RBX: 00007ff90a7b5fa0 RCX: 00007ff90a58e969 [ 469.693733][T11173] RDX: 0000000000000002 RSI: 0000200000000040 RDI: 0000000000000003 [ 469.693751][T11173] RBP: 00007ff90b3c3090 R08: 0000000000000000 R09: 0000000000000000 [ 469.693769][T11173] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 469.693785][T11173] R13: 0000000000000000 R14: 00007ff90a7b5fa0 R15: 00007ffd13a5d138 [ 469.693822][T11173] [ 469.893950][ C1] vkms_vblank_simulate: vblank timer overrun [ 471.756403][T11208] FAULT_INJECTION: forcing a failure. [ 471.756403][T11208] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 471.940292][T11208] CPU: 1 UID: 0 PID: 11208 Comm: syz.3.958 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 471.940334][T11208] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 471.940351][T11208] Call Trace: [ 471.940361][T11208] [ 471.940372][T11208] dump_stack_lvl+0x16c/0x1f0 [ 471.940417][T11208] should_fail_ex+0x512/0x640 [ 471.940456][T11208] _copy_to_user+0x32/0xd0 [ 471.940496][T11208] simple_read_from_buffer+0xcb/0x170 [ 471.940544][T11208] proc_fail_nth_read+0x197/0x270 [ 471.940588][T11208] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 471.940633][T11208] ? rw_verify_area+0xcf/0x680 [ 471.940677][T11208] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 471.940720][T11208] vfs_read+0x1de/0xc70 [ 471.940754][T11208] ? __pfx___mutex_lock+0x10/0x10 [ 471.940795][T11208] ? __pfx_vfs_read+0x10/0x10 [ 471.940835][T11208] ? __fget_files+0x20e/0x3c0 [ 471.940873][T11208] ksys_read+0x12a/0x240 [ 471.940901][T11208] ? __pfx_ksys_read+0x10/0x10 [ 471.940942][T11208] do_syscall_64+0xcd/0x230 [ 471.940986][T11208] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 471.941015][T11208] RIP: 0033:0x7f684df8d37c [ 471.941037][T11208] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 471.941063][T11208] RSP: 002b:00007f684ee10030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 471.941090][T11208] RAX: ffffffffffffffda RBX: 00007f684e1b5fa0 RCX: 00007f684df8d37c [ 471.941125][T11208] RDX: 000000000000000f RSI: 00007f684ee100a0 RDI: 0000000000000004 [ 471.941140][T11208] RBP: 00007f684ee10090 R08: 0000000000000000 R09: 0000000000000000 [ 471.941156][T11208] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 471.941172][T11208] R13: 0000000000000000 R14: 00007f684e1b5fa0 R15: 00007ffd1becb708 [ 471.941218][T11208] [ 472.131279][ C1] vkms_vblank_simulate: vblank timer overrun [ 473.805226][T11244] ======================================================= [ 473.805226][T11244] WARNING: The mand mount option has been deprecated and [ 473.805226][T11244] and is ignored by this kernel. Remove the mand [ 473.805226][T11244] option from the mount to silence this warning. [ 473.805226][T11244] ======================================================= [ 473.840106][ C1] vkms_vblank_simulate: vblank timer overrun [ 473.997333][T11249] FAULT_INJECTION: forcing a failure. [ 473.997333][T11249] name failslab, interval 1, probability 0, space 0, times 0 [ 474.010232][T11249] CPU: 0 UID: 0 PID: 11249 Comm: syz.0.969 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 474.010268][T11249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 474.010284][T11249] Call Trace: [ 474.010294][T11249] [ 474.010305][T11249] dump_stack_lvl+0x16c/0x1f0 [ 474.010348][T11249] should_fail_ex+0x512/0x640 [ 474.010386][T11249] should_failslab+0xc2/0x120 [ 474.010425][T11249] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 474.010458][T11249] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 474.010500][T11249] ? radix_tree_node_alloc.constprop.0+0x7c/0x350 [ 474.010542][T11249] radix_tree_node_alloc.constprop.0+0x7c/0x350 [ 474.010585][T11249] idr_get_free+0x528/0xa30 [ 474.010636][T11249] idr_alloc_u32+0x190/0x2f0 [ 474.010677][T11249] ? __pfx_idr_alloc_u32+0x10/0x10 [ 474.010718][T11249] ? lock_acquire+0x179/0x350 [ 474.010764][T11249] idr_alloc_cyclic+0x10b/0x230 [ 474.010805][T11249] ? __pfx_idr_alloc_cyclic+0x10/0x10 [ 474.010840][T11249] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 474.010895][T11249] map_create+0x9aa/0x1db0 [ 474.010948][T11249] ? __pfx_map_create+0x10/0x10 [ 474.010984][T11249] ? __might_fault+0xe3/0x190 [ 474.011024][T11249] ? __might_fault+0xe3/0x190 [ 474.011056][T11249] ? __might_fault+0x13b/0x190 [ 474.011107][T11249] __sys_bpf+0x47cc/0x4d80 [ 474.011147][T11249] ? __pfx_futex_wake+0x10/0x10 [ 474.011189][T11249] ? __pfx___sys_bpf+0x10/0x10 [ 474.011242][T11249] ? do_futex+0x122/0x350 [ 474.011274][T11249] ? __pfx_do_futex+0x10/0x10 [ 474.011324][T11249] ? xfd_validate_state+0x5d/0x180 [ 474.011355][T11249] ? rcu_is_watching+0x12/0xc0 [ 474.011389][T11249] __x64_sys_bpf+0x78/0xc0 [ 474.011432][T11249] ? lockdep_hardirqs_on+0x7c/0x110 [ 474.011470][T11249] do_syscall_64+0xcd/0x230 [ 474.011514][T11249] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 474.011542][T11249] RIP: 0033:0x7ff90a58e969 [ 474.011563][T11249] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 474.011589][T11249] RSP: 002b:00007ff90b3c3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 474.011615][T11249] RAX: ffffffffffffffda RBX: 00007ff90a7b5fa0 RCX: 00007ff90a58e969 [ 474.011634][T11249] RDX: 0000000000000010 RSI: 00002000000001c0 RDI: 0000000000000000 [ 474.011651][T11249] RBP: 00007ff90a610ab1 R08: 0000000000000000 R09: 0000000000000000 [ 474.011668][T11249] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 474.011685][T11249] R13: 0000000000000000 R14: 00007ff90a7b5fa0 R15: 00007ffd13a5d138 [ 474.011721][T11249] [ 474.596184][T11261] FAULT_INJECTION: forcing a failure. [ 474.596184][T11261] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 474.629923][T11261] CPU: 1 UID: 0 PID: 11261 Comm: syz.1.973 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 474.629974][T11261] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 474.629991][T11261] Call Trace: [ 474.630000][T11261] [ 474.630011][T11261] dump_stack_lvl+0x16c/0x1f0 [ 474.630058][T11261] should_fail_ex+0x512/0x640 [ 474.630099][T11261] _copy_to_user+0x32/0xd0 [ 474.630140][T11261] simple_read_from_buffer+0xcb/0x170 [ 474.630189][T11261] proc_fail_nth_read+0x197/0x270 [ 474.630236][T11261] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 474.630282][T11261] ? rw_verify_area+0xcf/0x680 [ 474.630326][T11261] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 474.630371][T11261] vfs_read+0x1de/0xc70 [ 474.630406][T11261] ? __pfx___mutex_lock+0x10/0x10 [ 474.630449][T11261] ? __pfx_vfs_read+0x10/0x10 [ 474.630489][T11261] ? __fget_files+0x20e/0x3c0 [ 474.630528][T11261] ksys_read+0x12a/0x240 [ 474.630557][T11261] ? __pfx_ksys_read+0x10/0x10 [ 474.630584][T11261] ? rcu_is_watching+0x12/0xc0 [ 474.630625][T11261] do_syscall_64+0xcd/0x230 [ 474.630671][T11261] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 474.630700][T11261] RIP: 0033:0x7fa4b878d37c [ 474.630722][T11261] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 474.630750][T11261] RSP: 002b:00007fa4b65f6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 474.630776][T11261] RAX: ffffffffffffffda RBX: 00007fa4b89b5fa0 RCX: 00007fa4b878d37c [ 474.630795][T11261] RDX: 000000000000000f RSI: 00007fa4b65f60a0 RDI: 0000000000000004 [ 474.630813][T11261] RBP: 00007fa4b65f6090 R08: 0000000000000000 R09: 0000000000000020 [ 474.630830][T11261] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 474.630847][T11261] R13: 0000000000000000 R14: 00007fa4b89b5fa0 R15: 00007ffc29c84128 [ 474.630884][T11261] [ 476.044342][T11293] [U]  [ 476.047309][T11293] [U] [ 476.050020][T11293] [U] [ 476.052729][T11293] [U] [ 476.059224][T11293] [U] [ 476.061962][T11293] [U] [ 476.064669][T11293] [U] [ 476.067396][T11293] [U] [ 476.143739][T11293] [U] [ 476.146523][T11293] [U] [ 476.149250][T11293] [U] [ 476.151991][T11293] [U] [ 476.205442][T11295] [U] [ 476.599230][T11311] FAULT_INJECTION: forcing a failure. [ 476.599230][T11311] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 476.660176][T11311] CPU: 0 UID: 0 PID: 11311 Comm: syz.3.978 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 476.660239][T11311] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 476.660258][T11311] Call Trace: [ 476.660268][T11311] [ 476.660279][T11311] dump_stack_lvl+0x16c/0x1f0 [ 476.660329][T11311] should_fail_ex+0x512/0x640 [ 476.660385][T11311] _copy_from_user+0x2e/0xd0 [ 476.660426][T11311] copy_msghdr_from_user+0x98/0x160 [ 476.660468][T11311] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 476.660516][T11311] ? __pfx__kstrtoull+0x10/0x10 [ 476.660573][T11311] ___sys_sendmsg+0xfe/0x1d0 [ 476.660617][T11311] ? __pfx____sys_sendmsg+0x10/0x10 [ 476.660677][T11311] ? find_held_lock+0x2b/0x80 [ 476.660734][T11311] __sys_sendmmsg+0x200/0x420 [ 476.660782][T11311] ? __pfx___sys_sendmmsg+0x10/0x10 [ 476.660846][T11311] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 476.660909][T11311] ? fput+0x70/0xf0 [ 476.660948][T11311] ? ksys_write+0x1b9/0x240 [ 476.660980][T11311] ? __pfx_ksys_write+0x10/0x10 [ 476.661010][T11311] ? rcu_is_watching+0x12/0xc0 [ 476.661049][T11311] __x64_sys_sendmmsg+0x9c/0x100 [ 476.661091][T11311] ? lockdep_hardirqs_on+0x7c/0x110 [ 476.661134][T11311] do_syscall_64+0xcd/0x230 [ 476.661188][T11311] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 476.661220][T11311] RIP: 0033:0x7f684df8e969 [ 476.661244][T11311] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 476.661274][T11311] RSP: 002b:00007f684ee10038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 476.661304][T11311] RAX: ffffffffffffffda RBX: 00007f684e1b5fa0 RCX: 00007f684df8e969 [ 476.661325][T11311] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 476.661344][T11311] RBP: 00007f684ee10090 R08: 0000000000000000 R09: 0000000000000000 [ 476.661363][T11311] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 476.661382][T11311] R13: 0000000000000000 R14: 00007f684e1b5fa0 R15: 00007ffd1becb708 [ 476.661421][T11311] [ 477.493359][ T5902] Process accounting resumed [ 477.642387][T11330] random: crng reseeded on system resumption [ 478.361864][T11326] FAULT_INJECTION: forcing a failure. [ 478.361864][T11326] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 478.432845][T11326] CPU: 0 UID: 0 PID: 11326 Comm: syz.0.981 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 478.432905][T11326] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 478.432921][T11326] Call Trace: [ 478.432930][T11326] [ 478.432940][T11326] dump_stack_lvl+0x16c/0x1f0 [ 478.432983][T11326] should_fail_ex+0x512/0x640 [ 478.433020][T11326] _copy_from_user+0x2e/0xd0 [ 478.433055][T11326] __do_sys_adjtimex+0x92/0x140 [ 478.433090][T11326] ? __pfx___do_sys_adjtimex+0x10/0x10 [ 478.433123][T11326] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 478.433184][T11326] ? syscall_user_dispatch+0x78/0x140 [ 478.433236][T11326] do_syscall_64+0xcd/0x230 [ 478.433277][T11326] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 478.433304][T11326] RIP: 0033:0x7ff90a58e969 [ 478.433325][T11326] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 478.433351][T11326] RSP: 002b:00007ff90b3c3038 EFLAGS: 00000246 ORIG_RAX: 000000000000009f [ 478.433376][T11326] RAX: ffffffffffffffda RBX: 00007ff90a7b5fa0 RCX: 00007ff90a58e969 [ 478.433393][T11326] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 478.433408][T11326] RBP: 00007ff90b3c3090 R08: 0000000000000000 R09: 0000000000000000 [ 478.433425][T11326] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 478.433440][T11326] R13: 0000000000000000 R14: 00007ff90a7b5fa0 R15: 00007ffd13a5d138 [ 478.433473][T11326] [ 478.664563][T11322] Process accounting resumed [ 479.503720][T11375] FAULT_INJECTION: forcing a failure. [ 479.503720][T11375] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 479.550242][T11375] CPU: 1 UID: 0 PID: 11375 Comm: syz.2.988 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 479.550293][T11375] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 479.550309][T11375] Call Trace: [ 479.550318][T11375] [ 479.550328][T11375] dump_stack_lvl+0x16c/0x1f0 [ 479.550372][T11375] should_fail_ex+0x512/0x640 [ 479.550410][T11375] _copy_from_user+0x2e/0xd0 [ 479.550446][T11375] copy_msghdr_from_user+0x98/0x160 [ 479.550484][T11375] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 479.550538][T11375] ___sys_sendmsg+0xfe/0x1d0 [ 479.550577][T11375] ? __pfx____sys_sendmsg+0x10/0x10 [ 479.550655][T11375] __sys_sendmsg+0x16d/0x220 [ 479.550698][T11375] ? __pfx___sys_sendmsg+0x10/0x10 [ 479.550746][T11375] ? rcu_is_watching+0x12/0xc0 [ 479.550784][T11375] do_syscall_64+0xcd/0x230 [ 479.550846][T11375] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 479.550875][T11375] RIP: 0033:0x7f299b38e969 [ 479.550908][T11375] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 479.550934][T11375] RSP: 002b:00007f299c1d6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 479.550960][T11375] RAX: ffffffffffffffda RBX: 00007f299b5b5fa0 RCX: 00007f299b38e969 [ 479.550978][T11375] RDX: 0000000000000080 RSI: 0000200000000140 RDI: 0000000000000004 [ 479.550995][T11375] RBP: 00007f299c1d6090 R08: 0000000000000000 R09: 0000000000000000 [ 479.551011][T11375] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 479.551027][T11375] R13: 0000000000000000 R14: 00007f299b5b5fa0 R15: 00007ffe300bb8b8 [ 479.551061][T11375] [ 479.731822][T11375] netlink: 4 bytes leftover after parsing attributes in process `syz.2.988'. [ 481.200606][T11408] usbip-vudc usbip-vudc.0: gadget not bound [ 483.926531][T11448] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 487.026010][T11481] FAULT_INJECTION: forcing a failure. [ 487.026010][T11481] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 487.077236][T11481] CPU: 1 UID: 0 PID: 11481 Comm: syz.0.1009 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 487.077281][T11481] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 487.077300][T11481] Call Trace: [ 487.077311][T11481] [ 487.077322][T11481] dump_stack_lvl+0x16c/0x1f0 [ 487.077373][T11481] should_fail_ex+0x512/0x640 [ 487.077419][T11481] _copy_from_user+0x2e/0xd0 [ 487.077462][T11481] copy_from_sockptr_offset.constprop.0+0x153/0x1a0 [ 487.077517][T11481] ? __pfx_copy_from_sockptr_offset.constprop.0+0x10/0x10 [ 487.077592][T11481] packet_setsockopt+0xbbd/0x3360 [ 487.077641][T11481] ? __pfx_packet_setsockopt+0x10/0x10 [ 487.077675][T11481] ? aa_sk_perm+0x2f4/0xb10 [ 487.077712][T11481] ? __lock_acquire+0x5ca/0x1ba0 [ 487.077751][T11481] ? __pfx_aa_sk_perm+0x10/0x10 [ 487.077784][T11481] ? find_held_lock+0x2b/0x80 [ 487.077821][T11481] ? __pfx_packet_setsockopt+0x10/0x10 [ 487.077851][T11481] do_sock_setsockopt+0x221/0x470 [ 487.077897][T11481] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 487.077984][T11481] __sys_setsockopt+0x120/0x1a0 [ 487.078029][T11481] __x64_sys_setsockopt+0xbd/0x160 [ 487.078076][T11481] ? do_syscall_64+0x91/0x230 [ 487.078120][T11481] ? lockdep_hardirqs_on+0x7c/0x110 [ 487.078163][T11481] do_syscall_64+0xcd/0x230 [ 487.078210][T11481] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 487.078241][T11481] RIP: 0033:0x7ff90a58e969 [ 487.078276][T11481] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 487.078303][T11481] RSP: 002b:00007ff90b3a2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 487.078331][T11481] RAX: ffffffffffffffda RBX: 00007ff90a7b6080 RCX: 00007ff90a58e969 [ 487.078350][T11481] RDX: 0000000000000012 RSI: 0000000000000107 RDI: 0000000000000003 [ 487.078368][T11481] RBP: 00007ff90b3a2090 R08: 0000000000000004 R09: 0000000000000000 [ 487.078385][T11481] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 487.078402][T11481] R13: 0000000000000000 R14: 00007ff90a7b6080 R15: 00007ffd13a5d138 [ 487.078438][T11481] [ 487.288694][T11484] FAULT_INJECTION: forcing a failure. [ 487.288694][T11484] name failslab, interval 1, probability 0, space 0, times 0 [ 487.295047][T11484] CPU: 0 UID: 0 PID: 11484 Comm: syz.2.1010 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 487.295110][T11484] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 487.295128][T11484] Call Trace: [ 487.295138][T11484] [ 487.295149][T11484] dump_stack_lvl+0x16c/0x1f0 [ 487.295198][T11484] should_fail_ex+0x512/0x640 [ 487.295235][T11484] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 487.295277][T11484] should_failslab+0xc2/0x120 [ 487.295319][T11484] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 487.295357][T11484] ? copy_process+0x4bd/0x91a0 [ 487.295407][T11484] copy_process+0x4bd/0x91a0 [ 487.295450][T11484] ? _kstrtoull+0x145/0x200 [ 487.295498][T11484] ? __pfx__kstrtoull+0x10/0x10 [ 487.295554][T11484] ? find_held_lock+0x2b/0x80 [ 487.295597][T11484] ? __pfx_copy_process+0x10/0x10 [ 487.295655][T11484] ? find_held_lock+0x2b/0x80 [ 487.295704][T11484] kernel_clone+0xfc/0x960 [ 487.295750][T11484] ? __pfx_kernel_clone+0x10/0x10 [ 487.295809][T11484] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 487.295859][T11484] ? 0xffffffff81000000 [ 487.295881][T11484] __do_sys_clone+0xce/0x120 [ 487.295923][T11484] ? __pfx___do_sys_clone+0x10/0x10 [ 487.295966][T11484] ? 