last executing test programs:

7.755635171s ago: executing program 0 (id=5219):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0x8, 0x8000)
listmount$auto(&(0x7f0000000100)={0x1f, @raw, 0x80000002, 0xfffffffffffffff7, 0x2}, 0x0, 0x1, 0x1)

5.582892331s ago: executing program 0 (id=5236):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
writev$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
futex$auto(0x0, 0x85, 0x8, 0x0, 0x0, 0x80800002)
r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
write$auto(r0, &(0x7f00000001c0)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k<\x9ePw\xb8\x97PS\xc1*m\xe1\xa5\xa7\xcc\x15\xd2\x05\xef\x84-c\xfe9\x0e\xb7\x8a\xce\x85\x00\xe9\xda\xbc\xcd1\xda&SB\x10+e|\x7f|\xfa\xd1\xa9j\x1a\xbd\xdd\x06>n\xfb\xc5\xaa\x88\xc0\x837$\x91!\xd9\xa3\'\xc1C\xcf\xa5\xc3\xdb\x00\x8e)\x9e2\x10\xf2\xa6QY\xb5\x1b\x98MJ\x11\x84w', 0x81)
getcwd$auto(0x0, 0x7)
prctl$auto(0x4e, 0x1, 0x0, 0x0, 0x0)

3.238630032s ago: executing program 2 (id=5249):
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x801, 0x84)
socket(0x18, 0x5, 0x1)
r0 = open(&(0x7f0000000100)='.\x00', 0x591002, 0x408)
move_mount$auto(r0, 0x0, 0x4, 0x0, 0x176)

3.067574542s ago: executing program 2 (id=5250):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = socket(0x10, 0x2, 0x0)
statmount$auto(0x0, &(0x7f0000000040)={0x9, 0x10000, 0xffffffffffffd2e4, 0x8, 0x6, 0x6da, 0x1, 0x1, 0x6, 0x8, 0x4, 0x2, 0x80, 0x3, 0x200000000008, 0xdd2, 0x5, 0xe91, 0x6, 0x81, 0x0, 0x401}, 0x7fff, 0x80000001)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00022abd7000fbdbdf25020000000800021d00020000080003"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

2.812800933s ago: executing program 2 (id=5251):
socket(0x10, 0x3, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16, @ANYBLOB="1b0026bd7400fddbdf250300000004000800100003800c0009"], 0x40}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="010600bd7000fbdbdf250a"], 0x1c}, 0x1, 0x0, 0x0, 0x20040004}, 0x20008810)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="18"], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

2.588069683s ago: executing program 0 (id=5253):
socket(0x10, 0x3, 0x6)
mmap$auto(0x0, 0x7f, 0x1, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000340)={0x24, 0x0, 0x300, 0x70bd27, 0x25dfdbfe, {}, [@BATADV_ATTR_VERSION={0xd, 0x1, '\\\'!\'%+c]['}]}, 0x24}, 0x1, 0x0, 0x0, 0x20000000}, 0x800)
r0 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="fc000000", @ANYRES16=r0, @ANYBLOB="01002dbd7000fedbdf2505000000e60003800800c000e000000204002a000400110008002e00", @ANYRES32=0x0, @ANYBLOB="d152e64e22695352dd73864415aa8a78c65e6ab752fb4d469a47a092ae7d5061cdd9690cac4138553ecfbb1b32"], 0xfc}, 0x1, 0x0, 0x0, 0x40000}, 0x10)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

2.307708507s ago: executing program 1 (id=5254):
mmap$auto(0x0, 0x400008, 0xe2, 0x9b72, 0xffffffffffffffff, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
modify_ldt$auto(0x2, 0x0, 0x80)
modify_ldt$auto(0x1, 0x0, 0x10)
r0 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000140), 0x8040, 0x0)
io_uring_setup$auto(0x2008, 0x0)
ioctl$auto_dvb_demux_fops_dmxdev(r0, 0x403c6f2b, 0x0)

2.171636932s ago: executing program 3 (id=5256):
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x88000, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r1)
ioctl$auto_KVM_GET_MSRS(r0, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [{0x400000f4, 0x400, 0x9}]})

2.045065458s ago: executing program 2 (id=5257):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
io_uring_setup$auto(0x1, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f00000006c0), 0x0, 0x0)
ioctl$auto_dma_heap_fops_dma_heap(r0, 0xffffffffffdffe00, &(0x7f0000000140)=';')
r1 = openat$auto_rfkill_fops_core(0xffffffffffffff9c, 0x0, 0x40, 0x0)
ioctl$auto(0x3, 0x40086203, r1)

1.949822462s ago: executing program 0 (id=5258):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev3\x00', 0x169000, 0x0)
r0 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000080), 0x800, 0x0)
io_uring_setup$auto(0x2, 0x0)
ioctl$auto_dvb_demux_fops_dmxdev(r0, 0x403c6f2b, 0x0)
read$auto(0x3, 0x0, 0x80000001)

1.922810351s ago: executing program 1 (id=5259):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x6, 0x0)
futex_wake$auto(&(0x7f0000000300)="194777f28f0f5235", 0x1, 0x1, 0x200)
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB=']'], 0x1ac}}, 0x40000)
recvmmsg$auto(r0, &(0x7f0000000140)={{0x0, 0x4, &(0x7f0000000080)={0x0, 0x803}, 0x5, 0x0, 0x2, 0x8}, 0x800}, 0x10a, 0x8, 0x0)
close_range$auto(0x2, 0x8, 0x0)

1.768337291s ago: executing program 2 (id=5260):
bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x2, 0x4, 0x8201, 0x2, 0x8, 0xc, 0xe3, 0x4000000002, 0x3}, 0x6f4)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_proc_loginuid_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/loginuid\x00', 0x109000, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/irq/11/smp_affinity_list\x00', 0x129542, 0x0)
read$auto(0x3, 0x0, 0x7)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8)

1.711829057s ago: executing program 0 (id=5261):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x200, 0x1)
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x40)
open(&(0x7f0000000000)='./bus\x00', 0x12ba7e, 0x45)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
pidfd_getfd$auto(0x3, 0x1, 0x100000000)

1.595259414s ago: executing program 0 (id=5262):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
getrandom$auto(0x0, 0x6000000, 0x3)
mmap$auto(0x0, 0x810004, 0x2000000efb, 0x8000000008011, r0, 0x8000)
ioctl$auto_BLKRRPART(r0, 0x125f, 0x0)
mmap$auto(0xffffffffffffffff, 0x400003, 0xdf, 0x9b76, 0xffffffffffffffff, 0x8001)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x1000, 0x2)

1.497744541s ago: executing program 2 (id=5263):
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x103e81, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mount$auto(0x0, 0x0, &(0x7f0000000080)='-/}@\x00', 0xc2, 0x0)
r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
write$auto(r0, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
mmap$auto(0x7, 0x400009, 0xdf, 0x1c, 0x8000000000000003, 0x8000)
clone$auto(0x20003b46, 0x3, 0x0, 0x0, 0x10000002)

1.245976739s ago: executing program 3 (id=5264):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sysfs$auto(0x2, 0xa, 0xb)
close_range$auto(0x2, 0x8000, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8000, 0x0)
io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xd, 0x2, 0x6, 0x4, 0x8, 0xffffffffffffffff, [], {0x8000006, 0x6, 0x3, 0x29f, 0x100, 0x7f, 0x101, 0x6, 0x2}, {0x8000100, 0x1, 0x8000052, 0x5, 0x1, 0x40, 0x76c5, 0x9a, 0x100000000}})
io_uring_enter$auto(r0, 0x9, 0x820e, 0x9, 0x0, 0x18)

1.156817005s ago: executing program 1 (id=5265):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sysfs$auto(0x2, 0x46, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, 0x0, 0x22a40, 0x0)
fsopen$auto(0x0, 0x1)
fsconfig$auto(r0, 0x3, &(0x7f0000000200)='I\xee\"\xe3\xb7\xcfD\xe5\xb1\x05\x1e#\xff1<\xd9h[e\xdf\xc0M\xa2\x00\v\x97\xb5\xd4\x94\x99u\x9e\xf4O\x1a\xb1\x05\xb8\xcb\x96\fd\xa3\xf9&\xc9~\x10\x06X\a\xc8\xb7\x97\xc7M\x83\'^\xc9\x9e\xccAsv\xce8sw\v\xac\xcd\xa2B\xf8.\xce\xe6n\xfe\xd6\xc8\x06\x00\x00\x00z`C+\x0e\x8c<\xc5\x8f\xe6\x0f\x14\xfa\x9ea4>\xd8O[{\xede\xfd\xbc\xc7\xbd4_\xbc\xc6\x06\xe5h\x9e\xf5/4\xe8\xcfc\x95\xbb~\xd9.\xb3\x84\xb8K\xa7\xca\xda\xc8\x11u\xa1\x1d\x9d\xe1%\xc0m\xf6%1\xba\xe7^\xed0\xdc\x86\xeaG)?p,Up \xe9\b\x14\xaf\xbf\xd9\xc3,\xb8\x17\x10\x9f\x92\x95@),A\xb4\x92Q\x86\xbe\xed=p\x1b\x9d\xd4\x99_]K\xce.\x00\x00\x00\x8eDv\x0fl\xed\x93ey\xf9\x19\xf0\x9d\xf5\xfe\x06\x00Q\xc0ZJ\xc9*7\xf2\x1a\xa7\xb3\xc6v\v\xe1u\x16:\x15\xefel\xf0\x8c/\xa2\x95\xc1\xacd\xc9\a\xe5\x888F\xaa\xce\x94\xa2zsx\xea\x96\x7f~]\xdbj\xd1#\x94K\xcf\x11l\xe5Z\xec\xa6B\x90\xb6\xa3`\x88\xd4\x87\x17\x8a\xedFx\x95#\x83\x99\x00\xc6Z\x1au\x8e\xa7}\xa7\xe9\x83X\xa3\x03\xe2T\xea\xa0\xba\xd7R8T\x00\x8e0h\x8ck4\x15\xf3sh0\xd3\x1e\xedU@\xab\xc0g\xeeT\xc5\x8d\x9b\x188x)\xf0i]\xdcf\xdd\xf9\xffA\"ZQ\x8d\x15\xff\xf3WYX\x8a/\xb36\x1d\x8e7\xb2d3\xe8\xf4\x1e3\xec\xfe\xbf\xbbo\xbb\xd2Z\x89:\xa2\xc8n8k\xa8\xba\xa5E\x9f\xbe>3,\xcb\xa2\xa7q \xe2', &(0x7f0000000580)="de", 0x0)

458.70254ms ago: executing program 1 (id=5266):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x4004)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="1b0026bd7000fddbdf250300000004000800100003800c000b8008001c00", @ANYRES32=0x0, @ANYBLOB="12000100898771f1c19f17790485908288470000040002"], 0x4c}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

346.974736ms ago: executing program 1 (id=5267):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/pci0000:00/0000:00:03.0/resource1\x00', 0x0, 0x0)
mmap$auto(0x0, 0x3, 0x1000000000001, 0x8000000008011, 0x3, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)

297.158811ms ago: executing program 3 (id=5268):
socket(0x2, 0x801, 0x106)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
socket(0x2, 0x1, 0x106)
io_uring_setup$auto(0x6, 0x0)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x0, @rand_addr=0xfffffffe}, 0x55)

212.521932ms ago: executing program 3 (id=5269):
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
bind$auto(0xffffffffffffffff, &(0x7f0000000040)=@tipc=@name={0x1e, 0x2, 0x3, {{0x41, 0x1}, 0x1}}, 0x66)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
close_range$auto(0x2, 0x8, 0x0)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
sendmmsg$auto(r0, &(0x7f0000000100)={{0x0, 0x4, 0x0, 0x2, 0x0, 0x400}, 0x4}, 0xfff, 0xb07e)

118.233845ms ago: executing program 3 (id=5270):
mmap$auto(0x0, 0x8, 0xdf, 0x209b72, 0x4e477f5a, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2a, 0x2, 0x0)
ioctl$auto(0x3, 0x8915, 0x93)

78.14873ms ago: executing program 1 (id=5271):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0)
mq_getsetattr$auto(0xd, &(0x7f0000000200)={0x0, 0x5, 0x7f, 0x10}, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_7={@link_id=0x1, 0x3, 0x3}, 0x6f3)
mount$auto(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='nfs4\x00', 0x200, &(0x7f00000001c0))

0s ago: executing program 3 (id=5272):
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
socketpair$auto(0x3, 0x4, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
open(0x0, 0x22240, 0x55)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2480c2, 0x0)
ioctl$auto(0x3, 0x80026f48, r0)

kernel console output (not intermixed with test programs):

