last executing test programs: 3m47.37109132s ago: executing program 2 (id=171): syz_io_uring_setup(0x766f, &(0x7f0000000080)={0x0, 0x0, 0x20, 0x20000003}, 0x0, 0x0) (fail_nth: 4) 3m47.315459961s ago: executing program 2 (id=172): setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x39, &(0x7f0000000140)=ANY=[@ANYBLOB="110a02c900280000fe880000000000000000000000000101ff01000000000000000000000000000120010000000000000000000000000000fc020000000000000000000000000000fc000000000000000000000000000001"], 0x58) 3m47.255665512s ago: executing program 2 (id=173): ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x2515, 0x0, 0x0, 0x1000, &(0x7f0000fec000/0x1000)=nil}) ioctl$KVM_GET_DIRTY_LOG(0xffffffffffffffff, 0x4010ae42, 0x0) r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000080)={0x73622a85, 0x100}) mmap$binder(&(0x7f00000a0000)=nil, 0x2000, 0x1, 0x11, r0, 0x0) ioctl$TCGETS(0xffffffffffffffff, 0x5401, &(0x7f0000000d00)) r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f00000004c0)={0x54, 0x0, &(0x7f0000000380)=[@transaction={0x40406300, {0x2, 0x0, 0x0, 0x0, 0x30, 0x0, 0x0, 0x60, 0x18, &(0x7f0000000000)={@ptr={0x70742a85, 0x0, &(0x7f00000002c0)=""/189, 0xbd, 0x2, 0x6}, @fda={0x66646185, 0x4, 0x1, 0x8000000000000001}, @fd={0x66642a85, 0x0, r0}}, &(0x7f0000000100)={0x0, 0x28, 0x48}}}, @clear_death={0x400c630f, 0x2}], 0x91, 0x0, &(0x7f0000000400)="f9dde0b6ab9f901c8bad8c99d03b0726fcf88738e130f2c494e5d3b099336a986ec14d352d33f0dfab9e5c10cd6b6a941b47393398b7dd7f245ff74a95eb621f65207ec319873a1a63e3451448a340b9392889d33cd477133eca25b0102c35c4f196284fab5dd61169c94fc04bc075c8f920a579eaa538436ebed1e779303db57210d1d5217a6be74beeb469f14f39cf30"}) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000240)={0x4c, 0x0, &(0x7f0000000140)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x58, 0x18, &(0x7f00000001c0)={@flat, @fd={0x66642a85, 0x0, r1}, @ptr={0x70742a85, 0x0, 0x0}}, &(0x7f0000000280)={0x0, 0x18, 0x30}}, 0x10}], 0x0, 0x0, 0x0}) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000800)={0x10, 0x0, &(0x7f0000000600)=[@request_death], 0x0, 0x0, 0x0}) 3m46.850582918s ago: executing program 2 (id=174): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'rose0\x00', 0x112}) ioctl$TUNATTACHFILTER(r0, 0x401054d5, &(0x7f0000000040)={0x2, &(0x7f0000000080)=[{0x20, 0x0, 0x0, 0xfffff02c}, {0x6, 0x0, 0x0, 0x3}]}) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x101042, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x82) r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CLEAR_DIRTY_LOG(r2, 0xc018aec0, &(0x7f0000000000)={0x0, 0x3c0, 0x200, &(0x7f0000000440)=[0x264d, 0x5, 0x5, 0x4, 0x6, 0x8000, 0x0, 0x3, 0x5, 0xcca, 0x9, 0xffffffffffffcab9, 0x4, 0x9, 0x4, 0x3, 0xfffffffffffffff7, 0xffff, 0x7, 0x4, 0x7, 0xf6d, 0x8, 0x7, 0x4, 0x4, 0x7, 0x1fe0000000, 0x6, 0xf1a, 0x79c5, 0x2b, 0x19, 0x7, 0x81, 0x7, 0x0, 0x7, 0x7fff, 0x1, 0x68, 0x200, 0x1, 0x2, 0x1000, 0x40, 0x100000002, 0x7fffffffffffffff, 0x7f, 0x10000000000, 0xf, 0x1, 0xfffffffffffffffd, 0x3ff, 0xffffffffae3768c9, 0x6, 0x0, 0x5903173b, 0x2, 0x1a2e, 0x6, 0x5, 0x4, 0x70f, 0x2, 0x5, 0x3ff, 0x1, 0x7, 0x5, 0xe, 0x7, 0xf9f, 0xed4, 0xb5, 0x0, 0x3, 0x0, 0x4, 0x6, 0x8, 0x3, 0x9, 0x5, 0xc, 0x81, 0x5, 0x4, 0xfffffffffffffe01, 0x7, 0x8, 0x2, 0x4, 0x5d5, 0x1000, 0x3, 0x3, 0x3, 0xfffffffffffff8b8, 0x4, 0x5, 0x9, 0x9410, 0x5, 0x100, 0x3, 0x4, 0x1c0000000000, 0x1, 0xffff, 0x8000000000000001, 0x59d0, 0x0, 0xf, 0x98b4, 0x4, 0x7237, 0x4, 0xffffffff00000001, 0x4, 0x4bf, 0xd7af, 0x800, 0xc, 0xc, 0xffff, 0xd4, 0x7]}) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2) ioctl$KVM_SET_CPUID2(r6, 0x4008ae90, &(0x7f00000000c0)=ANY=[@ANYRES64=r4, @ANYRES32=r1, @ANYRES64=r3]) ioctl$KVM_SET_MSRS(r5, 0x4008ae89, &(0x7f0000000000)=ANY=[@ANYBLOB="01000000000000008504"]) mkdirat(0xffffffffffffff9c, &(0x7f0000004380)='./file0/file0\x00', 0x0) r7 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/wake_lock', 0x202, 0x0) write$cgroup_subtree(r7, &(0x7f0000000040)=ANY=[], 0x9) ioctl$PPPIOCNEWUNIT(r1, 0xc004743e, &(0x7f0000000040)) ppoll(&(0x7f0000000000)=[{r1, 0x2201}], 0x1, 0x0, 0x0, 0x0) 3m46.195763167s ago: executing program 2 (id=180): r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x28, 0x0, 0x800, 0x70bd28, 0x25dfdbff, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}]}, 0x28}, 0x1, 0x0, 0x0, 0x4000000}, 0x4044) r2 = socket$unix(0x1, 0x5, 0x0) recvfrom$unix(r2, 0x0, 0x0, 0x2040, 0x0, 0x0) 3m46.149505388s ago: executing program 2 (id=182): r0 = syz_open_dev$MSR(&(0x7f0000000080), 0x0, 0x0) read(r0, &(0x7f0000000180)=""/95, 0xffffff51) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x408002, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) 3m30.866966204s ago: executing program 32 (id=182): r0 = syz_open_dev$MSR(&(0x7f0000000080), 0x0, 0x0) read(r0, &(0x7f0000000180)=""/95, 0xffffff51) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x408002, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) 3m2.725185141s ago: executing program 4 (id=620): r0 = socket$packet(0x11, 0x2, 0x300) io_setup(0x7, &(0x7f0000000080)=0x0) io_pgetevents(r1, 0x3, 0x3, &(0x7f00000000c0)=[{}, {}, {}], &(0x7f0000000180), &(0x7f0000000200)={&(0x7f00000001c0)={[0x5]}, 0x8}) sendto$packet(r0, 0x0, 0x0, 0x8044, 0x0, 0x0) 3m2.615305713s ago: executing program 4 (id=625): socketpair(0x2, 0xa, 0x8, &(0x7f0000000300)) (fail_nth: 3) 3m2.543165014s ago: executing program 4 (id=628): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2}) write$cgroup_subtree(r0, &(0x7f0000000580)=ANY=[@ANYBLOB="8fedcb5d07081175f37538e44305"], 0x36) r1 = socket$inet6(0xa, 0x2, 0x0) sendmmsg$inet6(r1, &(0x7f0000000080)=[{{&(0x7f0000000100)={0xa, 0x4e20, 0x0, @loopback}, 0x1c, 0x0}}], 0x1, 0x0) 3m1.969514633s ago: executing program 4 (id=634): r0 = socket$packet(0x11, 0x3, 0x300) socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) getpeername$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14) sendmmsg(r0, &(0x7f0000000440)=[{{&(0x7f0000000500)=@xdp={0x2c, 0xdd86, r2}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000180)='O', 0x5b0}], 0x1, 0x0, 0x0, 0x2f00}}], 0x1, 0x20000084) 3m1.893132284s ago: executing program 4 (id=636): openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0) (async) r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x51) (async) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x51) ioctl$FS_IOC_FSSETXATTR(r1, 0x401c5820, &(0x7f0000000080)={0x8}) ioctl$ASHMEM_SET_NAME(r1, 0x40087708, &(0x7f0000000100)='\x00\x00\x03\x06\x00\x00\x00\x1f\x00x\x92\x12\xac\x06^\xbewV\xf3\"\xc4\x04\xbb\x0642\x9c\x1a\xd1\xcb{\xb0\xd6\x1e\x00gQ\xca\x0eU\xf7\'\x8c\xc1\xc6\xbb\xc5\x1c\xf7\xaf\x95\x83=\t7\x96\x1a\xad\xd0\xd0\xee\x9c\x962\bu\xba\xfc\xae\xc2\x19\xeb\x91\xc9\t\xbc\xc1\xcb\xba\xe3\x8e\xf6\x89\xc2\'\xdfn(Q=v-<\r\x87\xa3\xd1?$\x8b\x17Bn\x17h\x1b\xac\xfc\x82\x1c\xf4\xd0\xf5\xd5\x80\xc0\xb4a \x15\x9a\x9f\xfc\"\xee\xc4\x93Q\x82\x16\xbf\xe3c\x8d \x0f\xb1\xe9\xf2o \x00\x00\x00\x00\x00\x00\x00H\xaf\t\x18\xc8\x1b\x1e\xbe\xd8>\xec\x9f~\xa7\xf7\xafdd\xf1\xdbjE\x01\xd1sD\x89\x94&\\U\f\x18\x99]\xaba\xe93\x01\xa23\xc9hP1\xdc-\'\xd0\x9e}\x89\xff\x8c\xec^\x84\x19\x9f_D\xbdt/\'\xf6\xc3\x8c\xb8\vS\x80\xad\xf8\xbf\xa2\xa0\x99\xc2\x16=\xcc\xb0\x1b^:4\xeb\xd37\xe3-\'\x02\x16\xf5\xe6\x93\x02E\n\xe8\x00\x00\x8c\xed\x11\xf7\xf2J\xf6\x90A@\x01\x13\xc7`g\xcb\xd7\xdb\x1e\xb2\xc9\xfd\xf7\xa9\x96\xf8/0Hd\xcf\xb9\xa2\x1d\x13\x8fC\xd2&\xd8\x9d\x8b\xe0E\xd2\xc6\x1a\xf3\xa8\x0e\xba\xecOv$\xc8\"\a\xd7T\xfb\xfc\xfauT\xf8\x9e\x86\xef.\xf6<\xbfB\xe7\x80\x1a\a\t+x_B=\xe7\xa5\x89\xfb\xa2\xc6\x97\xeb\xdecY{\x0e\xc2\x00\x00\x00\x00\x00\x00\x00\a\xf4\x88\x06\xe3\xcb\xc8\xe0\xcc\vE\x18\"\x87\xa0\xa9:\xceY\xf0\xa2\xe0\x9d\x8c\x8e\x11\xb7\x98\xa5\xda$\x94D\xb4\xf2>\x01\x00+\xfa\xa9 \xe1\xadP\x1c2\xbfH\xc6\x9c\x8cs4\r\xcd\xd1\x83JT\xf9\xa2\x83?\xb3\x0f\xc6&\x1d\xa3\xc4\xc3\xd2\xfd\xad\xa35o\xe8\xcd^/\xd8\xf4[n\x9fJ\xf4\n\x92c\xaa\xddT&L<+\x19R\a\xfc\xf2\x17\xb8$\xa9]\xc2\\\xda<\xc8d.w\x9c\xaf4\xbb\xe8Co\xb3\xd8\x82\x92\xba+\x99PXB\xdc\xbay\xa0s<\x92k\vJTRW\xc26\x06\x10\x92\xc7\xa55\x9fZ\xff*ir\x1e\xe8\a\x00\x00\x00\x00\x00\x00\x00\x88\x19\xf7\xdd\xa8\xef\xa0\x98\xcd\x81\x10>\xc7{\x84\xb9\xc0B\xe1\t\x00\xbaQj\x81\xc8\xf8\x146%Z\x83H\xabF\x18<\x86h\x01=\x03i\xc4\t\x8e/\x12\a\xdf\xe7zU\x1d\x15\x0e\xc1?\xeau\xb4\x84\x1b\xdaR-\xf4\xe9\x1f\xcd\x05\x0fz_\x8d,^\xde\xfd\xd1\xbed\xed\xa1\xf5\xc6(p\xb4;\x0e\x18\xf7/A\xfd8\\\x99\xc7Dp\x98\xa4o\x92\xd0}ur\xaag\xdb&e$\f\rrT\xd8\x88~\x13\xc22t\xf6\xf4Fs\xc1\x05\xfa\x99\x15\x87\x14\x13$\t\xa8?\xee\x94W\x8e\xe1\xcc\xc3U\x84\xc6]:\x9a|W\xec\x84\x18\bb\x82\x8f\xc0\xab\xe3a\x99\x17\x85\x9a\x05\xb1\x12KL\xf2\xd5\b^[D~\x00\x00\x00\x00\x00\x00\x00\x99\x9a\x96\x18\x81\xc4\xb5\x89\x04K\'\xeasW\x88\x87\xa9\xfe\xc2\xf6<\xb2\xe1k\xb8\xc7 \r\xeaX\x1b\xa1\xcd\xd4\xaflA\f\xbc\x80(\xc2\xdf\x9a\x16!\xac.-.\xa0\xc8\x0f\x96\xbbyR\x0203\x05Gx\xc9\xd3*\x8dgo\xb2wt\xea\t\x93\x17\xa3\xd1\xda\x9c\xda\am\xe0\x92\xbc\xa2\x10\xcb`m\xdf\r\xd3\x81\x99\xe9\xf3\x9c+\xb36\xf3\x99g]8A\xad\xfbW\x94c:jiq\x94xu\x00I*`q\xa6\xfe\xe6\xc5\xc2\x1fkj\x1f\xd5X&\xac*\xe9$?T\xe89N\x9aV\xd1r\x8b\xefOg\x8d\xc3b\xa2\x8a]\xa6\xca\xfb\x18\xb0\xa2o\x15\x9b') openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.numa_stat\x00', 0x275a, 0x0) (async) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.numa_stat\x00', 0x275a, 0x0) write$cgroup_subtree(r2, &(0x7f0000000100)=ANY=[], 0x32600) (async) write$cgroup_subtree(r2, &(0x7f0000000100)=ANY=[], 0x32600) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x4000010, r2, 0x0) r3 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r5, 0x4008ae89, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) 3m1.807264345s ago: executing program 4 (id=638): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = socket$inet_icmp(0x2, 0x2, 0x1) setsockopt$inet_MCAST_MSFILTER(r1, 0x0, 0x30, &(0x7f00000004c0)={0x5, {{0x2, 0x4e22, @private=0xa010101}}, 0x1}, 0x90) sendmsg$IPCTNL_MSG_CT_GET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=ANY=[@ANYBLOB="4401000001010102"], 0x144}, 0x1, 0x0, 0x0, 0x88d0}, 0x44) sync() 2m46.824599717s ago: executing program 33 (id=638): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = socket$inet_icmp(0x2, 0x2, 0x1) setsockopt$inet_MCAST_MSFILTER(r1, 0x0, 0x30, &(0x7f00000004c0)={0x5, {{0x2, 0x4e22, @private=0xa010101}}, 0x1}, 0x90) sendmsg$IPCTNL_MSG_CT_GET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=ANY=[@ANYBLOB="4401000001010102"], 0x144}, 0x1, 0x0, 0x0, 0x88d0}, 0x44) sync() 22.661926594s ago: executing program 1 (id=3059): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$xdp(0x2c, 0x3, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x181040, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_XEN_HVM_CONFIG(0xffffffffffffffff, 0x4038ae7a, &(0x7f00000000c0)={0x1, 0xaa4, 0x0, &(0x7f0000000100)}) ioctl$KVM_XEN_HVM_CONFIG(0xffffffffffffffff, 0x4038ae7a, &(0x7f0000000180)={0x1, 0xaa4, 0x0, &(0x7f0000000340)}) ioctl$KVM_SET_CLOCK(r4, 0x4188aec6, &(0x7f0000000040)={0x0, 0x8}) close(0x4) setsockopt$XDP_UMEM_REG(r2, 0x11b, 0x4, &(0x7f0000000780)={&(0x7f0000000680)=""/252, 0x131c000, 0x800, 0x0, 0x3}, 0x20) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f00000003c0), 0x2, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r6, 0xae60) ioctl$KVM_CREATE_PIT2(r6, 0x4040ae77, &(0x7f0000000040)) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) ioctl$KVM_GET_PIT2(r6, 0x8070ae9f, &(0x7f0000000240)) r7 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r7, 0x4008ae89, &(0x7f0000000000)=ANY=[@ANYBLOB="0100000005000000014d564b00000000af"]) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x4, 0x2, 0x5000, 0x1000, &(0x7f0000588000/0x1000)=nil}) ioctl$KVM_RUN(r7, 0xae80, 0x0) r8 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) ioctl$KVM_RUN(r8, 0xae80, 0x0) syz_usb_connect$printer(0x0, 0x2d, &(0x7f0000004900)=ANY=[@ANYBLOB="1201a104000074402505a8a44000013f610109021b000101ff1006090400080207010306090501020002400407"], &(0x7f0000004d80)={0x0, 0x0, 0x0, 0x0}) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4002, 0x0) 21.968510074s ago: executing program 1 (id=3079): r0 = socket(0x1e, 0x4, 0x0) sendmsg$tipc(r0, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11}, 0x0) ioctl$BTRFS_IOC_QGROUP_CREATE(r0, 0x4010942a, &(0x7f0000000000)={0x1, 0x9}) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000400)='/sys/power/resume', 0x149a82, 0x0) write$cgroup_int(r1, &(0x7f0000000040)=0x40000, 0x12) quotactl_fd$Q_GETFMT(r0, 0xffffffff80000400, 0xffffffffffffffff, &(0x7f0000000040)) 21.967981014s ago: executing program 1 (id=3081): openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r1 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x1}, 0x0, 0x0, 0xffffffffffffffff) keyctl$clear(0x7, r1) ioctl$KVM_SET_MSRS(r0, 0x4008ae89, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) openat$kvm(0xffffffffffffff9c, 0x0, 0x2, 0x0) openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0) timer_create(0x3, 0x0, &(0x7f0000000340)=0x0) mmap$binder(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1, 0x11, 0xffffffffffffffff, 0x2) timer_settime(r2, 0x1, &(0x7f0000000380)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0) timer_delete(r2) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000500)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x31, 0x0, 0x0, 0x68, 0x18, 0xfffffffffffffffc, &(0x7f0000000280)={0x0, 0x18, 0x40}}, 0x10}], 0x0, 0x0, 0x0}) 21.855051126s ago: executing program 1 (id=3083): r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/pids.max\x00', 0x2, 0x0) write$cgroup_pid(r1, &(0x7f0000000000), 0x12) getpeername$packet(r1, &(0x7f0000000000), &(0x7f0000000080)=0x14) getsockopt$inet6_int(r0, 0x29, 0x4e, 0x0, &(0x7f0000000040)) 21.55518427s ago: executing program 1 (id=3089): r0 = socket$inet_icmp(0x2, 0x2, 0x1) ioctl$sock_inet_SIOCDARP(r0, 0x8953, &(0x7f0000000200)={{0x2, 0x4e23, @private=0xa010101}, {0x306, @remote}, 0x22, {0x2, 0x4e20, @broadcast}, 'geneve0\x00'}) (fail_nth: 1) 20.960137389s ago: executing program 1 (id=3103): setrlimit(0xc, 0x0) r0 = epoll_create1(0x80000) fcntl$getown(r0, 0x9) 9.145071114s ago: executing program 0 (id=3142): add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffd) add_key$fscrypt_provisioning(&(0x7f0000000080), &(0x7f0000000140)={'syz', 0x3}, &(0x7f00000000c0)=ANY=[], 0x29, 0xfffffffffffffffd) 9.141145294s ago: executing program 5 (id=3143): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4) connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @loopback}, 0x1c) mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x1000006, 0x4132, 0xffffffffffffffff, 0x0) setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000000c0), 0x4) writev(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f00000018c0)='`', 0x1}], 0x1) setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f00000001c0)=@gcm_256={{0x304}, "6ae04425ace3f60c", "acba84f0a6731f234db1cc7f3f382ad796bd667cb12ea99509873931d2873103", "0f9dafb4", "ec3fff9afd96e6c0"}, 0x38) ioctl$int_in(r0, 0x5421, 0x0) writev(r0, &(0x7f0000000080)=[{&(0x7f00000002c0)="ec", 0xfdef}], 0x1) 9.140576994s ago: executing program 3 (id=3144): r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0) r1 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_IPV6_HOPOPTS(r1, 0x29, 0x36, &(0x7f0000000000)={0x2b, 0xc, '\x00', [@hao={0xc9, 0x10, @dev={0xfe, 0x80, '\x00', 0x2a}}, @enc_lim={0x4, 0x1, 0x1}, @enc_lim, @jumbo={0xc2, 0x4, 0x1}, @enc_lim={0x4, 0x1, 0xdf}, @generic={0x90, 0x3b, "4a8c56d9fd11a5dd608937a8e5d1be5897e78d5d4cd78f5eba2afe60de547af6dd41e95e88144259fb8fea6c3dc20006a4a9559f8577e655b1c096"}, @pad1]}, 0x70) ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)) socket$pppl2tp(0x18, 0x1, 0x1) 7.499355889s ago: executing program 0 (id=3145): r0 = socket$igmp(0x2, 0x3, 0x2) sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f0000001b80)={0x0, 0x0, &(0x7f0000001b40)={0x0}, 0x1, 0xffff000000000000, 0x0, 0x4000000}, 0x40000) 7.495998159s ago: executing program 5 (id=3146): mount$binderfs(0x0, &(0x7f0000000040)='./binderfs\x00', 0x0, 0x2331c70, &(0x7f0000000000)=ANY=[]) 7.495596589s ago: executing program 3 (id=3147): r0 = socket$packet(0x11, 0x3, 0x300) syz_usb_ep_write(0xffffffffffffffff, 0x81, 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000040)={0x1, 0x0, [{0x1a0, 0x0, 0x100000005}]}) close_range(r0, 0xffffffffffffffff, 0x0) 5.722164085s ago: executing program 0 (id=3148): r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000080)={0x73622a85, 0x100}) mmap$binder(&(0x7f00000a0000)=nil, 0x2000, 0x1, 0x11, r0, 0x0) r1 = syz_usb_connect(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x77, 0x29, 0x4, 0x20, 0x424, 0x9901, 0xc257, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x10, 0x0, [{{0x9, 0x4, 0x43, 0x0, 0x2, 0x31, 0x7d, 0x55, 0x0, [], [{{0x9, 0x5, 0x2, 0x2, 0x200, 0x2}}, {{0x9, 0x5, 0x82, 0x2, 0x200}}]}}]}}]}}, 0x0) syz_usb_control_io(r1, 0x0, 0x0) syz_usb_control_io$uac1(r1, 0x0, 0x0) syz_usb_control_io(r1, 0x0, 0x0) syz_usb_control_io$uac1(r1, 0x0, &(0x7f0000000400)={0x44, &(0x7f0000000200)=ANY=[@ANYBLOB="401504"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(r1, 0x0, 0x0) syz_usb_control_io(r1, 0x0, 0x0) syz_usb_control_io(r1, 0x0, &(0x7f0000000780)={0x84, &(0x7f0000000300)={0x20, 0x1, 0x4, "94c161ee"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$uac1(r1, 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000140)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x70, 0x18, &(0x7f0000000580)={@ptr={0x70742a85, 0x0, &(0x7f00000001c0)=""/75, 0x4b, 0x0, 0x32}, @fda={0x66646185, 0x7, 0x0, 0x16}, @ptr={0x70742a85, 0xfffffffc, 0x0, 0x16, 0x1}}, &(0x7f00000004c0)={0x0, 0x28, 0x48}}, 0x1000}], 0x0, 0x0, 0x0}) 5.721955905s ago: executing program 5 (id=3149): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_GET_DYING(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000003c0)={0x13, 0x6, 0x1, 0x101, 0x0, 0x0, {0x0, 0x0, 0xa}}, 0x14}, 0x1, 0x0, 0x0, 0x24004010}, 0x0) (fail_nth: 7) 5.721808355s ago: executing program 3 (id=3150): socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) getpeername$packet(r0, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14) sendmmsg(0xffffffffffffffff, &(0x7f0000000440)=[{{&(0x7f0000000500)=@xdp={0x2c, 0xdd86, r1}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000180)='O', 0x5b0}], 0x1, 0x0, 0x0, 0x2f00}}], 0x1, 0x20000084) socket$packet(0x11, 0x3, 0x300) socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) getpeername$packet(r2, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14) ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000140)) socket$inet6_tcp(0xa, 0x1, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) r3 = socket$packet(0x11, 0x3, 0x300) socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)) sendmmsg(r3, &(0x7f0000000440)=[{{&(0x7f0000000500)=@xdp={0x2c, 0xdd86}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000180)='O', 0x5b0}], 0x1, 0x0, 0x0, 0x2f00}}], 0x1, 0x20000084) r4 = socket$packet(0x11, 0x3, 0x300) socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) getpeername$packet(r5, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14) sendmmsg(r4, &(0x7f0000000440)=[{{&(0x7f0000000500)=@xdp={0x2c, 0xdd86, r6}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000180)='O', 0x5b0}], 0x1, 0x0, 0x0, 0x2f00}}], 0x1, 0x20000084) 3.944752901s ago: executing program 0 (id=3151): getitimer(0x1, &(0x7f0000000080)) r0 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$ARPT_SO_GET_REVISION_TARGET(r0, 0x0, 0x63, &(0x7f0000000000)={'icmp\x00'}, &(0x7f0000000040)=0x1e) 3.944095551s ago: executing program 5 (id=3152): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000580), 0x40, 0x0) ioctl$TIOCSPGRP(r0, 0x5410, 0x0) r1 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x68800, 0x0) r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) fremovexattr(r3, &(0x7f0000000000)=@known='system.posix_acl_default\x00') iopl(0x2) iopl(0x3) r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff}) syz_clone(0x1200200, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$TIPC_CONN_TIMEOUT(r5, 0x10f, 0x82, &(0x7f00000002c0), &(0x7f0000000300)=0x4) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r8, 0xc008ae88, &(0x7f0000000040)={0x1, 0x0, [{0x4b564d07}]}) r9 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD_OLD(r9, 0x40045402, &(0x7f0000000140)=0x1) ioctl$SNDRV_TIMER_IOCTL_SELECT(r9, 0x40345410, &(0x7f00000083c0)={{0x1}}) ioctl$SNDRV_TIMER_IOCTL_PARAMS(r9, 0x40505412, &(0x7f00000000c0)={0x7, 0x9dc5, 0x0, 0x0, 0xf}) r10 = openat$cgroup_procs(r4, &(0x7f0000000040)='cgroup.procs\x00', 0x2, 0x0) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.net/syz1\x00', 0x200002, 0x0) write$cgroup_pid(r10, &(0x7f00000001c0), 0x12) r11 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f00000000c0), 0x20000, 0x0) ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0) r12 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CAP_ENFORCE_PV_FEATURE_CPUID(r12, 0x4068aea3, &(0x7f0000000140)={0xbe, 0x0, 0xfffffffffffffffe}) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x3) ioctl$BLKRRPART(r1, 0x125f, 0x0) 3.939575481s ago: executing program 3 (id=3153): r0 = socket$inet6(0xa, 0x2, 0x0) sendmmsg$inet6(r0, &(0x7f0000004700)=[{{&(0x7f0000000040)={0xa, 0x4e23, 0x2b4, @remote, 0xc}, 0x1c, 0x0}}], 0x1, 0x80040c4) 2.02039141s ago: executing program 0 (id=3154): mount$binderfs(0x0, &(0x7f0000000080)='./binderfs\x00', 0x0, 0x2010860, &(0x7f0000000200)=ANY=[@ANYBLOB='context=sy\"te']) r0 = getgid() (async) r1 = getuid() statx(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x800, 0x2, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0}) (async) lstat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0}) mount$bpf(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x40, &(0x7f0000000300)={[{@gid={'gid', 0x3d, r0}}, {@uid={'uid', 0x3d, r1}}, {@uid={'uid', 0x3d, r2}}, {@mode={'mode', 0x3d, 0x5}}], [{@measure}, {@fsuuid={'fsuuid', 0x3d, {[0x37, 0x7, 0x61, 0x33, 0x34, 0x63, 0x34, 0x33], 0x2d, [0x36, 0x38, 0x61, 0x34], 0x2d, [0x30, 0x54153e84f1e9ac43, 0x33], 0x2d, [0x0, 0x39, 0x32, 0x63], 0x2d, [0x66, 0x34, 0x64, 0x63, 0x61, 0x62, 0x33, 0x62]}}}, {@fsuuid={'fsuuid', 0x3d, {[0x38, 0x38, 0xf, 0x31, 0x21, 0x37, 0x32, 0x33], 0x2d, [0x34, 0x64, 0x37, 0x35], 0x2d, [0x34, 0x39, 0x36, 0x39], 0x2d, [0x30, 0x61, 0x31, 0x61], 0x2d, [0x32, 0x33, 0x36, 0x65, 0x38, 0x39, 0x33, 0x37]}}}, {@fowner_eq={'fowner', 0x3d, r3}}, {@smackfsfloor={'smackfsfloor', 0x3d, './binderfs\x00'}}, {@appraise_type}, {@pcr={'pcr', 0x3d, 0x5}}, {@dont_hash}, {@mask={'mask', 0x3d, 'MAY_READ'}}]}) 2.01523091s ago: executing program 5 (id=3155): r0 = socket$inet6(0xa, 0x2, 0x0) sendmmsg$inet6(r0, &(0x7f0000004700)=[{{&(0x7f0000000040)={0xa, 0x4e23, 0x2b4, @remote, 0xc}, 0x1c, 0x0}}], 0x1, 0x80040c4) (fail_nth: 1) 2.01399599s ago: executing program 3 (id=3156): openat$rnullb(0xffffffffffffff9c, &(0x7f0000001140), 0xa00, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$IOC_PR_PREEMPT_ABORT(r0, 0x401870cc, &(0x7f0000000180)={0x9, 0x74c, 0x8, 0xfffffff9}) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CAP_DISABLE_QUIRKS(r1, 0x4068aea3, &(0x7f0000000080)={0x74, 0x0, 0x1}) r2 = socket$nl_generic(0x10, 0x3, 0x10) bind$netlink(r2, &(0x7f0000000140)={0x10, 0x0, 0x25dfdbfc, 0x10000000}, 0xc) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) write$FUSE_STATFS(0xffffffffffffffff, &(0x7f0000000100)={0x60, 0xfffffffffffffff5, 0x0, {{0x40, 0xff, 0x679, 0xfffffffffffffffb, 0x3, 0x8, 0x3, 0x26}}}, 0x60) r4 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x80, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x40000000003) ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) modify_ldt$write2(0x11, &(0x7f0000000680)={0x8, 0x0, 0x2000, 0x0, 0x2, 0x0, 0x1, 0x1}, 0x10) ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000200)={[0x0, 0xa, 0xfffffffffffffffd, 0x0, 0x10000, 0x4000000001000, 0x4002004c4, 0xfff, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0xd, 0xffffffffffffffff], 0xeeee8000}) ioctl$KVM_RUN(r6, 0xae80, 0x0) r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) r8 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000500), 0x1512c0, 0x0) ioctl$ASHMEM_SET_SIZE(r8, 0x40087703, 0xfffffffe) mmap(&(0x7f0000701000/0x1000)=nil, 0x1000, 0x8, 0x11, 0xffffffffffffffff, 0x66811000) ioctl$ASHMEM_SET_NAME(r8, 0x41007701, &(0x7f0000000000)='/dev/ashmem\x00') r9 = socket$inet_udplite(0x2, 0x2, 0x88) r10 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r11 = dup3(r10, r9, 0x80000) syz_genetlink_get_family_id$nl80211(&(0x7f0000001380), r11) r12 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) signalfd(r12, &(0x7f0000000100)={[0x4]}, 0x8) 1.07314ms ago: executing program 0 (id=3157): r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/uevent_helper', 0x141a82, 0x53) write(r0, &(0x7f0000000240)="d62ee8dbbf6ce17d874af5a3a723affe22d13c11b2b132e20a", 0x19) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r2, 0xae03, 0xda) fcntl$setsig(r1, 0x406, 0x20c) 958.68µs ago: executing program 5 (id=3158): r0 = socket$key(0xf, 0x3, 0x2) r1 = openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f0000001640), 0x0, 0x0) close(r1) syz_open_procfs(0xffffffffffffffff, &(0x7f0000001840)='net/psched\x00') accept4$tipc(r1, 0x0, 0x0, 0x800) sendfile(r0, r1, 0x0, 0x4) (fail_nth: 3) 0s ago: executing program 3 (id=3159): r0 = socket$inet6(0xa, 0x2, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0) r2 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCSIFADDR(r2, 0x8916, &(0x7f0000000040)={'ipvlan0\x00', {0x2, 0x0, @loopback=0x7f000000}}) ioctl$sock_inet_SIOCSIFADDR(r2, 0x891c, 0x0) uname(0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_int(r3, 0x1, 0xc, 0x0, &(0x7f0000000040)) ioctl$sock_inet_SIOCSIFADDR(r3, 0x8916, &(0x7f0000000000)={'veth0_to_bridge\x00', {0x2, 0x4e23, @multicast1}}) write$cgroup_subtree(r1, &(0x7f0000000100)=ANY=[], 0x32600) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r1, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_P2P_DEVICE(r4, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x20, r5, 0x549, 0x70bd25, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x2, 0x7}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x80}, 0x4008844) r6 = socket$unix(0x1, 0x1, 0x0) setsockopt$SO_TIMESTAMP(r6, 0x1, 0x4a, &(0x7f0000002900)=0x659c, 0x4) sendmmsg$inet6(r0, &(0x7f0000004700)=[{{&(0x7f0000000040)={0xa, 0x4e23, 0x2b4, @remote, 0xc}, 0x1c, 0x0}}], 0x1, 0x80040c4) kernel console output (not intermixed with test programs): 0x2a4/0x5a0 [ 215.645605][ T6347] ? __cfi__copy_from_iter+0x10/0x10 [ 215.645627][ T6347] ? check_stack_object+0x82/0x140 [ 215.645646][ T6347] ? __virt_addr_valid+0x2a6/0x380 [ 215.645669][ T6347] ? __check_object_size+0x455/0x620 [ 215.645688][ T6347] netlink_sendmsg+0x680/0xaf0 [ 215.645712][ T6347] ? __cfi_netlink_sendmsg+0x10/0x10 [ 215.645736][ T6347] ? bpf_lsm_socket_sendmsg+0xd/0x20 [ 215.645759][ T6347] ? security_socket_sendmsg+0x33/0xd0 [ 215.645779][ T6347] ? __cfi_netlink_sendmsg+0x10/0x10 [ 215.645801][ T6347] ____sys_sendmsg+0xa15/0xa70 [ 215.645826][ T6347] ? __sys_sendmsg_sock+0x50/0x50 [ 215.645850][ T6347] ? import_iovec+0x81/0xb0 [ 215.645878][ T6347] ___sys_sendmsg+0x220/0x2a0 [ 215.645901][ T6347] ? __sys_sendmsg+0x280/0x280 [ 215.645924][ T6347] ? proc_fail_nth_write+0x17e/0x210 [ 215.645940][ T6347] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 215.645960][ T6347] __x64_sys_sendmsg+0x1eb/0x2c0 [ 215.645973][ T6347] ? fput+0x1a5/0x240 [ 215.645996][ T6347] ? __cfi___x64_sys_sendmsg+0x10/0x10 [ 215.646010][ T6347] ? ksys_write+0x1ef/0x250 [ 215.646030][ T6347] ? __kasan_check_read+0x15/0x20 [ 215.646048][ T6347] x64_sys_call+0x2a4c/0x2ee0 [ 215.646068][ T6347] do_syscall_64+0x58/0xf0 [ 215.646089][ T6347] ? clear_bhb_loop+0x35/0x90 [ 215.646113][ T6347] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 215.646135][ T6347] RIP: 0033:0x7f77b958e929 [ 215.646149][ T6347] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 215.646163][ T6347] RSP: 002b:00007f77b93eb038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 215.646181][ T6347] RAX: ffffffffffffffda RBX: 00007f77b97b5fa0 RCX: 00007f77b958e929 [ 215.646194][ T6347] RDX: 00000000200000c0 RSI: 00002000000000c0 RDI: 0000000000000003 [ 215.646205][ T6347] RBP: 00007f77b93eb090 R08: 0000000000000000 R09: 0000000000000000 [ 215.646215][ T6347] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 215.646225][ T6347] R13: 0000000000000000 R14: 00007f77b97b5fa0 R15: 00007ffc629ce418 [ 215.646239][ T6347] [ 215.970682][ T2807] usb 4-1: new high-speed USB device number 45 using dummy_hcd [ 216.130675][ T2807] usb 4-1: Using ep0 maxpacket: 32 [ 216.141382][ T2807] usb 4-1: config 0 has an invalid interface number: 67 but max is 0 [ 216.151924][ T2807] usb 4-1: config 0 has no interface number 0 [ 216.159678][ T2807] usb 4-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57 [ 216.170727][ T2807] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 216.178825][ T2807] usb 4-1: Product: syz [ 216.188747][ T2807] usb 4-1: Manufacturer: syz [ 216.197768][ T2807] usb 4-1: SerialNumber: syz [ 216.212066][ T2807] usb 4-1: config 0 descriptor?? [ 216.219974][ T2807] smsc95xx v2.0.0 [ 216.232855][ T6364] FAULT_INJECTION: forcing a failure. [ 216.232855][ T6364] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 216.248597][ T6364] CPU: 1 UID: 0 PID: 6364 Comm: syz.5.2378 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 216.248641][ T6364] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 216.248658][ T6364] Call Trace: [ 216.248667][ T6364] [ 216.248678][ T6364] __dump_stack+0x21/0x30 [ 216.248716][ T6364] dump_stack_lvl+0x10c/0x190 [ 216.248744][ T6364] ? __cfi_dump_stack_lvl+0x10/0x10 [ 216.248776][ T6364] dump_stack+0x19/0x20 [ 216.248803][ T6364] should_fail_ex+0x3d9/0x530 [ 216.248829][ T6364] should_fail+0xf/0x20 [ 216.248852][ T6364] should_fail_usercopy+0x1e/0x30 [ 216.248889][ T6364] _copy_to_user+0x24/0xa0 [ 216.248921][ T6364] simple_read_from_buffer+0xed/0x160 [ 216.248959][ T6364] proc_fail_nth_read+0x19e/0x210 [ 216.248982][ T6364] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 216.249006][ T6364] ? bpf_lsm_file_permission+0xd/0x20 [ 216.249032][ T6364] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 216.249052][ T6364] vfs_read+0x278/0xb60 [ 216.249079][ T6364] ? __kasan_check_write+0x18/0x20 [ 216.249105][ T6364] ? __cfi_mutex_unlock+0x10/0x10 [ 216.249129][ T6364] ? __cfi_vfs_read+0x10/0x10 [ 216.249156][ T6364] ? __kasan_check_write+0x18/0x20 [ 216.249182][ T6364] ? mutex_lock+0x92/0x1c0 [ 216.249203][ T6364] ? __cfi_mutex_lock+0x10/0x10 [ 216.249225][ T6364] ? __fget_files+0x2c5/0x340 [ 216.249260][ T6364] ksys_read+0x141/0x250 [ 216.249288][ T6364] ? __cfi_ksys_read+0x10/0x10 [ 216.249318][ T6364] ? __kasan_check_read+0x15/0x20 [ 216.249345][ T6364] __x64_sys_read+0x7f/0x90 [ 216.249373][ T6364] x64_sys_call+0x2638/0x2ee0 [ 216.249404][ T6364] do_syscall_64+0x58/0xf0 [ 216.249434][ T6364] ? clear_bhb_loop+0x35/0x90 [ 216.249470][ T6364] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 216.249504][ T6364] RIP: 0033:0x7f79af18d33c [ 216.249524][ T6364] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 216.249547][ T6364] RSP: 002b:00007f79ad7f7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 216.249574][ T6364] RAX: ffffffffffffffda RBX: 00007f79af3b5fa0 RCX: 00007f79af18d33c [ 216.249594][ T6364] RDX: 000000000000000f RSI: 00007f79ad7f70a0 RDI: 0000000000000006 [ 216.249610][ T6364] RBP: 00007f79ad7f7090 R08: 0000000000000000 R09: 0000000000000000 [ 216.249624][ T6364] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 216.249639][ T6364] R13: 0000000000000000 R14: 00007f79af3b5fa0 R15: 00007ffcd54881a8 [ 216.249659][ T6364] [ 216.504317][ T687] usbhid 1-1:0.0: can't add hid device: -71 [ 216.510410][ T687] usbhid 1-1:0.0: probe with driver usbhid failed with error -71 [ 216.540780][ T687] usb 1-1: USB disconnect, device number 40 [ 216.600851][ T6372] FAULT_INJECTION: forcing a failure. [ 216.600851][ T6372] name failslab, interval 1, probability 0, space 0, times 0 [ 216.613624][ T6372] CPU: 0 UID: 0 PID: 6372 Comm: syz.0.2383 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 216.613659][ T6372] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 216.613673][ T6372] Call Trace: [ 216.613681][ T6372] [ 216.613690][ T6372] __dump_stack+0x21/0x30 [ 216.613721][ T6372] dump_stack_lvl+0x10c/0x190 [ 216.613748][ T6372] ? __cfi_dump_stack_lvl+0x10/0x10 [ 216.613773][ T6372] ? do_filp_open+0x1c6/0x3e0 [ 216.613802][ T6372] ? __x64_sys_openat+0x13a/0x170 [ 216.613823][ T6372] ? x64_sys_call+0xe69/0x2ee0 [ 216.613849][ T6372] ? do_syscall_64+0x58/0xf0 [ 216.613879][ T6372] dump_stack+0x19/0x20 [ 216.613900][ T6372] should_fail_ex+0x3d9/0x530 [ 216.613923][ T6372] should_failslab+0xac/0x100 [ 216.613953][ T6372] __kmalloc_cache_node_noprof+0x46/0x3d0 [ 216.613978][ T6372] ? __get_vm_area_node+0x154/0x3a0 [ 216.614000][ T6372] __get_vm_area_node+0x154/0x3a0 [ 216.614023][ T6372] __vmalloc_node_range_noprof+0x33c/0x1420 [ 216.614047][ T6372] ? xt_copy_counters+0x122/0x2c0 [ 216.614079][ T6372] ? __asan_memcpy+0x5a/0x80 [ 216.614103][ T6372] ? avc_has_perm_noaudit+0x286/0x360 [ 216.614125][ T6372] ? __cfi___vmalloc_node_range_noprof+0x10/0x10 [ 216.614150][ T6372] ? cred_has_capability+0x281/0x380 [ 216.614181][ T6372] ? selinux_perf_event_alloc+0x110/0x110 [ 216.614210][ T6372] ? is_bpf_text_address+0x17b/0x1a0 [ 216.614242][ T6372] ? xt_copy_counters+0x122/0x2c0 [ 216.614270][ T6372] vmalloc_noprof+0xfd/0x1d0 [ 216.614293][ T6372] ? xt_copy_counters+0x122/0x2c0 [ 216.614322][ T6372] ? sockopt_release_sock+0x5c/0x70 [ 216.614352][ T6372] ? __cfi_vmalloc_noprof+0x10/0x10 [ 216.614373][ T6372] ? do_ipv6_setsockopt+0x1d92/0x2ec0 [ 216.614402][ T6372] ? __kasan_check_write+0x18/0x20 [ 216.614428][ T6372] xt_copy_counters+0x122/0x2c0 [ 216.614457][ T6372] do_ip6t_set_ctl+0x159/0x8b0 [ 216.614486][ T6372] ? avc_has_perm_noaudit+0x268/0x360 [ 216.614509][ T6372] ? __cfi_do_ip6t_set_ctl+0x10/0x10 [ 216.614549][ T6372] ? __kasan_check_write+0x18/0x20 [ 216.614574][ T6372] ? mutex_unlock+0x8b/0x240 [ 216.614594][ T6372] ? __cfi_mutex_unlock+0x10/0x10 [ 216.614616][ T6372] nf_setsockopt+0x28d/0x2b0 [ 216.614640][ T6372] ipv6_setsockopt+0x130/0x170 [ 216.614667][ T6372] rawv6_setsockopt+0x23f/0x5a0 [ 216.614692][ T6372] ? __cfi_rawv6_setsockopt+0x10/0x10 [ 216.614716][ T6372] ? __cfi_vfs_write+0x10/0x10 [ 216.614743][ T6372] sock_common_setsockopt+0xb5/0xd0 [ 216.614768][ T6372] ? __cfi_sock_common_setsockopt+0x10/0x10 [ 216.614790][ T6372] do_sock_setsockopt+0x26a/0x400 [ 216.614822][ T6372] ? __cfi_do_sock_setsockopt+0x10/0x10 [ 216.614858][ T6372] __x64_sys_setsockopt+0x1b8/0x250 [ 216.614890][ T6372] x64_sys_call+0x2adc/0x2ee0 [ 216.614916][ T6372] do_syscall_64+0x58/0xf0 [ 216.614944][ T6372] ? clear_bhb_loop+0x35/0x90 [ 216.614977][ T6372] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 216.615007][ T6372] RIP: 0033:0x7f508558e929 [ 216.615025][ T6372] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 216.615044][ T6372] RSP: 002b:00007f5086464038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 216.615068][ T6372] RAX: ffffffffffffffda RBX: 00007f50857b5fa0 RCX: 00007f508558e929 [ 216.615086][ T6372] RDX: 0000000000000041 RSI: 0000000000000029 RDI: 0000000000000003 [ 216.615100][ T6372] RBP: 00007f5086464090 R08: 0000000000000068 R09: 0000000000000000 [ 216.615114][ T6372] R10: 0000200000000280 R11: 0000000000000246 R12: 0000000000000001 [ 216.615128][ T6372] R13: 0000000000000000 R14: 00007f50857b5fa0 R15: 00007fff0c269648 [ 216.615146][ T6372] [ 216.615156][ T6372] syz.0.2383: vmalloc error: size 64, vm_struct allocation failed, mode:0xcc0(GFP_KERNEL), nodemask=(null) [ 216.701162][ T2807] smsc95xx 4-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -32 [ 216.715707][ T6372] ,cpuset= [ 216.722436][ T2807] smsc95xx 4-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD [ 216.749683][ T6372] syz0 [ 216.753907][ T2807] smsc95xx 4-1:0.67 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000014: -71 [ 216.759787][ T6372] ,mems_allowed=0 [ 216.761855][ T2807] smsc95xx 4-1:0.67: probe with driver smsc95xx failed with error -71 [ 216.770723][ T6372] [ 216.780785][ T2807] usb 4-1: USB disconnect, device number 45 [ 216.810695][ T6372] CPU: 0 UID: 0 PID: 6372 Comm: syz.0.2383 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 216.810740][ T6372] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 216.810757][ T6372] Call Trace: [ 216.810767][ T6372] [ 216.810778][ T6372] __dump_stack+0x21/0x30 [ 216.810820][ T6372] dump_stack_lvl+0x10c/0x190 [ 216.810849][ T6372] ? __cfi_dump_stack_lvl+0x10/0x10 [ 216.810881][ T6372] dump_stack+0x19/0x20 [ 216.810909][ T6372] warn_alloc+0x1bc/0x2a0 [ 216.810934][ T6372] ? __cfi_warn_alloc+0x10/0x10 [ 216.810961][ T6372] ? __get_vm_area_node+0x392/0x3a0 [ 216.810988][ T6372] __vmalloc_node_range_noprof+0x361/0x1420 [ 216.811020][ T6372] ? __asan_memcpy+0x5a/0x80 [ 216.811047][ T6372] ? avc_has_perm_noaudit+0x286/0x360 [ 216.811074][ T6372] ? __cfi___vmalloc_node_range_noprof+0x10/0x10 [ 216.811101][ T6372] ? cred_has_capability+0x281/0x380 [ 216.811136][ T6372] ? selinux_perf_event_alloc+0x110/0x110 [ 216.811170][ T6372] ? is_bpf_text_address+0x17b/0x1a0 [ 216.811206][ T6372] ? xt_copy_counters+0x122/0x2c0 [ 216.811240][ T6372] vmalloc_noprof+0xfd/0x1d0 [ 216.811263][ T6372] ? xt_copy_counters+0x122/0x2c0 [ 216.811295][ T6372] ? sockopt_release_sock+0x5c/0x70 [ 216.811329][ T6372] ? __cfi_vmalloc_noprof+0x10/0x10 [ 216.811351][ T6372] ? do_ipv6_setsockopt+0x1d92/0x2ec0 [ 216.811384][ T6372] ? __kasan_check_write+0x18/0x20 [ 216.811411][ T6372] xt_copy_counters+0x122/0x2c0 [ 216.811445][ T6372] do_ip6t_set_ctl+0x159/0x8b0 [ 216.811476][ T6372] ? avc_has_perm_noaudit+0x268/0x360 [ 216.811502][ T6372] ? __cfi_do_ip6t_set_ctl+0x10/0x10 [ 216.811535][ T6372] ? __kasan_check_write+0x18/0x20 [ 216.811561][ T6372] ? mutex_unlock+0x8b/0x240 [ 216.811583][ T6372] ? __cfi_mutex_unlock+0x10/0x10 [ 216.811608][ T6372] nf_setsockopt+0x28d/0x2b0 [ 216.811635][ T6372] ipv6_setsockopt+0x130/0x170 [ 216.811666][ T6372] rawv6_setsockopt+0x23f/0x5a0 [ 216.811693][ T6372] ? __cfi_rawv6_setsockopt+0x10/0x10 [ 216.811725][ T6372] ? __cfi_vfs_write+0x10/0x10 [ 216.811754][ T6372] sock_common_setsockopt+0xb5/0xd0 [ 216.811782][ T6372] ? __cfi_sock_common_setsockopt+0x10/0x10 [ 216.811818][ T6372] do_sock_setsockopt+0x26a/0x400 [ 216.811855][ T6372] ? __cfi_do_sock_setsockopt+0x10/0x10 [ 216.811893][ T6372] __x64_sys_setsockopt+0x1b8/0x250 [ 216.811930][ T6372] x64_sys_call+0x2adc/0x2ee0 [ 216.811962][ T6372] do_syscall_64+0x58/0xf0 [ 216.811992][ T6372] ? clear_bhb_loop+0x35/0x90 [ 216.812029][ T6372] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 216.812063][ T6372] RIP: 0033:0x7f508558e929 [ 216.812083][ T6372] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 216.812106][ T6372] RSP: 002b:00007f5086464038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 216.812133][ T6372] RAX: ffffffffffffffda RBX: 00007f50857b5fa0 RCX: 00007f508558e929 [ 216.812152][ T6372] RDX: 0000000000000041 RSI: 0000000000000029 RDI: 0000000000000003 [ 216.812168][ T6372] RBP: 00007f5086464090 R08: 0000000000000068 R09: 0000000000000000 [ 216.812185][ T6372] R10: 0000200000000280 R11: 0000000000000246 R12: 0000000000000001 [ 216.812202][ T6372] R13: 0000000000000000 R14: 00007f50857b5fa0 R15: 00007fff0c269648 [ 216.812222][ T6372] [ 216.814229][ T6372] Mem-Info: [ 217.362832][ T6372] active_anon:9382 inactive_anon:4 isolated_anon:0 [ 217.362832][ T6372] active_file:20444 inactive_file:2261 isolated_file:0 [ 217.362832][ T6372] unevictable:0 dirty:164 writeback:0 [ 217.362832][ T6372] slab_reclaimable:7006 slab_unreclaimable:69356 [ 217.362832][ T6372] mapped:24575 shmem:163 pagetables:1090 [ 217.362832][ T6372] sec_pagetables:0 bounce:0 [ 217.362832][ T6372] kernel_misc_reclaimable:0 [ 217.362832][ T6372] free:1522813 free_pcp:2507 free_cma:0 [ 217.408894][ T6372] Node 0 active_anon:37528kB inactive_anon:16kB active_file:81776kB inactive_file:9044kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:98300kB dirty:656kB writeback:0kB shmem:652kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:4924kB pagetables:4360kB sec_pagetables:0kB all_unreclaimable? no [ 217.472701][ T6372] DMA32 free:2960212kB boost:0kB min:19088kB low:23860kB high:28632kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3145324kB managed:2966004kB mlocked:0kB bounce:0kB free_pcp:5792kB local_pcp:0kB free_cma:0kB [ 217.508071][ T6372] lowmem_reserve[]: 0 3921 3921 [ 217.513895][ T6372] Normal free:3131404kB boost:0kB min:25964kB low:32452kB high:38940kB reserved_highatomic:0KB free_highatomic:0KB active_anon:37928kB inactive_anon:16kB active_file:81776kB inactive_file:9044kB unevictable:0kB writepending:656kB present:5242880kB managed:4016120kB mlocked:0kB bounce:0kB free_pcp:3952kB local_pcp:1060kB free_cma:0kB [ 217.559093][ T6372] lowmem_reserve[]: 0 0 0 [ 217.564475][ T6372] DMA32: 7*4kB (M) 3*8kB (M) 4*16kB (M) 5*32kB (M) 5*64kB (M) 4*128kB (M) 3*256kB (M) 4*512kB (M) 5*1024kB (UM) 5*2048kB (M) 718*4096kB (M) = 2960212kB [ 217.580947][ T6372] Normal: 87*4kB (ME) 144*8kB (E) 104*16kB (ME) 664*32kB (UME) 368*64kB (UME) 103*128kB (UM) 73*256kB (UME) 36*512kB (UME) 29*1024kB (UME) 14*2048kB (UM) 726*4096kB (UM) = 3130332kB [ 217.600090][ T6372] 22868 total pagecache pages [ 217.605743][ T6392] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EFAULT } [ 217.605777][ T6372] 4 pages in swap cache [ 217.605775][ T6392] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EFAULT } my_pid:936 [ 217.619874][ T6372] Free swap = 124728kB [ 217.647180][ T6372] Total swap = 124996kB [ 217.659807][ T6372] 2097051 pages RAM [ 217.663943][ T6372] 0 pages HighMem/MovableOnly [ 217.669876][ T6372] 351520 pages reserved [ 217.679755][ T6372] 0 pages cma reserved [ 217.691201][ T6372] Memory allocations: [ 217.695249][ T6372] 0 B 0 init/main.c:1370 func:do_initcalls [ 217.702814][ T6372] 0 B 0 init/do_mounts.c:186 func:mount_root_generic [ 217.711064][ T6372] 0 B 0 init/do_mounts.c:158 func:do_mount_root [ 217.731254][ T6372] 0 B 0 init/do_mounts.c:352 func:mount_nodev_root [ 217.739668][ T6372] 0 B 0 init/do_mounts_rd.c:241 func:rd_load_image [ 217.748076][ T6372] 0 B 0 init/do_mounts_rd.c:72 func:identify_ramdisk_image [ 217.756740][ T6372] 0 B 0 init/initramfs.c:507 func:unpack_to_rootfs [ 217.764795][ T6372] 0 B 0 init/initramfs.c:508 func:unpack_to_rootfs [ 217.777539][ T6372] 0 B 0 init/initramfs.c:509 func:unpack_to_rootfs [ 217.785708][ T6372] 0 B 0 init/initramfs.c:101 func:find_link [ 218.030692][ T31] usb 4-1: new high-speed USB device number 46 using dummy_hcd [ 218.121848][ T6424] fuse: Unknown parameter 'rootmodw' [ 218.149018][ T6423] cgroup: fork rejected by pids controller in /syz5 [ 218.200686][ T31] usb 4-1: Using ep0 maxpacket: 32 [ 218.208342][ T31] usb 4-1: config 0 has an invalid interface number: 67 but max is 0 [ 218.218836][ T31] usb 4-1: config 0 has no interface number 0 [ 218.233495][ T31] usb 4-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57 [ 218.248829][ T31] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 218.264500][ T31] usb 4-1: Product: syz [ 218.269909][ T31] usb 4-1: Manufacturer: syz [ 218.275033][ T31] usb 4-1: SerialNumber: syz [ 218.282879][ T31] usb 4-1: config 0 descriptor?? [ 218.290910][ T31] smsc95xx v2.0.0 [ 218.307280][ T6535] FAULT_INJECTION: forcing a failure. [ 218.307280][ T6535] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 218.330279][ T6535] CPU: 1 UID: 0 PID: 6535 Comm: syz.0.2410 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 218.330326][ T6535] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 218.330343][ T6535] Call Trace: [ 218.330353][ T6535] [ 218.330364][ T6535] __dump_stack+0x21/0x30 [ 218.330396][ T6535] dump_stack_lvl+0x10c/0x190 [ 218.330425][ T6535] ? __cfi_dump_stack_lvl+0x10/0x10 [ 218.330455][ T6535] ? kstrtoull+0x13b/0x1e0 [ 218.330480][ T6535] dump_stack+0x19/0x20 [ 218.330507][ T6535] should_fail_ex+0x3d9/0x530 [ 218.330534][ T6535] should_fail+0xf/0x20 [ 218.330559][ T6535] should_fail_usercopy+0x1e/0x30 [ 218.330659][ T6535] _copy_from_user+0x22/0xb0 [ 218.330693][ T6535] ___sys_sendmsg+0x159/0x2a0 [ 218.330731][ T6535] ? __sys_sendmsg+0x280/0x280 [ 218.330768][ T6535] ? proc_fail_nth_write+0x17e/0x210 [ 218.330792][ T6535] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 218.330824][ T6535] __x64_sys_sendmsg+0x1eb/0x2c0 [ 218.330846][ T6535] ? fput+0x1a5/0x240 [ 218.330881][ T6535] ? __cfi___x64_sys_sendmsg+0x10/0x10 [ 218.330902][ T6535] ? ksys_write+0x1ef/0x250 [ 218.330933][ T6535] ? __kasan_check_read+0x15/0x20 [ 218.330961][ T6535] x64_sys_call+0x2a4c/0x2ee0 [ 218.330992][ T6535] do_syscall_64+0x58/0xf0 [ 218.331023][ T6535] ? clear_bhb_loop+0x35/0x90 [ 218.331059][ T6535] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 218.331094][ T6535] RIP: 0033:0x7f508558e929 [ 218.331116][ T6535] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 218.331137][ T6535] RSP: 002b:00007f5086464038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 218.331165][ T6535] RAX: ffffffffffffffda RBX: 00007f50857b5fa0 RCX: 00007f508558e929 [ 218.331184][ T6535] RDX: 000000000000c804 RSI: 0000200000000380 RDI: 0000000000000003 [ 218.331200][ T6535] RBP: 00007f5086464090 R08: 0000000000000000 R09: 0000000000000000 [ 218.331216][ T6535] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 218.331231][ T6535] R13: 0000000000000000 R14: 00007f50857b5fa0 R15: 00007fff0c269648 [ 218.331252][ T6535] [ 218.704148][ T306] bridge_slave_1: left allmulticast mode [ 218.709885][ T306] bridge_slave_1: left promiscuous mode [ 218.716109][ T306] bridge0: port 2(bridge_slave_1) entered disabled state [ 218.724314][ T306] bridge_slave_0: left allmulticast mode [ 218.730093][ T306] bridge_slave_0: left promiscuous mode [ 218.736175][ T306] bridge0: port 1(bridge_slave_0) entered disabled state [ 218.743792][ T31] smsc95xx 4-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -71 [ 218.756646][ T31] smsc95xx 4-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD [ 218.766031][ T31] smsc95xx 4-1:0.67 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000014: -71 [ 218.779388][ T31] smsc95xx 4-1:0.67: probe with driver smsc95xx failed with error -71 [ 218.801275][ T31] usb 4-1: USB disconnect, device number 46 [ 218.839424][ T6541] FAULT_INJECTION: forcing a failure. [ 218.839424][ T6541] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 218.860700][ T6541] CPU: 1 UID: 0 PID: 6541 Comm: syz.0.2414 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 218.860746][ T6541] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 218.860764][ T6541] Call Trace: [ 218.860773][ T6541] [ 218.860784][ T6541] __dump_stack+0x21/0x30 [ 218.860818][ T6541] dump_stack_lvl+0x10c/0x190 [ 218.860846][ T6541] ? __cfi_dump_stack_lvl+0x10/0x10 [ 218.860875][ T6541] dump_stack+0x19/0x20 [ 218.860902][ T6541] should_fail_ex+0x3d9/0x530 [ 218.860930][ T6541] should_fail+0xf/0x20 [ 218.860954][ T6541] should_fail_usercopy+0x1e/0x30 [ 218.860983][ T6541] _copy_to_user+0x24/0xa0 [ 218.861015][ T6541] simple_read_from_buffer+0xed/0x160 [ 218.861053][ T6541] proc_fail_nth_read+0x19e/0x210 [ 218.861078][ T6541] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 218.861102][ T6541] ? bpf_lsm_file_permission+0xd/0x20 [ 218.861130][ T6541] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 218.861153][ T6541] vfs_read+0x278/0xb60 [ 218.861182][ T6541] ? __cfi_vfs_read+0x10/0x10 [ 218.861209][ T6541] ? __kasan_check_write+0x18/0x20 [ 218.861236][ T6541] ? mutex_lock+0x92/0x1c0 [ 218.861259][ T6541] ? __cfi_mutex_lock+0x10/0x10 [ 218.861281][ T6541] ? __fget_files+0x2c5/0x340 [ 218.861315][ T6541] ksys_read+0x141/0x250 [ 218.861343][ T6541] ? __cfi_ksys_read+0x10/0x10 [ 218.861372][ T6541] ? __kasan_check_read+0x15/0x20 [ 218.861398][ T6541] __x64_sys_read+0x7f/0x90 [ 218.861426][ T6541] x64_sys_call+0x2638/0x2ee0 [ 218.861458][ T6541] do_syscall_64+0x58/0xf0 [ 218.861488][ T6541] ? clear_bhb_loop+0x35/0x90 [ 218.861525][ T6541] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 218.861559][ T6541] RIP: 0033:0x7f508558d33c [ 218.861579][ T6541] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 218.861601][ T6541] RSP: 002b:00007f5086464030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 218.861628][ T6541] RAX: ffffffffffffffda RBX: 00007f50857b5fa0 RCX: 00007f508558d33c [ 218.861647][ T6541] RDX: 000000000000000f RSI: 00007f50864640a0 RDI: 0000000000000003 [ 218.861674][ T6541] RBP: 00007f5086464090 R08: 0000000000000000 R09: 0000000000000000 [ 218.861690][ T6541] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 218.861706][ T6541] R13: 0000000000000001 R14: 00007f50857b5fa0 R15: 00007fff0c269648 [ 218.861727][ T6541] [ 219.197425][ T306] veth1_macvtap: left promiscuous mode [ 219.203702][ T306] veth0_vlan: left promiscuous mode [ 219.348896][ T6542] bridge0: port 1(bridge_slave_0) entered blocking state [ 219.363461][ T6542] bridge0: port 1(bridge_slave_0) entered disabled state [ 219.370974][ T6542] bridge_slave_0: entered allmulticast mode [ 219.374020][ T6560] block device autoloading is deprecated and will be removed. [ 219.387485][ T31] hid-generic 0007:01FF:0006.0014: unknown main item tag 0x7 [ 219.391158][ T6542] bridge_slave_0: entered promiscuous mode [ 219.395048][ T31] hid-generic 0007:01FF:0006.0014: unexpected long global item [ 219.409695][ T31] hid-generic 0007:01FF:0006.0014: probe with driver hid-generic failed with error -22 [ 219.419753][ T6542] bridge0: port 2(bridge_slave_1) entered blocking state [ 219.449613][ T6542] bridge0: port 2(bridge_slave_1) entered disabled state [ 219.460727][ T6542] bridge_slave_1: entered allmulticast mode [ 219.468334][ T6542] bridge_slave_1: entered promiscuous mode [ 219.562212][ T6542] bridge0: port 2(bridge_slave_1) entered blocking state [ 219.569334][ T6542] bridge0: port 2(bridge_slave_1) entered forwarding state [ 219.576718][ T6542] bridge0: port 1(bridge_slave_0) entered blocking state [ 219.583813][ T6542] bridge0: port 1(bridge_slave_0) entered forwarding state [ 219.594556][ T6567] FAULT_INJECTION: forcing a failure. [ 219.594556][ T6567] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 219.608768][ T6567] CPU: 1 UID: 0 PID: 6567 Comm: syz.3.2423 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 219.608812][ T6567] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 219.608830][ T6567] Call Trace: [ 219.608839][ T6567] [ 219.608849][ T6567] __dump_stack+0x21/0x30 [ 219.608885][ T6567] dump_stack_lvl+0x10c/0x190 [ 219.608914][ T6567] ? __cfi_dump_stack_lvl+0x10/0x10 [ 219.608943][ T6567] ? bpf_lsm_file_permission+0xd/0x20 [ 219.608971][ T6567] dump_stack+0x19/0x20 [ 219.608998][ T6567] should_fail_ex+0x3d9/0x530 [ 219.609026][ T6567] should_fail+0xf/0x20 [ 219.609050][ T6567] should_fail_usercopy+0x1e/0x30 [ 219.609078][ T6567] _copy_from_user+0x22/0xb0 [ 219.609111][ T6567] __x64_sys_clock_adjtime+0xe1/0x2c0 [ 219.609141][ T6567] ? __cfi_mutex_unlock+0x10/0x10 [ 219.609165][ T6567] ? __cfi___x64_sys_clock_adjtime+0x10/0x10 [ 219.609195][ T6567] ? __kasan_check_read+0x15/0x20 [ 219.609224][ T6567] x64_sys_call+0x1af1/0x2ee0 [ 219.609255][ T6567] do_syscall_64+0x58/0xf0 [ 219.609284][ T6567] ? clear_bhb_loop+0x35/0x90 [ 219.609321][ T6567] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 219.609355][ T6567] RIP: 0033:0x7f77b958e929 [ 219.609376][ T6567] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 219.609398][ T6567] RSP: 002b:00007f77b93eb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000131 [ 219.609426][ T6567] RAX: ffffffffffffffda RBX: 00007f77b97b5fa0 RCX: 00007f77b958e929 [ 219.609445][ T6567] RDX: 0000000000000000 RSI: 00002000000003c0 RDI: 0000000000000000 [ 219.609461][ T6567] RBP: 00007f77b93eb090 R08: 0000000000000000 R09: 0000000000000000 [ 219.609478][ T6567] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 219.609494][ T6567] R13: 0000000000000001 R14: 00007f77b97b5fa0 R15: 00007ffc629ce418 [ 219.609515][ T6567] [ 219.714446][ T6572] overlayfs: failed to resolve './file0': -2 [ 219.767800][ T6542] veth0_vlan: entered promiscuous mode [ 219.819061][ T6542] veth1_macvtap: entered promiscuous mode [ 219.901591][ T6585] FAULT_INJECTION: forcing a failure. [ 219.901591][ T6585] name fail_futex, interval 1, probability 0, space 0, times 1 [ 219.921268][ T6585] CPU: 0 UID: 0 PID: 6585 Comm: syz.3.2432 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 219.921305][ T6585] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 219.921318][ T6585] Call Trace: [ 219.921325][ T6585] [ 219.921334][ T6585] __dump_stack+0x21/0x30 [ 219.921366][ T6585] dump_stack_lvl+0x10c/0x190 [ 219.921390][ T6585] ? __cfi_dump_stack_lvl+0x10/0x10 [ 219.921415][ T6585] ? stack_depot_save_flags+0x38/0x800 [ 219.921442][ T6585] dump_stack+0x19/0x20 [ 219.921465][ T6585] should_fail_ex+0x3d9/0x530 [ 219.921488][ T6585] should_fail+0xf/0x20 [ 219.921509][ T6585] get_futex_key+0x215/0x930 [ 219.921537][ T6585] ? __cfi_get_futex_key+0x10/0x10 [ 219.921575][ T6585] futex_wait_multiple_setup+0x151/0x5a0 [ 219.921599][ T6585] ? __cfi_futex_wait_multiple_setup+0x10/0x10 [ 219.921623][ T6585] futex_wait_multiple+0xb1/0x360 [ 219.921645][ T6585] __se_sys_futex_waitv+0x54a/0x690 [ 219.921677][ T6585] ? __x64_sys_futex_waitv+0xf0/0xf0 [ 219.921706][ T6585] ? __fget_files+0x2c5/0x340 [ 219.921736][ T6585] ? __kasan_check_write+0x18/0x20 [ 219.921759][ T6585] ? fput+0x1a5/0x240 [ 219.921790][ T6585] ? __cfi_ksys_write+0x10/0x10 [ 219.921818][ T6585] __x64_sys_futex_waitv+0xc3/0xf0 [ 219.921848][ T6585] x64_sys_call+0x2dc4/0x2ee0 [ 219.921876][ T6585] do_syscall_64+0x58/0xf0 [ 219.921904][ T6585] ? clear_bhb_loop+0x35/0x90 [ 219.921936][ T6585] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 219.921966][ T6585] RIP: 0033:0x7f77b958e929 [ 219.921984][ T6585] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 219.922004][ T6585] RSP: 002b:00007f77b93eb038 EFLAGS: 00000246 ORIG_RAX: 00000000000001c1 [ 219.922028][ T6585] RAX: ffffffffffffffda RBX: 00007f77b97b5fa0 RCX: 00007f77b958e929 [ 219.922045][ T6585] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 00002000000006c0 [ 219.922071][ T6585] RBP: 00007f77b93eb090 R08: 0000000000000001 R09: 0000000000000000 [ 219.922096][ T6585] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 219.922109][ T6585] R13: 0000000000000001 R14: 00007f77b97b5fa0 R15: 00007ffc629ce418 [ 219.922128][ T6585] [ 220.150661][ T31] usb 2-1: new high-speed USB device number 36 using dummy_hcd [ 220.200784][ T2807] usb 6-1: new high-speed USB device number 30 using dummy_hcd [ 220.221859][ T36] audit: type=1400 audit(2000000181.301:553): avc: denied { map } for pid=6597 comm="syz.3.2437" path="/dev/vhost-vsock" dev="devtmpfs" ino=200 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 220.321364][ T31] usb 2-1: Using ep0 maxpacket: 16 [ 220.327665][ T31] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 220.338871][ T31] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 220.352593][ T31] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 220.362781][ T31] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 220.376294][ T31] usb 2-1: config 0 descriptor?? [ 220.381354][ T2807] usb 6-1: Using ep0 maxpacket: 16 [ 220.389489][ T2807] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 220.400288][ T2807] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 220.410733][ T2807] usb 6-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 220.452235][ T2807] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 220.481197][ T2807] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 220.489417][ T2807] usb 6-1: Product: syz [ 220.500663][ T2807] usb 6-1: Manufacturer: syz [ 220.505445][ T2807] usb 6-1: SerialNumber: syz [ 220.522213][ T2807] cdc_ncm 6-1:1.0: skipping garbage [ 220.527517][ T2807] cdc_ncm 6-1:1.0: invalid descriptor buffer length [ 220.550685][ T2807] cdc_ncm 6-1:1.0: CDC Union missing and no IAD found [ 220.561181][ T2807] cdc_ncm 6-1:1.0: bind() failure [ 220.651191][ T306] bridge_slave_1: left allmulticast mode [ 220.657043][ T306] bridge_slave_1: left promiscuous mode [ 220.663040][ T306] bridge0: port 2(bridge_slave_1) entered disabled state [ 220.670898][ T306] bridge_slave_0: left allmulticast mode [ 220.676564][ T306] bridge_slave_0: left promiscuous mode [ 220.682470][ T306] bridge0: port 1(bridge_slave_0) entered disabled state [ 220.727384][ T6595] rust_binder: Write failure EFAULT in pid:8 [ 220.727866][ T2219] usb 6-1: USB disconnect, device number 30 [ 220.759613][ T6610] bridge0: port 1(bridge_slave_0) entered blocking state [ 220.766783][ T6610] bridge0: port 1(bridge_slave_0) entered disabled state [ 220.773911][ T6610] bridge_slave_0: entered allmulticast mode [ 220.780275][ T6610] bridge_slave_0: entered promiscuous mode [ 220.787085][ T6610] bridge0: port 2(bridge_slave_1) entered blocking state [ 220.794188][ T6610] bridge0: port 2(bridge_slave_1) entered disabled state [ 220.801598][ T6610] bridge_slave_1: entered allmulticast mode [ 220.807963][ T6610] bridge_slave_1: entered promiscuous mode [ 220.820017][ T306] veth1_macvtap: left promiscuous mode [ 220.825651][ T306] veth0_vlan: left promiscuous mode [ 220.933602][ T6610] bridge0: port 2(bridge_slave_1) entered blocking state [ 220.940803][ T6610] bridge0: port 2(bridge_slave_1) entered forwarding state [ 220.948108][ T6610] bridge0: port 1(bridge_slave_0) entered blocking state [ 220.955210][ T6610] bridge0: port 1(bridge_slave_0) entered forwarding state [ 220.984789][ T305] bridge0: port 1(bridge_slave_0) entered disabled state [ 220.992517][ T305] bridge0: port 2(bridge_slave_1) entered disabled state [ 221.003242][ T305] bridge0: port 1(bridge_slave_0) entered blocking state [ 221.010324][ T305] bridge0: port 1(bridge_slave_0) entered forwarding state [ 221.019864][ T305] bridge0: port 2(bridge_slave_1) entered blocking state [ 221.026965][ T305] bridge0: port 2(bridge_slave_1) entered forwarding state [ 221.062039][ T6610] veth0_vlan: entered promiscuous mode [ 221.077332][ T6610] veth1_macvtap: entered promiscuous mode [ 221.109838][ T6615] overlayfs: "xino=on" is useless with all layers on same fs, ignore. [ 221.143814][ T6617] FAULT_INJECTION: forcing a failure. [ 221.143814][ T6617] name failslab, interval 1, probability 0, space 0, times 0 [ 221.158584][ T6617] CPU: 0 UID: 0 PID: 6617 Comm: syz.0.2442 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 221.158621][ T6617] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 221.158635][ T6617] Call Trace: [ 221.158644][ T6617] [ 221.158653][ T6617] __dump_stack+0x21/0x30 [ 221.158692][ T6617] dump_stack_lvl+0x10c/0x190 [ 221.158716][ T6617] ? __cfi_dump_stack_lvl+0x10/0x10 [ 221.158741][ T6617] ? avc_has_perm+0x144/0x220 [ 221.158757][ T6617] ? __cfi_avc_has_perm+0x10/0x10 [ 221.158773][ T6617] dump_stack+0x19/0x20 [ 221.158790][ T6617] should_fail_ex+0x3d9/0x530 [ 221.158814][ T6617] should_failslab+0xac/0x100 [ 221.158848][ T6617] __kmalloc_cache_noprof+0x41/0x3c0 [ 221.158873][ T6617] ? vhost_task_create+0x101/0x350 [ 221.158897][ T6617] ? __cfi_kvm_nx_huge_page_recovery_worker+0x10/0x10 [ 221.158923][ T6617] vhost_task_create+0x101/0x350 [ 221.158945][ T6617] ? __cfi_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10 [ 221.158980][ T6617] ? __cfi_vhost_task_create+0x10/0x10 [ 221.159009][ T6617] ? __cfi_vhost_task_fn+0x10/0x10 [ 221.159033][ T6617] ? __kasan_check_write+0x18/0x20 [ 221.159050][ T6617] ? mutex_lock+0x92/0x1c0 [ 221.159064][ T6617] ? __cfi_mutex_lock+0x10/0x10 [ 221.159078][ T6617] ? kernel_text_address+0xa9/0xe0 [ 221.159099][ T6617] kvm_mmu_post_init_vm+0x1a6/0x310 [ 221.159126][ T6617] kvm_arch_vcpu_ioctl_run+0xd7/0x1aa0 [ 221.159151][ T6617] ? _parse_integer_limit+0x195/0x1e0 [ 221.159172][ T6617] ? __cfi_kvm_arch_vcpu_ioctl_run+0x10/0x10 [ 221.159190][ T6617] ? kstrtoull+0x13b/0x1e0 [ 221.159204][ T6617] ? kstrtouint+0x78/0xf0 [ 221.159220][ T6617] ? ioctl_has_perm+0x1aa/0x4d0 [ 221.159255][ T6617] ? __asan_memcpy+0x5a/0x80 [ 221.159278][ T6617] ? ioctl_has_perm+0x3e0/0x4d0 [ 221.159306][ T6617] ? has_cap_mac_admin+0xd0/0xd0 [ 221.159331][ T6617] ? __kasan_check_write+0x18/0x20 [ 221.159347][ T6617] ? mutex_lock_killable+0x92/0x1c0 [ 221.159362][ T6617] ? __cfi_mutex_lock_killable+0x10/0x10 [ 221.159378][ T6617] ? proc_fail_nth_write+0x17e/0x210 [ 221.159401][ T6617] kvm_vcpu_ioctl+0x96f/0xee0 [ 221.159431][ T6617] ? __cfi_kvm_vcpu_ioctl+0x10/0x10 [ 221.159459][ T6617] ? __cfi_vfs_write+0x10/0x10 [ 221.159480][ T6617] ? __kasan_check_write+0x18/0x20 [ 221.159497][ T6617] ? mutex_unlock+0x8b/0x240 [ 221.159511][ T6617] ? __cfi_mutex_unlock+0x10/0x10 [ 221.159524][ T6617] ? __fget_files+0x2c5/0x340 [ 221.159564][ T6617] ? __fget_files+0x2c5/0x340 [ 221.159591][ T6617] ? bpf_lsm_file_ioctl+0xd/0x20 [ 221.159612][ T6617] ? security_file_ioctl+0x34/0xd0 [ 221.159634][ T6617] ? __cfi_kvm_vcpu_ioctl+0x10/0x10 [ 221.159654][ T6617] __se_sys_ioctl+0x132/0x1b0 [ 221.159677][ T6617] __x64_sys_ioctl+0x7f/0xa0 [ 221.159711][ T6617] x64_sys_call+0x1878/0x2ee0 [ 221.159738][ T6617] do_syscall_64+0x58/0xf0 [ 221.159764][ T6617] ? clear_bhb_loop+0x35/0x90 [ 221.159793][ T6617] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 221.159816][ T6617] RIP: 0033:0x7fbee598e929 [ 221.159830][ T6617] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 221.159850][ T6617] RSP: 002b:00007fbee672a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 221.159874][ T6617] RAX: ffffffffffffffda RBX: 00007fbee5bb5fa0 RCX: 00007fbee598e929 [ 221.159890][ T6617] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 221.159903][ T6617] RBP: 00007fbee672a090 R08: 0000000000000000 R09: 0000000000000000 [ 221.159916][ T6617] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 221.159926][ T6617] R13: 0000000000000000 R14: 00007fbee5bb5fa0 R15: 00007ffc4670ea98 [ 221.159939][ T6617] [ 221.840265][ T6641] rust_binder: Write failure EFAULT in pid:14 [ 222.099864][ T6660] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:23 [ 222.131329][ T6656] binder: Bad value for 'stats' [ 222.360669][ T36] audit: type=1400 audit(2000000183.431:554): avc: granted { setsecparam } for pid=6684 comm="syz.0.2471" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security [ 222.469525][ T6692] FAULT_INJECTION: forcing a failure. [ 222.469525][ T6692] name failslab, interval 1, probability 0, space 0, times 0 [ 222.482351][ T6692] CPU: 0 UID: 0 PID: 6692 Comm: syz.0.2473 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 222.482385][ T6692] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 222.482400][ T6692] Call Trace: [ 222.482406][ T6692] [ 222.482415][ T6692] __dump_stack+0x21/0x30 [ 222.482445][ T6692] dump_stack_lvl+0x10c/0x190 [ 222.482468][ T6692] ? __cfi_dump_stack_lvl+0x10/0x10 [ 222.482492][ T6692] dump_stack+0x19/0x20 [ 222.482513][ T6692] should_fail_ex+0x3d9/0x530 [ 222.482536][ T6692] should_failslab+0xac/0x100 [ 222.482565][ T6692] kmem_cache_alloc_node_noprof+0x45/0x3b0 [ 222.482590][ T6692] ? __alloc_skb+0x10c/0x370 [ 222.482616][ T6692] ? _raw_spin_unlock_irqrestore+0x4a/0x70 [ 222.482644][ T6692] __alloc_skb+0x10c/0x370 [ 222.482669][ T6692] ? __cfi_ref_tracker_alloc+0x10/0x10 [ 222.482695][ T6692] __ip_append_data+0x28de/0x3a70 [ 222.482730][ T6692] ? __cfi_raw_getfrag+0x10/0x10 [ 222.482755][ T6692] ? _raw_spin_lock_bh+0x90/0x120 [ 222.482778][ T6692] ? __cfi__raw_spin_lock_bh+0x10/0x10 [ 222.482808][ T6692] ? ip_setup_cork+0xa00/0xa00 [ 222.482834][ T6692] ? __kasan_check_read+0x15/0x20 [ 222.482857][ T6692] ? ip_setup_cork+0x583/0xa00 [ 222.482885][ T6692] ip_append_data+0x10a/0x1a0 [ 222.482913][ T6692] ? __cfi_raw_getfrag+0x10/0x10 [ 222.482938][ T6692] raw_sendmsg+0xe30/0x1390 [ 222.482965][ T6692] ? __cfi_raw_sendmsg+0x10/0x10 [ 222.482991][ T6692] ? proc_fail_nth_write+0x17e/0x210 [ 222.483014][ T6692] ? __fget_files+0x2c5/0x340 [ 222.483041][ T6692] ? check_stack_object+0x107/0x140 [ 222.483066][ T6692] ? inet_send_prepare+0x64/0x4f0 [ 222.483086][ T6692] ? __cfi_raw_sendmsg+0x10/0x10 [ 222.483111][ T6692] inet_sendmsg+0x113/0x120 [ 222.483131][ T6692] __sys_sendto+0x588/0x6f0 [ 222.483172][ T6692] ? __cfi___sys_sendto+0x10/0x10 [ 222.483199][ T6692] ? __kasan_check_write+0x18/0x20 [ 222.483218][ T6692] ? __cfi_ksys_write+0x10/0x10 [ 222.483238][ T6692] ? fd_install+0x175/0x2e0 [ 222.483267][ T6692] __x64_sys_sendto+0xe9/0x100 [ 222.483302][ T6692] x64_sys_call+0x2c2c/0x2ee0 [ 222.483328][ T6692] do_syscall_64+0x58/0xf0 [ 222.483352][ T6692] ? clear_bhb_loop+0x35/0x90 [ 222.483376][ T6692] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 222.483403][ T6692] RIP: 0033:0x7fbee598e929 [ 222.483423][ T6692] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 222.483443][ T6692] RSP: 002b:00007fbee672a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 222.483466][ T6692] RAX: ffffffffffffffda RBX: 00007fbee5bb5fa0 RCX: 00007fbee598e929 [ 222.483484][ T6692] RDX: 0000000000000009 RSI: 0000200000000040 RDI: 0000000000000003 [ 222.483494][ T6692] RBP: 00007fbee672a090 R08: 0000200000000080 R09: 0000000000000010 [ 222.483505][ T6692] R10: 0000000000004000 R11: 0000000000000246 R12: 0000000000000001 [ 222.483516][ T6692] R13: 0000000000000000 R14: 00007fbee5bb5fa0 R15: 00007ffc4670ea98 [ 222.483529][ T6692] [ 222.497872][ T6694] FAULT_INJECTION: forcing a failure. [ 222.497872][ T6694] name failslab, interval 1, probability 0, space 0, times 0 [ 222.796269][ T6694] CPU: 0 UID: 0 PID: 6694 Comm: syz.0.2474 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 222.796308][ T6694] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 222.796324][ T6694] Call Trace: [ 222.796334][ T6694] [ 222.796345][ T6694] __dump_stack+0x21/0x30 [ 222.796390][ T6694] dump_stack_lvl+0x10c/0x190 [ 222.796416][ T6694] ? __cfi_dump_stack_lvl+0x10/0x10 [ 222.796443][ T6694] ? __cfi_mas_store_prealloc+0x10/0x10 [ 222.796468][ T6694] dump_stack+0x19/0x20 [ 222.796492][ T6694] should_fail_ex+0x3d9/0x530 [ 222.796524][ T6694] should_failslab+0xac/0x100 [ 222.796554][ T6694] kmem_cache_alloc_noprof+0x42/0x3a0 [ 222.796580][ T6694] ? vm_area_dup+0x42/0x5f0 [ 222.796613][ T6694] vm_area_dup+0x42/0x5f0 [ 222.796646][ T6694] __split_vma+0x1bd/0xa80 [ 222.796677][ T6694] ? vms_gather_munmap_vmas+0xdd0/0xdd0 [ 222.796711][ T6694] ? __cfi_avc_has_perm+0x10/0x10 [ 222.796736][ T6694] vma_modify+0x5fa/0x1430 [ 222.796773][ T6694] vma_modify_flags+0x177/0x1c0 [ 222.796807][ T6694] mprotect_fixup+0x40a/0x890 [ 222.796842][ T6694] ? __cfi_selinux_file_mprotect+0x10/0x10 [ 222.796878][ T6694] ? __cfi_mprotect_fixup+0x10/0x10 [ 222.796911][ T6694] ? bpf_lsm_file_mprotect+0xd/0x20 [ 222.796938][ T6694] do_mprotect_pkey+0xaab/0xea0 [ 222.796975][ T6694] ? prot_none_test+0x30/0x30 [ 222.797009][ T6694] ? mutex_unlock+0x8b/0x240 [ 222.797046][ T6694] ? fput+0x1a5/0x240 [ 222.797083][ T6694] ? __cfi_ksys_write+0x10/0x10 [ 222.797112][ T6694] ? __kasan_check_read+0x15/0x20 [ 222.797138][ T6694] __x64_sys_mprotect+0x84/0xa0 [ 222.797173][ T6694] x64_sys_call+0x2590/0x2ee0 [ 222.797204][ T6694] do_syscall_64+0x58/0xf0 [ 222.797243][ T6694] ? clear_bhb_loop+0x35/0x90 [ 222.797280][ T6694] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 222.797314][ T6694] RIP: 0033:0x7fbee598e929 [ 222.797336][ T6694] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 222.797359][ T6694] RSP: 002b:00007fbee672a038 EFLAGS: 00000246 ORIG_RAX: 000000000000000a [ 222.797386][ T6694] RAX: ffffffffffffffda RBX: 00007fbee5bb5fa0 RCX: 00007fbee598e929 [ 222.797405][ T6694] RDX: 0000000000000004 RSI: 0000000000001000 RDI: 0000200000ffc000 [ 222.797431][ T6694] RBP: 00007fbee672a090 R08: 0000000000000000 R09: 0000000000000000 [ 222.797448][ T6694] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 222.797463][ T6694] R13: 0000000000000001 R14: 00007fbee5bb5fa0 R15: 00007ffc4670ea98 [ 222.797483][ T6694] [ 223.052933][ T31] usbhid 2-1:0.0: can't add hid device: -71 [ 223.058933][ T31] usbhid 2-1:0.0: probe with driver usbhid failed with error -71 [ 223.067812][ T6696] FAULT_INJECTION: forcing a failure. [ 223.067812][ T6696] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 223.069478][ T31] usb 2-1: USB disconnect, device number 36 [ 223.081094][ T6696] CPU: 0 UID: 0 PID: 6696 Comm: syz.1.2475 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 223.081136][ T6696] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 223.081153][ T6696] Call Trace: [ 223.081163][ T6696] [ 223.081175][ T6696] __dump_stack+0x21/0x30 [ 223.081209][ T6696] dump_stack_lvl+0x10c/0x190 [ 223.081238][ T6696] ? __cfi_dump_stack_lvl+0x10/0x10 [ 223.081279][ T6696] dump_stack+0x19/0x20 [ 223.081306][ T6696] should_fail_ex+0x3d9/0x530 [ 223.081335][ T6696] should_fail+0xf/0x20 [ 223.081360][ T6696] should_fail_usercopy+0x1e/0x30 [ 223.081389][ T6696] _copy_from_user+0x22/0xb0 [ 223.081429][ T6696] __copy_msghdr+0x3ec/0x5d0 [ 223.081468][ T6696] ___sys_sendmsg+0x1a6/0x2a0 [ 223.081505][ T6696] ? __sys_sendmsg+0x280/0x280 [ 223.081542][ T6696] ? proc_fail_nth_write+0x17e/0x210 [ 223.081565][ T6696] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 223.081598][ T6696] __x64_sys_sendmsg+0x1eb/0x2c0 [ 223.081620][ T6696] ? fput+0x1a5/0x240 [ 223.081657][ T6696] ? __cfi___x64_sys_sendmsg+0x10/0x10 [ 223.081679][ T6696] ? ksys_write+0x1ef/0x250 [ 223.081709][ T6696] ? __kasan_check_read+0x15/0x20 [ 223.081739][ T6696] x64_sys_call+0x2a4c/0x2ee0 [ 223.081769][ T6696] do_syscall_64+0x58/0xf0 [ 223.081802][ T6696] ? clear_bhb_loop+0x35/0x90 [ 223.081838][ T6696] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 223.081873][ T6696] RIP: 0033:0x7f6e86d8e929 [ 223.081893][ T6696] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 223.081915][ T6696] RSP: 002b:00007f6e87b3a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 223.081943][ T6696] RAX: ffffffffffffffda RBX: 00007f6e86fb5fa0 RCX: 00007f6e86d8e929 [ 223.081965][ T6696] RDX: 000000000000c804 RSI: 0000200000000380 RDI: 0000000000000003 [ 223.081982][ T6696] RBP: 00007f6e87b3a090 R08: 0000000000000000 R09: 0000000000000000 [ 223.081998][ T6696] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 223.082014][ T6696] R13: 0000000000000000 R14: 00007f6e86fb5fa0 R15: 00007ffd81e75a18 [ 223.082035][ T6696] [ 223.126997][ T36] audit: type=1400 audit(2000000184.191:555): avc: denied { relabelto } for pid=6699 comm="syz.1.2477" name="file0" dev="tmpfs" ino=470 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:etc_mail_t:s0" [ 223.208300][ T6708] input: syz1 as /devices/virtual/input/input123 [ 223.212477][ T36] audit: type=1400 audit(2000000184.191:556): avc: denied { associate } for pid=6699 comm="syz.1.2477" name="file0" dev="tmpfs" ino=470 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 srawcon="system_u:object_r:etc_mail_t:s0" [ 223.212514][ T36] audit: type=1400 audit(2000000184.201:557): avc: denied { rmdir } for pid=5662 comm="syz-executor" name="file0" dev="tmpfs" ino=470 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:etc_mail_t:s0" [ 223.226438][ T6708] input: failed to attach handler leds to device input123, error: -6 [ 223.496973][ T6717] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EFAULT } [ 223.497006][ T6717] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EFAULT } my_pid:48 [ 223.522070][ T36] audit: type=1400 audit(2000000184.601:558): avc: denied { ioctl } for pid=6718 comm="syz.3.2485" path="/dev/cpu/0/msr" dev="devtmpfs" ino=16 ioctlcmd=0x63a1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1 [ 223.582882][ T6723] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22 [ 223.595063][ T6727] FAULT_INJECTION: forcing a failure. [ 223.595063][ T6727] name failslab, interval 1, probability 0, space 0, times 0 [ 223.599692][ T6723] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 223.609878][ T6727] CPU: 0 UID: 0 PID: 6727 Comm: syz.0.2488 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 223.609920][ T6727] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 223.609937][ T6727] Call Trace: [ 223.609957][ T6727] [ 223.609968][ T6727] __dump_stack+0x21/0x30 [ 223.610002][ T6727] dump_stack_lvl+0x10c/0x190 [ 223.610029][ T6727] ? __cfi_dump_stack_lvl+0x10/0x10 [ 223.610058][ T6727] ? pointer+0xdd0/0xdd0 [ 223.610088][ T6727] dump_stack+0x19/0x20 [ 223.610114][ T6727] should_fail_ex+0x3d9/0x530 [ 223.610142][ T6727] should_failslab+0xac/0x100 [ 223.610174][ T6727] __kmalloc_node_track_caller_noprof+0x68/0x440 [ 223.610205][ T6727] ? sidtab_sid2str_get+0x139/0x370 [ 223.610237][ T6727] kmemdup_noprof+0x31/0x80 [ 223.610264][ T6727] sidtab_sid2str_get+0x139/0x370 [ 223.610296][ T6727] security_sid_to_context_core+0x30d/0x5d0 [ 223.610333][ T6727] security_sid_to_context+0x2e/0x50 [ 223.610362][ T6727] avc_audit_post_callback+0x107/0x780 [ 223.610389][ T6727] ? __cfi_avc_audit_post_callback+0x10/0x10 [ 223.610416][ T6727] ? audit_log_untrustedstring+0xea/0x100 [ 223.610441][ T6727] ? __cfi_avc_audit_post_callback+0x10/0x10 [ 223.610466][ T6727] common_lsm_audit+0x147a/0x1860 [ 223.610490][ T6727] ? __cfi_avc_audit_post_callback+0x10/0x10 [ 223.610516][ T6727] ? __cfi_common_lsm_audit+0x10/0x10 [ 223.610538][ T6727] ? _raw_spin_lock_irqsave+0xaf/0x150 [ 223.610572][ T6727] ? call_rcu_hurry+0x30/0x30 [ 223.610608][ T6727] ? avc_update_node+0x2f1/0x9c0 [ 223.610632][ T6727] slow_avc_audit+0x18d/0x1f0 [ 223.610657][ T6727] ? __cfi_slow_avc_audit+0x10/0x10 [ 223.610683][ T6727] ? avc_has_perm_noaudit+0x2b9/0x360 [ 223.610710][ T6727] avc_has_perm+0x1cd/0x220 [ 223.610733][ T6727] ? __cfi_avc_has_perm+0x10/0x10 [ 223.610760][ T6727] selinux_socket_connect_helper+0x281/0x8a0 [ 223.610797][ T6727] ? selinux_file_permission+0x309/0xb30 [ 223.610832][ T6727] ? socket_type_to_security_class+0x840/0x840 [ 223.610870][ T6727] ? proc_fail_nth_write+0x17e/0x210 [ 223.610893][ T6727] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 223.610918][ T6727] ? bpf_lsm_file_permission+0xd/0x20 [ 223.610953][ T6727] ? vfs_write+0x8ba/0xe80 [ 223.610982][ T6727] ? __fget_files+0x2c5/0x340 [ 223.611013][ T6727] selinux_socket_connect+0x27/0x40 [ 223.611040][ T6727] security_socket_connect+0x56/0xd0 [ 223.611069][ T6727] __sys_connect+0x2c3/0x440 [ 223.611103][ T6727] ? __cfi___sys_connect+0x10/0x10 [ 223.611140][ T6727] ? __kasan_check_read+0x15/0x20 [ 223.611168][ T6727] __x64_sys_connect+0x7e/0x90 [ 223.611199][ T6727] x64_sys_call+0x1c2f/0x2ee0 [ 223.611231][ T6727] do_syscall_64+0x58/0xf0 [ 223.611261][ T6727] ? clear_bhb_loop+0x35/0x90 [ 223.611297][ T6727] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 223.611330][ T6727] RIP: 0033:0x7fbee598e929 [ 223.611352][ T6727] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 223.611373][ T6727] RSP: 002b:00007fbee672a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 223.611401][ T6727] RAX: ffffffffffffffda RBX: 00007fbee5bb5fa0 RCX: 00007fbee598e929 [ 223.611420][ T6727] RDX: 0000000000000010 RSI: 00002000000000c0 RDI: 0000000000000003 [ 223.611437][ T6727] RBP: 00007fbee672a090 R08: 0000000000000000 R09: 0000000000000000 [ 223.611452][ T6727] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 223.611467][ T6727] R13: 0000000000000000 R14: 00007fbee5bb5fa0 R15: 00007ffc4670ea98 [ 223.611488][ T6727] [ 223.611738][ T36] audit: type=1400 audit(2000000184.671:559): avc: denied { connect } for pid=6725 comm="syz.0.2488" ssid=135 tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 223.624369][ T6723] rust_binder: Write failure EINVAL in pid:38 [ 223.676729][ T6733] FAULT_INJECTION: forcing a failure. [ 223.676729][ T6733] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 223.680851][ T31] usb 2-1: new high-speed USB device number 37 using dummy_hcd [ 223.685674][ T6733] CPU: 0 UID: 0 PID: 6733 Comm: syz.0.2491 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 223.685713][ T6733] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 223.685728][ T6733] Call Trace: [ 223.685737][ T6733] [ 223.685749][ T6733] __dump_stack+0x21/0x30 [ 223.685783][ T6733] dump_stack_lvl+0x10c/0x190 [ 223.685812][ T6733] ? __cfi_dump_stack_lvl+0x10/0x10 [ 223.685842][ T6733] dump_stack+0x19/0x20 [ 223.685869][ T6733] should_fail_ex+0x3d9/0x530 [ 223.685897][ T6733] should_fail+0xf/0x20 [ 223.685921][ T6733] should_fail_usercopy+0x1e/0x30 [ 223.685971][ T6733] _copy_from_user+0x22/0xb0 [ 223.686005][ T6733] __x64_sys_sigaltstack+0x110/0x280 [ 223.686039][ T6733] ? __cfi___x64_sys_sigaltstack+0x10/0x10 [ 223.686073][ T6733] ? __kasan_check_read+0x15/0x20 [ 223.686102][ T6733] x64_sys_call+0x2c20/0x2ee0 [ 223.686132][ T6733] do_syscall_64+0x58/0xf0 [ 223.686166][ T6733] ? clear_bhb_loop+0x35/0x90 [ 223.686201][ T6733] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 223.686236][ T6733] RIP: 0033:0x7fbee598e929 [ 223.686257][ T6733] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 223.686279][ T6733] RSP: 002b:00007fbee672a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000083 [ 223.686306][ T6733] RAX: ffffffffffffffda RBX: 00007fbee5bb5fa0 RCX: 00007fbee598e929 [ 223.686325][ T6733] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000500 [ 223.686342][ T6733] RBP: 00007fbee672a090 R08: 0000000000000000 R09: 0000000000000000 [ 223.686359][ T6733] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 223.686375][ T6733] R13: 0000000000000001 R14: 00007fbee5bb5fa0 R15: 00007ffc4670ea98 [ 223.686395][ T6733] [ 223.719839][ T6737] 9pnet_fd: Insufficient options for proto=fd [ 223.910643][ T31] usb 2-1: Using ep0 maxpacket: 16 [ 224.034397][ T6744] binder: Bad value for 'max' [ 224.037638][ T31] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 224.229349][ T31] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 224.242666][ T31] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 224.252702][ T31] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 224.262084][ T31] usb 2-1: config 0 descriptor?? [ 224.490854][ T6758] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:69 [ 224.597251][ T36] audit: type=1326 audit(2000000185.671:560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6770 comm="syz.0.2509" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fbee598e929 code=0x0 [ 224.631261][ T6769] rust_binder: BINDER_SET_CONTEXT_MGR already set [ 224.631602][ T6769] rust_binder: Failure when writing BR_NOOP at beginning of buffer. [ 224.638091][ T6769] rust_binder: Read failure Err(EFAULT) in pid:103 [ 224.704861][ T36] audit: type=1400 audit(2000000185.781:561): avc: denied { execute } for pid=6778 comm="syz.3.2512" path="/sys/power/pm_print_times" dev="sysfs" ino=1467 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=file permissive=1 [ 224.762071][ T6784] FAULT_INJECTION: forcing a failure. [ 224.762071][ T6784] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 224.775429][ T6784] CPU: 1 UID: 0 PID: 6784 Comm: syz.3.2513 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 224.775472][ T6784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 224.775488][ T6784] Call Trace: [ 224.775499][ T6784] [ 224.775510][ T6784] __dump_stack+0x21/0x30 [ 224.775548][ T6784] dump_stack_lvl+0x10c/0x190 [ 224.775578][ T6784] ? __cfi_dump_stack_lvl+0x10/0x10 [ 224.775609][ T6784] dump_stack+0x19/0x20 [ 224.775635][ T6784] should_fail_ex+0x3d9/0x530 [ 224.775663][ T6784] should_fail_alloc_page+0xeb/0x110 [ 224.775697][ T6784] __alloc_pages_noprof+0x19d/0x6c0 [ 224.775723][ T6784] ? __cfi___alloc_pages_noprof+0x10/0x10 [ 224.775750][ T6784] ? __kasan_check_write+0x18/0x20 [ 224.775778][ T6784] __folio_alloc_noprof+0x14/0x80 [ 224.775802][ T6784] folio_prealloc+0x46/0x240 [ 224.775835][ T6784] do_pte_missing+0x1603/0x3e50 [ 224.775871][ T6784] ? _raw_spin_unlock+0x45/0x60 [ 224.775904][ T6784] ? __cfi___pmd_alloc+0x10/0x10 [ 224.775935][ T6784] ? pte_marker_clear+0x1b0/0x1b0 [ 224.775973][ T6784] handle_mm_fault+0x1166/0x1b90 [ 224.776008][ T6784] ? __cfi_handle_mm_fault+0x10/0x10 [ 224.776039][ T6784] ? mtree_load+0x47a/0x690 [ 224.776068][ T6784] ? vma_is_secretmem+0x11/0x50 [ 224.776088][ T6784] __get_user_pages+0x1169/0x22d0 [ 224.776129][ T6784] ? x64_sys_call+0xe69/0x2ee0 [ 224.776165][ T6784] ? populate_vma_page_range+0x230/0x230 [ 224.776200][ T6784] ? proc_fail_nth_write+0x17e/0x210 [ 224.776224][ T6784] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 224.776249][ T6784] faultin_page_range+0x17e/0x7b0 [ 224.776285][ T6784] madvise_populate+0xd6/0x2b0 [ 224.776312][ T6784] ? mmap_read_lock+0x70/0x70 [ 224.776336][ T6784] ? __asan_memset+0x39/0x50 [ 224.776362][ T6784] ? blk_start_plug+0x72/0x1c0 [ 224.776390][ T6784] do_madvise+0x4e0/0x8b0 [ 224.776415][ T6784] ? __kasan_check_write+0x18/0x20 [ 224.776443][ T6784] ? __cfi_do_madvise+0x10/0x10 [ 224.776467][ T6784] ? ksys_write+0x1ef/0x250 [ 224.776499][ T6784] __x64_sys_madvise+0xae/0xc0 [ 224.776525][ T6784] x64_sys_call+0x20c3/0x2ee0 [ 224.776555][ T6784] do_syscall_64+0x58/0xf0 [ 224.776585][ T6784] ? clear_bhb_loop+0x35/0x90 [ 224.776621][ T6784] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 224.776656][ T6784] RIP: 0033:0x7f77b958e929 [ 224.776676][ T6784] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 224.776699][ T6784] RSP: 002b:00007f77b93eb038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 224.776726][ T6784] RAX: ffffffffffffffda RBX: 00007f77b97b5fa0 RCX: 00007f77b958e929 [ 224.776746][ T6784] RDX: 0000000000000017 RSI: 0000000000002000 RDI: 0000200000ffc000 [ 224.776761][ T6784] RBP: 00007f77b93eb090 R08: 0000000000000000 R09: 0000000000000000 [ 224.776777][ T6784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 224.776793][ T6784] R13: 0000000000000001 R14: 00007f77b97b5fa0 R15: 00007ffc629ce418 [ 224.776814][ T6784] [ 225.105392][ T6787] rust_binder: Write failure EINVAL in pid:117 [ 225.478291][ T6793] FAULT_INJECTION: forcing a failure. [ 225.478291][ T6793] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 225.499776][ T6793] CPU: 1 UID: 0 PID: 6793 Comm: syz.0.2516 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 225.499821][ T6793] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 225.499843][ T6793] Call Trace: [ 225.499853][ T6793] [ 225.499864][ T6793] __dump_stack+0x21/0x30 [ 225.499899][ T6793] dump_stack_lvl+0x10c/0x190 [ 225.499928][ T6793] ? __cfi_dump_stack_lvl+0x10/0x10 [ 225.499958][ T6793] dump_stack+0x19/0x20 [ 225.499984][ T6793] should_fail_ex+0x3d9/0x530 [ 225.500012][ T6793] should_fail+0xf/0x20 [ 225.500036][ T6793] should_fail_usercopy+0x1e/0x30 [ 225.500065][ T6793] _copy_from_iter+0x56e/0x14b0 [ 225.500099][ T6793] ? __cfi__copy_from_iter+0x10/0x10 [ 225.500141][ T6793] ? check_stack_object+0x82/0x140 [ 225.500170][ T6793] ? __virt_addr_valid+0x2a6/0x380 [ 225.500205][ T6793] ? __check_object_size+0x455/0x620 [ 225.500235][ T6793] netlink_sendmsg+0x680/0xaf0 [ 225.500272][ T6793] ? __cfi_netlink_sendmsg+0x10/0x10 [ 225.500308][ T6793] ? bpf_lsm_socket_sendmsg+0xd/0x20 [ 225.500345][ T6793] ? security_socket_sendmsg+0x33/0xd0 [ 225.500374][ T6793] ? __cfi_netlink_sendmsg+0x10/0x10 [ 225.500410][ T6793] ____sys_sendmsg+0xa15/0xa70 [ 225.500449][ T6793] ? __sys_sendmsg_sock+0x50/0x50 [ 225.500487][ T6793] ? import_iovec+0x81/0xb0 [ 225.500520][ T6793] ___sys_sendmsg+0x220/0x2a0 [ 225.500556][ T6793] ? __sys_sendmsg+0x280/0x280 [ 225.500591][ T6793] ? proc_fail_nth_write+0x17e/0x210 [ 225.500610][ T6793] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 225.500641][ T6793] __x64_sys_sendmsg+0x1eb/0x2c0 [ 225.500662][ T6793] ? fput+0x1a5/0x240 [ 225.500697][ T6793] ? __cfi___x64_sys_sendmsg+0x10/0x10 [ 225.500719][ T6793] ? ksys_write+0x1ef/0x250 [ 225.500750][ T6793] ? __kasan_check_read+0x15/0x20 [ 225.500778][ T6793] x64_sys_call+0x2a4c/0x2ee0 [ 225.500808][ T6793] do_syscall_64+0x58/0xf0 [ 225.500840][ T6793] ? clear_bhb_loop+0x35/0x90 [ 225.500871][ T6793] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 225.500904][ T6793] RIP: 0033:0x7fbee598e929 [ 225.500925][ T6793] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 225.500945][ T6793] RSP: 002b:00007fbee672a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 225.500973][ T6793] RAX: ffffffffffffffda RBX: 00007fbee5bb5fa0 RCX: 00007fbee598e929 [ 225.500992][ T6793] RDX: 0000000000000004 RSI: 00002000000042c0 RDI: 0000000000000003 [ 225.501008][ T6793] RBP: 00007fbee672a090 R08: 0000000000000000 R09: 0000000000000000 [ 225.501024][ T6793] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 225.501040][ T6793] R13: 0000000000000000 R14: 00007fbee5bb5fa0 R15: 00007ffc4670ea98 [ 225.501060][ T6793] [ 225.773044][ T2807] usb 4-1: new high-speed USB device number 47 using dummy_hcd [ 225.818112][ T6795] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:76 [ 225.937057][ T2807] usb 4-1: config 17 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 225.957962][ T2807] usb 4-1: config 17 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 225.969072][ T2807] usb 4-1: config 17 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 225.980647][ T2807] usb 4-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00 [ 225.989775][ T2807] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 225.999618][ T6791] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22 [ 226.027682][ T6801] FAULT_INJECTION: forcing a failure. [ 226.027682][ T6801] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 226.050686][ T6801] CPU: 1 UID: 0 PID: 6801 Comm: syz.0.2519 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 226.050732][ T6801] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 226.050752][ T6801] Call Trace: [ 226.050761][ T6801] [ 226.050772][ T6801] __dump_stack+0x21/0x30 [ 226.050808][ T6801] dump_stack_lvl+0x10c/0x190 [ 226.050836][ T6801] ? __cfi_dump_stack_lvl+0x10/0x10 [ 226.050864][ T6801] ? bpf_lsm_file_permission+0xd/0x20 [ 226.050891][ T6801] ? vfs_write+0x8ba/0xe80 [ 226.050918][ T6801] dump_stack+0x19/0x20 [ 226.050945][ T6801] should_fail_ex+0x3d9/0x530 [ 226.050974][ T6801] should_fail+0xf/0x20 [ 226.051025][ T6801] should_fail_usercopy+0x1e/0x30 [ 226.051054][ T6801] _copy_to_user+0x24/0xa0 [ 226.051087][ T6801] put_itimerspec64+0x169/0x1e0 [ 226.051122][ T6801] ? __cfi_put_itimerspec64+0x10/0x10 [ 226.051158][ T6801] ? _raw_spin_unlock_irqrestore+0x4a/0x70 [ 226.051193][ T6801] ? do_timer_gettime+0xf3/0x140 [ 226.051271][ T6801] __x64_sys_timer_gettime+0xee/0x150 [ 226.051296][ T6801] ? __cfi___x64_sys_timer_gettime+0x10/0x10 [ 226.051323][ T6801] ? __kasan_check_read+0x15/0x20 [ 226.051352][ T6801] x64_sys_call+0x2788/0x2ee0 [ 226.051384][ T6801] do_syscall_64+0x58/0xf0 [ 226.051416][ T6801] ? clear_bhb_loop+0x35/0x90 [ 226.051453][ T6801] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 226.051490][ T6801] RIP: 0033:0x7fbee598e929 [ 226.051511][ T6801] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 226.051533][ T6801] RSP: 002b:00007fbee672a038 EFLAGS: 00000246 ORIG_RAX: 00000000000000e0 [ 226.051559][ T6801] RAX: ffffffffffffffda RBX: 00007fbee5bb5fa0 RCX: 00007fbee598e929 [ 226.051578][ T6801] RDX: 0000000000000000 RSI: 0000200000000540 RDI: 0000000000000000 [ 226.051594][ T6801] RBP: 00007fbee672a090 R08: 0000000000000000 R09: 0000000000000000 [ 226.051611][ T6801] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 226.051626][ T6801] R13: 0000000000000000 R14: 00007fbee5bb5fa0 R15: 00007ffc4670ea98 [ 226.051647][ T6801] [ 226.282316][ T31] usbhid 2-1:0.0: can't add hid device: -71 [ 226.288632][ T31] usbhid 2-1:0.0: probe with driver usbhid failed with error -71 [ 226.307035][ T31] usb 2-1: USB disconnect, device number 37 [ 226.337880][ T6806] input: syz0 as /devices/virtual/input/input125 [ 226.484892][ T6817] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:93 [ 226.743043][ T6832] 9pnet_fd: Insufficient options for proto=fd [ 226.857899][ T6842] rust_binder: BC_CLEAR_FREEZE_NOTIFICATION invalid ref 1 [ 226.865176][ T6842] rust_binder: Write failure EINVAL in pid:114 [ 226.900691][ T31] usb 2-1: new high-speed USB device number 38 using dummy_hcd [ 226.940661][ T36] audit: type=1400 audit(2000000188.011:562): avc: denied { read append } for pid=6843 comm="syz.0.2539" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 226.965275][ T36] audit: type=1400 audit(2000000188.021:563): avc: denied { open } for pid=6843 