last executing test programs: 6.286232179s ago: executing program 2 (id=2579): mmap$auto(0x0, 0x9, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/net/nr14/statistics/tx_heartbeat_errors\x00', 0xa140, 0x0) openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/oom_adj\x00', 0x300, 0x0) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x8002, 0x0) openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, 0x0, 0x20080, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x48041, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_drm_connector_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000b80)='/sys/kernel/debug/dri/vkms/Writeback-1/force\x00', 0x2, 0x0) socket(0x10, 0x2, 0x4) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/net/rpc/nfs4.nametoid/channel\x00', 0x8f3b7a51b80ebd01, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptyt2\x00', 0x101e81, 0x0) setreuid$auto(0x4, 0x8) socketpair$auto(0x5b, 0x2, 0x420100, 0x0) ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0) 5.941952392s ago: executing program 2 (id=2580): r0 = prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2) socket(0x3, 0x3, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0) write$auto(r2, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000) ioctl$auto_CEC_ADAP_S_LOG_ADDRS(r0, 0xc05c6104, &(0x7f0000000240)={"04ee08c9", 0x1, 0xf6, 0xd, 0x6, 0x7, "bd3b7d7d2a75d9fe381320cc9e1dea", "75b660e6", "847abc35", "9fea6d57", ["da621744c13a48dafa8e4863", "115e1f14786464a8bc277951", "e3d8afc7bf1a88e7344601e7", "e7b7ede0cfe03bb7d2b0bbe3"]}) socket(0x15, 0x5, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000004440), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'ip6gre0\x00', 0x0}) sendmsg$auto_OVS_DP_CMD_NEW(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000004540)={&(0x7f0000000140)={0x40, r4, 0x1, 0x70bd2b, 0x25dfdbff, {}, [@OVS_DP_ATTR_IFINDEX={0x8, 0x9, r5}, @OVS_DP_ATTR_USER_FEATURES={0x8, 0x5, 0x6}, @OVS_DP_ATTR_NAME={0x11, 0x1, 'ovs_\x12\xff\xfe\x00\x00\x00\x00\x00\x00'}, @OVS_DP_ATTR_UPCALL_PID={0x8}]}, 0x40}, 0x1, 0x0, 0x0, 0x10}, 0x2000000) 5.538144879s ago: executing program 1 (id=2583): r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(0xffffffffffffffff, 0x0, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000e3d9) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/slab/kmalloc-64/objects\x00', 0x20000, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r1, 0x0, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000200)='/dev/loop12\x00', 0x14f602, 0x0) mmap$auto(0x0, 0x2020009, 0x1, 0xf8, 0xffffffffffffffff, 0x8000) memfd_create$auto(0x0, 0x1) getsockopt$auto(0xffffffffffffffff, 0x0, 0x41, 0x0, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x0) close_range$auto(0x2, 0x8, 0x0) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) fanotify_init$auto(0x65, 0x2) pipe$auto(0x0) futex$auto(0x0, 0xb, 0x5, &(0x7f00000000c0)={0x1, 0x9}, &(0x7f0000000100)=0x6, 0x7ff) 4.425691555s ago: executing program 1 (id=2586): ioctl$auto_SNDRV_TIMER_IOCTL_TREAD_OLD(0xffffffffffffffff, 0x40045402, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x3fd, 0x8000) mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000) fcntl$auto_F_GETOWN(0xffffffffffffffff, 0x9, 0x3) sendmsg$auto_MACSEC_CMD_ADD_RXSA(0xffffffffffffffff, 0x0, 0x2404c084) r0 = socket(0xa, 0x3, 0xff) connect$auto(r0, 0x0, 0x55) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r1, 0x0, 0x20) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) socket$nl_generic(0x10, 0x3, 0x10) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000001f00), 0xffffffffffffffff) sendmsg$auto_SMC_PNETID_ADD(r3, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f00000006c0)={0x2c, r4, 0x1, 0x70bd2c, 0x25dfdc01, {}, [@SMC_PNETID_ETHNAME={0xc, 0x2, '+o*#\x90\x80\x8b\x00'}, @SMC_PNETID_NAME={0xb, 0x1, 'netdev\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x840}, 0x40d0) mkdir$auto(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x8cd) 3.65893567s ago: executing program 3 (id=2588): setrlimit$auto(0x0, &(0x7f0000000000)={0x1, 0xfb3}) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) open(0x0, 0x22240, 0x55) setresuid$auto(0x0, 0x0, 0x200) syz_clone3(&(0x7f0000000200)={0x186800080, 0x0, 0x0, 0x0, {0x1a}, 0x0, 0x0, 0x0, 0x0}, 0x58) kill$auto(0x0, 0x21) socket(0x2, 0x3, 0xa) connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @multicast1}, 0x55) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x90}, 0x20000081) mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x3, 0x6) syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB, @ANYRES16=0x0], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2000c000}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xee46}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) wait4$auto(0x0, 0xfffffffffffffffc, 0x60000003, 0x0) 3.424389207s ago: executing program 0 (id=2589): socket(0x2, 0x1, 0x106) getsockopt$auto(0x3, 0x6, 0x1f, &(0x7f0000000200)=':\x00', &(0x7f0000000240)=0x9) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/bus/usb/drivers/ldusb/remove_id\x00', 0xa8640, 0x0) write$auto_ocfs2_control_fops_stack_user(r0, 0x0, 0x0) mmap$auto(0x0, 0x9, 0xc00000072, 0x8b72, 0x1000000002, 0x8000) openat$auto_ep0_operations_inode(0xffffffffffffff9c, 0x0, 0x826c2, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = socket(0x29, 0x2, 0x0) r2 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000) recvmmsg$auto(r2, &(0x7f0000000140)={{0x0, 0x1, &(0x7f0000000080)={0x0, 0x400}, 0x5, 0x0, 0x200002, 0x8}, 0x803}, 0xfffffff9, 0x10, 0x0) ioctl$auto(r1, 0x89a3, 0x24) socket$nl_generic(0x10, 0x3, 0x10) io_uring_setup$auto(0xa, 0x0) close_range$auto(0x2, 0x8, 0x0) futex$auto(&(0x7f0000000080)=0x2948, 0x0, 0x2948, &(0x7f00000000c0)={0x225c17d03}, 0x0, 0x5) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x80000, 0x0) futex$auto(0x0, 0x5, 0x4, 0x0, &(0x7f0000000080)=0x9, 0x4000000) 3.420998866s ago: executing program 2 (id=2590): close_range$auto(0x2, 0x8, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) socket(0x28, 0x801, 0x0) connect$auto(0x3, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x2711}, 0x51) socket(0xf, 0x3, 0x2) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket(0x1e, 0x1, 0x0) fanotify_init$auto(0x5, 0x2000000000002) select$auto(0x6, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x6, 0xfff, 0x1, 0x5, 0x3, 0x95f4da2d, 0xc, 0x6, 0x62, 0x7, 0x7, 0x6d3f, 0xa, 0x4, 0x5]}, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) waitid$auto_P_ALL(0x0, 0x1, 0x0, 0x7fffffff, 0x0) sendmsg$auto_MAC802154_HWSIM_CMD_DEL_RADIO(r0, 0x0, 0x0) socket(0x15, 0x5, 0x0) shutdown$auto(0x200000003, 0x2) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x9, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) close_range$auto(0x2, 0x8, 0x0) mbind$auto(0x0, 0x800605, 0x8003, 0x0, 0x3, 0x3) 3.407036811s ago: executing program 3 (id=2591): close_range$auto(0x2, 0x8, 0x0) landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x400, 0x7}, 0x9, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/platform/vidtv.0/i2c-0/delete_device\x00', 0x1, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/fs/cifs/SecurityFlags\x00', 0x48041, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_drm_connector_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000b80)='/sys/kernel/debug/dri/vkms/Writeback-1/force\x00', 0x2, 0x0) socket(0x10, 0x2, 0x4) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) io_uring_setup$auto(0x2, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptyt2\x00', 0x101e81, 0x0) ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0) socketpair$auto(0x5b, 0x2, 0x420000, 0x0) ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0) ioctl$auto_TIOCVHANGUP2(r0, 0x5437, 0x0) 3.160700654s ago: executing program 0 (id=2592): mmap$auto(0x0, 0x4, 0x4000000000e3, 0x10000040eb2, 0xffffffffffffffff, 0x300000000000) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptyq1\x00', 0x600100, 0x0) io_uring_setup$auto(0x7, 0x0) socket(0x25, 0x5, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) io_uring_setup$auto(0x7e1b, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyv6\x00', 0x800, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x11, 0x2, 0x14) socketpair$auto(0x20000d, 0x7, 0x4, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptya7\x00', 0x101e81, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptyde\x00', 0xa0102, 0x0) ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0) poll$auto(&(0x7f0000000040)={0x3, 0x1, 0xa}, 0x5, 0x108) write$auto(r0, 0x0, 0x0) 3.139877875s ago: executing program 3 (id=2593): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x106) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) r1 = openat$dir(0xffffffffffffff9c, 0x0, 0x40000, 0x0) bind$auto(0x3, 0x0, 0x6a) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9) write$auto(0x3, 0x0, 0xfffffdef) r2 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000100), r0) ioctl$auto(0xffffffffffffffff, 0x900064b5, 0xc14) msgctl$auto(0x9, 0xf8, &(0x7f00000001c0)={{0x8, 0xee00, 0x0, 0x4, 0xa771, 0x7, 0x9}, &(0x7f0000000140)=0x1, &(0x7f0000000180)=0x1, 0xc28a, 0x5f52, 0x3, 0x9, 0x8, 0x2cce, 0xfffc, 0x6, @inferred, @inferred=0xffffffffffffffff}) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_macsec(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$auto_MACSEC_CMD_UPD_RXSC(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)={0x28, r4, 0x201, 0x70bd2a, 0x25dfdbfe, {}, [@MACSEC_ATTR_RXSC_CONFIG={0xc, 0x2, 0x0, 0x1, [@typed={0x8, 0x1, 0x0, 0x0, @uid}]}, @MACSEC_ATTR_IFINDEX={0x8}]}, 0x28}}, 0x48010) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f00000027c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000002780)={&(0x7f0000000240)={0x264, r2, 0x200, 0x70bd2d, 0x25dfdbfc, {}, [@OVS_VPORT_ATTR_IFINDEX={0x8}, @OVS_VPORT_ATTR_NAME={0xf, 0x3, '/dev/adsp1\x00'}, @OVS_VPORT_ATTR_OPTIONS={0x222, 0x4, 0x0, 0x1, [@nested={0xce, 0x144, 0x0, 0x1, [@typed={0x4, 0x75}, @nested={0x4, 0x68}, @generic="d1506bbd2b1ebe4d19b0d1c0ab9c296454e83f6f917ac6b0097c35d5df5abbc18838f7a7f3b46966c809d12efc3a7a069afe67a71d5567097f060e60e752058afe2f21dd8e61df70ef93aeeebfdb2433f6f4fc2a08eaf6e20011cc4749ac9c02feb7059988773029c0283338878bcccdc09ee6318737f2af18d42604ad6bba937d6dd2f5a7d9c92e8f08d40b3f052e083a9bb7bf59ad99a2501b8622414a", @typed={0x14, 0x40, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @private=0xa010100}}, @nested={0x4, 0x57}, @typed={0xc, 0x104, 0x0, 0x0, @u64=0x7}]}, @nested={0x3b, 0xab, 0x0, 0x1, [@nested={0x4, 0x12}, @nested={0x4, 0x23}, @typed={0x8, 0x69, 0x0, 0x0, @ipv4=@broadcast}, @nested={0x4, 0x5f}, @typed={0x8, 0xd0, 0x0, 0x0, @fd}, @typed={0xc, 0x7c, 0x0, 0x0, @u64=0x2}, @nested={0x4, 0x90}, @generic="79d31828245d1d", @nested={0x4, 0x54}]}, @nested={0xa1, 0xe6, 0x0, 0x1, [@generic="9a9ee0a2123a8fa92a4224c5e320835bc1df4b86308f1eb106b640770860908a7ee198191bec22d0e1fe7b49b4428100781fc9231baa218eb9dff6587e85758d2557a569379b8216c1a1a193109a24a6cbf4ca980e8cd518672d8170bfc296672040c805d2805a666b2c10da076637bada153ac529599e829086c0d426fe1187195bc35fd3", @typed={0x7, 0xa5, 0x0, 0x0, @str='}+\x00'}, @typed={0x8, 0xd8, 0x0, 0x0, @ipv4=@private=0xa010100}, @typed={0x8, 0x3f, 0x0, 0x0, @fd=r1}]}, @typed={0x8, 0xb6, 0x0, 0x0, @ipv4=@rand_addr=0x64010101}, @generic="78679f385b78dc", @typed={0xf, 0x141, 0x0, 0x0, @str='/dev/adsp1\x00'}, @generic="34dbb4a18fb580bda46a26cb741baeb66648b73e16593e6280ab1f493bdceced1b1cb8e704a055f6ba30c848e10359186bdac20f914fc3e87ed1e9d944940d1af2861a7aa210570710731e24a2b60c"]}, @OVS_VPORT_ATTR_UPCALL_STATS={0x4, 0xa, 0x0, 0x1, [@generic]}, @OVS_VPORT_ATTR_PORT_NO={0x8, 0x1, 0x5}, @OVS_VPORT_ATTR_NETNSID={0x8}]}, 0x264}, 0x1, 0x0, 0x0, 0xd5}, 0x4000040) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20002, 0x0) connect$auto(0x3, 0x0, 0x55) 2.921130662s ago: executing program 1 (id=2594): writev$auto(0x3, 0x0, 0x8009) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$auto_OVS_FLOW_CMD_DEL(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)={0x18, r1, 0x1, 0x70bd2d, 0x25dfdbfd, {}, [@OVS_FLOW_ATTR_KEY={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x40}, 0x800) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x4, 0x300000000000) mmap$auto(0x3, 0x402000b, 0x2000006, 0xeb1, 0x401, 0xfff) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) unshare$auto(0x40000080) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/bonding/all_slaves_active\x00', 0xb02, 0x0) pwritev$auto(0x3, &(0x7f0000001000)={0x0, 0x8}, 0x5, 0x3, 0x9) read$auto(0x3, 0x0, 0xf34) write$auto(0x3, 0x0, 0xffd8) 2.822476717s ago: executing program 0 (id=2595): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) keyctl$auto(0x14, 0x72510000000, 0x69c6, 0x0, 0x0) r0 = socket(0x80000000000000a, 0x2, 0x0) socket(0xa, 0x801, 0x84) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x2, 0x0) memfd_secret$auto(0x0) socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8000, 0x0) socket(0x2, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x301001, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r0) ioctl$auto_KVM_CREATE_VM(r1, 0x4048aecb, 0x0) 2.445452155s ago: executing program 0 (id=2596): mmap$auto(0x0, 0x20009, 0x7, 0x12, 0xffffffffffffffff, 0xf4e) mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x10008000) write$auto(0x3, 0x0, 0x100082) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, 0x0, 0x100000a3d9) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80802, 0x0) r1 = socket(0x2b, 0x1, 0x0) getsockopt$auto(r0, 0x80000001, 0x1, &(0x7f0000000080)='/dev/\x98@dio1\x00', &(0x7f00000000c0)=0x2) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a) sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x3, 0x20000000) sendfile$auto(0x1, 0x3, 0x0, 0x7ff) sendto$auto(0x3, 0x0, 0x2000f, 0x101, 0x0, 0x1c) rt_sigtimedwait$auto(&(0x7f0000000040)={0xfffffffffffffbff}, 0x0, 0x0, 0x8) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) recvmmsg$auto(0x3, 0x0, 0xfffe, 0x6, 0x0) 2.418199247s ago: executing program 3 (id=2597): socket$nl_generic(0x10, 0x3, 0x10) writev$auto(0x3, &(0x7f0000000100)={&(0x7f0000000180)="bff32e36240000004d836cf147c83be958edd5a94b1fd8dbaaf3403549fe", 0x7112}, 0x8) socket(0x2, 0x3, 0xa) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) unshare$auto(0x4) socketpair$auto(0x1e, 0x1, 0xffffffff, 0x0) close_range$auto(0x2, 0x8, 0x0) gettid() capget$auto(0x0, &(0x7f0000000200)={0x2, 0x4, 0x6}) socket(0x2, 0x80002, 0x73) io_uring_setup$auto(0x406, 0x0) mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0) getrandom$auto(0x0, 0x5fffffc, 0x3) io_uring_enter$auto(0x3, 0xa84, 0x80000001, 0xa, 0x0, 0x46) 2.030697103s ago: executing program 2 (id=2598): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0) fadvise64$auto(r0, 0x7fff, 0x6, 0x1) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) r1 = fanotify_init$auto(0x1, 0x2) fanotify_mark$auto(r1, 0x205, 0x100002, 0x4, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/fs/cifs/LookupCacheEnabled\x00', 0x48041, 0x0) setrlimit$auto(0x7, &(0x7f0000001380)={0x5, 0x6}) socket(0x22, 0x1, 0x0) socketpair$auto(0x3, 0x5, 0x7, 0x0) socket(0xa, 0x3, 0x3a) setsockopt$auto(0x400000000000003, 0x8029, 0xca, 0x0, 0x567) mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) openat$auto_iommufd_fops_main(0xffffffffffffff9c, &(0x7f0000000000), 0x80001, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0x8138ae83, 0x0) 1.769461816s ago: executing program 2 (id=2599): close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/self/net/vlan/config\x00', 0xc0000, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/vm/mmap_min_addr\x00', 0x101302, 0x0) signalfd$auto(0xffffffff, 0x0, 0x8) socket(0x1d, 0x2, 0x6) socket$nl_generic(0x10, 0x3, 0x10) io_uring_setup$auto(0x6, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0xa101, 0x0) io_uring_setup$auto(0x4079, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0x4004, 0xf, 0x4, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0) ioctl$auto_TCFLSH2(r0, 0x540b, 0x0) 1.531914297s ago: executing program 2 (id=2600): madvise$auto(0x0, 0x7fffffffffffffff, 0xa) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000000)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xfffffffd}, 0x10001}, 0x5, 0x20000000) bind$auto(0x3, 0x0, 0x6a) recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0) ioctl$auto(0x3, 0x80108907, 0x38) prctl$auto_PR_GET_TID_ADDRESS(0x28, 0x2, 0x0, 0x0, 0x40) setsockopt$auto(0x3, 0x6, 0x3, 0x0, 0xd) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mbind$auto(0x0, 0x2091d1, 0x1, 0x0, 0x6, 0x2) syz_genetlink_get_family_id$auto_nl80211(0x0, r0) r1 = syz_genetlink_get_family_id$auto_ovs_vport(0x0, r0) r2 = prctl$auto_PR_SYS_DISPATCH_OFF(0x3, 0x0, 0xffffffffffffffff, 0x7f, 0xfffffffffffffffd) ioctl$auto_FUSE_DEV_IOC_BACKING_OPEN(r2, 0x4010e501, 0x0) sendmsg$auto_OVS_VPORT_CMD_DEL(r0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)=ANY=[@ANYRES16=r1, @ANYBLOB="000427bd7000ffdbdf0e000000000f0003002f6465762f6c6f6f70360000"], 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x5) 1.531341124s ago: executing program 1 (id=2608): unshare$auto(0x40000080) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(0xffffffffffffffff, 0x0, 0x24000044) syz_genetlink_get_family_id$auto_nlctrl(0x0, 0xffffffffffffffff) socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0xfff, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x20) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) pselect6$auto(0x1, 0x0, &(0x7f0000000240)={[0xf, 0x5e9, 0x8, 0x8e, 0xd, 0xfffffffffffff801, 0x2d44b40f, 0x831f, 0x4, 0xb911, 0x2, 0x81, 0x4, 0x6, 0x1, 0x5]}, 0x0, 0x0, 0x0) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/stat/rt_cache\x00', 0x20000, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x8000, 0x0) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) iopl$auto(0x3) clone$auto(0x0, 