last executing test programs: 8.142394258s ago: executing program 2 (id=1897): openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0xea581, 0x0) r0 = socket(0x0, 0x6, 0x6) r1 = accept$auto(0x3, 0x0, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/cifs/Stats\x00', 0x28102, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0x10000eb1, 0xffffffffffffffff, 0x8000) adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x200000000, 0xfffdfffffffffffa, 0x1, 0x1, 0x6, 0x0, 0x7, 0x4ec4445, 0x2, {0x100000000, 0x5}, 0x5, 0x1, 0x10000000000009, 0x1008000, 0x0, 0x8, 0x81, 0xdfffffffffff6295, 0x10000000000406, 0x4, 0x808}) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D1\x00', 0x1, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0xa3db) r3 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(r3, r3, 0x2) landlock_create_ruleset$auto(&(0x7f0000000000)={0xd1d, 0x3, 0x7}, 0x9, 0x0) landlock_restrict_self$auto(r3, 0x1) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x441, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) statmount$auto(0x0, 0x0, 0x6, 0x1000000) bpf$auto(0x12, &(0x7f0000000040)=@link_detach, 0x26) syz_genetlink_get_family_id$auto_ila(&(0x7f0000000040), 0xffffffffffffffff) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000003c0)={'rose0\x00'}) sendmsg$auto_ETHTOOL_MSG_STATS_GET(0xffffffffffffffff, 0x0, 0x4) sendmsg$auto_TIPC_NL_SOCK_GET(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000005c0)={&(0x7f0000001ac0)=ANY=[@ANYBLOB="090000009184d0bcf66d2605836abdd14d9a00000024c640068cfe88d596816e1989ace8a502478761436cd5572f761442c13aa2a7e41398b8b575f375ffef1c49fba3dac50cddf87cd200d83c61de80c353ecbbe86b95fd239d29", @ANYRES16=0x0, @ANYBLOB="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", @ANYBLOB="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"], 0x12c4}, 0x1, 0x0, 0x0, 0x2400c008}, 0x4000000) madvise$auto(0x110c230000, 0x1, 0x9) openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0) open(&(0x7f0000000000)='./cgroup\x00', 0x80000, 0x61) sendmsg$auto_WG_CMD_GET_DEVICE(r1, &(0x7f00000003c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x14, 0x0, 0x100, 0x70bd2c, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x24000000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='./cgroup/cgroup.type\x00', 0x103042, 0x0) rmdir$auto(&(0x7f0000000300)='./cgroup\x00') poll$auto(&(0x7f0000000080)={r0, 0x9, 0x1816}, 0x1, 0x2) 6.930170039s ago: executing program 1 (id=1900): close_range$auto(0x2, 0x8, 0x0) openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x1000, 0x0) syz_clone(0x800000, 0x0, 0x0, 0x0, 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/platform/dummy_hcd.4/usb5/descriptors\x00', 0x18b940, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x7fffefff) read$auto(0x3, 0x0, 0x80) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000100)=ANY=[@ANYRES32=r0, @ANYRES32=r0, @ANYBLOB="01002dbd2eecf9dbdf25010000000600020000000000050007001000000094c7ea5c", @ANYRES32=r1, @ANYBLOB="08000a00020000000800090001000000"], 0x3c}, 0x1, 0x0, 0x0, 0x1}, 0x2400c004) close_range$auto(0x2, 0x8, 0x0) r2 = socket(0x1e, 0x4, 0x0) io_pgetevents$auto(0x7, 0x9, 0x7ff, 0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)={0x1}}) setsockopt$auto(0x3, 0x6b, 0x7, 0x0, 0x4) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/asound/card1/pcm1p/sub5/sw_params\x00', 0x8f3b7a51b8360c21, 0x0) mmap$auto(0x0, 0x20007, 0x4000000000df, 0xeb1, 0x401, 0xfffffffffffffffb) r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv6/conf/default/forwarding\x00', 0x141241, 0x0) pwrite64$auto(r3, &(0x7f0000000000)='./cgroup/memory.pressure\x00', 0x6bc, 0x5) readahead$auto(r2, 0x2, 0x7) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) init_module$auto(0x0, 0xffff9, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x8000000000000000, 0x15) madvise$auto(0x0, 0x2000000080000001, 0x3) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) semget$auto(0x0, 0x13c, 0x1ff) recvmmsg$auto(0xffffffffffffffff, &(0x7f00000001c0)={{0x0, 0x5, &(0x7f00000000c0)={0x0, 0x8001}, 0x400000000000002, 0x0, 0x5, 0x80000001}}, 0x3, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000200), 0xffffffffffffffff) 6.798721663s ago: executing program 2 (id=1902): openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x60201, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000) r0 = socket(0x1d, 0x80000, 0x0) sendmmsg$auto(r0, 0x0, 0x7, 0x8) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0x7, 0x0, 0x0, &(0x7f0000000380)={[0x9, 0x407, 0x9, 0xfffffffffffffffd, 0x948b, 0xfffffffffffffff8, 0x15f4da4a, 0x3, 0xffffffff80000001, 0x65, 0x2, 0x7, 0xfffffffffffffff9, 0x8000000009, 0x2, 0x40]}, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) r3 = getpid() process_vm_readv$auto(r3, &(0x7f00000002c0)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0) ioctl$auto(0x3, 0x400454ca, 0x38) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x400, 0x0) sysfs$auto(0x2, 0x2b, 0x0) r4 = fsopen$auto(0x0, 0x1) fsconfig$auto(r4, 0x8, 0x0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000340), r0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x1, 0x800, 0x3a) io_uring_setup$auto(0x6, 0x0) setsockopt$auto(0x400000000000003, 0x29, 0x24, 0x0, 0x40020000) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/018/001\x00', 0x802, 0x0) acct$auto(&(0x7f0000002a80)='/dev/binderfs/features/freeze_notification\x00') ioctl$auto_USBDEVFS_CONTROL(r2, 0xc0185500, &(0x7f0000000240)={0x23, 0x83, 0x14, 0x10, 0x8, 0x2, &(0x7f00000002c0)}) fsopen$auto(0x0, 0x1) capset$auto(&(0x7f0000000140)={0x8, r3}, &(0x7f0000000200)={0x100, 0x7, 0x2}) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x80502, 0x0) 6.481333333s ago: executing program 0 (id=1904): openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x60201, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000) r0 = socket(0x1d, 0x80000, 0x0) sendmmsg$auto(r0, 0x0, 0x7, 0x8) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0x7, 0x0, 0x0, &(0x7f0000000380)={[0x9, 0x407, 0x9, 0xfffffffffffffffd, 0x948b, 0xfffffffffffffff8, 0x15f4da4a, 0x3, 0xffffffff80000001, 0x65, 0x2, 0x7, 0xfffffffffffffff9, 0x8000000009, 0x2, 0x40]}, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) r3 = getpid() process_vm_readv$auto(r3, &(0x7f00000002c0)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0) ioctl$auto(0x3, 0x400454ca, 0x38) sysfs$auto(0x2, 0x2b, 0x0) r4 = fsopen$auto(0x0, 0x1) fsconfig$auto(r4, 0x8, 0x0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000340), r0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x1, 0x800, 0x3a) io_uring_setup$auto(0x6, 0x0) setsockopt$auto(0x400000000000003, 0x29, 0x24, 0x0, 0x40020000) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/018/001\x00', 0x802, 0x0) acct$auto(&(0x7f0000002a80)='/dev/binderfs/features/freeze_notification\x00') ioctl$auto_USBDEVFS_CONTROL(r2, 0xc0185500, &(0x7f0000000240)={0x23, 0x83, 0x14, 0x10, 0x8, 0x2, &(0x7f00000002c0)}) fsopen$auto(0x0, 0x1) capset$auto(&(0x7f0000000140)={0x8, r3}, &(0x7f0000000200)={0x100, 0x7, 0x2}) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x80502, 0x0) 6.476258867s ago: executing program 3 (id=1905): socket(0xa, 0x1, 0x100) pread64$auto(0xffffffffffffffff, 0x0, 0x7ff, 0x400) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socketcall$auto_SYS_SOCKET(0x1, &(0x7f0000000280)=0xfffffffffffffffd) socket(0x2, 0x80002, 0x73) read$auto_proc_iter_file_ops_compat_inode(0xffffffffffffffff, &(0x7f0000000180)=""/248, 0xf8) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000001140)='/proc/self/oom_adj\x00', 0x8042, 0x0) openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) mmap$auto(0x0, 0x810004, 0xfff, 0x8000000008012, 0x3, 0x8000) write$auto(0x3, 0x0, 0xfffffdef) 5.343376885s ago: executing program 3 (id=1906): unshare$auto(0x40000080) socket(0x1e, 0x1, 0x0) r0 = openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, &(0x7f0000000500)='/dev/cpu/0/cpuid\x00', 0x101500, 0x0) readv$auto(r0, 0x0, 0x6) r1 = openat$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/ieee80211/phy7/queues\x00', 0x20000, 0x0) read$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(r1, 0x0, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x8000000003, 0xeb1, 0xfffffffffffffffa, 0x8000) open(0x0, 0x4242, 0xe1d2b27bdc14aabc) syz_open_procfs$namespace(0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0101, 0x15) mbind$auto(0xf4000000, 0x2, 0x2, &(0x7f0000002100)=0x4, 0x7, 0x0) mmap$auto(0x0, 0xf92e, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv6/conf/bond_slave_1/disable_policy\x00', 0x202, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/platform/vhci_hcd.11/usb32/32-0:1.0/usb32-port6/power/autosuspend_delay_ms\x00', 0x8000, 0x0) madvise$auto(0x0, 0xffffffffffff0009, 0x13) unshare$auto(0x40000080) (async) socket(0x1e, 0x1, 0x0) (async) openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, &(0x7f0000000500)='/dev/cpu/0/cpuid\x00', 0x101500, 0x0) (async) readv$auto(r0, 0x0, 0x6) (async) openat$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/ieee80211/phy7/queues\x00', 0x20000, 0x0) (async) read$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(r1, 0x0, 0x0) (async) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) (async) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async) mmap$auto(0x0, 0x2020009, 0x8000000003, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) open(0x0, 0x4242, 0xe1d2b27bdc14aabc) (async) syz_open_procfs$namespace(0x0, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) madvise$auto(0x0, 0xffffffffffff0101, 0x15) (async) mbind$auto(0xf4000000, 0x2, 0x2, &(0x7f0000002100)=0x4, 0x7, 0x0) (async) mmap$auto(0x0, 0xf92e, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000) (async) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv6/conf/bond_slave_1/disable_policy\x00', 0x202, 0x0) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/platform/vhci_hcd.11/usb32/32-0:1.0/usb32-port6/power/autosuspend_delay_ms\x00', 0x8000, 0x0) (async) madvise$auto(0x0, 0xffffffffffff0009, 0x13) (async) 5.241769912s ago: executing program 2 (id=1907): openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x60201, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000) r0 = socket(0x1d, 0x80000, 0x0) sendmmsg$auto(r0, 0x0, 0x7, 0x8) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0x7, 0x0, 0x0, &(0x7f0000000380)={[0x9, 0x407, 0x9, 0xfffffffffffffffd, 0x948b, 0xfffffffffffffff8, 0x15f4da4a, 0x3, 0xffffffff80000001, 0x65, 0x2, 0x7, 0xfffffffffffffff9, 0x8000000009, 0x2, 0x40]}, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) r3 = getpid() process_vm_readv$auto(r3, &(0x7f00000002c0)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0) ioctl$auto(0x3, 0x400454ca, 0x38) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x400, 0x0) mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000) sysfs$auto(0x2, 0x2b, 0x0) r4 = fsopen$auto(0x0, 0x1) fsconfig$auto(r4, 0x8, 0x0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000340), r0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x1, 0x800, 0x3a) io_uring_setup$auto(0x6, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/018/001\x00', 0x802, 0x0) acct$auto(&(0x7f0000002a80)='/dev/binderfs/features/freeze_notification\x00') ioctl$auto_USBDEVFS_CONTROL(r2, 0xc0185500, &(0x7f0000000240)={0x23, 0x83, 0x14, 0x10, 0x8, 0x2, &(0x7f00000002c0)}) fsopen$auto(0x0, 0x1) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x80502, 0x0) 5.019296028s ago: executing program 0 (id=1908): socket(0xa, 0x1, 0x100) pread64$auto(0xffffffffffffffff, 0x0, 0x7ff, 0x400) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socketcall$auto_SYS_SOCKET(0x1, &(0x7f0000000280)=0xfffffffffffffffd) socket(0x2, 0x80002, 0x73) read$auto_proc_iter_file_ops_compat_inode(0xffffffffffffffff, &(0x7f0000000180)=""/248, 0xf8) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000001140)='/proc/self/oom_adj\x00', 0x8042, 0x0) openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xfffffff7, 0x0, 0x0, &(0x7f00000002c0)={[0x3fdafc8, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x64, 0x8000001f, 0x7, 0x46d3e, 0xc, 0x10000, 0x6]}, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) mmap$auto(0x0, 0x810004, 0xfff, 0x8000000008012, 0x3, 0x8000) write$auto(0x3, 0x0, 0xfffffdef) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000001380)=""/134, 0x86) open_tree_attr$auto(r1, &(0x7f0000000040)='./file0\x00', 0x8c02, &(0x7f0000000080)={0x1, 0x3, 0x7, @raw=0x5}, 0xfffffffffffffc0f) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x403, 0x8000) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS0\x00', 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) read$auto_l2cap_debugfs_fops_(r1, &(0x7f0000000340)=""/104, 0x68) open(&(0x7f0000000100)='.\x00', 0x40000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8000, 0x0) 4.874002362s ago: executing program 1 (id=1909): openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x60201, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000) r0 = socket(0x1d, 0x80000, 0x0) sendmmsg$auto(r0, 0x0, 0x7, 0x8) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0x7, 0x0, 0x0, &(0x7f0000000380)={[0x9, 0x407, 0x9, 0xfffffffffffffffd, 0x948b, 0xfffffffffffffff8, 0x15f4da4a, 0x3, 0xffffffff80000001, 0x65, 0x2, 0x7, 0xfffffffffffffff9, 0x8000000009, 0x2, 0x40]}, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) r3 = getpid() process_vm_readv$auto(r3, &(0x7f00000002c0)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0) ioctl$auto(0x3, 0x400454ca, 0x38) mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000) sysfs$auto(0x2, 0x2b, 0x0) r4 = fsopen$auto(0x0, 0x1) fsconfig$auto(r4, 0x8, 0x0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000340), r0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x1, 0x800, 0x3a) io_uring_setup$auto(0x6, 0x0) setsockopt$auto(0x400000000000003, 0x29, 0x24, 0x0, 0x40020000) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/018/001\x00', 0x802, 0x0) acct$auto(&(0x7f0000002a80)='/dev/binderfs/features/freeze_notification\x00') ioctl$auto_USBDEVFS_CONTROL(r2, 0xc0185500, &(0x7f0000000240)={0x23, 0x83, 0x14, 0x10, 0x8, 0x2, &(0x7f00000002c0)}) fsopen$auto(0x0, 0x1) capset$auto(&(0x7f0000000140)={0x8, r3}, &(0x7f0000000200)={0x100, 0x7, 0x2}) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x80502, 0x0) 4.165982007s ago: executing program 2 (id=1910): openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x60201, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000) r0 = socket(0x1d, 0x80000, 0x0) sendmmsg$auto(r0, 0x0, 0x7, 0x8) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0x7, 0x0, 0x0, &(0x7f0000000380)={[0x9, 0x407, 0x9, 0xfffffffffffffffd, 0x948b, 0xfffffffffffffff8, 0x15f4da4a, 0x3, 0xffffffff80000001, 0x65, 0x2, 0x7, 0xfffffffffffffff9, 0x8000000009, 0x2, 0x40]}, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) r3 = getpid() process_vm_readv$auto(r3, &(0x7f00000002c0)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0) ioctl$auto(0x3, 0x400454ca, 0x38) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x400, 0x0) mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000) sysfs$auto(0x2, 0x2b, 0x0) r4 = fsopen$auto(0x0, 0x1) fsconfig$auto(r4, 0x8, 0x0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000340), r0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x1, 0x800, 0x3a) io_uring_setup$auto(0x6, 0x0) setsockopt$auto(0x400000000000003, 0x29, 0x24, 0x0, 0x40020000) acct$auto(&(0x7f0000002a80)='/dev/binderfs/features/freeze_notification\x00') ioctl$auto_USBDEVFS_CONTROL(r2, 0xc0185500, &(0x7f0000000240)={0x23, 0x83, 0x14, 0x10, 0x8, 0x2, &(0x7f00000002c0)}) fsopen$auto(0x0, 0x1) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x80502, 0x0) 3.686476456s ago: executing program 1 (id=1911): openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x60201, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000) r0 = socket(0x1d, 0x80000, 0x0) sendmmsg$auto(r0, 0x0, 0x7, 0x8) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0x7, 0x0, 0x0, &(0x7f0000000380)={[0x9, 0x407, 0x9, 0xfffffffffffffffd, 0x948b, 0xfffffffffffffff8, 0x15f4da4a, 0x3, 0xffffffff80000001, 0x65, 0x2, 0x7, 0xfffffffffffffff9, 0x8000000009, 0x2, 0x40]}, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) r3 = getpid() ioctl$auto(0x3, 0x400454ca, 0x38) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x400, 0x0) sysfs$auto(0x2, 0x2b, 0x0) r4 = fsopen$auto(0x0, 0x1) fsconfig$auto(r4, 0x8, 0x0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000340), r0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x1, 0x800, 0x3a) io_uring_setup$auto(0x6, 0x0) setsockopt$auto(0x400000000000003, 0x29, 0x24, 0x0, 0x40020000) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/018/001\x00', 0x802, 0x0) acct$auto(&(0x7f0000002a80)='/dev/binderfs/features/freeze_notification\x00') ioctl$auto_USBDEVFS_CONTROL(r2, 0xc0185500, &(0x7f0000000240)={0x23, 0x83, 0x14, 0x10, 0x8, 0x2, &(0x7f00000002c0)}) fsopen$auto(0x0, 0x1) capset$auto(&(0x7f0000000140)={0x8, r3}, &(0x7f0000000200)={0x100, 0x7, 0x2}) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x80502, 0x0) 3.087780466s ago: executing program 0 (id=1912): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x20007, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) r0 = socket(0x80000000000000a, 0x2, 0x0) socket(0xa, 0x801, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) mmap$auto(0x0, 0x428, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x0, 0xffffeffe, 0x2) io_uring_setup$auto(0x7, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio\x00', 0x181902, 0x0) io_uring_setup$auto(0x6, 0x0) mbind$auto(0x5, 0x111f, 0x28, &(0x7f0000000180)=0x13fffffff, 0xfffffffffffffffc, 0x3f) io_uring_register$auto(0x2, 0x1e, &(0x7f0000000180), 0x1) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x11}}, 0x54) close_range$auto(0x2, 0x8000, 0x0) socket(0x2, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x301001, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x80, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r0) ioctl$auto_KVM_CREATE_VM(r1, 0x4138ae84, 0x0) r3 = socket(0x10, 0x3, 0x9) write$auto(r3, 0x0, 0x5) 2.788706742s ago: executing program 2 (id=1913): openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x60201, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000) r0 = socket(0x1d, 0x80000, 0x0) sendmmsg$auto(r0, 0x0, 0x7, 0x8) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0x7, 0x0, 0x0, &(0x7f0000000380)={[0x9, 0x407, 0x9, 0xfffffffffffffffd, 0x948b, 0xfffffffffffffff8, 0x15f4da4a, 0x3, 0xffffffff80000001, 0x65, 0x2, 0x7, 0xfffffffffffffff9, 0x8000000009, 0x2, 0x40]}, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) r3 = getpid() process_vm_readv$auto(r3, &(0x7f00000002c0)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x400, 0x0) mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000) sysfs$auto(0x2, 0x2b, 0x0) r4 = fsopen$auto(0x0, 0x1) fsconfig$auto(r4, 0x8, 0x0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000340), r0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x1, 0x800, 0x3a) io_uring_setup$auto(0x6, 0x0) setsockopt$auto(0x400000000000003, 0x29, 0x24, 0x0, 0x40020000) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/018/001\x00', 0x802, 0x0) acct$auto(&(0x7f0000002a80)='/dev/binderfs/features/freeze_notification\x00') ioctl$auto_USBDEVFS_CONTROL(r2, 0xc0185500, &(0x7f0000000240)={0x23, 0x83, 0x14, 0x10, 0x8, 0x2, &(0x7f00000002c0)}) fsopen$auto(0x0, 