0xffffffff81000000 [ 487.296000][T11484] ? ksys_write+0x1b9/0x240 [ 487.296040][T11484] ? __pfx_ksys_write+0x10/0x10 [ 487.296070][T11484] ? madvise_unlock+0xc6/0x190 [ 487.296123][T11484] do_syscall_64+0xcd/0x230 [ 487.296171][T11484] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 487.296203][T11484] RIP: 0033:0x7f299b38e969 [ 487.296226][T11484] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 487.296255][T11484] RSP: 002b:00007f299c1d6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 487.296283][T11484] RAX: ffffffffffffffda RBX: 00007f299b5b5fa0 RCX: 00007f299b38e969 [ 487.296304][T11484] RDX: 9999999999999999 RSI: 0000000000000007 RDI: 0000000000000021 [ 487.296322][T11484] RBP: 00007f299c1d6090 R08: 0000000000000006 R09: 0000000000000000 [ 487.296341][T11484] R10: ffffffff81000000 R11: 0000000000000246 R12: 0000000000000001 [ 487.296359][T11484] R13: 0000000000000000 R14: 00007f299b5b5fa0 R15: 00007ffe300bb8b8 [ 487.296385][T11484] ? 0xffffffff81000000 [ 487.296436][T11484] [ 487.466602][T11487] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1011'. [ 488.259194][T11461] tty tty17: ldisc open failed (-12), clearing slot 16 [ 488.690811][T11499] FAULT_INJECTION: forcing a failure. [ 488.690811][T11499] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 488.749959][T11499] CPU: 1 UID: 0 PID: 11499 Comm: syz.3.1014 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 488.750002][T11499] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 488.750020][T11499] Call Trace: [ 488.750029][T11499] [ 488.750040][T11499] dump_stack_lvl+0x16c/0x1f0 [ 488.750087][T11499] should_fail_ex+0x512/0x640 [ 488.750127][T11499] _copy_from_user+0x2e/0xd0 [ 488.750167][T11499] add_rule_path_beneath+0xac/0x520 [ 488.750221][T11499] ? __pfx_add_rule_path_beneath+0x10/0x10 [ 488.750283][T11499] ? fput+0x70/0xf0 [ 488.750324][T11499] __x64_sys_landlock_add_rule+0x1a9/0x240 [ 488.750373][T11499] do_syscall_64+0xcd/0x230 [ 488.750416][T11499] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 488.750443][T11499] RIP: 0033:0x7f684df8e969 [ 488.750463][T11499] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 488.750489][T11499] RSP: 002b:00007f684ee10038 EFLAGS: 00000246 ORIG_RAX: 00000000000001bd [ 488.750514][T11499] RAX: ffffffffffffffda RBX: 00007f684e1b5fa0 RCX: 00007f684df8e969 [ 488.750532][T11499] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000003 [ 488.750548][T11499] RBP: 00007f684ee10090 R08: 0000000000000000 R09: 0000000000000000 [ 488.750565][T11499] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 488.750580][T11499] R13: 0000000000000000 R14: 00007f684e1b5fa0 R15: 00007ffd1becb708 [ 488.750615][T11499] [ 489.228540][T11510] FAULT_INJECTION: forcing a failure. [ 489.228540][T11510] name failslab, interval 1, probability 0, space 0, times 0 [ 489.246260][T11510] CPU: 0 UID: 0 PID: 11510 Comm: syz.0.1016 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 489.246306][T11510] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 489.246323][T11510] Call Trace: [ 489.246334][T11510] [ 489.246351][T11510] dump_stack_lvl+0x16c/0x1f0 [ 489.246420][T11510] should_fail_ex+0x512/0x640 [ 489.246458][T11510] ? fs_reclaim_acquire+0xae/0x150 [ 489.246514][T11510] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 489.246561][T11510] should_failslab+0xc2/0x120 [ 489.246603][T11510] __kmalloc_noprof+0xd2/0x510 [ 489.246651][T11510] tomoyo_realpath_from_path+0xc2/0x6e0 [ 489.246702][T11510] ? tomoyo_profile+0x47/0x60 [ 489.246756][T11510] tomoyo_path_number_perm+0x245/0x580 [ 489.246795][T11510] ? tomoyo_path_number_perm+0x237/0x580 [ 489.246838][T11510] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 489.246880][T11510] ? find_held_lock+0x2b/0x80 [ 489.246951][T11510] ? find_held_lock+0x2b/0x80 [ 489.246983][T11510] ? hook_file_ioctl_common+0x145/0x410 [ 489.247029][T11510] ? __fget_files+0x20e/0x3c0 [ 489.247067][T11510] security_file_ioctl+0x9b/0x240 [ 489.247111][T11510] __x64_sys_ioctl+0xb7/0x200 [ 489.247162][T11510] do_syscall_64+0xcd/0x230 [ 489.247220][T11510] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 489.247252][T11510] RIP: 0033:0x7ff90a58e969 [ 489.247277][T11510] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 489.247309][T11510] RSP: 002b:00007ff90b3c3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 489.247339][T11510] RAX: ffffffffffffffda RBX: 00007ff90a7b5fa0 RCX: 00007ff90a58e969 [ 489.247361][T11510] RDX: 0000000000000001 RSI: 0000000080047456 RDI: 0000000000000003 [ 489.247380][T11510] RBP: 00007ff90b3c3090 R08: 0000000000000000 R09: 0000000000000000 [ 489.247400][T11510] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 489.247418][T11510] R13: 0000000000000000 R14: 00007ff90a7b5fa0 R15: 00007ffd13a5d138 [ 489.247460][T11510] [ 489.247472][T11510] ERROR: Out of memory at tomoyo_realpath_from_path. [ 489.855356][T11530] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1021'. [ 491.285801][T11543] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1024'. [ 496.226190][T11585] capability: warning: `syz.3.1035' uses 32-bit capabilities (legacy support in use) [ 496.923559][T11595] FAULT_INJECTION: forcing a failure. [ 496.923559][T11595] name failslab, interval 1, probability 0, space 0, times 0 [ 496.996411][T11595] CPU: 1 UID: 0 PID: 11595 Comm: syz.2.1036 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 496.996456][T11595] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 496.996474][T11595] Call Trace: [ 496.996483][T11595] [ 496.996495][T11595] dump_stack_lvl+0x16c/0x1f0 [ 496.996542][T11595] should_fail_ex+0x512/0x640 [ 496.996578][T11595] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 496.996620][T11595] should_failslab+0xc2/0x120 [ 496.996660][T11595] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 496.996697][T11595] ? __alloc_skb+0x2b2/0x380 [ 496.996741][T11595] __alloc_skb+0x2b2/0x380 [ 496.996779][T11595] ? __pfx___alloc_skb+0x10/0x10 [ 496.996827][T11595] ? bpf_ksym_find+0x124/0x1c0 [ 496.996855][T11595] ? aa_label_sk_perm+0x19b/0x5a0 [ 496.996890][T11595] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 496.996934][T11595] tcp_stream_alloc_skb+0x34/0x570 [ 496.996967][T11595] tcp_sendmsg_locked+0xec1/0x3930 [ 496.997021][T11595] ? __pfx_tcp_sendmsg_locked+0x10/0x10 [ 496.997054][T11595] ? do_raw_spin_lock+0x12c/0x2b0 [ 496.997082][T11595] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 496.997139][T11595] ? __local_bh_enable_ip+0xa4/0x120 [ 496.997183][T11595] tcp_sendmsg+0x2e/0x50 [ 496.997208][T11595] ? __pfx_tcp_sendmsg+0x10/0x10 [ 496.997236][T11595] inet_sendmsg+0xb9/0x140 [ 496.997266][T11595] sock_write_iter+0x4aa/0x5b0 [ 496.997296][T11595] ? __pfx_sock_write_iter+0x10/0x10 [ 496.997340][T11595] ? bpf_lsm_file_permission+0x9/0x10 [ 496.997369][T11595] ? security_file_permission+0x71/0x210 [ 496.997412][T11595] ? rw_verify_area+0xcf/0x680 [ 496.997467][T11595] vfs_write+0x5ba/0x1180 [ 496.997499][T11595] ? __pfx_sock_write_iter+0x10/0x10 [ 496.997532][T11595] ? __pfx_vfs_write+0x10/0x10 [ 496.997560][T11595] ? find_held_lock+0x2b/0x80 [ 496.997636][T11595] ksys_write+0x205/0x240 [ 496.997662][T11595] ? __pfx_ksys_write+0x10/0x10 [ 496.997686][T11595] ? rcu_is_watching+0x12/0xc0 [ 496.997720][T11595] do_syscall_64+0xcd/0x230 [ 496.997760][T11595] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 496.997785][T11595] RIP: 0033:0x7f299b38e969 [ 496.997808][T11595] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 496.997833][T11595] RSP: 002b:00007f299c1b5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 496.997857][T11595] RAX: ffffffffffffffda RBX: 00007f299b5b6080 RCX: 00007f299b38e969 [ 496.997874][T11595] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003 [ 496.997888][T11595] RBP: 00007f299c1b5090 R08: 0000000000000000 R09: 0000000000000000 [ 496.997903][T11595] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 496.997918][T11595] R13: 0000000000000000 R14: 00007f299b5b6080 R15: 00007ffe300bb8b8 [ 496.997950][T11595] [ 498.468754][T11613] mkiss: ax0: crc mode is auto. [ 498.848637][T11604] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1038'. [ 499.820514][T11629] FAULT_INJECTION: forcing a failure. [ 499.820514][T11629] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 499.865551][T11629] CPU: 1 UID: 0 PID: 11629 Comm: syz.3.1045 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 499.865596][T11629] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 499.865614][T11629] Call Trace: [ 499.865623][T11629] [ 499.865635][T11629] dump_stack_lvl+0x16c/0x1f0 [ 499.865685][T11629] should_fail_ex+0x512/0x640 [ 499.865728][T11629] _copy_to_user+0x32/0xd0 [ 499.865771][T11629] ksys_shmctl.constprop.0+0x2a8/0x380 [ 499.865819][T11629] ? __pfx_ksys_shmctl.constprop.0+0x10/0x10 [ 499.865873][T11629] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 499.865924][T11629] ? __fget_files+0x20e/0x3c0 [ 499.865981][T11629] do_syscall_64+0xcd/0x230 [ 499.866029][T11629] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 499.866059][T11629] RIP: 0033:0x7f684df8e969 [ 499.866083][T11629] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 499.866113][T11629] RSP: 002b:00007f684ee10038 EFLAGS: 00000246 ORIG_RAX: 000000000000001f [ 499.866143][T11629] RAX: ffffffffffffffda RBX: 00007f684e1b5fa0 RCX: 00007f684df8e969 [ 499.866163][T11629] RDX: 0000200000000100 RSI: 000000000000000e RDI: 0000000000000003 [ 499.866182][T11629] RBP: 00007f684ee10090 R08: 0000000000000000 R09: 0000000000000000 [ 499.866201][T11629] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 499.866218][T11629] R13: 0000000000000000 R14: 00007f684e1b5fa0 R15: 00007ffd1becb708 [ 499.866256][T11629] [ 501.083410][T11653] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1050'. [ 501.588973][T11670] FAULT_INJECTION: forcing a failure. [ 501.588973][T11670] name failslab, interval 1, probability 0, space 0, times 0 [ 501.609821][T11670] CPU: 0 UID: 0 PID: 11670 Comm: syz.2.1053 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 501.609865][T11670] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 501.609883][T11670] Call Trace: [ 501.609893][T11670] [ 501.609905][T11670] dump_stack_lvl+0x16c/0x1f0 [ 501.609953][T11670] should_fail_ex+0x512/0x640 [ 501.609991][T11670] ? __kmalloc_noprof+0xbf/0x510 [ 501.610031][T11670] ? nvram_misc_read+0x81/0x190 [ 501.610060][T11670] should_failslab+0xc2/0x120 [ 501.610102][T11670] __kmalloc_noprof+0xd2/0x510 [ 501.610142][T11670] ? apparmor_file_permission+0x251/0x400 [ 501.610186][T11670] nvram_misc_read+0x81/0x190 [ 501.610219][T11670] ? __pfx_nvram_misc_read+0x10/0x10 [ 501.610251][T11670] vfs_readv+0x6bc/0x8a0 [ 501.610291][T11670] ? __pfx_vfs_readv+0x10/0x10 [ 501.610354][T11670] ? __fget_files+0x20e/0x3c0 [ 501.610382][T11670] ? __fget_files+0x1f0/0x3c0 [ 501.610420][T11670] ? do_readv+0x132/0x330 [ 501.610446][T11670] do_readv+0x132/0x330 [ 501.610475][T11670] ? __pfx_do_readv+0x10/0x10 [ 501.610501][T11670] ? rcu_is_watching+0x12/0xc0 [ 501.610544][T11670] do_syscall_64+0xcd/0x230 [ 501.610593][T11670] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 501.610624][T11670] RIP: 0033:0x7f299b38e969 [ 501.610649][T11670] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 501.610680][T11670] RSP: 002b:00007f299c1d6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000013 [ 501.610709][T11670] RAX: ffffffffffffffda RBX: 00007f299b5b5fa0 RCX: 00007f299b38e969 [ 501.610730][T11670] RDX: 0000000000000001 RSI: 0000200000000700 RDI: 0000000000000003 [ 501.610749][T11670] RBP: 00007f299c1d6090 R08: 0000000000000000 R09: 0000000000000000 [ 501.610767][T11670] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 501.610786][T11670] R13: 0000000000000000 R14: 00007f299b5b5fa0 R15: 00007ffe300bb8b8 [ 501.610825][T11670] [ 501.814468][ C0] vkms_vblank_simulate: vblank timer overrun [ 502.258433][T11683] FAULT_INJECTION: forcing a failure. [ 502.258433][T11683] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 502.298386][T11683] CPU: 1 UID: 0 PID: 11683 Comm: syz.2.1058 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 502.298431][T11683] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 502.298450][T11683] Call Trace: [ 502.298460][T11683] [ 502.298471][T11683] dump_stack_lvl+0x16c/0x1f0 [ 502.298530][T11683] should_fail_ex+0x512/0x640 [ 502.298572][T11683] _copy_from_user+0x2e/0xd0 [ 502.298614][T11683] copy_msghdr_from_user+0x98/0x160 [ 502.298658][T11683] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 502.298720][T11683] ___sys_sendmsg+0xfe/0x1d0 [ 502.298764][T11683] ? __pfx____sys_sendmsg+0x10/0x10 [ 502.298854][T11683] __sys_sendmsg+0x16d/0x220 [ 502.298898][T11683] ? __pfx___sys_sendmsg+0x10/0x10 [ 502.298952][T11683] ? rcu_is_watching+0x12/0xc0 [ 502.298997][T11683] do_syscall_64+0xcd/0x230 [ 502.299045][T11683] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 502.299077][T11683] RIP: 0033:0x7f299b38e969 [ 502.299101][T11683] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 502.299131][T11683] RSP: 002b:00007f299c1d6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 502.299160][T11683] RAX: ffffffffffffffda RBX: 00007f299b5b5fa0 RCX: 00007f299b38e969 [ 502.299180][T11683] RDX: 00000000040000c0 RSI: 0000200000000300 RDI: 0000000000000003 [ 502.299199][T11683] RBP: 00007f299c1d6090 R08: 0000000000000000 R09: 0000000000000000 [ 502.299218][T11683] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 502.299236][T11683] R13: 0000000000000000 R14: 00007f299b5b5fa0 R15: 00007ffe300bb8b8 [ 502.299276][T11683] [ 502.998425][T11694] FAULT_INJECTION: forcing a failure. [ 502.998425][T11694] name failslab, interval 1, probability 0, space 0, times 0 [ 503.039499][T11694] CPU: 0 UID: 0 PID: 11694 Comm: syz.3.1061 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 503.039541][T11694] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 503.039559][T11694] Call Trace: [ 503.039568][T11694] [ 503.039579][T11694] dump_stack_lvl+0x16c/0x1f0 [ 503.039628][T11694] should_fail_ex+0x512/0x640 [ 503.039662][T11694] ? fs_reclaim_acquire+0xae/0x150 [ 503.039715][T11694] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 503.039756][T11694] should_failslab+0xc2/0x120 [ 503.039795][T11694] __kmalloc_noprof+0xd2/0x510 [ 503.039836][T11694] tomoyo_realpath_from_path+0xc2/0x6e0 [ 503.039883][T11694] ? tomoyo_profile+0x47/0x60 [ 503.039934][T11694] tomoyo_path_number_perm+0x245/0x580 [ 503.039969][T11694] ? tomoyo_path_number_perm+0x237/0x580 [ 503.040009][T11694] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 503.040047][T11694] ? find_held_lock+0x2b/0x80 [ 503.040112][T11694] ? find_held_lock+0x2b/0x80 [ 503.040143][T11694] ? hook_file_ioctl_common+0x145/0x410 [ 503.040185][T11694] ? __fget_files+0x20e/0x3c0 [ 503.040220][T11694] security_file_ioctl+0x9b/0x240 [ 503.040260][T11694] __x64_sys_ioctl+0xb7/0x200 [ 503.040307][T11694] do_syscall_64+0xcd/0x230 [ 503.040353][T11694] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 503.040392][T11694] RIP: 0033:0x7f684df8e969 [ 503.040414][T11694] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 503.040440][T11694] RSP: 002b:00007f684ee10038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 503.040473][T11694] RAX: ffffffffffffffda RBX: 00007f684e1b5fa0 RCX: 00007f684df8e969 [ 503.040491][T11694] RDX: 0000000000000000 RSI: 0000000080045017 RDI: 0000000000000005 [ 503.040508][T11694] RBP: 00007f684ee10090 R08: 0000000000000000 R09: 0000000000000000 [ 503.040525][T11694] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 503.040542][T11694] R13: 0000000000000000 R14: 00007f684e1b5fa0 R15: 00007ffd1becb708 [ 503.040578][T11694] [ 503.241202][ C0] vkms_vblank_simulate: vblank timer overrun [ 503.310321][T11695] process 'syz.1.1057' launched './file0' with NULL argv: empty string added [ 503.400788][T11694] ERROR: Out of memory at tomoyo_realpath_from_path. [ 503.863645][T11704] FAULT_INJECTION: forcing a failure. [ 503.863645][T11704] name failslab, interval 1, probability 0, space 0, times 0 [ 503.900995][T11704] CPU: 0 UID: 0 PID: 11704 Comm: syz.3.1063 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 503.901046][T11704] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 503.901066][T11704] Call Trace: [ 503.901076][T11704] [ 503.901088][T11704] dump_stack_lvl+0x16c/0x1f0 [ 503.901138][T11704] should_fail_ex+0x512/0x640 [ 503.901186][T11704] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 503.901230][T11704] should_failslab+0xc2/0x120 [ 503.901269][T11704] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 503.901305][T11704] ? bpf_ksym_find+0x124/0x1c0 [ 503.901334][T11704] ? __kernfs_new_node+0xd2/0x8a0 [ 503.901370][T11704] __kernfs_new_node+0xd2/0x8a0 [ 503.901407][T11704] ? __pfx___kernfs_new_node+0x10/0x10 [ 503.901450][T11704] ? find_held_lock+0x2b/0x80 [ 503.901484][T11704] ? kernfs_root+0xee/0x2a0 [ 503.901525][T11704] kernfs_new_node+0x13c/0x1e0 [ 503.901563][T11704] ? kasan_save_stack+0x42/0x60 [ 503.901602][T11704] kernfs_create_dir_ns+0x4c/0x1a0 [ 503.901645][T11704] sysfs_create_dir_ns+0x13a/0x2b0 [ 503.901676][T11704] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 503.901703][T11704] ? find_held_lock+0x2b/0x80 [ 503.901743][T11704] ? do_raw_spin_unlock+0x172/0x230 [ 503.901774][T11704] kobject_add_internal+0x2c4/0x9b0 [ 503.901832][T11704] kobject_add+0x16e/0x240 [ 503.901859][T11704] ? __pfx_kobject_add+0x10/0x10 [ 503.901909][T11704] get_device_parent+0x399/0x4e0 [ 503.901946][T11704] device_add+0x1ad/0x1a70 [ 503.901984][T11704] ? __pfx_device_add+0x10/0x10 [ 503.902015][T11704] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 503.902064][T11704] ? ieee80211_set_bitrate_flags+0x243/0x6b0 [ 503.902121][T11704] wiphy_register+0x1c9c/0x2850 [ 503.902161][T11704] ? netdev_run_todo+0x864/0x1320 [ 503.902209][T11704] ? __dev_printk+0x1a0/0x270 [ 503.902284][T11704] ? __pfx_wiphy_register+0x10/0x10 [ 503.902344][T11704] ieee80211_register_hw+0x2432/0x4020 [ 