0x4, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x9) 1.293440447s ago: executing program 0 (id=2601): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x2, 0x73) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp1\x00', 0x20b42, 0x0) write$auto(0x3, 0x0, 0x100082) write$auto(0x3, 0x0, 0x100082) ioctl$auto_SNDCTL_DSP_SETTRIGGER(r0, 0x40045010, 0x0) ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f0000000140)) socket(0x25, 0x1, 0x0) open(0x0, 0x2000, 0xb5d1af1605322c72) capset$auto(0x0, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) close_range$auto(0x2, 0xa, 0x0) socket(0xa, 0x2, 0x0) connect$auto(0xffffffffffffffff, 0x0, 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe) openat$auto_proc_mem_operations_base(0xffffffffffffff9c, 0x0, 0x20401, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000) 1.257573585s ago: executing program 3 (id=2602): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/dummy_hcd.3/usb4/4-0:1.0/authorized\x00', 0x10b142, 0x0) mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) r0 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000200), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_HWSIM_CMD_DEL_RADIO(r1, &(0x7f0000003bc0)={0x0, 0x0, &(0x7f0000003b80)={&(0x7f0000003980)={0x24, r0, 0x5, 0x70bd26, 0x25dfdbfd, {}, [@HWSIM_ATTR_RADIO_NAME={0xd, 0x11, '/dev/fb1\x00'}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000000}, 0xc044) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000980), r2) sendmsg$auto_TIPC_NL_MEDIA_SET(r2, &(0x7f000000a4c0)={0x0, 0x0, &(0x7f000000a480)={&(0x7f0000009800)={0x18, r3, 0x1, 0x70bd29, 0x25dfdbff, {}, [@TIPC_NLA_MEDIA={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x4000}, 0x20000048) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) socket(0xf, 0x3, 0x7c) readlinkat$auto(0x1, 0x0, 0x0, 0x16a) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) fstatfs$auto(0x3, 0x0) ioctl$auto(r4, 0x4b67, 0x1) 155.497659ms ago: executing program 3 (id=2603): ioctl$auto_SNDRV_TIMER_IOCTL_TREAD_OLD(0xffffffffffffffff, 0x40045402, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x3fd, 0x8000) mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000) fcntl$auto_F_GETOWN(0xffffffffffffffff, 0x9, 0x3) sendmsg$auto_MACSEC_CMD_ADD_RXSA(0xffffffffffffffff, 0x0, 0x2404c084) r0 = socket(0xa, 0x3, 0xff) connect$auto(r0, 0x0, 0x55) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r1, 0x0, 0x20) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) socket$nl_generic(0x10, 0x3, 0x10) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000001f00), 0xffffffffffffffff) sendmsg$auto_SMC_PNETID_ADD(r3, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f00000006c0)={0x2c, r4, 0x1, 0x70bd2c, 0x25dfdc01, {}, [@SMC_PNETID_ETHNAME={0xc, 0x2, '+o*#\x90\x80\x8b\x00'}, @SMC_PNETID_NAME={0xb, 0x1, 'netdev\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x840}, 0x40d0) mkdir$auto(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x8cd) 147.137024ms ago: executing program 0 (id=2612): open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x130) mmap$auto(0x0, 0x88b, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/block/ram12/queue/read_ahead_kb\x00', 0x80000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) read$auto(r0, 0x0, 0x20) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x183941, 0x0) seccomp$auto(0x2, 0x10, 0x0) unshare$auto(0x40000080) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x7, 0x8) close_range$auto(0x2, 0x8, 0x0) unshare$auto(0x40000080) sendmmsg$auto(0x4, 0x0, 0x9a6, 0xa) madvise$auto(0x0, 0x1, 0x10) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) semctl$auto(0x1ff, 0x2, 0x13, 0x4) read$auto_ptdump_fops_(0xffffffffffffffff, 0x0, 0x0) 146.746018ms ago: executing program 1 (id=2604): mmap$auto(0x0, 0x101, 0x4000000000df, 0xeb1, 0x200000401, 0x8000) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) openat$auto_bch_chardev_fops_chardev(0xffffffffffffff9c, 0x0, 0x40, 0x0) openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, 0x0, 0x141f02, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, r0, 0x0) r1 = socket(0xa, 0x2, 0x88) socket$nl_generic(0x10, 0x3, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'bond0\x00', 0x0}) bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r3, r2, 0x4, 0x1ff, r1, @relative_id=0x13, 0xe600}, 0xf) socketpair$auto(0x1, 0x3, 0x8000000000000000, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, r4, 0x0, 0x3}, 0xc) readv$auto(0x6, &(0x7f00000000c0)={0x0, 0x1}, 0x1) sendmsg$auto_ETHTOOL_MSG_RINGS_SET(r0, 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) writev$auto(0x3, 0x0, 0x8) 0s ago: executing program 1 (id=2605): unshare$auto(0x40000080) mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/net/bond0/bonding/primary_reselect\x00', 0x1e2142, 0x0) sendfile$auto(r0, r0, 0x0, 0x7fff) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop6\x00', 0x18dd01, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) ioctl$auto_KVM_GET_MSRS(r2, 0xc008ae88, &(0x7f0000000040)={0x10, 0x0, [{0x48b, 0x400, 0x9}]}) ioctl$auto_SG_GET_RESERVED_SIZE(r1, 0x4c06, 0x0) unshare$auto(0x40000080) r3 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x42, 0x0) unshare$auto(0x40000080) r4 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/all/forwarding\x00', 0x42a81, 0x0) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/bdi/43:288/max_ratio_fine\x00', 0x10b142, 0x0) sendfile$auto(r4, r5, 0x0, 0x1000200) write$auto(r3, 0x0, 0xa3d9) munmap$auto(0x200000008000, 0xffffffff) kernel console output (not intermixed with test programs): ] RSP: 002b:00007f201acdb038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 374.021537][T11047] RAX: ffffffffffffffda RBX: 00007f2019fb5fa0 RCX: 00007f2019d8ebe9 [ 374.021555][T11047] RDX: 0000000000040800 RSI: 00002000000000c0 RDI: 0000000000000003 [ 374.021578][T11047] RBP: 00007f2019e11e19 R08: 0000000000000000 R09: 0000000000000000 [ 374.021593][T11047] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 374.021609][T11047] R13: 00007f2019fb6038 R14: 00007f2019fb5fa0 R15: 00007ffc94240f68 [ 374.021656][T11047] [ 376.152962][T11099] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 378.125948][T11156] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1555'. [ 378.451434][T11164] netlink: 'syz.3.1550': attribute type 4 has an invalid length. [ 378.598291][T11164] netlink: 'syz.3.1550': attribute type 5 has an invalid length. [ 378.606064][T11164] netlink: 10 bytes leftover after parsing attributes in process `syz.3.1550'. [ 378.746136][T11167] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1552'. [ 378.778389][T11167] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1552'. [ 378.812751][T11167] netlink: 290 bytes leftover after parsing attributes in process `syz.3.1552'. [ 380.375246][T11198] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1562'. [ 380.416884][T11198] netlink: 354 bytes leftover after parsing attributes in process `syz.3.1562'. [ 380.846971][T11205] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1564'. [ 383.249055][ T5859] Bluetooth: hci1: unexpected event 0x3e length: 508 > 260 [ 383.249093][ T5859] Bluetooth: hci1: unexpected subevent 0x02 length: 507 > 260 [ 383.264058][ T5859] Bluetooth: hci1: Dropping invalid advertising data [ 383.271624][ T5859] Bluetooth: hci1: unknown advertising packet type: 0xe9 [ 383.271661][ T5859] Bluetooth: hci1: Dropping invalid advertising data [ 383.285561][ T5859] Bluetooth: hci1: Dropping invalid advertising data [ 383.296068][ T5859] Bluetooth: hci1: Malformed LE Event: 0x02 [ 383.772795][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 383.779736][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 383.861795][T11240] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1573'. [ 385.898920][T11264] ERROR: Out of memory at tomoyo_memory_ok. [ 385.905218][T11264] ERROR: Domain ' /sbin/init /etc/init.d/rcS /etc/init.d/S50sshd /sbin/start-stop-daemon /usr/sbin/sshd /usr/libexec/sshd-session /bin/sh /root/syz-executor /root/syz-executor /newroot/378/:,' not defined. [ 386.134124][T11266] sysfs: cannot create duplicate filename '/class/ieee80211/!PjE r҄y*"l-y' [ 386.148931][T11266] CPU: 0 UID: 0 PID: 11266 Comm: syz.3.1581 Not tainted 6.17.0-rc1-syzkaller-00016-g8742b2d8935f #0 PREEMPT(full) [ 386.148967][T11266] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 386.148983][T11266] Call Trace: [ 386.148991][T11266] [ 386.149000][T11266] dump_stack_lvl+0x16c/0x1f0 [ 386.149036][T11266] sysfs_warn_dup+0x7f/0xa0 [ 386.149063][T11266] sysfs_do_create_link_sd+0x124/0x140 [ 386.149092][T11266] sysfs_create_link+0x61/0xc0 [ 386.149120][T11266] device_add+0x62c/0x1aa0 [ 386.149174][T11266] ? __pfx_device_add+0x10/0x10 [ 386.149212][T11266] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 386.149253][T11266] ? ieee80211_set_bitrate_flags+0x243/0x6b0 [ 386.149290][T11266] wiphy_register+0x1df4/0x29f0 [ 386.149326][T11266] ? netdev_run_todo+0x864/0x1320 [ 386.149361][T11266] ? __dev_printk+0x220/0x270 [ 386.149400][T11266] ? __pfx_wiphy_register+0x10/0x10 [ 386.149445][T11266] ? ieee80211_init_rate_ctrl_alg+0x125/0x6b0 [ 386.149483][T11266] ieee80211_register_hw+0x24a9/0x4060 [ 386.149531][T11266] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 386.149570][T11266] ? find_held_lock+0x2b/0x80 [ 386.149596][T11266] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 386.149632][T11266] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 386.149664][T11266] ? __hrtimer_setup+0x176/0x280 [ 386.149702][T11266] mac80211_hwsim_new_radio+0x3034/0x54d0 [ 386.149752][T11266] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 386.149790][T11266] hwsim_new_radio_nl+0xb51/0x12c0 [ 386.149819][T11266] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 386.149857][T11266] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 386.149895][T11266] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 386.149941][T11266] genl_family_rcv_msg_doit+0x209/0x2f0 [ 386.149980][T11266] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 386.150028][T11266] ? bpf_lsm_capable+0x9/0x10 [ 386.150049][T11266] ? security_capable+0x7e/0x260 [ 386.150074][T11266] ? ns_capable+0xd7/0x110 [ 386.150105][T11266] genl_rcv_msg+0x55c/0x800 [ 386.150151][T11266] ? __pfx_genl_rcv_msg+0x10/0x10 [ 386.150182][T11266] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 386.150220][T11266] netlink_rcv_skb+0x158/0x420 [ 386.150250][T11266] ? __pfx_genl_rcv_msg+0x10/0x10 [ 386.150285][T11266] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 386.150331][T11266] ? netlink_deliver_tap+0x1ae/0xd30 [ 386.150365][T11266] genl_rcv+0x28/0x40 [ 386.150394][T11266] netlink_unicast+0x5a7/0x870 [ 386.150430][T11266] ? __pfx_netlink_unicast+0x10/0x10 [ 386.150459][T11266] ? __pfx___might_resched+0x10/0x10 [ 386.150482][T11266] ? __lock_acquire+0xb97/0x1ce0 [ 386.150521][T11266] netlink_sendmsg+0x8d1/0xdd0 [ 386.150558][T11266] ? __pfx_netlink_sendmsg+0x10/0x10 [ 386.150592][T11266] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 386.150625][T11266] ____sys_sendmsg+0xa95/0xc70 [ 386.150661][T11266] ? copy_msghdr_from_user+0x10a/0x160 [ 386.150689][T11266] ? __pfx_____sys_sendmsg+0x10/0x10 [ 386.150733][T11266] ? __pfx_futex_wake_mark+0x10/0x10 [ 386.150772][T11266] ___sys_sendmsg+0x134/0x1d0 [ 386.150803][T11266] ? __pfx____sys_sendmsg+0x10/0x10 [ 386.150879][T11266] __sys_sendmsg+0x16d/0x220 [ 386.150909][T11266] ? __pfx___sys_sendmsg+0x10/0x10 [ 386.150937][T11266] ? __x64_sys_futex+0x1e0/0x4c0 [ 386.150988][T11266] do_syscall_64+0xcd/0x490 [ 386.151021][T11266] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 386.151046][T11266] RIP: 0033:0x7f3f7c18ebe9 [ 386.151065][T11266] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 386.151090][T11266] RSP: 002b:00007f3f7d038038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 386.151113][T11266] RAX: ffffffffffffffda RBX: 00007f3f7c3b5fa0 RCX: 00007f3f7c18ebe9 [ 386.151138][T11266] RDX: 0000000000040800 RSI: 00002000000000c0 RDI: 0000000000000003 [ 386.151153][T11266] RBP: 00007f3f7c211e19 R08: 0000000000000000 R09: 0000000000000000 [ 386.151168][T11266] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 386.151182][T11266] R13: 00007f3f7c3b6038 R14: 00007f3f7c3b5fa0 R15: 00007ffdf4724ec8 [ 386.151215][T11266] [ 387.234778][T11277] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1584'. [ 389.943866][T11309] FAULT_INJECTION: forcing a failure. [ 389.943866][T11309] name failslab, interval 1, probability 0, space 0, times 0 [ 389.957010][T11309] CPU: 1 UID: 0 PID: 11309 Comm: syz.1.1592 Not tainted 6.17.0-rc1-syzkaller-00016-g8742b2d8935f #0 PREEMPT(full) [ 389.957044][T11309] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 389.957058][T11309] Call Trace: [ 389.957067][T11309] [ 389.957077][T11309] dump_stack_lvl+0x16c/0x1f0 [ 389.957114][T11309] should_fail_ex+0x512/0x640 [ 389.957148][T11309] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 389.957179][T11309] should_failslab+0xc2/0x120 [ 389.957212][T11309] __kmalloc_cache_noprof+0x6a/0x3e0 [ 389.957241][T11309] ? kobject_uevent_env+0x265/0x1870 [ 389.957284][T11309] kobject_uevent_env+0x265/0x1870 [ 389.957319][T11309] ? __pfx_dev_uevent_name+0x10/0x10 [ 389.957391][T11309] ? bus_to_subsys+0x131/0x160 [ 389.957420][T11309] device_add+0x10dd/0x1aa0 [ 389.957460][T11309] ? __pfx_device_add+0x10/0x10 [ 389.957506][T11309] nfc_register_device+0x41/0x3c0 [ 389.957542][T11309] nci_register_device+0x7f1/0xb80 [ 389.957570][T11309] ? __pfx_nci_register_device+0x10/0x10 [ 389.957602][T11309] ? lockdep_init_map_type+0x5c/0x280 [ 389.957640][T11309] virtual_ncidev_open+0x141/0x220 [ 389.957667][T11309] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 389.957693][T11309] misc_open+0x35a/0x420 [ 389.957720][T11309] ? __pfx_misc_open+0x10/0x10 [ 389.957745][T11309] chrdev_open+0x231/0x6a0 [ 389.957777][T11309] ? __pfx_apparmor_file_open+0x10/0x10 [ 389.957803][T11309] ? __pfx_chrdev_open+0x10/0x10 [ 389.957836][T11309] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 389.957873][T11309] do_dentry_open+0x97f/0x1530 [ 389.957904][T11309] ? __pfx_chrdev_open+0x10/0x10 [ 389.957942][T11309] vfs_open+0x82/0x3f0 [ 389.957981][T11309] path_openat+0x1de4/0x2cb0 [ 389.958023][T11309] ? __pfx_path_openat+0x10/0x10 [ 389.958062][T11309] do_filp_open+0x20b/0x470 [ 389.958089][T11309] ? __pfx_do_filp_open+0x10/0x10 [ 389.958142][T11309] ? alloc_fd+0x471/0x7d0 [ 389.958179][T11309] do_sys_openat2+0x11b/0x1d0 [ 389.958215][T11309] ? __pfx_do_sys_openat2+0x10/0x10 [ 389.958264][T11309] __x64_sys_openat+0x174/0x210 [ 389.958301][T11309] ? __pfx___x64_sys_openat+0x10/0x10 [ 389.958365][T11309] do_syscall_64+0xcd/0x490 [ 389.958401][T11309] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 389.958428][T11309] RIP: 0033:0x7ffa6418ebe9 [ 389.958450][T11309] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 389.958474][T11309] RSP: 002b:00007ffa623ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 389.958500][T11309] RAX: ffffffffffffffda RBX: 00007ffa643b5fa0 RCX: 00007ffa6418ebe9 [ 389.958517][T11309] RDX: 0000000000000002 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 389.958534][T11309] RBP: 00007ffa64211e19 R08: 0000000000000000 R09: 0000000000000000 [ 389.958550][T11309] R10: 000000000000001f R11: 0000000000000246 R12: 0000000000000000 [ 389.958565][T11309] R13: 00007ffa643b6038 R14: 00007ffa643b5fa0 R15: 00007ffcc9869508 [ 389.958601][T11309] [ 390.709698][T11301] netlink: 186 bytes leftover after parsing attributes in process `syz.2.1598'. [ 391.678938][T11331] netlink: 13 bytes leftover after parsing attributes in process `syz.1.1597'. [ 391.946195][T11340] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1602'. [ 392.022281][T11343] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 392.094435][T11075] syz.2.1531 (11075) used greatest stack depth: 18856 bytes left [ 392.930888][T11351] FAULT_INJECTION: forcing a failure. [ 392.930888][T11351] name failslab, interval 1, probability 0, space 0, times 0 [ 392.944696][T11351] CPU: 1 UID: 0 PID: 11351 Comm: syz.3.1606 Not tainted 6.17.0-rc1-syzkaller-00016-g8742b2d8935f #0 PREEMPT(full) [ 392.944735][T11351] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 392.944750][T11351] Call Trace: [ 392.944758][T11351] [ 392.944765][T11351] dump_stack_lvl+0x16c/0x1f0 [ 392.944788][T11351] should_fail_ex+0x512/0x640 [ 392.944808][T11351] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 392.944829][T11351] should_failslab+0xc2/0x120 [ 392.944848][T11351] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 392.944865][T11351] ? copy_process+0x4b6/0x7690 [ 392.944884][T11351] ? _raw_spin_unlock_irq+0x23/0x50 [ 392.944901][T11351] copy_process+0x4b6/0x7690 [ 392.944926][T11351] ? __pfx_copy_process+0x10/0x10 [ 392.944962][T11351] ? lockdep_init_map_type+0x5c/0x280 [ 392.944984][T11351] ? lockdep_init_map_type+0x5c/0x280 [ 392.945004][T11351] ? __pfx_vhost_worker_killed+0x10/0x10 [ 392.945023][T11351] ? __pfx_vhost_run_work_list+0x10/0x10 [ 392.945041][T11351] vhost_task_create+0x1d2/0x2e0 [ 392.945062][T11351] ? __pfx_vhost_task_create+0x10/0x10 [ 392.945082][T11351] ? vsnprintf+0x318/0x1160 [ 392.945103][T11351] ? __pfx_vhost_task_fn+0x10/0x10 [ 392.945136][T11351] ? snprintf+0xc7/0x100 [ 392.945155][T11351] vhost_task_worker_create+0x8d/0x200 [ 392.945175][T11351] ? __pfx_vhost_task_worker_create+0x10/0x10 [ 392.945194][T11351] ? lockdep_init_map_type+0x5c/0x280 [ 392.945217][T11351] ? lockdep_init_map_type+0x5c/0x280 [ 392.945238][T11351] vhost_worker_create+0x243/0x310 [ 392.945254][T11351] ? rcu_is_watching+0x12/0xc0 [ 392.945268][T11351] ? __pfx_vhost_worker_create+0x10/0x10 [ 392.945284][T11351] ? __kmalloc_noprof+0x242/0x510 [ 392.945304][T11351] vhost_dev_set_owner+0x742/0xa50 [ 392.945332][T11351] vhost_dev_ioctl+0x2eb/0xe20 [ 