last executing test programs: 19m1.940060177s ago: executing program 0 (id=27612): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) read$usbmon(r1, &(0x7f00000000c0)=""/140, 0x8c) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r3 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r3, 0x0, 0x0, 0x805, 0x0, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000000440)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8014) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r5, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3) unlinkat$binderfs_device(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00') 19m1.933894788s ago: executing program 0 (id=27614): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_int(r3, 0x0, 0xb, 0x0, 0x0) 19m1.874764914s ago: executing program 0 (id=27616): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r1, 0x0, 0xffffffffffffff20, 0x4811, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = getpgrp(0x0) ptrace(0xffffffffffffffff, r4) ioctl$int_in(r3, 0x5421, &(0x7f0000000040)=0x7ab) socket$inet6_tcp(0xa, 0x1, 0x0) r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r5, &(0x7f0000000100)=ANY=[@ANYRES16=r2, @ANYRESHEX], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r5, 0x0) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) setsockopt$inet_group_source_req(r1, 0x0, 0x2b, &(0x7f00000001c0)={0x3, {{0x2, 0x4e20, @rand_addr=0x64010100}}, {{0x2, 0x4e24, @private=0xa010101}}}, 0x108) sendmmsg$inet6(r6, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) openat$cgroup_ro(r1, 0x0, 0x0, 0x0) r7 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) setsockopt$inet6_IPV6_ADDRFORM(r1, 0x29, 0x1, &(0x7f00000000c0), 0x4) ioctl$SNDRV_TIMER_IOCTL_SELECT(r7, 0x40345410, &(0x7f0000000180)={{0x1, 0x0, 0x5, 0x2}}) mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x5, 0x50, r5, 0x464df000) ioctl$SNDRV_TIMER_IOCTL_PARAMS(r7, 0x40505412, 0x0) 19m1.874535934s ago: executing program 0 (id=27617): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x10000002]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000380)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$pppl2tp(0x18, 0x1, 0x1) setsockopt$pppl2tp_PPPOL2TP_SO_DEBUG(r3, 0x111, 0x1, 0x8001, 0x4) 19m1.61359563s ago: executing program 0 (id=27620): mkdir(&(0x7f0000000080)='./file0\x00', 0x0) rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000a96000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = syz_usb_connect$hid(0x2, 0x36, &(0x7f00000000c0)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x44f, 0xb654, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x40, 0xb4, [{{0x9, 0x4, 0x0, 0x4, 0x1, 0x3, 0x0, 0x2, 0x0, {0x9, 0x21, 0xfff8, 0x7e, 0x1, {0x22, 0x5}}, {{{0x9, 0x5, 0x81, 0x3, 0x3ff, 0xc, 0x7}}}}}]}}]}}, 0x0) syz_usb_control_io(r3, 0x0, 0x0) syz_usb_control_io(r3, &(0x7f0000000000)={0x18, &(0x7f0000000100)={0x20, 0xf, 0x5, {0x5, 0x4, "08a891"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r5, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x9) mount$cgroup(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000100)={[{@subsystem='cpuset'}, {@subsystem='memory'}, {@subsystem='cpuacct'}]}) r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r7 = openat$cgroup_procs(r6, &(0x7f0000000340)='cgroup.procs\x00', 0x2, 0x0) preadv2(r7, &(0x7f0000000240)=[{&(0x7f00000000c0)=""/50, 0x32}, {&(0x7f0000000180)=""/16, 0x10}, {&(0x7f00000001c0)=""/95, 0x5f}], 0x3, 0x6, 0x0, 0x0) write$cgroup_pid(r7, &(0x7f0000000140), 0x1e) r8 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r8) ptrace$poke(0x4, r8, &(0x7f0000001040), 0x282d) sched_setaffinity(r8, 0xfe47, &(0x7f0000000280)=0x6) 18m59.403104472s ago: executing program 0 (id=27675): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) write$UHID_CREATE2(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, 0xffffffffffffffff, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r1 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r1, 0x0, 0x0, 0x805, 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_int(r3, 0x0, 0xb, 0x0, 0x0) 18m44.381757987s ago: executing program 32 (id=27675): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) write$UHID_CREATE2(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, 0xffffffffffffffff, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r1 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r1, 0x0, 0x0, 0x805, 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_int(r3, 0x0, 0xb, 0x0, 0x0) 1.717267328s ago: executing program 1 (id=62138): rt_sigaction(0xd, &(0x7f0000000180)={0x0, 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6(0xa, 0x2, 0x3a) setsockopt$inet6_int(r4, 0x29, 0x21, 0x0, 0x0) 1.652390455s ago: executing program 1 (id=62141): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r3, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='smaps_rollup\x00') lseek(r4, 0x38, 0x0) 1.172443993s ago: executing program 1 (id=62146): rt_sigaction(0xd, &(0x7f0000000180)={0x0, 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) write$P9_RMKNOD(r2, 0x0, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet(r5, &(0x7f0000000c80)=[{{0x0, 0x0, 0x0}}], 0x1, 0x488d5) sendmmsg$inet6(r5, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) syz_open_procfs(0x0, 0x0) 1.008775609s ago: executing program 4 (id=62153): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) write$P9_RMKNOD(r2, 0x0, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet(r5, &(0x7f0000000c80)=[{{0x0, 0x0, 0x0}}], 0x1, 0x488d5) syz_open_procfs(0x0, 0x0) 993.73635ms ago: executing program 4 (id=62154): rt_sigaction(0xd, &(0x7f0000000180)={0x0, 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r4, 0x0, 0x0, 0x805, 0x0, 0x0) r5 = socket$inet6(0xa, 0x2, 0x3a) setsockopt$inet6_int(r5, 0x29, 0x21, 0x0, 0x0) 949.360905ms ago: executing program 1 (id=62155): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) write$UHID_CREATE2(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r1, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6(0xa, 0x2, 0x3a) setsockopt$inet6_int(r4, 0x29, 0x21, 0x0, 0x0) 948.948775ms ago: executing program 1 (id=62156): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r0, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r0, @ANYRES64], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r1, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet6(0xa, 0x2, 0x3a) setsockopt$inet6_int(r2, 0x29, 0x21, 0x0, 0x0) 948.674575ms ago: executing program 4 (id=62157): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r4, 0x0, 0x0, 0x805, 0x0, 0x0) sendto$inet(r4, 0x0, 0x0, 0x80, 0x0, 0x0) r5 = socket$inet6(0xa, 0x2, 0x3a) setsockopt$inet6_int(r5, 0x29, 0x21, 0x0, 0x0) 948.379975ms ago: executing program 4 (id=62158): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, 0x0) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r5 = socket$inet6(0xa, 0x2, 0x3a) setsockopt$inet6_int(r5, 0x29, 0x21, 0x0, 0x0) 366.430244ms ago: executing program 2 (id=62170): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) socket$inet6_tcp(0xa, 0x1, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r0, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r1, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r4, 0x0, 0x0, 0x805, 0x0, 0x0) r5 = socket$inet6(0xa, 0x2, 0x3a) setsockopt$inet6_int(r5, 0x29, 0x21, 0x0, 0x0) 295.406491ms ago: executing program 4 (id=62172): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r5 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r5, 0x0, 0x0, 0x805, 0x0, 0x0) r6 = socket$inet6(0xa, 0x2, 0x3a) setsockopt$inet6_int(r6, 0x29, 0x21, 0x0, 0x0) 295.035311ms ago: executing program 2 (id=62173): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='smaps_rollup\x00') lseek(r3, 0x38, 0x0) 255.451855ms ago: executing program 3 (id=62175): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='smaps_rollup\x00') lseek(r3, 0x38, 0x0) 236.456647ms ago: executing program 1 (id=62176): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) socket$inet6_tcp(0xa, 0x1, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r0, 0x0, 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r1, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r3, 0x0, 0x0, 0x805, 0x0, 0x0) sendto$inet(r3, 0x0, 0x0, 0x80, 0x0, 0x0) r4 = socket$inet6(0xa, 0x2, 0x3a) setsockopt$inet6_int(r4, 0x29, 0x21, 0x0, 0x0) 235.979227ms ago: executing program 2 (id=62177): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x0, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r3, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='smaps_rollup\x00') 207.90743ms ago: executing program 2 (id=62178): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, 0x0, 0x0, 0x4) r5 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r5, 0x0, 0x0, 0x805, 0x0, 0x0) r6 = socket$inet6(0xa, 0x2, 0x3a) setsockopt$inet6_int(r6, 0x29, 0x21, 0x0, 0x0) 199.62902ms ago: executing program 3 (id=62179): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) write$P9_RMKNOD(r2, 0x0, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet(r5, &(0x7f0000000c80)=[{{0x0, 0x0, 0x0}}], 0x1, 0x488d5) syz_open_procfs(0x0, 0x0) 155.212594ms ago: executing program 2 (id=62180): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) socket$inet6_tcp(0xa, 0x1, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r0, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r1, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6(0xa, 0x2, 0x3a) setsockopt$inet6_int(r3, 0x29, 0x21, 0x0, 0x0) 155.011235ms ago: executing program 4 (id=62181): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r0, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r0, @ANYRES64], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r1, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6(0xa, 0x2, 0x3a) setsockopt$inet6_int(r4, 0x29, 0x21, 0x0, 0x0) 154.722105ms ago: executing program 3 (id=62182): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) quotactl$Q_SYNC(0xffffffff80000102, 0x0, 0x0, 0x0) 154.567745ms ago: executing program 2 (id=62183): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, 0x0) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r4, 0x0, 0x0, 0x805, 0x0, 0x0) r5 = socket$inet6(0xa, 0x2, 0x3a) setsockopt$inet6_int(r5, 0x29, 0x21, 0x0, 0x0) 99.10644ms ago: executing program 3 (id=62184): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6(0xa, 0x2, 0x3a) setsockopt$inet6_int(r4, 0x29, 0x21, 0x0, 0x0) 9.023449ms ago: executing program 3 (id=62185): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6(0xa, 0x2, 0x3a) setsockopt$inet6_int(r3, 0x29, 0x21, 0x0, 0x0) 0s ago: executing program 3 (id=62186): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='smaps_rollup\x00') lseek(r3, 0x38, 0x0) kernel console output (not intermixed with test programs): 845.200399][ T5775] usb 5-1: config 0 descriptor?? [ 1845.414704][ T5775] usb 5-1: USB disconnect, device number 41 [ 1845.854938][ T36] audit: type=1400 audit(1763413200.257:1385): avc: denied { ioctl } for pid=18542 comm="syz.1.55908" path="socket:[732532]" dev="sockfs" ino=732532 ioctlcmd=0x6687 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 1846.092934][T18569] FAULT_INJECTION: forcing a failure. [ 1846.092934][T18569] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1846.107511][ T36] audit: type=1400 audit(1763413200.507:1386): avc: denied { create } for pid=18544 comm="syz.2.55909" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1 [ 1846.108452][T18569] CPU: 0 UID: 0 PID: 18569 Comm: syz.3.55910 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1846.108483][T18569] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1846.108494][T18569] Call Trace: [ 1846.108501][T18569] [ 1846.108508][T18569] __dump_stack+0x21/0x30 [ 1846.108536][T18569] dump_stack_lvl+0x10c/0x190 [ 1846.108558][T18569] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1846.108581][T18569] ? kstrtoull+0x13b/0x1e0 [ 1846.108606][T18569] dump_stack+0x19/0x20 [ 1846.108628][T18569] should_fail_ex+0x3d9/0x530 [ 1846.108646][T18569] should_fail+0xf/0x20 [ 1846.108663][T18569] should_fail_usercopy+0x1e/0x30 [ 1846.108682][T18569] _copy_from_user+0x22/0xb0 [ 1846.108703][T18569] ___sys_sendmsg+0x159/0x2a0 [ 1846.108729][T18569] ? __sys_sendmsg+0x280/0x280 [ 1846.108752][T18569] ? proc_fail_nth_write+0x17e/0x210 [ 1846.108775][T18569] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 1846.108803][T18569] __x64_sys_sendmsg+0x1eb/0x2c0 [ 1846.108826][T18569] ? fput+0x1a5/0x240 [ 1846.108846][T18569] ? __cfi___x64_sys_sendmsg+0x10/0x10 [ 1846.108870][T18569] ? ksys_write+0x1ef/0x250 [ 1846.108888][T18569] ? __kasan_check_read+0x15/0x20 [ 1846.108913][T18569] x64_sys_call+0x2a4c/0x2ee0 [ 1846.108937][T18569] do_syscall_64+0x58/0xf0 [ 1846.108958][T18569] ? clear_bhb_loop+0x50/0xa0 [ 1846.108978][T18569] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1846.108996][T18569] RIP: 0033:0x7fdcdd38f6c9 [ 1846.109012][T18569] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1846.109028][T18569] RSP: 002b:00007fdcde1ae038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1846.109049][T18569] RAX: ffffffffffffffda RBX: 00007fdcdd5e5fa0 RCX: 00007fdcdd38f6c9 [ 1846.109064][T18569] RDX: 0000000000040080 RSI: 0000200000000740 RDI: 0000000000000007 [ 1846.109077][T18569] RBP: 00007fdcde1ae090 R08: 0000000000000000 R09: 0000000000000000 [ 1846.109089][T18569] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1846.109101][T18569] R13: 00007fdcdd5e6038 R14: 00007fdcdd5e5fa0 R15: 00007ffe004667e8 [ 1846.109117][T18569] [ 1846.583104][ T3386] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 1846.623860][T18607] loop5: detected capacity change from 0 to 7 [ 1846.755516][ T3386] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 1846.767294][ T3386] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1846.799519][ T3386] usb 3-1: Product: syz [ 1846.817035][ T3386] usb 3-1: Manufacturer: syz [ 1846.833119][ T3386] usb 3-1: SerialNumber: syz [ 1847.546167][T18650] FAULT_INJECTION: forcing a failure. [ 1847.546167][T18650] name failslab, interval 1, probability 0, space 0, times 0 [ 1847.559920][T18650] CPU: 0 UID: 0 PID: 18650 Comm: syz.4.55959 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1847.559953][T18650] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1847.559965][T18650] Call Trace: [ 1847.559971][T18650] [ 1847.559979][T18650] __dump_stack+0x21/0x30 [ 1847.560008][T18650] dump_stack_lvl+0x10c/0x190 [ 1847.560031][T18650] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1847.560054][T18650] ? __kasan_check_write+0x18/0x20 [ 1847.560080][T18650] ? proc_fail_nth_write+0x17e/0x210 [ 1847.560103][T18650] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 1847.560127][T18650] dump_stack+0x19/0x20 [ 1847.560147][T18650] should_fail_ex+0x3d9/0x530 [ 1847.560164][T18650] should_failslab+0xac/0x100 [ 1847.560181][T18650] kmem_cache_alloc_noprof+0x42/0x430 [ 1847.560198][T18650] ? getname_flags+0xc6/0x710 [ 1847.560215][T18650] getname_flags+0xc6/0x710 [ 1847.560232][T18650] ? build_open_flags+0x487/0x600 [ 1847.560255][T18650] getname+0x1b/0x30 [ 1847.560273][T18650] do_sys_openat2+0xcb/0x1c0 [ 1847.560295][T18650] ? fput+0x1a5/0x240 [ 1847.560316][T18650] ? do_sys_open+0x100/0x100 [ 1847.560338][T18650] ? ksys_write+0x1ef/0x250 [ 1847.560355][T18650] ? __cfi_ksys_write+0x10/0x10 [ 1847.560373][T18650] __x64_sys_openat+0x13a/0x170 [ 1847.560397][T18650] x64_sys_call+0xe69/0x2ee0 [ 1847.560421][T18650] do_syscall_64+0x58/0xf0 [ 1847.560444][T18650] ? clear_bhb_loop+0x50/0xa0 [ 1847.560464][T18650] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1847.560484][T18650] RIP: 0033:0x7f1c0178f6c9 [ 1847.560501][T18650] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1847.560516][T18650] RSP: 002b:00007f1c02665038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1847.560545][T18650] RAX: ffffffffffffffda RBX: 00007f1c019e5fa0 RCX: 00007f1c0178f6c9 [ 1847.560560][T18650] RDX: 000000000000275a RSI: 0000200000000080 RDI: ffffffffffffff9c [ 1847.560574][T18650] RBP: 00007f1c02665090 R08: 0000000000000000 R09: 0000000000000000 [ 1847.560588][T18650] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1847.560601][T18650] R13: 00007f1c019e6038 R14: 00007f1c019e5fa0 R15: 00007ffc345a1d18 [ 1847.560617][T18650] [ 1847.823990][T18658] rust_binder: 64: no such ref 1 [ 1848.160268][T18695] loop5: detected capacity change from 0 to 7 [ 1848.452735][T18731] FAULT_INJECTION: forcing a failure. [ 1848.452735][T18731] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1848.466225][T18731] CPU: 1 UID: 0 PID: 18731 Comm: syz.1.55997 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1848.466259][T18731] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1848.466270][T18731] Call Trace: [ 1848.466276][T18731] [ 1848.466283][T18731] __dump_stack+0x21/0x30 [ 1848.466312][T18731] dump_stack_lvl+0x10c/0x190 [ 1848.466335][T18731] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1848.466358][T18731] ? kstrtoull+0x13b/0x1e0 [ 1848.466374][T18731] dump_stack+0x19/0x20 [ 1848.466395][T18731] should_fail_ex+0x3d9/0x530 [ 1848.466413][T18731] should_fail+0xf/0x20 [ 1848.466440][T18731] should_fail_usercopy+0x1e/0x30 [ 1848.466458][T18731] _copy_from_user+0x22/0xb0 [ 1848.466480][T18731] ___sys_sendmsg+0x159/0x2a0 [ 1848.466506][T18731] ? __sys_sendmsg+0x280/0x280 [ 1848.466531][T18731] ? proc_fail_nth_write+0x17e/0x210 [ 1848.466555][T18731] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 1848.466582][T18731] __x64_sys_sendmsg+0x1eb/0x2c0 [ 1848.466606][T18731] ? fput+0x1a5/0x240 [ 1848.466627][T18731] ? __cfi___x64_sys_sendmsg+0x10/0x10 [ 1848.466652][T18731] ? ksys_write+0x1ef/0x250 [ 1848.466670][T18731] ? __kasan_check_read+0x15/0x20 [ 1848.466695][T18731] x64_sys_call+0x2a4c/0x2ee0 [ 1848.466719][T18731] do_syscall_64+0x58/0xf0 [ 1848.466742][T18731] ? clear_bhb_loop+0x50/0xa0 [ 1848.466762][T18731] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1848.466781][T18731] RIP: 0033:0x7fdb3558f6c9 [ 1848.466799][T18731] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1848.466815][T18731] RSP: 002b:00007fdb364e7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1848.466836][T18731] RAX: ffffffffffffffda RBX: 00007fdb357e5fa0 RCX: 00007fdb3558f6c9 [ 1848.466850][T18731] RDX: 0000000004008000 RSI: 0000200000000000 RDI: 0000000000000003 [ 1848.466864][T18731] RBP: 00007fdb364e7090 R08: 0000000000000000 R09: 0000000000000000 [ 1848.466877][T18731] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1848.466890][T18731] R13: 00007fdb357e6038 R14: 00007fdb357e5fa0 R15: 00007fff3cc11dc8 [ 1848.466906][T18731] [ 1849.214453][T18784] rust_binder: Failure when writing BR_NOOP at beginning of buffer. [ 1849.214529][T18784] rust_binder: Read failure Err(EFAULT) in pid:1186 [ 1849.278542][ T3386] usb 3-1: USB disconnect, device number 2 [ 1849.735181][T18816] FAULT_INJECTION: forcing a failure. [ 1849.735181][T18816] name failslab, interval 1, probability 0, space 0, times 0 [ 1849.761099][T18816] CPU: 0 UID: 0 PID: 18816 Comm: syz.4.56036 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1849.761134][T18816] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1849.761146][T18816] Call Trace: [ 1849.761153][T18816] [ 1849.761162][T18816] __dump_stack+0x21/0x30 [ 1849.761192][T18816] dump_stack_lvl+0x10c/0x190 [ 1849.761215][T18816] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1849.761238][T18816] ? __kasan_check_write+0x18/0x20 [ 1849.761264][T18816] ? proc_fail_nth_write+0x17e/0x210 [ 1849.761293][T18816] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 1849.761315][T18816] dump_stack+0x19/0x20 [ 1849.761335][T18816] should_fail_ex+0x3d9/0x530 [ 1849.761353][T18816] should_failslab+0xac/0x100 [ 1849.761371][T18816] kmem_cache_alloc_noprof+0x42/0x430 [ 1849.761387][T18816] ? getname_flags+0xc6/0x710 [ 1849.761405][T18816] getname_flags+0xc6/0x710 [ 1849.761420][T18816] ? build_open_flags+0x487/0x600 [ 1849.761442][T18816] getname+0x1b/0x30 [ 1849.761456][T18816] do_sys_openat2+0xcb/0x1c0 [ 1849.761476][T18816] ? fput+0x1a5/0x240 [ 1849.761495][T18816] ? do_sys_open+0x100/0x100 [ 1849.761515][T18816] ? ksys_write+0x1ef/0x250 [ 1849.761530][T18816] ? __cfi_ksys_write+0x10/0x10 [ 1849.761546][T18816] __x64_sys_openat+0x13a/0x170 [ 1849.761569][T18816] x64_sys_call+0xe69/0x2ee0 [ 1849.761601][T18816] do_syscall_64+0x58/0xf0 [ 1849.761625][T18816] ? clear_bhb_loop+0x50/0xa0 [ 1849.761643][T18816] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1849.761661][T18816] RIP: 0033:0x7f1c0178df10 [ 1849.761676][T18816] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 69 95 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 bc 95 02 00 8b 44 [ 1849.761690][T18816] RSP: 002b:00007f1c02664f10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 1849.761712][T18816] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f1c0178df10 [ 1849.761727][T18816] RDX: 0000000000000002 RSI: 00007f1c02664fa0 RDI: 00000000ffffff9c [ 1849.761740][T18816] RBP: 00007f1c02664fa0 R08: 0000000000000000 R09: 0000000000000000 [ 1849.761753][T18816] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 1849.761766][T18816] R13: 00007f1c019e6038 R14: 00007f1c019e5fa0 R15: 