503.902395][T11704] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 503.902437][T11704] ? find_held_lock+0x2b/0x80 [ 503.902474][T11704] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 503.902524][T11704] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 503.902576][T11704] ? __hrtimer_setup+0x176/0x280 [ 503.902632][T11704] mac80211_hwsim_new_radio+0x3034/0x54d0 [ 503.902704][T11704] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 503.902761][T11704] hwsim_new_radio_nl+0xb51/0x12c0 [ 503.902808][T11704] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 503.902865][T11704] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 503.902926][T11704] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 503.902996][T11704] genl_family_rcv_msg_doit+0x206/0x2f0 [ 503.903032][T11704] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 503.903088][T11704] ? trace_cap_capable+0x18d/0x200 [ 503.903133][T11704] ? bpf_lsm_capable+0x9/0x10 [ 503.903182][T11704] ? security_capable+0x7e/0x260 [ 503.903218][T11704] ? ns_capable+0xd7/0x110 [ 503.903280][T11704] genl_rcv_msg+0x55c/0x800 [ 503.903320][T11704] ? __pfx_genl_rcv_msg+0x10/0x10 [ 503.903350][T11704] ? __pfx___dev_queue_xmit+0x10/0x10 [ 503.903390][T11704] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 503.903438][T11704] ? __lock_acquire+0xaa4/0x1ba0 [ 503.903507][T11704] netlink_rcv_skb+0x16a/0x440 [ 503.903555][T11704] ? __pfx_genl_rcv_msg+0x10/0x10 [ 503.903589][T11704] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 503.903661][T11704] ? __pfx_down_read+0x10/0x10 [ 503.903692][T11704] ? netlink_deliver_tap+0x1ae/0xd30 [ 503.903746][T11704] genl_rcv+0x28/0x40 [ 503.903795][T11704] netlink_unicast+0x53a/0x7f0 [ 503.903849][T11704] ? __pfx_netlink_unicast+0x10/0x10 [ 503.903896][T11704] ? __lock_acquire+0xaa4/0x1ba0 [ 503.903953][T11704] netlink_sendmsg+0x8d1/0xdd0 [ 503.904010][T11704] ? __pfx_netlink_sendmsg+0x10/0x10 [ 503.904073][T11704] ____sys_sendmsg+0xa95/0xc70 [ 503.904107][T11704] ? copy_msghdr_from_user+0x10a/0x160 [ 503.904148][T11704] ? __pfx_____sys_sendmsg+0x10/0x10 [ 503.904198][T11704] ? try_to_wake_up+0xa2f/0x1680 [ 503.904240][T11704] ___sys_sendmsg+0x134/0x1d0 [ 503.904286][T11704] ? __pfx____sys_sendmsg+0x10/0x10 [ 503.904388][T11704] __sys_sendmsg+0x16d/0x220 [ 503.904444][T11704] ? __pfx___sys_sendmsg+0x10/0x10 [ 503.904483][T11704] ? __x64_sys_futex+0x1e0/0x4c0 [ 503.904529][T11704] ? rcu_is_watching+0x12/0xc0 [ 503.904570][T11704] do_syscall_64+0xcd/0x230 [ 503.904638][T11704] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 503.904671][T11704] RIP: 0033:0x7f684df8e969 [ 503.904697][T11704] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 503.904730][T11704] RSP: 002b:00007f684ee10038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 503.904761][T11704] RAX: ffffffffffffffda RBX: 00007f684e1b5fa0 RCX: 00007f684df8e969 [ 503.904782][T11704] RDX: 00000000040000c0 RSI: 0000200000000300 RDI: 0000000000000006 [ 503.904803][T11704] RBP: 00007f684e010ab1 R08: 0000000000000000 R09: 0000000000000000 [ 503.904823][T11704] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 503.904843][T11704] R13: 0000000000000000 R14: 00007f684e1b5fa0 R15: 00007ffd1becb708 [ 503.904887][T11704] [ 504.405004][T11704] kobject: kobject_add_internal failed for ieee80211 (error: -12 parent: hwsim17) [ 505.021791][T11710] FAULT_INJECTION: forcing a failure. [ 505.021791][T11710] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 505.058878][T11710] CPU: 0 UID: 0 PID: 11710 Comm: syz.0.1064 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 505.058919][T11710] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 505.058936][T11710] Call Trace: [ 505.058945][T11710] [ 505.058956][T11710] dump_stack_lvl+0x16c/0x1f0 [ 505.059003][T11710] should_fail_ex+0x512/0x640 [ 505.059043][T11710] _copy_from_user+0x2e/0xd0 [ 505.059082][T11710] copy_msghdr_from_user+0x98/0x160 [ 505.059130][T11710] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 505.059188][T11710] ___sys_sendmsg+0xfe/0x1d0 [ 505.059230][T11710] ? __pfx____sys_sendmsg+0x10/0x10 [ 505.059314][T11710] __sys_sendmsg+0x16d/0x220 [ 505.059355][T11710] ? __pfx___sys_sendmsg+0x10/0x10 [ 505.059406][T11710] ? rcu_is_watching+0x12/0xc0 [ 505.059446][T11710] do_syscall_64+0xcd/0x230 [ 505.059491][T11710] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 505.059532][T11710] RIP: 0033:0x7ff90a58e969 [ 505.059553][T11710] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 505.059598][T11710] RSP: 002b:00007ff90b3c3038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 505.059637][T11710] RAX: ffffffffffffffda RBX: 00007ff90a7b5fa0 RCX: 00007ff90a58e969 [ 505.059655][T11710] RDX: 00000000040000c0 RSI: 0000200000000300 RDI: 0000000000000005 [ 505.059672][T11710] RBP: 00007ff90b3c3090 R08: 0000000000000000 R09: 0000000000000000 [ 505.059689][T11710] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 505.059707][T11710] R13: 0000000000000000 R14: 00007ff90a7b5fa0 R15: 00007ffd13a5d138 [ 505.059742][T11710] [ 506.100211][T11724] FAULT_INJECTION: forcing a failure. [ 506.100211][T11724] name failslab, interval 1, probability 0, space 0, times 0 [ 506.133350][T11724] CPU: 1 UID: 0 PID: 11724 Comm: syz.3.1068 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 506.133390][T11724] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 506.133408][T11724] Call Trace: [ 506.133417][T11724] [ 506.133428][T11724] dump_stack_lvl+0x16c/0x1f0 [ 506.133475][T11724] should_fail_ex+0x512/0x640 [ 506.133509][T11724] ? fs_reclaim_acquire+0xae/0x150 [ 506.133578][T11724] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 506.133624][T11724] should_failslab+0xc2/0x120 [ 506.133666][T11724] __kmalloc_noprof+0xd2/0x510 [ 506.133713][T11724] tomoyo_realpath_from_path+0xc2/0x6e0 [ 506.133763][T11724] ? tomoyo_profile+0x47/0x60 [ 506.133818][T11724] tomoyo_path_number_perm+0x245/0x580 [ 506.133856][T11724] ? tomoyo_path_number_perm+0x237/0x580 [ 506.133897][T11724] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 506.133938][T11724] ? find_held_lock+0x2b/0x80 [ 506.134008][T11724] ? find_held_lock+0x2b/0x80 [ 506.134059][T11724] ? hook_file_ioctl_common+0x145/0x410 [ 506.134103][T11724] ? __fget_files+0x20e/0x3c0 [ 506.134141][T11724] security_file_ioctl+0x9b/0x240 [ 506.134184][T11724] __x64_sys_ioctl+0xb7/0x200 [ 506.134233][T11724] do_syscall_64+0xcd/0x230 [ 506.134281][T11724] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 506.134319][T11724] RIP: 0033:0x7f684df8e969 [ 506.134344][T11724] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 506.134376][T11724] RSP: 002b:00007f684ee10038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 506.134405][T11724] RAX: ffffffffffffffda RBX: 00007f684e1b5fa0 RCX: 00007f684df8e969 [ 506.134425][T11724] RDX: 0000000000000004 RSI: 0000000080106f53 RDI: 0000000000000003 [ 506.134444][T11724] RBP: 00007f684ee10090 R08: 0000000000000000 R09: 0000000000000000 [ 506.134463][T11724] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 506.134481][T11724] R13: 0000000000000000 R14: 00007f684e1b5fa0 R15: 00007ffd1becb708 [ 506.134521][T11724] [ 506.134532][T11724] ERROR: Out of memory at tomoyo_realpath_from_path. [ 506.605810][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 506.614539][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 506.824973][T11737] FAULT_INJECTION: forcing a failure. [ 506.824973][T11737] name failslab, interval 1, probability 0, space 0, times 0 [ 506.908192][T11737] CPU: 1 UID: 0 PID: 11737 Comm: syz.0.1071 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 506.908239][T11737] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 506.908258][T11737] Call Trace: [ 506.908268][T11737] [ 506.908279][T11737] dump_stack_lvl+0x16c/0x1f0 [ 506.908329][T11737] should_fail_ex+0x512/0x640 [ 506.908366][T11737] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 506.908402][T11737] should_failslab+0xc2/0x120 [ 506.908445][T11737] __kmalloc_cache_noprof+0x6a/0x3e0 [ 506.908477][T11737] ? __pfx__kstrtoull+0x10/0x10 [ 506.908524][T11737] ? refill_pi_state_cache+0x89/0x250 [ 506.908573][T11737] refill_pi_state_cache+0x89/0x250 [ 506.908615][T11737] futex_lock_pi+0x228/0x7b0 [ 506.908659][T11737] ? __lock_acquire+0x5ca/0x1ba0 [ 506.908704][T11737] ? __pfx_futex_lock_pi+0x10/0x10 [ 506.908761][T11737] ? find_held_lock+0x2b/0x80 [ 506.908809][T11737] ? proc_fail_nth_write+0x9f/0x250 [ 506.908861][T11737] ? __pfx_futex_wake_mark+0x10/0x10 [ 506.908913][T11737] ? ksys_write+0x190/0x240 [ 506.908952][T11737] do_futex+0x11a/0x350 [ 506.908991][T11737] ? __pfx_do_futex+0x10/0x10 [ 506.909045][T11737] __x64_sys_futex+0x1e0/0x4c0 [ 506.909085][T11737] ? fput+0x70/0xf0 [ 506.909122][T11737] ? __pfx___x64_sys_futex+0x10/0x10 [ 506.909159][T11737] ? ksys_write+0x1b9/0x240 [ 506.909190][T11737] ? __pfx_ksys_write+0x10/0x10 [ 506.909221][T11737] ? rcu_is_watching+0x12/0xc0 [ 506.909265][T11737] do_syscall_64+0xcd/0x230 [ 506.909315][T11737] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 506.909346][T11737] RIP: 0033:0x7ff90a58e969 [ 506.909371][T11737] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 506.909402][T11737] RSP: 002b:00007ff90b3a2038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 506.909432][T11737] RAX: ffffffffffffffda RBX: 00007ff90a7b6080 RCX: 00007ff90a58e969 [ 506.909454][T11737] RDX: 0000000000008243 RSI: 0000000000000006 RDI: 0000000000000000 [ 506.909484][T11737] RBP: 00007ff90b3a2090 R08: 0000000000000000 R09: 0000000000000004 [ 506.909502][T11737] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 506.909519][T11737] R13: 0000000000000000 R14: 00007ff90a7b6080 R15: 00007ffd13a5d138 [ 506.909556][T11737] [ 507.646430][T11748] FAULT_INJECTION: forcing a failure. [ 507.646430][T11748] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 507.680052][T11748] CPU: 1 UID: 0 PID: 11748 Comm: syz.0.1073 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 507.680095][T11748] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 507.680114][T11748] Call Trace: [ 507.680123][T11748] [ 507.680135][T11748] dump_stack_lvl+0x16c/0x1f0 [ 507.680184][T11748] should_fail_ex+0x512/0x640 [ 507.680226][T11748] should_fail_alloc_page+0xe7/0x130 [ 507.680271][T11748] prepare_alloc_pages+0x3c2/0x610 [ 507.680322][T11748] ? rcu_is_watching+0x12/0xc0 [ 507.680358][T11748] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 507.680408][T11748] ? unwind_get_return_address+0x59/0xa0 [ 507.680444][T11748] ? arch_stack_walk+0xa6/0x100 [ 507.680491][T11748] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 507.680531][T11748] ? __pfx_stack_trace_save+0x10/0x10 [ 507.680562][T11748] ? stack_depot_save_flags+0x28/0xa50 [ 507.680606][T11748] ? kasan_save_stack+0x42/0x60 [ 507.680641][T11748] ? __lock_acquire+0xaa4/0x1ba0 [ 507.680677][T11748] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 507.680721][T11748] ? policy_nodemask+0xea/0x4e0 [ 507.680760][T11748] alloc_pages_mpol+0x1fb/0x550 [ 507.680799][T11748] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 507.680834][T11748] ? __page_table_check_ptes_set+0x1ae/0x420 [ 507.680872][T11748] ? find_held_lock+0x2b/0x80 [ 507.680907][T11748] alloc_pages_noprof+0x131/0x390 [ 507.680954][T11748] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10 [ 507.680986][T11748] get_free_pages_noprof+0xc/0x40 [ 507.681026][T11748] kasan_populate_vmalloc_pte+0x2d/0x160 [ 507.681057][T11748] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10 [ 507.681088][T11748] __apply_to_page_range+0x617/0xd60 [ 507.681120][T11748] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10 [ 507.681157][T11748] ? __pfx___apply_to_page_range+0x10/0x10 [ 507.681185][T11748] ? alloc_vmap_area+0x872/0x2970 [ 507.681234][T11748] alloc_vmap_area+0x919/0x2970 [ 507.681311][T11748] ? __pfx_alloc_vmap_area+0x10/0x10 [ 507.681368][T11748] __get_vm_area_node+0x1a7/0x300 [ 507.681434][T11748] __vmalloc_node_range_noprof+0x277/0x1540 [ 507.681464][T11748] ? __snd_dma_alloc_pages+0x50/0x90 [ 507.681498][T11748] ? __mutex_trylock_common+0xe9/0x250 [ 507.681550][T11748] ? __snd_dma_alloc_pages+0x50/0x90 [ 507.681588][T11748] ? do_alloc_pages+0xd7/0x280 [ 507.681619][T11748] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 507.681651][T11748] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 507.681700][T11748] ? __snd_dma_alloc_pages+0x50/0x90 [ 507.681735][T11748] vmalloc_noprof+0x6b/0x90 [ 507.681763][T11748] ? __snd_dma_alloc_pages+0x50/0x90 [ 507.681793][T11748] ? __pfx_snd_dma_vmalloc_alloc+0x10/0x10 [ 507.681828][T11748] __snd_dma_alloc_pages+0x50/0x90 [ 507.681862][T11748] snd_dma_alloc_dir_pages+0x151/0x240 [ 507.681901][T11748] do_alloc_pages+0x115/0x280 [ 507.681938][T11748] snd_pcm_lib_malloc_pages+0x3df/0x980 [ 507.681988][T11748] snd_pcm_hw_params+0x15e1/0x1b40 [ 507.682029][T11748] ? __pfx_snd_pcm_hw_params+0x10/0x10 [ 507.682082][T11748] ? snd_pcm_hw_param_near.constprop.0+0x734/0x8e0 [ 507.682120][T11748] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 507.682173][T11748] ? __asan_memset+0x23/0x50 [ 507.682206][T11748] snd_pcm_kernel_ioctl+0x147/0x2e0 [ 507.682244][T11748] snd_pcm_oss_change_params_locked+0x1432/0x3b40 [ 507.682294][T11748] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 507.682328][T11748] ? __pfx___mutex_lock+0x10/0x10 [ 507.682399][T11748] snd_pcm_oss_make_ready+0xe6/0x1b0 [ 507.682433][T11748] snd_pcm_oss_ioctl+0x155d/0x37a0 [ 507.682463][T11748] ? find_held_lock+0x2b/0x80 [ 507.682494][T11748] ? hook_file_ioctl_common+0x145/0x410 [ 507.682530][T11748] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 507.682565][T11748] ? __fget_files+0x20e/0x3c0 [ 507.682610][T11748] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 507.682642][T11748] __x64_sys_ioctl+0x190/0x200 [ 507.682687][T11748] do_syscall_64+0xcd/0x230 [ 507.682731][T11748] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 507.682759][T11748] RIP: 0033:0x7ff90a58e969 [ 507.682781][T11748] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 507.682809][T11748] RSP: 002b:00007ff90b3c3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 507.682836][T11748] RAX: ffffffffffffffda RBX: 00007ff90a7b5fa0 RCX: 00007ff90a58e969 [ 507.682855][T11748] RDX: 0000000000000000 RSI: 0000000080045017 RDI: 0000000000000005 [ 507.682897][T11748] RBP: 00007ff90a610ab1 R08: 0000000000000000 R09: 0000000000000000 [ 507.682915][T11748] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 507.682933][T11748] R13: 0000000000000000 R14: 00007ff90a7b5fa0 R15: 00007ffd13a5d138 [ 507.682981][T11748] [ 507.683129][T11748] syz.0.1073: vmalloc error: size 2097152, vm_struct allocation failed, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 508.236483][T11748] CPU: 1 UID: 0 PID: 11748 Comm: syz.0.1073 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 508.236529][T11748] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 508.236549][T11748] Call Trace: [ 508.236559][T11748] [ 508.236572][T11748] dump_stack_lvl+0x16c/0x1f0 [ 508.236622][T11748] warn_alloc+0x248/0x3a0 [ 508.236653][T11748] ? __pfx_warn_alloc+0x10/0x10 [ 508.236684][T11748] ? kfree+0x2b6/0x4d0 [ 508.236712][T11748] ? __get_vm_area_node+0x1e5/0x300 [ 508.236757][T11748] __vmalloc_node_range_noprof+0xd31/0x1540 [ 508.236781][T11748] ? __mutex_trylock_common+0xe9/0x250 [ 508.236824][T11748] ? __snd_dma_alloc_pages+0x50/0x90 [ 508.236856][T11748] ? do_alloc_pages+0xd7/0x280 [ 508.236882][T11748] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 508.236907][T11748] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 508.236949][T11748] ? __snd_dma_alloc_pages+0x50/0x90 [ 508.236984][T11748] vmalloc_noprof+0x6b/0x90 [ 508.237007][T11748] ? __snd_dma_alloc_pages+0x50/0x90 [ 508.237033][T11748] ? __pfx_snd_dma_vmalloc_alloc+0x10/0x10 [ 508.237062][T11748] __snd_dma_alloc_pages+0x50/0x90 [ 508.237092][T11748] snd_dma_alloc_dir_pages+0x151/0x240 [ 508.237123][T11748] do_alloc_pages+0x115/0x280 [ 508.237152][T11748] snd_pcm_lib_malloc_pages+0x3df/0x980 [ 508.237186][T11748] snd_pcm_hw_params+0x15e1/0x1b40 [ 508.237218][T11748] ? __pfx_snd_pcm_hw_params+0x10/0x10 [ 508.237248][T11748] ? snd_pcm_hw_param_near.constprop.0+0x734/0x8e0 [ 508.237277][T11748] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 508.237319][T11748] ? __asan_memset+0x23/0x50 [ 508.237345][T11748] snd_pcm_kernel_ioctl+0x147/0x2e0 [ 508.237375][T11748] snd_pcm_oss_change_params_locked+0x1432/0x3b40 [ 508.237413][T11748] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 508.237445][T11748] ? __pfx___mutex_lock+0x10/0x10 [ 508.237499][T11748] snd_pcm_oss_make_ready+0xe6/0x1b0 [ 508.237524][T11748] snd_pcm_oss_ioctl+0x155d/0x37a0 [ 508.237548][T11748] ? find_held_lock+0x2b/0x80 [ 508.237572][T11748] ? hook_file_ioctl_common+0x145/0x410 [ 508.237599][T11748] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 508.237646][T11748] ? __fget_files+0x20e/0x3c0 [ 508.237684][T11748] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 508.237720][T11748] __x64_sys_ioctl+0x190/0x200 [ 508.237757][T11748] do_syscall_64+0xcd/0x230 [ 508.237793][T11748] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 508.237815][T11748] RIP: 0033:0x7ff90a58e969 [ 508.237833][T11748] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 508.237855][T11748] RSP: 002b:00007ff90b3c3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 508.237877][T11748] RAX: ffffffffffffffda RBX: 00007ff90a7b5fa0 RCX: 00007ff90a58e969 [ 508.237892][T11748] RDX: 0000000000000000 RSI: 0000000080045017 RDI: 0000000000000005 [ 