last executing test programs: 9.038622921s ago: executing program 2 (id=992): openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x48140, 0x0) socket(0x2, 0x3, 0xa) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x608100, 0x0) connect$auto(0x3, &(0x7f0000000240)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/fs/cifs/SecurityFlags\x00', 0x48041, 0x0) write$auto(r0, 0x0, 0x4) read$auto(r0, &(0x7f0000000180)='/sys/kernel/debug/usb/usbmon/9t\x00', 0x7) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x3, 0x0, 0xeb3, r0, 0x8000) adjtimex$auto(&(0x7f00000005c0)={0xffff, 0x0, 0x6, 0x9, 0x7, 0x7f, 0xfff, 0x0, 0xc15, 0x7, 0x592efafe, {0x3, 0x6}, 0x100000001, 0x3, 0x4, 0x5, 0x0, 0x3, 0xfffffffffffffff9, 0x240000000000, 0x400000, 0x10000, 0x7ff}) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb5, 0x401, 0x300000000000) openat$auto_drm_edid_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/dri/vkms/Virtual-1/edid_override\x00', 0x103082, 0x0) prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2) socket(0x3, 0x3, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x3, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xf, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x6, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0) write$auto(r2, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) write$auto(r2, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7) mmap$auto(0x401, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) socket(0x10, 0x2, 0x0) pread64$auto(0xffffffffffffffff, 0x0, 0x8, 0xffff) madvise$auto(0x8, 0x7, 0x4) openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/usb/usbmon/9t\x00', 0xa00, 0x0) close_range$auto(0x2, 0x8, 0x0) 6.609167028s ago: executing program 2 (id=998): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x110) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xb02, 0x0) (async) fallocate$auto(0x8000000000000003, 0x0, 0x9, 0x4cbd5d) (async) unlink$auto(&(0x7f0000000380)='./file0\x00') (async) execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0) readv$auto(0x3, &(0x7f00000001c0)={0x0, 0x7fffffffefff}, 0x7) r0 = syz_clone(0x40100100, 0x0, 0x0, 0x0, 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/bus/pci/resource_alignment\x00', 0x8ea182, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/irq/11/smp_affinity\x00', 0xe0182, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/dummy_hcd.3/usb4/bNumConfigurations\x00', 0x80400, 0x0) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4) (async) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) (async) r1 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/pagetypeinfo\x00', 0x43102, 0x0) futex$auto(0x0, 0xc, 0xffffffff, 0x0, 0x0, 0x4) (async) read$auto_proc_iter_file_ops_compat_inode(r1, &(0x7f0000000180)=""/178, 0xb2) (async) r2 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/fs/netfs/volumes\x00', 0x0, 0x0) read$auto_proc_iter_file_ops_compat_inode(r2, &(0x7f0000000180)=""/250, 0xfa) (async) socket(0xf, 0x2, 0x0) (async) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) (async) r3 = socket(0x2, 0x2, 0x3a) setsockopt$auto(r3, 0x29, 0x39, 0x0, 0x110) (async) r4 = syz_open_procfs$namespace(0x0, &(0x7f0000000040)) fcntl$auto(r4, 0x200050a, r0) (async) close_range$auto(0x2, 0x8, 0x0) (async) io_uring_setup$auto(0x6, 0x0) (async) read$auto(0x3, 0x0, 0x80) 4.987046538s ago: executing program 2 (id=1005): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmsg$auto_NET_SHAPER_CMD_GROUP(0xffffffffffffffff, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2004c804}, 0x14) close_range$auto(0x2, 0x8, 0x0) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) r0 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_FLOW_CMD_GET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010025bd700002dcdf250300000004000800100001800c0010800800f200", @ANYRES32=0x0, @ANYBLOB="e569bf963d9490d981ff2a710a8be8b6e20abc6e363d7e3fc6c79357f9daa5d1f9bc88f767ed39e83aff66149a584b438a7c10fb7e27c9da992c56fe8bf5c468ccea8dbcd3beef46523802d0d63f6aac"], 0x28}, 0x1, 0x0, 0x0, 0x200400f0}, 0x800) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r2, 0x0, 0x100000a3d9) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(0xffffffffffffffff, 0x0, 0x0) write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000e3d9) close_range$auto(0x2, 0x8, 0x0) 4.12002886s ago: executing program 2 (id=1009): socket(0x10, 0x4, 0xffffffc0) read$auto_def_blk_fops_fs(0xffffffffffffffff, &(0x7f00000005c0)=""/223, 0xdf) r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82400, 0x0) ioctl$auto_SG_SCSI_RESET(r0, 0x2284, &(0x7f00000001c0)) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x6, 0x0, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x4000000000005, 0x6, 0x62, 0x8, 0x7, 0x1, 0xb, 0x103, 0x18]}, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d7) write$auto(0xffffffffffffffff, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) ioctl$auto(0x3, 0x80000541b, r1) write$auto_fops_init_pkru_pkeys(r2, &(0x7f0000000080)="2e04f4141d9d64f1d150812080e17508e11c4519d51ae5a58bc7becf49fa497eea89f910d24ff2dfffac", 0x2a) socket(0x10, 0x2, 0xffffffff) r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/timers\x00', 0x109500, 0x0) pread64$auto(r3, 0x0, 0x8, 0xffff) madvise$auto(0xffdffffffffffffc, 0x200006, 0x0) socket(0x2b, 0x2, 0x20a) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x802, 0x0) r4 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_FLOW_CMD_GET(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001180)={&(0x7f0000001140)={0x24, r4, 0x1, 0x70bd25, 0x25dfdc02, {}, [@OVS_FLOW_ATTR_ACTIONS={0x4}, @OVS_FLOW_ATTR_KEY={0x8, 0x1, 0x0, 0x1, [@typed={0x4, 0x35}]}, @OVS_FLOW_ATTR_PROBE={0x4}]}, 0x24}, 0x1, 0x0, 0x0, 0x3ce469a78f6c9bbb}, 0x800) mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) 3.405455994s ago: executing program 0 (id=1012): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nfc(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_NFC_CMD_ACTIVATE_TARGET(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x24, r1, 0x10, 0x70bd29, 0x25dfdbfc, {}, [@NFC_ATTR_VENDOR_ID={0x8, 0x1d, 0x9}, @NFC_ATTR_LLC_PARAM_LTO={0x5, 0xf, 0x28}]}, 0x24}, 0x1, 0x0, 0x0, 0x4d004}, 0x4000800) r2 = openat$auto_ima_measurements_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000001480), 0x400, 0x0) pread64$auto(r2, 0x0, 0x101, 0x800005c2b) 3.179621166s ago: executing program 0 (id=1014): mmap$auto(0x0, 0x202000b, 0x3, 0xeb1, 0xfffffffffffffffa, 0x7fff) r0 = openat$auto_ftrace_formats_fops_trace_printk(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/printk_formats\x00', 0x109000, 0x0) r1 = openat$auto_dfs_global_fops_debug(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/ubifs/chk_lprops\x00', 0x40400, 0x0) read$auto_dfs_global_fops_debug(r1, 0x0, 0x0) fchown$auto(r0, 0x0, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f00000009c0), 0xffffffffffffffff) sendmsg$auto_IPVS_CMD_SET_SERVICE(r2, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000002a80)={&(0x7f0000002b00)={0x30, r3, 0x1, 0x70bd28, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_SERVICE={0x1c, 0x1, 0x0, 0x1, [@nested={0x8, 0x5, 0x0, 0x1, [@typed={0x4, 0x7d, 0x0, 0x0, @binary}]}, @nested={0x10, 0x1, 0x0, 0x1, [@typed={0xa, 0x93, 0x0, 0x0, @str='),]-,\x00'}]}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x4050}, 0x4000000) sysfs$auto(0x2, 0x100000000000035, 0x0) r4 = fsopen$auto(0x0, 0x1) fsconfig$auto(r4, 0x1, &(0x7f0000000000)='4\x93\x03\x00\x04\x00\x00', &(0x7f00000001c0), 0x0) 2.901732215s ago: executing program 3 (id=1016): openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/trace\x00', 0x600, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x59, 0x0) open(0x0, 0x64842, 0x0) io_uring_setup$auto(0x6, 0x0) statx$auto(0x2, 0x0, 0x1000, 0x8, 0x0) timerfd_settime$auto(0xffffffffffffffff, 0x3, 0x0, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/gretap0/statistics/tx_packets\x00', 0x182b02, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) sendfile$auto(0x1, 0x3, 0x0, 0x74c) 2.900593951s ago: executing program 0 (id=1017): openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/trace\x00', 0x600, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x59, 0x0) open(0x0, 0x64842, 0x0) io_uring_setup$auto(0x6, 0x0) statx$auto(0x2, 0x0, 0x1000, 0x8, 0x0) timerfd_settime$auto(0xffffffffffffffff, 0x3, 0x0, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/gretap0/statistics/tx_packets\x00', 0x182b02, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x74c) 2.884864907s ago: executing program 2 (id=1018): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmsg$auto_NET_SHAPER_CMD_GROUP(0xffffffffffffffff, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2004c804}, 0x14) close_range$auto(0x2, 0x8, 0x0) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) r0 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_FLOW_CMD_GET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010025bd700002dcdf250300000004000800100001800c0010800800f200", @ANYRES32=0x0, @ANYBLOB="e569bf963d9490d981ff2a710a8be8b6e20abc6e363d7e3fc6c79357f9daa5d1f9bc88f767ed39e83aff66149a584b438a7c10fb7e27c9da992c56fe8bf5c468ccea8dbcd3beef46523802d0d63f6aac"], 0x28}, 0x1, 0x0, 0x0, 0x200400f0}, 0x800) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) write$auto(0xffffffffffffffff, 0x0, 0x0) write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000e3d9) close_range$auto(0x2, 0x8, 0x0) 2.344455252s ago: executing program 3 (id=1020): socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x0, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000) mmap$auto(0x0, 0x40000a, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x1e, 0x1, 0x0) getsockname$auto(r0, &(0x7f0000000000)=@in={0x2, 0x0, @remote}, &(0x7f0000000040)=0x3) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1e, 0x4, 0x0) r1 = socket(0x1e, 0x4, 0x0) get_robust_list$auto(0x0, 0x0, 0x0) setsockopt$auto(r1, 0x10f, 0x87, 0x0, 0x14) setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 2.061466746s ago: executing program 0 (id=1021): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/machinecheck/machinecheck0/monarch_timeout\x00', 0x2, 0x0) preadv$auto(0x40000000000003, &(0x7f0000000240)={0x0, 0xfffffffd}, 0x6, 0xc, 0x1) mmap$auto(0x0, 0x2020009, 0x6, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x5, 0x0) r0 = socket(0x2, 0x5, 0x0) getsockopt$auto(r0, 0x84, 0xd, 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000001180), 0xffffffffffffffff) sendmsg$auto_IOAM6_CMD_ADD_NAMESPACE(r1, &(0x7f0000001280)={0x0, 0x0, &(0x7f0000001240)={&(0x7f00000011c0)={0x24, r2, 0x1, 0x70bd25, 0x25dfdbff, {}, [@IOAM6_ATTR_NS_DATA={0x8, 0x2, 0x2}, @IOAM6_ATTR_NS_ID={0x6, 0x1, 0x4}]}, 0x24}, 0x1, 0x0, 0x0, 0x4}, 0x4008000) 1.871448312s ago: executing program 3 (id=1022): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/platform/i8042/serio1/power/wakeup_abort_count\x00', 0x60204, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000e00)=""/4096, 0x1000) 1.767006151s ago: executing program 0 (id=1023): prctl$auto(0x1000000001c, 0x5, 0x100000000, 0x400000000009, 0x3fffffffff) setreuid$auto(0x0, 0x5) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000380), 0x101100, 0x0) socket(0x2, 0x3, 0xa) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x608100, 0x0) r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/fs/cifs/SecurityFlags\x00', 0x48041, 0x0) write$auto(r0, 0x0, 0x4) read$auto(r0, &(0x7f0000000180)='/sys/kernel/debug/usb/usbmon/9t\x00', 0x7) socket(0x1f, 0x3, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r1, 0x0, 0x100100a3d7) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x5, 0x400008, 0xdc, 0x19, r0, 0x8000) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x68440, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000000)=""/130, 0x82) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x200000020009, 0xdf, 0xeb1, 0x40000000000a5, 0x40000008000) openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) nanosleep$auto(&(0x7f0000000180)={0x0, 0x44d4}, 0x0) getpid() clock_nanosleep$auto(0x800009, 0x2, 0x0, 0x0) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x902264947e88ee01, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0x10001, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7fffe000) select$auto(0x1000011, 0x0, 0x0, &(0x7f00000002c0)={[0x201, 0x10000007, 0xd, 0x1, 0x200000007f, 0x3, 0x20015f4da0a, 0x4, 0x2000001008, 0x64, 0x4000008000001f, 0x7, 0x10001, 0xa, 0x2, 0x6]}, 0x0) socket(0x11, 0xa, 0x9) 1.632148169s ago: executing program 3 (id=1024): r0 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000003c00), 0x1a9901, 0x0) write$auto(r0, &(0x7f00000000c0)='\x17\xd6M\x8dy\x9ai2OI\xb1\x8b\x8c#z\xd5\xd9\xdeT\xa5xWv\xaa61\xa0(\xca\xab*\xe3^\x00\x00\x00\x00\x00\x00\xff\x7fUq\xab%\xcc\xc9\xb5\x7f\a\x11\xe1\x9a\xe0\xc8\xcf>\xd1\xe2T\x13hf\\cC4\x13\t$^\xb2\xf7\x9f\xbc\xec\xaa\x0e\xbfj\xd7\x10\xa2\xa3\xdd\t\x91F\x18Hh\xcf\xf5\xbb\xfbyLb\x13\xd7\'H\xab\xbf\xb0>\x0e\xde\xa5\xb7\x10\x03\x8a\xcf\x83[\xb1\xe8.\xd7\x11\xaf\x11\xfba\xe8O?\xa9D]ht\xc6\xcf\x01j\xe9\x86\x8f\xd1\xa0\xbc-\xe7\x9a\xcb\xa1\xc5U\xe7gH\xd7\x8dN\x1a\xf4\x98\x96\xc5=>\xda\xd1\x03\xd4\xf6%\xd9\xcf;\x17\xabN,\x83\xfe\\\x02V\xfbC\xfa\x00\x00\x00\x00\x00\x00\xf9\xff\x00', 0x20000000004) close_range$auto(0x2, 0x8, 0x0) ioctl$auto(0x3, 0x541b, 0x7f) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) set_mempolicy$auto(0x6, &(0x7f0000000000)=0x7c, 0x7) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) r1 = socket(0xa, 0x2, 0x88) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'team0\x00', 0x0}) bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r3, r2, 0x4, 0x1, r1, @relative_id=0x13, 0xe600}, 0xf) close_range$auto(0x2, 0x8, 0x4) socket(0x11, 0x2, 0x1) openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/ieee80211/phy1/airtime_flags\x00', 0x2, 0x0) lseek$auto(0x3, 0xfffffffffffffffe, 0x4) bpf$auto(0x4, &(0x7f00000001c0)=@raw_tracepoint={0x1, r1, 0x0, 0x3}, 0x3) r4 = bpf$auto(0x5, &(0x7f0000000000)=@iter_create={0x1a, 0x4}, 0x7) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2, 0x80802, 0x0) openat$auto_rb_simple_fops_trace(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/debug/tracing/tracing_on\x00', 0x2, 0x0) read$auto(0x3, 0x0, 0x80) write$auto(0x3, 0x0, 0xfffffdef) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000140), r6) sendmsg$auto_OVS_VPORT_CMD_SET(r4, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="2039ab00", @ANYRES16=r7, @ANYBLOB="5bd226bd7000fddbdf250400000004000480080008009b756abce4b531baeb0d63ef88375f3dd7f426f0a87a5eac7d1072c41370ed8d13e1c5f4774e6ed171dae6ee753d6a563ac89962e232d5df81b55be27258b19b3558c9989a371dd3aa0f63b6e498cb7cc423f62b0fcad84f6f338813acc35f0ed4c70cacf9f36e6569c92b674b0bca6d6932a17bd59c825bc5362e2e79a5a7011c0c1f097b613502ece62e58279dec7068000cb01515ac3043945388590ebe8dcc9cc1e2f0055be875217c2c630cbec3b32c36de3b31a053f34750d62236fc007350815e4fa1f5aee657", @ANYRES32=0x0, @ANYBLOB], 0x20}, 0x1, 0x0, 0x0, 0x10880}, 0x4094) syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000340), r5) 1.356402363s ago: executing program 1 (id=1026): r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0) mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x8e051, r0, 0x0) mmap$auto(0x2000000, 0x9, 0xfffffffffffffff9, 0x8000000008011, 0x3, 0x0) 1.230673334s ago: executing program 1 (id=1027): openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC2\x00', 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nlctrl(0x0, 0xffffffffffffffff) sendmsg$auto_CTRL_CMD_GETPOLICY(r0, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000001180)={&(0x7f0000001100)={0x28, r1, 0x301, 0x70bd25, 0x25dfdbff, {}, [@CTRL_ATTR_OP={0x8, 0xa, 0x3}, @CTRL_ATTR_FAMILY_NAME={0x9, 0x2, 'vdpa\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0x20000800}, 0xc040810) mmap$auto(0x0, 0x240009, 0xdf, 0x9b72, 0x7, 0x28000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/fs/cifs/SecurityFlags\x00', 0x48041, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x2, 0x0) openat$auto_drm_connector_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000b80)='/sys/kernel/debug/dri/vkms/Writeback-1/force\x00', 0x2, 0x0) socket(0x2, 0x2, 0x1) socket(0x10, 0x2, 0x4) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) io_uring_setup$auto(0x2, 0x0) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/icmp/ratemask\x00', 0xa0202, 0x0) ioctl$auto_TIOCSETD2(r2, 0x5423, 0x0) socketpair$auto(0x5b, 0x1, 0x420000, 0x0) r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ttyS2\x00', 0x101f81, 0x0) ioctl$auto_TIOCSETD2(r3, 0x5423, 0x0) ioctl$auto_TIOCVHANGUP2(r2, 0x5437, 0x0) 860.592531ms ago: executing program 1 (id=1028): close_range$auto(0x0, 0xffffffffffffffff, 0x2) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001480), r0) sendmsg$auto_ETHTOOL_MSG_CHANNELS_SET(r0, &(0x7f0000001cc0)={0x0, 0x0, &(0x7f0000001c80)={&(0x7f00000003c0)={0x34, r1, 0x1, 0x70bd2a, 0x25dfdc00, {}, [@ETHTOOL_A_CHANNELS_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bridge\x00'}]}, @ETHTOOL_A_CHANNELS_TX_COUNT={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x2404c804}, 0x0) fanotify_init$auto(0x1f53, 0x2000000000002) r2 = open(&(0x7f0000000000)='./file1\x00', 0x1652c2, 0xe1d2b27bdc14aa98) fanotify_mark$auto(0x400000000000, 0x105, 0xf2b, r2, 0x0) 695.635539ms ago: executing program 1 (id=1029): openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/trace\x00', 0x600, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x59, 0x0) open(0x0, 0x64842, 0x0) io_uring_setup$auto(0x6, 0x0) statx$auto(0x2, 0x0, 0x1000, 0x8, 0x0) timerfd_settime$auto(0xffffffffffffffff, 0x3, 0x0, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/gretap0/statistics/tx_packets\x00', 0x182b02, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x74c) 605.357371ms ago: executing program 3 (id=1030): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/platform/i8042/serio1/power/wakeup_abort_count\x00', 0x60204, 0x0) mmap$auto(0x7, 0x0, 0x8, 0x8000000000000011, r0, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000e00)=""/4096, 0x1000) 521.091778ms ago: executing program 3 (id=1031): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000100), r0) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000940)={'batadv0\x00', 0x0}) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) rseq$auto(0x0, 0xfffffff4, 0x0, 0x5) sysfs$auto(0x2, 0x10000000000002a, 0x0) write$auto(0xffffffffffffffff, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0xffffffffffffffff, 0x27fff) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x8df41, 0x0) msync$auto(0x1ffff000, 0x1800000ff010000, 0x400000004) socket(0x15, 0xa, 0x5) kexec_load$auto(0xff, 0x2, &(0x7f0000000080)={@kbuf=0x0, 0x2, 0x8000, 0x3000}, 0x4) mkdir$auto(&(0x7f0000001580)='./file0\x00', 