last executing test programs: 9.630153525s ago: executing program 1 (id=616): mmap$auto(0x0, 0x4020009, 0x6, 0x80000000eb1, 0x401, 0x3) mmap$auto(0x0, 0x2020009, 0x10, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x23, 0x8, 0x2008, 0x0, 0x0) mmap$auto(0x0, 0xfff, 0xdf, 0x9b72, 0x400, 0x28000) close_range$auto(0x2, 0x8, 0x0) openat$auto_bch_chardev_fops_chardev(0xffffffffffffff9c, &(0x7f0000000580), 0x400, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x40400, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0x20000, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae89, &(0x7f0000000180)={0x5, 0x0, [{0x280, 0x3ff}]}) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/ip6_mr_vif\x00', 0x0, 0x0) process_vm_writev$auto(0x1, &(0x7f0000002980)={0x0, 0x4}, 0x3, &(0x7f0000002a40)={0x0, 0x7}, 0x4, 0x0) prctl$auto_PR_GET_SPECULATION_CTRL(0x34, 0x8, 0x57, 0xa441, 0xe) madvise$auto(0x0, 0x2003ed, 0x19) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) r2 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/oom_adj\x00', 0x300, 0x0) read$auto(r2, 0x0, 0x1f40) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x8002, 0x0) openat2$dir(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup\x00', &(0x7f00000000c0)={0x0, 0x0, 0x13}, 0x18) writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/gre0/gro_flush_timeout\x00', 0x80302, 0x0) sendfile$auto(r4, r4, 0x0, 0x3) unshare$auto(0x40000080) 9.022970795s ago: executing program 3 (id=617): socket(0x15, 0x5, 0x0) socket(0x1d, 0x2, 0x2) socket(0xb, 0x3, 0x6) mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x10008, 0x3, 0xeb1, 0x40000000000a5, 0x808000) close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_bch_chardev_fops_chardev(0xffffffffffffff9c, &(0x7f0000000580), 0x400, 0x0) ioctl$auto_BCH_IOCTL_FSCK_OFFLINE(r0, 0x4018bc13, 0x0) readv$auto(0x3, &(0x7f00000001c0)={0x0, 0x7fffffffefff}, 0x7) 8.780775064s ago: executing program 3 (id=620): mmap$auto(0x0, 0x101, 0x4000000000df, 0xeb1, 0x200000401, 0x8000) unshare$auto(0x40000080) socket(0xa, 0x1, 0x100) setsockopt$auto(0x400000000000003, 0x29, 0x1b, 0x0, 0x56b) r0 = prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2) r1 = socket(0x3, 0x3, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x0) r3 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) read$auto(r3, 0x0, 0x1f40) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/mm/mempolicy/weighted_interleave/node0\x00', 0xc2082, 0x0) write$auto(r4, 0x0, 0x5) r5 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/usb/usbmon/9t\x00', 0xa00, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x400, 0x0) r6 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000004400)='/dev/dsp1\x00', 0x1, 0x0) ioctl$auto_SNDCTL_DSP_GETTRIGGER(r6, 0x80045010, &(0x7f0000004440)) ioctl$auto_VHOST_SET_LOG_FD2(r0, 0x4004af07, &(0x7f00000001c0)=r0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, r7, 0x8000) mmap$auto(0x0, 0x20005, 0xdf, 0xeb1, r2, 0x3) open_by_handle_at$auto(r5, &(0x7f00000002c0)={0x1b, 0x136a, "8f42b1077e737d4629d7867bca48102625b1c2c21fa15504a19b9a"}, 0x7d) setsockopt$auto(r1, 0x6, 0x1021, 0x0, 0xc0000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x100000000, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0xa, 0x0) 8.151222973s ago: executing program 1 (id=621): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) preadv2$auto(r0, &(0x7f0000000080)={0x0, 0x80000000}, 0x6, 0xffffffffffffffff, 0x4, 0x2e) ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x4000000000000000) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f0000000340)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccW\x1c\x94t\x98\xc6\xd7\x9dh\xdf\x91\xd9\x1ew\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5,\xcc\xfa`\xfa\x90\xf0C\xdc\xbebBW\x8a\x95\xf4\x14\xc7\x90V\xe7a\xfb*\xcc6\xba\x9ef\x19R\xff\xd2\xd8\x98\xa8\x17\xcb\x84\xe8\xfb\x00`\xc2\xce~U\xca\\\xc1\xb7\xf1\n\xb9\xbfk\x1e\xdb\xed\x81{\x1f\x18j\x16\rk\x0eO\xe3\xa78&Z\x9e\xbf\x84\xd6\x1f\xe8\x88\x1f\xbc\x1eT\xa6{9hb\xbc\x1a\\\xb3\x846&\x1a\xbb\x9c:e\x9c\x18\x11\xf0\x8eQ\xd8\x8a3^?\x13\x00\xcbx\xb2\x18e\x95$\x9d\x804', 0x100000a3d9) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0) mmap$auto(0x0, 0x400006, 0xdf, 0x9b72, 0x2, 0xc00000000) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400108, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/virtual/tty/ptyqe/power/control\x00', 0xa0b02, 0x0) read$auto(0xffffffffffffffff, 0x0, 0xb4d3) write$auto(0x3, 0x0, 0x70) mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) mmap$auto(0x0, 0x7, 0xdf, 0x10, 0x2, 0x8000) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) ioctl$auto_USBDEVFS_SUBMITURB32(0xffffffffffffffff, 0x802c550a, &(0x7f0000000300)=ANY=[]) 7.282955643s ago: executing program 3 (id=622): ioctl$auto_TUNDETACHFILTER(0xffffffffffffffff, 0x401054d6, &(0x7f0000000040)={0x0, &(0x7f0000000000)={0xffff, 0x5, 0x7, @raw=0x1}}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_batadv(&(0x7f0000001f80), 0xffffffffffffffff) openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000000), 0x101780, 0x0) ioctl$auto_VHOST_SET_OWNER(r2, 0xaf01, 0x0) r3 = openat$auto_transactions_fops_(0xffffffffffffff9c, &(0x7f0000000080), 0x200, 0x0) ioctl$auto_VHOST_SET_VRING_CALL(r2, 0x4008af21, &(0x7f0000002600)={0x0, r3}) madvise$auto(0x0, 0x2003f0, 0x15) mmap$auto(0x0, 0x2a, 0xdf, 0x9b72, 0x1000, 0x28000) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/renderD128\x00', 0x20300, 0x0) pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x00\rs\x1cJ\x99\x00:c\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2', 0x4e, 0x1) close_range$auto(0x0, 0xfffffffffffff000, 0x2) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'ip6_vti0\x00'}) bpf$auto(0x40000000, &(0x7f0000000100)=@iter_create={r1, 0x81}, 0x96) bpf$auto(0x18, &(0x7f0000000040)=@raw_tracepoint={0x0, 0xffffffffffffffff, 0x0, 0x800}, 0x92) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) getsockopt$auto(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/dri/vgem/clients\x00', 0x60000, 0x0) getpid() r4 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0) read$auto(r4, 0x0, 0xb4d3) write$auto(0x3, 0x0, 0xffd8) semget$auto(0x0, 0x13c, 0x1ff) 6.596859732s ago: executing program 0 (id=623): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x6, 0xffff, 0x6, 0x8032d4, 0x10000, 0x7fffffff) open(0x0, 0x64842, 0x0) r0 = socket(0x2, 0x1, 0x106) bind$auto(r0, &(0x7f0000000000)=@in={0x2, 0x3, @multicast1}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) socket$nl_generic(0x10, 0x3, 0x10) lseek$auto(0x3, 0x7fffffffffffffff, 0x1) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/devices/virtual/block/ram5/queue/discard_granularity\x00', 0x0, 0x0) mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, r1, 0x10008000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x752502, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0xc0c00, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_CTRL_CMD_GETPOLICY(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000580)={0x1c, r4, 0x301, 0x70b52c, 0x25dfdbfb, {}, [@CTRL_ATTR_FAMILY_ID={0x6, 0x1, 0x17}]}, 0x1c}, 0x1, 0x0, 0x0, 0x400c01d}, 0x0) syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000080), r3) openat$auto_buffer_percent_fops_trace(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/kernel/debug/tracing/buffer_percent\x00', 0xbc102, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r5 = socket(0x2, 0x1, 0x106) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) connect$auto(r5, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) write$auto(0x3, 0x0, 0xfffffdef) shutdown$auto(0x200000003, 0x2) close_range$auto(0x2, 0x8, 0x0) r6 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, 0x0, 0x8000, 0x0) ioctl$auto_OTPSELECT(r6, 0x80044d0d, &(0x7f00000000c0)=0x10009) openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x101001, 0x0) 5.109571866s ago: executing program 0 (id=624): mmap$auto(0x0, 0x4020009, 0x6, 0x80000000eb1, 0x401, 0x3) mmap$auto(0x0, 0x2020009, 0x10, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x23, 0x8, 0x2008, 0x0, 0x0) mmap$auto(0x0, 0xfff, 0xdf, 0x9b72, 0x400, 0x28000) close_range$auto(0x2, 0x8, 0x0) openat$auto_bch_chardev_fops_chardev(0xffffffffffffff9c, &(0x7f0000000580), 0x400, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x40400, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0x20000, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae89, &(0x7f0000000180)={0x5, 0x0, [{0x280, 0x3ff}]}) r2 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/oom_adj\x00', 0x300, 0x0) read$auto(r2, 0x0, 0x1f40) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x8002, 0x0) writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/gre0/gro_flush_timeout\x00', 0x80302, 0x0) unshare$auto(0x40000080) 5.091014493s ago: executing program 3 (id=625): lseek$auto(0xffffffffffffffff, 0x8001, 0x4) socket(0xf, 0x3, 0x2) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket(0x2, 0x2, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f00000000c0), 0xa480, 0x0) readv$auto(0x3, &(0x7f0000000280)={0x0, 0xf7}, 0x87) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x0, 0x0) mmap$auto(0x0, 0x9, 0x3, 0x8012, 0x3, 0x8000) openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/trace_pipe\x00', 0x20c01, 0x0) ioctl$auto_posix_clock_file_operations_posix_clock(0xffffffffffffffff, 0x2, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) ppoll$auto(&(0x7f0000000180)={0xffffffffffffffff, 0x4, 0x8}, 0x6, 0x0, 0x0, 0x8) open(&(0x7f0000000800)='./file0\x00', 0x183242, 0x154) unshare$auto(0x40000080) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_INTERFACE(r1, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000001}, 0x4000084) socket(0xa, 0x5, 0x4) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, 0x0, 0x305080, 0x0) mmap$auto(0x2000000, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xfffffffffffeffff, 0x15) setreuid$auto(0x4, 0x8) mlockall$auto(0x8000000000000001) 4.990744071s ago: executing program 1 (id=626): r0 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x0, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) ioctl$auto_posix_clock_file_operations_posix_clock(r0, 0x40043d14, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000001140), r1) sendmsg$auto_WG_CMD_SET_DEVICE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002880)={&(0x7f0000002800)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="21000b662a6fc9a0000f0100000014000200776c616e3100"/34], 0x28}, 0x1, 0x0, 0x0, 0x841}, 0x80) r3 = io_uring_setup$auto(0x86, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x128e2, 0x0) write$auto(r4, &(0x7f00000001c0)='\b\x1c\xc7\x00\x80\x00\x00\x00\x00\x00\x00\x00', 0x81) splice$auto(r3, &(0x7f0000000200)=0x2, r4, &(0x7f0000000240)=0x9, 0x4dc0000000000000, 0x2) ioctl$auto_NVRAM_INIT(r3, 0x7040, 0x0) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/vulnerabilities/mmio_stale_data\x00', 0x0, 0x0) mmap$auto(0x0, 0x9, 0x3ff57696, 0x9b72, 0x2, 0x8000000000008000) read$auto(r5, 0x0, 0x20) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000340)='/dev/v4l-subdev2\x00', 0x80000, 0x0) r6 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_TIOCSTI2(r6, 0x545c, 0x0) ioctl$auto_TIOCVHANGUP2(r6, 0x5437, 0x0) ioctl$auto(0x3, 0x80085617, 0x38) 4.308508753s ago: executing program 0 (id=628): socket(0x15, 0x5, 0x0) socket(0x1d, 0x2, 0x2) socket(0xb, 0x3, 0x6) mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x10008, 0x3, 0xeb1, 0x40000000000a5, 0x808000) close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_bch_chardev_fops_chardev(0xffffffffffffff9c, &(0x7f0000000580), 0x400, 0x0) ioctl$auto_BCH_IOCTL_FSCK_OFFLINE(r0, 0x4018bc13, 0x0) readv$auto(0x3, &(0x7f00000001c0)={0x0, 0x7fffffffefff}, 0x7) 4.184930488s ago: executing program 0 (id=630): mmap$auto(0x0, 0x4020009, 0x6, 0x80000000eb1, 0x401, 0x3) mmap$auto(0x0, 0x2020009, 0x10, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x23, 0x8, 0x2008, 0x0, 0x0) mmap$auto(0x0, 0xfff, 0xdf, 0x9b72, 0x400, 0x28000) close_range$auto(0x2, 0x8, 0x0) openat$auto_bch_chardev_fops_chardev(0xffffffffffffff9c, &(0x7f0000000580), 0x400, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x40400, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0x20000, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae89, &(0x7f0000000180)={0x5, 0x0, [{0x280, 0x3ff}]}) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/ip6_mr_vif\x00', 0x0, 0x0) process_vm_writev$auto(0x1, &(0x7f0000002980)={0x0, 0x4}, 0x3, &(0x7f0000002a40)={0x0, 0x7}, 0x4, 0x0) prctl$auto_PR_GET_SPECULATION_CTRL(0x34, 0x8, 0x57, 0xa441, 0xe) madvise$auto(0x0, 0x2003ed, 0x19) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) r2 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/oom_adj\x00', 0x300, 0x0) read$auto(r2, 0x0, 0x1f40) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x8002, 0x0) openat2$dir(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup\x00', &(0x7f00000000c0)={0x0, 0x0, 0x13}, 0x18) writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/gre0/gro_flush_timeout\x00', 0x80302, 0x0) sendfile$auto(r4, r4, 0x0, 0x3) unshare$auto(0x40000080) 4.022458826s ago: executing program 2 (id=632): mmap$auto(0x0, 0x101, 0x4000000000df, 0xeb1, 0x200000401, 0x8000) unshare$auto(0x40000080) socket(0xa, 0x1, 0x100) setsockopt$auto(0x400000000000003, 0x29, 0x1b, 0x0, 0x56b) r0 = prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2) r1 = socket(0x3, 0x3, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x0) r3 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) read$auto(r3, 0x0, 0x1f40) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/mm/mempolicy/weighted_interleave/node0\x00', 0xc2082, 0x0) write$auto(r4, 0x0, 0x5) r5 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/usb/usbmon/9t\x00', 0xa00, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x400, 0x0) r6 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000004400)='/dev/dsp1\x00', 0x1, 0x0) ioctl$auto_SNDCTL_DSP_GETTRIGGER(r6, 0x80045010, &(0x7f0000004440)) ioctl$auto_VHOST_SET_LOG_FD2(r0, 0x4004af07, &(0x7f00000001c0)=r0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, r7, 0x8000) mmap$auto(0x0, 0x20005, 0xdf, 0xeb1, r2, 0x3) open_by_handle_at$auto(r5, &(0x7f00000002c0)={0x1b, 0x136a, "8f42b1077e737d4629d7867bca48102625b1c2c21fa15504a19b9a"}, 0x7d) setsockopt$auto(r1, 0x6, 0x1021, 0x0, 0xc0000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x100000000, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0xa, 0x0) 3.986789768s ago: executing program 1 (id=633): mmap$auto(0x0, 0x4020009, 0x6, 0x80000000eb1, 0x401, 0x3) mmap$auto(0x0, 0x2020009, 0x10, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x23, 0x8, 0x2008, 0x0, 0x0) mmap$auto(0x0, 0xfff, 0xdf, 0x9b72, 0x400, 0x28000) close_range$auto(0x2, 0x8, 0x0) openat$auto_bch_chardev_fops_chardev(0xffffffffffffff9c, &(0x7f0000000580), 0x400, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x40400, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0x20000, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae89, &(0x7f0000000180)={0x5, 0x0, [{0x280, 0x3ff}]}) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/ip6_mr_vif\x00', 0x0, 0x0) read$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f00000000c0)=""/4087, 0xff7) process_vm_writev$auto(0x1, &(0x7f0000002980)={0x0, 0x4}, 0x3, &(0x7f0000002a40)={0x0, 0x7}, 0x4, 0x0) prctl$auto_PR_GET_SPECULATION_CTRL(0x34, 0x8, 0x57, 0xa441, 0xe) madvise$auto(0x0, 0x2003ed, 0x19) r3 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/oom_adj\x00', 0x300, 0x0) read$auto(r3, 0x0, 0x1f40) r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x8002, 0x0) writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x3) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/gre0/gro_flush_timeout\x00', 0x80302, 0x0) unshare$auto(0x40000080) 2.406611686s ago: executing program 1 (id=634): ioctl$auto_TUNDETACHFILTER(0xffffffffffffffff, 0x401054d6, &(0x7f0000000040)={0x0, &(0x7f0000000000)={0xffff, 0x5, 0x7, @raw=0x1}}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_batadv(&(0x7f0000001f80), 0xffffffffffffffff) openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000000), 0x101780, 0x0) ioctl$auto_VHOST_SET_OWNER(r2, 0xaf01, 0x0) r3 = openat$auto_transactions_fops_(0xffffffffffffff9c, &(0x7f0000000080), 0x200, 0x0) ioctl$auto_VHOST_SET_VRING_CALL(r2, 0x4008af21, &(0x7f0000002600)={0x0, r3}) madvise$auto(0x0, 0x2003f0, 0x15) mmap$auto(0x0, 0x2a, 0xdf, 0x9b72, 0x1000, 0x28000) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x20300, 0x0) r4 = socket(0xa, 0x5, 0x0) pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x00\rs\x1cJ\x99\x00:c\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2', 0x4e, 0x1) close_range$auto(0x0, 0xfffffffffffff000, 0x2) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000001c0)={'ip6_vti0\x00'}) bpf$auto(0x40000000, &(0x7f0000000100)=@iter_create={r1, 0x81}, 0x96) bpf$auto(0x18, &(0x7f0000000040)=@raw_tracepoint={0x0, 0xffffffffffffffff, 0x0, 0x800}, 0x92) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) getsockopt$auto(r4, 0x84, 0x1d, 0x0, 0x0) r5 = openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/dri/vgem/clients\x00', 0x60000, 0x0) read$auto_drm_debugfs_entry_fops_drm_debugfs(r5, &(0x7f0000000100)=""/153, 0x99) getpid() r6 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0) read$auto(r6, 0x0, 0xb4d3) write$auto(0x3, 0x0, 0xffd8) semget$auto(0x0, 0x13c, 0x1ff) 2.404220343s ago: executing program 3 (id=635): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x6, 0xffff, 0x6, 0x8032d4, 0x10000, 0x7fffffff) open(0x0, 0x64842, 0x0) r0 = socket(0x2, 0x1, 0x106) bind$auto(r0, &(0x7f0000000000)=@in={0x2, 0x3, @multicast1}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) socket$nl_generic(0x10, 0x3, 0x10) lseek$auto(0x3, 0x7fffffffffffffff, 0x1) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/devices/virtual/block/ram5/queue/discard_granularity\x00', 0x0, 0x0) mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, r1, 0x10008000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x752502, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0xc0c00, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_CTRL_CMD_GETPOLICY(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000580)={0x1c, r4, 0x301, 0x70b52c, 0x25dfdbfb, {}, [@CTRL_ATTR_FAMILY_ID={0x6, 0x1, 0x17}]}, 0x1c}, 0x1, 0x0, 0x0, 0x400c01d}, 0x0) syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000080), r3) openat$auto_buffer_percent_fops_trace(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/kernel/debug/tracing/buffer_percent\x00', 0xbc102, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r5 = socket(0x2, 0x1, 0x106) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) connect$auto(r5, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) write$auto(0x3, 0x0, 0xfffffdef) shutdown$auto(0x200000003, 0x2) close_range$auto(0x2, 0x8, 0x0) r6 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, 0x0, 0x8000, 0x0) ioctl$auto_OTPSELECT(r6, 0x80044d0d, &(0x7f00000000c0)=0x10009) openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x101001, 0x0) 2.205943595s