508.237905][T11748] RBP: 00007ff90a610ab1 R08: 0000000000000000 R09: 0000000000000000 [ 508.237919][T11748] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 508.237951][T11748] R13: 0000000000000000 R14: 00007ff90a7b5fa0 R15: 00007ffd13a5d138 [ 508.237986][T11748] [ 508.238793][T11748] Mem-Info: [ 508.622065][T11748] active_anon:8160 inactive_anon:0 isolated_anon:0 [ 508.622065][T11748] active_file:20829 inactive_file:38998 isolated_file:0 [ 508.622065][T11748] unevictable:768 dirty:1271 writeback:0 [ 508.622065][T11748] slab_reclaimable:10511 slab_unreclaimable:94017 [ 508.622065][T11748] mapped:26104 shmem:2526 pagetables:833 [ 508.622065][T11748] sec_pagetables:3 bounce:0 [ 508.622065][T11748] kernel_misc_reclaimable:0 [ 508.622065][T11748] free:1329464 free_pcp:4985 free_cma:0 [ 508.829814][T11748] Node 0 active_anon:39440kB inactive_anon:0kB active_file:86416kB inactive_file:155920kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:111816kB dirty:5084kB writeback:0kB shmem:15768kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:10272kB pagetables:3132kB sec_pagetables:12kB all_unreclaimable? no Balloon:0kB [ 508.902009][T11748] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 508.998647][T11748] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 509.369745][T11748] lowmem_reserve[]: 0 2482 2483 2483 2483 [ 509.375628][T11748] Node 0 DMA32 free:1364024kB boost:0kB min:34092kB low:42612kB high:51132kB reserved_highatomic:0KB active_anon:70828kB inactive_anon:0kB active_file:86432kB inactive_file:154336kB unevictable:1536kB writepending:5156kB present:3129332kB managed:2541748kB mlocked:0kB bounce:0kB free_pcp:12368kB local_pcp:11964kB free_cma:0kB [ 509.500784][T11748] lowmem_reserve[]: 0 0 1 1 1 [ 509.507399][T11748] Node 0 Normal free:8kB boost:0kB min:20kB low:24kB high:28kB reserved_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:0kB inactive_file:1592kB unevictable:0kB writepending:0kB present:1048580kB managed:1644kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 509.541298][T11748] lowmem_reserve[]: 0 0 0 0 0 [ 509.651799][T11748] Node 1 Normal free:3904728kB boost:0kB min:55784kB low:69728kB high:83672kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:752kB local_pcp:0kB free_cma:0kB [ 509.784147][T11748] lowmem_reserve[]: 0 0 0 0 0 [ 509.862437][T11748] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 509.919145][T11748] Node 0 DMA32: 3*4kB (UME) 16*8kB (UE) 193*16kB (UE) 1036*32kB (UME) 1118*64kB (UME) 476*128kB (UME) 267*256kB (UME) 159*512kB (UME) 43*1024kB (UME) 22*2048kB (UME) 233*4096kB (M) = 1362076kB [ 509.943238][T11748] Node 0 Normal: 0*4kB 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB [ 509.976754][T11748] Node 1 Normal: 74*4kB (UE) 62*8kB (UME) 40*16kB (UME) 192*32kB (UME) 85*64kB (UME) 36*128kB (UME) 18*256kB (UME) 11*512kB (UME) 8*1024kB (UME) 3*2048kB (UE) 943*4096kB (M) = 3904728kB [ 510.005511][T11748] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 510.016179][T11748] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 510.100305][T11748] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 510.133640][T11748] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 510.272296][T11748] 75357 total pagecache pages [ 510.277041][T11748] 10 pages in swap cache [ 510.328937][T11748] Free swap = 124764kB [ 510.356714][T11748] Total swap = 124996kB [ 510.376905][T11781] FAULT_INJECTION: forcing a failure. [ 510.376905][T11781] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 510.390173][T11748] 2097051 pages RAM [ 510.390205][T11748] 0 pages HighMem/MovableOnly [ 510.390218][T11748] 429572 pages reserved [ 510.390230][T11748] 0 pages cma reserved [ 510.486951][T11781] CPU: 1 UID: 0 PID: 11781 Comm: syz.1.1079 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 510.486998][T11781] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 510.487021][T11781] Call Trace: [ 510.487031][T11781] [ 510.487043][T11781] dump_stack_lvl+0x16c/0x1f0 [ 510.487095][T11781] should_fail_ex+0x512/0x640 [ 510.487141][T11781] should_fail_alloc_page+0xe7/0x130 [ 510.487186][T11781] prepare_alloc_pages+0x3c2/0x610 [ 510.487244][T11781] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 510.487293][T11781] ? do_raw_spin_lock+0x12c/0x2b0 [ 510.487324][T11781] ? find_held_lock+0x2b/0x80 [ 510.487361][T11781] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 510.487400][T11781] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 510.487442][T11781] ? lockdep_hardirqs_on+0x7c/0x110 [ 510.487485][T11781] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 510.487527][T11781] ? __debug_object_init+0x2de/0x3d0 [ 510.487602][T11781] ? __asan_memset+0x23/0x50 [ 510.487643][T11781] ? __hrtimer_setup+0x176/0x280 [ 510.487693][T11781] ? __do_sys_futex_waitv+0x12b/0x2c0 [ 510.487727][T11781] __alloc_pages_noprof+0xb/0x1b0 [ 510.487759][T11781] ___kmalloc_large_node+0x82/0x1e0 [ 510.487810][T11781] __kmalloc_large_node_noprof+0x1c/0x70 [ 510.487868][T11781] __kmalloc_noprof.cold+0xc/0x61 [ 510.487906][T11781] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 510.487957][T11781] __do_sys_futex_waitv+0x12b/0x2c0 [ 510.487995][T11781] ? __pfx___do_sys_futex_waitv+0x10/0x10 [ 510.488035][T11781] ? __pfx_hrtimer_wakeup+0x10/0x10 [ 510.488093][T11781] do_syscall_64+0xcd/0x230 [ 510.488138][T11781] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 510.488168][T11781] RIP: 0033:0x7fa4b878e969 [ 510.488190][T11781] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 510.488219][T11781] RSP: 002b:00007fa4b65f6038 EFLAGS: 00000246 ORIG_RAX: 00000000000001c1 [ 510.488247][T11781] RAX: ffffffffffffffda RBX: 00007fa4b89b5fa0 RCX: 00007fa4b878e969 [ 510.488267][T11781] RDX: 0000000000000000 RSI: 0000000000000040 RDI: 00002000000004c0 [ 510.488285][T11781] RBP: 00007fa4b65f6090 R08: 0000000000000000 R09: 0000000000000000 [ 510.488303][T11781] R10: 0000200000000500 R11: 0000000000000246 R12: 0000000000000001 [ 510.488332][T11781] R13: 0000000000000001 R14: 00007fa4b89b5fa0 R15: 00007ffc29c84128 [ 510.488367][T11781] [ 511.145238][T11790] FAULT_INJECTION: forcing a failure. [ 511.145238][T11790] name failslab, interval 1, probability 0, space 0, times 0 [ 511.230817][T11790] CPU: 0 UID: 0 PID: 11790 Comm: syz.2.1082 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 511.230863][T11790] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 511.230882][T11790] Call Trace: [ 511.230891][T11790] [ 511.230904][T11790] dump_stack_lvl+0x16c/0x1f0 [ 511.230954][T11790] should_fail_ex+0x512/0x640 [ 511.230991][T11790] ? __kmalloc_noprof+0xbf/0x510 [ 511.231037][T11790] ? lsm_blob_alloc+0x68/0x90 [ 511.231085][T11790] should_failslab+0xc2/0x120 [ 511.231155][T11790] __kmalloc_noprof+0xd2/0x510 [ 511.231198][T11790] lsm_blob_alloc+0x68/0x90 [ 511.231254][T11790] security_prepare_creds+0x30/0x270 [ 511.231297][T11790] prepare_creds+0x56f/0x7d0 [ 511.231342][T11790] __sys_setresgid+0x4af/0x1150 [ 511.231382][T11790] do_syscall_64+0xcd/0x230 [ 511.231425][T11790] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 511.231453][T11790] RIP: 0033:0x7f299b38e969 [ 511.231474][T11790] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 511.231501][T11790] RSP: 002b:00007f299c1d6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000077 [ 511.231527][T11790] RAX: ffffffffffffffda RBX: 00007f299b5b5fa0 RCX: 00007f299b38e969 [ 511.231546][T11790] RDX: 7fffffffffffffff RSI: 0000000000000008 RDI: ffffffffffffffff [ 511.231563][T11790] RBP: 00007f299c1d6090 R08: 0000000000000000 R09: 0000000000000000 [ 511.231580][T11790] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 511.231596][T11790] R13: 0000000000000001 R14: 00007f299b5b5fa0 R15: 00007ffe300bb8b8 [ 511.231663][T11790] [ 511.633545][T11797] FAULT_INJECTION: forcing a failure. [ 511.633545][T11797] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 511.739914][T11797] CPU: 1 UID: 0 PID: 11797 Comm: syz.2.1085 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 511.739960][T11797] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 511.739979][T11797] Call Trace: [ 511.739997][T11797] [ 511.740009][T11797] dump_stack_lvl+0x16c/0x1f0 [ 511.740060][T11797] should_fail_ex+0x512/0x640 [ 511.740104][T11797] _copy_from_iter+0x2a4/0x15b0 [ 511.740155][T11797] ? __pfx__copy_from_iter+0x10/0x10 [ 511.740194][T11797] ? rcu_is_watching+0x12/0xc0 [ 511.740227][T11797] ? trace_kmalloc+0x2b/0xd0 [ 511.740269][T11797] ? __kvmalloc_node_noprof+0x296/0x600 [ 511.740309][T11797] ? sysctl_head_grab+0x51/0x70 [ 511.740343][T11797] ? proc_sys_call_handler+0x2a6/0x5c0 [ 511.740389][T11797] proc_sys_call_handler+0x317/0x5c0 [ 511.740430][T11797] ? __pfx_proc_sys_call_handler+0x10/0x10 [ 511.740486][T11797] vfs_write+0x5ba/0x1180 [ 511.740521][T11797] ? __pfx_proc_sys_write+0x10/0x10 [ 511.740559][T11797] ? __pfx___mutex_lock+0x10/0x10 [ 511.740605][T11797] ? __pfx_vfs_write+0x10/0x10 [ 511.740666][T11797] ksys_write+0x12a/0x240 [ 511.740717][T11797] ? __pfx_ksys_write+0x10/0x10 [ 511.740746][T11797] ? rcu_is_watching+0x12/0xc0 [ 511.740787][T11797] do_syscall_64+0xcd/0x230 [ 511.740834][T11797] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 511.740865][T11797] RIP: 0033:0x7f299b38e969 [ 511.740887][T11797] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 511.740915][T11797] RSP: 002b:00007f299c1d6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 511.740943][T11797] RAX: ffffffffffffffda RBX: 00007f299b5b5fa0 RCX: 00007f299b38e969 [ 511.740963][T11797] RDX: 0000000000000002 RSI: 0000200000000040 RDI: 0000000000000003 [ 511.740981][T11797] RBP: 00007f299c1d6090 R08: 0000000000000000 R09: 0000000000000000 [ 511.741005][T11797] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 511.741022][T11797] R13: 0000000000000000 R14: 00007f299b5b5fa0 R15: 00007ffe300bb8b8 [ 511.741061][T11797] [ 512.338402][T11802] FAULT_INJECTION: forcing a failure. [ 512.338402][T11802] name failslab, interval 1, probability 0, space 0, times 0 [ 512.358939][T11802] CPU: 0 UID: 0 PID: 11802 Comm: syz.3.1083 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 512.358993][T11802] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 512.359012][T11802] Call Trace: [ 512.359022][T11802] [ 512.359035][T11802] dump_stack_lvl+0x16c/0x1f0 [ 512.359083][T11802] should_fail_ex+0x512/0x640 [ 512.359118][T11802] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 512.359155][T11802] should_failslab+0xc2/0x120 [ 512.359196][T11802] __kmalloc_cache_noprof+0x6a/0x3e0 [ 512.359229][T11802] ? vhost_net_open+0xb4/0x8a0 [ 512.359275][T11802] ? kasan_save_track+0x14/0x30 [ 512.359315][T11802] vhost_net_open+0xb4/0x8a0 [ 512.359359][T11802] ? __pfx_vhost_net_open+0x10/0x10 [ 512.359405][T11802] misc_open+0x35a/0x420 [ 512.359449][T11802] ? __pfx_misc_open+0x10/0x10 [ 512.359491][T11802] chrdev_open+0x231/0x6a0 [ 512.359527][T11802] ? __pfx_apparmor_file_open+0x10/0x10 [ 512.359570][T11802] ? __pfx_chrdev_open+0x10/0x10 [ 512.359612][T11802] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 512.359676][T11802] do_dentry_open+0x741/0x1c10 [ 512.359713][T11802] ? __pfx_chrdev_open+0x10/0x10 [ 512.359757][T11802] vfs_open+0x82/0x3f0 [ 512.359806][T11802] path_openat+0x1e5e/0x2d40 [ 512.359853][T11802] ? __pfx_path_openat+0x10/0x10 [ 512.359899][T11802] do_filp_open+0x20b/0x470 [ 512.359932][T11802] ? __pfx_do_filp_open+0x10/0x10 [ 512.360005][T11802] ? alloc_fd+0x471/0x7d0 [ 512.360047][T11802] do_sys_openat2+0x11b/0x1d0 [ 512.360093][T11802] ? __pfx_do_sys_openat2+0x10/0x10 [ 512.360143][T11802] ? do_fcntl+0x1eb/0x1590 [ 512.360192][T11802] __x64_sys_openat+0x174/0x210 [ 512.360245][T11802] ? __pfx___x64_sys_openat+0x10/0x10 [ 512.360289][T11802] ? rcu_is_watching+0x12/0xc0 [ 512.360332][T11802] do_syscall_64+0xcd/0x230 [ 512.360378][T11802] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 512.360408][T11802] RIP: 0033:0x7f684df8e969 [ 512.360431][T11802] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 512.360460][T11802] RSP: 002b:00007f684edce038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 512.360488][T11802] RAX: ffffffffffffffda RBX: 00007f684e1b6160 RCX: 00007f684df8e969 [ 512.360509][T11802] RDX: 0000000000000000 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 512.360527][T11802] RBP: 00007f684e010ab1 R08: 0000000000000000 R09: 0000000000000000 [ 512.360562][T11802] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 512.360581][T11802] R13: 0000000000000000 R14: 00007f684e1b6160 R15: 00007ffd1becb708 [ 512.360622][T11802] [ 513.016787][T11815] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1088'. [ 513.704918][T11827] FAULT_INJECTION: forcing a failure. [ 513.704918][T11827] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 513.729663][T11827] CPU: 1 UID: 0 PID: 11827 Comm: syz.0.1091 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 513.729707][T11827] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 513.729743][T11827] Call Trace: [ 513.729754][T11827] [ 513.729765][T11827] dump_stack_lvl+0x16c/0x1f0 [ 513.729815][T11827] should_fail_ex+0x512/0x640 [ 513.729858][T11827] _copy_to_iter+0x477/0x15a0 [ 513.729909][T11827] ? __pfx__copy_to_iter+0x10/0x10 [ 513.729949][T11827] ? _raw_spin_unlock+0x28/0x50 [ 513.729985][T11827] ? unix_get_first+0x294/0x360 [ 513.730048][T11827] seq_read_iter+0xcf8/0x12c0 [ 513.730113][T11827] seq_read+0x39e/0x4e0 [ 513.730160][T11827] ? __pfx_seq_read+0x10/0x10 [ 513.730215][T11827] ? get_pid_task+0xfc/0x250 [ 513.730277][T11827] ? __pfx_seq_read+0x10/0x10 [ 513.730323][T11827] proc_reg_read+0x23d/0x330 [ 513.730356][T11827] ? __pfx_proc_reg_read+0x10/0x10 [ 513.730393][T11827] vfs_read+0x1de/0xc70 [ 513.730430][T11827] ? __pfx___mutex_lock+0x10/0x10 [ 513.730477][T11827] ? __pfx_vfs_read+0x10/0x10 [ 513.730522][T11827] ? __fget_files+0x20e/0x3c0 [ 513.730565][T11827] ksys_read+0x12a/0x240 [ 513.730598][T11827] ? __pfx_ksys_read+0x10/0x10 [ 513.730628][T11827] ? rcu_is_watching+0x12/0xc0 [ 513.730681][T11827] do_syscall_64+0xcd/0x230 [ 513.730732][T11827] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 513.730765][T11827] RIP: 0033:0x7ff90a58e969 [ 513.730791][T11827] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 513.730823][T11827] RSP: 002b:00007ff90b3c3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 513.730853][T11827] RAX: ffffffffffffffda RBX: 00007ff90a7b5fa0 RCX: 00007ff90a58e969 [ 513.730874][T11827] RDX: 0000000000000099 RSI: 0000200000000040 RDI: 0000000000000003 [ 513.730894][T11827] RBP: 00007ff90b3c3090 R08: 0000000000000000 R09: 0000000000000000 [ 513.730914][T11827] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 513.730934][T11827] R13: 0000000000000000 R14: 00007ff90a7b5fa0 R15: 00007ffd13a5d138 [ 513.730976][T11827] [ 514.715453][T11845] FAULT_INJECTION: forcing a failure. [ 514.715453][T11845] name failslab, interval 1, probability 0, space 0, times 0 [ 514.774689][T11845] CPU: 0 UID: 0 PID: 11845 Comm: syz.0.1096 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 514.774736][T11845] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 514.774759][T11845] Call Trace: [ 514.774769][T11845] [ 514.774781][T11845] dump_stack_lvl+0x16c/0x1f0 [ 514.774832][T11845] should_fail_ex+0x512/0x640 [ 514.774877][T11845] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 514.774921][T11845] should_failslab+0xc2/0x120 [ 514.774964][T11845] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 514.775005][T11845] ? sock_alloc_inode+0x25/0x1c0 [ 514.775062][T11845] ? __pfx_sock_alloc_inode+0x10/0x10 [ 514.775111][T11845] sock_alloc_inode+0x25/0x1c0 [ 514.775159][T11845] alloc_inode+0x61/0x240 [ 514.775201][T11845] sock_alloc+0x40/0x280 [ 514.775248][T11845] __sock_create+0xc1/0x8d0 [ 514.775286][T11845] __sys_socket+0x14d/0x260 [ 514.775319][T11845] ? __pfx___sys_socket+0x10/0x10 [ 514.775354][T11845] ? do_user_addr_fault+0x843/0x1370 [ 514.775396][T11845] __x64_sys_socket+0x72/0xb0 [ 514.775425][T11845] ? lockdep_hardirqs_on+0x7c/0x110 [ 514.775468][T11845] do_syscall_64+0xcd/0x230 [ 514.775519][T11845] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 514.775550][T11845] RIP: 0033:0x7ff90a590887 [ 514.775575][T11845] Code: f0 ff ff 77 06 c3 0f 1f 44 00 00 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 514.775607][T11845] RSP: 002b:00007ff90b3c1fa8 EFLAGS: 00000286 ORIG_RAX: 0000000000000029 [ 514.775637][T11845] RAX: ffffffffffffffda RBX: 00007ff90a7b5fa0 RCX: 00007ff90a590887 [ 514.775658][T11845] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 514.775678][T11845] RBP: 00000000ffffffff R08: 0000000000000000 R09: 0000000000000000 [ 514.775697][T11845] R10: 0000200000000740 R11: 0000000000000286 R12: 0000000000000001 [ 514.775716][T11845] R13: 0000000000000000 R14: 00007ff90a7b5fa0 R15: 00007ffd13a5d138 [ 514.775758][T11845] [ 514.777600][T11845] socket: no more sockets [ 516.197807][T11872] FAULT_INJECTION: forcing a failure. [ 516.197807][T11872] name failslab, interval 1, probability 0, space 0, times 0 [ 516.302441][T11872] CPU: 0 UID: 0 PID: 11872 Comm: syz.0.1102 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 516.302486][T11872] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 516.302504][T11872] Call Trace: [ 516.302513][T11872] [ 516.302526][T11872] dump_stack_lvl+0x16c/0x1f0 [ 516.302566][T11872] should_fail_ex+0x512/0x640 [ 516.302593][T11872] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 516.302625][T11872] should_failslab+0xc2/0x120 [ 516.302655][T11872] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 