00007ffc345a1d18 [ 1849.761782][T18816] [ 1850.522879][ T36] audit: type=1400 audit(1763413204.918:1387): avc: denied { create } for pid=18888 comm="syz.4.56071" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ipx_socket permissive=1 [ 1850.905104][T19925] bridge_slave_1: left allmulticast mode [ 1850.919103][T19925] bridge_slave_1: left promiscuous mode [ 1850.932926][T19925] bridge0: port 2(bridge_slave_1) entered disabled state [ 1850.949668][T19925] bridge_slave_0: left allmulticast mode [ 1850.965658][T19925] bridge_slave_0: left promiscuous mode [ 1850.971606][T19925] bridge0: port 1(bridge_slave_0) entered disabled state [ 1851.143252][T19925] veth1_macvtap: left promiscuous mode [ 1851.148915][T19925] veth0_vlan: left promiscuous mode [ 1851.285985][T18946] bridge0: port 1(bridge_slave_0) entered blocking state [ 1851.320973][T18946] bridge0: port 1(bridge_slave_0) entered disabled state [ 1851.338414][T18946] bridge_slave_0: entered allmulticast mode [ 1851.358761][T18946] bridge_slave_0: entered promiscuous mode [ 1851.369660][T18946] bridge0: port 2(bridge_slave_1) entered blocking state [ 1851.378248][T18946] bridge0: port 2(bridge_slave_1) entered disabled state [ 1851.392879][T18946] bridge_slave_1: entered allmulticast mode [ 1851.405427][T18946] bridge_slave_1: entered promiscuous mode [ 1851.627442][T18946] bridge0: port 2(bridge_slave_1) entered blocking state [ 1851.634544][T18946] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1851.641960][T18946] bridge0: port 1(bridge_slave_0) entered blocking state [ 1851.649050][T18946] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1851.735612][ T8593] bridge0: port 1(bridge_slave_0) entered disabled state [ 1851.743394][ T8593] bridge0: port 2(bridge_slave_1) entered disabled state [ 1851.766611][T19925] bridge0: port 1(bridge_slave_0) entered blocking state [ 1851.773727][T19925] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1851.787157][T19925] bridge0: port 2(bridge_slave_1) entered blocking state [ 1851.794290][T19925] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1851.824048][T18946] veth0_vlan: entered promiscuous mode [ 1851.837594][T18946] veth1_macvtap: entered promiscuous mode [ 1851.869199][ T36] audit: type=1400 audit(1763413206.268:1388): avc: denied { mount } for pid=18946 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 1851.918788][T18998] FAULT_INJECTION: forcing a failure. [ 1851.918788][T18998] name failslab, interval 1, probability 0, space 0, times 0 [ 1851.942976][T18998] CPU: 1 UID: 0 PID: 18998 Comm: syz.4.56090 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1851.943010][T18998] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1851.943022][T18998] Call Trace: [ 1851.943029][T18998] [ 1851.943037][T18998] __dump_stack+0x21/0x30 [ 1851.943066][T18998] dump_stack_lvl+0x10c/0x190 [ 1851.943090][T18998] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1851.943114][T18998] ? proc_fail_nth_write+0x17e/0x210 [ 1851.943139][T18998] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 1851.943162][T18998] dump_stack+0x19/0x20 [ 1851.943184][T18998] should_fail_ex+0x3d9/0x530 [ 1851.943204][T18998] should_failslab+0xac/0x100 [ 1851.943231][T18998] kmem_cache_alloc_noprof+0x42/0x430 [ 1851.943249][T18998] ? getname_flags+0xc6/0x710 [ 1851.943268][T18998] getname_flags+0xc6/0x710 [ 1851.943287][T18998] ? __fget_files+0x2c5/0x340 [ 1851.943307][T18998] user_path_at+0x2b/0x60 [ 1851.943327][T18998] __se_sys_mount+0x288/0x480 [ 1851.943345][T18998] ? ksys_write+0x1ef/0x250 [ 1851.943362][T18998] ? __x64_sys_mount+0xf0/0xf0 [ 1851.943381][T18998] __x64_sys_mount+0xc3/0xf0 [ 1851.943398][T18998] x64_sys_call+0x2021/0x2ee0 [ 1851.943430][T18998] do_syscall_64+0x58/0xf0 [ 1851.943454][T18998] ? clear_bhb_loop+0x50/0xa0 [ 1851.943475][T18998] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1851.943494][T18998] RIP: 0033:0x7f9686d8f6c9 [ 1851.943510][T18998] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1851.943527][T18998] RSP: 002b:00007f9687c96038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1851.943548][T18998] RAX: ffffffffffffffda RBX: 00007f9686fe5fa0 RCX: 00007f9686d8f6c9 [ 1851.943563][T18998] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000000 [ 1851.943576][T18998] RBP: 00007f9687c96090 R08: 0000000000000000 R09: 0000000000000000 [ 1851.943589][T18998] R10: 0000000003818000 R11: 0000000000000246 R12: 0000000000000001 [ 1851.943602][T18998] R13: 00007f9686fe6038 R14: 00007f9686fe5fa0 R15: 00007fff1fbee4d8 [ 1851.943618][T18998] [ 1854.786956][T19107] FAULT_INJECTION: forcing a failure. [ 1854.786956][T19107] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1854.818096][T19107] CPU: 0 UID: 0 PID: 19107 Comm: syz.4.56171 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1854.818131][T19107] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1854.818145][T19107] Call Trace: [ 1854.818151][T19107] [ 1854.818160][T19107] __dump_stack+0x21/0x30 [ 1854.818189][T19107] dump_stack_lvl+0x10c/0x190 [ 1854.818220][T19107] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1854.818245][T19107] dump_stack+0x19/0x20 [ 1854.818268][T19107] should_fail_ex+0x3d9/0x530 [ 1854.818289][T19107] should_fail+0xf/0x20 [ 1854.818306][T19107] should_fail_usercopy+0x1e/0x30 [ 1854.818327][T19107] _copy_from_user+0x22/0xb0 [ 1854.818350][T19107] lo_ioctl+0x52c/0x1d50 [ 1854.818374][T19107] ? __cfi_lo_ioctl+0x10/0x10 [ 1854.818395][T19107] ? stack_depot_save_flags+0x38/0x800 [ 1854.818416][T19107] ? stack_trace_save+0x9d/0xe0 [ 1854.818443][T19107] ? kasan_save_track+0x4f/0x80 [ 1854.818463][T19107] ? kasan_save_track+0x3e/0x80 [ 1854.818482][T19107] ? kasan_save_alloc_info+0x40/0x50 [ 1854.818506][T19107] ? __kasan_slab_alloc+0x73/0x90 [ 1854.818525][T19107] ? kmem_cache_alloc_noprof+0x1cb/0x430 [ 1854.818542][T19107] ? security_inode_alloc+0x51/0x200 [ 1854.818569][T19107] ? inode_init_always_gfp+0x756/0x9e0 [ 1854.818588][T19107] ? alloc_inode+0xc5/0x270 [ 1854.818608][T19107] ? new_inode+0x25/0x1e0 [ 1854.818628][T19107] ? proc_pid_make_inode+0x25/0x140 [ 1854.818647][T19107] ? proc_pident_instantiate+0x6d/0x2c0 [ 1854.818667][T19107] ? proc_pident_lookup+0x1c7/0x270 [ 1854.818687][T19107] ? proc_tid_base_lookup+0x2f/0x40 [ 1854.818710][T19107] ? path_openat+0x1301/0x34b0 [ 1854.818731][T19107] ? do_filp_open+0x1c6/0x3e0 [ 1854.818751][T19107] ? do_sys_openat2+0x12c/0x1c0 [ 1854.818773][T19107] ? __x64_sys_openat+0x13a/0x170 [ 1854.818796][T19107] ? x64_sys_call+0xe69/0x2ee0 [ 1854.818821][T19107] ? do_syscall_64+0x58/0xf0 [ 1854.818843][T19107] ? entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1854.818866][T19107] ? avc_has_perm_noaudit+0x268/0x360 [ 1854.818891][T19107] ? __asan_memcpy+0x5a/0x80 [ 1854.818907][T19107] ? avc_has_perm_noaudit+0x286/0x360 [ 1854.818932][T19107] ? avc_has_perm+0x144/0x220 [ 1854.818954][T19107] ? __cfi_avc_has_perm+0x10/0x10 [ 1854.818977][T19107] ? kasan_save_alloc_info+0x40/0x50 [ 1854.819004][T19107] ? selinux_file_open+0x457/0x610 [ 1854.819026][T19107] ? __cfi_selinux_file_open+0x10/0x10 [ 1854.819050][T19107] ? avc_has_extended_perms+0x7c7/0xdd0 [ 1854.819074][T19107] ? __asan_memcpy+0x5a/0x80 [ 1854.819090][T19107] ? avc_has_extended_perms+0x921/0xdd0 [ 1854.819116][T19107] ? do_vfs_ioctl+0xeda/0x1e30 [ 1854.819136][T19107] ? arch_stack_walk+0x10b/0x170 [ 1854.819154][T19107] ? __ia32_compat_sys_ioctl+0x850/0x850 [ 1854.819176][T19107] ? _parse_integer+0x2e/0x40 [ 1854.819209][T19107] ? blkdev_common_ioctl+0x10e4/0x2810 [ 1854.819237][T19107] ? blkdev_bszset+0x220/0x220 [ 1854.819261][T19107] ? has_cap_mac_admin+0xd0/0xd0 [ 1854.819283][T19107] ? proc_fail_nth_write+0x17e/0x210 [ 1854.819311][T19107] ? __kasan_check_write+0x18/0x20 [ 1854.819336][T19107] ? mutex_unlock+0x8b/0x240 [ 1854.819353][T19107] ? __cfi_mutex_unlock+0x10/0x10 [ 1854.819370][T19107] ? __fget_files+0x2c5/0x340 [ 1854.819390][T19107] ? __cfi_lo_ioctl+0x10/0x10 [ 1854.819411][T19107] blkdev_ioctl+0x546/0x680 [ 1854.819436][T19107] ? __cfi_blkdev_ioctl+0x10/0x10 [ 1854.819460][T19107] ? bpf_lsm_file_ioctl+0xd/0x20 [ 1854.819484][T19107] ? security_file_ioctl+0x34/0xd0 [ 1854.819504][T19107] ? __cfi_blkdev_ioctl+0x10/0x10 [ 1854.819527][T19107] __se_sys_ioctl+0x135/0x1b0 [ 1854.819547][T19107] __x64_sys_ioctl+0x7f/0xa0 [ 1854.819566][T19107] x64_sys_call+0x1878/0x2ee0 [ 1854.819592][T19107] do_syscall_64+0x58/0xf0 [ 1854.819614][T19107] ? clear_bhb_loop+0x50/0xa0 [ 1854.819634][T19107] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1854.819653][T19107] RIP: 0033:0x7f9686d8f6c9 [ 1854.819671][T19107] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1854.819687][T19107] RSP: 002b:00007f9687c96038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1854.819710][T19107] RAX: ffffffffffffffda RBX: 00007f9686fe5fa0 RCX: 00007f9686d8f6c9 [ 1854.819725][T19107] RDX: 00002000000004c0 RSI: 0000000000004c0a RDI: 0000000000000007 [ 1854.819739][T19107] RBP: 00007f9687c96090 R08: 0000000000000000 R09: 0000000000000000 [ 1854.819751][T19107] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1854.819763][T19107] R13: 00007f9686fe6038 R14: 00007f9686fe5fa0 R15: 00007fff1fbee4d8 [ 1854.819780][T19107] [ 1855.579231][T19127] FAULT_INJECTION: forcing a failure. [ 1855.579231][T19127] name failslab, interval 1, probability 0, space 0, times 0 [ 1855.608414][T19127] CPU: 1 UID: 0 PID: 19127 Comm: syz.2.56182 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1855.608449][T19127] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1855.608462][T19127] Call Trace: [ 1855.608469][T19127] [ 1855.608477][T19127] __dump_stack+0x21/0x30 [ 1855.608506][T19127] dump_stack_lvl+0x10c/0x190 [ 1855.608535][T19127] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1855.608560][T19127] dump_stack+0x19/0x20 [ 1855.608583][T19127] should_fail_ex+0x3d9/0x530 [ 1855.608604][T19127] should_failslab+0xac/0x100 [ 1855.608625][T19127] __kmalloc_node_track_caller_noprof+0x68/0x520 [ 1855.608646][T19127] ? rust_helper_krealloc+0x33/0xd0 [ 1855.608679][T19127] krealloc_noprof+0x8d/0x130 [ 1855.608698][T19127] rust_helper_krealloc+0x33/0xd0 [ 1855.608723][T19127] ? _RNvMNtNtCs43vyB533jt3_6kernel5alloc9allocatorNtB2_11ReallocFunc4call+0x70/0xc0 [ 1855.608749][T19127] _RNvMNtNtCs43vyB533jt3_6kernel5alloc9allocatorNtB2_11ReallocFunc4call+0x8e/0xc0 [ 1855.608774][T19127] _RNvMs4_NtCs5gLWsBERDPK_16rust_binder_main7processNtB5_7Process18get_current_thread+0x45a/0x1400 [ 1855.608800][T19127] ? inode_init_always_gfp+0x756/0x9e0 [ 1855.608820][T19127] ? alloc_inode+0xc5/0x270 [ 1855.608841][T19127] ? proc_pident_instantiate+0x6d/0x2c0 [ 1855.608862][T19127] ? proc_pident_lookup+0x1c7/0x270 [ 1855.608883][T19127] ? path_openat+0x1301/0x34b0 [ 1855.608910][T19127] ? do_sys_openat2+0x12c/0x1c0 [ 1855.608933][T19127] ? __x64_sys_openat+0x13a/0x170 [ 1855.608955][T19127] ? x64_sys_call+0xe69/0x2ee0 [ 1855.608980][T19127] ? do_syscall_64+0x58/0xf0 [ 1855.609003][T19127] ? entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1855.609026][T19127] ? __cfi__RNvMs4_NtCs5gLWsBERDPK_16rust_binder_main7processNtB5_7Process18get_current_thread+0x10/0x10 [ 1855.609051][T19127] ? avc_has_perm_noaudit+0x268/0x360 [ 1855.609076][T19127] ? __asan_memcpy+0x5a/0x80 [ 1855.609092][T19127] ? avc_has_perm_noaudit+0x286/0x360 [ 1855.609117][T19127] ? avc_has_perm+0x144/0x220 [ 1855.609140][T19127] ? __cfi_avc_has_perm+0x10/0x10 [ 1855.609163][T19127] ? kasan_save_alloc_info+0x40/0x50 [ 1855.609189][T19127] ? selinux_file_open+0x457/0x610 [ 1855.609211][T19127] _RNvMs6_NtCs5gLWsBERDPK_16rust_binder_main7processNtB5_7Process5ioctl+0x1a7/0x2cf0 [ 1855.609237][T19127] ? avc_has_extended_perms+0x7c7/0xdd0 [ 1855.609261][T19127] ? __asan_memcpy+0x5a/0x80 [ 1855.609278][T19127] ? avc_has_extended_perms+0x921/0xdd0 [ 1855.609302][T19127] ? __cfi__RNvMs6_NtCs5gLWsBERDPK_16rust_binder_main7processNtB5_7Process5ioctl+0x10/0x10 [ 1855.609327][T19127] ? do_vfs_ioctl+0xeda/0x1e30 [ 1855.609345][T19127] ? arch_stack_walk+0x10b/0x170 [ 1855.609363][T19127] ? __ia32_compat_sys_ioctl+0x850/0x850 [ 1855.609385][T19127] ? _parse_integer+0x2e/0x40 [ 1855.609412][T19127] ? ioctl_has_perm+0x384/0x4d0 [ 1855.609434][T19127] ? has_cap_mac_admin+0xd0/0xd0 [ 1855.609456][T19127] ? proc_fail_nth_write+0x17e/0x210 [ 1855.609479][T19127] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 1855.609503][T19127] ? selinux_file_ioctl+0x6e0/0x1360 [ 1855.609524][T19127] ? vfs_write+0x93e/0xf30 [ 1855.609541][T19127] ? __cfi_selinux_file_ioctl+0x10/0x10 [ 1855.609562][T19127] ? __cfi_vfs_write+0x10/0x10 [ 1855.609579][T19127] ? __kasan_check_write+0x18/0x20 [ 1855.609609][T19127] ? mutex_unlock+0x8b/0x240 [ 1855.609627][T19127] ? __cfi_mutex_unlock+0x10/0x10 [ 1855.609644][T19127] ? __fget_files+0x2c5/0x340 [ 1855.609665][T19127] ? __fget_files+0x2c5/0x340 [ 1855.609685][T19127] _RNvCs5gLWsBERDPK_16rust_binder_main26rust_binder_unlocked_ioctl+0xa0/0x100 [ 1855.609713][T19127] ? __se_sys_ioctl+0x114/0x1b0 [ 1855.609733][T19127] ? __cfi__RNvCs5gLWsBERDPK_16rust_binder_main26rust_binder_unlocked_ioctl+0x10/0x10 [ 1855.609760][T19127] __se_sys_ioctl+0x135/0x1b0 [ 1855.609780][T19127] __x64_sys_ioctl+0x7f/0xa0 [ 1855.609800][T19127] x64_sys_call+0x1878/0x2ee0 [ 1855.609825][T19127] do_syscall_64+0x58/0xf0 [ 1855.609846][T19127] ? clear_bhb_loop+0x50/0xa0 [ 1855.609867][T19127] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1855.609893][T19127] RIP: 0033:0x7fbab718f6c9 [ 1855.609909][T19127] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1855.609926][T19127] RSP: 002b:00007fbab8018038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1855.609948][T19127] RAX: ffffffffffffffda RBX: 00007fbab73e5fa0 RCX: 00007fbab718f6c9 [ 1855.609963][T19127] RDX: 0000200000000300 RSI: 00000000c0306201 RDI: 0000000000000006 [ 1855.609976][T19127] RBP: 00007fbab8018090 R08: 0000000000000000 R09: 0000000000000000 [ 1855.609989][T19127] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1855.610001][T19127] R13: 00007fbab73e6038 R14: 00007fbab73e5fa0 R15: 00007fffa212a2c8 [ 1855.610017][T19127] [ 1857.895101][T19289] FAULT_INJECTION: forcing a failure. [ 1857.895101][T19289] name failslab, interval 1, probability 0, space 0, times 0 [ 1857.910995][T19289] CPU: 0 UID: 0 PID: 19289 Comm: syz.2.56257 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1857.911029][T19289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1857.911041][T19289] Call Trace: [ 1857.911048][T19289] [ 1857.911055][T19289] __dump_stack+0x21/0x30 [ 1857.911085][T19289] dump_stack_lvl+0x10c/0x190 [ 1857.911106][T19289] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1857.911126][T19289] ? __kasan_check_write+0x18/0x20 [ 1857.911151][T19289] ? proc_fail_nth_write+0x17e/0x210 [ 1857.911174][T19289] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 1857.911198][T19289] dump_stack+0x19/0x20 [ 1857.911221][T19289] should_fail_ex+0x3d9/0x530 [ 1857.911241][T19289] should_failslab+0xac/0x100 [ 1857.911261][T19289] kmem_cache_alloc_noprof+0x42/0x430 [ 1857.911280][T19289] ? getname_flags+0xc6/0x710 [ 1857.911299][T19289] getname_flags+0xc6/0x710 [ 1857.911317][T19289] ? build_open_flags+0x487/0x600 [ 1857.911342][T19289] getname+0x1b/0x30 [ 1857.911359][T19289] do_sys_openat2+0xcb/0x1c0 [ 1857.911382][T19289] ? fput+0x1a5/0x240 [ 1857.911403][T19289] ? do_sys_open+0x100/0x100 [ 1857.911425][T19289] ? ksys_write+0x1ef/0x250 [ 1857.911442][T19289] ? __cfi_ksys_write+0x10/0x10 [ 1857.911461][T19289] __x64_sys_openat+0x13a/0x170 [ 1857.911485][T19289] x64_sys_call+0xe69/0x2ee0 [ 1857.911510][T19289] do_syscall_64+0x58/0xf0 [ 1857.911534][T19289] ? clear_bhb_loop+0x50/0xa0 [ 1857.911554][T19289] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1857.911574][T19289] RIP: 0033:0x7fbab718df10 [ 1857.911592][T19289] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 69 95 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 bc 95 02 00 8b 44 [ 1857.911608][T19289] RSP: 002b:00007fbab8017f10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 1857.911630][T19289] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007fbab718df10 [ 1857.911645][T19289] RDX: 0000000000000002 RSI: 00007fbab8017fa0 RDI: 00000000ffffff9c [ 1857.911658][T19289] RBP: 00007fbab8017fa0 R08: 0000000000000000 R09: 0000000000000000 [ 1857.911671][T19289] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 1857.911684][T19289] R13: 00007fbab73e6038 R14: 00007fbab73e5fa0 R15: 00007fffa212a2c8 [ 1857.911700][T19289] [ 1858.473952][T19324] 9pnet_fd: Insufficient options for proto=fd [ 1859.403585][T19391] FAULT_INJECTION: forcing a failure. [ 1859.403585][T19391] name failslab, interval 1, probability 0, space 0, times 0 [ 1859.428063][T19391] CPU: 0 UID: 0 PID: 19391 Comm: syz.3.56307 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1859.428097][T19391] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1859.428110][T19391] Call Trace: [ 1859.428116][T19391] [ 1859.428124][T19391] __dump_stack+0x21/0x30 [ 1859.428154][T19391] dump_stack_lvl+0x10c/0x190 [ 1859.428177][T19391] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1859.428201][T19391] ? selinux_file_open+0x457/0x610 [ 1859.428224][T19391] dump_stack+0x19/0x20 [ 1859.428246][T19391] should_fail_ex+0x3d9/0x530 [ 1859.428265][T19391] should_failslab+0xac/0x100 [ 1859.428287][T19391] kmem_cache_alloc_node_noprof+0x45/0x440 [ 1859.428305][T19391] ? __alloc_skb+0x10c/0x370 [ 1859.428328][T19391] __alloc_skb+0x10c/0x370 [ 1859.428350][T19391] tcp_stream_alloc_skb+0x43/0x370 [ 1859.428375][T19391] tcp_sendmsg_locked+0xeb5/0x4b40 [ 1859.428399][T19391] ? __asan_memcpy+0x5a/0x80 [ 1859.428418][T19391] ? _raw_spin_lock_bh+0x90/0x120 [ 1859.428442][T19391] ? kstrtouint_from_user+0xfb/0x150 [ 1859.428461][T19391] ? x64_sys_call+0xe69/0x2ee0 [ 1859.428488][T19391] ? __cfi_tcp_sendmsg_locked+0x10/0x10 [ 1859.428512][T19391] ? __kasan_check_write+0x18/0x20 [ 1859.428538][T19391] ? proc_fail_nth_write+0x17e/0x210 [ 1859.428563][T19391] ? __cfi_tcp_sendmsg+0x10/0x10 [ 1859.428586][T19391] tcp_sendmsg+0x3e/0xe0 [ 1859.428608][T19391] ? __cfi_tcp_sendmsg+0x10/0x10 [ 1859.428630][T19391] inet_sendmsg+0xb7/0x120 [ 1859.428655][T19391] __sys_sendto+0x588/0x6f0 [ 1859.428679][T19391] ? __cfi___sys_sendto+0x10/0x10 [ 1859.428708][T19391] ? __kasan_check_write+0x18/0x20 [ 1859.428736][T19391] ? __cfi_ksys_write+0x10/0x10 [ 1859.428755][T19391] __x64_sys_sendto+0xe9/0x100 [ 1859.428779][T19391] x64_sys_call+0x2c2c/0x2ee0 [ 1859.428804][T19391] do_syscall_64+0x58/0xf0 [ 1859.428827][T19391] ? clear_bhb_loop+0x50/0xa0 [ 1859.428848][T19391] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1859.428867][T19391] RIP: 0033:0x7fdcdd38f6c9 [ 1859.428884][T19391] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1859.428901][T19391] RSP: 002b:00007fdcde1ae038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1859.428923][T19391] RAX: ffffffffffffffda RBX: 00007fdcdd5e5fa0 RCX: 00007fdcdd38f6c9 [ 1859.428939][T19391] RDX: 0000000000000381 RSI: 00002000000004c0 RDI: 0000000000000005 [ 1859.428953][T19391] RBP: 00007fdcde1ae090 R08: 0000000000000000 R09: 0000000000000000 [ 1859.428966][T19391] R10: 0000000000000805 R11: 0000000000000246 R12: 0000000000000001 [ 1859.428978][T19391] R13: 00007fdcdd5e6038 R14: 00007fdcdd5e5fa0 R15: 00007ffe004667e8 [ 1859.428994][T19391] [ 1860.959687][T19462] FAULT_INJECTION: forcing a failure. [ 1860.959687][T19462] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1860.991916][T19462] CPU: 0 UID: 0 PID: 19462 Comm: syz.3.56335 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1860.991951][T19462] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1860.991963][T19462] Call Trace: [ 1860.991970][T19462] [ 1860.991979][T19462] __dump_stack+0x21/0x30 [ 1860.992009][T19462] dump_stack_lvl+0x10c/0x190 [ 1860.992033][T19462] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1860.992056][T19462] ? check_stack_object+0x12c/0x140 [ 1860.992076][T19462] dump_stack+0x19/0x20 [ 1860.992097][T19462] should_fail_ex+0x3d9/0x530 [ 1860.992117][T19462] should_fail+0xf/0x20 [ 1860.992133][T19462] should_fail_usercopy+0x1e/0x30 [ 1860.992152][T19462] _copy_to_user+0x24/0xa0 [ 1860.992174][T19462] simple_read_from_buffer+0xed/0x160 [ 1860.992197][T19462] proc_fail_nth_read+0x19e/0x210 [ 1860.992219][T19462] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 1860.992237][T19462] ? bpf_lsm_file_permission+0xd/0x20 [ 1860.992262][T19462] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 1860.992281][T19462] vfs_read+0x27d/0xc70 [ 1860.992296][T19462] ? __cfi_vfs_read+0x10/0x10 [ 1860.992308][T19462] ? __kasan_check_write+0x18/0x20 [ 1860.992329][T19462] ? mutex_lock+0x92/0x1c0 [ 1860.992343][T19462] ? __cfi_mutex_lock+0x10/0x10 [ 1860.992356][T19462] ? __fget_files+0x2c5/0x340 [ 1860.992374][T19462] ksys_read+0x141/0x250 [ 1860.992387][T19462] ? __cfi_ksys_read+0x10/0x10 [ 1860.992401][T19462] ? __kasan_check_read+0x15/0x20 [ 1860.992424][T19462] __x64_sys_read+0x7f/0x90 [ 1860.992438][T19462] x64_sys_call+0x2638/0x2ee0 [ 1860.992458][T19462] do_syscall_64+0x58/0xf0 [ 1860.992477][T19462] ? clear_bhb_loop+0x50/0xa0 [ 1860.992495][T19462] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1860.992515][T19462] RIP: 0033:0x7fdcdd38e0dc [ 