0x1) lsetxattr$auto(&(0x7f0000003080)='./file0\x00', &(0x7f00000030c0)='-\x00', &(0x7f0000003100), 0x7, 0x3) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000005c0), r4) sendmsg$auto_ETHTOOL_MSG_STRSET_GET(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000180)=ANY=[@ANYBLOB="18000000", @ANYRES16=r5, @ANYBLOB="010027bd7000fedbdf2501000000040001804fc1cca1e1f4b6f8fe73d8500781d01c540ff75a1450be20f496953394af6974b5ca01aef452484a6795f9fd6b891b25c6879d44064fc74e9287af9146e09bd789a7ef5ad6503b0245366c15336a75c663b8526aea22a6500b272db00e4a8f784d7340cd5d6a1ff5909be217da846c8e4781540b81bc3d2d858d9b56a2d1a5f90464cb1d46f8e471df680719f82622324da40706dba2c7525590"], 0x18}, 0x1, 0x0, 0x0, 0x4104}, 0x10) sendmsg$auto_BATADV_CMD_GET_ORIGINATORS(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000900)={&(0x7f0000000280)={0x1c, r1, 0x3abba0b2ae0bab93, 0x70bd2c, 0x25dfdbfb, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r3}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc811}, 0x10) 465.991101ms ago: executing program 0 (id=1032): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2, 0x1, 0x0) setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @empty}, 0x51) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) write$auto(0x3, 0x0, 0x7fffffff) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) madvise$auto(0x0, 0x2003f0, 0x15) write$auto(0xffffffffffffffff, 0x0, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) read$auto_uprobe_profile_ops_trace_uprobe(0xffffffffffffffff, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x80000, 0x0) prctl$auto(0x35, 0x8, 0x2, 0x4, 0x3) getsockopt$auto(0x100000006, 0x1, 0x28, 0xfffffffffffffffc, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0) close_range$auto(0x2, 0xffffffffffffffff, 0x400) mmap$auto(0x0, 0xc, 0x9c0f, 0x44eb2, 0x10006, 0x300000000000) socket(0x2, 0x3, 0x6) r0 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0) r1 = openat$auto_cgwb_debug_stats_fops_(0xffffffffffffff9c, &(0x7f00000010c0)='/sys/kernel/debug/bdi/1:15/wb_stats\x00', 0x40, 0x0) mmap$auto(0x7ffffffffe, 0x4, 0x4000000000df, 0x40eb5, r1, 0x300000000000) 217.056839ms ago: executing program 1 (id=1033): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000001180), 0xffffffffffffffff) mmap$auto(0x0, 0x2020007, 0xffffffffffffffff, 0xeb1, 0xffffffffffffffff, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) r4 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000001000)='/dev/cec6\x00', 0x100000, 0x0) ioctl$auto_CEC_ADAP_G_CONNECTOR_INFO(r4, 0x8044610a, &(0x7f0000001040)={0xfff, @drm={0x9, 0x4}}) openat$auto_stat_fops_(0xffffffffffffff9c, &(0x7f00000001c0), 0x141200, 0x0) getpgrp(0x0) sendmsg$auto_IOAM6_CMD_ADD_NAMESPACE(r2, &(0x7f0000001280)={0x0, 0x0, &(0x7f0000001240)={&(0x7f00000011c0)={0x30, r3, 0x1, 0x70bd25, 0x25dfdbff, {}, [@IOAM6_ATTR_NS_DATA={0x8, 0x2, 0x2}, @IOAM6_ATTR_NS_ID={0x6, 0x1, 0x4}, @IOAM6_ATTR_NS_DATA_WIDE={0xc, 0x3, 0x10000}]}, 0x30}, 0x1, 0x0, 0x0, 0x4}, 0x4008000) r5 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card1\x00', 0x0, 0x0) ioctl$auto(r5, 0x64c7, 0x1e2) sendmsg$auto_IOAM6_CMD_DUMP_NAMESPACES(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r3, 0x300, 0x70bd27, 0x25dfdbfb, {}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x4000044) sendmsg$auto_OVS_DP_CMD_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)={0x34, r1, 0x1, 0x2070bd26, 0x25dfdbfd, {0x1, 0x0, 0x700}, [@OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x4}, @OVS_DP_ATTR_NAME={0x8, 0x1, '\x00\x00\x00\x00'}, @OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0xffffffffffffffff}, @OVS_DP_ATTR_MASKS_CACHE_SIZE={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x4c855}, 0x4880) 209.518188ms ago: executing program 2 (id=1034): socket(0x11, 0x3, 0x9) mmap$auto(0x7fffffffffffe, 0x9, 0xfffffffffffffff9, 0x8000000008011, 0x3, 0x0) 0s ago: executing program 1 (id=1035): openat$auto_deferred_devs_fops_(0xffffffffffffff9c, &(0x7f0000000140), 0x36401, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) r0 = epoll_create$auto(0x3e) epoll_ctl$auto(r0, 0x1, 0x8000000000000000, 0x0) mmap$auto(0xfffffffffffffffe, 0x99, 0xdf, 0x200000000000eb2, r0, 0x8004) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/system/cpu/cpu1/hotplug/target\x00', 0x800, 0x0) read$auto(r1, 0x0, 0x7) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) r3 = openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, 0x0, 0x12100, 0x0) read$auto_def_blk_fops_fs(r3, 0x0, 0x0) fstatfs$auto(r2, &(0x7f0000000240)={0x1, 0x401, 0x72, 0x7fffffff, 0x4, 0x8000, 0x1, {[0x3, 0x3]}, 0xc2, 0xb23, 0x1eda, [0x10, 0x7, 0x100, 0xc]}) mmap$auto(0x8, 0x2020009, 0xffffffffffffffff, 0xeb1, 0xfffffffffffffffa, 0x8001) r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/fail-nth\x00', 0x610c02, 0x0) mmap$auto(0x0, 0x2000d, 0x4000000000df, 0xeb1, 0x401, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/platform/vhci_hcd.6/usb22/22-0:1.0/usb22-port3/disable\x00', 0x581002, 0x0) writev$auto(r4, &(0x7f0000000200)={0x0, 0x3}, 0x3) set_mempolicy$auto(0x2, &(0x7f0000000080)=0x7e, 0x4) fsopen$auto(0x0, 0xfffffffc) mmap$auto(0x3, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) unshare$auto(0x40000080) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/mac80211_hwsim/hwsim1/ieee80211/phy1/rfkill3/state\x00', 0x40302, 0x0) setuid$auto(0x0) getrandom$auto(&(0x7f0000000000)='+]#&,\x00', 0x2, 0x9) r6 = socket(0x11, 0x3, 0x9) sendmmsg$auto(r6, &(0x7f00000001c0)={{&(0x7f0000000000), 0x5ac, &(0x7f0000000100)={&(0x7f0000000200), 0x49}, 0x5, &(0x7f0000000180), 0x5, 0xe}, 0x5}, 0x2, 0x100) sendfile$auto(r5, r5, 0x0, 0x200000005) kernel console output (not intermixed with test programs): 34309][ T7682] should_fail_ex+0x512/0x640 [ 193.034344][ T7682] should_failslab+0xc2/0x120 [ 193.034366][ T7682] __kmalloc_cache_noprof+0x6a/0x3e0 [ 193.034403][ T7682] ? sctp_add_bind_addr+0xae/0x3f0 [ 193.034438][ T7682] sctp_add_bind_addr+0xae/0x3f0 [ 193.034472][ T7682] sctp_copy_local_addr_list+0x39d/0x5a0 [ 193.034501][ T7682] ? __pfx_sctp_copy_local_addr_list+0x10/0x10 [ 193.034529][ T7682] ? sctp_auth_asoc_copy_shkeys+0x2a5/0x360 [ 193.034559][ T7682] ? sctp_bind_addr_copy+0xe0/0x530 [ 193.034589][ T7682] sctp_bind_addr_copy+0xe0/0x530 [ 193.034628][ T7682] sctp_connect_new_asoc+0x1d7/0x790 [ 193.034658][ T7682] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 193.034694][ T7682] ? bpf_lsm_sctp_bind_connect+0x9/0x10 [ 193.034722][ T7682] sctp_sendmsg+0x15f9/0x1ee0 [ 193.034747][ T7682] ? __lock_acquire+0x622/0x1c90 [ 193.034784][ T7682] ? __pfx_sctp_sendmsg+0x10/0x10 [ 193.034814][ T7682] ? __pfx___might_resched+0x10/0x10 [ 193.034851][ T7682] ? __pfx_aa_sk_perm+0x10/0x10 [ 193.034882][ T7682] ? __pfx_sctp_sendmsg+0x10/0x10 [ 193.034910][ T7682] inet_sendmsg+0x11c/0x140 [ 193.034941][ T7682] ____sys_sendmsg+0x973/0xc70 [ 193.034970][ T7682] ? __pfx_____sys_sendmsg+0x10/0x10 [ 193.035001][ T7682] ? __pfx__kstrtoull+0x10/0x10 [ 193.035033][ T7682] ___sys_sendmsg+0x134/0x1d0 [ 193.035071][ T7682] ? __pfx____sys_sendmsg+0x10/0x10 [ 193.035119][ T7682] ? find_held_lock+0x2b/0x80 [ 193.035162][ T7682] __sys_sendmmsg+0x200/0x420 [ 193.035198][ T7682] ? __pfx___sys_sendmmsg+0x10/0x10 [ 193.035241][ T7682] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 193.035289][ T7682] ? fput+0x70/0xf0 [ 193.035310][ T7682] ? ksys_write+0x1ac/0x250 [ 193.035339][ T7682] ? __pfx_ksys_write+0x10/0x10 [ 193.035374][ T7682] __x64_sys_sendmmsg+0x9c/0x100 [ 193.035410][ T7682] ? lockdep_hardirqs_on+0x7c/0x110 [ 193.035440][ T7682] do_syscall_64+0xcd/0x490 [ 193.035474][ T7682] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 193.035497][ T7682] RIP: 0033:0x7f063e98e929 [ 193.035515][ T7682] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 193.035536][ T7682] RSP: 002b:00007f063f8d2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 193.035558][ T7682] RAX: ffffffffffffffda RBX: 00007f063ebb5fa0 RCX: 00007f063e98e929 [ 193.035574][ T7682] RDX: 0000000000000005 RSI: 0000200000000140 RDI: 0000000000000003 [ 193.035588][ T7682] RBP: 00007f063f8d2090 R08: 0000000000000000 R09: 0000000000000000 [ 193.035601][ T7682] R10: 0000000000000311 R11: 0000000000000246 R12: 0000000000000002 [ 193.035615][ T7682] R13: 0000000000000000 R14: 00007f063ebb5fa0 R15: 00007ffcc757d298 [ 193.035646][ T7682] [ 194.208883][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.215613][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.476593][ T7715] sp0: Synchronizing with TNC [ 194.654879][ T7719] openvswitch: netlink: VXLAN extension message has 4 unknown bytes. [ 194.872055][ T30] audit: type=1800 audit(6045977328.973:30): pid=7729 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.509" name="lu_gp_id" dev="configfs" ino=16545 res=0 errno=0 [ 195.234965][ T7742] netlink: 28 bytes leftover after parsing attributes in process `syz.0.511'. [ 195.479868][ T7754] FAULT_INJECTION: forcing a failure. [ 195.479868][ T7754] name failslab, interval 1, probability 0, space 0, times 0 [ 195.530126][ T7754] CPU: 0 UID: 0 PID: 7754 Comm: syz.3.515 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 195.530167][ T7754] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 195.530181][ T7754] Call Trace: [ 195.530189][ T7754] [ 195.530205][ T7754] dump_stack_lvl+0x16c/0x1f0 [ 195.530245][ T7754] should_fail_ex+0x512/0x640 [ 195.530274][ T7754] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 195.530309][ T7754] should_failslab+0xc2/0x120 [ 195.530332][ T7754] __kmalloc_cache_noprof+0x6a/0x3e0 [ 195.530363][ T7754] ? ovs_dp_cmd_new+0x1af/0xe60 [ 195.530400][ T7754] ovs_dp_cmd_new+0x1af/0xe60 [ 195.530440][ T7754] ? rcu_is_watching+0x12/0xc0 [ 195.530466][ T7754] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 195.530505][ T7754] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 195.530538][ T7754] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 195.530577][ T7754] genl_family_rcv_msg_doit+0x209/0x2f0 [ 195.530607][ T7754] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 195.530636][ T7754] ? trace_cap_capable+0x18d/0x200 [ 195.530682][ T7754] ? bpf_lsm_capable+0x9/0x10 [ 195.530710][ T7754] ? security_capable+0x7e/0x260 [ 195.530748][ T7754] ? ns_capable+0xd7/0x110 [ 195.530775][ T7754] genl_rcv_msg+0x55c/0x800 [ 195.530809][ T7754] ? __pfx_genl_rcv_msg+0x10/0x10 [ 195.530839][ T7754] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 195.530884][ T7754] netlink_rcv_skb+0x158/0x420 [ 195.530910][ T7754] ? __pfx_genl_rcv_msg+0x10/0x10 [ 195.530942][ T7754] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 195.530984][ T7754] ? netlink_deliver_tap+0x1ae/0xd30 [ 195.531013][ T7754] genl_rcv+0x28/0x40 [ 195.531039][ T7754] netlink_unicast+0x53a/0x7f0 [ 195.531081][ T7754] ? __pfx_netlink_unicast+0x10/0x10 [ 195.531116][ T7754] netlink_sendmsg+0x8d1/0xdd0 [ 195.531149][ T7754] ? __pfx_netlink_sendmsg+0x10/0x10 [ 195.531186][ T7754] ____sys_sendmsg+0xa95/0xc70 [ 195.531219][ T7754] ? copy_msghdr_from_user+0x10a/0x160 [ 195.531253][ T7754] ? __pfx_____sys_sendmsg+0x10/0x10 [ 195.531296][ T7754] ___sys_sendmsg+0x134/0x1d0 [ 195.531331][ T7754] ? __pfx____sys_sendmsg+0x10/0x10 [ 195.531364][ T7754] ? __lock_acquire+0x622/0x1c90 [ 195.531437][ T7754] __sys_sendmsg+0x16d/0x220 [ 195.531473][ T7754] ? __pfx___sys_sendmsg+0x10/0x10 [ 195.531518][ T7754] ? syscall_user_dispatch+0x78/0x140 [ 195.531566][ T7754] do_syscall_64+0xcd/0x490 [ 195.531604][ T7754] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 195.531630][ T7754] RIP: 0033:0x7f4b7398e929 [ 195.531650][ T7754] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 195.531675][ T7754] RSP: 002b:00007f4b74768038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 195.531698][ T7754] RAX: ffffffffffffffda RBX: 00007f4b73bb5fa0 RCX: 00007f4b7398e929 [ 195.531716][ T7754] RDX: 0000000000004880 RSI: 0000200000000140 RDI: 0000000000000003 [ 195.531731][ T7754] RBP: 00007f4b74768090 R08: 0000000000000000 R09: 0000000000000000 [ 195.531747][ T7754] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 195.531762][ T7754] R13: 0000000000000000 R14: 00007f4b73bb5fa0 R15: 00007ffcde52edf8 [ 195.531796][ T7754] [ 195.841290][ C0] vkms_vblank_simulate: vblank timer overrun [ 196.213268][ T7770] ima: policy update failed [ 196.274041][ T30] audit: type=1802 audit(6045977330.373:31): pid=7770 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.517" res=0 errno=0 [ 196.648403][ T7776] netlink: 354 bytes leftover after parsing attributes in process `syz.3.519'. [ 197.151886][ T7783] FAULT_INJECTION: forcing a failure. [ 197.151886][ T7783] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 197.165293][ T7783] CPU: 1 UID: 0 PID: 7783 Comm: syz.0.521 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 197.165336][ T7783] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 197.165353][ T7783] Call Trace: [ 197.165362][ T7783] [ 197.165373][ T7783] dump_stack_lvl+0x16c/0x1f0 [ 197.165418][ T7783] should_fail_ex+0x512/0x640 [ 197.165459][ T7783] should_fail_alloc_page+0xe7/0x130 [ 197.165489][ T7783] prepare_alloc_pages+0x3c2/0x610 [ 197.165528][ T7783] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 197.165585][ T7783] ? rcu_is_watching+0x12/0xc0 [ 197.165612][ T7783] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 197.165653][ T7783] ? __alloc_frozen_pages_noprof+0x294/0x23f0 [ 197.165711][ T7783] ? __lock_acquire+0x622/0x1c90 [ 197.165745][ T7783] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 197.165788][ T7783] ? policy_nodemask+0xea/0x4e0 [ 197.165833][ T7783] alloc_pages_mpol+0x1fb/0x550 [ 197.165860][ T7783] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 197.165887][ T7783] ? filemap_get_entry+0x1a7/0x3b0 [ 197.165914][ T7783] folio_alloc_noprof+0x20/0x2d0 [ 197.165941][ T7783] filemap_alloc_folio_noprof+0x3a1/0x470 [ 197.165972][ T7783] ? ___kmalloc_large_node+0x183/0x1e0 [ 197.166004][ T7783] ? __pfx_filemap_alloc_folio_noprof+0x10/0x10 [ 197.166041][ T7783] ? rcu_is_watching+0x12/0xc0 [ 197.166073][ T7783] __filemap_get_folio+0x5e1/0xc30 [ 197.166108][ T7783] ioctx_alloc+0x761/0x2120 [ 197.166160][ T7783] ? __pfx_ioctx_alloc+0x10/0x10 [ 197.166191][ T7783] ? __might_fault+0x13b/0x190 [ 197.166238][ T7783] __x64_sys_io_setup+0xc9/0x210 [ 197.166276][ T7783] do_syscall_64+0xcd/0x490 [ 197.166326][ T7783] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 197.166354][ T7783] RIP: 0033:0x7f063e98e929 [ 197.166376][ T7783] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 197.166403][ T7783] RSP: 002b:00007f063f8d2038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce [ 197.166428][ T7783] RAX: ffffffffffffffda RBX: 00007f063ebb5fa0 RCX: 00007f063e98e929 [ 197.166447][ T7783] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 000000000000ffff [ 197.166465][ T7783] RBP: 00007f063ea10b39 R08: 0000000000000000 R09: 0000000000000000 [ 197.166482][ T7783] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 197.166498][ T7783] R13: 0000000000000000 R14: 00007f063ebb5fa0 R15: 00007ffcc757d298 [ 197.166535][ T7783] [ 198.656230][ T7811] ima: policy update failed [ 198.674124][ T30] audit: type=1802 audit(6045977332.773:32): pid=7811 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.528" res=0 errno=0 [ 198.701743][ T7813] FAULT_INJECTION: forcing a failure. [ 198.701743][ T7813] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 198.728300][ T7813] CPU: 1 UID: 0 PID: 7813 Comm: syz.0.529 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 198.728337][ T7813] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 198.728352][ T7813] Call Trace: [ 198.728360][ T7813] [ 198.728371][ T7813] dump_stack_lvl+0x16c/0x1f0 [ 198.728411][ T7813] should_fail_ex+0x512/0x640 [ 198.728450][ T7813] _copy_from_user+0x2e/0xd0 [ 198.728488][ T7813] move_addr_to_kernel+0x65/0x170 [ 198.728520][ T7813] __copy_msghdr+0x386/0x470 [ 198.728557][ T7813] copy_msghdr_from_user+0xc1/0x160 [ 198.728594][ T7813] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 198.728636][ T7813] ? __pfx__kstrtoull+0x10/0x10 [ 198.728672][ T7813] ___sys_sendmsg+0xfe/0x1d0 [ 198.728710][ T7813] ? __pfx____sys_sendmsg+0x10/0x10 [ 198.728763][ T7813] ? find_held_lock+0x2b/0x80 [ 198.728811][ T7813] __sys_sendmmsg+0x200/0x420 [ 198.728851][ T7813] ? __pfx___sys_sendmmsg+0x10/0x10 [ 198.728899][ T7813] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 198.728951][ T7813] ? fput+0x70/0xf0 [ 198.728975][ T7813] ? ksys_write+0x1ac/0x250 [ 198.729008][ T7813] ? __pfx_ksys_write+0x10/0x10 [ 198.729047][ T7813] __x64_sys_sendmmsg+0x9c/0x100 [ 198.729083][ T7813] ? lockdep_hardirqs_on+0x7c/0x110 [ 198.729117][ T7813] do_syscall_64+0xcd/0x490 [ 198.729157][ T7813] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 198.729188][ T7813] RIP: 0033:0x7f063e98e929 [ 198.729209][ T7813] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 198.729234][ T7813] RSP: 002b:00007f063f8d2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 198.729258][ T7813] RAX: ffffffffffffffda RBX: 00007f063ebb5fa0 RCX: 00007f063e98e929 [ 198.729276][ T7813] RDX: 0000000000000005 RSI: 0000200000000140 RDI: 0000000000000003 [ 198.729292][ T7813] RBP: 00007f063f8d2090 R08: 0000000000000000 R09: 0000000000000000 [ 198.729308][ T7813] R10: 0000000000000311 R11: 0000000000000246 R12: 0000000000000001 [ 198.729323][ T7813] R13: 0000000000000000 R14: 00007f063ebb5fa0 R15: 00007ffcc757d298 [ 198.729358][ T7813] [ 199.342410][ T7822] syz.1.533 (7822) used obsolete PPPIOCDETACH ioctl [ 199.920113][ T7835] netlink: 28 bytes leftover after parsing attributes in process `syz.2.537'. [ 201.504694][ T7865] sp0: Synchronizing with TNC [ 201.674748][ T7869] netlink: 4 bytes leftover after parsing attributes in process `syz.1.550'. [ 202.144457][ T7876] tipc: Started in network mode [ 202.149481][ T7876] tipc: Node identity ee00, cluster identity 4711 [ 202.202611][ T7876] tipc: Node number set to 60928 [ 203.818078][ T7898] netlink: 16 bytes leftover after parsing attributes in process `syz.3.556'. [ 203.851851][ T7898] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 204.465566][ T7872] syz.0.549 (7872) used greatest stack depth: 19800 bytes left [ 204.907653][ T7912] netlink: 28 bytes leftover after parsing attributes in process `syz.3.560'. [ 204.943898][ T7912] caif0: entered promiscuous mode [ 205.130903][ T7922] ALSA: mixer_oss: invalid OSS volume '' [ 205.566960][ T7931] netlink: 16 bytes leftover after parsing attributes in process `syz.3.568'. [ 205.576201][ T7931] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 205.670729][ T7934] FAULT_INJECTION: forcing a failure. [ 205.670729][ T7934] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 205.715237][ T7934] CPU: 0 UID: 0 PID: 7934 Comm: syz.1.569 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 205.715273][ T7934] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 205.715288][ T7934] Call Trace: [ 205.715297][ T7934] [ 