ratetype Reclaimable, gfp_mask 0xd20d0(__GFP_RECLAIMABLE|__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5245, tgid 5245 (udevadm), ts 36175916629, free_ts 28775750258
[  490.065618][T16427]  post_alloc_hook+0x1c0/0x230
[  490.070615][T16427]  get_page_from_freelist+0x132b/0x38e0
[  490.076323][T16427]  __alloc_frozen_pages_noprof+0x261/0x23f0
[  490.094018][T16427]  alloc_pages_mpol+0x1fb/0x550
[  490.100219][T16427]  new_slab+0x247/0x330
[  490.106898][T16427]  ___slab_alloc+0xcf2/0x1740
[  490.111612][T16427]  __slab_alloc.constprop.0+0x56/0xb0
[  490.119520][T16427]  kmem_cache_alloc_lru_noprof+0xf4/0x3b0
[  490.129803][T16427]  alloc_inode+0xc3/0x240
[  490.134245][T16427]  iget_locked+0x2e4/0x830
[  490.143318][T16427]  kernfs_get_inode+0x48/0x460
[  490.148140][T16427]  kernfs_iop_lookup+0x1a7/0x2d0
[  490.155590][T16427]  __lookup_slow+0x251/0x460
[  490.160234][T16427]  walk_component+0x353/0x5b0
[  490.170354][T16427]  link_path_walk+0x627/0xe20
[  490.180981][T16427]  path_lookupat+0x15a/0x6d0
[  490.187997][T16427] page last free pid 1 tgid 1 stack trace:
[  490.204969][T16427]  __free_frozen_pages+0x7d5/0x10f0
[  490.210192][T16427]  free_contig_range+0x183/0x4b0
[  490.216155][T16427]  destroy_args+0x7f6/0xa60
[  490.220654][T16427]  debug_vm_pgtable+0x1a32/0x3640
[  490.233229][T16427]  do_one_initcall+0x120/0x6e0
[  490.239513][T16427]  kernel_init_freeable+0x5c2/0x910
[  490.247478][T16427]  kernel_init+0x1c/0x2b0
[  490.251810][T16427]  ret_from_fork+0x5d7/0x6f0
[  490.256551][T16427]  ret_from_fork_asm+0x1a/0x30
[  490.898851][T16479] __nla_validate_parse: 2 callbacks suppressed
[  490.898866][T16479] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4433'.
[  491.046456][ T5863] Bluetooth: hci2: command 0x0c1a tx timeout
[  491.053864][ T9242] Bluetooth: hci1: command 0x0c1a tx timeout
[  492.904469][T16496] FAULT_INJECTION: forcing a failure.
[  492.904469][T16496] name failslab, interval 1, probability 0, space 0, times 0
[  492.930853][T16496] CPU: 1 UID: 0 PID: 16496 Comm: syz.3.4441 Tainted: G          I         6.16.0-syzkaller-12016-gbec077162bd0 #0 PREEMPT(full) 
[  492.930881][T16496] Tainted: [I]=FIRMWARE_WORKAROUND
[  492.930887][T16496] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  492.930895][T16496] Call Trace:
[  492.930901][T16496]  <TASK>
[  492.930907][T16496]  dump_stack_lvl+0x16c/0x1f0
[  492.930928][T16496]  should_fail_ex+0x512/0x640
[  492.930946][T16496]  ? __kmalloc_noprof+0xbf/0x510
[  492.930965][T16496]  ? __seq_open_private+0x22/0xd0
[  492.930986][T16496]  should_failslab+0xc2/0x120
[  492.931004][T16496]  __kmalloc_noprof+0xd2/0x510
[  492.931019][T16496]  ? __pfx_apparmor_file_open+0x10/0x10
[  492.931044][T16496]  __seq_open_private+0x22/0xd0
[  492.931065][T16496]  proc_timers_open+0x27/0x150
[  492.931087][T16496]  do_dentry_open+0x97f/0x1530
[  492.931104][T16496]  ? __pfx_proc_timers_open+0x10/0x10
[  492.931128][T16496]  vfs_open+0x82/0x3f0
[  492.931150][T16496]  path_openat+0x1de4/0x2cb0
[  492.931172][T16496]  ? __pfx_path_openat+0x10/0x10
[  492.931193][T16496]  do_filp_open+0x20b/0x470
[  492.931210][T16496]  ? __pfx_do_filp_open+0x10/0x10
[  492.931232][T16496]  ? __pfx_kfree_link+0x10/0x10
[  492.931257][T16496]  ? alloc_fd+0x471/0x7d0
[  492.931277][T16496]  do_sys_openat2+0x11b/0x1d0
[  492.931297][T16496]  ? __pfx_do_sys_openat2+0x10/0x10
[  492.931324][T16496]  __x64_sys_openat+0x174/0x210
[  492.931345][T16496]  ? __pfx___x64_sys_openat+0x10/0x10
[  492.931374][T16496]  do_syscall_64+0xcd/0x490
[  492.931391][T16496]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  492.931405][T16496] RIP: 0033:0x7f238478ebe9
[  492.931417][T16496] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  492.931432][T16496] RSP: 002b:00007f23829ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  492.931447][T16496] RAX: ffffffffffffffda RBX: 00007f23849b5fa0 RCX: 00007f238478ebe9
[  492.931464][T16496] RDX: 0000000000000040 RSI: 0000200000000100 RDI: ffffffffffffff9c
[  492.931474][T16496] RBP: 00007f2384811e19 R08: 0000000000000000 R09: 0000000000000000
[  492.931482][T16496] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  492.931491][T16496] R13: 00007f23849b6038 R14: 00007f23849b5fa0 R15: 00007ffe35df10f8
[  492.931510][T16496]  </TASK>
[  495.346617][T16526] random: crng reseeded on system resumption
[  495.369986][T16526] FAULT_INJECTION: forcing a failure.
[  495.369986][T16526] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  495.395624][T16526] CPU: 1 UID: 0 PID: 16526 Comm: syz.3.4453 Tainted: G          I         6.16.0-syzkaller-12016-gbec077162bd0 #0 PREEMPT(full) 
[  495.395652][T16526] Tainted: [I]=FIRMWARE_WORKAROUND
[  495.395658][T16526] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  495.395667][T16526] Call Trace:
[  495.395672][T16526]  <TASK>
[  495.395678][T16526]  dump_stack_lvl+0x16c/0x1f0
[  495.395700][T16526]  should_fail_ex+0x512/0x640
[  495.395721][T16526]  should_fail_alloc_page+0xe7/0x130
[  495.395743][T16526]  prepare_alloc_pages+0x3c2/0x610
[  495.395764][T16526]  ? rcu_is_watching+0x12/0xc0
[  495.395781][T16526]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  495.395804][T16526]  ? stack_trace_save+0x8e/0xc0
[  495.395820][T16526]  ? __pfx_stack_trace_save+0x10/0x10
[  495.395837][T16526]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  495.395857][T16526]  ? kasan_save_stack+0x42/0x60
[  495.395873][T16526]  ? kasan_save_stack+0x33/0x60
[  495.395891][T16526]  ? do_dentry_open+0x97f/0x1530
[  495.395907][T16526]  ? vfs_open+0x82/0x3f0
[  495.395925][T16526]  ? path_openat+0x1de4/0x2cb0
[  495.395940][T16526]  ? do_filp_open+0x20b/0x470
[  495.395954][T16526]  ? do_sys_openat2+0x11b/0x1d0
[  495.395972][T16526]  ? __x64_sys_openat+0x174/0x210
[  495.395992][T16526]  ? do_syscall_64+0xcd/0x490
[  495.396007][T16526]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  495.396022][T16526]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  495.396042][T16526]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  495.396063][T16526]  ? policy_nodemask+0xea/0x4e0
[  495.396083][T16526]  alloc_pages_mpol+0x1fb/0x550
[  495.396102][T16526]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  495.396125][T16526]  alloc_pages_noprof+0x131/0x390
[  495.396144][T16526]  get_zeroed_page_noprof+0x18/0xb0
[  495.396164][T16526]  get_image_page+0x18/0x190
[  495.396178][T16526]  alloc_rtree_node+0x3c/0xb0
[  495.396192][T16526]  memory_bm_create+0x519/0x810
[  495.396214][T16526]  create_basic_memory_bitmaps+0x10b/0x320
[  495.396233][T16526]  snapshot_open+0x235/0x2b0
[  495.396249][T16526]  ? __pfx_snapshot_open+0x10/0x10
[  495.396274][T16526]  misc_open+0x35a/0x420
[  495.396296][T16526]  ? __pfx_misc_open+0x10/0x10
[  495.396316][T16526]  chrdev_open+0x231/0x6a0
[  495.396334][T16526]  ? __pfx_apparmor_file_open+0x10/0x10
[  495.396356][T16526]  ? __pfx_chrdev_open+0x10/0x10
[  495.396374][T16526]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  495.396394][T16526]  do_dentry_open+0x97f/0x1530
[  495.396411][T16526]  ? __pfx_chrdev_open+0x10/0x10
[  495.396433][T16526]  vfs_open+0x82/0x3f0
[  495.396454][T16526]  path_openat+0x1de4/0x2cb0
[  495.396477][T16526]  ? __pfx_path_openat+0x10/0x10
[  495.396498][T16526]  do_filp_open+0x20b/0x470
[  495.396515][T16526]  ? __pfx_do_filp_open+0x10/0x10
[  495.396546][T16526]  ? alloc_fd+0x471/0x7d0
[  495.396566][T16526]  do_sys_openat2+0x11b/0x1d0
[  495.396586][T16526]  ? __pfx_do_sys_openat2+0x10/0x10
[  495.396615][T16526]  __x64_sys_openat+0x174/0x210
[  495.396635][T16526]  ? __pfx___x64_sys_openat+0x10/0x10
[  495.396664][T16526]  do_syscall_64+0xcd/0x490
[  495.396681][T16526]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  495.396695][T16526] RIP: 0033:0x7f238478ebe9
[  495.396708][T16526] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  495.396721][T16526] RSP: 002b:00007f23829ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  495.396736][T16526] RAX: ffffffffffffffda RBX: 00007f23849b5fa0 RCX: 00007f238478ebe9
[  495.396745][T16526] RDX: 00000000001438bf RSI: 0000200000000000 RDI: ffffffffffffff9c
[  495.396755][T16526] RBP: 00007f2384811e19 R08: 0000000000000000 R09: 0000000000000000
[  495.396764][T16526] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  495.396773][T16526] R13: 00007f23849b6038 R14: 00007f23849b5fa0 R15: 00007ffe35df10f8
[  495.396793][T16526]  </TASK>
[  496.355501][T16531] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4454'.
[  496.408733][T16531] hsr0: entered allmulticast mode
[  496.431040][T16531] hsr_slave_0: entered allmulticast mode
[  496.447495][T16531] hsr_slave_1: entered allmulticast mode
[  497.086576][T16540] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4459'.
[  497.230679][T16540] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  497.240452][T16540] batman_adv: batadv0: Removing interface: batadv_slave_0
[  497.250884][T16540] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  497.267790][T16540] batman_adv: batadv0: Removing interface: batadv_slave_1
[  498.447222][T16572] netlink: 334 bytes leftover after parsing attributes in process `syz.1.4472'.
[  500.418651][T16609] netlink: 'syz.3.4491': attribute type 2 has an invalid length.
[  500.456979][T16609] netlink: 'syz.3.4491': attribute type 2 has an invalid length.
[  500.590671][T16614] netlink: 342 bytes leftover after parsing attributes in process `syz.3.4492'.
[  501.445451][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  501.452006][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  501.875546][T16650] netlink: 342 bytes leftover after parsing attributes in process `syz.3.4509'.
[  501.925714][T16641] svc: failed to register nfsdv3 RPC service (errno 111).
[  502.021691][T16641] svc: failed to register nfsaclv3 RPC service (errno 111).
[  502.271589][T16661] netlink: 'syz.3.4514': attribute type 1 has an invalid length.
[  503.063485][T16683] netlink: 342 bytes leftover after parsing attributes in process `syz.3.4525'.
[  504.440681][T16706] svc: failed to register nfsdv3 RPC service (errno 111).
[  504.465298][T16706] svc: failed to register nfsaclv3 RPC service (errno 111).
[  504.788391][T16713] FAULT_INJECTION: forcing a failure.
[  504.788391][T16713] name failslab, interval 1, probability 0, space 0, times 0
[  504.815166][T16713] CPU: 1 UID: 7 PID: 16713 Comm: syz.3.4536 Tainted: G          I         6.16.0-syzkaller-12016-gbec077162bd0 #0 PREEMPT(full) 
[  504.815195][T16713] Tainted: [I]=FIRMWARE_WORKAROUND
[  504.815200][T16713] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  504.815210][T16713] Call Trace:
[  504.815216][T16713]  <TASK>
[  504.815222][T16713]  dump_stack_lvl+0x16c/0x1f0
[  504.815243][T16713]  should_fail_ex+0x512/0x640
[  504.815260][T16713]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  504.815278][T16713]  should_failslab+0xc2/0x120
[  504.815297][T16713]  __kmalloc_cache_noprof+0x6a/0x3e0
[  504.815312][T16713]  ? mqueue_init_fs_context+0x4b/0x480
[  504.815335][T16713]  ? __pfx_mqueue_init_fs_context+0x10/0x10
[  504.815355][T16713]  mqueue_init_fs_context+0x4b/0x480
[  504.815382][T16713]  ? __pfx_mqueue_init_fs_context+0x10/0x10
[  504.815405][T16713]  alloc_fs_context+0x54d/0x9c0
[  504.815427][T16713]  mq_init_ns+0x172/0x620
[  504.815441][T16713]  copy_ipcs+0x383/0x610
[  504.815453][T16713]  ? copy_utsname+0xab/0x470
[  504.815474][T16713]  create_new_namespaces+0x20a/0xa90
[  504.815490][T16713]  ? security_capable+0x7e/0x260
[  504.815513][T16713]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  504.815530][T16713]  ksys_unshare+0x45b/0xa40
[  504.815549][T16713]  ? __pfx_ksys_unshare+0x10/0x10
[  504.815568][T16713]  ? xfd_validate_state+0x61/0x180
[  504.815593][T16713]  __x64_sys_unshare+0x31/0x40
[  504.815611][T16713]  do_syscall_64+0xcd/0x490
[  504.815629][T16713]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  504.815647][T16713] RIP: 0033:0x7f238478ebe9
[  504.815658][T16713] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  504.815672][T16713] RSP: 002b:00007f23829ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  504.815688][T16713] RAX: ffffffffffffffda RBX: 00007f23849b5fa0 RCX: 00007f238478ebe9
[  504.815697][T16713] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000008000400
[  504.815705][T16713] RBP: 00007f2384811e19 R08: 0000000000000000 R09: 0000000000000000
[  504.815714][T16713] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  504.815722][T16713] R13: 00007f23849b6038 R14: 00007f23849b5fa0 R15: 00007ffe35df10f8
[  504.815741][T16713]  </TASK>
[  505.043424][    C1] vkms_vblank_simulate: vblank timer overrun
[  511.578923][T16835] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4584'.
[  513.158262][T16883] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  513.727341][T16899] FAULT_INJECTION: forcing a failure.
[  513.727341][T16899] name failslab, interval 1, probability 0, space 0, times 0
[  513.777007][T16899] CPU: 1 UID: 0 PID: 16899 Comm: syz.3.4611 Tainted: G          I         6.16.0-syzkaller-12016-gbec077162bd0 #0 PREEMPT(full) 
[  513.777034][T16899] Tainted: [I]=FIRMWARE_WORKAROUND
[  513.777040][T16899] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  513.777049][T16899] Call Trace:
[  513.777054][T16899]  <TASK>
[  513.777060][T16899]  dump_stack_lvl+0x16c/0x1f0
[  513.777081][T16899]  should_fail_ex+0x512/0x640
[  513.777100][T16899]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  513.777118][T16899]  should_failslab+0xc2/0x120
[  513.777141][T16899]  __kmalloc_cache_noprof+0x6a/0x3e0
[  513.777156][T16899]  ? pty_common_install+0x10e/0xb30
[  513.777173][T16899]  pty_common_install+0x10e/0xb30
[  513.777189][T16899]  ? __pfx_pty_install+0x10/0x10
[  513.777204][T16899]  tty_init_dev.part.0+0x9c/0x500
[  513.777223][T16899]  tty_open+0xa50/0xf90
[  513.777243][T16899]  ? __pfx_tty_open+0x10/0x10
[  513.777260][T16899]  ? chrdev_open+0x58c/0x6a0
[  513.777280][T16899]  ? __pfx_tty_open+0x10/0x10
[  513.777297][T16899]  chrdev_open+0x231/0x6a0
[  513.777315][T16899]  ? __pfx_chrdev_open+0x10/0x10
[  513.777334][T16899]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  513.777353][T16899]  do_dentry_open+0x97f/0x1530
[  513.777371][T16899]  ? __pfx_chrdev_open+0x10/0x10
[  513.777393][T16899]  vfs_open+0x82/0x3f0
[  513.777415][T16899]  path_openat+0x1de4/0x2cb0
[  513.777437][T16899]  ? __pfx_path_openat+0x10/0x10
[  513.777459][T16899]  do_filp_open+0x20b/0x470
[  513.777476][T16899]  ? __pfx_do_filp_open+0x10/0x10
[  513.777506][T16899]  ? alloc_fd+0x471/0x7d0
[  513.777526][T16899]  do_sys_openat2+0x11b/0x1d0
[  513.777546][T16899]  ? __pfx_do_sys_openat2+0x10/0x10
[  513.777574][T16899]  __x64_sys_openat+0x174/0x210
[  513.777606][T16899]  ? __pfx___x64_sys_openat+0x10/0x10