1860.992529][T19462] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 1860.992546][T19462] RSP: 002b:00007fdcde1ae030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1860.992563][T19462] RAX: ffffffffffffffda RBX: 00007fdcdd5e5fa0 RCX: 00007fdcdd38e0dc [ 1860.992576][T19462] RDX: 000000000000000f RSI: 00007fdcde1ae0a0 RDI: 0000000000000006 [ 1860.992585][T19462] RBP: 00007fdcde1ae090 R08: 0000000000000000 R09: 0000000000000000 [ 1860.992595][T19462] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1860.992605][T19462] R13: 00007fdcdd5e6038 R14: 00007fdcdd5e5fa0 R15: 00007ffe004667e8 [ 1860.992619][T19462] [ 1863.949005][ T46] bridge_slave_1: left allmulticast mode [ 1863.962524][ T46] bridge_slave_1: left promiscuous mode [ 1863.968188][ T46] bridge0: port 2(bridge_slave_1) entered disabled state [ 1863.989340][ T46] bridge_slave_0: left allmulticast mode [ 1863.996519][ T46] bridge_slave_0: left promiscuous mode [ 1864.002778][ T46] bridge0: port 1(bridge_slave_0) entered disabled state [ 1864.169983][ T46] veth1_macvtap: left promiscuous mode [ 1864.182339][ T46] veth0_vlan: left promiscuous mode [ 1864.392930][T19714] bridge0: port 1(bridge_slave_0) entered blocking state [ 1864.400177][T19714] bridge0: port 1(bridge_slave_0) entered disabled state [ 1864.432199][T19714] bridge_slave_0: entered allmulticast mode [ 1864.439187][T19714] bridge_slave_0: entered promiscuous mode [ 1864.472915][T19714] bridge0: port 2(bridge_slave_1) entered blocking state [ 1864.480111][T19714] bridge0: port 2(bridge_slave_1) entered disabled state [ 1864.512149][T19714] bridge_slave_1: entered allmulticast mode [ 1864.518562][T19714] bridge_slave_1: entered promiscuous mode [ 1864.706364][T19714] bridge0: port 2(bridge_slave_1) entered blocking state [ 1864.713560][T19714] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1864.720942][T19714] bridge0: port 1(bridge_slave_0) entered blocking state [ 1864.728140][T19714] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1864.754117][ T46] bridge0: port 1(bridge_slave_0) entered disabled state [ 1864.761902][ T46] bridge0: port 2(bridge_slave_1) entered disabled state [ 1864.793300][ T8593] bridge0: port 1(bridge_slave_0) entered blocking state [ 1864.800382][ T8593] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1864.808597][ T8593] bridge0: port 2(bridge_slave_1) entered blocking state [ 1864.815942][ T8593] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1864.838413][T19714] veth0_vlan: entered promiscuous mode [ 1864.850911][T19714] veth1_macvtap: entered promiscuous mode [ 1882.742156][T20609] netlink: 12 bytes leftover after parsing attributes in process `syz.1.56888'. [ 1883.002321][T20627] FAULT_INJECTION: forcing a failure. [ 1883.002321][T20627] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1883.035225][T20627] CPU: 0 UID: 0 PID: 20627 Comm: syz.1.56897 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1883.035260][T20627] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1883.035273][T20627] Call Trace: [ 1883.035280][T20627] [ 1883.035289][T20627] __dump_stack+0x21/0x30 [ 1883.035319][T20627] dump_stack_lvl+0x10c/0x190 [ 1883.035343][T20627] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1883.035367][T20627] ? kstrtoull+0x13b/0x1e0 [ 1883.035385][T20627] dump_stack+0x19/0x20 [ 1883.035408][T20627] should_fail_ex+0x3d9/0x530 [ 1883.035427][T20627] should_fail+0xf/0x20 [ 1883.035444][T20627] should_fail_usercopy+0x1e/0x30 [ 1883.035465][T20627] _copy_from_user+0x22/0xb0 [ 1883.035486][T20627] ___sys_sendmsg+0x159/0x2a0 [ 1883.035512][T20627] ? __sys_sendmsg+0x280/0x280 [ 1883.035538][T20627] ? proc_fail_nth_write+0x17e/0x210 [ 1883.035562][T20627] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 1883.035591][T20627] __x64_sys_sendmsg+0x1eb/0x2c0 [ 1883.035613][T20627] ? fput+0x1a5/0x240 [ 1883.035631][T20627] ? __cfi___x64_sys_sendmsg+0x10/0x10 [ 1883.035653][T20627] ? ksys_write+0x1ef/0x250 [ 1883.035668][T20627] ? __kasan_check_read+0x15/0x20 [ 1883.035692][T20627] x64_sys_call+0x2a4c/0x2ee0 [ 1883.035716][T20627] do_syscall_64+0x58/0xf0 [ 1883.035739][T20627] ? clear_bhb_loop+0x50/0xa0 [ 1883.035760][T20627] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1883.035780][T20627] RIP: 0033:0x7fdb3558f6c9 [ 1883.035797][T20627] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1883.035814][T20627] RSP: 002b:00007fdb364e7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1883.035835][T20627] RAX: ffffffffffffffda RBX: 00007fdb357e5fa0 RCX: 00007fdb3558f6c9 [ 1883.035850][T20627] RDX: 0000000000000000 RSI: 0000200000000ac0 RDI: 0000000000000009 [ 1883.035870][T20627] RBP: 00007fdb364e7090 R08: 0000000000000000 R09: 0000000000000000 [ 1883.035881][T20627] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1883.035894][T20627] R13: 00007fdb357e6038 R14: 00007fdb357e5fa0 R15: 00007fff3cc11dc8 [ 1883.035910][T20627] [ 1883.712045][T20661] FAULT_INJECTION: forcing a failure. [ 1883.712045][T20661] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1883.751016][T20661] CPU: 1 UID: 0 PID: 20661 Comm: syz.4.56914 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1883.751051][T20661] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1883.751063][T20661] Call Trace: [ 1883.751069][T20661] [ 1883.751077][T20661] __dump_stack+0x21/0x30 [ 1883.751107][T20661] dump_stack_lvl+0x10c/0x190 [ 1883.751129][T20661] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1883.751150][T20661] dump_stack+0x19/0x20 [ 1883.751167][T20661] should_fail_ex+0x3d9/0x530 [ 1883.751184][T20661] should_fail+0xf/0x20 [ 1883.751197][T20661] should_fail_usercopy+0x1e/0x30 [ 1883.751218][T20661] _copy_from_user+0x22/0xb0 [ 1883.751236][T20661] get_user_ifreq+0x71/0x180 [ 1883.751252][T20661] sock_ioctl+0x6fb/0x7b0 [ 1883.751268][T20661] ? __cfi_sock_ioctl+0x10/0x10 [ 1883.751286][T20661] ? bpf_lsm_file_ioctl+0xd/0x20 [ 1883.751310][T20661] ? security_file_ioctl+0x34/0xd0 [ 1883.751330][T20661] ? __cfi_sock_ioctl+0x10/0x10 [ 1883.751348][T20661] __se_sys_ioctl+0x135/0x1b0 [ 1883.751369][T20661] __x64_sys_ioctl+0x7f/0xa0 [ 1883.751389][T20661] x64_sys_call+0x1878/0x2ee0 [ 1883.751414][T20661] do_syscall_64+0x58/0xf0 [ 1883.751436][T20661] ? clear_bhb_loop+0x50/0xa0 [ 1883.751456][T20661] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1883.751476][T20661] RIP: 0033:0x7f9686d8f6c9 [ 1883.751493][T20661] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1883.751509][T20661] RSP: 002b:00007f9687c96038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1883.751531][T20661] RAX: ffffffffffffffda RBX: 00007f9686fe5fa0 RCX: 00007f9686d8f6c9 [ 1883.751546][T20661] RDX: 0000200000000600 RSI: 00000000000089f1 RDI: 0000000000000007 [ 1883.751560][T20661] RBP: 00007f9687c96090 R08: 0000000000000000 R09: 0000000000000000 [ 1883.751572][T20661] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1883.751584][T20661] R13: 00007f9686fe6038 R14: 00007f9686fe5fa0 R15: 00007fff1fbee4d8 [ 1883.751601][T20661] [ 1885.314320][ T36] audit: type=1400 audit(1763413239.720:1389): avc: denied { append } for pid=20745 comm="syz.2.56954" name="ppp" dev="devtmpfs" ino=86 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1 [ 1885.358327][ T36] audit: type=1400 audit(1763413239.720:1390): avc: denied { open } for pid=20745 comm="syz.2.56954" path="/dev/ppp" dev="devtmpfs" ino=86 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1 [ 1886.404997][T20795] FAULT_INJECTION: forcing a failure. [ 1886.404997][T20795] name failslab, interval 1, probability 0, space 0, times 0 [ 1886.418420][T20795] CPU: 1 UID: 0 PID: 20795 Comm: syz.4.56976 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1886.418454][T20795] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1886.418466][T20795] Call Trace: [ 1886.418473][T20795] [ 1886.418482][T20795] __dump_stack+0x21/0x30 [ 1886.418511][T20795] dump_stack_lvl+0x10c/0x190 [ 1886.418535][T20795] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1886.418558][T20795] ? __kasan_check_write+0x18/0x20 [ 1886.418584][T20795] ? proc_fail_nth_write+0x17e/0x210 [ 1886.418608][T20795] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 1886.418631][T20795] dump_stack+0x19/0x20 [ 1886.418653][T20795] should_fail_ex+0x3d9/0x530 [ 1886.418751][T20795] should_failslab+0xac/0x100 [ 1886.418773][T20795] kmem_cache_alloc_noprof+0x42/0x430 [ 1886.418792][T20795] ? getname_flags+0xc6/0x710 [ 1886.418811][T20795] getname_flags+0xc6/0x710 [ 1886.418829][T20795] ? build_open_flags+0x487/0x600 [ 1886.418852][T20795] getname+0x1b/0x30 [ 1886.418869][T20795] do_sys_openat2+0xcb/0x1c0 [ 1886.418891][T20795] ? fput+0x1a5/0x240 [ 1886.418912][T20795] ? do_sys_open+0x100/0x100 [ 1886.418934][T20795] ? ksys_write+0x1ef/0x250 [ 1886.418950][T20795] ? __cfi_ksys_write+0x10/0x10 [ 1886.418969][T20795] __x64_sys_openat+0x13a/0x170 [ 1886.418995][T20795] x64_sys_call+0xe69/0x2ee0 [ 1886.419021][T20795] do_syscall_64+0x58/0xf0 [ 1886.419045][T20795] ? clear_bhb_loop+0x50/0xa0 [ 1886.419066][T20795] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1886.419086][T20795] RIP: 0033:0x7f9686d8f6c9 [ 1886.419103][T20795] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1886.419121][T20795] RSP: 002b:00007f9687c96038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1886.419143][T20795] RAX: ffffffffffffffda RBX: 00007f9686fe5fa0 RCX: 00007f9686d8f6c9 [ 1886.419158][T20795] RDX: 0000000000044401 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 1886.419173][T20795] RBP: 00007f9687c96090 R08: 0000000000000000 R09: 0000000000000000 [ 1886.419186][T20795] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1886.419199][T20795] R13: 00007f9686fe6038 R14: 00007f9686fe5fa0 R15: 00007fff1fbee4d8 [ 1886.419216][T20795] [ 1893.672541][T21259] FAULT_INJECTION: forcing a failure. [ 1893.672541][T21259] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1893.700646][T21259] CPU: 1 UID: 0 PID: 21259 Comm: syz.4.57197 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1893.700683][T21259] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1893.700696][T21259] Call Trace: [ 1893.700702][T21259] [ 1893.700711][T21259] __dump_stack+0x21/0x30 [ 1893.700740][T21259] dump_stack_lvl+0x10c/0x190 [ 1893.700763][T21259] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1893.700787][T21259] ? kernel_text_address+0xa9/0xe0 [ 1893.700811][T21259] dump_stack+0x19/0x20 [ 1893.700833][T21259] should_fail_ex+0x3d9/0x530 [ 1893.700854][T21259] should_fail+0xf/0x20 [ 1893.700871][T21259] should_fail_usercopy+0x1e/0x30 [ 1893.700890][T21259] _copy_from_user+0x22/0xb0 [ 1893.700931][T21259] ___sys_sendmsg+0x159/0x2a0 [ 1893.700959][T21259] ? __sys_sendmsg+0x280/0x280 [ 1893.700984][T21259] ? kstrtouint+0x78/0xf0 [ 1893.701007][T21259] __sys_sendmmsg+0x271/0x470 [ 1893.701034][T21259] ? __cfi___sys_sendmmsg+0x10/0x10 [ 1893.701063][T21259] ? __cfi_ksys_write+0x10/0x10 [ 1893.701080][T21259] ? fd_install+0x175/0x2e0 [ 1893.701101][T21259] __x64_sys_sendmmsg+0xa4/0xc0 [ 1893.701126][T21259] x64_sys_call+0xfec/0x2ee0 [ 1893.701151][T21259] do_syscall_64+0x58/0xf0 [ 1893.701174][T21259] ? clear_bhb_loop+0x50/0xa0 [ 1893.701195][T21259] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1893.701214][T21259] RIP: 0033:0x7f9686d8f6c9 [ 1893.701231][T21259] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1893.701247][T21259] RSP: 002b:00007f9687c96038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 1893.701270][T21259] RAX: ffffffffffffffda RBX: 00007f9686fe5fa0 RCX: 00007f9686d8f6c9 [ 1893.701285][T21259] RDX: 0000000000000001 RSI: 0000200000000000 RDI: 0000000000000009 [ 1893.701299][T21259] RBP: 00007f9687c96090 R08: 0000000000000000 R09: 0000000000000000 [ 1893.701312][T21259] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1893.701325][T21259] R13: 00007f9686fe6038 R14: 00007f9686fe5fa0 R15: 00007fff1fbee4d8 [ 1893.701341][T21259] [ 1895.173294][T21358] raw_sendmsg: syz.2.57245 forgot to set AF_INET. Fix it! [ 1896.970215][ T36] audit: type=1400 audit(1763413251.370:1391): avc: denied { unmount } for pid=18946 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 1898.706419][T21481] loop5: detected capacity change from 0 to 7 [ 1899.691817][T21561] FAULT_INJECTION: forcing a failure. [ 1899.691817][T21561] name failslab, interval 1, probability 0, space 0, times 0 [ 1899.720130][T21561] CPU: 0 UID: 0 PID: 21561 Comm: syz.2.57342 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1899.720164][T21561] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1899.720175][T21561] Call Trace: [ 1899.720181][T21561] [ 1899.720189][T21561] __dump_stack+0x21/0x30 [ 1899.720219][T21561] dump_stack_lvl+0x10c/0x190 [ 1899.720241][T21561] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1899.720264][T21561] ? __kasan_check_write+0x18/0x20 [ 1899.720291][T21561] ? proc_fail_nth_write+0x17e/0x210 [ 1899.720314][T21561] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 1899.720337][T21561] dump_stack+0x19/0x20 [ 1899.720358][T21561] should_fail_ex+0x3d9/0x530 [ 1899.720377][T21561] should_failslab+0xac/0x100 [ 1899.720396][T21561] kmem_cache_alloc_noprof+0x42/0x430 [ 1899.720413][T21561] ? getname_flags+0xc6/0x710 [ 1899.720432][T21561] getname_flags+0xc6/0x710 [ 1899.720465][T21561] ? build_open_flags+0x487/0x600 [ 1899.720487][T21561] getname+0x1b/0x30 [ 1899.720503][T21561] do_sys_openat2+0xcb/0x1c0 [ 1899.720524][T21561] ? fput+0x1a5/0x240 [ 1899.720549][T21561] ? do_sys_open+0x100/0x100 [ 1899.720569][T21561] ? ksys_write+0x1ef/0x250 [ 1899.720594][T21561] ? __cfi_ksys_write+0x10/0x10 [ 1899.720611][T21561] __x64_sys_openat+0x13a/0x170 [ 1899.720635][T21561] x64_sys_call+0xe69/0x2ee0 [ 1899.720658][T21561] do_syscall_64+0x58/0xf0 [ 1899.720681][T21561] ? clear_bhb_loop+0x50/0xa0 [ 1899.720701][T21561] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1899.720719][T21561] RIP: 0033:0x7ff04638f6c9 [ 1899.720736][T21561] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1899.720752][T21561] RSP: 002b:00007ff044df7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1899.720779][T21561] RAX: ffffffffffffffda RBX: 00007ff0465e5fa0 RCX: 00007ff04638f6c9 [ 1899.720794][T21561] RDX: 0000000000000000 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 1899.720808][T21561] RBP: 00007ff044df7090 R08: 0000000000000000 R09: 0000000000000000 [ 1899.720820][T21561] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1899.720832][T21561] R13: 00007ff0465e6038 R14: 00007ff0465e5fa0 R15: 00007ffe0adbb5f8 [ 1899.720847][T21561] [ 1900.092513][T21571] netlink: 268 bytes leftover after parsing attributes in process `syz.2.57344'. [ 1900.235670][ T36] audit: type=1400 audit(1763413254.640:1392): avc: denied { attach_queue } for pid=21590 comm="syz.4.57355" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1 [ 1903.554473][T21897] FAULT_INJECTION: forcing a failure. [ 1903.554473][T21897] name failslab, interval 1, probability 0, space 0, times 0 [ 1903.577536][T21897] CPU: 0 UID: 0 PID: 21897 Comm: syz.2.57502 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1903.577578][T21897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1903.577591][T21897] Call Trace: [ 1903.577598][T21897] [ 1903.577607][T21897] __dump_stack+0x21/0x30 [ 1903.577637][T21897] dump_stack_lvl+0x10c/0x190 [ 1903.577660][T21897] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1903.577684][T21897] ? __kasan_check_write+0x18/0x20 [ 1903.577710][T21897] ? proc_fail_nth_write+0x17e/0x210 [ 1903.577734][T21897] dump_stack+0x19/0x20 [ 1903.577757][T21897] should_fail_ex+0x3d9/0x530 [ 1903.577776][T21897] should_failslab+0xac/0x100 [ 1903.577796][T21897] __kmalloc_node_noprof+0x6c/0x520 [ 1903.577815][T21897] ? __kvmalloc_node_noprof+0x11d/0x300 [ 1903.577841][T21897] ? __cfi_vfs_write+0x10/0x10 [ 1903.577858][T21897] __kvmalloc_node_noprof+0x11d/0x300 [ 1903.577884][T21897] ? __cfi___kvmalloc_node_noprof+0x10/0x10 [ 1903.577910][T21897] ? __fget_files+0x2c5/0x340 [ 1903.577931][T21897] traverse+0xf5/0x720 [ 1903.577952][T21897] ? __cfi_mutex_lock+0x10/0x10 [ 1903.577971][T21897] seq_lseek+0x13f/0x270 [ 1903.577992][T21897] __x64_sys_lseek+0x16e/0x200 [ 1903.578018][T21897] x64_sys_call+0x274c/0x2ee0 [ 1903.578043][T21897] do_syscall_64+0x58/0xf0 [ 1903.578066][T21897] ? clear_bhb_loop+0x50/0xa0 [ 1903.578087][T21897] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1903.578106][T21897] RIP: 0033:0x7ff04638f6c9 [ 1903.578124][T21897] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1903.578141][T21897] RSP: 002b:00007ff044df7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000008 [ 1903.578163][T21897] RAX: ffffffffffffffda RBX: 00007ff0465e5fa0 RCX: 00007ff04638f6c9 [ 1903.578178][T21897] RDX: 0000000000000000 RSI: 0000000000010001 RDI: 0000000000000006 [ 1903.578191][T21897] RBP: 00007ff044df7090 R08: 0000000000000000 R09: 0000000000000000 [ 1903.578204][T21897] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1903.578217][T21897] R13: 00007ff0465e6038 R14: 00007ff0465e5fa0 R15: 00007ffe0adbb5f8 [ 1903.578234][T21897] [ 1906.210091][T21998] FAULT_INJECTION: forcing a failure. [ 1906.210091][T21998] name failslab, interval 1, probability 0, space 0, times 0 [ 1906.240011][T21998] CPU: 1 UID: 0 PID: 21998 Comm: syz.3.57551 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1906.240045][T21998] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1906.240056][T21998] Call Trace: [ 1906.240062][T21998] [ 1906.240070][T21998] __dump_stack+0x21/0x30 [ 1906.240096][T21998] dump_stack_lvl+0x10c/0x190 [ 1906.240127][T21998] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1906.240150][T21998] ? avc_has_perm+0x144/0x220 [ 1906.240174][T21998] dump_stack+0x19/0x20 [ 1906.240193][T21998] should_fail_ex+0x3d9/0x530 [ 1906.240210][T21998] should_failslab+0xac/0x100 [ 1906.240228][T21998] __kmalloc_cache_noprof+0x41/0x490 [ 1906.240244][T21998] ? vhost_task_create+0x101/0x350 [ 1906.240262][T21998] ? __cfi_kvm_nx_huge_page_recovery_worker+0x10/0x10 [ 1906.240281][T21998] vhost_task_create+0x101/0x350 [ 1906.240299][T21998] ? __cfi_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10 [ 1906.240318][T21998] ? __cfi_vhost_task_create+0x10/0x10 [ 1906.240336][T21998] ? __cfi_vhost_task_fn+0x10/0x10 [ 1906.240352][T21998] ? __kasan_check_write+0x18/0x20 [ 1906.240378][T21998] ? mutex_lock+0x92/0x1c0 [ 1906.240395][T21998] ? __cfi_mutex_lock+0x10/0x10 [ 1906.240411][T21998] ? kernel_text_address+0xa9/0xe0 [ 1906.240433][T21998] kvm_mmu_post_init_vm+0x156/0x2d0 [ 1906.240458][T21998] kvm_arch_vcpu_ioctl_run+0xd7/0x1aa0 [ 1906.240480][T21998] ? _parse_integer_limit+0x195/0x1e0 [ 1906.240507][T21998] ? __cfi_kvm_arch_vcpu_ioctl_run+0x10/0x10 [ 1906.240533][T21998] ? kstrtoull+0x13b/0x1e0 [ 1906.240549][T21998] ? kstrtouint+0x78/0xf0 [ 1906.240565][T21998] ? ioctl_has_perm+0x1aa/0x4d0 [ 1906.240585][T21998] ? __asan_memcpy+0x5a/0x80 [ 1906.240601][T21998] ? ioctl_has_perm+0x3e0/0x4d0 [ 1906.240620][T21998] ? has_cap_mac_admin+0xd0/0xd0 [ 1906.240640][T21998] ? __kasan_check_write+0x18/0x20 [ 1906.240664][T21998] ? mutex_lock_killable+0x92/0x1c0 [ 1906.240681][T21998] ? __cfi_mutex_lock_killable+0x10/0x10 [ 1906.240699][T21998] ? proc_fail_nth_write+0x17e/0x210 [ 1906.240723][T21998] kvm_vcpu_ioctl+0x96f/0xee0 [ 1906.240740][T21998] ? __cfi_kvm_vcpu_ioctl+0x10/0x10 [ 1906.240757][T21998] ? __cfi_vfs_write+0x10/0x10 [ 1906.240773][T21998] ? __kasan_check_write+0x18/0x20 [ 1906.240797][T21998] ? mutex_unlock+0x8b/0x240 [ 1906.240812][T21998] ? __cfi_mutex_unlock+0x10/0x10 [ 1906.240828][T21998] ? __fget_files+0x2c5/0x340 [ 1906.240847][T21998] ? __fget_files+0x2c5/0x340 [ 1906.240865][T21998] ? bpf_lsm_file_ioctl+0xd/0x20 [ 1906.240888][T21998] ? security_file_ioctl+0x34/0xd0 [ 1906.240906][T21998] ? __cfi_kvm_vcpu_ioctl+0x10/0x10 [ 1906.240921][T21998] __se_sys_ioctl+0x135/0x1b0 [ 1906.240940][T21998] __x64_sys_ioctl+0x7f/0xa0 [ 1906.240958][T21998] x64_sys_call+0x1878/0x2ee0 [ 1906.240982][T21998] do_syscall_64+0x58/0xf0 [ 1906.241003][T21998] ? clear_bhb_loop+0x50/0xa0 [ 1906.241022][T21998] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1906.241040][T21998] RIP: 0033:0x7fdcdd38f6c9 [ 1906.241056][T21998] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1906.241072][T21998] RSP: 002b:00007fdcde1ae038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1906.241093][T21998] RAX: ffffffffffffffda RBX: 00007fdcdd5e5fa0 RCX: 00007fdcdd38f6c9 [ 1906.241114][T21998] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000008 [ 1906.241126][T21998] RBP: 00007fdcde1ae090 R08: 0000000000000000 R09: 0000000000000000 [ 1906.241138][T21998] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1906.241150][T21998] R13: 00007fdcdd5e6038 R14: 00007fdcdd5e5fa0 R15: 00007ffe004667e8 [ 1906.241166][T21998] [ 1907.316589][T22048] FAULT_INJECTION: forcing a failure. [ 1907.316589][T22048] name failslab, interval 1, probability 0, space 0, times 0 [ 1907.348544][T22048] CPU: 0 UID: 0 PID: 22048 Comm: syz.1.57574 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1907.348579][T22048] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1907.348591][T22048] Call Trace: [ 1907.348598][T22048] [ 1907.348605][T22048] __dump_stack+0x21/0x30 [ 1907.348631][T22048] dump_stack_lvl+0x10c/0x190 [ 