392.945352][T11351] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 392.945375][T11351] ? __pfx_vhost_dev_ioctl+0x10/0x10 [ 392.945403][T11351] vhost_vsock_dev_ioctl+0x3a5/0xb30 [ 392.945423][T11351] ? hook_file_ioctl_common+0x145/0x410 [ 392.945442][T11351] ? __pfx_vhost_vsock_dev_ioctl+0x10/0x10 [ 392.945464][T11351] ? __fget_files+0x20e/0x3c0 [ 392.945482][T11351] ? __pfx_vhost_vsock_dev_ioctl+0x10/0x10 [ 392.945503][T11351] __x64_sys_ioctl+0x18e/0x210 [ 392.945526][T11351] do_syscall_64+0xcd/0x490 [ 392.945544][T11351] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 392.945559][T11351] RIP: 0033:0x7f3f7c18ebe9 [ 392.945581][T11351] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 392.945595][T11351] RSP: 002b:00007f3f7d038038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 392.945610][T11351] RAX: ffffffffffffffda RBX: 00007f3f7c3b5fa0 RCX: 00007f3f7c18ebe9 [ 392.945620][T11351] RDX: 0000000000000000 RSI: 000000000000af01 RDI: 0000000000000004 [ 392.945630][T11351] RBP: 00007f3f7c211e19 R08: 0000000000000000 R09: 0000000000000000 [ 392.945639][T11351] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 392.945648][T11351] R13: 00007f3f7c3b6038 R14: 00007f3f7c3b5fa0 R15: 00007ffdf4724ec8 [ 392.945667][T11351] [ 394.044418][T11378] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input9 [ 394.074296][T11378] FAULT_INJECTION: forcing a failure. [ 394.074296][T11378] name failslab, interval 1, probability 0, space 0, times 0 [ 394.093181][T11378] CPU: 0 UID: 0 PID: 11378 Comm: syz.1.1610 Not tainted 6.17.0-rc1-syzkaller-00016-g8742b2d8935f #0 PREEMPT(full) [ 394.093224][T11378] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 394.093238][T11378] Call Trace: [ 394.093247][T11378] [ 394.093258][T11378] dump_stack_lvl+0x16c/0x1f0 [ 394.093295][T11378] should_fail_ex+0x512/0x640 [ 394.093329][T11378] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 394.093367][T11378] should_failslab+0xc2/0x120 [ 394.093408][T11378] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 394.093444][T11378] ? kasprintf+0xc7/0x100 [ 394.093475][T11378] kvasprintf+0xbc/0x160 [ 394.093500][T11378] ? __pfx_kvasprintf+0x10/0x10 [ 394.093539][T11378] kasprintf+0xc7/0x100 [ 394.093561][T11378] ? __pfx_kasprintf+0x10/0x10 [ 394.093599][T11378] ? __pfx_input_devnode+0x10/0x10 [ 394.093635][T11378] device_get_devnode+0x166/0x2c0 [ 394.093668][T11378] devtmpfs_create_node+0xf1/0x230 [ 394.093703][T11378] ? __pfx_devtmpfs_create_node+0x10/0x10 [ 394.093752][T11378] ? up_write+0x1b2/0x520 [ 394.093811][T11378] ? kernfs_create_link+0x1bd/0x240 [ 394.093845][T11378] ? kernfs_put+0x35/0x60 [ 394.093876][T11378] ? sysfs_do_create_link_sd+0xbb/0x140 [ 394.093911][T11378] device_add+0x10bd/0x1aa0 [ 394.093951][T11378] ? __pfx_device_add+0x10/0x10 [ 394.093988][T11378] ? __pfx_exact_lock+0x10/0x10 [ 394.094023][T11378] ? kobject_get+0xbb/0x150 [ 394.094058][T11378] cdev_device_add+0xc2/0x1e0 [ 394.094095][T11378] evdev_connect+0x3a4/0x4c0 [ 394.094125][T11378] input_attach_handler.isra.0+0x176/0x250 [ 394.094174][T11378] input_register_device+0xab9/0x1180 [ 394.094201][T11378] ? input_ff_create+0x241/0x350 [ 394.094235][T11378] uinput_ioctl_handler.isra.0+0x1357/0x1df0 [ 394.094269][T11378] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 394.094308][T11378] ? __pfx_uinput_ioctl_handler.isra.0+0x10/0x10 [ 394.094351][T11378] ? find_held_lock+0x2b/0x80 [ 394.094397][T11378] ? __pfx_uinput_ioctl+0x10/0x10 [ 394.094430][T11378] __x64_sys_ioctl+0x18e/0x210 [ 394.094469][T11378] do_syscall_64+0xcd/0x490 [ 394.094509][T11378] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 394.094536][T11378] RIP: 0033:0x7ffa6418ebe9 [ 394.094557][T11378] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 394.094583][T11378] RSP: 002b:00007ffa623ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 394.094609][T11378] RAX: ffffffffffffffda RBX: 00007ffa643b5fa0 RCX: 00007ffa6418ebe9 [ 394.094627][T11378] RDX: 0000000000000000 RSI: 0000000000005501 RDI: 0000000000000003 [ 394.094642][T11378] RBP: 00007ffa64211e19 R08: 0000000000000000 R09: 0000000000000000 [ 394.094658][T11378] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 394.094674][T11378] R13: 00007ffa643b6038 R14: 00007ffa643b5fa0 R15: 00007ffcc9869508 [ 394.094709][T11378] [ 395.030663][T11393] netlink: 330 bytes leftover after parsing attributes in process `syz.2.1616'. [ 395.190925][T11399] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1617'. [ 395.226248][T11399] netlink: 13 bytes leftover after parsing attributes in process `syz.2.1617'. [ 396.044782][T11422] openvswitch: netlink: nsh attribute has 14 unknown bytes. [ 396.970135][T11443] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1627'. [ 397.171695][T11448] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 397.595245][T11454] usb usb36: usbfs: process 11454 (syz.2.1632) did not claim interface 0 before use [ 398.802346][ T5859] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260 [ 398.802385][ T5859] Bluetooth: hci3: unexpected subevent 0x0d length: 725 > 260 [ 398.826167][ T5859] Bluetooth: hci3: Unknown advertising packet type: 0x7f [ 398.826209][ T5859] Bluetooth: hci3: adv larger than maximum supported [ 398.834710][ T5859] Bluetooth: hci3: Malformed LE Event: 0x0d [ 398.875639][T11471] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1637'. [ 398.903323][T11471] netlink: 13 bytes leftover after parsing attributes in process `syz.3.1637'. [ 400.215226][T11510] ERROR: Out of memory at tomoyo_memory_ok. [ 401.056854][T11517] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1648'. [ 401.070152][T11517] netlink: 13 bytes leftover after parsing attributes in process `syz.0.1648'. [ 402.034751][T11543] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1657'. [ 402.052848][T11543] netlink: 354 bytes leftover after parsing attributes in process `syz.2.1657'. [ 402.377661][T11556] ERROR: Out of memory at tomoyo_memory_ok. [ 402.447189][T11559] ERROR: Out of memory at tomoyo_memory_ok. [ 402.549548][T11556] ERROR: Out of memory at tomoyo_memory_ok. [ 405.053052][ T30] audit: type=1804 audit(4294967422.320:13): pid=11606 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1675" name="/newroot/416/file0" dev="tmpfs" ino=2182 res=1 errno=0 [ 405.470135][T11611] FAULT_INJECTION: forcing a failure. [ 405.470135][T11611] name failslab, interval 1, probability 0, space 0, times 0 [ 405.488716][T11611] CPU: 0 UID: 0 PID: 11611 Comm: syz.1.1678 Not tainted 6.17.0-rc1-syzkaller-00016-g8742b2d8935f #0 PREEMPT(full) [ 405.488754][T11611] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 405.488770][T11611] Call Trace: [ 405.488779][T11611] [ 405.488790][T11611] dump_stack_lvl+0x16c/0x1f0 [ 405.488828][T11611] should_fail_ex+0x512/0x640 [ 405.488860][T11611] ? fs_reclaim_acquire+0xae/0x150 [ 405.488901][T11611] ? tomoyo_encode2+0x100/0x3e0 [ 405.488933][T11611] should_failslab+0xc2/0x120 [ 405.488964][T11611] __kmalloc_noprof+0xd2/0x510 [ 405.488990][T11611] ? d_absolute_path+0x136/0x1a0 [ 405.489031][T11611] tomoyo_encode2+0x100/0x3e0 [ 405.489069][T11611] tomoyo_encode+0x29/0x50 [ 405.489100][T11611] tomoyo_realpath_from_path+0x18f/0x6e0 [ 405.489145][T11611] tomoyo_mkdev_perm+0x22b/0x570 [ 405.489173][T11611] ? tomoyo_mkdev_perm+0x217/0x570 [ 405.489204][T11611] ? __pfx_tomoyo_mkdev_perm+0x10/0x10 [ 405.489234][T11611] ? __lock_acquire+0xb97/0x1ce0 [ 405.489279][T11611] ? do_raw_spin_lock+0x12c/0x2b0 [ 405.489333][T11611] ? __pfx_current_check_access_path+0x10/0x10 [ 405.489371][T11611] ? simple_lookup+0x105/0x1d0 [ 405.489405][T11611] tomoyo_path_mknod+0x12a/0x190 [ 405.489428][T11611] ? __pfx_tomoyo_path_mknod+0x10/0x10 [ 405.489453][T11611] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 405.489492][T11611] security_path_mknod+0x161/0x310 [ 405.489524][T11611] do_mknodat+0x239/0x5d0 [ 405.489554][T11611] ? __pfx_do_mknodat+0x10/0x10 [ 405.489580][T11611] ? getname_flags.part.0+0x1c5/0x550 [ 405.489624][T11611] __x64_sys_mknod+0x87/0xb0 [ 405.489655][T11611] do_syscall_64+0xcd/0x490 [ 405.489696][T11611] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 405.489724][T11611] RIP: 0033:0x7ffa6418ebe9 [ 405.489745][T11611] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 405.489770][T11611] RSP: 002b:00007ffa623ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000085 [ 405.489794][T11611] RAX: ffffffffffffffda RBX: 00007ffa643b5fa0 RCX: 00007ffa6418ebe9 [ 405.489812][T11611] RDX: 0000000000000103 RSI: 00000000000020e9 RDI: 00002000000003c0 [ 405.489829][T11611] RBP: 00007ffa64211e19 R08: 0000000000000000 R09: 0000000000000000 [ 405.489846][T11611] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 405.489861][T11611] R13: 00007ffa643b6038 R14: 00007ffa643b5fa0 R15: 00007ffcc9869508 [ 405.489898][T11611] [ 405.491016][T11611] ERROR: Out of memory at tomoyo_realpath_from_path. [ 406.383832][T11637] openvswitch: netlink: Message has 8 unknown bytes. [ 408.513181][T11661] kexec: Could not allocate control_code_buffer [ 408.593804][T11672] openvswitch: netlink: Message has 8 unknown bytes. [ 408.837799][T11684] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1697'. [ 408.852850][T11684] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1697'. [ 409.541944][T11699] blktrace: Concurrent blktraces are not allowed on loop2 [ 409.594929][T11699] vmstat_refresh: nr_hugetlb -1536 [ 409.734156][T11698] ERROR: Out of memory at tomoyo_memory_ok. [ 409.931210][T11703] ERROR: Out of memory at tomoyo_memory_ok. [ 410.205259][T11713] openvswitch: netlink: Message has 8 unknown bytes. [ 410.603328][ T30] audit: type=1804 audit(4294967427.860:14): pid=11727 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1706" name="/newroot/423/file0" dev="tmpfs" ino=2226 res=1 errno=0 [ 411.752767][T11752] ERROR: Out of memory at tomoyo_memory_ok. [ 411.841368][T11753] ERROR: Out of memory at tomoyo_memory_ok. [ 411.933886][T11752] ERROR: Out of memory at tomoyo_memory_ok. [ 412.992285][T11768] [U]  [ 412.995138][T11768] [U] [ 412.997861][T11768] [U] [ 413.000573][T11768] [U] [ 413.015863][T11768] [U] [ 413.018619][T11768] [U] [ 413.021320][T11768] [U] [ 413.024010][T11768] [U] [ 413.027514][T11768] [U] [ 413.030233][T11768] [U] [ 413.032937][T11768] [U] [ 413.035625][T11768] [U] [ 413.039666][T11768] [U] [ 413.042387][T11768] [U] [ 413.045129][T11768] [U] [ 413.047849][T11768] [U] [ 413.058262][T11768] [U] [ 413.061007][T11768] [U] [ 413.063724][T11768] [U] [ 413.066447][T11768] [U] [ 413.079974][T11768] [U] [ 413.082915][T11768] [U] [ 413.085626][T11768] [U] [ 413.088344][T11768] [U] [ 413.091914][T11768] [U] [ 413.094651][T11768] [U] [ 413.097402][T11768] [U] [ 413.100120][T11768] [U] [ 413.110236][T11768] [U] [ 413.112987][T11768] [U] [ 413.115700][T11768] [U] [ 413.118461][T11768] [U] [ 413.130049][T11768] [U] [ 413.132789][T11768] [U] [ 413.135557][T11768] [U] [ 413.138261][T11768] [U] [ 413.161915][T11768] [U] [ 413.164716][T11768] [U] [ 413.167438][T11768] [U] [ 413.170152][T11768] [U] [ 413.187699][T11768] [U] [ 413.190477][T11768] [U] [ 413.193210][T11768] [U] [ 413.195930][T11768] [U] [ 413.205546][T11768] [U] [ 413.208280][T11768] [U] [ 413.211008][T11768] [U] [ 413.213722][T11768] [U] [ 413.251046][T11768] [U] [ 413.253805][T11768] [U] [ 413.256575][T11768] [U] [ 413.259286][T11768] [U] [ 413.267773][T11768] [U] [ 413.270518][T11768] [U] [ 413.273204][T11768] [U] [ 413.275889][T11768] [U] [ 413.294992][T11768] [U] [ 413.297742][T11768] [U] [ 413.300472][T11768] [U] [ 413.303176][T11768] [U] [ 413.335828][T11768] [U] [ 413.338582][T11768] [U] [ 413.341294][T11768] [U] [ 413.344014][T11768] [U] [ 413.375907][T11768] [U] [ 413.378676][T11768] [U] [ 413.381402][T11768] [U] [ 413.384295][T11768] [U] [ 413.416830][T11768] [U] [ 413.419588][T11768] [U] [ 413.422299][T11768] [U] [ 413.425009][T11768] [U] [ 413.444309][T11768] [U] [ 413.447070][T11768] [U] [ 413.449788][T11768] [U] [ 413.452523][T11768] [U] [ 413.456368][T11768] [U] [ 413.459094][T11768] [U] [ 413.461808][T11768] [U] [ 413.464633][T11768] [U] [ 413.482201][T11768] [U] [ 413.484957][T11768] [U] [ 413.487770][T11768] [U] [ 413.490481][T11768] [U] [ 413.563485][T11768] [U] [ 414.926448][T11806] ERROR: Out of memory at tomoyo_memory_ok. [ 416.012066][T11813] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1733'. [ 417.127546][ T5859] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 420.604092][T11897] Invalid ELF header magic: != ELF [ 422.185092][T11919] __vm_enough_memory: pid: 11919, comm: syz.3.1763, bytes: 4398046511104 not enough memory for the allocation [ 422.950197][ T30] audit: type=1804 audit(4294967440.220:15): pid=11942 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1767" name="file0" dev="tmpfs" ino=2499 res=1 errno=0 [ 423.264313][T11947] FAULT_INJECTION: forcing a failure. [ 423.264313][T11947] name failslab, interval 1, probability 0, space 0, times 0 [ 423.287524][T11947] CPU: 0 UID: 0 PID: 11947 Comm: syz.2.1770 Not tainted 6.17.0-rc1-syzkaller-00016-g8742b2d8935f #0 PREEMPT(full) [ 423.287561][T11947] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 423.287575][T11947] Call Trace: [ 423.287584][T11947] [ 423.287594][T11947] dump_stack_lvl+0x16c/0x1f0 [ 423.287629][T11947] should_fail_ex+0x512/0x640 [ 423.287662][T11947] ? fs_reclaim_acquire+0xae/0x150 [ 423.287701][T11947] ? tomoyo_encode2+0x100/0x3e0 [ 423.287728][T11947] should_failslab+0xc2/0x120 [ 423.287757][T11947] __kmalloc_noprof+0xd2/0x510 [ 423.287783][T11947] ? d_absolute_path+0x136/0x1a0 [ 423.287821][T11947] tomoyo_encode2+0x100/0x3e0 [ 423.287853][T11947] tomoyo_encode+0x29/0x50 [ 423.287880][T11947] tomoyo_realpath_from_path+0x18f/0x6e0 [ 423.287920][T11947] tomoyo_mkdev_perm+0x22b/0x570 [ 423.287944][T11947] ? tomoyo_mkdev_perm+0x217/0x570 [ 423.287969][T11947] ? __pfx_tomoyo_mkdev_perm+0x10/0x10 [ 423.287993][T11947] ? __lock_acquire+0xb97/0x1ce0 [ 423.288028][T11947] ? do_raw_spin_lock+0x12c/0x2b0 [ 423.288078][T11947] ? __pfx_current_check_access_path+0x10/0x10 [ 423.288111][T11947] ? simple_lookup+0x105/0x1d0 [ 423.288142][T11947] tomoyo_path_mknod+0x12a/0x190 [ 423.288162][T11947] ? __pfx_tomoyo_path_mknod+0x10/0x10 [ 423.288190][T11947] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 423.288236][T11947] security_path_mknod+0x161/0x310 [ 423.288270][T11947] do_mknodat+0x239/0x5d0 [ 423.288303][T11947] ? __pfx_do_mknodat+0x10/0x10 [ 423.288326][T11947] ? getname_flags.part.0+0x1c5/0x550 [ 423.288365][T11947] __x64_sys_mknod+0x87/0xb0 [ 423.288390][T11947] do_syscall_64+0xcd/0x490 [ 423.288422][T11947] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 423.288457][T11947] RIP: 0033:0x7f2019d8ebe9 [ 423.288478][T11947] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 423.288509][T11947] RSP: 002b:00007f201acdb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000085 [ 423.288533][T11947] RAX: ffffffffffffffda RBX: 00007f2019fb5fa0 RCX: 00007f2019d8ebe9 [ 423.288549][T11947] RDX: 0000000000000103 RSI: 00000000000020e9 RDI: 00002000000003c0 [ 423.288564][T11947] RBP: 00007f2019e11e19 R08: 0000000000000000 R09: 0000000000000000 [ 423.288580][T11947] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 423.288593][T11947] R13: 00007f2019fb6038 R14: 00007f2019fb5fa0 R15: 00007ffc94240f68 [ 423.288630][T11947] [ 423.288662][T11947] ERROR: Out of memory at tomoyo_realpath_from_path. [ 424.976603][ T5859] Bluetooth: hci1: SCO packet for unknown connection handle 0 [ 425.650554][T11998] netlink: 25 bytes leftover after parsing attributes in process `syz.2.1781'. [ 425.892803][T12000] netlink: 25 bytes leftover after parsing attributes in process `syz.0.1782'. [ 425.985329][T12003] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1784'. [ 426.454203][T12018] FAULT_INJECTION: forcing a failure. [ 426.454203][T12018] name failslab, interval 1, probability 0, space 0, times 0 [ 426.715592][T12018] CPU: 1 UID: 1 PID: 12018 Comm: syz.1.1789 Not tainted 6.17.0-rc1-syzkaller-00016-g8742b2d8935f #0 PREEMPT(full) [ 426.715634][T12018] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 426.715649][T12018] Call Trace: [ 426.715659][T12018] [ 426.715669][T12018] dump_stack_lvl+0x16c/0x1f0 [ 426.715719][T12018] should_fail_ex+0x512/0x640 [ 426.715754][T12018] ? __kmalloc_noprof+0xbf/0x510 [ 426.715788][T12018] ? trace_parser_get_init+0x30/0xc0 [ 426.715823][T12018] should_failslab+0xc2/0x120 [ 426.715851][T12018] __kmalloc_noprof+0xd2/0x510 [ 426.715879][T12018] ? __pfx___might_resched+0x10/0x10 [ 426.715915][T12018] trace_parser_get_init+0x30/0xc0 [ 426.715956][T12018] trace_pid_write+0xef/0x460 [ 426.715992][T12018] ? __mutex_unlock_slowpath+0x163/0x800 [ 426.716027][T12018] ? __pfx_trace_pid_write+0x10/0x10 [ 426.716059][T12018] ? __pfx___mutex_lock+0x10/0x10 [ 426.716097][T12018] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 426.716155][T12018] event_pid_write.isra.0+0x1e4/0x7f0 [ 426.716194][T12018] ? __pfx_event_pid_write.isra.0+0x10/0x10 [ 426.716238][T12018] ? __pfx_ftrace_event_npid_write+0x10/0x10 [ 426.716272][T12018] vfs_write+0x29d/0x11d0 [ 426.716306][T12018] ? __pfx___mutex_lock+0x10/0x10 [ 426.716337][T12018] ? __pfx_vfs_write+0x10/0x10 [ 426.716376][T12018] ? __fget_files+0x20e/0x3c0 [ 426.716415][T12018] ksys_write+0x12a/0x250 [ 426.716443][T12018] ? __pfx_ksys_write+0x10/0x10 [ 426.716483][T12018] do_syscall_64+0xcd/0x490 [ 426.716517][T12018] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 426.716544][T12018] RIP: 0033:0x7ffa6418ebe9 [ 426.716565][T12018] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 426.716589][T12018] RSP: 002b:00007ffa623ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 426.716613][T12018] RAX: ffffffffffffffda RBX: 00007ffa643b5fa0 RCX: 00007ffa6418ebe9 [ 426.716632][T12018] RDX: 000000000000fdf3 RSI: 0000000000000000 RDI: 0000000000000003 [ 426.716647][T12018] RBP: 00007ffa64211e19 R08: 0000000000000000 R09: 0000000000000000 [ 