comm="syz.0.2539" path="/52/file0" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 226.995184][ T6844] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 227.070808][ T31] usb 2-1: Using ep0 maxpacket: 16 [ 227.077263][ T31] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 227.088579][ T31] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 227.101983][ T31] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 227.111356][ T31] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 227.124336][ T31] usb 2-1: config 0 descriptor?? [ 227.597674][ T6846] rust_binder: Write failure EFAULT in pid:121 [ 227.662114][ T2807] aiptek 4-1:17.0: Aiptek using 400 ms programming speed [ 227.678932][ T2807] input: Aiptek as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:17.0/input/input124 [ 227.694547][ T2807] usb 4-1: USB disconnect, device number 47 [ 227.694683][ C0] aiptek 4-1:17.0: aiptek_irq - usb_submit_urb failed with result -19 [ 227.885856][ T6852] FAULT_INJECTION: forcing a failure. [ 227.885856][ T6852] name failslab, interval 1, probability 0, space 0, times 0 [ 227.920629][ T6852] CPU: 0 UID: 0 PID: 6852 Comm: syz.0.2541 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 227.920665][ T6852] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 227.920678][ T6852] Call Trace: [ 227.920686][ T6852] [ 227.920702][ T6852] __dump_stack+0x21/0x30 [ 227.920732][ T6852] dump_stack_lvl+0x10c/0x190 [ 227.920756][ T6852] ? __cfi_dump_stack_lvl+0x10/0x10 [ 227.920782][ T6852] ? is_bpf_text_address+0x17b/0x1a0 [ 227.920812][ T6852] dump_stack+0x19/0x20 [ 227.920835][ T6852] should_fail_ex+0x3d9/0x530 [ 227.920858][ T6852] should_failslab+0xac/0x100 [ 227.920881][ T6852] kmem_cache_alloc_noprof+0x42/0x3a0 [ 227.920907][ T6852] ? vm_area_dup+0x42/0x5f0 [ 227.920937][ T6852] vm_area_dup+0x42/0x5f0 [ 227.920968][ T6852] __split_vma+0x1bd/0xa80 [ 227.920989][ T6852] ? kasan_save_track+0x4f/0x80 [ 227.921009][ T6852] ? vms_gather_munmap_vmas+0xdd0/0xdd0 [ 227.921028][ T6852] ? inode_init_always_gfp+0x756/0x9e0 [ 227.921061][ T6852] ? do_sys_openat2+0x12c/0x1c0 [ 227.921081][ T6852] ? __x64_sys_openat+0x13a/0x170 [ 227.921100][ T6852] ? x64_sys_call+0xe69/0x2ee0 [ 227.921126][ T6852] ? do_syscall_64+0x58/0xf0 [ 227.921154][ T6852] vma_modify+0x36d/0x1430 [ 227.921176][ T6852] vma_modify_flags_name+0x17b/0x1b0 [ 227.921208][ T6852] madvise_update_vma+0x212/0x7e0 [ 227.921231][ T6852] ? __ia32_sys_process_madvise+0xf0/0xf0 [ 227.921259][ T6852] madvise_vma_behavior+0xefa/0x2d40 [ 227.921281][ T6852] ? __cfi_madvise_vma_behavior+0x10/0x10 [ 227.921298][ T6852] ? is_bpf_text_address+0x17b/0x1a0 [ 227.921320][ T6852] ? kernel_text_address+0xa9/0xe0 [ 227.921342][ T6852] ? __kernel_text_address+0x11/0x40 [ 227.921365][ T6852] ? unwind_get_return_address+0x51/0x90 [ 227.921385][ T6852] ? __cfi_stack_trace_consume_entry+0x10/0x10 [ 227.921412][ T6852] ? arch_stack_walk+0x10b/0x170 [ 227.921434][ T6852] ? _parse_integer_limit+0x195/0x1e0 [ 227.921451][ T6852] ? mtree_range_walk+0x573/0x730 [ 227.921468][ T6852] ? mas_prev_slot+0xab4/0xb60 [ 227.921492][ T6852] ? mas_prev+0x5f/0xa0 [ 227.921514][ T6852] ? find_vma_prev+0xfd/0x170 [ 227.921536][ T6852] ? __cfi_find_vma_prev+0x10/0x10 [ 227.921562][ T6852] ? proc_fail_nth_write+0x17e/0x210 [ 227.921578][ T6852] ? bpf_lsm_file_permission+0xd/0x20 [ 227.921595][ T6852] ? vfs_write+0x8ba/0xe80 [ 227.921613][ T6852] madvise_walk_vmas+0x1ae/0x2e0 [ 227.921635][ T6852] ? __kasan_check_write+0x18/0x20 [ 227.921659][ T6852] ? __cfi_madvise_vma_behavior+0x10/0x10 [ 227.921681][ T6852] ? madvise_set_anon_name+0x610/0x610 [ 227.921710][ T6852] ? __asan_memset+0x39/0x50 [ 227.921727][ T6852] ? blk_start_plug+0x72/0x1c0 [ 227.921746][ T6852] do_madvise+0x508/0x8b0 [ 227.921761][ T6852] ? __kasan_check_write+0x18/0x20 [ 227.921786][ T6852] ? __cfi_do_madvise+0x10/0x10 [ 227.921807][ T6852] ? ksys_write+0x1ef/0x250 [ 227.921834][ T6852] __x64_sys_madvise+0xae/0xc0 [ 227.921857][ T6852] x64_sys_call+0x20c3/0x2ee0 [ 227.921877][ T6852] do_syscall_64+0x58/0xf0 [ 227.921896][ T6852] ? clear_bhb_loop+0x35/0x90 [ 227.921925][ T6852] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 227.921957][ T6852] RIP: 0033:0x7fbee598e929 [ 227.921975][ T6852] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 227.921993][ T6852] RSP: 002b:00007fbee672a038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 227.922014][ T6852] RAX: ffffffffffffffda RBX: 00007fbee5bb5fa0 RCX: 00007fbee598e929 [ 227.922026][ T6852] RDX: 000000000000000a RSI: 0000000000001000 RDI: 0000200000ffd000 [ 227.922037][ T6852] RBP: 00007fbee672a090 R08: 0000000000000000 R09: 0000000000000000 [ 227.922048][ T6852] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 227.922057][ T6852] R13: 0000000000000001 R14: 00007fbee5bb5fa0 R15: 00007ffc4670ea98 [ 227.922077][ T6852] [ 228.201003][ T6854] 9pnet_fd: Insufficient options for proto=fd [ 228.418697][ T6862] FAULT_INJECTION: forcing a failure. [ 228.418697][ T6862] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 228.432026][ T6862] CPU: 1 UID: 0 PID: 6862 Comm: syz.0.2546 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 228.432066][ T6862] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 228.432083][ T6862] Call Trace: [ 228.432091][ T6862] [ 228.432102][ T6862] __dump_stack+0x21/0x30 [ 228.432139][ T6862] dump_stack_lvl+0x10c/0x190 [ 228.432168][ T6862] ? __cfi_dump_stack_lvl+0x10/0x10 [ 228.432198][ T6862] dump_stack+0x19/0x20 [ 228.432226][ T6862] should_fail_ex+0x3d9/0x530 [ 228.432254][ T6862] should_fail+0xf/0x20 [ 228.432278][ T6862] should_fail_usercopy+0x1e/0x30 [ 228.432306][ T6862] _copy_to_user+0x24/0xa0 [ 228.432340][ T6862] simple_read_from_buffer+0xed/0x160 [ 228.432379][ T6862] proc_fail_nth_read+0x19e/0x210 [ 228.432403][ T6862] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 228.432427][ T6862] ? bpf_lsm_file_permission+0xd/0x20 [ 228.432454][ T6862] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 228.432477][ T6862] vfs_read+0x278/0xb60 [ 228.432503][ T6862] ? fput+0x1a5/0x240 [ 228.432538][ T6862] ? __cfi_vfs_read+0x10/0x10 [ 228.432564][ T6862] ? __kasan_check_write+0x18/0x20 [ 228.432591][ T6862] ? mutex_lock+0x92/0x1c0 [ 228.432614][ T6862] ? __cfi_mutex_lock+0x10/0x10 [ 228.432635][ T6862] ? __fget_files+0x2c5/0x340 [ 228.432670][ T6862] ksys_read+0x141/0x250 [ 228.432698][ T6862] ? __cfi_ksys_read+0x10/0x10 [ 228.432726][ T6862] ? __kasan_check_read+0x15/0x20 [ 228.432754][ T6862] __x64_sys_read+0x7f/0x90 [ 228.432782][ T6862] x64_sys_call+0x2638/0x2ee0 [ 228.432813][ T6862] do_syscall_64+0x58/0xf0 [ 228.432845][ T6862] ? clear_bhb_loop+0x35/0x90 [ 228.432887][ T6862] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 228.432922][ T6862] RIP: 0033:0x7fbee598d33c [ 228.432943][ T6862] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 228.432966][ T6862] RSP: 002b:00007fbee672a030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 228.432992][ T6862] RAX: ffffffffffffffda RBX: 00007fbee5bb5fa0 RCX: 00007fbee598d33c [ 228.433011][ T6862] RDX: 000000000000000f RSI: 00007fbee672a0a0 RDI: 0000000000000004 [ 228.433027][ T6862] RBP: 00007fbee672a090 R08: 0000000000000000 R09: 0000000000000000 [ 228.433043][ T6862] R10: 0000000000010140 R11: 0000000000000246 R12: 0000000000000001 [ 228.433059][ T6862] R13: 0000000000000000 R14: 00007fbee5bb5fa0 R15: 00007ffc4670ea98 [ 228.433079][ T6862] [ 228.712305][ T6864] xfrm0: mtu less than device minimum [ 228.722261][ T6864] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EFAULT } [ 228.722302][ T6864] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EFAULT } my_pid:128 [ 228.761318][ T6870] binder: Unknown parameter ' 1è:1¢«!hؘ¹hÞ¯€' [ 228.814201][ T6875] 9pnet_fd: Insufficient options for proto=fd [ 229.088767][ T6897] 9pnet_fd: Insufficient options for proto=fd [ 229.137250][ T6901] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:150 [ 229.200643][ T403] usb 4-1: new high-speed USB device number 48 using dummy_hcd [ 229.321401][ T6910] rust_binder: BINDER_SET_CONTEXT_MGR already set [ 229.390646][ T403] usb 4-1: Using ep0 maxpacket: 16 [ 229.421712][ T403] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 229.440636][ T403] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 229.453640][ T403] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 229.462795][ T403] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 229.480897][ T403] usb 4-1: config 0 descriptor?? [ 229.664989][ T31] usbhid 2-1:0.0: can't add hid device: -71 [ 229.676823][ T31] usbhid 2-1:0.0: probe with driver usbhid failed with error -71 [ 229.700254][ T31] usb 2-1: USB disconnect, device number 38 [ 229.888331][ T403] microsoft 0003:045E:07DA.0015: item fetching failed at offset 14/34 [ 229.900785][ T403] microsoft 0003:045E:07DA.0015: parse failed [ 229.906905][ T403] microsoft 0003:045E:07DA.0015: probe with driver microsoft failed with error -22 [ 230.001140][ T31] usb 2-1: new high-speed USB device number 39 using dummy_hcd [ 230.089736][ T2807] usb 4-1: USB disconnect, device number 48 [ 230.150648][ T31] usb 2-1: Using ep0 maxpacket: 16 [ 230.157064][ T31] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 230.169563][ T31] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 230.196942][ T31] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 230.206567][ T31] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 230.221383][ T31] usb 2-1: config 0 descriptor?? [ 230.245392][ T6917] 9pnet_fd: Insufficient options for proto=fd [ 230.305445][ T6921] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:168 [ 230.406944][ T6925] random: crng reseeded on system resumption [ 230.632740][ T31] usbhid 2-1:0.0: can't add hid device: -71 [ 230.643284][ T31] usbhid 2-1:0.0: probe with driver usbhid failed with error -71 [ 230.653217][ T31] usb 2-1: USB disconnect, device number 39 [ 230.720672][ T2807] usb 1-1: new high-speed USB device number 41 using dummy_hcd [ 230.872813][ T2807] usb 1-1: Using ep0 maxpacket: 16 [ 230.886734][ T2807] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 230.899603][ T2807] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 230.913800][ T2807] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 230.923300][ T2807] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 230.933217][ T2807] usb 1-1: config 0 descriptor?? [ 230.977806][ T36] audit: type=1400 audit(2000000192.051:564): avc: denied { ioctl } for pid=6944 comm="syz.3.2582" path="/dev/fuse" dev="devtmpfs" ino=23 ioctlcmd=0xe501 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1 [ 231.540655][ T403] usb 2-1: new high-speed USB device number 40 using dummy_hcd [ 231.700640][ T403] usb 2-1: Using ep0 maxpacket: 16 [ 231.711344][ T403] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 231.730625][ T403] usb 2-1: config 0 has no interfaces? [ 231.736165][ T403] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 231.745298][ T403] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 231.760948][ T403] usb 2-1: config 0 descriptor?? [ 231.798084][ T6975] FAULT_INJECTION: forcing a failure. [ 231.798084][ T6975] name failslab, interval 1, probability 0, space 0, times 0 [ 231.811073][ T6975] CPU: 0 UID: 0 PID: 6975 Comm: syz.5.2593 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 231.811111][ T6975] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 231.811126][ T6975] Call Trace: [ 231.811136][ T6975] [ 231.811146][ T6975] __dump_stack+0x21/0x30 [ 231.811177][ T6975] dump_stack_lvl+0x10c/0x190 [ 231.811202][ T6975] ? __cfi_dump_stack_lvl+0x10/0x10 [ 231.811227][ T6975] ? __cfi_handle_mm_fault+0x10/0x10 [ 231.811250][ T6975] dump_stack+0x19/0x20 [ 231.811267][ T6975] should_fail_ex+0x3d9/0x530 [ 231.811290][ T6975] should_failslab+0xac/0x100 [ 231.811320][ T6975] kmem_cache_alloc_noprof+0x42/0x3a0 [ 231.811344][ T6975] ? io_submit_one+0x136/0x18c0 [ 231.811374][ T6975] ? __kasan_check_write+0x18/0x20 [ 231.811392][ T6975] io_submit_one+0x136/0x18c0 [ 231.811418][ T6975] ? lookup_ioctx+0x360/0x360 [ 231.811445][ T6975] ? asm_exc_page_fault+0x2b/0x30 [ 231.811480][ T6975] ? __get_user_4+0x1a/0x40 [ 231.811502][ T6975] ? lookup_ioctx+0x208/0x360 [ 231.811532][ T6975] __se_sys_io_submit+0x164/0x3c0 [ 231.811553][ T6975] ? __x64_sys_io_submit+0xa0/0xa0 [ 231.811573][ T6975] ? ksys_write+0x1ef/0x250 [ 231.811597][ T6975] ? __kasan_check_read+0x15/0x20 [ 231.811623][ T6975] __x64_sys_io_submit+0x7f/0xa0 [ 231.811651][ T6975] x64_sys_call+0x1c95/0x2ee0 [ 231.811693][ T6975] do_syscall_64+0x58/0xf0 [ 231.811712][ T6975] ? clear_bhb_loop+0x35/0x90 [ 231.811737][ T6975] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 231.811770][ T6975] RIP: 0033:0x7fdafff8e929 [ 231.811788][ T6975] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 231.811919][ T6975] RSP: 002b:00007fdb00d9e038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 231.811950][ T6975] RAX: ffffffffffffffda RBX: 00007fdb001b5fa0 RCX: 00007fdafff8e929 [ 231.811967][ T6975] RDX: 0000200000001c40 RSI: 0000000000000001 RDI: 00007fdb00d7d000 [ 231.811983][ T6975] RBP: 00007fdb00d9e090 R08: 0000000000000000 R09: 0000000000000000 [ 231.811997][ T6975] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 231.812010][ T6975] R13: 0000000000000000 R14: 00007fdb001b5fa0 R15: 00007fffc3506978 [ 231.812031][ T6975] [ 231.968845][ T6972] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 232.053917][ T6972] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 232.064499][ T403] usb 2-1: USB disconnect, device number 40 [ 232.132826][ T6979] overlayfs: "xino=on" is useless with all layers on same fs, ignore. [ 232.182883][ T36] audit: type=1400 audit(2000000193.261:565): avc: denied { ioctl } for pid=6976 comm="syz.5.2594" path="/dev/usbmon2" dev="devtmpfs" ino=97 ioctlcmd=0x942c scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1 [ 232.376994][ T6990] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:51 [ 232.378326][ T6990] rust_binder: Read failure Err(EFAULT) in pid:51 [ 232.600693][ T403] usb 4-1: new high-speed USB device number 49 using dummy_hcd [ 232.673474][ T6995] FAULT_INJECTION: forcing a failure. [ 232.673474][ T6995] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 232.686749][ T6995] CPU: 1 UID: 0 PID: 6995 Comm: syz.1.2601 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 232.686789][ T6995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 232.686802][ T6995] Call Trace: [ 232.686809][ T6995] [ 232.686819][ T6995] __dump_stack+0x21/0x30 [ 232.686849][ T6995] dump_stack_lvl+0x10c/0x190 [ 232.686874][ T6995] ? __cfi_dump_stack_lvl+0x10/0x10 [ 232.686899][ T6995] ? vsnprintf+0x7b4/0x1aa0 [ 232.686934][ T6995] ? __asan_memcpy+0x5a/0x80 [ 232.686951][ T6995] dump_stack+0x19/0x20 [ 232.686968][ T6995] should_fail_ex+0x3d9/0x530 [ 232.686985][ T6995] should_fail+0xf/0x20 [ 232.687001][ T6995] should_fail_usercopy+0x1e/0x30 [ 232.687018][ T6995] _copy_from_user+0x22/0xb0 [ 232.687039][ T6995] kstrtouint_from_user+0xc2/0x150 [ 232.687056][ T6995] ? __cfi_kstrtouint_from_user+0x10/0x10 [ 232.687072][ T6995] ? selinux_file_permission+0x309/0xb30 [ 232.687096][ T6995] ? __cfi_selinux_file_permission+0x10/0x10 [ 232.687126][ T6995] proc_fail_nth_write+0x89/0x210 [ 232.687141][ T6995] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 232.687155][ T6995] ? key_put+0xc8/0x290 [ 232.687175][ T6995] ? bpf_lsm_file_permission+0xd/0x20 [ 232.687192][ T6995] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 232.687206][ T6995] vfs_write+0x3c0/0xe80 [ 232.687225][ T6995] ? __cfi_vfs_write+0x10/0x10 [ 232.687243][ T6995] ? __kasan_check_write+0x18/0x20 [ 232.687259][ T6995] ? mutex_lock+0x92/0x1c0 [ 232.687273][ T6995] ? __cfi_mutex_lock+0x10/0x10 [ 232.687287][ T6995] ? __fget_files+0x2c5/0x340 [ 232.687314][ T6995] ksys_write+0x141/0x250 [ 232.687335][ T6995] ? __cfi_ksys_write+0x10/0x10 [ 232.687354][ T6995] ? __kasan_check_read+0x15/0x20 [ 232.687371][ T6995] __x64_sys_write+0x7f/0x90 [ 232.687390][ T6995] x64_sys_call+0x271c/0x2ee0 [ 232.687410][ T6995] do_syscall_64+0x58/0xf0 [ 232.687430][ T6995] ? clear_bhb_loop+0x35/0x90 [ 232.687453][ T6995] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 232.687476][ T6995] RIP: 0033:0x7f6e86d8d3df [ 232.687490][ T6995] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48 [ 232.687504][ T6995] RSP: 002b:00007f6e87b3a030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 232.687522][ T6995] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f6e86d8d3df [ 232.687534][ T6995] RDX: 0000000000000001 RSI: 00007f6e87b3a0a0 RDI: 0000000000000003 [ 232.687553][ T6995] RBP: 00007f6e87b3a090 R08: 0000000000000000 R09: 0000000000000000 [ 232.687564][ T6995] R10: 0000000000001001 R11: 0000000000000293 R12: 0000000000000001 [ 232.687574][ T6995] R13: 0000000000000000 R14: 00007f6e86fb5fa0 R15: 00007ffd81e75a18 [ 232.687587][ T6995] [ 232.811933][ T403] usb 4-1: config 17 has an invalid descriptor of length 0, skipping remainder of the config [ 232.969086][ T403] usb 4-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00 [ 232.978193][ T403] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 232.991227][ T403] aiptek 4-1:17.0: interface has no int in endpoints, but must have minimum 1 [ 233.116570][ T7018] FAULT_INJECTION: forcing a failure. [ 233.116570][ T7018] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 233.129933][ T7018] CPU: 0 UID: 0 PID: 7018 Comm: syz.1.2611 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 233.129967][ T7018] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 233.129981][ T7018] Call Trace: [ 233.129990][ T7018] [ 233.130000][ T7018] __dump_stack+0x21/0x30 [ 233.130034][ T7018] dump_stack_lvl+0x10c/0x190 [ 233.130053][ T7018] ? __cfi_dump_stack_lvl+0x10/0x10 [ 233.130073][ T7018] dump_stack+0x19/0x20 [ 233.130090][ T7018] should_fail_ex+0x3d9/0x530 [ 233.130113][ T7018] should_fail+0xf/0x20 [ 233.130135][ T7018] should_fail_usercopy+0x1e/0x30 [ 233.130159][ T7018] strncpy_from_user+0x28/0x270 [ 233.130182][ T7018] keyctl_restrict_keyring+0xc8/0x210 [ 233.130201][ T7018] ? __cfi_keyctl_restrict_keyring+0x10/0x10 [ 233.130228][ T7018] ? vfs_write+0x8ba/0xe80 [ 233.130247][ T7018] __se_sys_keyctl+0x277/0xda0 [ 233.130272][ T7018] ? __x64_sys_keyctl+0xf0/0xf0 [ 233.130294][ T7018] ? __kasan_check_write+0x18/0x20 [ 233.130317][ T7018] ? mutex_unlock+0x8b/0x240 [ 233.130335][ T7018] ? __cfi_mutex_unlock+0x10/0x10 [ 233.130351][ T7018] ? __fget_files+0x2c5/0x340 [ 233.130372][ T7018] ? __kasan_check_write+0x18/0x20 [ 233.130389][ T7018] ? fput+0x1a5/0x240 [ 233.130420][ T7018] ? ksys_write+0x1ef/0x250 [ 233.130444][ T7018] ? __cfi_ksys_write+0x10/0x10 [ 233.130470][ T7018] __x64_sys_keyctl+0xc3/0xf0 [ 233.130487][ T7018] x64_sys_call+0x996/0x2ee0 [ 233.130507][ T7018] do_syscall_64+0x58/0xf0 [ 233.130527][ T7018] ? clear_bhb_loop+0x35/0x90 [ 233.130558][ T7018] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 233.130593][ T7018] RIP: 0033:0x7f6e86d8e929 [ 233.130612][ T7018] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 233.130632][ T7018] RSP: 002b:00007f6e87b3a038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 233.130655][ T7018] RAX: ffffffffffffffda RBX: 00007f6e86fb5fa0 RCX: 00007f6e86d8e929 [ 233.130671][ T7018] RDX: 0000200000000400 RSI: 000000003ab3df46 RDI: 000000000000001d [ 233.130687][ T7018] RBP: 00007f6e87b3a090 R08: 0000000000000000 R09: 0000000000000000 [ 233.130702][ T7018] R10: 0000200000000440 R11: 0000000000000246 R12: 0000000000000001 [ 233.130716][ T7018] R13: 0000000000000000 R14: 00007f6e86fb5fa0 R15: 00007ffd81e75a18 [ 233.130734][ T7018] [ 233.394769][ T7022] FAULT_INJECTION: forcing a failure. [ 233.394769][ T7022] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 233.410464][ T7022] CPU: 1 UID: 0 PID: 7022 Comm: syz.1.2613 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 233.410505][ T7022] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 233.410527][ T7022] Call Trace: [ 233.410534][ T7022] [ 233.410543][ T7022] __dump_stack+0x21/0x30 [ 233.410570][ T7022] dump_stack_lvl+0x10c/0x190 [ 233.410595][ T7022] ? __cfi_dump_stack_lvl+0x10/0x10 [ 233.410622][ T7022] dump_stack+0x19/0x20 [ 233.410642][ T7022] should_fail_ex+0x3d9/0x530 [ 233.410664][ T7022] should_fail+0xf/0x20 [ 233.410683][ T7022] should_fail_usercopy+0x1e/0x30 [ 233.410705][ T7022] _copy_to_user+0x24/0xa0 [ 233.410730][ T7022] copy_to_sockptr+0x72/0xa0 [ 233.410749][ T7022] do_tcp_getsockopt+0x1c99/0x26b0 [ 233.410769][ T7022] ? __cfi_do_tcp_getsockopt+0x10/0x10 [ 233.410789][ T7022] ? _parse_integer_limit+0x195/0x1e0 [ 233.410811][ T7022] ? _parse_integer+0x2e/0x40 [ 233.410831][ T7022] ? avc_has_perm_noaudit+0x268/0x360 [ 233.410851][ T7022] ? __asan_memcpy+0x5a/0x80 [ 233.410874][ T7022] ? avc_has_perm_noaudit+0x286/0x360 [ 233.410894][ T7022] ? avc_has_perm+0x144/0x220 [ 233.410914][ T7022] ? __cfi_avc_has_perm+0x10/0x10 [ 233.410935][ T7022] ? selinux_socket_getsockopt+0x284/0x380 [ 233.410959][ T7022] ? vfs_write+0x8ba/0xe80 [ 233.410982][ T7022] tcp_getsockopt+0x77/0x130 [ 233.411002][ T7022] sock_common_getsockopt+0xaf/0xd0 [ 233.411025][ T7022] ? __cfi_sock_common_getsockopt+0x10/0x10 [ 233.411046][ T7022] do_sock_getsockopt+0x3a3/0x6d0 [ 233.411078][ T7022] ? __cfi_do_sock_getsockopt+0x10/0x10 [ 233.411106][ T7022] ? __fget_files+0x2c5/0x340 [ 233.411134][ T7022] __x64_sys_getsockopt+0x1d5/0x280 [ 233.411166][ T7022] x64_sys_call+0x10db/0x2ee0 [ 233.411193][ T7022] do_syscall_64+0x58/0xf0 [ 233.411220][ T7022] ? clear_bhb_loop+0x35/0x90 [ 233.411252][ T7022] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 233.411283][ T7022] RIP: 0033:0x7f6e86d8e929 [ 233.411302][ T7022] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 233.411321][ T7022] RSP: 002b:00007f6e87b3a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 233.411345][ T7022] RAX: ffffffffffffffda RBX: 00007f6e86fb5fa0 RCX: 00007f6e86d8e929 [ 233.411361][ T7022] RDX: 0000000000000023 RSI: 0000000000000006 RDI: 0000000000000003 [ 233.411373][ T7022] RBP: 00007f6e87b3a090 R08: 0000200000000740 R09: 0000000000000000 [ 233.411386][ T7022] R10: 0000200000000700 R11: 0000000000000246 R12: 0000000000000001 [ 233.411400][ T7022] R13: 0000000000000000 R14: 00007f6e86fb5fa0 R15: 00007ffd81e75a18 [ 233.411418][ T7022] [ 233.417344][ T7026] FAULT_INJECTION: forcing a failure. [ 233.417344][ T7026] name failslab, interval 1, probability 0, space 0, times 0 [ 233.497260][ T2807] usbhid 1-1:0.0: can't add hid device: -71 [ 233.498579][ T7026] CPU: 0 UID: 0 PID: 7026 Comm: syz.5.2615 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 233.498611][ T7026] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 233.498634][ T7026] Call Trace: [ 233.498644][ T7026] [ 233.498653][ T7026] __dump_stack+0x21/0x30 [ 233.498691][ T7026] dump_stack_lvl+0x10c/0x190 [ 233.498721][ T7026] ? __cfi_dump_stack_lvl+0x10/0x10 [ 233.498750][ T7026] ? fib6_table_lookup+0x877/0x9b0 [ 233.498782][ T7026] dump_stack+0x19/0x20 [ 233.498809][ T7026] should_fail_ex+0x3d9/0x530 [ 233.498837][ T7026] ? __cfi_ip6_dst_gc+0x10/0x10 [ 233.498859][ T7026] should_failslab+0xac/0x100 [ 233.498893][ T7026] kmem_cache_alloc_noprof+0x42/0x3a0 [ 233.498921][ T7026] ? dst_alloc+0x13c/0x250 [ 233.498943][ T7026] ? __cfi_ip6_dst_gc+0x10/0x10 [ 233.498966][ T7026] dst_alloc+0x13c/0x250 [ 233.498988][ T7026] ip6_pol_route+0xad5/0x12c0 [ 233.499016][ T7026] ? ip6_pol_route+0x42c/0x12c0 [ 233.499045][ T7026] ? __cfi_ip6_pol_route+0x10/0x10 [ 233.499073][ T7026] ? is_bpf_text_address+0x17b/0x1a0 [ 233.499109][ T7026] ? kernel_text_address+0xa9/0xe0 [ 233.499135][ T7026] ? unwind_get_return_address+0x51/0x90 [ 233.499157][ T7026] ? __cfi_stack_trace_consume_entry+0x10/0x10 [ 233.499186][ T7026] ip6_pol_route_output+0x55/0x80 [ 233.499216][ T7026] fib6_rule_lookup+0x30d/0x6b0 [ 233.499258][ T7026] ? __cfi_ip6_pol_route_output+0x10/0x10 [ 233.499289][ T7026] ? __cfi_fib6_rule_lookup+0x10/0x10 [ 233.499329][ T7026] ip6_route_output_flags+0x2a3/0x480 [ 233.499360][ T7026] ip6_dst_lookup_tail+0x1a6/0x1470 [ 233.499384][ T7026] ? arch_stack_walk+0x10b/0x170 [ 233.499418][ T7026] ? stack_trace_save+0x9d/0xe0 [ 233.499446][ T7026] ? stack_depot_save_flags+0x38/0x800 [ 233.499475][ T7026] ? ip6_dst_lookup+0x80/0x80 [ 233.499500][ T7026] ? kasan_save_track+0x4f/0x80 [ 233.499529][ T7026] ? kasan_save_track+0x3e/0x80 [ 233.499559][ T7026] ? kasan_save_alloc_info+0x40/0x50 [ 233.499583][ T7026] ? __kasan_slab_alloc+0x73/0x90 [ 233.499614][ T7026] ? kmem_cache_alloc_noprof+0x131/0x3a0 [ 233.499642][ T7026] ? security_inode_alloc+0x51/0x200 [ 233.499670][ T7026] ? sk_dst_check+0x13a/0x290 [ 233.499700][ T7026] ip6_sk_dst_lookup_flow+0x3a2/0x790 [ 233.499727][ T7026] udpv6_sendmsg+0x1940/0x26c0 [ 233.499753][ T7026] ? __cfi_ip_generic_getfrag+0x10/0x10 [ 233.499787][ T7026] ? __cfi_udpv6_sendmsg+0x10/0x10 [ 233.499815][ T7026] ? __cfi__raw_spin_lock_bh+0x10/0x10 [ 233.499849][ T7026] ? _raw_spin_unlock_bh+0x54/0x60 [ 233.499880][ T7026] ? release_sock+0x171/0x1f0 [ 233.499910][ T7026] ? inet_send_prepare+0x1e7/0x4f0 [ 233.499933][ T7026] ? __cfi_udpv6_sendmsg+0x10/0x10 [ 233.499955][ T7026] inet6_sendmsg+0xef/0x120 [ 233.499989][ T7026] ____sys_sendmsg+0x5db/0xa70 [ 233.500028][ T7026] ? __sys_sendmsg_sock+0x50/0x50 [ 233.500065][ T7026] ? import_iovec+0x81/0xb0 [ 233.500102][ T7026] ___sys_sendmsg+0x220/0x2a0 [ 233.500138][ T7026] ? __sys_sendmsg+0x280/0x280 [ 233.500177][ T7026] ? kstrtouint+0x78/0xf0 [ 233.500210][ T7026] __sys_sendmmsg+0x271/0x470 [ 233.500234][ T7026] ? __cfi___sys_sendmmsg+0x10/0x10 [ 233.500266][ T7026] ? __cfi_ksys_write+0x10/0x10 [ 233.500298][ T7026] __x64_sys_sendmmsg+0xa4/0xc0 [ 233.500320][ T7026] x64_sys_call+0xfec/0x2ee0 [ 233.500352][ T7026] do_syscall_64+0x58/0xf0 [ 233.500382][ T7026] ? clear_bhb_loop+0x35/0x90 [ 233.500418][ T7026] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 233.500453][ T7026] RIP: 0033:0x7fdafff8e929 [ 233.500476][ T7026] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 233.500497][ T7026] RSP: 002b:00007fdb00d9e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 233.500523][ T7026] RAX: ffffffffffffffda RBX: 00007fdb001b5fa0 RCX: 00007fdafff8e929 [ 233.500544][ T7026] RDX: 0000000000000002 RSI: 0000200000004700 RDI: 0000000000000003 [ 233.500562][ T7026] RBP: 00007fdb00d9e090 R08: 0000000000000000 R09: 0000000000000000 [ 233.500583][ T7026] R10: 00000000080040c4 R11: 0000000000000246 R12: 0000000000000001 [ 233.500600][ T7026] R13: 0000000000000000 R14: 00007fdb001b5fa0 R15: 00007fffc3506978 [ 233.500621][ T7026] [ 233.528720][ T7030] FAULT_INJECTION: forcing a failure. [ 233.528720][ T7030] name failslab, interval 1, probability 0, space 0, times 0 [ 233.528750][ T7030] CPU: 0 UID: 0 PID: 7030 Comm: syz.0.2617 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 233.528781][ T7030] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 233.528794][ T7030] Call Trace: [ 233.528801][ T7030] [ 233.528811][ T7030] __dump_stack+0x21/0x30 [ 233.528843][ T7030] dump_stack_lvl+0x10c/0x190 [ 233.528874][ T7030] ? __cfi_dump_stack_lvl+0x10/0x10 [ 233.528906][ T7030] dump_stack+0x19/0x20 [ 233.528934][ T7030] should_fail_ex+0x3d9/0x530 [ 233.528964][ T7030] should_failslab+0xac/0x100 [ 233.528998][ T7030] kmem_cache_alloc_noprof+0x42/0x3a0 [ 233.529025][ T7030] ? __anon_vma_prepare+0xac/0x570 [ 233.529054][ T7030] __anon_vma_prepare+0xac/0x570 [ 233.529081][ T7030] ? __kasan_check_write+0x18/0x20 [ 233.529108][ T7030] ? _raw_spin_lock+0x8c/0x120 [ 233.529141][ T7030] do_pte_missing+0x2cd5/0x3e50 [ 233.529178][ T7030] ? _raw_spin_unlock+0x45/0x60 [ 233.529209][ T7030] ? __cfi___pmd_alloc+0x10/0x10 [ 233.529242][ T7030] ? post_alloc_hook+0x3b9/0x3f0 [ 233.529286][ T7030] ? pte_marker_clear+0x1b0/0x1b0 [ 233.529322][ T7030] handle_mm_fault+0x1166/0x1b90 [ 233.529358][ T7030] ? __cfi_handle_mm_fault+0x10/0x10 [ 233.529390][ T7030] ? find_vma+0xcd/0x110 [ 233.529420][ T7030] ? lock_mm_and_find_vma+0xb8/0x3a0 [ 233.529454][ T7030] do_user_addr_fault+0x4ca/0x1200 [ 233.529486][ T7030] exc_page_fault+0x59/0xc0 [ 233.529510][ T7030] asm_exc_page_fault+0x2b/0x30 [ 233.529544][ T7030] RIP: 0010:rep_movs_alternative+0x15/0xa0 [ 233.529573][ T7030] Code: cc cc cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 83 f9 40 73 40 83 f9 08 73 21 85 c9 74 0f 8a 06 <88> 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f 1f 84 [ 233.529595][ T7030] RSP: 0018:ffffc90006fafe18 EFLAGS: 00050206 [ 233.529618][ T7030] RAX: ffffffff82a47200 RBX: 0000000000000003 RCX: 0000000000000003 [ 233.529636][ T7030] RDX: 0000000000000000 RSI: ffff8881375f2000 RDI: 0000200000000000 [ 233.529654][ T7030] RBP: ffffc90006fafe48 R08: ffff8881375f2002 R09: 1ffff11026ebe400 [ 233.529675][ T7030] R10: dffffc0000000000 R11: ffffed1026ebe401 R12: 0000200000000003 [ 233.529693][ T7030] R13: 00007ffffffff000 R14: 0000200000000000 R15: ffff8881375f2000 [ 233.529714][ T7030] ? _copy_from_user+0x70/0xb0 [ 233.529749][ T7030] ? _copy_to_user+0x7d/0xa0 [ 233.529780][ T7030] __se_sys_mincore+0x76b/0xb70 [ 233.529819][ T7030] __x64_sys_mincore+0x7f/0xa0 [ 233.529853][ T7030] x64_sys_call+0x2b24/0x2ee0 [ 233.529885][ T7030] do_syscall_64+0x58/0xf0 [ 233.529916][ T7030] ? clear_bhb_loop+0x35/0x90 [ 233.529951][ T7030] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 233.529985][ T7030] RIP: 0033:0x7fbee598e929 [ 233.530006][ T7030] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 233.530026][ T7030] RSP: 002b:00007fbee672a038 EFLAGS: 00000246 ORIG_RAX: 