205.715306][ T7934] dump_stack_lvl+0x16c/0x1f0 [ 205.715346][ T7934] should_fail_ex+0x512/0x640 [ 205.715384][ T7934] _copy_from_user+0x2e/0xd0 [ 205.715422][ T7934] ____sys_sendmsg+0x607/0xc70 [ 205.715455][ T7934] ? __pfx_____sys_sendmsg+0x10/0x10 [ 205.715489][ T7934] ? __pfx__kstrtoull+0x10/0x10 [ 205.715525][ T7934] ___sys_sendmsg+0x134/0x1d0 [ 205.715563][ T7934] ? __pfx____sys_sendmsg+0x10/0x10 [ 205.715616][ T7934] ? find_held_lock+0x2b/0x80 [ 205.715671][ T7934] __sys_sendmmsg+0x200/0x420 [ 205.715711][ T7934] ? __pfx___sys_sendmmsg+0x10/0x10 [ 205.715760][ T7934] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 205.715812][ T7934] ? fput+0x70/0xf0 [ 205.715837][ T7934] ? ksys_write+0x1ac/0x250 [ 205.715870][ T7934] ? __pfx_ksys_write+0x10/0x10 [ 205.715911][ T7934] __x64_sys_sendmmsg+0x9c/0x100 [ 205.715946][ T7934] ? lockdep_hardirqs_on+0x7c/0x110 [ 205.715982][ T7934] do_syscall_64+0xcd/0x490 [ 205.716020][ T7934] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 205.716047][ T7934] RIP: 0033:0x7fc40fb8e929 [ 205.716067][ T7934] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 205.716092][ T7934] RSP: 002b:00007fc410a9b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 205.716116][ T7934] RAX: ffffffffffffffda RBX: 00007fc40fdb5fa0 RCX: 00007fc40fb8e929 [ 205.716133][ T7934] RDX: 0000000000000005 RSI: 0000200000000140 RDI: 0000000000000003 [ 205.716149][ T7934] RBP: 00007fc410a9b090 R08: 0000000000000000 R09: 0000000000000000 [ 205.716165][ T7934] R10: 0000000000000311 R11: 0000000000000246 R12: 0000000000000001 [ 205.716181][ T7934] R13: 0000000000000000 R14: 00007fc40fdb5fa0 R15: 00007ffd9aaf80a8 [ 205.716215][ T7934] [ 205.920335][ C0] vkms_vblank_simulate: vblank timer overrun [ 206.548599][ T7952] netlink: 264 bytes leftover after parsing attributes in process `syz.1.573'. [ 206.560759][ T7952] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 206.952358][ T7960] netlink: 28 bytes leftover after parsing attributes in process `syz.3.575'. [ 207.015421][ T7960] ipvlan1: entered allmulticast mode [ 207.020881][ T7960] veth0_vlan: entered allmulticast mode [ 207.344995][ T7963] FAULT_INJECTION: forcing a failure. [ 207.344995][ T7963] name failslab, interval 1, probability 0, space 0, times 0 [ 207.392329][ T7963] CPU: 0 UID: 0 PID: 7963 Comm: syz.0.576 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 207.392370][ T7963] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 207.392385][ T7963] Call Trace: [ 207.392394][ T7963] [ 207.392404][ T7963] dump_stack_lvl+0x16c/0x1f0 [ 207.392445][ T7963] should_fail_ex+0x512/0x640 [ 207.392485][ T7963] should_failslab+0xc2/0x120 [ 207.392510][ T7963] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 207.392554][ T7963] ? skb_clone+0x190/0x3f0 [ 207.392596][ T7963] skb_clone+0x190/0x3f0 [ 207.392634][ T7963] netlink_deliver_tap+0xabd/0xd30 [ 207.392669][ T7963] netlink_dump+0xb4d/0xce0 [ 207.392699][ T7963] ? __pfx_netlink_dump+0x10/0x10 [ 207.392738][ T7963] ? __asan_memset+0x23/0x50 [ 207.392769][ T7963] ? genl_start+0x67f/0x980 [ 207.392804][ T7963] __netlink_dump_start+0x6d6/0x990 [ 207.392838][ T7963] genl_family_rcv_msg_dumpit+0x1e2/0x2e0 [ 207.392872][ T7963] ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10 [ 207.392915][ T7963] ? __pfx_genl_start+0x10/0x10 [ 207.392943][ T7963] ? __pfx_genl_dumpit+0x10/0x10 [ 207.392969][ T7963] ? __pfx_genl_done+0x10/0x10 [ 207.393001][ T7963] ? bpf_lsm_capable+0x9/0x10 [ 207.393030][ T7963] ? security_capable+0x7e/0x260 [ 207.393071][ T7963] ? ns_capable+0xd7/0x110 [ 207.393101][ T7963] genl_rcv_msg+0x46e/0x800 [ 207.393137][ T7963] ? __pfx_genl_rcv_msg+0x10/0x10 [ 207.393169][ T7963] ? __pfx_batadv_orig_dump+0x10/0x10 [ 207.393222][ T7963] netlink_rcv_skb+0x158/0x420 [ 207.393250][ T7963] ? __pfx_genl_rcv_msg+0x10/0x10 [ 207.393282][ T7963] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 207.393326][ T7963] ? netlink_deliver_tap+0x1ae/0xd30 [ 207.393358][ T7963] genl_rcv+0x28/0x40 [ 207.393385][ T7963] netlink_unicast+0x53a/0x7f0 [ 207.393416][ T7963] ? __pfx_netlink_unicast+0x10/0x10 [ 207.393456][ T7963] netlink_sendmsg+0x8d1/0xdd0 [ 207.393490][ T7963] ? __pfx_netlink_sendmsg+0x10/0x10 [ 207.393537][ T7963] ____sys_sendmsg+0xa95/0xc70 [ 207.393568][ T7963] ? copy_msghdr_from_user+0x10a/0x160 [ 207.393603][ T7963] ? __pfx_____sys_sendmsg+0x10/0x10 [ 207.393651][ T7963] ___sys_sendmsg+0x134/0x1d0 [ 207.393690][ T7963] ? __pfx____sys_sendmsg+0x10/0x10 [ 207.393724][ T7963] ? __lock_acquire+0x622/0x1c90 [ 207.393805][ T7963] __sys_sendmsg+0x16d/0x220 [ 207.393842][ T7963] ? __pfx___sys_sendmsg+0x10/0x10 [ 207.393902][ T7963] do_syscall_64+0xcd/0x490 [ 207.393940][ T7963] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 207.393967][ T7963] RIP: 0033:0x7f063e98e929 [ 207.393988][ T7963] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 207.394012][ T7963] RSP: 002b:00007f063f8d2038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 207.394038][ T7963] RAX: ffffffffffffffda RBX: 00007f063ebb5fa0 RCX: 00007f063e98e929 [ 207.394055][ T7963] RDX: 0000000000000010 RSI: 0000200000000000 RDI: 0000000000000003 [ 207.394071][ T7963] RBP: 00007f063f8d2090 R08: 0000000000000000 R09: 0000000000000000 [ 207.394087][ T7963] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 207.394102][ T7963] R13: 0000000000000000 R14: 00007f063ebb5fa0 R15: 00007ffcc757d298 [ 207.394138][ T7963] [ 207.896874][ T7971] FAULT_INJECTION: forcing a failure. [ 207.896874][ T7971] name failslab, interval 1, probability 0, space 0, times 0 [ 207.909519][ T7971] CPU: 0 UID: 0 PID: 7971 Comm: syz.0.580 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 207.909537][ T7971] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 207.909546][ T7971] Call Trace: [ 207.909551][ T7971] [ 207.909557][ T7971] dump_stack_lvl+0x16c/0x1f0 [ 207.909582][ T7971] should_fail_ex+0x512/0x640 [ 207.909601][ T7971] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 207.909624][ T7971] should_failslab+0xc2/0x120 [ 207.909637][ T7971] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 207.909656][ T7971] ? __sys_sendmmsg+0x200/0x420 [ 207.909676][ T7971] ? __x64_sys_sendmmsg+0x9c/0x100 [ 207.909695][ T7971] ? __alloc_skb+0x2b2/0x380 [ 207.909716][ T7971] __alloc_skb+0x2b2/0x380 [ 207.909734][ T7971] ? __pfx___alloc_skb+0x10/0x10 [ 207.909759][ T7971] _sctp_make_chunk+0x51/0x270 [ 207.909781][ T7971] sctp_make_datafrag_empty+0x16f/0x240 [ 207.909802][ T7971] ? __pfx_sctp_make_datafrag_empty+0x10/0x10 [ 207.909828][ T7971] sctp_datamsg_from_user+0x592/0x1320 [ 207.909856][ T7971] sctp_sendmsg_to_asoc+0xaf5/0x1bf0 [ 207.909870][ T7971] ? sctp_assoc_set_primary+0x177/0x300 [ 207.909891][ T7971] ? __pfx_sctp_sendmsg_to_asoc+0x10/0x10 [ 207.909907][ T7971] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 207.909925][ T7971] ? sctp_endpoint_lookup_assoc+0x15c/0x2a0 [ 207.909945][ T7971] sctp_sendmsg+0xef5/0x1ee0 [ 207.909960][ T7971] ? __lock_acquire+0x622/0x1c90 [ 207.909986][ T7971] ? __pfx_sctp_sendmsg+0x10/0x10 [ 207.910018][ T7971] ? __pfx___might_resched+0x10/0x10 [ 207.910057][ T7971] ? __pfx_aa_sk_perm+0x10/0x10 [ 207.910079][ T7971] ? __pfx_sctp_sendmsg+0x10/0x10 [ 207.910108][ T7971] inet_sendmsg+0x11c/0x140 [ 207.910128][ T7971] ____sys_sendmsg+0x973/0xc70 [ 207.910145][ T7971] ? __pfx_____sys_sendmsg+0x10/0x10 [ 207.910163][ T7971] ? __pfx__kstrtoull+0x10/0x10 [ 207.910183][ T7971] ___sys_sendmsg+0x134/0x1d0 [ 207.910204][ T7971] ? __pfx____sys_sendmsg+0x10/0x10 [ 207.910232][ T7971] ? find_held_lock+0x2b/0x80 [ 207.910263][ T7971] __sys_sendmmsg+0x200/0x420 [ 207.910285][ T7971] ? __pfx___sys_sendmmsg+0x10/0x10 [ 207.910311][ T7971] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 207.910340][ T7971] ? fput+0x70/0xf0 [ 207.910352][ T7971] ? ksys_write+0x1ac/0x250 [ 207.910371][ T7971] ? __pfx_ksys_write+0x10/0x10 [ 207.910392][ T7971] __x64_sys_sendmmsg+0x9c/0x100 [ 207.910411][ T7971] ? lockdep_hardirqs_on+0x7c/0x110 [ 207.910430][ T7971] do_syscall_64+0xcd/0x490 [ 207.910452][ T7971] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 207.910466][ T7971] RIP: 0033:0x7f063e98e929 [ 207.910478][ T7971] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 207.910495][ T7971] RSP: 002b:00007f063f8d2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 207.910508][ T7971] RAX: ffffffffffffffda RBX: 00007f063ebb5fa0 RCX: 00007f063e98e929 [ 207.910517][ T7971] RDX: 0000000000000005 RSI: 0000200000000140 RDI: 0000000000000003 [ 207.910525][ T7971] RBP: 00007f063f8d2090 R08: 0000000000000000 R09: 0000000000000000 [ 207.910534][ T7971] R10: 0000000000000311 R11: 0000000000000246 R12: 0000000000000002 [ 207.910541][ T7971] R13: 0000000000000000 R14: 00007f063ebb5fa0 R15: 00007ffcc757d298 [ 207.910559][ T7971] [ 208.526271][ T7983] netlink: 16 bytes leftover after parsing attributes in process `syz.0.583'. [ 208.535478][ T7983] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 210.323654][ T8008] ima: policy update failed [ 210.357802][ T30] audit: type=1802 audit(6045977344.453:33): pid=8008 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.591" res=0 errno=0 [ 210.831836][ T8012] Invalid ELF header magic: != ELF [ 213.620816][ T8069] sp0: Synchronizing with TNC [ 214.308735][ T8083] ima: policy update failed [ 214.313440][ T30] audit: type=1802 audit(6045977348.413:34): pid=8083 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.609" res=0 errno=0 [ 215.567304][ T8113] HfR: entered promiscuous mode [ 215.906038][ T8124] netlink: 28 bytes leftover after parsing attributes in process `syz.1.616'. [ 216.419223][ T8138] ima: policy update failed [ 216.425390][ T30] audit: type=1802 audit(6045977350.523:35): pid=8138 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.619" res=0 errno=0 [ 216.535227][ T8141] openvswitch: netlink: Key 0 has unexpected len 8 expected 0 [ 217.286045][ T8135] kafs: addr_prefs: Invalid Command [ 217.514835][ T8156] openvswitch: netlink: Key 0 has unexpected len 8 expected 0 [ 219.187661][ T8187] ima: policy update failed [ 219.193975][ T30] audit: type=1802 audit(6045977353.293:36): pid=8187 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.630" res=0 errno=0 [ 219.744055][ T8195] netlink: 28 bytes leftover after parsing attributes in process `syz.1.632'. [ 219.812373][ T8195] FAULT_INJECTION: forcing a failure. [ 219.812373][ T8195] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 219.873894][ T8195] CPU: 1 UID: 0 PID: 8195 Comm: syz.1.632 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 219.873930][ T8195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 219.873945][ T8195] Call Trace: [ 219.873953][ T8195] [ 219.873963][ T8195] dump_stack_lvl+0x16c/0x1f0 [ 219.874005][ T8195] should_fail_ex+0x512/0x640 [ 219.874044][ T8195] _copy_from_user+0x2e/0xd0 [ 219.874081][ T8195] move_addr_to_kernel+0x65/0x170 [ 219.874113][ T8195] __copy_msghdr+0x386/0x470 [ 219.874149][ T8195] copy_msghdr_from_user+0xc1/0x160 [ 219.874187][ T8195] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 219.874225][ T8195] ? kfree+0x24f/0x4d0 [ 219.874252][ T8195] ? __pfx__kstrtoull+0x10/0x10 [ 219.874288][ T8195] ___sys_sendmsg+0xfe/0x1d0 [ 219.874325][ T8195] ? __pfx____sys_sendmsg+0x10/0x10 [ 219.874394][ T8195] ? __pfx___might_resched+0x10/0x10 [ 219.874427][ T8195] __sys_sendmmsg+0x200/0x420 [ 219.874467][ T8195] ? __pfx___sys_sendmmsg+0x10/0x10 [ 219.874516][ T8195] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 219.874568][ T8195] ? fput+0x70/0xf0 [ 219.874592][ T8195] ? ksys_write+0x1ac/0x250 [ 219.874626][ T8195] ? __pfx_ksys_write+0x10/0x10 [ 219.874671][ T8195] __x64_sys_sendmmsg+0x9c/0x100 [ 219.874706][ T8195] ? lockdep_hardirqs_on+0x7c/0x110 [ 219.874740][ T8195] do_syscall_64+0xcd/0x490 [ 219.874779][ T8195] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 219.874805][ T8195] RIP: 0033:0x7fc40fb8e929 [ 219.874826][ T8195] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 219.874850][ T8195] RSP: 002b:00007fc410a9b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 219.874875][ T8195] RAX: ffffffffffffffda RBX: 00007fc40fdb5fa0 RCX: 00007fc40fb8e929 [ 219.874893][ T8195] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000003 [ 219.874909][ T8195] RBP: 00007fc410a9b090 R08: 0000000000000000 R09: 0000000000000000 [ 219.874925][ T8195] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000002 [ 219.874939][ T8195] R13: 0000000000000000 R14: 00007fc40fdb5fa0 R15: 00007ffd9aaf80a8 [ 219.874970][ T8195] [ 220.622880][ T8206] sp0: Synchronizing with TNC [ 220.935045][ T8214] netlink: 20 bytes leftover after parsing attributes in process `syz.1.636'. [ 221.138936][ T8223] FAULT_INJECTION: forcing a failure. [ 221.138936][ T8223] name failslab, interval 1, probability 0, space 0, times 0 [ 221.225277][ T8223] CPU: 0 UID: 0 PID: 8223 Comm: syz.3.639 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 221.225299][ T8223] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 221.225307][ T8223] Call Trace: [ 221.225313][ T8223] [ 221.225318][ T8223] dump_stack_lvl+0x16c/0x1f0 [ 221.225344][ T8223] should_fail_ex+0x512/0x640 [ 221.225363][ T8223] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 221.225383][ T8223] should_failslab+0xc2/0x120 [ 221.225397][ T8223] __kmalloc_cache_noprof+0x6a/0x3e0 [ 221.225415][ T8223] ? ovs_flow_tbl_init+0x8b/0x600 [ 221.225436][ T8223] ovs_flow_tbl_init+0x8b/0x600 [ 221.225456][ T8223] ovs_dp_cmd_new+0x251/0xe60 [ 221.225478][ T8223] ? rcu_is_watching+0x12/0xc0 [ 221.225493][ T8223] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 221.225518][ T8223] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 221.225537][ T8223] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 221.225558][ T8223] genl_family_rcv_msg_doit+0x209/0x2f0 [ 221.225576][ T8223] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 221.225593][ T8223] ? trace_cap_capable+0x18d/0x200 [ 221.225619][ T8223] ? bpf_lsm_capable+0x9/0x10 [ 221.225635][ T8223] ? security_capable+0x7e/0x260 [ 221.225657][ T8223] ? ns_capable+0xd7/0x110 [ 221.225672][ T8223] genl_rcv_msg+0x55c/0x800 [ 221.225690][ T8223] ? __pfx_genl_rcv_msg+0x10/0x10 [ 221.225707][ T8223] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 221.225731][ T8223] netlink_rcv_skb+0x158/0x420 [ 221.225746][ T8223] ? __pfx_genl_rcv_msg+0x10/0x10 [ 221.225763][ T8223] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 221.225785][ T8223] ? netlink_deliver_tap+0x1ae/0xd30 [ 221.225801][ T8223] genl_rcv+0x28/0x40 [ 221.225815][ T8223] netlink_unicast+0x53a/0x7f0 [ 221.225832][ T8223] ? __pfx_netlink_unicast+0x10/0x10 [ 221.225851][ T8223] netlink_sendmsg+0x8d1/0xdd0 [ 221.225868][ T8223] ? __pfx_netlink_sendmsg+0x10/0x10 [ 221.225889][ T8223] ____sys_sendmsg+0xa95/0xc70 [ 221.225906][ T8223] ? copy_msghdr_from_user+0x10a/0x160 [ 221.225925][ T8223] ? __pfx_____sys_sendmsg+0x10/0x10 [ 221.225949][ T8223] ___sys_sendmsg+0x134/0x1d0 [ 221.225969][ T8223] ? __pfx____sys_sendmsg+0x10/0x10 [ 221.225987][ T8223] ? __lock_acquire+0x622/0x1c90 [ 221.226031][ T8223] __sys_sendmsg+0x16d/0x220 [ 221.226051][ T8223] ? __pfx___sys_sendmsg+0x10/0x10 [ 221.226076][ T8223] ? syscall_user_dispatch+0x78/0x140 [ 221.226102][ T8223] do_syscall_64+0xcd/0x490 [ 221.226124][ T8223] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 221.226138][ T8223] RIP: 0033:0x7f4b7398e929 [ 221.226150][ T8223] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 221.226163][ T8223] RSP: 002b:00007f4b74768038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 221.226176][ T8223] RAX: ffffffffffffffda RBX: 00007f4b73bb5fa0 RCX: 00007f4b7398e929 [ 221.226186][ T8223] RDX: 0000000000004880 RSI: 0000200000000140 RDI: 0000000000000003 [ 221.226194][ T8223] RBP: 00007f4b74768090 R08: 0000000000000000 R09: 0000000000000000 [ 221.226202][ T8223] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 221.226215][ T8223] R13: 0000000000000000 R14: 00007f4b73bb5fa0 R15: 00007ffcde52edf8 [ 221.226233][ T8223] [ 221.545858][ C0] vkms_vblank_simulate: vblank timer overrun syzkaller syzkaller login: [ 222.464547][ T8244] openvswitch: netlink: Tunnel attr 0 has unexpected len 4 expected 8 [ 223.634410][ T8275] netlink: 28 bytes leftover after parsing attributes in process `syz.3.654'. [ 225.529945][ T8307] netlink: 8 bytes leftover after parsing attributes in process `syz.3.664'. [ 225.592357][ T8307] netlink: 8 bytes leftover after parsing attributes in process `syz.3.664'. [ 225.679338][ T8322] ima: policy update failed [ 225.684056][ T30] audit: type=1802 audit(6045977359.783:37): pid=8322 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.670" res=0 errno=0 [ 225.981136][ T8330] device-mapper: ioctl: Unable to rename non-existent device, to uuid „ [ 227.047895][ T8349] netlink: 28 bytes leftover after parsing attributes in process `syz.2.676'. [ 227.061009][ T8349] FAULT_INJECTION: forcing a failure. [ 227.061009][ T8349] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 227.084356][ T8349] CPU: 0 UID: 0 PID: 8349 Comm: syz.2.676 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 227.084392][ T8349] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 227.084407][ T8349] Call Trace: [ 227.084416][ T8349] [ 227.084425][ T8349] dump_stack_lvl+0x16c/0x1f0 [ 227.084464][ T8349] should_fail_ex+0x512/0x640 [ 227.084505][ T8349] _copy_to_user+0x32/0xd0 [ 227.084546][ T8349] simple_read_from_buffer+0xcb/0x170 [ 227.084581][ T8349] proc_fail_nth_read+0x197/0x270 [ 227.084610][ T8349] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 227.084642][ T8349] ? rw_verify_area+0xcf/0x680 [ 227.084671][ T8349] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 227.084701][ T8349] vfs_read+0x1e4/0xc60 [ 227.084738][ T8349] ? __pfx___mutex_lock+0x10/0x10 [ 227.084774][ T8349] ? __pfx_vfs_read+0x10/0x10 [ 227.084817][ T8349] ? __fget_files+0x20e/0x3c0 [ 227.084860][ T8349] ksys_read+0x12a/0x250 [ 227.084892][ T8349] ? __pfx_ksys_read+0x10/0x10 [ 227.084936][ T8349] do_syscall_64+0xcd/0x490 [ 227.084974][ T8349] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 227.085006][ T8349] RIP: 0033:0x7f8cc098d33c [ 227.085027][ T8349] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 227.085054][ T8349] RSP: 002b:00007f8cc1748030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 227.085079][ T8349] RAX: ffffffffffffffda RBX: 00007f8cc0bb5fa0 RCX: 00007f8cc098d33c [ 227.085097][ T8349] RDX: 000000000000000f RSI: 00007f8cc17480a0 RDI: 0000000000000004 [ 227.085111][ T8349] RBP: 00007f8cc1748090 R08: 0000000000000000 R09: 0000000000000000 [ 227.085124][ T8349] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000002 [ 227.085139][ T8349] R13: 0000000000000000 R14: 00007f8cc0bb5fa0 R15: 00007fff5f4bb538 [ 227.085172][ T8349] [ 227.275323][ C0] vkms_vblank_simulate: vblank timer overrun [ 227.600951][ T8354] sp0: Synchronizing with TNC [ 228.224963][ T8381] netlink: 'syz.1.685': attribute type 2 has an invalid length. syzkaller syzkaller login: [ 228.653724][ T8372] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 228.664608][ T8372] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 228.675805][ T8372] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 228.684872][ T8372] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 229.293518][ T8418] FAULT_INJECTION: forcing a failure. [ 229.293518][ T8418] name failslab, interval 1, probability 0, space 0, times 0 [ 229.343121][ T8418] CPU: 0 UID: 0 PID: 8418 Comm: syz.3.693 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 229.343162][ T8418] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 229.343176][ T8418] Call Trace: [ 229.343184][ T8418] [ 229.343194][ T8418] dump_stack_lvl+0x16c/0x1f0 [ 229.343234][ T8418] should_fail_ex+0x512/0x640 [ 229.343267][ T8418] ? __kmalloc_noprof+0xbf/0x510 [ 229.343305][ T8418] ? event_inject_write+0x363/0x2030 [ 229.343329][ T8418] should_failslab+0xc2/0x120 [ 229.343354][ T8418] __kmalloc_noprof+0xd2/0x510 [ 229.343397][ T8418] event_inject_write+0x363/0x2030 [ 229.343424][ T8418] ? __pfx_aa_file_perm+0x10/0x10 [ 229.343462][ T8418] ? __lock_acquire+0xb8a/0x1c90 [ 229.343494][ T8418] ? __pfx_event_inject_write+0x10/0x10 [ 229.343521][ T8418] ? iovec_from_user+0xbb/0x140 [ 229.343583][ T8418] ? __pfx_event_inject_write+0x10/0x10 [ 229.343613][ T8418] vfs_writev+0x5dc/0xde0 [ 229.343643][ T8418] ? __pfx___mutex_trylock_common+0x10/0x10 [ 229.343687][ T8418] ? __pfx_vfs_writev+0x10/0x10 [ 229.343719][ T8418] ? __mutex_lock+0x1ca/0xb90 [ 229.343763][ T8418] ? __pfx___mutex_lock+0x10/0x10 [ 229.343813][ T8418] ? __fget_files+0x20e/0x3c0 [ 229.343843][ T8418] ? __fget_files+0x190/0x3c0 [ 229.343883][ T8418] ? do_writev+0x132/0x340 [ 229.343912][ T8418] do_writev+0x132/0x340 [ 229.343944][ T8418] ? __pfx_do_writev+0x10/0x10 [ 229.343984][ T8418] do_syscall_64+0xcd/0x490 [ 229.344023][ T8418] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 229.344050][ T8418] RIP: 0033:0x7f4b7398e929 [ 229.344071][ T8418] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 229.344095][ T8418] RSP: 002b:00007f4b74768038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 229.344118][ T8418] RAX: ffffffffffffffda RBX: 00007f4b73bb5fa0 RCX: 00007f4b7398e929 [ 229.344136][ T8418] RDX: 0000000000000002 RSI: 0000200000000000 RDI: 0000000000000003 [ 229.344152][ T8418] RBP: 00007f4b74768090 R08: 0000000000000000 R09: 0000000000000000 [ 229.344166][ T8418] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 229.344180][ T8418] R13: 0000000000000000 R14: 00007f4b73bb5fa0 R15: 00007ffcde52edf8 [ 229.344211][ T8418] [ 229.565308][ C0] vkms_vblank_simulate: vblank timer overrun [ 230.046242][ T5834] Bluetooth: hci0: command 0x0c1a tx timeout [ 230.684591][ T5834] Bluetooth: hci2: command 0x0c1a tx timeout [ 230.690015][ T5842] Bluetooth: hci1: command 0x0c1a tx timeout [ 230.767386][ T5842] Bluetooth: hci3: command 0x0c1a tx timeout [ 230.876788][ T8466] FAULT_INJECTION: forcing a failure. [ 230.876788][ T8466] name failslab, interval 1, probability 0, space 0, times 0 [ 230.893902][ T8466] CPU: 0 UID: 0 PID: 8466 Comm: syz.2.706 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 230.893936][ T8466] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 230.893951][ T8466] Call Trace: [ 230.893959][ T8466] [ 230.893968][ T8466] dump_stack_lvl+0x16c/0x1f0 [ 230.894009][ T8466] should_fail_ex+0x512/0x640 [ 230.894041][ T8466] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 230.894078][ T8466] should_failslab+0xc2/0x120 [ 230.894103][ T8466] __kmalloc_cache_noprof+0x6a/0x3e0 [ 230.894132][ T8466] ? __genradix_ptr_alloc+0x340/0x5f0 [ 230.894171][ T8466] ? sctp_auth_shkey_create+0x9e/0x210 [ 230.894201][ T8466] sctp_auth_shkey_create+0x9e/0x210 [ 230.894226][ T8466] sctp_auth_asoc_copy_shkeys+0x1f2/0x360 [ 230.894261][ T8466] sctp_association_new+0x19ad/0x2a00 [ 230.894298][ T8466] sctp_connect_new_asoc+0x1b6/0x790 [ 230.894332][ T8466] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 230.894363][ T8466] ? sctp_endpoint_lookup_assoc+0x15c/0x2a0 [ 230.894395][ T8466] ? bpf_lsm_sctp_bind_connect+0x9/0x10 [ 230.894426][ T8466] sctp_sendmsg+0x15f9/0x1ee0 [ 230.894454][ T8466] ? __lock_acquire+0x622/0x1c90 [ 230.894496][ T8466] ? __pfx_sctp_sendmsg+0x10/0x10 [ 230.894527][ T8466] ? __pfx___might_resched+0x10/0x10 [ 230.894570][ T8466] ? __pfx_aa_sk_perm+0x10/0x10 [ 230.894603][ T8466] ? __pfx_sctp_sendmsg+0x10/0x10 [ 230.894635][ T8466] inet_sendmsg+0x11c/0x140 [ 230.894670][ T8466] ____sys_sendmsg+0x973/0xc70 [ 230.894704][ T8466] ? __pfx_____sys_sendmsg+0x10/0x10 [ 230.894739][ T8466] ? __pfx__kstrtoull+0x10/0x10 [ 230.894782][ T8466] ___sys_sendmsg+0x134/0x1d0 [ 230.894821][ T8466] ? __pfx____sys_sendmsg+0x10/0x10 [ 230.894873][ T8466] ? find_held_lock+0x2b/0x80 [ 230.894922][ T8466] __sys_sendmmsg+0x200/0x420 [ 230.894964][ T8466] ? __pfx___sys_sendmmsg+0x10/0x10 [ 230.895012][ T8466] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 230.895064][ T8466] ? fput+0x70/0xf0 [ 230.895088][ T8466] ? ksys_write+0x1ac/0x250 [ 230.895120][ T8466] ? __pfx_ksys_write+0x10/0x10 [ 230.895160][ T8466] __x64_sys_sendmmsg+0x9c/0x100 [ 230.895195][ T8466] ? lockdep_hardirqs_on+0x7c/0x110 [ 230.895229][ T8466] do_syscall_64+0xcd/0x490 [ 230.895268][ T8466] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 230.895294][ T8466] RIP: 0033:0x7f8cc098e929 [ 230.895315][ T8466] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 230.895340][ T8466] RSP: 002b:00007f8cc1748038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 230.895364][ T8466] RAX: ffffffffffffffda RBX: 00007f8cc0bb5fa0 RCX: 00007f8cc098e929 [ 230.895382][ T8466] RDX: 0000000000000005 RSI: 0000200000000140 RDI: 0000000000000003 [ 230.895397][ T8466] RBP: 00007f8cc1748090 R08: 0000000000000000 R09: 0000000000000000 [ 230.895413][ T8466] R10: 0000000000000311 R11: 0000000000000246 R12: 0000000000000001 [ 230.895428][ T8466] R13: 0000000000000000 R14: 00007f8cc0bb5fa0 R15: 00007fff5f4bb538 [ 230.895463][ T8466] [ 231.185550][ C0] vkms_vblank_simulate: vblank timer overrun [ 231.838620][ T8485] netlink: 28 bytes leftover after parsing attributes in process `syz.3.711'. [ 231.929560][ T8487] netlink: 'syz.2.712': attribute type 27 has an invalid length. [ 231.977952][ T8487] netlink: 146 bytes leftover after parsing attributes in process `syz.2.712'. [ 232.373022][ T8489] openvswitch: netlink: Tunnel attr 242 out of range max 16 [ 233.187537][ T8501] openvswitch: netlink: Tunnel attr 242 out of range max 16 [ 233.968513][ T8506] ima: policy update failed [ 233.977783][ T30] audit: type=1802 audit(6045977368.073:38): pid=8506 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.717" res=0 errno=0 [ 234.287766][ T8513] hub 8-0:1.0: USB hub found [ 234.300311][ T8513] hub 8-0:1.0: 1 port detected [ 234.344109][ T8517] netlink: 186 bytes leftover after parsing attributes in process `syz.3.722'. [ 234.422994][ T8517] FAULT_INJECTION: forcing a failure. [ 234.422994][ T8517] name failslab, interval 1, probability 0, space 0, times 0 [ 234.495754][ T8517] CPU: 1 UID: 0 PID: 8517 Comm: syz.3.722 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 234.495794][ T8517] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 234.495810][ T8517] Call Trace: [ 234.495819][ T8517] [ 234.495830][ T8517] dump_stack_lvl+0x16c/0x1f0 [ 234.495875][ T8517] should_fail_ex+0x512/0x640 [ 234.495910][ T8517] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 234.495958][ T8517] should_failslab+0xc2/0x120 [ 234.495983][ T8517] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 234.496025][ T8517] ? cache_create_net+0x2b/0x220 [ 234.496071][ T8517] kmemdup_noprof+0x29/0x60 [ 234.496109][ T8517] cache_create_net+0x2b/0x220 [ 234.496151][ T8517] gss_svc_init_net+0x122/0x660 [ 234.496188][ T8517] ? __pfx_canbcm_pernet_init+0x10/0x10 [ 234.496230][ T8517] ? __pfx_rpcsec_gss_init_net+0x10/0x10 [ 234.496272][ T8517] ops_init+0x1e2/0x5f0 [ 234.496317][ T8517] setup_net+0x1ff/0x510 [ 234.496339][ T8517] ? lockdep_init_map_type+0x5c/0x280 [ 234.496375][ T8517] ? __pfx_setup_net+0x10/0x10 [ 234.496402][ T8517] ? debug_mutex_init+0x37/0x70 [ 234.496432][ T8517] copy_net_ns+0x2a6/0x5f0 [ 234.496463][ T8517] create_new_namespaces+0x3ea/0xa90 [ 234.496501][ T8517] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 234.496533][ T8517] ksys_unshare+0x45b/0xa40 [ 234.496568][ T8517] ? __pfx_ksys_unshare+0x10/0x10 [ 234.496603][ T8517] ? xfd_validate_state+0x61/0x180 [ 234.496647][ T8517] __x64_sys_unshare+0x31/0x40 [ 234.496679][ T8517] do_syscall_64+0xcd/0x490 [ 234.496720][ T8517] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 234.496752][ T8517] RIP: 0033:0x7f4b7398e929 [ 234.496773][ T8517] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 234.496800][ T8517] RSP: 002b:00007f4b74768038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 234.496826][ T8517] RAX: ffffffffffffffda RBX: 00007f4b73bb5fa0 RCX: 00007f4b7398e929 [ 234.496845][ T8517] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 234.496862][ T8517] RBP: 00007f4b73a10b39 R08: 0000000000000000 R09: 0000000000000000 [ 234.496878][ T8517] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 234.496895][ T8517] R13: 0000000000000000 R14: 00007f4b73bb5fa0 R15: 00007ffcde52edf8 [ 234.496932][ T8517] [ 236.416811][ T8562] ima: policy update failed [ 236.424574][ T30] audit: type=1802 audit(6045977370.523:39): pid=8562 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.731" res=0 errno=0 [ 236.481753][ T8565] mkiss: ax0: crc mode is auto. [ 236.519588][ T8563] KVM: debugfs: duplicate directory 8563-3 [ 238.105027][ T8618] ima: policy update failed [ 238.109731][ T30] audit: type=1802 audit(6045977372.213:40): pid=8618 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.744" res=0 errno=0 [ 238.880169][ T8628] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 238.893293][ T8631] FAULT_INJECTION: forcing a failure. [ 238.893293][ T8631] name failslab, interval 1, probability 0, space 0, times 0 [ 238.991801][ T8631] CPU: 1 UID: 0 PID: 8631 Comm: syz.0.748 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 238.991840][ T8631] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 238.991854][ T8631] Call Trace: [ 238.991863][ T8631] [ 238.991883][ T8631] dump_stack_lvl+0x16c/0x1f0 [ 238.991924][ T8631] should_fail_ex+0x512/0x640 [ 238.991957][ T8631] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 238.991993][ T8631] should_failslab+0xc2/0x120 [ 238.992016][ T8631] __kmalloc_cache_noprof+0x6a/0x3e0 [ 238.992046][ T8631] ? ovs_flow_tbl_init+0xb0/0x600 [ 238.992078][ T8631] ? ovs_flow_tbl_init+0x1c7/0x600 [ 238.992115][ T8631] ovs_flow_tbl_init+0x1c7/0x600 [ 238.992152][ T8631] ovs_dp_cmd_new+0x251/0xe60 [ 238.992191][ T8631] ? rcu_is_watching+0x12/0xc0 [ 238.992218][ T8631] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 238.992260][ T8631] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 238.992292][ T8631] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 238.992333][ T8631] genl_family_rcv_msg_doit+0x209/0x2f0 [ 238.992367][ T8631] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 238.992396][ T8631] ? trace_cap_capable+0x18d/0x200 [ 238.992448][ T8631] ? bpf_lsm_capable+0x9/0x10 [ 238.992477][ T8631] ? security_capable+0x7e/0x260 [ 238.992517][ T8631] ? ns_capable+0xd7/0x110 [ 238.992545][ T8631] genl_rcv_msg+0x55c/0x800 [ 238.992579][ T8631] ? __pfx_genl_rcv_msg+0x10/0x10 [ 238.992610][ T8631] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 238.992657][ T8631] netlink_rcv_skb+0x158/0x420 [ 238.992684][ T8631] ? __pfx_genl_rcv_msg+0x10/0x10 [ 238.992716][ T8631] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 238.992756][ T8631] ? netlink_deliver_tap+0x1ae/0xd30 [ 238.992786][ T8631] genl_rcv+0x28/0x40 [ 238.992811][ T8631] netlink_unicast+0x53a/0x7f0 [ 238.992841][ T8631] ? __pfx_netlink_unicast+0x10/0x10 [ 238.992883][ T8631] netlink_sendmsg+0x8d1/0xdd0 [ 238.992916][ T8631] ? __pfx_netlink_sendmsg+0x10/0x10 [ 238.992956][ T8631] ____sys_sendmsg+0xa95/0xc70 [ 238.992985][ T8631] ? copy_msghdr_from_user+0x10a/0x160 [ 238.993019][ T8631] ? __pfx_____sys_sendmsg+0x10/0x10 [ 238.993064][ T8631] ___sys_sendmsg+0x134/0x1d0 [ 238.993102][ T8631] ? __pfx____sys_sendmsg+0x10/0x10 [ 238.993134][ T8631] ? __lock_acquire+0x622/0x1c90 [ 238.993203][ T8631] __sys_sendmsg+0x16d/0x220 [ 238.993237][ T8631] ? __pfx___sys_sendmsg+0x10/0x10 [ 238.993284][ T8631] ? syscall_user_dispatch+0x78/0x140 [ 238.993329][ T8631] do_syscall_64+0xcd/0x490 [ 238.993366][ T8631] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 238.993390][ T8631] RIP: 0033:0x7f063e98e929 [ 238.993411][ T8631] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 238.993436][ T8631] RSP: 002b:00007f063f8d2038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 238.993461][ T8631] RAX: ffffffffffffffda RBX: 00007f063ebb5fa0 RCX: 00007f063e98e929 [ 238.993478][ T8631] RDX: 0000000000004880 RSI: 0000200000000140 RDI: 0000000000000003 [ 238.993494][ T8631] RBP: 00007f063f8d2090 R08: 0000000000000000 R09: 0000000000000000 [ 238.993510][ T8631] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 238.993524][ T8631] R13: 0000000000000000 R14: 00007f063ebb5fa0 R15: 00007ffcc757d298 [ 238.993559][ T8631] [ 239.311651][ C1] vkms_vblank_simulate: vblank timer overrun [ 239.318793][ T8633] netlink: 186 bytes leftover after parsing attributes in process `syz.1.750'. [ 239.346713][ T8633] FAULT_INJECTION: forcing a failure. [ 239.346713][ T8633] name failslab, interval 1, probability 0, space 0, times 0 [ 239.360063][ T8633] CPU: 0 UID: 0 PID: 8633 Comm: syz.1.750 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 239.360099][ T8633] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 239.360113][ T8633] Call Trace: [ 239.360122][ T8633] [ 239.360131][ T8633] dump_stack_lvl+0x16c/0x1f0 [ 239.360170][ T8633] should_fail_ex+0x512/0x640 [ 239.360206][ T8633] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 239.360244][ T8633] should_failslab+0xc2/0x120 [ 239.360267][ T8633] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 239.360302][ T8633] ? __proc_create+0xc3/0x8c0 [ 239.360338][ T8633] ? __proc_create+0x2ce/0x8c0 [ 239.360379][ T8633] __proc_create+0x2ce/0x8c0 [ 239.360418][ T8633] ? __pfx___proc_create+0x10/0x10 [ 239.360461][ T8633] ? proc_register+0x314/0x5f0 [ 239.360507][ T8633] proc_create_reg+0x7d/0x180 [ 239.360533][ T8633] ? __pfx_kcm_stats_seq_show+0x10/0x10 [ 239.360572][ T8633] proc_create_net_single+0x86/0x170 [ 239.360612][ T8633] ? __pfx_proc_create_net_single+0x10/0x10 [ 239.360663][ T8633] ? __pfx_kcm_proc_init_net+0x10/0x10 [ 239.360700][ T8633] kcm_proc_init_net+0x52/0x120 [ 239.360737][ T8633] ops_init+0x1e2/0x5f0 [ 239.360782][ T8633] setup_net+0x1ff/0x510 [ 239.360805][ T8633] ? lockdep_init_map_type+0x5c/0x280 [ 239.360851][ T8633] ? __pfx_setup_net+0x10/0x10 [ 239.360880][ T8633] ? debug_mutex_init+0x37/0x70 [ 239.360910][ T8633] copy_net_ns+0x2a6/0x5f0 [ 239.360943][ T8633] create_new_namespaces+0x3ea/0xa90 [ 239.360982][ T8633] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 239.361015][ T8633] ksys_unshare+0x45b/0xa40 [ 239.361049][ T8633] ? __pfx_ksys_unshare+0x10/0x10 [ 239.361084][ T8633] ? xfd_validate_state+0x61/0x180 [ 239.361128][ T8633] __x64_sys_unshare+0x31/0x40 [ 239.361160][ T8633] do_syscall_64+0xcd/0x490 [ 239.361202][ T8633] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 239.361229][ T8633] RIP: 0033:0x7fc40fb8e929 [ 239.361251][ T8633] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 239.361277][ T8633] RSP: 002b:00007fc410a9b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 239.361302][ T8633] RAX: ffffffffffffffda RBX: 00007fc40fdb5fa0 RCX: 00007fc40fb8e929 [ 239.361321][ T8633] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 239.361338][ T8633] RBP: 00007fc40fc10b39 R08: 0000000000000000 R09: 0000000000000000 [ 239.361355][ T8633] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 239.361371][ T8633] R13: 0000000000000000 R14: 00007fc40fdb5fa0 R15: 00007ffd9aaf80a8 [ 239.361408][ T8633] [ 239.403469][ T8635] FAULT_INJECTION: forcing a failure. [ 239.403469][ T8635] name failslab, interval 1, probability 0, space 0, times 0 [ 239.634511][ T8635] CPU: 0 UID: 0 PID: 8635 Comm: syz.3.751 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 239.634544][ T8635] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 239.634557][ T8635] Call Trace: [ 239.634566][ T8635] [ 239.634574][ T8635] dump_stack_lvl+0x16c/0x1f0 [ 239.634612][ T8635] should_fail_ex+0x512/0x640 [ 239.634642][ T8635] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 239.634674][ T8635] should_failslab+0xc2/0x120 [ 239.634696][ T8635] __kmalloc_cache_noprof+0x6a/0x3e0 [ 239.634727][ T8635] ? do_signalfd4+0x169/0x430 [ 239.634763][ T8635] do_signalfd4+0x169/0x430 [ 239.634796][ T8635] __x64_sys_signalfd+0x120/0x1a0 [ 239.634836][ T8635] ? __pfx___x64_sys_signalfd+0x10/0x10 [ 239.634877][ T8635] do_syscall_64+0xcd/0x490 [ 239.634913][ T8635] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 239.634937][ T8635] RIP: 0033:0x7f4b7398e929 [ 239.634956][ T8635] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 239.634979][ T8635] RSP: 002b:00007f4b74768038 EFLAGS: 00000246 ORIG_RAX: 000000000000011a [ 239.635001][ T8635] RAX: ffffffffffffffda RBX: 00007f4b73bb5fa0 RCX: 00007f4b7398e929 [ 239.635017][ T8635] RDX: 0000000000000008 RSI: 0000000000000000 RDI: 00000000ffffffff [ 239.635031][ T8635] RBP: 00007f4b73a10b39 R08: 0000000000000000 R09: 0000000000000000 [ 239.635046][ T8635] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 239.635060][ T8635] R13: 0000000000000000 R14: 00007f4b73bb5fa0 R15: 00007ffcde52edf8 [ 239.635092][ T8635] [ 240.367674][ T8654] ima: policy update failed [ 240.382456][ T30] audit: type=1802 audit(6045977374.473:41): pid=8654 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.756" res=0 errno=0 [ 241.656794][ T8676] warning: `syz.2.763' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 241.943387][ T8682] FAULT_INJECTION: forcing a failure. [ 241.943387][ T8682] name failslab, interval 1, probability 0, space 0, times 0 [ 241.959134][ T8682] CPU: 0 UID: 0 PID: 8682 Comm: syz.0.765 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 241.959170][ T8682] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 241.959185][ T8682] Call Trace: [ 241.959194][ T8682] [ 241.959204][ T8682] dump_stack_lvl+0x16c/0x1f0 [ 241.959246][ T8682] should_fail_ex+0x512/0x640 [ 241.959277][ T8682] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 241.959313][ T8682] should_failslab+0xc2/0x120 [ 241.959337][ T8682] __kmalloc_cache_noprof+0x6a/0x3e0 [ 241.959369][ T8682] ? sctp_add_bind_addr+0xae/0x3f0 [ 241.959410][ T8682] sctp_add_bind_addr+0xae/0x3f0 [ 