426.716663][T12018] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 426.716678][T12018] R13: 00007ffa643b6038 R14: 00007ffa643b5fa0 R15: 00007ffcc9869508 [ 426.716713][T12018] [ 429.407897][T12067] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1806'. [ 429.437950][T12067] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1806'. [ 430.859754][T12079] netlink: 354 bytes leftover after parsing attributes in process `syz.1.1810'. [ 431.486130][T12096] Invalid ELF header magic: != ELF [ 432.290670][T12101] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 432.591709][T12110] __vm_enough_memory: pid: 12110, comm: syz.0.1818, bytes: 4398046511104 not enough memory for the allocation [ 437.909356][T12187] ERROR: Out of memory at tomoyo_memory_ok. [ 437.962710][T12187] FAULT_INJECTION: forcing a failure. [ 437.962710][T12187] name fail_futex, interval 1, probability 0, space 0, times 0 [ 438.011189][T12187] CPU: 0 UID: 0 PID: 12187 Comm: syz.3.1837 Not tainted 6.17.0-rc1-syzkaller-00016-g8742b2d8935f #0 PREEMPT(full) [ 438.011229][T12187] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 438.011245][T12187] Call Trace: [ 438.011254][T12187] [ 438.011264][T12187] dump_stack_lvl+0x16c/0x1f0 [ 438.011304][T12187] should_fail_ex+0x512/0x640 [ 438.011344][T12187] get_futex_key+0x1d0/0x1560 [ 438.011379][T12187] ? __pfx_get_futex_key+0x10/0x10 [ 438.011408][T12187] ? add_lock_to_list+0x9d/0x130 [ 438.011447][T12187] ? lockdep_unlock+0x64/0xe0 [ 438.011471][T12187] ? __lock_acquire+0x107f/0x1ce0 [ 438.011508][T12187] futex_wake+0xea/0x530 [ 438.011549][T12187] ? __pfx_futex_wake+0x10/0x10 [ 438.011588][T12187] ? __mutex_unlock_slowpath+0x163/0x800 [ 438.011634][T12187] ? find_held_lock+0x2b/0x80 [ 438.011666][T12187] do_futex+0x1e3/0x350 [ 438.011698][T12187] ? __pfx_do_futex+0x10/0x10 [ 438.011740][T12187] __x64_sys_futex+0x1e0/0x4c0 [ 438.011775][T12187] ? __pfx___do_sys_fsconfig+0x10/0x10 [ 438.011810][T12187] ? __pfx___x64_sys_futex+0x10/0x10 [ 438.011859][T12187] do_syscall_64+0xcd/0x490 [ 438.011893][T12187] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 438.011921][T12187] RIP: 0033:0x7f3f7c18ebe9 [ 438.011943][T12187] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 438.011967][T12187] RSP: 002b:00007f3f7d0380e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 438.011992][T12187] RAX: ffffffffffffffda RBX: 00007f3f7c3b5fa8 RCX: 00007f3f7c18ebe9 [ 438.012010][T12187] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f3f7c3b5fac [ 438.012026][T12187] RBP: 00007f3f7c3b5fa0 R08: 00007f3f7d039000 R09: 0000000000000000 [ 438.012042][T12187] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 438.012057][T12187] R13: 00007f3f7c3b6038 R14: 00007ffdf4724de0 R15: 00007ffdf4724ec8 [ 438.012092][T12187] [ 440.284128][T12229] __vm_enough_memory: pid: 12229, comm: syz.1.1849, bytes: 4398046511104 not enough memory for the allocation [ 440.771468][T12235] FAULT_INJECTION: forcing a failure. [ 440.771468][T12235] name failslab, interval 1, probability 0, space 0, times 0 [ 440.802638][T12235] CPU: 0 UID: 0 PID: 12235 Comm: syz.1.1852 Not tainted 6.17.0-rc1-syzkaller-00016-g8742b2d8935f #0 PREEMPT(full) [ 440.802680][T12235] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 440.802695][T12235] Call Trace: [ 440.802704][T12235] [ 440.802714][T12235] dump_stack_lvl+0x16c/0x1f0 [ 440.802753][T12235] should_fail_ex+0x512/0x640 [ 440.802793][T12235] should_failslab+0xc2/0x120 [ 440.802826][T12235] __kmalloc_cache_noprof+0x6a/0x3e0 [ 440.802853][T12235] ? __sctp_v6_cmp_addr+0x206/0x530 [ 440.802881][T12235] ? sctp_add_bind_addr+0xae/0x3f0 [ 440.802910][T12235] sctp_add_bind_addr+0xae/0x3f0 [ 440.802941][T12235] sctp_copy_local_addr_list+0x349/0x550 [ 440.802979][T12235] ? __pfx_sctp_copy_local_addr_list+0x10/0x10 [ 440.803005][T12235] ? sctp_auth_asoc_copy_shkeys+0x2a5/0x360 [ 440.803039][T12235] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 440.803080][T12235] sctp_bind_addr_copy+0xe0/0x530 [ 440.803113][T12235] sctp_sf_do_unexpected_init.isra.0+0x90c/0x16f0 [ 440.803148][T12235] ? __pfx_sctp_sf_do_unexpected_init.isra.0+0x10/0x10 [ 440.803177][T12235] ? __pfx_sctp_sm_lookup_event+0x10/0x10 [ 440.803210][T12235] ? __pfx_sctp_cname+0x10/0x10 [ 440.803233][T12235] sctp_do_sm+0x17e/0x5c80 [ 440.803268][T12235] ? sctp_packet_singleton+0x1a5/0x370 [ 440.803303][T12235] ? __pfx_sctp_packet_singleton+0x10/0x10 [ 440.803348][T12235] ? __pfx_sctp_do_sm+0x10/0x10 [ 440.803432][T12235] ? ktime_get+0x200/0x310 [ 440.803460][T12235] ? lockdep_hardirqs_on+0x7c/0x110 [ 440.803496][T12235] sctp_assoc_bh_rcv+0x392/0x6f0 [ 440.803539][T12235] sctp_inq_push+0x1d8/0x270 [ 440.803574][T12235] sctp_backlog_rcv+0x169/0x590 [ 440.803614][T12235] ? __pfx_sctp_backlog_rcv+0x10/0x10 [ 440.803650][T12235] __release_sock+0x35f/0x400 [ 440.803682][T12235] ? lockdep_hardirqs_on+0x7c/0x110 [ 440.803718][T12235] release_sock+0x5a/0x220 [ 440.803751][T12235] sctp_wait_for_connect+0x1c4/0x5c0 [ 440.803787][T12235] ? __pfx_sctp_wait_for_connect+0x10/0x10 [ 440.803818][T12235] ? __pfx_autoremove_wake_function+0x10/0x10 [ 440.803851][T12235] ? sctp_primitive_ASSOCIATE+0x9c/0xd0 [ 440.803889][T12235] __sctp_connect+0x9c7/0xc60 [ 440.803925][T12235] ? do_raw_spin_lock+0x12c/0x2b0 [ 440.803961][T12235] ? __pfx___sctp_connect+0x10/0x10 [ 440.803996][T12235] ? __pfx_sctp_inet_connect+0x10/0x10 [ 440.804029][T12235] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 440.804065][T12235] ? __pfx_sctp_inet_connect+0x10/0x10 [ 440.804094][T12235] sctp_inet_connect+0x15f/0x200 [ 440.804129][T12235] __sys_connect_file+0x141/0x1a0 [ 440.804159][T12235] __sys_connect+0x13b/0x160 [ 440.804185][T12235] ? __pfx___sys_connect+0x10/0x10 [ 440.804225][T12235] ? xfd_validate_state+0x61/0x180 [ 440.804270][T12235] __x64_sys_connect+0x72/0xb0 [ 440.804294][T12235] ? lockdep_hardirqs_on+0x7c/0x110 [ 440.804323][T12235] do_syscall_64+0xcd/0x490 [ 440.804364][T12235] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 440.804390][T12235] RIP: 0033:0x7ffa6418ebe9 [ 440.804411][T12235] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 440.804435][T12235] RSP: 002b:00007ffa623ee038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 440.804460][T12235] RAX: ffffffffffffffda RBX: 00007ffa643b5fa0 RCX: 00007ffa6418ebe9 [ 440.804478][T12235] RDX: 0000000000000054 RSI: 0000200000000080 RDI: 0000000000000003 [ 440.804495][T12235] RBP: 00007ffa64211e19 R08: 0000000000000000 R09: 0000000000000000 [ 440.804512][T12235] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 440.804527][T12235] R13: 00007ffa643b6038 R14: 00007ffa643b5fa0 R15: 00007ffcc9869508 [ 440.804563][T12235] [ 441.161466][ C0] vkms_vblank_simulate: vblank timer overrun [ 441.232550][T12239] Invalid ELF header magic: != ELF [ 442.033795][T12259] __vm_enough_memory: pid: 12259, comm: syz.0.1860, bytes: 4398046511104 not enough memory for the allocation [ 443.119019][ T30] audit: type=1326 audit(4294975260.385:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12281 comm="syz.1.1865" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7ffa6418ebe9 code=0x0 [ 443.177809][T12283] FAULT_INJECTION: forcing a failure. [ 443.177809][T12283] name failslab, interval 1, probability 0, space 0, times 0 [ 443.192202][T12283] CPU: 0 UID: 0 PID: 12283 Comm: syz.1.1865 Not tainted 6.17.0-rc1-syzkaller-00016-g8742b2d8935f #0 PREEMPT(full) [ 443.192239][T12283] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 443.192255][T12283] Call Trace: [ 443.192264][T12283] [ 443.192274][T12283] dump_stack_lvl+0x16c/0x1f0 [ 443.192312][T12283] should_fail_ex+0x512/0x640 [ 443.192345][T12283] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 443.192375][T12283] should_failslab+0xc2/0x120 [ 443.192407][T12283] __kmalloc_cache_noprof+0x6a/0x3e0 [ 443.192433][T12283] ? snd_pcm_oss_change_params_locked+0x1db/0x3a30 [ 443.192479][T12283] snd_pcm_oss_change_params_locked+0x1db/0x3a30 [ 443.192523][T12283] ? trace_contention_end+0xdd/0x130 [ 443.192557][T12283] ? __mutex_lock+0x1c4/0x10b0 [ 443.192594][T12283] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 443.192634][T12283] ? __pfx___mutex_lock+0x10/0x10 [ 443.192671][T12283] ? __fsnotify_parent+0x24b/0xc40 [ 443.192707][T12283] snd_pcm_oss_make_ready+0xe6/0x1b0 [ 443.192747][T12283] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 443.192769][T12283] snd_pcm_oss_sync+0x1de/0x840 [ 443.192797][T12283] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 443.192831][T12283] snd_pcm_oss_release+0x28b/0x310 [ 443.192857][T12283] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 443.192881][T12283] __fput+0x3ff/0xb70 [ 443.192925][T12283] task_work_run+0x150/0x240 [ 443.192963][T12283] ? __pfx_task_work_run+0x10/0x10 [ 443.193000][T12283] ? __pfx___do_sys_close_range+0x10/0x10 [ 443.193037][T12283] exit_to_user_mode_loop+0xeb/0x110 [ 443.193072][T12283] do_syscall_64+0x3f6/0x490 [ 443.193107][T12283] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 443.193133][T12283] RIP: 0033:0x7ffa6418ebe9 [ 443.193153][T12283] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 443.193178][T12283] RSP: 002b:00007ffa623cd038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 443.193203][T12283] RAX: 0000000000000000 RBX: 00007ffa643b6090 RCX: 00007ffa6418ebe9 [ 443.193221][T12283] RDX: 0000000000000000 RSI: fffffffffffff000 RDI: 0000000000000000 [ 443.193237][T12283] RBP: 00007ffa64211e19 R08: 0000000000000000 R09: 0000000000000000 [ 443.193253][T12283] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 443.193269][T12283] R13: 00007ffa643b6128 R14: 00007ffa643b6090 R15: 00007ffcc9869508 [ 443.193305][T12283] [ 443.433560][ C0] vkms_vblank_simulate: vblank timer overrun [ 445.031953][ T5850] udevd[5850]: inotify_add_watch(7, /dev/nbd4128, 10) failed: No such file or directory [ 445.055516][ T5850] udevd[5850]: inotify_add_watch(7, /dev/nbd4128, 10) failed: No such file or directory [ 445.115344][T12315] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1873'. [ 445.210437][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 445.217078][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 454.018411][T12478] netlink: 186 bytes leftover after parsing attributes in process `syz.0.1916'. [ 454.427003][T12453] kexec: Could not allocate control_code_buffer [ 455.944367][T12508] vcan0: tx drop: invalid sa for name 0x00000000000000fd [ 456.672863][T12526] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1927'. [ 456.682650][T12526] netlink: 5 bytes leftover after parsing attributes in process `syz.3.1927'. [ 457.484775][T12535] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1929'. [ 457.556175][T12537] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1929'. [ 459.725212][T12571] FAULT_INJECTION: forcing a failure. [ 459.725212][T12571] name failslab, interval 1, probability 0, space 0, times 0 [ 459.764639][T12573] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1941'. [ 459.790885][T12571] CPU: 1 UID: 0 PID: 12571 Comm: syz.2.1940 Not tainted 6.17.0-rc1-syzkaller-00016-g8742b2d8935f #0 PREEMPT(full) [ 459.790928][T12571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 459.790943][T12571] Call Trace: [ 459.790953][T12571] [ 459.790964][T12571] dump_stack_lvl+0x16c/0x1f0 [ 459.791004][T12571] should_fail_ex+0x512/0x640 [ 459.791045][T12571] should_failslab+0xc2/0x120 [ 459.791078][T12571] __kmalloc_cache_noprof+0x6a/0x3e0 [ 459.791106][T12571] ? __sctp_v6_cmp_addr+0x206/0x530 [ 459.791135][T12571] ? sctp_add_bind_addr+0xae/0x3f0 [ 459.791163][T12571] sctp_add_bind_addr+0xae/0x3f0 [ 459.791191][T12571] sctp_copy_local_addr_list+0x349/0x550 [ 459.791223][T12571] ? __pfx_sctp_copy_local_addr_list+0x10/0x10 [ 459.791251][T12571] ? sctp_auth_asoc_copy_shkeys+0x2a5/0x360 [ 459.791295][T12571] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 459.791337][T12571] sctp_bind_addr_copy+0xe0/0x530 [ 459.791372][T12571] sctp_sf_do_unexpected_init.isra.0+0x90c/0x16f0 [ 459.791411][T12571] ? __pfx_sctp_sf_do_unexpected_init.isra.0+0x10/0x10 [ 459.791440][T12571] ? __pfx_sctp_sm_lookup_event+0x10/0x10 [ 459.791473][T12571] ? __pfx_sctp_cname+0x10/0x10 [ 459.791497][T12571] sctp_do_sm+0x17e/0x5c80 [ 459.791534][T12571] ? sctp_packet_singleton+0x1a5/0x370 [ 459.791568][T12571] ? __pfx_sctp_packet_singleton+0x10/0x10 [ 459.791608][T12571] ? __pfx_sctp_do_sm+0x10/0x10 [ 459.791689][T12571] ? ktime_get+0x200/0x310 [ 459.791718][T12571] ? lockdep_hardirqs_on+0x7c/0x110 [ 459.791752][T12571] sctp_assoc_bh_rcv+0x392/0x6f0 [ 459.791795][T12571] sctp_inq_push+0x1d8/0x270 [ 459.791829][T12571] sctp_backlog_rcv+0x169/0x590 [ 459.791870][T12571] ? __pfx_sctp_backlog_rcv+0x10/0x10 [ 459.791909][T12571] __release_sock+0x35f/0x400 [ 459.791943][T12571] ? lockdep_hardirqs_on+0x7c/0x110 [ 459.791980][T12571] release_sock+0x5a/0x220 [ 459.792021][T12571] sctp_wait_for_connect+0x1c4/0x5c0 [ 459.792057][T12571] ? __pfx_sctp_wait_for_connect+0x10/0x10 [ 459.792091][T12571] ? __pfx_autoremove_wake_function+0x10/0x10 [ 459.792128][T12571] ? sctp_primitive_ASSOCIATE+0x9c/0xd0 [ 459.792168][T12571] __sctp_connect+0x9c7/0xc60 [ 459.792206][T12571] ? do_raw_spin_lock+0x12c/0x2b0 [ 459.792243][T12571] ? __pfx___sctp_connect+0x10/0x10 [ 459.792279][T12571] ? __pfx_sctp_inet_connect+0x10/0x10 [ 459.792315][T12571] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 459.792353][T12571] ? __pfx_sctp_inet_connect+0x10/0x10 [ 459.792384][T12571] sctp_inet_connect+0x15f/0x200 [ 459.792420][T12571] __sys_connect_file+0x141/0x1a0 [ 459.792466][T12571] __sys_connect+0x13b/0x160 [ 459.792495][T12571] ? __pfx___sys_connect+0x10/0x10 [ 459.792535][T12571] ? xfd_validate_state+0x61/0x180 [ 459.792579][T12571] __x64_sys_connect+0x72/0xb0 [ 459.792604][T12571] ? lockdep_hardirqs_on+0x7c/0x110 [ 459.792633][T12571] do_syscall_64+0xcd/0x490 [ 459.792667][T12571] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 459.792693][T12571] RIP: 0033:0x7f2019d8ebe9 [ 459.792713][T12571] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 459.792739][T12571] RSP: 002b:00007f201acdb038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 459.792765][T12571] RAX: ffffffffffffffda RBX: 00007f2019fb5fa0 RCX: 00007f2019d8ebe9 [ 459.792783][T12571] RDX: 0000000000000054 RSI: 0000200000000080 RDI: 0000000000000003 [ 459.792799][T12571] RBP: 00007f2019e11e19 R08: 0000000000000000 R09: 0000000000000000 [ 459.792815][T12571] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 459.792830][T12571] R13: 00007f2019fb6038 R14: 00007f2019fb5fa0 R15: 00007ffc94240f68 [ 459.792866][T12571] [ 459.796706][T12573] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1941'. [ 461.765514][T12604] ERROR: Out of memory at tomoyo_memory_ok. [ 461.930323][T12604] FAULT_INJECTION: forcing a failure. [ 461.930323][T12604] name failslab, interval 1, probability 0, space 0, times 0 [ 461.945241][T12604] CPU: 1 UID: 0 PID: 12604 Comm: syz.1.1957 Not tainted 6.17.0-rc1-syzkaller-00016-g8742b2d8935f #0 PREEMPT(full) [ 461.945278][T12604] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 461.945293][T12604] Call Trace: [ 461.945302][T12604] [ 461.945312][T12604] dump_stack_lvl+0x16c/0x1f0 [ 461.945350][T12604] should_fail_ex+0x512/0x640 [ 461.945383][T12604] ? fs_reclaim_acquire+0xae/0x150 [ 461.945422][T12604] should_failslab+0xc2/0x120 [ 461.945465][T12604] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 461.945497][T12604] ? security_inode_alloc+0x3b/0x2b0 [ 461.945533][T12604] security_inode_alloc+0x3b/0x2b0 [ 461.945563][T12604] inode_init_always_gfp+0xce4/0x1030 [ 461.945597][T12604] alloc_inode+0x86/0x240 [ 461.945631][T12604] new_inode+0x22/0x1c0 [ 461.945668][T12604] __debugfs_create_file+0x11c/0x6b0 [ 461.945702][T12604] debugfs_create_file_full+0x41/0x60 [ 461.945735][T12604] ? __pfx_do_setup+0x10/0x10 [ 461.945765][T12604] ref_tracker_dir_debugfs+0x19d/0x290 [ 461.945800][T12604] ? __pfx_ref_tracker_dir_debugfs+0x10/0x10 [ 461.945864][T12604] ? __kvmalloc_node_noprof+0x298/0x620 [ 461.945890][T12604] ? trace_kmalloc+0x2b/0xd0 [ 461.945925][T12604] ? lockdep_init_map_type+0x5c/0x280 [ 461.945965][T12604] alloc_netdev_mqs+0x30f/0x1500 [ 461.946006][T12604] internal_dev_create+0x8a/0x520 [ 461.946042][T12604] ovs_vport_add+0x147/0x4d0 [ 461.946076][T12604] new_vport+0x16/0x1d0 [ 461.946102][T12604] ovs_dp_cmd_new+0x6ba/0xe60 [ 461.946139][T12604] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 461.946174][T12604] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 461.946212][T12604] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 461.946257][T12604] genl_family_rcv_msg_doit+0x209/0x2f0 [ 461.946294][T12604] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 461.946342][T12604] ? bpf_lsm_capable+0x9/0x10 [ 461.946364][T12604] ? security_capable+0x7e/0x260 [ 461.946391][T12604] ? ns_capable+0xd7/0x110 [ 461.946421][T12604] genl_rcv_msg+0x55c/0x800 [ 461.946471][T12604] ? __pfx_genl_rcv_msg+0x10/0x10 [ 461.946509][T12604] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 461.946551][T12604] netlink_rcv_skb+0x158/0x420 [ 461.946582][T12604] ? __pfx_genl_rcv_msg+0x10/0x10 [ 461.946619][T12604] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 461.946668][T12604] ? netlink_deliver_tap+0x1ae/0xd30 [ 461.946704][T12604] genl_rcv+0x28/0x40 [ 461.946734][T12604] netlink_unicast+0x5a7/0x870 [ 461.946771][T12604] ? __pfx_netlink_unicast+0x10/0x10 [ 461.946802][T12604] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 461.946832][T12604] ? __lock_acquire+0xb97/0x1ce0 [ 461.946873][T12604] netlink_sendmsg+0x8d1/0xdd0 [ 461.946911][T12604] ? __pfx_netlink_sendmsg+0x10/0x10 [ 461.946948][T12604] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 461.946981][T12604] ____sys_sendmsg+0xa95/0xc70 [ 461.947020][T12604] ? copy_msghdr_from_user+0x10a/0x160 [ 461.947050][T12604] ? __pfx_____sys_sendmsg+0x10/0x10 [ 461.947105][T12604] ___sys_sendmsg+0x134/0x1d0 [ 