0x1) capset$auto(&(0x7f0000000140)={0x8, r3}, &(0x7f0000000200)={0x100, 0x7, 0x2}) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x80502, 0x0) 2.661287109s ago: executing program 0 (id=1914): mmap$auto(0x0, 0x20009, 0x0, 0x100000eb3, 0x40000000000a1, 0x8000) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x20800, 0x0) fcntl$auto(0x3, 0x4, 0xa553) r1 = openat$auto_tomoyo_self_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000040), 0x8402, 0x0) ioctl$auto_FS_IOC_GETFSSYSFSPATH(r1, 0x80811501, 0x1) ioctl$auto_TIOCSTI2(r0, 0x5412, &(0x7f0000000040)) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) unshare$auto(0x40000080) keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff) close_range$auto(0x0, r1, 0x9) pread64$auto(0xffffffffffffffff, 0x0, 0x34b, 0x10000) mremap$auto(0x0, 0x1a, 0x2000000003fd7, 0xfffffffffffffffa, 0xfffffffffffffffd) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x801, 0x106) ioctl$auto_BLKTRACETEARDOWN(0xffffffffffffffff, 0x1276, 0x0) ioctl$auto(0xffffffffffffffff, 0x540a, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) process_madvise$auto_PIDFD_SELF_THREAD(0xffffffffffffd8f0, 0x0, 0x0, 0xdec, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/fs/ocfs2/cluster_stack\x00', 0x88282, 0x0) sendfile$auto(r2, r2, 0x0, 0x71) 2.602255714s ago: executing program 3 (id=1915): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ethtool(0x0, r0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'veth0\x00', 0x0}) sendmsg$auto_ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f0000000380)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000340)={&(0x7f0000000180)=ANY=[@ANYBLOB="8401", @ANYRES16=r1, @ANYBLOB="000225bd70e5fedbdf25140000003c00018008000300ffffffff08000100", @ANYRES32=r2, @ANYBLOB="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"], 0x184}, 0x1, 0x0, 0x0, 0x8004}, 0x4000) r3 = syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000000100), 0xffffffffffffffff) sendmsg$auto_SMC_PNETID_GET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r3, 0x321, 0x70bd29, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x4804) 2.551489949s ago: executing program 1 (id=1916): r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/net/ip6_mr_cache\x00', 0x1900, 0x0) pread64$auto(r0, 0x0, 0xe, 0x100000000007) mmap$auto(0x0, 0x400008, 0x5f, 0x9b72, 0x2, 0x8000) mlock$auto(0xfbe7, 0x10002) madvise$auto(0x2, 0x87fff, 0x9) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000001640), r2) sendmsg$auto_NL802154_CMD_SET_CCA_MODE(r2, &(0x7f0000001f40)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000}, 0x0) setuid$auto(0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) move_pages$auto(r4, 0x1002, 0x0, 0x0, 0x0, 0x2) mmap$auto(0x0, 0x2020009, 0xb, 0xeb1, 0xfffffffffffffffa, 0x6) close_range$auto(0x2, 0x8000, 0x0) io_uring_setup$auto(0x1, 0x0) io_uring_register$auto(0x2, 0x2, &(0x7f0000000040), 0x86) io_uring_register$auto(0x2, 0x6, &(0x7f0000000180), 0x86) r5 = getpid() kcmp$auto(r4, r5, 0x7, 0xffffffffffffffff, r3) syz_genetlink_get_family_id$auto_nfc(&(0x7f00000017c0), r2) mmap$auto(0x0, 0x5, 0xfffffffffffffffe, 0xefb4, r1, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x8f3b7a51b8162d21, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000800)='/sys/devices/virtual/bdi/43:384/max_bytes\x00', 0x181482, 0x0) adjtimex$auto(0x0) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x3, 0x8, 0xdf, 0x2eb1, 0x401, 0x7ffc) madvise$auto(0x0, 0xb4d8, 0x10000) 2.478176817s ago: executing program 3 (id=1917): openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x60201, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000) r0 = socket(0x1d, 0x80000, 0x0) sendmmsg$auto(r0, 0x0, 0x7, 0x8) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0x7, 0x0, 0x0, &(0x7f0000000380)={[0x9, 0x407, 0x9, 0xfffffffffffffffd, 0x948b, 0xfffffffffffffff8, 0x15f4da4a, 0x3, 0xffffffff80000001, 0x65, 0x2, 0x7, 0xfffffffffffffff9, 0x8000000009, 0x2, 0x40]}, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) r3 = getpid() process_vm_readv$auto(r3, &(0x7f00000002c0)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0) ioctl$auto(0x3, 0x400454ca, 0x38) sysfs$auto(0x2, 0x2b, 0x0) r4 = fsopen$auto(0x0, 0x1) fsconfig$auto(r4, 0x8, 0x0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000340), r0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x1, 0x800, 0x3a) io_uring_setup$auto(0x6, 0x0) setsockopt$auto(0x400000000000003, 0x29, 0x24, 0x0, 0x40020000) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/018/001\x00', 0x802, 0x0) acct$auto(&(0x7f0000002a80)='/dev/binderfs/features/freeze_notification\x00') ioctl$auto_USBDEVFS_CONTROL(r2, 0xc0185500, &(0x7f0000000240)={0x23, 0x83, 0x14, 0x10, 0x8, 0x2, &(0x7f00000002c0)}) fsopen$auto(0x0, 0x1) capset$auto(&(0x7f0000000140)={0x8, r3}, &(0x7f0000000200)={0x100, 0x7, 0x2}) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x80502, 0x0) 1.793011004s ago: executing program 1 (id=1918): openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x60201, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000) r0 = socket(0x1d, 0x80000, 0x0) sendmmsg$auto(r0, 0x0, 0x7, 0x8) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0x7, 0x0, 0x0, &(0x7f0000000380)={[0x9, 0x407, 0x9, 0xfffffffffffffffd, 0x948b, 0xfffffffffffffff8, 0x15f4da4a, 0x3, 0xffffffff80000001, 0x65, 0x2, 0x7, 0xfffffffffffffff9, 0x8000000009, 0x2, 0x40]}, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) r3 = getpid() process_vm_readv$auto(r3, &(0x7f00000002c0)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0) ioctl$auto(0x3, 0x400454ca, 0x38) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x400, 0x0) mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000) sysfs$auto(0x2, 0x2b, 0x0) r4 = fsopen$auto(0x0, 0x1) fsconfig$auto(r4, 0x8, 0x0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000340), r0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x1, 0x800, 0x3a) io_uring_setup$auto(0x6, 0x0) setsockopt$auto(0x400000000000003, 0x29, 0x24, 0x0, 0x40020000) acct$auto(&(0x7f0000002a80)='/dev/binderfs/features/freeze_notification\x00') ioctl$auto_USBDEVFS_CONTROL(r2, 0xc0185500, &(0x7f0000000240)={0x23, 0x83, 0x14, 0x10, 0x8, 0x2, &(0x7f00000002c0)}) fsopen$auto(0x0, 0x1) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x80502, 0x0) 1.696876929s ago: executing program 0 (id=1919): socket(0xa, 0x1, 0x100) pread64$auto(0xffffffffffffffff, 0x0, 0x7ff, 0x400) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socketcall$auto_SYS_SOCKET(0x1, &(0x7f0000000280)=0xfffffffffffffffd) socket(0x2, 0x80002, 0x73) read$auto_proc_iter_file_ops_compat_inode(0xffffffffffffffff, &(0x7f0000000180)=""/248, 0xf8) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000001140)='/proc/self/oom_adj\x00', 0x8042, 0x0) openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xfffffff7, 0x0, 0x0, &(0x7f00000002c0)={[0x3fdafc8, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x64, 0x8000001f, 0x7, 0x46d3e, 0xc, 0x10000, 0x6]}, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) mmap$auto(0x0, 0x810004, 0xfff, 0x8000000008012, 0x3, 0x8000) write$auto(0x3, 0x0, 0xfffffdef) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000001380)=""/134, 0x86) open_tree_attr$auto(r1, &(0x7f0000000040)='./file0\x00', 0x8c02, &(0x7f0000000080)={0x1, 0x3, 0x7, @raw=0x5}, 0xfffffffffffffc0f) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x403, 0x8000) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS0\x00', 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) read$auto_l2cap_debugfs_fops_(r1, &(0x7f0000000340)=""/104, 0x68) open(&(0x7f0000000100)='.\x00', 0x40000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8000, 0x0) 1.60224148s ago: executing program 2 (id=1920): socket(0xa, 0x1, 0x100) pread64$auto(0xffffffffffffffff, 0x0, 0x7ff, 0x400) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socketcall$auto_SYS_SOCKET(0x1, &(0x7f0000000280)=0xfffffffffffffffd) socket(0x2, 0x80002, 0x73) read$auto_proc_iter_file_ops_compat_inode(0xffffffffffffffff, &(0x7f0000000180)=""/248, 0xf8) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000001140)='/proc/self/oom_adj\x00', 0x8042, 0x0) openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xfffffff7, 0x0, 0x0, &(0x7f00000002c0)={[0x3fdafc8, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x64, 0x8000001f, 0x7, 0x46d3e, 0xc, 0x10000, 0x6]}, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) mmap$auto(0x0, 0x810004, 0xfff, 0x8000000008012, 0x3, 0x8000) write$auto(0x3, 0x0, 0xfffffdef) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000001380)=""/134, 0x86) open_tree_attr$auto(r1, &(0x7f0000000040)='./file0\x00', 0x8c02, &(0x7f0000000080)={0x1, 0x3, 0x7, @raw=0x5}, 0xfffffffffffffc0f) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x403, 0x8000) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS0\x00', 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) read$auto_l2cap_debugfs_fops_(r1, &(0x7f0000000340)=""/104, 0x68) open(&(0x7f0000000100)='.\x00', 0x40000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8000, 0x0) 1.104285727s ago: executing program 3 (id=1921): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x20001, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r1 = setfsuid$auto(0xee00) setresuid$auto(r1, 0x0, r1) write$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000000)="b2", 0x1) 684.608302ms ago: executing program 3 (id=1922): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) r0 = open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14aab4) flock$auto(r0, 0x1) read$auto_urandom_fops_random(r0, &(0x7f0000000540)=""/4096, 0x1000) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/block/ram12/queue/read_ahead_kb\x00', 0x80000, 0x0) read$auto(r1, 0x0, 0xd13d) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) mmap$auto(0x0, 0x3, 0xb, 0x55becab1, 0x5, 0x0) mmap$auto(0x0, 0xf2, 0xdf, 0xeb1, 0xf6f6, 0x8000) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r3, 0x0, 0x20) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/virtual/tty/ttyud/power/runtime_active_time\x00', 0x0, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x171e02, 0x0) ppoll$auto(&(0x7f0000000040)={r3, 0x2}, 0x10, &(0x7f00000000c0)={0x7, 0x65a29aea}, &(0x7f0000000100)={0x4}, 0x8) openat$auto_state_fops_(0xffffffffffffff9c, 0x0, 0x450003, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000340)=ANY=[@ANYBLOB="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", @ANYRES16=r5, @ANYBLOB="1b0026bd7000fddbdf25030000002c00038028000180240006801d0074804cfe4d8088a8d00088a80000040003002a9d272f66040033800000000400038004000280"], 0x48}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) r6 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/virt_wifi0/router_solicitations\x00', 0x101202, 0x0) r7 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/neigh/veth0_to_bridge/interval_probe_time_ms\x00', 0x202, 0x0) sendfile$auto(r7, r6, 0x0, 0x48) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv6/conf/veth0/accept_ra_pinfo\x00', 0x2000, 0x0) sysfs$auto(0x2, 0x11, 0x0) fsopen$auto(0x0, 0x1) io_uring_setup$auto(0x4, 0x0) r8 = openat$auto_force_devcoredump_fops_hci_vhci(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/bluetooth/hci0/force_devcoredump\x00', 0x2, 0x0) write$auto(r8, 0x0, 0xe) 4.682742ms ago: executing program 0 (id=1923): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x20007, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) r0 = socket(0x80000000000000a, 0x2, 0x0) socket(0xa, 0x801, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) mmap$auto(0x0, 0x428, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x0, 0xffffeffe, 0x2) io_uring_setup$auto(0x7, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio\x00', 0x181902, 0x0) io_uring_setup$auto(0x6, 0x0) mbind$auto(0x5, 0x111f, 0x28, &(0x7f0000000180)=0x13fffffff, 0xfffffffffffffffc, 0x3f) io_uring_register$auto(0x2, 0x1e, &(0x7f0000000180), 0x1) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x11}}, 0x54) close_range$auto(0x2, 0x8000, 0x0) socket(0x2, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x301001, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x80, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r0) ioctl$auto_KVM_CREATE_VM(r1, 0x4138ae84, 0x0) r3 = socket(0x10, 0x3, 0x9) write$auto(r3, 0x0, 0x5) 0s ago: executing program 1 (id=1924): openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x60201, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000) r0 = socket(0x1d, 0x80000, 0x0) sendmmsg$auto(r0, 0x0, 0x7, 0x8) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0x7, 0x0, 0x0, &(0x7f0000000380)={[0x9, 0x407, 0x9, 0xfffffffffffffffd, 0x948b, 0xfffffffffffffff8, 0x15f4da4a, 0x3, 0xffffffff80000001, 0x65, 0x2, 0x7, 0xfffffffffffffff9, 0x8000000009, 0x2, 0x40]}, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) r3 = getpid() ioctl$auto(0x3, 0x400454ca, 0x38) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x400, 0x0) sysfs$auto(0x2, 0x2b, 0x0) r4 = fsopen$auto(0x0, 0x1) fsconfig$auto(r4, 0x8, 0x0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000340), r0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x1, 0x800, 0x3a) io_uring_setup$auto(0x6, 0x0) setsockopt$auto(0x400000000000003, 0x29, 0x24, 0x0, 0x40020000) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/018/001\x00', 0x802, 0x0) acct$auto(&(0x7f0000002a80)='/dev/binderfs/features/freeze_notification\x00') ioctl$auto_USBDEVFS_CONTROL(r2, 0xc0185500, &(0x7f0000000240)={0x23, 0x83, 0x14, 0x10, 0x8, 0x2, &(0x7f00000002c0)}) fsopen$auto(0x0, 0x1) capset$auto(&(0x7f0000000140)={0x8, r3}, &(0x7f0000000200)={0x100, 0x7, 0x2}) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x80502, 0x0) kernel console output (not intermixed with test programs): rdirqs_on+0x7c/0x110 [ 289.037641][ T8705] do_vmi_align_munmap+0x27c/0x7d0 [ 289.037684][ T8705] ? __pfx_do_vmi_align_munmap+0x10/0x10 [ 289.037776][ T8705] do_vmi_munmap+0x204/0x3e0 [ 289.037818][ T8705] move_vma+0x809/0x1740 [ 289.037861][ T8705] ? __pfx_move_vma+0x10/0x10 [ 289.037892][ T8705] ? mm_get_unmapped_area+0x95/0xe0 [ 289.037940][ T8705] ? shmem_get_unmapped_area+0x170/0xa00 [ 289.038005][ T8705] ? vrm_set_new_addr+0x208/0x290 [ 289.038042][ T8705] __do_sys_mremap+0xe07/0x1590 [ 289.038082][ T8705] ? __pfx___do_sys_mremap+0x10/0x10 [ 289.038140][ T8705] ? __x64_sys_futex+0x1e0/0x4c0 [ 289.038206][ T8705] do_syscall_64+0xcd/0x490 [ 289.038250][ T8705] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 289.038282][ T8705] RIP: 0033:0x7f57ccb8e9a9 [ 289.038307][ T8705] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 289.038339][ T8705] RSP: 002b:00007f57ca591038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019 [ 289.038368][ T8705] RAX: ffffffffffffffda RBX: 00007f57ccdb6240 RCX: 00007f57ccb8e9a9 [ 289.038388][ T8705] RDX: 0000000000000008 RSI: 0000000000000002 RDI: 0000000000000000 [ 289.038407][ T8705] RBP: 00007f57ccc10d69 R08: 00007effffffb000 R09: 0000000000000000 [ 289.038426][ T8705] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 289.038444][ T8705] R13: 0000000000000000 R14: 00007f57ccdb6240 R15: 00007ffe20fb4168 [ 289.038484][ T8705] [ 289.624841][ T7310] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 289.837445][ T7310] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 290.018009][ T7310] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 290.382705][ T7310] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 290.558214][ T5166] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 290.568547][ T5166] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 290.576994][ T5166] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 290.589229][ T5166] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 290.597736][ T5166] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 291.008994][ T7310] bridge_slave_1: left allmulticast mode [ 291.085681][ T7310] bridge_slave_1: left promiscuous mode [ 291.093171][ T7310] bridge0: port 2(bridge_slave_1) entered disabled state [ 291.468975][ T7310] bridge_slave_0: left allmulticast mode [ 291.491642][ T7310] bridge_slave_0: left promiscuous mode [ 291.540654][ T7310] bridge0: port 1(bridge_slave_0) entered disabled state [ 292.663810][ T5166] Bluetooth: hci2: command tx timeout syzkaller syzkaller login: [ 293.425289][ T7310] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 293.544863][ T7310] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 293.564621][ T7310] bond0 (unregistering): Released all slaves [ 294.039056][ T8773] FAULT_INJECTION: forcing a failure. [ 294.039056][ T8773] name failslab, interval 1, probability 0, space 0, times 0 [ 294.066064][ T8773] CPU: 1 UID: 0 PID: 8773 Comm: syz.3.587 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) [ 294.066108][ T8773] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 294.066125][ T8773] Call Trace: [ 294.066136][ T8773] [ 294.066161][ T8773] dump_stack_lvl+0x16c/0x1f0 [ 294.066215][ T8773] should_fail_ex+0x512/0x640 [ 294.066258][ T8773] ? kmem_cache_alloc_bulk_noprof+0x6d/0xbc0 [ 294.066293][ T8773] should_failslab+0xc2/0x120 [ 294.066338][ T8773] kmem_cache_alloc_bulk_noprof+0x85/0xbc0 [ 294.066378][ T8773] ? trace_kmem_cache_alloc+0x28/0xc0 [ 294.066414][ T8773] ? kmem_cache_alloc_noprof+0x21e/0x3b0 [ 294.066445][ T8773] ? mas_alloc_nodes+0x18b/0x8b0 [ 294.066481][ T8773] ? mas_alloc_nodes+0x2f1/0x8b0 [ 294.066510][ T8773] mas_alloc_nodes+0x2f1/0x8b0 [ 294.066549][ T8773] mas_node_count_gfp+0x105/0x130 [ 294.066586][ T8773] mas_preallocate+0x7e0/0xde0 [ 294.066634][ T8773] ? __pfx_mas_preallocate+0x10/0x10 [ 294.066688][ T8773] ? rcu_read_unlock+0x17/0x60 [ 294.066738][ T8773] vma_link+0x135/0x6a0 [ 294.066775][ T8773] ? __pfx_vma_link+0x10/0x10 [ 294.066807][ T8773] ? rcu_is_watching+0x12/0xc0 [ 294.066844][ T8773] ? anon_vma_clone+0x405/0x5c0 [ 294.066870][ T8773] ? anon_vma_name+0x75/0x100 [ 294.066919][ T8773] copy_vma+0x6c2/0xaa0 [ 294.066955][ T8773] ? __pfx_copy_vma+0x10/0x10 [ 294.066989][ T8773] ? lockdep_hardirqs_on+0x7c/0x110 [ 294.067039][ T8773] ? register_lock_class+0x41/0x4c0 [ 294.067087][ T8773] ? __schedule+0x1181/0x5dd0 [ 294.067140][ T8773] ? __lock_acquire+0x622/0x1c90 [ 294.067196][ T8773] copy_vma_and_data+0x1cf/0x750 [ 294.067237][ T8773] ? __pfx_copy_vma_and_data+0x10/0x10 [ 294.067284][ T8773] ? __vma_enter_locked+0x163/0x3f0 [ 294.067321][ T8773] ? find_held_lock+0x2b/0x80 [ 294.067368][ T8773] ? move_vma+0x536/0x1740 [ 294.067413][ T8773] move_vma+0x548/0x1740 [ 294.067455][ T8773] ? __pfx_move_vma+0x10/0x10 [ 294.067490][ T8773] ? mm_get_unmapped_area+0x95/0xe0 [ 294.067542][ T8773] ? shmem_get_unmapped_area+0x170/0xa00 [ 294.067624][ T8773] ? cap_mmap_addr+0x4b/0x120 [ 294.067666][ T8773] ? bpf_lsm_mmap_addr+0x9/0x10 [ 294.067721][ T8773] ? security_mmap_addr+0x6c/0x1e0 [ 294.067753][ T8773] ? __get_unmapped_area+0x267/0x440 [ 294.067806][ T8773] ? vrm_set_new_addr+0x208/0x290 [ 294.067845][ T8773] __do_sys_mremap+0xe07/0x1590 [ 294.067886][ T8773] ? __pfx___do_sys_mremap+0x10/0x10 [ 294.067946][ T8773] ? __x64_sys_futex+0x1e0/0x4c0 [ 294.068016][ T8773] do_syscall_64+0xcd/0x490 [ 294.068064][ T8773] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 294.068097][ T8773] RIP: 0033:0x7fd178d8e9a9 [ 294.068123][ T8773] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 294.068154][ T8773] RSP: 002b:00007fd179b6e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019 [ 294.068182][ T8773] RAX: ffffffffffffffda RBX: 00007fd178fb6240 