ago: executing program 0 (id=636): ioctl$auto_TUNDETACHFILTER(0xffffffffffffffff, 0x401054d6, &(0x7f0000000040)={0x0, &(0x7f0000000000)={0xffff, 0x5, 0x7, @raw=0x1}}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_batadv(&(0x7f0000001f80), 0xffffffffffffffff) openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000000), 0x101780, 0x0) ioctl$auto_VHOST_SET_OWNER(r2, 0xaf01, 0x0) r3 = openat$auto_transactions_fops_(0xffffffffffffff9c, &(0x7f0000000080), 0x200, 0x0) ioctl$auto_VHOST_SET_VRING_CALL(r2, 0x4008af21, &(0x7f0000002600)={0x0, r3}) madvise$auto(0x0, 0x2003f0, 0x15) mmap$auto(0x0, 0x2a, 0xdf, 0x9b72, 0x1000, 0x28000) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/renderD128\x00', 0x20300, 0x0) pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x00\rs\x1cJ\x99\x00:c\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2', 0x4e, 0x1) close_range$auto(0x0, 0xfffffffffffff000, 0x2) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'ip6_vti0\x00'}) bpf$auto(0x40000000, &(0x7f0000000100)=@iter_create={r1, 0x81}, 0x96) bpf$auto(0x18, &(0x7f0000000040)=@raw_tracepoint={0x0, 0xffffffffffffffff, 0x0, 0x800}, 0x92) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) getsockopt$auto(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/dri/vgem/clients\x00', 0x60000, 0x0) getpid() r4 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0) read$auto(r4, 0x0, 0xb4d3) write$auto(0x3, 0x0, 0xffd8) semget$auto(0x0, 0x13c, 0x1ff) 2.205852196s ago: executing program 2 (id=637): openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/pci/00/01.3\x00', 0x48041, 0x0) openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/syscall\x00', 0x80002, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/platform/i8042/serio0/description\x00', 0x20000, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000001c00)=""/4111, 0x100f) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sda1\x00', 0xa4e00, 0x0) io_uring_setup$auto(0x5, &(0x7f0000000240)={0xffff, 0xfffffff9, 0x3, 0x4, 0xc, 0x1, r1, [0xf2, 0x697, 0x162], {0x3, 0x5, 0x6, 0x2, 0x0, 0xbc, 0x2, 0x7, 0x8}, {0x2, 0x0, 0x7fffffff, 0x8, 0x3, 0x3, 0x1, 0x7, 0x7}}) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x7, 0x4008) r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x42, 0x0) write$auto(r2, &(0x7f0000000200)='/de\xef\xe7audio1\x00', 0xa3d9) 1.731921732s ago: executing program 2 (id=638): mmap$auto(0x0, 0x4020009, 0x6, 0x80000000eb1, 0x401, 0x3) mmap$auto(0x0, 0x2020009, 0x10, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x23, 0x8, 0x2008, 0x0, 0x0) mmap$auto(0x0, 0xfff, 0xdf, 0x9b72, 0x400, 0x28000) close_range$auto(0x2, 0x8, 0x0) openat$auto_bch_chardev_fops_chardev(0xffffffffffffff9c, &(0x7f0000000580), 0x400, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x40400, 0x0) close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0x20000, 0x0) ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r0) r1 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/oom_adj\x00', 0x300, 0x0) read$auto(r1, 0x0, 0x1f40) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x8002, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/gre0/gro_flush_timeout\x00', 0x80302, 0x0) unshare$auto(0x40000080) 953.971456ms ago: executing program 2 (id=639): socket(0x15, 0x5, 0x0) socket(0x1d, 0x2, 0x2) r0 = socket(0xb, 0x3, 0x6) close_range$auto(r0, 0xfffffffffffff000, 0x4000000000002) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x10008, 0x3, 0xeb1, 0x40000000000a5, 0x808000) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_bch_chardev_fops_chardev(0xffffffffffffff9c, &(0x7f0000000580), 0x400, 0x0) ioctl$auto_BCH_IOCTL_FSCK_OFFLINE(r1, 0x4018bc13, 0x0) readv$auto(0x3, &(0x7f00000001c0)={0x0, 0x7fffffffefff}, 0x7) 806.456162ms ago: executing program 3 (id=640): setregid$auto(0x0, 0xffffffffffffffff) unshare$auto(0x40000080) r0 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x40040, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_kmsg_fops_printk(0xffffffffffffff9c, &(0x7f0000000000), 0x40001, 0x0) write$auto(r0, 0x0, 0xfff) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) symlink$auto(&(0x7f00000000c0)='./file0\x00', &(0x7f0000001100)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000001b40)='/dev/cuse\x00', 0x1842, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/cpu0/hotplug/target\x00', 0x201, 0x0) close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x2) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x4, 0x15f4da0a, 0x1, 0x3, 0x0, 0x80000001, 0x7, 0x6d39, 0x5, 0x2, 0x1]}, 0x0) openat$auto_hpet_fops_hpet(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) r2 = openat$auto_tracing_saved_cmdlines_fops_trace(0xffffffffffffff9c, &(0x7f0000001040)='/sys/kernel/tracing/saved_cmdlines\x00', 0x2000, 0x0) pread64$auto(r2, &(0x7f0000001080)='/sys/kernel/tracing/saved_cmdlines\x00', 0x4, 0x8) 749.973673ms ago: executing program 2 (id=641): socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) io_uring_setup$auto(0x8, &(0x7f0000000140)={0x0, 0x3, 0x9, 0x10001, 0xc, 0xc05, 0xffffffffffffffff, [0x7fd, 0x1001, 0x8], {0x9, 0x1, 0x6, 0x0, 0x420, 0x1001, 0x3fdc, 0x3, 0x5}, {0x2, 0x140, 0x54ed, 0x0, 0x101, 0xff, 0x7, 0xa, 0x3}}) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0) r1 = openat$auto_objects_fops_(0xffffffffffffff9c, &(0x7f0000001f80), 0x141100, 0x0) read$auto_objects_fops_(r1, &(0x7f0000001fc0)=""/4096, 0x1000) mmap$auto(0x0, 0x400008, 0xe3, 0xbb72, 0x2, 0x8000) timerfd_settime$auto(0xffffffffffffffff, 0x3, 0x0, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) r2 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) read$auto(r2, 0x0, 0x1f40) r3 = openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, &(0x7f0000001280)='/dev/mixer\x00', 0x80002, 0x0) ioctl$auto_SOUND_MIXER_READ_RECSRC(r3, 0x80044dff, &(0x7f00000012c0)) r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) r5 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000080)='/dev/usbmon2\x00', 0x40080, 0x0) ioctl$auto_MON_IOCQ_URB_LEN(r5, 0x9201, 0x0) setsockopt$auto(0xffffffffffffffff, 0x9, 0xff, &(0x7f00000002c0)='SEG6\x00', 0xeec) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r6 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0) ioctl$auto(r6, 0x40081271, r6) writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x3) bpf$auto(0xfffffffd, &(0x7f00000000c0)=@info={r0, 0xffff, 0x20}, 0x5) getsockopt$auto_SO_PASSCRED(0xffffffffffffffff, 0x1, 0x10, 0x0, 0x0) gettid() syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) 12.710322ms ago: executing program 2 (id=642): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) preadv2$auto(r0, &(0x7f0000000080)={0x0, 0x80000000}, 0x6, 0xffffffffffffffff, 0x4, 0x2e) ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x4000000000000000) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f0000000340)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccW\x1c\x94t\x98\xc6\xd7\x9dh\xdf\x91\xd9\x1ew\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5,\xcc\xfa`\xfa\x90\xf0C\xdc\xbebBW\x8a\x95\xf4\x14\xc7\x90V\xe7a\xfb*\xcc6\xba\x9ef\x19R\xff\xd2\xd8\x98\xa8\x17\xcb\x84\xe8\xfb\x00`\xc2\xce~U\xca\\\xc1\xb7\xf1\n\xb9\xbfk\x1e\xdb\xed\x81{\x1f\x18j\x16\rk\x0eO\xe3\xa78&Z\x9e\xbf\x84\xd6\x1f\xe8\x88\x1f\xbc\x1eT\xa6{9hb\xbc\x1a\\\xb3\x846&\x1a\xbb\x9c:e\x9c\x18\x11\xf0\x8eQ\xd8\x8a3^?\x13\x00\xcbx\xb2\x18e\x95$\x9d\x804', 0x100000a3d9) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0) mmap$auto(0x0, 0x400006, 0xdf, 0x9b72, 0x2, 0xc00000000) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400108, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/virtual/tty/ptyqe/power/control\x00', 0xa0b02, 0x0) read$auto(0xffffffffffffffff, 0x0, 0xb4d3) write$auto(0x3, 0x0, 0x70) mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) mmap$auto(0x0, 0x7, 0xdf, 0x10, 0x2, 0x8000) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) ioctl$auto_USBDEVFS_SUBMITURB32(0xffffffffffffffff, 0x802c550a, &(0x7f0000000300)=ANY=[]) 2.481926ms ago: executing program 0 (id=650): socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) io_uring_setup$auto(0x8, &(0x7f0000000140)={0x0, 0x3, 0x9, 0x10001, 0xc, 0xc05, 0xffffffffffffffff, [0x7fd, 0x1001, 0x8], {0x9, 0x1, 0x6, 0x0, 0x420, 0x1001, 0x3fdc, 0x3, 0x5}, {0x2, 0x140, 0x54ed, 0x0, 0x101, 0xff, 0x7, 0xa, 0x3}}) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0) r1 = openat$auto_objects_fops_(0xffffffffffffff9c, &(0x7f0000001f80), 0x141100, 0x0) read$auto_objects_fops_(r1, &(0x7f0000001fc0)=""/4096, 0x1000) mmap$auto(0x0, 0x400008, 0xe3, 0xbb72, 0x2, 0x8000) timerfd_settime$auto(0xffffffffffffffff, 0x3, 0x0, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) r2 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) read$auto(r2, 0x0, 0x1f40) r3 = openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, &(0x7f0000001280)='/dev/mixer\x00', 0x80002, 0x0) ioctl$auto_SOUND_MIXER_READ_RECSRC(r3, 0x80044dff, &(0x7f00000012c0)) r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) r5 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000080)='/dev/usbmon2\x00', 0x40080, 0x0) ioctl$auto_MON_IOCQ_URB_LEN(r5, 0x9201, 0x0) setsockopt$auto(0xffffffffffffffff, 0x9, 0xff, &(0x7f00000002c0)='SEG6\x00', 0xeec) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r6 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0) ioctl$auto(r6, 0x40081271, r6) writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x3) bpf$auto(0xfffffffd, &(0x7f00000000c0)=@info={r0, 0xffff, 0x20}, 0x5) getsockopt$auto_SO_PASSCRED(0xffffffffffffffff, 0x1, 0x10, 0x0, 0x0) gettid() syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) 0s ago: executing program 1 (id=643): r0 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) r1 = socket(0x1e, 0x1, 0x0) bind$auto(r1, &(0x7f0000000040)=@tipc=@nameseq={0x1e, 0x1, 0x108e04d83b06a5a3, {0x43, 0x0, 0x3}}, 0x66) r2 = socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x2, 0x0) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) (async) io_uring_setup$auto(0x1, 0x0) r3 = socket(0x11, 0xa, 0xffff) (async) close_range$auto(0x2, 0x8, 0x0) socketpair$auto(0x3, 0x5, 0x7, 0x0) (async) socket(0xa, 0x1, 0x0) (async) socket(0x2, 0x1, 0x84) connect$auto(0x3, 0x0, 0x55) (async) listen$auto(0x3, 0x81) (async) accept$auto(0x3, 0x0, 0x0) getsockopt$auto(r3, 0x84, 0x84, 0x0, &(0x7f0000000000)=0x9e) (async) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) (async) setsockopt$auto(0x3, 0x0, 0x11, 0x0, 0x0) (async) sendmsg$auto_OVS_FLOW_CMD_GET(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={0x24, r0, 0x1, 0x70bd2c, 0x25dfdbfb, {}, [@OVS_FLOW_ATTR_PROBE={0x4}, @OVS_FLOW_ATTR_KEY={0x4}, @OVS_FLOW_ATTR_UFID={0x5, 0x9, 0x6}]}, 0x24}, 0x1, 0x0, 0x0, 0x24040871}, 0x800) kernel console output (not intermixed with test programs): 195.361086][ T7563] ? crng_make_state+0x48e/0x6d0 [ 195.361132][ T7563] get_random_bytes_user+0x17f/0x3c0 [ 195.361173][ T7563] ? __pfx_get_random_bytes_user+0x10/0x10 [ 195.361208][ T7563] ? do_writev+0x218/0x340 [ 195.361254][ T7563] ? do_futex+0x122/0x350 [ 195.361296][ T7563] ? import_ubuf+0x1b6/0x220 [ 195.361327][ T7563] __x64_sys_getrandom+0x183/0x290 [ 195.361365][ T7563] ? __pfx___x64_sys_getrandom+0x10/0x10 [ 195.361420][ T7563] do_syscall_64+0xcd/0x490 [ 195.361453][ T7563] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 195.361480][ T7563] RIP: 0033:0x7f3eea78e9a9 [ 195.361502][ T7563] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 195.361526][ T7563] RSP: 002b:00007f3eeb5c8038 EFLAGS: 00000246 ORIG_RAX: 000000000000013e [ 195.361552][ T7563] RAX: ffffffffffffffda RBX: 00007f3eea9b6080 RCX: 00007f3eea78e9a9 [ 195.361569][ T7563] RDX: 0000000000000003 RSI: 0000000006000000 RDI: 0000000000000000 [ 195.361585][ T7563] RBP: 00007f3eea810d69 R08: 0000000000000000 R09: 0000000000000000 [ 195.361601][ T7563] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 195.361616][ T7563] R13: 0000000000000000 R14: 00007f3eea9b6080 R15: 00007ffccb2cc948 [ 195.361652][ T7563] [ 199.634195][ T7648] tc_dump_action: action bad kind [ 201.988490][ T7697] FAULT_INJECTION: forcing a failure. [ 201.988490][ T7697] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 202.037560][ T7697] CPU: 1 UID: 0 PID: 7697 Comm: syz.1.321 Not tainted 6.16.0-rc7-syzkaller-00034-g25fae0b93d1d #0 PREEMPT(full) [ 202.037596][ T7697] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 202.037611][ T7697] Call Trace: [ 202.037620][ T7697] [ 202.037629][ T7697] dump_stack_lvl+0x16c/0x1f0 [ 202.037662][ T7697] should_fail_ex+0x512/0x640 [ 202.037693][ T7697] _copy_from_iter+0x29f/0x16f0 [ 202.037725][ T7697] ? __alloc_skb+0x200/0x380 [ 202.037751][ T7697] ? __pfx__copy_from_iter+0x10/0x10 [ 202.037784][ T7697] ? __lock_acquire+0xb8a/0x1c90 [ 202.037827][ T7697] netlink_sendmsg+0x829/0xdd0 [ 202.037865][ T7697] ? __pfx_netlink_sendmsg+0x10/0x10 [ 202.037907][ T7697] ____sys_sendmsg+0xa95/0xc70 [ 202.037943][ T7697] ? copy_msghdr_from_user+0x10a/0x160 [ 202.037971][ T7697] ? __pfx_____sys_sendmsg+0x10/0x10 [ 202.038021][ T7697] ___sys_sendmsg+0x134/0x1d0 [ 202.038050][ T7697] ? __pfx____sys_sendmsg+0x10/0x10 [ 202.038074][ T7697] ? __lock_acquire+0x622/0x1c90 [ 202.038151][ T7697] __sys_sendmsg+0x16d/0x220 [ 202.038189][ T7697] ? __pfx___sys_sendmsg+0x10/0x10 [ 202.038238][ T7697] do_syscall_64+0xcd/0x490 [ 202.038268][ T7697] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 202.038294][ T7697] RIP: 0033:0x7f3eea78e9a9 [ 202.038318][ T7697] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 202.038341][ T7697] RSP: 002b:00007f3eeb5e9038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 202.038364][ T7697] RAX: ffffffffffffffda RBX: 00007f3eea9b5fa0 RCX: 00007f3eea78e9a9 [ 202.038380][ T7697] RDX: 0000000000044044 RSI: 0000200000006200 RDI: 0000000000000003 [ 202.038395][ T7697] RBP: 00007f3eeb5e9090 R08: 0000000000000000 R09: 0000000000000000 [ 202.038410][ T7697] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 202.038424][ T7697] R13: 0000000000000000 R14: 00007f3eea9b5fa0 R15: 00007ffccb2cc948 [ 202.038457][ T7697] [ 202.622335][ T7705] ptrace attach of "./syz-executor exec"[5841] was attempted by ""[7705] [ 202.659711][ T7695] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 202.666709][ T7695] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 202.673360][ T7695] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 202.698315][ T7695] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 202.866065][ T7709] tc_dump_action: action bad kind [ 203.689474][ T7728] synth uevent: /bus/mei: unknown uevent action string [ 204.050707][ T6738] Bluetooth: hci0: command 0x0c1a tx timeout [ 204.708873][ T6738] Bluetooth: hci3: command 0x0c1a tx timeout [ 204.715298][ T6691] Bluetooth: hci1: command 0x0c1a tx timeout [ 204.770626][ T6738] Bluetooth: hci2: command 0x0c1a tx timeout [ 204.944833][ T7743] tc_dump_action: action bad kind [ 205.151248][ T7747] FAULT_INJECTION: forcing a failure. [ 205.151248][ T7747] name fail_futex, interval 1, probability 0, space 0, times 0 [ 205.172880][ T7747] CPU: 0 UID: 0 PID: 7747 Comm: syz.3.334 Not tainted 6.16.0-rc7-syzkaller-00034-g25fae0b93d1d #0 PREEMPT(full) [ 205.172921][ T7747] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 205.172936][ T7747] Call Trace: [ 205.172945][ T7747] [ 205.172956][ T7747] dump_stack_lvl+0x16c/0x1f0 [ 205.172992][ T7747] should_fail_ex+0x512/0x640 [ 205.173024][ T7747] get_futex_key+0x1d0/0x1540 [ 205.173059][ T7747] ? __pfx_get_futex_key+0x10/0x10 [ 205.173101][ T7747] futex_wake+0xe7/0x4e0 [ 205.173136][ T7747] ? __pfx_futex_wake+0x10/0x10 [ 205.173174][ T7747] ? kmem_cache_free+0x2d1/0x4d0 [ 205.173199][ T7747] ? fd_install+0x225/0x750 [ 205.173234][ T7747] ? putname+0x154/0x1a0 [ 205.173269][ T7747] do_futex+0x1e3/0x350 [ 205.173306][ T7747] ? __pfx_do_futex+0x10/0x10 [ 205.173347][ T7747] __x64_sys_futex+0x1e0/0x4c0 [ 205.173380][ T7747] ? __x64_sys_openat+0x174/0x210 [ 205.173413][ T7747] ? __pfx___x64_sys_futex+0x10/0x10 [ 205.173459][ T7747] do_syscall_64+0xcd/0x490 [ 205.173489][ T7747] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 205.173515][ T7747] RIP: 0033:0x7f9e4338e9a9 [ 205.173536][ T7747] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 205.173560][ T7747] RSP: 002b:00007f9e442d90e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 205.173584][ T7747] RAX: ffffffffffffffda RBX: 00007f9e435b5fa8 RCX: 00007f9e4338e9a9 [ 205.173601][ T7747] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f9e435b5fac [ 205.173617][ T7747] RBP: 00007f9e435b5fa0 R08: 00007f9e442da000 R09: 0000000000000000 [ 205.173633][ T7747] R10: 0000000000000004 R11: 0000000000000246 R12: 00007f9e435b5fac [ 205.173648][ T7747] R13: 0000000000000000 R14: 00007fffce89e630 R15: 00007fffce89e718 [ 205.173682][ T7747] [ 205.982352][ T7758] ptrace attach of "./syz-executor exec"[5843] was attempted by ""[7758] [ 207.491285][ T7791] ptrace attach of "./syz-executor exec"[5842] was attempted by ""[7791] [ 207.587321][ T7791] FAULT_INJECTION: forcing a failure. [ 207.587321][ T7791] name failslab, interval 1, probability 0, space 0, times 0 [ 207.609941][ T7791] CPU: 1 UID: 0 PID: 7791 Comm: syz.0.342 Not tainted 6.16.0-rc7-syzkaller-00034-g25fae0b93d1d #0 PREEMPT(full) [ 207.609964][ T7791] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 207.609973][ T7791] Call Trace: [ 207.609979][ T7791] [ 207.609985][ T7791] dump_stack_lvl+0x16c/0x1f0 [ 207.610007][ T7791] should_fail_ex+0x512/0x640 [ 207.610025][ T7791] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 207.610050][ T7791] should_failslab+0xc2/0x120 [ 207.610068][ T7791] __kmalloc_cache_noprof+0x6a/0x3e0 [ 207.610095][ T7791] ? alloc_pipe_info+0x10e/0x590 [ 207.610114][ T7791] alloc_pipe_info+0x10e/0x590 [ 207.610130][ T7791] splice_direct_to_actor+0x77d/0xa30 [ 207.610155][ T7791] ? __pfx_direct_splice_actor+0x10/0x10 [ 207.610176][ T7791] ? __pfx_aa_file_perm+0x10/0x10 [ 207.610191][ T7791] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 207.610215][ T7791] do_splice_direct+0x174/0x240 [ 207.610235][ T7791] ? __pfx_do_splice_direct+0x10/0x10 [ 207.610254][ T7791] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 207.610276][ T7791] ? rw_verify_area+0xcf/0x680 [ 207.610298][ T7791] do_sendfile+0xb06/0xe50 [ 207.610321][ T7791] ? __pfx_do_sendfile+0x10/0x10 [ 207.610343][ T7791] ? __x64_sys_futex+0x1e0/0x4c0 [ 207.610360][ T7791] ? __x64_sys_futex+0x1e9/0x4c0 [ 207.610388][ T7791] __x64_sys_sendfile64+0x1d8/0x220 [ 207.610416][ T7791] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 207.610450][ T7791] do_syscall_64+0xcd/0x490 [ 207.610480][ T7791] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 207.610506][ T7791] RIP: 0033:0x7f6acd38e9a9 [ 207.610527][ T7791] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 207.610551][ T7791] RSP: 002b:00007f6ace13d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 207.610573][ T7791] RAX: ffffffffffffffda RBX: 00007f6acd5b5fa0 RCX: 00007f6acd38e9a9 [ 207.610589][ T7791] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000008 [ 207.610603][ T7791] RBP: 00007f6acd410d69 R08: 0000000000000000 R09: 0000000000000000 [ 207.610618][ T7791] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 207.610633][ T7791] R13: 0000000000000000 R14: 00007f6acd5b5fa0 R15: 00007ffe6bf9d208 [ 207.610669][ T7791] [ 208.468866][ T7807] ptrace attach of "./syz-executor exec"[5842] was attempted by ""[7807] [ 209.633919][ T7816] FAULT_INJECTION: forcing a failure. [ 209.633919][ T7816] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 209.647734][ T7816] CPU: 0 UID: 0 PID: 7816 Comm: syz.0.348 Not tainted 6.16.0-rc7-syzkaller-00034-g25fae0b93d1d #0 PREEMPT(full) [ 209.647769][ T7816] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 209.647783][ T7816] Call Trace: [ 209.647791][ T7816] [ 209.647800][ T7816] dump_stack_lvl+0x16c/0x1f0 [ 209.647832][ T7816] should_fail_ex+0x512/0x640 [ 209.647859][ T7816] _copy_from_user+0x2e/0xd0 [ 209.647876][ T7816] get_timespec64+0x8b/0x1b0 [ 209.647894][ T7816] ? __pfx_get_timespec64+0x10/0x10 [ 209.647931][ T7816] ? ktime_get+0x200/0x310 [ 209.647952][ T7816] __x64_sys_futex+0x288/0x4c0 [ 209.647971][ T7816] ? __pfx___x64_sys_futex+0x10/0x10 [ 209.647988][ T7816] ? xfd_validate_state+0x61/0x180 [ 209.648013][ T7816] do_syscall_64+0xcd/0x490 [ 209.648029][ T7816] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 209.648043][ T7816] RIP: 0033:0x7f6acd38e9a9 [ 209.648055][ T7816] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 209.648067][ T7816] RSP: 002b:00007ffe6bf9d368 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 209.648081][ T7816] RAX: ffffffffffffffda RBX: 00000000000332b9 RCX: 00007f6acd38e9a9 [ 209.648090][ T7816] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f6acd5b5fac [ 209.648098][ T7816] RBP: 0000000000000032 R08: 00007f6ace13e000 R09: 000000086bf9d65f [ 209.648106][ T7816] R10: 00007ffe6bf9d460 R11: 0000000000000246 R12: 00007f6acd5b5fac [ 209.648114][ T7816] R13: 00007ffe6bf9d460 R14: 00000000000332eb R15: 00007ffe6bf9d480 [ 209.648132][ T7816] [ 210.777447][ T7830] FAULT_INJECTION: forcing a failure. [ 210.777447][ T7830] name failslab, interval 1, probability 0, space 0, times 0 [ 210.805072][ T7830] CPU: 0 UID: 0 PID: 7830 Comm: syz.0.349 Not tainted 6.16.0-rc7-syzkaller-00034-g25fae0b93d1d #0 PREEMPT(full) [ 210.805113][ T7830] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 210.805129][ T7830] Call Trace: [ 210.805138][ T7830] [ 210.805148][ T7830] dump_stack_lvl+0x16c/0x1f0 [ 210.805183][ T7830] should_fail_ex+0x512/0x640 [ 210.805209][ T7830] ? fs_reclaim_acquire+0xae/0x150 [ 210.805246][ T7830] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 210.805272][ T7830] should_failslab+0xc2/0x120 [ 210.805302][ T7830] __kmalloc_noprof+0xd2/0x510 [ 210.805337][ T7830] tomoyo_realpath_from_path+0xc2/0x6e0 [ 210.805365][ T7830] ? tomoyo_profile+0x47/0x60 [ 210.805395][ T7830] tomoyo_path_number_perm+0x245/0x580 [ 210.805428][ T7830] ? tomoyo_path_number_perm+0x237/0x580 [ 210.805466][ T7830] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 210.805502][ T7830] ? find_held_lock+0x2b/0x80 [ 210.805563][ T7830] ? find_held_lock+0x2b/0x80 [ 210.805588][ T7830] ? hook_file_ioctl_common+0x145/0x410 [ 210.805631][ T7830] ? __fget_files+0x20e/0x3c0 [ 210.805676][ T7830] security_file_ioctl+0x9b/0x240 [ 210.805713][ T7830] __x64_sys_ioctl+0xb7/0x210 [ 210.805751][ T7830] do_syscall_64+0xcd/0x490 [ 210.805782][ T7830] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 210.805808][ T7830] RIP: 0033:0x7f6acd38e9a9 [ 210.805830][ T7830] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 210.805853][ T7830] RSP: 002b:00007f6ace11c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 210.805877][ T7830] RAX: ffffffffffffffda RBX: 00007f6acd5b6080 RCX: 00007f6acd38e9a9 [ 210.805894][ T7830] RDX: 0000000000000000 RSI: 0000000000005437 RDI: 0000000000000005 [ 210.805908][ T7830] RBP: 00007f6ace11c090 R08: 0000000000000000 R09: 0000000000000000 [ 210.805923][ T7830] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 210.805938][ T7830] R13: 0000000000000001 R14: 00007f6acd5b6080 R15: 00007ffe6bf9d208 [ 210.805979][ T7830] [ 210.805990][ T7830] ERROR: Out of memory at tomoyo_realpath_from_path. [ 211.393199][ T7844] ptrace attach of "./syz-executor exec"[5841] was attempted by ""[7844] [ 211.472701][ T7844] FAULT_INJECTION: forcing a failure. [ 211.472701][ T7844] name failslab, interval 1, probability 0, space 0, times 0 [ 211.500546][ T7844] CPU: 1 UID: 0 PID: 7844 Comm: syz.3.352 Not tainted 6.16.0-rc7-syzkaller-00034-g25fae0b93d1d #0 PREEMPT(full) [ 211.500591][ T7844] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 211.500607][ T7844] Call Trace: [ 211.500616][ T7844] [ 211.500626][ T7844] dump_stack_lvl+0x16c/0x1f0 [ 211.500663][ T7844] should_fail_ex+0x512/0x640 [ 211.500689][ T7844] ? __kmalloc_noprof+0xbf/0x510 [ 211.500719][ T7844] ? __register_sysctl_table+0xb3/0x1900 [ 211.500757][ T7844] should_failslab+0xc2/0x120 [ 211.500789][ T7844] __kmalloc_noprof+0xd2/0x510 [ 211.500823][ T7844] __register_sysctl_table+0xb3/0x1900 [ 211.500854][ T7844] ? is_module_address+0x5f/0xf0 [ 211.500894][ T7844] ? __pfx___register_sysctl_table+0x10/0x10 [ 211.500920][ T7844] ? is_module_address+0x69/0xf0 [ 211.500951][ T7844] ? register_net_sysctl_sz+0x228/0x3e0 [ 211.500982][ T7844] ? __asan_memcpy+0x3c/0x60 [ 211.501020][ T7844] nf_log_net_init+0x109/0x450 [ 211.501050][ T7844] ? __pfx_nf_log_net_init+0x10/0x10 [ 211.501076][ T7844] ops_init+0x1df/0x5f0 [ 211.501107][ T7844] setup_net+0x1ff/0x510 [ 211.501132][ T7844] ? lockdep_init_map_type+0x5c/0x280 [ 211.501166][ T7844] ? __pfx_setup_net+0x10/0x10 [ 211.501195][ T7844] ? debug_mutex_init+0x37/0x70 [ 211.501222][ T7844] copy_net_ns+0x2a6/0x5f0 [ 211.501255][ T7844] create_new_namespaces+0x3ea/0xa90 [ 211.501290][ T7844] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 211.501320][ T7844] ksys_unshare+0x45b/0xa40 [ 211.501352][ T7844] ? __pfx_ksys_unshare+0x10/0x10 [ 211.501385][ T7844] ? xfd_validate_state+0x61/0x180 [ 211.501427][ T7844] __x64_sys_unshare+0x31/0x40 [ 211.501458][ T7844] do_syscall_64+0xcd/0x490 [ 211.501502][ T7844] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 211.501530][ T7844] RIP: 0033:0x7f9e4338e9a9 [ 211.501551][ T7844] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 211.501577][ T7844] RSP: 002b:00007f9e442d9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 211.501600][ T7844] RAX: ffffffffffffffda RBX: 00007f9e435b5fa0 RCX: 00007f9e4338e9a9 [ 211.501616][ T7844] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 211.501630][ T7844] RBP: 00007f9e43410d69 R08: 0000000000000000 R09: 0000000000000000 [ 211.501645][ T7844] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 211.501660][ T7844] R13: 0000000000000000 R14: 00007f9e435b5fa0 R15: 00007fffce89e718 [ 211.501694][ T7844] [ 212.191867][ T7856] : Can't lookup blockdev [ 212.412227][ T7863] ptrace attach of "./syz-executor exec"[5841] was attempted by ""[7863] [ 213.102007][ T7846] kexec: Could not allocate control_code_buffer [ 213.982515][ T7897] netlink: 4 bytes leftover after parsing attributes in process `syz.3.364'. [ 214.109198][ T7897] FAULT_INJECTION: forcing a failure. [ 214.109198][ T7897] name failslab, interval 1, probability 0, space 0, times 0 [ 214.147290][ T7897] CPU: 1 UID: 0 PID: 7897 Comm: syz.3.364 Not tainted 6.16.0-rc7-syzkaller-00034-g25fae0b93d1d #0 PREEMPT(full) [ 214.147337][ T7897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 214.147355][ T7897] Call Trace: [ 214.147365][ T7897] [ 214.147376][ T7897] dump_stack_lvl+0x16c/0x1f0 [ 214.147416][ T7897] should_fail_ex+0x512/0x640 [ 214.147447][ T7897] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 214.147495][ T7897] should_failslab+0xc2/0x120 [ 214.147526][ T7897] __kmalloc_cache_noprof+0x6a/0x3e0 [ 214.147567][ T7897] ? rcu_is_watching+0x12/0xc0 [ 214.147595][ T7897] ? snd_pcm_oss_open+0x5eb/0x1400 [ 214.147636][ T7897] snd_pcm_oss_open+0x5eb/0x1400 [ 214.147677][ T7897] ? tomoyo_check_open_permission+0x1d8/0x3c0 [ 214.147711][ T7897] ? __pfx_snd_pcm_oss_open+0x10/0x10 [ 214.147749][ T7897] ? __lock_acquire+0xb8a/0x1c90 [ 214.147786][ T7897] ? __pfx_default_wake_function+0x10/0x10 [ 214.147813][ T7897] ? __lock_acquire+0xb8a/0x1c90 [ 214.147845][ T7897] ? do_raw_spin_lock+0x12c/0x2b0 [ 214.147881][ T7897] ? soundcore_open+0x35a/0x580 [ 214.147906][ T7897] ? __pfx_snd_pcm_oss_open+0x10/0x10 [ 214.147934][ T7897] soundcore_open+0x409/0x580 [ 214.147958][ T7897] ? __pfx_soundcore_open+0x10/0x10 [ 214.147981][ T7897] chrdev_open+0x231/0x6a0 [ 214.148004][ T7897] ? __pfx_apparmor_file_open+0x10/0x10 [ 214.148040][ T7897] ? __pfx_chrdev_open+0x10/0x10 [ 214.148070][ T7897] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 214.148107][ T7897] do_dentry_open+0x744/0x1c10 [ 214.148131][ T7897] ? __pfx_chrdev_open+0x10/0x10 [ 214.148159][ T7897] vfs_open+0x82/0x3f0 [ 214.148187][ T7897] path_openat+0x1de4/0x2cb0 [ 214.148218][ T7897] ? __pfx_path_openat+0x10/0x10 [ 214.148244][ T7897] ? __lock_acquire+0xb8a/0x1c90 [ 214.148280][ T7897] do_filp_open+0x20b/0x470 [ 214.148306][ T7897] ? __pfx_do_filp_open+0x10/0x10 [ 214.148362][ T7897] ? alloc_fd+0x471/0x7d0 [ 214.148411][ T7897] do_sys_openat2+0x11b/0x1d0 [ 214.148439][ T7897] ? __pfx_do_sys_openat2+0x10/0x10 [ 214.148477][ T7897] __x64_sys_openat+0x174/0x210 [ 214.148507][ T7897] ? __pfx___x64_sys_openat+0x10/0x10 [ 214.148546][ T7897] do_syscall_64+0xcd/0x490 [ 214.148575][ T7897] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 214.148604][ T7897] RIP: 0033:0x7f9e4338e9a9 [ 214.148629][ T7897] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 214.148656][ T7897] RSP: 002b:00007f9e442d9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 214.148679][ T7897] RAX: ffffffffffffffda RBX: 00007f9e435b5fa0 RCX: 00007f9e4338e9a9 [ 214.148695][ T7897] RDX: 00000000000a2b40 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 214.148712][ T7897] RBP: 00007f9e43410d69 R08: 0000000000000000 R09: 0000000000000000 [ 214.148725][ T7897] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 214.148737][ T7897] R13: 0000000000000000 R14: 00007f9e435b5fa0 R15: 00007fffce89e718 [ 214.148778][ T7897] [ 215.223258][ T7888] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 215.230125][ T7888] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 215.247060][ T7888] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 215.255350][ T7888] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 217.038145][ T7935] ptrace attach of "./syz-executor exec"[5842] was attempted by ""[7935] [ 217.251051][ T6738] Bluetooth: hci1: command 0x0c1a tx timeout [ 217.257224][ T6691] Bluetooth: hci0: command 0x0c1a tx timeout [ 217.330556][ T6691] Bluetooth: hci2: command 0x0c1a tx timeout [ 217.336640][ T6738] Bluetooth: hci3: command 0x0c1a tx timeout [ 218.505865][ T7967] tc_dump_action: action bad kind [ 220.002886][ T7989] ptrace attach of "./syz-executor exec"[5840] was attempted by ""[7989] [ 221.657001][ T8030] FAULT_INJECTION: forcing a failure. [ 221.657001][ T8030] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 221.674160][ T8030] CPU: 1 UID: 0 PID: 8030 Comm: syz.0.390 Not tainted 6.16.0-rc7-syzkaller-00034-g25fae0b93d1d #0 PREEMPT(full) [ 221.674198][ T8030] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 221.674212][ T8030] Call Trace: [ 221.674221][ T8030] [ 221.674230][ T8030] dump_stack_lvl+0x16c/0x1f0 [ 221.674275][ T8030] should_fail_ex+0x512/0x640 [ 221.674308][ T8030] should_fail_alloc_page+0xe7/0x130 [ 221.674340][ T8030] prepare_alloc_pages+0x3c2/0x610 [ 221.674379][ T8030] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 221.674407][ T8030] ? __pfx_stack_trace_save+0x10/0x10 [ 221.674436][ T8030] ? stack_depot_save_flags+0x28/0xa40 [ 221.674465][ T8030] ? __alloc_frozen_pages_noprof+0x294/0x23f0 [ 221.674496][ T8030] ? kasan_save_stack+0x42/0x60 [ 221.674519][ T8030] ? kasan_save_stack+0x33/0x60 [ 221.674544][ T8030] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 221.674568][ T8030] ? __pmd_alloc+0xbf/0x930 [ 221.674599][ T8030] ? handle_mm_fault+0x589/0xd10 [ 221.674632][ T8030] ? populate_vma_page_range+0x278/0x3a0 [ 221.674664][ T8030] ? __mm_populate+0x1d8/0x380 [ 221.674695][ T8030] ? vm_mmap_pgoff+0x362/0x450 [ 221.674723][ T8030] ? ksys_mmap_pgoff+0x7d/0x5c0 [ 221.674750][ T8030] ? __x64_sys_mmap+0x125/0x190 [ 221.674782][ T8030] ? do_syscall_64+0xcd/0x490 [ 221.674807][ T8030] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 221.674847][ T8030] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 221.674887][ T8030] ? policy_nodemask+0xea/0x4e0 [ 221.674919][ T8030] alloc_pages_mpol+0x1fb/0x550 [ 221.674948][ T8030] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 221.674973][ T8030] ? css_rstat_updated+0x9d/0xd30 [ 221.675010][ T8030] alloc_pages_noprof+0x131/0x390 [ 221.675040][ T8030] pte_alloc_one+0x1c/0x3a0 [ 221.675063][ T8030] __pte_alloc+0x6d/0x3c0 [ 221.675088][ T8030] ? __pfx___pte_alloc+0x10/0x10 [ 221.675116][ T8030] ? _raw_spin_unlock+0x28/0x50 [ 221.675148][ T8030] ? __pmd_alloc+0x3fb/0x930 [ 221.675182][ T8030] __handle_mm_fault+0x4358/0x5490 [ 221.675229][ T8030] ? __pfx___handle_mm_fault+0x10/0x10 [ 221.675304][ T8030] handle_mm_fault+0x589/0xd10 [ 221.675349][ T8030] __get_user_pages+0x589/0x3b80 [ 221.675390][ T8030] ? __pfx_mt_find+0x10/0x10 [ 221.675418][ T8030] ? __pfx___get_user_pages+0x10/0x10 [ 221.675460][ T8030] populate_vma_page_range+0x278/0x3a0 [ 221.675494][ T8030] ? __pfx_populate_vma_page_range+0x10/0x10 [ 221.675525][ T8030] ? __pfx_find_vma_intersection+0x10/0x10 [ 221.675561][ T8030] ? do_mmap+0x69c/0x1210 [ 221.675593][ T8030] __mm_populate+0x1d8/0x380 [ 221.675625][ T8030] ? __pfx___mm_populate+0x10/0x10 [ 221.675662][ T8030] ? up_write+0x1b2/0x520 [ 221.675696][ T8030] vm_mmap_pgoff+0x362/0x450 [ 221.675728][ T8030] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 221.675763][ T8030] ? __x64_sys_futex+0x1e0/0x4c0 [ 221.675788][ T8030] ? __x64_sys_futex+0x1e9/0x4c0 [ 221.675820][ T8030] ksys_mmap_pgoff+0x7d/0x5c0 [ 221.675848][ T8030] ? xfd_validate_state+0x61/0x180 [ 221.675875][ T8030] ? __pfx_ksys_write+0x10/0x10 [ 221.675899][ T8030] __x64_sys_mmap+0x125/0x190 [ 221.675931][ T8030] do_syscall_64+0xcd/0x490 [ 221.675958][ T8030] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 221.675979][ T8030] RIP: 0033:0x7f6acd38e9a9 [ 221.675999][ T8030] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 221.676019][ T8030] RSP: 002b:00007f6ace13d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 221.676040][ T8030] RAX: ffffffffffffffda RBX: 00007f6acd5b5fa0 RCX: 00007f6acd38e9a9 [ 221.676055][ T8030] RDX: 00000000000000df RSI: 0000000000400009 RDI: 0000000000000000 [ 221.676070][ T8030] RBP: 00007f6acd410d69 R08: 8000000000000003 R09: 0000000000008000 [ 221.676085][ T8030] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 221.676100][ T8030] R13: 0000000000000000 R14: 00007f6acd5b5fa0 R15: 00007ffe6bf9d208 [ 221.676132][ T8030] [ 222.761409][ T8046] ptrace attach of "./syz-executor exec"[5843] was attempted by ""[8046] [ 223.401065][ T8066] ptrace attach of "./syz-executor exec"[5840] was attempted by ""[8066] [ 224.001865][ T8074] vivid-003: ================= START STATUS ================= [ 224.048575][ T8074] vivid-003: Radio HW Seek Mode: Bounded [ 224.080756][ T8074] vivid-003: Radio Programmable HW Seek: false [ 224.087077][ T8074] vivid-003: RDS Rx I/O Mode: Block I/O [ 224.142893][ T8074] vivid-003: Generate RBDS Instead of RDS: false [ 224.149424][ T8074] vivid-003: RDS Reception: true [ 224.201676][ T8076] ptrace attach of "./syz-executor exec"[5840] was attempted by ""[8076] [ 224.219278][ T8074] vivid-003: RDS Program Type: 0 inactive [ 224.286045][ T8074] vivid-003: RDS PS Name: inactive [ 224.369962][ T8074] vivid-003: RDS Radio Text: inactive [ 224.434552][ T8074] vivid-003: RDS Traffic Announcement: false inactive [ 224.467102][ T8074] vivid-003: RDS Traffic Program: false inactive [ 224.498684][ T8074] vivid-003: RDS Music: false inactive [ 224.512157][ T8074] vivid-003: ================== END STATUS ================== [ 225.650114][ T8113] FAULT_INJECTION: forcing a failure. [ 225.650114][ T8113] name failslab, interval 1, probability 0, space 0, times 0 [ 225.666561][ T8113] CPU: 0 UID: 0 PID: 8113 Comm: syz.0.405 Not tainted 6.16.0-rc7-syzkaller-00034-g25fae0b93d1d #0 PREEMPT(full) [ 225.666584][ T8113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 225.666595][ T8113] Call Trace: [ 225.666601][ T8113] [ 225.666607][ T8113] dump_stack_lvl+0x16c/0x1f0 [ 225.666630][ T8113] should_fail_ex+0x512/0x640 [ 225.666652][ T8113] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 225.666672][ T8113] should_failslab+0xc2/0x120 [ 225.666692][ T8113] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 225.666707][ T8113] ? d_instantiate+0x77/0x90 [ 225.666731][ T8113] ? alloc_empty_file+0x55/0x1e0 [ 225.666753][ T8113] alloc_empty_file+0x55/0x1e0 [ 225.666773][ T8113] alloc_file_pseudo+0x13a/0x230 [ 225.666795][ T8113] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 225.666819][ T8113] ioctx_alloc+0x5ab/0x2120 [ 225.666850][ T8113] ? find_held_lock+0x2b/0x80 [ 225.666865][ T8113] ? __pfx_ioctx_alloc+0x10/0x10 [ 225.666883][ T8113] ? __might_fault+0x13b/0x190 [ 225.666903][ T8113] __x64_sys_io_setup+0xc9/0x210 [ 225.666924][ T8113] do_syscall_64+0xcd/0x490 [ 225.666941][ T8113] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 225.666956][ T8113] RIP: 0033:0x7f6acd38e9a9 [ 225.666969][ T8113] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 225.666982][ T8113] RSP: 002b:00007f6ace13d038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce [ 225.666995][ T8113] RAX: ffffffffffffffda RBX: 00007f6acd5b5fa0 RCX: 00007f6acd38e9a9 [ 225.667004][ T8113] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 000000000000ffff [ 225.667012][ T8113] RBP: 00007f6acd410d69 R08: 0000000000000000 R09: 0000000000000000 [ 225.667020][ T8113] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 225.667029][ T8113] R13: 0000000000000000 R14: 00007f6acd5b5fa0 R15: 00007ffe6bf9d208 [ 225.667051][ T8113] [ 226.543574][ T8124] ptrace attach of "./syz-executor exec"[5840] was attempted by ""[8124] [ 229.027807][ T8159] Per memcg swappiness does not exist in cgroup v2. See memory.reclaim or memory.swap.max there [ 229.027807][ T8159] [ 229.679156][ T8187] FAULT_INJECTION: forcing a failure. [ 229.679156][ T8187] name failslab, interval 1, probability 0, space 0, times 0 [ 229.706749][ T8187] CPU: 1 UID: 0 PID: 8187 Comm: syz.2.417 Not tainted 6.16.0-rc7-syzkaller-00034-g25fae0b93d1d #0 PREEMPT(full) [ 229.706775][ T8187] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 229.706783][ T8187] Call Trace: [ 229.706789][ T8187] [ 229.706794][ T8187] dump_stack_lvl+0x16c/0x1f0 [ 229.706816][ T8187] should_fail_ex+0x512/0x640 [ 229.706835][ T8187] should_failslab+0xc2/0x120 [ 229.706854][ T8187] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 229.706871][ T8187] ? skb_clone+0x190/0x3f0 [ 229.706889][ T8187] skb_clone+0x190/0x3f0 [ 229.706908][ T8187] netlink_deliver_tap+0xabd/0xd30 [ 229.706931][ T8187] netlink_unicast+0x62f/0x850 [ 229.706951][ T8187] ? __pfx_netlink_unicast+0x10/0x10 [ 229.706972][ T8187] netlink_sendmsg+0x8d1/0xdd0 [ 229.706992][ T8187] ? __pfx_netlink_sendmsg+0x10/0x10 [ 229.707015][ T8187] ____sys_sendmsg+0xa95/0xc70 [ 229.707034][ T8187] ? copy_msghdr_from_user+0x10a/0x160 [ 229.707049][ T8187] ? __pfx_____sys_sendmsg+0x10/0x10 [ 229.707076][ T8187] ___sys_sendmsg+0x134/0x1d0 [ 229.707091][ T8187] ? __pfx____sys_sendmsg+0x10/0x10 [ 229.707104][ T8187] ? __lock_acquire+0x622/0x1c90 [ 229.707148][ T8187] __sys_sendmsg+0x16d/0x220 [ 229.707163][ T8187] ? __pfx___sys_sendmsg+0x10/0x10 [ 229.707190][ T8187] do_syscall_64+0xcd/0x490 [ 229.707206][ T8187] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 229.707221][ T8187] RIP: 0033:0x7f590df8e9a9 [ 229.707233][ T8187] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 229.707246][ T8187] RSP: 002b:00007f590ee6a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 229.707260][ T8187] RAX: ffffffffffffffda RBX: 00007f590e1b5fa0 RCX: 00007f590df8e9a9 [ 229.707269][ T8187] RDX: 0000000000000010 RSI: 0000200000000000 RDI: 0000000000000003 [ 229.707284][ T8187] RBP: 00007f590ee6a090 R08: 0000000000000000 R09: 0000000000000000 [ 229.707292][ T8187] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 229.707300][ T8187] R13: 0000000000000000 R14: 00007f590e1b5fa0 R15: 00007ffc92df3968 [ 229.707318][ T8187] [ 230.792441][ T8201] ptrace attach of "./syz-executor exec"[5843] was attempted by ""[8201] [ 231.086313][ T8205] FAULT_INJECTION: forcing a failure. [ 231.086313][ T8205] name failslab, interval 1, probability 0, space 0, times 0 [ 231.130547][ T8205] CPU: 1 UID: 0 PID: 8205 Comm: syz.0.423 Not tainted 6.16.0-rc7-syzkaller-00034-g25fae0b93d1d #0 PREEMPT(full) [ 231.130588][ T8205] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 231.130601][ T8205] Call Trace: [ 231.130608][ T8205] [ 231.130617][ T8205] dump_stack_lvl+0x16c/0x1f0 [ 231.130653][ T8205] should_fail_ex+0x512/0x640 [ 231.130679][ T8205] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 231.130718][ T8205] should_failslab+0xc2/0x120 [ 231.130746][ T8205] __kmalloc_cache_noprof+0x6a/0x3e0 [ 231.130778][ T8205] ? __asan_memset+0x23/0x50 [ 231.130810][ T8205] ? snd_pcm_oss_change_params_locked+0x6f4/0x3a30 [ 231.130849][ T8205] snd_pcm_oss_change_params_locked+0x6f4/0x3a30 [ 231.130888][ T8205] ? rcu_is_watching+0x12/0xc0 [ 231.130913][ T8205] ? trace_contention_end+0xdd/0x130 [ 231.130948][ T8205] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 231.130981][ T8205] ? snd_pcm_oss_write+0x4a2/0xa10 [ 231.131023][ T8205] ? find_held_lock+0x2b/0x80 [ 231.131054][ T8205] snd_pcm_oss_make_ready_locked+0xb7/0x130 [ 231.131087][ T8205] snd_pcm_oss_write+0x4c3/0xa10 [ 231.131119][ T8205] ? bpf_lsm_file_permission+0x9/0x10 [ 231.131148][ T8205] ? security_file_permission+0x71/0x210 [ 231.131189][ T8205] ? __pfx_snd_pcm_oss_write+0x10/0x10 [ 231.131217][ T8205] vfs_write+0x29d/0x1150 [ 231.131248][ T8205] ? __pfx_vfs_write+0x10/0x10 [ 231.131267][ T8205] ? find_held_lock+0x2b/0x80 [ 231.131291][ T8205] ? __fget_files+0x204/0x3c0 [ 231.131331][ T8205] ? __fget_files+0x20e/0x3c0 [ 231.131373][ T8205] ksys_write+0x12a/0x250 [ 231.131396][ T8205] ? __pfx_ksys_write+0x10/0x10 [ 231.131427][ T8205] do_syscall_64+0xcd/0x490 [ 231.131455][ T8205] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 231.131479][ T8205] RIP: 0033:0x7f6acd38e9a9 [ 231.131499][ T8205] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 231.131520][ T8205] RSP: 002b:00007f6ace13d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 231.131543][ T8205] RAX: ffffffffffffffda RBX: 00007f6acd5b5fa0 RCX: 00007f6acd38e9a9 [ 231.131559][ T8205] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003 [ 231.131572][ T8205] RBP: 00007f6ace13d090 R08: 0000000000000000 R09: 0000000000000000 [ 231.131592][ T8205] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 231.131605][ T8205] R13: 0000000000000000 R14: 00007f6acd5b5fa0 R15: 00007ffe6bf9d208 [ 231.131637][ T8205] [ 231.898148][ T8211] binder: 8210:8211 ioctl 5380 2000000000c0 returned -22 [ 231.916131][ T8211] capability: warning: `syz.0.425' uses 32-bit capabilities (legacy support in use) [ 231.942059][ T8211] sd 0:0:1:0: PR command failed: 1026 [ 231.962660][ T8211] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 231.974394][ T8213] FAULT_INJECTION: forcing a failure. [ 231.974394][ T8213] name failslab, interval 1, probability 0, space 0, times 0 [ 232.001856][ T8211] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 232.031629][ T8213] CPU: 1 UID: 0 PID: 8213 Comm: syz.3.426 Not tainted 6.16.0-rc7-syzkaller-00034-g25fae0b93d1d #0 PREEMPT(full) [ 232.031678][ T8213] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 232.031697][ T8213] Call Trace: [ 232.031707][ T8213] [ 232.031718][ T8213] dump_stack_lvl+0x16c/0x1f0 [ 232.031755][ T8213] should_fail_ex+0x512/0x640 [ 232.031784][ T8213] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 232.031834][ T8213] should_failslab+0xc2/0x120 [ 232.031870][ T8213] __kmalloc_cache_noprof+0x6a/0x3e0 [ 232.031915][ T8213] ? trace_pid_list_alloc+0x27c/0x3f0 [ 232.031950][ T8213] ? kasan_save_track+0x14/0x30 [ 232.031981][ T8213] trace_pid_list_alloc+0x27c/0x3f0 [ 232.032021][ T8213] trace_pid_write+0x10e/0x460 [ 232.032066][ T8213] ? event_pid_write.isra.0+0x11d/0x7c0 [ 232.032103][ T8213] ? __pfx_trace_pid_write+0x10/0x10 [ 232.032140][ T8213] ? __pfx___mutex_lock+0x10/0x10 [ 232.032173][ T8213] ? update_last_data+0xb3/0x4f0 [ 232.032220][ T8213] event_pid_write.isra.0+0x3cc/0x7c0 [ 232.032265][ T8213] ? __pfx_event_pid_write.isra.0+0x10/0x10 [ 232.032316][ T8213] ? __pfx_ftrace_event_pid_write+0x10/0x10 [ 232.032355][ T8213] vfs_writev+0x5dc/0xde0 [ 232.032394][ T8213] ? __pfx___mutex_trylock_common+0x10/0x10 [ 232.032440][ T8213] ? __pfx_vfs_writev+0x10/0x10 [ 232.032477][ T8213] ? __mutex_lock+0x1ca/0xb90 [ 232.032513][ T8213] ? __pfx___mutex_lock+0x10/0x10 [ 232.032554][ T8213] ? __fget_files+0x20e/0x3c0 [ 232.032604][ T8213] ? do_writev+0x132/0x340 [ 232.032639][ T8213] do_writev+0x132/0x340 [ 232.032678][ T8213] ? __pfx_do_writev+0x10/0x10 [ 232.032729][ T8213] do_syscall_64+0xcd/0x490 [ 232.032760][ T8213] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 232.032788][ T8213] RIP: 0033:0x7f9e4338e9a9 [ 232.032811][ T8213] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 232.032836][ T8213] RSP: 002b:00007f9e442d9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 232.032863][ T8213] RAX: ffffffffffffffda RBX: 00007f9e435b5fa0 RCX: 00007f9e4338e9a9 [ 232.032883][ T8213] RDX: 0000000000000008 RSI: 0000200000000100 RDI: 0000000000000003 [ 232.032899][ T8213] RBP: 00007f9e43410d69 R08: 0000000000000000 R09: 0000000000000000 [ 232.032915][ T8213] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 232.032931][ T8213] R13: 0000000000000000 R14: 00007f9e435b5fa0 R15: 00007fffce89e718 [ 232.032968][ T8213] [ 232.398448][ T8222] random: crng reseeded on system resumption [ 234.671675][ T8271] FAULT_INJECTION: forcing a failure. [ 234.671675][ T8271] name failslab, interval 1, probability 0, space 0, times 0 [ 234.743713][ T8271] CPU: 0 UID: 0 PID: 8271 Comm: syz.1.434 Not tainted 6.16.0-rc7-syzkaller-00034-g25fae0b93d1d #0 PREEMPT(full) [ 234.743752][ T8271] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 234.743765][ T8271] Call Trace: [ 234.743773][ T8271] [ 234.743782][ T8271] dump_stack_lvl+0x16c/0x1f0 [ 234.743812][ T8271] should_fail_ex+0x512/0x640 [ 234.743840][ T8271] should_failslab+0xc2/0x120 [ 234.743871][ T8271] __kmalloc_cache_noprof+0x6a/0x3e0 [ 234.743906][ T8271] ? __sctp_v6_cmp_addr+0x206/0x530 [ 234.743937][ T8271] ? sctp_add_bind_addr+0xae/0x3f0 [ 234.743966][ T8271] sctp_add_bind_addr+0xae/0x3f0 [ 234.743996][ T8271] sctp_copy_local_addr_list+0x39d/0x5a0 [ 234.744033][ T8271] ? __pfx_sctp_copy_local_addr_list+0x10/0x10 [ 234.744070][ T8271] ? sctp_auth_asoc_copy_shkeys+0x2a5/0x360 [ 234.744117][ T8271] ? sctp_bind_addr_copy+0xe0/0x530 [ 234.744142][ T8271] sctp_bind_addr_copy+0xe0/0x530 [ 234.744176][ T8271] sctp_connect_new_asoc+0x1d7/0x790 [ 234.744215][ T8271] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 234.744260][ T8271] ? bpf_lsm_sctp_bind_connect+0x9/0x10 [ 234.744298][ T8271] sctp_sendmsg+0x15f9/0x1ee0 [ 234.744344][ T8271] ? __pfx_sctp_sendmsg+0x10/0x10 [ 234.744397][ T8271] ? __might_fault+0xe3/0x190 [ 234.744425][ T8271] ? __pfx_aa_sk_perm+0x10/0x10 [ 234.744466][ T8271] ? __pfx_sctp_sendmsg+0x10/0x10 [ 234.744502][ T8271] inet_sendmsg+0x119/0x140 [ 234.744541][ T8271] __sys_sendto+0x43c/0x520 [ 234.744568][ T8271] ? __pfx___sys_sendto+0x10/0x10 [ 234.744624][ T8271] ? ksys_write+0x1ac/0x250 [ 234.744650][ T8271] ? __pfx_ksys_write+0x10/0x10 [ 234.744679][ T8271] __x64_sys_sendto+0xe0/0x1c0 [ 234.744702][ T8271] ? do_syscall_64+0x91/0x490 [ 234.744728][ T8271] ? lockdep_hardirqs_on+0x7c/0x110 [ 234.744754][ T8271] do_syscall_64+0xcd/0x490 [ 234.744779][ T8271] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 234.744805][ T8271] RIP: 0033:0x7f3eea78e9a9 [ 234.744826][ T8271] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 234.744848][ T8271] RSP: 002b:00007f3eeb5e9038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 234.744871][ T8271] RAX: ffffffffffffffda RBX: 00007f3eea9b5fa0 RCX: 00007f3eea78e9a9 [ 234.744886][ T8271] RDX: 0000000000000401 RSI: 0000000000000000 RDI: 0000000000000003 [ 234.744901][ T8271] RBP: 00007f3eeb5e9090 R08: 0000200000000000 R09: 000000000000001c [ 234.744916][ T8271] R10: 000000000000007f R11: 0000000000000246 R12: 0000000000000002 [ 234.744930][ T8271] R13: 0000000000000000 R14: 00007f3eea9b5fa0 R15: 00007ffccb2cc948 [ 234.744964][ T8271] [ 236.374897][ T8287] ptrace attach of "./syz-executor exec"[5841] was attempted by ""[8287] [ 238.078117][ T8307] __vm_enough_memory: pid: 8307, comm: syz.0.442, bytes: 4398046511104 not enough memory for the allocation [ 238.169465][ T8307] bcachefs: bch2_ioctl_fsck_offline() ret EFAULT [ 238.488723][ T8304] ima: policy update failed [ 238.518023][ T30] audit: type=1802 audit(1753391328.270:2): pid=8304 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.441" res=0 errno=0 [ 239.873219][ T8346] random: crng reseeded on system resumption [ 239.931396][ T8346] FAULT_INJECTION: forcing a failure. [ 239.931396][ T8346] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 240.026218][ T8346] CPU: 0 UID: 0 PID: 8346 Comm: syz.3.451 Not tainted 6.16.0-rc7-syzkaller-00034-g25fae0b93d1d #0 PREEMPT(full) [ 240.026245][ T8346] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 240.026255][ T8346] Call Trace: [ 240.026261][ T8346] [ 240.026268][ T8346] dump_stack_lvl+0x16c/0x1f0 [ 240.026293][ T8346] should_fail_ex+0x512/0x640 [ 240.026314][ T8346] should_fail_alloc_page+0xe7/0x130 [ 240.026335][ T8346] prepare_alloc_pages+0x3c2/0x610 [ 240.026358][ T8346] ? rcu_is_watching+0x12/0xc0 [ 240.026378][ T8346] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 240.026400][ T8346] ? stack_trace_save+0x8e/0xc0 [ 240.026416][ T8346] ? __pfx_stack_trace_save+0x10/0x10 [ 240.026434][ T8346] ? stack_depot_save_flags+0x28/0xa40 [ 240.026450][ T8346] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 240.026467][ T8346] ? kasan_save_stack+0x42/0x60 [ 240.026479][ T8346] ? kasan_save_stack+0x33/0x60 [ 240.026495][ T8346] ? do_dentry_open+0x744/0x1c10 [ 240.026510][ T8346] ? vfs_open+0x82/0x3f0 [ 240.026528][ T8346] ? path_openat+0x1de4/0x2cb0 [ 240.026540][ T8346] ? do_filp_open+0x20b/0x470 [ 240.026551][ T8346] ? do_sys_openat2+0x11b/0x1d0 [ 240.026567][ T8346] ? __x64_sys_openat+0x174/0x210 [ 240.026583][ T8346] ? do_syscall_64+0xcd/0x490 [ 240.026596][ T8346] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 240.026612][ T8346] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 240.026632][ T8346] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 240.026659][ T8346] ? policy_nodemask+0xea/0x4e0 [ 240.026680][ T8346] alloc_pages_mpol+0x1fb/0x550 [ 240.026698][ T8346] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 240.026722][ T8346] alloc_pages_noprof+0x131/0x390 [ 240.026740][ T8346] get_zeroed_page_noprof+0x18/0xb0 [ 240.026759][ T8346] get_image_page+0x18/0x190 [ 240.026776][ T8346] alloc_rtree_node+0x3c/0xb0 [ 240.026790][ T8346] memory_bm_create+0x519/0x810 [ 240.026812][ T8346] create_basic_memory_bitmaps+0xbd/0x320 [ 240.026831][ T8346] snapshot_open+0x235/0x2b0 [ 240.026847][ T8346] ? __pfx_snapshot_open+0x10/0x10 [ 240.026864][ T8346] misc_open+0x35a/0x420 [ 240.026885][ T8346] ? __pfx_misc_open+0x10/0x10 [ 240.026906][ T8346] chrdev_open+0x231/0x6a0 [ 240.026922][ T8346] ? __pfx_apparmor_file_open+0x10/0x10 [ 240.026943][ T8346] ? __pfx_chrdev_open+0x10/0x10 [ 240.026959][ T8346] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 240.026983][ T8346] do_dentry_open+0x744/0x1c10 [ 240.026997][ T8346] ? __pfx_chrdev_open+0x10/0x10 [ 240.027018][ T8346] vfs_open+0x82/0x3f0 [ 240.027040][ T8346] path_openat+0x1de4/0x2cb0 [ 240.027060][ T8346] ? __pfx_path_openat+0x10/0x10 [ 240.027074][ T8346] ? __lock_acquire+0xb8a/0x1c90 [ 240.027095][ T8346] do_filp_open+0x20b/0x470 [ 240.027109][ T8346] ? __pfx_do_filp_open+0x10/0x10 [ 240.027136][ T8346] ? alloc_fd+0x471/0x7d0 [ 240.027162][ T8346] do_sys_openat2+0x11b/0x1d0 [ 240.027180][ T8346] ? __pfx_do_sys_openat2+0x10/0x10 [ 240.027204][ T8346] __x64_sys_openat+0x174/0x210 [ 240.027223][ T8346] ? __pfx___x64_sys_openat+0x10/0x10 [ 240.027248][ T8346] do_syscall_64+0xcd/0x490 [ 240.027265][ T8346] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 240.027279][ T8346] RIP: 0033:0x7f9e4338e9a9 [ 240.027292][ T8346] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 240.027306][ T8346] RSP: 002b:00007f9e442b8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 240.027321][ T8346] RAX: ffffffffffffffda RBX: 00007f9e435b6080 RCX: 00007f9e4338e9a9 [ 240.027331][ T8346] RDX: 0000000000180b01 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 240.027342][ T8346] RBP: 00007f9e43410d69 R08: 0000000000000000 R09: 0000000000000000 [ 240.027351][ T8346] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 240.027360][ T8346] R13: 0000000000000000 R14: 00007f9e435b6080 R15: 00007fffce89e718 [ 240.027381][ T8346] [ 241.244577][ T8365] FAULT_INJECTION: forcing a failure. [ 241.244577][ T8365] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 241.271241][ T8365] CPU: 1 UID: 0 PID: 8365 Comm: syz.2.456 Not tainted 6.16.0-rc7-syzkaller-00034-g25fae0b93d1d #0 PREEMPT(full) [ 241.271265][ T8365] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 241.271273][ T8365] Call Trace: [ 241.271279][ T8365] [ 241.271285][ T8365] dump_stack_lvl+0x16c/0x1f0 [ 241.271307][ T8365] should_fail_ex+0x512/0x640 [ 241.271327][ T8365] _copy_from_iter+0x463/0x16f0 [ 241.271349][ T8365] ? __pfx__copy_from_iter+0x10/0x10 [ 241.271368][ T8365] ? alloc_pages_noprof+0x23c/0x390 [ 241.271388][ T8365] copy_page_from_iter+0xde/0x180 [ 241.271405][ T8365] rds_message_copy_from_user+0x37a/0xd90 [ 241.271432][ T8365] ? __pfx_rds_message_copy_from_user+0x10/0x10 [ 241.271448][ T8365] ? lockdep_init_map_type+0x5c/0x280 [ 241.271470][ T8365] ? __asan_memset+0x23/0x50 [ 241.271498][ T8365] ? sg_init_table+0x20/0x60 [ 241.271519][ T8365] rds_sendmsg+0x206a/0x31f0 [ 241.271546][ T8365] ? __pfx_rds_sendmsg+0x10/0x10 [ 241.271566][ T8365] ? aa_sk_perm+0x2f4/0xb10 [ 241.271587][ T8365] ? __pfx_aa_sk_perm+0x10/0x10 [ 241.271611][ T8365] ? ____sys_sendmsg+0xa95/0xc70 [ 241.271638][ T8365] ____sys_sendmsg+0xa95/0xc70 [ 241.271659][ T8365] ? __pfx_____sys_sendmsg+0x10/0x10 [ 241.271687][ T8365] ___sys_sendmsg+0x134/0x1d0 [ 241.271704][ T8365] ? __pfx____sys_sendmsg+0x10/0x10 [ 241.271716][ T8365] ? __lock_acquire+0x622/0x1c90 [ 241.271763][ T8365] __sys_sendmsg+0x16d/0x220 [ 241.271778][ T8365] ? __pfx___sys_sendmsg+0x10/0x10 [ 241.271807][ T8365] do_syscall_64+0xcd/0x490 [ 241.271827][ T8365] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 241.271844][ T8365] RIP: 0033:0x7f590df8e9a9 [ 241.271857][ T8365] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 241.271874][ T8365] RSP: 002b:00007f590ee6a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 241.271888][ T8365] RAX: ffffffffffffffda RBX: 00007f590e1b5fa0 RCX: 00007f590df8e9a9 [ 241.271898][ T8365] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000003 [ 241.271906][ T8365] RBP: 00007f590ee6a090 R08: 0000000000000000 R09: 0000000000000000 [ 241.271914][ T8365] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 241.271922][ T8365] R13: 0000000000000000 R14: 00007f590e1b5fa0 R15: 00007ffc92df3968 [ 241.271940][ T8365] [ 241.698682][ T8373] ptrace attach of "./syz-executor exec"[5840] was attempted by ""[8373] [ 241.714234][ T8373] FAULT_INJECTION: forcing a failure. [ 241.714234][ T8373] name failslab, interval 1, probability 0, space 0, times 0 [ 241.769532][ T8373] CPU: 0 UID: 0 PID: 8373 Comm: syz.2.459 Not tainted 6.16.0-rc7-syzkaller-00034-g25fae0b93d1d #0 PREEMPT(full) [ 241.769571][ T8373] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 241.769587][ T8373] Call Trace: [ 241.769596][ T8373] [ 241.769615][ T8373] dump_stack_lvl+0x16c/0x1f0 [ 241.769656][ T8373] should_fail_ex+0x512/0x640 [ 241.769686][ T8373] ? __kmalloc_noprof+0xbf/0x510 [ 241.769716][ T8373] ? alloc_pipe_info+0x1ec/0x590 [ 241.769741][ T8373] should_failslab+0xc2/0x120 [ 241.769771][ T8373] __kmalloc_noprof+0xd2/0x510 [ 241.769801][ T8373] alloc_pipe_info+0x1ec/0x590 [ 241.769832][ T8373] splice_direct_to_actor+0x77d/0xa30 [ 241.769872][ T8373] ? __pfx_direct_splice_actor+0x10/0x10 [ 241.769911][ T8373] ? __pfx_aa_file_perm+0x10/0x10 [ 241.769938][ T8373] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 241.769983][ T8373] do_splice_direct+0x174/0x240 [ 241.770021][ T8373] ? __pfx_do_splice_direct+0x10/0x10 [ 241.770058][ T8373] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 241.770099][ T8373] ? rw_verify_area+0xcf/0x680 [ 241.770138][ T8373] do_sendfile+0xb06/0xe50 [ 241.770179][ T8373] ? __pfx_do_sendfile+0x10/0x10 [ 241.770222][ T8373] ? __x64_sys_futex+0x1e0/0x4c0 [ 241.770252][ T8373] ? __x64_sys_futex+0x1e9/0x4c0 [ 241.770284][ T8373] __x64_sys_sendfile64+0x1d8/0x220 [ 241.770315][ T8373] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 241.770361][ T8373] do_syscall_64+0xcd/0x490 [ 241.770393][ T8373] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 241.770421][ T8373] RIP: 0033:0x7f590df8e9a9 [ 241.770441][ T8373] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 241.770465][ T8373] RSP: 002b:00007f590ee6a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 241.770492][ T8373] RAX: ffffffffffffffda RBX: 00007f590e1b5fa0 RCX: 00007f590df8e9a9 [ 241.770510][ T8373] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000008 [ 241.770525][ T8373] RBP: 00007f590e010d69 R08: 0000000000000000 R09: 0000000000000000 [ 241.770540][ T8373] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 241.770555][ T8373] R13: 0000000000000000 R14: 00007f590e1b5fa0 R15: 00007ffc92df3968 [ 241.770589][ T8373] [ 245.002216][ T8434] ptrace attach of "./syz-executor exec"[5840] was attempted by ""[8434] [ 246.125927][ T8455] binder: 8454:8455 ioctl 5380 2000000000c0 returned -22 [ 246.175644][ T8455] sd 0:0:1:0: PR command failed: 1026 [ 246.191344][ T8455] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 