516.302683][T11872] ? __alloc_skb+0x2b2/0x380 [ 516.302717][T11872] __alloc_skb+0x2b2/0x380 [ 516.302758][T11872] ? __pfx___alloc_skb+0x10/0x10 [ 516.302796][T11872] ? __lock_acquire+0xaa4/0x1ba0 [ 516.302831][T11872] netlink_alloc_large_skb+0x69/0x130 [ 516.302866][T11872] netlink_sendmsg+0x6a1/0xdd0 [ 516.302902][T11872] ? __pfx_netlink_sendmsg+0x10/0x10 [ 516.302956][T11872] ____sys_sendmsg+0xa95/0xc70 [ 516.302977][T11872] ? copy_msghdr_from_user+0x10a/0x160 [ 516.303004][T11872] ? __pfx_____sys_sendmsg+0x10/0x10 [ 516.303035][T11872] ___sys_sendmsg+0x134/0x1d0 [ 516.303064][T11872] ? __pfx____sys_sendmsg+0x10/0x10 [ 516.303123][T11872] __sys_sendmsg+0x16d/0x220 [ 516.303150][T11872] ? __pfx___sys_sendmsg+0x10/0x10 [ 516.303186][T11872] ? rcu_is_watching+0x12/0xc0 [ 516.303214][T11872] do_syscall_64+0xcd/0x230 [ 516.303246][T11872] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 516.303266][T11872] RIP: 0033:0x7ff90a58e969 [ 516.303282][T11872] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 516.303302][T11872] RSP: 002b:00007ff90b3c3038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 516.303321][T11872] RAX: ffffffffffffffda RBX: 00007ff90a7b5fa0 RCX: 00007ff90a58e969 [ 516.303353][T11872] RDX: 0000000004000000 RSI: 00002000000002c0 RDI: 0000000000000003 [ 516.303366][T11872] RBP: 00007ff90b3c3090 R08: 0000000000000000 R09: 0000000000000000 [ 516.303380][T11872] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 516.303393][T11872] R13: 0000000000000000 R14: 00007ff90a7b5fa0 R15: 00007ffd13a5d138 [ 516.303420][T11872] [ 519.481779][T11940] FAULT_INJECTION: forcing a failure. [ 519.481779][T11940] name failslab, interval 1, probability 0, space 0, times 0 [ 519.536158][T11940] CPU: 0 UID: 0 PID: 11940 Comm: syz.0.1116 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 519.536216][T11940] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 519.536232][T11940] Call Trace: [ 519.536240][T11940] [ 519.536249][T11940] dump_stack_lvl+0x16c/0x1f0 [ 519.536292][T11940] should_fail_ex+0x512/0x640 [ 519.536321][T11940] ? fs_reclaim_acquire+0xae/0x150 [ 519.536375][T11940] ? tomoyo_encode2+0x100/0x3e0 [ 519.536429][T11940] should_failslab+0xc2/0x120 [ 519.536464][T11940] __kmalloc_noprof+0xd2/0x510 [ 519.536495][T11940] ? d_absolute_path+0x136/0x1a0 [ 519.536534][T11940] tomoyo_encode2+0x100/0x3e0 [ 519.536576][T11940] tomoyo_encode+0x29/0x50 [ 519.536613][T11940] tomoyo_realpath_from_path+0x18f/0x6e0 [ 519.536662][T11940] tomoyo_path_number_perm+0x245/0x580 [ 519.536693][T11940] ? tomoyo_path_number_perm+0x237/0x580 [ 519.536728][T11940] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 519.536763][T11940] ? find_held_lock+0x2b/0x80 [ 519.536820][T11940] ? find_held_lock+0x2b/0x80 [ 519.536846][T11940] ? hook_file_ioctl_common+0x145/0x410 [ 519.536887][T11940] ? __fget_files+0x20e/0x3c0 [ 519.536917][T11940] security_file_ioctl+0x9b/0x240 [ 519.536953][T11940] __x64_sys_ioctl+0xb7/0x200 [ 519.536995][T11940] do_syscall_64+0xcd/0x230 [ 519.537037][T11940] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 519.537064][T11940] RIP: 0033:0x7ff90a58e969 [ 519.537084][T11940] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 519.537110][T11940] RSP: 002b:00007ff90b3c3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 519.537136][T11940] RAX: ffffffffffffffda RBX: 00007ff90a7b5fa0 RCX: 00007ff90a58e969 [ 519.537156][T11940] RDX: 0000000000000002 RSI: 0000000000001276 RDI: 0000000000000003 [ 519.537173][T11940] RBP: 00007ff90b3c3090 R08: 0000000000000000 R09: 0000000000000000 [ 519.537190][T11940] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 519.537205][T11940] R13: 0000000000000000 R14: 00007ff90a7b5fa0 R15: 00007ffd13a5d138 [ 519.537239][T11940] [ 519.538469][T11940] ERROR: Out of memory at tomoyo_realpath_from_path. [ 520.198818][T11948] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1117'. [ 520.370768][T11953] FAULT_INJECTION: forcing a failure. [ 520.370768][T11953] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 520.435261][T11953] CPU: 1 UID: 0 PID: 11953 Comm: syz.2.1119 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 520.435306][T11953] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 520.435334][T11953] Call Trace: [ 520.435345][T11953] [ 520.435357][T11953] dump_stack_lvl+0x16c/0x1f0 [ 520.435408][T11953] should_fail_ex+0x512/0x640 [ 520.435451][T11953] should_fail_alloc_page+0xe7/0x130 [ 520.435496][T11953] prepare_alloc_pages+0x3c2/0x610 [ 520.435554][T11953] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 520.435598][T11953] ? look_up_lock_class+0x6b/0x150 [ 520.435644][T11953] ? register_lock_class+0x41/0x4c0 [ 520.435690][T11953] ? find_held_lock+0x2b/0x80 [ 520.435724][T11953] ? __kasan_check_byte+0x13/0x50 [ 520.435767][T11953] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 520.435804][T11953] ? unwind_next_frame+0x3f4/0x20a0 [ 520.435848][T11953] ? __kasan_check_byte+0x13/0x50 [ 520.435894][T11953] ? lock_release+0x201/0x2f0 [ 520.435934][T11953] ? bpf_ksym_find+0x124/0x1c0 [ 520.435965][T11953] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 520.436004][T11953] ? is_bpf_text_address+0x94/0x1a0 [ 520.436045][T11953] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 520.436093][T11953] ? policy_nodemask+0xea/0x4e0 [ 520.436139][T11953] alloc_pages_mpol+0x1fb/0x550 [ 520.436182][T11953] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 520.436228][T11953] ? stack_trace_save+0x8e/0xc0 [ 520.436268][T11953] folio_alloc_mpol_noprof+0x36/0x2f0 [ 520.436319][T11953] vma_alloc_folio_noprof+0xed/0x1e0 [ 520.436378][T11953] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 520.436443][T11953] ? find_held_lock+0x2b/0x80 [ 520.436479][T11953] ? do_wp_page+0x229a/0x58e0 [ 520.436535][T11953] do_wp_page+0x209a/0x58e0 [ 520.436603][T11953] ? __pfx_do_wp_page+0x10/0x10 [ 520.436658][T11953] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 520.436708][T11953] ? ___pte_offset_map+0x1bc/0x540 [ 520.436765][T11953] __handle_mm_fault+0x1ada/0x2a40 [ 520.436815][T11953] ? __pfx___handle_mm_fault+0x10/0x10 [ 520.436876][T11953] ? find_vma+0xbf/0x140 [ 520.436922][T11953] ? __pfx_find_vma+0x10/0x10 [ 520.436967][T11953] ? register_lock_class+0x41/0x4c0 [ 520.437018][T11953] handle_mm_fault+0x3fe/0xad0 [ 520.437062][T11953] do_user_addr_fault+0x7a6/0x1370 [ 520.437104][T11953] ? rcu_is_watching+0x12/0xc0 [ 520.437142][T11953] exc_page_fault+0x5c/0xc0 [ 520.437187][T11953] asm_exc_page_fault+0x26/0x30 [ 520.437217][T11953] RIP: 0010:__put_user_4+0xd/0x20 [ 520.437263][T11953] Code: 66 89 01 31 c9 0f 01 ca c3 cc cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca c3 cc cc cc cc 0f 1f 80 00 00 00 00 90 90 90 [ 520.437294][T11953] RSP: 0018:ffffc90004a07ce8 EFLAGS: 00050246 [ 520.437321][T11953] RAX: 0000000000000004 RBX: 0000000000000000 RCX: 0000000000000000 [ 520.437346][T11953] RDX: ffff888034dbda00 RSI: ffffffff8a60d40b RDI: ffffffff8bf44f80 [ 520.437368][T11953] RBP: 0000000000000000 R08: b95a05d9a99e8893 R09: 0000000000000001 [ 520.437388][T11953] R10: 0000000000000001 R11: 0000000000000000 R12: 00000000000004ec [ 520.437407][T11953] R13: 1ffff92000940f9f R14: ffff888029138000 R15: 0000000000000000 [ 520.437442][T11953] ? j1939_sk_getsockopt+0x28b/0x330 [ 520.437489][T11953] j1939_sk_getsockopt+0x298/0x330 [ 520.437532][T11953] ? __pfx_j1939_sk_getsockopt+0x10/0x10 [ 520.437579][T11953] ? __pfx_j1939_sk_getsockopt+0x10/0x10 [ 520.437624][T11953] do_sock_getsockopt+0x3fc/0x800 [ 520.437671][T11953] ? __pfx_do_sock_getsockopt+0x10/0x10 [ 520.437720][T11953] ? __fget_files+0x204/0x3c0 [ 520.437787][T11953] __sys_getsockopt+0x123/0x1a0 [ 520.437840][T11953] __x64_sys_getsockopt+0xbd/0x160 [ 520.437891][T11953] ? do_syscall_64+0x91/0x230 [ 520.437936][T11953] ? lockdep_hardirqs_on+0x7c/0x110 [ 520.437980][T11953] do_syscall_64+0xcd/0x230 [ 520.438029][T11953] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 520.438059][T11953] RIP: 0033:0x7f299b38e969 [ 520.438084][T11953] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 520.438114][T11953] RSP: 002b:00007f299c1d6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 520.438142][T11953] RAX: ffffffffffffffda RBX: 00007f299b5b5fa0 RCX: 00007f299b38e969 [ 520.438163][T11953] RDX: 0000000000000003 RSI: 000000000000006b RDI: 0000000000000004 [ 520.438181][T11953] RBP: 00007f299c1d6090 R08: 0000000000000000 R09: 0000000000000000 [ 520.438200][T11953] R10: 9999999999999999 R11: 0000000000000246 R12: 0000000000000001 [ 520.438219][T11953] R13: 0000000000000000 R14: 00007f299b5b5fa0 R15: 00007ffe300bb8b8 [ 520.438260][T11953] [ 520.625696][T11951] FAULT_INJECTION: forcing a failure. [ 520.625696][T11951] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 520.977945][T11951] CPU: 1 UID: 0 PID: 11951 Comm: syz.1.1118 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 520.977990][T11951] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 520.978008][T11951] Call Trace: [ 520.978019][T11951] [ 520.978031][T11951] dump_stack_lvl+0x16c/0x1f0 [ 520.978081][T11951] should_fail_ex+0x512/0x640 [ 520.978124][T11951] _copy_to_user+0x32/0xd0 [ 520.978166][T11951] __do_sys_adjtimex+0xc4/0x140 [ 520.978207][T11951] ? __pfx___do_sys_adjtimex+0x10/0x10 [ 520.978246][T11951] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 520.978324][T11951] ? syscall_user_dispatch+0x78/0x140 [ 520.978385][T11951] do_syscall_64+0xcd/0x230 [ 520.978433][T11951] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 520.978464][T11951] RIP: 0033:0x7fa4b878e969 [ 520.978488][T11951] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 520.978530][T11951] RSP: 002b:00007fa4b65f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000009f [ 520.978558][T11951] RAX: ffffffffffffffda RBX: 00007fa4b89b5fa0 RCX: 00007fa4b878e969 [ 520.978577][T11951] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 520.978594][T11951] RBP: 00007fa4b65f6090 R08: 0000000000000000 R09: 0000000000000000 [ 520.978612][T11951] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 520.978629][T11951] R13: 0000000000000000 R14: 00007fa4b89b5fa0 R15: 00007ffc29c84128 [ 520.978665][T11951] [ 523.159206][T12002] FAULT_INJECTION: forcing a failure. [ 523.159206][T12002] name failslab, interval 1, probability 0, space 0, times 0 [ 523.224415][T12003] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1127'. [ 523.262802][T12002] CPU: 0 UID: 0 PID: 12002 Comm: syz.2.1127 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 523.262843][T12002] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 523.262860][T12002] Call Trace: [ 523.262871][T12002] [ 523.262882][T12002] dump_stack_lvl+0x16c/0x1f0 [ 523.262930][T12002] should_fail_ex+0x512/0x640 [ 523.262964][T12002] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 523.263006][T12002] should_failslab+0xc2/0x120 [ 523.263045][T12002] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 523.263082][T12002] ? __alloc_skb+0x2b2/0x380 [ 523.263125][T12002] __alloc_skb+0x2b2/0x380 [ 523.263162][T12002] ? __pfx___alloc_skb+0x10/0x10 [ 523.263203][T12002] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 523.263244][T12002] ? __lock_acquire+0xaa4/0x1ba0 [ 523.263291][T12002] netlink_alloc_large_skb+0x69/0x130 [ 523.263337][T12002] netlink_sendmsg+0x6a1/0xdd0 [ 523.263404][T12002] ? __pfx_netlink_sendmsg+0x10/0x10 [ 523.263458][T12002] ____sys_sendmsg+0xa95/0xc70 [ 523.263486][T12002] ? copy_msghdr_from_user+0x10a/0x160 [ 523.263524][T12002] ? __pfx_____sys_sendmsg+0x10/0x10 [ 523.263567][T12002] ___sys_sendmsg+0x134/0x1d0 [ 523.263606][T12002] ? __pfx____sys_sendmsg+0x10/0x10 [ 523.263685][T12002] __sys_sendmsg+0x16d/0x220 [ 523.263723][T12002] ? __pfx___sys_sendmsg+0x10/0x10 [ 523.263770][T12002] ? rcu_is_watching+0x12/0xc0 [ 523.263808][T12002] do_syscall_64+0xcd/0x230 [ 523.263852][T12002] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 523.263880][T12002] RIP: 0033:0x7f299b38e969 [ 523.263901][T12002] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 523.263927][T12002] RSP: 002b:00007f299c1d6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 523.263953][T12002] RAX: ffffffffffffffda RBX: 00007f299b5b5fa0 RCX: 00007f299b38e969 [ 523.263972][T12002] RDX: 0000000000000080 RSI: 0000200000000140 RDI: 0000000000000004 [ 523.263989][T12002] RBP: 00007f299c1d6090 R08: 0000000000000000 R09: 0000000000000000 [ 523.264006][T12002] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 523.264022][T12002] R13: 0000000000000000 R14: 00007f299b5b5fa0 R15: 00007ffe300bb8b8 [ 523.264056][T12002] [ 524.143590][T12017] FAULT_INJECTION: forcing a failure. [ 524.143590][T12017] name failslab, interval 1, probability 0, space 0, times 0 [ 524.143674][T12017] CPU: 1 UID: 0 PID: 12017 Comm: syz.2.1131 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 524.143708][T12017] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 524.143723][T12017] Call Trace: [ 524.143732][T12017] [ 524.143742][T12017] dump_stack_lvl+0x16c/0x1f0 [ 524.143785][T12017] should_fail_ex+0x512/0x640 [ 524.143816][T12017] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 524.143854][T12017] should_failslab+0xc2/0x120 [ 524.143891][T12017] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 524.143925][T12017] ? mas_alloc_nodes+0x18b/0x8b0 [ 524.143967][T12017] mas_alloc_nodes+0x18b/0x8b0 [ 524.144010][T12017] mas_node_count_gfp+0x105/0x130 [ 524.144049][T12017] mas_preallocate+0x53e/0xcd0 [ 524.144081][T12017] ? __pfx_mas_preallocate+0x10/0x10 [ 524.144126][T12017] ? vm_area_alloc+0x1f/0x160 [ 524.144161][T12017] ? lockdep_init_map_type+0x5c/0x280 [ 524.144206][T12017] __mmap_region+0x139b/0x27c0 [ 524.144244][T12017] ? __pfx___mmap_region+0x10/0x10 [ 524.144276][T12017] ? bpf_ksym_find+0x124/0x1c0 [ 524.144311][T12017] ? __kernel_text_address+0xd/0x40 [ 524.144338][T12017] ? unwind_get_return_address+0x59/0xa0 [ 524.144427][T12017] ? trace_cap_capable+0x18d/0x200 [ 524.144459][T12017] ? cap_capable+0xb3/0x250 [ 524.144492][T12017] mmap_region+0x1ab/0x3f0 [ 524.144533][T12017] do_mmap+0xd8e/0x11b0 [ 524.144582][T12017] ? __pfx_do_mmap+0x10/0x10 [ 524.144625][T12017] ? __pfx_down_write_killable+0x10/0x10 [ 524.144658][T12017] vm_mmap_pgoff+0x281/0x450 [ 524.144712][T12017] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 524.144758][T12017] ? __fget_files+0x20e/0x3c0 [ 524.144795][T12017] ksys_mmap_pgoff+0x7d/0x5c0 [ 524.144836][T12017] ? __pfx_ksys_write+0x10/0x10 [ 524.144863][T12017] ? rcu_is_watching+0x12/0xc0 [ 524.144895][T12017] __x64_sys_mmap+0x125/0x190 [ 524.144929][T12017] do_syscall_64+0xcd/0x230 [ 524.144971][T12017] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 524.144998][T12017] RIP: 0033:0x7f299b38e969 [ 524.145019][T12017] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 524.145046][T12017] RSP: 002b:00007f299c1d6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 524.145072][T12017] RAX: ffffffffffffffda RBX: 00007f299b5b5fa0 RCX: 00007f299b38e969 [ 524.145091][T12017] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 524.145113][T12017] RBP: 00007f299c1d6090 R08: 0000000000000002 R09: 0000000000008000 [ 524.145130][T12017] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000001 [ 524.145147][T12017] R13: 0000000000000000 R14: 00007f299b5b5fa0 R15: 00007ffe300bb8b8 [ 524.145200][T12017] [ 526.105552][T12028] tty tty46: ldisc open failed (-12), clearing slot 45 [ 526.855066][T12056] FAULT_INJECTION: forcing a failure. [ 526.855066][T12056] name failslab, interval 1, probability 0, space 0, times 0 [ 526.915909][T12056] CPU: 0 UID: 0 PID: 12056 Comm: syz.1.1139 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 526.915952][T12056] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 526.915969][T12056] Call Trace: [ 526.915979][T12056] [ 526.915996][T12056] dump_stack_lvl+0x16c/0x1f0 [ 526.916043][T12056] should_fail_ex+0x512/0x640 [ 526.916077][T12056] ? __kmalloc_noprof+0xbf/0x510 [ 526.916114][T12056] ? net_alloc_generic+0x1e/0x70 [ 526.916155][T12056] should_failslab+0xc2/0x120 [ 526.916194][T12056] __kmalloc_noprof+0xd2/0x510 [ 526.916227][T12056] ? inc_ucount+0x240/0x2f0 [ 526.916271][T12056] net_alloc_generic+0x1e/0x70 [ 526.916311][T12056] copy_net_ns+0xc6/0x5f0 [ 526.916352][T12056] ? copy_cgroup_ns+0xa4/0x6f0 [ 526.916390][T12056] create_new_namespaces+0x3ea/0xad0 [ 526.916455][T12056] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 526.916499][T12056] ksys_unshare+0x45b/0xa40 [ 526.916548][T12056] ? __pfx_ksys_unshare+0x10/0x10 [ 526.916596][T12056] ? ksys_write+0x1b9/0x240 [ 526.916630][T12056] ? rcu_is_watching+0x12/0xc0 [ 526.916673][T12056] __x64_sys_unshare+0x31/0x40 [ 526.916720][T12056] do_syscall_64+0xcd/0x230 [ 526.916770][T12056] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 526.916802][T12056] RIP: 0033:0x7fa4b878e969 [ 526.916827][T12056] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 526.916858][T12056] RSP: 002b:00007fa4b65d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 526.916889][T12056] RAX: ffffffffffffffda RBX: 00007fa4b89b6080 RCX: 00007fa4b878e969 [ 526.916910][T12056] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 526.916930][T12056] RBP: 00007fa4b65d5090 R08: 0000000000000000 R09: 0000000000000000 [ 526.916954][T12056] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 526.916973][T12056] R13: 0000000000000000 R14: 00007fa4b89b6080 R15: 00007ffc29c84128 [ 526.917020][T12056] [ 532.378746][T12154] FAULT_INJECTION: forcing a failure. [ 532.378746][T12154] name failslab, interval 