241.959448][ T8682] sctp_copy_one_addr.part.0+0xd6/0x120 [ 241.959488][ T8682] sctp_bind_addr_copy+0x1b4/0x530 [ 241.959531][ T8682] sctp_connect_new_asoc+0x1d7/0x790 [ 241.959566][ T8682] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 241.959597][ T8682] ? sctp_endpoint_lookup_assoc+0x15c/0x2a0 [ 241.959628][ T8682] ? bpf_lsm_sctp_bind_connect+0x9/0x10 [ 241.959660][ T8682] sctp_sendmsg+0x15f9/0x1ee0 [ 241.959688][ T8682] ? __lock_acquire+0x622/0x1c90 [ 241.959730][ T8682] ? __pfx_sctp_sendmsg+0x10/0x10 [ 241.959763][ T8682] ? __pfx___might_resched+0x10/0x10 [ 241.959804][ T8682] ? __pfx_aa_sk_perm+0x10/0x10 [ 241.959838][ T8682] ? __pfx_sctp_sendmsg+0x10/0x10 [ 241.959881][ T8682] inet_sendmsg+0x11c/0x140 [ 241.959916][ T8682] ____sys_sendmsg+0x973/0xc70 [ 241.959947][ T8682] ? __pfx_____sys_sendmsg+0x10/0x10 [ 241.959977][ T8682] ? __pfx__kstrtoull+0x10/0x10 [ 241.960009][ T8682] ___sys_sendmsg+0x134/0x1d0 [ 241.960045][ T8682] ? __pfx____sys_sendmsg+0x10/0x10 [ 241.960091][ T8682] ? find_held_lock+0x2b/0x80 [ 241.960132][ T8682] __sys_sendmmsg+0x200/0x420 [ 241.960169][ T8682] ? __pfx___sys_sendmmsg+0x10/0x10 [ 241.960219][ T8682] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 241.960273][ T8682] ? fput+0x70/0xf0 [ 241.960297][ T8682] ? ksys_write+0x1ac/0x250 [ 241.960330][ T8682] ? __pfx_ksys_write+0x10/0x10 [ 241.960371][ T8682] __x64_sys_sendmmsg+0x9c/0x100 [ 241.960406][ T8682] ? lockdep_hardirqs_on+0x7c/0x110 [ 241.960441][ T8682] do_syscall_64+0xcd/0x490 [ 241.960480][ T8682] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 241.960507][ T8682] RIP: 0033:0x7f063e98e929 [ 241.960527][ T8682] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 241.960552][ T8682] RSP: 002b:00007f063f8d2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 241.960577][ T8682] RAX: ffffffffffffffda RBX: 00007f063ebb5fa0 RCX: 00007f063e98e929 [ 241.960595][ T8682] RDX: 0000000000000005 RSI: 0000200000000140 RDI: 0000000000000003 [ 241.960610][ T8682] RBP: 00007f063f8d2090 R08: 0000000000000000 R09: 0000000000000000 [ 241.960623][ T8682] R10: 0000000000000311 R11: 0000000000000246 R12: 0000000000000001 [ 241.960634][ T8682] R13: 0000000000000000 R14: 00007f063ebb5fa0 R15: 00007ffcc757d298 [ 241.960661][ T8682] [ 242.390898][ T8689] ima: policy update failed [ 242.396116][ T30] audit: type=1802 audit(6045977376.503:42): pid=8689 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.767" res=0 errno=0 [ 242.425700][ T8685] FAULT_INJECTION: forcing a failure. [ 242.425700][ T8685] name fail_futex, interval 1, probability 0, space 0, times 0 [ 242.441265][ T8685] CPU: 0 UID: 0 PID: 8685 Comm: syz.3.766 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 242.441298][ T8685] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 242.441312][ T8685] Call Trace: [ 242.441321][ T8685] [ 242.441330][ T8685] dump_stack_lvl+0x16c/0x1f0 [ 242.441371][ T8685] should_fail_ex+0x512/0x640 [ 242.441410][ T8685] get_futex_key+0x1d0/0x1540 [ 242.441443][ T8685] ? __pfx_get_futex_key+0x10/0x10 [ 242.441468][ T8685] ? futex_private_hash+0x197/0x4b0 [ 242.441501][ T8685] ? futex_private_hash+0x1a1/0x4b0 [ 242.441534][ T8685] futex_wait_multiple_setup+0x13c/0x7b0 [ 242.441584][ T8685] futex_wait_multiple+0xe6/0x480 [ 242.441623][ T8685] ? __pfx_futex_wait_multiple+0x10/0x10 [ 242.441658][ T8685] ? __kmalloc_noprof+0x242/0x510 [ 242.441701][ T8685] __do_sys_futex_waitv+0x17f/0x2c0 [ 242.441733][ T8685] ? __pfx___do_sys_futex_waitv+0x10/0x10 [ 242.441785][ T8685] do_syscall_64+0xcd/0x490 [ 242.441829][ T8685] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 242.441856][ T8685] RIP: 0033:0x7f4b7398e929 [ 242.441876][ T8685] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 242.441900][ T8685] RSP: 002b:00007f4b74768038 EFLAGS: 00000246 ORIG_RAX: 00000000000001c1 [ 242.441924][ T8685] RAX: ffffffffffffffda RBX: 00007f4b73bb5fa0 RCX: 00007f4b7398e929 [ 242.441942][ T8685] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000200000000000 [ 242.441957][ T8685] RBP: 00007f4b73a10b39 R08: 000000000000623d R09: 0000000000000000 [ 242.441973][ T8685] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 242.441988][ T8685] R13: 0000000000000000 R14: 00007f4b73bb5fa0 R15: 00007ffcde52edf8 [ 242.442022][ T8685] [ 242.891788][ T8687] qrtr: Invalid version 0 [ 243.736994][ T8714] FAULT_INJECTION: forcing a failure. [ 243.736994][ T8714] name failslab, interval 1, probability 0, space 0, times 0 [ 243.759326][ T8714] CPU: 1 UID: 0 PID: 8714 Comm: syz.0.772 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 243.759353][ T8714] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 243.759361][ T8714] Call Trace: [ 243.759367][ T8714] [ 243.759376][ T8714] dump_stack_lvl+0x16c/0x1f0 [ 243.759402][ T8714] should_fail_ex+0x512/0x640 [ 243.759420][ T8714] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 243.759443][ T8714] should_failslab+0xc2/0x120 [ 243.759457][ T8714] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 243.759477][ T8714] ? alloc_inode+0x64/0x240 [ 243.759493][ T8714] ? __pfx_debugfs_alloc_inode+0x10/0x10 [ 243.759509][ T8714] alloc_inode+0x64/0x240 [ 243.759522][ T8714] new_inode+0x22/0x1c0 [ 243.759538][ T8714] debugfs_create_dir+0xdd/0x5f0 [ 243.759556][ T8714] ptp_open+0x307/0x520 [ 243.759575][ T8714] ? __pfx_ptp_open+0x10/0x10 [ 243.759596][ T8714] ? __pfx_ptp_open+0x10/0x10 [ 243.759610][ T8714] posix_clock_open+0x17b/0x290 [ 243.759626][ T8714] ? __pfx_posix_clock_open+0x10/0x10 [ 243.759640][ T8714] chrdev_open+0x231/0x6a0 [ 243.759659][ T8714] ? __pfx_apparmor_file_open+0x10/0x10 [ 243.759676][ T8714] ? __pfx_chrdev_open+0x10/0x10 [ 243.759697][ T8714] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 243.759718][ T8714] do_dentry_open+0x744/0x1c10 [ 243.759744][ T8714] ? __pfx_chrdev_open+0x10/0x10 [ 243.759768][ T8714] vfs_open+0x82/0x3f0 [ 243.759785][ T8714] path_openat+0x1de4/0x2cb0 [ 243.759810][ T8714] ? __pfx_path_openat+0x10/0x10 [ 243.759830][ T8714] ? __lock_acquire+0xb8a/0x1c90 [ 243.759849][ T8714] do_filp_open+0x20b/0x470 [ 243.759868][ T8714] ? __pfx_do_filp_open+0x10/0x10 [ 243.759900][ T8714] ? alloc_fd+0x471/0x7d0 [ 243.759923][ T8714] do_sys_openat2+0x11b/0x1d0 [ 243.759937][ T8714] ? __pfx_do_sys_openat2+0x10/0x10 [ 243.759959][ T8714] __x64_sys_openat+0x174/0x210 [ 243.759974][ T8714] ? __pfx___x64_sys_openat+0x10/0x10 [ 243.759996][ T8714] do_syscall_64+0xcd/0x490 [ 243.760017][ T8714] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 243.760032][ T8714] RIP: 0033:0x7f063e98e929 [ 243.760043][ T8714] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 243.760056][ T8714] RSP: 002b:00007f063f8b1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 243.760070][ T8714] RAX: ffffffffffffffda RBX: 00007f063ebb6080 RCX: 00007f063e98e929 [ 243.760079][ T8714] RDX: 0000000000000440 RSI: 0000200000000280 RDI: ffffffffffffff9c [ 243.760088][ T8714] RBP: 00007f063ea10b39 R08: 0000000000000000 R09: 0000000000000000 [ 243.760096][ T8714] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 243.760104][ T8714] R13: 0000000000000000 R14: 00007f063ebb6080 R15: 00007ffcc757d298 [ 243.760123][ T8714] [ 243.760128][ T8714] debugfs: out of free dentries, can not create directory '0xffff88805c0b4000' [ 243.905492][ T8713] netlink: 28 bytes leftover after parsing attributes in process `syz.3.771'. [ 245.533413][ T8741] ima: policy update failed [ 245.544425][ T30] audit: type=1802 audit(6045977379.653:43): pid=8741 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.777" res=0 errno=0 [ 246.395264][ T8761] sp0: Synchronizing with TNC [ 247.038506][ T8757] input: jJǸ-¶š9ã%vø“û¨lÐQ  J86Ö‘ as /devices/virtual/input/input13 [ 247.239929][ T8777] ima: policy update failed [ 247.245077][ T30] audit: type=1802 audit(6045977381.353:44): pid=8777 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.790" res=0 errno=0 [ 254.414959][ T8910] FAULT_INJECTION: forcing a failure. [ 254.414959][ T8910] name failslab, interval 1, probability 0, space 0, times 0 [ 254.483135][ T8910] CPU: 1 UID: 0 PID: 8910 Comm: syz.0.818 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 254.483176][ T8910] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 254.483192][ T8910] Call Trace: [ 254.483202][ T8910] [ 254.483212][ T8910] dump_stack_lvl+0x16c/0x1f0 [ 254.483256][ T8910] should_fail_ex+0x512/0x640 [ 254.483291][ T8910] ? __kmalloc_noprof+0xbf/0x510 [ 254.483333][ T8910] ? ptp_open+0x103/0x520 [ 254.483359][ T8910] should_failslab+0xc2/0x120 [ 254.483385][ T8910] __kmalloc_noprof+0xd2/0x510 [ 254.483430][ T8910] ptp_open+0x103/0x520 [ 254.483464][ T8910] ? __pfx_ptp_open+0x10/0x10 [ 254.483505][ T8910] ? __pfx_ptp_open+0x10/0x10 [ 254.483534][ T8910] posix_clock_open+0x17b/0x290 [ 254.483565][ T8910] ? __pfx_posix_clock_open+0x10/0x10 [ 254.483593][ T8910] chrdev_open+0x231/0x6a0 [ 254.483646][ T8910] ? __pfx_apparmor_file_open+0x10/0x10 [ 254.483680][ T8910] ? __pfx_chrdev_open+0x10/0x10 [ 254.483723][ T8910] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 254.483766][ T8910] do_dentry_open+0x744/0x1c10 [ 254.483804][ T8910] ? __pfx_chrdev_open+0x10/0x10 [ 254.483854][ T8910] vfs_open+0x82/0x3f0 [ 254.483887][ T8910] path_openat+0x1de4/0x2cb0 [ 254.483935][ T8910] ? __pfx_path_openat+0x10/0x10 [ 254.483974][ T8910] ? __lock_acquire+0xb8a/0x1c90 [ 254.484012][ T8910] do_filp_open+0x20b/0x470 [ 254.484047][ T8910] ? __pfx_do_filp_open+0x10/0x10 [ 254.484110][ T8910] ? alloc_fd+0x471/0x7d0 [ 254.484157][ T8910] do_sys_openat2+0x11b/0x1d0 [ 254.484186][ T8910] ? __pfx_do_sys_openat2+0x10/0x10 [ 254.484230][ T8910] __x64_sys_openat+0x174/0x210 [ 254.484256][ T8910] ? __pfx___x64_sys_openat+0x10/0x10 [ 254.484299][ T8910] do_syscall_64+0xcd/0x490 [ 254.484342][ T8910] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 254.484370][ T8910] RIP: 0033:0x7f063e98e929 [ 254.484392][ T8910] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 254.484417][ T8910] RSP: 002b:00007f063f8b1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 254.484443][ T8910] RAX: ffffffffffffffda RBX: 00007f063ebb6080 RCX: 00007f063e98e929 [ 254.484462][ T8910] RDX: 0000000000000440 RSI: 0000200000000280 RDI: ffffffffffffff9c [ 254.484480][ T8910] RBP: 00007f063ea10b39 R08: 0000000000000000 R09: 0000000000000000 [ 254.484497][ T8910] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 254.484513][ T8910] R13: 0000000000000000 R14: 00007f063ebb6080 R15: 00007ffcc757d298 [ 254.484549][ T8910] [ 254.734302][ C1] vkms_vblank_simulate: vblank timer overrun [ 255.649353][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.662483][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 255.900127][ T8926] can0: slcan on ttyS2. [ 256.355109][ T8926] can0 (unregistered): slcan off ttyS2. [ 257.125396][ T8934] can0: slcan on ttyS2. [ 257.310074][ T8937] can0 (unregistered): slcan off ttyS2. [ 257.625404][ T8958] netlink: 4 bytes leftover after parsing attributes in process `syz.1.827'. [ 258.769849][ T8984] EXT4-fs error (device sda1): xattr_find_entry:333: inode #86: comm dhcpcd-run-hook: corrupted xattr entries [ 258.980574][ T8986] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u8:2: corrupted xattr entries [ 259.014939][ T8989] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1497: comm dhcpcd-run-hook: corrupted xattr entries [ 259.089666][ T8990] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u8:2: corrupted xattr entries [ 259.169961][ T8993] EXT4-fs error (device sda1): xattr_find_entry:333: inode #18: comm dhcpcd-run-hook: corrupted xattr entries [ 259.252094][ T8997] EXT4-fs error (device sda1): xattr_find_entry:333: inode #83: comm dhcpcd-run-hook: corrupted xattr entries [ 259.341863][ T8998] EXT4-fs error (device sda1): xattr_find_entry:333: inode #21: comm dhcpcd-run-hook: corrupted xattr entries [ 259.416172][ T9002] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1257: comm udevd: corrupted xattr entries [ 259.429992][ T9002] udevd[9002]: failed to execute '/lib/udev/scsi_id' 'scsi_id --export --whitelisted -d /dev/sda': Structure needs cleaning [ 259.517314][ T9005] EXT4-fs error (device sda1): xattr_find_entry:333: inode #83: comm dhcpcd-run-hook: corrupted xattr entries [ 259.785737][ T9006] FAULT_INJECTION: forcing a failure. [ 259.785737][ T9006] name failslab, interval 1, probability 0, space 0, times 0 [ 259.844491][ T9006] CPU: 1 UID: 0 PID: 9006 Comm: syz.1.835 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 259.844529][ T9006] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 259.844543][ T9006] Call Trace: [ 259.844552][ T9006] [ 259.844562][ T9006] dump_stack_lvl+0x16c/0x1f0 [ 259.844602][ T9006] should_fail_ex+0x512/0x640 [ 259.844635][ T9006] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 259.844672][ T9006] should_failslab+0xc2/0x120 [ 259.844697][ T9006] __kmalloc_cache_noprof+0x6a/0x3e0 [ 259.844729][ T9006] ? sctp_add_bind_addr+0xae/0x3f0 [ 259.844769][ T9006] sctp_add_bind_addr+0xae/0x3f0 [ 259.844808][ T9006] sctp_copy_one_addr.part.0+0xd6/0x120 [ 259.844849][ T9006] sctp_bind_addr_copy+0x1b4/0x530 [ 259.844892][ T9006] sctp_connect_new_asoc+0x1d7/0x790 [ 259.844926][ T9006] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 259.844959][ T9006] ? sctp_endpoint_lookup_assoc+0x15c/0x2a0 [ 259.844991][ T9006] ? bpf_lsm_sctp_bind_connect+0x9/0x10 [ 259.845019][ T9006] sctp_sendmsg+0x15f9/0x1ee0 [ 259.845046][ T9006] ? __lock_acquire+0x622/0x1c90 [ 259.845091][ T9006] ? __pfx_sctp_sendmsg+0x10/0x10 [ 259.845123][ T9006] ? __pfx___might_resched+0x10/0x10 [ 259.845165][ T9006] ? __pfx_aa_sk_perm+0x10/0x10 [ 259.845198][ T9006] ? __pfx_sctp_sendmsg+0x10/0x10 [ 259.845229][ T9006] inet_sendmsg+0x11c/0x140 [ 259.845270][ T9006] ____sys_sendmsg+0x973/0xc70 [ 259.845302][ T9006] ? __pfx_____sys_sendmsg+0x10/0x10 [ 259.845336][ T9006] ? __pfx__kstrtoull+0x10/0x10 [ 259.845372][ T9006] ___sys_sendmsg+0x134/0x1d0 [ 259.845411][ T9006] ? __pfx____sys_sendmsg+0x10/0x10 [ 259.845465][ T9006] ? find_held_lock+0x2b/0x80 [ 259.845512][ T9006] __sys_sendmmsg+0x200/0x420 [ 259.845552][ T9006] ? __pfx___sys_sendmmsg+0x10/0x10 [ 259.845601][ T9006] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 259.845653][ T9006] ? fput+0x70/0xf0 [ 259.845676][ T9006] ? ksys_write+0x1ac/0x250 [ 259.845708][ T9006] ? __pfx_ksys_write+0x10/0x10 [ 259.845747][ T9006] __x64_sys_sendmmsg+0x9c/0x100 [ 259.845782][ T9006] ? lockdep_hardirqs_on+0x7c/0x110 [ 259.845817][ T9006] do_syscall_64+0xcd/0x490 [ 259.845855][ T9006] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 259.845882][ T9006] RIP: 0033:0x7fc40fb8e929 [ 259.845902][ T9006] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 259.845926][ T9006] RSP: 002b:00007fc410a9b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 259.845950][ T9006] RAX: ffffffffffffffda RBX: 00007fc40fdb5fa0 RCX: 00007fc40fb8e929 [ 259.845966][ T9006] RDX: 0000000000000005 RSI: 0000200000000140 RDI: 0000000000000003 [ 259.845982][ T9006] RBP: 00007fc410a9b090 R08: 0000000000000000 R09: 0000000000000000 [ 259.845997][ T9006] R10: 0000000000000311 R11: 0000000000000246 R12: 0000000000000001 [ 259.846012][ T9006] R13: 0000000000000000 R14: 00007fc40fdb5fa0 R15: 00007ffd9aaf80a8 [ 259.846047][ T9006] [ 260.138270][ C1] vkms_vblank_simulate: vblank timer overrun [ 260.720641][ T9011] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 260.770787][ T9015] CIFS: VFS: Invalid SecurityFlags:  [ 260.806986][ T9011] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 260.814656][ T9011] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 260.820700][ T9011] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 260.932578][ T9013] snd_aloop snd_aloop.0: control 16781581:65533:6:é'x?F¢é/èìzFË·fCªáª:0 is already present [ 260.981081][ T8996] syz.3.831 (8996): attempted to duplicate a private mapping with mremap. This is not supported. [ 261.235015][ T9023] netlink: zone id is out of range [ 261.240178][ T9023] netlink: zone id is out of range [ 261.260784][ T9023] netlink: zone id is out of range [ 261.284250][ T9023] netlink: zone id is out of range [ 261.292954][ T9023] netlink: zone id is out of range [ 261.304111][ T9023] netlink: zone id is out of range [ 261.314048][ T9023] netlink: zone id is out of range [ 261.325150][ T9023] netlink: zone id is out of range [ 261.336194][ T9023] netlink: zone id is out of range [ 261.346150][ T9023] netlink: zone id is out of range [ 261.519784][ T9029] FAULT_INJECTION: forcing a failure. [ 261.519784][ T9029] name failslab, interval 1, probability 0, space 0, times 0 [ 261.585901][ T9029] CPU: 1 UID: 0 PID: 9029 Comm: syz.1.840 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 261.585960][ T9029] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 261.585979][ T9029] Call Trace: [ 261.585988][ T9029] [ 261.585998][ T9029] dump_stack_lvl+0x16c/0x1f0 [ 261.586040][ T9029] should_fail_ex+0x512/0x640 [ 261.586072][ T9029] ? __kmalloc_noprof+0xbf/0x510 [ 261.586112][ T9029] ? ptp_open+0x103/0x520 [ 261.586141][ T9029] should_failslab+0xc2/0x120 [ 261.586165][ T9029] __kmalloc_noprof+0xd2/0x510 [ 261.586209][ T9029] ptp_open+0x103/0x520 [ 261.586245][ T9029] ? __pfx_ptp_open+0x10/0x10 [ 261.586284][ T9029] ? __pfx_ptp_open+0x10/0x10 [ 261.586312][ T9029] posix_clock_open+0x17b/0x290 [ 261.586349][ T9029] ? __pfx_posix_clock_open+0x10/0x10 [ 261.586380][ T9029] chrdev_open+0x231/0x6a0 [ 261.586417][ T9029] ? __pfx_apparmor_file_open+0x10/0x10 [ 261.586449][ T9029] ? __pfx_chrdev_open+0x10/0x10 [ 261.586490][ T9029] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 261.586530][ T9029] do_dentry_open+0x744/0x1c10 [ 261.586567][ T9029] ? __pfx_chrdev_open+0x10/0x10 [ 261.586611][ T9029] vfs_open+0x82/0x3f0 [ 261.586640][ T9029] path_openat+0x1de4/0x2cb0 [ 261.586685][ T9029] ? __pfx_path_openat+0x10/0x10 [ 261.586717][ T9029] ? __lock_acquire+0xb8a/0x1c90 [ 261.586753][ T9029] do_filp_open+0x20b/0x470 [ 261.586785][ T9029] ? __pfx_do_filp_open+0x10/0x10 [ 261.586842][ T9029] ? alloc_fd+0x471/0x7d0 [ 261.586884][ T9029] do_sys_openat2+0x11b/0x1d0 [ 261.586911][ T9029] ? __pfx_do_sys_openat2+0x10/0x10 [ 261.586952][ T9029] __x64_sys_openat+0x174/0x210 [ 261.586980][ T9029] ? __pfx___x64_sys_openat+0x10/0x10 [ 261.587025][ T9029] do_syscall_64+0xcd/0x490 [ 261.587064][ T9029] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 261.587090][ T9029] RIP: 0033:0x7fc40fb8e929 [ 261.587111][ T9029] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 261.587135][ T9029] RSP: 002b:00007fc410a7a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 261.587160][ T9029] RAX: ffffffffffffffda RBX: 00007fc40fdb6080 RCX: 00007fc40fb8e929 [ 261.587178][ T9029] RDX: 0000000000000440 RSI: 0000200000000280 RDI: ffffffffffffff9c [ 261.587196][ T9029] RBP: 00007fc40fc10b39 R08: 0000000000000000 R09: 0000000000000000 [ 261.587213][ T9029] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 