[  513.777636][T16899]  do_syscall_64+0xcd/0x490
[  513.777655][T16899]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  513.777670][T16899] RIP: 0033:0x7f238478ebe9
[  513.777682][T16899] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  513.777697][T16899] RSP: 002b:00007f23829ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  513.777712][T16899] RAX: ffffffffffffffda RBX: 00007f23849b5fa0 RCX: 00007f238478ebe9
[  513.777721][T16899] RDX: 0000000000000002 RSI: 0000200000000400 RDI: ffffffffffffff9c
[  513.777730][T16899] RBP: 00007f2384811e19 R08: 0000000000000000 R09: 0000000000000000
[  513.777738][T16899] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  513.777746][T16899] R13: 00007f23849b6038 R14: 00007f23849b5fa0 R15: 00007ffe35df10f8
[  513.777764][T16899]  </TASK>
[  514.051329][T16903] netlink: 302 bytes leftover after parsing attributes in process `syz.1.4610'.
[  514.575483][   T13] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  516.050239][T16936] netlink: 'syz.1.4623': attribute type 1 has an invalid length.
[  516.084350][ T5863] Bluetooth: hci1: Malformed LE Event: 0x1b
[  516.242452][T16944] netlink: 350 bytes leftover after parsing attributes in process `syz.3.4626'.
[  516.861863][T16964] FAULT_INJECTION: forcing a failure.
[  516.861863][T16964] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  516.891486][T16964] CPU: 1 UID: 0 PID: 16964 Comm: syz.3.4634 Tainted: G          I         6.16.0-syzkaller-12016-gbec077162bd0 #0 PREEMPT(full) 
[  516.891512][T16964] Tainted: [I]=FIRMWARE_WORKAROUND
[  516.891518][T16964] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  516.891527][T16964] Call Trace:
[  516.891532][T16964]  <TASK>
[  516.891538][T16964]  dump_stack_lvl+0x16c/0x1f0
[  516.891559][T16964]  should_fail_ex+0x512/0x640
[  516.891580][T16964]  should_fail_alloc_page+0xe7/0x130
[  516.891602][T16964]  prepare_alloc_pages+0x3c2/0x610
[  516.891623][T16964]  ? rcu_is_watching+0x12/0xc0
[  516.891639][T16964]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  516.891659][T16964]  ? rcu_is_watching+0x12/0xc0
[  516.891673][T16964]  ? trace_mm_page_alloc+0x11f/0x1a0
[  516.891693][T16964]  ? __alloc_frozen_pages_noprof+0x294/0x23f0
[  516.891709][T16964]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  516.891723][T16964]  ? lockdep_hardirqs_on+0x7c/0x110
[  516.891738][T16964]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  516.891754][T16964]  ? stack_depot_save_flags+0x3de/0x9c0
[  516.891776][T16964]  ? alloc_vmap_area+0x645/0x29c0
[  516.891794][T16964]  ? __vmalloc_node_range_noprof+0x271/0x14b0
[  516.891807][T16964]  ? bloom_map_alloc+0x302/0x4c0
[  516.891820][T16964]  ? map_create+0x58f/0x1f80
[  516.891837][T16964]  ? __sys_bpf+0x44d2/0x4de0
[  516.891855][T16964]  ? __x64_sys_bpf+0x78/0xc0
[  516.891874][T16964]  ? do_syscall_64+0xcd/0x490
[  516.891889][T16964]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  516.891910][T16964]  alloc_pages_bulk_noprof+0x71c/0x1410
[  516.891926][T16964]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  516.891948][T16964]  ? policy_nodemask+0xea/0x4e0
[  516.891968][T16964]  ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[  516.891985][T16964]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  516.892011][T16964]  kasan_populate_vmalloc+0xf1/0x1f0
[  516.892030][T16964]  alloc_vmap_area+0x959/0x29c0
[  516.892057][T16964]  ? __pfx_alloc_vmap_area+0x10/0x10
[  516.892081][T16964]  __get_vm_area_node+0x1ca/0x330
[  516.892106][T16964]  __vmalloc_node_range_noprof+0x271/0x14b0
[  516.892120][T16964]  ? bloom_map_alloc+0x302/0x4c0
[  516.892138][T16964]  ? bloom_map_alloc+0x302/0x4c0
[  516.892156][T16964]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  516.892174][T16964]  ? aa_get_newest_label+0xd2/0x250
[  516.892197][T16964]  ? bloom_map_alloc+0x302/0x4c0
[  516.892209][T16964]  __bpf_map_area_alloc+0x12e/0x200
[  516.892231][T16964]  ? bloom_map_alloc+0x302/0x4c0
[  516.892247][T16964]  bloom_map_alloc+0x302/0x4c0
[  516.892262][T16964]  map_create+0x58f/0x1f80
[  516.892286][T16964]  ? __pfx_map_create+0x10/0x10
[  516.892304][T16964]  ? __might_fault+0xe3/0x190
[  516.892319][T16964]  ? __might_fault+0xe3/0x190
[  516.892333][T16964]  ? __might_fault+0x13b/0x190
[  516.892365][T16964]  __sys_bpf+0x44d2/0x4de0
[  516.892389][T16964]  ? __pfx___sys_bpf+0x10/0x10
[  516.892409][T16964]  ? do_writev+0x218/0x340
[  516.892428][T16964]  ? do_futex+0x122/0x350
[  516.892446][T16964]  ? __pfx_do_futex+0x10/0x10
[  516.892473][T16964]  ? xfd_validate_state+0x61/0x180
[  516.892493][T16964]  ? __pfx_do_writev+0x10/0x10
[  516.892510][T16964]  __x64_sys_bpf+0x78/0xc0
[  516.892531][T16964]  ? lockdep_hardirqs_on+0x7c/0x110
[  516.892546][T16964]  do_syscall_64+0xcd/0x490
[  516.892563][T16964]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  516.892576][T16964] RIP: 0033:0x7f238478ebe9
[  516.892589][T16964] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  516.892602][T16964] RSP: 002b:00007f23829ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  516.892617][T16964] RAX: ffffffffffffffda RBX: 00007f23849b5fa0 RCX: 00007f238478ebe9
[  516.892627][T16964] RDX: 00000000000006f4 RSI: 0000200000000280 RDI: 0000000000000000
[  516.892636][T16964] RBP: 00007f2384811e19 R08: 0000000000000000 R09: 0000000000000000
[  516.892644][T16964] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  516.892653][T16964] R13: 00007f23849b6038 R14: 00007f23849b5fa0 R15: 00007ffe35df10f8
[  516.892671][T16964]  </TASK>
[  518.321070][T16979] netlink: 74 bytes leftover after parsing attributes in process `syz.3.4640'.
[  519.840563][T17021] netlink: 334 bytes leftover after parsing attributes in process `syz.3.4656'.
[  519.861044][T17021] netlink: 334 bytes leftover after parsing attributes in process `syz.3.4656'.
[  520.976429][T17047] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4666'.
[  521.890631][T17075] netlink: 334 bytes leftover after parsing attributes in process `syz.0.4680'.
[  522.307819][T17083] netlink: 330 bytes leftover after parsing attributes in process `syz.2.4683'.
[  522.339541][T17086] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  522.794087][T17099] netlink: 342 bytes leftover after parsing attributes in process `syz.3.4691'.
[  524.573846][T17146] netlink: 326 bytes leftover after parsing attributes in process `syz.3.4711'.
[  525.246456][T17164] netlink: 122 bytes leftover after parsing attributes in process `syz.1.4719'.
[  525.301190][T17169] netlink: 186 bytes leftover after parsing attributes in process `syz.3.4722'.
[  525.330447][T17169] netlink: 186 bytes leftover after parsing attributes in process `syz.3.4722'.
[  525.583638][T17174] netlink: 334 bytes leftover after parsing attributes in process `syz.0.4731'.
[  528.117804][T17202] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input18
[  528.546252][T17211] FAULT_INJECTION: forcing a failure.
[  528.546252][T17211] name failslab, interval 1, probability 0, space 0, times 0
[  528.569910][T17211] CPU: 1 UID: 0 PID: 17211 Comm: syz.3.4741 Tainted: G          I         6.16.0-syzkaller-12016-gbec077162bd0 #0 PREEMPT(full) 
[  528.569938][T17211] Tainted: [I]=FIRMWARE_WORKAROUND
[  528.569943][T17211] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  528.569952][T17211] Call Trace:
[  528.569958][T17211]  <TASK>
[  528.569964][T17211]  dump_stack_lvl+0x16c/0x1f0
[  528.569985][T17211]  should_fail_ex+0x512/0x640
[  528.570002][T17211]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  528.570020][T17211]  should_failslab+0xc2/0x120
[  528.570039][T17211]  __kmalloc_cache_noprof+0x6a/0x3e0
[  528.570053][T17211]  ? snd_mixer_oss_get_volume1_sw.constprop.0.isra.0+0xa4/0x580
[  528.570077][T17211]  snd_mixer_oss_get_volume1_sw.constprop.0.isra.0+0xa4/0x580
[  528.570101][T17211]  snd_mixer_oss_get_recsrc1_sw+0x104/0x1d0
[  528.570120][T17211]  ? __pfx_snd_mixer_oss_get_recsrc1_sw+0x10/0x10
[  528.570138][T17211]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  528.570161][T17211]  snd_mixer_oss_ioctl1+0x18f4/0x1e40
[  528.570176][T17211]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  528.570208][T17211]  ? __pfx_snd_mixer_oss_get_recsrc1_sw+0x10/0x10
[  528.570228][T17211]  ? __pfx_snd_mixer_oss_ioctl1+0x10/0x10
[  528.570244][T17211]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  528.570273][T17211]  ? find_held_lock+0x2b/0x80
[  528.570287][T17211]  ? hook_file_ioctl_common+0x145/0x410
[  528.570307][T17211]  ? __fget_files+0x20e/0x3c0
[  528.570326][T17211]  snd_mixer_oss_ioctl+0x3e/0x50
[  528.570341][T17211]  ? __pfx_snd_mixer_oss_ioctl+0x10/0x10
[  528.570358][T17211]  __x64_sys_ioctl+0x18e/0x210
[  528.570380][T17211]  do_syscall_64+0xcd/0x490
[  528.570398][T17211]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  528.570412][T17211] RIP: 0033:0x7f238478ebe9
[  528.570424][T17211] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  528.570437][T17211] RSP: 002b:00007f23829ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  528.570451][T17211] RAX: ffffffffffffffda RBX: 00007f23849b5fa0 RCX: 00007f238478ebe9
[  528.570460][T17211] RDX: 0000000000000000 RSI: 0000000080044dff RDI: 0000000000000005
[  528.570468][T17211] RBP: 00007f2384811e19 R08: 0000000000000000 R09: 0000000000000000
[  528.570477][T17211] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  528.570485][T17211] R13: 00007f23849b6038 R14: 00007f23849b5fa0 R15: 00007ffe35df10f8
[  528.570503][T17211]  </TASK>
[  529.687963][T17242] FAULT_INJECTION: forcing a failure.
[  529.687963][T17242] name failslab, interval 1, probability 0, space 0, times 0
[  529.721105][T17242] CPU: 1 UID: 0 PID: 17242 Comm: syz.3.4750 Tainted: G          I         6.16.0-syzkaller-12016-gbec077162bd0 #0 PREEMPT(full) 
[  529.721133][T17242] Tainted: [I]=FIRMWARE_WORKAROUND
[  529.721138][T17242] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  529.721147][T17242] Call Trace:
[  529.721152][T17242]  <TASK>
[  529.721158][T17242]  dump_stack_lvl+0x16c/0x1f0
[  529.721179][T17242]  should_fail_ex+0x512/0x640
[  529.721197][T17242]  ? __kmalloc_node_track_caller_noprof+0xc3/0x510
[  529.721219][T17242]  should_failslab+0xc2/0x120
[  529.721238][T17242]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[  529.721257][T17242]  ? xfrm_sysctl_init+0x10a/0x2d0
[  529.721278][T17242]  kmemdup_noprof+0x29/0x60
[  529.721296][T17242]  xfrm_sysctl_init+0x10a/0x2d0
[  529.721315][T17242]  xfrm_net_init+0x842/0xcc0
[  529.721336][T17242]  ? __pfx_xfrm_net_init+0x10/0x10
[  529.721352][T17242]  ops_init+0x1df/0x5f0
[  529.721371][T17242]  setup_net+0x10f/0x380
[  529.721385][T17242]  ? lockdep_init_map_type+0x5c/0x280
[  529.721404][T17242]  ? __pfx_setup_net+0x10/0x10
[  529.721421][T17242]  ? debug_mutex_init+0x37/0x70
[  529.721437][T17242]  copy_net_ns+0x2a6/0x5f0
[  529.721457][T17242]  create_new_namespaces+0x3ea/0xa90
[  529.721477][T17242]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  529.721495][T17242]  ksys_unshare+0x45b/0xa40
[  529.721514][T17242]  ? __pfx_ksys_unshare+0x10/0x10
[  529.721534][T17242]  ? xfd_validate_state+0x61/0x180
[  529.721559][T17242]  __x64_sys_unshare+0x31/0x40
[  529.721580][T17242]  do_syscall_64+0xcd/0x490
[  529.721598][T17242]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  529.721612][T17242] RIP: 0033:0x7f238478ebe9
[  529.721624][T17242] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  529.721638][T17242] RSP: 002b:00007f23829ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  529.721652][T17242] RAX: ffffffffffffffda RBX: 00007f23849b5fa0 RCX: 00007f238478ebe9
[  529.721662][T17242] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  529.721670][T17242] RBP: 00007f2384811e19 R08: 0000000000000000 R09: 0000000000000000
[  529.721678][T17242] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  529.721687][T17242] R13: 00007f23849b6038 R14: 00007f23849b5fa0 R15: 00007ffe35df10f8
[  529.721706][T17242]  </TASK>
[  531.953926][T17309] FAULT_INJECTION: forcing a failure.
[  531.953926][T17309] name failslab, interval 1, probability 0, space 0, times 0
[  531.986249][T17309] CPU: 1 UID: 0 PID: 17309 Comm: syz.3.4774 Tainted: G          I         6.16.0-syzkaller-12016-gbec077162bd0 #0 PREEMPT(full) 
[  531.986276][T17309] Tainted: [I]=FIRMWARE_WORKAROUND
[  531.986282][T17309] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  531.986290][T17309] Call Trace:
[  531.986295][T17309]  <TASK>
[  531.986301][T17309]  dump_stack_lvl+0x16c/0x1f0
[  531.986321][T17309]  should_fail_ex+0x512/0x640
[  531.986339][T17309]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  531.986356][T17309]  should_failslab+0xc2/0x120
[  531.986375][T17309]  __kmalloc_cache_noprof+0x6a/0x3e0
[  531.986389][T17309]  ? vhost_net_open+0xb4/0x8a0
[  531.986405][T17309]  ? kasan_save_track+0x14/0x30
[  531.986423][T17309]  vhost_net_open+0xb4/0x8a0
[  531.986437][T17309]  ? __pfx_vhost_net_open+0x10/0x10
[  531.986453][T17309]  misc_open+0x35a/0x420
[  531.986474][T17309]  ? __pfx_misc_open+0x10/0x10
[  531.986493][T17309]  chrdev_open+0x231/0x6a0
[  531.986511][T17309]  ? __pfx_apparmor_file_open+0x10/0x10
[  531.986533][T17309]  ? __pfx_chrdev_open+0x10/0x10
[  531.986551][T17309]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  531.986571][T17309]  do_dentry_open+0x97f/0x1530
[  531.986588][T17309]  ? __pfx_chrdev_open+0x10/0x10
[  531.986618][T17309]  vfs_open+0x82/0x3f0
[  531.986641][T17309]  path_openat+0x1de4/0x2cb0
[  531.986669][T17309]  ? __pfx_path_openat+0x10/0x10
[  531.986691][T17309]  do_filp_open+0x20b/0x470
[  531.986709][T17309]  ? __pfx_do_filp_open+0x10/0x10
[  531.986741][T17309]  ? alloc_fd+0x471/0x7d0
[  531.986763][T17309]  do_sys_openat2+0x11b/0x1d0
[  531.986783][T17309]  ? __pfx_do_sys_openat2+0x10/0x10
[  531.986808][T17309]  ? do_fcntl+0x1eb/0x15a0
[  531.986832][T17309]  __x64_sys_openat+0x174/0x210
[  531.986853][T17309]  ? __pfx___x64_sys_openat+0x10/0x10
[  531.986882][T17309]  do_syscall_64+0xcd/0x490
[  531.986906][T17309]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  531.986921][T17309] RIP: 0033:0x7f238478ebe9
[  531.986933][T17309] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  531.986947][T17309] RSP: 002b:00007f23829ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  531.986962][T17309] RAX: ffffffffffffffda RBX: 00007f23849b5fa0 RCX: 00007f238478ebe9
[  531.986972][T17309] RDX: 0000000000000000 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  531.986981][T17309] RBP: 00007f2384811e19 R08: 0000000000000000 R09: 0000000000000000
[  531.986990][T17309] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  531.986999][T17309] R13: 00007f23849b6038 R14: 00007f23849b5fa0 R15: 00007ffe35df10f8
[  531.987018][T17309]  </TASK>