000000000000001b [ 233.530051][ T7030] RAX: ffffffffffffffda RBX: 00007fbee5bb5fa0 RCX: 00007fbee598e929 [ 233.530070][ T7030] RDX: 0000200000000000 RSI: 0000000000003000 RDI: 0000200000ffc000 [ 233.530086][ T7030] RBP: 00007fbee672a090 R08: 0000000000000000 R09: 0000000000000000 [ 233.530102][ T7030] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 233.530118][ T7030] R13: 0000000000000001 R14: 00007fbee5bb5fa0 R15: 00007ffc4670ea98 [ 233.530138][ T7030] [ 233.778081][ T687] usb 4-1: USB disconnect, device number 49 [ 233.781702][ T2807] usbhid 1-1:0.0: probe with driver usbhid failed with error -71 [ 233.813414][ T2219] usb 6-1: new high-speed USB device number 31 using dummy_hcd [ 233.821154][ T2807] usb 1-1: USB disconnect, device number 41 [ 234.000647][ T2219] usb 6-1: Using ep0 maxpacket: 8 [ 234.070657][ T46] usb 2-1: new high-speed USB device number 41 using dummy_hcd [ 234.077591][ T2219] usb 6-1: config 162 has an invalid interface number: 84 but max is 2 [ 234.253438][ T46] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 234.257745][ T2219] usb 6-1: config 162 has an invalid interface number: 3 but max is 2 [ 234.282812][ T46] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 234.298535][ T2219] usb 6-1: config 162 has no interface number 0 [ 234.308744][ T46] usb 2-1: Product: syz [ 234.314518][ T2219] usb 6-1: config 162 has no interface number 1 [ 234.327351][ T46] usb 2-1: Manufacturer: syz [ 234.332698][ T2219] usb 6-1: config 162 interface 84 altsetting 2 has 1 endpoint descriptor, different from the interface descriptor's value: 3 [ 234.337689][ T46] usb 2-1: SerialNumber: syz [ 234.341778][ T2219] usb 6-1: config 162 interface 2 altsetting 1 has a duplicate endpoint with address 0x9, skipping [ 234.560902][ T2219] usb 6-1: config 162 interface 2 altsetting 1 has an endpoint descriptor with address 0x7B, changing to 0xB [ 234.572796][ T2219] usb 6-1: config 162 interface 2 altsetting 1 endpoint 0xB has invalid maxpacket 23105, setting to 1024 [ 234.584089][ T2219] usb 6-1: config 162 interface 2 altsetting 1 bulk endpoint 0xB has invalid maxpacket 1024 [ 234.588642][ T7037] input: syz0 as /devices/virtual/input/input127 [ 234.594233][ T2219] usb 6-1: config 162 interface 2 altsetting 1 has 5 endpoint descriptors, different from the interface descriptor's value: 4 [ 234.613711][ T2219] usb 6-1: config 162 interface 84 has no altsetting 0 [ 234.621122][ T2219] usb 6-1: config 162 interface 2 has no altsetting 0 [ 234.630152][ T2219] usb 6-1: config 162 interface 3 has no altsetting 0 [ 234.641672][ T2219] usb 6-1: New USB device found, idVendor=0e8d, idProduct=763f, bcdDevice=9b.23 [ 234.651544][ T2219] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 234.659584][ T2219] usb 6-1: Product: syz [ 234.667120][ T2219] usb 6-1: Manufacturer: syz [ 234.671811][ T2219] usb 6-1: SerialNumber: syz [ 234.698528][ T7043] 9pnet_virtio: no channels available for device syz [ 234.890786][ T2219] usb 6-1: USB disconnect, device number 31 [ 234.910730][ T2807] usb 1-1: new high-speed USB device number 42 using dummy_hcd [ 235.050660][ T31] usb 4-1: new high-speed USB device number 50 using dummy_hcd [ 235.070618][ T2807] usb 1-1: Using ep0 maxpacket: 16 [ 235.076799][ T2807] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 235.087761][ T2807] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 235.100638][ T2807] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 235.109718][ T2807] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 235.118628][ T2807] usb 1-1: config 0 descriptor?? [ 235.200650][ T31] usb 4-1: Using ep0 maxpacket: 16 [ 235.206887][ T31] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 235.217826][ T31] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 235.230683][ T31] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 235.239739][ T31] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 235.248645][ T31] usb 4-1: config 0 descriptor?? [ 235.365793][ T36] audit: type=1400 audit(2000000196.441:566): avc: denied { create } for pid=7027 comm="syz.1.2616" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_iscsi_socket permissive=1 [ 235.414168][ T36] audit: type=1400 audit(2000000196.491:567): avc: denied { bind } for pid=7049 comm="syz.5.2626" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 235.481744][ T46] cdc_ncm 2-1:1.0: failed to get mac address [ 235.488112][ T46] cdc_ncm 2-1:1.0: bind() failure [ 235.494349][ T46] cdc_ncm 2-1:1.1: probe with driver cdc_ncm failed with error -71 [ 235.502634][ T46] cdc_mbim 2-1:1.1: probe with driver cdc_mbim failed with error -71 [ 235.513600][ T46] usb 2-1: USB disconnect, device number 41 [ 235.528179][ T2807] usbhid 1-1:0.0: can't add hid device: -71 [ 235.534964][ T2807] usbhid 1-1:0.0: probe with driver usbhid failed with error -71 [ 235.543874][ T2807] usb 1-1: USB disconnect, device number 42 [ 235.913862][ T36] audit: type=1400 audit(2000000196.991:568): avc: denied { create } for pid=7063 comm="syz.5.2632" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1 [ 236.014883][ T7083] FAULT_INJECTION: forcing a failure. [ 236.014883][ T7083] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 236.028175][ T7083] CPU: 0 UID: 0 PID: 7083 Comm: syz.5.2639 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 236.028211][ T7083] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 236.028224][ T7083] Call Trace: [ 236.028232][ T7083] [ 236.028240][ T7083] __dump_stack+0x21/0x30 [ 236.028267][ T7083] dump_stack_lvl+0x10c/0x190 [ 236.028290][ T7083] ? __cfi_dump_stack_lvl+0x10/0x10 [ 236.028312][ T7083] ? vfs_write+0x8ba/0xe80 [ 236.028338][ T7083] dump_stack+0x19/0x20 [ 236.028359][ T7083] should_fail_ex+0x3d9/0x530 [ 236.028380][ T7083] should_fail+0xf/0x20 [ 236.028398][ T7083] should_fail_usercopy+0x1e/0x30 [ 236.028420][ T7083] _copy_from_user+0x22/0xb0 [ 236.028444][ T7083] __sys_bind+0x1de/0x3f0 [ 236.028471][ T7083] ? __cfi___sys_bind+0x10/0x10 [ 236.028497][ T7083] ? __kasan_check_read+0x15/0x20 [ 236.028518][ T7083] __x64_sys_bind+0x7e/0x90 [ 236.028541][ T7083] x64_sys_call+0x1ffd/0x2ee0 [ 236.028565][ T7083] do_syscall_64+0x58/0xf0 [ 236.028591][ T7083] ? clear_bhb_loop+0x35/0x90 [ 236.028620][ T7083] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 236.028648][ T7083] RIP: 0033:0x7fdafff8e929 [ 236.028663][ T7083] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 236.028680][ T7083] RSP: 002b:00007fdb00d9e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000031 [ 236.028700][ T7083] RAX: ffffffffffffffda RBX: 00007fdb001b5fa0 RCX: 00007fdafff8e929 [ 236.028714][ T7083] RDX: 0000000000000010 RSI: 00002000000001c0 RDI: 0000000000000003 [ 236.028728][ T7083] RBP: 00007fdb00d9e090 R08: 0000000000000000 R09: 0000000000000000 [ 236.028741][ T7083] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 236.028753][ T7083] R13: 0000000000000000 R14: 00007fdb001b5fa0 R15: 00007fffc3506978 [ 236.028768][ T7083] [ 236.242674][ T7089] FAULT_INJECTION: forcing a failure. [ 236.242674][ T7089] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 236.255868][ T7089] CPU: 0 UID: 0 PID: 7089 Comm: syz.5.2640 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 236.255905][ T7089] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 236.255919][ T7089] Call Trace: [ 236.255927][ T7089] [ 236.255937][ T7089] __dump_stack+0x21/0x30 [ 236.255966][ T7089] dump_stack_lvl+0x10c/0x190 [ 236.255992][ T7089] ? __cfi_dump_stack_lvl+0x10/0x10 [ 236.256018][ T7089] ? vfs_write+0x8ba/0xe80 [ 236.256041][ T7089] dump_stack+0x19/0x20 [ 236.256065][ T7089] should_fail_ex+0x3d9/0x530 [ 236.256082][ T7089] should_fail+0xf/0x20 [ 236.256098][ T7089] should_fail_usercopy+0x1e/0x30 [ 236.256124][ T7089] _copy_from_user+0x22/0xb0 [ 236.256152][ T7089] do_sock_getsockopt+0x1d7/0x6d0 [ 236.256184][ T7089] ? __cfi_do_sock_getsockopt+0x10/0x10 [ 236.256207][ T7089] ? __fget_files+0x2c5/0x340 [ 236.256229][ T7089] __x64_sys_getsockopt+0x1d5/0x280 [ 236.256260][ T7089] x64_sys_call+0x10db/0x2ee0 [ 236.256287][ T7089] do_syscall_64+0x58/0xf0 [ 236.256312][ T7089] ? clear_bhb_loop+0x35/0x90 [ 236.256339][ T7089] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 236.256361][ T7089] RIP: 0033:0x7fdafff8e929 [ 236.256374][ T7089] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 236.256390][ T7089] RSP: 002b:00007fdb00d9e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 236.256415][ T7089] RAX: ffffffffffffffda RBX: 00007fdb001b5fa0 RCX: 00007fdafff8e929 [ 236.256432][ T7089] RDX: 0000000000000037 RSI: 0000000000000001 RDI: 0000000000000003 [ 236.256445][ T7089] RBP: 00007fdb00d9e090 R08: 0000200000000140 R09: 0000000000000000 [ 236.256460][ T7089] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 236.256471][ T7089] R13: 0000000000000000 R14: 00007fdb001b5fa0 R15: 00007fffc3506978 [ 236.256485][ T7089] [ 236.484716][ T7095] rust_binder: Write failure EINVAL in pid:96 [ 236.500621][ T36] audit: type=1400 audit(2000000197.571:569): avc: denied { create } for pid=7099 comm="syz.5.2644" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon=C0B26F04FD [ 236.532271][ T36] audit: type=1400 audit(2000000197.581:570): avc: denied { associate } for pid=7099 comm="syz.5.2644" name="file0" scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 srawcon=C0B26F04FD [ 236.543973][ T7102] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2645'. [ 236.572858][ T36] audit: type=1400 audit(2000000197.581:571): avc: denied { write open } for pid=7099 comm="syz.5.2644" path="/41/file0" dev="tmpfs" ino=232 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon=C0B26F04FD [ 236.634222][ T36] audit: type=1400 audit(2000000197.611:572): avc: denied { unlink } for pid=6542 comm="syz-executor" name="file0" dev="tmpfs" ino=232 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon=C0B26F04FD [ 236.712673][ T7118] FAULT_INJECTION: forcing a failure. [ 236.712673][ T7118] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 236.726344][ T7118] CPU: 1 UID: 0 PID: 7118 Comm: syz.0.2650 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 236.726383][ T7118] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 236.726399][ T7118] Call Trace: [ 236.726408][ T7118] [ 236.726422][ T7118] __dump_stack+0x21/0x30 [ 236.726456][ T7118] dump_stack_lvl+0x10c/0x190 [ 236.726484][ T7118] ? __cfi_dump_stack_lvl+0x10/0x10 [ 236.726514][ T7118] ? selinux_file_ioctl+0x6e0/0x1360 [ 236.726550][ T7118] dump_stack+0x19/0x20 [ 236.726577][ T7118] should_fail_ex+0x3d9/0x530 [ 236.726604][ T7118] should_fail+0xf/0x20 [ 236.726630][ T7118] should_fail_usercopy+0x1e/0x30 [ 236.726657][ T7118] _copy_from_user+0x22/0xb0 [ 236.726688][ T7118] vhost_vsock_dev_ioctl+0x12c/0xdb0 [ 236.726714][ T7118] ? __cfi_vhost_vsock_dev_ioctl+0x10/0x10 [ 236.726738][ T7118] ? __fget_files+0x2c5/0x340 [ 236.726772][ T7118] ? bpf_lsm_file_ioctl+0xd/0x20 [ 236.726799][ T7118] ? security_file_ioctl+0x34/0xd0 [ 236.726831][ T7118] ? __cfi_vhost_vsock_dev_ioctl+0x10/0x10 [ 236.726855][ T7118] __se_sys_ioctl+0x132/0x1b0 [ 236.726888][ T7118] __x64_sys_ioctl+0x7f/0xa0 [ 236.726921][ T7118] x64_sys_call+0x1878/0x2ee0 [ 236.726952][ T7118] do_syscall_64+0x58/0xf0 [ 236.726984][ T7118] ? clear_bhb_loop+0x35/0x90 [ 236.727021][ T7118] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 236.727056][ T7118] RIP: 0033:0x7fbee598e929 [ 236.727075][ T7118] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 236.727098][ T7118] RSP: 002b:00007fbee672a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 236.727124][ T7118] RAX: ffffffffffffffda RBX: 00007fbee5bb5fa0 RCX: 00007fbee598e929 [ 236.727144][ T7118] RDX: 0000200000000000 RSI: 000000004004af61 RDI: 0000000000000004 [ 236.727160][ T7118] RBP: 00007fbee672a090 R08: 0000000000000000 R09: 0000000000000000 [ 236.727177][ T7118] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 236.727202][ T7118] R13: 0000000000000000 R14: 00007fbee5bb5fa0 R15: 00007ffc4670ea98 [ 236.727223][ T7118] [ 236.991996][ T2807] usb 2-1: new high-speed USB device number 42 using dummy_hcd [ 237.150661][ T2807] usb 2-1: Using ep0 maxpacket: 16 [ 237.156293][ T2807] usb 2-1: too many configurations: 148, using maximum allowed: 8 [ 237.165819][ T2807] usb 2-1: unable to read config index 0 descriptor/start: -61 [ 237.173834][ T2807] usb 2-1: can't read configurations, error -61 [ 237.186532][ T7133] binder: Unknown parameter 'nXIv/snd/timer' [ 237.270803][ T7137] SELinux: policydb table sizes (0,0) do not match mine (6,7) [ 237.278524][ T7137] SELinux: failed to load policy [ 237.310663][ T2807] usb 2-1: new high-speed USB device number 43 using dummy_hcd [ 237.470698][ T2807] usb 2-1: Using ep0 maxpacket: 16 [ 237.476460][ T2807] usb 2-1: too many configurations: 148, using maximum allowed: 8 [ 237.485404][ T2807] usb 2-1: unable to read config index 0 descriptor/start: -61 [ 237.493039][ T2807] usb 2-1: can't read configurations, error -61 [ 237.499480][ T2807] usb usb2-port1: attempt power cycle [ 237.698208][ T7145] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 237.800035][ T31] usbhid 4-1:0.0: can't add hid device: -71 [ 237.806897][ T31] usbhid 4-1:0.0: probe with driver usbhid failed with error -71 [ 237.816498][ T31] usb 4-1: USB disconnect, device number 50 [ 237.831971][ T36] audit: type=1400 audit(2000000198.911:573): avc: granted { setsecparam } for pid=7149 comm="syz.3.2662" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security [ 237.840704][ T2807] usb 2-1: new high-speed USB device number 44 using dummy_hcd [ 237.860027][ T36] audit: type=1400 audit(2000000000.000:574): avc: denied { create } for pid=7149 comm="syz.3.2662" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=atmpvc_socket permissive=1 [ 237.879731][ T36] audit: type=1400 audit(2000000000.000:575): avc: denied { create } for pid=7149 comm="syz.3.2662" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1 [ 237.879880][ T2807] usb 2-1: Using ep0 maxpacket: 16 [ 237.904904][ T36] audit: type=1400 audit(2000000000.000:576): avc: granted { setsecparam } for pid=7149 comm="syz.3.2662" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security [ 237.908880][ T2807] usb 2-1: too many configurations: 148, using maximum allowed: 8 [ 237.933134][ T2807] usb 2-1: unable to read config index 0 descriptor/start: -61 [ 237.941823][ T2807] usb 2-1: can't read configurations, error -61 [ 237.960674][ T46] usb 6-1: new low-speed USB device number 32 using dummy_hcd [ 238.070672][ T2807] usb 2-1: new high-speed USB device number 45 using dummy_hcd [ 238.090708][ T46] usb 6-1: device descriptor read/64, error -71 [ 238.097312][ T2807] usb 2-1: Using ep0 maxpacket: 16 [ 238.103055][ T2807] usb 2-1: too many configurations: 148, using maximum allowed: 8 [ 238.112540][ T2807] usb 2-1: unable to read config index 0 descriptor/start: -61 [ 238.120349][ T2807] usb 2-1: can't read configurations, error -61 [ 238.126891][ T2807] usb usb2-port1: unable to enumerate USB device [ 238.236450][ T7170] FAULT_INJECTION: forcing a failure. [ 238.236450][ T7170] name failslab, interval 1, probability 0, space 0, times 0 [ 238.249144][ T7170] CPU: 0 UID: 0 PID: 7170 Comm: syz.0.2671 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 238.249179][ T7170] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 238.249192][ T7170] Call Trace: [ 238.249199][ T7170] [ 238.249206][ T7170] __dump_stack+0x21/0x30 [ 238.249229][ T7170] dump_stack_lvl+0x10c/0x190 [ 238.249247][ T7170] ? __cfi_dump_stack_lvl+0x10/0x10 [ 238.249267][ T7170] dump_stack+0x19/0x20 [ 238.249284][ T7170] should_fail_ex+0x3d9/0x530 [ 238.249301][ T7170] should_failslab+0xac/0x100 [ 238.249322][ T7170] kmem_cache_alloc_bulk_noprof+0x4c/0x4a0 [ 238.249342][ T7170] ? __kasan_slab_alloc+0x73/0x90 [ 238.249364][ T7170] ? kmem_cache_alloc_noprof+0x154/0x3a0 [ 238.249381][ T7170] ? mas_alloc_nodes+0x254/0x9e0 [ 238.249399][ T7170] mas_alloc_nodes+0x43c/0x9e0 [ 238.249416][ T7170] mas_preallocate+0x764/0xc60 [ 238.249432][ T7170] ? __cfi_mas_preallocate+0x10/0x10 [ 238.249448][ T7170] ? anon_vma_name+0x7e/0xd0 [ 238.249464][ T7170] ? vm_area_dup+0x4b8/0x5f0 [ 238.249486][ T7170] __split_vma+0x412/0xa80 [ 238.249506][ T7170] ? vms_gather_munmap_vmas+0xdd0/0xdd0 [ 238.249527][ T7170] vms_gather_munmap_vmas+0x273/0xdd0 [ 238.249549][ T7170] mmap_region+0x59e/0x1bd0 [ 238.249568][ T7170] ? __cfi_mmap_region+0x10/0x10 [ 238.249588][ T7170] ? __kasan_check_read+0x15/0x20 [ 238.249605][ T7170] ? arch_get_unmapped_area_topdown+0x232/0x8d0 [ 238.249631][ T7170] ? file_mmap_ok+0x147/0x1a0 [ 238.249648][ T7170] do_mmap+0xb6d/0x13c0 [ 238.249667][ T7170] ? __cfi_do_mmap+0x10/0x10 [ 238.249683][ T7170] ? down_write_killable+0xe9/0x2d0 [ 238.249700][ T7170] ? __cfi_down_write_killable+0x10/0x10 [ 238.249718][ T7170] vm_mmap_pgoff+0x38f/0x4e0 [ 238.249737][ T7170] ? __cfi_vm_mmap_pgoff+0x10/0x10 [ 238.249754][ T7170] ? __fget_files+0x2c5/0x340 [ 238.249776][ T7170] ksys_mmap_pgoff+0x166/0x1e0 [ 238.249794][ T7170] __x64_sys_mmap+0x121/0x140 [ 238.249814][ T7170] x64_sys_call+0x13bf/0x2ee0 [ 238.249835][ T7170] do_syscall_64+0x58/0xf0 [ 238.249855][ T7170] ? clear_bhb_loop+0x35/0x90 [ 238.249895][ T7170] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 238.249917][ T7170] RIP: 0033:0x7fbee598e929 [ 238.249931][ T7170] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 238.249945][ T7170] RSP: 002b:00007fbee672a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 238.249962][ T7170] RAX: ffffffffffffffda RBX: 00007fbee5bb5fa0 RCX: 00007fbee598e929 [ 238.249975][ T7170] RDX: 0000000001000007 RSI: 0000000000002000 RDI: 0000200000ffc000 [ 238.249986][ T7170] RBP: 00007fbee672a090 R08: 0000000000000008 R09: 0000000000000000 [ 238.249996][ T7170] R10: 0000000000000013 R11: 0000000000000246 R12: 0000000000000001 [ 238.250005][ T7170] R13: 0000000000000000 R14: 00007fbee5bb5fa0 R15: 00007ffc4670ea98 [ 238.250019][ T7170] [ 238.430683][ T46] usb 6-1: device descriptor read/64, error -71 [ 238.560656][ T9] usb 4-1: new high-speed USB device number 51 using dummy_hcd [ 238.586976][ T36] audit: type=1326 audit(2000000000.720:577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7173 comm="syz.0.2673" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fbee598e929 code=0x0 [ 238.644251][ T7175] rust_binder: Write failure EINVAL in pid:229 [ 238.644522][ T7175] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:229 [ 238.710661][ T9] usb 4-1: Using ep0 maxpacket: 16 [ 238.726927][ T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 238.737945][ T9] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 238.750889][ T9] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 238.759936][ T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 238.768947][ T9] usb 4-1: config 0 descriptor?? [ 238.780662][ T46] usb 6-1: new low-speed USB device number 33 using dummy_hcd [ 238.910661][ T46] usb 6-1: device descriptor read/64, error -71 [ 239.150771][ T46] usb 6-1: device descriptor read/64, error -71 [ 239.260810][ T46] usb usb6-port1: attempt power cycle [ 239.600653][ T46] usb 6-1: new low-speed USB device number 34 using dummy_hcd [ 239.630857][ T46] usb 6-1: device descriptor read/8, error -71 [ 239.638601][ T7187] rust_binder: Error in use_page_slow: ESRCH [ 239.638620][ T7187] rust_binder: use_range failure ESRCH [ 239.649187][ T7187] rust_binder: Failed to allocate buffer. len:40, is_oneway:false [ 239.655058][ T7187] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ESRCH } [ 239.663211][ T7187] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ESRCH } my_pid:241 [ 239.673147][ T7187] rust_binder: BINDER_SET_CONTEXT_MGR already set [ 239.739196][ T7198] SELinux: policydb table sizes (0,0) do not match mine (6,7) [ 239.753410][ T7198] SELinux: failed to load policy [ 239.771737][ T46] usb 6-1: device descriptor read/8, error -71 [ 240.014964][ T46] usb 6-1: new low-speed USB device number 35 using dummy_hcd [ 240.041701][ T46] usb 6-1: device descriptor read/8, error -71 [ 240.183961][ T46] usb 6-1: device descriptor read/8, error -71 [ 240.190655][ T7225] FAULT_INJECTION: forcing a failure. [ 240.190655][ T7225] name failslab, interval 1, probability 0, space 0, times 0 [ 240.203422][ T7225] CPU: 1 UID: 0 PID: 7225 Comm: syz.1.2693 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 240.203458][ T7225] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 240.203473][ T7225] Call Trace: [ 240.203480][ T7225] [ 240.203490][ T7225] __dump_stack+0x21/0x30 [ 240.203520][ T7225] dump_stack_lvl+0x10c/0x190 [ 240.203544][ T7225] ? __cfi_dump_stack_lvl+0x10/0x10 [ 240.203571][ T7225] dump_stack+0x19/0x20 [ 240.203595][ T7225] should_fail_ex+0x3d9/0x530 [ 240.203619][ T7225] should_failslab+0xac/0x100 [ 240.203648][ T7225] kmem_cache_alloc_noprof+0x42/0x3a0 [ 240.203672][ T7225] ? security_file_alloc+0x49/0x200 [ 240.203708][ T7225] security_file_alloc+0x49/0x200 [ 240.203736][ T7225] init_file+0x9e/0x210 [ 240.203767][ T7225] alloc_empty_file+0xd9/0x280 [ 240.203799][ T7225] path_openat+0xf8/0x34b0 [ 240.203831][ T7225] ? _parse_integer+0x2e/0x40 [ 240.203852][ T7225] ? kasan_save_track+0x4f/0x80 [ 240.203880][ T7225] ? kasan_save_alloc_info+0x40/0x50 [ 240.203901][ T7225] ? __kasan_slab_alloc+0x73/0x90 [ 240.203929][ T7225] ? kmem_cache_alloc_noprof+0x131/0x3a0 [ 240.203953][ T7225] ? getname_flags+0xc6/0x710 [ 240.203978][ T7225] ? do_sys_openat2+0xcb/0x1c0 [ 240.203997][ T7225] ? __x64_sys_openat+0x13a/0x170 [ 240.204017][ T7225] ? x64_sys_call+0xe69/0x2ee0 [ 240.204043][ T7225] ? do_syscall_64+0x58/0xf0 [ 240.204074][ T7225] ? do_filp_open+0x3e0/0x3e0 [ 240.204107][ T7225] do_filp_open+0x1c6/0x3e0 [ 240.204137][ T7225] ? __cfi_do_filp_open+0x10/0x10 [ 240.204172][ T7225] ? alloc_fd+0x4e7/0x5a0 [ 240.204201][ T7225] do_sys_openat2+0x12c/0x1c0 [ 240.204222][ T7225] ? fput+0x1a5/0x240 [ 240.204252][ T7225] ? do_sys_open+0x100/0x100 [ 240.204271][ T7225] ? ksys_write+0x1ef/0x250 [ 240.204296][ T7225] ? __cfi_ksys_write+0x10/0x10 [ 240.204322][ T7225] __x64_sys_openat+0x13a/0x170 [ 240.204344][ T7225] x64_sys_call+0xe69/0x2ee0 [ 240.204372][ T7225] do_syscall_64+0x58/0xf0 [ 240.204400][ T7225] ? clear_bhb_loop+0x35/0x90 [ 240.204432][ T7225] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 240.204463][ T7225] RIP: 0033:0x7f6e86d8d290 [ 240.204483][ T7225] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44 [ 240.204502][ T7225] RSP: 002b:00007f6e87b39f10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 240.204526][ T7225] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f6e86d8d290 [ 240.204542][ T7225] RDX: 0000000000000002 RSI: 00007f6e87b39fa0 RDI: 00000000ffffff9c [ 240.204557][ T7225] RBP: 00007f6e87b39fa0 R08: 0000000000000000 R09: 00007f6e87b39ccf [ 240.204572][ T7225] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 240.204586][ T7225] R13: 0000000000000000 R14: 00007f6e86fb5fa0 R15: 00007ffd81e75a18 [ 240.204604][ T7225] [ 240.489897][ T46] usb usb6-port1: unable to enumerate USB device [ 240.527539][ T7233] rust_binder: Write failure EINVAL in pid:259 [ 240.528021][ T7233] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:259 [ 240.627343][ T36] audit: type=1400 audit(2000000002.760:578): avc: denied { create } for pid=7243 comm="syz.1.2700" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1 [ 240.761272][ T36] audit: type=1400 audit(2000000002.900:579): avc: denied { name_bind } for pid=7251 comm="syz.0.2704" src=20001 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1 [ 240.783012][ T36] audit: type=1400 audit(2000000002.900:580): avc: denied { node_bind } for pid=7251 comm="syz.0.2704" saddr=224.0.0.1 src=20001 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1 [ 240.819045][ T36] audit: type=1400 audit(2000000002.950:581): avc: denied { read write } for pid=5662 comm="syz-executor" name="loop1" dev="devtmpfs" ino=50 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 240.845422][ T36] audit: type=1400 audit(2000000002.950:582): avc: denied { open } for pid=5662 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=50 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 240.909494][ T7263] mmap: syz.1.2709 (7263) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 240.933106][ T7261] rust_binder: validate_parent_fixup: new_min_offset=56, sg_entry.length=0 [ 240.933131][ T7261] rust_binder: Error while translating object. [ 240.945292][ T7261] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL } [ 240.951575][ T7261] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:113 [ 240.968409][ T7267] binder: Bad value for 'max' [ 240.982978][ T7268] binder: Bad value for 'max' [ 241.069485][ T7273] rust_binder: Error while translating object. [ 241.069524][ T7273] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EPERM } [ 241.077159][ T7273] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EPERM } my_pid:116 [ 241.128183][ T7280] overlayfs: failed to resolve './file0': -2 [ 241.170641][ T9] usbhid 4-1:0.0: can't add hid device: -71 [ 241.176757][ T9] usbhid 4-1:0.0: probe with driver usbhid failed with error -71 [ 241.208040][ T9] usb 4-1: USB disconnect, device number 51 [ 241.427380][ T7295] FAULT_INJECTION: forcing a failure. [ 241.427380][ T7295] name failslab, interval 1, probability 0, space 0, times 0 [ 241.440214][ T7295] CPU: 0 UID: 0 PID: 7295 Comm: syz.5.2720 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 241.440251][ T7295] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 241.440265][ T7295] Call Trace: [ 241.440274][ T7295] [ 241.440283][ T7295] __dump_stack+0x21/0x30 [ 241.440316][ T7295] dump_stack_lvl+0x10c/0x190 [ 241.440341][ T7295] ? __cfi_dump_stack_lvl+0x10/0x10 [ 241.440367][ T7295] ? selinux_file_open+0x457/0x610 [ 241.440397][ T7295] dump_stack+0x19/0x20 [ 241.440419][ T7295] should_fail_ex+0x3d9/0x530 [ 241.440443][ T7295] should_failslab+0xac/0x100 [ 241.440472][ T7295] __kmalloc_noprof+0x69/0x450 [ 241.440495][ T7295] ? sock_kmalloc+0xde/0x1e0 [ 241.440527][ T7295] sock_kmalloc+0xde/0x1e0 [ 241.440557][ T7295] ____sys_sendmsg+0x1b8/0xa70 [ 241.440594][ T7295] ? __asan_memset+0x39/0x50 [ 241.440618][ T7295] ? __sys_sendmsg_sock+0x50/0x50 [ 241.440660][ T7295] ? import_iovec+0x81/0xb0 [ 241.440690][ T7295] ___sys_sendmsg+0x220/0x2a0 [ 241.440722][ T7295] ? __sys_sendmsg+0x280/0x280 [ 241.440754][ T7295] ? kstrtouint+0x78/0xf0 [ 241.440783][ T7295] __sys_sendmmsg+0x271/0x470 [ 241.440804][ T7295] ? __cfi___sys_sendmmsg+0x10/0x10 [ 241.440828][ T7295] ? __cfi_ksys_write+0x10/0x10 [ 241.440855][ T7295] __x64_sys_sendmmsg+0xa4/0xc0 [ 241.440875][ T7295] x64_sys_call+0xfec/0x2ee0 [ 241.440902][ T7295] do_syscall_64+0x58/0xf0 [ 241.440931][ T7295] ? clear_bhb_loop+0x35/0x90 [ 241.440961][ T7295] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 241.440991][ T7295] RIP: 0033:0x7fdafff8e929 [ 241.441014][ T7295] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 241.441033][ T7295] RSP: 002b:00007fdb00d9e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 241.441060][ T7295] RAX: ffffffffffffffda RBX: 00007fdb001b5fa0 RCX: 00007fdafff8e929 [ 241.441076][ T7295] RDX: 0000000000000001 RSI: 0000200000004700 RDI: 0000000000000003 [ 241.441089][ T7295] RBP: 00007fdb00d9e090 R08: 0000000000000000 R09: 0000000000000000 [ 241.441102][ T7295] R10: 00000000080040c4 R11: 0000000000000246 R12: 0000000000000001 [ 241.441116][ T7295] R13: 0000000000000000 R14: 00007fdb001b5fa0 R15: 00007fffc3506978 [ 241.441133][ T7295] [ 241.748814][ T7298] SELinux: security_context_str_to_sid () failed with errno=-22 [ 241.772764][ T7293] loop8: detected capacity change from 0 to 7 [ 241.971253][ T7314] 9pnet_fd: Insufficient options for proto=fd [ 242.020632][ T31] usb 6-1: new high-speed USB device number 36 using dummy_hcd [ 242.059138][ T7320] rust_binder: Write failure EINVAL in pid:210 [ 242.165782][ T7322] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (128 ns). Using initial count to start timer. [ 242.189052][ T31] usb 6-1: Using ep0 maxpacket: 16 [ 242.236296][ T31] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 242.258448][ T31] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 242.271389][ T31] usb 6-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 242.288395][ T31] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 242.310771][ T31] usb 6-1: config 0 descriptor?? [ 242.414437][ T7340] rust_binder: Failure when writing BR_NOOP at beginning of buffer. [ 242.414468][ T7340] rust_binder: Read failure Err(EFAULT) in pid:290 [ 242.432763][ T7340] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:290 [ 242.443576][ T7342] pim6reg0: tun_chr_ioctl cmd 1074025677 [ 242.460017][ T7344] FAULT_INJECTION: forcing a failure. [ 242.460017][ T7344] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 242.461511][ T7342] pim6reg0: linktype set to 769 [ 242.489491][ T7344] CPU: 0 UID: 0 PID: 7344 Comm: syz.3.2740 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 242.489532][ T7344] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 242.489548][ T7344] Call Trace: [ 242.489557][ T7344] [ 242.489567][ T7344] __dump_stack+0x21/0x30 [ 242.489603][ T7344] dump_stack_lvl+0x10c/0x190 [ 242.489631][ T7344] ? __cfi_dump_stack_lvl+0x10/0x10 [ 242.489662][ T7344] ? __kasan_check_write+0x18/0x20 [ 242.489689][ T7344] ? proc_fail_nth_write+0x17e/0x210 [ 242.489714][ T7344] dump_stack+0x19/0x20 [ 242.489744][ T7344] should_fail_ex+0x3d9/0x530 [ 242.489770][ T7344] should_fail+0xf/0x20 [ 242.489794][ T7344] should_fail_usercopy+0x1e/0x30 [ 242.489821][ T7344] strncpy_from_user+0x28/0x270 [ 242.489848][ T7344] __se_sys_fremovexattr+0x143/0x370 [ 242.489880][ T7344] ? __x64_sys_fremovexattr+0x80/0x80 [ 242.489909][ T7344] ? mutex_unlock+0x8b/0x240 [ 242.489939][ T7344] ? __kasan_check_read+0x15/0x20 [ 242.489969][ T7344] __x64_sys_fremovexattr+0x5f/0x80 [ 242.490001][ T7344] x64_sys_call+0x2cc8/0x2ee0 [ 242.490032][ T7344] do_syscall_64+0x58/0xf0 [ 242.490063][ T7344] ? clear_bhb_loop+0x35/0x90 [ 242.490099][ T7344] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 242.490134][ T7344] RIP: 0033:0x7f77b958e929 [ 242.490154][ T7344] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 242.490175][ T7344] RSP: 002b:00007f77b93eb038 EFLAGS: 00000246 ORIG_RAX: 00000000000000c7 [ 242.490202][ T7344] RAX: ffffffffffffffda RBX: 00007f77b97b5fa0 RCX: 00007f77b958e929 [ 242.490221][ T7344] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000003 [ 242.490236][ T7344] RBP: 00007f77b93eb090 R08: 0000000000000000 R09: 0000000000000000 [ 242.490252][ T7344] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 242.490268][ T7344] R13: 0000000000000000 R14: 00007f77b97b5fa0 R15: 00007ffc629ce418 [ 242.490288][ T7344] [ 242.844852][ T36] kauditd_printk_skb: 325 callbacks suppressed [ 242.844872][ T36] audit: type=1400 audit(2000000004.980:908): avc: denied { create } for pid=7358 comm="syz.1.2748" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 242.891248][ T36] audit: type=1400 audit(2000000005.010:909): avc: denied { connect } for pid=7358 comm="syz.1.2748" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 242.918672][ T36] audit: type=1404 audit(2000000005.010:910): enforcing=1 old_enforcing=0 auid=4294967295 ses=4294967295 enabled=1 old-enabled=1 lsm=selinux res=1 [ 242.933686][ T36] audit: type=1400 audit(2000000005.010:911): avc: denied { ioctl } for pid=7358 comm="syz.1.2748" path="/dev/rnullb0" dev="devtmpfs" ino=31 ioctlcmd=0x125f scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=0 [ 242.958208][ T36] audit: type=1400 audit(2000000005.030:912): avc: denied { execute } for pid=7361 comm="syz.0.2749" path="/124/cpu.stat" dev="tmpfs" ino=675 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=0 [ 243.003183][ T36] audit: type=1400 audit(2000000005.070:913): avc: denied { read write } for pid=6306 comm="syz-executor" name="loop3" dev="devtmpfs" ino=52 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0 [ 243.047885][ T36] audit: type=1400 audit(2000000005.090:914): avc: denied { read } for pid=7364 comm="syz.3.2751" name="binder1" dev="binder" ino=29 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=0 [ 243.088179][ T7370] block device autoloading is deprecated and will be removed. [ 243.099169][ T36] audit: type=1400 audit(2000000005.120:915): avc: denied { read } for pid=7363 comm="syz.0.2750" name="binder0" dev="binder" ino=22 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=0 [ 243.122876][ T7370] syz.1.2752: attempt to access beyond end of device [ 243.122876][ T7370] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 243.146151][ T36] audit: type=1400 audit(2000000005.120:916): avc: denied { create } for pid=7363 comm="syz.0.2750" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=0 [ 243.219564][ T36] audit: type=1400 audit(2000000005.130:917): avc: denied { read write } for pid=5662 comm="syz-executor" name="loop1" dev="devtmpfs" ino=50 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0 [ 243.282449][ T7382] FAULT_INJECTION: forcing a failure. [ 243.282449][ T7382] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 243.297895][ T7382] CPU: 1 UID: 0 PID: 7382 Comm: syz.3.2757 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 243.297931][ T7382] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 243.297944][ T7382] Call Trace: [ 243.297951][ T7382] [ 243.297959][ T7382] __dump_stack+0x21/0x30 [ 243.297987][ T7382] dump_stack_lvl+0x10c/0x190 [ 243.298015][ T7382] ? __cfi_dump_stack_lvl+0x10/0x10 [ 243.298040][ T7382] ? find_vma+0xcd/0x110 [ 243.298063][ T7382] dump_stack+0x19/0x20 [ 243.298084][ T7382] should_fail_ex+0x3d9/0x530 [ 243.298107][ T7382] should_fail+0xf/0x20 [ 243.298127][ T7382] should_fail_usercopy+0x1e/0x30 [ 243.298151][ T7382] _copy_from_user+0x22/0xb0 [ 243.298180][ T7382] io_submit_one+0xca/0x18c0 [ 243.298215][ T7382] ? lookup_ioctx+0x360/0x360 [ 243.298243][ T7382] ? asm_exc_page_fault+0x2b/0x30 [ 243.298274][ T7382] ? __get_user_4+0x1a/0x40 [ 243.298297][ T7382] ? lookup_ioctx+0x208/0x360 [ 243.298326][ T7382] __se_sys_io_submit+0x164/0x3c0 [ 243.298353][ T7382] ? __x64_sys_io_submit+0xa0/0xa0 [ 243.298379][ T7382] ? ksys_write+0x1ef/0x250 [ 243.298407][ T7382] ? __kasan_check_read+0x15/0x20 [ 243.298432][ T7382] __x64_sys_io_submit+0x7f/0xa0 [ 243.298461][ T7382] x64_sys_call+0x1c95/0x2ee0 [ 243.298487][ T7382] do_syscall_64+0x58/0xf0 [ 243.298513][ T7382] ? clear_bhb_loop+0x35/0x90 [ 243.298544][ T7382] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 243.298573][ T7382] RIP: 0033:0x7f77b958e929 [ 243.298591][ T7382] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 243.298609][ T7382] RSP: 002b:00007f77b93eb038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 243.298633][ T7382] RAX: ffffffffffffffda RBX: 00007f77b97b5fa0 RCX: 00007f77b958e929 [ 243.298649][ T7382] RDX: 0000200000003440 RSI: 0000000000000002 RDI: 00007f77ba2f6000 [ 243.298665][ T7382] RBP: 00007f77b93eb090 R08: 0000000000000000 R09: 0000000000000000 [ 243.298680][ T7382] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 243.298701][ T7382] R13: 0000000000000000 R14: 00007f77b97b5fa0 R15: 00007ffc629ce418 [ 243.298719][ T7382] [ 244.153294][ T7415] FAULT_INJECTION: forcing a failure. [ 244.153294][ T7415] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 244.166545][ T7415] CPU: 1 UID: 0 PID: 7415 Comm: syz.0.2772 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 244.166584][ T7415] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 244.166607][ T7415] Call Trace: [ 244.166615][ T7415] [ 244.166624][ T7415] __dump_stack+0x21/0x30 [ 244.166654][ T7415] dump_stack_lvl+0x10c/0x190 [ 244.166678][ T7415] ? __cfi_dump_stack_lvl+0x10/0x10 [ 244.166703][ T7415] dump_stack+0x19/0x20 [ 244.166726][ T7415] should_fail_ex+0x3d9/0x530 [ 244.166749][ T7415] should_fail+0xf/0x20 [ 244.166770][ T7415] should_fail_usercopy+0x1e/0x30 [ 244.166794][ T7415] _copy_to_user+0x24/0xa0 [ 244.166824][ T7415] simple_read_from_buffer+0xed/0x160 [ 244.166856][ T7415] proc_fail_nth_read+0x19e/0x210 [ 244.166877][ T7415] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 244.166897][ T7415] ? bpf_lsm_file_permission+0xd/0x20 [ 244.166920][ T7415] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 244.166940][ T7415] vfs_read+0x278/0xb60 [ 244.166966][ T7415] ? __cfi_vfs_read+0x10/0x10 [ 244.166989][ T7415] ? __kasan_check_write+0x18/0x20 [ 244.167013][ T7415] ? mutex_lock+0x92/0x1c0 [ 244.167033][ T7415] ? __cfi_mutex_lock+0x10/0x10 [ 244.167053][ T7415] ? __fget_files+0x2c5/0x340 [ 244.167082][ T7415] ksys_read+0x141/0x250 [ 244.167107][ T7415] ? xfd_validate_state+0x68/0x150 [ 244.167130][ T7415] ? __cfi_ksys_read+0x10/0x10 [ 244.167156][ T7415] ? __kasan_check_read+0x15/0x20 [ 244.167178][ T7415] __x64_sys_read+0x7f/0x90 [ 244.167203][ T7415] x64_sys_call+0x2638/0x2ee0 [ 244.167230][ T7415] do_syscall_64+0x58/0xf0 [ 244.167255][ T7415] ? clear_bhb_loop+0x35/0x90 [ 244.167289][ T7415] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 244.167318][ T7415] RIP: 0033:0x7fbee598d33c [ 244.167335][ T7415] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 244.167352][ T7415] RSP: 002b:00007fbee672a030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 244.167375][ T7415] RAX: ffffffffffffffda RBX: 00007fbee5bb5fa0 RCX: 00007fbee598d33c [ 244.167391][ T7415] RDX: 000000000000000f RSI: 00007fbee672a0a0 RDI: 0000000000000003 [ 244.167405][ T7415] RBP: 00007fbee672a090 R08: 0000000000000000 R09: 0000000000000000 [ 244.167418][ T7415] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 244.167431][ T7415] R13: 0000000000000001 R14: 00007fbee5bb5fa0 R15: 00007ffc4670ea98 [ 244.167449][ T7415] [ 244.753482][ T31] usbhid 6-1:0.0: can't add hid device: -71 [ 244.762611][ T31] usbhid 6-1:0.0: probe with driver usbhid failed with error -71 [ 244.791433][ T31] usb 6-1: USB disconnect, device number 36 [ 244.820958][ T7436] FAULT_INJECTION: forcing a failure. [ 244.820958][ T7436] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 244.840455][ T7436] CPU: 1 UID: 0 PID: 7436 Comm: syz.0.2782 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 244.840491][ T7436] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 244.840505][ T7436] Call Trace: [ 244.840513][ T7436] [ 244.840522][ T7436] __dump_stack+0x21/0x30 [ 244.840553][ T7436] dump_stack_lvl+0x10c/0x190 [ 244.840591][ T7436] ? __cfi_dump_stack_lvl+0x10/0x10 [ 244.840616][ T7436] ? vfs_write+0x8ba/0xe80 [ 244.840641][ T7436] dump_stack+0x19/0x20 [ 244.840665][ T7436] should_fail_ex+0x3d9/0x530 [ 244.840688][ T7436] should_fail+0xf/0x20 [ 244.840710][ T7436] should_fail_usercopy+0x1e/0x30 [ 244.840735][ T7436] _copy_from_user+0x22/0xb0 [ 244.840764][ T7436] __sys_connect+0x136/0x440 [ 244.840794][ T7436] ? __cfi___sys_connect+0x10/0x10 [ 244.840826][ T7436] ? __kasan_check_read+0x15/0x20 [ 244.840850][ T7436] __x64_sys_connect+0x7e/0x90 [ 244.840879][ T7436] x64_sys_call+0x1c2f/0x2ee0 [ 244.840907][ T7436] do_syscall_64+0x58/0xf0 [ 244.840933][ T7436] ? clear_bhb_loop+0x35/0x90 [ 244.840966][ T7436] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 244.840996][ T7436] RIP: 0033:0x7fbee598e929 [ 244.841014][ T7436] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 244.841034][ T7436] RSP: 002b:00007fbee672a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 244.841057][ T7436] RAX: ffffffffffffffda RBX: 00007fbee5bb5fa0 RCX: 00007fbee598e929 [ 244.841073][ T7436] RDX: 0000000000000010 RSI: 0000200000000180 RDI: 0000000000000003 [ 244.841088][ T7436] RBP: 00007fbee672a090 R08: 0000000000000000 R09: 0000000000000000 [ 244.841102][ T7436] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 244.841115][ T7436] R13: 0000000000000000 R14: 00007fbee5bb5fa0 R15: 00007ffc4670ea98 [ 244.841133][ T7436] [ 245.132893][ T7456] FAULT_INJECTION: forcing a failure. [ 245.132893][ T7456] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 245.151759][ T7456] CPU: 1 UID: 0 PID: 7456 Comm: syz.3.2792 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 245.151795][ T7456] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 245.151809][ T7456] Call Trace: [ 245.151818][ T7456] [ 245.151827][ T7456] __dump_stack+0x21/0x30 [ 245.151857][ T7456] dump_stack_lvl+0x10c/0x190 [ 245.151881][ T7456] ? __cfi_dump_stack_lvl+0x10/0x10 [ 245.151907][ T7456] ? kernel_text_address+0xa9/0xe0 [ 245.151930][ T7456] dump_stack+0x19/0x20 [ 245.151954][ T7456] should_fail_ex+0x3d9/0x530 [ 245.151978][ T7456] should_fail+0xf/0x20 [ 245.151999][ T7456] should_fail_usercopy+0x1e/0x30 [ 245.152023][ T7456] _copy_from_user+0x22/0xb0 [ 245.152052][ T7456] ____sys_sendmsg+0x30c/0xa70 [ 245.152086][ T7456] ? __sys_sendmsg_sock+0x50/0x50 [ 245.152119][ T7456] ? import_iovec+0x81/0xb0 [ 245.152150][ T7456] ___sys_sendmsg+0x220/0x2a0 [ 245.152181][ T7456] ? __sys_sendmsg+0x280/0x280 [ 245.152212][ T7456] ? proc_fail_nth_write+0x17e/0x210 [ 245.152233][ T7456] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 245.152261][ T7456] __x64_sys_sendmsg+0x1eb/0x2c0 [ 245.152281][ T7456] ? fput+0x1a5/0x240 [ 245.152311][ T7456] ? __cfi___x64_sys_sendmsg+0x10/0x10 [ 245.152340][ T7456] ? ksys_write+0x1ef/0x250 [ 245.152367][ T7456] ? __kasan_check_read+0x15/0x20 [ 245.152392][ T7456] x64_sys_call+0x2a4c/0x2ee0 [ 245.152420][ T7456] do_syscall_64+0x58/0xf0 [ 245.152448][ T7456] ? clear_bhb_loop+0x35/0x90 [ 245.152480][ T7456] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 245.152510][ T7456] RIP: 0033:0x7f77b958e929 [ 245.152528][ T7456] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 245.152547][ T7456] RSP: 002b:00007f77b93eb038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 245.152570][ T7456] RAX: ffffffffffffffda RBX: 00007f77b97b5fa0 RCX: 00007f77b958e929 [ 245.152587][ T7456] RDX: 00000000000000c4 RSI: 0000200000000240 RDI: 0000000000000004 [ 245.152602][ T7456] RBP: 00007f77b93eb090 R08: 0000000000000000 R09: 0000000000000000 [ 245.152616][ T7456] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 245.152630][ T7456] R13: 0000000000000000 R14: 00007f77b97b5fa0 R15: 00007ffc629ce418 [ 245.152648][ T7456] [ 245.472522][ T7480] FAULT_INJECTION: forcing a failure. [ 245.472522][ T7480] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 245.488306][ T7480] CPU: 1 UID: 0 PID: 7480 Comm: syz.1.2802 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 245.488346][ T7480] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 245.488361][ T7480] Call Trace: [ 245.488369][ T7480] [ 245.488378][ T7480] __dump_stack+0x21/0x30 [ 245.488408][ T7480] dump_stack_lvl+0x10c/0x190 [ 245.488432][ T7480] ? __cfi_dump_stack_lvl+0x10/0x10 [ 245.488458][ T7480] ? vsnprintf+0x7b4/0x1aa0 [ 245.488483][ T7480] ? __asan_memcpy+0x5a/0x80 [ 245.488508][ T7480] dump_stack+0x19/0x20 [ 245.488532][ T7480] should_fail_ex+0x3d9/0x530 [ 245.488557][ T7480] should_fail+0xf/0x20 [ 245.488579][ T7480] should_fail_usercopy+0x1e/0x30 [ 245.488605][ T7480] _copy_from_user+0x22/0xb0 [ 245.488634][ T7480] kstrtouint_from_user+0xc2/0x150 [ 245.488657][ T7480] ? __cfi_kstrtouint_from_user+0x10/0x10 [ 245.488681][ T7480] ? selinux_file_permission+0x309/0xb30 [ 245.488713][ T7480] ? __cfi_selinux_file_permission+0x10/0x10 [ 245.488743][ T7480] proc_fail_nth_write+0x89/0x210 [ 245.488763][ T7480] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 245.488785][ T7480] ? bpf_lsm_file_permission+0xd/0x20 [ 245.488809][ T7480] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 245.488829][ T7480] vfs_write+0x3c0/0xe80 [ 245.488855][ T7480] ? __cfi_vfs_write+0x10/0x10 [ 245.488879][ T7480] ? __kasan_check_write+0x18/0x20 [ 245.488903][ T7480] ? mutex_lock+0x92/0x1c0 [ 245.488923][ T7480] ? __cfi_mutex_lock+0x10/0x10 [ 245.488943][ T7480] ? __fget_files+0x2c5/0x340 [ 245.488972][ T7480] ksys_write+0x141/0x250 [ 245.488997][ T7480] ? __cfi_ksys_write+0x10/0x10 [ 245.489021][ T7480] ? fdget+0x189/0x1f0 [ 245.489050][ T7480] ? __kasan_check_read+0x15/0x20 [ 245.489073][ T7480] __x64_sys_write+0x7f/0x90 [ 245.489098][ T7480] x64_sys_call+0x271c/0x2ee0 [ 245.489125][ T7480] do_syscall_64+0x58/0xf0 [ 245.489152][ T7480] ? clear_bhb_loop+0x35/0x90 [ 245.489185][ T7480] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 245.489226][ T7480] RIP: 0033:0x7f6e86d8d3df [ 245.489244][ T7480] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48 [ 245.489263][ T7480] RSP: 002b:00007f6e87b3a030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 245.489286][ T7480] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f6e86d8d3df [ 245.489303][ T7480] RDX: 0000000000000001 RSI: 00007f6e87b3a0a0 RDI: 0000000000000003 [ 245.489316][ T7480] RBP: 00007f6e87b3a090 R08: 0000000000000000 R09: 0000000000000000 [ 245.489330][ T7480] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 245.489343][ T7480] R13: 0000000000000000 R14: 00007f6e86fb5fa0 R15: 00007ffd81e75a18 [ 245.489362][ T7480] [ 245.916935][ T7501] syz.3.2810: attempt to access beyond end of device [ 245.916935][ T7501] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 246.211422][ T7532] syz.0.2822: attempt to access beyond end of device [ 246.211422][ T7532] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 246.364493][ T7552] FAULT_INJECTION: forcing a failure. [ 246.364493][ T7552] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 246.377683][ T7552] CPU: 0 UID: 0 PID: 7552 Comm: syz.5.2835 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 246.377722][ T7552] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 246.377737][ T7552] Call Trace: [ 246.377745][ T7552] [ 246.377754][ T7552] __dump_stack+0x21/0x30 [ 246.377784][ T7552] dump_stack_lvl+0x10c/0x190 [ 246.377810][ T7552] ? __cfi_dump_stack_lvl+0x10/0x10 [ 246.377835][ T7552] ? __call_rcu_common+0x40b/0x6f0 [ 246.377863][ T7552] dump_stack+0x19/0x20 [ 246.377887][ T7552] should_fail_ex+0x3d9/0x530 [ 246.377912][ T7552] should_fail+0xf/0x20 [ 246.377934][ T7552] should_fail_usercopy+0x1e/0x30 [ 246.377960][ T7552] _copy_from_user+0x22/0xb0 [ 246.377989][ T7552] do_ipv6_getsockopt+0x282/0x1ea0 [ 246.378018][ T7552] ? __cfi_do_ipv6_getsockopt+0x10/0x10 [ 246.378046][ T7552] ? bpf_lsm_inode_setintegrity+0x20/0x20 [ 246.378071][ T7552] ? avc_perm_nonode+0x101/0x1b0 [ 246.378092][ T7552] ? avc_has_perm_noaudit+0x360/0x360 [ 246.378116][ T7552] ? kstrtoull+0x13b/0x1e0 [ 246.378137][ T7552] ? avc_has_perm_noaudit+0x21c/0x360 [ 246.378159][ T7552] ? avc_has_perm+0x144/0x220 [ 246.378189][ T7552] ? __cfi_avc_has_perm+0x10/0x10 [ 246.378213][ T7552] ipv6_getsockopt+0xbe/0x280 [ 246.378239][ T7552] ? bpf_lsm_inode_setintegrity+0x20/0x20 [ 246.378262][ T7552] ? bpf_lsm_inode_setintegrity+0x20/0x20 [ 246.378285][ T7552] ? __cfi_ipv6_getsockopt+0x10/0x10 [ 246.378312][ T7552] ? vfs_write+0x8ba/0xe80 [ 246.378337][ T7552] tcp_getsockopt+0x103/0x130 [ 246.378358][ T7552] sock_common_getsockopt+0xaf/0xd0 [ 246.378383][ T7552] ? __cfi_sock_common_getsockopt+0x10/0x10 [ 246.378408][ T7552] do_sock_getsockopt+0x3a3/0x6d0 [ 246.378441][ T7552] ? __cfi_do_sock_getsockopt+0x10/0x10 [ 246.378473][ T7552] ? __fget_files+0x2c5/0x340 [ 246.378503][ T7552] __x64_sys_getsockopt+0x1d5/0x280 [ 246.378535][ T7552] x64_sys_call+0x10db/0x2ee0 [ 246.378563][ T7552] do_syscall_64+0x58/0xf0 [ 246.378590][ T7552] ? clear_bhb_loop+0x35/0x90 [ 246.378623][ T7552] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 246.378655][ T7552] RIP: 0033:0x7fdafff8e929 [ 246.378672][ T7552] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 246.378692][ T7552] RSP: 002b:00007fdb00d9e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 246.378715][ T7552] RAX: ffffffffffffffda RBX: 00007fdb001b5fa0 RCX: 00007fdafff8e929 [ 246.378731][ T7552] RDX: 0000000000000017 RSI: 0000000000000029 RDI: 0000000000000003 [ 246.378745][ T7552] RBP: 00007fdb00d9e090 R08: 0000200000000040 R09: 0000000000000000 [ 246.378759][ T7552] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 246.378772][ T7552] R13: 0000000000000000 R14: 00007fdb001b5fa0 R15: 00007fffc3506978 [ 246.378790][ T7552] [ 246.944117][ T7584] FAULT_INJECTION: forcing a failure. [ 246.944117][ T7584] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 246.974672][ T7584] CPU: 0 UID: 0 PID: 7584 Comm: syz.5.2849 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 246.974707][ T7584] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 246.974722][ T7584] Call Trace: [ 246.974730][ T7584] [ 246.974739][ T7584] __dump_stack+0x21/0x30 [ 246.974768][ T7584] dump_stack_lvl+0x10c/0x190 [ 246.974793][ T7584] ? __cfi_dump_stack_lvl+0x10/0x10 [ 246.974819][ T7584] ? vsnprintf+0x7b4/0x1aa0 [ 246.974845][ T7584] ? __asan_memcpy+0x5a/0x80 [ 246.974870][ T7584] dump_stack+0x19/0x20 [ 246.974895][ T7584] should_fail_ex+0x3d9/0x530 [ 246.974917][ T7584] should_fail+0xf/0x20 [ 246.974938][ T7584] should_fail_usercopy+0x1e/0x30 [ 246.974962][ T7584] _copy_from_user+0x22/0xb0 [ 246.974990][ T7584] kstrtouint_from_user+0xc2/0x150 [ 246.975022][ T7584] ? __cfi_kstrtouint_from_user+0x10/0x10 [ 246.975045][ T7584] ? selinux_file_permission+0x309/0xb30 [ 246.975076][ T7584] ? __cfi_selinux_file_permission+0x10/0x10 [ 246.975107][ T7584] proc_fail_nth_write+0x89/0x210 [ 246.975135][ T7584] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 246.975157][ T7584] ? bpf_lsm_file_permission+0xd/0x20 [ 246.975179][ T7584] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 246.975199][ T7584] vfs_write+0x3c0/0xe80 [ 246.975226][ T7584] ? __cfi_vfs_write+0x10/0x10 [ 246.975251][ T7584] ? __kasan_check_write+0x18/0x20 [ 246.975274][ T7584] ? mutex_lock+0x92/0x1c0 [ 246.975293][ T7584] ? __cfi_mutex_lock+0x10/0x10 [ 246.975313][ T7584] ? __fget_files+0x2c5/0x340 [ 246.975344][ T7584] ksys_write+0x141/0x250 [ 246.975370][ T7584] ? __cfi_ksys_write+0x10/0x10 [ 246.975397][ T7584] ? __kasan_check_read+0x15/0x20 [ 246.975420][ T7584] __x64_sys_write+0x7f/0x90 [ 246.975442][ T7584] x64_sys_call+0x271c/0x2ee0 [ 246.975467][ T7584] do_syscall_64+0x58/0xf0 [ 246.975498][ T7584] ? clear_bhb_loop+0x35/0x90 [ 246.975528][ T7584] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 246.975557][ T7584] RIP: 0033:0x7fdafff8d3df [ 246.975576][ T7584] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48 [ 246.975596][ T7584] RSP: 002b:00007fdb00d9e030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 246.975620][ T7584] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fdafff8d3df [ 246.975636][ T7584] RDX: 0000000000000001 RSI: 00007fdb00d9e0a0 RDI: 0000000000000003 [ 246.975651][ T7584] RBP: 00007fdb00d9e090 R08: 0000000000000000 R09: 0000000000000080 [ 246.975665][ T7584] R10: 0000000000000800 R11: 0000000000000293 R12: 0000000000000001 [ 246.975679][ T7584] R13: 0000000000000000 R14: 00007fdb001b5fa0 R15: 00007fffc3506978 [ 246.975697][ T7584] [ 247.757181][ T7627] syz.3.2869: attempt to access beyond end of device [ 247.757181][ T7627] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 247.925692][ T36] kauditd_printk_skb: 350 callbacks suppressed [ 247.925712][ T36] audit: type=1400 audit(2000000010.060:1268): avc: denied { read write } for pid=6610 comm="syz-executor" name="loop0" dev="devtmpfs" ino=954 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0 [ 248.015778][ T36] audit: type=1400 audit(2000000010.060:1269): avc: denied { read write } for pid=5662 comm="syz-executor" name="loop1" dev="devtmpfs" ino=50 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0 [ 248.064204][ T7642] FAULT_INJECTION: forcing a failure. [ 248.064204][ T7642] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 248.070671][ T36] audit: type=1400 audit(2000000010.130:1270): avc: denied { create } for pid=7637 comm="syz.0.2873" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=0 [ 248.125009][ T36] audit: type=1400 audit(2000000010.130:1271): avc: denied { read } for pid=7637 comm="syz.0.2873" name="kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=0 [ 248.141214][ T7642] CPU: 1 UID: 0 PID: 7642 Comm: syz.0.2875 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 248.141256][ T7642] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 248.141273][ T7642] Call Trace: [ 248.141282][ T7642] [ 248.141291][ T7642] __dump_stack+0x21/0x30 [ 248.141326][ T7642] dump_stack_lvl+0x10c/0x190 [ 248.141354][ T7642] ? __cfi_dump_stack_lvl+0x10/0x10 [ 248.141384][ T7642] dump_stack+0x19/0x20 [ 248.141413][ T7642] should_fail_ex+0x3d9/0x530 [ 248.141441][ T7642] should_fail+0xf/0x20 [ 248.141464][ T7642] should_fail_usercopy+0x1e/0x30 [ 248.141494][ T7642] _copy_from_user+0x22/0xb0 [ 248.141525][ T7642] memdup_user+0x81/0x180 [ 248.141553][ T7642] ? strndup_user+0x40/0xd0 [ 248.141580][ T7642] strndup_user+0x6c/0xd0 [ 248.141606][ T7642] __se_sys_add_key+0x1b1/0x490 [ 248.141631][ T7642] ? __x64_sys_add_key+0xf0/0xf0 [ 248.141657][ T7642] __x64_sys_add_key+0xc3/0xf0 [ 248.141679][ T7642] x64_sys_call+0x195f/0x2ee0 [ 248.141712][ T7642] do_syscall_64+0x58/0xf0 [ 248.141742][ T7642] ? clear_bhb_loop+0x35/0x90 [ 248.141778][ T7642] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 248.141815][ T7642] RIP: 0033:0x7fbee598e929 [ 248.141836][ T7642] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 248.141859][ T7642] RSP: 002b:00007fbee672a038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f8 [ 248.141889][ T7642] RAX: ffffffffffffffda RBX: 00007fbee5bb5fa0 RCX: 00007fbee598e929 [ 248.141911][ T7642] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000200000000000 [ 248.141929][ T7642] RBP: 00007fbee672a090 R08: fffffffffffffffc R09: 0000000000000000 [ 248.141946][ T7642] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 248.141962][ T7642] R13: 0000000000000000 R14: 00007fbee5bb5fa0 R15: 00007ffc4670ea98 [ 248.141983][ T7642] [ 248.373404][ T36] audit: type=1400 audit(2000000010.130:1272): avc: denied { read write } for pid=5662 comm="syz-executor" name="loop1" dev="devtmpfs" ino=50 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0 [ 248.421210][ T36] audit: type=1400 audit(2000000010.140:1273): avc: denied { read write } for pid=6610 comm="syz-executor" name="loop0" dev="devtmpfs" ino=954 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0 [ 248.480645][ T36] audit: type=1400 audit(2000000010.150:1274): avc: denied { read write } for pid=6306 comm="syz-executor" name="loop3" dev="devtmpfs" ino=52 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0 [ 248.546244][ T36] audit: type=1400 audit(2000000010.190:1275): avc: denied { create } for pid=7639 comm="syz.1.2874" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=0 [ 248.586717][ T36] audit: type=1400 audit(2000000010.190:1276): avc: denied { execmem } for pid=7639 comm="syz.1.2874" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=0 [ 248.608778][ T7669] audit: audit_lost=7 audit_rate_limit=0 audit_backlog_limit=64 [ 248.722733][ T7680] FAULT_INJECTION: forcing a failure. [ 248.722733][ T7680] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 248.743840][ T7680] CPU: 0 UID: 0 PID: 7680 Comm: syz.5.2884 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 248.743874][ T7680] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 248.743888][ T7680] Call Trace: [ 248.743896][ T7680] [ 248.743905][ T7680] __dump_stack+0x21/0x30 [ 248.743935][ T7680] dump_stack_lvl+0x10c/0x190 [ 248.743960][ T7680] ? __cfi_dump_stack_lvl+0x10/0x10 [ 248.743994][ T7680] ? vsnprintf+0x7b4/0x1aa0 [ 248.744020][ T7680] ? __asan_memcpy+0x5a/0x80 [ 248.744043][ T7680] dump_stack+0x19/0x20 [ 248.744066][ T7680] should_fail_ex+0x3d9/0x530 [ 248.744090][ T7680] should_fail+0xf/0x20 [ 248.744111][ T7680] should_fail_usercopy+0x1e/0x30 [ 248.744136][ T7680] _copy_from_user+0x22/0xb0 [ 248.744164][ T7680] kstrtouint_from_user+0xc2/0x150 [ 248.744186][ T7680] ? __cfi_kstrtouint_from_user+0x10/0x10 [ 248.744209][ T7680] ? selinux_file_permission+0x309/0xb30 [ 248.744242][ T7680] ? __cfi_selinux_file_permission+0x10/0x10 [ 248.744272][ T7680] proc_fail_nth_write+0x89/0x210 [ 248.744292][ T7680] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 248.744313][ T7680] ? bpf_lsm_file_permission+0xd/0x20 [ 248.744336][ T7680] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 248.744356][ T7680] vfs_write+0x3c0/0xe80 [ 248.744381][ T7680] ? __cfi_vfs_write+0x10/0x10 [ 248.744406][ T7680] ? __kasan_check_write+0x18/0x20 [ 248.744428][ T7680] ? mutex_lock+0x92/0x1c0 [ 248.744445][ T7680] ? __cfi_mutex_lock+0x10/0x10 [ 248.744469][ T7680] ? __fget_files+0x2c5/0x340 [ 248.744497][ T7680] ksys_write+0x141/0x250 [ 248.744522][ T7680] ? __cfi_ksys_write+0x10/0x10 [ 248.744546][ T7680] ? __kasan_check_read+0x15/0x20 [ 248.744570][ T7680] __x64_sys_write+0x7f/0x90 [ 248.744595][ T7680] x64_sys_call+0x271c/0x2ee0 [ 248.744622][ T7680] do_syscall_64+0x58/0xf0 [ 248.744648][ T7680] ? clear_bhb_loop+0x35/0x90 [ 248.744721][ T7680] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 248.744750][ T7680] RIP: 0033:0x7fdafff8d3df [ 248.744767][ T7680] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48 [ 248.744785][ T7680] RSP: 002b:00007fdb00d9e030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 248.744807][ T7680] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fdafff8d3df [ 248.744848][ T7680] RDX: 0000000000000001 RSI: 00007fdb00d9e0a0 RDI: 0000000000000003 [ 248.744863][ T7680] RBP: 00007fdb00d9e090 R08: 0000000000000000 R09: 0000000000000000 [ 248.744877][ T7680] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 248.744892][ T7680] R13: 0000000000000000 R14: 00007fdb001b5fa0 R15: 00007fffc3506978 [ 248.744910][ T7680] [ 249.122833][ T7692] FAULT_INJECTION: forcing a failure. [ 249.122833][ T7692] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 249.147012][ T7692] CPU: 1 UID: 0 PID: 7692 Comm: syz.3.2899 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 249.147051][ T7692] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 249.147066][ T7692] Call Trace: [ 249.147075][ T7692] [ 249.147084][ T7692] __dump_stack+0x21/0x30 [ 249.147114][ T7692] dump_stack_lvl+0x10c/0x190 [ 249.147139][ T7692] ? __cfi_dump_stack_lvl+0x10/0x10 [ 249.147168][ T7692] dump_stack+0x19/0x20 [ 249.147191][ T7692] should_fail_ex+0x3d9/0x530 [ 249.147215][ T7692] should_fail+0xf/0x20 [ 249.147236][ T7692] should_fail_usercopy+0x1e/0x30 [ 249.147261][ T7692] _copy_to_user+0x24/0xa0 [ 249.147296][ T7692] simple_read_from_buffer+0xed/0x160 [ 249.147330][ T7692] proc_fail_nth_read+0x19e/0x210 [ 249.147350][ T7692] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 249.147371][ T7692] ? bpf_lsm_file_permission+0xd/0x20 [ 249.147394][ T7692] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 249.147414][ T7692] vfs_read+0x278/0xb60 [ 249.147441][ T7692] ? __cfi_vfs_read+0x10/0x10 [ 249.147465][ T7692] ? __kasan_check_write+0x18/0x20 [ 249.147488][ T7692] ? mutex_lock+0x92/0x1c0 [ 249.147507][ T7692] ? __cfi_mutex_lock+0x10/0x10 [ 249.147528][ T7692] ? __fget_files+0x2c5/0x340 [ 249.147558][ T7692] ksys_read+0x141/0x250 [ 249.147582][ T7692] ? __cfi_ksys_read+0x10/0x10 [ 249.147607][ T7692] ? __kasan_check_read+0x15/0x20 [ 