461.947138][T12604] ? __pfx____sys_sendmsg+0x10/0x10 [ 461.947216][T12604] __sys_sendmsg+0x16d/0x220 [ 461.947248][T12604] ? __pfx___sys_sendmsg+0x10/0x10 [ 461.947277][T12604] ? __x64_sys_futex+0x1e0/0x4c0 [ 461.947336][T12604] do_syscall_64+0xcd/0x490 [ 461.947369][T12604] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 461.947393][T12604] RIP: 0033:0x7ffa6418ebe9 [ 461.947415][T12604] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 461.947440][T12604] RSP: 002b:00007ffa623ee038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 461.947473][T12604] RAX: ffffffffffffffda RBX: 00007ffa643b5fa0 RCX: 00007ffa6418ebe9 [ 461.947491][T12604] RDX: 0000000000000080 RSI: 0000200000000140 RDI: 0000000000000006 [ 461.947507][T12604] RBP: 00007ffa64211e19 R08: 0000000000000000 R09: 0000000000000000 [ 461.947523][T12604] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 461.947539][T12604] R13: 00007ffa643b6038 R14: 00007ffa643b5fa0 R15: 00007ffcc9869508 [ 461.947576][T12604] [ 462.353168][T12604] debugfs: out of free dentries, can not create file 'netdev@ffff888022f3c610' [ 462.372645][T12604] HfR: entered promiscuous mode [ 464.757580][T12594] kexec: Could not allocate control_code_buffer [ 465.348399][T12667] FAULT_INJECTION: forcing a failure. [ 465.348399][T12667] name fail_futex, interval 1, probability 0, space 0, times 0 [ 465.383757][T12646] FAULT_INJECTION: forcing a failure. [ 465.383757][T12646] name failslab, interval 1, probability 0, space 0, times 0 [ 465.385773][T12667] CPU: 1 UID: 1 PID: 12667 Comm: syz.3.1964 Not tainted 6.17.0-rc1-syzkaller-00016-g8742b2d8935f #0 PREEMPT(full) [ 465.385810][T12667] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 465.385825][T12667] Call Trace: [ 465.385833][T12667] [ 465.385842][T12667] dump_stack_lvl+0x16c/0x1f0 [ 465.385878][T12667] should_fail_ex+0x512/0x640 [ 465.385916][T12667] get_futex_key+0x1d0/0x1560 [ 465.385952][T12667] ? __pfx_get_futex_key+0x10/0x10 [ 465.385992][T12667] futex_wait_setup+0x9d/0x550 [ 465.386038][T12667] __futex_wait+0x194/0x2f0 [ 465.386074][T12667] ? __pfx___futex_wait+0x10/0x10 [ 465.386114][T12667] ? __pfx_futex_wake_mark+0x10/0x10 [ 465.386154][T12667] ? futex_private_hash_put+0x176/0x300 [ 465.386186][T12667] ? futex_private_hash_put+0x18a/0x300 [ 465.386218][T12667] futex_wait+0xe8/0x380 [ 465.386251][T12667] ? __pfx_futex_wait+0x10/0x10 [ 465.386303][T12667] ? __lock_acquire+0xb97/0x1ce0 [ 465.386345][T12667] do_futex+0x229/0x350 [ 465.386377][T12667] ? __pfx_do_futex+0x10/0x10 [ 465.386418][T12667] __x64_sys_futex+0x1e0/0x4c0 [ 465.386450][T12667] ? __pfx___x64_sys_open_tree_attr+0x10/0x10 [ 465.386485][T12667] ? __pfx___x64_sys_futex+0x10/0x10 [ 465.386515][T12667] ? xfd_validate_state+0x61/0x180 [ 465.386549][T12667] ? up_write+0x1b2/0x520 [ 465.386591][T12667] do_syscall_64+0xcd/0x490 [ 465.386624][T12667] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 465.386650][T12667] RIP: 0033:0x7f3f7c18ebe9 [ 465.386669][T12667] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 465.386693][T12667] RSP: 002b:00007f3f7d0170e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 465.386717][T12667] RAX: ffffffffffffffda RBX: 00007f3f7c3b6098 RCX: 00007f3f7c18ebe9 [ 465.386734][T12667] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f3f7c3b6098 [ 465.386750][T12667] RBP: 00007f3f7c3b6090 R08: 0000000000000000 R09: 0000000000000000 [ 465.386764][T12667] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 465.386778][T12667] R13: 00007f3f7c3b6128 R14: 00007ffdf4724de0 R15: 00007ffdf4724ec8 [ 465.386811][T12667] [ 465.633263][T12646] CPU: 0 UID: 0 PID: 12646 Comm: syz.2.1960 Not tainted 6.17.0-rc1-syzkaller-00016-g8742b2d8935f #0 PREEMPT(full) [ 465.633302][T12646] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 465.633316][T12646] Call Trace: [ 465.633326][T12646] [ 465.633337][T12646] dump_stack_lvl+0x16c/0x1f0 [ 465.633373][T12646] should_fail_ex+0x512/0x640 [ 465.633405][T12646] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 465.633439][T12646] should_failslab+0xc2/0x120 [ 465.633470][T12646] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 465.633500][T12646] ? ptlock_alloc+0x1f/0x70 [ 465.633528][T12646] ptlock_alloc+0x1f/0x70 [ 465.633551][T12646] pte_alloc_one+0x82/0x3a0 [ 465.633578][T12646] __pte_alloc+0x6d/0x3c0 [ 465.633610][T12646] ? __pfx___pte_alloc+0x10/0x10 [ 465.633639][T12646] ? __pfx___might_resched+0x10/0x10 [ 465.633664][T12646] ? copy_page_range+0x1fa8/0x5c80 [ 465.633694][T12646] copy_page_range+0x3b83/0x5c80 [ 465.633764][T12646] ? __pfx_copy_page_range+0x10/0x10 [ 465.633802][T12646] ? __pfx___might_resched+0x10/0x10 [ 465.633824][T12646] ? __pfx_mas_store+0x10/0x10 [ 465.633854][T12646] ? __vma_enter_locked+0x163/0x3f0 [ 465.633882][T12646] ? dup_mmap+0xe38/0x21d0 [ 465.633914][T12646] ? down_write+0x14d/0x200 [ 465.633950][T12646] ? up_write+0x1b2/0x520 [ 465.633988][T12646] dup_mmap+0xe88/0x21d0 [ 465.634036][T12646] ? __pfx_dup_mmap+0x10/0x10 [ 465.634096][T12646] copy_process+0x4081/0x7690 [ 465.634143][T12646] ? __pfx_copy_process+0x10/0x10 [ 465.634173][T12646] ? futex_private_hash_put+0x176/0x300 [ 465.634211][T12646] ? futex_private_hash_put+0x18a/0x300 [ 465.634245][T12646] kernel_clone+0xfc/0x930 [ 465.634273][T12646] ? __pfx_futex_wake+0x10/0x10 [ 465.634308][T12646] ? __pfx_kernel_clone+0x10/0x10 [ 465.634335][T12646] ? __pfx_vfs_writev+0x10/0x10 [ 465.634382][T12646] __do_sys_clone+0xce/0x120 [ 465.634411][T12646] ? __pfx___do_sys_clone+0x10/0x10 [ 465.634459][T12646] ? xfd_validate_state+0x61/0x180 [ 465.634492][T12646] ? __pfx_do_writev+0x10/0x10 [ 465.634530][T12646] do_syscall_64+0xcd/0x490 [ 465.634563][T12646] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 465.634589][T12646] RIP: 0033:0x7f2019d8ebe9 [ 465.634610][T12646] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 465.634633][T12646] RSP: 002b:00007f201acdafe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 465.634658][T12646] RAX: ffffffffffffffda RBX: 00007f2019fb5fa0 RCX: 00007f2019d8ebe9 [ 465.634676][T12646] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000002360411 [ 465.634691][T12646] RBP: 00007f2019e11e19 R08: 0000000000000000 R09: 0000000000000000 [ 465.634706][T12646] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 465.634721][T12646] R13: 00007f2019fb6038 R14: 00007f2019fb5fa0 R15: 00007ffc94240f68 [ 465.634757][T12646] [ 467.451206][T12696] random: crng reseeded on system resumption [ 467.620057][ T5859] Bluetooth: hci1: unexpected event 0x08 length: 11 > 4 [ 467.865080][ T30] audit: type=1800 audit(4294975285.125:17): pid=12706 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1975" name="members" dev="configfs" ino=40731 res=0 errno=0 [ 470.519077][T12767] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1993'. [ 470.562747][T12767] hsr_slave_1: left promiscuous mode [ 472.033070][T12791] netlink: 'syz.0.1998': attribute type 4 has an invalid length. [ 472.087074][T12791] netlink: 314 bytes leftover after parsing attributes in process `syz.0.1998'. [ 473.452142][T12815] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 473.784910][T12826] ERROR: Out of memory at tomoyo_memory_ok. [ 475.841723][T12844] Invalid ELF header magic: != ELF [ 480.347505][T12890] kexec: Could not allocate control_code_buffer [ 480.670514][ T5859] Bluetooth: hci3: ISO packet for unknown connection handle 0 [ 482.211016][T12948] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2034'. [ 482.254798][T12948] netlink: 354 bytes leftover after parsing attributes in process `syz.2.2034'. [ 482.668697][T12953] FAULT_INJECTION: forcing a failure. [ 482.668697][T12953] name failslab, interval 1, probability 0, space 0, times 0 [ 482.707629][T12957] vhci_hcd: invalid port number 16 [ 482.712934][T12957] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub [ 482.734279][T12953] CPU: 1 UID: 0 PID: 12953 Comm: syz.2.2036 Not tainted 6.17.0-rc1-syzkaller-00016-g8742b2d8935f #0 PREEMPT(full) [ 482.734324][T12953] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 482.734341][T12953] Call Trace: [ 482.734350][T12953] [ 482.734361][T12953] dump_stack_lvl+0x16c/0x1f0 [ 482.734397][T12953] should_fail_ex+0x512/0x640 [ 482.734430][T12953] ? __kmalloc_noprof+0xbf/0x510 [ 482.734460][T12953] ? lsm_blob_alloc+0x68/0x90 [ 482.734492][T12953] should_failslab+0xc2/0x120 [ 482.734523][T12953] __kmalloc_noprof+0xd2/0x510 [ 482.734560][T12953] lsm_blob_alloc+0x68/0x90 [ 482.734597][T12953] security_sk_alloc+0x30/0x270 [ 482.734627][T12953] sk_prot_alloc+0xfb/0x2a0 [ 482.734667][T12953] sk_alloc+0x36/0xc20 [ 482.734698][T12953] rds_create+0x9e/0x5f0 [ 482.734735][T12953] __sock_create+0x335/0x8d0 [ 482.734780][T12953] __sys_socket+0x14d/0x260 [ 482.734806][T12953] ? __pfx___sys_socket+0x10/0x10 [ 482.734843][T12953] ? xfd_validate_state+0x61/0x180 [ 482.734879][T12953] ? __pfx_do_writev+0x10/0x10 [ 482.734914][T12953] __x64_sys_socket+0x72/0xb0 [ 482.734938][T12953] ? lockdep_hardirqs_on+0x7c/0x110 [ 482.734967][T12953] do_syscall_64+0xcd/0x490 [ 482.735000][T12953] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 482.735026][T12953] RIP: 0033:0x7f2019d8ebe9 [ 482.735046][T12953] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 482.735071][T12953] RSP: 002b:00007f201acdb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 482.735094][T12953] RAX: ffffffffffffffda RBX: 00007f2019fb5fa0 RCX: 00007f2019d8ebe9 [ 482.735112][T12953] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000015 [ 482.735126][T12953] RBP: 00007f2019e11e19 R08: 0000000000000000 R09: 0000000000000000 [ 482.735142][T12953] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 482.735157][T12953] R13: 00007f2019fb6038 R14: 00007f2019fb5fa0 R15: 00007ffc94240f68 [ 482.735192][T12953] [ 483.040711][T12963] netlink: 13 bytes leftover after parsing attributes in process `syz.3.2039'. [ 483.286622][T12970] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2042'. [ 483.625328][T12984] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input12                                                                                                                                                                                                                                                                                                                                                                                         syzkaller syzkaller login: [ 503.966237][T13391] zswap: compressor 000 not available [ 504.425734][T13413] ======================================================= [ 504.425734][T13413] WARNING: The mand mount option has been deprecated and [ 504.425734][T13413] and is ignored by this kernel. Remove the mand [ 504.425734][T13413] option from the mount to silence this warning. [ 504.425734][T13413] ======================================================= [ 504.571755][T13417] netlink: 186 bytes leftover after parsing attributes in process `syz.2.2158'. [ 504.613892][T13421] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2159'. [ 504.637071][T13421] netlink: 354 bytes leftover after parsing attributes in process `syz.0.2159'. [ 506.652205][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 506.661179][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 510.053682][ T5859] Bluetooth: hci0: unexpected subevent 0x0c length: 0 < 5 [ 511.391595][T13520] FAULT_INJECTION: forcing a failure. [ 511.391595][T13520] name failslab, interval 1, probability 0, space 0, times 0 [ 511.427440][T13520] CPU: 0 UID: 0 PID: 13520 Comm: syz.2.2183 Not tainted 6.17.0-rc1-syzkaller-00016-g8742b2d8935f #0 PREEMPT(full) [ 511.427478][T13520] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 511.427493][T13520] Call Trace: [ 511.427502][T13520] [ 511.427512][T13520] dump_stack_lvl+0x16c/0x1f0 [ 511.427549][T13520] should_fail_ex+0x512/0x640 [ 511.427582][T13520] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 511.427613][T13520] should_failslab+0xc2/0x120 [ 511.427645][T13520] __kmalloc_cache_noprof+0x6a/0x3e0 [ 511.427672][T13520] ? snd_seq_oss_open+0x55/0xa20 [ 511.427713][T13520] snd_seq_oss_open+0x55/0xa20 [ 511.427755][T13520] odev_open+0x6f/0x90 [ 511.427786][T13520] ? __pfx_odev_open+0x10/0x10 [ 511.427818][T13520] soundcore_open+0x409/0x580 [ 511.427855][T13520] ? __pfx_soundcore_open+0x10/0x10 [ 511.427886][T13520] chrdev_open+0x231/0x6a0 [ 511.427916][T13520] ? __pfx_apparmor_file_open+0x10/0x10 [ 511.427944][T13520] ? __pfx_chrdev_open+0x10/0x10 [ 511.427975][T13520] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 511.428010][T13520] do_dentry_open+0x97f/0x1530 [ 511.428040][T13520] ? __pfx_chrdev_open+0x10/0x10 [ 511.428078][T13520] vfs_open+0x82/0x3f0 [ 511.428117][T13520] path_openat+0x1de4/0x2cb0 [ 511.428159][T13520] ? __pfx_path_openat+0x10/0x10 [ 511.428198][T13520] do_filp_open+0x20b/0x470 [ 511.428229][T13520] ? __pfx_do_filp_open+0x10/0x10 [ 511.428286][T13520] ? alloc_fd+0x471/0x7d0 [ 511.428330][T13520] do_sys_openat2+0x11b/0x1d0 [ 511.428367][T13520] ? __pfx_do_sys_openat2+0x10/0x10 [ 511.428415][T13520] __x64_sys_openat+0x174/0x210 [ 511.428445][T13520] ? __pfx___x64_sys_openat+0x10/0x10 [ 511.428485][T13520] do_syscall_64+0xcd/0x490 [ 511.428512][T13520] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 511.428532][T13520] RIP: 0033:0x7f2019d8ebe9 [ 511.428550][T13520] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 511.428569][T13520] RSP: 002b:00007f201acba038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 511.428589][T13520] RAX: ffffffffffffffda RBX: 00007f2019fb6090 RCX: 00007f2019d8ebe9 [ 511.428602][T13520] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 511.428615][T13520] RBP: 00007f2019e11e19 R08: 0000000000000000 R09: 0000000000000000 [ 511.428628][T13520] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 511.428640][T13520] R13: 00007f2019fb6128 R14: 00007f2019fb6090 R15: 00007ffc94240f68 [ 511.428668][T13520] [ 513.869572][ T55] smpboot: CPU 1 is now offline [ 516.280582][T13607] device-mapper: ioctl: Unable to rename non-existent device,  to [ 517.336774][T13628] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2211'. [ 517.766855][T13630] could not allocate digest TFM handle [ 523.984551][T13734] FAULT_INJECTION: forcing a failure. [ 523.984551][T13734] name failslab, interval 1, probability 0, space 0, times 0 [ 524.043008][T13734] CPU: 0 UID: 0 PID: 13734 Comm: syz.3.2234 Not tainted 6.17.0-rc1-syzkaller-00016-g8742b2d8935f #0 PREEMPT(full) [ 524.043033][T13734] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 524.043042][T13734] Call Trace: [ 524.043047][T13734] [ 524.043053][T13734] dump_stack_lvl+0x16c/0x1f0 [ 524.043077][T13734] should_fail_ex+0x512/0x640 [ 524.043096][T13734] ? __kmalloc_noprof+0xbf/0x510 [ 524.043114][T13734] ? realloc_user_queue+0x288/0x320 [ 524.043142][T13734] should_failslab+0xc2/0x120 [ 524.043161][T13734] __kmalloc_noprof+0xd2/0x510 [ 524.043181][T13734] realloc_user_queue+0x288/0x320 [ 524.043204][T13734] ? __pfx_snd_timer_user_open+0x10/0x10 [ 524.043217][T13734] snd_timer_user_open+0xfc/0x180 [ 524.043230][T13734] snd_open+0x22a/0x4c0 [ 524.043249][T13734] ? __pfx_snd_open+0x10/0x10 [ 524.043267][T13734] chrdev_open+0x231/0x6a0 [ 524.043285][T13734] ? __pfx_apparmor_file_open+0x10/0x10 [ 524.043301][T13734] ? __pfx_chrdev_open+0x10/0x10 [ 524.043319][T13734] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 524.043338][T13734] do_dentry_open+0x97f/0x1530 [ 524.043356][T13734] ? __pfx_chrdev_open+0x10/0x10 [ 524.043376][T13734] vfs_open+0x82/0x3f0 [ 524.043398][T13734] path_openat+0x1de4/0x2cb0 [ 524.043420][T13734] ? __pfx_path_openat+0x10/0x10 [ 524.043441][T13734] do_filp_open+0x20b/0x470 [ 524.043457][T13734] ? __pfx_do_filp_open+0x10/0x10 [ 524.043491][T13734] ? alloc_fd+0x471/0x7d0 [ 524.043511][T13734] do_sys_openat2+0x11b/0x1d0 [ 524.043531][T13734] ? __pfx_do_sys_openat2+0x10/0x10 [ 524.043558][T13734] __x64_sys_openat+0x174/0x210 [ 524.043579][T13734] ? __pfx___x64_sys_openat+0x10/0x10 [ 524.043606][T13734] do_syscall_64+0xcd/0x490 [ 524.043626][T13734] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 524.043640][T13734] RIP: 0033:0x7f3f7c18ebe9 [ 524.043652][T13734] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 524.043666][T13734] RSP: 002b:00007f3f7d038038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 524.043680][T13734] RAX: ffffffffffffffda RBX: 00007f3f7c3b5fa0 RCX: 00007f3f7c18ebe9 [ 524.043689][T13734] RDX: 0000000000101440 RSI: 0000200000001cc0 RDI: ffffffffffffff9c [ 524.043705][T13734] RBP: 00007f3f7c211e19 R08: 0000000000000000 R09: 0000000000000000 [ 524.043714][T13734] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 524.043723][T13734] R13: 00007f3f7c3b6038 R14: 00007f3f7c3b5fa0 R15: 00007ffdf4724ec8 [ 524.043742][T13734] [ 524.292577][ C0] vkms_vblank_simulate: vblank timer overrun [ 530.020397][ T5859] Bluetooth: hci2: unexpected subevent 0x0c length: 0 < 5 [ 530.783612][T13566] udevd[13566]: inotify_add_watch(7, /dev/nbd4128, 10) failed: No such file or directory [ 532.996217][T13838] FAULT_INJECTION: forcing a failure. [ 532.996217][T13838] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 533.107469][T13838] CPU: 0 UID: 0 PID: 13838 Comm: syz.1.2257 Not tainted 6.17.0-rc1-syzkaller-00016-g8742b2d8935f #0 PREEMPT(full) [ 533.107494][T13838] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 533.107504][T13838] Call Trace: [ 533.107510][T13838] [ 533.107516][T13838] dump_stack_lvl+0x16c/0x1f0 [ 533.107538][T13838] should_fail_ex+0x512/0x640 [ 533.107562][T13838] should_fail_alloc_page+0xe7/0x130 [ 533.107601][T13838] prepare_alloc_pages+0x3c2/0x610 [ 533.107626][T13838] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 533.107644][T13838] ? __alloc_frozen_pages_noprof+0x294/0x23f0 [ 533.107666][T13838] ? __lock_acquire+0x62e/0x1ce0 [ 533.107698][T13838] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 