[  532.514321][T17319] netlink: 146 bytes leftover after parsing attributes in process `syz.2.4779'.
[  532.546765][T17316] i2c i2c-0: dvb_frontend_start: failed to start kthread (-4)
[  532.834818][T17329] FAULT_INJECTION: forcing a failure.
[  532.834818][T17329] name failslab, interval 1, probability 0, space 0, times 0
[  532.868251][T17329] CPU: 1 UID: 0 PID: 17329 Comm: syz.3.4782 Tainted: G          I         6.16.0-syzkaller-12016-gbec077162bd0 #0 PREEMPT(full) 
[  532.868279][T17329] Tainted: [I]=FIRMWARE_WORKAROUND
[  532.868285][T17329] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  532.868298][T17329] Call Trace:
[  532.868304][T17329]  <TASK>
[  532.868310][T17329]  dump_stack_lvl+0x16c/0x1f0
[  532.868332][T17329]  should_fail_ex+0x512/0x640
[  532.868349][T17329]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  532.868366][T17329]  should_failslab+0xc2/0x120
[  532.868385][T17329]  __kmalloc_cache_noprof+0x6a/0x3e0
[  532.868399][T17329]  ? lockdep_init_map_type+0x5c/0x280
[  532.868419][T17329]  ? snd_seq_prioq_new+0x3f/0x110
[  532.868436][T17329]  snd_seq_prioq_new+0x3f/0x110
[  532.868449][T17329]  snd_seq_queue_alloc+0x153/0x5a0
[  532.868473][T17329]  snd_seq_ioctl_create_queue+0xa9/0x380
[  532.868492][T17329]  snd_seq_kernel_client_ctl+0x107/0x1c0
[  532.868513][T17329]  alloc_seq_queue+0xda/0x180
[  532.868531][T17329]  ? __pfx_alloc_seq_queue+0x10/0x10
[  532.868559][T17329]  ? mark_held_locks+0x49/0x80
[  532.868577][T17329]  ? _raw_spin_unlock_irq+0x23/0x50
[  532.868592][T17329]  snd_seq_oss_open+0x38c/0xa20
[  532.868614][T17329]  odev_open+0x6f/0x90
[  532.868629][T17329]  ? __pfx_odev_open+0x10/0x10
[  532.868645][T17329]  soundcore_open+0x409/0x580
[  532.868663][T17329]  ? __pfx_soundcore_open+0x10/0x10
[  532.868678][T17329]  chrdev_open+0x231/0x6a0
[  532.868696][T17329]  ? __pfx_apparmor_file_open+0x10/0x10
[  532.868718][T17329]  ? __pfx_chrdev_open+0x10/0x10
[  532.868736][T17329]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  532.868756][T17329]  do_dentry_open+0x97f/0x1530
[  532.868773][T17329]  ? __pfx_chrdev_open+0x10/0x10
[  532.868794][T17329]  vfs_open+0x82/0x3f0
[  532.868824][T17329]  path_openat+0x1de4/0x2cb0
[  532.868848][T17329]  ? __pfx_path_openat+0x10/0x10
[  532.868870][T17329]  do_filp_open+0x20b/0x470
[  532.868888][T17329]  ? __pfx_do_filp_open+0x10/0x10
[  532.868919][T17329]  ? alloc_fd+0x471/0x7d0
[  532.868939][T17329]  do_sys_openat2+0x11b/0x1d0
[  532.868960][T17329]  ? __pfx_do_sys_openat2+0x10/0x10
[  532.868987][T17329]  __x64_sys_openat+0x174/0x210
[  532.869008][T17329]  ? __pfx___x64_sys_openat+0x10/0x10
[  532.869037][T17329]  do_syscall_64+0xcd/0x490
[  532.869054][T17329]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  532.869069][T17329] RIP: 0033:0x7f238478ebe9
[  532.869081][T17329] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  532.869094][T17329] RSP: 002b:00007f23829ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  532.869108][T17329] RAX: ffffffffffffffda RBX: 00007f23849b5fa0 RCX: 00007f238478ebe9
[  532.869118][T17329] RDX: 0000000000143900 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  532.869127][T17329] RBP: 00007f2384811e19 R08: 0000000000000000 R09: 0000000000000000
[  532.869136][T17329] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  532.869145][T17329] R13: 00007f23849b6038 R14: 00007f23849b5fa0 R15: 00007ffe35df10f8
[  532.869164][T17329]  </TASK>
[  533.177870][T17326] FAULT_INJECTION: forcing a failure.
[  533.177870][T17326] name failslab, interval 1, probability 0, space 0, times 0
[  533.190697][T17326] CPU: 1 UID: 0 PID: 17326 Comm: syz.0.4780 Tainted: G          I         6.16.0-syzkaller-12016-gbec077162bd0 #0 PREEMPT(full) 
[  533.190724][T17326] Tainted: [I]=FIRMWARE_WORKAROUND
[  533.190729][T17326] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  533.190739][T17326] Call Trace:
[  533.190745][T17326]  <TASK>
[  533.190752][T17326]  dump_stack_lvl+0x16c/0x1f0
[  533.190773][T17326]  should_fail_ex+0x512/0x640
[  533.190790][T17326]  ? __kmalloc_noprof+0xbf/0x510
[  533.190809][T17326]  ? get_modalias+0xbb/0x380
[  533.190836][T17326]  should_failslab+0xc2/0x120
[  533.190856][T17326]  __kmalloc_noprof+0xd2/0x510
[  533.190873][T17326]  ? get_modalias+0x20f/0x380
[  533.190896][T17326]  get_modalias+0xbb/0x380
[  533.190919][T17326]  ? __pfx_sys_dmi_modalias_show+0x10/0x10
[  533.190938][T17326]  sys_dmi_modalias_show+0x1f/0xb0
[  533.190958][T17326]  dev_attr_show+0x56/0xe0
[  533.190977][T17326]  ? __pfx_dev_attr_show+0x10/0x10
[  533.190994][T17326]  sysfs_kf_seq_show+0x216/0x3e0
[  533.191014][T17326]  seq_read_iter+0x506/0x12c0
[  533.191030][T17326]  ? __mutex_trylock_common+0xe9/0x250
[  533.191056][T17326]  kernfs_fop_read_iter+0x40f/0x5a0
[  533.191069][T17326]  ? rw_verify_area+0xcf/0x6c0
[  533.191085][T17326]  vfs_read+0x8bc/0xc60
[  533.191103][T17326]  ? __pfx___mutex_lock+0x10/0x10
[  533.191119][T17326]  ? __pfx_vfs_read+0x10/0x10
[  533.191148][T17326]  ksys_read+0x12a/0x250
[  533.191163][T17326]  ? __pfx_ksys_read+0x10/0x10
[  533.191184][T17326]  do_syscall_64+0xcd/0x490
[  533.191202][T17326]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  533.191216][T17326] RIP: 0033:0x7f326618ebe9
[  533.191229][T17326] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  533.191243][T17326] RSP: 002b:00007f3266fbc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  533.191257][T17326] RAX: ffffffffffffffda RBX: 00007f32663b5fa0 RCX: 00007f326618ebe9
[  533.191266][T17326] RDX: 0000000000001016 RSI: 0000200000000000 RDI: 0000000000000003
[  533.191275][T17326] RBP: 00007f3266211e19 R08: 0000000000000000 R09: 0000000000000000
[  533.191283][T17326] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  533.191292][T17326] R13: 00007f32663b6038 R14: 00007f32663b5fa0 R15: 00007fff27c9b848
[  533.191311][T17326]  </TASK>
[  533.958454][T17343] netlink: 'syz.3.4789': attribute type 1 has an invalid length.
[  533.968282][T17343] netlink: 230 bytes leftover after parsing attributes in process `syz.3.4789'.
[  534.369361][T17360] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4792'.
[  535.134636][T17385] netlink: 342 bytes leftover after parsing attributes in process `syz.3.4802'.
[  535.501499][T17399] netlink: 330 bytes leftover after parsing attributes in process `syz.0.4806'.
[  535.528748][T17397] sctp: [Deprecated]: syz.2.4804 (pid 17397) Use of struct sctp_assoc_value in delayed_ack socket option.
[  535.528748][T17397] Use struct sctp_sack_info instead
[  536.388571][T17414] FAULT_INJECTION: forcing a failure.
[  536.388571][T17414] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  536.555427][T17414] CPU: 1 UID: 0 PID: 17414 Comm: syz.2.4811 Tainted: G          I         6.16.0-syzkaller-12016-gbec077162bd0 #0 PREEMPT(full) 
[  536.555455][T17414] Tainted: [I]=FIRMWARE_WORKAROUND
[  536.555461][T17414] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  536.555469][T17414] Call Trace:
[  536.555475][T17414]  <TASK>
[  536.555489][T17414]  dump_stack_lvl+0x16c/0x1f0
[  536.555510][T17414]  should_fail_ex+0x512/0x640
[  536.555531][T17414]  should_fail_alloc_page+0xe7/0x130
[  536.555554][T17414]  prepare_alloc_pages+0x3c2/0x610
[  536.555575][T17414]  ? rcu_is_watching+0x12/0xc0
[  536.555592][T17414]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  536.555610][T17414]  ? __lock_acquire+0xb97/0x1ce0
[  536.555636][T17414]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  536.555653][T17414]  ? do_raw_spin_lock+0x12c/0x2b0
[  536.555674][T17414]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  536.555694][T17414]  ? find_held_lock+0x2b/0x80
[  536.555712][T17414]  ? __lock_acquire+0xb97/0x1ce0
[  536.555730][T17414]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  536.555751][T17414]  ? policy_nodemask+0xea/0x4e0
[  536.555771][T17414]  alloc_pages_mpol+0x1fb/0x550
[  536.555790][T17414]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  536.555814][T17414]  folio_alloc_mpol_noprof+0x36/0x2f0
[  536.555835][T17414]  shmem_alloc_folio+0x135/0x160
[  536.555859][T17414]  shmem_alloc_and_add_folio+0x499/0xc20
[  536.555879][T17414]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  536.555898][T17414]  ? shmem_allowable_huge_orders+0xcb/0x2f0
[  536.555918][T17414]  shmem_get_folio_gfp+0x67f/0x1600
[  536.555938][T17414]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  536.555960][T17414]  shmem_write_begin+0x160/0x300
[  536.555978][T17414]  ? __pfx_shmem_write_begin+0x10/0x10
[  536.555996][T17414]  ? balance_dirty_pages_ratelimited_flags+0x92/0x1260
[  536.556021][T17414]  generic_perform_write+0x3c5/0x900
[  536.556043][T17414]  ? __pfx_generic_perform_write+0x10/0x10
[  536.556061][T17414]  ? generic_update_time+0xcf/0xf0
[  536.556078][T17414]  ? mnt_put_write_access_file+0x45/0xf0
[  536.556096][T17414]  shmem_file_write_iter+0x10e/0x140
[  536.556117][T17414]  do_iter_readv_writev+0x657/0x950
[  536.556134][T17414]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  536.556158][T17414]  vfs_writev+0x35f/0xde0
[  536.556178][T17414]  ? __pfx_vfs_writev+0x10/0x10
[  536.556192][T17414]  ? __mutex_lock+0x1c4/0x10b0
[  536.556213][T17414]  ? __pfx___mutex_lock+0x10/0x10
[  536.556235][T17414]  ? __fget_files+0x20e/0x3c0
[  536.556255][T17414]  ? do_writev+0x132/0x340
[  536.556268][T17414]  do_writev+0x132/0x340
[  536.556283][T17414]  ? __pfx_do_writev+0x10/0x10
[  536.556303][T17414]  do_syscall_64+0xcd/0x490
[  536.556320][T17414]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  536.556335][T17414] RIP: 0033:0x7ff3c6f8ebe9
[  536.556347][T17414] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  536.556362][T17414] RSP: 002b:00007ff3c7e74038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  536.556376][T17414] RAX: ffffffffffffffda RBX: 00007ff3c71b5fa0 RCX: 00007ff3c6f8ebe9
[  536.556385][T17414] RDX: 0000000000000008 RSI: 0000200000000100 RDI: 0000000000000003
[  536.556394][T17414] RBP: 00007ff3c7011e19 R08: 0000000000000000 R09: 0000000000000000
[  536.556403][T17414] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  536.556412][T17414] R13: 00007ff3c71b6038 R14: 00007ff3c71b5fa0 R15: 00007ffedaa6b1a8
[  536.556431][T17414]  </TASK>
[  537.149162][T17430] FAULT_INJECTION: forcing a failure.
[  537.149162][T17430] name failslab, interval 1, probability 0, space 0, times 0
[  537.161889][T17430] CPU: 1 UID: 0 PID: 17430 Comm: syz.0.4817 Tainted: G          I         6.16.0-syzkaller-12016-gbec077162bd0 #0 PREEMPT(full) 
[  537.161916][T17430] Tainted: [I]=FIRMWARE_WORKAROUND
[  537.161922][T17430] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  537.161931][T17430] Call Trace:
[  537.161937][T17430]  <TASK>
[  537.161942][T17430]  dump_stack_lvl+0x16c/0x1f0
[  537.161963][T17430]  should_fail_ex+0x512/0x640
[  537.161980][T17430]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  537.161997][T17430]  should_failslab+0xc2/0x120
[  537.162017][T17430]  __kmalloc_cache_noprof+0x6a/0x3e0
[  537.162032][T17430]  ? vhost_net_open+0xb4/0x8a0
[  537.162048][T17430]  ? kasan_save_track+0x14/0x30
[  537.162066][T17430]  vhost_net_open+0xb4/0x8a0
[  537.162080][T17430]  ? __pfx_vhost_net_open+0x10/0x10
[  537.162095][T17430]  misc_open+0x35a/0x420
[  537.162116][T17430]  ? __pfx_misc_open+0x10/0x10
[  537.162136][T17430]  chrdev_open+0x231/0x6a0
[  537.162153][T17430]  ? __pfx_apparmor_file_open+0x10/0x10
[  537.162174][T17430]  ? __pfx_chrdev_open+0x10/0x10
[  537.162193][T17430]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  537.162212][T17430]  do_dentry_open+0x97f/0x1530
[  537.162229][T17430]  ? __pfx_chrdev_open+0x10/0x10
[  537.162250][T17430]  vfs_open+0x82/0x3f0
[  537.162273][T17430]  path_openat+0x1de4/0x2cb0
[  537.162295][T17430]  ? __pfx_path_openat+0x10/0x10
[  537.162316][T17430]  do_filp_open+0x20b/0x470
[  537.162333][T17430]  ? __pfx_do_filp_open+0x10/0x10
[  537.162362][T17430]  ? alloc_fd+0x471/0x7d0
[  537.162383][T17430]  do_sys_openat2+0x11b/0x1d0
[  537.162403][T17430]  ? __pfx_do_sys_openat2+0x10/0x10
[  537.162434][T17430]  ? do_fcntl+0x1eb/0x15a0
[  537.162458][T17430]  __x64_sys_openat+0x174/0x210
[  537.162480][T17430]  ? __pfx___x64_sys_openat+0x10/0x10
[  537.162508][T17430]  do_syscall_64+0xcd/0x490
[  537.162526][T17430]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  537.162540][T17430] RIP: 0033:0x7f326618ebe9
[  537.162552][T17430] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  537.162566][T17430] RSP: 002b:00007f3266fbc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  537.162579][T17430] RAX: ffffffffffffffda RBX: 00007f32663b5fa0 RCX: 00007f326618ebe9
[  537.162589][T17430] RDX: 0000000000000000 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  537.162598][T17430] RBP: 00007f3266211e19 R08: 0000000000000000 R09: 0000000000000000
[  537.162607][T17430] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  537.162615][T17430] R13: 00007f32663b6038 R14: 00007f32663b5fa0 R15: 00007fff27c9b848
[  537.162634][T17430]  </TASK>
[  537.543488][T17436] FAULT_INJECTION: forcing a failure.
[  537.543488][T17436] name failslab, interval 1, probability 0, space 0, times 0
[  537.556152][T17436] CPU: 1 UID: 0 PID: 17436 Comm: syz.2.4822 Tainted: G          I         6.16.0-syzkaller-12016-gbec077162bd0 #0 PREEMPT(full) 
[  537.556178][T17436] Tainted: [I]=FIRMWARE_WORKAROUND
[  537.556183][T17436] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  537.556192][T17436] Call Trace:
[  537.556198][T17436]  <TASK>
[  537.556204][T17436]  dump_stack_lvl+0x16c/0x1f0
[  537.556225][T17436]  should_fail_ex+0x512/0x640
[  537.556243][T17436]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  537.556260][T17436]  should_failslab+0xc2/0x120
[  537.556281][T17436]  __kmalloc_cache_noprof+0x6a/0x3e0
[  537.556294][T17436]  ? rcu_is_watching+0x12/0xc0
[  537.556309][T17436]  ? single_open+0x4d/0x1f0
[  537.556330][T17436]  ? __pfx_apparmor_file_open+0x10/0x10
[  537.556353][T17436]  ? __pfx_filesystems_proc_show+0x10/0x10
[  537.556370][T17436]  single_open+0x4d/0x1f0
[  537.556389][T17436]  ? __pfx_proc_single_open+0x10/0x10
[  537.556415][T17436]  proc_reg_open+0x2ab/0x5f0
[  537.556436][T17436]  do_dentry_open+0x97f/0x1530
[  537.556455][T17436]  ? __pfx_proc_reg_open+0x10/0x10
[  537.556477][T17436]  vfs_open+0x82/0x3f0
[  537.556499][T17436]  path_openat+0x1de4/0x2cb0
[  537.556525][T17436]  ? __pfx_path_openat+0x10/0x10
[  537.556546][T17436]  do_filp_open+0x20b/0x470
[  537.556562][T17436]  ? __pfx_do_filp_open+0x10/0x10
[  537.556591][T17436]  ? alloc_fd+0x471/0x7d0
[  537.556611][T17436]  do_sys_openat2+0x11b/0x1d0
[  537.556631][T17436]  ? __pfx_do_sys_openat2+0x10/0x10
[  537.556658][T17436]  __x64_sys_openat+0x174/0x210
[  537.556679][T17436]  ? __pfx___x64_sys_openat+0x10/0x10
[  537.556708][T17436]  do_syscall_64+0xcd/0x490