1907.348651][T22048] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1907.348674][T22048] ? __kasan_check_write+0x18/0x20 [ 1907.348700][T22048] ? proc_fail_nth_write+0x17e/0x210 [ 1907.348724][T22048] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 1907.348748][T22048] dump_stack+0x19/0x20 [ 1907.348770][T22048] should_fail_ex+0x3d9/0x530 [ 1907.348790][T22048] should_failslab+0xac/0x100 [ 1907.348810][T22048] kmem_cache_alloc_noprof+0x42/0x430 [ 1907.348829][T22048] ? getname_flags+0xc6/0x710 [ 1907.348848][T22048] getname_flags+0xc6/0x710 [ 1907.348865][T22048] ? build_open_flags+0x487/0x600 [ 1907.348889][T22048] getname+0x1b/0x30 [ 1907.348906][T22048] do_sys_openat2+0xcb/0x1c0 [ 1907.348928][T22048] ? fput+0x1a5/0x240 [ 1907.348949][T22048] ? do_sys_open+0x100/0x100 [ 1907.348970][T22048] ? ksys_write+0x1ef/0x250 [ 1907.348986][T22048] ? __cfi_ksys_write+0x10/0x10 [ 1907.349004][T22048] __x64_sys_openat+0x13a/0x170 [ 1907.349039][T22048] x64_sys_call+0xe69/0x2ee0 [ 1907.349063][T22048] do_syscall_64+0x58/0xf0 [ 1907.349087][T22048] ? clear_bhb_loop+0x50/0xa0 [ 1907.349108][T22048] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1907.349127][T22048] RIP: 0033:0x7fdb3558f6c9 [ 1907.349144][T22048] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1907.349161][T22048] RSP: 002b:00007fdb364e7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1907.349183][T22048] RAX: ffffffffffffffda RBX: 00007fdb357e5fa0 RCX: 00007fdb3558f6c9 [ 1907.349198][T22048] RDX: 000000000000275a RSI: 0000200000000080 RDI: ffffffffffffff9c [ 1907.349212][T22048] RBP: 00007fdb364e7090 R08: 0000000000000000 R09: 0000000000000000 [ 1907.349226][T22048] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1907.349238][T22048] R13: 00007fdb357e6038 R14: 00007fdb357e5fa0 R15: 00007fff3cc11dc8 [ 1907.349255][T22048] [ 1907.852854][T22093] FAULT_INJECTION: forcing a failure. [ 1907.852854][T22093] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1907.871807][T22093] CPU: 1 UID: 0 PID: 22093 Comm: syz.3.57593 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1907.871843][T22093] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1907.871855][T22093] Call Trace: [ 1907.871862][T22093] [ 1907.871870][T22093] __dump_stack+0x21/0x30 [ 1907.871901][T22093] dump_stack_lvl+0x10c/0x190 [ 1907.871924][T22093] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1907.871948][T22093] ? kstrtoull+0x13b/0x1e0 [ 1907.871965][T22093] dump_stack+0x19/0x20 [ 1907.871985][T22093] should_fail_ex+0x3d9/0x530 [ 1907.872005][T22093] should_fail+0xf/0x20 [ 1907.872021][T22093] should_fail_usercopy+0x1e/0x30 [ 1907.872039][T22093] _copy_from_user+0x22/0xb0 [ 1907.872057][T22093] ___sys_sendmsg+0x159/0x2a0 [ 1907.872080][T22093] ? __sys_sendmsg+0x280/0x280 [ 1907.872104][T22093] ? proc_fail_nth_write+0x17e/0x210 [ 1907.872127][T22093] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 1907.872155][T22093] __x64_sys_sendmsg+0x1eb/0x2c0 [ 1907.872179][T22093] ? fput+0x1a5/0x240 [ 1907.872201][T22093] ? __cfi___x64_sys_sendmsg+0x10/0x10 [ 1907.872233][T22093] ? ksys_write+0x1ef/0x250 [ 1907.872250][T22093] ? __kasan_check_read+0x15/0x20 [ 1907.872275][T22093] x64_sys_call+0x2a4c/0x2ee0 [ 1907.872298][T22093] do_syscall_64+0x58/0xf0 [ 1907.872319][T22093] ? clear_bhb_loop+0x50/0xa0 [ 1907.872338][T22093] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1907.872355][T22093] RIP: 0033:0x7fdcdd38f6c9 [ 1907.872370][T22093] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1907.872385][T22093] RSP: 002b:00007fdcde1ae038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1907.872407][T22093] RAX: ffffffffffffffda RBX: 00007fdcdd5e5fa0 RCX: 00007fdcdd38f6c9 [ 1907.872422][T22093] RDX: 0000000000000040 RSI: 0000200000000340 RDI: 0000000000000009 [ 1907.872435][T22093] RBP: 00007fdcde1ae090 R08: 0000000000000000 R09: 0000000000000000 [ 1907.872449][T22093] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1907.872461][T22093] R13: 00007fdcdd5e6038 R14: 00007fdcdd5e5fa0 R15: 00007ffe004667e8 [ 1907.872477][T22093] [ 1908.501494][T22163] FAULT_INJECTION: forcing a failure. [ 1908.501494][T22163] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1908.529626][T22163] CPU: 0 UID: 0 PID: 22163 Comm: syz.3.57626 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1908.529663][T22163] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1908.529676][T22163] Call Trace: [ 1908.529682][T22163] [ 1908.529691][T22163] __dump_stack+0x21/0x30 [ 1908.529726][T22163] dump_stack_lvl+0x10c/0x190 [ 1908.529749][T22163] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1908.529774][T22163] ? kstrtoull+0x13b/0x1e0 [ 1908.529792][T22163] dump_stack+0x19/0x20 [ 1908.529814][T22163] should_fail_ex+0x3d9/0x530 [ 1908.529834][T22163] should_fail+0xf/0x20 [ 1908.529852][T22163] should_fail_usercopy+0x1e/0x30 [ 1908.529872][T22163] _copy_from_user+0x22/0xb0 [ 1908.529895][T22163] ___sys_sendmsg+0x159/0x2a0 [ 1908.529921][T22163] ? __sys_sendmsg+0x280/0x280 [ 1908.529946][T22163] ? proc_fail_nth_write+0x17e/0x210 [ 1908.529970][T22163] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 1908.529999][T22163] __x64_sys_sendmsg+0x1eb/0x2c0 [ 1908.530024][T22163] ? fput+0x1a5/0x240 [ 1908.530045][T22163] ? __cfi___x64_sys_sendmsg+0x10/0x10 [ 1908.530071][T22163] ? ksys_write+0x1ef/0x250 [ 1908.530089][T22163] ? __kasan_check_read+0x15/0x20 [ 1908.530115][T22163] x64_sys_call+0x2a4c/0x2ee0 [ 1908.530141][T22163] do_syscall_64+0x58/0xf0 [ 1908.530163][T22163] ? clear_bhb_loop+0x50/0xa0 [ 1908.530190][T22163] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1908.530210][T22163] RIP: 0033:0x7fdcdd38f6c9 [ 1908.530228][T22163] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1908.530245][T22163] RSP: 002b:00007fdcde1ae038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1908.530266][T22163] RAX: ffffffffffffffda RBX: 00007fdcdd5e5fa0 RCX: 00007fdcdd38f6c9 [ 1908.530281][T22163] RDX: 0000000000000040 RSI: 0000200000000340 RDI: 0000000000000009 [ 1908.530294][T22163] RBP: 00007fdcde1ae090 R08: 0000000000000000 R09: 0000000000000000 [ 1908.530308][T22163] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1908.530321][T22163] R13: 00007fdcdd5e6038 R14: 00007fdcdd5e5fa0 R15: 00007ffe004667e8 [ 1908.530337][T22163] [ 1908.831765][T22170] exFAT-fs (rnullb0): invalid boot record signature [ 1908.858002][T22170] exFAT-fs (rnullb0): failed to read boot sector [ 1908.868117][T22170] exFAT-fs (rnullb0): failed to recognize exfat type [ 1909.210378][T22219] FAULT_INJECTION: forcing a failure. [ 1909.210378][T22219] name failslab, interval 1, probability 0, space 0, times 0 [ 1909.223297][T22219] CPU: 1 UID: 0 PID: 22219 Comm: syz.3.57649 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1909.223330][T22219] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1909.223343][T22219] Call Trace: [ 1909.223350][T22219] [ 1909.223359][T22219] __dump_stack+0x21/0x30 [ 1909.223389][T22219] dump_stack_lvl+0x10c/0x190 [ 1909.223412][T22219] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1909.223438][T22219] dump_stack+0x19/0x20 [ 1909.223460][T22219] should_fail_ex+0x3d9/0x530 [ 1909.223481][T22219] should_failslab+0xac/0x100 [ 1909.223502][T22219] kmem_cache_alloc_node_noprof+0x45/0x440 [ 1909.223521][T22219] ? dup_task_struct+0xbc/0xc50 [ 1909.223543][T22219] dup_task_struct+0xbc/0xc50 [ 1909.223564][T22219] ? copy_process+0x3220/0x3220 [ 1909.223585][T22219] ? __kasan_check_write+0x18/0x20 [ 1909.223612][T22219] copy_process+0x538/0x3220 [ 1909.223634][T22219] ? __cfi_copy_process+0x10/0x10 [ 1909.223655][T22219] ? proc_fail_nth_write+0x17e/0x210 [ 1909.223680][T22219] kernel_clone+0x23f/0x830 [ 1909.223701][T22219] ? __cfi_kernel_clone+0x10/0x10 [ 1909.223724][T22219] __x64_sys_clone+0x18c/0x1f0 [ 1909.223747][T22219] ? __cfi___x64_sys_clone+0x10/0x10 [ 1909.223771][T22219] ? __kasan_check_read+0x15/0x20 [ 1909.223797][T22219] x64_sys_call+0x2b3c/0x2ee0 [ 1909.223823][T22219] do_syscall_64+0x58/0xf0 [ 1909.223845][T22219] ? clear_bhb_loop+0x50/0xa0 [ 1909.223866][T22219] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1909.223885][T22219] RIP: 0033:0x7fdcdd38f6c9 [ 1909.223900][T22219] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1909.223916][T22219] RSP: 002b:00007fdcde1adfe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1909.223938][T22219] RAX: ffffffffffffffda RBX: 00007fdcdd5e5fa0 RCX: 00007fdcdd38f6c9 [ 1909.223953][T22219] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040800000 [ 1909.223966][T22219] RBP: 00007fdcde1ae090 R08: 0000000000000000 R09: 0000000000000000 [ 1909.223979][T22219] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001 [ 1909.223991][T22219] R13: 00007fdcdd5e6038 R14: 00007fdcdd5e5fa0 R15: 00007ffe004667e8 [ 1909.224008][T22219] [ 1909.525036][T22233] FAULT_INJECTION: forcing a failure. [ 1909.525036][T22233] name failslab, interval 1, probability 0, space 0, times 0 [ 1909.538119][T22233] CPU: 0 UID: 0 PID: 22233 Comm: syz.2.57655 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1909.538152][T22233] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1909.538162][T22233] Call Trace: [ 1909.538169][T22233] [ 1909.538176][T22233] __dump_stack+0x21/0x30 [ 1909.538205][T22233] dump_stack_lvl+0x10c/0x190 [ 1909.538227][T22233] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1909.538249][T22233] ? __kasan_check_write+0x18/0x20 [ 1909.538275][T22233] ? proc_fail_nth_write+0x17e/0x210 [ 1909.538299][T22233] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 1909.538322][T22233] dump_stack+0x19/0x20 [ 1909.538343][T22233] should_fail_ex+0x3d9/0x530 [ 1909.538362][T22233] should_failslab+0xac/0x100 [ 1909.538383][T22233] kmem_cache_alloc_noprof+0x42/0x430 [ 1909.538400][T22233] ? getname_flags+0xc6/0x710 [ 1909.538426][T22233] getname_flags+0xc6/0x710 [ 1909.538442][T22233] ? build_open_flags+0x487/0x600 [ 1909.538469][T22233] getname+0x1b/0x30 [ 1909.538485][T22233] do_sys_openat2+0xcb/0x1c0 [ 1909.538507][T22233] ? fput+0x1a5/0x240 [ 1909.538528][T22233] ? do_sys_open+0x100/0x100 [ 1909.538548][T22233] ? ksys_write+0x1ef/0x250 [ 1909.538565][T22233] ? __cfi_ksys_write+0x10/0x10 [ 1909.538580][T22233] __x64_sys_openat+0x13a/0x170 [ 1909.538601][T22233] x64_sys_call+0xe69/0x2ee0 [ 1909.538624][T22233] do_syscall_64+0x58/0xf0 [ 1909.538647][T22233] ? clear_bhb_loop+0x50/0xa0 [ 1909.538667][T22233] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1909.538687][T22233] RIP: 0033:0x7ff04638f6c9 [ 1909.538703][T22233] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1909.538719][T22233] RSP: 002b:00007ff044df7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1909.538740][T22233] RAX: ffffffffffffffda RBX: 00007ff0465e5fa0 RCX: 00007ff04638f6c9 [ 1909.538755][T22233] RDX: 0000000000044401 RSI: 0000000000000000 RDI: ffffffffffffff9c [ 1909.538768][T22233] RBP: 00007ff044df7090 R08: 0000000000000000 R09: 0000000000000000 [ 1909.538780][T22233] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1909.538790][T22233] R13: 00007ff0465e6038 R14: 00007ff0465e5fa0 R15: 00007ffe0adbb5f8 [ 1909.538806][T22233] [ 1910.292340][T22335] FAULT_INJECTION: forcing a failure. [ 1910.292340][T22335] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1910.319527][T22335] CPU: 0 UID: 0 PID: 22335 Comm: syz.4.57702 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1910.319562][T22335] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1910.319574][T22335] Call Trace: [ 1910.319581][T22335] [ 1910.319589][T22335] __dump_stack+0x21/0x30 [ 1910.319619][T22335] dump_stack_lvl+0x10c/0x190 [ 1910.319643][T22335] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1910.319688][T22335] ? __kasan_check_read+0x15/0x20 [ 1910.319716][T22335] dump_stack+0x19/0x20 [ 1910.319738][T22335] should_fail_ex+0x3d9/0x530 [ 1910.319759][T22335] should_fail+0xf/0x20 [ 1910.319776][T22335] should_fail_usercopy+0x1e/0x30 [ 1910.319795][T22335] __kvm_read_guest_page+0x177/0x210 [ 1910.319816][T22335] kvm_vcpu_read_guest_page+0x31a/0x400 [ 1910.319836][T22335] kvm_fetch_guest_virt+0x146/0x190 [ 1910.319862][T22335] ? __cfi_kvm_fetch_guest_virt+0x10/0x10 [ 1910.319888][T22335] __do_insn_fetch_bytes+0x321/0x730 [ 1910.319908][T22335] ? x86_decode_insn+0x4fb0/0x4fb0 [ 1910.319927][T22335] ? tdp_iter_restart+0x1c4/0x360 [ 1910.319947][T22335] ? kvm_tdp_mmu_fast_pf_get_last_sptep+0x290/0x290 [ 1910.319971][T22335] ? tdp_iter_next+0x362/0xa30 [ 1910.319991][T22335] x86_decode_insn+0x33b/0x4fb0 [ 1910.320009][T22335] ? trace_mark_mmio_spte+0x22/0x130 [ 1910.320035][T22335] ? __cfi_x86_decode_insn+0x10/0x10 [ 1910.320059][T22335] ? __kasan_check_write+0x18/0x20 [ 1910.320085][T22335] ? vmx_read_guest_seg_ar+0x1c8/0x350 [ 1910.320107][T22335] ? __asan_memset+0x39/0x50 [ 1910.320124][T22335] ? init_decode_cache+0x7c/0x90 [ 1910.320141][T22335] ? init_emulate_ctxt+0x410/0x540 [ 1910.320161][T22335] ? kvm_inject_realmode_interrupt+0x2e0/0x2e0 [ 1910.320183][T22335] ? kvm_mmu_do_page_fault+0x4b0/0x5f0 [ 1910.320205][T22335] x86_decode_emulated_instruction+0x66/0x190 [ 1910.320227][T22335] x86_emulate_instruction+0x2d3/0x1870 [ 1910.320248][T22335] ? kvm_multiple_exception+0x6d8/0xad0 [ 1910.320271][T22335] ? __kernel_text_address+0x11/0x40 [ 1910.320294][T22335] kvm_mmu_page_fault+0x336/0x970 [ 1910.320315][T22335] handle_ept_violation+0x21c/0x440 [ 1910.320335][T22335] ? vmx_vcpu_run+0x1100/0x2000 [ 1910.320360][T22335] ? __cfi_handle_ept_violation+0x10/0x10 [ 1910.320380][T22335] vmx_handle_exit+0x12c2/0x1b40 [ 1910.320405][T22335] ? __cfi_vmx_vcpu_run+0x10/0x10 [ 1910.320429][T22335] ? kasan_save_track+0x4f/0x80 [ 1910.320448][T22335] ? vmx_handle_exit_irqoff+0xe9/0x7a0 [ 1910.320474][T22335] vcpu_run+0x4bd0/0x7830 [ 1910.320495][T22335] ? x64_sys_call+0xe69/0x2ee0 [ 1910.320531][T22335] ? signal_pending+0xc0/0xc0 [ 1910.320552][T22335] ? __kasan_check_write+0x18/0x20 [ 1910.320578][T22335] ? xfd_validate_state+0x68/0x150 [ 1910.320601][T22335] ? fpu_swap_kvm_fpstate+0x93/0x5f0 [ 1910.320621][T22335] ? __kasan_check_write+0x18/0x20 [ 1910.320646][T22335] ? fpregs_mark_activate+0x69/0x160 [ 1910.320666][T22335] ? fpu_swap_kvm_fpstate+0x44d/0x5f0 [ 1910.320686][T22335] ? fpu_swap_kvm_fpstate+0x93/0x5f0 [ 1910.320706][T22335] kvm_arch_vcpu_ioctl_run+0x101a/0x1aa0 [ 1910.320730][T22335] ? __cfi_kvm_arch_vcpu_ioctl_run+0x10/0x10 [ 1910.320753][T22335] ? kstrtoull+0x13b/0x1e0 [ 1910.320770][T22335] ? kstrtouint+0x78/0xf0 [ 1910.320787][T22335] ? ioctl_has_perm+0x1aa/0x4d0 [ 1910.320809][T22335] ? __asan_memcpy+0x5a/0x80 [ 1910.320826][T22335] ? ioctl_has_perm+0x3e0/0x4d0 [ 1910.320846][T22335] ? has_cap_mac_admin+0xd0/0xd0 [ 1910.320868][T22335] ? __kasan_check_write+0x18/0x20 [ 1910.320892][T22335] ? mutex_lock_killable+0x92/0x1c0 [ 1910.320911][T22335] ? __cfi_mutex_lock_killable+0x10/0x10 [ 1910.320929][T22335] ? proc_fail_nth_write+0x17e/0x210 [ 1910.320953][T22335] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 1910.320977][T22335] kvm_vcpu_ioctl+0x96f/0xee0 [ 1910.320995][T22335] ? __cfi_kvm_vcpu_ioctl+0x10/0x10 [ 1910.321012][T22335] ? __cfi_vfs_write+0x10/0x10 [ 1910.321029][T22335] ? __kasan_check_write+0x18/0x20 [ 1910.321064][T22335] ? mutex_unlock+0x8b/0x240 [ 1910.321080][T22335] ? __cfi_mutex_unlock+0x10/0x10 [ 1910.321097][T22335] ? __fget_files+0x2c5/0x340 [ 1910.321118][T22335] ? __fget_files+0x2c5/0x340 [ 1910.321137][T22335] ? bpf_lsm_file_ioctl+0xd/0x20 [ 1910.321162][T22335] ? security_file_ioctl+0x34/0xd0 [ 1910.321182][T22335] ? __cfi_kvm_vcpu_ioctl+0x10/0x10 [ 1910.321199][T22335] __se_sys_ioctl+0x135/0x1b0 [ 1910.321219][T22335] __x64_sys_ioctl+0x7f/0xa0 [ 1910.321238][T22335] x64_sys_call+0x1878/0x2ee0 [ 1910.321264][T22335] do_syscall_64+0x58/0xf0 [ 1910.321287][T22335] ? clear_bhb_loop+0x50/0xa0 [ 1910.321307][T22335] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1910.321326][T22335] RIP: 0033:0x7f9686d8f6c9 [ 1910.321344][T22335] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1910.321362][T22335] RSP: 002b:00007f9687c96038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1910.321384][T22335] RAX: ffffffffffffffda RBX: 00007f9686fe5fa0 RCX: 00007f9686d8f6c9 [ 1910.321399][T22335] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000008 [ 1910.321412][T22335] RBP: 00007f9687c96090 R08: 0000000000000000 R09: 0000000000000000 [ 1910.321424][T22335] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1910.321436][T22335] R13: 00007f9686fe6038 R14: 00007f9686fe5fa0 R15: 00007fff1fbee4d8 [ 1910.321454][T22335] [ 1911.444029][T22370] FAULT_INJECTION: forcing a failure. [ 1911.444029][T22370] name failslab, interval 1, probability 0, space 0, times 0 [ 1911.469466][T22370] CPU: 1 UID: 0 PID: 22370 Comm: syz.3.57719 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1911.469497][T22370] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1911.469508][T22370] Call Trace: [ 1911.469513][T22370] [ 1911.469520][T22370] __dump_stack+0x21/0x30 [ 1911.469550][T22370] dump_stack_lvl+0x10c/0x190 [ 1911.469570][T22370] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1911.469593][T22370] dump_stack+0x19/0x20 [ 1911.469611][T22370] should_fail_ex+0x3d9/0x530 [ 1911.469628][T22370] should_failslab+0xac/0x100 [ 1911.469647][T22370] kmem_cache_alloc_noprof+0x42/0x430 [ 1911.469662][T22370] ? __khugepaged_enter+0x78/0x330 [ 1911.469682][T22370] __khugepaged_enter+0x78/0x330 [ 1911.469700][T22370] khugepaged_enter_vma+0x3ff/0x430 [ 1911.469718][T22370] hugepage_madvise+0xaf/0xd0 [ 1911.469737][T22370] madvise_vma_behavior+0x6b4/0x2d40 [ 1911.469762][T22370] ? __cfi_madvise_vma_behavior+0x10/0x10 [ 1911.469784][T22370] ? is_bpf_text_address+0x17b/0x1a0 [ 1911.469803][T22370] ? kernel_text_address+0xa9/0xe0 [ 1911.469823][T22370] ? __kernel_text_address+0x11/0x40 [ 1911.469842][T22370] ? unwind_get_return_address+0x51/0x90 [ 1911.469863][T22370] ? __cfi_stack_trace_consume_entry+0x10/0x10 [ 1911.469889][T22370] ? arch_stack_walk+0x10b/0x170 [ 1911.469908][T22370] ? _parse_integer_limit+0x195/0x1e0 [ 1911.469933][T22370] ? mtree_range_walk+0x573/0x730 [ 1911.469952][T22370] ? mas_prev_slot+0xab4/0xb60 [ 1911.469981][T22370] ? mas_prev+0x5f/0xa0 [ 1911.469998][T22370] ? find_vma_prev+0xfd/0x170 [ 1911.470015][T22370] ? __cfi_find_vma_prev+0x10/0x10 [ 1911.470033][T22370] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 1911.470056][T22370] ? bpf_lsm_file_permission+0xd/0x20 [ 1911.470079][T22370] madvise_walk_vmas+0x3ec/0x700 [ 1911.470101][T22370] ? __cfi_madvise_vma_behavior+0x10/0x10 [ 1911.470126][T22370] ? down_write_killable+0xe9/0x2d0 [ 1911.470146][T22370] ? madvise_set_anon_name+0x610/0x610 [ 1911.470171][T22370] ? __asan_memset+0x39/0x50 [ 1911.470187][T22370] ? blk_start_plug+0x72/0x1c0 [ 1911.470206][T22370] do_madvise+0x5c0/0xb70 [ 1911.470230][T22370] ? __cfi_do_madvise+0x10/0x10 [ 1911.470252][T22370] ? ksys_write+0x1ef/0x250 [ 1911.470267][T22370] ? __cfi_ksys_write+0x10/0x10 [ 1911.470281][T22370] __x64_sys_madvise+0xae/0xc0 [ 1911.470302][T22370] x64_sys_call+0x20c3/0x2ee0 [ 1911.470332][T22370] do_syscall_64+0x58/0xf0 [ 1911.470351][T22370] ? clear_bhb_loop+0x50/0xa0 [ 1911.470370][T22370] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1911.470388][T22370] RIP: 0033:0x7fdcdd38f6c9 [ 1911.470403][T22370] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1911.470418][T22370] RSP: 002b:00007fdcde1ae038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 1911.470437][T22370] RAX: ffffffffffffffda RBX: 00007fdcdd5e5fa0 RCX: 00007fdcdd38f6c9 [ 1911.470449][T22370] RDX: 000000000000000e RSI: 0000000000004000 RDI: 0000200000a93000 [ 1911.470460][T22370] RBP: 00007fdcde1ae090 R08: 0000000000000000 R09: 0000000000000000 [ 1911.470472][T22370] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1911.470483][T22370] R13: 00007fdcdd5e6038 R14: 00007fdcdd5e5fa0 R15: 00007ffe004667e8 [ 1911.470499][T22370] [ 1912.145457][T22413] FAULT_INJECTION: forcing a failure. [ 1912.145457][T22413] name failslab, interval 1, probability 0, space 0, times 0 [ 1912.170387][T22413] CPU: 0 UID: 0 PID: 22413 Comm: syz.2.57741 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1912.170421][T22413] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1912.170433][T22413] Call Trace: [ 1912.170439][T22413] [ 1912.170447][T22413] __dump_stack+0x21/0x30 [ 1912.170474][T22413] dump_stack_lvl+0x10c/0x190 [ 1912.170496][T22413] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1912.170518][T22413] ? proc_fail_nth_write+0x17e/0x210 [ 1912.170541][T22413] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 1912.170565][T22413] dump_stack+0x19/0x20 [ 1912.170588][T22413] should_fail_ex+0x3d9/0x530 [ 1912.170608][T22413] should_failslab+0xac/0x100 [ 1912.170629][T22413] kmem_cache_alloc_noprof+0x42/0x430 [ 1912.170648][T22413] ? getname_flags+0xc6/0x710 [ 1912.170667][T22413] getname_flags+0xc6/0x710 [ 1912.170685][T22413] ? __fget_files+0x2c5/0x340 [ 1912.170704][T22413] user_path_at+0x2b/0x60 [ 1912.170725][T22413] __se_sys_mount+0x288/0x480 [ 1912.170743][T22413] ? ksys_write+0x1ef/0x250 [ 1912.170760][T22413] ? __x64_sys_mount+0xf0/0xf0 [ 1912.170778][T22413] __x64_sys_mount+0xc3/0xf0 [ 1912.170795][T22413] x64_sys_call+0x2021/0x2ee0 [ 1912.170820][T22413] do_syscall_64+0x58/0xf0 [ 1912.170851][T22413] ? clear_bhb_loop+0x50/0xa0 [ 1912.170872][T22413] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1912.170892][T22413] RIP: 0033:0x7ff04638f6c9 [ 1912.170919][T22413] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1912.170936][T22413] RSP: 002b:00007ff044df7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1912.170957][T22413] RAX: ffffffffffffffda RBX: 00007ff0465e5fa0 RCX: 00007ff04638f6c9 [ 1912.170972][T22413] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000000 [ 1912.170985][T22413] RBP: 00007ff044df7090 R08: 0000000000000000 R09: 0000000000000000 [ 1912.170998][T22413] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000001 [ 1912.171011][T22413] R13: 00007ff0465e6038 R14: 00007ff0465e5fa0 R15: 00007ffe0adbb5f8 [ 1912.171028][T22413] [ 1912.606861][T22444] netlink: 4 bytes leftover after parsing attributes in process `syz.2.57753'. [ 1916.469207][T22721] FAULT_INJECTION: forcing a failure. [ 1916.469207][T22721] name failslab, interval 1, probability 0, space 0, times 0 [ 1916.499206][T22721] CPU: 1 UID: 0 PID: 22721 Comm: syz.4.57888 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1916.499243][T22721] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1916.499255][T22721] Call Trace: [ 1916.499262][T22721] [ 1916.499271][T22721] __dump_stack+0x21/0x30 [ 1916.499300][T22721] dump_stack_lvl+0x10c/0x190 [ 1916.499323][T22721] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1916.499347][T22721] ? __kasan_check_write+0x18/0x20 [ 1916.499375][T22721] dump_stack+0x19/0x20 [ 1916.499397][T22721] should_fail_ex+0x3d9/0x530 [ 1916.499421][T22721] should_failslab+0xac/0x100 [ 1916.499442][T22721] kmem_cache_alloc_noprof+0x42/0x430 [ 1916.499461][T22721] ? getname_flags+0xc6/0x710 [ 1916.499479][T22721] ? __cfi_ksys_write+0x10/0x10 [ 1916.499498][T22721] getname_flags+0xc6/0x710 [ 1916.499517][T22721] __x64_sys_mkdirat+0x7e/0xa0 [ 1916.499539][T22721] x64_sys_call+0x2ba8/0x2ee0 [ 1916.499565][T22721] do_syscall_64+0x58/0xf0 [ 1916.499594][T22721] ? clear_bhb_loop+0x50/0xa0 [ 1916.499614][T22721] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1916.499634][T22721] RIP: 0033:0x7f9686d8f6c9 [ 1916.499651][T22721] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1916.499668][T22721] RSP: 002b:00007f9687c96038 EFLAGS: 00000246 ORIG_RAX: 0000000000000102 [ 1916.499690][T22721] RAX: ffffffffffffffda RBX: 00007f9686fe5fa0 RCX: 00007f9686d8f6c9 [ 1916.499706][T22721] RDX: 00000000000001ff RSI: 0000200000000000 RDI: ffffffffffffff9c [ 1916.499720][T22721] RBP: 00007f9687c96090 R08: 0000000000000000 R09: 0000000000000000 [ 1916.499734][T22721] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1916.499747][T22721] R13: 00007f9686fe6038 R14: 00007f9686fe5fa0 R15: 00007fff1fbee4d8 [ 1916.499764][T22721] [ 1917.279404][T22783] netlink: 'syz.4.57919': attribute type 4 has an invalid length. [ 1917.303027][T22783] netlink: 'syz.4.57919': attribute type 4 has an invalid length. [ 1930.878192][T23501] bridge0: port 1(bridge_slave_0) entered blocking state [ 1930.892735][T23501] bridge0: port 1(bridge_slave_0) entered disabled state [ 1930.910270][T23501] bridge_slave_0: entered allmulticast mode [ 1930.923394][T23501] bridge_slave_0: entered promiscuous mode [ 1930.934837][T23501] bridge0: port 2(bridge_slave_1) entered blocking state [ 1930.963682][T23501] bridge0: port 2(bridge_slave_1) entered disabled state [ 1930.985155][T23501] bridge_slave_1: entered allmulticast mode [ 1931.006226][T23501] bridge_slave_1: entered promiscuous mode [ 1931.013100][ T46] bridge_slave_1: left allmulticast mode [ 1931.019176][ T46] bridge_slave_1: left promiscuous mode [ 1931.024949][ T46] bridge0: port 2(bridge_slave_1) entered disabled state [ 1931.033024][ T46] bridge_slave_0: left allmulticast mode [ 1931.057377][ T46] bridge_slave_0: left promiscuous mode [ 1931.071617][ T46] bridge0: port 1(bridge_slave_0) entered disabled state [ 1931.215030][ T46] veth1_macvtap: left promiscuous mode [ 1931.220816][ T46] veth0_vlan: left promiscuous mode [ 1931.429239][T23501] bridge0: port 2(bridge_slave_1) entered blocking state [ 1931.436341][T23501] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1931.443680][T23501] bridge0: port 1(bridge_slave_0) entered blocking state [ 1931.450759][T23501] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1931.521325][ T8593] bridge0: port 2(bridge_slave_1) entered disabled state [ 1931.544862][T19925] bridge0: port 2(bridge_slave_1) entered blocking state [ 1931.551953][T19925] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1931.620774][T23501] veth0_vlan: entered promiscuous mode [ 1931.657717][T23501] veth1_macvtap: entered promiscuous mode [ 1936.220310][T23801] bridge0: port 1(bridge_slave_0) entered blocking state [ 1936.227377][T23801] bridge0: port 1(bridge_slave_0) entered disabled state [ 1936.248260][T23801] bridge_slave_0: entered allmulticast mode [ 1936.268566][T23801] bridge_slave_0: entered promiscuous mode [ 1936.275276][T23801] bridge0: port 2(bridge_slave_1) entered blocking state [ 1936.302651][T23801] bridge0: port 2(bridge_slave_1) entered disabled state [ 1936.322913][T23801] bridge_slave_1: entered allmulticast mode [ 1936.331129][T23801] bridge_slave_1: entered promiscuous mode [ 1936.423108][ T46] bridge_slave_1: left allmulticast mode [ 1936.440268][ T46] bridge_slave_1: left promiscuous mode [ 1936.456900][ T46] bridge0: port 2(bridge_slave_1) entered disabled state [ 1936.480788][ T46] bridge_slave_0: left allmulticast mode [ 1936.486774][ T46] bridge_slave_0: left promiscuous mode [ 1936.493082][ T46] bridge0: port 1(bridge_slave_0) entered disabled state [ 1936.648716][T23801] bridge0: port 2(bridge_slave_1) entered blocking state [ 1936.655821][T23801] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1936.663147][T23801] bridge0: port 1(bridge_slave_0) entered blocking state [ 1936.670305][T23801] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1936.696352][ T46] veth1_macvtap: left promiscuous mode [ 1936.717189][ T46] veth0_vlan: left promiscuous mode [ 1936.794920][T23866] netlink: 148 bytes leftover after parsing attributes in process `syz.4.58431'. [ 1936.864363][T19925] bridge0: port 1(bridge_slave_0) entered disabled state [ 1936.878133][T19925] bridge0: port 2(bridge_slave_1) entered disabled state [ 1936.904064][ T8593] bridge0: port 1(bridge_slave_0) entered blocking state [ 1936.911182][ T8593] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1936.929490][T19925] bridge0: port 2(bridge_slave_1) entered blocking state [ 1936.936807][T19925] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1936.960675][T23883] FAULT_INJECTION: forcing a failure. [ 1936.960675][T23883] name failslab, interval 1, probability 0, space 0, times 0 [ 1936.993483][T23883] CPU: 0 UID: 0 PID: 23883 Comm: syz.1.58440 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1936.993519][T23883] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1936.993532][T23883] Call Trace: [ 1936.993539][T23883] [ 1936.993547][T23883] __dump_stack+0x21/0x30 [ 1936.993576][T23883] dump_stack_lvl+0x10c/0x190 [ 1936.993600][T23883] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1936.993621][T23883] ? selinux_file_permission+0x309/0xb30 [ 1936.993641][T23883] dump_stack+0x19/0x20 [ 1936.993661][T23883] should_fail_ex+0x3d9/0x530 [ 1936.993678][T23883] should_failslab+0xac/0x100 [ 1936.993698][T23883] kmem_cache_alloc_noprof+0x42/0x430 [ 1936.993714][T23883] ? getname_flags+0xc6/0x710 [ 1936.993732][T23883] getname_flags+0xc6/0x710 [ 1936.993749][T23883] user_path_at+0x2b/0x60 [ 1936.993767][T23883] do_utimes+0x135/0x2a0 [ 1936.993790][T23883] ? __kasan_check_write+0x18/0x20 [ 1936.993814][T23883] ? mutex_unlock+0x8b/0x240 [ 1936.993831][T23883] ? __cfi_do_utimes+0x10/0x10 [ 1936.993852][T23883] ? __fget_files+0x2c5/0x340 [ 1936.993872][T23883] __x64_sys_utimes+0x143/0x220 [ 1936.993896][T23883] ? __cfi___x64_sys_utimes+0x10/0x10 [ 1936.993921][T23883] ? __kasan_check_read+0x15/0x20 [ 1936.993946][T23883] x64_sys_call+0x2b54/0x2ee0 [ 1936.993971][T23883] do_syscall_64+0x58/0xf0 [ 1936.993993][T23883] ? clear_bhb_loop+0x50/0xa0 [ 1936.994012][T23883] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1936.994030][T23883] RIP: 0033:0x7f25d878f6c9 [ 1936.994052][T23883] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1936.994069][T23883] RSP: 002b:00007f25d9670038 EFLAGS: 00000246 ORIG_RAX: 00000000000000eb [ 1936.994089][T23883] RAX: ffffffffffffffda RBX: 00007f25d89e5fa0 RCX: 00007f25d878f6c9 [ 1936.994103][T23883] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1936.994115][T23883] RBP: 00007f25d9670090 R08: 0000000000000000 R09: 0000000000000000 [ 1936.994128][T23883] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1936.994139][T23883] R13: 00007f25d89e6038 R14: 00007f25d89e5fa0 R15: 00007ffd7ee64838 [ 1936.994155][T23883] [ 1937.112072][T23801] veth0_vlan: entered promiscuous mode [ 1937.333486][T23801] veth1_macvtap: entered promiscuous mode [ 1939.141175][ T46] bridge_slave_1: left allmulticast mode [ 1939.146871][ T46] bridge_slave_1: left promiscuous mode [ 1939.158206][ T46] bridge0: port 2(bridge_slave_1) entered disabled state [ 1939.176702][ T46] bridge_slave_0: left allmulticast mode [ 1939.187924][ T46] bridge_slave_0: left promiscuous mode [ 1939.193606][ T46] bridge0: port 1(bridge_slave_0) entered disabled state [ 1939.346369][ T46] veth1_macvtap: left promiscuous mode [ 1939.358095][ T46] veth0_vlan: left promiscuous mode [ 1939.567045][T23973] bridge0: port 1(bridge_slave_0) entered blocking state [ 1939.587908][T23973] bridge0: port 1(bridge_slave_0) entered disabled state [ 1939.605530][T23973] bridge_slave_0: entered allmulticast mode [ 1939.615684][T23973] bridge_slave_0: entered promiscuous mode [ 1939.629054][T23973] bridge0: port 2(bridge_slave_1) entered blocking state [ 1939.646340][T23973] bridge0: port 2(bridge_slave_1) entered disabled state [ 1939.666631][T23973] bridge_slave_1: entered allmulticast mode [ 1939.673277][T23973] bridge_slave_1: entered promiscuous mode [ 1939.848250][T23973] bridge0: port 2(bridge_slave_1) entered blocking state [ 1939.855358][T23973] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1939.862696][T23973] bridge0: port 1(bridge_slave_0) entered blocking state [ 1939.869761][T23973] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1939.951612][T23877] bridge0: port 1(bridge_slave_0) entered disabled state [ 1939.959334][T23877] bridge0: port 2(bridge_slave_1) entered disabled state [ 1939.989918][T23877] bridge0: port 1(bridge_slave_0) entered blocking state [ 1939.996985][T23877] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1940.038210][T23877] bridge0: port 2(bridge_slave_1) entered blocking state [ 1940.045309][T23877] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1940.115495][T23973] veth0_vlan: entered promiscuous mode [ 1940.170468][T23973] veth1_macvtap: entered promiscuous mode [ 1941.675595][T19925] bridge_slave_1: left allmulticast mode [ 1941.687801][T19925] bridge_slave_1: left promiscuous mode [ 1941.693467][T19925] bridge0: port 2(bridge_slave_1) entered disabled state [ 1941.716540][T19925] bridge_slave_0: left allmulticast mode [ 1941.722738][T19925] bridge_slave_0: left promiscuous mode [ 1941.728793][T19925] bridge0: port 1(bridge_slave_0) entered disabled state [ 1941.884198][T19925] veth1_macvtap: left promiscuous mode [ 1941.890119][T19925] veth0_vlan: left promiscuous mode [ 1942.002115][T24120] bridge0: port 1(bridge_slave_0) entered blocking state [ 1942.013905][T24120] bridge0: port 1(bridge_slave_0) entered disabled state [ 1942.021275][T24120] bridge_slave_0: entered allmulticast mode [ 1942.028519][T24120] bridge_slave_0: entered promiscuous mode [ 1942.036502][T24120] bridge0: port 2(bridge_slave_1) entered blocking state [ 1942.044041][T24120] bridge0: port 2(bridge_slave_1) entered disabled state [ 1942.051218][T24120] bridge_slave_1: entered allmulticast mode [ 1942.057770][T24120] bridge_slave_1: entered promiscuous mode [ 1942.210836][T24120] bridge0: port 2(bridge_slave_1) entered blocking state [ 1942.217932][T24120] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1942.225279][T24120] bridge0: port 1(bridge_slave_0) entered blocking state [ 1942.232372][T24120] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1942.308765][T19925] bridge0: port 1(bridge_slave_0) entered disabled state [ 1942.316236][T19925] bridge0: port 2(bridge_slave_1) entered disabled state [ 1942.328759][ T46] bridge0: port 1(bridge_slave_0) entered blocking state [ 1942.335846][ T46] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1942.378404][ T46] bridge0: port 2(bridge_slave_1) entered blocking state [ 1942.385489][ T46] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1942.442083][T24120] veth0_vlan: entered promiscuous mode [ 1942.455513][T24120] veth1_macvtap: entered promiscuous mode [ 1943.162284][T24219] FAULT_INJECTION: forcing a failure. [ 1943.162284][T24219] name failslab, interval 1, probability 0, space 0, times 0 [ 1943.197684][T24219] CPU: 0 UID: 0 PID: 24219 Comm: syz.3.58591 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1943.197719][T24219] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1943.197732][T24219] Call Trace: [ 1943.197739][T24219] [ 1943.197748][T24219] __dump_stack+0x21/0x30 [ 1943.197777][T24219] dump_stack_lvl+0x10c/0x190 [ 1943.197797][T24219] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1943.197819][T24219] ? __kasan_check_write+0x18/0x20 [ 1943.197845][T24219] ? proc_fail_nth_write+0x17e/0x210 [ 1943.197869][T24219] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 1943.197893][T24219] dump_stack+0x19/0x20 [ 1943.197915][T24219] should_fail_ex+0x3d9/0x530 [ 1943.197935][T24219] should_failslab+0xac/0x100 [ 1943.197955][T24219] kmem_cache_alloc_noprof+0x42/0x430 [ 1943.197973][T24219] ? getname_flags+0xc6/0x710 [ 1943.197993][T24219] getname_flags+0xc6/0x710 [ 1943.198011][T24219] ? build_open_flags+0x487/0x600 [ 1943.198034][T24219] getname+0x1b/0x30 [ 1943.198050][T24219] do_sys_openat2+0xcb/0x1c0 [ 1943.198073][T24219] ? fput+0x1a5/0x240 [ 1943.198094][T24219] ? do_sys_open+0x100/0x100 [ 1943.198116][T24219] ? ksys_write+0x1ef/0x250 [ 1943.198133][T24219] ? __cfi_ksys_write+0x10/0x10 [ 1943.198151][T24219] __x64_sys_openat+0x13a/0x170 [ 1943.198175][T24219] x64_sys_call+0xe69/0x2ee0 [ 1943.198199][T24219] do_syscall_64+0x58/0xf0 [ 1943.198222][T24219] ? clear_bhb_loop+0x50/0xa0 [ 1943.198242][T24219] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1943.198261][T24219] RIP: 0033:0x7f100578f6c9 [ 1943.198277][T24219] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1943.198294][T24219] RSP: 002b:00007f100668e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1943.198316][T24219] RAX: ffffffffffffffda RBX: 00007f10059e5fa0 RCX: 00007f100578f6c9 [ 1943.198339][T24219] RDX: 000000000000275a RSI: 0000200000000080 RDI: ffffffffffffff9c [ 1943.198353][T24219] RBP: 00007f100668e090 R08: 0000000000000000 R09: 0000000000000000 [ 1943.198366][T24219] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1943.198379][T24219] R13: 00007f10059e6038 R14: 00007f10059e5fa0 R15: 00007ffed78618b8 [ 1943.198396][T24219] [ 1943.876094][T24260] FAULT_INJECTION: forcing a failure. [ 1943.876094][T24260] name failslab, interval 1, probability 0, space 0, times 0 [ 1943.907662][T24260] CPU: 1 UID: 0 PID: 24260 Comm: syz.3.58610 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1943.907696][T24260] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1943.907709][T24260] Call Trace: [ 1943.907716][T24260] [ 1943.907724][T24260] __dump_stack+0x21/0x30 [ 1943.907758][T24260] dump_stack_lvl+0x10c/0x190 [ 1943.907782][T24260] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1943.907807][T24260] ? avc_has_perm+0x144/0x220 [ 1943.907833][T24260] dump_stack+0x19/0x20 [ 1943.907855][T24260] should_fail_ex+0x3d9/0x530 [ 1943.907875][T24260] should_failslab+0xac/0x100 [ 1943.907897][T24260] __kmalloc_cache_noprof+0x41/0x490 [ 1943.907916][T24260] ? vhost_task_create+0x101/0x350 [ 1943.907936][T24260] ? __cfi_kvm_nx_huge_page_recovery_worker+0x10/0x10 [ 1943.907958][T24260] vhost_task_create+0x101/0x350 [ 1943.907977][T24260] ? __cfi_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10 [ 1943.907999][T24260] ? __cfi_vhost_task_create+0x10/0x10 [ 1943.908019][T24260] ? __cfi_vhost_task_fn+0x10/0x10 [ 1943.908038][T24260] ? __kasan_check_write+0x18/0x20 [ 1943.908064][T24260] ? mutex_lock+0x92/0x1c0 [ 1943.908082][T24260] ? __cfi_mutex_lock+0x10/0x10 [ 1943.908099][T24260] ? kernel_text_address+0xa9/0xe0 [ 1943.908122][T24260] kvm_mmu_post_init_vm+0x156/0x2d0 [ 1943.908148][T24260] kvm_arch_vcpu_ioctl_run+0xd7/0x1aa0 [ 1943.908172][T24260] ? _parse_integer_limit+0x195/0x1e0 [ 1943.908199][T24260] ? __cfi_kvm_arch_vcpu_ioctl_run+0x10/0x10 [ 1943.908222][T24260] ? kstrtoull+0x13b/0x1e0 [ 1943.908239][T24260] ? kstrtouint+0x78/0xf0 [ 1943.908256][T24260] ? ioctl_has_perm+0x1aa/0x4d0 [ 1943.908276][T24260] ? __asan_memcpy+0x5a/0x80 [ 1943.908300][T24260] ? ioctl_has_perm+0x3e0/0x4d0 [ 1943.908321][T24260] ? has_cap_mac_admin+0xd0/0xd0 [ 1943.908343][T24260] ? __kasan_check_write+0x18/0x20 [ 1943.908368][T24260] ? mutex_lock_killable+0x92/0x1c0 [ 1943.908387][T24260] ? __cfi_mutex_lock_killable+0x10/0x10 [ 1943.908406][T24260] ? proc_fail_nth_write+0x17e/0x210 [ 1943.908430][T24260] kvm_vcpu_ioctl+0x96f/0xee0 [ 1943.908449][T24260] ? __cfi_kvm_vcpu_ioctl+0x10/0x10 [ 1943.908467][T24260] ? __cfi_vfs_write+0x10/0x10 [ 1943.908485][T24260] ? __kasan_check_write+0x18/0x20 [ 1943.908511][T24260] ? mutex_unlock+0x8b/0x240 [ 1943.908527][T24260] ? __cfi_mutex_unlock+0x10/0x10 [ 1943.908544][T24260] ? __fget_files+0x2c5/0x340 [ 1943.908564][T24260] ? __fget_files+0x2c5/0x340 [ 1943.908584][T24260] ? bpf_lsm_file_ioctl+0xd/0x20 [ 1943.908609][T24260] ? security_file_ioctl+0x34/0xd0 [ 1943.908629][T24260] ? __cfi_kvm_vcpu_ioctl+0x10/0x10 [ 1943.908646][T24260] __se_sys_ioctl+0x135/0x1b0 [ 1943.908666][T24260] __x64_sys_ioctl+0x7f/0xa0 [ 1943.908686][T24260] x64_sys_call+0x1878/0x2ee0 [ 1943.908712][T24260] do_syscall_64+0x58/0xf0 [ 1943.908734][T24260] ? clear_bhb_loop+0x50/0xa0 [ 1943.908755][T24260] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1943.908775][T24260] RIP: 0033:0x7f100578f6c9 [ 1943.908792][T24260] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1943.908810][T24260] RSP: 002b:00007f100668e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1943.908832][T24260] RAX: ffffffffffffffda RBX: 00007f10059e5fa0 RCX: 00007f100578f6c9 [ 1943.908847][T24260] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000009 [ 1943.908860][T24260] RBP: 00007f100668e090 R08: 0000000000000000 R09: 0000000000000000 [ 1943.908874][T24260] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1943.908887][T24260] R13: 00007f10059e6038 R14: 00007f10059e5fa0 R15: 00007ffed78618b8 [ 1943.908904][T24260] [ 1945.283083][T24370] FAULT_INJECTION: forcing a failure. [ 1945.283083][T24370] name failslab, interval 1, probability 0, space 0, times 0 [ 1945.296188][T24370] CPU: 1 UID: 0 PID: 24370 Comm: syz.4.58662 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1945.296220][T24370] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1945.296233][T24370] Call Trace: [ 1945.296240][T24370] [ 1945.296248][T24370] __dump_stack+0x21/0x30 [ 1945.296277][T24370] dump_stack_lvl+0x10c/0x190 [ 1945.296301][T24370] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1945.296325][T24370] ? __kasan_check_write+0x18/0x20 [ 1945.296351][T24370] ? proc_fail_nth_write+0x17e/0x210 [ 1945.296375][T24370] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 1945.296398][T24370] dump_stack+0x19/0x20 [ 1945.296421][T24370] should_fail_ex+0x3d9/0x530 [ 1945.296440][T24370] should_failslab+0xac/0x100 [ 1945.296470][T24370] kmem_cache_alloc_noprof+0x42/0x430 [ 1945.296488][T24370] ? getname_flags+0xc6/0x710 [ 1945.296507][T24370] getname_flags+0xc6/0x710 [ 1945.296525][T24370] ? build_open_flags+0x487/0x600 [ 1945.296549][T24370] getname+0x1b/0x30 [ 1945.296566][T24370] do_sys_openat2+0xcb/0x1c0 [ 1945.296588][T24370] ? fput+0x1a5/0x240 [ 1945.296608][T24370] ? do_sys_open+0x100/0x100 [ 1945.296630][T24370] ? ksys_write+0x1ef/0x250 [ 1945.296647][T24370] ? __cfi_ksys_write+0x10/0x10 [ 1945.296666][T24370] __x64_sys_openat+0x13a/0x170 [ 1945.296690][T24370] x64_sys_call+0xe69/0x2ee0 [ 1945.296715][T24370] do_syscall_64+0x58/0xf0 [ 1945.296737][T24370] ? clear_bhb_loop+0x50/0xa0 [ 1945.296755][T24370] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1945.296772][T24370] RIP: 0033:0x7fe06bb8f6c9 [ 1945.296786][T24370] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1945.296802][T24370] RSP: 002b:00007fe06c963038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1945.296821][T24370] RAX: ffffffffffffffda RBX: 00007fe06bde5fa0 RCX: 00007fe06bb8f6c9 [ 1945.296836][T24370] RDX: 000000000000275a RSI: 0000200000000080 RDI: ffffffffffffff9c [ 1945.296848][T24370] RBP: 00007fe06c963090 R08: 0000000000000000 R09: 0000000000000000 [ 1945.296861][T24370] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1945.296873][T24370] R13: 00007fe06bde6038 R14: 00007fe06bde5fa0 R15: 00007ffc7fbe42e8 [ 1945.296890][T24370] [ 