261.587228][ T9029] R13: 0000000000000000 R14: 00007fc40fdb6080 R15: 00007ffd9aaf80a8 [ 261.587264][ T9029] [ 262.764373][ T5834] Bluetooth: hci0: command 0x0c1a tx timeout [ 262.799166][ T9051] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u8:7: corrupted xattr entries [ 262.844847][ T5834] Bluetooth: hci3: command 0x0c1a tx timeout [ 262.851151][ T5842] Bluetooth: hci2: command 0x0c1a tx timeout [ 262.851171][ T5829] Bluetooth: hci1: command 0x0c1a tx timeout [ 262.980094][ T9044] can0: slcan on ttyS2. [ 263.079812][ T9049] can0 (unregistered): slcan off ttyS2. [ 263.347363][ T9057] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 263.353530][ T9057] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 263.486036][ T9058] CIFS: VFS: Invalid SecurityFlags:  [ 263.542888][ T9057] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 263.662622][ T9057] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 264.778925][ T9083] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u8:4: corrupted xattr entries [ 264.962335][ T9087] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u8:4: corrupted xattr entries [ 265.404531][ T5829] Bluetooth: hci1: command 0x0c1a tx timeout [ 265.404699][ T5834] Bluetooth: hci0: command 0x0c1a tx timeout [ 265.564356][ T5834] Bluetooth: hci2: command 0x0c1a tx timeout [ 265.728288][ T5834] Bluetooth: hci3: command 0x0c1a tx timeout [ 265.876036][ T9093] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1257: comm udevd: corrupted xattr entries [ 265.909684][ T9093] udevd[9093]: failed to execute '/lib/udev/scsi_id' 'scsi_id --export --whitelisted -d /dev/sda': Structure needs cleaning [ 265.967901][ T9094] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u8:4: corrupted xattr entries [ 266.605661][ T9103] FAULT_INJECTION: forcing a failure. [ 266.605661][ T9103] name failslab, interval 1, probability 0, space 0, times 0 [ 266.662474][ T9103] CPU: 1 UID: 0 PID: 9103 Comm: syz.2.859 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 266.662514][ T9103] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 266.662530][ T9103] Call Trace: [ 266.662538][ T9103] [ 266.662549][ T9103] dump_stack_lvl+0x16c/0x1f0 [ 266.662594][ T9103] should_fail_ex+0x512/0x640 [ 266.662629][ T9103] ? __kmalloc_noprof+0xbf/0x510 [ 266.662672][ T9103] ? ptp_open+0x103/0x520 [ 266.662699][ T9103] should_failslab+0xc2/0x120 [ 266.662725][ T9103] __kmalloc_noprof+0xd2/0x510 [ 266.662770][ T9103] ptp_open+0x103/0x520 [ 266.662805][ T9103] ? __pfx_ptp_open+0x10/0x10 [ 266.662847][ T9103] ? __pfx_ptp_open+0x10/0x10 [ 266.662876][ T9103] posix_clock_open+0x17b/0x290 [ 266.662907][ T9103] ? __pfx_posix_clock_open+0x10/0x10 [ 266.662935][ T9103] chrdev_open+0x231/0x6a0 [ 266.662981][ T9103] ? __pfx_apparmor_file_open+0x10/0x10 [ 266.663015][ T9103] ? __pfx_chrdev_open+0x10/0x10 [ 266.663058][ T9103] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 266.663100][ T9103] do_dentry_open+0x744/0x1c10 [ 266.663140][ T9103] ? __pfx_chrdev_open+0x10/0x10 [ 266.663186][ T9103] vfs_open+0x82/0x3f0 [ 266.663220][ T9103] path_openat+0x1de4/0x2cb0 [ 266.663268][ T9103] ? __pfx_path_openat+0x10/0x10 [ 266.663308][ T9103] ? __lock_acquire+0xb8a/0x1c90 [ 266.663346][ T9103] do_filp_open+0x20b/0x470 [ 266.663383][ T9103] ? __pfx_do_filp_open+0x10/0x10 [ 266.663443][ T9103] ? alloc_fd+0x471/0x7d0 [ 266.663487][ T9103] do_sys_openat2+0x11b/0x1d0 [ 266.663516][ T9103] ? __pfx_do_sys_openat2+0x10/0x10 [ 266.663561][ T9103] __x64_sys_openat+0x174/0x210 [ 266.663590][ T9103] ? __pfx___x64_sys_openat+0x10/0x10 [ 266.663636][ T9103] do_syscall_64+0xcd/0x490 [ 266.663678][ T9103] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 266.663705][ T9103] RIP: 0033:0x7f8cc098e929 [ 266.663727][ T9103] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 266.663753][ T9103] RSP: 002b:00007f8cc1727038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 266.663779][ T9103] RAX: ffffffffffffffda RBX: 00007f8cc0bb6080 RCX: 00007f8cc098e929 [ 266.663797][ T9103] RDX: 0000000000000440 RSI: 0000200000000280 RDI: ffffffffffffff9c [ 266.663814][ T9103] RBP: 00007f8cc0a10b39 R08: 0000000000000000 R09: 0000000000000000 [ 266.663831][ T9103] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 266.663846][ T9103] R13: 0000000000000000 R14: 00007f8cc0bb6080 R15: 00007fff5f4bb538 [ 266.663884][ T9103] [ 267.141411][ T9113] CIFS: VFS: Invalid SecurityFlags:  [ 267.184737][ T9109] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 267.191441][ T9109] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 267.217166][ T9109] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 267.223322][ T9109] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 267.288547][ T9117] sp0: Synchronizing with TNC [ 267.868699][ T9129] netlink: 4 bytes leftover after parsing attributes in process `syz.1.866'. [ 268.062128][ T9128] netlink: 354 bytes leftover after parsing attributes in process `syz.1.866'. [ 268.531332][ T9146] FAULT_INJECTION: forcing a failure. [ 268.531332][ T9146] name failslab, interval 1, probability 0, space 0, times 0 [ 268.582876][ T9146] CPU: 0 UID: 0 PID: 9146 Comm: syz.1.874 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 268.582925][ T9146] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 268.582941][ T9146] Call Trace: [ 268.582950][ T9146] [ 268.582961][ T9146] dump_stack_lvl+0x16c/0x1f0 [ 268.583007][ T9146] should_fail_ex+0x512/0x640 [ 268.583043][ T9146] ? fs_reclaim_acquire+0xae/0x150 [ 268.583078][ T9146] should_failslab+0xc2/0x120 [ 268.583103][ T9146] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 268.583144][ T9146] ? security_inode_alloc+0x3b/0x2b0 [ 268.583179][ T9146] security_inode_alloc+0x3b/0x2b0 [ 268.583209][ T9146] inode_init_always_gfp+0xce4/0x1030 [ 268.583251][ T9146] alloc_inode+0x86/0x240 [ 268.583278][ T9146] new_inode+0x22/0x1c0 [ 268.583309][ T9146] debugfs_create_dir+0xdd/0x5f0 [ 268.583346][ T9146] ptp_open+0x307/0x520 [ 268.583382][ T9146] ? __pfx_ptp_open+0x10/0x10 [ 268.583424][ T9146] ? __pfx_ptp_open+0x10/0x10 [ 268.583453][ T9146] posix_clock_open+0x17b/0x290 [ 268.583484][ T9146] ? __pfx_posix_clock_open+0x10/0x10 [ 268.583513][ T9146] chrdev_open+0x231/0x6a0 [ 268.583550][ T9146] ? __pfx_apparmor_file_open+0x10/0x10 [ 268.583583][ T9146] ? __pfx_chrdev_open+0x10/0x10 [ 268.583625][ T9146] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 268.583664][ T9146] do_dentry_open+0x744/0x1c10 [ 268.583703][ T9146] ? __pfx_chrdev_open+0x10/0x10 [ 268.583750][ T9146] vfs_open+0x82/0x3f0 [ 268.583782][ T9146] path_openat+0x1de4/0x2cb0 [ 268.583831][ T9146] ? __pfx_path_openat+0x10/0x10 [ 268.583870][ T9146] ? __lock_acquire+0xb8a/0x1c90 [ 268.583916][ T9146] do_filp_open+0x20b/0x470 [ 268.583955][ T9146] ? __pfx_do_filp_open+0x10/0x10 [ 268.584019][ T9146] ? alloc_fd+0x471/0x7d0 [ 268.584066][ T9146] do_sys_openat2+0x11b/0x1d0 [ 268.584095][ T9146] ? __pfx_do_sys_openat2+0x10/0x10 [ 268.584139][ T9146] __x64_sys_openat+0x174/0x210 [ 268.584171][ T9146] ? __pfx___x64_sys_openat+0x10/0x10 [ 268.584216][ T9146] do_syscall_64+0xcd/0x490 [ 268.584258][ T9146] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 268.584286][ T9146] RIP: 0033:0x7fc40fb8e929 [ 268.584308][ T9146] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 268.584335][ T9146] RSP: 002b:00007fc410a7a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 268.584362][ T9146] RAX: ffffffffffffffda RBX: 00007fc40fdb6080 RCX: 00007fc40fb8e929 [ 268.584380][ T9146] RDX: 0000000000000440 RSI: 0000200000000280 RDI: ffffffffffffff9c [ 268.584397][ T9146] RBP: 00007fc40fc10b39 R08: 0000000000000000 R09: 0000000000000000 [ 268.584414][ T9146] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 268.584430][ T9146] R13: 0000000000000000 R14: 00007fc40fdb6080 R15: 00007ffd9aaf80a8 [ 268.584466][ T9146] [ 268.859161][ C0] vkms_vblank_simulate: vblank timer overrun [ 268.944379][ T9146] debugfs: out of free dentries, can not create directory '0xffff8880292a0000' [ 269.241911][ T9153] FAULT_INJECTION: forcing a failure. [ 269.241911][ T9153] name failslab, interval 1, probability 0, space 0, times 0 [ 269.255140][ T5829] Bluetooth: hci2: command 0x0c1a tx timeout [ 269.261360][ T5829] Bluetooth: hci1: command 0x0c1a tx timeout [ 269.263789][ T5842] Bluetooth: hci0: command 0x0c1a tx timeout [ 269.267681][ T5834] Bluetooth: hci3: command 0x0c1a tx timeout [ 269.309093][ T9153] CPU: 0 UID: 0 PID: 9153 Comm: syz.3.877 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 269.309116][ T9153] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 269.309125][ T9153] Call Trace: [ 269.309130][ T9153] [ 269.309136][ T9153] dump_stack_lvl+0x16c/0x1f0 [ 269.309161][ T9153] should_fail_ex+0x512/0x640 [ 269.309180][ T9153] ? __kmalloc_noprof+0xbf/0x510 [ 269.309202][ T9153] ? lsm_blob_alloc+0x68/0x90 [ 269.309221][ T9153] should_failslab+0xc2/0x120 [ 269.309235][ T9153] __kmalloc_noprof+0xd2/0x510 [ 269.309257][ T9153] lsm_blob_alloc+0x68/0x90 [ 269.309277][ T9153] security_sk_alloc+0x30/0x270 [ 269.309300][ T9153] sk_prot_alloc+0xfb/0x2a0 [ 269.309324][ T9153] sk_alloc+0x36/0xc20 [ 269.309347][ T9153] qrtr_create+0x84/0x1d0 [ 269.309365][ T9153] __sock_create+0x338/0x8d0 [ 269.309387][ T9153] __sys_socket+0x14d/0x260 [ 269.309406][ T9153] ? __pfx___sys_socket+0x10/0x10 [ 269.309428][ T9153] ? xfd_validate_state+0x61/0x180 [ 269.309444][ T9153] ? __task_pid_nr_ns+0x17c/0x500 [ 269.309472][ T9153] __x64_sys_socket+0x72/0xb0 [ 269.309490][ T9153] ? lockdep_hardirqs_on+0x7c/0x110 [ 269.309513][ T9153] do_syscall_64+0xcd/0x490 [ 269.309550][ T9153] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 269.309564][ T9153] RIP: 0033:0x7f4b7398e929 [ 269.309580][ T9153] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 269.309597][ T9153] RSP: 002b:00007f4b74768038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 269.309614][ T9153] RAX: ffffffffffffffda RBX: 00007f4b73bb5fa0 RCX: 00007f4b7398e929 [ 269.309627][ T9153] RDX: 0000000000000001 RSI: 0000000000000002 RDI: 000000000000002a [ 269.309635][ T9153] RBP: 00007f4b73a10b39 R08: 0000000000000000 R09: 0000000000000000 [ 269.309648][ T9153] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 269.309656][ T9153] R13: 0000000000000000 R14: 00007f4b73bb5fa0 R15: 00007ffcde52edf8 [ 269.309681][ T9153] [ 269.512056][ C0] vkms_vblank_simulate: vblank timer overrun [ 270.010134][ T9162] ima: policy update failed [ 270.021016][ T30] audit: type=1802 audit(6045977404.123:45): pid=9162 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.879" res=0 errno=0 [ 270.160377][ T9170] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u8:7: corrupted xattr entries [ 270.655413][ T9169] netlink: 338 bytes leftover after parsing attributes in process `syz.2.880'. [ 271.140781][ T9185] netlink: 338 bytes leftover after parsing attributes in process `syz.2.880'. [ 271.305033][ T9188] sp0: Synchronizing with TNC [ 271.680253][ T9195] netlink: 20 bytes leftover after parsing attributes in process `syz.1.886'. [ 272.118987][ T9201] netlink: 4 bytes leftover after parsing attributes in process `syz.0.895'. [ 272.142905][ T9201] netlink: 354 bytes leftover after parsing attributes in process `syz.0.895'. [ 272.940640][ T9206] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1277: comm init: corrupted xattr entries can't run '/sbi[ 273.175149][ T9211] FAULT_INJECTION: forcing a failure. [ 273.175149][ T9211] name failslab, interval 1, probability 0, space 0, times 0 [ 273.215103][ T9213] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u8:4: corrupted xattr entries [ 273.233193][ T9211] CPU: 0 UID: 0 PID: 9211 Comm: syz.3.889 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 273.233229][ T9211] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 273.233247][ T9211] Call Trace: [ 273.233255][ T9211] [ 273.233266][ T9211] dump_stack_lvl+0x16c/0x1f0 [ 273.233309][ T9211] should_fail_ex+0x512/0x640 [ 273.233344][ T9211] ? __kmalloc_noprof+0xbf/0x510 [ 273.233382][ T9211] ? ptp_open+0x103/0x520 [ 273.233407][ T9211] should_failslab+0xc2/0x120 [ 273.233432][ T9211] __kmalloc_noprof+0xd2/0x510 [ 273.233473][ T9211] ptp_open+0x103/0x520 [ 273.233508][ T9211] ? __pfx_ptp_open+0x10/0x10 [ 273.233544][ T9211] ? __pfx_ptp_open+0x10/0x10 [ 273.233572][ T9211] posix_clock_open+0x17b/0x290 [ 273.233602][ T9211] ? __pfx_posix_clock_open+0x10/0x10 [ 273.233629][ T9211] chrdev_open+0x231/0x6a0 [ 273.233662][ T9211] ? __pfx_apparmor_file_open+0x10/0x10 [ 273.233693][ T9211] ? __pfx_chrdev_open+0x10/0x10 [ 273.233734][ T9211] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 273.233774][ T9211] do_dentry_open+0x744/0x1c10 [ 273.233811][ T9211] ? __pfx_chrdev_open+0x10/0x10 [ 273.233857][ T9211] vfs_open+0x82/0x3f0 [ 273.233888][ T9211] path_openat+0x1de4/0x2cb0 [ 273.233936][ T9211] ? __pfx_path_openat+0x10/0x10 [ 273.233974][ T9211] ? __lock_acquire+0xb8a/0x1c90 [ 273.234010][ T9211] do_filp_open+0x20b/0x470 [ 273.234046][ T9211] ? __pfx_do_filp_open+0x10/0x10 [ 273.234105][ T9211] ? alloc_fd+0x471/0x7d0 [ 273.234149][ T9211] do_sys_openat2+0x11b/0x1d0 [ 273.234191][ T9211] ? __pfx_do_sys_openat2+0x10/0x10 [ 273.234233][ T9211] __x64_sys_openat+0x174/0x210 [ 273.234262][ T9211] ? __pfx___x64_sys_openat+0x10/0x10 [ 273.234306][ T9211] do_syscall_64+0xcd/0x490 [ 273.234345][ T9211] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 273.234372][ T9211] RIP: 0033:0x7f4b7398e929 [ 273.234394][ T9211] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 273.234420][ T9211] RSP: 002b:00007f4b74747038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 273.234444][ T9211] RAX: ffffffffffffffda RBX: 00007f4b73bb6080 RCX: 00007f4b7398e929 [ 273.234459][ T9211] RDX: 0000000000000440 RSI: 0000200000000280 RDI: ffffffffffffff9c [ 273.234474][ T9211] RBP: 00007f4b73a10b39 R08: 0000000000000000 R09: 0000000000000000 [ 273.234489][ T9211] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 273.234505][ T9211] R13: 0000000000000000 R14: 00007f4b73bb6080 R15: 00007ffcde52edf8 [ 273.234541][ T9211] [ 273.985823][ T9224] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1277: comm init: corrupted xattr entries can't run '/sbi[ 274.123519][ T9217] FAULT_INJECTION: forcing a failure. [ 274.123519][ T9217] name failslab, interval 1, probability 0, space 0, times 0 [ 274.243993][ T9217] CPU: 1 UID: 0 PID: 9217 Comm: syz.2.891 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 274.244017][ T9217] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 274.244025][ T9217] Call Trace: [ 274.244031][ T9217] [ 274.244037][ T9217] dump_stack_lvl+0x16c/0x1f0 [ 274.244063][ T9217] should_fail_ex+0x512/0x640 [ 274.244082][ T9217] ? __kmalloc_noprof+0xbf/0x510 [ 274.244104][ T9217] ? lsm_blob_alloc+0x68/0x90 [ 274.244129][ T9217] should_failslab+0xc2/0x120 [ 274.244143][ T9217] __kmalloc_noprof+0xd2/0x510 [ 274.244181][ T9217] lsm_blob_alloc+0x68/0x90 [ 274.244216][ T9217] security_sk_alloc+0x30/0x270 [ 274.244245][ T9217] sk_prot_alloc+0xfb/0x2a0 [ 274.244268][ T9217] sk_alloc+0x36/0xc20 [ 274.244287][ T9217] qrtr_create+0x84/0x1d0 [ 274.244302][ T9217] __sock_create+0x338/0x8d0 [ 274.244321][ T9217] __sys_socket+0x14d/0x260 [ 274.244336][ T9217] ? __pfx___sys_socket+0x10/0x10 [ 274.244351][ T9217] ? xfd_validate_state+0x61/0x180 [ 274.244371][ T9217] ? __task_pid_nr_ns+0x17c/0x500 [ 274.244392][ T9217] __x64_sys_socket+0x72/0xb0 [ 274.244407][ T9217] ? lockdep_hardirqs_on+0x7c/0x110 [ 274.244426][ T9217] do_syscall_64+0xcd/0x490 [ 274.244446][ T9217] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 274.244460][ T9217] RIP: 0033:0x7f8cc098e929 [ 274.244472][ T9217] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 274.244485][ T9217] RSP: 002b:00007f8cc1748038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 274.244498][ T9217] RAX: ffffffffffffffda RBX: 00007f8cc0bb5fa0 RCX: 00007f8cc098e929 [ 274.244508][ T9217] RDX: 0000000000000001 RSI: 0000000000000002 RDI: 000000000000002a [ 274.244516][ T9217] RBP: 00007f8cc0a10b39 R08: 0000000000000000 R09: 0000000000000000 [ 274.244523][ T9217] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 274.244531][ T9217] R13: 0000000000000000 R14: 00007f8cc0bb5fa0 R15: 00007fff5f4bb538 [ 274.244548][ T9217] [ 275.018704][ T9238] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1277: comm init: corrupted xattr entries can't run '/sbi[ 275.664634][ T9240] netlink: 338 bytes leftover after parsing attributes in process `syz.3.898'. [ 275.684277][ T9242] netlink: 338 bytes leftover after parsing attributes in process `syz.3.898'. [ 276.045560][ T9249] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1277: comm init: corrupted xattr entries [ 276.877664][ T9262] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u8:7: corrupted xattr entries [ 277.068099][ T9264] netlink: 4 bytes leftover after parsing attributes in process `syz.2.904'. [ 277.106156][ T9266] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1277: comm init: corrupted xattr entries can't run '/sbi[ 277.432055][ T9279] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u8:1: corrupted xattr entries [ 278.160672][ T9291] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1277: comm init: corrupted xattr entries can't run '/sbi[ 278.478474][ T9295] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u8:6: corrupted xattr entries [ 278.506581][ T9296] netlink: 4 bytes leftover after parsing attributes in process `syz.3.910'. [ 278.555619][ T9300] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u8:6: corrupted xattr entries [ 278.616220][ T9296] netlink: 354 bytes leftover after parsing attributes in process `syz.3.910'. [ 279.196395][ T9304] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1277: comm init: corrupted xattr entries can't run '/sbi[ 279.454111][ T9278] kexec: Could not allocate control_code_buffer [ 279.482703][ T9314] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u8:0: corrupted xattr entries [ 280.167342][ T9325] net_ratelimit: 160 callbacks suppressed [ 280.167363][ T9325] openvswitch: netlink: Tunnel attr 242 out of range max 16 [ 280.245899][ T9326] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1277: comm init: corrupted xattr entries can't run '/sbi[ 280.819058][ T9338] syz.2.922(9338): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored. [ 280.891711][ T9338] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(4294967293.4294967295.4294967293), cmd(2) [ 280.984960][ T9334] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888078001000 pfn:0x78001 [ 281.030510][ T9334] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 281.040391][ T9334] raw: 00fff00000000000 0000000000000000 dead000000000122 0000000000000000 [ 281.091979][ T9334] raw: ffff888078001000 0000000000000000 00000001ffffffff 0000000000000000 [ 281.111887][ T9334] page dumped because: unmovable page [ 281.118462][ T9334] page_owner tracks the page as allocated [ 281.137493][ T9334] page last allocated via order 0, migratetype Unmovable, gfp_mask 0xcc0(GFP_KERNEL), pid 5826, tgid 5826 (syz-executor), ts 129583666559, free_ts 129560480508 [ 281.162662][ T9334] post_alloc_hook+0x1c0/0x230 [ 281.162707][ T9334] get_page_from_freelist+0x1321/0x3890 [ 281.162746][ T9334] __alloc_frozen_pages_noprof+0x261/0x23f0 [ 281.162786][ T9334] alloc_pages_bulk_noprof+0x71c/0x1410 can't run '/sbi[ 281.162826][ T9334] kasan_populate_vmalloc+0xf1/0x1f0 [ 281.162862][ T9334] alloc_vmap_area+0x959/0x29c0 [ 281.162889][ T9334] __get_vm_area_node+0x1ca/0x330 [ 281.162928][ T9334] __vmalloc_node_range_noprof+0x271/0x14b0 [ 281.162961][ T9334] __vmalloc_node_noprof+0xad/0xf0 [ 281.162994][ T9334] do_ipt_get_ctl+0x63f/0xa10 [ 281.163029][ T9334] nf_getsockopt+0x79/0xe0 [ 281.163056][ T9334] ip_getsockopt+0x18c/0x1e0 [ 281.163091][ T9334] tcp_getsockopt+0xa1/0x100 [ 281.163129][ T9334] do_sock_getsockopt+0x3fc/0x800 [ 281.163156][ T9334] __sys_getsockopt+0x123/0x1b0 [ 281.163186][ T9334] __x64_sys_getsockopt+0xbd/0x160 [ 281.170017][ T9334] page last free pid 6528 tgid 6521 stack trace: [ 281.170040][ T9334] __free_frozen_pages+0x7fe/0x1180 [ 281.170080][ T9334] tlb_finish_mmu+0x237/0x7c0 [ 281.170116][ T9334] exit_mmap+0x403/0xb90 [ 281.170146][ T9334] __mmput+0x12a/0x410 [ 281.170176][ T9334] mmput+0x62/0x70 [ 281.170204][ T9334] do_exit+0x7c4/0x2bd0 [ 281.170236][ T9334] do_group_exit+0xd3/0x2a0 [ 281.170269][ T9334] get_signal+0x2673/0x26d0 [ 281.170297][ T9334] arch_do_signal_or_restart+0x8f/0x790 [ 281.170326][ T9334] exit_to_user_mode_loop+0x84/0x110 [ 281.170365][ T9334] do_syscall_64+0x3f6/0x490 [ 281.170405][ T9334] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 281.322900][ T9347] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1277: comm init: corrupted xattr entries [ 281.954587][ T9361] netlink: 342 bytes leftover after parsing attributes in process `syz.1.929'. [ 282.467461][ T9363] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1277: comm init: corrupted xattr entries can't run '/sbi[ 282.798911][ T9372] openvswitch: netlink: Tunnel attr 242 out of range max 16 [ 282.885452][ T9375] netlink: 16 bytes leftover after parsing attributes in process `syz.0.933'. [ 283.585532][ T9377] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1277: comm init: corrupted xattr entries can't run '/sbin/getty': Struct[ 283.829587][ T9384] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u8:7: corrupted xattr entries [ 284.054968][ T9381] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888078001000 pfn:0x78001 [ 284.074507][ T9381] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 284.091901][ T9381] raw: 00fff00000000000 0000000000000000 dead000000000122 0000000000000000 [ 284.115321][ T9381] raw: ffff888078001000 0000000000000000 00000001ffffffff 0000000000000000 [ 284.164858][ T9381] page dumped because: unmovable page [ 284.172158][ T9381] page_owner tracks the page as allocated [ 284.188530][ T9381] page last allocated via order 0, migratetype Unmovable, gfp_mask 0xcc0(GFP_KERNEL), pid 5826, tgid 5826 (syz-executor), ts 129583666559, free_ts 129560480508 [ 284.242157][ T9381] post_alloc_hook+0x1c0/0x230 [ 284.258989][ T9381] get_page_from_freelist+0x1321/0x3890 [ 284.274265][ T9381] __alloc_frozen_pages_noprof+0x261/0x23f0 [ 284.283604][ T9381] alloc_pages_bulk_noprof+0x71c/0x1410 [ 284.289931][ T9381] kasan_populate_vmalloc+0xf1/0x1f0 [ 284.295403][ T9381] alloc_vmap_area+0x959/0x29c0 [ 284.300444][ T9381] __get_vm_area_node+0x1ca/0x330 [ 284.310564][ T9381] __vmalloc_node_range_noprof+0x271/0x14b0 [ 284.357957][ T9381] __vmalloc_node_noprof+0xad/0xf0 [ 284.385846][ T9392] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input14 [ 284.424422][ T9381] do_ipt_get_ctl+0x63f/0xa10 [ 284.439275][ T9381] nf_getsockopt+0x79/0xe0 [ 284.456986][ T9381] ip_getsockopt+0x18c/0x1e0 [ 284.495020][ T9381] tcp_getsockopt+0xa1/0x100 [ 284.515480][ T9381] do_sock_getsockopt+0x3fc/0x800 [ 284.520996][ T9381] __sys_getsockopt+0x123/0x1b0 [ 284.555007][ T9381] __x64_sys_getsockopt+0xbd/0x160 [ 284.599298][ T9381] page last free pid 6528 tgid 6521 stack trace: [ 284.623411][ T9400] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1277: comm init: corrupted xattr entries [ 284.635006][ T9381] __free_frozen_pages+0x7fe/0x1180 [ 284.640266][ T9381] tlb_finish_mmu+0x237/0x7c0 can't run '/sbin/getty': Struct[ 284.770400][ T9381] exit_mmap+0x403/0xb90 [ 284.800336][ T9381] __mmput+0x12a/0x410 [ 284.808619][ T9381] mmput+0x62/0x70 [ 284.812527][ T9381] do_exit+0x7c4/0x2bd0 [ 284.817416][ T9381] do_group_exit+0xd3/0x2a0 [ 284.822079][ T9381] get_signal+0x2673/0x26d0 [ 284.827212][ T9381] arch_do_signal_or_restart+0x8f/0x790 [ 284.833020][ T9381] exit_to_user_mode_loop+0x84/0x110 [ 284.839501][ T9381] do_syscall_64+0x3f6/0x490 [ 284.844677][ T9381] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 285.383777][ T9409] netlink: 130 bytes leftover after parsing attributes in process `syz.0.945'. [ 285.456085][ T9413] FAULT_INJECTION: forcing a failure. [ 285.456085][ T9413] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 285.494934][ T9413] CPU: 1 UID: 0 PID: 9413 Comm: syz.2.947 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 285.494972][ T9413] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 285.494987][ T9413] Call Trace: [ 285.494996][ T9413] [ 285.495006][ T9413] dump_stack_lvl+0x16c/0x1f0 [ 285.495047][ T9413] should_fail_ex+0x512/0x640 [ 285.495092][ T9413] should_fail_alloc_page+0xe7/0x130 [ 285.495120][ T9413] prepare_alloc_pages+0x3c2/0x610 [ 285.495155][ T9413] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 285.495194][ T9413] ? __lock_acquire+0xb8a/0x1c90 [ 285.495240][ T9413] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 285.495276][ T9413] ? do_raw_spin_lock+0x12c/0x2b0 [ 285.495312][ T9413] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 285.495348][ T9413] ? find_held_lock+0x2b/0x80 [ 285.495385][ T9413] ? __lock_acquire+0xb8a/0x1c90 [ 285.495416][ T9413] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 285.495453][ T9413] ? policy_nodemask+0xea/0x4e0 [ 285.495491][ T9413] alloc_pages_mpol+0x1fb/0x550 [ 285.495516][ T9413] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 285.495553][ T9413] folio_alloc_mpol_noprof+0x36/0x2f0 [ 285.495581][ T9413] shmem_alloc_folio+0x135/0x160 [ 285.495614][ T9413] shmem_alloc_and_add_folio+0x499/0xc20 [ 285.495659][ T9413] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 285.495699][ T9413] ? shmem_allowable_huge_orders+0xcb/0x2f0 [ 285.495741][ T9413] shmem_get_folio_gfp+0x67f/0x1600 [ 285.495786][ T9413] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 285.495824][ T9413] ? filemap_map_pages+0xf6f/0x1680 [ 285.495865][ T9413] shmem_fault+0x1fe/0xa30 [ 285.495902][ T9413] ? __pfx_shmem_fault+0x10/0x10 [ 285.495943][ T9413] ? __pfx_filemap_map_pages+0x10/0x10 [ 285.495990][ T9413] __do_fault+0x10d/0x490 [ 285.496029][ T9413] __handle_mm_fault+0x3c2a/0x5490 [ 285.496072][ T9413] ? __pfx___handle_mm_fault+0x10/0x10 [ 285.496102][ T9413] ? __pfx_mt_find+0x10/0x10 [ 285.496148][ T9413] ? find_vma+0xbf/0x140 [ 285.496172][ T9413] ? __pfx_find_vma+0x10/0x10 [ 285.496201][ T9413] handle_mm_fault+0x589/0xd10 [ 285.496239][ T9413] ? __pkru_allows_pkey+0x41/0xb0 [ 285.496275][ T9413] do_user_addr_fault+0x7a6/0x1370 [ 285.496311][ T9413] ? rcu_is_watching+0x12/0xc0 [ 285.496341][ T9413] exc_page_fault+0x5c/0xb0 [ 285.496378][ T9413] asm_exc_page_fault+0x26/0x30 [ 285.496403][ T9413] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 285.496434][ T9413] Code: 10 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 e9 8f 10 04 00 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 285.496459][ T9413] RSP: 0018:ffffc90003117440 EFLAGS: 00050202 [ 285.496480][ T9413] RAX: 0000000000000001 RBX: 000000000000ff04 RCX: 000000000000df04 [ 285.496497][ T9413] RDX: ffffed100ee59fe3 RSI: 0000000000002000 RDI: ffff8880772c2010 [ 285.496513][ T9413] RBP: 000000000000ff04 R08: 0000000000000001 R09: ffffed100ee59fe2 [ 285.496535][ T9413] R10: ffff8880772cff13 R11: 0000000000000000 R12: 0000000000000000 [ 285.496551][ T9413] R13: ffffc90003117b60 R14: ffff8880772c0010 R15: 0000000000000000 [ 285.496587][ T9413] _copy_from_iter+0x4eb/0x16f0 [ 285.496634][ T9413] ? __pfx__copy_from_iter+0x10/0x10 [ 285.496668][ T9413] ? sctp_addto_chunk+0xfa/0x2a0 [ 285.496704][ T9413] ? __asan_memcpy+0x3c/0x60 [ 285.496736][ T9413] ? sctp_make_datafrag_empty+0x1c3/0x240 [ 285.496775][ T9413] ? __pfx_sctp_make_datafrag_empty+0x10/0x10 [ 285.496819][ T9413] sctp_user_addto_chunk+0x84/0x240 [ 285.496861][ T9413] sctp_datamsg_from_user+0x5b6/0x1320 [ 285.496915][ T9413] sctp_sendmsg_to_asoc+0xaf5/0x1bf0 [ 285.496942][ T9413] ? sctp_assoc_set_primary+0x177/0x300 [ 285.496982][ T9413] ? __pfx_sctp_sendmsg_to_asoc+0x10/0x10 [ 285.497013][ T9413] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 285.497047][ T9413] ? sctp_endpoint_lookup_assoc+0x15c/0x2a0 [ 285.497087][ T9413] sctp_sendmsg+0xef5/0x1ee0 [ 285.497116][ T9413] ? __lock_acquire+0x622/0x1c90 [ 285.497158][ T9413] ? __pfx_sctp_sendmsg+0x10/0x10 [ 285.497192][ T9413] ? __pfx___might_resched+0x10/0x10 [ 285.497235][ T9413] ? __pfx_aa_sk_perm+0x10/0x10 [ 285.497269][ T9413] ? __pfx_sctp_sendmsg+0x10/0x10 [ 285.497302][ T9413] inet_sendmsg+0x11c/0x140 [ 285.497338][ T9413] ____sys_sendmsg+0x973/0xc70 [ 285.497371][ T9413] ? __pfx_____sys_sendmsg+0x10/0x10 [ 285.497407][ T9413] ? __pfx__kstrtoull+0x10/0x10 [ 285.497443][ T9413] ___sys_sendmsg+0x134/0x1d0 [ 285.497481][ T9413] ? __pfx____sys_sendmsg+0x10/0x10 [ 285.497541][ T9413] ? find_held_lock+0x2b/0x80 [ 285.497590][ T9413] __sys_sendmmsg+0x200/0x420 [ 285.497632][ T9413] ? __pfx___sys_sendmmsg+0x10/0x10 [ 285.497681][ T9413] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 285.497731][ T9413] ? fput+0x70/0xf0 [ 285.497754][ T9413] ? ksys_write+0x1ac/0x250 [ 285.497785][ T9413] ? __pfx_ksys_write+0x10/0x10 [ 285.497822][ T9413] __x64_sys_sendmmsg+0x9c/0x100 [ 285.497856][ T9413] ? lockdep_hardirqs_on+0x7c/0x110 [ 285.497887][ T9413] do_syscall_64+0xcd/0x490 [ 285.497925][ T9413] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 285.497950][ T9413] RIP: 0033:0x7f8cc098e929 [ 285.497971][ T9413] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 285.497993][ T9413] RSP: 002b:00007f8cc1748038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 285.498016][ T9413] RAX: ffffffffffffffda RBX: 00007f8cc0bb5fa0 RCX: 00007f8cc098e929 [ 285.498032][ T9413] RDX: 0000000000000005 RSI: 0000200000000140 RDI: 0000000000000003 [ 285.498047][ T9413] RBP: 00007f8cc1748090 R08: 0000000000000000 R09: 0000000000000000 [ 285.498063][ T9413] R10: 0000000000000311 R11: 0000000000000246 R12: 0000000000000002 [ 285.498077][ T9413] R13: 0000000000000000 R14: 00007f8cc0bb5fa0 R15: 00007fff5f4bb538 [ 285.498110][ T9413] [ 286.056146][ C1] vkms_vblank_simulate: vblank timer overrun [ 286.077681][ T9415] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1277: comm init: corrupted xattr entries can't run '/sbi[ 286.714750][ T9433] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1257: comm udevd: corrupted xattr entries [ 286.744049][ T9423] can0: slcan on ttyS2. [ 286.880755][ T9433] udevd[9433]: failed to execute '/lib/udev/scsi_id' 'scsi_id --export --whitelisted -d /dev/sda': Structure needs cleaning [ 286.964807][ T9423] can0 (unregistered): slcan off ttyS2. [ 287.120311][ T9436] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1277: comm init: corrupted xattr entries can't run '/sbi[ 287.845506][ T9449] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u8:6: corrupted xattr entries [ 287.871803][ T9450] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u8:6: corrupted xattr entries [ 287.996456][ T9454] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u8:6: corrupted xattr entries [ 288.018040][ T9455] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u8:8: corrupted xattr entries [ 288.225294][ T9460] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1277: comm init: corrupted xattr entries can't run '/sbi[ 289.260058][ T9476] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u8:6: corrupted xattr entries [ 289.273717][ T9475] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1277: comm init: corrupted xattr entries can't run '/sbi[ 289.822470][ T9488] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u8:0: corrupted xattr entries can't run '/sbin/getty': Structure needs cleaning [ 290.923792][ T9500] ima: policy update failed [ 290.933109][ T30] audit: type=1802 audit(6045977428.038:46): pid=9500 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.970" res=0 errno=0 [ 290.936300][ T9500] netlink: 25 bytes leftover after parsing attributes in process `syz.1.970'. [ 290.985673][ T9501] ima: policy update failed [ 291.006278][ T30] audit: type=1802 audit(6045977428.098:47): pid=9501 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.969" res=0 errno=0 [ 291.368265][ T9521] openvswitch: netlink: Tunnel attr 242 out of range max 16 can't run '/sbi[ 292.470360][ T9542] EXT4-fs error: 4 callbacks suppressed [ 292.470379][ T9542] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1277: comm init: corrupted xattr entries can't run '/sbi[ 292.588945][ T9547] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u8:0: corrupted xattr entries [ 293.209109][ T9557] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u8:10: corrupted xattr entries [ 293.575534][ T9558] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1277: comm init: corrupted xattr entries can't run '/sbin/getty': Structure needs cleani[ 293.764319][ T9565] ima: policy update failed [ 293.775791][ T30] audit: type=1802 audit(6045977430.878:48): pid=9565 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.980" res=0 errno=0 [ 293.827068][ T9565] FAULT_INJECTION: forcing a failure. [ 293.827068][ T9565] name failslab, interval 1, probability 0, space 0, times 0 [ 293.851528][ T9565] CPU: 1 UID: 0 PID: 9565 Comm: syz.1.980 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 293.851564][ T9565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 293.851578][ T9565] Call Trace: [ 293.851619][ T9565] [ 293.851628][ T9565] dump_stack_lvl+0x16c/0x1f0 [ 293.851676][ T9565] should_fail_ex+0x512/0x640 [ 293.851711][ T9565] ? __kmalloc_noprof+0xbf/0x510 [ 293.851748][ T9565] ? alloc_pipe_info+0x1ec/0x590 [ 293.851782][ T9565] should_failslab+0xc2/0x120 [ 293.851803][ T9565] __kmalloc_noprof+0xd2/0x510 [ 293.851845][ T9565] alloc_pipe_info+0x1ec/0x590 [ 293.851883][ T9565] splice_direct_to_actor+0x77d/0xa30 [ 293.851914][ T9565] ? __pfx_direct_splice_actor+0x10/0x10 [ 293.851949][ T9565] ? __pfx_aa_file_perm+0x10/0x10 [ 293.851980][ T9565] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 293.852009][ T9565] ? get_pid_task+0xfc/0x250 [ 293.852050][ T9565] do_splice_direct+0x174/0x240 [ 293.852079][ T9565] ? __pfx_do_splice_direct+0x10/0x10 [ 293.852110][ T9565] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 293.852147][ T9565] ? rw_verify_area+0xcf/0x680 [ 293.852185][ T9565] do_sendfile+0xb06/0xe50 [ 293.852225][ T9565] ? __pfx_do_sendfile+0x10/0x10 [ 293.852257][ T9565] ? __fget_files+0x20e/0x3c0 [ 293.852297][ T9565] __x64_sys_sendfile64+0x1d8/0x220 [ 293.852319][ T9565] ? ksys_write+0x1ac/0x250 [ 293.852355][ T9565] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 293.852389][ T9565] do_syscall_64+0xcd/0x490 [ 293.852427][ T9565] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 293.852453][ T9565] RIP: 0033:0x7fc40fb8e929 [ 293.852473][ T9565] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 293.852497][ T9565] RSP: 002b:00007fc410a9b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 293.852522][ T9565] RAX: ffffffffffffffda RBX: 00007fc40fdb5fa0 RCX: 00007fc40fb8e929 [ 293.852539][ T9565] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003 [ 293.852554][ T9565] RBP: 00007fc410a9b090 R08: 0000000000000000 R09: 0000000000000000 [ 293.852569][ T9565] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000001 [ 293.852591][ T9565] R13: 0000000000000000 R14: 00007fc40fdb5fa0 R15: 00007ffd9aaf80a8 [ 293.852625][ T9565] [ 294.115092][ T9569] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u8:0: corrupted xattr entries [ 294.624363][ T9574] syz.1.984 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 294.673295][ T9580] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1277: comm init: corrupted xattr entries can't run '/sbi[ 294.874273][ T9591] netlink: 342 bytes leftover after parsing attributes in process `syz.0.983'. [ 295.728471][ T9610] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1277: comm init: corrupted xattr entries can't run '/sbi[ 295.820629][ T9615] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u8:28: corrupted xattr entries [ 295.847928][ T9616] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u8:28: corrupted xattr entries [ 295.912285][ T9617] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u8:31: corrupted xattr entries can't run '/sbin/getty': Structure needs cleaning [ 297.289025][ T9641] FAULT_INJECTION: forcing a failure. [ 297.289025][ T9641] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 297.302498][ T9641] CPU: 1 UID: 0 PID: 9641 Comm: syz.1.991 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 297.302537][ T9641] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 297.302554][ T9641] Call Trace: [ 297.302562][ T9641] [ 297.302582][ T9641] dump_stack_lvl+0x16c/0x1f0 [ 297.302621][ T9641] should_fail_ex+0x512/0x640 [ 297.302657][ T9641] _copy_to_user+0x32/0xd0 [ 297.302690][ T9641] tomoyo_flush+0x161/0x520 [ 297.302724][ T9641] tomoyo_set_string+0xaf/0xe0 [ 297.302754][ T9641] tomoyo_print_entry+0x14f7/0x2710 [ 297.302790][ T9641] ? find_held_lock+0x2b/0x80 [ 297.302812][ T9641] ? __pfx_tomoyo_print_entry+0x10/0x10 [ 297.302845][ T9641] ? __might_fault+0xe3/0x190 [ 297.302877][ T9641] ? __might_fault+0x13b/0x190 [ 297.302915][ T9641] ? _copy_to_user+0x48/0xd0 [ 297.302953][ T9641] tomoyo_read_domain2+0xa3/0x380 [ 297.302991][ T9641] tomoyo_read_domain+0x3e1/0x9e0 [ 297.303043][ T9641] tomoyo_read_control+0x299/0x540 [ 297.303085][ T9641] ? __pfx_tomoyo_read+0x10/0x10 [ 297.303119][ T9641] vfs_read+0x1e4/0xc60 [ 297.303157][ T9641] ? __pfx___mutex_lock+0x10/0x10 [ 297.303214][ T9641] ? __pfx_vfs_read+0x10/0x10 [ 297.303257][ T9641] ? __fget_files+0x20e/0x3c0 [ 297.303298][ T9641] ksys_read+0x12a/0x250 [ 297.303327][ T9641] ? __pfx_ksys_read+0x10/0x10 [ 297.303365][ T9641] do_syscall_64+0xcd/0x490 [ 297.303402][ T9641] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 297.303430][ T9641] RIP: 0033:0x7fc40fb8e929 [ 297.303449][ T9641] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 297.303474][ T9641] RSP: 