246.217822][ T8455] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 246.757167][ T8473] kAFS: No cell specified [ 248.369281][ T8504] ptrace attach of "./syz-executor exec"[5840] was attempted by ""[8504] [ 248.553205][ T8508] ptrace attach of "./syz-executor exec"[5843] was attempted by ""[8508] [ 248.594913][ T8508] FAULT_INJECTION: forcing a failure. [ 248.594913][ T8508] name failslab, interval 1, probability 0, space 0, times 0 [ 248.702133][ T8508] CPU: 0 UID: 0 PID: 8508 Comm: syz.1.487 Not tainted 6.16.0-rc7-syzkaller-00034-g25fae0b93d1d #0 PREEMPT(full) [ 248.702174][ T8508] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 248.702201][ T8508] Call Trace: [ 248.702210][ T8508] [ 248.702221][ T8508] dump_stack_lvl+0x16c/0x1f0 [ 248.702257][ T8508] should_fail_ex+0x512/0x640 [ 248.702285][ T8508] ? __kmalloc_noprof+0xbf/0x510 [ 248.702316][ T8508] ? copy_splice_read+0x1a8/0xba0 [ 248.702352][ T8508] should_failslab+0xc2/0x120 [ 248.702382][ T8508] __kmalloc_noprof+0xd2/0x510 [ 248.702415][ T8508] copy_splice_read+0x1a8/0xba0 [ 248.702458][ T8508] ? __pfx_copy_splice_read+0x10/0x10 [ 248.702499][ T8508] ? look_up_lock_class+0x59/0x150 [ 248.702539][ T8508] ? lockdep_init_map_type+0x5c/0x280 [ 248.702581][ T8508] ? __pfx_pipe_lock_cmp_fn+0x10/0x10 [ 248.702610][ T8508] ? __pfx_copy_splice_read+0x10/0x10 [ 248.702646][ T8508] do_splice_read+0x285/0x370 [ 248.702687][ T8508] splice_direct_to_actor+0x2a1/0xa30 [ 248.702727][ T8508] ? __pfx_direct_splice_actor+0x10/0x10 [ 248.702773][ T8508] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 248.702821][ T8508] do_splice_direct+0x174/0x240 [ 248.702861][ T8508] ? __pfx_do_splice_direct+0x10/0x10 [ 248.702908][ T8508] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 248.702954][ T8508] ? rw_verify_area+0xcf/0x680 [ 248.702998][ T8508] do_sendfile+0xb06/0xe50 [ 248.703045][ T8508] ? __pfx_do_sendfile+0x10/0x10 [ 248.703090][ T8508] ? __x64_sys_futex+0x1e0/0x4c0 [ 248.703121][ T8508] ? __x64_sys_futex+0x1e9/0x4c0 [ 248.703155][ T8508] __x64_sys_sendfile64+0x1d8/0x220 [ 248.703188][ T8508] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 248.703230][ T8508] do_syscall_64+0xcd/0x490 [ 248.703261][ T8508] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 248.703290][ T8508] RIP: 0033:0x7f3eea78e9a9 [ 248.703313][ T8508] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 248.703338][ T8508] RSP: 002b:00007f3eeb5e9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 248.703362][ T8508] RAX: ffffffffffffffda RBX: 00007f3eea9b5fa0 RCX: 00007f3eea78e9a9 [ 248.703380][ T8508] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000008 [ 248.703397][ T8508] RBP: 00007f3eea810d69 R08: 0000000000000000 R09: 0000000000000000 [ 248.703413][ T8508] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 248.703429][ T8508] R13: 0000000000000000 R14: 00007f3eea9b5fa0 R15: 00007ffccb2cc948 [ 248.703464][ T8508] [ 248.909162][ T8510] ptrace attach of "./syz-executor exec"[5842] was attempted by ""[8510] [ 249.675127][ T8526] binder: 8522:8526 ioctl 5380 2000000000c0 returned -22 [ 249.726078][ T8526] sd 0:0:1:0: PR command failed: 1026 [ 249.745632][ T8526] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 249.810335][ T8526] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 250.225298][ T8545] FAULT_INJECTION: forcing a failure. [ 250.225298][ T8545] name failslab, interval 1, probability 0, space 0, times 0 [ 250.248938][ T8545] CPU: 0 UID: 0 PID: 8545 Comm: syz.3.496 Not tainted 6.16.0-rc7-syzkaller-00034-g25fae0b93d1d #0 PREEMPT(full) [ 250.248976][ T8545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 250.248989][ T8545] Call Trace: [ 250.248997][ T8545] [ 250.249031][ T8545] dump_stack_lvl+0x16c/0x1f0 [ 250.249072][ T8545] should_fail_ex+0x512/0x640 [ 250.249099][ T8545] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 250.249126][ T8545] should_failslab+0xc2/0x120 [ 250.249154][ T8545] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 250.249181][ T8545] ? security_file_alloc+0x34/0x2b0 [ 250.249226][ T8545] security_file_alloc+0x34/0x2b0 [ 250.249264][ T8545] init_file+0x93/0x4c0 [ 250.249294][ T8545] alloc_empty_file+0x73/0x1e0 [ 250.249327][ T8545] path_openat+0xda/0x2cb0 [ 250.249362][ T8545] ? stack_trace_save+0x8e/0xc0 [ 250.249391][ T8545] ? __pfx_path_openat+0x10/0x10 [ 250.249414][ T8545] ? stack_depot_save_flags+0x28/0xa40 [ 250.249452][ T8545] do_filp_open+0x20b/0x470 [ 250.249474][ T8545] ? kasan_save_track+0x14/0x30 [ 250.249501][ T8545] ? __pfx_do_filp_open+0x10/0x10 [ 250.249523][ T8545] ? __x64_sys_execve+0x74/0xb0 [ 250.249557][ T8545] ? do_syscall_64+0xcd/0x490 [ 250.249581][ T8545] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 250.249650][ T8545] do_open_execat+0xf9/0x380 [ 250.249687][ T8545] ? __pfx_do_open_execat+0x10/0x10 [ 250.249736][ T8545] alloc_bprm+0x2d/0x6f0 [ 250.249776][ T8545] do_execveat_common.isra.0+0x1ce/0x610 [ 250.249820][ T8545] __x64_sys_execve+0x8e/0xb0 [ 250.249859][ T8545] do_syscall_64+0xcd/0x490 [ 250.249888][ T8545] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 250.249913][ T8545] RIP: 0033:0x7f9e4338e9a9 [ 250.249934][ T8545] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 250.249957][ T8545] RSP: 002b:00007f9e442b8038 EFLAGS: 00000246 ORIG_RAX: 000000000000003b [ 250.249982][ T8545] RAX: ffffffffffffffda RBX: 00007f9e435b6080 RCX: 00007f9e4338e9a9 [ 250.249999][ T8545] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000240 [ 250.250015][ T8545] RBP: 00007f9e442b8090 R08: 0000000000000000 R09: 0000000000000000 [ 250.250029][ T8545] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 250.250044][ T8545] R13: 0000000000000000 R14: 00007f9e435b6080 R15: 00007fffce89e718 [ 250.250086][ T8545] [ 251.199116][ T8559] ptrace attach of "./syz-executor exec"[5842] was attempted by ""[8559] [ 251.324083][ T8559] FAULT_INJECTION: forcing a failure. [ 251.324083][ T8559] name failslab, interval 1, probability 0, space 0, times 0 [ 251.367973][ T8559] CPU: 1 UID: 0 PID: 8559 Comm: syz.0.498 Not tainted 6.16.0-rc7-syzkaller-00034-g25fae0b93d1d #0 PREEMPT(full) [ 251.367997][ T8559] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 251.368005][ T8559] Call Trace: [ 251.368011][ T8559] [ 251.368017][ T8559] dump_stack_lvl+0x16c/0x1f0 [ 251.368043][ T8559] should_fail_ex+0x512/0x640 [ 251.368057][ T8559] ? __kmalloc_noprof+0xbf/0x510 [ 251.368074][ T8559] ? alloc_pipe_info+0x1ec/0x590 [ 251.368088][ T8559] should_failslab+0xc2/0x120 [ 251.368104][ T8559] __kmalloc_noprof+0xd2/0x510 [ 251.368121][ T8559] alloc_pipe_info+0x1ec/0x590 [ 251.368138][ T8559] splice_direct_to_actor+0x77d/0xa30 [ 251.368162][ T8559] ? __pfx_direct_splice_actor+0x10/0x10 [ 251.368183][ T8559] ? __pfx_aa_file_perm+0x10/0x10 [ 251.368197][ T8559] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 251.368222][ T8559] do_splice_direct+0x174/0x240 [ 251.368242][ T8559] ? __pfx_do_splice_direct+0x10/0x10 [ 251.368262][ T8559] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 251.368284][ T8559] ? rw_verify_area+0xcf/0x680 [ 251.368305][ T8559] do_sendfile+0xb06/0xe50 [ 251.368328][ T8559] ? __pfx_do_sendfile+0x10/0x10 [ 251.368351][ T8559] ? __x64_sys_futex+0x1e0/0x4c0 [ 251.368367][ T8559] ? __x64_sys_futex+0x1e9/0x4c0 [ 251.368385][ T8559] __x64_sys_sendfile64+0x1d8/0x220 [ 251.368401][ T8559] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 251.368422][ T8559] do_syscall_64+0xcd/0x490 [ 251.368438][ T8559] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 251.368452][ T8559] RIP: 0033:0x7f6acd38e9a9 [ 251.368464][ T8559] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 251.368477][ T8559] RSP: 002b:00007f6ace13d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 251.368491][ T8559] RAX: ffffffffffffffda RBX: 00007f6acd5b5fa0 RCX: 00007f6acd38e9a9 [ 251.368501][ T8559] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000007 [ 251.368509][ T8559] RBP: 00007f6acd410d69 R08: 0000000000000000 R09: 0000000000000000 [ 251.368518][ T8559] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 251.368526][ T8559] R13: 0000000000000000 R14: 00007f6acd5b5fa0 R15: 00007ffe6bf9d208 [ 251.368544][ T8559] [ 251.592529][ C1] vkms_vblank_simulate: vblank timer overrun [ 255.209028][ T8643] ptrace attach of "./syz-executor exec"[5841] was attempted by ""[8643] [ 255.260960][ T8643] FAULT_INJECTION: forcing a failure. [ 255.260960][ T8643] name failslab, interval 1, probability 0, space 0, times 0 [ 255.287768][ T8643] CPU: 0 UID: 0 PID: 8643 Comm: syz.3.515 Not tainted 6.16.0-rc7-syzkaller-00034-g25fae0b93d1d #0 PREEMPT(full) [ 255.287809][ T8643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 255.287826][ T8643] Call Trace: [ 255.287835][ T8643] [ 255.287845][ T8643] dump_stack_lvl+0x16c/0x1f0 [ 255.287879][ T8643] should_fail_ex+0x512/0x640 [ 255.287906][ T8643] ? __kmalloc_noprof+0xbf/0x510 [ 255.287937][ T8643] ? alloc_pipe_info+0x1ec/0x590 [ 255.287964][ T8643] should_failslab+0xc2/0x120 [ 255.287994][ T8643] __kmalloc_noprof+0xd2/0x510 [ 255.288030][ T8643] alloc_pipe_info+0x1ec/0x590 [ 255.288062][ T8643] splice_direct_to_actor+0x77d/0xa30 [ 255.288104][ T8643] ? __pfx_direct_splice_actor+0x10/0x10 [ 255.288146][ T8643] ? __pfx_aa_file_perm+0x10/0x10 [ 255.288173][ T8643] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 255.288224][ T8643] do_splice_direct+0x174/0x240 [ 255.288262][ T8643] ? __pfx_do_splice_direct+0x10/0x10 [ 255.288301][ T8643] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 255.288346][ T8643] ? rw_verify_area+0xcf/0x680 [ 255.288388][ T8643] do_sendfile+0xb06/0xe50 [ 255.288435][ T8643] ? __pfx_do_sendfile+0x10/0x10 [ 255.288479][ T8643] ? __x64_sys_futex+0x1e0/0x4c0 [ 255.288511][ T8643] ? __x64_sys_futex+0x1e9/0x4c0 [ 255.288547][ T8643] __x64_sys_sendfile64+0x1d8/0x220 [ 255.288579][ T8643] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 255.288622][ T8643] do_syscall_64+0xcd/0x490 [ 255.288653][ T8643] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 255.288681][ T8643] RIP: 0033:0x7f9e4338e9a9 [ 255.288703][ T8643] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 255.288737][ T8643] RSP: 002b:00007f9e442d9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 255.288762][ T8643] RAX: ffffffffffffffda RBX: 00007f9e435b5fa0 RCX: 00007f9e4338e9a9 [ 255.288781][ T8643] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000008 [ 255.288796][ T8643] RBP: 00007f9e43410d69 R08: 0000000000000000 R09: 0000000000000000 [ 255.288813][ T8643] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 255.288828][ T8643] R13: 0000000000000000 R14: 00007f9e435b5fa0 R15: 00007fffce89e718 [ 255.288864][ T8643] [ 255.895778][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.902316][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.195747][ T8660] random: crng reseeded on system resumption [ 257.425879][ T8678] ptrace attach of "./syz-executor exec"[5842] was attempted by ""[8678] [ 257.448654][ T8678] FAULT_INJECTION: forcing a failure. [ 257.448654][ T8678] name failslab, interval 1, probability 0, space 0, times 0 [ 257.468453][ T8678] CPU: 0 UID: 0 PID: 8678 Comm: syz.0.522 Not tainted 6.16.0-rc7-syzkaller-00034-g25fae0b93d1d #0 PREEMPT(full) [ 257.468492][ T8678] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 257.468508][ T8678] Call Trace: [ 257.468516][ T8678] [ 257.468528][ T8678] dump_stack_lvl+0x16c/0x1f0 [ 257.468562][ T8678] should_fail_ex+0x512/0x640 [ 257.468589][ T8678] ? __kmalloc_noprof+0xbf/0x510 [ 257.468619][ T8678] ? net_alloc_generic+0x1e/0x70 [ 257.468649][ T8678] should_failslab+0xc2/0x120 [ 257.468680][ T8678] __kmalloc_noprof+0xd2/0x510 [ 257.468706][ T8678] ? inc_ucount+0x240/0x2f0 [ 257.468745][ T8678] net_alloc_generic+0x1e/0x70 [ 257.468775][ T8678] copy_net_ns+0xc6/0x5f0 [ 257.468805][ T8678] ? copy_cgroup_ns+0x71/0x700 [ 257.468840][ T8678] create_new_namespaces+0x3ea/0xa90 [ 257.468881][ T8678] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 257.468915][ T8678] ksys_unshare+0x45b/0xa40 [ 257.468952][ T8678] ? __pfx_ksys_unshare+0x10/0x10 [ 257.468988][ T8678] ? xfd_validate_state+0x61/0x180 [ 257.469035][ T8678] __x64_sys_unshare+0x31/0x40 [ 257.469069][ T8678] do_syscall_64+0xcd/0x490 [ 257.469099][ T8678] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 257.469127][ T8678] RIP: 0033:0x7f6acd38e9a9 [ 257.469149][ T8678] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 257.469174][ T8678] RSP: 002b:00007f6ace13d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 257.469216][ T8678] RAX: ffffffffffffffda RBX: 00007f6acd5b5fa0 RCX: 00007f6acd38e9a9 [ 257.469235][ T8678] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 257.469251][ T8678] RBP: 00007f6acd410d69 R08: 0000000000000000 R09: 0000000000000000 [ 257.469274][ T8678] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 257.469291][ T8678] R13: 0000000000000000 R14: 00007f6acd5b5fa0 R15: 00007ffe6bf9d208 [ 257.469327][ T8678] [ 258.494011][ T8697] ptrace attach of "./syz-executor exec"[5842] was attempted by ""[8697] [ 258.532224][ T8697] FAULT_INJECTION: forcing a failure. [ 258.532224][ T8697] name failslab, interval 1, probability 0, space 0, times 0 [ 258.545352][ T8697] CPU: 0 UID: 0 PID: 8697 Comm: syz.0.529 Not tainted 6.16.0-rc7-syzkaller-00034-g25fae0b93d1d #0 PREEMPT(full) [ 258.545377][ T8697] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 258.545388][ T8697] Call Trace: [ 258.545397][ T8697] [ 258.545404][ T8697] dump_stack_lvl+0x16c/0x1f0 [ 258.545435][ T8697] should_fail_ex+0x512/0x640 [ 258.545453][ T8697] ? __kmalloc_noprof+0xbf/0x510 [ 258.545472][ T8697] ? alloc_pipe_info+0x1ec/0x590 [ 258.545489][ T8697] should_failslab+0xc2/0x120 [ 258.545506][ T8697] __kmalloc_noprof+0xd2/0x510 [ 258.545524][ T8697] alloc_pipe_info+0x1ec/0x590 [ 258.545540][ T8697] splice_direct_to_actor+0x77d/0xa30 [ 258.545564][ T8697] ? __pfx_direct_splice_actor+0x10/0x10 [ 258.545585][ T8697] ? __pfx_aa_file_perm+0x10/0x10 [ 258.545600][ T8697] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 258.545625][ T8697] do_splice_direct+0x174/0x240 [ 258.545645][ T8697] ? __pfx_do_splice_direct+0x10/0x10 [ 258.545665][ T8697] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 258.545688][ T8697] ? rw_verify_area+0xcf/0x680 [ 258.545709][ T8697] do_sendfile+0xb06/0xe50 [ 258.545733][ T8697] ? __pfx_do_sendfile+0x10/0x10 [ 258.545757][ T8697] ? __x64_sys_futex+0x1e0/0x4c0 [ 258.545774][ T8697] ? __x64_sys_futex+0x1e9/0x4c0 [ 258.545792][ T8697] __x64_sys_sendfile64+0x1d8/0x220 [ 258.545809][ T8697] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 258.545830][ T8697] do_syscall_64+0xcd/0x490 [ 258.545847][ T8697] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 258.545862][ T8697] RIP: 0033:0x7f6acd38e9a9 [ 258.545875][ T8697] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 258.545897][ T8697] RSP: 002b:00007f6ace13d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 258.545912][ T8697] RAX: ffffffffffffffda RBX: 00007f6acd5b5fa0 RCX: 00007f6acd38e9a9 [ 258.545923][ T8697] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000008 [ 258.545933][ T8697] RBP: 00007f6acd410d69 R08: 0000000000000000 R09: 0000000000000000 [ 258.545943][ T8697] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 258.545952][ T8697] R13: 0000000000000000 R14: 00007f6acd5b5fa0 R15: 00007ffe6bf9d208 [ 258.545971][ T8697] [ 259.337639][ T8704] ptrace attach of "./syz-executor exec"[5843] was attempted by ""[8704] [ 259.399198][ T8704] FAULT_INJECTION: forcing a failure. [ 259.399198][ T8704] name failslab, interval 1, probability 0, space 0, times 0 [ 259.444009][ T8704] CPU: 0 UID: 0 PID: 8704 Comm: syz.1.530 Not tainted 6.16.0-rc7-syzkaller-00034-g25fae0b93d1d #0 PREEMPT(full) [ 259.444055][ T8704] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 259.444073][ T8704] Call Trace: [ 259.444081][ T8704] [ 259.444091][ T8704] dump_stack_lvl+0x16c/0x1f0 [ 259.444127][ T8704] should_fail_ex+0x512/0x640 [ 259.444155][ T8704] ? __kmalloc_noprof+0xbf/0x510 [ 259.444185][ T8704] ? net_alloc_generic+0x1e/0x70 [ 259.444211][ T8704] should_failslab+0xc2/0x120 [ 259.444239][ T8704] __kmalloc_noprof+0xd2/0x510 [ 259.444261][ T8704] ? inc_ucount+0x240/0x2f0 [ 259.444292][ T8704] net_alloc_generic+0x1e/0x70 [ 259.444319][ T8704] copy_net_ns+0xc6/0x5f0 [ 259.444349][ T8704] ? copy_cgroup_ns+0x71/0x700 [ 259.444383][ T8704] create_new_namespaces+0x3ea/0xa90 [ 259.444423][ T8704] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 259.444459][ T8704] ksys_unshare+0x45b/0xa40 [ 259.444496][ T8704] ? __pfx_ksys_unshare+0x10/0x10 [ 259.444533][ T8704] ? xfd_validate_state+0x61/0x180 [ 259.444590][ T8704] __x64_sys_unshare+0x31/0x40 [ 259.444630][ T8704] do_syscall_64+0xcd/0x490 [ 259.444662][ T8704] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 259.444690][ T8704] RIP: 0033:0x7f3eea78e9a9 [ 259.444712][ T8704] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 259.444739][ T8704] RSP: 002b:00007f3eeb5e9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 259.444765][ T8704] RAX: ffffffffffffffda RBX: 00007f3eea9b5fa0 RCX: 00007f3eea78e9a9 [ 259.444786][ T8704] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 259.444804][ T8704] RBP: 00007f3eea810d69 R08: 0000000000000000 R09: 0000000000000000 [ 259.444823][ T8704] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 259.444841][ T8704] R13: 0000000000000000 R14: 00007f3eea9b5fa0 R15: 00007ffccb2cc948 [ 259.444877][ T8704] [ 259.752340][ T8710] FAULT_INJECTION: forcing a failure. [ 259.752340][ T8710] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 259.780798][ T8710] CPU: 0 UID: 0 PID: 8710 Comm: syz.2.532 Not tainted 6.16.0-rc7-syzkaller-00034-g25fae0b93d1d #0 PREEMPT(full) [ 259.780836][ T8710] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 259.780851][ T8710] Call Trace: [ 259.780858][ T8710] [ 259.780867][ T8710] dump_stack_lvl+0x16c/0x1f0 [ 259.780900][ T8710] should_fail_ex+0x512/0x640 [ 259.780931][ T8710] _copy_from_user+0x2e/0xd0 [ 259.780958][ T8710] snd_seq_oss_write+0x397/0x7d0 [ 259.781002][ T8710] ? __pfx_snd_seq_oss_write+0x10/0x10 [ 259.781043][ T8710] ? apparmor_file_permission+0x251/0x400 [ 259.781077][ T8710] ? bpf_lsm_file_permission+0x9/0x10 [ 259.781111][ T8710] ? __pfx_odev_write+0x10/0x10 [ 259.781137][ T8710] odev_write+0x51/0xa0 [ 259.781164][ T8710] vfs_write+0x29d/0x1150 [ 259.781195][ T8710] ? __pfx_vfs_write+0x10/0x10 [ 259.781214][ T8710] ? find_held_lock+0x2b/0x80 [ 259.781242][ T8710] ? __fget_files+0x204/0x3c0 [ 259.781283][ T8710] ? __fget_files+0x20e/0x3c0 [ 259.781329][ T8710] ksys_write+0x12a/0x250 [ 259.781354][ T8710] ? __pfx_ksys_write+0x10/0x10 [ 259.781399][ T8710] do_syscall_64+0xcd/0x490 [ 259.781429][ T8710] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 259.781455][ T8710] RIP: 0033:0x7f590df8e9a9 [ 259.781476][ T8710] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 259.781501][ T8710] RSP: 002b:00007f590ee6a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 259.781524][ T8710] RAX: ffffffffffffffda RBX: 00007f590e1b5fa0 RCX: 00007f590df8e9a9 [ 259.781540][ T8710] RDX: 000000000000a3d9 RSI: 0000200000000200 RDI: 0000000000000006 [ 259.781554][ T8710] RBP: 00007f590ee6a090 R08: 0000000000000000 R09: 0000000000000000 [ 259.781569][ T8710] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 259.781581][ T8710] R13: 0000000000000000 R14: 00007f590e1b5fa0 R15: 00007ffc92df3968 [ 259.781609][ T8710] [ 261.646583][ T8746] ptrace attach of "./syz-executor exec"[5841] was attempted by ""[8746] [ 261.674593][ T8746] FAULT_INJECTION: forcing a failure. [ 261.674593][ T8746] name failslab, interval 1, probability 0, space 0, times 0 [ 261.687673][ T8746] CPU: 0 UID: 0 PID: 8746 Comm: syz.3.540 Not tainted 6.16.0-rc7-syzkaller-00034-g25fae0b93d1d #0 PREEMPT(full) [ 261.687718][ T8746] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 261.687736][ T8746] Call Trace: [ 261.687744][ T8746] [ 261.687756][ T8746] dump_stack_lvl+0x16c/0x1f0 [ 261.687796][ T8746] should_fail_ex+0x512/0x640 [ 261.687828][ T8746] ? __kmalloc_noprof+0xbf/0x510 [ 261.687861][ T8746] ? alloc_pipe_info+0x1ec/0x590 [ 261.687890][ T8746] should_failslab+0xc2/0x120 [ 261.687923][ T8746] __kmalloc_noprof+0xd2/0x510 [ 261.687959][ T8746] alloc_pipe_info+0x1ec/0x590 [ 261.687993][ T8746] splice_direct_to_actor+0x77d/0xa30 [ 261.688036][ T8746] ? __pfx_direct_splice_actor+0x10/0x10 [ 261.688078][ T8746] ? __pfx_aa_file_perm+0x10/0x10 [ 261.688106][ T8746] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 261.688154][ T8746] do_splice_direct+0x174/0x240 [ 261.688193][ T8746] ? __pfx_do_splice_direct+0x10/0x10 [ 261.688232][ T8746] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 261.688277][ T8746] ? rw_verify_area+0xcf/0x680 [ 261.688319][ T8746] do_sendfile+0xb06/0xe50 [ 261.688366][ T8746] ? __pfx_do_sendfile+0x10/0x10 [ 261.688427][ T8746] ? __x64_sys_futex+0x1e0/0x4c0 [ 261.688464][ T8746] ? __x64_sys_futex+0x1e9/0x4c0 [ 261.688504][ T8746] __x64_sys_sendfile64+0x1d8/0x220 [ 261.688537][ T8746] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 261.688581][ T8746] do_syscall_64+0xcd/0x490 [ 261.688614][ T8746] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 261.688643][ T8746] RIP: 0033:0x7f9e4338e9a9 [ 261.688666][ T8746] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 261.688696][ T8746] RSP: 002b:00007f9e442d9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 261.688725][ T8746] RAX: ffffffffffffffda RBX: 00007f9e435b5fa0 RCX: 00007f9e4338e9a9 [ 261.688745][ T8746] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000008 [ 261.688760][ T8746] RBP: 00007f9e43410d69 R08: 0000000000000000 R09: 0000000000000000 [ 261.688775][ T8746] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 261.688791][ T8746] R13: 0000000000000000 R14: 00007f9e435b5fa0 R15: 00007fffce89e718 [ 261.688825][ T8746] [ 263.497013][ T8758] random: crng reseeded on system resumption [ 263.573650][ T8759] pty pty90: ldisc open failed (-12), clearing slot 90 [ 263.691098][ T8766] ptrace attach of "./syz-executor exec"[5841] was attempted by ""[8766] [ 263.822269][ T8766] FAULT_INJECTION: forcing a failure. [ 263.822269][ T8766] name fail_futex, interval 1, probability 0, space 0, times 0 [ 263.977988][ T8766] CPU: 1 UID: 0 PID: 8766 Comm: syz.3.543 Not tainted 6.16.0-rc7-syzkaller-00034-g25fae0b93d1d #0 PREEMPT(full) [ 263.978015][ T8766] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 263.978026][ T8766] Call Trace: [ 263.978031][ T8766] [ 263.978039][ T8766] dump_stack_lvl+0x16c/0x1f0 [ 263.978063][ T8766] should_fail_ex+0x512/0x640 [ 263.978084][ T8766] get_futex_key+0x1d0/0x1540 [ 263.978107][ T8766] ? __pfx_get_futex_key+0x10/0x10 [ 263.978122][ T8766] ? trace_pid_list_is_set+0xfb/0x150 [ 263.978149][ T8766] ? do_raw_spin_unlock+0x172/0x230 [ 263.978179][ T8766] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 263.978208][ T8766] futex_wait_setup+0x84/0x510 [ 263.978239][ T8766] __futex_wait+0x194/0x2f0 [ 263.978262][ T8766] ? __pfx___futex_wait+0x10/0x10 [ 263.978283][ T8766] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 263.978309][ T8766] ? __pfx_futex_wake_mark+0x10/0x10 [ 263.978334][ T8766] ? plist_check_head+0xa3/0x150 [ 263.978352][ T8766] ? find_held_lock+0x2b/0x80 [ 263.978372][ T8766] futex_wait+0xe8/0x380 [ 263.978390][ T8766] ? __pfx_futex_wait+0x10/0x10 [ 263.978413][ T8766] ? kmem_cache_free+0x2d1/0x4d0 [ 263.978426][ T8766] ? fd_install+0x225/0x750 [ 263.978446][ T8766] ? putname+0x154/0x1a0 [ 263.978465][ T8766] do_futex+0x229/0x350 [ 263.978481][ T8766] ? __pfx_do_futex+0x10/0x10 [ 263.978503][ T8766] __x64_sys_futex+0x1e0/0x4c0 [ 263.978521][ T8766] ? __x64_sys_openat+0x174/0x210 [ 263.978539][ T8766] ? __pfx___x64_sys_futex+0x10/0x10 [ 263.978563][ T8766] do_syscall_64+0xcd/0x490 [ 263.978579][ T8766] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 263.978594][ T8766] RIP: 0033:0x7f9e4338e9a9 [ 263.978607][ T8766] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 263.978621][ T8766] RSP: 002b:00007f9e442d90e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 263.978635][ T8766] RAX: ffffffffffffffda RBX: 00007f9e435b5fa8 RCX: 00007f9e4338e9a9 [ 263.978646][ T8766] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f9e435b5fa8 [ 263.978655][ T8766] RBP: 00007f9e435b5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 263.978664][ T8766] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f9e435b5fac [ 263.978673][ T8766] R13: 0000000000000000 R14: 00007fffce89e630 R15: 00007fffce89e718 [ 263.978693][ T8766] [ 265.843343][ T8814] ptrace attach of "./syz-executor exec"[5841] was attempted by ""[8814] [ 265.875655][ T8814] FAULT_INJECTION: forcing a failure. [ 265.875655][ T8814] name failslab, interval 1, probability 0, space 0, times 0 [ 265.896900][ T8814] CPU: 0 UID: 0 PID: 8814 Comm: syz.3.552 Not tainted 6.16.0-rc7-syzkaller-00034-g25fae0b93d1d #0 PREEMPT(full) [ 265.896925][ T8814] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 265.896935][ T8814] Call Trace: [ 265.896941][ T8814] [ 265.896947][ T8814] dump_stack_lvl+0x16c/0x1f0 [ 265.896972][ T8814] should_fail_ex+0x512/0x640 [ 265.896991][ T8814] ? __kmalloc_noprof+0xbf/0x510 [ 265.897009][ T8814] ? alloc_pipe_info+0x1ec/0x590 [ 265.897025][ T8814] should_failslab+0xc2/0x120 [ 265.897043][ T8814] __kmalloc_noprof+0xd2/0x510 [ 265.897061][ T8814] alloc_pipe_info+0x1ec/0x590 [ 265.897077][ T8814] splice_direct_to_actor+0x77d/0xa30 [ 265.897100][ T8814] ? __pfx_direct_splice_actor+0x10/0x10 [ 265.897121][ T8814] ? __pfx_aa_file_perm+0x10/0x10 [ 265.897136][ T8814] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 265.897161][ T8814] do_splice_direct+0x174/0x240 [ 265.897181][ T8814] ? __pfx_do_splice_direct+0x10/0x10 [ 265.897201][ T8814] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 265.897224][ T8814] ? rw_verify_area+0xcf/0x680 [ 265.897246][ T8814] do_sendfile+0xb06/0xe50 [ 265.897270][ T8814] ? __pfx_do_sendfile+0x10/0x10 [ 265.897293][ T8814] ? __x64_sys_futex+0x1e0/0x4c0 [ 265.897311][ T8814] ? __x64_sys_futex+0x1e9/0x4c0 [ 265.897329][ T8814] __x64_sys_sendfile64+0x1d8/0x220 [ 265.897345][ T8814] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 265.897367][ T8814] do_syscall_64+0xcd/0x490 [ 265.897383][ T8814] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 265.897398][ T8814] RIP: 0033:0x7f9e4338e9a9 [ 265.897411][ T8814] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 265.897425][ T8814] RSP: 002b:00007f9e442d9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 265.897439][ T8814] RAX: ffffffffffffffda RBX: 00007f9e435b5fa0 RCX: 00007f9e4338e9a9 [ 265.897449][ T8814] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000008 [ 265.897457][ T8814] RBP: 00007f9e43410d69 R08: 0000000000000000 R09: 0000000000000000 [ 265.897465][ T8814] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 265.897473][ T8814] R13: 0000000000000000 R14: 00007f9e435b5fa0 R15: 00007fffce89e718 [ 265.897491][ T8814] [ 266.398012][ T8817] netlink: 4 bytes leftover after parsing attributes in process `syz.0.551'. [ 266.826165][ T8832] ptrace attach of "./syz-executor exec"[5841] was attempted by ""[8832] [ 266.931084][ T8832] FAULT_INJECTION: forcing a failure. [ 266.931084][ T8832] name failslab, interval 1, probability 0, space 0, times 0 [ 266.946148][ T8832] CPU: 1 UID: 0 PID: 8832 Comm: syz.3.557 Not tainted 6.16.0-rc7-syzkaller-00034-g25fae0b93d1d #0 PREEMPT(full) [ 266.946191][ T8832] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 266.946208][ T8832] Call Trace: [ 266.946217][ T8832] [ 266.946228][ T8832] dump_stack_lvl+0x16c/0x1f0 [ 266.946263][ T8832] should_fail_ex+0x512/0x640 [ 266.946292][ T8832] ? __kmalloc_noprof+0xbf/0x510 [ 266.946324][ T8832] ? net_alloc_generic+0x1e/0x70 [ 266.946354][ T8832] should_failslab+0xc2/0x120 [ 266.946386][ T8832] __kmalloc_noprof+0xd2/0x510 [ 266.946413][ T8832] ? inc_ucount+0x240/0x2f0 [ 266.946452][ T8832] net_alloc_generic+0x1e/0x70 [ 266.946481][ T8832] copy_net_ns+0xc6/0x5f0 [ 266.946512][ T8832] ? copy_cgroup_ns+0x71/0x700 [ 266.946545][ T8832] create_new_namespaces+0x3ea/0xa90 [ 266.946584][ T8832] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 266.946618][ T8832] ksys_unshare+0x45b/0xa40 [ 266.946654][ T8832] ? __pfx_ksys_unshare+0x10/0x10 [ 266.946688][ T8832] ? xfd_validate_state+0x61/0x180 [ 266.946735][ T8832] __x64_sys_unshare+0x31/0x40 [ 266.946769][ T8832] do_syscall_64+0xcd/0x490 [ 266.946801][ T8832] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 266.946828][ T8832] RIP: 0033:0x7f9e4338e9a9 [ 266.946850][ T8832] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 266.946875][ T8832] RSP: 002b:00007f9e442d9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 266.946901][ T8832] RAX: ffffffffffffffda RBX: 00007f9e435b5fa0 RCX: 00007f9e4338e9a9 [ 266.946920][ T8832] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 266.946945][ T8832] RBP: 00007f9e43410d69 R08: 0000000000000000 R09: 0000000000000000 [ 266.946963][ T8832] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 266.946979][ T8832] R13: 0000000000000000 R14: 00007f9e435b5fa0 R15: 00007fffce89e718 [ 266.947016][ T8832] [ 267.687852][ T8845] IPVS: length: 256 != 24 [ 268.039853][ T8859] random: crng reseeded on system resumption [ 268.057118][ T8859] FAULT_INJECTION: forcing a failure. [ 268.057118][ T8859] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 268.131792][ T8859] CPU: 1 UID: 0 PID: 8859 Comm: syz.2.561 Not tainted 6.16.0-rc7-syzkaller-00034-g25fae0b93d1d #0 PREEMPT(full) [ 268.131838][ T8859] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 268.131856][ T8859] Call Trace: [ 268.131867][ T8859] [ 268.131886][ T8859] dump_stack_lvl+0x16c/0x1f0 [ 268.131926][ T8859] should_fail_ex+0x512/0x640 [ 268.131964][ T8859] should_fail_alloc_page+0xe7/0x130 [ 268.132003][ T8859] prepare_alloc_pages+0x3c2/0x610 [ 268.132044][ T8859] ? rcu_is_watching+0x12/0xc0 [ 268.132078][ T8859] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 268.132119][ T8859] ? stack_trace_save+0x8e/0xc0 [ 268.132150][ T8859] ? __pfx_stack_trace_save+0x10/0x10 [ 268.132180][ T8859] ? stack_depot_save_flags+0x28/0xa40 [ 268.132211][ T8859] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 268.132245][ T8859] ? kasan_save_stack+0x42/0x60 [ 268.132280][ T8859] ? kasan_save_stack+0x33/0x60 [ 268.132312][ T8859] ? do_dentry_open+0x744/0x1c10 [ 268.132335][ T8859] ? vfs_open+0x82/0x3f0 [ 268.132363][ T8859] ? path_openat+0x1de4/0x2cb0 [ 268.132386][ T8859] ? do_filp_open+0x20b/0x470 [ 268.132408][ T8859] ? do_sys_openat2+0x11b/0x1d0 [ 268.132436][ T8859] ? __x64_sys_openat+0x174/0x210 [ 268.132468][ T8859] ? do_syscall_64+0xcd/0x490 [ 268.132494][ T8859] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 268.132531][ T8859] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 268.132573][ T8859] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 268.132614][ T8859] ? policy_nodemask+0xea/0x4e0 [ 268.132648][ T8859] alloc_pages_mpol+0x1fb/0x550 [ 268.132791][ T8859] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 268.132843][ T8859] alloc_pages_noprof+0x131/0x390 [ 268.132877][ T8859] get_zeroed_page_noprof+0x18/0xb0 [ 268.132989][ T8859] get_image_page+0x18/0x190 [ 268.133036][ T8859] alloc_rtree_node+0x3c/0xb0 [ 268.133068][ T8859] memory_bm_create+0x419/0x810 [ 268.133113][ T8859] create_basic_memory_bitmaps+0xbd/0x320 [ 268.133149][ T8859] snapshot_open+0x235/0x2b0 [ 268.133181][ T8859] ? __pfx_snapshot_open+0x10/0x10 [ 268.133215][ T8859] misc_open+0x35a/0x420 [ 268.133256][ T8859] ? __pfx_misc_open+0x10/0x10 [ 268.133293][ T8859] chrdev_open+0x231/0x6a0 [ 268.133322][ T8859] ? __pfx_apparmor_file_open+0x10/0x10 [ 268.133360][ T8859] ? __pfx_chrdev_open+0x10/0x10 [ 268.133395][ T8859] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 268.133439][ T8859] do_dentry_open+0x744/0x1c10 [ 268.133465][ T8859] ? __pfx_chrdev_open+0x10/0x10 [ 268.133497][ T8859] vfs_open+0x82/0x3f0 [ 268.133532][ T8859] path_openat+0x1de4/0x2cb0 [ 268.133570][ T8859] ? __pfx_path_openat+0x10/0x10 [ 268.133601][ T8859] ? __lock_acquire+0xb8a/0x1c90 [ 268.133640][ T8859] do_filp_open+0x20b/0x470 [ 268.133665][ T8859] ? __pfx_do_filp_open+0x10/0x10 [ 268.133718][ T8859] ? alloc_fd+0x471/0x7d0 [ 268.133792][ T8859] do_sys_openat2+0x11b/0x1d0 [ 268.133831][ T8859] ? __pfx_do_sys_openat2+0x10/0x10 [ 268.133883][ T8859] __x64_sys_openat+0x174/0x210 [ 268.133920][ T8859] ? __pfx___x64_sys_openat+0x10/0x10 [ 268.133969][ T8859] do_syscall_64+0xcd/0x490 [ 268.134003][ T8859] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 268.134041][ T8859] RIP: 0033:0x7f590df8e9a9 [ 268.134068][ T8859] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 268.134097][ T8859] RSP: 002b:00007f590ee49038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 268.134126][ T8859] RAX: ffffffffffffffda RBX: 00007f590e1b6080 RCX: 00007f590df8e9a9 [ 268.134147][ T8859] RDX: 0000000000180b01 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 268.134164][ T8859] RBP: 00007f590e010d69 R08: 0000000000000000 R09: 0000000000000000 [ 268.134180][ T8859] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 268.134193][ T8859] R13: 0000000000000000 R14: 00007f590e1b6080 R15: 00007ffc92df3968 [ 268.134227][ T8859] [ 268.661800][ T8868] ptrace attach of "./syz-executor exec"[5841] was attempted by ""[8868] [ 268.674195][ T8868] FAULT_INJECTION: forcing a failure. [ 268.674195][ T8868] name fail_futex, interval 1, probability 0, space 0, times 0 [ 268.687876][ T8868] CPU: 1 UID: 0 PID: 8868 Comm: syz.3.563 Not tainted 6.16.0-rc7-syzkaller-00034-g25fae0b93d1d #0 PREEMPT(full) [ 268.687916][ T8868] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 268.687930][ T8868] Call Trace: [ 268.687936][ T8868] [ 268.687942][ T8868] dump_stack_lvl+0x16c/0x1f0 [ 268.687966][ T8868] should_fail_ex+0x512/0x640 [ 268.687986][ T8868] get_futex_key+0x1d0/0x1540 [ 268.688009][ T8868] ? __pfx_get_futex_key+0x10/0x10 [ 268.688024][ T8868] ? trace_pid_list_is_set+0xfb/0x150 [ 268.688047][ T8868] ? do_raw_spin_unlock+0x172/0x230 [ 268.688073][ T8868] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 268.688098][ T8868] futex_wait_setup+0x84/0x510 [ 268.688121][ T8868] __futex_wait+0x194/0x2f0 [ 268.688140][ T8868] ? __pfx___futex_wait+0x10/0x10 [ 268.688158][ T8868] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 268.688182][ T8868] ? __pfx_futex_wake_mark+0x10/0x10 [ 268.688203][ T8868] ? plist_check_head+0xa3/0x150 [ 268.688221][ T8868] ? find_held_lock+0x2b/0x80 [ 268.688240][ T8868] futex_wait+0xe8/0x380 [ 268.688258][ T8868] ? __pfx_futex_wait+0x10/0x10 [ 268.688281][ T8868] ? kmem_cache_free+0x2d1/0x4d0 [ 268.688294][ T8868] ? fd_install+0x225/0x750 [ 268.688314][ T8868] ? putname+0x154/0x1a0 [ 268.688333][ T8868] do_futex+0x229/0x350 [ 268.688349][ T8868] ? __pfx_do_futex+0x10/0x10 [ 268.688370][ T8868] __x64_sys_futex+0x1e0/0x4c0 [ 268.688388][ T8868] ? __x64_sys_openat+0x174/0x210 [ 268.688406][ T8868] ? __pfx___x64_sys_futex+0x10/0x10 [ 268.688430][ T8868] do_syscall_64+0xcd/0x490 [ 268.688446][ T8868] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 268.688460][ T8868] RIP: 0033:0x7f9e4338e9a9 [ 268.688474][ T8868] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 268.688488][ T8868] RSP: 002b:00007f9e442d90e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 268.688502][ T8868] RAX: ffffffffffffffda RBX: 00007f9e435b5fa8 RCX: 00007f9e4338e9a9 [ 268.688511][ T8868] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f9e435b5fa8 [ 268.688519][ T8868] RBP: 00007f9e435b5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 268.688529][ T8868] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f9e435b5fac [ 268.688539][ T8868] R13: 0000000000000000 R14: 00007fffce89e630 R15: 00007fffce89e718 [ 268.688558][ T8868] [ 269.559596][ T8882] ptrace attach of "./syz-executor exec"[5841] was attempted by ""[8882] [ 269.669775][ T8882] FAULT_INJECTION: forcing a failure. [ 269.669775][ T8882] name fail_futex, interval 1, probability 0, space 0, times 0 [ 269.759463][ T8882] CPU: 1 UID: 0 PID: 8882 Comm: syz.3.566 Not tainted 6.16.0-rc7-syzkaller-00034-g25fae0b93d1d #0 PREEMPT(full) [ 269.759511][ T8882] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 269.759530][ T8882] Call Trace: [ 269.759541][ T8882] [ 269.759552][ T8882] dump_stack_lvl+0x16c/0x1f0 [ 269.759599][ T8882] should_fail_ex+0x512/0x640 [ 269.759636][ T8882] get_futex_key+0x1d0/0x1540 [ 269.759675][ T8882] ? __pfx_get_futex_key+0x10/0x10 [ 269.759703][ T8882] ? trace_pid_list_is_set+0xfb/0x150 [ 269.759743][ T8882] ? do_raw_spin_unlock+0x172/0x230 [ 269.759790][ T8882] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 269.759835][ T8882] futex_wait_setup+0x84/0x510 [ 269.759881][ T8882] __futex_wait+0x194/0x2f0 [ 269.759920][ T8882] ? __pfx___futex_wait+0x10/0x10 [ 269.759955][ T8882] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 269.760001][ T8882] ? __pfx_futex_wake_mark+0x10/0x10 [ 269.760043][ T8882] ? plist_check_head+0xa3/0x150 [ 269.760078][ T8882] ? find_held_lock+0x2b/0x80 [ 269.760117][ T8882] futex_wait+0xe8/0x380 [ 269.760153][ T8882] ? __pfx_futex_wait+0x10/0x10 [ 269.760198][ T8882] ? kmem_cache_free+0x2d1/0x4d0 [ 269.760224][ T8882] ? fd_install+0x225/0x750 [ 269.760261][ T8882] ? putname+0x154/0x1a0 [ 269.760295][ T8882] do_futex+0x229/0x350 [ 269.760326][ T8882] ? __pfx_do_futex+0x10/0x10 [ 269.760363][ T8882] __x64_sys_futex+0x1e0/0x4c0 [ 269.760392][ T8882] ? __x64_sys_openat+0x174/0x210 [ 269.760423][ T8882] ? __pfx___x64_sys_futex+0x10/0x10 [ 269.760452][ T8882] ? xfd_validate_state+0x61/0x180 [ 269.760500][ T8882] do_syscall_64+0xcd/0x490 [ 269.760531][ T8882] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 269.760559][ T8882] RIP: 0033:0x7f9e4338e9a9 [ 269.760589][ T8882] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 269.760619][ T8882] RSP: 002b:00007f9e442d90e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 269.760648][ T8882] RAX: ffffffffffffffda RBX: 00007f9e435b5fa8 RCX: 00007f9e4338e9a9 [ 269.760668][ T8882] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f9e435b5fa8 [ 269.760686][ T8882] RBP: 00007f9e435b5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 269.760704][ T8882] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f9e435b5fac [ 269.760723][ T8882] R13: 0000000000000000 R14: 