RCX: 00007fd178d8e9a9 [ 294.068202][ T8773] RDX: 0000000000000008 RSI: 0000000000000002 RDI: 0000000000000000 [ 294.068218][ T8773] RBP: 00007fd178e10d69 R08: 00007effffffb000 R09: 0000000000000000 [ 294.068238][ T8773] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 294.068257][ T8773] R13: 0000000000000000 R14: 00007fd178fb6240 R15: 00007ffe934bffa8 [ 294.068298][ T8773] syzkaller syzkaller login: [ 294.689926][ T7310] hsr_slave_0: left promiscuous mode [ 294.698919][ T7310] hsr_slave_1: left promiscuous mode [ 294.707749][ T7310] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 294.716995][ T7310] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 294.733726][ T7310] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 294.741870][ T7310] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 294.750056][ T5166] Bluetooth: hci2: command tx timeout [ 294.787192][ T7310] veth1_macvtap: left promiscuous mode [ 294.793283][ T7310] veth0_macvtap: left promiscuous mode [ 294.803223][ T7310] veth1_vlan: left promiscuous mode [ 294.808975][ T7310] veth0_vlan: left promiscuous mode [ 295.539190][ T7310] team0 (unregistering): Port device team_slave_1 removed [ 295.587759][ T7310] team0 (unregistering): Port device team_slave_0 removed [ 296.394887][ T8720] chnl_net:caif_netlink_parms(): no params data found [ 296.624763][ T8720] bridge0: port 1(bridge_slave_0) entered blocking state [ 296.636422][ T8720] bridge0: port 1(bridge_slave_0) entered disabled state [ 296.644466][ T8720] bridge_slave_0: entered allmulticast mode [ 296.653484][ T8720] bridge_slave_0: entered promiscuous mode [ 296.665286][ T8720] bridge0: port 2(bridge_slave_1) entered blocking state [ 296.673104][ T8720] bridge0: port 2(bridge_slave_1) entered disabled state [ 296.681497][ T8720] bridge_slave_1: entered allmulticast mode [ 296.689941][ T8720] bridge_slave_1: entered promiscuous mode [ 296.821436][ T8720] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 296.831142][ T5166] Bluetooth: hci2: command tx timeout [ 296.855541][ T8720] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 297.241775][ T8720] team0: Port device team_slave_0 added [ 297.285782][ T8720] team0: Port device team_slave_1 added [ 297.478195][ T8720] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 297.513617][ T8720] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 297.583882][ T8720] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 297.645741][ T8720] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 297.657534][ T8720] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 297.694479][ T8720] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 297.911610][ T8720] hsr_slave_0: entered promiscuous mode [ 297.933166][ T8720] hsr_slave_1: entered promiscuous mode [ 297.961459][ T8720] debugfs: 'hsr0' already exists in 'hsr' [ 297.996614][ T8720] Cannot create hsr debugfs directory [ 298.781411][ T8832] netlink: 4 bytes leftover after parsing attributes in process `syz.2.596'. [ 298.801288][ T8832] netlink: 354 bytes leftover after parsing attributes in process `syz.2.596'. [ 298.903986][ T5166] Bluetooth: hci2: command tx timeout [ 300.167180][ T8720] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 300.462811][ T8720] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 300.558095][ T8720] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 300.580775][ T8720] netdevsim netdevsim1 netdevsim3: renamed from eth3 syzkaller syzkaller login: [ 301.990065][ T8720] 8021q: adding VLAN 0 to HW filter on device bond0 [ 302.541692][ T8720] 8021q: adding VLAN 0 to HW filter on device team0 [ 302.602867][ T7205] bridge0: port 1(bridge_slave_0) entered blocking state [ 302.610168][ T7205] bridge0: port 1(bridge_slave_0) entered forwarding state [ 302.702103][ T60] bridge0: port 2(bridge_slave_1) entered blocking state [ 302.709931][ T60] bridge0: port 2(bridge_slave_1) entered forwarding state syzkaller syzkaller login: [ 305.097986][ T8720] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 305.250761][ T8720] veth0_vlan: entered promiscuous mode [ 305.296486][ T8720] veth1_vlan: entered promiscuous mode [ 305.412771][ T8720] veth0_macvtap: entered promiscuous mode [ 305.457836][ T8720] veth1_macvtap: entered promiscuous mode [ 305.581838][ T8720] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 305.629825][ T8720] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 305.745788][ T8720] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 305.828103][ T8720] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 305.876981][ T8720] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 305.894981][ T8720] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 306.225996][ T60] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 306.234341][ T60] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 306.536261][ T7310] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 syzkaller syzkaller login: [ 306.653027][ T7310] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 308.347196][ T9028] FAULT_INJECTION: forcing a failure. [ 308.347196][ T9028] name failslab, interval 1, probability 0, space 0, times 0 [ 308.373626][ T9028] CPU: 1 UID: 0 PID: 9028 Comm: syz.2.628 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) [ 308.373675][ T9028] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 308.373705][ T9028] Call Trace: [ 308.373716][ T9028] [ 308.373728][ T9028] dump_stack_lvl+0x16c/0x1f0 [ 308.373777][ T9028] should_fail_ex+0x512/0x640 [ 308.373811][ T9028] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 308.373841][ T9028] should_failslab+0xc2/0x120 [ 308.373871][ T9028] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 308.373898][ T9028] ? __pmd_alloc+0xbf/0x930 [ 308.373936][ T9028] __pmd_alloc+0xbf/0x930 [ 308.373972][ T9028] huge_pte_alloc+0x41d/0x5b0 [ 308.374014][ T9028] hugetlb_fault+0x373/0x3070 [ 308.374065][ T9028] ? __pfx_hugetlb_fault+0x10/0x10 [ 308.374114][ T9028] ? find_vma+0xbf/0x140 [ 308.374144][ T9028] ? __pfx_find_vma+0x10/0x10 [ 308.374178][ T9028] handle_mm_fault+0xbfa/0xd10 [ 308.374201][ T9028] ? __pkru_allows_pkey+0x51/0xb0 [ 308.374237][ T9028] do_user_addr_fault+0x7a6/0x1370 [ 308.374276][ T9028] ? rcu_is_watching+0x12/0xc0 [ 308.374308][ T9028] exc_page_fault+0x5c/0xb0 [ 308.374337][ T9028] asm_exc_page_fault+0x26/0x30 [ 308.374359][ T9028] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 308.374383][ T9028] Code: 11 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 308.374406][ T9028] RSP: 0018:ffffc9000454f9b8 EFLAGS: 00050206 [ 308.374424][ T9028] RAX: 0000000000000001 RBX: 0000000000000800 RCX: 0000000000000800 [ 308.374438][ T9028] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff88807e630000 [ 308.374452][ T9028] RBP: 0000000000000800 R08: 0000000000000001 R09: ffffed100fcc60ff [ 308.374466][ T9028] R10: ffff88807e6307ff R11: 0000000000000000 R12: 0000000000000000 [ 308.374479][ T9028] R13: ffffc9000454fd80 R14: ffff88807e630000 R15: 0000000000000000 [ 308.374510][ T9028] _copy_from_iter+0x4eb/0x16f0 [ 308.374551][ T9028] ? __pfx__copy_from_iter+0x10/0x10 [ 308.374583][ T9028] ? rcu_is_watching+0x12/0xc0 [ 308.374610][ T9028] ? rcu_is_watching+0x12/0xc0 [ 308.374636][ T9028] ? kfree+0x24f/0x4d0 [ 308.374653][ T9028] ? file_tty_write.constprop.0+0x6ef/0x9b0 [ 308.374696][ T9028] file_tty_write.constprop.0+0x488/0x9b0 [ 308.374739][ T9028] redirected_tty_write+0xd4/0x150 [ 308.374773][ T9028] do_iter_readv_writev+0x654/0x950 [ 308.374798][ T9028] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 308.374842][ T9028] ? bpf_lsm_file_permission+0x9/0x10 [ 308.374874][ T9028] ? security_file_permission+0x71/0x210 [ 308.374898][ T9028] ? rw_verify_area+0xcf/0x680 [ 308.374937][ T9028] vfs_writev+0x35f/0xde0 [ 308.374968][ T9028] ? __pfx_vfs_writev+0x10/0x10 [ 308.375012][ T9028] ? __fget_files+0x20e/0x3c0 [ 308.375032][ T9028] ? __fget_files+0x1f0/0x3c0 [ 308.375069][ T9028] ? do_writev+0x132/0x340 [ 308.375089][ T9028] do_writev+0x132/0x340 [ 308.375110][ T9028] ? __pfx_do_writev+0x10/0x10 [ 308.375142][ T9028] do_syscall_64+0xcd/0x490 [ 308.375175][ T9028] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 308.375197][ T9028] RIP: 0033:0x7f57ccb8e9a9 [ 308.375215][ T9028] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 308.375237][ T9028] RSP: 002b:00007f57ca9f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 308.375257][ T9028] RAX: ffffffffffffffda RBX: 00007f57ccdb5fa0 RCX: 00007f57ccb8e9a9 [ 308.375272][ T9028] RDX: 0000000000000008 RSI: 0000200000000100 RDI: 0000000000000003 [ 308.375286][ T9028] RBP: 00007f57ca9f6090 R08: 0000000000000000 R09: 0000000000000000 [ 308.375301][ T9028] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 308.375315][ T9028] R13: 0000000000000000 R14: 00007f57ccdb5fa0 R15: 00007ffe20fb4168 [ 308.375344][ T9028] [ 309.369742][ T5166] Bluetooth: hci3: Received unexpected HCI Event 0x00 syzkaller syzkaller login: [ 309.472449][ T9043] FAULT_INJECTION: forcing a failure. [ 309.472449][ T9043] name failslab, interval 1, probability 0, space 0, times 0 [ 309.520544][ T9043] CPU: 1 UID: 0 PID: 9043 Comm: syz.2.631 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) [ 309.520594][ T9043] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 309.520613][ T9043] Call Trace: [ 309.520623][ T9043] [ 309.520636][ T9043] dump_stack_lvl+0x16c/0x1f0 [ 309.520683][ T9043] should_fail_ex+0x512/0x640 [ 309.520745][ T9043] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 309.520787][ T9043] should_failslab+0xc2/0x120 [ 309.520827][ T9043] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 309.520866][ T9043] ? __alloc_skb+0x2b2/0x380 [ 309.520914][ T9043] __alloc_skb+0x2b2/0x380 [ 309.520957][ T9043] ? __pfx___alloc_skb+0x10/0x10 [ 309.521004][ T9043] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 309.521065][ T9043] netlink_alloc_large_skb+0x69/0x130 [ 309.521120][ T9043] netlink_sendmsg+0x6a1/0xdd0 [ 309.521185][ T9043] ? __pfx_netlink_sendmsg+0x10/0x10 [ 309.521253][ T9043] sock_write_iter+0x4fc/0x5b0 [ 309.521289][ T9043] ? __pfx_sock_write_iter+0x10/0x10 [ 309.521336][ T9043] ? bpf_lsm_file_permission+0x9/0x10 [ 309.521381][ T9043] ? security_file_permission+0x71/0x210 [ 309.521415][ T9043] ? rw_verify_area+0xcf/0x680 [ 309.521471][ T9043] vfs_write+0x6c4/0x1150 [ 309.521506][ T9043] ? __pfx_sock_write_iter+0x10/0x10 [ 309.521543][ T9043] ? __pfx_vfs_write+0x10/0x10 [ 309.521573][ T9043] ? find_held_lock+0x2b/0x80 [ 309.521635][ T9043] ksys_write+0x1f8/0x250 [ 309.521670][ T9043] ? __pfx_ksys_write+0x10/0x10 [ 309.521716][ T9043] do_syscall_64+0xcd/0x490 [ 309.521763][ T9043] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 309.521795][ T9043] RIP: 0033:0x7f57ccb8e9a9 [ 309.521821][ T9043] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 309.521853][ T9043] RSP: 002b:00007f57ca9f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 309.521883][ T9043] RAX: ffffffffffffffda RBX: 00007f57ccdb5fa0 RCX: 00007f57ccb8e9a9 [ 309.521904][ T9043] RDX: 00000000000002fb RSI: 0000200000000000 RDI: 0000000000000003 [ 309.521938][ T9043] RBP: 00007f57ca9f6090 R08: 0000000000000000 R09: 0000000000000000 [ 309.521966][ T9043] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 309.521986][ T9043] R13: 0000000000000000 R14: 00007f57ccdb5fa0 R15: 00007ffe20fb4168 [ 309.522026][ T9043] [ 310.964495][ T9062] netlink: 338 bytes leftover after parsing attributes in process `syz.3.636'. [ 311.049646][ T9083] FAULT_INJECTION: forcing a failure. [ 311.049646][ T9083] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 311.177786][ T9083] CPU: 0 UID: 0 PID: 9083 Comm: syz.0.639 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) [ 311.177833][ T9083] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 311.177853][ T9083] Call Trace: [ 311.177864][ T9083] [ 311.177877][ T9083] dump_stack_lvl+0x16c/0x1f0 [ 311.177926][ T9083] should_fail_ex+0x512/0x640 [ 311.177989][ T9083] _copy_from_user+0x2e/0xd0 [ 311.178038][ T9083] copy_msghdr_from_user+0x98/0x160 [ 311.178086][ T9083] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 311.178155][ T9083] ___sys_sendmsg+0xfe/0x1d0 [ 311.178204][ T9083] ? __pfx____sys_sendmsg+0x10/0x10 [ 311.178247][ T9083] ? __lock_acquire+0x622/0x1c90 [ 311.178347][ T9083] __sys_sendmsg+0x16d/0x220 [ 311.178395][ T9083] ? __pfx___sys_sendmsg+0x10/0x10 [ 311.178471][ T9083] do_syscall_64+0xcd/0x490 [ 311.178518][ T9083] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 311.178553][ T9083] RIP: 0033:0x7f97d8f8e9a9 [ 311.178578][ T9083] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 311.178609][ T9083] RSP: 002b:00007f97d9deb038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 311.178644][ T9083] RAX: ffffffffffffffda RBX: 00007f97d91b5fa0 RCX: 00007f97d8f8e9a9 [ 311.178665][ T9083] RDX: 0000000000000000 RSI: 00002000000025c0 RDI: 0000000000000003 [ 311.178685][ T9083] RBP: 00007f97d9deb090 R08: 0000000000000000 R09: 0000000000000000 [ 311.178705][ T9083] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 311.178724][ T9083] R13: 0000000000000000 R14: 00007f97d91b5fa0 R15: 00007ffecac5c088 [ 311.178766][ T9083] [ 311.693163][ T9088] netlink: 16 bytes leftover after parsing attributes in process `syz.0.641'. [ 311.802113][ T9088] netlink: 4 bytes leftover after parsing attributes in process `syz.0.641'. [ 312.110867][ T9098] FAULT_INJECTION: forcing a failure. [ 312.110867][ T9098] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 312.136570][ T9098] CPU: 1 UID: 0 PID: 9098 Comm: syz.3.643 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) [ 312.136604][ T9098] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 312.136618][ T9098] Call Trace: [ 312.136625][ T9098] [ 312.136634][ T9098] dump_stack_lvl+0x16c/0x1f0 [ 312.136670][ T9098] should_fail_ex+0x512/0x640 [ 312.136715][ T9098] _copy_from_user+0x2e/0xd0 [ 312.136750][ T9098] __x64_sys_epoll_ctl+0x131/0x1e0 [ 312.136775][ T9098] ? __pfx___x64_sys_epoll_ctl+0x10/0x10 [ 312.136814][ T9098] do_syscall_64+0xcd/0x490 [ 312.136846][ T9098] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 312.136870][ T9098] RIP: 0033:0x7fd178d8e9a9 [ 312.136888][ T9098] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 312.136911][ T9098] RSP: 002b:00007fd179bd1038 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9 [ 312.136932][ T9098] RAX: ffffffffffffffda RBX: 00007fd178fb5fa0 RCX: 00007fd178d8e9a9 [ 312.136950][ T9098] RDX: 8000000000000000 RSI: 0000000000000001 RDI: 0000000000000005 [ 312.136964][ T9098] RBP: 00007fd179bd1090 R08: 0000000000000000 R09: 0000000000000000 [ 312.136978][ T9098] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 312.136992][ T9098] R13: 0000000000000000 R14: 00007fd178fb5fa0 R15: 00007ffe934bffa8 [ 312.137021][ T9098] syzkaller syzkaller login: syzkaller syzkaller login: syzkaller syzkaller login: [ 319.730065][ T9246] FAULT_INJECTION: forcing a failure. [ 319.730065][ T9246] name failslab, interval 1, probability 0, space 0, times 0 [ 319.804962][ T9246] CPU: 0 UID: 0 PID: 9246 Comm: syz.1.672 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) [ 319.805009][ T9246] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 319.805033][ T9246] Call Trace: [ 319.805044][ T9246] [ 319.805056][ T9246] dump_stack_lvl+0x16c/0x1f0 [ 319.805104][ T9246] should_fail_ex+0x512/0x640 [ 319.805158][ T9246] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 319.805195][ T9246] should_failslab+0xc2/0x120 [ 319.805237][ T9246] __kmalloc_cache_noprof+0x6a/0x3e0 [ 319.805268][ T9246] ? allocate_file_region_entries+0x15b/0x620 [ 319.805306][ T9246] ? allocate_file_region_entries+0x1a0/0x620 [ 319.805352][ T9246] allocate_file_region_entries+0x1a0/0x620 [ 319.805401][ T9246] ? __pfx_allocate_file_region_entries+0x10/0x10 [ 319.805454][ T9246] region_chg+0x85/0x140 [ 319.805493][ T9246] __vma_reservation_common+0x43b/0x740 [ 319.805537][ T9246] ? __pfx___vma_reservation_common+0x10/0x10 [ 319.805592][ T9246] alloc_hugetlb_folio+0x946/0x1560 [ 319.805650][ T9246] ? __pfx_alloc_hugetlb_folio+0x10/0x10 [ 319.805699][ T9246] ? _raw_spin_unlock+0x28/0x50 [ 319.805741][ T9246] ? __filemap_get_folio+0x32b/0xc30 [ 319.805795][ T9246] hugetlb_fault+0x2005/0x3070 [ 319.805858][ T9246] ? __pfx_hugetlb_fault+0x10/0x10 [ 319.805930][ T9246] ? find_vma+0xbf/0x140 [ 319.805973][ T9246] ? __pfx_find_vma+0x10/0x10 [ 319.806023][ T9246] handle_mm_fault+0xbfa/0xd10 [ 319.806057][ T9246] ? __pkru_allows_pkey+0x51/0xb0 [ 319.806111][ T9246] do_user_addr_fault+0x7a6/0x1370 [ 319.806174][ T9246] ? rcu_is_watching+0x12/0xc0 [ 319.806217][ T9246] exc_page_fault+0x5c/0xb0 [ 319.806260][ T9246] asm_exc_page_fault+0x26/0x30 [ 319.806292][ T9246] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 319.806325][ T9246] Code: 11 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 319.806358][ T9246] RSP: 0018:ffffc9000c0579b8 EFLAGS: 00050206 [ 319.806383][ T9246] RAX: 0000000000000001 RBX: 0000000000000800 RCX: 0000000000000800 [ 319.806402][ T9246] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff88805d660000 [ 319.806421][ T9246] RBP: 0000000000000800 R08: 0000000000000001 R09: ffffed100bacc0ff [ 319.806440][ T9246] R10: ffff88805d6607ff R11: 0000000000000000 R12: 0000000000000000 [ 319.806459][ T9246] R13: ffffc9000c057d80 R14: ffff88805d660000 R15: 0000000000000000 [ 319.806504][ T9246] _copy_from_iter+0x4eb/0x16f0 [ 319.806565][ T9246] ? __pfx__copy_from_iter+0x10/0x10 [ 319.806611][ T9246] ? rcu_is_watching+0x12/0xc0 [ 319.806651][ T9246] ? rcu_is_watching+0x12/0xc0 [ 319.806688][ T9246] ? kfree+0x24f/0x4d0 [ 319.806713][ T9246] ? file_tty_write.constprop.0+0x6ef/0x9b0 [ 319.806773][ T9246] file_tty_write.constprop.0+0x488/0x9b0 [ 319.806837][ T9246] redirected_tty_write+0xd4/0x150 [ 319.806887][ T9246] do_iter_readv_writev+0x654/0x950 [ 319.806924][ T9246] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 319.806986][ T9246] ? bpf_lsm_file_permission+0x9/0x10 [ 319.807032][ T9246] ? security_file_permission+0x71/0x210 [ 319.807066][ T9246] ? rw_verify_area+0xcf/0x680 [ 319.807124][ T9246] vfs_writev+0x35f/0xde0 [ 319.807175][ T9246] ? __pfx_vfs_writev+0x10/0x10 [ 319.807241][ T9246] ? __fget_files+0x20e/0x3c0 [ 319.807270][ T9246] ? __fget_files+0x1f0/0x3c0 [ 319.807313][ T9246] ? do_writev+0x132/0x340 [ 319.807341][ T9246] do_writev+0x132/0x340 [ 319.807374][ T9246] ? __pfx_do_writev+0x10/0x10 [ 319.807420][ T9246] do_syscall_64+0xcd/0x490 [ 319.807468][ T9246] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 319.807500][ T9246] RIP: 0033:0x7f13a598e9a9 [ 319.807525][ T9246] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 319.807556][ T9246] RSP: 002b:00007f13a67e6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 319.807585][ T9246] RAX: ffffffffffffffda RBX: 00007f13a5bb5fa0 RCX: 00007f13a598e9a9 [ 319.807606][ T9246] RDX: 0000000000000008 RSI: 0000200000000100 RDI: 0000000000000003 [ 319.807626][ T9246] RBP: 00007f13a67e6090 R08: 0000000000000000 R09: 0000000000000000 [ 319.807644][ T9246] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 319.807663][ T9246] R13: 0000000000000000 R14: 00007f13a5bb5fa0 R15: 00007fff5d1428f8 [ 319.807706][ T9246] [ 320.777131][ T9262] FAULT_INJECTION: forcing a failure. [ 320.777131][ T9262] name failslab, interval 1, probability 0, space 0, times 0 [ 320.803890][ T9262] CPU: 0 UID: 0 PID: 9262 Comm: syz.1.677 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) [ 320.803933][ T9262] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 320.803952][ T9262] Call Trace: [ 320.803963][ T9262] [ 320.803974][ T9262] dump_stack_lvl+0x16c/0x1f0 [ 320.804021][ T9262] should_fail_ex+0x512/0x640 [ 320.804062][ T9262] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 320.804105][ T9262] should_failslab+0xc2/0x120 [ 320.804147][ T9262] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 320.804186][ T9262] ? __alloc_skb+0x2b2/0x380 [ 320.804234][ T9262] __alloc_skb+0x2b2/0x380 [ 320.804276][ T9262] ? __pfx___alloc_skb+0x10/0x10 [ 320.804331][ T9262] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 320.804392][ T9262] netlink_alloc_large_skb+0x69/0x130 [ 320.804447][ T9262] netlink_sendmsg+0x6a1/0xdd0 [ 320.804506][ T9262] ? __pfx_netlink_sendmsg+0x10/0x10 [ 320.804575][ T9262] ____sys_sendmsg+0xa98/0xc70 [ 320.804609][ T9262] ? copy_msghdr_from_user+0x10a/0x160 [ 320.804655][ T9262] ? __pfx_____sys_sendmsg+0x10/0x10 [ 320.804708][ T9262] ___sys_sendmsg+0x134/0x1d0 [ 320.804755][ T9262] ? __pfx____sys_sendmsg+0x10/0x10 [ 320.804802][ T9262] ? __lock_acquire+0x622/0x1c90 [ 320.804900][ T9262] __sys_sendmsg+0x16d/0x220 [ 320.804946][ T9262] ? __pfx___sys_sendmsg+0x10/0x10 [ 320.805019][ T9262] do_syscall_64+0xcd/0x490 [ 320.805065][ T9262] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 320.805098][ T9262] RIP: 0033:0x7f13a598e9a9 [ 320.805123][ T9262] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 320.805155][ T9262] RSP: 002b:00007f13a67e6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 320.805186][ T9262] RAX: ffffffffffffffda RBX: 00007f13a5bb5fa0 RCX: 00007f13a598e9a9 [ 320.805207][ T9262] RDX: 0000000000000000 RSI: 00002000000025c0 RDI: 0000000000000003 [ 320.805225][ T9262] RBP: 00007f13a67e6090 R08: 0000000000000000 R09: 0000000000000000 [ 320.805244][ T9262] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 320.805262][ T9262] R13: 0000000000000000 R14: 00007f13a5bb5fa0 R15: 00007fff5d1428f8 [ 320.805303][ T9262] [ 321.856052][ T9277] usb usb16: usbfs: process 9277 (syz.2.681) did not claim interface 0 before use [ 322.185259][ T9282] FAULT_INJECTION: forcing a failure. [ 322.185259][ T9282] name failslab, interval 1, probability 0, space 0, times 0 [ 322.214277][ T9282] CPU: 1 UID: 0 PID: 9282 Comm: syz.1.683 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) [ 322.214322][ T9282] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 322.214341][ T9282] Call Trace: [ 322.214352][ T9282] [ 322.214363][ T9282] dump_stack_lvl+0x16c/0x1f0 [ 322.214413][ T9282] should_fail_ex+0x512/0x640 [ 322.214455][ T9282] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 322.214498][ T9282] should_failslab+0xc2/0x120 [ 322.214545][ T9282] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 322.214584][ T9282] ? do_epoll_ctl+0x1170/0x3790 [ 322.214623][ T9282] do_epoll_ctl+0x1170/0x3790 [ 322.214659][ T9282] ? ksys_write+0x190/0x250 [ 322.214705][ T9282] ? __pfx_do_epoll_ctl+0x10/0x10 [ 322.214736][ T9282] ? find_held_lock+0x2b/0x80 [ 322.214770][ T9282] ? __might_fault+0xe3/0x190 [ 322.214818][ T9282] ? __might_fault+0xe3/0x190 [ 322.214869][ T9282] ? __x64_sys_epoll_ctl+0x15c/0x1e0 [ 322.214900][ T9282] __x64_sys_epoll_ctl+0x15c/0x1e0 [ 322.214936][ T9282] ? __pfx___x64_sys_epoll_ctl+0x10/0x10 [ 322.214983][ T9282] do_syscall_64+0xcd/0x490 [ 322.215031][ T9282] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 322.215072][ T9282] RIP: 0033:0x7f13a598e9a9 [ 322.215098][ T9282] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 322.215130][ T9282] RSP: 002b:00007f13a67e6038 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9 [ 322.215160][ T9282] RAX: ffffffffffffffda RBX: 00007f13a5bb5fa0 RCX: 00007f13a598e9a9 [ 322.215182][ T9282] RDX: 8000000000000000 RSI: 0000000000000001 RDI: 0000000000000005 [ 322.215208][ T9282] RBP: 00007f13a67e6090 R08: 0000000000000000 R09: 0000000000000000 [ 322.215228][ T9282] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 322.215246][ T9282] R13: 0000000000000000 R14: 00007f13a5bb5fa0 R15: 00007fff5d1428f8 [ 322.215288][ T9282] [ 322.416109][ C1] vkms_vblank_simulate: vblank timer overrun [ 324.093206][ T9315] netlink: 4 bytes leftover after parsing attributes in process `syz.3.689'. [ 324.103598][ T9315] netlink: 354 bytes leftover after parsing attributes in process `syz.3.689'. syzkaller syzkaller login: [ 326.086267][ T9338] openvswitch: netlink: ufid size 17 bytes exceeds the range (1, 16) [ 326.124034][ T9338] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 327.595503][ T30] audit: type=1800 audit(6048778159.504:5): pid=9352 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.699" name="lu_gp_id" dev="configfs" ino=26212 res=0 errno=0 [ 327.710580][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 327.717244][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 syzkaller syzkaller login: [ 331.870270][ T9421] FAULT_INJECTION: forcing a failure. [ 331.870270][ T9421] name fail_futex, interval 1, probability 0, space 0, times 0 [ 331.911077][ T9421] CPU: 1 UID: 0 PID: 9421 Comm: syz.3.715 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) [ 331.911119][ T9421] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 331.911134][ T9421] Call Trace: [ 331.911141][ T9421] [ 331.911150][ T9421] dump_stack_lvl+0x16c/0x1f0 [ 331.911185][ T9421] should_fail_ex+0x512/0x640 [ 331.911221][ T9421] get_futex_key+0x1d0/0x1540 [ 331.911255][ T9421] ? __pfx_get_futex_key+0x10/0x10 [ 331.911286][ T9421] ? kasan_save_stack+0x42/0x60 [ 331.911310][ T9421] ? kasan_save_stack+0x33/0x60 [ 331.911334][ T9421] ? kasan_save_track+0x14/0x30 [ 331.911357][ T9421] ? __kasan_slab_alloc+0x89/0x90 [ 331.911382][ T9421] ? kmem_cache_alloc_noprof+0x1cb/0x3b0 [ 331.911413][ T9421] futex_wait_setup+0x84/0x510 [ 331.911461][ T9421] __futex_wait+0x194/0x2f0 [ 331.911498][ T9421] ? __pfx___futex_wait+0x10/0x10 [ 331.911539][ T9421] ? __pfx_futex_wake_mark+0x10/0x10 [ 331.911585][ T9421] ? __futex_hash.constprop.0+0x1e9/0x440 [ 331.911617][ T9421] futex_wait+0xe8/0x380 [ 331.911652][ T9421] ? __pfx_futex_wait+0x10/0x10 [ 331.911694][ T9421] ? errseq_sample+0x53/0x70 [ 331.911726][ T9421] ? file_init_path+0x4fe/0x760 [ 331.911763][ T9421] do_futex+0x229/0x350 [ 331.911793][ T9421] ? __pfx_do_futex+0x10/0x10 [ 331.911823][ T9421] ? fd_install+0x225/0x750 [ 331.911851][ T9421] __x64_sys_futex+0x1e0/0x4c0 [ 331.911883][ T9421] ? __sys_socket+0xac/0x260 [ 331.911907][ T9421] ? __pfx___x64_sys_futex+0x10/0x10 [ 331.911938][ T9421] ? xfd_validate_state+0x61/0x180 [ 331.911971][ T9421] ? __pfx_do_writev+0x10/0x10 [ 331.912001][ T9421] do_syscall_64+0xcd/0x490 [ 331.912034][ T9421] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 331.912057][ T9421] RIP: 0033:0x7fd178d8e9a9 [ 331.912075][ T9421] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 331.912098][ T9421] RSP: 002b:00007fd179bd10e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 331.912120][ T9421] RAX: ffffffffffffffda RBX: 00007fd178fb5fa8 RCX: 00007fd178d8e9a9 [ 331.912136][ T9421] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fd178fb5fa8 [ 331.912150][ T9421] RBP: 00007fd178fb5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 331.912164][ T9421] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd178fb5fac [ 331.912178][ T9421] R13: 0000000000000000 R14: 00007ffe934bfec0 R15: 00007ffe934bffa8 [ 331.912208][ T9421] [ 333.118518][ T9445] FAULT_INJECTION: forcing a failure. [ 333.118518][ T9445] name failslab, interval 1, probability 0, space 0, times 0 [ 333.155357][ T9445] CPU: 0 UID: 0 PID: 9445 Comm: syz.3.716 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) [ 333.155392][ T9445] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 333.155406][ T9445] Call Trace: [ 333.155414][ T9445] [ 333.155423][ T9445] dump_stack_lvl+0x16c/0x1f0 [ 333.155458][ T9445] should_fail_ex+0x512/0x640 [ 333.155489][ T9445] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 333.155519][ T9445] should_failslab+0xc2/0x120 [ 333.155548][ T9445] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 333.155575][ T9445] ? mas_alloc_nodes+0x18b/0x8b0 [ 333.155605][ T9445] mas_alloc_nodes+0x18b/0x8b0 [ 333.155638][ T9445] mas_node_count_gfp+0x105/0x130 [ 333.155667][ T9445] mas_preallocate+0x7e0/0xde0 [ 333.155699][ T9445] ? __bpf_address_lookup+0x332/0x340 [ 333.155739][ T9445] ? __pfx_mas_preallocate+0x10/0x10 [ 333.155782][ T9445] ? __asan_memset+0x23/0x50 [ 333.155804][ T9445] ? init_multi_vma_prep+0x30a/0x650 [ 333.155830][ T9445] commit_merge+0x2a8/0x1030 [ 333.155857][ T9445] ? __pfx_commit_merge+0x10/0x10 [ 333.155878][ T9445] ? __vma_enter_locked+0x163/0x3f0 [ 333.155908][ T9445] ? vma_modify+0x705/0x2030 [ 333.155936][ T9445] ? dup_anon_vma.constprop.0+0x74/0x320 [ 333.155963][ T9445] vma_modify+0x959/0x2030 [ 333.155994][ T9445] ? __pfx_vma_modify+0x10/0x10 [ 333.156025][ T9445] vma_modify_flags+0x212/0x2d0 [ 333.156050][ T9445] ? __pfx_vma_modify_flags+0x10/0x10 [ 333.156096][ T9445] mlock_fixup+0x27c/0xe50 [ 333.156125][ T9445] apply_mlockall_flags+0x2d4/0x470 [ 333.156151][ T9445] ? __pfx_apply_mlockall_flags+0x10/0x10 [ 333.156177][ T9445] ? rcu_is_watching+0x12/0xc0 [ 333.156213][ T9445] ? bpf_lsm_capable+0x9/0x10 [ 333.156231][ T9445] ? security_capable+0x7e/0x260 [ 333.156264][ T9445] __do_sys_mlockall+0x260/0x5d0 [ 333.156290][ T9445] do_syscall_64+0xcd/0x490 [ 333.156330][ T9445] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 333.156354][ T9445] RIP: 0033:0x7fd178d8e9a9 [ 333.156373][ T9445] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 333.156395][ T9445] RSP: 002b:00007fd179b8f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000097 [ 333.156417][ T9445] RAX: ffffffffffffffda RBX: 00007fd178fb6160 RCX: 00007fd178d8e9a9 [ 333.156433][ T9445] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0800000000000005 [ 333.156447][ T9445] RBP: 00007fd179b8f090 R08: 0000000000000000 R09: 0000000000000000 [ 333.156462][ T9445] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 333.156475][ T9445] R13: 0000000000000000 R14: 00007fd178fb6160 R15: 00007ffe934bffa8 [ 333.156504][ T9445] syzkaller syzkaller login: [ 335.622669][ T9473] netlink: 4 bytes leftover after parsing attributes in process `syz.1.723'. /[ 338.612102][ T9537] FAULT_INJECTION: forcing a failure. [ 338.612102][ T9537] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 338.694222][ T9537] CPU: 0 UID: 0 PID: 9537 Comm: syz.0.739 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) [ 338.694269][ T9537] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 338.694288][ T9537] Call Trace: [ 338.694299][ T9537] [ 338.694311][ T9537] dump_stack_lvl+0x16c/0x1f0 [ 338.694357][ T9537] should_fail_ex+0x512/0x640 [ 338.694407][ T9537] _copy_from_iter+0x29f/0x16f0 [ 338.694458][ T9537] ? __alloc_skb+0x200/0x380 [ 338.694500][ T9537] ? __pfx__copy_from_iter+0x10/0x10 [ 338.694550][ T9537] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 338.694613][ T9537] netlink_sendmsg+0x829/0xdd0 [ 338.694671][ T9537] ? __pfx_netlink_sendmsg+0x10/0x10 [ 338.694739][ T9537] ____sys_sendmsg+0xa98/0xc70 [ 338.694772][ T9537] ? copy_msghdr_from_user+0x10a/0x160 [ 338.694817][ T9537] ? __pfx_____sys_sendmsg+0x10/0x10 [ 338.694868][ T9537] ___sys_sendmsg+0x134/0x1d0 [ 338.694917][ T9537] ? __pfx____sys_sendmsg+0x10/0x10 [ 338.694966][ T9537] ? __lock_acquire+0x622/0x1c90 [ 338.695063][ T9537] __sys_sendmsg+0x16d/0x220 [ 338.695109][ T9537] ? __pfx___sys_sendmsg+0x10/0x10 [ 338.695182][ T9537] do_syscall_64+0xcd/0x490 [ 338.695229][ T9537] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 338.695261][ T9537] RIP: 0033:0x7f97d8f8e9a9 [ 338.695286][ T9537] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 338.695317][ T9537] RSP: 002b:00007f97d9deb038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 338.695348][ T9537] RAX: ffffffffffffffda RBX: 00007f97d91b5fa0 RCX: 00007f97d8f8e9a9 [ 338.695369][ T9537] RDX: 0000000000000000 RSI: 00002000000025c0 RDI: 0000000000000003 [ 338.695388][ T9537] RBP: 00007f97d9deb090 R08: 0000000000000000 R09: 0000000000000000 [ 338.695408][ T9537] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 338.695427][ T9537] R13: 0000000000000000 R14: 00007f97d91b5fa0 R15: 00007ffecac5c088 [ 338.695468][ T9537] /[ 341.716539][ T9608] netlink: 4 bytes leftover after parsing attributes in process `syz.2.753'. [ 342.028778][ T9614] openvswitch: netlink: ufid size 17 bytes exceeds the range (1, 16) [ 342.076959][ T9614] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 344.822289][ T5166] Bluetooth: hci1: unexpected event for opcode 0x7c89 [ 345.200963][ T9665] FAULT_INJECTION: forcing a failure. [ 345.200963][ T9665] name failslab, interval 1, probability 0, space 0, times 0 [ 345.217637][ T9665] CPU: 0 UID: 0 PID: 9665 Comm: syz.2.768 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) [ 345.217681][ T9665] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 345.217700][ T9665] Call Trace: [ 345.217711][ T9665] [ 345.217723][ T9665] dump_stack_lvl+0x16c/0x1f0 [ 345.217770][ T9665] should_fail_ex+0x512/0x640 [ 345.217813][ T9665] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 345.217857][ T9665] should_failslab+0xc2/0x120 [ 345.217899][ T9665] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 345.217937][ T9665] ? __alloc_skb+0x2b2/0x380 [ 345.217986][ T9665] __alloc_skb+0x2b2/0x380 [ 345.218046][ T9665] ? __pfx___alloc_skb+0x10/0x10 [ 345.218089][ T9665] ? __pfx___might_resched+0x10/0x10 [ 345.218130][ T9665] ? rcu_is_watching+0x12/0xc0 [ 345.218174][ T9665] netlink_dump+0x192/0xd00 [ 345.218222][ T9665] ? __rhashtable_lookup.constprop.0+0x3a5/0x760 [ 345.218272][ T9665] ? __netlink_dump_start+0x150/0x990 [ 345.218323][ T9665] ? __pfx_netlink_dump+0x10/0x10 [ 345.218368][ T9665] ? __pfx___mutex_lock+0x10/0x10 [ 345.218445][ T9665] __netlink_dump_start+0x6d6/0x990 [ 345.218502][ T9665] packet_diag_handler_dump+0x1f0/0x290 [ 345.218544][ T9665] ? __pfx_packet_diag_handler_dump+0x10/0x10 [ 345.218586][ T9665] ? __pfx_packet_diag_dump+0x10/0x10 [ 345.218629][ T9665] ? sock_diag_lock_handler+0x10f/0x2e0 [ 345.218680][ T9665] sock_diag_rcv_msg+0x435/0x790 [ 345.218724][ T9665] netlink_rcv_skb+0x155/0x420 [ 345.218775][ T9665] ? __pfx_sock_diag_rcv_msg+0x10/0x10 [ 345.218817][ T9665] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 345.218884][ T9665] ? netlink_deliver_tap+0x1ae/0xd30 [ 345.218939][ T9665] netlink_unicast+0x58d/0x850 [ 345.218996][ T9665] ? __pfx_netlink_unicast+0x10/0x10 [ 345.219057][ T9665] netlink_sendmsg+0x8d1/0xdd0 [ 345.219117][ T9665] ? __pfx_netlink_sendmsg+0x10/0x10 [ 345.219185][ T9665] sock_write_iter+0x4fc/0x5b0 [ 345.219219][ T9665] ? __pfx_sock_write_iter+0x10/0x10 [ 345.219266][ T9665] ? bpf_lsm_file_permission+0x9/0x10 [ 345.219311][ T9665] ? security_file_permission+0x71/0x210 [ 345.219345][ T9665] ? rw_verify_area+0xcf/0x680 [ 345.219402][ T9665] vfs_write+0x6c4/0x1150 [ 345.219446][ T9665] ? __pfx_sock_write_iter+0x10/0x10 [ 345.219482][ T9665] ? __pfx_vfs_write+0x10/0x10 [ 345.219513][ T9665] ? find_held_lock+0x2b/0x80 [ 345.219578][ T9665] ksys_write+0x1f8/0x250 [ 345.219612][ T9665] ? __pfx_ksys_write+0x10/0x10 [ 345.219659][ T9665] do_syscall_64+0xcd/0x490 [ 345.219707][ T9665] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 345.219740][ T9665] RIP: 0033:0x7f57ccb8e9a9 [ 345.219766][ T9665] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 345.219798][ T9665] RSP: 002b:00007f57ca9f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 345.219829][ T9665] RAX: ffffffffffffffda RBX: 00007f57ccdb5fa0 RCX: 00007f57ccb8e9a9 [ 345.219849][ T9665] RDX: 00000000000002fb RSI: 0000200000000000 RDI: 0000000000000003 [ 345.219868][ T9665] RBP: 00007f57ca9f6090 R08: 0000000000000000 R09: 0000000000000000 [ 345.219887][ T9665] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 345.219906][ T9665] R13: 0000000000000000 R14: 00007f57ccdb5fa0 R15: 00007ffe20fb4168 [ 345.219947][ T9665] syzkaller syzkaller login: [ 346.084332][ T9668] FAULT_INJECTION: forcing a failure. [ 346.084332][ T9668] name failslab, interval 1, probability 0, space 0, times 0 [ 346.099545][ T9668] CPU: 0 UID: 0 PID: 9668 Comm: syz.1.769 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) [ 346.099590][ T9668] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 346.099610][ T9668] Call Trace: [ 346.099620][ T9668] [ 346.099633][ T9668] dump_stack_lvl+0x16c/0x1f0 [ 346.099683][ T9668] should_fail_ex+0x512/0x640 [ 346.099725][ T9668] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 346.099761][ T9668] should_failslab+0xc2/0x120 [ 346.099803][ T9668] __kmalloc_cache_noprof+0x6a/0x3e0 [ 346.099832][ T9668] ? key_user_lookup+0x169/0x560 [ 346.099864][ T9668] ? key_user_lookup+0x195/0x560 [ 346.099900][ T9668] key_user_lookup+0x195/0x560 [ 346.099935][ T9668] ? __pfx_key_user_lookup+0x10/0x10 [ 346.099967][ T9668] ? security_key_permission+0x79/0x240 [ 346.100025][ T9668] key_alloc+0x18b/0x1330 [ 346.100065][ T9668] ? __pfx_keyring_search+0x10/0x10 [ 346.100105][ T9668] ? __pfx_key_alloc+0x10/0x10 [ 346.100134][ T9668] ? __pfx_key_default_cmp+0x10/0x10 [ 346.100171][ T9668] ? __pfx_keyring_search_iterator+0x10/0x10 [ 346.100223][ T9668] keyring_alloc+0x44/0xc0 [ 346.100260][ T9668] look_up_user_keyrings+0x46d/0x760 [ 346.100316][ T9668] ? __pfx_look_up_user_keyrings+0x10/0x10 [ 346.100379][ T9668] lookup_user_key+0x1a3/0x1300 [ 346.100434][ T9668] ? __pfx_lookup_user_key+0x10/0x10 [ 346.100480][ T9668] ? do_futex+0x122/0x350 [ 346.100535][ T9668] ? __pfx_lookup_user_key_possessed+0x10/0x10 [ 346.100597][ T9668] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 346.100651][ T9668] ? arch_syscall_is_vdso_sigreturn+0xb6/0x230 [ 346.100703][ T9668] keyctl_keyring_clear+0x24/0x1a0 [ 346.100749][ T9668] __do_sys_keyctl+0x355/0x590 [ 346.100797][ T9668] do_syscall_64+0xcd/0x490 [ 346.100844][ T9668] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 346.100877][ T9668] RIP: 0033:0x7f13a598e9a9 [ 346.100904][ T9668] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 346.100937][ T9668] RSP: 002b:00007f13a67e6038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 346.100966][ T9668] RAX: ffffffffffffffda RBX: 00007f13a5bb5fa0 RCX: 00007f13a598e9a9 [ 346.100989][ T9668] RDX: 0000000000000002 RSI: 00000000fffffffb RDI: 0000000000000007 [ 346.101009][ T9668] RBP: 00007f13a5a10d69 R08: 0000000000000008 R09: 0000000000000000 [ 346.101030][ T9668] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 346.101049][ T9668] R13: 0000000000000000 R14: 00007f13a5bb5fa0 R15: 00007fff5d1428f8 [ 346.101090][ T9668] [ 349.011844][ T9738] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 syzkaller syzkaller login: [ 350.954581][ T9766] Unable to find swap-space signature [ 352.705239][ T30] audit: type=1804 audit(6048778184.614:6): pid=9807 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.797" name="/newroot/46/file0" dev="tmpfs" ino=251 res=1 errno=0 [ 352.876758][ T9799] HfR: entered promiscuous mode [ 353.505799][ T9799] netlink: 12 bytes leftover after parsing attributes in process `syz.0.796'. [ 353.598834][ T9799] HfR: left promiscuous mode [ 353.879242][ T9821] openvswitch: netlink: ufid size 17 bytes exceeds the range (1, 16) [ 353.889234][ T9821] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 355.540888][ T9851] netlink: 4 bytes leftover after parsing attributes in process `syz.3.807'. [ 355.570131][ T9851] netlink: 354 bytes leftover after parsing attributes in process `syz.3.807'. [ 356.738789][ T9872] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input6 [ 358.378953][ T9876] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input7 [ 360.346318][ T9924] FAULT_INJECTION: forcing a failure. [ 360.346318][ T9924] name failslab, interval 1, probability 0, space 0, times 0 [ 360.384222][ T9924] CPU: 1 UID: 0 PID: 9924 Comm: syz.2.822 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) [ 360.384274][ T9924] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 360.384294][ T9924] Call Trace: [ 360.384305][ T9924] [ 360.384318][ T9924] dump_stack_lvl+0x16c/0x1f0 [ 360.384367][ T9924] should_fail_ex+0x512/0x640 [ 360.384413][ T9924] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 360.384456][ T9924] should_failslab+0xc2/0x120 [ 360.384498][ T9924] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 360.384534][ T9924] ? __pfx___might_resched+0x10/0x10 [ 360.384574][ T9924] ? alloc_vmap_area+0x645/0x29c0 [ 360.384627][ T9924] alloc_vmap_area+0x645/0x29c0 [ 360.384691][ T9924] ? __pfx_alloc_vmap_area+0x10/0x10 [ 360.384747][ T9924] __get_vm_area_node+0x1ca/0x330 [ 360.384806][ T9924] __vmalloc_node_range_noprof+0x271/0x14b0 [ 360.384861][ T9924] ? fpu_alloc_guest_fpstate+0x24/0x450 [ 360.384905][ T9924] ? local_lock_release+0x99/0x140 [ 360.384953][ T9924] ? fpu_alloc_guest_fpstate+0x24/0x450 [ 360.384998][ T9924] ? rcu_read_unlock+0x17/0x60 [ 360.385060][ T9924] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 360.385119][ T9924] ? __memcg_slab_post_alloc_hook+0x4a0/0x960 [ 360.385175][ T9924] ? fpu_alloc_guest_fpstate+0x24/0x450 [ 360.385211][ T9924] __vmalloc_node_noprof+0xad/0xf0 [ 360.385263][ T9924] ? fpu_alloc_guest_fpstate+0x24/0x450 [ 360.385306][ T9924] fpu_alloc_guest_fpstate+0x24/0x450 [ 360.385347][ T9924] kvm_arch_vcpu_create+0x54e/0xb20 [ 360.385402][ T9924] kvm_vm_ioctl+0xf6f/0x3dd0 [ 360.385452][ T9924] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 360.385507][ T9924] ? kasan_quarantine_put+0x10a/0x240 [ 360.385543][ T9924] ? lockdep_hardirqs_on+0x7c/0x110 [ 360.385589][ T9924] ? find_held_lock+0x2b/0x80 [ 360.385628][ T9924] ? tomoyo_path_number_perm+0x295/0x580 [ 360.385687][ T9924] ? tomoyo_path_number_perm+0x18d/0x580 [ 360.385742][ T9924] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 360.385808][ T9924] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 360.385864][ T9924] ? do_vfs_ioctl+0x128/0x14f0 [ 360.385914][ T9924] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 360.385981][ T9924] ? find_held_lock+0x2b/0x80 [ 360.386022][ T9924] ? hook_file_ioctl_common+0x145/0x410 [ 360.386079][ T9924] ? __fget_files+0x20e/0x3c0 [ 360.386118][ T9924] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 360.386153][ T9924] __x64_sys_ioctl+0x18b/0x210 [ 360.386205][ T9924] do_syscall_64+0xcd/0x490 [ 360.386253][ T9924] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 360.386287][ T9924] RIP: 0033:0x7f57ccb8e9a9 [ 360.386315][ T9924] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 360.386347][ T9924] RSP: 002b:00007f57ca9f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 360.386378][ T9924] RAX: ffffffffffffffda RBX: 00007f57ccdb5fa0 RCX: 00007f57ccb8e9a9 [ 360.386399][ T9924] RDX: 0000000000000002 RSI: 000000000000ae41 RDI: 0000000000000003 [ 360.386419][ T9924] RBP: 00007f57ccc10d69 R08: 0000000000000000 R09: 0000000000000000 [ 360.386438][ T9924] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 360.386457][ T9924] R13: 0000000000000000 R14: 00007f57ccdb5fa0 R15: 00007ffe20fb4168 [ 360.386498][ T9924] [ 360.386739][ T9924] syz.2.822: vmalloc error: size 896, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 360.785439][ T9924] CPU: 0 UID: 0 PID: 9924 Comm: syz.2.822 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) [ 360.785486][ T9924] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 360.785506][ T9924] Call Trace: [ 360.785518][ T9924] [ 360.785531][ T9924] dump_stack_lvl+0x16c/0x1f0 [ 360.785580][ T9924] warn_alloc+0x248/0x3a0 [ 360.785621][ T9924] ? __pfx_warn_alloc+0x10/0x10 [ 360.785662][ T9924] ? kfree+0x2b4/0x4d0 [ 360.785700][ T9924] ? __get_vm_area_node+0x208/0x330 [ 360.785760][ T9924] __vmalloc_node_range_noprof+0xb2d/0x14b0 [ 360.785822][ T9924] ? local_lock_release+0x99/0x140 [ 360.785873][ T9924] ? fpu_alloc_guest_fpstate+0x24/0x450 [ 360.785919][ T9924] ? rcu_read_unlock+0x17/0x60 [ 360.785964][ T9924] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 360.786030][ T9924] ? __memcg_slab_post_alloc_hook+0x4a0/0x960 [ 360.786086][ T9924] ? fpu_alloc_guest_fpstate+0x24/0x450 [ 360.786123][ T9924] __vmalloc_node_noprof+0xad/0xf0 [ 360.786176][ T9924] ? fpu_alloc_guest_fpstate+0x24/0x450 [ 360.786218][ T9924] fpu_alloc_guest_fpstate+0x24/0x450 [ 360.786260][ T9924] kvm_arch_vcpu_create+0x54e/0xb20 [ 360.786315][ T9924] kvm_vm_ioctl+0xf6f/0x3dd0 [ 360.786365][ T9924] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 360.786422][ T9924] ? kasan_quarantine_put+0x10a/0x240 [ 360.786457][ T9924] ? lockdep_hardirqs_on+0x7c/0x110 [ 360.786504][ T9924] ? find_held_lock+0x2b/0x80 [ 360.786544][ T9924] ? tomoyo_path_number_perm+0x295/0x580 [ 360.786604][ T9924] ? tomoyo_path_number_perm+0x18d/0x580 [ 360.786660][ T9924] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 360.786728][ T9924] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 360.786786][ T9924] ? do_vfs_ioctl+0x128/0x14f0 [ 360.786836][ T9924] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 360.786898][ T9924] ? find_held_lock+0x2b/0x80 [ 360.786934][ T9924] ? hook_file_ioctl_common+0x145/0x410 [ 360.786993][ T9924] ? __fget_files+0x20e/0x3c0 [ 360.787039][ T9924] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 360.787075][ T9924] __x64_sys_ioctl+0x18b/0x210 [ 360.787126][ T9924] do_syscall_64+0xcd/0x490 [ 360.787174][ T9924] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 360.787208][ T9924] RIP: 0033:0x7f57ccb8e9a9 [ 360.787235][ T9924] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 360.787268][ T9924] RSP: 002b:00007f57ca9f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 360.787300][ T9924] RAX: ffffffffffffffda RBX: 00007f57ccdb5fa0 RCX: 00007f57ccb8e9a9 [ 360.787321][ T9924] RDX: 0000000000000002 RSI: 000000000000ae41 RDI: 0000000000000003 [ 360.787340][ T9924] RBP: 00007f57ccc10d69 R08: 0000000000000000 R09: 0000000000000000 [ 360.787359][ T9924] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 360.787378][ T9924] R13: 0000000000000000 R14: 00007f57ccdb5fa0 R15: 00007ffe20fb4168 [ 360.787419][ T9924] [ 360.787430][ T9924] Mem-Info: [ 361.523781][ T9924] active_anon:3967 inactive_anon:52867 isolated_anon:0 [ 361.523781][ T9924] active_file:19614 inactive_file:39572 isolated_file:0 [ 361.523781][ T9924] unevictable:768 dirty:1462 writeback:0 [ 361.523781][ T9924] slab_reclaimable:10937 slab_unreclaimable:94165 [ 361.523781][ T9924] mapped:44361 shmem:50213 pagetables:1220 [ 361.523781][ T9924] sec_pagetables:0 bounce:0 [ 361.523781][ T9924] kernel_misc_reclaimable:0 [ 361.523781][ T9924] free:1262433 free_pcp:25381 free_cma:0 [ 361.619188][ T9924] Node 0 active_anon:15868kB inactive_anon:211368kB active_file:63288kB inactive_file:156800kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:169700kB dirty:5848kB writeback:0kB shmem:199616kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11924kB pagetables:4748kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 361.724497][ T9924] Node 1 active_anon:0kB inactive_anon:0kB active_file:15168kB inactive_file:1488kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:7744kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:132kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 361.761777][ T9924] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 361.848037][ T9924] lowmem_reserve[]: 0 2480 2481 2481 2481 [ 361.854300][ T9924] Node 0 DMA32 free:1176588kB boost:0kB min:34324kB low:42904kB high:51484kB reserved_highatomic:0KB free_highatomic:0KB active_anon:15824kB inactive_anon:219368kB active_file:62032kB inactive_file:156728kB unevictable:1536kB writepending:5848kB present:3129332kB managed:2540120kB mlocked:0kB bounce:0kB free_pcp:47148kB local_pcp:36116kB free_cma:0kB [ 362.039676][ T9924] lowmem_reserve[]: 0 0 1 1 1 [ 362.094632][ T9924] Node 0 Normal free:8kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:1256kB inactive_file:72kB unevictable:0kB writepending:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB [ 362.155811][ T9944] netlink: 17 bytes leftover after parsing attributes in process `syz.1.827'. [ 362.213781][ T9924] lowmem_reserve[]: 0 0 0 0 0 [ 362.218836][ T9924] Node 1 Normal free:3850184kB boost:0kB min:55556kB low:69444kB high:83332kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:15168kB inactive_file:1488kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:53972kB local_pcp:23812kB free_cma:0kB [ 362.311308][ T9955] FAULT_INJECTION: forcing a failure. [ 362.311308][ T9955] name failslab, interval 1, probability 0, space 0, times 0 [ 362.355280][ T9955] CPU: 1 UID: 0 PID: 9955 Comm: syz.0.830 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) [ 362.355325][ T9955] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 362.355344][ T9955] Call Trace: [ 362.355355][ T9955] [ 362.355366][ T9955] dump_stack_lvl+0x16c/0x1f0 [ 362.355411][ T9955] should_fail_ex+0x512/0x640 [ 362.355450][ T9955] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 362.355482][ T9955] should_failslab+0xc2/0x120 [ 362.355519][ T9955] __kmalloc_cache_noprof+0x6a/0x3e0 [ 362.355545][ T9955] ? get_device_parent+0x274/0x4e0 [ 362.355589][ T9955] ? get_device_parent+0x2b1/0x4e0 [ 362.355637][ T9955] get_device_parent+0x2b1/0x4e0 [ 362.355686][ T9955] device_add+0xbed/0x1a70 [ 362.355712][ T9955] ? __pfx_dev_set_name+0x10/0x10 [ 362.355744][ T9955] ? __pfx_device_add+0x10/0x10 [ 362.355770][ T9955] ? lockdep_init_map_type+0x5c/0x280 [ 362.355815][ T9955] ? __init_waitqueue_head+0xca/0x150 [ 362.355854][ T9955] wakeup_source_device_create+0x214/0x2a0 [ 362.355904][ T9955] wakeup_source_sysfs_add+0x1c/0x90 [ 362.355932][ T9955] wakeup_source_register+0x154/0x3e0 [ 362.355981][ T9955] ep_create_wakeup_source+0x1dd/0x2e0 [ 362.356030][ T9955] ? __pfx_ep_create_wakeup_source+0x10/0x10 [ 362.356091][ T9955] ? do_epoll_ctl+0x1565/0x3790 [ 362.356127][ T9955] do_epoll_ctl+0x1f60/0x3790 [ 362.356192][ T9955] ? __pfx_do_epoll_ctl+0x10/0x10 [ 362.356218][ T9955] ? find_held_lock+0x2b/0x80 [ 362.356248][ T9955] ? __might_fault+0xe3/0x190 [ 362.356278][ T9955] ? __might_fault+0xe3/0x190 [ 362.356323][ T9955] ? __x64_sys_epoll_ctl+0x15c/0x1e0 [ 362.356350][ T9955] __x64_sys_epoll_ctl+0x15c/0x1e0 [ 362.356380][ T9955] ? __pfx___x64_sys_epoll_ctl+0x10/0x10 [ 362.356420][ T9955] do_syscall_64+0xcd/0x490 [ 362.356461][ T9955] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 362.356489][ T9955] RIP: 0033:0x7f97d8f8e9a9 [ 362.356513][ T9955] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 362.356542][ T9955] RSP: 002b:00007f97d9deb038 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9 [ 362.356569][ T9955] RAX: ffffffffffffffda RBX: 00007f97d91b5fa0 RCX: 00007f97d8f8e9a9 [ 362.356587][ T9955] RDX: 8000000000000000 RSI: 0000000000000001 RDI: 0000000000000005 [ 362.356605][ T9955] RBP: 00007f97d9deb090 R08: 0000000000000000 R09: 0000000000000000 [ 362.356621][ T9955] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 362.356638][ T9955] R13: 0000000000000000 R14: 00007f97d91b5fa0 R15: 00007ffecac5c088 [ 362.356674][ T9955] [ 362.410487][ T9924] lowmem_reserve[]: 0 0 0 0 0 [ 362.410844][ T9924] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 362.411049][ T9924] Node 0 DMA32: 129*4kB (UME) 18*8kB (UM) 12*16kB (UME) 109*32kB (UM) 4*64kB (UM) 4*128kB (M) 2*256kB (M) 16*512kB (U) 11*1024kB (UM) 11*2048kB (UM) 275*4096kB (M) = 1174004kB [ 362.411332][ T9924] Node 0 Normal: 0*4kB 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB [ 362.411526][ T9924] Node 1 Normal: 102*4kB (UME) 128*8kB (UME) 135*16kB (ME) 168*32kB (UME) 133*64kB (UME) 19*128kB (UME) 16*256kB (UME) 11*512kB (UM) 7*1024kB (UME) 6*2048kB (ME) 928*4096kB (M) = 3850184kB [ 362.411797][ T9924] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 362.411836][ T9924] Node 0 hugepages_total=4 hugepages_free=3 hugepages_surp=1 hugepages_size=2048kB [ 362.411863][ T9924] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 362.411891][ T9924] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 362.411917][ T9924] 109682 total pagecache pages [ 362.411929][ T9924] 26 pages in swap cache [ 362.411940][ T9924] Free swap = 124628kB [ 362.411953][ T9924] Total swap = 124996kB [ 362.411966][ T9924] 2097051 pages RAM [ 362.411978][ T9924] 0 pages HighMem/MovableOnly [ 362.411991][ T9924] 430043 pages reserved [ 362.412003][ T9924] 0 pages cma reserved [ 362.412016][ T9924] kvm: failed to allocate vcpu's fpu [ 362.631916][ T9941] ima: policy update failed [ 362.633130][ T30] audit: type=1802 audit(6048778194.544:7): pid=9941 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.827" res=0 errno=0 [ 366.180809][T10003] XFS: irix_symlink_mode sysctl option is deprecated. syzkaller syzkaller login: syzkaller syzkaller login: /[ 370.980378][T10110] netlink: 4 bytes leftover after parsing attributes in process `syz.0.867'. [ 372.842225][T10147] FAULT_INJECTION: forcing a failure. [ 372.842225][T10147] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 372.856580][T10147] CPU: 0 UID: 0 PID: 10147 Comm: syz.1.877 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) [ 372.856612][T10147] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 372.856626][T10147] Call Trace: [ 372.856634][T10147] [ 372.856642][T10147] dump_stack_lvl+0x16c/0x1f0 [ 372.856678][T10147] should_fail_ex+0x512/0x640 [ 372.856716][T10147] _copy_from_user+0x2e/0xd0 [ 372.856752][T10147] move_addr_to_kernel+0x65/0x170 [ 372.856778][T10147] __sys_connect+0xb1/0x160 [ 372.856804][T10147] ? __pfx___sys_connect+0x10/0x10 [ 372.856841][T10147] ? __pfx_ksys_write+0x10/0x10 [ 372.856871][T10147] __x64_sys_connect+0x72/0xb0 [ 372.856896][T10147] ? lockdep_hardirqs_on+0x7c/0x110 [ 372.856925][T10147] do_syscall_64+0xcd/0x490 [ 372.856956][T10147] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 372.856979][T10147] RIP: 0033:0x7f13a598e9a9 [ 372.856997][T10147] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 372.857020][T10147] RSP: 002b:00007f13a67c5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 372.857042][T10147] RAX: ffffffffffffffda RBX: 00007f13a5bb6080 RCX: 00007f13a598e9a9 [ 372.857057][T10147] RDX: 0000000000000055 RSI: 0000000000000000 RDI: 0000000000000003 [ 372.857071][T10147] RBP: 00007f13a67c5090 R08: 0000000000000000 R09: 0000000000000000 [ 372.857085][T10147] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 372.857099][T10147] R13: 0000000000000001 R14: 00007f13a5bb6080 R15: 00007fff5d1428f8 [ 372.857128][T10147] [ 373.517259][T10151] netlink: 4 bytes leftover after parsing attributes in process `syz.1.879'. [ 373.707000][T10155] openvswitch: netlink: ufid size 17 bytes exceeds the range (1, 16) [ 373.727429][T10155] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 373.841387][T10157] netlink: 28 bytes leftover after parsing attributes in process `syz.1.882'. [ 373.923317][T10159] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 374.051147][T10157] team0: Port device team_slave_1 removed [ 376.931663][T10200] smc: net device syz_tun applied user defined pnetid ETHTOOL [ 377.254050][T10215] openvswitch: netlink: ufid size 17 bytes exceeds the range (1, 16) [ 377.254423][T10216] netlink: 4 bytes leftover after parsing attributes in process `syz.1.896'. [ 377.263415][T10215] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 377.295438][T10216] netlink: 354 bytes leftover after parsing attributes in process `syz.1.896'. [ 377.564485][T10219] [U] [ 377.567727][T10219] [U] [ 377.570587][T10219] [U] [ 377.573364][T10219] [U] [ 377.597131][T10219] [U] [ 377.600037][T10219] [U] [ 377.602869][T10219] [U] [ 377.605743][T10219] [U] [ 377.636952][T10219] [U] [ 377.639822][T10219] [U] [ 377.642606][T10219] [U] [ 377.645583][T10219] [U] [ 377.667457][T10219] [U] [ 377.670323][T10219] [U] [ 377.673219][T10219] [U] [ 377.676103][T10219] [U] [ 377.683561][T10219] [U] [ 377.686384][T10219] [U] [ 377.689165][T10219] [U] [ 377.691935][T10219] [U] [ 377.708791][T10219] [U] [ 377.711621][T10219] [U] [ 377.714411][T10219] [U] [ 377.717185][T10219] [U] [ 377.730775][T10224] openvswitch: netlink: ufid size 17 bytes exceeds the range (1, 16) [ 377.749630][T10219] [U] [ 377.752443][T10219] [U] [ 377.755224][T10219] [U] [ 377.758005][T10219] [U] [ 377.762182][T10224] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 377.777849][T10219] [U] [ 377.777903][T10229] netlink: 4 bytes leftover after parsing attributes in process `syz.2.901'. [ 377.780650][T10219] [U] [ 377.792440][T10219] [U] [ 377.795225][T10219] [U] [ 377.804595][T10219] [U] [ 377.807493][T10219] [U] [ 377.810380][T10219] [U] [ 377.813206][T10219] [U] [ 377.820274][T10219] [U] [ 377.823443][T10219] [U] [ 377.826314][T10219] [U] [ 377.830381][T10219] [U] [ 377.844822][T10219] [U] [ 377.847660][T10219] [U] [ 377.850446][T10219] [U] [ 377.853219][T10219] [U] [ 377.860280][T10219] [U] [ 377.863105][T10219] [U] [ 377.865994][T10219] [U] [ 377.868949][T10219] [U] [ 377.872822][T10219] [U] [ 377.875781][T10219] [U] [ 377.878655][T10219] [U] [ 377.881535][T10219] [U] [ 377.886832][T10219] [U] [ 377.889687][T10219] [U] [ 377.892712][T10219] [U] [ 377.895930][T10219] [U] [ 377.907821][T10219] [U] [ 377.910757][T10219] [U] [ 377.913524][T10219] [U] [ 377.916296][T10219] [U] [ 377.922670][T10219] [U] [ 377.925596][T10219] [U] [ 377.928744][T10219] [U] [ 377.931873][T10219] [U] [ 377.938949][T10219] [U] [ 377.942229][T10219] [U] [ 377.945187][T10219] [U] [ 377.948046][T10219] [U] [ 377.970860][T10219] [U] [ 377.973959][T10219] [U] [ 377.976922][T10219] [U] [ 377.979733][T10219] [U] [ 377.994756][T10219] [U] [ 377.997873][T10219] [U] [ 378.000773][T10219] [U] [ 378.003665][T10219] [U] [ 378.012707][T10219] [U] [ 378.015875][T10219] [U] [ 378.018942][T10219] [U] [ 378.021814][T10219] [U] [ 378.029340][T10219] [U] [ 378.032240][T10219] [U] [ 378.035234][T10219] [U] [ 378.038022][T10219] [U] [ 378.042601][T10219] [U] [ 378.045422][T10219] [U] [ 378.048178][T10219] [U] [ 378.051029][T10219] [U] [ 378.060711][T10219] [U] [ 378.064163][T10219] [U] [ 378.067202][T10219] [U] [ 378.070251][T10219] [U] [ 378.091340][T10219] [U] [ 378.094356][T10219] [U] [ 378.097233][T10219] [U] [ 378.100115][T10219] [U] [ 378.172846][T10219] [U] [ 378.176017][T10219] [U] [ 378.178972][T10219] [U] [ 378.181880][T10219] [U] [ 378.213754][T10219] [U] [ 378.216532][T10219] [U] [ 378.219279][T10219] [U] [ 378.222005][T10219] [U] [ 378.271927][T10219] [U] [ 378.993197][T10256] openvswitch: netlink: ufid size 17 bytes exceeds the range (1, 16) [ 379.010014][T10256] openvswitch: netlink: Flow set message rejected, Key attribute missing. syzkaller syzkaller login: [ 382.055367][T10332] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 382.338105][T10348] binder: BINDER_SET_CONTEXT_MGR already set [ 382.384561][T10348] binder: 10340:10348 ioctl 40046207 0 returned -16 [ 382.397372][T10348] binder: BINDER_SET_CONTEXT_MGR already set [ 382.419487][T10348] binder: 10340:10348 ioctl 40046207 0 returned -16 [ 382.439617][T10348] binder: BINDER_SET_CONTEXT_MGR already set [ 382.454957][T10348] binder: 10340:10348 ioctl 40046207 0 returned -16 [ 382.463382][T10348] binder: BINDER_SET_CONTEXT_MGR already set [ 382.470748][T10348] binder: 