533.107715][T13838] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 533.107744][T13838] ? __lock_acquire+0xb97/0x1ce0 [ 533.107761][T13838] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 533.107791][T13838] ? policy_nodemask+0xea/0x4e0 [ 533.107811][T13838] alloc_pages_mpol+0x1fb/0x550 [ 533.107830][T13838] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 533.107848][T13838] ? do_raw_spin_lock+0x12c/0x2b0 [ 533.107867][T13838] ? find_held_lock+0x2b/0x80 [ 533.107884][T13838] alloc_pages_noprof+0x131/0x390 [ 533.107903][T13838] __pmd_alloc+0x3b/0x930 [ 533.107922][T13838] ? __pud_alloc+0x526/0x750 [ 533.107943][T13838] copy_page_range+0x3eaf/0x5c80 [ 533.107959][T13838] ? copy_process+0x4081/0x7690 [ 533.107988][T13838] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 533.108009][T13838] ? mas_wr_store_entry+0xa14/0x2550 [ 533.108029][T13838] ? mas_destroy+0x5de/0xa20 [ 533.108047][T13838] ? __pfx_copy_page_range+0x10/0x10 [ 533.108063][T13838] ? mas_store+0x7a9/0x1160 [ 533.108083][T13838] ? find_held_lock+0x2b/0x80 [ 533.108097][T13838] ? __pfx_mas_store+0x10/0x10 [ 533.108114][T13838] ? __vma_enter_locked+0x163/0x3f0 [ 533.108138][T13838] dup_mmap+0xe88/0x21d0 [ 533.108165][T13838] ? __pfx_dup_mmap+0x10/0x10 [ 533.108198][T13838] copy_process+0x4081/0x7690 [ 533.108215][T13838] ? __pfx___futex_wait+0x10/0x10 [ 533.108242][T13838] ? __pfx_copy_process+0x10/0x10 [ 533.108259][T13838] ? futex_private_hash_put+0x176/0x300 [ 533.108278][T13838] ? futex_private_hash_put+0x18a/0x300 [ 533.108298][T13838] kernel_clone+0xfc/0x930 [ 533.108316][T13838] ? __pfx_kernel_clone+0x10/0x10 [ 533.108345][T13838] __do_sys_clone+0xce/0x120 [ 533.108362][T13838] ? __pfx___do_sys_clone+0x10/0x10 [ 533.108379][T13838] ? ksys_unshare+0x687/0xa40 [ 533.108405][T13838] ? xfd_validate_state+0x61/0x180 [ 533.108432][T13838] do_syscall_64+0xcd/0x490 [ 533.108451][T13838] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 533.108466][T13838] RIP: 0033:0x7ffa6418ebe9 [ 533.108478][T13838] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 533.108493][T13838] RSP: 002b:00007ffa623edfe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 533.108507][T13838] RAX: ffffffffffffffda RBX: 00007ffa643b5fa0 RCX: 00007ffa6418ebe9 [ 533.108516][T13838] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000002360411 [ 533.108524][T13838] RBP: 00007ffa64211e19 R08: 0000000000000000 R09: 0000000000000000 [ 533.108533][T13838] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 533.108541][T13838] R13: 00007ffa643b6038 R14: 00007ffa643b5fa0 R15: 00007ffcc9869508 [ 533.108561][T13838] [ 535.826017][T13872] nbd: couldn't find device at index 33904 [ 536.846108][T13886] device-mapper: ioctl: Unable to rename non-existent device, to uuid [ 537.908453][T13911] netlink: 25 bytes leftover after parsing attributes in process `syz.2.2278'. [ 538.650399][T13915] netlink: 25 bytes leftover after parsing attributes in process `syz.2.2280'. [ 538.841643][T13925] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2283'. [ 538.962150][T13930] netlink: 206 bytes leftover after parsing attributes in process `syz.3.2284'. [ 539.411769][T13924] FAULT_INJECTION: forcing a failure. [ 539.411769][T13924] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 539.459869][T13924] CPU: 0 UID: 0 PID: 13924 Comm: syz.2.2282 Not tainted 6.17.0-rc1-syzkaller-00016-g8742b2d8935f #0 PREEMPT(full) [ 539.459901][T13924] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 539.459910][T13924] Call Trace: [ 539.459916][T13924] [ 539.459922][T13924] dump_stack_lvl+0x16c/0x1f0 [ 539.459947][T13924] should_fail_ex+0x512/0x640 [ 539.459970][T13924] should_fail_alloc_page+0xe7/0x130 [ 539.459990][T13924] prepare_alloc_pages+0x3c2/0x610 [ 539.460015][T13924] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 539.460032][T13924] ? __alloc_frozen_pages_noprof+0x294/0x23f0 [ 539.460054][T13924] ? __lock_acquire+0x62e/0x1ce0 [ 539.460075][T13924] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 539.460091][T13924] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 539.460119][T13924] ? __lock_acquire+0xb97/0x1ce0 [ 539.460135][T13924] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 539.460157][T13924] ? policy_nodemask+0xea/0x4e0 [ 539.460177][T13924] alloc_pages_mpol+0x1fb/0x550 [ 539.460196][T13924] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 539.460218][T13924] ? do_raw_spin_lock+0x12c/0x2b0 [ 539.460239][T13924] ? find_held_lock+0x2b/0x80 [ 539.460256][T13924] alloc_pages_noprof+0x131/0x390 [ 539.460275][T13924] __pmd_alloc+0x3b/0x930 [ 539.460295][T13924] ? __pud_alloc+0x526/0x750 [ 539.460316][T13924] copy_page_range+0x3eaf/0x5c80 [ 539.460333][T13924] ? copy_process+0x4081/0x7690 [ 539.460362][T13924] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 539.460384][T13924] ? mas_wr_store_entry+0xa14/0x2550 [ 539.460403][T13924] ? mas_destroy+0x5de/0xa20 [ 539.460421][T13924] ? __pfx_copy_page_range+0x10/0x10 [ 539.460438][T13924] ? mas_store+0x7a9/0x1160 [ 539.460457][T13924] ? find_held_lock+0x2b/0x80 [ 539.460471][T13924] ? __pfx_mas_store+0x10/0x10 [ 539.460488][T13924] ? __vma_enter_locked+0x163/0x3f0 [ 539.460515][T13924] dup_mmap+0xe88/0x21d0 [ 539.460542][T13924] ? __pfx_dup_mmap+0x10/0x10 [ 539.460576][T13924] copy_process+0x4081/0x7690 [ 539.460602][T13924] ? __pfx_copy_process+0x10/0x10 [ 539.460619][T13924] ? futex_private_hash_put+0x176/0x300 [ 539.460638][T13924] ? futex_private_hash_put+0x18a/0x300 [ 539.460658][T13924] kernel_clone+0xfc/0x930 [ 539.460675][T13924] ? __pfx_futex_wake+0x10/0x10 [ 539.460694][T13924] ? __pfx_kernel_clone+0x10/0x10 [ 539.460723][T13924] __do_sys_clone+0xce/0x120 [ 539.460740][T13924] ? __pfx___do_sys_clone+0x10/0x10 [ 539.460757][T13924] ? ksys_unshare+0x687/0xa40 [ 539.460783][T13924] ? xfd_validate_state+0x61/0x180 [ 539.460810][T13924] do_syscall_64+0xcd/0x490 [ 539.460829][T13924] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 539.460844][T13924] RIP: 0033:0x7f2019d8ebe9 [ 539.460857][T13924] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 539.460871][T13924] RSP: 002b:00007f201acdafe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 539.460894][T13924] RAX: ffffffffffffffda RBX: 00007f2019fb5fa0 RCX: 00007f2019d8ebe9 [ 539.460903][T13924] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000002360411 [ 539.460912][T13924] RBP: 00007f2019e11e19 R08: 0000000000000000 R09: 0000000000000000 [ 539.460920][T13924] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 539.460929][T13924] R13: 00007f2019fb6038 R14: 00007f2019fb5fa0 R15: 00007ffc94240f68 [ 539.460948][T13924] [ 541.904425][T13954] size and base must be multiples of 4 kiB [ 541.932068][T13954] CPU: 0 UID: 0 PID: 13954 Comm: syz.2.2288 Not tainted 6.17.0-rc1-syzkaller-00016-g8742b2d8935f #0 PREEMPT(full) [ 541.932093][T13954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 541.932103][T13954] Call Trace: [ 541.932109][T13954] [ 541.932115][T13954] dump_stack_lvl+0x16c/0x1f0 [ 541.932138][T13954] mtrr_add+0xdf/0x110 [ 541.932159][T13954] mtrr_ioctl+0x7ef/0xcf0 [ 541.932179][T13954] ? __pfx_mtrr_ioctl+0x10/0x10 [ 541.932202][T13954] ? find_held_lock+0x2b/0x80 [ 541.932221][T13954] ? __fget_files+0x20e/0x3c0 [ 541.932237][T13954] ? __pfx_mtrr_ioctl+0x10/0x10 [ 541.932256][T13954] proc_reg_unlocked_ioctl+0x229/0x320 [ 541.932274][T13954] ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10 [ 541.932294][T13954] __x64_sys_ioctl+0x18e/0x210 [ 541.932316][T13954] do_syscall_64+0xcd/0x490 [ 541.932335][T13954] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 541.932350][T13954] RIP: 0033:0x7f2019d8ebe9 [ 541.932361][T13954] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 541.932375][T13954] RSP: 002b:00007f201acdb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 541.932389][T13954] RAX: ffffffffffffffda RBX: 00007f2019fb5fa0 RCX: 00007f2019d8ebe9 [ 541.932399][T13954] RDX: 0000000000000005 RSI: 00000000400c4d01 RDI: 0000000000000005 [ 541.932407][T13954] RBP: 00007f2019e11e19 R08: 0000000000000000 R09: 0000000000000000 [ 541.932415][T13954] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 541.932423][T13954] R13: 00007f2019fb6038 R14: 00007f2019fb5fa0 R15: 00007ffc94240f68 [ 541.932441][T13954] [ 542.118899][T13946] kexec: Could not allocate control_code_buffer [ 542.711171][ T5859] Bluetooth: hci2: unexpected event 0x1d length: 6 > 5 [ 545.384400][T14014] ERROR: Out of memory at tomoyo_memory_ok. [ 547.162641][T14033] size and base must be multiples of 4 kiB [ 547.208828][T14033] CPU: 0 UID: 0 PID: 14033 Comm: syz.1.2309 Not tainted 6.17.0-rc1-syzkaller-00016-g8742b2d8935f #0 PREEMPT(full) [ 547.208853][T14033] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 547.208862][T14033] Call Trace: [ 547.208867][T14033] [ 547.208874][T14033] dump_stack_lvl+0x16c/0x1f0 [ 547.208897][T14033] mtrr_add+0xdf/0x110 [ 547.208917][T14033] mtrr_ioctl+0x7ef/0xcf0 [ 547.208937][T14033] ? __pfx_mtrr_ioctl+0x10/0x10 [ 547.208969][T14033] ? find_held_lock+0x2b/0x80 [ 547.208989][T14033] ? __fget_files+0x20e/0x3c0 [ 547.209007][T14033] ? __pfx_mtrr_ioctl+0x10/0x10 [ 547.209026][T14033] proc_reg_unlocked_ioctl+0x229/0x320 [ 547.209045][T14033] ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10 [ 547.209066][T14033] __x64_sys_ioctl+0x18e/0x210 [ 547.209087][T14033] do_syscall_64+0xcd/0x490 [ 547.209106][T14033] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 547.209121][T14033] RIP: 0033:0x7ffa6418ebe9 [ 547.209132][T14033] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 547.209146][T14033] RSP: 002b:00007ffa623ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 547.209160][T14033] RAX: ffffffffffffffda RBX: 00007ffa643b5fa0 RCX: 00007ffa6418ebe9 [ 547.209170][T14033] RDX: 0000000000000005 RSI: 00000000400c4d01 RDI: 0000000000000005 [ 547.209179][T14033] RBP: 00007ffa64211e19 R08: 0000000000000000 R09: 0000000000000000 [ 547.209187][T14033] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 547.209195][T14033] R13: 00007ffa643b6038 R14: 00007ffa643b5fa0 R15: 00007ffcc9869508 [ 547.209212][T14033] [ 548.872286][T14063] openvswitch: HfR: Dropping previously announced user features [ 548.910628][T14064] syz_tun: tun_chr_ioctl cmd 21731 [ 549.004244][T14063] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2323'. [ 549.104314][T14065] openvswitch: HfR: Dropping previously announced user features [ 549.205215][T14063] HfR: left promiscuous mode [ 550.515118][T14093] binder: 14092:14093 ioctl 5380 2000000000c0 returned -22 [ 550.647032][T14093] sd 0:0:1:0: PR command failed: 1026 [ 550.666094][T14093] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 550.707185][T14093] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 551.036863][ T5859] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 554.019200][T14146] FAULT_INJECTION: forcing a failure. [ 554.019200][T14146] name failslab, interval 1, probability 0, space 0, times 0 [ 554.091433][T14146] CPU: 0 UID: 0 PID: 14146 Comm: syz.1.2332 Not tainted 6.17.0-rc1-syzkaller-00016-g8742b2d8935f #0 PREEMPT(full) [ 554.091457][T14146] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 554.091466][T14146] Call Trace: [ 554.091472][T14146] [ 554.091478][T14146] dump_stack_lvl+0x16c/0x1f0 [ 554.091502][T14146] should_fail_ex+0x512/0x640 [ 554.091522][T14146] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 554.091542][T14146] should_failslab+0xc2/0x120 [ 554.091561][T14146] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 554.091577][T14146] ? _request_firmware+0x503/0x1470 [ 554.091596][T14146] _request_firmware+0x503/0x1470 [ 554.091617][T14146] ? assign_fw+0x1cb/0x640 [ 554.091630][T14146] ? _request_firmware+0x957/0x1470 [ 554.091646][T14146] ? __pfx__request_firmware+0x10/0x10 [ 554.091670][T14146] request_firmware+0x35/0x50 [ 554.091686][T14146] valid_regdb+0x184/0x590 [ 554.091703][T14146] ? __pfx___mutex_lock+0x10/0x10 [ 554.091721][T14146] ? __pfx_valid_regdb+0x10/0x10 [ 554.091741][T14146] reg_reload_regdb+0x11a/0x460 [ 554.091761][T14146] ? __pfx_reg_reload_regdb+0x10/0x10 [ 554.091780][T14146] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 554.091793][T14146] ? nl80211_pre_doit+0x1b0/0xb10 [ 554.091809][T14146] genl_family_rcv_msg_doit+0x209/0x2f0 [ 554.091832][T14146] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 554.091854][T14146] ? rcu_is_watching+0x12/0xc0 [ 554.091875][T14146] ? bpf_lsm_capable+0x9/0x10 [ 554.091888][T14146] ? security_capable+0x7e/0x260 [ 554.091906][T14146] genl_rcv_msg+0x55c/0x800 [ 554.091928][T14146] ? __pfx_genl_rcv_msg+0x10/0x10 [ 554.091949][T14146] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 554.091962][T14146] ? __pfx_nl80211_reload_regdb+0x10/0x10 [ 554.091978][T14146] ? __pfx_nl80211_post_doit+0x10/0x10 [ 554.092003][T14146] netlink_rcv_skb+0x158/0x420 [ 554.092021][T14146] ? __pfx_genl_rcv_msg+0x10/0x10 [ 554.092052][T14146] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 554.092080][T14146] ? netlink_deliver_tap+0x1ae/0xd30 [ 554.092100][T14146] genl_rcv+0x28/0x40 [ 554.092121][T14146] netlink_unicast+0x5a7/0x870 [ 554.092142][T14146] ? __pfx_netlink_unicast+0x10/0x10 [ 554.092163][T14146] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 554.092179][T14146] ? __lock_acquire+0xb97/0x1ce0 [ 554.092202][T14146] netlink_sendmsg+0x8d1/0xdd0 [ 554.092223][T14146] ? __pfx_netlink_sendmsg+0x10/0x10 [ 554.092243][T14146] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 554.092260][T14146] ____sys_sendmsg+0xa95/0xc70 [ 554.092282][T14146] ? copy_msghdr_from_user+0x10a/0x160 [ 554.092300][T14146] ? __pfx_____sys_sendmsg+0x10/0x10 [ 554.092325][T14146] ? __pfx_futex_wake_mark+0x10/0x10 [ 554.092348][T14146] ___sys_sendmsg+0x134/0x1d0 [ 554.092367][T14146] ? __pfx____sys_sendmsg+0x10/0x10 [ 554.092408][T14146] __sys_sendmsg+0x16d/0x220 [ 554.092426][T14146] ? __pfx___sys_sendmsg+0x10/0x10 [ 554.092443][T14146] ? __x64_sys_futex+0x1e0/0x4c0 [ 554.092471][T14146] do_syscall_64+0xcd/0x490 [ 554.092491][T14146] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 554.092506][T14146] RIP: 0033:0x7ffa6418ebe9 [ 554.092518][T14146] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 554.092532][T14146] RSP: 002b:00007ffa623ee038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 554.092546][T14146] RAX: ffffffffffffffda RBX: 00007ffa643b5fa0 RCX: 00007ffa6418ebe9 [ 554.092556][T14146] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 0000000000000006 [ 554.092565][T14146] RBP: 00007ffa64211e19 R08: 0000000000000000 R09: 0000000000000000 [ 554.092573][T14146] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 554.092582][T14146] R13: 00007ffa643b6038 R14: 00007ffa643b5fa0 R15: 00007ffcc9869508 [ 554.092601][T14146] [ 554.461150][T14146] faux_driver regulatory: Direct firmware load for regulatory.db.p7s failed with error -12 [ 554.472434][T14146] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db.p7s [ 555.578912][T14159] FAULT_INJECTION: forcing a failure. [ 555.578912][T14159] name failslab, interval 1, probability 0, space 0, times 0 [ 555.620988][T14159] CPU: 0 UID: 0 PID: 14159 Comm: syz.1.2337 Not tainted 6.17.0-rc1-syzkaller-00016-g8742b2d8935f #0 PREEMPT(full) [ 555.621012][T14159] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 555.621022][T14159] Call Trace: [ 555.621028][T14159] [ 555.621034][T14159] dump_stack_lvl+0x16c/0x1f0 [ 555.621057][T14159] should_fail_ex+0x512/0x640 [ 555.621078][T14159] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 555.621096][T14159] should_failslab+0xc2/0x120 [ 555.621115][T14159] __kmalloc_cache_noprof+0x6a/0x3e0 [ 555.621130][T14159] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 555.621149][T14159] ? kvm_set_irq_routing+0x24f/0x970 [ 555.621172][T14159] kvm_set_irq_routing+0x24f/0x970 [ 555.621196][T14159] kvm_arch_vm_ioctl+0x8e8/0x1860 [ 555.621214][T14159] ? register_lock_class+0x41/0x4c0 [ 555.621232][T14159] ? find_held_lock+0x2b/0x80 [ 555.621246][T14159] ? __pfx_kvm_arch_vm_ioctl+0x10/0x10 [ 555.621267][T14159] ? __lock_acquire+0x62e/0x1ce0 [ 555.621288][T14159] ? __lock_acquire+0x62e/0x1ce0 [ 555.621309][T14159] ? __lock_acquire+0x62e/0x1ce0 [ 555.621331][T14159] ? __lock_acquire+0x62e/0x1ce0 [ 555.621360][T14159] ? is_bpf_text_address+0x8a/0x1a0 [ 555.621377][T14159] ? bpf_ksym_find+0x124/0x1c0 [ 555.621390][T14159] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 555.621407][T14159] ? is_bpf_text_address+0x94/0x1a0 [ 555.621424][T14159] ? kernel_text_address+0x8d/0x100 [ 555.621444][T14159] ? __kernel_text_address+0xd/0x40 [ 555.621456][T14159] ? unwind_get_return_address+0x59/0xa0 [ 555.621471][T14159] ? arch_stack_walk+0xa6/0x100 [ 555.621493][T14159] ? stack_trace_save+0x8e/0xc0 [ 555.621508][T14159] ? __pfx_stack_trace_save+0x10/0x10 [ 555.621523][T14159] ? stack_depot_save_flags+0x29/0x9c0 [ 555.621542][T14159] ? __lock_acquire+0xb97/0x1ce0 [ 555.621562][T14159] ? kasan_save_stack+0x42/0x60 [ 555.621576][T14159] ? kasan_save_stack+0x33/0x60 [ 555.621590][T14159] ? kasan_save_track+0x14/0x30 [ 555.621604][T14159] ? kasan_save_free_info+0x3b/0x60 [ 555.621624][T14159] ? __kasan_slab_free+0x60/0x70 [ 555.621639][T14159] ? kfree+0x2b4/0x4d0 [ 555.621654][T14159] kvm_vm_ioctl+0x1a91/0x4000 [ 555.621675][T14159] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 555.621700][T14159] ? kasan_quarantine_put+0x10a/0x240 [ 555.621714][T14159] ? lockdep_hardirqs_on+0x7c/0x110 [ 555.621733][T14159] ? find_held_lock+0x2b/0x80 [ 555.621746][T14159] ? tomoyo_path_number_perm+0x295/0x580 [ 555.621767][T14159] ? tomoyo_path_number_perm+0x18d/0x580 [ 555.621788][T14159] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 555.621819][T14159] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 555.621841][T14159] ? do_vfs_ioctl+0x128/0x14f0 [ 555.621864][T14159] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 555.621891][T14159] ? find_held_lock+0x2b/0x80 [ 