00007fffce89e630 R15: 00007fffce89e718 [ 269.760761][ T8882] [ 270.692956][ T8906] ptrace attach of "./syz-executor exec"[5843] was attempted by ""[8906] [ 270.978065][ T8912] kAFS: No cell specified [ 272.013805][ T8932] FAULT_INJECTION: forcing a failure. [ 272.013805][ T8932] name failslab, interval 1, probability 0, space 0, times 0 [ 272.143706][ T8932] CPU: 1 UID: 0 PID: 8932 Comm: syz.1.574 Not tainted 6.16.0-rc7-syzkaller-00034-g25fae0b93d1d #0 PREEMPT(full) [ 272.143756][ T8932] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 272.143773][ T8932] Call Trace: [ 272.143782][ T8932] [ 272.143793][ T8932] dump_stack_lvl+0x16c/0x1f0 [ 272.143828][ T8932] should_fail_ex+0x512/0x640 [ 272.143859][ T8932] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 272.143904][ T8932] should_failslab+0xc2/0x120 [ 272.143937][ T8932] __kmalloc_cache_noprof+0x6a/0x3e0 [ 272.143978][ T8932] ? alloc_pipe_info+0x10e/0x590 [ 272.144011][ T8932] alloc_pipe_info+0x10e/0x590 [ 272.144044][ T8932] splice_direct_to_actor+0x77d/0xa30 [ 272.144086][ T8932] ? __pfx_direct_splice_actor+0x10/0x10 [ 272.144134][ T8932] ? __pfx_aa_file_perm+0x10/0x10 [ 272.144163][ T8932] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 272.144206][ T8932] do_splice_direct+0x174/0x240 [ 272.144254][ T8932] ? __pfx_do_splice_direct+0x10/0x10 [ 272.144294][ T8932] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 272.144340][ T8932] ? rw_verify_area+0xcf/0x680 [ 272.144383][ T8932] do_sendfile+0xb06/0xe50 [ 272.144428][ T8932] ? __pfx_do_sendfile+0x10/0x10 [ 272.144474][ T8932] ? __x64_sys_futex+0x1e0/0x4c0 [ 272.144504][ T8932] ? __x64_sys_futex+0x1e9/0x4c0 [ 272.144540][ T8932] __x64_sys_sendfile64+0x1d8/0x220 [ 272.144573][ T8932] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 272.144614][ T8932] do_syscall_64+0xcd/0x490 [ 272.144646][ T8932] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 272.144674][ T8932] RIP: 0033:0x7f3eea78e9a9 [ 272.144696][ T8932] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 272.144721][ T8932] RSP: 002b:00007f3eeb5c8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 272.144747][ T8932] RAX: ffffffffffffffda RBX: 00007f3eea9b6080 RCX: 00007f3eea78e9a9 [ 272.144765][ T8932] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000008 [ 272.144780][ T8932] RBP: 00007f3eea810d69 R08: 0000000000000000 R09: 0000000000000000 [ 272.144797][ T8932] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 272.144812][ T8932] R13: 0000000000000000 R14: 00007f3eea9b6080 R15: 00007ffccb2cc948 [ 272.144847][ T8932] [ 273.945324][ T8962] ptrace attach of "./syz-executor exec"[5843] was attempted by ""[8962] [ 273.955883][ T8962] FAULT_INJECTION: forcing a failure. [ 273.955883][ T8962] name failslab, interval 1, probability 0, space 0, times 0 [ 273.969560][ T8962] CPU: 1 UID: 0 PID: 8962 Comm: syz.1.582 Not tainted 6.16.0-rc7-syzkaller-00034-g25fae0b93d1d #0 PREEMPT(full) [ 273.969584][ T8962] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 273.969595][ T8962] Call Trace: [ 273.969600][ T8962] [ 273.969606][ T8962] dump_stack_lvl+0x16c/0x1f0 [ 273.969631][ T8962] should_fail_ex+0x512/0x640 [ 273.969648][ T8962] ? __kmalloc_noprof+0xbf/0x510 [ 273.969667][ T8962] ? net_alloc_generic+0x1e/0x70 [ 273.969683][ T8962] should_failslab+0xc2/0x120 [ 273.969755][ T8962] __kmalloc_noprof+0xd2/0x510 [ 273.969786][ T8962] ? inc_ucount+0x240/0x2f0 [ 273.969813][ T8962] net_alloc_generic+0x1e/0x70 [ 273.969833][ T8962] copy_net_ns+0xc6/0x5f0 [ 273.969850][ T8962] ? copy_cgroup_ns+0x71/0x700 [ 273.969868][ T8962] create_new_namespaces+0x3ea/0xa90 [ 273.969892][ T8962] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 273.969915][ T8962] ksys_unshare+0x45b/0xa40 [ 273.969939][ T8962] ? __pfx_ksys_unshare+0x10/0x10 [ 273.969959][ T8962] ? xfd_validate_state+0x61/0x180 [ 273.969985][ T8962] __x64_sys_unshare+0x31/0x40 [ 273.970004][ T8962] do_syscall_64+0xcd/0x490 [ 273.970023][ T8962] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 273.970037][ T8962] RIP: 0033:0x7f3eea78e9a9 [ 273.970053][ T8962] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 273.970068][ T8962] RSP: 002b:00007f3eeb5e9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 273.970085][ T8962] RAX: ffffffffffffffda RBX: 00007f3eea9b5fa0 RCX: 00007f3eea78e9a9 [ 273.970097][ T8962] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 273.970107][ T8962] RBP: 00007f3eea810d69 R08: 0000000000000000 R09: 0000000000000000 [ 273.970118][ T8962] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 273.970129][ T8962] R13: 0000000000000000 R14: 00007f3eea9b5fa0 R15: 00007ffccb2cc948 [ 273.970160][ T8962] [ 275.225754][ T8980] kAFS: No cell specified [ 277.344752][ T9027] FAULT_INJECTION: forcing a failure. [ 277.344752][ T9027] name fail_futex, interval 1, probability 0, space 0, times 0 [ 277.382890][ T9027] CPU: 0 UID: 0 PID: 9027 Comm: syz.2.592 Not tainted 6.16.0-rc7-syzkaller-00034-g25fae0b93d1d #0 PREEMPT(full) [ 277.382932][ T9027] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 277.382950][ T9027] Call Trace: [ 277.382959][ T9027] [ 277.382969][ T9027] dump_stack_lvl+0x16c/0x1f0 [ 277.383016][ T9027] should_fail_ex+0x512/0x640 [ 277.383051][ T9027] get_futex_key+0x1d0/0x1540 [ 277.383088][ T9027] ? __pfx_get_futex_key+0x10/0x10 [ 277.383122][ T9027] ? stack_trace_save+0x8e/0xc0 [ 277.383150][ T9027] ? __pfx_stack_trace_save+0x10/0x10 [ 277.383167][ T9027] ? stack_depot_save_flags+0x28/0xa40 [ 277.383186][ T9027] futex_wait_setup+0x84/0x510 [ 277.383211][ T9027] __futex_wait+0x194/0x2f0 [ 277.383231][ T9027] ? __pfx___futex_wait+0x10/0x10 [ 277.383253][ T9027] ? __pfx_futex_wake_mark+0x10/0x10 [ 277.383279][ T9027] ? __futex_hash.constprop.0+0x1e9/0x440 [ 277.383296][ T9027] futex_wait+0xe8/0x380 [ 277.383315][ T9027] ? __pfx_futex_wait+0x10/0x10 [ 277.383338][ T9027] ? kmem_cache_free+0x2d1/0x4d0 [ 277.383351][ T9027] ? fd_install+0x225/0x750 [ 277.383372][ T9027] ? putname+0x154/0x1a0 [ 277.383390][ T9027] do_futex+0x229/0x350 [ 277.383407][ T9027] ? __pfx_do_futex+0x10/0x10 [ 277.383428][ T9027] __x64_sys_futex+0x1e0/0x4c0 [ 277.383446][ T9027] ? __x64_sys_openat+0x174/0x210 [ 277.383464][ T9027] ? __pfx___x64_sys_futex+0x10/0x10 [ 277.383488][ T9027] do_syscall_64+0xcd/0x490 [ 277.383505][ T9027] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 277.383520][ T9027] RIP: 0033:0x7f590df8e9a9 [ 277.383533][ T9027] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 277.383547][ T9027] RSP: 002b:00007f590ee6a0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 277.383563][ T9027] RAX: ffffffffffffffda RBX: 00007f590e1b5fa8 RCX: 00007f590df8e9a9 [ 277.383572][ T9027] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f590e1b5fa8 [ 277.383580][ T9027] RBP: 00007f590e1b5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 277.383588][ T9027] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f590e1b5fac [ 277.383597][ T9027] R13: 0000000000000000 R14: 00007ffc92df3880 R15: 00007ffc92df3968 [ 277.383614][ T9027] [ 277.614861][ C0] vkms_vblank_simulate: vblank timer overrun [ 278.422298][ T9037] FAULT_INJECTION: forcing a failure. [ 278.422298][ T9037] name failslab, interval 1, probability 0, space 0, times 0 [ 278.440583][ T9037] CPU: 1 UID: 0 PID: 9037 Comm: syz.3.594 Not tainted 6.16.0-rc7-syzkaller-00034-g25fae0b93d1d #0 PREEMPT(full) [ 278.440628][ T9037] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 278.440644][ T9037] Call Trace: [ 278.440653][ T9037] [ 278.440664][ T9037] dump_stack_lvl+0x16c/0x1f0 [ 278.440702][ T9037] should_fail_ex+0x512/0x640 [ 278.440732][ T9037] ? __kmalloc_noprof+0xbf/0x510 [ 278.440763][ T9037] ? net_alloc_generic+0x1e/0x70 [ 278.440793][ T9037] should_failslab+0xc2/0x120 [ 278.440821][ T9037] __kmalloc_noprof+0xd2/0x510 [ 278.440842][ T9037] ? inc_ucount+0x240/0x2f0 [ 278.440874][ T9037] net_alloc_generic+0x1e/0x70 [ 278.440902][ T9037] copy_net_ns+0xc6/0x5f0 [ 278.440932][ T9037] ? copy_cgroup_ns+0x71/0x700 [ 278.440965][ T9037] create_new_namespaces+0x3ea/0xa90 [ 278.441004][ T9037] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 278.441032][ T9037] ksys_unshare+0x45b/0xa40 [ 278.441066][ T9037] ? __pfx_ksys_unshare+0x10/0x10 [ 278.441094][ T9037] ? xfd_validate_state+0x61/0x180 [ 278.441136][ T9037] __x64_sys_unshare+0x31/0x40 [ 278.441182][ T9037] do_syscall_64+0xcd/0x490 [ 278.441225][ T9037] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 278.441256][ T9037] RIP: 0033:0x7f9e4338e9a9 [ 278.441281][ T9037] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 278.441308][ T9037] RSP: 002b:00007f9e442d9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 278.441341][ T9037] RAX: ffffffffffffffda RBX: 00007f9e435b5fa0 RCX: 00007f9e4338e9a9 [ 278.441361][ T9037] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 278.441380][ T9037] RBP: 00007f9e43410d69 R08: 0000000000000000 R09: 0000000000000000 [ 278.441397][ T9037] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 278.441414][ T9037] R13: 0000000000000000 R14: 00007f9e435b5fa0 R15: 00007fffce89e718 [ 278.441453][ T9037] [ 278.986990][ T9042] ima: policy update failed [ 278.995938][ T30] audit: type=1802 audit(1753391368.760:3): pid=9042 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.596" res=0 errno=0 [ 279.752410][ T9068] netlink: 330 bytes leftover after parsing attributes in process `syz.2.602'. [ 279.773288][ T9068] mac80211_hwsim hwsim7 ›: renamed from wlan0 (while UP) [ 280.800251][ T9077] FAULT_INJECTION: forcing a failure. [ 280.800251][ T9077] name fail_futex, interval 1, probability 0, space 0, times 0 [ 280.821155][ T9077] CPU: 1 UID: 0 PID: 9077 Comm: syz.2.604 Not tainted 6.16.0-rc7-syzkaller-00034-g25fae0b93d1d #0 PREEMPT(full) [ 280.821195][ T9077] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 280.821211][ T9077] Call Trace: [ 280.821220][ T9077] [ 280.821230][ T9077] dump_stack_lvl+0x16c/0x1f0 [ 280.821266][ T9077] should_fail_ex+0x512/0x640 [ 280.821300][ T9077] get_futex_key+0x1d0/0x1540 [ 280.821339][ T9077] ? __pfx_get_futex_key+0x10/0x10 [ 280.821371][ T9077] ? stack_trace_save+0x8e/0xc0 [ 280.821401][ T9077] ? __pfx_stack_trace_save+0x10/0x10 [ 280.821431][ T9077] ? stack_depot_save_flags+0x28/0xa40 [ 280.821466][ T9077] futex_wait_setup+0x84/0x510 [ 280.821510][ T9077] __futex_wait+0x194/0x2f0 [ 280.821550][ T9077] ? __pfx___futex_wait+0x10/0x10 [ 280.821590][ T9077] ? __pfx_futex_wake_mark+0x10/0x10 [ 280.821637][ T9077] ? __futex_hash.constprop.0+0x1e9/0x440 [ 280.821667][ T9077] futex_wait+0xe8/0x380 [ 280.821700][ T9077] ? __pfx_futex_wait+0x10/0x10 [ 280.821740][ T9077] ? kmem_cache_free+0x2d1/0x4d0 [ 280.821764][ T9077] ? fd_install+0x225/0x750 [ 280.821799][ T9077] ? putname+0x154/0x1a0 [ 280.821832][ T9077] do_futex+0x229/0x350 [ 280.821862][ T9077] ? __pfx_do_futex+0x10/0x10 [ 280.821906][ T9077] __x64_sys_futex+0x1e0/0x4c0 [ 280.821939][ T9077] ? __x64_sys_openat+0x174/0x210 [ 280.821974][ T9077] ? __pfx___x64_sys_futex+0x10/0x10 [ 280.822018][ T9077] do_syscall_64+0xcd/0x490 [ 280.822048][ T9077] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 280.822074][ T9077] RIP: 0033:0x7f590df8e9a9 [ 280.822094][ T9077] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 280.822119][ T9077] RSP: 002b:00007f590ee6a0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 280.822143][ T9077] RAX: ffffffffffffffda RBX: 00007f590e1b5fa8 RCX: 00007f590df8e9a9 [ 280.822160][ T9077] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f590e1b5fa8 [ 280.822175][ T9077] RBP: 00007f590e1b5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 280.822189][ T9077] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f590e1b5fac [ 280.822205][ T9077] R13: 0000000000000000 R14: 00007ffc92df3880 R15: 00007ffc92df3968 [ 280.822237][ T9077] [ 281.436279][ T9088] FAULT_INJECTION: forcing a failure. [ 281.436279][ T9088] name failslab, interval 1, probability 0, space 0, times 0 [ 281.458597][ T9088] CPU: 1 UID: 0 PID: 9088 Comm: syz.2.608 Not tainted 6.16.0-rc7-syzkaller-00034-g25fae0b93d1d #0 PREEMPT(full) [ 281.458636][ T9088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 281.458652][ T9088] Call Trace: [ 281.458661][ T9088] [ 281.458671][ T9088] dump_stack_lvl+0x16c/0x1f0 [ 281.458701][ T9088] should_fail_ex+0x512/0x640 [ 281.458728][ T9088] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 281.458756][ T9088] should_failslab+0xc2/0x120 [ 281.458787][ T9088] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 281.458812][ T9088] ? trace_cap_capable+0x18d/0x200 [ 281.458841][ T9088] ? create_new_namespaces+0x30/0xa90 [ 281.458878][ T9088] create_new_namespaces+0x30/0xa90 [ 281.458909][ T9088] ? bpf_lsm_capable+0x9/0x10 [ 281.458944][ T9088] ? security_capable+0x7e/0x260 [ 281.458978][ T9088] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 281.459011][ T9088] ksys_unshare+0x45b/0xa40 [ 281.459044][ T9088] ? __pfx_ksys_unshare+0x10/0x10 [ 281.459076][ T9088] ? xfd_validate_state+0x61/0x180 [ 281.459118][ T9088] __x64_sys_unshare+0x31/0x40 [ 281.459148][ T9088] do_syscall_64+0xcd/0x490 [ 281.459176][ T9088] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 281.459201][ T9088] RIP: 0033:0x7f590df8e9a9 [ 281.459222][ T9088] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 281.459244][ T9088] RSP: 002b:00007f590ee6a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 281.459267][ T9088] RAX: ffffffffffffffda RBX: 00007f590e1b5fa0 RCX: 00007f590df8e9a9 [ 281.459282][ T9088] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 281.459296][ T9088] RBP: 00007f590e010d69 R08: 0000000000000000 R09: 0000000000000000 [ 281.459311][ T9088] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 281.459326][ T9088] R13: 0000000000000000 R14: 00007f590e1b5fa0 R15: 00007ffc92df3968 [ 281.459356][ T9088] [ 281.760841][ T9091] FAULT_INJECTION: forcing a failure. [ 281.760841][ T9091] name failslab, interval 1, probability 0, space 0, times 0 [ 281.774022][ T9091] CPU: 1 UID: 0 PID: 9091 Comm: syz.0.607 Not tainted 6.16.0-rc7-syzkaller-00034-g25fae0b93d1d #0 PREEMPT(full) [ 281.774052][ T9091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 281.774061][ T9091] Call Trace: [ 281.774066][ T9091] [ 281.774072][ T9091] dump_stack_lvl+0x16c/0x1f0 [ 281.774092][ T9091] should_fail_ex+0x512/0x640 [ 281.774107][ T9091] ? __kvmalloc_node_noprof+0x124/0x620 [ 281.774132][ T9091] should_failslab+0xc2/0x120 [ 281.774147][ T9091] __kvmalloc_node_noprof+0x137/0x620 [ 281.774170][ T9091] ? alloc_netdev_mqs+0xfbe/0x1570 [ 281.774191][ T9091] ? alloc_netdev_mqs+0xfbe/0x1570 [ 281.774204][ T9091] alloc_netdev_mqs+0xfbe/0x1570 [ 281.774223][ T9091] slip_open+0x35c/0x1150 [ 281.774245][ T9091] ? __pfx___might_resched+0x10/0x10 [ 281.774262][ T9091] ? __pfx_n_tty_close+0x10/0x10 [ 281.774280][ T9091] ? find_held_lock+0x2b/0x80 [ 281.774296][ T9091] ? __pfx_slip_open+0x10/0x10 [ 281.774315][ T9091] ? down_write+0x14d/0x200 [ 281.774333][ T9091] ? __pfx_slip_open+0x10/0x10 [ 281.774352][ T9091] tty_ldisc_open+0x9c/0x120 [ 281.774366][ T9091] tty_set_ldisc+0x32b/0x780 [ 281.774382][ T9091] tty_ioctl+0xc2e/0x1640 [ 281.774398][ T9091] ? __pfx_tty_ioctl+0x10/0x10 [ 281.774424][ T9091] ? find_held_lock+0x2b/0x80 [ 281.774437][ T9091] ? hook_file_ioctl_common+0x145/0x410 [ 281.774461][ T9091] ? __fget_files+0x20e/0x3c0 [ 281.774485][ T9091] ? __pfx_tty_ioctl+0x10/0x10 [ 281.774500][ T9091] __x64_sys_ioctl+0x18e/0x210 [ 281.774522][ T9091] do_syscall_64+0xcd/0x490 [ 281.774538][ T9091] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 281.774552][ T9091] RIP: 0033:0x7f6acd38e9a9 [ 281.774565][ T9091] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 281.774579][ T9091] RSP: 002b:00007f6ace13d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 281.774592][ T9091] RAX: ffffffffffffffda RBX: 00007f6acd5b5fa0 RCX: 00007f6acd38e9a9 [ 281.774601][ T9091] RDX: 0000000000000000 RSI: 0000000000005423 RDI: 0000000000000007 [ 281.774610][ T9091] RBP: 00007f6ace13d090 R08: 0000000000000000 R09: 0000000000000000 [ 281.774625][ T9091] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 281.774665][ T9091] R13: 0000000000000000 R14: 00007f6acd5b5fa0 R15: 00007ffe6bf9d208 [ 281.774684][ T9091] [ 282.461372][ T9098] FAULT_INJECTION: forcing a failure. [ 282.461372][ T9098] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 282.474753][ T9098] CPU: 1 UID: 0 PID: 9098 Comm: syz.0.609 Not tainted 6.16.0-rc7-syzkaller-00034-g25fae0b93d1d #0 PREEMPT(full) [ 282.474788][ T9098] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 282.474803][ T9098] Call Trace: [ 282.474823][ T9098] [ 282.474833][ T9098] dump_stack_lvl+0x16c/0x1f0 [ 282.474866][ T9098] should_fail_ex+0x512/0x640 [ 282.474897][ T9098] _copy_from_user+0x2e/0xd0 [ 282.474926][ T9098] copy_msghdr_from_user+0x98/0x160 [ 282.474955][ T9098] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 282.474987][ T9098] ? kfree+0x24f/0x4d0 [ 282.475021][ T9098] ? __lock_acquire+0x622/0x1c90 [ 282.475061][ T9098] ___sys_recvmsg+0xdb/0x1a0 [ 282.475089][ T9098] ? __pfx____sys_recvmsg+0x10/0x10 [ 282.475135][ T9098] ? __pfx___might_resched+0x10/0x10 [ 282.475172][ T9098] do_recvmmsg+0x2fe/0x750 [ 282.475202][ T9098] ? __pfx_do_recvmmsg+0x10/0x10 [ 282.475237][ T9098] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 282.475276][ T9098] ? __fget_files+0x20e/0x3c0 [ 282.475321][ T9098] __x64_sys_recvmmsg+0x22a/0x280 [ 282.475352][ T9098] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 282.475392][ T9098] do_syscall_64+0xcd/0x490 [ 282.475422][ T9098] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 282.475448][ T9098] RIP: 0033:0x7f6acd38e9a9 [ 282.475470][ T9098] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 282.475493][ T9098] RSP: 002b:00007f6ace13d038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 282.475517][ T9098] RAX: ffffffffffffffda RBX: 00007f6acd5b5fa0 RCX: 00007f6acd38e9a9 [ 282.475535][ T9098] RDX: 000000000000fffd RSI: 0000000000000000 RDI: 0000000000000003 [ 282.475549][ T9098] RBP: 00007f6ace13d090 R08: 0000000000000000 R09: 0000000000000000 [ 282.475564][ T9098] R10: 0000000000008000 R11: 0000000000000246 R12: 0000000000000002 [ 282.475578][ T9098] R13: 0000000000000000 R14: 00007f6acd5b5fa0 R15: 00007ffe6bf9d208 [ 282.475612][ T9098] [ 282.799607][ T30] audit: type=1804 audit(1753391372.530:4): pid=9104 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.610" name="/newroot/159/file0" dev="tmpfs" ino=832 res=1 errno=0 [ 282.883624][ T9110] FAULT_INJECTION: forcing a failure. [ 282.883624][ T9110] name failslab, interval 1, probability 0, space 0, times 0 [ 282.914784][ T9110] CPU: 1 UID: 0 PID: 9110 Comm: syz.2.619 Not tainted 6.16.0-rc7-syzkaller-00034-g25fae0b93d1d #0 PREEMPT(full) [ 282.914825][ T9110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 282.914841][ T9110] Call Trace: [ 282.914850][ T9110] [ 282.914861][ T9110] dump_stack_lvl+0x16c/0x1f0 [ 282.914893][ T9110] should_fail_ex+0x512/0x640 [ 282.914920][ T9110] ? __kmalloc_noprof+0xbf/0x510 [ 282.914949][ T9110] ? net_alloc_generic+0x1e/0x70 [ 282.914978][ T9110] should_failslab+0xc2/0x120 [ 282.915009][ T9110] __kmalloc_noprof+0xd2/0x510 [ 282.915035][ T9110] ? inc_ucount+0x240/0x2f0 [ 282.915076][ T9110] net_alloc_generic+0x1e/0x70 [ 282.915105][ T9110] copy_net_ns+0xc6/0x5f0 [ 282.915135][ T9110] ? copy_cgroup_ns+0x71/0x700 [ 282.915165][ T9110] create_new_namespaces+0x3ea/0xa90 [ 282.915199][ T9110] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 282.915233][ T9110] ksys_unshare+0x45b/0xa40 [ 282.915268][ T9110] ? __pfx_ksys_unshare+0x10/0x10 [ 282.915304][ T9110] ? xfd_validate_state+0x61/0x180 [ 282.915348][ T9110] __x64_sys_unshare+0x31/0x40 [ 282.915382][ T9110] do_syscall_64+0xcd/0x490 [ 282.915413][ T9110] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 282.915441][ T9110] RIP: 0033:0x7f590df8e9a9 [ 282.915462][ T9110] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 282.915576][ T9110] RSP: 002b:00007f590ee6a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 282.915601][ T9110] RAX: ffffffffffffffda RBX: 00007f590e1b5fa0 RCX: 00007f590df8e9a9 [ 282.915619][ T9110] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 282.915634][ T9110] RBP: 00007f590e010d69 R08: 0000000000000000 R09: 0000000000000000 [ 282.915650][ T9110] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 282.915665][ T9110] R13: 0000000000000000 R14: 00007f590e1b5fa0 R15: 00007ffc92df3968 [ 282.915701][ T9110] [ 283.775012][ T9120] ptrace attach of "./syz-executor exec"[5841] was attempted by ""[9120] [ 283.836318][ T9120] FAULT_INJECTION: forcing a failure. [ 283.836318][ T9120] name failslab, interval 1, probability 0, space 0, times 0 [ 283.889153][ T9120] CPU: 1 UID: 0 PID: 9120 Comm: syz.3.613 Not tainted 6.16.0-rc7-syzkaller-00034-g25fae0b93d1d #0 PREEMPT(full) [ 283.889199][ T9120] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 283.889217][ T9120] Call Trace: [ 283.889226][ T9120] [ 283.889238][ T9120] dump_stack_lvl+0x16c/0x1f0 [ 283.889275][ T9120] should_fail_ex+0x512/0x640 [ 283.889306][ T9120] ? __kmalloc_noprof+0xbf/0x510 [ 283.889338][ T9120] ? net_alloc_generic+0x1e/0x70 [ 283.889365][ T9120] should_failslab+0xc2/0x120 [ 283.889404][ T9120] __kmalloc_noprof+0xd2/0x510 [ 283.889433][ T9120] ? inc_ucount+0x240/0x2f0 [ 283.889467][ T9120] net_alloc_generic+0x1e/0x70 [ 283.889496][ T9120] copy_net_ns+0xc6/0x5f0 [ 283.889526][ T9120] ? copy_cgroup_ns+0x71/0x700 [ 283.889557][ T9120] create_new_namespaces+0x3ea/0xa90 [ 283.889594][ T9120] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 283.889627][ T9120] ksys_unshare+0x45b/0xa40 [ 283.889662][ T9120] ? __pfx_ksys_unshare+0x10/0x10 [ 283.889700][ T9120] ? xfd_validate_state+0x61/0x180 [ 283.889740][ T9120] __x64_sys_unshare+0x31/0x40 [ 283.889772][ T9120] do_syscall_64+0xcd/0x490 [ 283.889800][ T9120] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 283.889831][ T9120] RIP: 0033:0x7f9e4338e9a9 [ 283.889866][ T9120] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 283.889895][ T9120] RSP: 002b:00007f9e442d9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 283.889922][ T9120] RAX: ffffffffffffffda RBX: 00007f9e435b5fa0 RCX: 00007f9e4338e9a9 [ 283.889943][ T9120] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 283.889956][ T9120] RBP: 00007f9e43410d69 R08: 0000000000000000 R09: 0000000000000000 [ 283.889970][ T9120] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 283.889985][ T9120] R13: 0000000000000000 R14: 00007f9e435b5fa0 R15: 00007fffce89e718 [ 283.890018][ T9120] [ 284.571932][ T9136] ptrace attach of "./syz-executor exec"[5843] was attempted by ""[9136] [ 284.657081][ T9136] FAULT_INJECTION: forcing a failure. [ 284.657081][ T9136] name failslab, interval 1, probability 0, space 0, times 0 [ 284.740708][ T9136] CPU: 0 UID: 0 PID: 9136 Comm: syz.1.616 Not tainted 6.16.0-rc7-syzkaller-00034-g25fae0b93d1d #0 PREEMPT(full) [ 284.740754][ T9136] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 284.740773][ T9136] Call Trace: [ 284.740784][ T9136] [ 284.740795][ T9136] dump_stack_lvl+0x16c/0x1f0 [ 284.740834][ T9136] should_fail_ex+0x512/0x640 [ 284.740864][ T9136] ? __kmalloc_noprof+0xbf/0x510 [ 284.740896][ T9136] ? alloc_pipe_info+0x1ec/0x590 [ 284.740924][ T9136] should_failslab+0xc2/0x120 [ 284.740955][ T9136] __kmalloc_noprof+0xd2/0x510 [ 284.740993][ T9136] alloc_pipe_info+0x1ec/0x590 [ 284.741026][ T9136] splice_direct_to_actor+0x77d/0xa30 [ 284.741068][ T9136] ? __pfx_direct_splice_actor+0x10/0x10 [ 284.741107][ T9136] ? __pfx_aa_file_perm+0x10/0x10 [ 284.741131][ T9136] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 284.741175][ T9136] do_splice_direct+0x174/0x240 [ 284.741215][ T9136] ? __pfx_do_splice_direct+0x10/0x10 [ 284.741255][ T9136] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 284.741300][ T9136] ? rw_verify_area+0xcf/0x680 [ 284.741342][ T9136] do_sendfile+0xb06/0xe50 [ 284.741389][ T9136] ? __pfx_do_sendfile+0x10/0x10 [ 284.741434][ T9136] ? __x64_sys_futex+0x1e0/0x4c0 [ 284.741466][ T9136] ? __x64_sys_futex+0x1e9/0x4c0 [ 284.741502][ T9136] __x64_sys_sendfile64+0x1d8/0x220 [ 284.741535][ T9136] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 284.741589][ T9136] do_syscall_64+0xcd/0x490 [ 284.741623][ T9136] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 284.741654][ T9136] RIP: 0033:0x7f3eea78e9a9 [ 284.741679][ T9136] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 284.741705][ T9136] RSP: 002b:00007f3eeb5e9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 284.741732][ T9136] RAX: ffffffffffffffda RBX: 00007f3eea9b5fa0 RCX: 00007f3eea78e9a9 [ 284.741751][ T9136] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000008 [ 284.741766][ T9136] RBP: 00007f3eea810d69 R08: 0000000000000000 R09: 0000000000000000 [ 284.741782][ T9136] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 284.741799][ T9136] R13: 0000000000000000 R14: 00007f3eea9b5fa0 R15: 00007ffccb2cc948 [ 284.741834][ T9136] [ 288.706828][ T9194] FAULT_INJECTION: forcing a failure. [ 288.706828][ T9194] name failslab, interval 1, probability 0, space 0, times 0 [ 288.780561][ T9194] CPU: 1 UID: 0 PID: 9194 Comm: syz.0.624 Not tainted 6.16.0-rc7-syzkaller-00034-g25fae0b93d1d #0 PREEMPT(full) [ 288.780600][ T9194] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 288.780614][ T9194] Call Trace: [ 288.780623][ T9194] [ 288.780633][ T9194] dump_stack_lvl+0x16c/0x1f0 [ 288.780673][ T9194] should_fail_ex+0x512/0x640 [ 288.780700][ T9194] ? __kmalloc_noprof+0xbf/0x510 [ 288.780732][ T9194] ? net_alloc_generic+0x1e/0x70 [ 288.780762][ T9194] should_failslab+0xc2/0x120 [ 288.780793][ T9194] __kmalloc_noprof+0xd2/0x510 [ 288.780815][ T9194] ? inc_ucount+0x240/0x2f0 [ 288.780852][ T9194] net_alloc_generic+0x1e/0x70 [ 288.780878][ T9194] copy_net_ns+0xc6/0x5f0 [ 288.780907][ T9194] ? copy_cgroup_ns+0x71/0x700 [ 288.780937][ T9194] create_new_namespaces+0x3ea/0xa90 [ 288.780972][ T9194] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 288.781002][ T9194] ksys_unshare+0x45b/0xa40 [ 288.781037][ T9194] ? __pfx_ksys_unshare+0x10/0x10 [ 288.781082][ T9194] ? xfd_validate_state+0x61/0x180 [ 288.781126][ T9194] __x64_sys_unshare+0x31/0x40 [ 288.781157][ T9194] do_syscall_64+0xcd/0x490 [ 288.781186][ T9194] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 288.781210][ T9194] RIP: 0033:0x7f6acd38e9a9 [ 288.781231][ T9194] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 288.781256][ T9194] RSP: 002b:00007f6ace13d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 288.781283][ T9194] RAX: ffffffffffffffda RBX: 00007f6acd5b5fa0 RCX: 00007f6acd38e9a9 [ 288.781299][ T9194] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 288.781314][ T9194] RBP: 00007f6acd410d69 R08: 0000000000000000 R09: 0000000000000000 [ 288.781329][ T9194] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 288.781342][ T9194] R13: 0000000000000000 R14: 00007f6acd5b5fa0 R15: 00007ffe6bf9d208 [ 288.781375][ T9194] [ 289.571255][ T9213] ptrace attach of "./syz-executor exec"[5842] was attempted by ""[9213] [ 289.659662][ T9213] FAULT_INJECTION: forcing a failure. [ 289.659662][ T9213] name failslab, interval 1, probability 0, space 0, times 0 [ 289.730928][ T9213] CPU: 1 UID: 0 PID: 9213 Comm: syz.0.630 Not tainted 6.16.0-rc7-syzkaller-00034-g25fae0b93d1d #0 PREEMPT(full) [ 289.730969][ T9213] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 289.730986][ T9213] Call Trace: [ 289.730995][ T9213] [ 289.731005][ T9213] dump_stack_lvl+0x16c/0x1f0 [ 289.731039][ T9213] should_fail_ex+0x512/0x640 [ 289.731085][ T9213] should_failslab+0xc2/0x120 [ 289.731117][ T9213] __kmalloc_cache_noprof+0x6a/0x3e0 [ 289.731160][ T9213] ? alloc_pipe_info+0x10e/0x590 [ 289.731204][ T9213] alloc_pipe_info+0x10e/0x590 [ 289.731242][ T9213] splice_direct_to_actor+0x77d/0xa30 [ 289.731287][ T9213] ? __pfx_direct_splice_actor+0x10/0x10 [ 289.731329][ T9213] ? __pfx_aa_file_perm+0x10/0x10 [ 289.731357][ T9213] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 289.731405][ T9213] do_splice_direct+0x174/0x240 [ 289.731444][ T9213] ? __pfx_do_splice_direct+0x10/0x10 [ 289.731483][ T9213] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 289.731526][ T9213] ? rw_verify_area+0xcf/0x680 [ 289.731568][ T9213] do_sendfile+0xb06/0xe50 [ 289.731614][ T9213] ? __pfx_do_sendfile+0x10/0x10 [ 289.731659][ T9213] ? __x64_sys_futex+0x1e0/0x4c0 [ 289.731691][ T9213] ? __x64_sys_futex+0x1e9/0x4c0 [ 289.731730][ T9213] __x64_sys_sendfile64+0x1d8/0x220 [ 289.731763][ T9213] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 289.731806][ T9213] do_syscall_64+0xcd/0x490 [ 289.731838][ T9213] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 289.731866][ T9213] RIP: 0033:0x7f6acd38e9a9 [ 289.731887][ T9213] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 289.731911][ T9213] RSP: 002b:00007f6ace13d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 289.731937][ T9213] RAX: ffffffffffffffda RBX: 00007f6acd5b5fa0 RCX: 00007f6acd38e9a9 [ 289.731955][ T9213] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000008 [ 289.731970][ T9213] RBP: 00007f6acd410d69 R08: 0000000000000000 R09: 0000000000000000 [ 289.731986][ T9213] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 289.732002][ T9213] R13: 0000000000000000 R14: 00007f6acd5b5fa0 R15: 00007ffe6bf9d208 [ 289.732037][ T9213] [ 289.968240][ T9220] ptrace attach of "./syz-executor exec"[5843] was attempted by ""[9220] [ 290.698325][ T9220] FAULT_INJECTION: forcing a failure. [ 290.698325][ T9220] name failslab, interval 1, probability 0, space 0, times 0 [ 290.763035][ T9220] CPU: 0 UID: 0 PID: 9220 Comm: syz.1.633 Not tainted 6.16.0-rc7-syzkaller-00034-g25fae0b93d1d #0 PREEMPT(full) [ 290.763058][ T9220] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 290.763068][ T9220] Call Trace: [ 290.763073][ T9220] [ 290.763078][ T9220] dump_stack_lvl+0x16c/0x1f0 [ 290.763098][ T9220] should_fail_ex+0x512/0x640 [ 290.763113][ T9220] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 290.763130][ T9220] should_failslab+0xc2/0x120 [ 290.763146][ T9220] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 290.763158][ T9220] ? __pfx_acct_collect+0x10/0x10 [ 290.763179][ T9220] ? taskstats_exit+0x654/0xbe0 [ 290.763203][ T9220] taskstats_exit+0x654/0xbe0 [ 290.763222][ T9220] ? __pfx_taskstats_exit+0x10/0x10 [ 290.763247][ T9220] do_exit+0x5d9/0x2bd0 [ 290.763269][ T9220] ? __pfx_do_exit+0x10/0x10 [ 290.763287][ T9220] ? do_raw_spin_lock+0x12c/0x2b0 [ 290.763307][ T9220] ? find_held_lock+0x2b/0x80 [ 290.763324][ T9220] do_group_exit+0xd3/0x2a0 [ 290.763344][ T9220] get_signal+0x2673/0x26d0 [ 290.763362][ T9220] ? kmem_cache_free+0x2d1/0x4d0 [ 290.763374][ T9220] ? fd_install+0x225/0x750 [ 290.763398][ T9220] ? __pfx_get_signal+0x10/0x10 [ 290.763413][ T9220] ? do_futex+0x122/0x350 [ 290.763430][ T9220] ? __pfx_do_futex+0x10/0x10 [ 290.763448][ T9220] arch_do_signal_or_restart+0x8f/0x790 [ 290.763466][ T9220] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 290.763487][ T9220] ? xfd_validate_state+0x61/0x180 [ 290.763509][ T9220] exit_to_user_mode_loop+0x84/0x110 [ 290.763532][ T9220] do_syscall_64+0x3f6/0x490 [ 290.763549][ T9220] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 290.763563][ T9220] RIP: 0033:0x7f3eea78e9a9 [ 290.763574][ T9220] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 290.763588][ T9220] RSP: 002b:00007f3eeb5e90e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 290.763603][ T9220] RAX: fffffffffffffe00 RBX: 00007f3eea9b5fa8 RCX: 00007f3eea78e9a9 [ 290.763612][ T9220] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f3eea9b5fa8 [ 290.763620][ T9220] RBP: 00007f3eea9b5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 290.763629][ T9220] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3eea9b5fac [ 290.763637][ T9220] R13: 0000000000000000 R14: 00007ffccb2cc860 R15: 00007ffccb2cc948 [ 290.763655][ T9220] [ 291.958334][ T9250] FAULT_INJECTION: forcing a failure. [ 291.958334][ T9250] name failslab, interval 1, probability 0, space 0, times 0 [ 292.120597][ T9250] CPU: 0 UID: 0 PID: 9250 Comm: syz.2.638 Not tainted 6.16.0-rc7-syzkaller-00034-g25fae0b93d1d #0 PREEMPT(full) [ 292.120635][ T9250] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 292.120652][ T9250] Call Trace: [ 292.120660][ T9250] [ 292.120670][ T9250] dump_stack_lvl+0x16c/0x1f0 [ 292.120706][ T9250] should_fail_ex+0x512/0x640 [ 292.120733][ T9250] ? __kmalloc_noprof+0xbf/0x510 [ 292.120764][ T9250] ? net_alloc_generic+0x1e/0x70 [ 292.120791][ T9250] should_failslab+0xc2/0x120 [ 292.120824][ T9250] __kmalloc_noprof+0xd2/0x510 [ 292.120849][ T9250] ? inc_ucount+0x240/0x2f0 [ 292.120888][ T9250] net_alloc_generic+0x1e/0x70 [ 292.120919][ T9250] copy_net_ns+0xc6/0x5f0 [ 292.120949][ T9250] ? copy_cgroup_ns+0x71/0x700 [ 292.120982][ T9250] create_new_namespaces+0x3ea/0xa90 [ 292.121021][ T9250] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 292.121053][ T9250] ksys_unshare+0x45b/0xa40 [ 292.121087][ T9250] ? __pfx_ksys_unshare+0x10/0x10 [ 292.121132][ T9250] ? xfd_validate_state+0x61/0x180 [ 292.121178][ T9250] __x64_sys_unshare+0x31/0x40 [ 292.121213][ T9250] do_syscall_64+0xcd/0x490 [ 292.121244][ T9250] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 292.121271][ T9250] RIP: 0033:0x7f590df8e9a9 [ 292.121293][ T9250] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 292.121319][ T9250] RSP: 002b:00007f590ee6a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 292.121345][ T9250] RAX: ffffffffffffffda RBX: 00007f590e1b5fa0 RCX: 00007f590df8e9a9 [ 292.121363][ T9250] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 292.121378][ T9250] RBP: 00007f590e010d69 R08: 0000000000000000 R09: 0000000000000000 [ 292.121394][ T9250] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 292.121410][ T9250] R13: 0000000000000000 R14: 00007f590e1b5fa0 R15: 00007ffc92df3968 [ 292.121446][ T9250] [ 293.650774][ T6691] ================================================================== [ 293.659086][ T6691] BUG: KASAN: vmalloc-out-of-bounds in hci_devcd_dump+0x142/0x240 [ 293.666947][ T6691] Read of size 140 at addr ffffc900049f5000 by task kworker/u12:1/6691 [ 293.675309][ T6691] [ 293.677652][ T6691] CPU: 0 UID: 0 PID: 6691 Comm: kworker/u12:1 Not tainted 6.16.0-rc7-syzkaller-00034-g25fae0b93d1d #0 PREEMPT(full) [ 293.677672][ T6691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 293.677684][ T6691] Workqueue: hci0 hci_devcd_timeout [ 293.677712][ T6691] Call Trace: [ 293.677720][ T6691] [ 293.677727][ T6691] dump_stack_lvl+0x116/0x1f0 [ 293.677745][ T6691] print_report+0xcd/0x610 [ 293.677762][ T6691] ? __virt_addr_valid+0x81/0x610 [ 293.677782][ T6691] ? hci_devcd_dump+0x142/0x240 [ 293.677800][ T6691] kasan_report+0xe0/0x110 [ 293.677815][ T6691] ? hci_devcd_dump+0x142/0x240 [ 293.677836][ T6691] kasan_check_range+0x100/0x1b0 [ 293.677854][ T6691] __asan_memcpy+0x23/0x60 [ 293.677874][ T6691] hci_devcd_dump+0x142/0x240 [ 293.677911][ T6691] hci_devcd_timeout+0xb5/0x2e0 [ 293.677930][ T6691] ? rcu_is_watching+0x12/0xc0 [ 293.677947][ T6691] process_one_work+0x9cf/0x1b70 [ 293.677973][ T6691] ? __pfx_process_one_work+0x10/0x10 [ 293.677996][ T6691] ? assign_work+0x1a0/0x250 [ 293.678015][ T6691] worker_thread+0x6c8/0xf10 [ 293.678038][ T6691] ? __pfx_worker_thread+0x10/0x10 [ 293.678057][ T6691] kthread+0x3c2/0x780 [ 293.678077][ T6691] ? __pfx_kthread+0x10/0x10 [ 293.678095][ T6691] ? rcu_is_watching+0x12/0xc0 [ 293.678108][ T6691] ? __pfx_kthread+0x10/0x10 [ 293.678126][ T6691] ret_from_fork+0x5d4/0x6f0 [ 293.678146][ T6691] ? __pfx_kthread+0x10/0x10 [ 293.678164][ T6691] ret_from_fork_asm+0x1a/0x30 [ 293.678185][ T6691] [ 293.678190][ T6691] [ 293.826460][ T6691] The buggy address ffffc900049f5000 belongs to a vmalloc virtual mapping [ 293.834974][ T6691] Memory state around the buggy address: [ 293.840726][ T6691] ffffc900049f4f00: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 293.848912][ T6691] ffffc900049f4f80: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 293.857192][ T6691] >ffffc900049f5000: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 293.865517][ T6691] ^ [ 293.869820][ T6691] ffffc900049f5080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 293.878080][ T6691] ffffc900049f5100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 293.886625][ T6691] ================================================================== [ 293.907395][ T6691] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 293.914671][ T6691] CPU: 0 UID: 0 PID: 6691 Comm: kworker/u12:1 Not tainted 6.16.0-rc7-syzkaller-00034-g25fae0b93d1d #0 PREEMPT(full) [ 293.927211][ T6691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 293.937380][ T6691] Workqueue: hci0 hci_devcd_timeout [ 293.942926][ T6691] Call Trace: [ 293.946214][ T6691] [ 293.949166][ T6691] dump_stack_lvl+0x3d/0x1f0 [ 293.953777][ T6691] panic+0x71c/0x800 [ 293.957698][ T6691] ? __pfx_panic+0x10/0x10 [ 293.962236][ T6691] ? mark_held_locks+0x49/0x80 [ 293.967064][ T6691] ? preempt_schedule_thunk+0x16/0x30 [ 293.972465][ T6691] ? hci_devcd_dump+0x142/0x240 [ 293.977339][ T6691] ? preempt_schedule_common+0x44/0xc0 [ 293.982837][ T6691] ? check_panic_on_warn+0x1f/0xb0 [ 293.988162][ T6691] ? hci_devcd_dump+0x142/0x240 [ 293.993288][ T6691] check_panic_on_warn+0xab/0xb0 [ 293.998270][ T6691] end_report+0x107/0x170 [ 294.003096][ T6691] kasan_report+0xee/0x110 [ 294.007643][ T6691] ? hci_devcd_dump+0x142/0x240 [ 294.012698][ T6691] kasan_check_range+0x100/0x1b0 [ 294.017656][ T6691] __asan_memcpy+0x23/0x60 [ 294.022113][ T6691] hci_devcd_dump+0x142/0x240 [ 294.026825][ T6691] hci_devcd_timeout+0xb5/0x2e0 [ 294.031700][ T6691] ? rcu_is_watching+0x12/0xc0 [ 294.036486][ T6691] process_one_work+0x9cf/0x1b70 [ 294.041633][ T6691] ? __pfx_process_one_work+0x10/0x10 [ 294.047209][ T6691] ? assign_work+0x1a0/0x250 [ 294.051914][ T6691] worker_thread+0x6c8/0xf10 [ 294.056586][ T6691] ? __pfx_worker_thread+0x10/0x10 [ 294.061829][ T6691] kthread+0x3c2/0x780 [ 294.066018][ T6691] ? __pfx_kthread+0x10/0x10 [ 294.070634][ T6691] ? rcu_is_watching+0x12/0xc0 [ 294.075456][ T6691] ? __pfx_kthread+0x10/0x10 [ 294.080078][ T6691] ret_from_fork+0x5d4/0x6f0 [ 294.084720][ T6691] ? __pfx_kthread+0x10/0x10 [ 294.089350][ T6691] ret_from_fork_asm+0x1a/0x30 [ 294.094160][ T6691] [ 294.097576][ T6691] Kernel Offset: disabled [ 294.102343][ T6691] Rebooting in 86400 seconds..