1, probability 0, space 0, times 0 [ 532.412182][T12154] CPU: 0 UID: 0 PID: 12154 Comm: syz.3.1157 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 532.412225][T12154] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 532.412242][T12154] Call Trace: [ 532.412251][T12154] [ 532.412262][T12154] dump_stack_lvl+0x16c/0x1f0 [ 532.412308][T12154] should_fail_ex+0x512/0x640 [ 532.412340][T12154] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 532.412374][T12154] should_failslab+0xc2/0x120 [ 532.412412][T12154] __kmalloc_cache_noprof+0x6a/0x3e0 [ 532.412441][T12154] ? find_held_lock+0x2b/0x80 [ 532.412470][T12154] ? landlock_create_object+0x64/0x180 [ 532.412523][T12154] landlock_create_object+0x64/0x180 [ 532.412571][T12154] landlock_append_fs_rule+0x5e8/0x970 [ 532.412609][T12154] ? do_raw_spin_lock+0x12c/0x2b0 [ 532.412638][T12154] ? __pfx_landlock_append_fs_rule+0x10/0x10 [ 532.412722][T12154] ? path_get+0x61/0x80 [ 532.412770][T12154] add_rule_path_beneath+0x3d9/0x520 [ 532.412822][T12154] ? __pfx_add_rule_path_beneath+0x10/0x10 [ 532.412880][T12154] ? fput+0x70/0xf0 [ 532.412926][T12154] __x64_sys_landlock_add_rule+0x1a9/0x240 [ 532.412984][T12154] do_syscall_64+0xcd/0x230 [ 532.413034][T12154] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 532.413068][T12154] RIP: 0033:0x7f684df8e969 [ 532.413092][T12154] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 532.413128][T12154] RSP: 002b:00007f684ee10038 EFLAGS: 00000246 ORIG_RAX: 00000000000001bd [ 532.413171][T12154] RAX: ffffffffffffffda RBX: 00007f684e1b5fa0 RCX: 00007f684df8e969 [ 532.413193][T12154] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000003 [ 532.413212][T12154] RBP: 00007f684ee10090 R08: 0000000000000000 R09: 0000000000000000 [ 532.413233][T12154] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 532.413252][T12154] R13: 0000000000000000 R14: 00007f684e1b5fa0 R15: 00007ffd1becb708 [ 532.413294][T12154] [ 532.619813][T12158] mkiss: ax0: crc mode is auto. [ 533.083532][T12163] FAULT_INJECTION: forcing a failure. [ 533.083532][T12163] name failslab, interval 1, probability 0, space 0, times 0 [ 533.096607][T12163] CPU: 0 UID: 0 PID: 12163 Comm: syz.1.1159 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 533.096650][T12163] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 533.096669][T12163] Call Trace: [ 533.096680][T12163] [ 533.096692][T12163] dump_stack_lvl+0x16c/0x1f0 [ 533.096752][T12163] should_fail_ex+0x512/0x640 [ 533.096790][T12163] ? fs_reclaim_acquire+0xae/0x150 [ 533.096844][T12163] ? tomoyo_encode2+0x100/0x3e0 [ 533.096887][T12163] should_failslab+0xc2/0x120 [ 533.096930][T12163] __kmalloc_noprof+0xd2/0x510 [ 533.096968][T12163] ? d_absolute_path+0x136/0x1a0 [ 533.097017][T12163] tomoyo_encode2+0x100/0x3e0 [ 533.097069][T12163] tomoyo_encode+0x29/0x50 [ 533.097112][T12163] tomoyo_realpath_from_path+0x18f/0x6e0 [ 533.097172][T12163] tomoyo_path_number_perm+0x245/0x580 [ 533.097211][T12163] ? tomoyo_path_number_perm+0x237/0x580 [ 533.097255][T12163] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 533.097299][T12163] ? find_held_lock+0x2b/0x80 [ 533.097369][T12163] ? find_held_lock+0x2b/0x80 [ 533.097402][T12163] ? hook_file_ioctl_common+0x145/0x410 [ 533.097450][T12163] ? __fget_files+0x20e/0x3c0 [ 533.097489][T12163] security_file_ioctl+0x9b/0x240 [ 533.097534][T12163] __x64_sys_ioctl+0xb7/0x200 [ 533.097585][T12163] do_syscall_64+0xcd/0x230 [ 533.097646][T12163] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 533.097677][T12163] RIP: 0033:0x7fa4b878e969 [ 533.097701][T12163] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 533.097731][T12163] RSP: 002b:00007fa4b65f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 533.097767][T12163] RAX: ffffffffffffffda RBX: 00007fa4b89b5fa0 RCX: 00007fa4b878e969 [ 533.097788][T12163] RDX: 0000000000000001 RSI: 0000000080047456 RDI: 0000000000000003 [ 533.097806][T12163] RBP: 00007fa4b65f6090 R08: 0000000000000000 R09: 0000000000000000 [ 533.097825][T12163] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 533.097844][T12163] R13: 0000000000000000 R14: 00007fa4b89b5fa0 R15: 00007ffc29c84128 [ 533.097895][T12163] [ 533.097919][T12163] ERROR: Out of memory at tomoyo_realpath_from_path. syzkaller syzkaller login: [ 535.088262][T12191] FAULT_INJECTION: forcing a failure. [ 535.088262][T12191] name failslab, interval 1, probability 0, space 0, times 0 [ 535.133611][T12191] CPU: 1 UID: 0 PID: 12191 Comm: syz.3.1164 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 535.133658][T12191] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 535.133677][T12191] Call Trace: [ 535.133687][T12191] [ 535.133700][T12191] dump_stack_lvl+0x16c/0x1f0 [ 535.133765][T12191] should_fail_ex+0x512/0x640 [ 535.133808][T12191] ? fs_reclaim_acquire+0xae/0x150 [ 535.133862][T12191] ? tomoyo_encode2+0x100/0x3e0 [ 535.133903][T12191] should_failslab+0xc2/0x120 [ 535.133955][T12191] __kmalloc_noprof+0xd2/0x510 [ 535.133999][T12191] tomoyo_encode2+0x100/0x3e0 [ 535.134045][T12191] tomoyo_encode+0x29/0x50 [ 535.134084][T12191] tomoyo_realpath_from_path+0x18f/0x6e0 [ 535.134130][T12191] ? tomoyo_profile+0x47/0x60 [ 535.134172][T12191] tomoyo_path_number_perm+0x245/0x580 [ 535.134201][T12191] ? tomoyo_path_number_perm+0x237/0x580 [ 535.134232][T12191] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 535.134264][T12191] ? find_held_lock+0x2b/0x80 [ 535.134315][T12191] ? find_held_lock+0x2b/0x80 [ 535.134338][T12191] ? hook_file_ioctl_common+0x145/0x410 [ 535.134372][T12191] ? __fget_files+0x20e/0x3c0 [ 535.134400][T12191] security_file_ioctl+0x9b/0x240 [ 535.134432][T12191] __x64_sys_ioctl+0xb7/0x200 [ 535.134469][T12191] do_syscall_64+0xcd/0x230 [ 535.134507][T12191] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 535.134532][T12191] RIP: 0033:0x7f684df8e969 [ 535.134552][T12191] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 535.134576][T12191] RSP: 002b:00007f684ee10038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 535.134598][T12191] RAX: ffffffffffffffda RBX: 00007f684e1b5fa0 RCX: 00007f684df8e969 [ 535.134614][T12191] RDX: 0000000000000000 RSI: 000000004048aecb RDI: 0000000000000004 [ 535.134628][T12191] RBP: 00007f684ee10090 R08: 0000000000000000 R09: 0000000000000000 [ 535.134642][T12191] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 535.134656][T12191] R13: 0000000000000000 R14: 00007f684e1b5fa0 R15: 00007ffd1becb708 [ 535.134686][T12191] [ 535.134712][T12191] ERROR: Out of memory at tomoyo_realpath_from_path. [ 536.974323][T12210] FAULT_INJECTION: forcing a failure. [ 536.974323][T12210] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 536.999923][T12210] CPU: 0 UID: 0 PID: 12210 Comm: syz.1.1168 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 536.999964][T12210] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 536.999981][T12210] Call Trace: [ 536.999990][T12210] [ 537.000001][T12210] dump_stack_lvl+0x16c/0x1f0 [ 537.000044][T12210] should_fail_ex+0x512/0x640 [ 537.000083][T12210] should_fail_alloc_page+0xe7/0x130 [ 537.000123][T12210] prepare_alloc_pages+0x3c2/0x610 [ 537.000198][T12210] __alloc_frozen_pages_noprof+0x18f/0x23a0 [ 537.000243][T12210] ? __lock_acquire+0x5ca/0x1ba0 [ 537.000296][T12210] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 537.000344][T12210] ? find_held_lock+0x2b/0x80 [ 537.000379][T12210] ? bpf_ksym_find+0x124/0x1c0 [ 537.000420][T12210] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 537.000455][T12210] ? is_bpf_text_address+0x94/0x1a0 [ 537.000494][T12210] ? kernel_text_address+0x8d/0x100 [ 537.000541][T12210] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 537.000588][T12210] ? policy_nodemask+0xea/0x4e0 [ 537.000633][T12210] alloc_pages_mpol+0x1fb/0x550 [ 537.000676][T12210] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 537.000736][T12210] alloc_pages_noprof+0x131/0x390 [ 537.000780][T12210] __pmd_alloc+0x3f/0x870 [ 537.000826][T12210] ? find_held_lock+0x2b/0x80 [ 537.000858][T12210] __handle_mm_fault+0x948/0x2a40 [ 537.000905][T12210] ? __pfx___handle_mm_fault+0x10/0x10 [ 537.000958][T12210] ? find_vma+0xbf/0x140 [ 537.001003][T12210] ? __pfx_find_vma+0x10/0x10 [ 537.001053][T12210] handle_mm_fault+0x3fe/0xad0 [ 537.001096][T12210] do_user_addr_fault+0x7a6/0x1370 [ 537.001135][T12210] ? rcu_is_watching+0x12/0xc0 [ 537.001172][T12210] exc_page_fault+0x5c/0xc0 [ 537.001215][T12210] asm_exc_page_fault+0x26/0x30 [ 537.001245][T12210] RIP: 0010:rep_movs_alternative+0x30/0x90 [ 537.001279][T12210] Code: 83 f9 08 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 [ 537.001309][T12210] RSP: 0018:ffffc900034c7e58 EFLAGS: 00050202 [ 537.001335][T12210] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 000000000000000c [ 537.001353][T12210] RDX: fffff52000698fd7 RSI: 0000000000000000 RDI: ffffc900034c7eb0 [ 537.001373][T12210] RBP: 000000000000000c R08: 0000000000000001 R09: fffff52000698fd7 [ 537.001392][T12210] R10: 0000000000000003 R11: 0000000000000000 R12: 0000000000000000 [ 537.001410][T12210] R13: ffffc900034c7eb0 R14: 0000000000000001 R15: 0000000000000002 [ 537.001462][T12210] _copy_from_user+0x98/0xd0 [ 537.001501][T12210] __x64_sys_epoll_ctl+0x131/0x1e0 [ 537.001548][T12210] ? __pfx___x64_sys_epoll_ctl+0x10/0x10 [ 537.001593][T12210] ? rcu_is_watching+0x12/0xc0 [ 537.001633][T12210] do_syscall_64+0xcd/0x230 [ 537.001695][T12210] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 537.001722][T12210] RIP: 0033:0x7fa4b878e969 [ 537.001743][T12210] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 537.001768][T12210] RSP: 002b:00007fa4b65f6038 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9 [ 537.001792][T12210] RAX: ffffffffffffffda RBX: 00007fa4b89b5fa0 RCX: 00007fa4b878e969 [ 537.001810][T12210] RDX: 8000000000000000 RSI: 0000000000000001 RDI: 0000000000000002 [ 537.001828][T12210] RBP: 00007fa4b65f6090 R08: 0000000000000000 R09: 0000000000000000 [ 537.001845][T12210] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 537.001860][T12210] R13: 0000000000000000 R14: 00007fa4b89b5fa0 R15: 00007ffc29c84128 [ 537.001896][T12210] [ 538.564389][T12227] FAULT_INJECTION: forcing a failure. [ 538.564389][T12227] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 538.639814][T12227] CPU: 0 UID: 0 PID: 12227 Comm: syz.3.1174 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 538.639856][T12227] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 538.639872][T12227] Call Trace: [ 538.639881][T12227] [ 538.639892][T12227] dump_stack_lvl+0x16c/0x1f0 [ 538.639940][T12227] should_fail_ex+0x512/0x640 [ 538.639979][T12227] _copy_from_user+0x2e/0xd0 [ 538.640019][T12227] sctp_setsockopt+0x2045/0xb870 [ 538.640078][T12227] ? __pfx_sctp_setsockopt+0x10/0x10 [ 538.640111][T12227] ? __lock_acquire+0x5ca/0x1ba0 [ 538.640154][T12227] ? __pfx_aa_sk_perm+0x10/0x10 [ 538.640202][T12227] ? find_held_lock+0x2b/0x80 [ 538.640234][T12227] ? sock_common_setsockopt+0x2e/0xf0 [ 538.640283][T12227] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 538.640330][T12227] do_sock_setsockopt+0x221/0x470 [ 538.640384][T12227] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 538.640473][T12227] __sys_setsockopt+0x120/0x1a0 [ 538.640520][T12227] __x64_sys_setsockopt+0xbd/0x160 [ 538.640558][T12227] ? do_syscall_64+0x91/0x230 [ 538.640603][T12227] ? lockdep_hardirqs_on+0x7c/0x110 [ 538.640646][T12227] do_syscall_64+0xcd/0x230 [ 538.640695][T12227] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 538.640726][T12227] RIP: 0033:0x7f684df8e969 [ 538.640749][T12227] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 538.640780][T12227] RSP: 002b:00007f684edef038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 538.640809][T12227] RAX: ffffffffffffffda RBX: 00007f684e1b6080 RCX: 00007f684df8e969 [ 538.640840][T12227] RDX: 000000000000007b RSI: 0000010000000084 RDI: 0000000000000003 [ 538.640858][T12227] RBP: 00007f684edef090 R08: 000000000000000d R09: 0000000000000000 [ 538.640876][T12227] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 538.640893][T12227] R13: 0000000000000001 R14: 00007f684e1b6080 R15: 00007ffd1becb708 [ 538.640947][T12227] [ 540.267869][T12248] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1179'. [ 540.986284][T12259] FAULT_INJECTION: forcing a failure. [ 540.986284][T12259] name failslab, interval 1, probability 0, space 0, times 0 [ 541.062347][T12259] CPU: 0 UID: 0 PID: 12259 Comm: syz.3.1181 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 541.062386][T12259] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 541.062402][T12259] Call Trace: [ 541.062411][T12259] [ 541.062420][T12259] dump_stack_lvl+0x16c/0x1f0 [ 541.062463][T12259] should_fail_ex+0x512/0x640 [ 541.062494][T12259] ? __kmalloc_noprof+0xbf/0x510 [ 541.062526][T12259] ? lsm_blob_alloc+0x68/0x90 [ 541.062561][T12259] should_failslab+0xc2/0x120 [ 541.062591][T12259] __kmalloc_noprof+0xd2/0x510 [ 541.062623][T12259] lsm_blob_alloc+0x68/0x90 [ 541.062658][T12259] security_prepare_creds+0x30/0x270 [ 541.062693][T12259] prepare_creds+0x56f/0x7d0 [ 541.062730][T12259] __sys_setreuid+0x101/0xaf0 [ 541.062758][T12259] ? rcu_is_watching+0x12/0xc0 [ 541.062783][T12259] do_syscall_64+0xcd/0x230 [ 541.062818][T12259] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 541.062840][T12259] RIP: 0033:0x7f684df8e969 [ 541.062857][T12259] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 541.062879][T12259] RSP: 002b:00007f684edef038 EFLAGS: 00000246 ORIG_RAX: 0000000000000071 [ 541.062901][T12259] RAX: ffffffffffffffda RBX: 00007f684e1b6080 RCX: 00007f684df8e969 [ 541.062916][T12259] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000000 [ 541.062929][T12259] RBP: 00007f684edef090 R08: 0000000000000000 R09: 0000000000000000 [ 541.062942][T12259] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 541.062956][T12259] R13: 0000000000000000 R14: 00007f684e1b6080 R15: 00007ffd1becb708 [ 541.062984][T12259] [ 542.044466][T12271] FAULT_INJECTION: forcing a failure. [ 542.044466][T12271] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 542.070526][T12271] CPU: 1 UID: 0 PID: 12271 Comm: syz.3.1184 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 542.070577][T12271] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 542.070593][T12271] Call Trace: [ 542.070602][T12271] [ 542.070613][T12271] dump_stack_lvl+0x16c/0x1f0 [ 542.070657][T12271] should_fail_ex+0x512/0x640 [ 542.070695][T12271] _copy_to_user+0x32/0xd0 [ 542.070733][T12271] vcs_read+0x789/0xbe0 [ 542.070786][T12271] ? __pfx_vcs_read+0x10/0x10 [ 542.070822][T12271] ? bpf_lsm_file_permission+0x9/0x10 [ 542.070850][T12271] ? security_file_permission+0x71/0x210 [ 542.070890][T12271] ? rw_verify_area+0xcf/0x680 [ 542.070932][T12271] ? __pfx_vcs_read+0x10/0x10 [ 542.070971][T12271] vfs_read+0x1de/0xc70 [ 542.071006][T12271] ? __pfx_vfs_read+0x10/0x10 [ 542.071031][T12271] ? find_held_lock+0x2b/0x80 [ 542.071061][T12271] ? __fget_files+0x204/0x3c0 [ 542.071092][T12271] ? __fget_files+0x20e/0x3c0 [ 542.071128][T12271] ksys_read+0x12a/0x240 [ 542.071155][T12271] ? __pfx_ksys_read+0x10/0x10 [ 542.071182][T12271] ? rcu_is_watching+0x12/0xc0 [ 542.071220][T12271] do_syscall_64+0xcd/0x230 syzkaller syzkaller login: [ 542.071263][T12271] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 542.071290][T12271] RIP: 0033:0x7f684df8e969 [ 542.071311][T12271] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 542.071339][T12271] RSP: 002b:00007f684ee10038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 542.071364][T12271] RAX: ffffffffffffffda RBX: 00007f684e1b5fa0 RCX: 00007f684df8e969 [ 542.071383][T12271] RDX: 0000000000000080 RSI: 0000000000000000 RDI: 0000000000000003 [ 542.071399][T12271] RBP: 00007f684ee10090 R08: 0000000000000000 R09: 0000000000000000 [ 542.071424][T12271] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 542.071441][T12271] R13: 0000000000000000 R14: 00007f684e1b5fa0 R15: 00007ffd1becb708 [ 542.071476][T12271] [ 544.181580][T12305] tipc: Started in network mode [ 544.225692][T12305] tipc: Node identity ee00, cluster identity 4711 [ 544.251678][T12305] tipc: Node number set to 60928 [ 544.570201][T12310] FAULT_INJECTION: forcing a failure. [ 544.570201][T12310] name failslab, interval 1, probability 0, space 0, times 0 [ 544.621223][T12310] CPU: 0 UID: 0 PID: 12310 Comm: syz.0.1191 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 544.621272][T12310] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 544.621292][T12310] Call Trace: [ 544.621303][T12310] [ 544.621316][T12310] dump_stack_lvl+0x16c/0x1f0 [ 544.621381][T12310] should_fail_ex+0x512/0x640 [ 544.621418][T12310] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 544.621456][T12310] should_failslab+0xc2/0x120 [ 544.621504][T12310] __kmalloc_cache_noprof+0x6a/0x3e0 [ 544.621538][T12310] ? snd_card_file_add+0x52/0x330 [ 544.621591][T12310] ? __pfx_snd_ctl_open+0x10/0x10 [ 544.621631][T12310] snd_card_file_add+0x52/0x330 [ 544.621680][T12310] ? __pfx_snd_ctl_open+0x10/0x10 [ 544.621720][T12310] ? __pfx_snd_ctl_open+0x10/0x10 [ 544.621760][T12310] snd_ctl_open+0x9d/0x5e0 [ 544.621802][T12310] ? __pfx_snd_ctl_open+0x10/0x10 [ 544.621842][T12310] snd_open+0x1fe/0x450 [ 544.621889][T12310] ? __pfx_snd_open+0x10/0x10 [ 544.621935][T12310] chrdev_open+0x231/0x6a0 [ 544.621970][T12310] ? __pfx_apparmor_file_open+0x10/0x10 [ 544.622013][T12310] ? __pfx_chrdev_open+0x10/0x10 [ 544.622062][T12310] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 544.622123][T12310] do_dentry_open+0x741/0x1c10 [ 