[  537.556725][T17436]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  537.556739][T17436] RIP: 0033:0x7ff3c6f8ebe9
[  537.556752][T17436] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  537.556765][T17436] RSP: 002b:00007ff3c7e74038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  537.556780][T17436] RAX: ffffffffffffffda RBX: 00007ff3c71b5fa0 RCX: 00007ff3c6f8ebe9
[  537.556789][T17436] RDX: 00000000001a1442 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  537.556798][T17436] RBP: 00007ff3c7011e19 R08: 0000000000000000 R09: 0000000000000000
[  537.556806][T17436] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  537.556815][T17436] R13: 00007ff3c71b6038 R14: 00007ff3c71b5fa0 R15: 00007ffedaa6b1a8
[  537.556833][T17436]  </TASK>
[  538.149679][T17440] netlink: 322 bytes leftover after parsing attributes in process `syz.3.4824'.
[  538.668898][T17456] FAULT_INJECTION: forcing a failure.
[  538.668898][T17456] name failslab, interval 1, probability 0, space 0, times 0
[  538.716571][T17456] CPU: 1 UID: 0 PID: 17456 Comm: syz.0.4831 Tainted: G          I         6.16.0-syzkaller-12016-gbec077162bd0 #0 PREEMPT(full) 
[  538.716599][T17456] Tainted: [I]=FIRMWARE_WORKAROUND
[  538.716604][T17456] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  538.716614][T17456] Call Trace:
[  538.716620][T17456]  <TASK>
[  538.716625][T17456]  dump_stack_lvl+0x16c/0x1f0
[  538.716646][T17456]  should_fail_ex+0x512/0x640
[  538.716667][T17456]  ? vmci_handle_arr_create+0x67/0x140
[  538.716681][T17456]  should_failslab+0xc2/0x120
[  538.716700][T17456]  __kmalloc_noprof+0xd2/0x510
[  538.716716][T17456]  ? lockdep_init_map_type+0x5c/0x280
[  538.716737][T17456]  ? lockdep_init_map_type+0x5c/0x280
[  538.716757][T17456]  vmci_handle_arr_create+0x67/0x140
[  538.716771][T17456]  vmci_ctx_create+0x26e/0x740
[  538.716793][T17456]  vmci_host_unlocked_ioctl+0x1ad8/0x2040
[  538.716810][T17456]  ? __pfx_vmci_host_unlocked_ioctl+0x10/0x10
[  538.716827][T17456]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  538.716850][T17456]  ? do_vfs_ioctl+0x128/0x14f0
[  538.716871][T17456]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  538.716897][T17456]  ? find_held_lock+0x2b/0x80
[  538.716910][T17456]  ? hook_file_ioctl_common+0x145/0x410
[  538.716931][T17456]  ? __fget_files+0x20e/0x3c0
[  538.716949][T17456]  ? __pfx_vmci_host_unlocked_ioctl+0x10/0x10
[  538.716966][T17456]  __x64_sys_ioctl+0x18e/0x210
[  538.716988][T17456]  do_syscall_64+0xcd/0x490
[  538.717006][T17456]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  538.717020][T17456] RIP: 0033:0x7f326618ebe9
[  538.717032][T17456] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  538.717046][T17456] RSP: 002b:00007f3266fbc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  538.717060][T17456] RAX: ffffffffffffffda RBX: 00007f32663b5fa0 RCX: 00007f326618ebe9
[  538.717070][T17456] RDX: 0000000000000006 RSI: 00000000000007a0 RDI: 0000000000000005
[  538.717078][T17456] RBP: 00007f3266211e19 R08: 0000000000000000 R09: 0000000000000000
[  538.717086][T17456] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  538.717094][T17456] R13: 00007f32663b6038 R14: 00007f32663b5fa0 R15: 00007fff27c9b848
[  538.717113][T17456]  </TASK>
[  539.093717][T17465] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4834'.
[  539.259195][T17469] FAULT_INJECTION: forcing a failure.
[  539.259195][T17469] name failslab, interval 1, probability 0, space 0, times 0
[  539.285883][T17469] CPU: 1 UID: 0 PID: 17469 Comm: syz.0.4837 Tainted: G          I         6.16.0-syzkaller-12016-gbec077162bd0 #0 PREEMPT(full) 
[  539.285909][T17469] Tainted: [I]=FIRMWARE_WORKAROUND
[  539.285916][T17469] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  539.285925][T17469] Call Trace:
[  539.285930][T17469]  <TASK>
[  539.285936][T17469]  dump_stack_lvl+0x16c/0x1f0
[  539.285957][T17469]  should_fail_ex+0x512/0x640
[  539.285975][T17469]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  539.285993][T17469]  should_failslab+0xc2/0x120
[  539.286012][T17469]  __kmalloc_cache_noprof+0x6a/0x3e0
[  539.286026][T17469]  ? __asan_memcpy+0x3c/0x60
[  539.286040][T17469]  ? memtype_get_idx+0x3d/0xc0
[  539.286060][T17469]  memtype_get_idx+0x3d/0xc0
[  539.286076][T17469]  seq_read_iter+0x2c1/0x12c0
[  539.286099][T17469]  seq_read+0x39e/0x4e0
[  539.286112][T17469]  ? __pfx_seq_read+0x10/0x10
[  539.286139][T17469]  full_proxy_read+0x12e/0x1a0
[  539.286159][T17469]  ? __pfx_full_proxy_read+0x10/0x10
[  539.286179][T17469]  vfs_read+0x1e4/0xc60
[  539.286198][T17469]  ? __pfx___mutex_lock+0x10/0x10
[  539.286213][T17469]  ? __pfx_vfs_read+0x10/0x10
[  539.286234][T17469]  ? __fget_files+0x20e/0x3c0
[  539.286265][T17469]  ksys_read+0x12a/0x250
[  539.286281][T17469]  ? __pfx_ksys_read+0x10/0x10
[  539.286303][T17469]  do_syscall_64+0xcd/0x490
[  539.286321][T17469]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  539.286335][T17469] RIP: 0033:0x7f326618ebe9
[  539.286347][T17469] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  539.286361][T17469] RSP: 002b:00007f3266fbc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  539.286374][T17469] RAX: ffffffffffffffda RBX: 00007f32663b5fa0 RCX: 00007f326618ebe9
[  539.286384][T17469] RDX: 00000000000000f8 RSI: 0000200000000240 RDI: 0000000000000005
[  539.286392][T17469] RBP: 00007f3266211e19 R08: 0000000000000000 R09: 0000000000000000
[  539.286401][T17469] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  539.286409][T17469] R13: 00007f32663b6038 R14: 00007f32663b5fa0 R15: 00007fff27c9b848
[  539.286427][T17469]  </TASK>
[  540.477461][T17492] FAULT_INJECTION: forcing a failure.
[  540.477461][T17492] name failslab, interval 1, probability 0, space 0, times 0
[  540.512336][T17492] CPU: 1 UID: 0 PID: 17492 Comm: syz.0.4849 Tainted: G          I         6.16.0-syzkaller-12016-gbec077162bd0 #0 PREEMPT(full) 
[  540.512364][T17492] Tainted: [I]=FIRMWARE_WORKAROUND
[  540.512369][T17492] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  540.512379][T17492] Call Trace:
[  540.512384][T17492]  <TASK>
[  540.512389][T17492]  dump_stack_lvl+0x16c/0x1f0
[  540.512410][T17492]  should_fail_ex+0x512/0x640
[  540.512427][T17492]  ? fs_reclaim_acquire+0xae/0x150
[  540.512450][T17492]  ? ima_alloc_init_template+0xb5/0x720
[  540.512464][T17492]  should_failslab+0xc2/0x120
[  540.512482][T17492]  __kmalloc_noprof+0xd2/0x510
[  540.512499][T17492]  ? find_held_lock+0x2b/0x80
[  540.512516][T17492]  ima_alloc_init_template+0xb5/0x720
[  540.512531][T17492]  ? take_dentry_name_snapshot+0x319/0x7d0
[  540.512554][T17492]  ima_store_measurement+0x1eb/0x5c0
[  540.512570][T17492]  ? __pfx_ima_store_measurement+0x10/0x10
[  540.512586][T17492]  ? vfs_getxattr_alloc+0xec/0x340
[  540.512606][T17492]  ? __pfx_ima_get_hash_algo+0x10/0x10
[  540.512630][T17492]  process_measurement+0x1ddb/0x23e0
[  540.512659][T17492]  ? __pfx_process_measurement+0x10/0x10
[  540.512680][T17492]  ? kasan_save_stack+0x33/0x60
[  540.512695][T17492]  ? __kasan_slab_alloc+0x89/0x90
[  540.512711][T17492]  ? security_file_alloc+0x34/0x2b0
[  540.512726][T17492]  ? init_file+0x93/0x4c0
[  540.512749][T17492]  ? find_held_lock+0x2b/0x80
[  540.512784][T17492]  ima_file_mmap+0x1b1/0x1d0
[  540.512809][T17492]  ? __pfx_ima_file_mmap+0x10/0x10
[  540.512834][T17492]  security_mmap_file+0x88c/0x990
[  540.512851][T17492]  vm_mmap_pgoff+0xec/0x470
[  540.512874][T17492]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  540.512892][T17492]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  540.512913][T17492]  ? hugetlbfs_get_inode+0x31f/0x730
[  540.512934][T17492]  ksys_mmap_pgoff+0x1c8/0x5c0
[  540.512957][T17492]  __x64_sys_mmap+0x125/0x190
[  540.512981][T17492]  do_syscall_64+0xcd/0x490
[  540.512998][T17492]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  540.513012][T17492] RIP: 0033:0x7f326618ebe9
[  540.513025][T17492] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  540.513038][T17492] RSP: 002b:00007f3266fbc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  540.513052][T17492] RAX: ffffffffffffffda RBX: 00007f32663b5fa0 RCX: 00007f326618ebe9
[  540.513061][T17492] RDX: 00004000000000df RSI: 0000000000000004 RDI: 0000000000000000
[  540.513070][T17492] RBP: 00007f3266211e19 R08: 0000000000000401 R09: 0000300000000000
[  540.513079][T17492] R10: 0000000000040eb1 R11: 0000000000000246 R12: 0000000000000000
[  540.513087][T17492] R13: 00007f32663b6038 R14: 00007f32663b5fa0 R15: 00007fff27c9b848
[  540.513105][T17492]  </TASK>
[  541.545951][   T30] audit: type=1804 audit(4294967427.140:19): pid=17492 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=add_template_measure cause=ENOMEM comm="syz.0.4849" name="anon_hugepage" dev="hugetlbfs" ino=56477 res=0 errno=0
[  541.585650][T17510] netlink: 334 bytes leftover after parsing attributes in process `syz.2.4856'.
[  541.604386][T17514] netlink: 146 bytes leftover after parsing attributes in process `syz.3.4860'.
[  543.212676][T17554] device-mapper: ioctl: Unable to rename non-existent device,  to uuid „
[  544.525177][T17577] FAULT_INJECTION: forcing a failure.
[  544.525177][T17577] name failslab, interval 1, probability 0, space 0, times 0
[  544.650578][T17577] CPU: 1 UID: 0 PID: 17577 Comm: syz.0.4882 Tainted: G          I         6.16.0-syzkaller-12016-gbec077162bd0 #0 PREEMPT(full) 
[  544.650606][T17577] Tainted: [I]=FIRMWARE_WORKAROUND
[  544.650612][T17577] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  544.650620][T17577] Call Trace:
[  544.650626][T17577]  <TASK>
[  544.650632][T17577]  dump_stack_lvl+0x16c/0x1f0
[  544.650653][T17577]  should_fail_ex+0x512/0x640
[  544.650671][T17577]  ? fs_reclaim_acquire+0xae/0x150
[  544.650695][T17577]  should_failslab+0xc2/0x120
[  544.650714][T17577]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[  544.650738][T17577]  ? __pfx___mutex_trylock_common+0x10/0x10
[  544.650758][T17577]  ? kstrdup_const+0x63/0x80
[  544.650779][T17577]  kstrdup+0x53/0x100
[  544.650796][T17577]  kstrdup_const+0x63/0x80
[  544.650813][T17577]  __kernfs_new_node+0x9b/0x8e0
[  544.650834][T17577]  ? __pfx___kernfs_new_node+0x10/0x10
[  544.650856][T17577]  ? find_held_lock+0x2b/0x80
[  544.650870][T17577]  ? kernfs_root+0xee/0x2a0
[  544.650891][T17577]  kernfs_new_node+0x13c/0x1e0
[  544.650913][T17577]  kernfs_create_link+0xcc/0x240
[  544.650929][T17577]  sysfs_do_create_link_sd+0x90/0x140
[  544.650948][T17577]  sysfs_create_link+0x61/0xc0
[  544.650965][T17577]  __add_disk+0x61e/0xf00
[  544.650985][T17577]  add_disk_fwnode+0x13f/0x5d0
[  544.651002][T17577]  loop_add+0x903/0xb70
[  544.651025][T17577]  ? __pfx_loop_add+0x10/0x10
[  544.651058][T17577]  ? find_held_lock+0x2b/0x80
[  544.651074][T17577]  loop_control_ioctl+0x13e/0x630
[  544.651095][T17577]  ? __pfx_loop_control_ioctl+0x10/0x10
[  544.651119][T17577]  ? __pfx_loop_control_ioctl+0x10/0x10
[  544.651141][T17577]  __x64_sys_ioctl+0x18e/0x210
[  544.651164][T17577]  do_syscall_64+0xcd/0x490
[  544.651182][T17577]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  544.651196][T17577] RIP: 0033:0x7f326618ebe9
[  544.651208][T17577] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  544.651221][T17577] RSP: 002b:00007f3266fbc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  544.651235][T17577] RAX: ffffffffffffffda RBX: 00007f32663b5fa0 RCX: 00007f326618ebe9
[  544.651244][T17577] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000005
[  544.651253][T17577] RBP: 00007f3266211e19 R08: 0000000000000000 R09: 0000000000000000
[  544.651261][T17577] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  544.651269][T17577] R13: 00007f32663b6038 R14: 00007f32663b5fa0 R15: 00007fff27c9b848
[  544.651287][T17577]  </TASK>
[  545.203748][T17582] FAULT_INJECTION: forcing a failure.
[  545.203748][T17582] name failslab, interval 1, probability 0, space 0, times 0
[  545.328261][T17582] CPU: 1 UID: 0 PID: 17582 Comm: syz.2.4885 Tainted: G          I         6.16.0-syzkaller-12016-gbec077162bd0 #0 PREEMPT(full) 
[  545.328290][T17582] Tainted: [I]=FIRMWARE_WORKAROUND
[  545.328295][T17582] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  545.328304][T17582] Call Trace:
[  545.328310][T17582]  <TASK>
[  545.328315][T17582]  dump_stack_lvl+0x16c/0x1f0
[  545.328336][T17582]  should_fail_ex+0x512/0x640
[  545.328354][T17582]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  545.328373][T17582]  should_failslab+0xc2/0x120
[  545.328393][T17582]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  545.328409][T17582]  ? __pfx___might_resched+0x10/0x10
[  545.328424][T17582]  ? __anon_vma_prepare+0xae/0x5e0
[  545.328442][T17582]  __anon_vma_prepare+0xae/0x5e0
[  545.328456][T17582]  ? do_raw_spin_lock+0x12c/0x2b0
[  545.328478][T17582]  __vmf_anon_prepare+0x11c/0x240
[  545.328503][T17582]  do_huge_pmd_anonymous_page+0x161/0x2080
[  545.328520][T17582]  ? __pmd_alloc+0x3fb/0x930
[  545.328542][T17582]  __handle_mm_fault+0x1ccd/0x2a50
[  545.328562][T17582]  ? __pfx___handle_mm_fault+0x10/0x10
[  545.328593][T17582]  handle_mm_fault+0x589/0xd10
[  545.328611][T17582]  __get_user_pages+0x551/0x34a0
[  545.328639][T17582]  ? __pfx___get_user_pages+0x10/0x10
[  545.328665][T17582]  populate_vma_page_range+0x267/0x3f0
[  545.328687][T17582]  ? __pfx_populate_vma_page_range+0x10/0x10
[  545.328716][T17582]  ? __pfx_find_vma_intersection+0x10/0x10
[  545.328738][T17582]  ? do_mmap+0x69c/0x1210
[  545.328761][T17582]  __mm_populate+0x1d8/0x380
[  545.328783][T17582]  ? __pfx___mm_populate+0x10/0x10
[  545.328806][T17582]  ? up_write+0x1b2/0x520
[  545.328828][T17582]  vm_mmap_pgoff+0x37f/0x470
[  545.328851][T17582]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  545.328874][T17582]  ? __x64_sys_futex+0x1e0/0x4c0
[  545.328891][T17582]  ? __x64_sys_futex+0x1e9/0x4c0
[  545.328911][T17582]  ksys_mmap_pgoff+0x7d/0x5c0
[  545.328929][T17582]  ? xfd_validate_state+0x61/0x180
[  545.328949][T17582]  ? __pfx_ksys_write+0x10/0x10
[  545.328967][T17582]  __x64_sys_mmap+0x125/0x190
[  545.328991][T17582]  do_syscall_64+0xcd/0x490
[  545.329008][T17582]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  545.329023][T17582] RIP: 0033:0x7ff3c6f8ebe9
[  545.329036][T17582] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  545.329050][T17582] RSP: 002b:00007ff3c7e74038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  545.329063][T17582] RAX: ffffffffffffffda RBX: 00007ff3c71b5fa0 RCX: 00007ff3c6f8ebe9
[  545.329073][T17582] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[  545.329082][T17582] RBP: 00007ff3c7011e19 R08: 0000000000000002 R09: 0000000000008000
[  545.329090][T17582] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[  545.329099][T17582] R13: 00007ff3c71b6038 R14: 00007ff3c71b5fa0 R15: 00007ffedaa6b1a8