1946.247243][T24442] netlink: 100 bytes leftover after parsing attributes in process `syz.3.58698'. [ 1947.187290][T24514] FAULT_INJECTION: forcing a failure. [ 1947.187290][T24514] name failslab, interval 1, probability 0, space 0, times 0 [ 1947.200170][T24514] CPU: 0 UID: 0 PID: 24514 Comm: syz.4.58731 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1947.200204][T24514] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1947.200217][T24514] Call Trace: [ 1947.200224][T24514] [ 1947.200232][T24514] __dump_stack+0x21/0x30 [ 1947.200261][T24514] dump_stack_lvl+0x10c/0x190 [ 1947.200290][T24514] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1947.200314][T24514] ? __kasan_check_write+0x18/0x20 [ 1947.200341][T24514] ? proc_fail_nth_write+0x17e/0x210 [ 1947.200365][T24514] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 1947.200388][T24514] dump_stack+0x19/0x20 [ 1947.200411][T24514] should_fail_ex+0x3d9/0x530 [ 1947.200431][T24514] should_failslab+0xac/0x100 [ 1947.200450][T24514] kmem_cache_alloc_noprof+0x42/0x430 [ 1947.200468][T24514] ? getname_flags+0xc6/0x710 [ 1947.200487][T24514] getname_flags+0xc6/0x710 [ 1947.200505][T24514] ? build_open_flags+0x487/0x600 [ 1947.200528][T24514] getname+0x1b/0x30 [ 1947.200545][T24514] do_sys_openat2+0xcb/0x1c0 [ 1947.200567][T24514] ? fput+0x1a5/0x240 [ 1947.200588][T24514] ? do_sys_open+0x100/0x100 [ 1947.200610][T24514] ? ksys_write+0x1ef/0x250 [ 1947.200627][T24514] ? __cfi_ksys_write+0x10/0x10 [ 1947.200646][T24514] __x64_sys_openat+0x13a/0x170 [ 1947.200669][T24514] x64_sys_call+0xe69/0x2ee0 [ 1947.200695][T24514] do_syscall_64+0x58/0xf0 [ 1947.200718][T24514] ? clear_bhb_loop+0x50/0xa0 [ 1947.200738][T24514] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1947.200759][T24514] RIP: 0033:0x7fe06bb8f6c9 [ 1947.200776][T24514] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1947.200793][T24514] RSP: 002b:00007fe06c963038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1947.200815][T24514] RAX: ffffffffffffffda RBX: 00007fe06bde5fa0 RCX: 00007fe06bb8f6c9 [ 1947.200830][T24514] RDX: 000000000000275a RSI: 0000200000000080 RDI: ffffffffffffff9c [ 1947.200844][T24514] RBP: 00007fe06c963090 R08: 0000000000000000 R09: 0000000000000000 [ 1947.200857][T24514] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1947.200870][T24514] R13: 00007fe06bde6038 R14: 00007fe06bde5fa0 R15: 00007ffc7fbe42e8 [ 1947.200887][T24514] [ 1947.531118][T24530] fuseblk: Unknown parameter 'ÝQ`b¸ðù½*XÔc‹Î©ÈŽ|ìÌÒ›)Eà.Z&+‚é# çvX›ò&/5øƒo¯jco–²zVû³×àþ%}†¬3®æ(M\' [ 1949.244388][T24730] FAULT_INJECTION: forcing a failure. [ 1949.244388][T24730] name failslab, interval 1, probability 0, space 0, times 0 [ 1949.257189][T24730] CPU: 1 UID: 0 PID: 24730 Comm: syz.3.58833 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1949.257222][T24730] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1949.257233][T24730] Call Trace: [ 1949.257239][T24730] [ 1949.257247][T24730] __dump_stack+0x21/0x30 [ 1949.257276][T24730] dump_stack_lvl+0x10c/0x190 [ 1949.257303][T24730] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1949.257324][T24730] ? __vma_start_write+0x110/0x110 [ 1949.257345][T24730] dump_stack+0x19/0x20 [ 1949.257367][T24730] should_fail_ex+0x3d9/0x530 [ 1949.257386][T24730] should_failslab+0xac/0x100 [ 1949.257406][T24730] kmem_cache_alloc_noprof+0x42/0x430 [ 1949.257424][T24730] ? __khugepaged_enter+0x78/0x330 [ 1949.257445][T24730] __khugepaged_enter+0x78/0x330 [ 1949.257467][T24730] khugepaged_enter_vma+0x3ff/0x430 [ 1949.257489][T24730] hugepage_madvise+0xaf/0xd0 [ 1949.257508][T24730] madvise_vma_behavior+0x6b4/0x2d40 [ 1949.257531][T24730] ? __cfi_madvise_vma_behavior+0x10/0x10 [ 1949.257552][T24730] ? is_bpf_text_address+0x17b/0x1a0 [ 1949.257570][T24730] ? kernel_text_address+0xa9/0xe0 [ 1949.257589][T24730] ? __kernel_text_address+0x11/0x40 [ 1949.257608][T24730] ? unwind_get_return_address+0x51/0x90 [ 1949.257628][T24730] ? __cfi_stack_trace_consume_entry+0x10/0x10 [ 1949.257654][T24730] ? arch_stack_walk+0x10b/0x170 [ 1949.257671][T24730] ? _parse_integer_limit+0x195/0x1e0 [ 1949.257699][T24730] ? mt_find+0x87b/0xb50 [ 1949.257718][T24730] ? __cfi_mt_find+0x10/0x10 [ 1949.257736][T24730] ? mas_prev+0x5f/0xa0 [ 1949.257754][T24730] ? find_vma_prev+0xfd/0x170 [ 1949.257771][T24730] ? __cfi_find_vma_prev+0x10/0x10 [ 1949.257788][T24730] ? find_vma+0xcd/0x110 [ 1949.257805][T24730] ? __cfi_find_vma+0x10/0x10 [ 1949.257822][T24730] ? bpf_lsm_file_permission+0xd/0x20 [ 1949.257847][T24730] madvise_walk_vmas+0x3ec/0x700 [ 1949.257878][T24730] ? __cfi_madvise_vma_behavior+0x10/0x10 [ 1949.257903][T24730] ? down_write_killable+0xe9/0x2d0 [ 1949.257922][T24730] ? madvise_set_anon_name+0x610/0x610 [ 1949.257947][T24730] ? __asan_memset+0x39/0x50 [ 1949.257963][T24730] ? blk_start_plug+0x72/0x1c0 [ 1949.257982][T24730] do_madvise+0x5c0/0xb70 [ 1949.258004][T24730] ? __cfi_do_madvise+0x10/0x10 [ 1949.258024][T24730] ? ksys_write+0x1ef/0x250 [ 1949.258040][T24730] ? __cfi_ksys_write+0x10/0x10 [ 1949.258056][T24730] __x64_sys_madvise+0xae/0xc0 [ 1949.258078][T24730] x64_sys_call+0x20c3/0x2ee0 [ 1949.258103][T24730] do_syscall_64+0x58/0xf0 [ 1949.258126][T24730] ? clear_bhb_loop+0x50/0xa0 [ 1949.258154][T24730] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1949.258174][T24730] RIP: 0033:0x7f100578f6c9 [ 1949.258191][T24730] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1949.258207][T24730] RSP: 002b:00007f100668e038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 1949.258226][T24730] RAX: ffffffffffffffda RBX: 00007f10059e5fa0 RCX: 00007f100578f6c9 [ 1949.258241][T24730] RDX: 000000000000000e RSI: 0000000000800000 RDI: 0000200000000000 [ 1949.258253][T24730] RBP: 00007f100668e090 R08: 0000000000000000 R09: 0000000000000000 [ 1949.258265][T24730] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1949.258276][T24730] R13: 00007f10059e6038 R14: 00007f10059e5fa0 R15: 00007ffed78618b8 [ 1949.258291][T24730] [ 1950.244675][T24794] FAULT_INJECTION: forcing a failure. [ 1950.244675][T24794] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1950.294639][T24794] CPU: 1 UID: 0 PID: 24794 Comm: syz.2.58863 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1950.294674][T24794] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1950.294687][T24794] Call Trace: [ 1950.294694][T24794] [ 1950.294702][T24794] __dump_stack+0x21/0x30 [ 1950.294733][T24794] dump_stack_lvl+0x10c/0x190 [ 1950.294757][T24794] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1950.294781][T24794] ? __x64_sys_openat+0x13a/0x170 [ 1950.294813][T24794] ? do_syscall_64+0x58/0xf0 [ 1950.294836][T24794] ? entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1950.294858][T24794] dump_stack+0x19/0x20 [ 1950.294880][T24794] should_fail_ex+0x3d9/0x530 [ 1950.294900][T24794] should_fail_alloc_page+0xeb/0x110 [ 1950.294922][T24794] __alloc_pages_noprof+0x19b/0x7b0 [ 1950.294947][T24794] ? avc_has_perm_noaudit+0x286/0x360 [ 1950.294971][T24794] ? __cfi___alloc_pages_noprof+0x10/0x10 [ 1950.294996][T24794] ? avc_has_perm+0x144/0x220 [ 1950.295020][T24794] ? kasan_save_alloc_info+0x40/0x50 [ 1950.295046][T24794] __folio_alloc_noprof+0x14/0x80 [ 1950.295069][T24794] shmem_alloc_and_add_folio+0x452/0x1050 [ 1950.295094][T24794] ? put_swap_device+0x130/0x130 [ 1950.295114][T24794] ? shmem_huge_global_enabled+0x2da/0x360 [ 1950.295135][T24794] ? shmem_allowable_huge_orders+0x1f7/0x430 [ 1950.295155][T24794] ? is_bpf_text_address+0x17b/0x1a0 [ 1950.295177][T24794] shmem_get_folio_gfp+0x5f0/0x1380 [ 1950.295199][T24794] ? shmem_get_folio+0xc0/0xc0 [ 1950.295219][T24794] ? inode_to_bdi+0x6d/0x100 [ 1950.295244][T24794] shmem_write_begin+0xf4/0x270 [ 1950.295266][T24794] generic_perform_write+0x330/0x960 [ 1950.295293][T24794] ? __cfi_generic_perform_write+0x10/0x10 [ 1950.295318][T24794] ? down_write+0xe9/0x2a0 [ 1950.295337][T24794] ? file_update_time+0xa3/0x220 [ 1950.295361][T24794] shmem_file_write_iter+0x105/0x130 [ 1950.295385][T24794] vfs_write+0x718/0xf30 [ 1950.295399][T24794] ? __cfi_shmem_file_write_iter+0x10/0x10 [ 1950.295419][T24794] ? __cfi_vfs_write+0x10/0x10 [ 1950.295432][T24794] ? __cfi_mutex_lock+0x10/0x10 [ 1950.295447][T24794] ksys_write+0x141/0x250 [ 1950.295461][T24794] ? __cfi_ksys_write+0x10/0x10 [ 1950.295474][T24794] ? __kasan_check_read+0x15/0x20 [ 1950.295494][T24794] __x64_sys_write+0x7f/0x90 [ 1950.295508][T24794] x64_sys_call+0x271c/0x2ee0 [ 1950.295528][T24794] do_syscall_64+0x58/0xf0 [ 1950.295547][T24794] ? clear_bhb_loop+0x50/0xa0 [ 1950.295564][T24794] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1950.295582][T24794] RIP: 0033:0x7fe4dc18f6c9 [ 1950.295599][T24794] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1950.295615][T24794] RSP: 002b:00007fe4dd0e5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1950.295636][T24794] RAX: ffffffffffffffda RBX: 00007fe4dc3e5fa0 RCX: 00007fe4dc18f6c9 [ 1950.295652][T24794] RDX: 0000000000000118 RSI: 0000200000000340 RDI: 0000000000000008 [ 1950.295665][T24794] RBP: 00007fe4dd0e5090 R08: 0000000000000000 R09: 0000000000000000 [ 1950.295678][T24794] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1950.295690][T24794] R13: 00007fe4dc3e6038 R14: 00007fe4dc3e5fa0 R15: 00007fff140907d8 [ 1950.295706][T24794] [ 1951.093956][T24819] FAULT_INJECTION: forcing a failure. [ 1951.093956][T24819] name failslab, interval 1, probability 0, space 0, times 0 [ 1951.147251][T24819] CPU: 0 UID: 0 PID: 24819 Comm: syz.1.58872 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1951.147284][T24819] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1951.147295][T24819] Call Trace: [ 1951.147302][T24819] [ 1951.147309][T24819] __dump_stack+0x21/0x30 [ 1951.147338][T24819] dump_stack_lvl+0x10c/0x190 [ 1951.147362][T24819] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1951.147385][T24819] ? __kasan_check_write+0x18/0x20 [ 1951.147412][T24819] ? proc_fail_nth_write+0x17e/0x210 [ 1951.147436][T24819] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 1951.147460][T24819] dump_stack+0x19/0x20 [ 1951.147482][T24819] should_fail_ex+0x3d9/0x530 [ 1951.147502][T24819] should_failslab+0xac/0x100 [ 1951.147523][T24819] kmem_cache_alloc_noprof+0x42/0x430 [ 1951.147540][T24819] ? getname_flags+0xc6/0x710 [ 1951.147560][T24819] getname_flags+0xc6/0x710 [ 1951.147578][T24819] ? build_open_flags+0x487/0x600 [ 1951.147601][T24819] getname+0x1b/0x30 [ 1951.147617][T24819] do_sys_openat2+0xcb/0x1c0 [ 1951.147639][T24819] ? fput+0x1a5/0x240 [ 1951.147660][T24819] ? do_sys_open+0x100/0x100 [ 1951.147682][T24819] ? ksys_write+0x1ef/0x250 [ 1951.147698][T24819] ? __cfi_ksys_write+0x10/0x10 [ 1951.147716][T24819] __x64_sys_openat+0x13a/0x170 [ 1951.147740][T24819] x64_sys_call+0xe69/0x2ee0 [ 1951.147764][T24819] do_syscall_64+0x58/0xf0 [ 1951.147785][T24819] ? clear_bhb_loop+0x50/0xa0 [ 1951.147806][T24819] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1951.147827][T24819] RIP: 0033:0x7f25d878f6c9 [ 1951.147843][T24819] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1951.147860][T24819] RSP: 002b:00007f25d9670038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1951.147881][T24819] RAX: ffffffffffffffda RBX: 00007f25d89e5fa0 RCX: 00007f25d878f6c9 [ 1951.147896][T24819] RDX: 000000000000275a RSI: 0000200000000280 RDI: ffffffffffffff9c [ 1951.147910][T24819] RBP: 00007f25d9670090 R08: 0000000000000000 R09: 0000000000000000 [ 1951.147923][T24819] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1951.147935][T24819] R13: 00007f25d89e6038 R14: 00007f25d89e5fa0 R15: 00007ffd7ee64838 [ 1951.147952][T24819] [ 1952.514675][T24868] FAULT_INJECTION: forcing a failure. [ 1952.514675][T24868] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1952.527878][T24868] CPU: 0 UID: 0 PID: 24868 Comm: syz.2.58894 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1952.527911][T24868] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1952.527923][T24868] Call Trace: [ 1952.527930][T24868] [ 1952.527938][T24868] __dump_stack+0x21/0x30 [ 1952.527967][T24868] dump_stack_lvl+0x10c/0x190 [ 1952.527991][T24868] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1952.528015][T24868] ? kstrtoull+0x13b/0x1e0 [ 1952.528033][T24868] dump_stack+0x19/0x20 [ 1952.528055][T24868] should_fail_ex+0x3d9/0x530 [ 1952.528075][T24868] should_fail+0xf/0x20 [ 1952.528092][T24868] should_fail_usercopy+0x1e/0x30 [ 1952.528112][T24868] _copy_from_user+0x22/0xb0 [ 1952.528134][T24868] ___sys_sendmsg+0x159/0x2a0 [ 1952.528161][T24868] ? __sys_sendmsg+0x280/0x280 [ 1952.528186][T24868] ? proc_fail_nth_write+0x17e/0x210 [ 1952.528210][T24868] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 1952.528239][T24868] __x64_sys_sendmsg+0x1eb/0x2c0 [ 1952.528264][T24868] ? fput+0x1a5/0x240 [ 1952.528286][T24868] ? __cfi___x64_sys_sendmsg+0x10/0x10 [ 1952.528311][T24868] ? ksys_write+0x1ef/0x250 [ 1952.528330][T24868] ? __kasan_check_read+0x15/0x20 [ 1952.528357][T24868] x64_sys_call+0x2a4c/0x2ee0 [ 1952.528383][T24868] do_syscall_64+0x58/0xf0 [ 1952.528405][T24868] ? clear_bhb_loop+0x50/0xa0 [ 1952.528426][T24868] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1952.528445][T24868] RIP: 0033:0x7fe4dc18f6c9 [ 1952.528462][T24868] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1952.528477][T24868] RSP: 002b:00007fe4dd0e5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1952.528499][T24868] RAX: ffffffffffffffda RBX: 00007fe4dc3e5fa0 RCX: 00007fe4dc18f6c9 [ 1952.528514][T24868] RDX: 0000000000000040 RSI: 0000200000000340 RDI: 0000000000000007 [ 1952.528527][T24868] RBP: 00007fe4dd0e5090 R08: 0000000000000000 R09: 0000000000000000 [ 1952.528540][T24868] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1952.528553][T24868] R13: 00007fe4dc3e6038 R14: 00007fe4dc3e5fa0 R15: 00007fff140907d8 [ 1952.528571][T24868] [ 1952.553175][ T36] audit: type=1400 audit(1763413306.943:1393): avc: denied { create } for pid=24869 comm="syz.2.58897" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1 [ 1952.803648][T24883] FAULT_INJECTION: forcing a failure. [ 1952.803648][T24883] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1952.817357][T24883] CPU: 0 UID: 0 PID: 24883 Comm: syz.2.58902 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1952.817379][T24883] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1952.817386][T24883] Call Trace: [ 1952.817390][T24883] [ 1952.817395][T24883] __dump_stack+0x21/0x30 [ 1952.817414][T24883] dump_stack_lvl+0x10c/0x190 [ 1952.817427][T24883] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1952.817440][T24883] ? __kasan_check_read+0x15/0x20 [ 1952.817457][T24883] dump_stack+0x19/0x20 [ 1952.817468][T24883] should_fail_ex+0x3d9/0x530 [ 1952.817479][T24883] should_fail+0xf/0x20 [ 1952.817489][T24883] should_fail_usercopy+0x1e/0x30 [ 1952.817499][T24883] __kvm_read_guest_page+0x177/0x210 [ 1952.817511][T24883] kvm_vcpu_read_guest_page+0x31a/0x400 [ 1952.817521][T24883] kvm_fetch_guest_virt+0x146/0x190 [ 1952.817536][T24883] ? __cfi_kvm_fetch_guest_virt+0x10/0x10 [ 1952.817549][T24883] __do_insn_fetch_bytes+0x321/0x730 [ 1952.817561][T24883] ? x86_decode_insn+0x4fb0/0x4fb0 [ 1952.817570][T24883] ? _raw_spin_lock+0x8c/0x120 [ 1952.817588][T24883] ? tdp_iter_restart+0x1c4/0x360 [ 1952.817607][T24883] ? kvm_tdp_mmu_fast_pf_get_last_sptep+0x290/0x290 [ 1952.817628][T24883] ? tdp_iter_next+0x362/0xa30 [ 1952.817646][T24883] x86_decode_insn+0x33b/0x4fb0 [ 1952.817663][T24883] ? trace_mark_mmio_spte+0x22/0x130 [ 1952.817681][T24883] ? __cfi_x86_decode_insn+0x10/0x10 [ 1952.817691][T24883] ? __kasan_check_write+0x18/0x20 [ 1952.817704][T24883] ? vmx_read_guest_seg_ar+0x1c8/0x350 [ 1952.817717][T24883] ? __asan_memset+0x39/0x50 [ 1952.817725][T24883] ? init_decode_cache+0x7c/0x90 [ 1952.817735][T24883] ? init_emulate_ctxt+0x410/0x540 [ 1952.817747][T24883] ? kvm_inject_realmode_interrupt+0x2e0/0x2e0 [ 1952.817758][T24883] ? kvm_mmu_do_page_fault+0x4b0/0x5f0 [ 1952.817770][T24883] x86_decode_emulated_instruction+0x66/0x190 [ 1952.817782][T24883] x86_emulate_instruction+0x2d3/0x1870 [ 1952.817793][T24883] ? kvm_multiple_exception+0x6d8/0xad0 [ 1952.817806][T24883] kvm_mmu_page_fault+0x336/0x970 [ 1952.817818][T24883] handle_ept_violation+0x21c/0x440 [ 1952.817828][T24883] ? vmx_vcpu_run+0x1100/0x2000 [ 1952.817841][T24883] ? __cfi_handle_ept_violation+0x10/0x10 [ 1952.817852][T24883] vmx_handle_exit+0x12c2/0x1b40 [ 1952.817864][T24883] ? kvm_deliver_exception_payload+0xd7/0x200 [ 1952.817876][T24883] ? __cfi_vmx_vcpu_run+0x10/0x10 [ 1952.817889][T24883] ? vmx_handle_exit_irqoff+0xe9/0x7a0 [ 1952.817904][T24883] vcpu_run+0x4bd0/0x7830 [ 1952.817932][T24883] ? x64_sys_call+0xe69/0x2ee0 [ 1952.817964][T24883] ? signal_pending+0xc0/0xc0 [ 1952.817976][T24883] ? __kasan_check_write+0x18/0x20 [ 1952.817990][T24883] ? xfd_validate_state+0x68/0x150 [ 1952.818003][T24883] ? fpu_swap_kvm_fpstate+0x93/0x5f0 [ 1952.818013][T24883] ? __kasan_check_write+0x18/0x20 [ 1952.818027][T24883] ? fpregs_mark_activate+0x69/0x160 [ 1952.818038][T24883] ? fpu_swap_kvm_fpstate+0x44d/0x5f0 [ 1952.818048][T24883] ? fpu_swap_kvm_fpstate+0x93/0x5f0 [ 1952.818059][T24883] kvm_arch_vcpu_ioctl_run+0x101a/0x1aa0 [ 1952.818073][T24883] ? __cfi_kvm_arch_vcpu_ioctl_run+0x10/0x10 [ 1952.818085][T24883] ? kstrtoull+0x13b/0x1e0 [ 1952.818095][T24883] ? kstrtouint+0x78/0xf0 [ 1952.818104][T24883] ? ioctl_has_perm+0x1aa/0x4d0 [ 1952.818116][T24883] ? __asan_memcpy+0x5a/0x80 [ 1952.818125][T24883] ? ioctl_has_perm+0x3e0/0x4d0 [ 1952.818137][T24883] ? has_cap_mac_admin+0xd0/0xd0 [ 1952.818148][T24883] ? __kasan_check_write+0x18/0x20 [ 1952.818162][T24883] ? mutex_lock_killable+0x92/0x1c0 [ 1952.818172][T24883] ? __cfi_mutex_lock_killable+0x10/0x10 [ 1952.818182][T24883] ? proc_fail_nth_write+0x17e/0x210 [ 1952.818195][T24883] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 1952.818208][T24883] kvm_vcpu_ioctl+0x96f/0xee0 [ 1952.818217][T24883] ? __cfi_kvm_vcpu_ioctl+0x10/0x10 [ 1952.818227][T24883] ? __cfi_vfs_write+0x10/0x10 [ 1952.818236][T24883] ? __kasan_check_write+0x18/0x20 [ 1952.818250][T24883] ? mutex_unlock+0x8b/0x240 [ 1952.818258][T24883] ? __cfi_mutex_unlock+0x10/0x10 [ 1952.818267][T24883] ? __fget_files+0x2c5/0x340 [ 1952.818278][T24883] ? __fget_files+0x2c5/0x340 [ 1952.818288][T24883] ? bpf_lsm_file_ioctl+0xd/0x20 [ 1952.818302][T24883] ? security_file_ioctl+0x34/0xd0 [ 1952.818313][T24883] ? __cfi_kvm_vcpu_ioctl+0x10/0x10 [ 1952.818322][T24883] __se_sys_ioctl+0x135/0x1b0 [ 1952.818333][T24883] __x64_sys_ioctl+0x7f/0xa0 [ 1952.818343][T24883] x64_sys_call+0x1878/0x2ee0 [ 1952.818357][T24883] do_syscall_64+0x58/0xf0 [ 1952.818369][T24883] ? clear_bhb_loop+0x50/0xa0 [ 1952.818381][T24883] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1952.818392][T24883] RIP: 0033:0x7fe4dc18f6c9 [ 1952.818402][T24883] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1952.818411][T24883] RSP: 002b:00007fe4dd0e5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1952.818424][T24883] RAX: ffffffffffffffda RBX: 00007fe4dc3e5fa0 RCX: 00007fe4dc18f6c9 [ 1952.818432][T24883] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000009 [ 1952.818439][T24883] RBP: 00007fe4dd0e5090 R08: 0000000000000000 R09: 0000000000000000 [ 1952.818446][T24883] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1952.818452][T24883] R13: 00007fe4dc3e6038 R14: 00007fe4dc3e5fa0 R15: 00007fff140907d8 [ 1952.818460][T24883] [ 1953.502307][T24895] netlink: 'syz.2.58907': attribute type 4 has an invalid length. [ 1953.726576][T24917] FAULT_INJECTION: forcing a failure. [ 1953.726576][T24917] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1953.739975][T24917] CPU: 1 UID: 0 PID: 24917 Comm: syz.4.58916 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1953.740004][T24917] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1953.740015][T24917] Call Trace: [ 1953.740021][T24917] [ 1953.740029][T24917] __dump_stack+0x21/0x30 [ 1953.740060][T24917] dump_stack_lvl+0x10c/0x190 [ 1953.740080][T24917] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1953.740100][T24917] ? selinux_file_open+0x457/0x610 [ 1953.740121][T24917] dump_stack+0x19/0x20 [ 1953.740141][T24917] should_fail_ex+0x3d9/0x530 [ 1953.740157][T24917] should_fail_alloc_page+0xeb/0x110 [ 1953.740176][T24917] __alloc_pages_noprof+0x19b/0x7b0 [ 1953.740198][T24917] ? __cfi___alloc_pages_noprof+0x10/0x10 [ 1953.740219][T24917] ? is_bpf_text_address+0x17b/0x1a0 [ 1953.740241][T24917] ? __kernel_text_address+0x11/0x40 [ 1953.740261][T24917] ? unwind_get_return_address+0x51/0x90 [ 1953.740275][T24917] ? __cfi_stack_trace_consume_entry+0x10/0x10 [ 1953.740290][T24917] ? arch_stack_walk+0x10b/0x170 [ 1953.740300][T24917] __folio_alloc_noprof+0x14/0x80 [ 1953.740312][T24917] folio_prealloc+0x46/0x240 [ 1953.740325][T24917] do_pte_missing+0x164c/0x4240 [ 1953.740337][T24917] ? _parse_integer+0x2e/0x40 [ 1953.740353][T24917] ? pte_marker_clear+0x1b0/0x1b0 [ 1953.740365][T24917] ? kstrtouint_from_user+0xfb/0x150 [ 1953.740374][T24917] ? __x64_sys_openat+0x13a/0x170 [ 1953.740387][T24917] ? x64_sys_call+0xe69/0x2ee0 [ 1953.740401][T24917] ? selinux_file_permission+0x309/0xb30 [ 1953.740412][T24917] ? __pte_offset_map+0x1b0/0x230 [ 1953.740426][T24917] ? pte_offset_map_rw_nolock+0xba/0x110 [ 