002b:00007fc410a9b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 297.303497][ T9641] RAX: ffffffffffffffda RBX: 00007fc40fdb5fa0 RCX: 00007fc40fb8e929 [ 297.303513][ T9641] RDX: 000000000000b4d3 RSI: 0000000000000000 RDI: 0000000000000003 [ 297.303529][ T9641] RBP: 00007fc40fc10b39 R08: 0000000000000000 R09: 0000000000000000 [ 297.303545][ T9641] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 297.303561][ T9641] R13: 0000000000000000 R14: 00007fc40fdb5fa0 R15: 00007ffd9aaf80a8 [ 297.303603][ T9641] [ 297.641348][ T5834] Bluetooth: hci2: unexpected event 0x1d length: 10 > 5 [ 297.648878][ T9650] openvswitch: netlink: Tunnel attr 242 out of range max 16 [ 297.663556][ T9644] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input15 [ 297.736737][ T9652] EXT4-fs error: 2 callbacks suppressed [ 297.736811][ T9652] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u8:25: corrupted xattr entries [ 298.004712][ T9656] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1277: comm init: corrupted xattr entries can't run '/sbi[ 298.289554][ T9645] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input16 [ 298.811237][ T9662] openvswitch: netlink: Tunnel attr 242 out of range max 16 [ 299.034130][ T9667] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1277: comm init: corrupted xattr entries can't run '/sbi[ 299.644752][ T9675] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u8:0: corrupted xattr entries [ 299.959534][ T9684] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u8:28: corrupted xattr entries [ 299.989106][ T9686] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u8:28: corrupted xattr entries [ 300.081559][ T9689] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1277: comm init: corrupted xattr entries [ 300.110117][ T9681] FAULT_INJECTION: forcing a failure. [ 300.110117][ T9681] name failslab, interval 1, probability 0, space 0, times 0 can't run '/sbi[ 300.150880][ T9681] CPU: 1 UID: 0 PID: 9681 Comm: syz.1.1000 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 300.150922][ T9681] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 300.150939][ T9681] Call Trace: [ 300.150949][ T9681] [ 300.150960][ T9681] dump_stack_lvl+0x16c/0x1f0 [ 300.151006][ T9681] should_fail_ex+0x512/0x640 [ 300.151043][ T9681] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 300.151090][ T9681] should_failslab+0xc2/0x120 [ 300.151116][ T9681] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 300.151161][ T9681] ? kstrdup_const+0x63/0x80 [ 300.151206][ T9681] kstrdup+0x53/0x100 [ 300.151245][ T9681] kstrdup_const+0x63/0x80 [ 300.151282][ T9681] __kernfs_new_node+0x9b/0x8e0 [ 300.151321][ T9681] ? __pfx___kernfs_new_node+0x10/0x10 [ 300.151371][ T9681] ? find_held_lock+0x2b/0x80 [ 300.151400][ T9681] ? kernfs_root+0xee/0x2a0 [ 300.151444][ T9681] kernfs_new_node+0x13c/0x1e0 [ 300.151492][ T9681] kernfs_create_link+0xcc/0x240 [ 300.151526][ T9681] sysfs_do_create_link_sd+0x90/0x140 [ 300.151566][ T9681] sysfs_create_link+0x61/0xc0 [ 300.151601][ T9681] device_add+0x62c/0x1a70 [ 300.151630][ T9681] ? alloc_workqueue+0x198/0x200 [ 300.151663][ T9681] ? __pfx_device_add+0x10/0x10 [ 300.151704][ T9681] nfc_register_device+0x41/0x3c0 [ 300.151749][ T9681] nci_register_device+0x7f1/0xb80 [ 300.151786][ T9681] ? __pfx_nci_register_device+0x10/0x10 [ 300.151828][ T9681] ? lockdep_init_map_type+0x5c/0x280 [ 300.151874][ T9681] virtual_ncidev_open+0x141/0x220 [ 300.151906][ T9681] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 300.151938][ T9681] misc_open+0x35d/0x420 [ 300.151971][ T9681] ? __pfx_misc_open+0x10/0x10 [ 300.152003][ T9681] chrdev_open+0x231/0x6a0 [ 300.152041][ T9681] ? __pfx_apparmor_file_open+0x10/0x10 [ 300.152075][ T9681] ? __pfx_chrdev_open+0x10/0x10 [ 300.152115][ T9681] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 300.152158][ T9681] do_dentry_open+0x744/0x1c10 [ 300.152197][ T9681] ? __pfx_chrdev_open+0x10/0x10 [ 300.152244][ T9681] vfs_open+0x82/0x3f0 [ 300.152278][ T9681] path_openat+0x1de4/0x2cb0 [ 300.152328][ T9681] ? __pfx_path_openat+0x10/0x10 [ 300.152372][ T9681] ? __lock_acquire+0xb8a/0x1c90 [ 300.152409][ T9681] do_filp_open+0x20b/0x470 [ 300.152447][ T9681] ? __pfx_do_filp_open+0x10/0x10 [ 300.152513][ T9681] ? alloc_fd+0x471/0x7d0 [ 300.152559][ T9681] do_sys_openat2+0x11b/0x1d0 [ 300.152588][ T9681] ? __pfx_do_sys_openat2+0x10/0x10 [ 300.152619][ T9681] ? find_held_lock+0x2b/0x80 [ 300.152656][ T9681] __x64_sys_openat+0x174/0x210 [ 300.152686][ T9681] ? __pfx___x64_sys_openat+0x10/0x10 [ 300.152733][ T9681] do_syscall_64+0xcd/0x490 [ 300.152775][ T9681] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 300.152804][ T9681] RIP: 0033:0x7fc40fb8e929 [ 300.152826][ T9681] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 300.152853][ T9681] RSP: 002b:00007fc410a9b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 300.152880][ T9681] RAX: ffffffffffffffda RBX: 00007fc40fdb5fa0 RCX: 00007fc40fb8e929 [ 300.152899][ T9681] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 300.152917][ T9681] RBP: 00007fc40fc10b39 R08: 0000000000000000 R09: 0000000000000000 [ 300.152934][ T9681] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 300.152950][ T9681] R13: 0000000000000000 R14: 00007fc40fdb5fa0 R15: 00007ffd9aaf80a8 [ 300.152987][ T9681] [ 301.139964][ T9696] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1277: comm init: corrupted xattr entries can't run '/sbi[ 301.225184][ T9701] openvswitch: netlink: Tunnel attr 242 out of range max 16 [ 301.338727][ T9706] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u8:25: corrupted xattr entries o[ 302.191458][ T9719] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1277: comm init: corrupted xattr entries can't run '/sbi[ 303.043860][ T9737] ref_tracker: memory allocation failure, unreliable refcount tracker. [ 303.068918][ T9736] netlink: 'syz.0.1014': attribute type 1 has an invalid length. [ 303.236249][ T9739] FAULT_INJECTION: forcing a failure. [ 303.236249][ T9739] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 303.265285][ T9739] CPU: 1 UID: 0 PID: 9739 Comm: syz.1.1015 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 303.265320][ T9739] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 303.265335][ T9739] Call Trace: [ 303.265343][ T9739] [ 303.265352][ T9739] dump_stack_lvl+0x16c/0x1f0 [ 303.265394][ T9739] should_fail_ex+0x512/0x640 [ 303.265434][ T9739] _copy_to_iter+0x29f/0x16f0 [ 303.265474][ T9739] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 303.265516][ T9739] ? __pfx__copy_to_iter+0x10/0x10 [ 303.265555][ T9739] ? kernfs_seq_stop+0xcd/0x120 [ 303.265588][ T9739] ? kernfs_put_active+0x86/0xe0 [ 303.265628][ T9739] seq_read_iter+0xcf8/0x12c0 [ 303.265676][ T9739] kernfs_fop_read_iter+0x40f/0x5a0 [ 303.265702][ T9739] ? rw_verify_area+0xcf/0x680 [ 303.265737][ T9739] vfs_read+0x8bf/0xc60 [ 303.265775][ T9739] ? __pfx___mutex_lock+0x10/0x10 [ 303.265812][ T9739] ? __pfx_vfs_read+0x10/0x10 [ 303.265865][ T9739] ksys_read+0x12a/0x250 [ 303.265897][ T9739] ? __pfx_ksys_read+0x10/0x10 [ 303.265940][ T9739] do_syscall_64+0xcd/0x490 [ 303.265978][ T9739] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 303.266003][ T9739] RIP: 0033:0x7fc40fb8e929 [ 303.266023][ T9739] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 303.266047][ T9739] RSP: 002b:00007fc410a9b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 303.266071][ T9739] RAX: ffffffffffffffda RBX: 00007fc40fdb5fa0 RCX: 00007fc40fb8e929 [ 303.266088][ T9739] RDX: 0000000000001000 RSI: 0000200000000e00 RDI: 0000000000000003 [ 303.266104][ T9739] RBP: 00007fc410a9b090 R08: 0000000000000000 R09: 0000000000000000 [ 303.266119][ T9739] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 303.266134][ T9739] R13: 0000000000000000 R14: 00007fc40fdb5fa0 R15: 00007ffd9aaf80a8 [ 303.266168][ T9739] [ 303.276356][ T9742] EXT4-fs error: 1 callbacks suppressed [ 303.276374][ T9742] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1277: comm init: corrupted xattr entries [ 303.411486][ C0] vkms_vblank_simulate: vblank timer overrun can't run '/sbi[ 303.522021][ T9754] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u8:32: corrupted xattr entries [ 303.538171][ T9755] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u8:30: corrupted xattr entries [ 303.836373][ T9758] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes. [ 304.534498][ T9771] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1277: comm init: corrupted xattr entries can't run '/sbi[ 305.042851][ T9782] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u8:31: corrupted xattr entries [ 305.585528][ T9791] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1277: comm init: corrupted xattr entries can't run '/sbi[ 306.234670][ T9807] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u8:29: corrupted xattr entries [ 306.256349][ T9806] FAULT_INJECTION: forcing a failure. [ 306.256349][ T9806] name failslab, interval 1, probability 0, space 0, times 0 [ 306.274474][ T9806] CPU: 1 UID: 0 PID: 9806 Comm: syz.1.1035 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 306.274513][ T9806] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 306.274544][ T9806] Call Trace: [ 306.274553][ T9806] [ 306.274564][ T9806] dump_stack_lvl+0x16c/0x1f0 [ 306.274606][ T9806] should_fail_ex+0x512/0x640 [ 306.274652][ T9806] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 306.274696][ T9806] should_failslab+0xc2/0x120 [ 306.274723][ T9806] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 306.274760][ T9806] ? __proc_create+0xc3/0x8c0 [ 306.274798][ T9806] ? __proc_create+0x2ce/0x8c0 [ 306.274842][ T9806] __proc_create+0x2ce/0x8c0 [ 306.274881][ T9806] ? __pfx___proc_create+0x10/0x10 [ 306.274926][ T9806] ? _raw_write_unlock+0x28/0x50 [ 306.274961][ T9806] ? proc_register+0x314/0x5f0 [ 306.275004][ T9806] proc_create_reg+0x7d/0x180 [ 306.275032][ T9806] proc_create_net_data+0x8e/0x1b0 [ 306.275073][ T9806] ? __pfx_proc_create_net_data+0x10/0x10 [ 306.275124][ T9806] nfs_fs_proc_net_init+0x141/0x1e0 [ 306.275160][ T9806] nfs_net_init+0x130/0x300 [ 306.275193][ T9806] ? __pfx_nfs_net_init+0x10/0x10 [ 306.275228][ T9806] ops_init+0x1e2/0x5f0 [ 306.275273][ T9806] setup_net+0x1ff/0x510 [ 306.275297][ T9806] ? lockdep_init_map_type+0x5c/0x280 [ 306.275331][ T9806] ? __pfx_setup_net+0x10/0x10 [ 306.275358][ T9806] ? debug_mutex_init+0x37/0x70 [ 306.275388][ T9806] copy_net_ns+0x2a6/0x5f0 [ 306.275420][ T9806] create_new_namespaces+0x3ea/0xa90 [ 306.275458][ T9806] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 306.275491][ T9806] ksys_unshare+0x45b/0xa40 [ 306.275525][ T9806] ? __pfx_ksys_unshare+0x10/0x10 [ 306.275561][ T9806] ? syscall_user_dispatch+0x78/0x140 [ 306.275610][ T9806] __x64_sys_unshare+0x31/0x40 [ 306.275649][ T9806] do_syscall_64+0xcd/0x490 [ 306.275695][ T9806] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 306.275721][ T9806] RIP: 0033:0x7fc40fb8e929 [ 306.275742][ T9806] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 306.275769][ T9806] RSP: 002b:00007fc410a9b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 306.275794][ T9806] RAX: ffffffffffffffda RBX: 00007fc40fdb5fa0 RCX: 00007fc40fb8e929 [ 306.275813][ T9806] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 306.275830][ T9806] RBP: 00007fc40fc10b39 R08: 0000000000000000 R09: 0000000000000000 [ 306.275848][ T9806] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 306.275864][ T9806] R13: 0000000000000000 R14: 00007fc40fdb5fa0 R15: 00007ffd9aaf80a8 [ 306.275900][ T9806] [ 306.542788][ T9806] ------------[ cut here ]------------ [ 306.549789][ T9806] remove_proc_entry: removing non-empty directory 'net/rpc', leaking at least 'nfs' [ 306.551997][ T9809] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u8:29: corrupted xattr entries [ 306.567263][ T9806] WARNING: CPU: 1 PID: 9806 at fs/proc/generic.c:727 remove_proc_entry+0x45e/0x530 [ 306.580432][ T9806] Modules linked in: [ 306.584550][ T9806] CPU: 1 UID: 0 PID: 9806 Comm: syz.1.1035 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 306.596841][ T9806] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 306.596861][ T9806] RIP: 0010:remove_proc_entry+0x45e/0x530 [ 306.596894][ T9806] Code: 3c 02 00 0f 85 85 00 00 00 48 8b 93 d8 00 00 00 4d 89 f0 4c 89 e9 48 c7 c6 00 bc c2 8b 48 c7 c7 20 bb c2 8b e8 63 67 1d ff 90 <0f> 0b 90 90 e9 5f fe ff ff e8 14 54 5e ff 90 48 b8 00 00 00 00 00 [ 306.632618][ T9806] RSP: 0018:ffffc90004f6fb08 EFLAGS: 00010282 [ 306.638984][ T9806] RAX: 0000000000000000 RBX: ffff888077c9a780 RCX: ffffc90005022000 [ 306.647296][ T9806] RDX: 0000000000080000 RSI: ffffffff817aa1b5 RDI: 0000000000000001 [ 306.655817][ T9806] RBP: ffff8880359800c0 R08: 0000000000000001 R09: 0000000000000000 [ 306.664033][ T9806] R10: 0000000000000001 R11: 0000000000000001 R12: ffff888035980000 [ 306.672088][ T9806] R13: ffff8880359800e4 R14: ffff888035980d64 R15: dffffc0000000000 [ 306.680131][ T9806] FS: 00007fc410a9b6c0(0000) GS:ffff88812485e000(0000) knlGS:0000000000000000 [ 306.689144][ T9806] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 306.696208][ T9806] CR2: 0000001b2ff07ff8 CR3: 0000000079b44000 CR4: 00000000003526f0 [ 306.704559][ T9806] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 306.712959][ T9806] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 306.717344][ T9811] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1277: comm init: corrupted xattr entries [ 306.721525][ T9806] Call Trace: [ 306.735465][ T9806] [ 306.738422][ T9806] ? __pfx_remove_proc_entry+0x10/0x10 [ 306.743917][ T9806] ? cache_destroy_net+0x31/0x50 [ 306.748937][ T9806] ? sunrpc_exit_net+0x37/0x90 [ 306.754228][ T9806] sunrpc_exit_net+0x46/0x90 [ 306.758867][ T9806] ? __pfx_sunrpc_exit_net+0x10/0x10 [ 306.764620][ T9806] ops_undo_list+0x2ee/0xab0 [ 306.769254][ T9806] ? __pfx_ops_undo_list+0x10/0x10 [ 306.774435][ T9806] ? ops_init+0x2fa/0x5f0 [ 306.778813][ T9806] setup_net+0x2e1/0x510 [ 306.783104][ T9806] ? __pfx_setup_net+0x10/0x10 [ 306.783137][ T9806] ? debug_mutex_init+0x37/0x70 [ 306.783170][ T9806] copy_net_ns+0x2a6/0x5f0 [ 306.783204][ T9806] create_new_namespaces+0x3ea/0xa90 [ 306.783245][ T9806] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 306.783278][ T9806] ksys_unshare+0x45b/0xa40 [ 306.783311][ T9806] ? __pfx_ksys_unshare+0x10/0x10 [ 306.783347][ T9806] ? syscall_user_dispatch+0x78/0x140 [ 306.823545][ T9806] __x64_sys_unshare+0x31/0x40 [ 306.828422][ T9806] do_syscall_64+0xcd/0x490 [ 306.832970][ T9806] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 306.838946][ T9806] RIP: 0033:0x7fc40fb8e929 [ 306.843381][ T9806] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 306.865397][ T9806] RSP: 002b:00007fc410a9b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 306.873860][ T9806] RAX: ffffffffffffffda RBX: 00007fc40fdb5fa0 RCX: 00007fc40fb8e929 [ 306.882339][ T9806] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 306.890451][ T9806] RBP: 00007fc40fc10b39 R08: 0000000000000000 R09: 0000000000000000 [ 306.898492][ T9806] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 306.906632][ T9806] R13: 0000000000000000 R14: 00007fc40fdb5fa0 R15: 00007ffd9aaf80a8 [ 306.914707][ T9806] [ 306.917762][ T9806] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 306.925066][ T9806] CPU: 1 UID: 0 PID: 9806 Comm: syz.1.1035 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 306.937070][ T9806] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 306.947144][ T9806] Call Trace: [ 306.950435][ T9806] [ 306.953381][ T9806] dump_stack_lvl+0x3d/0x1f0 [ 306.958013][ T9806] panic+0x71c/0x800 [ 306.961943][ T9806] ? __pfx_panic+0x10/0x10 [ 306.966395][ T9806] ? show_trace_log_lvl+0x29b/0x3e0 [ 306.971641][ T9806] ? remove_proc_entry+0x45e/0x530 [ 306.976787][ T9806] check_panic_on_warn+0xab/0xb0 [ 306.981774][ T9806] __warn+0xf6/0x3c0 [ 306.985709][ T9806] ? remove_proc_entry+0x45e/0x530 [ 306.990850][ T9806] report_bug+0x3c3/0x580 [ 306.995218][ T9806] ? remove_proc_entry+0x45e/0x530 [ 307.000359][ T9806] handle_bug+0x184/0x210 [ 307.004718][ T9806] exc_invalid_op+0x17/0x50 [ 307.009249][ T9806] asm_exc_invalid_op+0x1a/0x20 [ 307.014124][ T9806] RIP: 0010:remove_proc_entry+0x45e/0x530 [ 307.019867][ T9806] Code: 3c 02 00 0f 85 85 00 00 00 48 8b 93 d8 00 00 00 4d 89 f0 4c 89 e9 48 c7 c6 00 bc c2 8b 48 c7 c7 20 bb c2 8b e8 63 67 1d ff 90 <0f> 0b 90 90 e9 5f fe ff ff e8 14 54 5e ff 90 48 b8 00 00 00 00 00 [ 307.039492][ T9806] RSP: 0018:ffffc90004f6fb08 EFLAGS: 00010282 [ 307.045577][ T9806] RAX: 0000000000000000 RBX: ffff888077c9a780 RCX: ffffc90005022000 [ 307.053561][ T9806] RDX: 0000000000080000 RSI: ffffffff817aa1b5 RDI: 0000000000000001 [ 307.061542][ T9806] RBP: ffff8880359800c0 R08: 0000000000000001 R09: 0000000000000000 [ 307.069522][ T9806] R10: 0000000000000001 R11: 0000000000000001 R12: ffff888035980000 [ 307.077506][ T9806] R13: ffff8880359800e4 R14: ffff888035980d64 R15: dffffc0000000000 [ 307.085498][ T9806] ? __warn_printk+0x1a5/0x350 [ 307.090290][ T9806] ? remove_proc_entry+0x45d/0x530 [ 307.095414][ T9806] ? __pfx_remove_proc_entry+0x10/0x10 [ 307.100883][ T9806] ? cache_destroy_net+0x31/0x50 [ 307.105839][ T9806] ? sunrpc_exit_net+0x37/0x90 [ 307.110626][ T9806] sunrpc_exit_net+0x46/0x90 [ 307.115239][ T9806] ? __pfx_sunrpc_exit_net+0x10/0x10 [ 307.120538][ T9806] ops_undo_list+0x2ee/0xab0 [ 307.125145][ T9806] ? __pfx_ops_undo_list+0x10/0x10 [ 307.130271][ T9806] ? ops_init+0x2fa/0x5f0 [ 307.134628][ T9806] setup_net+0x2e1/0x510 [ 307.138886][ T9806] ? __pfx_setup_net+0x10/0x10 [ 307.143665][ T9806] ? debug_mutex_init+0x37/0x70 [ 307.148529][ T9806] copy_net_ns+0x2a6/0x5f0 [ 307.152957][ T9806] create_new_namespaces+0x3ea/0xa90 [ 307.158262][ T9806] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 307.163913][ T9806] ksys_unshare+0x45b/0xa40 [ 307.168438][ T9806] ? __pfx_ksys_unshare+0x10/0x10 [ 307.173480][ T9806] ? syscall_user_dispatch+0x78/0x140 [ 307.178882][ T9806] __x64_sys_unshare+0x31/0x40 [ 307.183667][ T9806] do_syscall_64+0xcd/0x490 [ 307.188194][ T9806] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 307.194097][ T9806] RIP: 0033:0x7fc40fb8e929 [ 307.198521][ T9806] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 307.218141][ T9806] RSP: 002b:00007fc410a9b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 307.226569][ T9806] RAX: ffffffffffffffda RBX: 00007fc40fdb5fa0 RCX: 00007fc40fb8e929 [ 307.234549][ T9806] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 307.242525][ T9806] RBP: 00007fc40fc10b39 R08: 0000000000000000 R09: 0000000000000000 [ 307.250502][ T9806] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 307.258479][ T9806] R13: 0000000000000000 R14: 00007fc40fdb5fa0 R15: 00007ffd9aaf80a8 [ 307.266476][ T9806] [ 307.269746][ T9806] Kernel Offset: disabled [ 307.274063][ T9806] Rebooting in 86400 seconds..