[  545.329118][T17582]  </TASK>
[  546.565237][T17597] FAULT_INJECTION: forcing a failure.
[  546.565237][T17597] name failslab, interval 1, probability 0, space 0, times 0
[  546.590730][T17597] CPU: 1 UID: 0 PID: 17597 Comm: syz.3.4893 Tainted: G          I         6.16.0-syzkaller-12016-gbec077162bd0 #0 PREEMPT(full) 
[  546.590758][T17597] Tainted: [I]=FIRMWARE_WORKAROUND
[  546.590764][T17597] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  546.590772][T17597] Call Trace:
[  546.590778][T17597]  <TASK>
[  546.590784][T17597]  dump_stack_lvl+0x16c/0x1f0
[  546.590804][T17597]  should_fail_ex+0x512/0x640
[  546.590822][T17597]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  546.590839][T17597]  should_failslab+0xc2/0x120
[  546.590865][T17597]  __kmalloc_cache_noprof+0x6a/0x3e0
[  546.590880][T17597]  ? rcu_is_watching+0x12/0xc0
[  546.590895][T17597]  ? single_open+0x4d/0x1f0
[  546.590916][T17597]  ? __pfx_apparmor_file_open+0x10/0x10
[  546.590939][T17597]  ? __pfx_filesystems_proc_show+0x10/0x10
[  546.590957][T17597]  single_open+0x4d/0x1f0
[  546.590976][T17597]  ? __pfx_proc_single_open+0x10/0x10
[  546.590996][T17597]  proc_reg_open+0x2ab/0x5f0
[  546.591015][T17597]  do_dentry_open+0x97f/0x1530
[  546.591033][T17597]  ? __pfx_proc_reg_open+0x10/0x10
[  546.591055][T17597]  vfs_open+0x82/0x3f0
[  546.591077][T17597]  path_openat+0x1de4/0x2cb0
[  546.591099][T17597]  ? __pfx_path_openat+0x10/0x10
[  546.591120][T17597]  do_filp_open+0x20b/0x470
[  546.591136][T17597]  ? __pfx_do_filp_open+0x10/0x10
[  546.591165][T17597]  ? alloc_fd+0x471/0x7d0
[  546.591185][T17597]  do_sys_openat2+0x11b/0x1d0
[  546.591205][T17597]  ? __pfx_do_sys_openat2+0x10/0x10
[  546.591232][T17597]  __x64_sys_openat+0x174/0x210
[  546.591253][T17597]  ? __pfx___x64_sys_openat+0x10/0x10
[  546.591281][T17597]  do_syscall_64+0xcd/0x490
[  546.591299][T17597]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  546.591313][T17597] RIP: 0033:0x7f238478ebe9
[  546.591325][T17597] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  546.591339][T17597] RSP: 002b:00007f23829ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  546.591353][T17597] RAX: ffffffffffffffda RBX: 00007f23849b5fa0 RCX: 00007f238478ebe9
[  546.591362][T17597] RDX: 00000000001a1442 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  546.591371][T17597] RBP: 00007f2384811e19 R08: 0000000000000000 R09: 0000000000000000
[  546.591380][T17597] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  546.591387][T17597] R13: 00007f23849b6038 R14: 00007f23849b5fa0 R15: 00007ffe35df10f8
[  546.591405][T17597]  </TASK>
[  547.295602][T17608] netlink: 86 bytes leftover after parsing attributes in process `syz.3.4897'.
[  547.429180][T17613] netlink: 'syz.3.4899': attribute type 27 has an invalid length.
[  547.437577][T17613] netlink: 334 bytes leftover after parsing attributes in process `syz.3.4899'.
[  547.656961][T17621] netlink: 'syz.0.4902': attribute type 29 has an invalid length.
[  547.667085][T17621] netlink: 334 bytes leftover after parsing attributes in process `syz.0.4902'.
[  547.953559][T17628] FAULT_INJECTION: forcing a failure.
[  547.953559][T17628] name failslab, interval 1, probability 0, space 0, times 0
[  547.968880][T17628] CPU: 1 UID: 0 PID: 17628 Comm: syz.0.4905 Tainted: G          I         6.16.0-syzkaller-12016-gbec077162bd0 #0 PREEMPT(full) 
[  547.968905][T17628] Tainted: [I]=FIRMWARE_WORKAROUND
[  547.968911][T17628] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  547.968921][T17628] Call Trace:
[  547.968926][T17628]  <TASK>
[  547.968931][T17628]  dump_stack_lvl+0x16c/0x1f0
[  547.968952][T17628]  should_fail_ex+0x512/0x640
[  547.968970][T17628]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  547.968988][T17628]  should_failslab+0xc2/0x120
[  547.969007][T17628]  __kmalloc_cache_noprof+0x6a/0x3e0
[  547.969020][T17628]  ? __lock_acquire+0xb97/0x1ce0
[  547.969039][T17628]  ? snd_timer_instance_new+0x47/0x2e0
[  547.969060][T17628]  snd_timer_instance_new+0x47/0x2e0
[  547.969078][T17628]  snd_seq_timer_open+0x1cc/0x600
[  547.969094][T17628]  ? __pfx_snd_seq_timer_open+0x10/0x10
[  547.969110][T17628]  ? find_held_lock+0x2b/0x80
[  547.969126][T17628]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  547.969140][T17628]  ? lockdep_hardirqs_on+0x7c/0x110
[  547.969154][T17628]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  547.969170][T17628]  queue_use+0xe3/0x250
[  547.969190][T17628]  snd_seq_queue_alloc+0x2e5/0x5a0
[  547.969214][T17628]  snd_seq_ioctl_create_queue+0xa9/0x380
[  547.969231][T17628]  snd_seq_kernel_client_ctl+0x107/0x1c0
[  547.969251][T17628]  alloc_seq_queue+0xda/0x180
[  547.969269][T17628]  ? __pfx_alloc_seq_queue+0x10/0x10
[  547.969298][T17628]  ? mark_held_locks+0x49/0x80
[  547.969314][T17628]  ? _raw_spin_unlock_irq+0x23/0x50
[  547.969329][T17628]  snd_seq_oss_open+0x38c/0xa20
[  547.969350][T17628]  odev_open+0x6f/0x90
[  547.969365][T17628]  ? __pfx_odev_open+0x10/0x10
[  547.969381][T17628]  soundcore_open+0x409/0x580
[  547.969400][T17628]  ? __pfx_soundcore_open+0x10/0x10
[  547.969416][T17628]  chrdev_open+0x231/0x6a0
[  547.969433][T17628]  ? __pfx_apparmor_file_open+0x10/0x10
[  547.969455][T17628]  ? __pfx_chrdev_open+0x10/0x10
[  547.969480][T17628]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  547.969500][T17628]  do_dentry_open+0x97f/0x1530
[  547.969518][T17628]  ? __pfx_chrdev_open+0x10/0x10
[  547.969540][T17628]  vfs_open+0x82/0x3f0
[  547.969563][T17628]  path_openat+0x1de4/0x2cb0
[  547.969585][T17628]  ? __pfx_path_openat+0x10/0x10
[  547.969606][T17628]  do_filp_open+0x20b/0x470
[  547.969623][T17628]  ? __pfx_do_filp_open+0x10/0x10
[  547.969653][T17628]  ? alloc_fd+0x471/0x7d0
[  547.969673][T17628]  do_sys_openat2+0x11b/0x1d0
[  547.969693][T17628]  ? __pfx_do_sys_openat2+0x10/0x10
[  547.969721][T17628]  __x64_sys_openat+0x174/0x210
[  547.969742][T17628]  ? __pfx___x64_sys_openat+0x10/0x10
[  547.969770][T17628]  do_syscall_64+0xcd/0x490
[  547.969787][T17628]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  547.969802][T17628] RIP: 0033:0x7f326618ebe9
[  547.969814][T17628] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  547.969831][T17628] RSP: 002b:00007f3266fbc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  547.969846][T17628] RAX: ffffffffffffffda RBX: 00007f32663b5fa0 RCX: 00007f326618ebe9
[  547.969856][T17628] RDX: 0000000000000042 RSI: 0000200000000140 RDI: ffffffffffffff9c
[  547.969866][T17628] RBP: 00007f3266211e19 R08: 0000000000000000 R09: 0000000000000000
[  547.969875][T17628] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  547.969884][T17628] R13: 00007f32663b6038 R14: 00007f32663b5fa0 R15: 00007fff27c9b848
[  547.969903][T17628]  </TASK>
[  548.728731][T17639] [U] 
[  548.731524][T17639] [U] 
[  548.734196][T17639] [U] 
[  548.736865][T17639] [U] 
[  548.744080][T17639] [U] 
[  548.746798][T17639] [U] 
[  548.749468][T17639] [U] 
[  548.752154][T17639] [U] 
[  548.763147][T17639] [U] 
[  548.765845][T17639] [U] 
[  548.768514][T17639] [U] 
[  548.771180][T17639] [U] 
[  548.782162][T17639] [U] 
[  548.784862][T17639] [U] 
[  548.787567][T17639] [U] 
[  548.790241][T17639] [U] 
[  548.799440][T17639] [U] 
[  548.802147][T17639] [U] 
[  548.804823][T17639] [U] 
[  548.807495][T17639] [U] 
[  548.824453][T17639] [U] 
[  548.827179][T17639] [U] 
[  548.829867][T17639] [U] 
[  548.832535][T17639] [U] 
[  548.841111][T17639] [U] 
[  548.843810][T17639] [U] 
[  548.846482][T17639] [U] 
[  548.849154][T17639] [U] 
[  548.865045][T17641] [U] 
[  549.189333][T17654] netlink: 'syz.3.4916': attribute type 4 has an invalid length.
[  549.920838][T17682] netlink: 338 bytes leftover after parsing attributes in process `syz.1.4926'.
[  549.986103][T17686] FAULT_INJECTION: forcing a failure.
[  549.986103][T17686] name failslab, interval 1, probability 0, space 0, times 0
[  550.009429][T17686] CPU: 1 UID: 0 PID: 17686 Comm: syz.3.4930 Tainted: G          I         6.16.0-syzkaller-12016-gbec077162bd0 #0 PREEMPT(full) 
[  550.009457][T17686] Tainted: [I]=FIRMWARE_WORKAROUND
[  550.009463][T17686] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  550.009472][T17686] Call Trace:
[  550.009478][T17686]  <TASK>
[  550.009484][T17686]  dump_stack_lvl+0x16c/0x1f0
[  550.009506][T17686]  should_fail_ex+0x512/0x640
[  550.009523][T17686]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  550.009542][T17686]  should_failslab+0xc2/0x120
[  550.009561][T17686]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  550.009577][T17686]  ? __kmalloc_large_noprof+0x51/0x70
[  550.009597][T17686]  ? anon_vma_fork+0x200/0x620
[  550.009615][T17686]  anon_vma_fork+0x200/0x620
[  550.009632][T17686]  dup_mmap+0x152e/0x21d0
[  550.009660][T17686]  ? __pfx_dup_mmap+0x10/0x10
[  550.009693][T17686]  copy_process+0x4081/0x7690
[  550.009712][T17686]  ? __pfx___futex_wait+0x10/0x10
[  550.009740][T17686]  ? __pfx_copy_process+0x10/0x10
[  550.009757][T17686]  ? futex_private_hash_put+0x176/0x300
[  550.009777][T17686]  ? futex_private_hash_put+0x18a/0x300
[  550.009796][T17686]  kernel_clone+0xfc/0x930
[  550.009816][T17686]  ? __pfx_kernel_clone+0x10/0x10
[  550.009844][T17686]  __do_sys_clone+0xce/0x120
[  550.009862][T17686]  ? __pfx___do_sys_clone+0x10/0x10
[  550.009879][T17686]  ? ksys_unshare+0x687/0xa40
[  550.009905][T17686]  ? xfd_validate_state+0x61/0x180
[  550.009932][T17686]  do_syscall_64+0xcd/0x490
[  550.009950][T17686]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  550.009964][T17686] RIP: 0033:0x7f238478ebe9
[  550.009976][T17686] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  550.009990][T17686] RSP: 002b:00007f23829edfe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  550.010004][T17686] RAX: ffffffffffffffda RBX: 00007f23849b5fa0 RCX: 00007f238478ebe9
[  550.010013][T17686] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000002360411
[  550.010021][T17686] RBP: 00007f2384811e19 R08: 0000000000000000 R09: 0000000000000000
[  550.010030][T17686] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  550.010038][T17686] R13: 00007f23849b6038 R14: 00007f23849b5fa0 R15: 00007ffe35df10f8
[  550.010056][T17686]  </TASK>
[  550.496051][ T5863] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260
[  550.496075][ T5863] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260
[  550.513703][ T5863] Bluetooth: hci0: Unknown advertising packet type: 0x7f
[  550.513765][ T5863] Bluetooth: hci0: Malformed LE Event: 0x0d
[  550.539541][   T49] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm kworker/u8:3: bg 2: bad block bitmap checksum
[  550.627538][   T49] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 351 with max blocks 1 with error 74
[  550.793075][   T49] EXT4-fs (sda1): This should not happen!! Data will be lost
[  550.793075][   T49] 
[  551.107842][T17714] FAULT_INJECTION: forcing a failure.
[  551.107842][T17714] name failslab, interval 1, probability 0, space 0, times 0
[  551.131629][T17714] CPU: 1 UID: 0 PID: 17714 Comm: syz.3.4944 Tainted: G          I         6.16.0-syzkaller-12016-gbec077162bd0 #0 PREEMPT(full) 
[  551.131655][T17714] Tainted: [I]=FIRMWARE_WORKAROUND
[  551.131661][T17714] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  551.131670][T17714] Call Trace:
[  551.131676][T17714]  <TASK>
[  551.131682][T17714]  dump_stack_lvl+0x16c/0x1f0
[  551.131702][T17714]  should_fail_ex+0x512/0x640
[  551.131720][T17714]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  551.131737][T17714]  should_failslab+0xc2/0x120
[  551.131757][T17714]  __kmalloc_cache_noprof+0x6a/0x3e0
[  551.131772][T17714]  ? trace_pid_list_alloc+0x27c/0x3f0
[  551.131790][T17714]  ? kasan_save_track+0x14/0x30
[  551.131808][T17714]  trace_pid_list_alloc+0x27c/0x3f0
[  551.131828][T17714]  trace_pid_write+0x10e/0x460
[  551.131849][T17714]  ? __mutex_unlock_slowpath+0x163/0x800
[  551.131867][T17714]  ? __pfx_trace_pid_write+0x10/0x10
[  551.131887][T17714]  ? __pfx___mutex_lock+0x10/0x10
[  551.131901][T17714]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  551.131918][T17714]  ? update_last_data+0xb3/0x510
[  551.131944][T17714]  event_pid_write.isra.0+0x3f7/0x7f0
[  551.131964][T17714]  ? __pfx_event_pid_write.isra.0+0x10/0x10
[  551.131988][T17714]  ? __pfx_ftrace_event_pid_write+0x10/0x10
[  551.132006][T17714]  vfs_writev+0x5dc/0xde0
[  551.132027][T17714]  ? __pfx_vfs_writev+0x10/0x10
[  551.132040][T17714]  ? __mutex_lock+0x1c4/0x10b0
[  551.132061][T17714]  ? __pfx___mutex_lock+0x10/0x10
[  551.132083][T17714]  ? __fget_files+0x20e/0x3c0
[  551.132104][T17714]  ? do_writev+0x132/0x340
[  551.132117][T17714]  do_writev+0x132/0x340
[  551.132132][T17714]  ? __pfx_do_writev+0x10/0x10
[  551.132152][T17714]  do_syscall_64+0xcd/0x490
[  551.132169][T17714]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  551.132184][T17714] RIP: 0033:0x7f238478ebe9
[  551.132196][T17714] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  551.132210][T17714] RSP: 002b:00007f23829ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  551.132223][T17714] RAX: ffffffffffffffda RBX: 00007f23849b5fa0 RCX: 00007f238478ebe9
[  551.132232][T17714] RDX: 0000000000000008 RSI: 0000200000000100 RDI: 0000000000000003
[  551.132241][T17714] RBP: 00007f2384811e19 R08: 0000000000000000 R09: 0000000000000000
[  551.132249][T17714] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  551.132257][T17714] R13: 00007f23849b6038 R14: 00007f23849b5fa0 R15: 00007ffe35df10f8
[  551.132276][T17714]  </TASK>
[  551.478452][T17720] netlink: 'syz.0.4945': attribute type 4 has an invalid length.
[  551.486242][T17720] netlink: 314 bytes leftover after parsing attributes in process `syz.0.4945'.
[  552.985060][T17759] netlink: 342 bytes leftover after parsing attributes in process `syz.1.4959'.
[  553.019135][T17761] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4960'.
[  553.141885][T17761] netlink: 13 bytes leftover after parsing attributes in process `syz.2.4960'.
[  553.324255][T17771] netlink: 342 bytes leftover after parsing attributes in process `syz.3.4966'.
[  553.787572][ T5863] Bluetooth: hci3: unexpected event 0x05 length: 440 > 4
[  553.920262][T17798] mkiss: ax0: crc mode is auto.
[  555.081901][ T5863] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260
[  555.081925][ T5863] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260
[  555.098502][ T5863] Bluetooth: hci2: Unknown advertising packet type: 0x7f
[  555.098552][ T5863] Bluetooth: hci2: Malformed LE Event: 0x0d
[  555.951675][T17849] mkiss: ax0: crc mode is auto.
[  556.099437][T17855] netlink: 'syz.0.4995': attribute type 4 has an invalid length.
[  556.127920][T17855] netlink: 314 bytes leftover after parsing attributes in process `syz.0.4995'.