1953.740440][T24917] handle_mm_fault+0x1166/0x1b90 [ 1953.740451][T24917] ? __cfi_handle_mm_fault+0x10/0x10 [ 1953.740462][T24917] ? lock_vma_under_rcu+0x49d/0x540 [ 1953.740474][T24917] ? __kasan_check_write+0x18/0x20 [ 1953.740489][T24917] do_user_addr_fault+0x96c/0x1200 [ 1953.740503][T24917] ? __cfi_ksys_write+0x10/0x10 [ 1953.740513][T24917] exc_page_fault+0x59/0xc0 [ 1953.740524][T24917] asm_exc_page_fault+0x2b/0x30 [ 1953.740539][T24917] RIP: 0033:0x7fe06ba60576 [ 1953.740550][T24917] Code: 00 00 00 00 41 57 31 c0 41 56 49 89 d6 41 55 49 89 f5 48 89 d6 41 54 49 89 fc 48 8d 3d 0c 2f 1b 00 55 53 48 81 ec 88 20 00 00 <48> 89 0c 24 4c 89 44 24 08 e8 ec d9 fe ff 4d 85 f6 0f 84 46 0a 00 [ 1953.740559][T24917] RSP: 002b:00007fe06c960f70 EFLAGS: 00010202 [ 1953.740570][T24917] RAX: 0000000000000000 RBX: 00007fe06bde5fa0 RCX: 0000000000000000 [ 1953.740578][T24917] RDX: 0000200000000740 RSI: 0000200000000740 RDI: 00007fe06bc13479 [ 1953.740586][T24917] RBP: 00007fe06c963090 R08: 00007fe06ba4e2f0 R09: 0000000000000000 [ 1953.740592][T24917] R10: 0000000000000000 R11: 0000200000000740 R12: 0000000000000000 [ 1953.740600][T24917] R13: 0000000000000071 R14: 0000200000000740 R15: 00007ffc7fbe42e8 [ 1953.740609][T24917] [ 1953.740634][T24917] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF [ 1954.077094][ T5775] usb 4-1: new high-speed USB device number 24 using dummy_hcd [ 1954.227118][ T5775] usb 4-1: Using ep0 maxpacket: 16 [ 1954.233520][ T5775] usb 4-1: config 1 contains an unexpected descriptor of type 0x1, skipping [ 1954.242306][ T5775] usb 4-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config [ 1954.252418][ T5775] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 1954.262800][ T5775] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 1954.267096][ T3311] usb 5-1: new high-speed USB device number 42 using dummy_hcd [ 1954.272062][ T5775] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1954.287611][ T5775] usb 4-1: Product: syz [ 1954.291778][ T5775] usb 4-1: Manufacturer: syz [ 1954.296402][ T5775] usb 4-1: SerialNumber: syz [ 1954.427065][ T3311] usb 5-1: Using ep0 maxpacket: 16 [ 1954.434615][ T3311] usb 5-1: config 1 contains an unexpected descriptor of type 0x1, skipping [ 1954.443885][ T3311] usb 5-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config [ 1954.471323][ T3311] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 1954.505521][ T3311] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 1954.505882][ T5775] usb 4-1: 0:2 : does not exist [ 1954.527161][T24934] capability: warning: `syz.2.58921' uses 32-bit capabilities (legacy support in use) [ 1954.530949][ T3311] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1954.556199][ T5775] usb 4-1: USB disconnect, device number 24 [ 1954.567995][T24934] can: request_module (can-proto-0) failed. [ 1954.571458][ T3311] usb 5-1: Product: syz [ 1954.582403][T24914] udevd[24914]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory [ 1954.607193][ T3311] usb 5-1: Manufacturer: syz [ 1954.612448][ T3311] usb 5-1: SerialNumber: syz [ 1954.830654][ T3311] usb 5-1: 0:2 : does not exist [ 1954.846158][ T3311] usb 5-1: USB disconnect, device number 42 [ 1954.861361][T24914] udevd[24914]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory [ 1955.288535][T24968] FAULT_INJECTION: forcing a failure. [ 1955.288535][T24968] name failslab, interval 1, probability 0, space 0, times 0 [ 1955.301249][T24968] CPU: 1 UID: 0 PID: 24968 Comm: syz.2.58939 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1955.301278][T24968] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1955.301286][T24968] Call Trace: [ 1955.301291][T24968] [ 1955.301297][T24968] __dump_stack+0x21/0x30 [ 1955.301315][T24968] dump_stack_lvl+0x10c/0x190 [ 1955.301328][T24968] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1955.301341][T24968] ? release_sock+0x171/0x1f0 [ 1955.301355][T24968] dump_stack+0x19/0x20 [ 1955.301367][T24968] should_fail_ex+0x3d9/0x530 [ 1955.301378][T24968] should_failslab+0xac/0x100 [ 1955.301391][T24968] kmem_cache_alloc_node_noprof+0x45/0x440 [ 1955.301401][T24968] ? netlink_data_ready+0x20/0x20 [ 1955.301415][T24968] ? __alloc_skb+0x10c/0x370 [ 1955.301428][T24968] __alloc_skb+0x10c/0x370 [ 1955.301439][T24968] netlink_alloc_large_skb+0xf7/0x1b0 [ 1955.301451][T24968] netlink_sendmsg+0x586/0xaf0 [ 1955.301466][T24968] ? __cfi_netlink_sendmsg+0x10/0x10 [ 1955.301486][T24968] ? __asan_memcpy+0x5a/0x80 [ 1955.301495][T24968] ? bpf_lsm_socket_sendmsg+0xd/0x20 [ 1955.301508][T24968] ? security_socket_sendmsg+0x33/0xd0 [ 1955.301518][T24968] sock_write_iter+0x49c/0x4f0 [ 1955.301528][T24968] ? __cfi_sock_write_iter+0x10/0x10 [ 1955.301540][T24968] do_iter_readv_writev+0x628/0x810 [ 1955.301552][T24968] ? vfs_iter_read+0x5f0/0x5f0 [ 1955.301562][T24968] ? bpf_lsm_file_permission+0xd/0x20 [ 1955.301576][T24968] vfs_writev+0x485/0xcf0 [ 1955.301588][T24968] ? do_writev+0x2d0/0x2d0 [ 1955.301598][T24968] ? vfs_write+0x93e/0xf30 [ 1955.301609][T24968] do_writev+0x14d/0x2d0 [ 1955.301621][T24968] ? vfs_readv+0xa50/0xa50 [ 1955.301631][T24968] ? fd_install+0x175/0x2e0 [ 1955.301642][T24968] ? __kasan_check_read+0x15/0x20 [ 1955.301656][T24968] __x64_sys_writev+0x81/0x90 [ 1955.301667][T24968] x64_sys_call+0x1fbb/0x2ee0 [ 1955.301680][T24968] do_syscall_64+0x58/0xf0 [ 1955.301693][T24968] ? clear_bhb_loop+0x50/0xa0 [ 1955.301704][T24968] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1955.301715][T24968] RIP: 0033:0x7fe4dc18f6c9 [ 1955.301728][T24968] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1955.301737][T24968] RSP: 002b:00007fe4dd0e5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 1955.301750][T24968] RAX: ffffffffffffffda RBX: 00007fe4dc3e5fa0 RCX: 00007fe4dc18f6c9 [ 1955.301759][T24968] RDX: 0000000000000001 RSI: 00002000000003c0 RDI: 0000000000000008 [ 1955.301766][T24968] RBP: 00007fe4dd0e5090 R08: 0000000000000000 R09: 0000000000000000 [ 1955.301773][T24968] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1955.301780][T24968] R13: 00007fe4dc3e6038 R14: 00007fe4dc3e5fa0 R15: 00007fff140907d8 [ 1955.301789][T24968] [ 1955.637759][T24988] FAULT_INJECTION: forcing a failure. [ 1955.637759][T24988] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1955.655880][T24988] CPU: 1 UID: 0 PID: 24988 Comm: syz.1.58948 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1955.655914][T24988] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1955.655927][T24988] Call Trace: [ 1955.655933][T24988] [ 1955.655941][T24988] __dump_stack+0x21/0x30 [ 1955.655968][T24988] dump_stack_lvl+0x10c/0x190 [ 1955.655991][T24988] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1955.656015][T24988] ? check_stack_object+0x12c/0x140 [ 1955.656034][T24988] dump_stack+0x19/0x20 [ 1955.656055][T24988] should_fail_ex+0x3d9/0x530 [ 1955.656075][T24988] should_fail+0xf/0x20 [ 1955.656091][T24988] should_fail_usercopy+0x1e/0x30 [ 1955.656111][T24988] _copy_to_user+0x24/0xa0 [ 1955.656133][T24988] simple_read_from_buffer+0xed/0x160 [ 1955.656156][T24988] proc_fail_nth_read+0x19e/0x210 [ 1955.656180][T24988] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 1955.656202][T24988] ? bpf_lsm_file_permission+0xd/0x20 [ 1955.656226][T24988] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 1955.656249][T24988] vfs_read+0x27d/0xc70 [ 1955.656285][T24988] ? ipv6_setsockopt+0xf0/0x170 [ 1955.656307][T24988] ? __cfi_vfs_read+0x10/0x10 [ 1955.656323][T24988] ? __kasan_check_write+0x18/0x20 [ 1955.656349][T24988] ? mutex_lock+0x92/0x1c0 [ 1955.656365][T24988] ? __cfi_mutex_lock+0x10/0x10 [ 1955.656382][T24988] ? __fget_files+0x2c5/0x340 [ 1955.656403][T24988] ksys_read+0x141/0x250 [ 1955.656419][T24988] ? __cfi_ksys_read+0x10/0x10 [ 1955.656436][T24988] ? __kasan_check_write+0x18/0x20 [ 1955.656461][T24988] ? __kasan_check_read+0x15/0x20 [ 1955.656486][T24988] __x64_sys_read+0x7f/0x90 [ 1955.656503][T24988] x64_sys_call+0x2638/0x2ee0 [ 1955.656528][T24988] do_syscall_64+0x58/0xf0 [ 1955.656550][T24988] ? clear_bhb_loop+0x50/0xa0 [ 1955.656571][T24988] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1955.656590][T24988] RIP: 0033:0x7f25d878e0dc [ 1955.656606][T24988] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 1955.656622][T24988] RSP: 002b:00007f25d9670030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1955.656644][T24988] RAX: ffffffffffffffda RBX: 00007f25d89e5fa0 RCX: 00007f25d878e0dc [ 1955.656664][T24988] RDX: 000000000000000f RSI: 00007f25d96700a0 RDI: 000000000000000a [ 1955.656677][T24988] RBP: 00007f25d9670090 R08: 0000000000000000 R09: 0000000000000000 [ 1955.656690][T24988] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1955.656702][T24988] R13: 00007f25d89e6038 R14: 00007f25d89e5fa0 R15: 00007ffd7ee64838 [ 1955.656718][T24988] [ 1955.976701][T25019] FAULT_INJECTION: forcing a failure. [ 1955.976701][T25019] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1955.989811][T25019] CPU: 1 UID: 0 PID: 25019 Comm: syz.2.58961 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1955.989844][T25019] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1955.989856][T25019] Call Trace: [ 1955.989862][T25019] [ 1955.989871][T25019] __dump_stack+0x21/0x30 [ 1955.989900][T25019] dump_stack_lvl+0x10c/0x190 [ 1955.989924][T25019] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1955.989948][T25019] ? __ia32_compat_sys_ioctl+0x850/0x850 [ 1955.989971][T25019] dump_stack+0x19/0x20 [ 1955.989993][T25019] should_fail_ex+0x3d9/0x530 [ 1955.990013][T25019] should_fail+0xf/0x20 [ 1955.990030][T25019] should_fail_usercopy+0x1e/0x30 [ 1955.990050][T25019] _copy_from_user+0x22/0xb0 [ 1955.990072][T25019] get_user_ifreq+0x71/0x180 [ 1955.990091][T25019] inet_ioctl+0x396/0x4d0 [ 1955.990107][T25019] ? __cfi_inet_ioctl+0x10/0x10 [ 1955.990124][T25019] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 1955.990148][T25019] sock_do_ioctl+0x105/0x330 [ 1955.990167][T25019] ? sock_show_fdinfo+0xd0/0xd0 [ 1955.990186][T25019] ? __cfi_vfs_write+0x10/0x10 [ 1955.990204][T25019] ? __kasan_check_write+0x18/0x20 [ 1955.990229][T25019] ? mutex_unlock+0x8b/0x240 [ 1955.990246][T25019] sock_ioctl+0x634/0x7b0 [ 1955.990265][T25019] ? __cfi_sock_ioctl+0x10/0x10 [ 1955.990284][T25019] ? __fget_files+0x2c5/0x340 [ 1955.990305][T25019] ? bpf_lsm_file_ioctl+0xd/0x20 [ 1955.990329][T25019] ? security_file_ioctl+0x34/0xd0 [ 1955.990350][T25019] ? __cfi_sock_ioctl+0x10/0x10 [ 1955.990368][T25019] __se_sys_ioctl+0x135/0x1b0 [ 1955.990388][T25019] __x64_sys_ioctl+0x7f/0xa0 [ 1955.990407][T25019] x64_sys_call+0x1878/0x2ee0 [ 1955.990433][T25019] do_syscall_64+0x58/0xf0 [ 1955.990455][T25019] ? clear_bhb_loop+0x50/0xa0 [ 1955.990476][T25019] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1955.990496][T25019] RIP: 0033:0x7fe4dc18f6c9 [ 1955.990514][T25019] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1955.990530][T25019] RSP: 002b:00007fe4dd0e5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1955.990552][T25019] RAX: ffffffffffffffda RBX: 00007fe4dc3e5fa0 RCX: 00007fe4dc18f6c9 [ 1955.990568][T25019] RDX: 0000200000000000 RSI: 0000000000008916 RDI: 0000000000000007 [ 1955.990581][T25019] RBP: 00007fe4dd0e5090 R08: 0000000000000000 R09: 0000000000000000 [ 1955.990594][T25019] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1955.990605][T25019] R13: 00007fe4dc3e6038 R14: 00007fe4dc3e5fa0 R15: 00007fff140907d8 [ 1955.990621][T25019] [ 1956.576991][T25028] FAULT_INJECTION: forcing a failure. [ 1956.576991][T25028] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1956.606941][T25028] CPU: 1 UID: 0 PID: 25028 Comm: syz.4.58968 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1956.606980][T25028] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1956.606993][T25028] Call Trace: [ 1956.607001][T25028] [ 1956.607012][T25028] __dump_stack+0x21/0x30 [ 1956.607044][T25028] dump_stack_lvl+0x10c/0x190 [ 1956.607068][T25028] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1956.607094][T25028] ? _raw_spin_lock_bh+0x90/0x120 [ 1956.607119][T25028] ? __cfi__raw_spin_lock_bh+0x10/0x10 [ 1956.607145][T25028] dump_stack+0x19/0x20 [ 1956.607166][T25028] should_fail_ex+0x3d9/0x530 [ 1956.607187][T25028] should_fail+0xf/0x20 [ 1956.607206][T25028] should_fail_usercopy+0x1e/0x30 [ 1956.607224][T25028] _copy_from_user+0x22/0xb0 [ 1956.607245][T25028] sock_do_ioctl+0x18b/0x330 [ 1956.607264][T25028] ? sock_show_fdinfo+0xd0/0xd0 [ 1956.607282][T25028] ? __cfi_vfs_write+0x10/0x10 [ 1956.607300][T25028] ? __kasan_check_write+0x18/0x20 [ 1956.607336][T25028] ? mutex_unlock+0x8b/0x240 [ 1956.607352][T25028] sock_ioctl+0x634/0x7b0 [ 1956.607369][T25028] ? __cfi_sock_ioctl+0x10/0x10 [ 1956.607388][T25028] ? __fget_files+0x2c5/0x340 [ 1956.607408][T25028] ? bpf_lsm_file_ioctl+0xd/0x20 [ 1956.607434][T25028] ? security_file_ioctl+0x34/0xd0 [ 1956.607455][T25028] ? __cfi_sock_ioctl+0x10/0x10 [ 1956.607473][T25028] __se_sys_ioctl+0x135/0x1b0 [ 1956.607495][T25028] __x64_sys_ioctl+0x7f/0xa0 [ 1956.607515][T25028] x64_sys_call+0x1878/0x2ee0 [ 1956.607542][T25028] do_syscall_64+0x58/0xf0 [ 1956.607566][T25028] ? clear_bhb_loop+0x50/0xa0 [ 1956.607588][T25028] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1956.607608][T25028] RIP: 0033:0x7fe06bb8f6c9 [ 1956.607626][T25028] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1956.607644][T25028] RSP: 002b:00007fe06c963038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1956.607668][T25028] RAX: ffffffffffffffda RBX: 00007fe06bde5fa0 RCX: 00007fe06bb8f6c9 [ 1956.607684][T25028] RDX: 0000000000000000 RSI: 0000000000008922 RDI: 0000000000000009 [ 1956.607697][T25028] RBP: 00007fe06c963090 R08: 0000000000000000 R09: 0000000000000000 [ 1956.607711][T25028] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1956.607725][T25028] R13: 00007fe06bde6038 R14: 00007fe06bde5fa0 R15: 00007ffc7fbe42e8 [ 1956.607743][T25028] [ 1957.034120][T25072] FAULT_INJECTION: forcing a failure. [ 1957.034120][T25072] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1957.047402][T25072] CPU: 1 UID: 0 PID: 25072 Comm: syz.2.58987 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1957.047435][T25072] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1957.047448][T25072] Call Trace: [ 1957.047455][T25072] [ 1957.047463][T25072] __dump_stack+0x21/0x30 [ 1957.047492][T25072] dump_stack_lvl+0x10c/0x190 [ 1957.047515][T25072] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1957.047538][T25072] ? kstrtoull+0x13b/0x1e0 [ 1957.047554][T25072] dump_stack+0x19/0x20 [ 1957.047575][T25072] should_fail_ex+0x3d9/0x530 [ 1957.047601][T25072] should_fail+0xf/0x20 [ 1957.047618][T25072] should_fail_usercopy+0x1e/0x30 [ 1957.047637][T25072] _copy_from_user+0x22/0xb0 [ 1957.047659][T25072] ___sys_sendmsg+0x159/0x2a0 [ 1957.047685][T25072] ? __sys_sendmsg+0x280/0x280 [ 1957.047710][T25072] ? proc_fail_nth_write+0x17e/0x210 [ 1957.047733][T25072] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 1957.047760][T25072] __x64_sys_sendmsg+0x1eb/0x2c0 [ 1957.047785][T25072] ? fput+0x1a5/0x240 [ 1957.047806][T25072] ? __cfi___x64_sys_sendmsg+0x10/0x10 [ 1957.047831][T25072] ? ksys_write+0x1ef/0x250 [ 1957.047849][T25072] ? __kasan_check_read+0x15/0x20 [ 1957.047875][T25072] x64_sys_call+0x2a4c/0x2ee0 [ 1957.047899][T25072] do_syscall_64+0x58/0xf0 [ 1957.047922][T25072] ? clear_bhb_loop+0x50/0xa0 [ 1957.047941][T25072] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1957.047961][T25072] RIP: 0033:0x7fe4dc18f6c9 [ 1957.047977][T25072] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1957.047993][T25072] RSP: 002b:00007fe4dd0e5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1957.048014][T25072] RAX: ffffffffffffffda RBX: 00007fe4dc3e5fa0 RCX: 00007fe4dc18f6c9 [ 1957.048029][T25072] RDX: 0000000000040080 RSI: 0000200000000740 RDI: 0000000000000006 [ 1957.048042][T25072] RBP: 00007fe4dd0e5090 R08: 0000000000000000 R09: 0000000000000000 [ 1957.048055][T25072] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1957.048066][T25072] R13: 00007fe4dc3e6038 R14: 00007fe4dc3e5fa0 R15: 00007fff140907d8 [ 1957.048082][T25072] [ 1957.614986][T25149] FAULT_INJECTION: forcing a failure. [ 1957.614986][T25149] name failslab, interval 1, probability 0, space 0, times 0 [ 1957.629417][T25149] CPU: 0 UID: 0 PID: 25149 Comm: syz.4.59022 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1957.629452][T25149] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1957.629464][T25149] Call Trace: [ 1957.629471][T25149] [ 1957.629479][T25149] __dump_stack+0x21/0x30 [ 1957.629508][T25149] dump_stack_lvl+0x10c/0x190 [ 1957.629530][T25149] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1957.629554][T25149] ? __kasan_check_write+0x18/0x20 [ 1957.629585][T25149] ? proc_fail_nth_write+0x17e/0x210 [ 1957.629608][T25149] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 1957.629632][T25149] dump_stack+0x19/0x20 [ 1957.629654][T25149] should_fail_ex+0x3d9/0x530 [ 1957.629673][T25149] should_failslab+0xac/0x100 [ 1957.629693][T25149] kmem_cache_alloc_noprof+0x42/0x430 [ 1957.629709][T25149] ? getname_flags+0xc6/0x710 [ 1957.629728][T25149] getname_flags+0xc6/0x710 [ 1957.629745][T25149] ? build_open_flags+0x487/0x600 [ 1957.629768][T25149] getname+0x1b/0x30 [ 1957.629783][T25149] do_sys_openat2+0xcb/0x1c0 [ 1957.629803][T25149] ? fput+0x1a5/0x240 [ 1957.629821][T25149] ? do_sys_open+0x100/0x100 [ 1957.629842][T25149] ? ksys_write+0x1ef/0x250 [ 1957.629858][T25149] ? __cfi_ksys_write+0x10/0x10 [ 1957.629876][T25149] __x64_sys_openat+0x13a/0x170 [ 1957.629899][T25149] x64_sys_call+0xe69/0x2ee0 [ 1957.629923][T25149] do_syscall_64+0x58/0xf0 [ 1957.629946][T25149] ? clear_bhb_loop+0x50/0xa0 [ 1957.629965][T25149] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1957.629984][T25149] RIP: 0033:0x7fe06bb8f6c9 [ 1957.630001][T25149] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1957.630018][T25149] RSP: 002b:00007fe06c963038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1957.630040][T25149] RAX: ffffffffffffffda RBX: 00007fe06bde5fa0 RCX: 00007fe06bb8f6c9 [ 1957.630054][T25149] RDX: 000000000000275a RSI: 0000200000000280 RDI: ffffffffffffff9c [ 1957.630068][T25149] RBP: 00007fe06c963090 R08: 0000000000000000 R09: 0000000000000000 [ 1957.630081][T25149] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1957.630092][T25149] R13: 00007fe06bde6038 R14: 00007fe06bde5fa0 R15: 00007ffc7fbe42e8 [ 1957.630108][T25149] [ 1957.872451][T25161] FAULT_INJECTION: forcing a failure. [ 1957.872451][T25161] name failslab, interval 1, probability 0, space 0, times 0 [ 1957.891295][T25161] CPU: 0 UID: 0 PID: 25161 Comm: syz.3.59027 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1957.891329][T25161] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1957.891340][T25161] Call Trace: [ 1957.891347][T25161] [ 1957.891356][T25161] __dump_stack+0x21/0x30 [ 1957.891385][T25161] dump_stack_lvl+0x10c/0x190 [ 1957.891408][T25161] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1957.891431][T25161] ? __kasan_check_write+0x18/0x20 [ 1957.891458][T25161] ? proc_fail_nth_write+0x17e/0x210 [ 1957.891536][T25161] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 1957.891560][T25161] dump_stack+0x19/0x20 [ 1957.891581][T25161] should_fail_ex+0x3d9/0x530 [ 1957.891600][T25161] should_failslab+0xac/0x100 [ 1957.891621][T25161] kmem_cache_alloc_noprof+0x42/0x430 [ 1957.891638][T25161] ? getname_flags+0xc6/0x710 [ 1957.891658][T25161] getname_flags+0xc6/0x710 [ 1957.891675][T25161] ? build_open_flags+0x487/0x600 [ 1957.891698][T25161] getname+0x1b/0x30 [ 1957.891715][T25161] do_sys_openat2+0xcb/0x1c0 [ 1957.891736][T25161] ? fput+0x1a5/0x240 [ 1957.891763][T25161] ? do_sys_open+0x100/0x100 [ 1957.891789][T25161] ? ksys_write+0x1ef/0x250 [ 1957.891806][T25161] ? __cfi_ksys_write+0x10/0x10 [ 1957.891823][T25161] __x64_sys_openat+0x13a/0x170 [ 1957.891846][T25161] x64_sys_call+0xe69/0x2ee0 [ 1957.891868][T25161] do_syscall_64+0x58/0xf0 [ 1957.891890][T25161] ? clear_bhb_loop+0x50/0xa0 [ 1957.891910][T25161] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1957.891929][T25161] RIP: 0033:0x7f100578f6c9 [ 1957.891946][T25161] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1957.891962][T25161] RSP: 002b:00007f100668e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1957.891983][T25161] RAX: ffffffffffffffda RBX: 00007f10059e5fa0 RCX: 00007f100578f6c9 [ 1957.891997][T25161] RDX: 0000000000000002 RSI: 0000200000000180 RDI: ffffffffffffff9c [ 1957.892011][T25161] RBP: 00007f100668e090 R08: 0000000000000000 R09: 0000000000000000 [ 1957.892023][T25161] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1957.892034][T25161] R13: 00007f10059e6038 R14: 00007f10059e5fa0 R15: 00007ffed78618b8 [ 1957.892050][T25161] [ 1958.236525][T25210] FAULT_INJECTION: forcing a failure. [ 1958.236525][T25210] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1958.250065][T25210] CPU: 0 UID: 0 PID: 25210 Comm: syz.3.59050 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1958.250100][T25210] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1958.250111][T25210] Call Trace: [ 1958.250118][T25210] [ 1958.250125][T25210] __dump_stack+0x21/0x30 [ 1958.250154][T25210] dump_stack_lvl+0x10c/0x190 [ 1958.250177][T25210] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1958.250201][T25210] ? kstrtoull+0x13b/0x1e0 [ 1958.250231][T25210] dump_stack+0x19/0x20 [ 1958.250254][T25210] should_fail_ex+0x3d9/0x530 [ 1958.250272][T25210] should_fail+0xf/0x20 [ 1958.250289][T25210] should_fail_usercopy+0x1e/0x30 [ 1958.250309][T25210] _copy_from_user+0x22/0xb0 [ 1958.250330][T25210] ___sys_sendmsg+0x159/0x2a0 [ 1958.250354][T25210] ? __sys_sendmsg+0x280/0x280 [ 1958.250377][T25210] ? proc_fail_nth_write+0x17e/0x210 [ 1958.250399][T25210] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 1958.250423][T25210] __x64_sys_sendmsg+0x1eb/0x2c0 [ 1958.250446][T25210] ? fput+0x1a5/0x240 [ 1958.250466][T25210] ? __cfi___x64_sys_sendmsg+0x10/0x10 [ 1958.250488][T25210] ? ksys_write+0x1ef/0x250 [ 1958.250506][T25210] ? __kasan_check_read+0x15/0x20 [ 1958.250537][T25210] x64_sys_call+0x2a4c/0x2ee0 [ 1958.250563][T25210] do_syscall_64+0x58/0xf0 [ 1958.250585][T25210] ? clear_bhb_loop+0x50/0xa0 [ 1958.250605][T25210] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1958.250625][T25210] RIP: 0033:0x7f100578f6c9 [ 1958.250641][T25210] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1958.250658][T25210] RSP: 002b:00007f100668e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1958.250678][T25210] RAX: ffffffffffffffda RBX: 00007f10059e5fa0 RCX: 00007f100578f6c9 [ 1958.250692][T25210] RDX: 0000000000044000 RSI: 00002000000000c0 RDI: 0000000000000007 [ 1958.250704][T25210] RBP: 00007f100668e090 R08: 0000000000000000 R09: 0000000000000000 [ 1958.250715][T25210] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1958.250726][T25210] R13: 00007f10059e6038 R14: 00007f10059e5fa0 R15: 00007ffed78618b8 [ 1958.250742][T25210] [ 1959.635502][ T36] audit: type=1400 audit(1763413314.034:1394): avc: denied { ioctl } for pid=25328 comm="syz.3.59108" path="socket:[769815]" dev="sockfs" ino=769815 ioctlcmd=0x8946 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 1962.762613][T25559] overlayfs: failed to resolve './file0': -2 [ 1964.241115][T25629] overlayfs: failed to resolve './file0': -2 [ 1964.576391][T25656] overlayfs: failed to resolve './file1': -2 [ 1965.169912][T25677] overlayfs: failed to resolve './file1': -2 [ 1986.500006][T26838] overlayfs: failed to resolve './file1': -2 [ 1986.679025][T26860] overlayfs: failed to resolve './file1': -2 [ 1986.970925][T26884] overlayfs: failed to resolve './file1': -2 [ 1989.177585][T27122] overlayfs: missing 'lowerdir' [ 1989.331109][T27144] overlayfs: missing 'lowerdir' [ 1989.659074][T27192] overlayfs: missing 'lowerdir' [ 1990.582541][T27206] overlayfs: missing 'lowerdir' [ 1990.808758][T27230] overlayfs: missing 'lowerdir' [ 1992.600923][T27378] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 1992.609748][T27378] overlayfs: option "uuid=on" requires an upper fs, falling back to uuid=null. [ 1992.619187][T27378] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 1992.749966][T27399] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 1992.759310][T27399] overlayfs: option "uuid=on" requires an upper fs, falling back to uuid=null. [ 1992.769196][T27399] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 1992.899022][T27422] overlayfs: missing 'lowerdir' [ 1993.524378][T27442] overlayfs: missing 'workdir' [ 1993.821598][T27486] overlayfs: missing 'workdir' [ 1998.761327][T27883] FAULT_INJECTION: forcing a failure. [ 1998.761327][T27883] name failslab, interval 1, probability 0, space 0, times 0 [ 1998.774077][T27883] CPU: 0 UID: 0 PID: 27883 Comm: syz.4.60382 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1998.774110][T27883] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1998.774123][T27883] Call Trace: [ 1998.774130][T27883] [ 1998.774138][T27883] __dump_stack+0x21/0x30 [ 1998.774168][T27883] dump_stack_lvl+0x10c/0x190 [ 1998.774190][T27883] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1998.774213][T27883] ? __kasan_check_write+0x18/0x20 [ 1998.774238][T27883] ? proc_fail_nth_write+0x17e/0x210 [ 1998.774261][T27883] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 1998.774283][T27883] dump_stack+0x19/0x20 [ 1998.774305][T27883] should_fail_ex+0x3d9/0x530 [ 1998.774323][T27883] should_failslab+0xac/0x100 [ 1998.774343][T27883] kmem_cache_alloc_noprof+0x42/0x430 [ 1998.774359][T27883] ? getname_flags+0xc6/0x710 [ 1998.774378][T27883] getname_flags+0xc6/0x710 [ 1998.774395][T27883] ? build_open_flags+0x487/0x600 [ 1998.774418][T27883] getname+0x1b/0x30 [ 1998.774434][T27883] do_sys_openat2+0xcb/0x1c0 [ 1998.774463][T27883] ? fput+0x1a5/0x240 [ 1998.774483][T27883] ? do_sys_open+0x100/0x100 [ 1998.774504][T27883] ? ksys_write+0x1ef/0x250 [ 1998.774521][T27883] ? __cfi_ksys_write+0x10/0x10 [ 1998.774542][T27883] __x64_sys_openat+0x13a/0x170 [ 1998.774564][T27883] x64_sys_call+0xe69/0x2ee0 [ 1998.774588][T27883] do_syscall_64+0x58/0xf0 [ 1998.774610][T27883] ? clear_bhb_loop+0x50/0xa0 [ 1998.774629][T27883] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1998.774647][T27883] RIP: 0033:0x7fe06bb8df10 [ 1998.774664][T27883] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 69 95 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 bc 95 02 00 8b 44 [ 1998.774679][T27883] RSP: 002b:00007fe06c962f60 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 1998.774700][T27883] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fe06bb8df10 [ 1998.774714][T27883] RDX: 0000000000000000 RSI: 00007fe06bc1207e RDI: 00000000ffffff9c [ 1998.774726][T27883] RBP: 00007fe06bc1207e R08: 0000000000000000 R09: 0000000000000000 [ 1998.774739][T27883] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 1998.774750][T27883] R13: 00007fe06bde6038 R14: 00007fe06bde5fa0 R15: 00007ffc7fbe42e8 [ 1998.774766][T27883] [ 2003.823837][T28145] bridge0: port 1(bridge_slave_0) entered blocking state [ 2003.833459][T28145] bridge0: port 1(bridge_slave_0) entered disabled state [ 2003.853740][T28145] bridge_slave_0: entered allmulticast mode [ 2003.860271][T28145] bridge_slave_0: entered promiscuous mode [ 2003.874144][T28145] bridge0: port 2(bridge_slave_1) entered blocking state [ 2003.881361][T28145] bridge0: port 2(bridge_slave_1) entered disabled state [ 2003.888465][T28145] bridge_slave_1: entered allmulticast mode [ 2003.895056][T28145] bridge_slave_1: entered promiscuous mode [ 2004.018345][T19925] bridge_slave_1: left allmulticast mode [ 2004.044287][T19925] bridge_slave_1: left promiscuous mode [ 2004.050062][T19925] bridge0: port 2(bridge_slave_1) entered disabled state [ 2004.074454][T19925] bridge_slave_0: left allmulticast mode [ 2004.080132][T19925] bridge_slave_0: left promiscuous mode [ 2004.104380][T19925] bridge0: port 1(bridge_slave_0) entered disabled state [ 2004.295204][T19925] veth1_macvtap: left promiscuous mode [ 2004.300757][T19925] veth0_vlan: left promiscuous mode [ 2004.430585][T28145] bridge0: port 2(bridge_slave_1) entered blocking state [ 2004.437689][T28145] bridge0: port 2(bridge_slave_1) entered forwarding state [ 2004.445012][T28145] bridge0: port 1(bridge_slave_0) entered blocking state [ 2004.452052][T28145] bridge0: port 1(bridge_slave_0) entered forwarding state [ 2004.513737][ T46] bridge0: port 1(bridge_slave_0) entered disabled state [ 2004.541819][ T46] bridge0: port 2(bridge_slave_1) entered disabled state [ 2004.566059][T23877] bridge0: port 1(bridge_slave_0) entered blocking state [ 2004.573227][T23877] bridge0: port 1(bridge_slave_0) entered forwarding state [ 2004.619755][ T46] bridge0: port 2(bridge_slave_1) entered blocking state [ 2004.626929][ T46] bridge0: port 2(bridge_slave_1) entered forwarding state [ 2004.697930][T28145] veth0_vlan: entered promiscuous mode [ 2004.720706][T28145] veth1_macvtap: entered promiscuous mode [ 2007.824769][T28385] bridge0: port 1(bridge_slave_0) entered blocking state [ 2007.834072][T28385] bridge0: port 1(bridge_slave_0) entered disabled state [ 2007.841262][T28385] bridge_slave_0: entered allmulticast mode [ 2007.868031][T28385] bridge_slave_0: entered promiscuous mode [ 2007.898237][T28385] bridge0: port 2(bridge_slave_1) entered blocking state [ 2007.918170][T28385] bridge0: port 2(bridge_slave_1) entered disabled state [ 2007.948588][T28385] bridge_slave_1: entered allmulticast mode [ 2007.964518][T28385] bridge_slave_1: entered promiscuous mode [ 2007.991956][T19925] bridge_slave_1: left allmulticast mode [ 2007.997703][T19925] bridge_slave_1: left promiscuous mode [ 2008.023731][T19925] bridge0: port 2(bridge_slave_1) entered disabled state [ 2008.034547][T19925] bridge_slave_0: left allmulticast mode [ 2008.040228][T19925] bridge_slave_0: left promiscuous mode [ 2008.064152][T19925] bridge0: port 1(bridge_slave_0) entered disabled state [ 2008.217590][T19925] veth1_macvtap: left promiscuous mode [ 2008.233722][T19925] veth0_vlan: left promiscuous mode [ 2008.436657][T28385] bridge0: port 2(bridge_slave_1) entered blocking state [ 2008.443736][T28385] bridge0: port 2(bridge_slave_1) entered forwarding state [ 2008.451073][T28385] bridge0: port 1(bridge_slave_0) entered blocking state [ 2008.458141][T28385] bridge0: port 1(bridge_slave_0) entered forwarding state [ 2008.525384][ T46] bridge0: port 1(bridge_slave_0) entered disabled state [ 2008.534891][ T46] bridge0: port 2(bridge_slave_1) entered disabled state [ 2008.568013][T23877] bridge0: port 1(bridge_slave_0) entered blocking state [ 2008.575115][T23877] bridge0: port 1(bridge_slave_0) entered forwarding state [ 2008.592990][T23877] bridge0: port 2(bridge_slave_1) entered blocking state [ 2008.600106][T23877] bridge0: port 2(bridge_slave_1) entered forwarding state [ 2008.674818][T28385] veth0_vlan: entered promiscuous mode [ 2008.701436][T28385] veth1_macvtap: entered promiscuous mode [ 2012.829349][ T46] bridge_slave_1: left allmulticast mode [ 2012.835079][ T46] bridge_slave_1: left promiscuous mode [ 2012.841202][ T46] bridge0: port 2(bridge_slave_1) entered disabled state [ 2012.848911][ T46] bridge_slave_0: left allmulticast mode [ 2012.854707][ T46] bridge_slave_0: left promiscuous mode [ 2012.860414][ T46] bridge0: port 1(bridge_slave_0) entered disabled state [ 2012.933245][T28724] bridge0: port 1(bridge_slave_0) entered blocking state [ 2012.940634][T28724] bridge0: port 1(bridge_slave_0) entered disabled state [ 2012.948477][T28724] bridge_slave_0: entered allmulticast mode [ 2012.955094][T28724] bridge_slave_0: entered promiscuous mode [ 2012.961817][T28724] bridge0: port 2(bridge_slave_1) entered blocking state [ 2012.971165][T28724] bridge0: port 2(bridge_slave_1) entered disabled state [ 2012.979180][T28724] bridge_slave_1: entered allmulticast mode [ 2012.986116][T28724] bridge_slave_1: entered promiscuous mode [ 2012.993200][ T46] veth1_macvtap: left promiscuous mode [ 2012.998831][ T46] veth0_vlan: left promiscuous mode [ 2013.133682][T28724] bridge0: port 2(bridge_slave_1) entered blocking state [ 2013.140784][T28724] bridge0: port 2(bridge_slave_1) entered forwarding state [ 2013.148205][T28724] bridge0: port 1(bridge_slave_0) entered blocking state [ 2013.155296][T28724] bridge0: port 1(bridge_slave_0) entered forwarding state [ 2013.182313][T23877] bridge0: port 1(bridge_slave_0) entered disabled state [ 2013.189832][T23877] bridge0: port 2(bridge_slave_1) entered disabled state [ 2013.201502][T19925] bridge0: port 1(bridge_slave_0) entered blocking state [ 2013.208611][T19925] bridge0: port 1(bridge_slave_0) entered forwarding state [ 2013.225584][T19925] bridge0: port 2(bridge_slave_1) entered blocking state [ 2013.232668][T19925] bridge0: port 2(bridge_slave_1) entered forwarding state [ 2013.261283][T28724] veth0_vlan: entered promiscuous mode [ 2013.286073][T28724] veth1_macvtap: entered promiscuous mode [ 2033.279369][T30513] bridge0: port 1(bridge_slave_0) entered blocking state [ 2033.299226][T30513] bridge0: port 1(bridge_slave_0) entered disabled state [ 2033.306629][T30513] bridge_slave_0: entered allmulticast mode [ 2033.313191][T30513] bridge_slave_0: entered promiscuous mode [ 2033.321956][T30513] bridge0: port 2(bridge_slave_1) entered blocking state [ 2033.329345][T30513] bridge0: port 2(bridge_slave_1) entered disabled state [ 2033.340768][T30513] bridge_slave_1: entered allmulticast mode [ 2033.357653][T30513] bridge_slave_1: entered promiscuous mode [ 2033.374808][T23877] bridge_slave_1: left allmulticast mode [ 2033.380490][T23877] bridge_slave_1: left promiscuous mode [ 2033.391670][T23877] bridge0: port 2(bridge_slave_1) entered disabled state [ 2033.407516][T23877] bridge_slave_0: left allmulticast mode [ 2033.429825][T23877] bridge_slave_0: left promiscuous mode [ 2033.439994][T23877] bridge0: port 1(bridge_slave_0) entered disabled state [ 2033.573926][T23877] veth1_macvtap: left promiscuous mode [ 2033.579488][T23877] veth0_vlan: left promiscuous mode [ 2033.757792][T30513] bridge0: port 2(bridge_slave_1) entered blocking state [ 2033.764899][T30513] bridge0: port 2(bridge_slave_1) entered forwarding state [ 2033.772187][T30513] bridge0: port 1(bridge_slave_0) entered blocking state [ 2033.779273][T30513] bridge0: port 1(bridge_slave_0) entered forwarding state [ 2033.847481][ T46] bridge0: port 1(bridge_slave_0) entered disabled state [ 2033.855783][ T46] bridge0: port 2(bridge_slave_1) entered disabled state [ 2033.873039][T19925] bridge0: port 1(bridge_slave_0) entered blocking state [ 2033.880195][T19925] bridge0: port 1(bridge_slave_0) entered forwarding state [ 2033.897920][T19925] bridge0: port 2(bridge_slave_1) entered blocking state [ 2033.905124][T19925] bridge0: port 2(bridge_slave_1) entered forwarding state [ 2033.973400][T30513] veth0_vlan: entered promiscuous mode [ 2034.007501][T30513] veth1_macvtap: entered promiscuous mode [ 2045.459178][ T36] audit: type=1400 audit(1763413399.869:1395): avc: denied { read } for pid=31297 comm="poweroff" name="log" dev="sda1" ino=2010 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1 [ 2045.655312][ T36] audit: type=1400 audit(1763413400.069:1396): avc: denied { execute } for pid=31338 comm="syz.3.62086" path="/437/blkio.bfq.group_wait_time" dev="tmpfs" ino=2640 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 Stopping sshd: stopped /usr/sbin/sshd (pid 201) OK Stopping crond: stopped /usr/sbin/crond (pid 194) OK Stopping dhcpcd... stopped /sbin/dhcpcd (pid 148) [ 2046.029255][ T36] audit: type=1400 audit(1763413400.439:1397): avc: denied { search } for pid=31389 comm="dhcpcd-run-hook" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 Stopping network: [ 2046.164387][ T36] audit: type=1400 audit(1763413400.579:1398): avc: denied { write } for pid=149 comm="dhcpcd" name="dhcpcd" dev="tmpfs" ino=421 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2046.194686][ T36] audit: type=1400 audit(1763413400.579:1399): avc: denied { remove_name } for pid=149 comm="dhcpcd" name="sock" dev="tmpfs" ino=423 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2046.240410][ T36] audit: type=1400 audit(1763413400.579:1400): avc: denied { unlink } for pid=149 comm="dhcpcd" name="sock" dev="tmpfs" ino=423 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=sock_file permissive=1 [ 2046.295248][ T36] audit: type=1400 audit(1763413400.599:1401): avc: denied { unlink } for pid=149 comm="dhcpcd" name="pid" dev="tmpfs" ino=422 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 2046.319064][ T36] audit: type=1400 audit(1763413400.609:1402): avc: denied { read write } for pid=31406 comm="ip" path="/dev/console" dev="rootfs" ino=1067 scontext=system_u:system_r:ifconfig_t tcontext=system_u:object_r:root_t tclass=chr_file permissive=1 OK Stopping iptables: [ 2046.376232][ T36] audit: type=1400 audit(1763413400.789:1403): avc: denied { read write } for pid=31420 comm="iptables" path="/dev/console" dev="rootfs" ino=1067 scontext=system_u:system_r:iptables_t tcontext=system_u:object_r:root_t tclass=chr_file permissive=1 OK Stopping system message bus: [ 2046.416101][ T36] audit: type=1400 audit(1763413400.799:1404): avc: denied { search } for pid=31420 comm="iptables" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:iptables_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 done Stopping klogd: OK Stopping acpid: [ 2047.796310][T31534] FAULT_INJECTION: forcing a failure. [ 2047.796310][T31534] name failslab, interval 1, probability 0, space 0, times 0 [ 2047.821867][T31534] CPU: 1 UID: 0 PID: 31534 Comm: syz.2.62161 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 2047.821904][T31534] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 2047.821915][T31534] Call Trace: [ 2047.821921][T31534] [ 2047.821929][T31534] __dump_stack+0x21/0x30 [ 2047.821955][T31534] dump_stack_lvl+0x10c/0x190 [ 2047.821975][T31534] ? __cfi_dump_stack_lvl+0x10/0x10 [ 2047.821996][T31534] ? __kasan_check_write+0x18/0x20 [ 2047.822021][T31534] ? proc_fail_nth_write+0x17e/0x210 [ 2047.822041][T31534] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 2047.822064][T31534] dump_stack+0x19/0x20 [ 2047.822085][T31534] should_fail_ex+0x3d9/0x530 [ 2047.822101][T31534] should_failslab+0xac/0x100 [ 2047.822118][T31534] kmem_cache_alloc_noprof+0x42/0x430 [ 2047.822133][T31534] ? getname_flags+0xc6/0x710 [ 2047.822149][T31534] getname_flags+0xc6/0x710 [ 2047.822163][T31534] ? build_open_flags+0x487/0x600 [ 2047.822182][T31534] getname+0x1b/0x30 [ 2047.822196][T31534] do_sys_openat2+0xcb/0x1c0 [ 2047.822216][T31534] ? fput+0x1a5/0x240 [ 2047.822235][T31534] ? do_sys_open+0x100/0x100 [ 2047.822254][T31534] ? ksys_write+0x1ef/0x250 [ 2047.822270][T31534] ? __cfi_ksys_write+0x10/0x10 [ 2047.822287][T31534] __x64_sys_openat+0x13a/0x170 [ 2047.822309][T31534] x64_sys_call+0xe69/0x2ee0 [ 2047.822330][T31534] do_syscall_64+0x58/0xf0 [ 2047.822350][T31534] ? clear_bhb_loop+0x50/0xa0 [ 2047.822367][T31534] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 2047.822382][T31534] RIP: 0033:0x7f893618df10 [ 2047.822397][T31534] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 69 95 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 bc 95 02 00 8b 44 [ 2047.822412][T31534] RSP: 002b:00007f8934bf6f60 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 2047.822432][T31534] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f893618df10 [ 2047.822444][T31534] RDX: 0000000000000000 RSI: 00007f893621207e RDI: 00000000ffffff9c [ 2047.822457][T31534] RBP: 00007f893621207e R08: 0000000000000000 R09: 0000000000000000 OK [ 2047.822469][T31534] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 2047.822480][T31534] R13: 00007f89363e6038 R14: 00007f89363e5fa0 R15: 00007ffe16eb1228 [ 2047.822495][T31534] Stopping syslogd: stopped /sbin/syslogd (pid 92) OK umount: can't remount debugfs read-only umount: sysfs busy - remounted read-only umount: devtmpfs busy - remounted read-only umount: can't remount /dev/root read-only The system is going down NOW! Sent SIGTERM to all processes Connection to 10.128.0.14 closed by remote host. [ 2048.844114][T19925] bridge_slave_1: left allmulticast mode [ 2048.849797][T19925] bridge_slave_1: left promiscuous mode [ 2048.855490][T19925] bridge0: port 2(bridge_slave_1) entered disabled state [ 2048.863464][T19925] bridge_slave_0: left allmulticast mode [ 2048.869100][T19925] bridge_slave_0: left promiscuous mode [ 2048.874723][T19925] bridge0: port 1(bridge_slave_0) entered disabled state [ 2049.044979][T19925] veth1_macvtap: left promiscuous mode [ 2049.050489][T19925] veth0_vlan: left promiscuous mode [ 2049.313723][T19925] bridge_slave_1: left allmulticast mode [ 2049.319381][T19925] bridge_slave_1: left promiscuous mode [ 2049.325048][T19925] bridge0: port 2(bridge_slave_1) entered disabled state [ 2049.332458][T19925] bridge_slave_0: left allmulticast mode [ 2049.338104][T19925] bridge_slave_0: left promiscuous mode [ 2049.343821][T19925] bridge0: port 1(bridge_slave_0) entered disabled state [ 2049.351296][T19925] bridge_slave_1: left allmulticast mode [ 2049.356972][T19925] bridge_slave_1: left promiscuous mode [ 2049.362710][T19925] bridge0: port 2(bridge_slave_1) entered disabled state [ 2049.370098][T19925] bridge_slave_0: left allmulticast mode [ 2049.375819][T19925] bridge_slave_0: left promiscuous mode [ 2049.381640][T19925] bridge0: port 1(bridge_slave_0) entered disabled state [ 2049.389456][T19925] bridge_slave_1: left allmulticast mode [ 2049.395149][T19925] bridge_slave_1: left promiscuous mode [ 2049.400777][T19925] bridge0: port 2(bridge_slave_1) entered disabled state [ 2049.408218][T19925] bridge_slave_0: left allmulticast mode [ 2049.413946][T19925] bridge_slave_0: left promiscuous mode [ 2049.419553][T19925] bridge0: port 1(bridge_slave_0) entered disabled state [ 2049.606978][T19925] veth1_macvtap: left promiscuous mode [ 2049.612543][T19925] veth0_vlan: left promiscuous mode [ 2049.618106][T19925] veth1_macvtap: left promiscuous mode [ 2049.623631][T19925] veth0_vlan: left promiscuous mode [ 2049.629123][T19925] veth1_macvtap: left promiscuous mode [ 2049.634637][T19925] veth0_vlan: left promiscuous mode Sent SIGKILL to all processes Requesting system poweroff [ 2050.711556][T31589] sd 0:0:1:0: [sda] Synchronizing SCSI cache [ 2050.718876][T31589] ACPI: PM: Preparing to enter system sleep state S5 [ 2050.726260][T31589] kvm: exiting hardware virtualization [ 2050.731801][T31589] reboot: Power down serialport: VM disconnected.