544.622161][T12310] ? __pfx_chrdev_open+0x10/0x10 [ 544.622205][T12310] vfs_open+0x82/0x3f0 [ 544.622253][T12310] path_openat+0x1e5e/0x2d40 [ 544.622299][T12310] ? __pfx_path_openat+0x10/0x10 [ 544.622334][T12310] ? stack_trace_save+0x8e/0xc0 [ 544.622369][T12310] ? __pfx_stack_trace_save+0x10/0x10 [ 544.622410][T12310] do_filp_open+0x20b/0x470 [ 544.622445][T12310] ? __pfx_do_filp_open+0x10/0x10 [ 544.622477][T12310] ? kasan_save_stack+0x42/0x60 [ 544.622512][T12310] ? kasan_save_stack+0x33/0x60 [ 544.622589][T12310] file_open_name+0x2a3/0x450 [ 544.622637][T12310] ? __pfx_file_open_name+0x10/0x10 [ 544.622700][T12310] acct_on+0x77/0x870 [ 544.622754][T12310] __x64_sys_acct+0xaf/0x230 [ 544.622792][T12310] ? lockdep_hardirqs_on+0x7c/0x110 [ 544.622833][T12310] do_syscall_64+0xcd/0x230 [ 544.622881][T12310] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 544.622911][T12310] RIP: 0033:0x7ff90a58e969 [ 544.622935][T12310] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 544.622963][T12310] RSP: 002b:00007ff90b3c3038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3 [ 544.622992][T12310] RAX: ffffffffffffffda RBX: 00007ff90a7b5fa0 RCX: 00007ff90a58e969 [ 544.623013][T12310] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000000 [ 544.623031][T12310] RBP: 00007ff90a610ab1 R08: 0000000000000000 R09: 0000000000000000 [ 544.623058][T12310] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 544.623076][T12310] R13: 0000000000000000 R14: 00007ff90a7b5fa0 R15: 00007ffd13a5d138 [ 544.623115][T12310] [ 545.174989][T12314] FAULT_INJECTION: forcing a failure. [ 545.174989][T12314] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 545.228812][T12314] CPU: 1 UID: 0 PID: 12314 Comm: syz.2.1193 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 545.228857][T12314] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 545.228876][T12314] Call Trace: [ 545.228886][T12314] [ 545.228897][T12314] dump_stack_lvl+0x16c/0x1f0 [ 545.228944][T12314] should_fail_ex+0x512/0x640 [ 545.228985][T12314] strncpy_from_user+0x3b/0x2e0 [ 545.229022][T12314] getname_flags.part.0+0x8f/0x550 [ 545.229073][T12314] getname_flags+0x93/0xf0 [ 545.229122][T12314] __x64_sys_acct+0x75/0x230 [ 545.229166][T12314] ? lockdep_hardirqs_on+0x7c/0x110 [ 545.229211][T12314] do_syscall_64+0xcd/0x230 [ 545.229286][T12314] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 545.229315][T12314] RIP: 0033:0x7f299b38e969 [ 545.229360][T12314] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 545.229391][T12314] RSP: 002b:00007f299c1d6038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3 [ 545.229437][T12314] RAX: ffffffffffffffda RBX: 00007f299b5b5fa0 RCX: 00007f299b38e969 [ 545.229458][T12314] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000000 [ 545.229477][T12314] RBP: 00007f299c1d6090 R08: 0000000000000000 R09: 0000000000000000 [ 545.229496][T12314] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 545.229514][T12314] R13: 0000000000000000 R14: 00007f299b5b5fa0 R15: 00007ffe300bb8b8 [ 545.229553][T12314] [ 548.560433][T12361] FAULT_INJECTION: forcing a failure. [ 548.560433][T12361] name failslab, interval 1, probability 0, space 0, times 0 [ 548.612020][T12361] CPU: 0 UID: 0 PID: 12361 Comm: syz.0.1201 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 548.612067][T12361] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 548.612095][T12361] Call Trace: [ 548.612105][T12361] [ 548.612117][T12361] dump_stack_lvl+0x16c/0x1f0 [ 548.612169][T12361] should_fail_ex+0x512/0x640 [ 548.612207][T12361] ? fs_reclaim_acquire+0xae/0x150 [ 548.612262][T12361] ? tomoyo_encode2+0x100/0x3e0 [ 548.612306][T12361] should_failslab+0xc2/0x120 [ 548.612349][T12361] __kmalloc_noprof+0xd2/0x510 [ 548.612398][T12361] tomoyo_encode2+0x100/0x3e0 [ 548.612450][T12361] tomoyo_encode+0x29/0x50 [ 548.612493][T12361] tomoyo_realpath_from_path+0x18f/0x6e0 [ 548.612544][T12361] ? tomoyo_profile+0x47/0x60 [ 548.612601][T12361] tomoyo_path_number_perm+0x245/0x580 [ 548.612640][T12361] ? tomoyo_path_number_perm+0x237/0x580 [ 548.612684][T12361] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 548.612727][T12361] ? find_held_lock+0x2b/0x80 [ 548.612799][T12361] ? find_held_lock+0x2b/0x80 [ 548.612834][T12361] ? hook_file_ioctl_common+0x145/0x410 [ 548.612880][T12361] ? __fget_files+0x20e/0x3c0 [ 548.612918][T12361] security_file_ioctl+0x9b/0x240 [ 548.612963][T12361] __x64_sys_ioctl+0xb7/0x200 [ 548.613013][T12361] do_syscall_64+0xcd/0x230 [ 548.613084][T12361] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 548.613116][T12361] RIP: 0033:0x7ff90a58e969 [ 548.613140][T12361] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 548.613170][T12361] RSP: 002b:00007ff90b3c3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 548.613200][T12361] RAX: ffffffffffffffda RBX: 00007ff90a7b5fa0 RCX: 00007ff90a58e969 [ 548.613231][T12361] RDX: ffffffffffffffff RSI: 0000000080106f53 RDI: 0000000000000003 [ 548.613250][T12361] RBP: 00007ff90b3c3090 R08: 0000000000000000 R09: 0000000000000000 [ 548.613268][T12361] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 548.613285][T12361] R13: 0000000000000000 R14: 00007ff90a7b5fa0 R15: 00007ffd13a5d138 [ 548.613323][T12361] [ 548.614499][T12361] ERROR: Out of memory at tomoyo_realpath_from_path. [ 549.338386][T12375] FAULT_INJECTION: forcing a failure. [ 549.338386][T12375] name failslab, interval 1, probability 0, space 0, times 0 [ 549.449761][T12375] CPU: 1 UID: 0 PID: 12375 Comm: syz.0.1204 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 549.449804][T12375] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 549.449820][T12375] Call Trace: [ 549.449830][T12375] [ 549.449840][T12375] dump_stack_lvl+0x16c/0x1f0 [ 549.449887][T12375] should_fail_ex+0x512/0x640 [ 549.449921][T12375] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 549.449961][T12375] should_failslab+0xc2/0x120 [ 549.450000][T12375] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 549.450043][T12375] ? __alloc_skb+0x2b2/0x380 [ 549.450086][T12375] __alloc_skb+0x2b2/0x380 [ 549.450123][T12375] ? __pfx___alloc_skb+0x10/0x10 [ 549.450166][T12375] ? __lock_acquire+0xaa4/0x1ba0 [ 549.450212][T12375] netlink_alloc_large_skb+0x69/0x130 [ 549.450259][T12375] netlink_sendmsg+0x6a1/0xdd0 [ 549.450308][T12375] ? __pfx_netlink_sendmsg+0x10/0x10 [ 549.450365][T12375] ____sys_sendmsg+0xa95/0xc70 [ 549.450395][T12375] ? copy_msghdr_from_user+0x10a/0x160 [ 549.450433][T12375] ? __pfx_____sys_sendmsg+0x10/0x10 [ 549.450478][T12375] ___sys_sendmsg+0x134/0x1d0 [ 549.450521][T12375] ? __pfx____sys_sendmsg+0x10/0x10 [ 549.450605][T12375] __sys_sendmsg+0x16d/0x220 [ 549.450646][T12375] ? __pfx___sys_sendmsg+0x10/0x10 [ 549.450696][T12375] ? rcu_is_watching+0x12/0xc0 [ 549.450737][T12375] do_syscall_64+0xcd/0x230 [ 549.450785][T12375] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 549.450814][T12375] RIP: 0033:0x7ff90a58e969 [ 549.450836][T12375] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 549.450864][T12375] RSP: 002b:00007ff90b3c3038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 549.450891][T12375] RAX: ffffffffffffffda RBX: 00007ff90a7b5fa0 RCX: 00007ff90a58e969 [ 549.450911][T12375] RDX: 00000000040000c0 RSI: 0000200000000300 RDI: 0000000000000003 [ 549.450929][T12375] RBP: 00007ff90b3c3090 R08: 0000000000000000 R09: 0000000000000000 [ 549.450947][T12375] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 549.450964][T12375] R13: 0000000000000000 R14: 00007ff90a7b5fa0 R15: 00007ffd13a5d138 [ 549.451001][T12375] syzkaller syzkaller login: [ 568.047379][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 568.054236][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 629.485805][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 629.492246][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 690.923676][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 690.930095][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 699.239836][ T31] INFO: task kworker/u8:6:1148 blocked for more than 143 seconds. [ 699.247917][ T31] Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 [ 699.259005][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 699.268058][ T31] task:kworker/u8:6 state:D stack:23688 pid:1148 tgid:1148 ppid:2 task_flags:0x4248060 flags:0x00004000 [ 699.281509][ T31] Workqueue: writeback wb_workfn (flush-8:0) [ 699.287597][ T31] Call Trace: [ 699.292778][ T31] [ 699.295774][ T31] __schedule+0x116f/0x5de0 [ 699.305189][ T31] ? blk_mq_flush_plug_list+0x75a/0x1c70 [ 699.312663][ T31] ? __lock_acquire+0x5ca/0x1ba0 [ 699.317699][ T31] ? __pfx___schedule+0x10/0x10 [ 699.325157][ T31] ? __blk_flush_plug+0x2f3/0x4b0 [ 699.331951][ T31] ? find_held_lock+0x2b/0x80 [ 699.336693][ T31] ? schedule+0x2d7/0x3a0 [ 699.342901][ T31] schedule+0xe7/0x3a0 [ 699.347051][ T31] io_schedule+0xbf/0x130 [ 699.353908][ T31] bit_wait_io+0x15/0xe0 [ 699.358218][ T31] __wait_on_bit+0x62/0x180 [ 699.364542][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 699.369551][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 699.376707][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 699.384315][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 699.391502][ T31] do_get_write_access+0x93d/0x12a0 [ 699.396787][ T31] jbd2_journal_get_write_access+0x1d6/0x280 [ 699.406317][ T31] __ext4_journal_get_write_access+0x6a/0x340 [ 699.412603][ T31] ext4_mb_mark_context+0x175/0xd40 [ 699.417872][ T31] ? find_held_lock+0x2b/0x80 [ 699.422725][ T31] ? __pfx_ext4_mb_mark_context+0x10/0x10 [ 699.428507][ T31] ext4_mb_mark_diskspace_used+0x466/0x8c0 [ 699.434499][ T31] ? ext4_mb_use_preallocated.constprop.0+0xec/0x1550 [ 699.441395][ T31] ? __pfx_ext4_mb_mark_diskspace_used+0x10/0x10 [ 699.447791][ T31] ? ext4_mb_new_blocks+0x977/0x4f00 [ 699.453181][ T31] ext4_mb_new_blocks+0xa5b/0x4f00 [ 699.458373][ T31] ? bh_uptodate_or_lock+0x3c/0x140 [ 699.463769][ T31] ? __read_extent_tree_block+0x2ca/0x640 [ 699.469550][ T31] ? __pfx_ext4_mb_new_blocks+0x10/0x10 [ 699.475234][ T31] ? ext4_ext_search_right+0x2c2/0xb90 [ 699.481191][ T31] ext4_ext_map_blocks+0x1b95/0x5d60 [ 699.486585][ T31] ? stack_trace_save+0x8e/0xc0 [ 699.491520][ T31] ? __pfx_stack_trace_save+0x10/0x10 [ 699.496983][ T31] ? __pfx_ext4_ext_map_blocks+0x10/0x10 [ 699.502782][ T31] ? inet_dgram_connect+0x1d9/0x2f0 [ 699.508992][ T31] ? __kasan_slab_alloc+0x89/0x90 [ 699.514177][ T31] ? ext4_do_writepages+0x1432/0x3490 [ 699.519746][ T31] ? __pfx___might_resched+0x10/0x10 [ 699.525917][ T31] ? __pfx_down_write+0x10/0x10 [ 699.531014][ T31] ? ext4_es_lookup_extent+0xc7/0xc50 [ 699.536456][ T31] ext4_map_blocks+0x45b/0x1390 [ 699.541510][ T31] ? __pfx_ext4_map_blocks+0x10/0x10 [ 699.546865][ T31] ? trace_kmem_cache_alloc+0x28/0xc0 [ 699.556389][ T31] ? kmem_cache_alloc_noprof+0x21e/0x3b0 [ 699.562282][ T31] ext4_do_writepages+0x1a2c/0x3490 [ 699.567532][ T31] ? arch_stack_walk+0x85/0x100 [ 699.575836][ T31] ? __pfx_ext4_do_writepages+0x10/0x10 [ 699.581526][ T31] ? ext4_writepages+0x37a/0x7d0 [ 699.586518][ T31] ext4_writepages+0x37a/0x7d0 [ 699.591628][ T31] ? __pfx_ext4_writepages+0x10/0x10 [ 699.596996][ T31] ? do_writepages+0x6b6/0x820 [ 699.601876][ T31] ? __pfx_ext4_writepages+0x10/0x10 [ 699.608141][ T31] do_writepages+0x1b2/0x820 [ 699.612860][ T31] ? __pfx_do_writepages+0x10/0x10 [ 699.618013][ T31] ? __lock_acquire+0xaa4/0x1ba0 [ 699.623091][ T31] ? reacquire_held_locks+0xcd/0x1f0 [ 699.628431][ T31] __writeback_single_inode+0x160/0xfb0 [ 699.634131][ T31] ? __pfx___writeback_single_inode+0x10/0x10 [ 699.640298][ T31] ? do_raw_spin_unlock+0x172/0x230 [ 699.645535][ T31] writeback_sb_inodes+0x601/0xf90 [ 699.650801][ T31] ? __pfx_writeback_sb_inodes+0x10/0x10 [ 699.656534][ T31] ? _raw_spin_unlock+0x28/0x50 [ 699.661521][ T31] ? move_expired_inodes+0x5a0/0x850 [ 699.666867][ T31] __writeback_inodes_wb+0xf8/0x2d0 [ 699.672170][ T31] ? __pfx___writeback_inodes_wb+0x10/0x10 [ 699.678055][ T31] ? queue_io+0x3f6/0x520 [ 699.682525][ T31] wb_writeback+0x7f3/0xb70 [ 699.687140][ T31] ? __pfx_wb_writeback+0x10/0x10 [ 699.692287][ T31] ? get_nr_dirty_inodes+0x170/0x1e0 [ 699.697624][ T31] wb_workfn+0x8ca/0xbe0 [ 699.702143][ T31] ? try_to_wake_up+0x157/0x1680 [ 699.707212][ T31] ? __pfx_wb_workfn+0x10/0x10 [ 699.713091][ T31] ? rcu_is_watching+0x12/0xc0 [ 699.717916][ T31] process_one_work+0x9cc/0x1b70 [ 699.722979][ T31] ? __pfx_process_one_work+0x10/0x10 [ 699.728395][ T31] ? assign_work+0x1a0/0x250 [ 699.733095][ T31] worker_thread+0x6c8/0xf10 [ 699.737751][ T31] ? __kthread_parkme+0x19e/0x250 [ 699.742889][ T31] ? __pfx_worker_thread+0x10/0x10 [ 699.748037][ T31] kthread+0x3c2/0x780 [ 699.752217][ T31] ? __pfx_kthread+0x10/0x10 [ 699.756864][ T31] ? __pfx_kthread+0x10/0x10 [ 699.761565][ T31] ? __pfx_kthread+0x10/0x10 [ 699.766204][ T31] ? __pfx_kthread+0x10/0x10 [ 699.770901][ T31] ? rcu_is_watching+0x12/0xc0 [ 699.775707][ T31] ? __pfx_kthread+0x10/0x10 [ 699.780415][ T31] ret_from_fork+0x45/0x80 [ 699.784878][ T31] ? __pfx_kthread+0x10/0x10 [ 699.789492][ T31] ret_from_fork_asm+0x1a/0x30 [ 699.794364][ T31] [ 699.797479][ T31] INFO: task syz-executor:5830 blocked for more than 143 seconds. [ 699.805376][ T31] Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 [ 699.814145][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 699.822938][ T31] task:syz-executor state:D stack:22840 pid:5830 tgid:5830 ppid:5828 task_flags:0x440100 flags:0x00000002 [ 699.835042][ T31] Call Trace: [ 699.838339][ T31] [ 699.841350][ T31] __schedule+0x116f/0x5de0 [ 699.845920][ T31] ? __lock_acquire+0x5ca/0x1ba0 [ 699.850982][ T31] ? __pfx___schedule+0x10/0x10 [ 699.855884][ T31] ? find_held_lock+0x2b/0x80 [ 699.860636][ T31] ? schedule+0x2d7/0x3a0 [ 699.865014][ T31] schedule+0xe7/0x3a0 [ 699.869114][ T31] io_schedule+0xbf/0x130 [ 699.873554][ T31] bit_wait_io+0x15/0xe0 [ 699.877877][ T31] __wait_on_bit+0x62/0x180 [ 699.882636][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 699.887633][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 699.893194][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 699.899239][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 699.904788][ T31] do_get_write_access+0x93d/0x12a0 [ 699.910124][ T31] jbd2_journal_get_write_access+0x1d6/0x280 [ 699.917118][ T31] __ext4_journal_get_write_access+0x6a/0x340 [ 699.923506][ T31] ext4_reserve_inode_write+0x1be/0x320 [ 699.929100][ T31] __ext4_mark_inode_dirty+0x197/0x870 [ 699.934642][ T31] ? trace_kmem_cache_alloc+0x28/0xc0 [ 699.940133][ T31] ? __pfx___ext4_mark_inode_dirty+0x10/0x10 [ 699.946151][ T31] ? rcu_is_watching+0x12/0xc0 [ 699.951147][ T31] ? trace_jbd2_handle_start+0x1a8/0x230 [ 699.956852][ T31] ? jbd2__journal_start+0xf6/0x6a0 [ 699.962565][ T31] ? __ext4_journal_start_sb+0x195/0x690 [ 699.968284][ T31] ? __ext4_journal_start_sb+0x19e/0x690 [ 699.974003][ T31] ? ext4_dirty_inode+0xa1/0x130 [ 699.978992][ T31] ? __pfx_ext4_dirty_inode+0x10/0x10 [ 699.984483][ T31] ext4_dirty_inode+0xd9/0x130 [ 699.989311][ T31] ? rcu_is_watching+0x12/0xc0 [ 699.994224][ T31] __mark_inode_dirty+0x1eb/0xe50 [ 699.999345][ T31] generic_update_time+0xcf/0xf0 [ 700.004373][ T31] file_update_time+0x17d/0x1c0 [ 700.009296][ T31] ext4_page_mkwrite+0x35e/0x1750 [ 700.014424][ T31] ? node_is_toptier+0x162/0x320 [ 700.020335][ T31] ? task_numa_fault+0x1608/0x3700 [ 700.025520][ T31] ? __pfx_ext4_page_mkwrite+0x10/0x10 [ 700.031254][ T31] ? vm_normal_page+0x13b/0x2b0 [ 700.036202][ T31] ? find_held_lock+0x2b/0x80 [ 700.040946][ T31] ? find_held_lock+0x2b/0x80 [ 700.045676][ T31] do_page_mkwrite+0x171/0x380 [ 700.050555][ T31] do_wp_page+0xb9e/0x58e0 [ 700.055077][ T31] ? __pfx_do_wp_page+0x10/0x10 [ 700.060049][ T31] ? do_raw_spin_lock+0x12c/0x2b0 [ 700.065122][ T31] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 700.070612][ T31] ? ___pte_offset_map+0x1bc/0x540 [ 700.075783][ T31] __handle_mm_fault+0x1ada/0x2a40 [ 700.081061][ T31] ? __pfx___handle_mm_fault+0x10/0x10 [ 700.086598][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 700.091931][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 700.097223][ T31] handle_mm_fault+0x3fe/0xad0 [ 700.102086][ T31] do_user_addr_fault+0x60c/0x1370 [ 700.107256][ T31] exc_page_fault+0x5c/0xc0 [ 700.111865][ T31] asm_exc_page_fault+0x26/0x30 [ 700.116773][ T31] RIP: 0033:0x7f1d9c0689c5 [ 700.123765][ T31] RSP: 002b:00007ffc98913910 EFLAGS: 00010206 [ 700.130140][ T31] RAX: 00007f1d991c48bc RBX: 00007ffc98913a10 RCX: 0000000000000000 [ 700.138147][ T31] RDX: 00007f1d991c48b8 RSI: 0000000000000008 RDI: 00007ffc98913a10 [ 700.146326][ T31] RBP: 00000000000003e6 R08: 0000000000000000 R09: 0000000000000000 [ 700.154394][ T31] R10: 00007ffc989139f0 R11: 0000000000000000 R12: 0000000000000000 [ 700.162481][ T31] R13: 000000000003b744 R14: fffffffffffc48bc R15: 000000000003b744 [ 700.170534][ T31] [ 700.173608][ T31] INFO: task syz.3.1205:12378 blocked for more than 144 seconds. [ 700.181401][ T31] Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 [ 700.189053][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 700.197784][ T31] task:syz.3.1205 state:D stack:25672 pid:12378 tgid:12378 ppid:5841 task_flags:0x440040 flags:0x00000004 [ 700.209845][ T31] Call Trace: [ 700.213152][ T31] [ 700.216135][ T31] __schedule+0x116f/0x5de0 [ 700.220783][ T31] ? __lock_acquire+0x5ca/0x1ba0 [ 700.226572][ T31] ? __pfx___schedule+0x10/0x10 [ 700.231547][ T31] ? find_held_lock+0x2b/0x80 [ 700.236268][ T31] ? schedule+0x2d7/0x3a0 [ 700.240705][ T31] schedule+0xe7/0x3a0 [ 