555.621905][T14159] ? hook_file_ioctl_common+0x145/0x410 [ 555.621927][T14159] ? __fget_files+0x20e/0x3c0 [ 555.621944][T14159] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 555.621958][T14159] __x64_sys_ioctl+0x18e/0x210 [ 555.621985][T14159] do_syscall_64+0xcd/0x490 [ 555.622006][T14159] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 555.622021][T14159] RIP: 0033:0x7ffa6418ebe9 [ 555.622033][T14159] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 555.622046][T14159] RSP: 002b:00007ffa623ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 555.622061][T14159] RAX: ffffffffffffffda RBX: 00007ffa643b5fa0 RCX: 00007ffa6418ebe9 [ 555.622070][T14159] RDX: 0010000000000402 RSI: 000000000000ae60 RDI: 0000000000000003 [ 555.622079][T14159] RBP: 00007ffa64211e19 R08: 0000000000000000 R09: 0000000000000000 [ 555.622087][T14159] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 555.622095][T14159] R13: 00007ffa643b6038 R14: 00007ffa643b5fa0 R15: 00007ffcc9869508 [ 555.622115][T14159] [ 556.775045][T14163] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2339'. [ 557.260575][T14163] mac80211_hwsim hwsim3 wlan1: entered allmulticast mode [ 558.710409][T14192] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input14 [ 559.664333][T14204] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 561.948768][T14249] syz_tun: tun_chr_ioctl cmd 1074025681 [ 562.164609][T14255] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2370'. [ 562.273929][T14255] mac80211_hwsim hwsim9 wlan1: entered allmulticast mode [ 562.477776][ T5859] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 564.010152][T14290] netlink: 326 bytes leftover after parsing attributes in process `syz.1.2372'. [ 565.709740][T14322] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input15 [ 566.690497][T14337] ERROR: Out of memory at tomoyo_memory_ok. [ 567.769175][T14351] ERROR: Out of memory at tomoyo_memory_ok. [ 568.097729][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 568.104185][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 569.128575][T14371] ptrace attach of "./syz-executor exec"[5857] was attempted by ""[14371] [ 569.658702][T14370] serio: Serial port pty6 [ 571.185944][T14406] FAULT_INJECTION: forcing a failure. [ 571.185944][T14406] name failslab, interval 1, probability 0, space 0, times 0 [ 571.199309][T14406] CPU: 0 UID: 0 PID: 14406 Comm: syz.2.2403 Not tainted 6.17.0-rc1-syzkaller-00016-g8742b2d8935f #0 PREEMPT(full) [ 571.199333][T14406] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 571.199342][T14406] Call Trace: [ 571.199348][T14406] [ 571.199353][T14406] dump_stack_lvl+0x16c/0x1f0 [ 571.199376][T14406] should_fail_ex+0x512/0x640 [ 571.199399][T14406] should_failslab+0xc2/0x120 [ 571.199420][T14406] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 571.199438][T14406] ? __es_insert_extent+0x743/0x1440 [ 571.199464][T14406] __es_insert_extent+0x743/0x1440 [ 571.199484][T14406] ? do_raw_write_lock+0x11c/0x3a0 [ 571.199506][T14406] ? __pfx_do_raw_write_lock+0x10/0x10 [ 571.199533][T14406] ext4_es_insert_extent+0x502/0x11b0 [ 571.199552][T14406] ? __pfx_ext4_es_insert_extent+0x10/0x10 [ 571.199568][T14406] ? __lock_acquire+0xb97/0x1ce0 [ 571.199599][T14406] ext4_map_query_blocks+0x4eb/0x8a0 [ 571.199624][T14406] ? __pfx_ext4_map_query_blocks+0x10/0x10 [ 571.199646][T14406] ? __pfx_down_read+0x10/0x10 [ 571.199665][T14406] ? ext4_es_lookup_extent+0xc7/0xc50 [ 571.199683][T14406] ext4_map_blocks+0x3c5/0x1400 [ 571.199699][T14406] ? find_held_lock+0x2b/0x80 [ 571.199714][T14406] ? __pfx_ext4_map_blocks+0x10/0x10 [ 571.199732][T14406] ? xa_load+0x153/0x2c0 [ 571.199749][T14406] ? __pfx_xa_load+0x10/0x10 [ 571.199772][T14406] ? css_rstat_updated+0x1c2/0x510 [ 571.199789][T14406] ext4_mpage_readpages+0xdf2/0x19d0 [ 571.199816][T14406] ? __pfx_ext4_mpage_readpages+0x10/0x10 [ 571.199832][T14406] ? __filemap_add_folio+0xb9c/0x11e0 [ 571.199856][T14406] ext4_readahead+0x102/0x140 [ 571.199869][T14406] ? __pfx_ext4_readahead+0x10/0x10 [ 571.199881][T14406] read_pages+0x1c1/0xc70 [ 571.199901][T14406] ? __pfx_read_pages+0x10/0x10 [ 571.199936][T14406] page_cache_ra_unbounded+0x421/0x7d0 [ 571.199960][T14406] page_cache_ra_order+0xa41/0xd70 [ 571.199986][T14406] page_cache_sync_ra+0x4e9/0xa00 [ 571.200005][T14406] filemap_get_pages+0xb62/0x1c20 [ 571.200031][T14406] ? __pfx_filemap_get_pages+0x10/0x10 [ 571.200054][T14406] ? __pfx___might_resched+0x10/0x10 [ 571.200072][T14406] filemap_read+0x3d2/0xe40 [ 571.200094][T14406] ? find_held_lock+0x2b/0x80 [ 571.200111][T14406] ? __pfx_filemap_read+0x10/0x10 [ 571.200142][T14406] ? lockdep_hardirqs_on+0x7c/0x110 [ 571.200158][T14406] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 571.200174][T14406] ? stack_depot_save_flags+0x3de/0x9c0 [ 571.200198][T14406] generic_file_read_iter+0x344/0x450 [ 571.200215][T14406] ? kasan_save_stack+0x33/0x60 [ 571.200230][T14406] ? kasan_save_track+0x14/0x30 [ 571.200247][T14406] ext4_file_read_iter+0x1d6/0x6a0 [ 571.200264][T14406] __kernel_read+0x3f3/0xbf0 [ 571.200282][T14406] ? __pfx___kernel_read+0x10/0x10 [ 571.200296][T14406] ? netlink_sendmsg+0x8d1/0xdd0 [ 571.200314][T14406] ? __sys_sendmsg+0x16d/0x220 [ 571.200331][T14406] ? do_syscall_64+0xcd/0x490 [ 571.200361][T14406] integrity_kernel_read+0x7e/0xb0 [ 571.200383][T14406] ? __pfx_integrity_kernel_read+0x10/0x10 [ 571.200405][T14406] ? kasan_save_track+0x14/0x30 [ 571.200423][T14406] ima_calc_file_hash_tfm+0x25c/0x350 [ 571.200440][T14406] ? __pfx_ima_calc_file_hash_tfm+0x10/0x10 [ 571.200477][T14406] ? ext4_getattr+0x348/0xa10 [ 571.200496][T14406] ? ima_alloc_tfm+0x21a/0x2e0 [ 571.200509][T14406] ? ext4_file_getattr+0x25f/0x380 [ 571.200529][T14406] ima_calc_file_hash+0x1ba/0x490 [ 571.200547][T14406] ima_collect_measurement+0x899/0xa40 [ 571.200569][T14406] ? __pfx_ima_collect_measurement+0x10/0x10 [ 571.200599][T14406] ? __pfx_ext4_xattr_get+0x10/0x10 [ 571.200614][T14406] ? xattr_resolve_name+0x27b/0x3f0 [ 571.200632][T14406] ? vfs_getxattr_alloc+0xec/0x340 [ 571.200651][T14406] ? ima_get_hash_algo+0x27c/0x400 [ 571.200672][T14406] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 571.200697][T14406] ? process_measurement+0x11fa/0x23e0 [ 571.200711][T14406] process_measurement+0x11fa/0x23e0 [ 571.200731][T14406] ? __pfx_process_measurement+0x10/0x10 [ 571.200750][T14406] ? find_held_lock+0x2b/0x80 [ 571.200763][T14406] ? fscrypt_file_open+0x47c/0x590 [ 571.200800][T14406] ? __pfx___fsnotify_parent+0x10/0x10 [ 571.200814][T14406] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 571.200834][T14406] ima_file_check+0xc5/0x110 [ 571.200848][T14406] ? __pfx_ima_file_check+0x10/0x10 [ 571.200864][T14406] ? vfs_open+0x2e3/0x3f0 [ 571.200884][T14406] security_file_post_open+0x8e/0x210 [ 571.200903][T14406] path_openat+0x1404/0x2cb0 [ 571.200933][T14406] ? trace_kmem_cache_alloc+0x28/0xc0 [ 571.200954][T14406] ? kmem_cache_alloc_noprof+0x21e/0x3b0 [ 571.200971][T14406] ? __pfx_path_openat+0x10/0x10 [ 571.200988][T14406] ? __asan_memcpy+0x3c/0x60 [ 571.201005][T14406] do_file_open_root+0x322/0x610 [ 571.201023][T14406] ? __pfx_do_file_open_root+0x10/0x10 [ 571.201059][T14406] ? vsnprintf+0x318/0x1160 [ 571.201077][T14406] file_open_root+0x2a7/0x450 [ 571.201095][T14406] ? __pfx_file_open_root+0x10/0x10 [ 571.201110][T14406] ? find_held_lock+0x2b/0x80 [ 571.201124][T14406] ? kernel_read_file_from_path_initns+0x17a/0x260 [ 571.201149][T14406] kernel_read_file_from_path_initns+0x189/0x260 [ 571.201172][T14406] ? __pfx_kernel_read_file_from_path_initns+0x10/0x10 [ 571.201199][T14406] _request_firmware+0x744/0x1470 [ 571.201224][T14406] ? __pfx__request_firmware+0x10/0x10 [ 571.201248][T14406] request_firmware+0x35/0x50 [ 571.201264][T14406] valid_regdb+0x184/0x590 [ 571.201281][T14406] ? __pfx___mutex_lock+0x10/0x10 [ 571.201300][T14406] ? __pfx_valid_regdb+0x10/0x10 [ 571.201321][T14406] reg_reload_regdb+0x11a/0x460 [ 571.201340][T14406] ? __pfx_reg_reload_regdb+0x10/0x10 [ 571.201360][T14406] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 571.201372][T14406] ? nl80211_pre_doit+0x1b0/0xb10 [ 571.201388][T14406] genl_family_rcv_msg_doit+0x209/0x2f0 [ 571.201411][T14406] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 571.201430][T14406] ? rcu_is_watching+0x12/0xc0 [ 571.201451][T14406] ? bpf_lsm_capable+0x9/0x10 [ 571.201463][T14406] ? security_capable+0x7e/0x260 [ 571.201481][T14406] genl_rcv_msg+0x55c/0x800 [ 571.201504][T14406] ? __pfx_genl_rcv_msg+0x10/0x10 [ 571.201524][T14406] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 571.201537][T14406] ? __pfx_nl80211_reload_regdb+0x10/0x10 [ 571.201553][T14406] ? __pfx_nl80211_post_doit+0x10/0x10 [ 571.201578][T14406] netlink_rcv_skb+0x158/0x420 [ 571.201596][T14406] ? __pfx_genl_rcv_msg+0x10/0x10 [ 571.201617][T14406] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 571.201643][T14406] ? netlink_deliver_tap+0x1ae/0xd30 [ 571.201663][T14406] genl_rcv+0x28/0x40 [ 571.201681][T14406] netlink_unicast+0x5a7/0x870 [ 571.201701][T14406] ? __pfx_netlink_unicast+0x10/0x10 [ 571.201720][T14406] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 571.201736][T14406] ? __lock_acquire+0xb97/0x1ce0 [ 571.201759][T14406] netlink_sendmsg+0x8d1/0xdd0 [ 571.201780][T14406] ? __pfx_netlink_sendmsg+0x10/0x10 [ 571.201800][T14406] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 571.201818][T14406] ____sys_sendmsg+0xa95/0xc70 [ 571.201840][T14406] ? copy_msghdr_from_user+0x10a/0x160 [ 571.201857][T14406] ? __pfx_____sys_sendmsg+0x10/0x10 [ 571.201882][T14406] ? __pfx_futex_wake_mark+0x10/0x10 [ 571.201906][T14406] ___sys_sendmsg+0x134/0x1d0 [ 571.201932][T14406] ? __pfx____sys_sendmsg+0x10/0x10 [ 571.201976][T14406] __sys_sendmsg+0x16d/0x220 [ 571.201995][T14406] ? __pfx___sys_sendmsg+0x10/0x10 [ 571.202011][T14406] ? __x64_sys_futex+0x1e0/0x4c0 [ 571.202041][T14406] do_syscall_64+0xcd/0x490 [ 571.202060][T14406] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 571.202075][T14406] RIP: 0033:0x7f2019d8ebe9 [ 571.202089][T14406] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 571.202102][T14406] RSP: 002b:00007f201acdb038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 571.202117][T14406] RAX: ffffffffffffffda RBX: 00007f2019fb5fa0 RCX: 00007f2019d8ebe9 [ 571.202126][T14406] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 0000000000000006 [ 571.202135][T14406] RBP: 00007f2019e11e19 R08: 0000000000000000 R09: 0000000000000000 [ 571.202144][T14406] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 571.202153][T14406] R13: 00007f2019fb6038 R14: 00007f2019fb5fa0 R15: 00007ffc94240f68 [ 571.202171][T14406] [ 572.545184][T14406] syz.2.2403 (14406) used greatest stack depth: 18120 bytes left [ 572.748568][T14422] netlink: 350 bytes leftover after parsing attributes in process `syz.0.2408'. [ 572.807950][T14424] netlink: 17 bytes leftover after parsing attributes in process `syz.2.2407'. [ 572.870715][T14427] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2409'. [ 572.900636][T14427] netlink: 354 bytes leftover after parsing attributes in process `syz.0.2409'. [ 572.948803][T14418] ima: policy update failed [ 573.021241][ T30] audit: type=1802 audit(4294975390.225:18): pid=14418 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.2407" res=0 errno=0 [ 574.123458][T14454] ERROR: Out of memory at tomoyo_memory_ok. [ 578.195323][T14501] kexec: Could not allocate control_code_buffer [ 582.657636][T14624] FAULT_INJECTION: forcing a failure. [ 582.657636][T14624] name failslab, interval 1, probability 0, space 0, times 0 [ 582.715346][T14624] CPU: 0 UID: 0 PID: 14624 Comm: syz.1.2456 Not tainted 6.17.0-rc1-syzkaller-00016-g8742b2d8935f #0 PREEMPT(full) [ 582.715372][T14624] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 582.715382][T14624] Call Trace: [ 582.715388][T14624] [ 582.715395][T14624] dump_stack_lvl+0x16c/0x1f0 [ 582.715418][T14624] should_fail_ex+0x512/0x640 [ 582.715439][T14624] ? __kmalloc_noprof+0xbf/0x510 [ 582.715458][T14624] ? unregister_netdevice_many_notify+0x626/0x24c0 [ 582.715486][T14624] should_failslab+0xc2/0x120 [ 582.715507][T14624] __kmalloc_noprof+0xd2/0x510 [ 582.715528][T14624] unregister_netdevice_many_notify+0x626/0x24c0 [ 582.715550][T14624] ? __pfx___might_resched+0x10/0x10 [ 582.715568][T14624] ? trace_contention_end+0xdd/0x130 [ 582.715588][T14624] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 582.715613][T14624] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 582.715636][T14624] ? __fsnotify_parent+0x24b/0xc40 [ 582.715653][T14624] ? __pfx___mutex_lock+0x10/0x10 [ 582.715675][T14624] unregister_netdevice_queue+0x305/0x3f0 [ 582.715696][T14624] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 582.715716][T14624] ? __pfx_locks_remove_file+0x10/0x10 [ 582.715734][T14624] ? __pfx_ppp_release+0x10/0x10 [ 582.715752][T14624] ppp_release+0x209/0x230 [ 582.715770][T14624] __fput+0x3ff/0xb70 [ 582.715794][T14624] task_work_run+0x150/0x240 [ 582.715816][T14624] ? __pfx_task_work_run+0x10/0x10 [ 582.715840][T14624] ? __pfx___do_sys_close_range+0x10/0x10 [ 582.715861][T14624] exit_to_user_mode_loop+0xeb/0x110 [ 582.715882][T14624] do_syscall_64+0x3f6/0x490 [ 582.715902][T14624] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 582.715917][T14624] RIP: 0033:0x7ffa6418ebe9 [ 582.715929][T14624] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 582.715943][T14624] RSP: 002b:00007ffa623ee038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 582.715957][T14624] RAX: 0000000000000000 RBX: 00007ffa643b5fa0 RCX: 00007ffa6418ebe9 [ 582.715966][T14624] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 582.715975][T14624] RBP: 00007ffa64211e19 R08: 0000000000000000 R09: 0000000000000000 [ 582.715983][T14624] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 582.715992][T14624] R13: 00007ffa643b6038 R14: 00007ffa643b5fa0 R15: 00007ffcc9869508 [ 582.716011][T14624] [ 584.392577][T14643] Invalid ELF header magic: != ELF [ 586.039515][T14671] FAULT_INJECTION: forcing a failure. [ 586.039515][T14671] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 586.216572][T14671] CPU: 0 UID: 0 PID: 14671 Comm: syz.2.2469 Not tainted 6.17.0-rc1-syzkaller-00016-g8742b2d8935f #0 PREEMPT(full) [ 586.216597][T14671] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 586.216606][T14671] Call Trace: [ 586.216611][T14671] [ 586.216617][T14671] dump_stack_lvl+0x16c/0x1f0 [ 586.216640][T14671] should_fail_ex+0x512/0x640 [ 586.216663][T14671] should_fail_alloc_page+0xe7/0x130 [ 586.216684][T14671] prepare_alloc_pages+0x3c2/0x610 [ 586.216703][T14671] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 586.216721][T14671] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 586.216746][T14671] ? __lock_acquire+0xb97/0x1ce0 [ 586.216765][T14671] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 586.216791][T14671] ? __pfx___mutex_trylock_common+0x10/0x10 [ 586.216811][T14671] ? __pfx___might_resched+0x10/0x10 [ 586.216825][T14671] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 586.216847][T14671] ? policy_nodemask+0xea/0x4e0 [ 586.216866][T14671] alloc_pages_mpol+0x1fb/0x550 [ 586.216885][T14671] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 586.216903][T14671] ? __pfx___mutex_lock+0x10/0x10 [ 586.216925][T14671] ___kmalloc_large_node+0xed/0x160 [ 586.216948][T14671] __kmalloc_large_noprof+0x1c/0x70 [ 586.216973][T14671] uhid_char_open+0x24/0x250 [ 586.216996][T14671] ? __pfx_uhid_char_open+0x10/0x10 [ 586.217017][T14671] misc_open+0x35a/0x420 [ 586.217032][T14671] ? __pfx_misc_open+0x10/0x10 [ 586.217047][T14671] chrdev_open+0x231/0x6a0 [ 586.217072][T14671] ? __pfx_apparmor_file_open+0x10/0x10 [ 586.217089][T14671] ? __pfx_chrdev_open+0x10/0x10 [ 586.217108][T14671] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 586.217129][T14671] do_dentry_open+0x97f/0x1530 [ 586.217148][T14671] ? __pfx_chrdev_open+0x10/0x10 [ 586.217169][T14671] vfs_open+0x82/0x3f0 [ 586.217191][T14671] path_openat+0x1de4/0x2cb0 [ 586.217214][T14671] ? __pfx_path_openat+0x10/0x10 [ 586.217234][T14671] do_filp_open+0x20b/0x470 [ 586.217251][T14671] ? __pfx_do_filp_open+0x10/0x10 [ 586.217280][T14671] ? alloc_fd+0x471/0x7d0 [ 586.217300][T14671] do_sys_openat2+0x11b/0x1d0 [ 586.217321][T14671] ? __pfx_do_sys_openat2+0x10/0x10 [ 586.217348][T14671] __x64_sys_openat+0x174/0x210 [ 586.217369][T14671] ? __pfx___x64_sys_openat+0x10/0x10 [ 586.217397][T14671] do_syscall_64+0xcd/0x490 [ 586.217416][T14671] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 586.217431][T14671] RIP: 0033:0x7f2019d8ebe9 [ 586.217443][T14671] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 586.217457][T14671] RSP: 002b:00007f201acba038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 586.217472][T14671] RAX: ffffffffffffffda RBX: 00007f2019fb6090 RCX: 00007f2019d8ebe9 [ 586.217482][T14671] RDX: 0000000000000000 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 586.217490][T14671] RBP: 00007f2019e11e19 R08: 0000000000000000 R09: 0000000000000000 [ 586.217499][T14671] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 586.217507][T14671] R13: 00007f2019fb6128 R14: 00007f2019fb6090 R15: 00007ffc94240f68 [ 586.217526][T14671] [ 589.421299][T14746] vhci_hcd: invalid port number 16 [ 589.447620][T14746] vhci_hcd: invalid port number 16 [ 589.600253][T14748] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2490'. [ 590.394465][T14771] netlink: 25 bytes leftover after parsing attributes in process `syz.3.2498'. [ 590.715767][T14781] kafs: addr_prefs: Invalid Command [ 591.358243][T14792] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2505'. [ 591.446737][T14792] vcan0: entered promiscuous mode [ 591.728993][T14803] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2508'. [ 592.308461][T14809] zswap: compressor not available [ 592.447167][T14822] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2513'. [ 592.643752][T14822] hsr_slave_1: left promiscuous mode [ 593.085279][T14840] input: jJǸ;9%vlQ J86 as /devices/virtual/input/input16 [ 593.608727][T14855] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2522'. [ 593.871935][T14861] random: crng reseeded on system resumption [ 593.900749][T13341] ERROR: Out of memory at tomoyo_memory_ok. [ 593.934253][ T1336] ERROR: Out of memory at tomoyo_memory_ok. [ 594.108492][T14864] RDS: rds_bind could not find a transport for ::ffff:172.20.20.187, load rds_tcp or rds_rdma? [ 594.325486][T14861] Unrecognized hibernate image header format! [ 594.405058][T14861] PM: hibernation: Image mismatch: architecture specific data [ 595.633054][T14883] device-mapper: ioctl: Unable to rename non-existent device, to uuid [ 597.054186][T14907] ima: policy update failed [ 597.069680][ T30] audit: type=1802 audit(4294975414.335:19): pid=14907 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.2535" res=0 errno=0 [ 597.108130][T14907] netlink: 25 bytes leftover after parsing attributes in process `syz.1.2535'. [ 599.061725][T14949] netlink: 93 bytes leftover after parsing attributes in process `syz.2.2544'. [ 599.357683][T14955] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input17 [ 599.664662][T14958] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input18 [ 599.771808][T14955] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2547'. [ 601.338612][T14996] random: crng reseeded on system resumption [ 601.382825][T14996] FAULT_INJECTION: forcing a failure. [ 601.382825][T14996] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 601.463348][T14996] CPU: 0 UID: 0 PID: 14996 Comm: syz.3.2558 Not tainted 6.17.0-rc1-syzkaller-00016-g8742b2d8935f #0 PREEMPT(full) [ 601.463373][T14996] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 601.463382][T14996] Call Trace: [ 601.463388][T14996] [ 601.463394][T14996] dump_stack_lvl+0x16c/0x1f0 [ 601.463418][T14996] should_fail_ex+0x512/0x640 [ 601.463441][T14996] should_fail_alloc_page+0xe7/0x130 [ 601.463462][T14996] prepare_alloc_pages+0x3c2/0x610 [ 601.463487][T14996] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 601.463510][T14996] ? stack_trace_save+0x8e/0xc0 [ 601.463526][T14996] ? __pfx_stack_trace_save+0x10/0x10 [ 601.463543][T14996] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 601.463562][T14996] ? kasan_save_stack+0x42/0x60 [ 601.463577][T14996] ? kasan_save_stack+0x33/0x60 [ 601.463594][T14996] ? do_dentry_open+0x97f/0x1530 [ 601.463611][T14996] ? vfs_open+0x82/0x3f0 [ 601.463629][T14996] ? path_openat+0x1de4/0x2cb0 [ 601.463643][T14996] ? do_filp_open+0x20b/0x470 [ 601.463657][T14996] ? do_sys_openat2+0x11b/0x1d0 [ 601.463676][T14996] ? __x64_sys_openat+0x174/0x210 [ 601.463695][T14996] ? do_syscall_64+0xcd/0x490 [ 601.463716][T14996] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 601.463732][T14996] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 601.463753][T14996] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 601.463776][T14996] ? policy_nodemask+0xea/0x4e0 [ 601.463795][T14996] alloc_pages_mpol+0x1fb/0x550 [ 601.463820][T14996] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 601.463849][T14996] alloc_pages_noprof+0x131/0x390 [ 601.463869][T14996] get_zeroed_page_noprof+0x18/0xb0 [ 601.463889][T14996] get_image_page+0x18/0x190 [ 601.463904][T14996] alloc_rtree_node+0x3c/0xb0 [ 601.463918][T14996] memory_bm_create+0x519/0x810 [ 601.463940][T14996] create_basic_memory_bitmaps+0x10b/0x320 [ 601.463958][T14996] snapshot_open+0x235/0x2b0 [ 601.463974][T14996] ? __pfx_snapshot_open+0x10/0x10 [ 601.463991][T14996] misc_open+0x35a/0x420 [ 601.464006][T14996] ? __pfx_misc_open+0x10/0x10 [ 601.464020][T14996] chrdev_open+0x231/0x6a0 [ 601.464037][T14996] ? __pfx_apparmor_file_open+0x10/0x10 [ 601.464053][T14996] ? __pfx_chrdev_open+0x10/0x10 [ 601.464071][T14996] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 601.464090][T14996] do_dentry_open+0x97f/0x1530 [ 601.464107][T14996] ? __pfx_chrdev_open+0x10/0x10 [ 601.464129][T14996] vfs_open+0x82/0x3f0 [ 601.464152][T14996] path_openat+0x1de4/0x2cb0 [ 601.464182][T14996] ? __pfx_path_openat+0x10/0x10 [ 601.464204][T14996] do_filp_open+0x20b/0x470 [ 601.464222][T14996] ? __pfx_do_filp_open+0x10/0x10 [ 601.464253][T14996] ? alloc_fd+0x471/0x7d0 [ 601.464273][T14996] do_sys_openat2+0x11b/0x1d0 [ 601.464294][T14996] ? __pfx_do_sys_openat2+0x10/0x10 [ 601.464313][T14996] ? __fget_files+0x204/0x3c0 [ 601.464334][T14996] __x64_sys_openat+0x174/0x210 [ 601.464355][T14996] ? __pfx___x64_sys_openat+0x10/0x10 [ 601.464384][T14996] do_syscall_64+0xcd/0x490 [ 601.464403][T14996] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 601.464417][T14996] RIP: 0033:0x7f3f7c18ebe9 [ 601.464428][T14996] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 601.464442][T14996] RSP: 002b:00007f3f7d038038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 601.464457][T14996] RAX: ffffffffffffffda RBX: 00007f3f7c3b5fa0 RCX: 00007f3f7c18ebe9 [ 601.464467][T14996] RDX: 00000000001438bf RSI: 0000200000000000 RDI: ffffffffffffff9c [ 601.464476][T14996] RBP: 00007f3f7c211e19 R08: 0000000000000000 R09: 0000000000000000 [ 601.464484][T14996] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 601.464493][T14996] R13: 00007f3f7c3b6038 R14: 00007f3f7c3b5fa0 R15: 00007ffdf4724ec8 [ 601.464511][T14996] [ 601.834494][ C0] vkms_vblank_simulate: vblank timer overrun [ 602.277822][T15000] netlink: 'syz.0.2559': attribute type 1 has an invalid length. [ 604.196013][T15050] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2575'. [ 605.106621][T15070] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2581'. [ 605.155243][T15070] : renamed from vxcan1 (while UP) [ 605.201808][T15073] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input19 [ 605.403855][T15075] Invalid ELF header magic: != ELF [ 605.859145][T15086] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2584'. [ 605.982361][T15086] hsr_slave_1: left promiscuous mode [ 606.600470][T15092] FAULT_INJECTION: forcing a failure. [ 606.600470][T15092] name failslab, interval 1, probability 0, space 0, times 0 [ 606.657251][T15092] CPU: 0 UID: 0 PID: 15092 Comm: syz.1.2586 Not tainted 6.17.0-rc1-syzkaller-00016-g8742b2d8935f #0 PREEMPT(full) [ 606.657277][T15092] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 606.657286][T15092] Call Trace: [ 606.657291][T15092] [ 606.657297][T15092] dump_stack_lvl+0x16c/0x1f0 [ 606.657320][T15092] should_fail_ex+0x512/0x640 [ 606.657344][T15092] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 606.657362][T15092] should_failslab+0xc2/0x120 [ 606.657381][T15092] __kmalloc_cache_noprof+0x6a/0x3e0 [ 606.657396][T15092] ? percpu_ref_init+0xec/0x410 [ 606.657415][T15092] ? __pfx_obj_cgroup_release+0x10/0x10 [ 606.657431][T15092] percpu_ref_init+0xec/0x410 [ 606.657447][T15092] ? kasan_save_track+0x14/0x30 [ 606.657465][T15092] mem_cgroup_css_online+0x7e/0x640 [ 606.657494][T15092] ? __pfx_mem_cgroup_css_online+0x10/0x10 [ 606.657516][T15092] online_css+0xb2/0x350 [ 606.657536][T15092] cgroup_apply_control_enable+0x702/0xbb0 [ 606.657564][T15092] cgroup_mkdir+0x5e7/0x11f0 [ 606.657588][T15092] ? __pfx_cgroup_mkdir+0x10/0x10 [ 606.657610][T15092] kernfs_iop_mkdir+0x111/0x190 [ 606.657630][T15092] ? bpf_lsm_inode_mkdir+0x9/0x10 [ 606.657650][T15092] vfs_mkdir+0x590/0x8c0 [ 606.657666][T15092] do_mkdirat+0x304/0x3e0 [ 606.657683][T15092] ? __pfx_do_mkdirat+0x10/0x10 [ 606.657702][T15092] ? getname_flags.part.0+0x1c5/0x550 [ 606.657726][T15092] __x64_sys_mkdir+0xef/0x140 [ 606.657744][T15092] do_syscall_64+0xcd/0x490 [ 606.657763][T15092] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 606.657777][T15092] RIP: 0033:0x7ffa6418ebe9 [ 606.657789][T15092] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 606.657803][T15092] RSP: 002b:00007ffa623ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 606.657816][T15092] RAX: ffffffffffffffda RBX: 00007ffa643b5fa0 RCX: 00007ffa6418ebe9 [ 606.657825][T15092] RDX: 0000000000000000 RSI: 00000000000008cd RDI: 0000200000000000 [ 606.657834][T15092] RBP: 00007ffa64211e19 R08: 0000000000000000 R09: 0000000000000000 [ 606.657843][T15092] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 606.657851][T15092] R13: 00007ffa643b6038 R14: 00007ffa643b5fa0 R15: 00007ffcc9869508 [ 606.657871][T15092] [ 606.879929][ C0] vkms_vblank_simulate: vblank timer overrun [ 607.134712][T15076] ovs_: entered promiscuous mode [ 608.119975][T15114] netlink: 'syz.3.2593': attribute type 1 has an invalid length. [ 609.843641][T15141] FAULT_INJECTION: forcing a failure. [ 609.843641][T15141] name fail_futex, interval 1, probability 0, space 0, times 0 [ 609.908231][T15141] CPU: 0 UID: 0 PID: 15141 Comm: syz.1.2608 Not tainted 6.17.0-rc1-syzkaller-00016-g8742b2d8935f #0 PREEMPT(full) [ 609.908257][T15141] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 609.908267][T15141] Call Trace: [ 609.908272][T15141] [ 609.908279][T15141] dump_stack_lvl+0x16c/0x1f0 [ 609.908302][T15141] should_fail_ex+0x512/0x640 [ 609.908324][T15141] get_futex_key+0xff0/0x1560 [ 609.908346][T15141] ? __pfx_get_futex_key+0x10/0x10 [ 609.908363][T15141] ? __mutex_trylock_common+0xe9/0x250 [ 609.908387][T15141] futex_wake+0xea/0x530 [ 609.908409][T15141] ? __pfx_futex_wake+0x10/0x10 [ 609.908440][T15141] do_futex+0x1e3/0x350 [ 609.908460][T15141] ? __pfx_do_futex+0x10/0x10 [ 609.908476][T15141] ? __might_fault+0xe3/0x190 [ 609.908497][T15141] mm_release+0x24e/0x300 [ 609.908514][T15141] do_exit+0x68e/0x2bf0 [ 609.908536][T15141] ? __pfx_do_exit+0x10/0x10 [ 609.908555][T15141] ? do_raw_spin_lock+0x12c/0x2b0 [ 609.908575][T15141] ? find_held_lock+0x2b/0x80 [ 609.908591][T15141] do_group_exit+0xd3/0x2a0 [ 609.908611][T15141] get_signal+0x2673/0x26d0 [ 609.908634][T15141] ? __pfx_get_signal+0x10/0x10 [ 609.908649][T15141] ? do_futex+0x122/0x350 [ 609.908666][T15141] ? __pfx_do_futex+0x10/0x10 [ 609.908685][T15141] arch_do_signal_or_restart+0x8f/0x790 [ 609.908706][T15141] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 609.908729][T15141] ? syscall_user_dispatch+0x78/0x140 [ 609.908755][T15141] exit_to_user_mode_loop+0x84/0x110 [ 609.908777][T15141] do_syscall_64+0x3f6/0x490 [ 609.908797][T15141] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 609.908812][T15141] RIP: 0033:0x7ffa6418ebe9 [ 609.908824][T15141] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 609.908838][T15141] RSP: 002b:00007ffa623cd0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 609.908855][T15141] RAX: fffffffffffffe00 RBX: 00007ffa643b6098 RCX: 00007ffa6418ebe9 [ 609.908864][T15141] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007ffa643b6098 [ 609.908873][T15141] RBP: 00007ffa643b6090 R08: 0000000000000000 R09: 0000000000000000 [ 609.908881][T15141] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 609.908889][T15141] R13: 00007ffa643b6128 R14: 00007ffcc9869420 R15: 00007ffcc9869508 [ 609.908906][T15141] [ 610.821876][T15158] FAULT_INJECTION: forcing a failure. [ 610.821876][T15158] name failslab, interval 1, probability 0, space 0, times 0 [ 610.895277][T15158] CPU: 0 UID: 0 PID: 15158 Comm: syz.3.2603 Not tainted 6.17.0-rc1-syzkaller-00016-g8742b2d8935f #0 PREEMPT(full) [ 610.895304][T15158] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 610.895313][T15158] Call Trace: [ 610.895318][T15158] [ 610.895324][T15158] dump_stack_lvl+0x16c/0x1f0 [ 610.895349][T15158] should_fail_ex+0x512/0x640 [ 610.895370][T15158] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 610.895387][T15158] should_failslab+0xc2/0x120 [ 610.895407][T15158] __kmalloc_cache_noprof+0x6a/0x3e0 [ 610.895421][T15158] ? percpu_ref_init+0xec/0x410 [ 610.895440][T15158] ? __pfx_css_release+0x10/0x10 [ 610.895459][T15158] percpu_ref_init+0xec/0x410 [ 610.895475][T15158] ? init_and_link_css+0x32c/0x700 [ 610.895491][T15158] cgroup_apply_control_enable+0x50b/0xbb0 [ 610.895519][T15158] cgroup_mkdir+0x5e7/0x11f0 [ 610.895542][T15158] ? __pfx_cgroup_mkdir+0x10/0x10 [ 610.895563][T15158] kernfs_iop_mkdir+0x111/0x190 [ 610.895582][T15158] ? bpf_lsm_inode_mkdir+0x9/0x10 [ 610.895602][T15158] vfs_mkdir+0x590/0x8c0 [ 610.895618][T15158] do_mkdirat+0x304/0x3e0 [ 610.895636][T15158] ? __pfx_do_mkdirat+0x10/0x10 [ 610.895654][T15158] ? getname_flags.part.0+0x1c5/0x550 [ 610.895683][T15158] __x64_sys_mkdir+0xef/0x140 [ 610.895701][T15158] do_syscall_64+0xcd/0x490 [ 610.895720][T15158] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 610.895734][T15158] RIP: 0033:0x7f3f7c18ebe9 [ 610.895746][T15158] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 610.895760][T15158] RSP: 002b:00007f3f7d038038 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 610.895774][T15158] RAX: ffffffffffffffda RBX: 00007f3f7c3b5fa0 RCX: 00007f3f7c18ebe9 [ 610.895783][T15158] RDX: 0000000000000000 RSI: 00000000000008cd RDI: 0000200000000000 [ 610.895792][T15158] RBP: 00007f3f7c211e19 R08: 0000000000000000 R09: 0000000000000000 [ 610.895800][T15158] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 610.895809][T15158] R13: 00007f3f7c3b6038 R14: 00007f3f7c3b5fa0 R15: 00007ffdf4724ec8 [ 610.895829][T15158] [ 611.473578][ T9] ------------[ cut here ]------------ [ 611.479443][ T9] WARNING: CPU: 0 PID: 9 at kernel/cgroup/rstat.c:488 css_rstat_exit+0x368/0x470 [ 611.488632][ T9] Modules linked in: [ 611.492696][ T9] CPU: 0 UID: 0 PID: 9 Comm: kworker/0:0 Not tainted 6.17.0-rc1-syzkaller-00016-g8742b2d8935f #0 PREEMPT(full) [ 611.504653][ T9] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 611.514753][ T9] Workqueue: cgroup_destroy css_free_rwork_fn [ 611.521184][ T9] RIP: 0010:css_rstat_exit+0x368/0x470 [ 611.526767][ T9] Code: 00 00 00 fc ff df 48 c1 ea 03 80 3c 02 00 0f 85 0e 01 00 00 49 c7 85 70 05 00 00 00 00 00 00 e9 00 ff ff ff e8 19 08 07 00 90 <0f> 0b 90 e9 3e ff ff ff e8 0b 08 07 00 90 0f 0b 90 e9 30 ff ff ff [ 611.546659][ T9] RSP: 0018:ffffc900000e7bc0 EFLAGS: 00010293 [ 611.552801][ T9] RAX: 0000000000000000 RBX: ffff88814049ce00 RCX: ffff8881246c6000 [ 611.560815][ T9] RDX: ffff88801ce90000 RSI: ffffffff81b407a7 RDI: ffffffff8df57e60 [ 611.568935][ T9] RBP: ffff88814049ce08 R08: 0000000000000005 R09: 0000000000000007 [ 611.576949][ T9] R10: 0000000000000000 R11: 0000000000000000 R12: ffff88814049ce20 [ 611.584965][ T9] R13: 0000000000000000 R14: 0000000000000003 R15: dffffc0000000000 [ 611.592949][ T9] FS: 0000000000000000(0000) GS:ffff8881246c6000(0000) knlGS:0000000000000000 [ 611.601951][ T9] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 611.608672][ T9] CR2: 0000001b33111ff8 CR3: 00000000791dc000 CR4: 00000000003526f0 [ 611.616632][ T9] Call Trace: [ 611.619937][ T9] [ 611.623078][ T9] css_free_rwork_fn+0x80/0x12e0 [ 611.628046][ T9] ? rcu_is_watching+0x12/0xc0 [ 611.632800][ T9] process_one_work+0x9cc/0x1b70 [ 611.637777][ T9] ? __pfx_process_one_work+0x10/0x10 [ 611.643147][ T9] ? assign_work+0x1a0/0x250 [ 611.647760][ T9] worker_thread+0x6c8/0xf10 [ 611.652350][ T9] ? __pfx_worker_thread+0x10/0x10 [ 611.657485][ T9] kthread+0x3c5/0x780 [ 611.661547][ T9] ? __pfx_kthread+0x10/0x10 [ 611.666129][ T9] ? rcu_is_watching+0x12/0xc0 [ 611.671086][ T9] ? __pfx_kthread+0x10/0x10 [ 611.675683][ T9] ret_from_fork+0x5d4/0x6f0 [ 611.680339][ T9] ? __pfx_kthread+0x10/0x10 [ 611.685047][ T9] ret_from_fork_asm+0x1a/0x30 [ 611.689868][ T9] [ 611.692881][ T9] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 611.700166][ T9] CPU: 0 UID: 0 PID: 9 Comm: kworker/0:0 Not tainted 6.17.0-rc1-syzkaller-00016-g8742b2d8935f #0 PREEMPT(full) [ 611.712039][ T9] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 611.722091][ T9] Workqueue: cgroup_destroy css_free_rwork_fn [ 611.728153][ T9] Call Trace: [ 611.731414][ T9] [ 611.734329][ T9] dump_stack_lvl+0x3d/0x1f0 [ 611.738992][ T9] vpanic+0x6e8/0x7a0 [ 611.742979][ T9] ? __pfx_vpanic+0x10/0x10 [ 611.747473][ T9] ? css_rstat_exit+0x368/0x470 [ 611.752322][ T9] panic+0xca/0xd0 [ 611.756055][ T9] ? __pfx_panic+0x10/0x10 [ 611.760466][ T9] ? check_panic_on_warn+0x1f/0xb0 [ 611.765564][ T9] check_panic_on_warn+0xab/0xb0 [ 611.770508][ T9] __warn+0xf6/0x3c0 [ 611.774393][ T9] ? css_rstat_exit+0x368/0x470 [ 611.779226][ T9] report_bug+0x3c3/0x580 [ 611.783575][ T9] ? css_rstat_exit+0x368/0x470 [ 611.788408][ T9] handle_bug+0x184/0x210 [ 611.792725][ T9] exc_invalid_op+0x17/0x50 [ 611.797212][ T9] asm_exc_invalid_op+0x1a/0x20 [ 611.802155][ T9] RIP: 0010:css_rstat_exit+0x368/0x470 [ 611.807607][ T9] Code: 00 00 00 fc ff df 48 c1 ea 03 80 3c 02 00 0f 85 0e 01 00 00 49 c7 85 70 05 00 00 00 00 00 00 e9 00 ff ff ff e8 19 08 07 00 90 <0f> 0b 90 e9 3e ff ff ff e8 0b 08 07 00 90 0f 0b 90 e9 30 ff ff ff [ 611.827207][ T9] RSP: 0018:ffffc900000e7bc0 EFLAGS: 00010293 [ 611.833257][ T9] RAX: 0000000000000000 RBX: ffff88814049ce00 RCX: ffff8881246c6000 [ 611.841224][ T9] RDX: ffff88801ce90000 RSI: ffffffff81b407a7 RDI: ffffffff8df57e60 [ 611.849182][ T9] RBP: ffff88814049ce08 R08: 0000000000000005 R09: 0000000000000007 [ 611.857133][ T9] R10: 0000000000000000 R11: 0000000000000000 R12: ffff88814049ce20 [ 611.865256][ T9] R13: 0000000000000000 R14: 0000000000000003 R15: dffffc0000000000 [ 611.873213][ T9] ? css_rstat_exit+0x367/0x470 [ 611.878057][ T9] css_free_rwork_fn+0x80/0x12e0 [ 611.882994][ T9] ? rcu_is_watching+0x12/0xc0 [ 611.887859][ T9] process_one_work+0x9cc/0x1b70 [ 611.892811][ T9] ? __pfx_process_one_work+0x10/0x10 [ 611.898183][ T9] ? assign_work+0x1a0/0x250 [ 611.902774][ T9] worker_thread+0x6c8/0xf10 [ 611.907370][ T9] ? __pfx_worker_thread+0x10/0x10 [ 611.912487][ T9] kthread+0x3c5/0x780 [ 611.916564][ T9] ? __pfx_kthread+0x10/0x10 [ 611.921140][ T9] ? rcu_is_watching+0x12/0xc0 [ 611.925884][ T9] ? __pfx_kthread+0x10/0x10 [ 611.930460][ T9] ret_from_fork+0x5d4/0x6f0 [ 611.935038][ T9] ? __pfx_kthread+0x10/0x10 [ 611.939636][ T9] ret_from_fork_asm+0x1a/0x30 [ 611.944395][ T9] [ 611.947454][ T9] Kernel Offset: disabled [ 611.951763][ T9] Rebooting in 86400 seconds..