syzkaller
syzkaller login: [  556.262939][T17859] netlink: 342 bytes leftover after parsing attributes in process `syz.3.4997'.
[  556.339243][T17862] netlink: 334 bytes leftover after parsing attributes in process `syz.3.4998'.
[  557.476780][T17900] netlink: 342 bytes leftover after parsing attributes in process `syz.2.5012'.
[  557.695613][T17906] netlink: 'syz.2.5015': attribute type 29 has an invalid length.
[  557.704410][T17906] netlink: 334 bytes leftover after parsing attributes in process `syz.2.5015'.
[  557.790629][T17908] FAULT_INJECTION: forcing a failure.
[  557.790629][T17908] name failslab, interval 1, probability 0, space 0, times 0
[  557.805653][T17908] CPU: 1 UID: 0 PID: 17908 Comm: syz.2.5016 Tainted: G          I         6.16.0-syzkaller-12016-gbec077162bd0 #0 PREEMPT(full) 
[  557.805679][T17908] Tainted: [I]=FIRMWARE_WORKAROUND
[  557.805685][T17908] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  557.805693][T17908] Call Trace:
[  557.805699][T17908]  <TASK>
[  557.805704][T17908]  dump_stack_lvl+0x16c/0x1f0
[  557.805726][T17908]  should_fail_ex+0x512/0x640
[  557.805743][T17908]  ? __kmalloc_noprof+0xbf/0x510
[  557.805763][T17908]  ? __seq_open_private+0x22/0xd0
[  557.805785][T17908]  should_failslab+0xc2/0x120
[  557.805803][T17908]  __kmalloc_noprof+0xd2/0x510
[  557.805818][T17908]  ? __debugfs_file_get+0x1fe/0x840
[  557.805839][T17908]  ? __pfx_nst_fop_open+0x10/0x10
[  557.805856][T17908]  __seq_open_private+0x22/0xd0
[  557.805877][T17908]  nst_fop_open+0x24/0x120
[  557.805894][T17908]  full_proxy_open_regular+0x1b9/0x360
[  557.805916][T17908]  do_dentry_open+0x97f/0x1530
[  557.805933][T17908]  ? __pfx_full_proxy_open_regular+0x10/0x10
[  557.805957][T17908]  vfs_open+0x82/0x3f0
[  557.805979][T17908]  path_openat+0x1de4/0x2cb0
[  557.806001][T17908]  ? __pfx_path_openat+0x10/0x10
[  557.806022][T17908]  do_filp_open+0x20b/0x470
[  557.806038][T17908]  ? __pfx_do_filp_open+0x10/0x10
[  557.806067][T17908]  ? alloc_fd+0x471/0x7d0
[  557.806087][T17908]  do_sys_openat2+0x11b/0x1d0
[  557.806107][T17908]  ? __pfx_do_sys_openat2+0x10/0x10
[  557.806134][T17908]  __x64_sys_openat+0x174/0x210
[  557.806155][T17908]  ? __pfx___x64_sys_openat+0x10/0x10
[  557.806183][T17908]  do_syscall_64+0xcd/0x490
[  557.806200][T17908]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  557.806214][T17908] RIP: 0033:0x7ff3c6f8ebe9
[  557.806226][T17908] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  557.806240][T17908] RSP: 002b:00007ff3c7e74038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  557.806255][T17908] RAX: ffffffffffffffda RBX: 00007ff3c71b5fa0 RCX: 00007ff3c6f8ebe9
[  557.806264][T17908] RDX: 0000000000101080 RSI: 00002000000000c0 RDI: ffffffffffffff9c
[  557.806273][T17908] RBP: 00007ff3c7011e19 R08: 0000000000000000 R09: 0000000000000000
[  557.806281][T17908] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  557.806290][T17908] R13: 00007ff3c71b6038 R14: 00007ff3c71b5fa0 R15: 00007ffedaa6b1a8
[  557.806307][T17908]  </TASK>
[  558.044537][    C1] vkms_vblank_simulate: vblank timer overrun
[  559.742380][T17954] FAULT_INJECTION: forcing a failure.
[  559.742380][T17954] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  559.777831][T17956] netlink: 74 bytes leftover after parsing attributes in process `syz.1.5035'.
[  560.092451][T17954] CPU: 1 UID: 0 PID: 17954 Comm: syz.2.5034 Tainted: G          I         6.16.0-syzkaller-12016-gbec077162bd0 #0 PREEMPT(full) 
[  560.092485][T17954] Tainted: [I]=FIRMWARE_WORKAROUND
[  560.092491][T17954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  560.092500][T17954] Call Trace:
[  560.092507][T17954]  <TASK>
[  560.092517][T17954]  dump_stack_lvl+0x16c/0x1f0
[  560.092539][T17954]  should_fail_ex+0x512/0x640
[  560.092560][T17954]  should_fail_alloc_page+0xe7/0x130
[  560.092582][T17954]  prepare_alloc_pages+0x3c2/0x610
[  560.092606][T17954]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  560.092625][T17954]  ? kasan_save_stack+0x42/0x60
[  560.092641][T17954]  ? kasan_save_stack+0x33/0x60
[  560.092655][T17954]  ? kasan_save_track+0x14/0x30
[  560.092670][T17954]  ? __kasan_slab_alloc+0x89/0x90
[  560.092685][T17954]  ? kmem_cache_alloc_noprof+0x1cb/0x3b0
[  560.092701][T17954]  ? ptlock_alloc+0x1f/0x70
[  560.092713][T17954]  ? pte_alloc_one+0x82/0x3a0
[  560.092727][T17954]  ? __pte_alloc+0x6d/0x3c0
[  560.092744][T17954]  ? copy_page_range+0x3b83/0x5c80
[  560.092756][T17954]  ? dup_mmap+0xe88/0x21d0
[  560.092775][T17954]  ? copy_process+0x4081/0x7690
[  560.092791][T17954]  ? kernel_clone+0xfc/0x930
[  560.092806][T17954]  ? __do_sys_clone+0xce/0x120
[  560.092822][T17954]  ? do_syscall_64+0xcd/0x490
[  560.092836][T17954]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  560.092852][T17954]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  560.092877][T17954]  ? look_up_lock_class+0x6b/0x150
[  560.092893][T17954]  ? register_lock_class+0x41/0x4c0
[  560.092912][T17954]  ? __lock_acquire+0xb97/0x1ce0
[  560.092928][T17954]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  560.092950][T17954]  ? policy_nodemask+0xea/0x4e0
[  560.092971][T17954]  alloc_pages_mpol+0x1fb/0x550
[  560.092989][T17954]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  560.093006][T17954]  ? page_table_check_set+0x627/0x750
[  560.093028][T17954]  alloc_pages_noprof+0x131/0x390
[  560.093047][T17954]  pte_alloc_one+0x1c/0x3a0
[  560.093062][T17954]  __pte_alloc+0x6d/0x3c0
[  560.093080][T17954]  ? __pfx___pte_alloc+0x10/0x10
[  560.093098][T17954]  ? __pfx___might_resched+0x10/0x10
[  560.093112][T17954]  ? copy_page_range+0x1fa8/0x5c80
[  560.093128][T17954]  copy_page_range+0x3b83/0x5c80
[  560.093165][T17954]  ? __pfx_copy_page_range+0x10/0x10
[  560.093186][T17954]  ? __pfx___might_resched+0x10/0x10
[  560.093198][T17954]  ? __pfx_mas_store+0x10/0x10
[  560.093213][T17954]  ? __vma_enter_locked+0x163/0x3f0
[  560.093229][T17954]  ? dup_mmap+0xe38/0x21d0
[  560.093248][T17954]  ? down_write+0x14d/0x200
[  560.093266][T17954]  ? up_write+0x1b2/0x520
[  560.093287][T17954]  dup_mmap+0xe88/0x21d0
[  560.093315][T17954]  ? __pfx_dup_mmap+0x10/0x10
[  560.093355][T17954]  copy_process+0x4081/0x7690
[  560.093375][T17954]  ? __pfx___futex_wait+0x10/0x10
[  560.093395][T17954]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  560.093417][T17954]  ? __pfx_copy_process+0x10/0x10
[  560.093435][T17954]  ? futex_private_hash_put+0x176/0x300
[  560.093454][T17954]  ? futex_private_hash_put+0x18a/0x300
[  560.093474][T17954]  kernel_clone+0xfc/0x930
[  560.093493][T17954]  ? __pfx_kernel_clone+0x10/0x10
[  560.093522][T17954]  __do_sys_clone+0xce/0x120
[  560.093540][T17954]  ? __pfx___do_sys_clone+0x10/0x10
[  560.093557][T17954]  ? __pfx___might_resched+0x10/0x10
[  560.093579][T17954]  ? xfd_validate_state+0x61/0x180
[  560.093606][T17954]  do_syscall_64+0xcd/0x490
[  560.093623][T17954]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  560.093638][T17954] RIP: 0033:0x7ff3c6f8ebe9
[  560.093650][T17954] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  560.093663][T17954] RSP: 002b:00007ff3c7e73fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  560.093677][T17954] RAX: ffffffffffffffda RBX: 00007ff3c71b5fa0 RCX: 00007ff3c6f8ebe9
[  560.093686][T17954] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000002360411
[  560.093695][T17954] RBP: 00007ff3c7011e19 R08: 0000000000000000 R09: 0000000000000000
[  560.093705][T17954] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  560.093713][T17954] R13: 00007ff3c71b6038 R14: 00007ff3c71b5fa0 R15: 00007ffedaa6b1a8
[  560.093732][T17954]  </TASK>
[  562.406582][T17980] mkiss: ax0: crc mode is auto.
[  563.005819][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  563.022271][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  565.527642][T18001] FAULT_INJECTION: forcing a failure.
[  565.527642][T18001] name failslab, interval 1, probability 0, space 0, times 0
[  565.640346][T18001] CPU: 1 UID: 0 PID: 18001 Comm: syz.2.5052 Tainted: G          I         6.16.0-syzkaller-12016-gbec077162bd0 #0 PREEMPT(full) 
[  565.640373][T18001] Tainted: [I]=FIRMWARE_WORKAROUND
[  565.640379][T18001] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  565.640389][T18001] Call Trace:
[  565.640393][T18001]  <TASK>
[  565.640400][T18001]  dump_stack_lvl+0x16c/0x1f0
[  565.640421][T18001]  should_fail_ex+0x512/0x640
[  565.640439][T18001]  ? __kmalloc_noprof+0xbf/0x510
[  565.640457][T18001]  ? copy_splice_read+0x1a8/0xba0
[  565.640471][T18001]  should_failslab+0xc2/0x120
[  565.640490][T18001]  __kmalloc_noprof+0xd2/0x510
[  565.640509][T18001]  copy_splice_read+0x1a8/0xba0
[  565.640523][T18001]  ? __pfx___might_resched+0x10/0x10
[  565.640540][T18001]  ? trace_contention_end+0xdd/0x130
[  565.640558][T18001]  ? __pfx_copy_splice_read+0x10/0x10
[  565.640571][T18001]  ? __mutex_lock+0x1c4/0x10b0
[  565.640588][T18001]  ? futex_private_hash_put+0x176/0x300
[  565.640615][T18001]  sock_splice_read+0xe9/0x110
[  565.640632][T18001]  ? __pfx_sock_splice_read+0x10/0x10
[  565.640648][T18001]  do_splice_read+0x285/0x370
[  565.640664][T18001]  splice_file_to_pipe+0x109/0x120
[  565.640681][T18001]  do_sendfile+0x400/0xe50
[  565.640699][T18001]  ? __pfx_do_sendfile+0x10/0x10
[  565.640717][T18001]  ? __x64_sys_futex+0x1e0/0x4c0
[  565.640734][T18001]  ? __x64_sys_futex+0x1e9/0x4c0
[  565.640753][T18001]  __x64_sys_sendfile64+0x1d8/0x220
[  565.640772][T18001]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  565.640797][T18001]  do_syscall_64+0xcd/0x490
[  565.640835][T18001]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  565.640852][T18001] RIP: 0033:0x7ff3c6f8ebe9
[  565.640864][T18001] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  565.640879][T18001] RSP: 002b:00007ff3c7e74038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  565.640893][T18001] RAX: ffffffffffffffda RBX: 00007ff3c71b5fa0 RCX: 00007ff3c6f8ebe9
[  565.640902][T18001] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000002
[  565.640911][T18001] RBP: 00007ff3c7011e19 R08: 0000000000000000 R09: 0000000000000000
[  565.640919][T18001] R10: 000000000000c3e0 R11: 0000000000000246 R12: 0000000000000000
[  565.640927][T18001] R13: 00007ff3c71b6038 R14: 00007ff3c71b5fa0 R15: 00007ffedaa6b1a8
[  565.640945][T18001]  </TASK>
[  566.326480][T18009] netlink: 74 bytes leftover after parsing attributes in process `syz.3.5057'.
[  566.387406][T18007] FAULT_INJECTION: forcing a failure.
[  566.387406][T18007] name failslab, interval 1, probability 0, space 0, times 0
[  566.449337][T18007] CPU: 1 UID: 0 PID: 18007 Comm: syz.0.5055 Tainted: G          I         6.16.0-syzkaller-12016-gbec077162bd0 #0 PREEMPT(full) 
[  566.449365][T18007] Tainted: [I]=FIRMWARE_WORKAROUND
[  566.449371][T18007] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  566.449379][T18007] Call Trace:
[  566.449385][T18007]  <TASK>
[  566.449391][T18007]  dump_stack_lvl+0x16c/0x1f0
[  566.449411][T18007]  should_fail_ex+0x512/0x640
[  566.449429][T18007]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  566.449448][T18007]  ? __pfx_nst_fop_open+0x10/0x10
[  566.449466][T18007]  should_failslab+0xc2/0x120
[  566.449484][T18007]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  566.449500][T18007]  ? rcu_is_watching+0x12/0xc0
[  566.449513][T18007]  ? seq_open+0x55/0x170
[  566.449535][T18007]  ? __pfx_nst_fop_open+0x10/0x10
[  566.449551][T18007]  seq_open+0x55/0x170
[  566.449571][T18007]  __seq_open_private+0x3e/0xd0
[  566.449594][T18007]  nst_fop_open+0x24/0x120
[  566.449612][T18007]  full_proxy_open_regular+0x1b9/0x360
[  566.449634][T18007]  do_dentry_open+0x97f/0x1530
[  566.449652][T18007]  ? __pfx_full_proxy_open_regular+0x10/0x10
[  566.449676][T18007]  vfs_open+0x82/0x3f0
[  566.449697][T18007]  path_openat+0x1de4/0x2cb0
[  566.449720][T18007]  ? __pfx_path_openat+0x10/0x10
[  566.449741][T18007]  do_filp_open+0x20b/0x470
[  566.449757][T18007]  ? __pfx_do_filp_open+0x10/0x10
[  566.449786][T18007]  ? alloc_fd+0x471/0x7d0
[  566.449811][T18007]  do_sys_openat2+0x11b/0x1d0
[  566.449832][T18007]  ? __pfx_do_sys_openat2+0x10/0x10
[  566.449860][T18007]  __x64_sys_openat+0x174/0x210
[  566.449882][T18007]  ? __pfx___x64_sys_openat+0x10/0x10
[  566.449911][T18007]  do_syscall_64+0xcd/0x490
[  566.449928][T18007]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  566.449942][T18007] RIP: 0033:0x7f326618ebe9
[  566.449954][T18007] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  566.449967][T18007] RSP: 002b:00007f3266fbc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  566.449981][T18007] RAX: ffffffffffffffda RBX: 00007f32663b5fa0 RCX: 00007f326618ebe9
[  566.449990][T18007] RDX: 0000000000101080 RSI: 00002000000000c0 RDI: ffffffffffffff9c
[  566.449999][T18007] RBP: 00007f3266211e19 R08: 0000000000000000 R09: 0000000000000000
[  566.450008][T18007] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  566.450016][T18007] R13: 00007f32663b6038 R14: 00007f32663b5fa0 R15: 00007fff27c9b848
[  566.450034][T18007]  </TASK>
[  567.058947][T18015] netlink: 342 bytes leftover after parsing attributes in process `syz.3.5060'.
[  567.357630][T18025] bridge0: port 3(macvlan0) entered blocking state
[  567.364204][T18025] bridge0: port 3(macvlan0) entered disabled state
[  567.467261][T18025] macvlan0: entered allmulticast mode
[  567.521549][T18025] veth1_vlan: entered allmulticast mode
[  567.572892][T18025] macvlan0: entered promiscuous mode
[  567.626461][T18025] bridge0: port 3(macvlan0) entered blocking state
[  567.633198][T18025] bridge0: port 3(macvlan0) entered forwarding state
[  568.177292][T18028] serio: Serial port pty6
[  569.666680][T18062] i2c i2c-0: new_device: Instantiated device card: at 0x01
[  569.748833][T18060] serio: Serial port pty6
[  570.149859][T18080] netlink: 'syz.3.5084': attribute type 19 has an invalid length.
[  570.170074][T18080] netlink: 334 bytes leftover after parsing attributes in process `syz.3.5084'.
[  570.765131][T18095] serio: Serial port pty6
[  570.880912][ T5916] Process accounting resumed
[  570.925011][T18102] netlink: 342 bytes leftover after parsing attributes in process `syz.3.5090'.
[  570.939823][T18102] netlink: 342 bytes leftover after parsing attributes in process `syz.3.5090'.
[  571.491969][T18114] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22