700.244823][ T31] io_schedule+0xbf/0x130 [ 700.249171][ T31] bit_wait_io+0x15/0xe0 [ 700.253495][ T31] __wait_on_bit+0x62/0x180 [ 700.258055][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 700.263247][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 700.268713][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 700.274788][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 700.280426][ T31] do_get_write_access+0x93d/0x12a0 [ 700.285691][ T31] jbd2_journal_get_write_access+0x1d6/0x280 [ 700.291750][ T31] __ext4_journal_get_write_access+0x6a/0x340 [ 700.297879][ T31] ext4_reserve_inode_write+0x1be/0x320 [ 700.303517][ T31] __ext4_mark_inode_dirty+0x197/0x870 [ 700.309015][ T31] ? trace_kmem_cache_alloc+0x28/0xc0 [ 700.314461][ T31] ? __pfx___ext4_mark_inode_dirty+0x10/0x10 [ 700.320594][ T31] ? rcu_is_watching+0x12/0xc0 [ 700.326225][ T31] ? trace_jbd2_handle_start+0x1a8/0x230 [ 700.331984][ T31] ? jbd2__journal_start+0xf6/0x6a0 [ 700.337286][ T31] ? __ext4_journal_start_sb+0x195/0x690 [ 700.343064][ T31] ? __ext4_journal_start_sb+0x19e/0x690 [ 700.348777][ T31] ? ext4_dirty_inode+0xa1/0x130 [ 700.353799][ T31] ? __pfx_ext4_dirty_inode+0x10/0x10 [ 700.359288][ T31] ext4_dirty_inode+0xd9/0x130 [ 700.364143][ T31] ? rcu_is_watching+0x12/0xc0 [ 700.368946][ T31] __mark_inode_dirty+0x1eb/0xe50 [ 700.374218][ T31] generic_update_time+0xcf/0xf0 [ 700.379219][ T31] file_update_time+0x17d/0x1c0 [ 700.384134][ T31] ext4_page_mkwrite+0x35e/0x1750 [ 700.389208][ T31] ? __pfx_ext4_page_mkwrite+0x10/0x10 [ 700.394762][ T31] do_page_mkwrite+0x171/0x380 [ 700.399626][ T31] do_pte_missing+0x29c/0x3fb0 [ 700.404429][ T31] ? __handle_mm_fault+0x1010/0x2a40 [ 700.409796][ T31] __handle_mm_fault+0x103d/0x2a40 [ 700.415040][ T31] ? __pfx___handle_mm_fault+0x10/0x10 [ 700.420557][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 700.425840][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 700.432162][ T31] handle_mm_fault+0x3fe/0xad0 [ 700.436977][ T31] do_user_addr_fault+0x60c/0x1370 [ 700.442496][ T31] exc_page_fault+0x5c/0xc0 [ 700.447050][ T31] asm_exc_page_fault+0x26/0x30 [ 700.452208][ T31] RIP: 0033:0x7f684de6eada [ 700.456683][ T31] RSP: 002b:00007ffd1becb740 EFLAGS: 00010202 [ 700.463077][ T31] RAX: 0000001b30fc5000 RBX: 00007f684ece5720 RCX: 0000001b30fc4ff8 [ 700.471291][ T31] RDX: 0000001b30a20220 RSI: 0000000000000008 RDI: 00007f684ece5720 [ 700.479304][ T31] RBP: ffffffff818331de R08: 00007f684e1b61f8 R09: 00007f684e1a2000 [ 700.487486][ T31] R10: 00007f684cdfb008 R11: 0000000000000016 R12: 0000000000000016 [ 700.495584][ T31] R13: 00000000000000e8 R14: ffffffff818335ed R15: 00000000000000ee [ 700.503636][ T31] ? __queue_work+0x3fd/0x10f0 [ 700.508468][ T31] ? worker_thread+0xf0e/0xf10 [ 700.513312][ T31] [ 700.516369][ T31] INFO: task syz.2.1208:12395 blocked for more than 144 seconds. [ 700.524189][ T31] Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 [ 700.532639][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 700.541415][ T31] task:syz.2.1208 state:D stack:28792 pid:12395 tgid:12395 ppid:5839 task_flags:0x440040 flags:0x00000004 [ 700.553442][ T31] Call Trace: [ 700.556729][ T31] [ 700.559758][ T31] __schedule+0x116f/0x5de0 [ 700.564324][ T31] ? __lock_acquire+0x5ca/0x1ba0 [ 700.569291][ T31] ? __pfx___schedule+0x10/0x10 [ 700.574355][ T31] ? find_held_lock+0x2b/0x80 [ 700.579081][ T31] ? schedule+0x2d7/0x3a0 [ 700.583502][ T31] schedule+0xe7/0x3a0 [ 700.587635][ T31] io_schedule+0xbf/0x130 [ 700.592074][ T31] bit_wait_io+0x15/0xe0 [ 700.596372][ T31] __wait_on_bit+0x62/0x180 [ 700.601187][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 700.606183][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 700.611657][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 700.617691][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 700.623286][ T31] do_get_write_access+0x93d/0x12a0 [ 700.628567][ T31] jbd2_journal_get_write_access+0x1d6/0x280 [ 700.635447][ T31] __ext4_journal_get_write_access+0x6a/0x340 [ 700.641623][ T31] ext4_reserve_inode_write+0x1be/0x320 [ 700.647213][ T31] __ext4_mark_inode_dirty+0x197/0x870 [ 700.652750][ T31] ? trace_kmem_cache_alloc+0x28/0xc0 [ 700.658175][ T31] ? __pfx___ext4_mark_inode_dirty+0x10/0x10 [ 700.664231][ T31] ? rcu_is_watching+0x12/0xc0 [ 700.669042][ T31] ? trace_jbd2_handle_start+0x1a8/0x230 [ 700.674769][ T31] ? jbd2__journal_start+0xf6/0x6a0 [ 700.680067][ T31] ? __ext4_journal_start_sb+0x195/0x690 [ 700.685752][ T31] ? __ext4_journal_start_sb+0x19e/0x690 [ 700.691451][ T31] ? ext4_dirty_inode+0xa1/0x130 [ 700.696433][ T31] ? __pfx_ext4_dirty_inode+0x10/0x10 [ 700.701883][ T31] ext4_dirty_inode+0xd9/0x130 [ 700.706698][ T31] ? rcu_is_watching+0x12/0xc0 [ 700.711731][ T31] __mark_inode_dirty+0x1eb/0xe50 [ 700.716825][ T31] generic_update_time+0xcf/0xf0 [ 700.721904][ T31] file_update_time+0x17d/0x1c0 [ 700.726803][ T31] ext4_page_mkwrite+0x35e/0x1750 [ 700.731921][ T31] ? __pfx_ext4_page_mkwrite+0x10/0x10 [ 700.738165][ T31] ? __pfx_filemap_map_pages+0x10/0x10 [ 700.743744][ T31] ? pte_alloc_one+0x2b1/0x380 [ 700.748558][ T31] do_page_mkwrite+0x171/0x380 [ 700.753429][ T31] do_pte_missing+0x29c/0x3fb0 [ 700.758235][ T31] ? do_raw_spin_unlock+0x172/0x230 [ 700.763520][ T31] ? __pmd_alloc+0x3c2/0x870 [ 700.768171][ T31] __handle_mm_fault+0x103d/0x2a40 [ 700.773379][ T31] ? __pfx___handle_mm_fault+0x10/0x10 [ 700.778877][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 700.784146][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 700.789428][ T31] handle_mm_fault+0x3fe/0xad0 [ 700.794285][ T31] do_user_addr_fault+0x60c/0x1370 [ 700.799448][ T31] exc_page_fault+0x5c/0xc0 [ 700.804045][ T31] asm_exc_page_fault+0x26/0x30 [ 700.808933][ T31] RIP: 0033:0x7f299b26547b [ 700.813416][ T31] RSP: 002b:00007ffe300bba20 EFLAGS: 00010246 [ 700.819523][ T31] RAX: 00000000005ffde8 RBX: 0000000000000000 RCX: 0000000000000000 [ 700.827776][ T31] RDX: 0000001b30920000 RSI: 0000000000600000 RDI: 00007f299b498d50 [ 700.836784][ T31] RBP: 0000000000000000 R08: 0000000000000004 R09: 0000000000040000 [ 700.844903][ T31] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 700.852952][ T31] R13: 00005555913a4590 R14: 000000000008610b R15: 00007ffe300bbcd0 [ 700.861018][ T31] [ 700.864052][ T31] INFO: task syz.1.1209:12397 blocked for more than 144 seconds. [ 700.871851][ T31] Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 [ 700.879503][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 700.888258][ T31] task:syz.1.1209 state:D stack:28632 pid:12397 tgid:12397 ppid:5843 task_flags:0x440040 flags:0x00000004 [ 700.900354][ T31] Call Trace: [ 700.903642][ T31] [ 700.906581][ T31] __schedule+0x116f/0x5de0 [ 700.911219][ T31] ? __lock_acquire+0x5ca/0x1ba0 [ 700.916242][ T31] ? __pfx___schedule+0x10/0x10 [ 700.921229][ T31] ? find_held_lock+0x2b/0x80 [ 700.925946][ T31] ? schedule+0x2d7/0x3a0 [ 700.930541][ T31] schedule+0xe7/0x3a0 [ 700.934662][ T31] io_schedule+0xbf/0x130 [ 700.940009][ T31] bit_wait_io+0x15/0xe0 [ 700.944343][ T31] __wait_on_bit+0x62/0x180 [ 700.948925][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 700.954002][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 700.959433][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 700.965497][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 700.971075][ T31] do_get_write_access+0x93d/0x12a0 [ 700.976344][ T31] jbd2_journal_get_write_access+0x1d6/0x280 [ 700.982458][ T31] __ext4_journal_get_write_access+0x6a/0x340 [ 700.988620][ T31] ext4_reserve_inode_write+0x1be/0x320 [ 700.994294][ T31] __ext4_mark_inode_dirty+0x197/0x870 [ 700.999978][ T31] ? trace_kmem_cache_alloc+0x28/0xc0 [ 701.005489][ T31] ? __pfx___ext4_mark_inode_dirty+0x10/0x10 [ 701.012076][ T31] ? rcu_is_watching+0x12/0xc0 [ 701.016931][ T31] ? trace_jbd2_handle_start+0x1a8/0x230 [ 701.022787][ T31] ? jbd2__journal_start+0xf6/0x6a0 [ 701.028047][ T31] ? __ext4_journal_start_sb+0x195/0x690 [ 701.033775][ T31] ? __ext4_journal_start_sb+0x19e/0x690 [ 701.039556][ T31] ? ext4_dirty_inode+0xa1/0x130 [ 701.045807][ T31] ? __pfx_ext4_dirty_inode+0x10/0x10 [ 701.051339][ T31] ext4_dirty_inode+0xd9/0x130 [ 701.056192][ T31] ? rcu_is_watching+0x12/0xc0 [ 701.061044][ T31] __mark_inode_dirty+0x1eb/0xe50 [ 701.066123][ T31] generic_update_time+0xcf/0xf0 [ 701.071161][ T31] file_update_time+0x17d/0x1c0 [ 701.076063][ T31] ext4_page_mkwrite+0x35e/0x1750 [ 701.081447][ T31] ? __pfx_ext4_page_mkwrite+0x10/0x10 [ 701.086979][ T31] ? __pfx_filemap_map_pages+0x10/0x10 [ 701.092534][ T31] ? pte_alloc_one+0x2b1/0x380 [ 701.097351][ T31] do_page_mkwrite+0x171/0x380 [ 701.102320][ T31] do_pte_missing+0x29c/0x3fb0 [ 701.107138][ T31] ? do_raw_spin_unlock+0x172/0x230 [ 701.112446][ T31] ? __pmd_alloc+0x3c2/0x870 [ 701.117111][ T31] __handle_mm_fault+0x103d/0x2a40 [ 701.122314][ T31] ? __pfx___handle_mm_fault+0x10/0x10 [ 701.127824][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 701.133977][ T31] ? lock_vma_under_rcu+0x47d/0x970 [ 701.139261][ T31] handle_mm_fault+0x3fe/0xad0 [ 701.145469][ T31] do_user_addr_fault+0x60c/0x1370 [ 701.150751][ T31] exc_page_fault+0x5c/0xc0 [ 701.155310][ T31] asm_exc_page_fault+0x26/0x30 [ 701.161146][ T31] RIP: 0033:0x7fa4b866547b [ 701.165621][ T31] RSP: 002b:00007ffc29c84290 EFLAGS: 00010246 [ 701.171925][ T31] RAX: 00000000003ffde8 RBX: 0000000000000000 RCX: 0000000000000000 [ 701.179987][ T31] RDX: 0000001b30820000 RSI: 0000000000400000 RDI: 00007fa4b8898d50 [ 701.188006][ T31] RBP: 0000000000000000 R08: 0000000000000004 R09: 0000000000040000 [ 701.196068][ T31] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 701.204110][ T31] R13: 00000000000927c0 R14: 00000000000867b3 R15: 00007ffc29c84540 [ 701.212196][ T31] [ 701.215257][ T31] [ 701.215257][ T31] Showing all locks held in the system: [ 701.223080][ T31] 1 lock held by khungtaskd/31: [ 701.227988][ T31] #0: ffffffff8e3bf440 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x36/0x1c0 [ 701.237967][ T31] 6 locks held by kworker/u8:6/1148: [ 701.243423][ T31] #0: ffff88801f692148 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70 [ 701.256002][ T31] #1: ffffc900040cfd18 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70 [ 701.268117][ T31] #2: ffff88814ec140e0 (&type->s_umount_key#31){++++}-{4:4}, at: super_trylock_shared+0x1e/0xf0 [ 701.278833][ T31] #3: ffff88814ec16b98 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: do_writepages+0x1b2/0x820 [ 701.289265][ T31] #4: ffff88814ec18950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 701.298968][ T31] #5: ffff88807a4d3450 (&ei->i_data_sem){++++}-{4:4}, at: ext4_map_blocks+0x355/0x1390 [ 701.308851][ T31] 3 locks held by syz-executor/5830: [ 701.314195][ T31] #0: ffff8880313ea6c8 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370 [ 701.323722][ T31] #1: ffff88814ec14518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380 [ 701.333546][ T31] #2: ffff88814ec18950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 701.343246][ T31] 3 locks held by syz.3.1205/12378: [ 701.350950][ T31] #0: ffff88802882cbc8 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370 [ 701.360489][ T31] #1: ffff88814ec14518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380 [ 701.370136][ T31] #2: ffff88814ec18950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 701.379827][ T31] 2 locks held by getty/12394: [ 701.384628][ T31] #0: ffff88814c1400a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80 [ 701.394590][ T31] #1: ffffc9000b52d2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x41b/0x14f0 [ 701.405076][ T31] 3 locks held by syz.2.1208/12395: [ 701.410354][ T31] #0: ffff88802f6c8088 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370 [ 701.419871][ T31] #1: ffff88814ec14518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380 [ 701.429468][ T31] #2: ffff88814ec18950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 701.439169][ T31] 3 locks held by syz.1.1209/12397: [ 701.444425][ T31] #0: ffff888076b906c8 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370 [ 701.455113][ T31] #1: ffff88814ec14518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380 [ 701.464796][ T31] #2: ffff88814ec18950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 701.474528][ T31] [ 701.476892][ T31] ============================================= [ 701.476892][ T31] [ 701.485371][ T31] NMI backtrace for cpu 0 [ 701.485393][ T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 701.485432][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 701.485448][ T31] Call Trace: [ 701.485458][ T31] [ 701.485469][ T31] dump_stack_lvl+0x116/0x1f0 [ 701.485517][ T31] nmi_cpu_backtrace+0x27b/0x390 [ 701.485553][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 701.485585][ T31] nmi_trigger_cpumask_backtrace+0x29c/0x300 [ 701.485623][ T31] watchdog+0xf70/0x12c0 [ 701.485677][ T31] ? __pfx_watchdog+0x10/0x10 [ 701.485721][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 701.485769][ T31] ? __kthread_parkme+0x19e/0x250 [ 701.485814][ T31] ? __pfx_watchdog+0x10/0x10 [ 701.485859][ T31] kthread+0x3c2/0x780 [ 701.485910][ T31] ? __pfx_kthread+0x10/0x10 [ 701.485955][ T31] ? __pfx_kthread+0x10/0x10 [ 701.486003][ T31] ? __pfx_kthread+0x10/0x10 [ 701.486050][ T31] ? __pfx_kthread+0x10/0x10 [ 701.486103][ T31] ? rcu_is_watching+0x12/0xc0 [ 701.486138][ T31] ? __pfx_kthread+0x10/0x10 [ 701.486187][ T31] ret_from_fork+0x45/0x80 [ 701.486219][ T31] ? __pfx_kthread+0x10/0x10 [ 701.486267][ T31] ret_from_fork_asm+0x1a/0x30 [ 701.486338][ T31] [ 701.486349][ T31] Sending NMI from CPU 0 to CPUs 1: [ 701.620308][ C1] NMI backtrace for cpu 1 [ 701.620326][ C1] CPU: 1 UID: 0 PID: 2973 Comm: kworker/u8:7 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 701.620358][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 701.620374][ C1] Workqueue: bat_events batadv_nc_worker [ 701.620408][ C1] RIP: 0010:__sanitizer_cov_trace_cmp4+0x4/0x20 [ 701.620444][ C1] Code: d6 0f b7 f7 bf 02 00 00 00 e9 18 ff ff ff 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa <48> 8b 0c 24 89 f2 89 fe bf 04 00 00 00 e9 ea fe ff ff 66 2e 0f 1f [ 701.620469][ C1] RSP: 0018:ffffc9000b497ab0 EFLAGS: 00000246 [ 701.620487][ C1] RAX: ffff888029480fc0 RBX: 000000000000003e RCX: 0000000000000006 [ 701.620502][ C1] RDX: 0000000000000000 RSI: 000000000000003e RDI: 0000000000000080 [ 701.620517][ C1] RBP: dffffc0000000000 R08: 0000000000000001 R09: 0000000000000001 [ 701.620532][ C1] R10: ffffffff90866917 R11: 0000000000000000 R12: ffffffff8b3c74b0 [ 701.620547][ C1] R13: 0000000000000080 R14: ffff888061bdcd80 R15: 0000000000000000 [ 701.620563][ C1] FS: 0000000000000000(0000) GS:ffff888124abf000(0000) knlGS:0000000000000000 [ 701.620585][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 701.620601][ C1] CR2: 00007ffc758b6ff8 CR3: 000000000e180000 CR4: 00000000003526f0 [ 701.620617][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 701.620631][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 701.620646][ C1] Call Trace: [ 701.620653][ C1] [ 701.620660][ C1] batadv_nc_purge_paths+0x1ff/0x3a0 [ 701.620697][ C1] batadv_nc_worker+0x921/0x1030 [ 701.620729][ C1] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 701.620764][ C1] ? __pfx_batadv_nc_worker+0x10/0x10 [ 701.620798][ C1] ? rcu_is_watching+0x12/0xc0 [ 701.620825][ C1] process_one_work+0x9cc/0x1b70 [ 701.620863][ C1] ? __pfx_process_one_work+0x10/0x10 [ 701.620891][ C1] ? assign_work+0x1a0/0x250 [ 701.620929][ C1] worker_thread+0x6c8/0xf10 [ 701.620959][ C1] ? __pfx_worker_thread+0x10/0x10 [ 701.620982][ C1] kthread+0x3c2/0x780 [ 701.621017][ C1] ? __pfx_kthread+0x10/0x10 [ 701.621052][ C1] ? __pfx_kthread+0x10/0x10 [ 701.621086][ C1] ? __pfx_kthread+0x10/0x10 [ 701.621122][ C1] ? __pfx_kthread+0x10/0x10 [ 701.621157][ C1] ? rcu_is_watching+0x12/0xc0 [ 701.621181][ C1] ? __pfx_kthread+0x10/0x10 [ 701.621217][ C1] ret_from_fork+0x45/0x80 [ 701.621240][ C1] ? __pfx_kthread+0x10/0x10 [ 701.621275][ C1] ret_from_fork_asm+0x1a/0x30 [ 701.621321][ C1] [ 701.622320][ T31] Kernel panic - not syncing: hung_task: blocked tasks [ 701.877749][ T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) [ 701.889574][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 701.899673][ T31] Call Trace: [ 701.902965][ T31] [ 701.905908][ T31] dump_stack_lvl+0x3d/0x1f0 [ 701.910532][ T31] panic+0x71c/0x800 [ 701.914506][ T31] ? __pfx_panic+0x10/0x10 [ 701.918956][ T31] ? preempt_schedule_thunk+0x16/0x30 [ 701.924353][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 701.930356][ T31] ? preempt_schedule_thunk+0x16/0x30 [ 701.935770][ T31] ? watchdog+0xdda/0x12c0 [ 701.940237][ T31] ? watchdog+0xdcd/0x12c0 [ 701.944700][ T31] watchdog+0xdeb/0x12c0 [ 701.948995][ T31] ? __pfx_watchdog+0x10/0x10 [ 701.953724][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 701.958958][ T31] ? __kthread_parkme+0x19e/0x250 [ 701.964023][ T31] ? __pfx_watchdog+0x10/0x10 [ 701.968734][ T31] kthread+0x3c2/0x780 [ 701.972840][ T31] ? __pfx_kthread+0x10/0x10 [ 701.977464][ T31] ? __pfx_kthread+0x10/0x10 [ 701.982087][ T31] ? __pfx_kthread+0x10/0x10 [ 701.986714][ T31] ? __pfx_kthread+0x10/0x10 [ 701.991336][ T31] ? rcu_is_watching+0x12/0xc0 [ 701.996119][ T31] ? __pfx_kthread+0x10/0x10 [ 702.000749][ T31] ret_from_fork+0x45/0x80 [ 702.005198][ T31] ? __pfx_kthread+0x10/0x10 [ 702.009822][ T31] ret_from_fork_asm+0x1a/0x30 [ 702.014635][ T31] [ 702.018036][ T31] Kernel Offset: disabled [ 702.022394][ T31] Rebooting in 86400 seconds..