249.147631][ T7692] __x64_sys_read+0x7f/0x90 [ 249.147655][ T7692] x64_sys_call+0x2638/0x2ee0 [ 249.147686][ T7692] do_syscall_64+0x58/0xf0 [ 249.147714][ T7692] ? clear_bhb_loop+0x35/0x90 [ 249.147745][ T7692] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 249.147777][ T7692] RIP: 0033:0x7f77b958d33c [ 249.147794][ T7692] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 249.147814][ T7692] RSP: 002b:00007f77b93eb030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 249.147838][ T7692] RAX: ffffffffffffffda RBX: 00007f77b97b5fa0 RCX: 00007f77b958d33c [ 249.147855][ T7692] RDX: 000000000000000f RSI: 00007f77b93eb0a0 RDI: 0000000000000003 [ 249.147870][ T7692] RBP: 00007f77b93eb090 R08: 0000000000000000 R09: 0000000000000000 [ 249.147884][ T7692] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 249.147897][ T7692] R13: 0000000000000001 R14: 00007f77b97b5fa0 R15: 00007ffc629ce418 [ 249.147915][ T7692] [ 249.658997][ T7722] FAULT_INJECTION: forcing a failure. [ 249.658997][ T7722] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 249.672133][ T7722] CPU: 0 UID: 0 PID: 7722 Comm: syz.1.2913 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 249.672172][ T7722] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 249.672185][ T7722] Call Trace: [ 249.672191][ T7722] [ 249.672200][ T7722] __dump_stack+0x21/0x30 [ 249.672224][ T7722] dump_stack_lvl+0x10c/0x190 [ 249.672243][ T7722] ? __cfi_dump_stack_lvl+0x10/0x10 [ 249.672263][ T7722] dump_stack+0x19/0x20 [ 249.672279][ T7722] should_fail_ex+0x3d9/0x530 [ 249.672296][ T7722] should_fail+0xf/0x20 [ 249.672312][ T7722] should_fail_usercopy+0x1e/0x30 [ 249.672330][ T7722] _copy_to_user+0x24/0xa0 [ 249.672351][ T7722] simple_read_from_buffer+0xed/0x160 [ 249.672376][ T7722] proc_fail_nth_read+0x19e/0x210 [ 249.672391][ T7722] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 249.672406][ T7722] ? bpf_lsm_file_permission+0xd/0x20 [ 249.672423][ T7722] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 249.672438][ T7722] vfs_read+0x278/0xb60 [ 249.672457][ T7722] ? __cfi_vfs_read+0x10/0x10 [ 249.672474][ T7722] ? __kasan_check_write+0x18/0x20 [ 249.672492][ T7722] ? mutex_lock+0x92/0x1c0 [ 249.672506][ T7722] ? __cfi_mutex_lock+0x10/0x10 [ 249.672520][ T7722] ? __fget_files+0x2c5/0x340 [ 249.672542][ T7722] ksys_read+0x141/0x250 [ 249.672559][ T7722] ? __cfi_ksys_read+0x10/0x10 [ 249.672583][ T7722] ? __kasan_check_read+0x15/0x20 [ 249.672600][ T7722] __x64_sys_read+0x7f/0x90 [ 249.672618][ T7722] x64_sys_call+0x2638/0x2ee0 [ 249.672638][ T7722] do_syscall_64+0x58/0xf0 [ 249.672658][ T7722] ? clear_bhb_loop+0x35/0x90 [ 249.672682][ T7722] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 249.672704][ T7722] RIP: 0033:0x7f6e86d8d33c [ 249.672717][ T7722] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 249.672731][ T7722] RSP: 002b:00007f6e87b3a030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 249.672749][ T7722] RAX: ffffffffffffffda RBX: 00007f6e86fb5fa0 RCX: 00007f6e86d8d33c [ 249.672761][ T7722] RDX: 000000000000000f RSI: 00007f6e87b3a0a0 RDI: 0000000000000004 [ 249.672772][ T7722] RBP: 00007f6e87b3a090 R08: 0000000000000000 R09: 0000000000000000 [ 249.672782][ T7722] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 249.672792][ T7722] R13: 0000000000000000 R14: 00007f6e86fb5fa0 R15: 00007ffd81e75a18 [ 249.672805][ T7722] [ 250.281350][ T7742] FAULT_INJECTION: forcing a failure. [ 250.281350][ T7742] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 250.294510][ T7742] CPU: 0 UID: 0 PID: 7742 Comm: syz.3.2923 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 250.294536][ T7742] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 250.294547][ T7742] Call Trace: [ 250.294553][ T7742] [ 250.294561][ T7742] __dump_stack+0x21/0x30 [ 250.294585][ T7742] dump_stack_lvl+0x10c/0x190 [ 250.294603][ T7742] ? __cfi_dump_stack_lvl+0x10/0x10 [ 250.294621][ T7742] ? vsnprintf+0x7b4/0x1aa0 [ 250.294641][ T7742] ? __asan_memcpy+0x5a/0x80 [ 250.294663][ T7742] dump_stack+0x19/0x20 [ 250.294688][ T7742] should_fail_ex+0x3d9/0x530 [ 250.294714][ T7742] should_fail+0xf/0x20 [ 250.294730][ T7742] should_fail_usercopy+0x1e/0x30 [ 250.294748][ T7742] _copy_from_user+0x22/0xb0 [ 250.294769][ T7742] kstrtouint_from_user+0xc2/0x150 [ 250.294786][ T7742] ? __cfi_kstrtouint_from_user+0x10/0x10 [ 250.294803][ T7742] ? selinux_file_permission+0x309/0xb30 [ 250.294827][ T7742] ? __cfi_selinux_file_permission+0x10/0x10 [ 250.294850][ T7742] proc_fail_nth_write+0x89/0x210 [ 250.294865][ T7742] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 250.294880][ T7742] ? bpf_lsm_file_permission+0xd/0x20 [ 250.294898][ T7742] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 250.294914][ T7742] vfs_write+0x3c0/0xe80 [ 250.294934][ T7742] ? __cfi_vfs_write+0x10/0x10 [ 250.294951][ T7742] ? __kasan_check_write+0x18/0x20 [ 250.294968][ T7742] ? mutex_lock+0x92/0x1c0 [ 250.294982][ T7742] ? __cfi_mutex_lock+0x10/0x10 [ 250.294996][ T7742] ? __fget_files+0x2c5/0x340 [ 250.295019][ T7742] ksys_write+0x141/0x250 [ 250.295036][ T7742] ? xfd_validate_state+0x68/0x150 [ 250.295054][ T7742] ? __cfi_ksys_write+0x10/0x10 [ 250.295073][ T7742] ? __kasan_check_read+0x15/0x20 [ 250.295090][ T7742] __x64_sys_write+0x7f/0x90 [ 250.295108][ T7742] x64_sys_call+0x271c/0x2ee0 [ 250.295129][ T7742] do_syscall_64+0x58/0xf0 [ 250.295172][ T7742] ? clear_bhb_loop+0x35/0x90 [ 250.295210][ T7742] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 250.295237][ T7742] RIP: 0033:0x7f77b958d3df [ 250.295251][ T7742] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48 [ 250.295268][ T7742] RSP: 002b:00007f77b93eb030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 250.295285][ T7742] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f77b958d3df [ 250.295296][ T7742] RDX: 0000000000000001 RSI: 00007f77b93eb0a0 RDI: 0000000000000003 [ 250.295307][ T7742] RBP: 00007f77b93eb090 R08: 0000000000000000 R09: 0000000000000000 [ 250.295317][ T7742] R10: 0000000000080800 R11: 0000000000000293 R12: 0000000000000001 [ 250.295327][ T7742] R13: 0000000000000000 R14: 00007f77b97b5fa0 R15: 00007ffc629ce418 [ 250.295341][ T7742] [ 251.057408][ T7794] FAULT_INJECTION: forcing a failure. [ 251.057408][ T7794] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 251.075340][ T7794] CPU: 0 UID: 0 PID: 7794 Comm: syz.0.2947 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 251.075377][ T7794] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 251.075391][ T7794] Call Trace: [ 251.075398][ T7794] [ 251.075406][ T7794] __dump_stack+0x21/0x30 [ 251.075434][ T7794] dump_stack_lvl+0x10c/0x190 [ 251.075456][ T7794] ? __cfi_dump_stack_lvl+0x10/0x10 [ 251.075481][ T7794] dump_stack+0x19/0x20 [ 251.075503][ T7794] should_fail_ex+0x3d9/0x530 [ 251.075525][ T7794] should_fail+0xf/0x20 [ 251.075544][ T7794] should_fail_usercopy+0x1e/0x30 [ 251.075568][ T7794] _copy_to_user+0x24/0xa0 [ 251.075594][ T7794] simple_read_from_buffer+0xed/0x160 [ 251.075626][ T7794] proc_fail_nth_read+0x19e/0x210 [ 251.075648][ T7794] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 251.075668][ T7794] ? __cfi_core_sys_select+0x10/0x10 [ 251.075700][ T7794] ? bpf_lsm_file_permission+0xd/0x20 [ 251.075722][ T7794] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 251.075742][ T7794] vfs_read+0x278/0xb60 [ 251.075767][ T7794] ? pollwake+0x210/0x210 [ 251.075786][ T7794] ? __cfi_vfs_read+0x10/0x10 [ 251.075808][ T7794] ? __kasan_check_write+0x18/0x20 [ 251.075830][ T7794] ? mutex_lock+0x92/0x1c0 [ 251.075858][ T7794] ? __cfi_mutex_lock+0x10/0x10 [ 251.075879][ T7794] ? __fget_files+0x2c5/0x340 [ 251.075909][ T7794] ksys_read+0x141/0x250 [ 251.075933][ T7794] ? __cfi_ksys_read+0x10/0x10 [ 251.075957][ T7794] ? __kasan_check_read+0x15/0x20 [ 251.075979][ T7794] __x64_sys_read+0x7f/0x90 [ 251.076002][ T7794] x64_sys_call+0x2638/0x2ee0 [ 251.076029][ T7794] do_syscall_64+0x58/0xf0 [ 251.076055][ T7794] ? clear_bhb_loop+0x35/0x90 [ 251.076085][ T7794] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 251.076115][ T7794] RIP: 0033:0x7fbee598d33c [ 251.076133][ T7794] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 251.076152][ T7794] RSP: 002b:00007fbee672a030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 251.076176][ T7794] RAX: ffffffffffffffda RBX: 00007fbee5bb5fa0 RCX: 00007fbee598d33c [ 251.076193][ T7794] RDX: 000000000000000f RSI: 00007fbee672a0a0 RDI: 0000000000000003 [ 251.076208][ T7794] RBP: 00007fbee672a090 R08: 0000000000000000 R09: 0000000000000000 [ 251.076222][ T7794] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 251.076234][ T7794] R13: 0000000000000001 R14: 00007fbee5bb5fa0 R15: 00007ffc4670ea98 [ 251.076251][ T7794] [ 251.666729][ T7837] FAULT_INJECTION: forcing a failure. [ 251.666729][ T7837] name failslab, interval 1, probability 0, space 0, times 0 [ 251.679526][ T7837] CPU: 0 UID: 0 PID: 7837 Comm: syz.3.2967 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 251.679562][ T7837] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 251.679577][ T7837] Call Trace: [ 251.679585][ T7837] [ 251.679594][ T7837] __dump_stack+0x21/0x30 [ 251.679626][ T7837] dump_stack_lvl+0x10c/0x190 [ 251.679651][ T7837] ? __cfi_dump_stack_lvl+0x10/0x10 [ 251.679678][ T7837] dump_stack+0x19/0x20 [ 251.679702][ T7837] should_fail_ex+0x3d9/0x530 [ 251.679727][ T7837] should_failslab+0xac/0x100 [ 251.679757][ T7837] __kmalloc_node_noprof+0x6c/0x450 [ 251.679780][ T7837] ? __kvmalloc_node_noprof+0x11d/0x300 [ 251.679805][ T7837] __kvmalloc_node_noprof+0x11d/0x300 [ 251.679827][ T7837] ? __cfi___kvmalloc_node_noprof+0x10/0x10 [ 251.679850][ T7837] ? tokenize_frame_descr+0x30/0xc0 [ 251.679873][ T7837] ? __cfi_io_ring_ctx_ref_free+0x10/0x10 [ 251.679896][ T7837] io_ring_ctx_alloc+0x608/0x1e10 [ 251.679920][ T7837] ? __cfi_vfs_write+0x10/0x10 [ 251.679944][ T7837] io_uring_create+0x2e0/0x13d0 [ 251.679968][ T7837] __se_sys_io_uring_setup+0x24b/0x260 [ 251.679997][ T7837] ? __x64_sys_io_uring_setup+0x80/0x80 [ 251.680030][ T7837] ? __kasan_check_read+0x15/0x20 [ 251.680063][ T7837] __x64_sys_io_uring_setup+0x5f/0x80 [ 251.680094][ T7837] x64_sys_call+0x22c0/0x2ee0 [ 251.680122][ T7837] do_syscall_64+0x58/0xf0 [ 251.680151][ T7837] ? clear_bhb_loop+0x35/0x90 [ 251.680183][ T7837] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 251.680215][ T7837] RIP: 0033:0x7f77b958e929 [ 251.680233][ T7837] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 251.680252][ T7837] RSP: 002b:00007f77b93eafc8 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 251.680275][ T7837] RAX: ffffffffffffffda RBX: 00007f77b97b5fa0 RCX: 00007f77b958e929 [ 251.680291][ T7837] RDX: 0000200000000140 RSI: 0000200000000080 RDI: 0000000000000f00 [ 251.680305][ T7837] RBP: 0000200000000080 R08: 0000000000000000 R09: 0000200000000140 [ 251.680320][ T7837] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 251.680333][ T7837] R13: 0000200000000100 R14: 0000000000000f00 R15: 0000200000000140 [ 251.680353][ T7837] [ 252.415145][ T7884] FAULT_INJECTION: forcing a failure. [ 252.415145][ T7884] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 252.440047][ T7884] CPU: 1 UID: 0 PID: 7884 Comm: syz.3.2984 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 252.440087][ T7884] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 252.440102][ T7884] Call Trace: [ 252.440110][ T7884] [ 252.440119][ T7884] __dump_stack+0x21/0x30 [ 252.440149][ T7884] dump_stack_lvl+0x10c/0x190 [ 252.440173][ T7884] ? __cfi_dump_stack_lvl+0x10/0x10 [ 252.440200][ T7884] dump_stack+0x19/0x20 [ 252.440224][ T7884] should_fail_ex+0x3d9/0x530 [ 252.440248][ T7884] should_fail+0xf/0x20 [ 252.440270][ T7884] should_fail_usercopy+0x1e/0x30 [ 252.440295][ T7884] _copy_to_user+0x24/0xa0 [ 252.440324][ T7884] simple_read_from_buffer+0xed/0x160 [ 252.440357][ T7884] proc_fail_nth_read+0x19e/0x210 [ 252.440378][ T7884] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 252.440399][ T7884] ? __cfi_core_sys_select+0x10/0x10 [ 252.440430][ T7884] ? bpf_lsm_file_permission+0xd/0x20 [ 252.440452][ T7884] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 252.440473][ T7884] vfs_read+0x278/0xb60 [ 252.440497][ T7884] ? pollwake+0x210/0x210 [ 252.440516][ T7884] ? __cfi_vfs_read+0x10/0x10 [ 252.440539][ T7884] ? __kasan_check_write+0x18/0x20 [ 252.440561][ T7884] ? mutex_lock+0x92/0x1c0 [ 252.440586][ T7884] ? __cfi_mutex_lock+0x10/0x10 [ 252.440604][ T7884] ? __fget_files+0x2c5/0x340 [ 252.440634][ T7884] ksys_read+0x141/0x250 [ 252.440659][ T7884] ? __cfi_ksys_read+0x10/0x10 [ 252.440684][ T7884] ? __kasan_check_read+0x15/0x20 [ 252.440707][ T7884] __x64_sys_read+0x7f/0x90 [ 252.440731][ T7884] x64_sys_call+0x2638/0x2ee0 [ 252.440759][ T7884] do_syscall_64+0x58/0xf0 [ 252.440784][ T7884] ? clear_bhb_loop+0x35/0x90 [ 252.440815][ T7884] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 252.440844][ T7884] RIP: 0033:0x7f77b958d33c [ 252.440862][ T7884] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 252.440881][ T7884] RSP: 002b:00007f77b93eb030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 252.440905][ T7884] RAX: ffffffffffffffda RBX: 00007f77b97b5fa0 RCX: 00007f77b958d33c [ 252.440921][ T7884] RDX: 000000000000000f RSI: 00007f77b93eb0a0 RDI: 0000000000000003 [ 252.440935][ T7884] RBP: 00007f77b93eb090 R08: 0000000000000000 R09: 00002000000001c0 [ 252.440950][ T7884] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000001 [ 252.440964][ T7884] R13: 0000000000000001 R14: 00007f77b97b5fa0 R15: 00007ffc629ce418 [ 252.440988][ T7884] [ 252.731501][ T7895] FAULT_INJECTION: forcing a failure. [ 252.731501][ T7895] name failslab, interval 1, probability 0, space 0, times 0 [ 252.766238][ T7898] FAULT_INJECTION: forcing a failure. [ 252.766238][ T7898] name failslab, interval 1, probability 0, space 0, times 0 [ 252.790614][ T7895] CPU: 0 UID: 0 PID: 7895 Comm: syz.1.2993 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 252.790651][ T7895] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 252.790666][ T7895] Call Trace: [ 252.790674][ T7895] [ 252.790683][ T7895] __dump_stack+0x21/0x30 [ 252.790714][ T7895] dump_stack_lvl+0x10c/0x190 [ 252.790739][ T7895] ? __cfi_dump_stack_lvl+0x10/0x10 [ 252.790764][ T7895] ? mas_prev+0x5f/0xa0 [ 252.790785][ T7895] ? find_mergeable_anon_vma+0x635/0x6a0 [ 252.790816][ T7895] dump_stack+0x19/0x20 [ 252.790838][ T7895] should_fail_ex+0x3d9/0x530 [ 252.790862][ T7895] should_failslab+0xac/0x100 [ 252.790891][ T7895] kmem_cache_alloc_noprof+0x42/0x3a0 [ 252.790916][ T7895] ? __anon_vma_prepare+0xf4/0x570 [ 252.790952][ T7895] __anon_vma_prepare+0xf4/0x570 [ 252.790977][ T7895] ? __kasan_check_write+0x18/0x20 [ 252.791002][ T7895] do_pte_missing+0x2cd5/0x3e50 [ 252.791034][ T7895] ? _raw_spin_unlock+0x45/0x60 [ 252.791062][ T7895] ? __cfi_stack_trace_consume_entry+0x10/0x10 [ 252.791089][ T7895] ? __cfi___pmd_alloc+0x10/0x10 [ 252.791118][ T7895] ? pte_marker_clear+0x1b0/0x1b0 [ 252.791150][ T7895] handle_mm_fault+0x1166/0x1b90 [ 252.791181][ T7895] ? __cfi_handle_mm_fault+0x10/0x10 [ 252.791210][ T7895] ? find_vma+0xcd/0x110 [ 252.791238][ T7895] ? lock_mm_and_find_vma+0xb8/0x3a0 [ 252.791266][ T7895] do_user_addr_fault+0x4ca/0x1200 [ 252.791295][ T7895] exc_page_fault+0x59/0xc0 [ 252.791317][ T7895] asm_exc_page_fault+0x2b/0x30 [ 252.791346][ T7895] RIP: 0010:__put_user_4+0x11/0x30 [ 252.791376][ T7895] Code: 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca c3 cc cc cc cc 90 90 90 90 90 90 90 90 90 90 [ 252.791395][ T7895] RSP: 0018:ffffc900064a7e70 EFLAGS: 00050202 [ 252.791416][ T7895] RAX: 0000000000000004 RBX: 0000000000000000 RCX: 0000200000000b80 [ 252.791431][ T7895] RDX: ffff88812c8aa600 RSI: 0000000000000005 RDI: 0000000000000000 [ 252.791446][ T7895] RBP: ffffc900064a7ed8 R08: ffff88812e5e2fa7 R09: 1ffff11025cbc5f4 [ 252.791463][ T7895] R10: dffffc0000000000 R11: ffffed1025cbc5f5 R12: 0000000000000005 [ 252.791478][ T7895] R13: 0000200000000b80 R14: 0000000000000004 R15: 0000000000000000 [ 252.791495][ T7895] ? __sys_socketpair+0xb0/0x5c0 [ 252.791524][ T7895] __x64_sys_socketpair+0x9f/0xc0 [ 252.791550][ T7895] x64_sys_call+0x2081/0x2ee0 [ 252.791577][ T7895] do_syscall_64+0x58/0xf0 [ 252.791604][ T7895] ? clear_bhb_loop+0x35/0x90 [ 252.791636][ T7895] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 252.791667][ T7895] RIP: 0033:0x7f6e86d8e929 [ 252.791684][ T7895] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 252.791704][ T7895] RSP: 002b:00007f6e87b3a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000035 [ 252.791726][ T7895] RAX: ffffffffffffffda RBX: 00007f6e86fb5fa0 RCX: 00007f6e86d8e929 [ 252.791743][ T7895] RDX: 0000000000000080 RSI: 0000000000000005 RDI: 0000000000000025 [ 252.791757][ T7895] RBP: 00007f6e87b3a090 R08: 0000000000000000 R09: 0000000000000000 [ 252.791771][ T7895] R10: 0000200000000b80 R11: 0000000000000246 R12: 0000000000000001 [ 252.791786][ T7895] R13: 0000000000000001 R14: 00007f6e86fb5fa0 R15: 00007ffd81e75a18 [ 252.791803][ T7895] [ 252.791916][ T7898] CPU: 0 UID: 0 PID: 7898 Comm: syz.0.2992 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 252.791953][ T7898] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 252.791967][ T7898] Call Trace: [ 252.791975][ T7898] [ 252.791983][ T7898] __dump_stack+0x21/0x30 [ 252.792010][ T7898] dump_stack_lvl+0x10c/0x190 [ 252.792034][ T7898] ? __cfi_dump_stack_lvl+0x10/0x10 [ 252.792061][ T7898] dump_stack+0x19/0x20 [ 252.792084][ T7898] should_fail_ex+0x3d9/0x530 [ 252.792107][ T7898] should_failslab+0xac/0x100 [ 252.792137][ T7898] kmem_cache_alloc_noprof+0x42/0x3a0 [ 252.792161][ T7898] ? security_file_alloc+0x49/0x200 [ 252.792191][ T7898] security_file_alloc+0x49/0x200 [ 252.792221][ T7898] init_file+0x9e/0x210 [ 252.792251][ T7898] alloc_empty_file+0xd9/0x280 [ 252.792282][ T7898] dentry_open+0x4b/0xb0 [ 252.792301][ T7898] open_namespace+0xf1/0x180 [ 252.792331][ T7898] ? __cfi_open_namespace+0x10/0x10 [ 252.792359][ T7898] ? bpf_lsm_capable+0xd/0x20 [ 252.792387][ T7898] open_related_ns+0x4f/0x60 [ 252.792414][ T7898] sock_ioctl+0x35c/0x7b0 [ 252.792438][ T7898] ? __cfi_sock_ioctl+0x10/0x10 [ 252.792459][ T7898] ? __fget_files+0x2c5/0x340 [ 252.792486][ T7898] ? bpf_lsm_file_ioctl+0xd/0x20 [ 252.792508][ T7898] ? security_file_ioctl+0x34/0xd0 [ 252.792537][ T7898] ? __cfi_sock_ioctl+0x10/0x10 [ 252.792558][ T7898] __se_sys_ioctl+0x132/0x1b0 [ 252.792588][ T7898] __x64_sys_ioctl+0x7f/0xa0 [ 252.792616][ T7898] x64_sys_call+0x1878/0x2ee0 [ 252.792644][ T7898] do_syscall_64+0x58/0xf0 [ 252.792671][ T7898] ? clear_bhb_loop+0x35/0x90 [ 252.792703][ T7898] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 252.792733][ T7898] RIP: 0033:0x7fbee598e929 [ 252.792750][ T7898] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 252.792769][ T7898] RSP: 002b:00007fbee672a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 252.792791][ T7898] RAX: ffffffffffffffda RBX: 00007fbee5bb5fa0 RCX: 00007fbee598e929 [ 252.792806][ T7898] RDX: 0000000000000000 RSI: 000000000000894c RDI: 0000000000000003 [ 252.792818][ T7898] RBP: 00007fbee672a090 R08: 0000000000000000 R09: 0000000000000000 [ 252.792831][ T7898] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 252.792844][ T7898] R13: 0000000000000000 R14: 00007fbee5bb5fa0 R15: 00007ffc4670ea98 [ 252.792862][ T7898] [ 252.980328][ T36] kauditd_printk_skb: 342 callbacks suppressed [ 252.980351][ T36] audit: type=1400 audit(2000000015.100:1618): avc: denied { read write } for pid=6542 comm="syz-executor" name="loop5" dev="devtmpfs" ino=54 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0 [ 253.398785][ T36] audit: type=1400 audit(2000000015.140:1619): avc: denied { read write } for pid=6306 comm="syz-executor" name="loop3" dev="devtmpfs" ino=52 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0 [ 253.427773][ T36] audit: type=1400 audit(2000000015.150:1620): avc: denied { create } for pid=7905 comm="syz.1.2997" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=0 [ 253.463242][ T7938] FAULT_INJECTION: forcing a failure. [ 253.463242][ T7938] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 253.476590][ T7938] CPU: 0 UID: 0 PID: 7938 Comm: syz.3.3007 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 253.476627][ T7938] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 253.476642][ T7938] Call Trace: [ 253.476650][ T7938] [ 253.476660][ T7938] __dump_stack+0x21/0x30 [ 253.476689][ T7938] dump_stack_lvl+0x10c/0x190 [ 253.476716][ T7938] ? __cfi_dump_stack_lvl+0x10/0x10 [ 253.476742][ T7938] ? vsnprintf+0x7b4/0x1aa0 [ 253.476768][ T7938] ? __asan_memcpy+0x5a/0x80 [ 253.476793][ T7938] dump_stack+0x19/0x20 [ 253.476817][ T7938] should_fail_ex+0x3d9/0x530 [ 253.476842][ T7938] should_fail+0xf/0x20 [ 253.476873][ T7938] should_fail_usercopy+0x1e/0x30 [ 253.476898][ T7938] _copy_from_user+0x22/0xb0 [ 253.476928][ T7938] kstrtouint_from_user+0xc2/0x150 [ 253.476952][ T7938] ? __cfi_kstrtouint_from_user+0x10/0x10 [ 253.476975][ T7938] ? selinux_file_permission+0x309/0xb30 [ 253.477010][ T7938] ? __cfi_selinux_file_permission+0x10/0x10 [ 253.477042][ T7938] proc_fail_nth_write+0x89/0x210 [ 253.477063][ T7938] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 253.477085][ T7938] ? bpf_lsm_file_permission+0xd/0x20 [ 253.477108][ T7938] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 253.477128][ T7938] vfs_write+0x3c0/0xe80 [ 253.477154][ T7938] ? __cfi_vfs_write+0x10/0x10 [ 253.477179][ T7938] ? __kasan_check_write+0x18/0x20 [ 253.477203][ T7938] ? mutex_lock+0x92/0x1c0 [ 253.477222][ T7938] ? __cfi_mutex_lock+0x10/0x10 [ 253.477242][ T7938] ? __fget_files+0x2c5/0x340 [ 253.477273][ T7938] ksys_write+0x141/0x250 [ 253.477297][ T7938] ? __cfi_ksys_write+0x10/0x10 [ 253.477324][ T7938] ? __kasan_check_read+0x15/0x20 [ 253.477347][ T7938] __x64_sys_write+0x7f/0x90 [ 253.477373][ T7938] x64_sys_call+0x271c/0x2ee0 [ 253.477401][ T7938] do_syscall_64+0x58/0xf0 [ 253.477429][ T7938] ? clear_bhb_loop+0x35/0x90 [ 253.477461][ T7938] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 253.477491][ T7938] RIP: 0033:0x7f77b958d3df [ 253.477509][ T7938] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48 [ 253.477528][ T7938] RSP: 002b:00007f77b93eb030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 253.477557][ T7938] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f77b958d3df [ 253.477573][ T7938] RDX: 0000000000000001 RSI: 00007f77b93eb0a0 RDI: 0000000000000003 [ 253.477587][ T7938] RBP: 00007f77b93eb090 R08: 0000000000000000 R09: 0000000000000000 [ 253.477601][ T7938] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 253.477614][ T7938] R13: 0000000000000000 R14: 00007f77b97b5fa0 R15: 00007ffc629ce418 [ 253.477632][ T7938] [ 253.480637][ T36] audit: type=1400 audit(2000000015.190:1621): avc: denied { read } for pid=7913 comm="syz.5.2999" name="kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=0 [ 253.773188][ T36] audit: type=1400 audit(2000000015.190:1622): avc: denied { read write } for pid=7913 comm="syz.5.2999" name="uhid" dev="devtmpfs" ino=199 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=0 [ 253.800432][ T36] audit: type=1400 audit(2000000015.210:1623): avc: denied { read write } for pid=6542 comm="syz-executor" name="loop5" dev="devtmpfs" ino=54 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0 [ 253.834055][ T36] audit: type=1400 audit(2000000015.240:1624): avc: denied { read write } for pid=7916 comm="syz.5.3001" name="loop0" dev="devtmpfs" ino=954 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0 [ 253.872736][ T36] audit: type=1400 audit(2000000015.240:1625): avc: denied { read } for pid=7916 comm="syz.5.3001" name="kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=0 [ 253.911148][ T36] audit: type=1400 audit(2000000015.240:1626): avc: denied { read } for pid=7916 comm="syz.5.3001" name="kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=0 [ 253.933966][ T36] audit: type=1400 audit(2000000015.260:1627): avc: denied { read write } for pid=6542 comm="syz-executor" name="loop5" dev="devtmpfs" ino=54 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0 [ 254.073316][ T7972] FAULT_INJECTION: forcing a failure. [ 254.073316][ T7972] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 254.087601][ T7972] CPU: 1 UID: 0 PID: 7972 Comm: syz.1.3022 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 254.087637][ T7972] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 254.087651][ T7972] Call Trace: [ 254.087657][ T7972] [ 254.087666][ T7972] __dump_stack+0x21/0x30 [ 254.087695][ T7972] dump_stack_lvl+0x10c/0x190 [ 254.087719][ T7972] ? __cfi_dump_stack_lvl+0x10/0x10 [ 254.087747][ T7972] dump_stack+0x19/0x20 [ 254.087769][ T7972] should_fail_ex+0x3d9/0x530 [ 254.087802][ T7972] should_fail+0xf/0x20 [ 254.087830][ T7972] should_fail_usercopy+0x1e/0x30 [ 254.087855][ T7972] _copy_to_user+0x24/0xa0 [ 254.087883][ T7972] simple_read_from_buffer+0xed/0x160 [ 254.087915][ T7972] proc_fail_nth_read+0x19e/0x210 [ 254.087936][ T7972] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 254.087957][ T7972] ? bpf_lsm_file_permission+0xd/0x20 [ 254.087981][ T7972] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 254.088002][ T7972] vfs_read+0x278/0xb60 [ 254.088025][ T7972] ? io_serial_in+0x56/0xc0 [ 254.088049][ T7972] ? serial8250_do_get_mctrl+0xaf/0x2a0 [ 254.088070][ T7972] ? __cfi_vfs_read+0x10/0x10 [ 254.088094][ T7972] ? __kasan_check_write+0x18/0x20 [ 254.088116][ T7972] ? mutex_lock+0x92/0x1c0 [ 254.088136][ T7972] ? __cfi_mutex_lock+0x10/0x10 [ 254.088157][ T7972] ? __fget_files+0x2c5/0x340 [ 254.088189][ T7972] ksys_read+0x141/0x250 [ 254.088214][ T7972] ? __cfi_ksys_read+0x10/0x10 [ 254.088241][ T7972] ? __kasan_check_read+0x15/0x20 [ 254.088265][ T7972] __x64_sys_read+0x7f/0x90 [ 254.088291][ T7972] x64_sys_call+0x2638/0x2ee0 [ 254.088318][ T7972] do_syscall_64+0x58/0xf0 [ 254.088346][ T7972] ? clear_bhb_loop+0x35/0x90 [ 254.088379][ T7972] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 254.088409][ T7972] RIP: 0033:0x7f6e86d8d33c [ 254.088427][ T7972] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 254.088447][ T7972] RSP: 002b:00007f6e87b3a030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 254.088471][ T7972] RAX: ffffffffffffffda RBX: 00007f6e86fb5fa0 RCX: 00007f6e86d8d33c [ 254.088489][ T7972] RDX: 000000000000000f RSI: 00007f6e87b3a0a0 RDI: 0000000000000004 [ 254.088503][ T7972] RBP: 00007f6e87b3a090 R08: 0000000000000000 R09: 0000000000000000 [ 254.088517][ T7972] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 254.088530][ T7972] R13: 0000000000000000 R14: 00007f6e86fb5fa0 R15: 00007ffd81e75a18 [ 254.088547][ T7972] [ 254.519048][ T7997] FAULT_INJECTION: forcing a failure. [ 254.519048][ T7997] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 254.548532][ T7997] CPU: 1 UID: 0 PID: 7997 Comm: syz.0.3034 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 254.548570][ T7997] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 254.548585][ T7997] Call Trace: [ 254.548601][ T7997] [ 254.548610][ T7997] __dump_stack+0x21/0x30 [ 254.548641][ T7997] dump_stack_lvl+0x10c/0x190 [ 254.548666][ T7997] ? __cfi_dump_stack_lvl+0x10/0x10 [ 254.548692][ T7997] ? vsnprintf+0x7b4/0x1aa0 [ 254.548718][ T7997] ? __asan_memcpy+0x5a/0x80 [ 254.548742][ T7997] dump_stack+0x19/0x20 [ 254.548764][ T7997] should_fail_ex+0x3d9/0x530 [ 254.548788][ T7997] should_fail+0xf/0x20 [ 254.548808][ T7997] should_fail_usercopy+0x1e/0x30 [ 254.548833][ T7997] _copy_from_user+0x22/0xb0 [ 254.548862][ T7997] kstrtouint_from_user+0xc2/0x150 [ 254.548885][ T7997] ? __cfi_kstrtouint_from_user+0x10/0x10 [ 254.548909][ T7997] ? selinux_file_permission+0x309/0xb30 [ 254.548941][ T7997] ? __cfi_selinux_file_permission+0x10/0x10 [ 254.548971][ T7997] proc_fail_nth_write+0x89/0x210 [ 254.548991][ T7997] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 254.549012][ T7997] ? bpf_lsm_file_permission+0xd/0x20 [ 254.549036][ T7997] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 254.549057][ T7997] vfs_write+0x3c0/0xe80 [ 254.549083][ T7997] ? __cfi_vfs_write+0x10/0x10 [ 254.549107][ T7997] ? __kasan_check_write+0x18/0x20 [ 254.549130][ T7997] ? mutex_lock+0x92/0x1c0 [ 254.549150][ T7997] ? __cfi_mutex_lock+0x10/0x10 [ 254.549169][ T7997] ? __fget_files+0x2c5/0x340 [ 254.549199][ T7997] ksys_write+0x141/0x250 [ 254.549224][ T7997] ? __cfi_ksys_write+0x10/0x10 [ 254.549249][ T7997] ? fdget+0x189/0x1f0 [ 254.549277][ T7997] ? __kasan_check_read+0x15/0x20 [ 254.549300][ T7997] __x64_sys_write+0x7f/0x90 [ 254.549325][ T7997] x64_sys_call+0x271c/0x2ee0 [ 254.549352][ T7997] do_syscall_64+0x58/0xf0 [ 254.549379][ T7997] ? clear_bhb_loop+0x35/0x90 [ 254.549409][ T7997] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 254.549440][ T7997] RIP: 0033:0x7fbee598d3df [ 254.549457][ T7997] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48 [ 254.549476][ T7997] RSP: 002b:00007fbee672a030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 254.549499][ T7997] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fbee598d3df [ 254.549516][ T7997] RDX: 0000000000000001 RSI: 00007fbee672a0a0 RDI: 0000000000000003 [ 254.549530][ T7997] RBP: 00007fbee672a090 R08: 0000000000000000 R09: 0000000000000000 [ 254.549544][ T7997] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 254.549557][ T7997] R13: 0000000000000000 R14: 00007fbee5bb5fa0 R15: 00007ffc4670ea98 [ 254.549575][ T7997] [ 255.071757][ T8051] FAULT_INJECTION: forcing a