10340:10348 ioctl 40046207 0 returned -16 [ 382.478227][T10348] binder: BINDER_SET_CONTEXT_MGR already set [ 382.493639][T10348] binder: 10340:10348 ioctl 40046207 0 returned -16 [ 382.501752][T10348] binder: BINDER_SET_CONTEXT_MGR already set [ 382.614186][T10348] binder: 10340:10348 ioctl 40046207 0 returned -16 [ 382.646417][T10348] binder: BINDER_SET_CONTEXT_MGR already set [ 382.673941][T10348] binder: 10340:10348 ioctl 40046207 0 returned -16 [ 382.681020][T10348] binder: BINDER_SET_CONTEXT_MGR already set [ 382.687205][T10348] binder: 10340:10348 ioctl 40046207 0 returned -16 [ 382.694178][T10348] binder: BINDER_SET_CONTEXT_MGR already set [ 382.700221][T10348] binder: 10340:10348 ioctl 40046207 0 returned -16 [ 382.707330][T10348] binder: BINDER_SET_CONTEXT_MGR already set [ 382.713504][T10348] binder: 10340:10348 ioctl 40046207 0 returned -16 [ 382.720663][T10348] binder: BINDER_SET_CONTEXT_MGR already set [ 382.726867][T10348] binder: 10340:10348 ioctl 40046207 0 returned -16 [ 382.735480][T10348] binder: BINDER_SET_CONTEXT_MGR already set [ 382.741520][T10348] binder: 10340:10348 ioctl 40046207 0 returned -16 [ 382.749384][T10348] binder: BINDER_SET_CONTEXT_MGR already set [ 382.755805][T10348] binder: 10340:10348 ioctl 40046207 0 returned -16 [ 382.814106][T10348] binder: BINDER_SET_CONTEXT_MGR already set [ 382.833892][T10348] binder: 10340:10348 ioctl 40046207 0 returned -16 [ 382.841929][T10348] binder: BINDER_SET_CONTEXT_MGR already set [ 382.848566][T10348] binder: 10340:10348 ioctl 40046207 0 returned -16 [ 382.872203][T10348] binder: BINDER_SET_CONTEXT_MGR already set [ 383.002222][T10348] binder: 10340:10348 ioctl 40046207 0 returned -16 [ 383.064086][T10348] binder: BINDER_SET_CONTEXT_MGR already set [ 383.073983][T10348] binder: 10340:10348 ioctl 40046207 0 returned -16 syzkaller syzkaller login: [ 385.178148][T10395] netlink: 4 bytes leftover after parsing attributes in process `syz.2.942'. [ 385.189650][T10395] netlink: 354 bytes leftover after parsing attributes in process `syz.2.942'. [ 385.542064][T10399] netlink: 4 bytes leftover after parsing attributes in process `syz.2.943'. syzkaller syzkaller login: [ 389.146941][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 389.159123][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 syzkaller syzkaller login: [ 389.247249][T10451] netlink: 4 bytes leftover after parsing attributes in process `syz.2.955'. [ 389.602042][T10457] openvswitch: netlink: ufid size 17 bytes exceeds the range (1, 16) [ 389.620602][T10458] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input10 [ 389.663714][T10457] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 390.124732][T10459] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input11 [ 390.410243][T10469] netlink: 146 bytes leftover after parsing attributes in process `syz.3.962'. [ 391.864432][T10507] capability: warning: `syz.2.975' uses 32-bit capabilities (legacy support in use) syzkaller syzkaller login: [ 394.190895][T10564] openvswitch: netlink: ufid size 17 bytes exceeds the range (1, 16) [ 394.222376][T10564] openvswitch: netlink: Flow set message rejected, Key attribute missing. syzkaller syzkaller login: [ 396.045299][T10606] netlink: 4 bytes leftover after parsing attributes in process `syz.3.994'. syzkaller syzkaller login: [ 398.893580][T10659] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1007'. [ 403.382014][T10738] openvswitch: netlink: ufid size 17 bytes exceeds the range (1, 16) [ 403.424167][T10738] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 404.014610][T10761] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1036'. [ 404.069132][T10761] veth0_macvtap: entered allmulticast mode [ 404.090989][T10761] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1036'. [ 409.113972][T10857] openvswitch: netlink: ufid size 17 bytes exceeds the range (1, 16) [ 409.173764][T10857] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 411.770369][T10858] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 415.811298][T10943] netlink: 146 bytes leftover after parsing attributes in process `syz.2.1078'. syzkaller syzkaller login: [ 416.838910][ T5166] Bluetooth: hci2: command 0x0406 tx timeout [ 417.158206][T10973] can: request_module (can-proto-0) failed. syzkaller syzkaller login: [ 418.084556][T10991] netlink: 146 bytes leftover after parsing attributes in process `syz.3.1090'. [ 418.312742][T10998] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1091'. [ 418.346930][T10998] netlink: 354 bytes leftover after parsing attributes in process `syz.1.1091'. [ 418.674772][T11003] netlink: 146 bytes leftover after parsing attributes in process `syz.0.1092'. syzkaller syzkaller login: [ 419.560607][T11022] openvswitch: netlink: ufid size 17 bytes exceeds the range (1, 16) [ 419.606283][T11022] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 420.818359][T11052] nbd: must specify an index to disconnect [ 422.127221][T11078] openvswitch: netlink: ufid size 20 bytes exceeds the range (1, 16) syzkaller syzkaller login: [ 422.176903][T11078] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 424.476030][T11113] can: request_module (can-proto-0) failed. [ 428.419297][T11178] netlink: 146 bytes leftover after parsing attributes in process `syz.1.1139'. [ 428.473886][T11173] can: request_module (can-proto-0) failed. [ 430.097427][T11186] kexec: Could not allocate control_code_buffer [ 432.176058][T11233] can: request_module (can-proto-0) failed. syzkaller syzkaller login: [ 433.457886][T11261] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1159'. syzkaller syzkaller login: [ 438.594675][T11329] netlink: 146 bytes leftover after parsing attributes in process `syz.1.1175'. syzkaller syzkaller login: [ 441.323558][T11381] can: request_module (can-proto-0) failed. [ 442.098691][T11393] vivid-007: ================= START STATUS ================= [ 442.108133][ T5166] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 442.113925][T11393] vivid-007: Enable Output Cropping: true syzkaller syzkaller login: [ 442.198682][T11393] vivid-007: Enable Output Composing: true [ 442.207271][T11393] vivid-007: Enable Output Scaler: true [ 442.215185][T11393] vivid-007: Tx RGB Quantization Range: Automatic [ 442.221811][T11393] vivid-007: Transmit Mode: HDMI [ 442.227681][T11393] vivid-007: Hotplug Present: 0x00000000 [ 442.234350][T11393] vivid-007: RxSense Present: 0x00000000 [ 442.240124][T11393] vivid-007: EDID Present: 0x00000000 [ 442.247070][T11393] vivid-007: ================== END STATUS ================== [ 444.992617][T11444] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1200'. [ 445.021839][T11444] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 445.054128][T11444] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 445.088650][T11444] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 445.115896][T11444] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 445.620905][T11462] vivid-003: ================= START STATUS ================= [ 445.638759][T11462] vivid-003: Radio HW Seek Mode: Bounded [ 445.654749][T11462] vivid-003: Radio Programmable HW Seek: false [ 445.675855][T11462] vivid-003: RDS Rx I/O Mode: Block I/O [ 445.691729][T11462] vivid-003: Generate RBDS Instead of RDS: false [ 445.700999][T11462] vivid-003: RDS Reception: true [ 445.755154][T11462] vivid-003: RDS Program Type: 0 inactive [ 445.762024][T11462] vivid-003: RDS PS Name: inactive [ 445.775647][T11462] vivid-003: RDS Radio Text: inactive [ 445.781651][T11462] vivid-003: RDS Traffic Announcement: false inactive [ 445.799235][T11462] vivid-003: RDS Traffic Program: false inactive [ 445.825917][T11462] vivid-003: RDS Music: false inactive [ 445.832180][T11462] vivid-003: ================== END STATUS ================== [ 446.790097][T11492] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1212'. [ 448.389458][T11505] netlink: 29 bytes leftover after parsing attributes in process `syz.3.1217'. syzkaller syzkaller login: [ 448.912706][T11536] can: request_module (can-proto-0) failed. [ 449.625017][T11554] can: request_module (can-proto-0) failed. [ 450.587881][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 450.594510][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 450.655363][T11576] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1235'. [ 452.297361][T11598] can: request_module (can-proto-0) failed. [ 453.218091][T11627] netlink: 146 bytes leftover after parsing attributes in process `syz.2.1244'. [ 455.179497][T11661] can: request_module (can-proto-0) failed. [ 456.632250][T11686] can: request_module (can-proto-0) failed. [ 456.878748][T11698] netlink: 146 bytes leftover after parsing attributes in process `syz.0.1262'. [ 457.190113][T11686] UHID_CREATE from different security context by process 525 (syz.1.1257), this is not allowed. [ 457.268126][T11706] can: request_module (can-proto-0) failed. [ 457.575032][T11722] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1266'. [ 459.268948][T11754] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1273'. [ 461.929516][T11814] HfR: entered promiscuous mode [ 462.009566][T11814] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1290'. [ 462.078016][T11814] HfR: left promiscuous mode syzkaller syzkaller login: [ 465.640431][ T30] audit: type=1800 audit(6048778297.554:8): pid=11860 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1301" name="lu_gp_id" dev="configfs" ino=40007 res=0 errno=0 [ 466.085926][T11866] can: request_module (can-proto-0) failed. [ 466.122265][T11863] can: request_module (can-proto-0) failed. [ 468.124028][T11902] netlink: 338 bytes leftover after parsing attributes in process `syz.2.1311'. syzkaller syzkaller login: [ 468.281951][T11902] netlink: 338 bytes leftover after parsing attributes in process `syz.2.1311'. [ 468.383835][T11897] netlink: 290 bytes leftover after parsing attributes in process `syz.2.1311'. [ 468.393237][T11897] veth0_macvtap: left promiscuous mode [ 468.577071][T11912] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1313'. [ 468.638639][T11915] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1313'. [ 468.660724][T11912] geneve1: entered promiscuous mode [ 468.673766][T11912] geneve1: entered allmulticast mode [ 468.861053][T11923] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1319'. [ 469.149888][T11935] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1322'. syzkaller syzkaller login: [ 470.676493][T11967] can: request_module (can-proto-0) failed. [ 472.022872][T11981] can: request_module (can-proto-0) failed. [ 472.956706][T11991] netlink: 146 bytes leftover after parsing attributes in process `syz.0.1336'. [ 473.559483][T12013] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1335'. [ 473.635520][T12012] can: request_module (can-proto-0) failed. [ 473.967628][T12022] can: request_module (can-proto-0) failed. syzkaller syzkaller login: syzkaller syzkaller login: [ 476.471196][T12080] can: request_module (can-proto-0) failed. [ 476.543223][T12084] can: request_module (can-proto-0) failed. [ 477.475642][T12097] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1357'.                              syzkaller syzkaller login: [ 482.706338][T12207] can: request_module (can-proto-0) failed. [ 482.893797][T12213] can: request_module (can-proto-0) failed. [ 485.648803][T12258] can: request_module (can-proto-0) failed. syzkaller syzkaller login: [ 487.063368][T12288] can: request_module (can-proto-0) failed. [ 487.384323][T12293] can: request_module (can-proto-0) failed. [ 488.056637][T12309] can: request_module (can-proto-0) failed. [ 490.922833][T12357] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1409'. syzkaller syzkaller login: [ 493.244234][T12394] can: request_module (can-proto-0) failed. syzkaller syzkaller login: [ 495.649425][T12450] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1429'. [ 497.385371][T12484] can: request_module (can-proto-0) failed. [ 499.053777][T12511] can: request_module (can-proto-0) failed. [ 500.043765][T12528] can: request_module (can-proto-0) failed. [ 500.178417][T12522] can: request_module (can-proto-0) failed. [ 500.810996][T12545] netlink: 146 bytes leftover after parsing attributes in process `syz.1.1450'. syzkaller syzkaller login: syzkaller syzkaller login: [ 505.006553][T12632] can: request_module (can-proto-0) failed. [ 505.848021][T12653] can: request_module (can-proto-0) failed. syzkaller syzkaller login: [ 508.159328][T12696] can: request_module (can-proto-0) failed. [ 509.827259][T12719] can: request_module (can-proto-0) failed. [ 510.096104][T12723] can: request_module (can-proto-0) failed. [ 511.315684][T12749] can: request_module (can-proto-0) failed. [ 512.038753][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 512.054929][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 syzkaller syzkaller login: [ 514.154945][T12779] can: request_module (can-proto-0) failed. [ 514.527391][T12787] can: request_module (can-proto-0) failed. syzkaller syzkaller login: [ 516.412750][T12821] can: request_module (can-proto-0) failed. syzkaller syzkaller login: [ 517.907861][T12841] can: request_module (can-proto-0) failed. [ 519.025159][T12861] openvswitch: netlink: ufid size 17 bytes exceeds the range (1, 16) [ 519.089037][T12861] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 519.505977][ T30] audit: type=1804 audit(6048778351.424:9): pid=12865 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.1516" name="/newroot/230/file0" dev="tmpfs" ino=1183 res=1 errno=0 [ 519.575367][ T30] audit: type=1800 audit(6048778351.424:10): pid=12865 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1516" name="file0" dev="tmpfs" ino=1183 res=0 errno=0 [ 524.131860][T12941] can: request_module (can-proto-0) failed. [ 524.895900][T12956] netlink: 146 bytes leftover after parsing attributes in process `syz.2.1536'. [ 525.337027][T12961] can: request_module (can-proto-0) failed. [ 525.449329][T12966] can: request_module (can-proto-0) failed. [ 526.765810][T12981] can: request_module (can-proto-0) failed. syzkaller syzkaller login: /[ 532.496588][T13065] can: request_module (can-proto-0) failed. [ 533.202471][T13080] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1565'. [ 533.589861][T13085] can: request_module (can-proto-0) failed. [ 534.226495][T13095] can: request_module (can-proto-0) failed. [ 537.807471][T13145] can: request_module (can-proto-0) failed. [ 538.152351][T13150] can: request_module (can-proto-0) failed. [ 540.361699][T13193] can: request_module (can-proto-0) failed. syzkaller syzkaller login: [ 542.221674][ T24] Process accounting resumed syzkaller syzkaller login: [ 542.735956][T13256] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1604'. [ 542.758338][T13254] netlink: 146 bytes leftover after parsing attributes in process `syz.0.1603'. syzkaller syzkaller login: [ 548.303995][T13321] can: request_module (can-proto-0) failed. [ 548.384029][T13324] can: request_module (can-proto-0) failed. [ 549.634981][T13341] CIFS: VFS: Unsupported security flags: 0x10 [ 550.041473][T13348] can: request_module (can-proto-0) failed. [ 550.479517][T13354] can: request_module (can-proto-0) failed. [ 552.279524][T13381] can: request_module (can-proto-0) failed. [ 552.774355][T13388] FAULT_INJECTION: forcing a failure. [ 552.774355][T13388] name failslab, interval 1, probability 0, space 0, times 0 [ 552.904570][T13388] CPU: 1 UID: 0 PID: 13388 Comm: syz.2.1638 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) [ 552.904617][T13388] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 552.904644][T13388] Call Trace: [ 552.904656][T13388] [ 552.904668][T13388] dump_stack_lvl+0x16c/0x1f0 [ 552.904719][T13388] should_fail_ex+0x512/0x640 [ 552.904764][T13388] ? __kmalloc_noprof+0xbf/0x510 [ 552.904803][T13388] ? iter_file_splice_write+0x1cc/0x1150 [ 552.904841][T13388] should_failslab+0xc2/0x120 [ 552.904883][T13388] __kmalloc_noprof+0xd2/0x510 [ 552.904929][T13388] iter_file_splice_write+0x1cc/0x1150 [ 552.904971][T13388] ? kfree+0x2b4/0x4d0 [ 552.904999][T13388] ? copy_splice_read+0x897/0xba0 [ 552.905062][T13388] ? __pfx_iter_file_splice_write+0x10/0x10 [ 552.905097][T13388] ? __lock_acquire+0xb8a/0x1c90 [ 552.905149][T13388] ? __pfx_copy_splice_read+0x10/0x10 [ 552.905226][T13388] ? __pfx_iter_file_splice_write+0x10/0x10 [ 552.905267][T13388] direct_splice_actor+0x18f/0x6c0 [ 552.905304][T13388] splice_direct_to_actor+0x342/0xa30 [ 552.905360][T13388] ? __pfx_direct_splice_actor+0x10/0x10 [ 552.905401][T13388] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 552.905453][T13388] ? get_pid_task+0xfc/0x250 [ 552.905513][T13388] do_splice_direct+0x174/0x240 [ 552.905567][T13388] ? __pfx_do_splice_direct+0x10/0x10 [ 552.905622][T13388] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 552.905689][T13388] ? rw_verify_area+0xcf/0x680 [ 552.905748][T13388] do_sendfile+0xb06/0xe50 [ 552.905789][T13388] ? __pfx_do_sendfile+0x10/0x10 [ 552.905823][T13388] ? __fget_files+0x20e/0x3c0 [ 552.905867][T13388] __x64_sys_sendfile64+0x1d8/0x220 [ 552.905908][T13388] ? ksys_write+0x1ac/0x250 [ 552.905942][T13388] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 552.905998][T13388] do_syscall_64+0xcd/0x490 [ 552.906046][T13388] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 552.906079][T13388] RIP: 0033:0x7f57ccb8e9a9 [ 552.906106][T13388] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 552.906138][T13388] RSP: 002b:00007f57ca9f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 552.906168][T13388] RAX: ffffffffffffffda RBX: 00007f57ccdb5fa0 RCX: 00007f57ccb8e9a9 [ 552.906188][T13388] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003 [ 552.906207][T13388] RBP: 00007f57ca9f6090 R08: 0000000000000000 R09: 0000000000000000 [ 552.906226][T13388] R10: 0000000000000071 R11: 0000000000000246 R12: 0000000000000001 [ 552.906244][T13388] R13: 0000000000000000 R14: 00007f57ccdb5fa0 R15: 00007ffe20fb4168 [ 552.906286][T13388] syzkaller syzkaller login: [ 554.149161][T13405] can: request_module (can-proto-0) failed. [ 555.067851][T13383] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 555.080686][T13383] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 558.242016][T13491] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1659'. [ 558.256008][T13491] netlink: 302 bytes leftover after parsing attributes in process `syz.3.1659'. [ 558.420582][T13493] can: request_module (can-proto-0) failed. syzkaller syzkaller login: [ 558.921036][T13503] can: request_module (can-proto-0) failed. [ 559.112133][T13509] can: request_module (can-proto-0) failed. [ 559.590343][T13520] program syz.3.1665 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 559.925138][T13524] FAULT_INJECTION: forcing a failure. [ 559.925138][T13524] name failslab, interval 1, probability 0, space 0, times 0 [ 559.938358][T13524] CPU: 1 UID: 5 PID: 13524 Comm: syz.0.1667 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) [ 559.938402][T13524] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 559.938420][T13524] Call Trace: [ 559.938430][T13524] [ 559.938441][T13524] dump_stack_lvl+0x16c/0x1f0 [ 559.938486][T13524] should_fail_ex+0x512/0x640 [ 559.938527][T13524] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 559.938569][T13524] should_failslab+0xc2/0x120 [ 559.938615][T13524] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 559.938652][T13524] ? __proc_create+0xc3/0x8e0 [ 559.938696][T13524] ? __proc_create+0x2ce/0x8e0 [ 