failure. [ 255.071757][ T8051] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 255.084912][ T8051] CPU: 1 UID: 0 PID: 8051 Comm: syz.3.3055 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 255.084951][ T8051] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 255.084965][ T8051] Call Trace: [ 255.084974][ T8051] [ 255.084983][ T8051] __dump_stack+0x21/0x30 [ 255.085014][ T8051] dump_stack_lvl+0x10c/0x190 [ 255.085040][ T8051] ? __cfi_dump_stack_lvl+0x10/0x10 [ 255.085065][ T8051] ? _raw_spin_unlock_irqrestore+0x4a/0x70 [ 255.085096][ T8051] dump_stack+0x19/0x20 [ 255.085119][ T8051] should_fail_ex+0x3d9/0x530 [ 255.085144][ T8051] should_fail+0xf/0x20 [ 255.085166][ T8051] should_fail_usercopy+0x1e/0x30 [ 255.085190][ T8051] _copy_to_user+0x24/0xa0 [ 255.085218][ T8051] do_ipv6_getsockopt+0xfef/0x1ea0 [ 255.085247][ T8051] ? __cfi_do_ipv6_getsockopt+0x10/0x10 [ 255.085274][ T8051] ? avc_perm_nonode+0x101/0x1b0 [ 255.085296][ T8051] ? avc_has_perm_noaudit+0x360/0x360 [ 255.085320][ T8051] ? kstrtoull+0x13b/0x1e0 [ 255.085342][ T8051] ? avc_has_perm_noaudit+0x21c/0x360 [ 255.085365][ T8051] ? avc_has_perm+0x144/0x220 [ 255.085387][ T8051] ? __cfi_avc_has_perm+0x10/0x10 [ 255.085412][ T8051] ipv6_getsockopt+0xbe/0x280 [ 255.085438][ T8051] ? __cfi_ipv6_getsockopt+0x10/0x10 [ 255.085465][ T8051] ? vfs_write+0x8ba/0xe80 [ 255.085491][ T8051] udpv6_getsockopt+0x7e/0x90 [ 255.085513][ T8051] sock_common_getsockopt+0xaf/0xd0 [ 255.085538][ T8051] ? __cfi_sock_common_getsockopt+0x10/0x10 [ 255.085564][ T8051] do_sock_getsockopt+0x3a3/0x6d0 [ 255.085596][ T8051] ? __cfi_do_sock_getsockopt+0x10/0x10 [ 255.085629][ T8051] ? __fget_files+0x2c5/0x340 [ 255.085658][ T8051] __x64_sys_getsockopt+0x1d5/0x280 [ 255.085691][ T8051] x64_sys_call+0x10db/0x2ee0 [ 255.085717][ T8051] do_syscall_64+0x58/0xf0 [ 255.085749][ T8051] ? clear_bhb_loop+0x35/0x90 [ 255.085779][ T8051] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 255.085808][ T8051] RIP: 0033:0x7f77b958e929 [ 255.085825][ T8051] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 255.085844][ T8051] RSP: 002b:00007f77b93eb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 255.085867][ T8051] RAX: ffffffffffffffda RBX: 00007f77b97b5fa0 RCX: 00007f77b958e929 [ 255.085882][ T8051] RDX: 000000000000004e RSI: 0000000000000029 RDI: 0000000000000003 [ 255.085895][ T8051] RBP: 00007f77b93eb090 R08: 0000200000000040 R09: 0000000000000000 [ 255.085909][ T8051] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 255.085922][ T8051] R13: 0000000000000000 R14: 00007f77b97b5fa0 R15: 00007ffc629ce418 [ 255.085938][ T8051] [ 255.518405][ T8083] FAULT_INJECTION: forcing a failure. [ 255.518405][ T8083] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 255.536883][ T8083] CPU: 0 UID: 0 PID: 8083 Comm: syz.0.3071 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 255.536920][ T8083] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 255.536935][ T8083] Call Trace: [ 255.536943][ T8083] [ 255.536952][ T8083] __dump_stack+0x21/0x30 [ 255.536982][ T8083] dump_stack_lvl+0x10c/0x190 [ 255.537007][ T8083] ? __cfi_dump_stack_lvl+0x10/0x10 [ 255.537033][ T8083] ? vsnprintf+0x7b4/0x1aa0 [ 255.537058][ T8083] ? __asan_memcpy+0x5a/0x80 [ 255.537083][ T8083] dump_stack+0x19/0x20 [ 255.537106][ T8083] should_fail_ex+0x3d9/0x530 [ 255.537131][ T8083] should_fail+0xf/0x20 [ 255.537152][ T8083] should_fail_usercopy+0x1e/0x30 [ 255.537177][ T8083] _copy_from_user+0x22/0xb0 [ 255.537206][ T8083] kstrtouint_from_user+0xc2/0x150 [ 255.537230][ T8083] ? __cfi_kstrtouint_from_user+0x10/0x10 [ 255.537253][ T8083] ? selinux_file_permission+0x309/0xb30 [ 255.537286][ T8083] ? __cfi_selinux_file_permission+0x10/0x10 [ 255.537317][ T8083] proc_fail_nth_write+0x89/0x210 [ 255.537338][ T8083] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 255.537359][ T8083] ? bpf_lsm_file_permission+0xd/0x20 [ 255.537382][ T8083] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 255.537403][ T8083] vfs_write+0x3c0/0xe80 [ 255.537430][ T8083] ? __cfi_vfs_write+0x10/0x10 [ 255.537454][ T8083] ? __kasan_check_write+0x18/0x20 [ 255.537477][ T8083] ? mutex_lock+0x92/0x1c0 [ 255.537497][ T8083] ? __cfi_mutex_lock+0x10/0x10 [ 255.537517][ T8083] ? __fget_files+0x2c5/0x340 [ 255.537555][ T8083] ksys_write+0x141/0x250 [ 255.537580][ T8083] ? __cfi_ksys_write+0x10/0x10 [ 255.537605][ T8083] ? __kasan_check_read+0x15/0x20 [ 255.537629][ T8083] __x64_sys_write+0x7f/0x90 [ 255.537655][ T8083] x64_sys_call+0x271c/0x2ee0 [ 255.537682][ T8083] do_syscall_64+0x58/0xf0 [ 255.537708][ T8083] ? clear_bhb_loop+0x35/0x90 [ 255.537739][ T8083] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 255.537770][ T8083] RIP: 0033:0x7fbee598d3df [ 255.537788][ T8083] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48 [ 255.537806][ T8083] RSP: 002b:00007fbee672a030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 255.537829][ T8083] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fbee598d3df [ 255.537845][ T8083] RDX: 0000000000000001 RSI: 00007fbee672a0a0 RDI: 0000000000000003 [ 255.537859][ T8083] RBP: 00007fbee672a090 R08: 0000000000000000 R09: 0000000000000000 [ 255.537873][ T8083] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 255.537886][ T8083] R13: 0000000000000000 R14: 00007fbee5bb5fa0 R15: 00007ffc4670ea98 [ 255.537904][ T8083] [ 255.649217][ T8094] FAULT_INJECTION: forcing a failure. [ 255.649217][ T8094] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 255.817453][ T8094] CPU: 1 UID: 0 PID: 8094 Comm: syz.3.3075 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 255.817490][ T8094] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 255.817503][ T8094] Call Trace: [ 255.817511][ T8094] [ 255.817520][ T8094] __dump_stack+0x21/0x30 [ 255.817551][ T8094] dump_stack_lvl+0x10c/0x190 [ 255.817576][ T8094] ? __cfi_dump_stack_lvl+0x10/0x10 [ 255.817603][ T8094] dump_stack+0x19/0x20 [ 255.817626][ T8094] should_fail_ex+0x3d9/0x530 [ 255.817650][ T8094] should_fail+0xf/0x20 [ 255.817671][ T8094] should_fail_usercopy+0x1e/0x30 [ 255.817696][ T8094] _copy_to_user+0x24/0xa0 [ 255.817724][ T8094] simple_read_from_buffer+0xed/0x160 [ 255.817755][ T8094] proc_fail_nth_read+0x19e/0x210 [ 255.817775][ T8094] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 255.817796][ T8094] ? __cfi___mark_inode_dirty+0x10/0x10 [ 255.817821][ T8094] ? bpf_lsm_file_permission+0xd/0x20 [ 255.817844][ T8094] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 255.817863][ T8094] vfs_read+0x278/0xb60 [ 255.817887][ T8094] ? notify_change+0xbfc/0xee0 [ 255.817910][ T8094] ? __cfi_vfs_read+0x10/0x10 [ 255.817932][ T8094] ? __kasan_check_write+0x18/0x20 [ 255.817955][ T8094] ? mutex_lock+0x92/0x1c0 [ 255.817974][ T8094] ? __cfi_mutex_lock+0x10/0x10 [ 255.817993][ T8094] ? __fget_files+0x2c5/0x340 [ 255.818022][ T8094] ksys_read+0x141/0x250 [ 255.818046][ T8094] ? __cfi_ksys_read+0x10/0x10 [ 255.818072][ T8094] ? __kasan_check_read+0x15/0x20 [ 255.818096][ T8094] __x64_sys_read+0x7f/0x90 [ 255.818120][ T8094] x64_sys_call+0x2638/0x2ee0 [ 255.818146][ T8094] do_syscall_64+0x58/0xf0 [ 255.818173][ T8094] ? clear_bhb_loop+0x35/0x90 [ 255.818203][ T8094] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 255.818232][ T8094] RIP: 0033:0x7f77b958d33c [ 255.818249][ T8094] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 255.818268][ T8094] RSP: 002b:00007f77b93eb030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 255.818291][ T8094] RAX: ffffffffffffffda RBX: 00007f77b97b5fa0 RCX: 00007f77b958d33c [ 255.818309][ T8094] RDX: 000000000000000f RSI: 00007f77b93eb0a0 RDI: 0000000000000004 [ 255.818323][ T8094] RBP: 00007f77b93eb090 R08: 0000000000000000 R09: 0000000000000000 [ 255.818338][ T8094] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 255.818352][ T8094] R13: 0000000000000000 R14: 00007f77b97b5fa0 R15: 00007ffc629ce418 [ 255.818370][ T8094] [ 255.932225][ T8100] FAULT_INJECTION: forcing a failure. [ 255.932225][ T8100] name failslab, interval 1, probability 0, space 0, times 0 [ 256.083518][ T8100] CPU: 1 UID: 0 PID: 8100 Comm: syz.5.3077 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 256.083557][ T8100] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 256.083572][ T8100] Call Trace: [ 256.083580][ T8100] [ 256.083590][ T8100] __dump_stack+0x21/0x30 [ 256.083620][ T8100] dump_stack_lvl+0x10c/0x190 [ 256.083646][ T8100] ? __cfi_dump_stack_lvl+0x10/0x10 [ 256.083680][ T8100] ? __cfi_vfs_write+0x10/0x10 [ 256.083705][ T8100] dump_stack+0x19/0x20 [ 256.083728][ T8100] should_fail_ex+0x3d9/0x530 [ 256.083753][ T8100] should_failslab+0xac/0x100 [ 256.083782][ T8100] kmem_cache_alloc_noprof+0x42/0x3a0 [ 256.083807][ T8100] ? prepare_creds+0x48/0x6b0 [ 256.083838][ T8100] prepare_creds+0x48/0x6b0 [ 256.083866][ T8100] __sys_setfsgid+0xd6/0x3b0 [ 256.083889][ T8100] __x64_sys_setfsgid+0x3b/0x50 [ 256.083910][ T8100] x64_sys_call+0x2674/0x2ee0 [ 256.083937][ T8100] do_syscall_64+0x58/0xf0 [ 256.083966][ T8100] ? clear_bhb_loop+0x35/0x90 [ 256.083997][ T8100] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 256.084028][ T8100] RIP: 0033:0x7fdafff8e929 [ 256.084046][ T8100] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 256.084064][ T8100] RSP: 002b:00007fdb00d9e038 EFLAGS: 00000246 ORIG_RAX: 000000000000007b [ 256.084088][ T8100] RAX: ffffffffffffffda RBX: 00007fdb001b5fa0 RCX: 00007fdafff8e929 [ 256.084106][ T8100] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000ee01 [ 256.084119][ T8100] RBP: 00007fdb00d9e090 R08: 0000000000000000 R09: 0000000000000000 [ 256.084134][ T8100] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 256.084147][ T8100] R13: 0000000000000001 R14: 00007fdb001b5fa0 R15: 00007fffc3506978 [ 256.084166][ T8100] [ 256.100125][ T8111] FAULT_INJECTION: forcing a failure. [ 256.100125][ T8111] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 256.205470][ T8117] FAULT_INJECTION: forcing a failure. [ 256.205470][ T8117] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 256.241623][ T8111] CPU: 0 UID: 0 PID: 8111 Comm: syz.0.3082 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 256.241668][ T8111] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 256.241686][ T8111] Call Trace: [ 256.241695][ T8111] [ 256.241706][ T8111] __dump_stack+0x21/0x30 [ 256.241740][ T8111] dump_stack_lvl+0x10c/0x190 [ 256.241761][ T8111] ? __cfi_dump_stack_lvl+0x10/0x10 [ 256.241789][ T8111] dump_stack+0x19/0x20 [ 256.241817][ T8111] should_fail_ex+0x3d9/0x530 [ 256.241845][ T8111] should_fail+0xf/0x20 [ 256.241870][ T8111] should_fail_usercopy+0x1e/0x30 [ 256.241898][ T8111] _copy_to_user+0x24/0xa0 [ 256.241930][ T8111] simple_read_from_buffer+0xed/0x160 [ 256.241969][ T8111] proc_fail_nth_read+0x19e/0x210 [ 256.241994][ T8111] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 256.242018][ T8111] ? __cfi_filename_lookup+0x10/0x10 [ 256.242054][ T8111] ? bpf_lsm_file_permission+0xd/0x20 [ 256.242081][ T8111] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 256.242106][ T8111] vfs_read+0x278/0xb60 [ 256.242136][ T8111] ? __cfi_vfs_read+0x10/0x10 [ 256.242161][ T8111] ? __kasan_check_write+0x18/0x20 [ 256.242188][ T8111] ? mutex_lock+0x92/0x1c0 [ 256.242212][ T8111] ? __cfi_mutex_lock+0x10/0x10 [ 256.242234][ T8111] ? __fget_files+0x2c5/0x340 [ 256.242269][ T8111] ksys_read+0x141/0x250 [ 256.242297][ T8111] ? __cfi_ksys_read+0x10/0x10 [ 256.242326][ T8111] ? __kasan_check_read+0x15/0x20 [ 256.242362][ T8111] __x64_sys_read+0x7f/0x90 [ 256.242392][ T8111] x64_sys_call+0x2638/0x2ee0 [ 256.242423][ T8111] do_syscall_64+0x58/0xf0 [ 256.242453][ T8111] ? clear_bhb_loop+0x35/0x90 [ 256.242490][ T8111] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 256.242522][ T8111] RIP: 0033:0x7fbee598d33c [ 256.242558][ T8111] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 256.242581][ T8111] RSP: 002b:00007fbee672a030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 256.242607][ T8111] RAX: ffffffffffffffda RBX: 00007fbee5bb5fa0 RCX: 00007fbee598d33c [ 256.242626][ T8111] RDX: 000000000000000f RSI: 00007fbee672a0a0 RDI: 0000000000000003 [ 256.242643][ T8111] RBP: 00007fbee672a090 R08: 0000000000000000 R09: 0000000000000000 [ 256.242658][ T8111] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 256.242674][ T8111] R13: 0000000000000001 R14: 00007fbee5bb5fa0 R15: 00007ffc4670ea98 [ 256.242694][ T8111] [ 256.290072][ T8119] binfmt_misc: register: failed to install interpreter file ./file0 [ 256.305941][ T8117] CPU: 1 UID: 0 PID: 8117 Comm: syz.3.3085 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 256.305986][ T8117] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 256.306003][ T8117] Call Trace: [ 256.306012][ T8117] [ 256.306022][ T8117] __dump_stack+0x21/0x30 [ 256.306058][ T8117] dump_stack_lvl+0x10c/0x190 [ 256.306086][ T8117] ? __cfi_dump_stack_lvl+0x10/0x10 [ 256.306116][ T8117] dump_stack+0x19/0x20 [ 256.306143][ T8117] should_fail_ex+0x3d9/0x530 [ 256.306171][ T8117] should_fail+0xf/0x20 [ 256.306195][ T8117] should_fail_usercopy+0x1e/0x30 [ 256.306224][ T8117] _copy_to_user+0x24/0xa0 [ 256.306255][ T8117] simple_read_from_buffer+0xed/0x160 [ 256.306295][ T8117] proc_fail_nth_read+0x19e/0x210 [ 256.306320][ T8117] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 256.306344][ T8117] ? bpf_lsm_file_permission+0xd/0x20 [ 256.306372][ T8117] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 256.306396][ T8117] vfs_read+0x278/0xb60 [ 256.306427][ T8117] ? __cfi_vfs_read+0x10/0x10 [ 256.306454][ T8117] ? __kasan_check_write+0x18/0x20 [ 256.306479][ T8117] ? mutex_lock+0x92/0x1c0 [ 256.306503][ T8117] ? __cfi_mutex_lock+0x10/0x10 [ 256.306525][ T8117] ? __fget_files+0x2c5/0x340 [ 256.306559][ T8117] ksys_read+0x141/0x250 [ 256.306586][ T8117] ? __fget_files+0x2c5/0x340 [ 256.306616][ T8117] ? xfd_validate_state+0x68/0x150 [ 256.306643][ T8117] ? __cfi_ksys_read+0x10/0x10 [ 256.306674][ T8117] ? __kasan_check_read+0x15/0x20 [ 256.306706][ T8117] __x64_sys_read+0x7f/0x90 [ 256.306735][ T8117] x64_sys_call+0x2638/0x2ee0 [ 256.306767][ T8117] do_syscall_64+0x58/0xf0 [ 256.306797][ T8117] ? clear_bhb_loop+0x35/0x90 [ 256.306834][ T8117] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 256.306869][ T8117] RIP: 0033:0x7f77b958d33c [ 256.306891][ T8117] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 256.306913][ T8117] RSP: 002b:00007f77b93eb030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 256.306940][ T8117] RAX: ffffffffffffffda RBX: 00007f77b97b5fa0 RCX: 00007f77b958d33c [ 256.306960][ T8117] RDX: 000000000000000f RSI: 00007f77b93eb0a0 RDI: 0000000000000003 [ 256.306977][ T8117] RBP: 00007f77b93eb090 R08: 0000000000000000 R09: 0000000000000000 [ 256.306994][ T8117] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000001 [ 256.307010][ T8117] R13: 0000000000000000 R14: 00007f77b97b5fa0 R15: 00007ffc629ce418 [ 256.307031][ T8117] [ 256.368001][ T5662] cgroup: fork rejected by pids controller in /syz1 [ 256.915401][ T305] bridge_slave_1: left allmulticast mode [ 256.921142][ T305] bridge_slave_1: left promiscuous mode [ 256.926792][ T305] bridge0: port 2(bridge_slave_1) entered disabled state [ 256.951909][ T305] bridge_slave_0: left allmulticast mode [ 256.957612][ T305] bridge_slave_0: left promiscuous mode [ 256.970690][ T305] bridge0: port 1(bridge_slave_0) entered disabled state [ 257.087067][ T305] veth1_macvtap: left promiscuous mode [ 257.100684][ T305] veth0_vlan: left promiscuous mode [ 258.024207][ T36] kauditd_printk_skb: 437 callbacks suppressed [ 258.024227][ T36] audit: type=1400 audit(2000000020.160:2065): avc: denied { execmem } for pid=8168 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=0 [ 258.080659][ T36] audit: type=1400 audit(2000000020.170:2066): avc: denied { read } for pid=8169 comm="syz.0.3110" name="binder0" dev="binder" ino=22 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=0 [ 258.108050][ T36] audit: type=1400 audit(2000000020.180:2067): avc: denied { read append } for pid=8172 comm="syz.5.3111" name="binder0" dev="binder" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=0 [ 258.132881][ T36] audit: type=1400 audit(2000000020.190:2068): avc: denied { read write } for pid=8171 comm="syz.3.3112" name="loop0" dev="devtmpfs" ino=954 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0 [ 258.157688][ T36] audit: type=1400 audit(2000000020.200:2069): avc: denied { read write } for pid=6542 comm="syz-executor" name="loop5" dev="devtmpfs" ino=54 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0 [ 258.182095][ T36] audit: type=1400 audit(2000000020.200:2070): avc: denied { read write } for pid=6610 comm="syz-executor" name="loop0" dev="devtmpfs" ino=954 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0 [ 258.206438][ T36] audit: type=1400 audit(2000000020.220:2071): avc: denied { read write } for pid=6306 comm="syz-executor" name="loop3" dev="devtmpfs" ino=52 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0 [ 258.230796][ T36] audit: type=1400 audit(2000000020.240:2072): avc: denied { read write } for pid=6542 comm="syz-executor" name="loop5" dev="devtmpfs" ino=54 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0 [ 258.254917][ T36] audit: type=1400 audit(2000000020.270:2073): avc: denied { create } for pid=8177 comm="syz.0.3113" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=0 [ 258.274579][ T36] audit: type=1400 audit(2000000020.270:2074): avc: denied { create } for pid=8177 comm="syz.0.3113" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=0 [ 258.694016][ T8185] FAULT_INJECTION: forcing a failure. [ 258.694016][ T8185] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 258.707323][ T8185] CPU: 0 UID: 0 PID: 8185 Comm: syz.5.3116 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 258.707362][ T8185] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 258.707377][ T8185] Call Trace: [ 258.707386][ T8185] [ 258.707395][ T8185] __dump_stack+0x21/0x30 [ 258.707425][ T8185] dump_stack_lvl+0x10c/0x190 [ 258.707450][ T8185] ? __cfi_dump_stack_lvl+0x10/0x10 [ 258.707477][ T8185] dump_stack+0x19/0x20 [ 258.707502][ T8185] should_fail_ex+0x3d9/0x530 [ 258.707534][ T8185] should_fail+0xf/0x20 [ 258.707556][ T8185] should_fail_usercopy+0x1e/0x30 [ 258.707580][ T8185] _copy_to_user+0x24/0xa0 [ 258.707609][ T8185] simple_read_from_buffer+0xed/0x160 [ 258.707643][ T8185] proc_fail_nth_read+0x19e/0x210 [ 258.707664][ T8185] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 258.707686][ T8185] ? bpf_lsm_file_permission+0xd/0x20 [ 258.707709][ T8185] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 258.707730][ T8185] vfs_read+0x278/0xb60 [ 258.707755][ T8185] ? __cfi_vfs_read+0x10/0x10 [ 258.707778][ T8185] ? __kasan_check_write+0x18/0x20 [ 258.707803][ T8185] ? mutex_lock+0x92/0x1c0 [ 258.707823][ T8185] ? __cfi_mutex_lock+0x10/0x10 [ 258.707843][ T8185] ? __fget_files+0x2c5/0x340 [ 258.707873][ T8185] ksys_read+0x141/0x250 [ 258.707897][ T8185] ? __fget_files+0x2c5/0x340 [ 258.707925][ T8185] ? xfd_validate_state+0x68/0x150 [ 258.707949][ T8185] ? __cfi_ksys_read+0x10/0x10 [ 258.707975][ T8185] ? __kasan_check_read+0x15/0x20 [ 258.707999][ T8185] __x64_sys_read+0x7f/0x90 [ 258.708025][ T8185] x64_sys_call+0x2638/0x2ee0 [ 258.708052][ T8185] do_syscall_64+0x58/0xf0 [ 258.708080][ T8185] ? clear_bhb_loop+0x35/0x90 [ 258.708112][ T8185] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 258.708144][ T8185] RIP: 0033:0x7fdafff8d33c [ 258.708162][ T8185] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 258.708182][ T8185] RSP: 002b:00007fdb00d9e030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 258.708206][ T8185] RAX: ffffffffffffffda RBX: 00007fdb001b5fa0 RCX: 00007fdafff8d33c [ 258.708223][ T8185] RDX: 000000000000000f RSI: 00007fdb00d9e0a0 RDI: 0000000000000003 [ 258.708237][ T8185] RBP: 00007fdb00d9e090 R08: 0000000000000000 R09: 0000000000000000 [ 258.708252][ T8185] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 258.708266][ T8185] R13: 0000000000000000 R14: 00007fdb001b5fa0 R15: 00007fffc3506978 [ 258.708285][ T8185] [ 263.267631][ T36] kauditd_printk_skb: 55 callbacks suppressed [ 263.267651][ T36] audit: type=1400 audit(2000000025.400:2130): avc: denied { execmem } for pid=8214 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=0 [ 263.306048][ T36] audit: type=1400 audit(2000000025.420:2131): avc: denied { mounton } for pid=8216 comm="syz.5.3131" path="/151/bus" dev="tmpfs" ino=818 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=0 [ 263.330529][ T36] audit: type=1400 audit(2000000025.420:2132): avc: denied { create } for pid=8216 comm="syz.5.3131" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=0 [ 263.351988][ T36] audit: type=1400 audit(2000000025.440:2133): avc: denied { read write } for pid=6542 comm="syz-executor" name="loop5" dev="devtmpfs" ino=54 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0 [ 263.376378][ T36] audit: type=1400 audit(2000000025.450:2134): avc: denied { read } for pid=8215 comm="syz.0.3130" name="kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=0 [ 263.399171][ T36] audit: type=1400 audit(2000000025.460:2135): avc: denied { read } for pid=8215 comm="syz.0.3130" name="kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=0 [ 263.421823][ T36] audit: type=1400 audit(2000000025.460:2136): avc: denied { create } for pid=8215 comm="syz.0.3130" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=0 [ 263.442308][ T36] audit: type=1400 audit(2000000025.460:2137): avc: denied { execmem } for pid=8215 comm="syz.0.3130" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=0 [ 263.461551][ T36] audit: type=1400 audit(2000000025.460:2138): avc: denied { read write } for pid=8215 comm="syz.0.3130" name="ashmem" dev="devtmpfs" ino=201 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=0 [ 263.484688][ T36] audit: type=1400 audit(2000000025.460:2139): avc: denied { read } for pid=8219 comm="syz.3.3132" name="binder0" dev="binder" ino=28 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=0 [ 268.763294][ T36] kauditd_printk_skb: 27 callbacks suppressed [ 268.763314][ T36] audit: type=1400 audit(2000000030.900:2167): avc: denied { execmem } for pid=8242 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=0 [ 268.820633][ T36] audit: type=1400 audit(2000000030.930:2168): avc: denied { execmem } for pid=8244 comm="syz.5.3143" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=0 [ 268.843541][ T36] audit: type=1400 audit(2000000030.930:2169): avc: denied { read write } for pid=8245 comm="syz.3.3144" name="vhost-vsock" dev="devtmpfs" ino=200 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=0 [ 268.867758][ T36] audit: type=1400 audit(2000000030.930:2170): avc: denied { create } for pid=8245 comm="syz.3.3144" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=0 [ 268.887357][ T36] audit: type=1400 audit(2000000030.930:2171): avc: denied { create } for pid=8245 comm="syz.3.3144" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=0 [ 268.906950][ T36] audit: type=1400 audit(2000000030.950:2172): avc: denied { read write } for pid=6610 comm="syz-executor" name="loop0" dev="devtmpfs" ino=954 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0 [ 268.931157][ T36] audit: type=1400 audit(2000000030.950:2173): avc: denied { read write } for pid=6306 comm="syz-executor" name="loop3" dev="devtmpfs" ino=52 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0 [ 268.955258][ T36] audit: type=1400 audit(2000000030.960:2174): avc: denied { read write } for pid=6542 comm="syz-executor" name="loop5" dev="devtmpfs" ino=54 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0 [ 270.405702][ T36] audit: type=1400 audit(2000000032.540:2175): avc: denied { execmem } for pid=8249 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=0 [ 270.433905][ T36] audit: type=1400 audit(2000000032.560:2176): avc: denied { remount } for pid=8251 comm="syz.5.3146" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=0 [ 273.970159][ T36] kauditd_printk_skb: 15 callbacks suppressed [ 273.970179][ T36] audit: type=1400 audit(2000000036.100:2192): avc: denied { execmem } for pid=8263 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=0 [ 274.018303][ T36] audit: type=1400 audit(2000000036.130:2193): avc: denied { read write } for pid=6306 comm="syz-executor" name="loop3" dev="devtmpfs" ino=52 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0 [ 274.042513][ T36] audit: type=1400 audit(2000000036.130:2194): avc: denied { read } for pid=8265 comm="syz.5.3152" name="rnullb0" dev="devtmpfs" ino=31 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=0 [ 274.065158][ T36] audit: type=1400 audit(2000000036.140:2195): avc: denied { read } for pid=8265 comm="syz.5.3152" dev="nsfs" ino=4026532562 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=0 [ 274.086348][ T36] audit: type=1400 audit(2000000036.140:2196): avc: denied { create } for pid=8264 comm="syz.0.3151" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=0 [ 274.105962][ T36] audit: type=1400 audit(2000000036.140:2197): avc: denied { create } for pid=8265 comm="syz.5.3152" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=0 [ 274.125553][ T36] audit: type=1400 audit(2000000036.150:2198): avc: denied { read } for pid=8265 comm="syz.5.3152" name="kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=0 [ 274.148180][ T36] audit: type=1400 audit(2000000036.160:2199): avc: denied { read write } for pid=6610 comm="syz-executor" name="loop0" dev="devtmpfs" ino=954 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0 [ 274.172564][ T36] audit: type=1400 audit(2000000036.190:2200): avc: denied { read write } for pid=6542 comm="syz-executor" name="loop5" dev="devtmpfs" ino=54 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0 [ 275.893841][ T36] audit: type=1400 audit(2000000038.020:2201): avc: denied { execmem } for pid=8271 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=0 [ 275.923907][ T8277] FAULT_INJECTION: forcing a failure. [ 275.923907][ T8277] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 275.937198][ T8277] CPU: 0 UID: 0 PID: 8277 Comm: syz.5.3155 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362 [ 275.937235][ T8277] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 275.937249][ T8277] Call Trace: [ 275.937258][ T8277] [ 275.937267][ T8277] __dump_stack+0x21/0x30 [ 275.937297][ T8277] dump_stack_lvl+0x10c/0x190 [ 275.937322][ T8277] ? __cfi_dump_stack_lvl+0x10/0x10 [ 275.937359][ T8277] ? kernel_text_address+0xa9/0xe0 [ 275.937390][ T8277] dump_stack+0x19/0x20 [ 275.937414][ T8277] should_fail_ex+0x3d9/0x530 [ 275.937446][ T8277] should_fail+0xf/0x20 [ 275.937468][ T8277] should_fail_usercopy+0x1e/0x30 [ 275.937493][ T8277] _copy_from_user+0x22/0xb0 [ 275.937522][ T8277] ___sys_sendmsg+0x159/0x2a0 [ 275.937556][ T8277] ? __sys_sendmsg+0x280/0x280 [ 275.937587][ T8277] ? kstrtouint+0x78/0xf0 [ 275.937616][ T8277] __sys_sendmmsg+0x271/0x470 [ 275.937637][ T8277] ? __cfi___sys_sendmmsg+0x10/0x10 [ 275.937663][ T8277] ? __cfi_ksys_write+0x10/0x10 [ 275.937690][ T8277] __x64_sys_sendmmsg+0xa4/0xc0 [ 275.937719][ T8277] x64_sys_call+0xfec/0x2ee0 [ 275.937747][ T8277] do_syscall_64+0x58/0xf0 [ 275.937774][ T8277] ? clear_bhb_loop+0x35/0x90 [ 275.937826][ T8277] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 275.937857][ T8277] RIP: 0033:0x7fdafff8e929 [ 275.937875][ T8277] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 275.937894][ T8277] RSP: 002b:00007fdb00d9e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 275.937918][ T8277] RAX: ffffffffffffffda RBX: 00007fdb001b5fa0 RCX: 00007fdafff8e929 [ 275.937934][ T8277] RDX: 0000000000000001 RSI: 0000200000004700 RDI: 0000000000000003 [ 275.937949][ T8277] RBP: 00007fdb00d9e090 R08: 0000000000000000 R09: 0000000000000000 [ 275.937963][ T8277] R10: 00000000080040c4 R11: 0000000000000246 R12: 0000000000000001 [ 275.937976][ T8277] R13: 0000000000000000 R14: 00007fdb001b5fa0 R15: 00007fffc3506978 [ 275.937995][ T8277] [ 278.054288][ T305] bridge_slave_1: left allmulticast mode [ 278.059999][ T305] bridge_slave_1: left promiscuous mode [ 278.090701][ T305] bridge0: port 2(bridge_slave_1) entered disabled state [ 278.108145][ T305] bridge_slave_0: left allmulticast mode [ 278.120671][ T305] bridge_slave_0: left promiscuous mode [ 278.126353][ T305] bridge0: port 1(bridge_slave_0) entered disabled state [ 278.273236][ T305] veth1_macvtap: left promiscuous mode [ 278.278769][ T305] veth0_vlan: left promiscuous mode [ 278.573569][ T305] bridge_slave_1: left allmulticast mode [ 278.579254][ T305] bridge_slave_1: left promiscuous mode [ 278.585054][ T305] bridge0: port 2(bridge_slave_1) entered disabled state [ 278.592783][ T305] bridge_slave_0: left allmulticast mode [ 278.598439][ T305] bridge_slave_0: left promiscuous mode [ 278.604099][ T305] bridge0: port 1(bridge_slave_0) entered disabled state [ 278.611779][ T305] bridge_slave_1: left allmulticast mode [ 278.617676][ T305] bridge_slave_1: left promiscuous mode [ 278.623411][ T305] bridge0: port 2(bridge_slave_1) entered disabled state [ 278.631046][ T305] bridge_slave_0: left allmulticast mode [ 278.636702][ T305] bridge_slave_0: left promiscuous mode [ 278.643290][ T305] bridge0: port 1(bridge_slave_0) entered disabled state [ 278.824874][ T305] veth1_macvtap: left promiscuous mode [ 278.830426][ T305] veth0_vlan: left promiscuous mode [ 278.836071][ T305] veth1_macvtap: left promiscuous mode [ 278.841667][ T305] veth0_vlan: left promiscuous mode