559.938746][T13524] __proc_create+0x2ce/0x8e0 [ 559.938791][T13524] ? __pfx___proc_create+0x10/0x10 [ 559.938831][T13524] ? _raw_write_unlock+0x28/0x50 [ 559.938881][T13524] ? proc_register+0x314/0x5f0 [ 559.938941][T13524] _proc_mkdir+0xb9/0x210 [ 559.938986][T13524] ? __pfx__proc_mkdir+0x10/0x10 [ 559.939029][T13524] ? kmem_cache_alloc_noprof+0x21e/0x3b0 [ 559.939075][T13524] ? __pfx_netfilter_net_init+0x10/0x10 [ 559.939123][T13524] netfilter_net_init+0x37b/0x4b0 [ 559.939166][T13524] ? sysctl_net_init+0x27/0x30 [ 559.939210][T13524] ops_init+0x1e2/0x5f0 [ 559.939263][T13524] setup_net+0x1ff/0x510 [ 559.939304][T13524] ? lockdep_init_map_type+0x5c/0x280 [ 559.939351][T13524] ? __pfx_setup_net+0x10/0x10 [ 559.939404][T13524] ? debug_mutex_init+0x37/0x70 [ 559.939445][T13524] copy_net_ns+0x2a6/0x5f0 [ 559.939478][T13524] create_new_namespaces+0x3ea/0xa90 [ 559.939529][T13524] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 559.939573][T13524] ksys_unshare+0x45b/0xa40 [ 559.939621][T13524] ? __pfx_ksys_unshare+0x10/0x10 [ 559.939670][T13524] ? xfd_validate_state+0x61/0x180 [ 559.939731][T13524] __x64_sys_unshare+0x31/0x40 [ 559.939778][T13524] do_syscall_64+0xcd/0x490 [ 559.939826][T13524] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 559.939869][T13524] RIP: 0033:0x7f97d8f8e9a9 [ 559.939896][T13524] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 559.939929][T13524] RSP: 002b:00007f97d9deb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 559.939960][T13524] RAX: ffffffffffffffda RBX: 00007f97d91b5fa0 RCX: 00007f97d8f8e9a9 [ 559.939980][T13524] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 559.939999][T13524] RBP: 00007f97d9010d69 R08: 0000000000000000 R09: 0000000000000000 [ 559.940018][T13524] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 559.940037][T13524] R13: 0000000000000000 R14: 00007f97d91b5fa0 R15: 00007ffecac5c088 [ 559.940079][T13524] syzkaller syzkaller login: [ 559.940092][T13524] cannot create netfilter proc entry [ 561.887473][T13565] syz.0.1674 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 562.678876][T13572] can: request_module (can-proto-0) failed. [ 562.709666][T13575] can: request_module (can-proto-0) failed. [ 564.775589][T13605] syz.1.1683 (13605) used greatest stack depth: 19784 bytes left [ 565.119205][T13624] FAULT_INJECTION: forcing a failure. [ 565.119205][T13624] name failslab, interval 1, probability 0, space 0, times 0 [ 565.137755][T13624] CPU: 1 UID: 5 PID: 13624 Comm: syz.2.1688 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) [ 565.137803][T13624] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 565.137824][T13624] Call Trace: [ 565.137834][T13624] [ 565.137848][T13624] dump_stack_lvl+0x16c/0x1f0 [ 565.137898][T13624] should_fail_ex+0x512/0x640 [ 565.137944][T13624] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 565.137989][T13624] should_failslab+0xc2/0x120 [ 565.138034][T13624] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 565.138071][T13624] ? __proc_create+0xc3/0x8e0 [ 565.138117][T13624] ? __proc_create+0x2ce/0x8e0 [ 565.138169][T13624] __proc_create+0x2ce/0x8e0 [ 565.138217][T13624] ? __pfx___proc_create+0x10/0x10 [ 565.138262][T13624] ? _raw_write_unlock+0x28/0x50 [ 565.138302][T13624] ? proc_register+0x314/0x5f0 [ 565.138362][T13624] _proc_mkdir+0xb9/0x210 [ 565.138409][T13624] ? __pfx__proc_mkdir+0x10/0x10 [ 565.138455][T13624] ? kmem_cache_alloc_noprof+0x21e/0x3b0 [ 565.138503][T13624] ? __pfx_netfilter_net_init+0x10/0x10 [ 565.138551][T13624] netfilter_net_init+0x37b/0x4b0 [ 565.138595][T13624] ? sysctl_net_init+0x27/0x30 [ 565.138638][T13624] ops_init+0x1e2/0x5f0 [ 565.138695][T13624] setup_net+0x1ff/0x510 [ 565.138738][T13624] ? lockdep_init_map_type+0x5c/0x280 [ 565.138797][T13624] ? __pfx_setup_net+0x10/0x10 [ 565.138851][T13624] ? debug_mutex_init+0x37/0x70 [ 565.138893][T13624] copy_net_ns+0x2a6/0x5f0 [ 565.138929][T13624] create_new_namespaces+0x3ea/0xa90 [ 565.138979][T13624] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 565.139025][T13624] ksys_unshare+0x45b/0xa40 [ 565.139074][T13624] ? __pfx_ksys_unshare+0x10/0x10 [ 565.139125][T13624] ? xfd_validate_state+0x61/0x180 [ 565.139184][T13624] __x64_sys_unshare+0x31/0x40 [ 565.139233][T13624] do_syscall_64+0xcd/0x490 [ 565.139281][T13624] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 565.139314][T13624] RIP: 0033:0x7f57ccb8e9a9 [ 565.139340][T13624] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 565.139371][T13624] RSP: 002b:00007f57ca9f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 565.139403][T13624] RAX: ffffffffffffffda RBX: 00007f57ccdb5fa0 RCX: 00007f57ccb8e9a9 [ 565.139424][T13624] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 565.139445][T13624] RBP: 00007f57ccc10d69 R08: 0000000000000000 R09: 0000000000000000 [ 565.139464][T13624] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 565.139484][T13624] R13: 0000000000000000 R14: 00007f57ccdb5fa0 R15: 00007ffe20fb4168 [ 565.139528][T13624] [ 565.139635][T13624] cannot create netfilter proc entry [ 565.404137][T13627] can: request_module (can-proto-0) failed. [ 566.200838][T13641] can: request_module (can-proto-0) failed. [ 568.328779][T13687] can: request_module (can-proto-0) failed. [ 568.629569][T13696] can: request_module (can-proto-0) failed. [ 569.072533][T13658] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 569.082675][T13658] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 569.401796][T13705] can: request_module (can-proto-0) failed. [ 571.696997][T13742] can: request_module (can-proto-0) failed. [ 573.467421][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 573.475770][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 574.803761][T13778] can: request_module (can-proto-0) failed. [ 576.187589][T13792] FAULT_INJECTION: forcing a failure. [ 576.187589][T13792] name failslab, interval 1, probability 0, space 0, times 0 [ 576.309094][T13794] can: request_module (can-proto-0) failed. [ 576.343810][T13792] CPU: 0 UID: 0 PID: 13792 Comm: syz.3.1721 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) [ 576.343856][T13792] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 576.343875][T13792] Call Trace: [ 576.343886][T13792] [ 576.343897][T13792] dump_stack_lvl+0x16c/0x1f0 [ 576.343945][T13792] should_fail_ex+0x512/0x640 [ 576.343987][T13792] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 576.344028][T13792] should_failslab+0xc2/0x120 [ 576.344070][T13792] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 576.344109][T13792] ? prepare_creds+0x2c/0x7d0 [ 576.344166][T13792] prepare_creds+0x2c/0x7d0 [ 576.344222][T13792] __sys_setresgid+0x4af/0x1150 [ 576.344270][T13792] do_syscall_64+0xcd/0x490 [ 576.344315][T13792] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 576.344348][T13792] RIP: 0033:0x7fd178d8e9a9 [ 576.344374][T13792] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 576.344404][T13792] RSP: 002b:00007fd179bd1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000077 [ 576.344434][T13792] RAX: ffffffffffffffda RBX: 00007fd178fb5fa0 RCX: 00007fd178d8e9a9 [ 576.344456][T13792] RDX: ffffffffffffffff RSI: 000000000000ee01 RDI: 0000000000000000 [ 576.344476][T13792] RBP: 00007fd179bd1090 R08: 0000000000000000 R09: 0000000000000000 [ 576.344497][T13792] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 576.344516][T13792] R13: 0000000000000000 R14: 00007fd178fb5fa0 R15: 00007ffe934bffa8 [ 576.344557][T13792] [ 581.779281][T13855] can: request_module (can-proto-0) failed. [ 582.729777][T13882] can: request_module (can-proto-0) failed. [ 583.486338][T13887] can: request_module (can-proto-0) failed. [ 584.507035][T13912] can: request_module (can-proto-0) failed. [ 584.570617][T13909] can: request_module (can-proto-0) failed. [ 585.751874][T13927] can: request_module (can-proto-0) failed. [ 587.287844][T13949] can: request_module (can-proto-0) failed. [ 589.388275][T13977] openvswitch: netlink: ufid size 17 bytes exceeds the range (1, 16) [ 589.415710][T13977] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 589.895180][T13986] can: request_module (can-proto-0) failed. [ 591.057039][T14004] mkiss: ax0: crc mode is auto. [ 593.161574][T14041] FAULT_INJECTION: forcing a failure. [ 593.161574][T14041] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 593.176968][T14041] CPU: 0 UID: 0 PID: 14041 Comm: syz.2.1768 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) [ 593.177011][T14041] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 593.177029][T14041] Call Trace: [ 593.177039][T14041] [ 593.177050][T14041] dump_stack_lvl+0x16c/0x1f0 [ 593.177098][T14041] should_fail_ex+0x512/0x640 [ 593.177147][T14041] should_fail_alloc_page+0xe7/0x130 [ 593.177193][T14041] prepare_alloc_pages+0x3c2/0x610 [ 593.177244][T14041] ? find_held_lock+0x2b/0x80 [ 593.177285][T14041] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 593.177323][T14041] ? mark_held_locks+0x49/0x80 [ 593.177380][T14041] ? finish_task_switch.isra.0+0x221/0xc10 [ 593.177421][T14041] ? finish_task_switch.isra.0+0x2fa/0xc10 [ 593.177462][T14041] ? rcu_is_watching+0x12/0xc0 [ 593.177498][T14041] ? trace_sched_exit_tp+0xde/0x130 [ 593.177546][T14041] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 593.177589][T14041] ? __lock_acquire+0xb8a/0x1c90 [ 593.177652][T14041] ? css_rstat_updated+0x9d/0xd30 [ 593.177689][T14041] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 593.177743][T14041] ? policy_nodemask+0xea/0x4e0 [ 593.177788][T14041] alloc_pages_mpol+0x1fb/0x550 [ 593.177830][T14041] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 593.177873][T14041] ? find_held_lock+0x2b/0x80 [ 593.177907][T14041] ? __pfx___might_resched+0x10/0x10 [ 593.177950][T14041] folio_alloc_mpol_noprof+0x36/0x2f0 [ 593.178006][T14041] alloc_migration_target_by_mpol+0x246/0x500 [ 593.178060][T14041] ? __pfx_alloc_migration_target_by_mpol+0x10/0x10 [ 593.178112][T14041] ? __pfx___might_resched+0x10/0x10 [ 593.178153][T14041] ? __pfx_queue_folios_pte_range+0x10/0x10 [ 593.178206][T14041] migrate_pages_batch+0x3bc/0x31a0 [ 593.178262][T14041] ? __pfx_alloc_migration_target_by_mpol+0x10/0x10 [ 593.178334][T14041] ? __pfx_migrate_pages_batch+0x10/0x10 [ 593.178466][T14041] migrate_pages_sync+0x12d/0x8a0 [ 593.178515][T14041] ? __pfx_alloc_migration_target_by_mpol+0x10/0x10 [ 593.178577][T14041] ? __pfx_migrate_pages_sync+0x10/0x10 [ 593.178678][T14041] ? __pfx_queue_pages_test_walk+0x10/0x10 [ 593.178748][T14041] migrate_pages+0x1b67/0x23b0 [ 593.178797][T14041] ? __pfx_alloc_migration_target_by_mpol+0x10/0x10 [ 593.178860][T14041] ? __pfx_migrate_pages+0x10/0x10 [ 593.178912][T14041] ? find_held_lock+0x2b/0x80 [ 593.178960][T14041] ? up_write+0x1b2/0x520 [ 593.178991][T14041] do_mbind+0x6f0/0xf30 [ 593.179048][T14041] ? __pfx_do_mbind+0x10/0x10 [ 593.179103][T14041] ? find_held_lock+0x2b/0x80 [ 593.179138][T14041] ? ksys_write+0x190/0x250 [ 593.179208][T14041] ? __pfx_get_nodes+0x10/0x10 [ 593.179245][T14041] ? __fget_files+0x20e/0x3c0 [ 593.179375][T14041] kernel_mbind+0x1e3/0x1f0 [ 593.179432][T14041] ? __pfx_kernel_mbind+0x10/0x10 [ 593.179481][T14041] ? syscall_user_dispatch+0x78/0x140 [ 593.179528][T14041] do_syscall_64+0xcd/0x490 [ 593.179575][T14041] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 593.179609][T14041] RIP: 0033:0x7f57ccb8e9a9 [ 593.179637][T14041] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 593.179668][T14041] RSP: 002b:00007f57ca9d5038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed [ 593.179700][T14041] RAX: ffffffffffffffda RBX: 00007f57ccdb6080 RCX: 00007f57ccb8e9a9 [ 593.179722][T14041] RDX: 0000000100000000 RSI: 0000000100000004 RDI: 0000000000002000 [ 593.179743][T14041] RBP: 00007f57ca9d5090 R08: 0000000000000005 R09: 0000000000000002 [ 593.179762][T14041] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 593.179781][T14041] R13: 0000000000000000 R14: 00007f57ccdb6080 R15: 00007ffe20fb4168 [ 593.179822][T14041] [ 593.959867][T14047] : Can't lookup blockdev [ 595.419903][T14055] can: request_module (can-proto-0) failed. [ 596.533856][T14068] can: request_module (can-proto-0) failed. [ 597.618099][T14085] can: request_module (can-proto-0) failed. [ 599.636279][T14106] FAULT_INJECTION: forcing a failure. [ 599.636279][T14106] name failslab, interval 1, probability 0, space 0, times 0 [ 599.650255][T14106] CPU: 1 UID: 0 PID: 14106 Comm: syz.3.1782 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) [ 599.650301][T14106] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 599.650316][T14106] Call Trace: [ 599.650325][T14106] [ 599.650334][T14106] dump_stack_lvl+0x16c/0x1f0 [ 599.650373][T14106] should_fail_ex+0x512/0x640 [ 599.650408][T14106] ? __kmalloc_noprof+0xbf/0x510 [ 599.650439][T14106] ? lsm_blob_alloc+0x68/0x90 [ 599.650467][T14106] should_failslab+0xc2/0x120 [ 599.650500][T14106] __kmalloc_noprof+0xd2/0x510 [ 599.650536][T14106] lsm_blob_alloc+0x68/0x90 [ 599.650567][T14106] security_prepare_creds+0x30/0x270 [ 599.650597][T14106] prepare_creds+0x56f/0x7d0 [ 599.650640][T14106] __sys_setresgid+0x4af/0x1150 [ 599.650677][T14106] do_syscall_64+0xcd/0x490 [ 599.650719][T14106] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 599.650745][T14106] RIP: 0033:0x7fd178d8e9a9 [ 599.650765][T14106] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 599.650791][T14106] RSP: 002b:00007fd179bd1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000077 [ 599.650815][T14106] RAX: ffffffffffffffda RBX: 00007fd178fb5fa0 RCX: 00007fd178d8e9a9 [ 599.650838][T14106] RDX: ffffffffffffffff RSI: 000000000000ee01 RDI: 0000000000000000 [ 599.650854][T14106] RBP: 00007fd179bd1090 R08: 0000000000000000 R09: 0000000000000000 [ 599.650869][T14106] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 599.650884][T14106] R13: 0000000000000000 R14: 00007fd178fb5fa0 R15: 00007ffe934bffa8 [ 599.650916][T14106] [ 599.896951][T14110] can: request_module (can-proto-0) failed. syzkaller syzkaller login: [ 604.153828][T14165] can: request_module (can-proto-0) failed. [ 605.617169][T14187] FAULT_INJECTION: forcing a failure. [ 605.617169][T14187] name failslab, interval 1, probability 0, space 0, times 0 [ 605.635146][T14187] CPU: 0 UID: 0 PID: 14187 Comm: syz.3.1798 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) [ 605.635192][T14187] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 605.635207][T14187] Call Trace: [ 605.635215][T14187] [ 605.635224][T14187] dump_stack_lvl+0x16c/0x1f0 [ 605.635259][T14187] should_fail_ex+0x512/0x640 [ 605.635290][T14187] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 605.635321][T14187] should_failslab+0xc2/0x120 [ 605.635351][T14187] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 605.635396][T14187] ? __alloc_skb+0x2b2/0x380 [ 605.635432][T14187] __alloc_skb+0x2b2/0x380 [ 605.635463][T14187] ? __pfx___alloc_skb+0x10/0x10 [ 605.635496][T14187] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 605.635539][T14187] netlink_alloc_large_skb+0x69/0x130 [ 605.635578][T14187] netlink_sendmsg+0x6a1/0xdd0 [ 605.635620][T14187] ? __pfx_netlink_sendmsg+0x10/0x10 [ 605.635670][T14187] ____sys_sendmsg+0xa98/0xc70 [ 605.635693][T14187] ? copy_msghdr_from_user+0x10a/0x160 [ 605.635724][T14187] ? __pfx_____sys_sendmsg+0x10/0x10 [ 605.635753][T14187] ? try_to_wake_up+0xa2f/0x1680 [ 605.635783][T14187] ___sys_sendmsg+0x134/0x1d0 [ 605.635816][T14187] ? __pfx____sys_sendmsg+0x10/0x10 [ 605.635853][T14187] ? __lock_acquire+0x622/0x1c90 [ 605.635922][T14187] __sys_sendmsg+0x16d/0x220 [ 605.635956][T14187] ? __pfx___sys_sendmsg+0x10/0x10 [ 605.635989][T14187] ? __x64_sys_futex+0x1e0/0x4c0 [ 605.636037][T14187] do_syscall_64+0xcd/0x490 [ 605.636073][T14187] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 605.636096][T14187] RIP: 0033:0x7fd178d8e9a9 [ 605.636115][T14187] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 605.636138][T14187] RSP: 002b:00007fd179bd1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 605.636160][T14187] RAX: ffffffffffffffda RBX: 00007fd178fb5fa0 RCX: 00007fd178d8e9a9 [ 605.636176][T14187] RDX: 000000000000c800 RSI: 0000200000000000 RDI: 0000000000000008 [ 605.636191][T14187] RBP: 00007fd178e10d69 R08: 0000000000000000 R09: 0000000000000000 [ 605.636205][T14187] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 605.636219][T14187] R13: 0000000000000000 R14: 00007fd178fb5fa0 R15: 00007ffe934bffa8 [ 605.636249][T14187] syzkaller syzkaller login: [ 605.982301][T14183] can: request_module (can-proto-0) failed. [ 608.230359][T14212] can: request_module (can-proto-0) failed. [ 608.410648][T14218] can: request_module (can-proto-0) failed. [ 609.626204][T14233] can: request_module (can-proto-0) failed. syzkaller syzkaller login: [ 611.842284][T14267] can: request_module (can-proto-0) failed. [ 613.379151][T14293] FAULT_INJECTION: forcing a failure. [ 613.379151][T14293] name failslab, interval 1, probability 0, space 0, times 0 [ 613.392418][T14293] CPU: 0 UID: 0 PID: 14293 Comm: syz.0.1819 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) [ 613.392459][T14293] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 613.392477][T14293] Call Trace: [ 613.392488][T14293] [ 613.392499][T14293] dump_stack_lvl+0x16c/0x1f0 [ 613.392548][T14293] should_fail_ex+0x512/0x640 [ 613.392591][T14293] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 613.392625][T14293] should_failslab+0xc2/0x120 [ 613.392666][T14293] __kmalloc_cache_noprof+0x6a/0x3e0 [ 613.392697][T14293] ? alloc_pipe_info+0x10e/0x590 [ 613.392740][T14293] alloc_pipe_info+0x10e/0x590 [ 613.392781][T14293] splice_direct_to_actor+0x77d/0xa30 [ 613.392848][T14293] ? __pfx_direct_splice_actor+0x10/0x10 [ 613.392880][T14293] ? __pfx_aa_file_perm+0x10/0x10 [ 613.392912][T14293] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 613.392961][T14293] ? get_pid_task+0xfc/0x250 [ 613.393018][T14293] do_splice_direct+0x174/0x240 [ 613.393070][T14293] ? __pfx_do_splice_direct+0x10/0x10 [ 613.393125][T14293] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 613.393183][T14293] ? rw_verify_area+0xcf/0x680 [ 613.393237][T14293] do_sendfile+0xb06/0xe50 [ 613.393275][T14293] ? __pfx_do_sendfile+0x10/0x10 [ 613.393305][T14293] ? __fget_files+0x20e/0x3c0 [ 613.393346][T14293] __x64_sys_sendfile64+0x1d8/0x220 [ 613.393384][T14293] ? ksys_write+0x1ac/0x250 [ 613.393412][T14293] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 613.393466][T14293] do_syscall_64+0xcd/0x490 [ 613.393515][T14293] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 613.393547][T14293] RIP: 0033:0x7f97d8f8e9a9 [ 613.393573][T14293] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 613.393604][T14293] RSP: 002b:00007f97d9deb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 613.393633][T14293] RAX: ffffffffffffffda RBX: 00007f97d91b5fa0 RCX: 00007f97d8f8e9a9 [ 613.393655][T14293] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000005 [ 613.393674][T14293] RBP: 00007f97d9deb090 R08: 0000000000000000 R09: 0000000000000000 [ 613.393692][T14293] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000001 [ 613.393712][T14293] R13: 0000000000000000 R14: 00007f97d91b5fa0 R15: 00007ffecac5c088 [ 613.393752][T14293] [ 613.848729][T14290] can: request_module (can-proto-0) failed. [ 615.402193][T14317] can: request_module (can-proto-0) failed. [ 616.481883][T14327] can: request_module (can-proto-0) failed. [ 616.580271][T14333] can: request_module (can-proto-0) failed. syzkaller syzkaller login: [ 616.938878][T14338] can: request_module (can-proto-0) failed. [ 617.742164][T14353] can: request_module (can-proto-0) failed. [ 618.167113][T14358] can: request_module (can-proto-0) failed. [ 619.331693][T14379] FAULT_INJECTION: forcing a failure. [ 619.331693][T14379] name failslab, interval 1, probability 0, space 0, times 0 [ 619.354411][T14379] CPU: 0 UID: 0 PID: 14379 Comm: syz.2.1832 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) [ 619.354457][T14379] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 619.354476][T14379] Call Trace: [ 619.354486][T14379] [ 619.354499][T14379] dump_stack_lvl+0x16c/0x1f0 [ 619.354547][T14379] should_fail_ex+0x512/0x640 [ 619.354590][T14379] ? fs_reclaim_acquire+0xae/0x150 [ 619.354644][T14379] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 619.354678][T14379] should_failslab+0xc2/0x120 [ 619.354720][T14379] __kmalloc_noprof+0xd2/0x510 [ 619.354766][T14379] tomoyo_realpath_from_path+0xc2/0x6e0 [ 619.354806][T14379] ? tomoyo_profile+0x47/0x60 [ 619.354850][T14379] tomoyo_path_number_perm+0x245/0x580 [ 619.354900][T14379] ? tomoyo_path_number_perm+0x237/0x580 [ 619.354955][T14379] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 619.355009][T14379] ? find_held_lock+0x2b/0x80 [ 619.355083][T14379] ? find_held_lock+0x2b/0x80 [ 619.355119][T14379] ? hook_file_ioctl_common+0x145/0x410 [ 619.355176][T14379] ? __fget_files+0x20e/0x3c0 [ 619.355217][T14379] security_file_ioctl+0x9b/0x240 [ 619.355271][T14379] __x64_sys_ioctl+0xb7/0x210 [ 619.355325][T14379] do_syscall_64+0xcd/0x490 [ 619.355379][T14379] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 619.355412][T14379] RIP: 0033:0x7f57ccb8e9a9 [ 619.355438][T14379] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 619.355470][T14379] RSP: 002b:00007f57ca9f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 619.355499][T14379] RAX: ffffffffffffffda RBX: 00007f57ccdb5fa0 RCX: 00007f57ccb8e9a9 [ 619.355521][T14379] RDX: 0000000000000000 RSI: 0000000000007041 RDI: 0000000000000003 [ 619.355540][T14379] RBP: 00007f57ca9f6090 R08: 0000000000000000 R09: 0000000000000000 [ 619.355560][T14379] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 619.355579][T14379] R13: 0000000000000000 R14: 00007f57ccdb5fa0 R15: 00007ffe20fb4168 [ 619.355621][T14379] [ 619.355633][T14379] ERROR: Out of memory at tomoyo_realpath_from_path. [ 620.029050][T14385] can: request_module (can-proto-0) failed. [ 620.460448][T14395] can: request_module (can-proto-0) failed. syzkaller syzkaller login: [ 622.582449][T14433] can: request_module (can-proto-0) failed. syzkaller syzkaller login: [ 623.122722][T14444] can: request_module (can-proto-0) failed. [ 625.096626][T14471] can: request_module (can-proto-0) failed. [ 625.385964][T14469] can: request_module (can-proto-0) failed. [ 626.547267][T14496] FAULT_INJECTION: forcing a failure. [ 626.547267][T14496] name failslab, interval 1, probability 0, space 0, times 0 [ 626.624243][T14496] CPU: 0 UID: 0 PID: 14496 Comm: syz.2.1853 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) [ 626.624290][T14496] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 626.624309][T14496] Call Trace: [ 626.624320][T14496] [ 626.624332][T14496] dump_stack_lvl+0x16c/0x1f0 [ 626.624381][T14496] should_fail_ex+0x512/0x640 [ 626.624427][T14496] ? fs_reclaim_acquire+0xae/0x150 [ 626.624481][T14496] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 626.624517][T14496] should_failslab+0xc2/0x120 [ 626.624557][T14496] __kmalloc_noprof+0xd2/0x510 [ 626.624602][T14496] tomoyo_realpath_from_path+0xc2/0x6e0 [ 626.624643][T14496] ? tomoyo_profile+0x47/0x60 [ 626.624689][T14496] tomoyo_path_perm+0x274/0x460 [ 626.624737][T14496] ? tomoyo_path_perm+0x260/0x460 [ 626.624791][T14496] ? __pfx_tomoyo_path_perm+0x10/0x10 [ 626.624896][T14496] ? __pfx_ima_file_check+0x10/0x10 [ 626.624935][T14496] ? hook_file_truncate+0xc7/0x250 [ 626.624997][T14496] security_file_truncate+0x84/0x1e0 [ 626.625035][T14496] path_openat+0xc10/0x2cb0 [ 626.625087][T14496] ? __pfx_path_openat+0x10/0x10 [ 626.625127][T14496] ? __lock_acquire+0xb8a/0x1c90 [ 626.625181][T14496] do_filp_open+0x20b/0x470 [ 626.625217][T14496] ? __pfx_do_filp_open+0x10/0x10 [ 626.625288][T14496] ? alloc_fd+0x471/0x7d0 [ 626.625333][T14496] do_sys_openat2+0x11b/0x1d0 [ 626.625381][T14496] ? __pfx_do_sys_openat2+0x10/0x10 [ 626.625433][T14496] ? __sys_sendmsg+0x18c/0x220 [ 626.625488][T14496] __x64_sys_openat+0x174/0x210 [ 626.625538][T14496] ? __pfx___x64_sys_openat+0x10/0x10 [ 626.625607][T14496] do_syscall_64+0xcd/0x490 [ 626.625655][T14496] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 626.625689][T14496] RIP: 0033:0x7f57ccb8e9a9 [ 626.625715][T14496] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 626.625747][T14496] RSP: 002b:00007f57ca9f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 626.625776][T14496] RAX: ffffffffffffffda RBX: 00007f57ccdb5fa0 RCX: 00007f57ccb8e9a9 [ 626.625797][T14496] RDX: 0000000000101202 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 626.625816][T14496] RBP: 00007f57ccc10d69 R08: 0000000000000000 R09: 0000000000000000 [ 626.625835][T14496] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 626.625862][T14496] R13: 0000000000000000 R14: 00007f57ccdb5fa0 R15: 00007ffe20fb4168 [ 626.625904][T14496] [ 626.875867][T14496] ERROR: Out of memory at tomoyo_realpath_from_path. [ 627.677077][T14508] FAULT_INJECTION: forcing a failure. [ 627.677077][T14508] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 627.690729][T14508] CPU: 1 UID: 0 PID: 14508 Comm: syz.0.1856 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) [ 627.690783][T14508] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 627.690804][T14508] Call Trace: [ 627.690814][T14508] [ 627.690827][T14508] dump_stack_lvl+0x16c/0x1f0 [ 627.690874][T14508] should_fail_ex+0x512/0x640 [ 627.690924][T14508] _copy_to_user+0x32/0xd0 [ 627.690975][T14508] simple_read_from_buffer+0xcb/0x170 [ 627.691031][T14508] proc_fail_nth_read+0x197/0x270 [ 627.691089][T14508] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 627.691148][T14508] ? rw_verify_area+0xcf/0x680 [ 627.691199][T14508] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 627.691254][T14508] vfs_read+0x1e1/0xc60 [ 627.691293][T14508] ? __pfx___mutex_lock+0x10/0x10 [ 627.691337][T14508] ? __pfx_vfs_read+0x10/0x10 [ 627.691382][T14508] ? __fget_files+0x20e/0x3c0 [ 627.691427][T14508] ksys_read+0x12a/0x250 [ 627.691460][T14508] ? __pfx_ksys_read+0x10/0x10 [ 627.691507][T14508] do_syscall_64+0xcd/0x490 [ 627.691554][T14508] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 627.691587][T14508] RIP: 0033:0x7f97d8f8d3bc [ 627.691614][T14508] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 627.691646][T14508] RSP: 002b:00007f97d9deb030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 627.691676][T14508] RAX: ffffffffffffffda RBX: 00007f97d91b5fa0 RCX: 00007f97d8f8d3bc [ 627.691697][T14508] RDX: 000000000000000f RSI: 00007f97d9deb0a0 RDI: 0000000000000009 [ 627.691717][T14508] RBP: 00007f97d9deb090 R08: 0000000000000000 R09: 0000000000000000 [ 627.691738][T14508] R10: 000000000000cad7 R11: 0000000000000246 R12: 0000000000000001 [ 627.691757][T14508] R13: 0000000000000000 R14: 00007f97d91b5fa0 R15: 00007ffecac5c088 [ 627.691807][T14508] [ 629.755107][T14529] can: request_module (can-proto-0) failed. [ 630.160935][T14538] FAULT_INJECTION: forcing a failure. [ 630.160935][T14538] name failslab, interval 1, probability 0, space 0, times 0 [ 630.179578][T14538] CPU: 1 UID: 0 PID: 14538 Comm: syz.0.1863 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) [ 630.179613][T14538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 630.179627][T14538] Call Trace: [ 630.179635][T14538] [ 630.179644][T14538] dump_stack_lvl+0x16c/0x1f0 [ 630.179680][T14538] should_fail_ex+0x512/0x640 [ 630.179712][T14538] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 630.179742][T14538] should_failslab+0xc2/0x120 [ 630.179783][T14538] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 630.179811][T14538] ? security_file_alloc+0x34/0x2b0 [ 630.179838][T14538] security_file_alloc+0x34/0x2b0 [ 630.179862][T14538] init_file+0x93/0x4c0 [ 630.179894][T14538] alloc_empty_file+0x73/0x1e0 [ 630.179928][T14538] path_openat+0xda/0x2cb0 [ 630.179951][T14538] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 630.179985][T14538] ? __pfx_path_openat+0x10/0x10 [ 630.180012][T14538] ? __lock_acquire+0xb8a/0x1c90 [ 630.180050][T14538] do_filp_open+0x20b/0x470 [ 630.180076][T14538] ? __pfx_do_filp_open+0x10/0x10 [ 630.180122][T14538] ? alloc_fd+0x471/0x7d0 [ 630.180152][T14538] do_sys_openat2+0x11b/0x1d0 [ 630.180187][T14538] ? __pfx_do_sys_openat2+0x10/0x10 [ 630.180222][T14538] ? __sys_sendmsg+0x18c/0x220 [ 630.180262][T14538] __x64_sys_openat+0x174/0x210 [ 630.180297][T14538] ? __pfx___x64_sys_openat+0x10/0x10 [ 630.180343][T14538] do_syscall_64+0xcd/0x490 [ 630.180377][T14538] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 630.180401][T14538] RIP: 0033:0x7f97d8f8e9a9 [ 630.180419][T14538] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 630.180442][T14538] RSP: 002b:00007f97d9deb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 630.180463][T14538] RAX: ffffffffffffffda RBX: 00007f97d91b5fa0 RCX: 00007f97d8f8e9a9 [ 630.180479][T14538] RDX: 0000000000101202 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 630.180494][T14538] RBP: 00007f97d9010d69 R08: 0000000000000000 R09: 0000000000000000 [ 630.180509][T14538] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 630.180525][T14538] R13: 0000000000000000 R14: 00007f97d91b5fa0 R15: 00007ffecac5c088 [ 630.180554][T14538] [ 630.866776][T14553] can: request_module (can-proto-0) failed. [ 631.273057][T14562] vhci_hcd: invalid port number 16 [ 631.301060][T14562] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub [ 634.910226][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 634.919133][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 638.311089][T14655] can: request_module (can-proto-0) failed. [ 638.784676][T14666] FAULT_INJECTION: forcing a failure. [ 638.784676][T14666] name failslab, interval 1, probability 0, space 0, times 0 [ 638.821912][T14666] CPU: 0 UID: 0 PID: 14666 Comm: syz.3.1888 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) [ 638.821957][T14666] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 638.821977][T14666] Call Trace: [ 638.821988][T14666] [ 638.822001][T14666] dump_stack_lvl+0x16c/0x1f0 [ 638.822051][T14666] should_fail_ex+0x512/0x640 [ 638.822096][T14666] ? fs_reclaim_acquire+0xae/0x150 [ 638.822149][T14666] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 638.822185][T14666] should_failslab+0xc2/0x120 [ 638.822228][T14666] __kmalloc_noprof+0xd2/0x510 [ 638.822274][T14666] tomoyo_realpath_from_path+0xc2/0x6e0 [ 638.822316][T14666] ? tomoyo_profile+0x47/0x60 [ 638.822361][T14666] tomoyo_path_perm+0x274/0x460 [ 638.822409][T14666] ? tomoyo_path_perm+0x260/0x460 [ 638.822462][T14666] ? __pfx_tomoyo_path_perm+0x10/0x10 [ 638.822558][T14666] ? __pfx_ima_file_check+0x10/0x10 [ 638.822595][T14666] ? hook_file_truncate+0xc7/0x250 [ 638.822655][T14666] security_file_truncate+0x84/0x1e0 [ 638.822691][T14666] path_openat+0xc10/0x2cb0 [ 638.822741][T14666] ? __pfx_path_openat+0x10/0x10 [ 638.822780][T14666] ? __lock_acquire+0xb8a/0x1c90 [ 638.822834][T14666] do_filp_open+0x20b/0x470 [ 638.822869][T14666] ? __pfx_do_filp_open+0x10/0x10 [ 638.822951][T14666] ? alloc_fd+0x471/0x7d0 [ 638.822997][T14666] do_sys_openat2+0x11b/0x1d0 [ 638.823046][T14666] ? __pfx_do_sys_openat2+0x10/0x10 [ 638.823099][T14666] ? __sys_sendmsg+0x18c/0x220 [ 638.823156][T14666] __x64_sys_openat+0x174/0x210 [ 638.823205][T14666] ? __pfx___x64_sys_openat+0x10/0x10 [ 638.823274][T14666] do_syscall_64+0xcd/0x490 [ 638.823322][T14666] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 638.823356][T14666] RIP: 0033:0x7fd178d8e9a9 [ 638.823381][T14666] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 638.823415][T14666] RSP: 002b:00007fd179bd1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 638.823447][T14666] RAX: ffffffffffffffda RBX: 00007fd178fb5fa0 RCX: 00007fd178d8e9a9 [ 638.823470][T14666] RDX: 0000000000101202 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 638.823496][T14666] RBP: 00007fd178e10d69 R08: 0000000000000000 R09: 0000000000000000 [ 638.823515][T14666] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 638.823533][T14666] R13: 0000000000000000 R14: 00007fd178fb5fa0 R15: 00007ffe934bffa8 [ 638.823575][T14666] [ 639.143749][T14666] ERROR: Out of memory at tomoyo_realpath_from_path. [ 639.592067][T14680] can: request_module (can-proto-0) failed. [ 641.647373][T14705] can: request_module (can-proto-0) failed. [ 641.873908][T14713] can: request_module (can-proto-0) failed. [ 643.024858][T14737] can: request_module (can-proto-0) failed. [ 643.450552][T14740] Invalid ELF header magic: != ELF [ 643.790738][T14750] can: request_module (can-proto-0) failed. [ 644.690656][T14764] can: request_module (can-proto-0) failed. [ 645.037465][T14771] can: request_module (can-proto-0) failed. [ 645.933821][T14787] can: request_module (can-proto-0) failed. [ 646.308918][T14794] can: request_module (can-proto-0) failed. [ 647.300000][T14804] can: request_module (can-proto-0) failed. [ 647.421996][T14816] can: request_module (can-proto-0) failed. [ 648.425252][T14829] can: request_module (can-proto-0) failed. syzkaller syzkaller login: [ 649.402046][T14846] FAULT_INJECTION: forcing a failure. [ 649.402046][T14846] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 649.442690][T14846] CPU: 1 UID: 0 PID: 14846 Comm: syz.3.1922 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) [ 649.442727][T14846] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 649.442742][T14846] Call Trace: [ 649.442749][T14846] [ 649.442759][T14846] dump_stack_lvl+0x16c/0x1f0 [ 649.442795][T14846] should_fail_ex+0x512/0x640 [ 649.442831][T14846] strncpy_from_user+0x3b/0x2e0 [ 649.442863][T14846] getname_flags.part.0+0x8f/0x550 [ 649.442902][T14846] getname_flags+0x93/0xf0 [ 649.442925][T14846] do_sys_openat2+0xb8/0x1d0 [ 649.442959][T14846] ? __pfx_do_sys_openat2+0x10/0x10 [ 649.442995][T14846] ? __sys_sendmsg+0x18c/0x220 [ 649.443035][T14846] __x64_sys_openat+0x174/0x210 [ 649.443070][T14846] ? __pfx___x64_sys_openat+0x10/0x10 [ 649.443117][T14846] do_syscall_64+0xcd/0x490 [ 649.443150][T14846] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 649.443175][T14846] RIP: 0033:0x7fd178d8e9a9 [ 649.443194][T14846] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 649.443218][T14846] RSP: 002b:00007fd179bd1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 649.443239][T14846] RAX: ffffffffffffffda RBX: 00007fd178fb5fa0 RCX: 00007fd178d8e9a9 [ 649.443255][T14846] RDX: 0000000000101202 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 649.443270][T14846] RBP: 00007fd178e10d69 R08: 0000000000000000 R09: 0000000000000000 [ 649.443284][T14846] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 649.443298][T14846] R13: 0000000000000000 R14: 00007fd178fb5fa0 R15: 00007ffe934bffa8 [ 649.443326][T14846] [ 649.654081][ T5847] ================================================================== [ 649.662229][ T5847] BUG: KASAN: vmalloc-out-of-bounds in hci_devcd_dump+0x142/0x240 [ 649.670144][ T5847] Read of size 140 at addr ffffc90004a23000 by task kworker/u9:2/5847 [ 649.678442][ T5847] [ 649.680799][ T5847] CPU: 0 UID: 0 PID: 5847 Comm: kworker/u9:2 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) [ 649.680836][ T5847] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 649.680855][ T5847] Workqueue: hci0 hci_devcd_timeout [ 649.680892][ T5847] Call Trace: [ 649.680902][ T5847] [ 649.680912][ T5847] dump_stack_lvl+0x116/0x1f0 [ 649.680949][ T5847] print_report+0xcd/0x630 [ 649.680982][ T5847] ? __virt_addr_valid+0x81/0x610 [ 649.681018][ T5847] ? hci_devcd_dump+0x142/0x240 [ 649.681046][ T5847] kasan_report+0xe0/0x110 [ 649.681081][ T5847] ? hci_devcd_dump+0x142/0x240 [ 649.681115][ T5847] kasan_check_range+0x100/0x1b0 [ 649.681155][ T5847] __asan_memcpy+0x23/0x60 [ 649.681180][ T5847] hci_devcd_dump+0x142/0x240 [ 649.681212][ T5847] hci_devcd_timeout+0xb5/0x2e0 [ 649.681241][ T5847] ? rcu_is_watching+0x12/0xc0 [ 649.681275][ T5847] process_one_work+0x9cf/0x1b70 [ 649.681313][ T5847] ? __pfx_process_one_work+0x10/0x10 [ 649.681345][ T5847] ? assign_work+0x1a0/0x250 [ 649.681388][ T5847] worker_thread+0x6c8/0xf10 [ 649.681420][ T5847] ? __pfx_worker_thread+0x10/0x10 [ 649.681446][ T5847] kthread+0x3c2/0x780 [ 649.681488][ T5847] ? __pfx_kthread+0x10/0x10 [ 649.681531][ T5847] ? rcu_is_watching+0x12/0xc0 [ 649.681561][ T5847] ? __pfx_kthread+0x10/0x10 [ 649.681603][ T5847] ret_from_fork+0x5d7/0x6f0 [ 649.681644][ T5847] ? __pfx_kthread+0x10/0x10 [ 649.681685][ T5847] ret_from_fork_asm+0x1a/0x30 [ 649.681726][ T5847] [ 649.681735][ T5847] [ 649.832127][ T5847] The buggy address belongs to a vmalloc virtual mapping [ 649.839615][ T5847] Memory state around the buggy address: [ 649.845383][ T5847] ffffc90004a22f00: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 649.853561][ T5847] ffffc90004a22f80: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 649.861740][ T5847] >ffffc90004a23000: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 649.869916][ T5847] ^ [ 649.874016][ T5847] ffffc90004a23080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 649.882284][ T5847] ffffc90004a23100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 649.890365][ T5847] ================================================================== [ 649.923661][ T5847] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 649.930973][ T5847] CPU: 0 UID: 0 PID: 5847 Comm: kworker/u9:2 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) [ 649.942913][ T5847] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 649.953095][ T5847] Workqueue: hci0 hci_devcd_timeout [ 649.958431][ T5847] Call Trace: [ 649.961736][ T5847] [ 649.964702][ T5847] dump_stack_lvl+0x3d/0x1f0 [ 649.969336][ T5847] panic+0x71c/0x800 [ 649.973285][ T5847] ? __pfx_panic+0x10/0x10 [ 649.977835][ T5847] ? mark_held_locks+0x49/0x80 [ 649.982647][ T5847] ? preempt_schedule_thunk+0x16/0x30 [ 649.988070][ T5847] ? hci_devcd_dump+0x142/0x240 [ 649.992962][ T5847] ? preempt_schedule_common+0x44/0xc0 [ 649.998470][ T5847] ? check_panic_on_warn+0x1f/0xb0 [ 650.003640][ T5847] ? hci_devcd_dump+0x142/0x240 [ 650.008537][ T5847] check_panic_on_warn+0xab/0xb0 [ 650.013613][ T5847] end_report+0x107/0x170 [ 650.018247][ T5847] kasan_report+0xee/0x110 [ 650.022708][ T5847] ? hci_devcd_dump+0x142/0x240 [ 650.027603][ T5847] kasan_check_range+0x100/0x1b0 [ 650.032590][ T5847] __asan_memcpy+0x23/0x60 [ 650.037055][ T5847] hci_devcd_dump+0x142/0x240 [ 650.041948][ T5847] hci_devcd_timeout+0xb5/0x2e0 [ 650.046935][ T5847] ? rcu_is_watching+0x12/0xc0 [ 650.051744][ T5847] process_one_work+0x9cf/0x1b70 [ 650.056749][ T5847] ? __pfx_process_one_work+0x10/0x10 [ 650.062161][ T5847] ? assign_work+0x1a0/0x250 [ 650.066803][ T5847] worker_thread+0x6c8/0xf10 [ 650.071437][ T5847] ? __pfx_worker_thread+0x10/0x10 [ 650.076586][ T5847] kthread+0x3c2/0x780 [ 650.080800][ T5847] ? __pfx_kthread+0x10/0x10 [ 650.085536][ T5847] ? rcu_is_watching+0x12/0xc0 [ 650.090428][ T5847] ? __pfx_kthread+0x10/0x10 [ 650.095278][ T5847] ret_from_fork+0x5d7/0x6f0 [ 650.099934][ T5847] ? __pfx_kthread+0x10/0x10 [ 650.104585][ T5847] ret_from_fork_asm+0x1a/0x30 [ 650.109485][ T5847] [ 650.112870][ T5847] Kernel Offset: disabled [ 650.117224][ T5847] Rebooting in 86400 seconds..