syzkaller
syzkaller login: [  574.233136][ T3497] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 351 with max blocks 1 with error 117
[  574.425791][ T3497] EXT4-fs (sda1): This should not happen!! Data will be lost
[  574.425791][ T3497] 
[  575.913559][T18199] netlink: 330 bytes leftover after parsing attributes in process `syz.2.5120'.

syzkaller
syzkaller login: [  577.544035][T18235] netlink: 338 bytes leftover after parsing attributes in process `syz.3.5133'.
[  577.585782][T18235] bridge0: entered promiscuous mode
[  579.500191][T18253] netlink: 342 bytes leftover after parsing attributes in process `syz.2.5143'.
[  579.729048][T18263] netlink: 342 bytes leftover after parsing attributes in process `syz.2.5143'.
[  579.771172][T18258] netlink: 'syz.1.5144': attribute type 19 has an invalid length.
[  579.908792][T18258] netlink: 334 bytes leftover after parsing attributes in process `syz.1.5144'.
[  580.611261][T18272] netlink: 186 bytes leftover after parsing attributes in process `syz.3.5153'.
[  580.843163][T18277] netlink: 334 bytes leftover after parsing attributes in process `syz.3.5154'.
[  581.446189][T18287] netlink: 334 bytes leftover after parsing attributes in process `syz.1.5158'.
[  582.135518][T18305] FAULT_INJECTION: forcing a failure.
[  582.135518][T18305] name fail_futex, interval 1, probability 0, space 0, times 0
[  582.148408][T18305] CPU: 1 UID: 0 PID: 18305 Comm: syz.3.5167 Tainted: G          I         6.16.0-syzkaller-12016-gbec077162bd0 #0 PREEMPT(full) 
[  582.148433][T18305] Tainted: [I]=FIRMWARE_WORKAROUND
[  582.148439][T18305] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  582.148448][T18305] Call Trace:
[  582.148454][T18305]  <TASK>
[  582.148461][T18305]  dump_stack_lvl+0x16c/0x1f0
[  582.148482][T18305]  should_fail_ex+0x512/0x640
[  582.148503][T18305]  should_fail_futex+0x4c/0x60
[  582.148521][T18305]  futex_lock_pi_atomic+0x101/0xd50
[  582.148545][T18305]  futex_lock_pi+0x23f/0x7c0
[  582.148569][T18305]  ? __pfx_futex_lock_pi+0x10/0x10
[  582.148588][T18305]  ? __futex_wait+0x24c/0x2f0
[  582.148622][T18305]  ? futex_private_hash_put+0x18a/0x300
[  582.148641][T18305]  ? __pfx_futex_wake_mark+0x10/0x10
[  582.148667][T18305]  ? ksys_write+0x190/0x250
[  582.148686][T18305]  do_futex+0x11a/0x350
[  582.148704][T18305]  ? __pfx_do_futex+0x10/0x10
[  582.148726][T18305]  __x64_sys_futex+0x1e0/0x4c0
[  582.148744][T18305]  ? fput+0x9b/0xd0
[  582.148762][T18305]  ? __pfx___x64_sys_futex+0x10/0x10
[  582.148779][T18305]  ? xfd_validate_state+0x61/0x180
[  582.148798][T18305]  ? __pfx_ksys_write+0x10/0x10
[  582.148819][T18305]  do_syscall_64+0xcd/0x490
[  582.148836][T18305]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  582.148850][T18305] RIP: 0033:0x7f238478ebe9
[  582.148862][T18305] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  582.148876][T18305] RSP: 002b:00007f23829ee038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  582.148890][T18305] RAX: ffffffffffffffda RBX: 00007f23849b5fa0 RCX: 00007f238478ebe9
[  582.148900][T18305] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000
[  582.148908][T18305] RBP: 00007f2384811e19 R08: 0000000000000000 R09: 000000008000fff2
[  582.148917][T18305] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  582.148925][T18305] R13: 00007f23849b6038 R14: 00007f23849b5fa0 R15: 00007ffe35df10f8
[  582.148944][T18305]  </TASK>
[  582.363837][T18303] usb usb28: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  583.107392][T18319] netlink: 330 bytes leftover after parsing attributes in process `syz.1.5172'.
[  583.719082][T18333] mkiss: ax0: crc mode is auto.
[  583.854946][T18338] FAULT_INJECTION: forcing a failure.
[  583.854946][T18338] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  583.879550][T18338] CPU: 1 UID: 0 PID: 18338 Comm: syz.3.5180 Tainted: G          I         6.16.0-syzkaller-12016-gbec077162bd0 #0 PREEMPT(full) 
[  583.879578][T18338] Tainted: [I]=FIRMWARE_WORKAROUND
[  583.879584][T18338] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  583.879593][T18338] Call Trace:
[  583.879599][T18338]  <TASK>
[  583.879605][T18338]  dump_stack_lvl+0x16c/0x1f0
[  583.879626][T18338]  should_fail_ex+0x512/0x640
[  583.879646][T18338]  should_fail_alloc_page+0xe7/0x130
[  583.879667][T18338]  prepare_alloc_pages+0x3c2/0x610
[  583.879691][T18338]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  583.879708][T18338]  ? kasan_quarantine_put+0x10a/0x240
[  583.879723][T18338]  ? lockdep_hardirqs_on+0x7c/0x110
[  583.879740][T18338]  ? kmem_cache_free+0x2d1/0x4d0
[  583.879755][T18338]  ? mas_alloc_nodes+0x18b/0x8b0
[  583.879767][T18338]  ? mas_destroy+0x5c6/0xa20
[  583.879790][T18338]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  583.879811][T18338]  ? perf_event_mmap+0xbb/0xd40
[  583.879834][T18338]  ? __pfx_perf_event_mmap+0x10/0x10
[  583.879855][T18338]  ? vma_wants_writenotify+0x10b/0x390
[  583.879870][T18338]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  583.879893][T18338]  ? policy_nodemask+0xea/0x4e0
[  583.879913][T18338]  alloc_pages_mpol+0x1fb/0x550
[  583.879931][T18338]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  583.879955][T18338]  alloc_pages_noprof+0x131/0x390
[  583.879973][T18338]  __pud_alloc+0x3b/0x750
[  583.879995][T18338]  __handle_mm_fault+0x13de/0x2a50
[  583.880012][T18338]  ? mt_find+0x3ef/0xa30
[  583.880029][T18338]  ? __pfx___handle_mm_fault+0x10/0x10
[  583.880059][T18338]  handle_mm_fault+0x589/0xd10
[  583.880077][T18338]  __get_user_pages+0x551/0x34a0
[  583.880105][T18338]  ? __pfx___get_user_pages+0x10/0x10
[  583.880131][T18338]  populate_vma_page_range+0x267/0x3f0
[  583.880154][T18338]  ? __pfx_populate_vma_page_range+0x10/0x10
[  583.880175][T18338]  ? __pfx_find_vma_intersection+0x10/0x10
[  583.880195][T18338]  ? do_mmap+0x69c/0x1210
[  583.880216][T18338]  __mm_populate+0x1d8/0x380
[  583.880238][T18338]  ? __pfx___mm_populate+0x10/0x10
[  583.880261][T18338]  ? up_write+0x1b2/0x520
[  583.880294][T18338]  vm_mmap_pgoff+0x37f/0x470
[  583.880318][T18338]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  583.880343][T18338]  ? __x64_sys_futex+0x1e0/0x4c0
[  583.880361][T18338]  ? __x64_sys_futex+0x1e9/0x4c0
[  583.880380][T18338]  ksys_mmap_pgoff+0x7d/0x5c0
[  583.880399][T18338]  ? xfd_validate_state+0x61/0x180
[  583.880419][T18338]  ? __pfx_do_writev+0x10/0x10
[  583.880436][T18338]  __x64_sys_mmap+0x125/0x190
[  583.880459][T18338]  do_syscall_64+0xcd/0x490
[  583.880477][T18338]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  583.880491][T18338] RIP: 0033:0x7f238478ebe9
[  583.880503][T18338] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  583.880517][T18338] RSP: 002b:00007f23829ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  583.880531][T18338] RAX: ffffffffffffffda RBX: 00007f23849b5fa0 RCX: 00007f238478ebe9
[  583.880541][T18338] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000400000000000
[  583.880550][T18338] RBP: 00007f2384811e19 R08: 0000000000000002 R09: 0000000000008000
[  583.880558][T18338] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[  583.880567][T18338] R13: 00007f23849b6038 R14: 00007f23849b5fa0 R15: 00007ffe35df10f8
[  583.880586][T18338]  </TASK>
[  585.939003][T18367] FAULT_INJECTION: forcing a failure.
[  585.939003][T18367] name failslab, interval 1, probability 0, space 0, times 0
[  586.004184][T18367] CPU: 1 UID: 0 PID: 18367 Comm: syz.1.5191 Tainted: G          I         6.16.0-syzkaller-12016-gbec077162bd0 #0 PREEMPT(full) 
[  586.004212][T18367] Tainted: [I]=FIRMWARE_WORKAROUND
[  586.004218][T18367] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  586.004228][T18367] Call Trace:
[  586.004234][T18367]  <TASK>
[  586.004240][T18367]  dump_stack_lvl+0x16c/0x1f0
[  586.004261][T18367]  should_fail_ex+0x512/0x640
[  586.004279][T18367]  ? __kmalloc_noprof+0xbf/0x510
[  586.004298][T18367]  ? handler_new_ref+0x1b0/0xc60
[  586.004315][T18367]  should_failslab+0xc2/0x120
[  586.004333][T18367]  __kmalloc_noprof+0xd2/0x510
[  586.004348][T18367]  ? __asan_memcpy+0x3c/0x60
[  586.004366][T18367]  handler_new_ref+0x1b0/0xc60
[  586.004388][T18367]  v4l2_ctrl_new+0x1963/0x2180
[  586.004411][T18367]  ? __pfx_v4l2_ctrl_new+0x10/0x10
[  586.004433][T18367]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  586.004456][T18367]  v4l2_ctrl_new_std+0x1be/0x290
[  586.004478][T18367]  ? __pfx_v4l2_ctrl_new_std+0x10/0x10
[  586.004497][T18367]  ? rcu_is_watching+0x12/0xc0
[  586.004511][T18367]  ? trace_kmalloc+0x2b/0xd0
[  586.004529][T18367]  ? __kvmalloc_node_noprof+0x298/0x620
[  586.004545][T18367]  ? v4l2_ctrl_handler_init_class+0x1fc/0x340
[  586.004563][T18367]  ? media_request_object_init+0x100/0x180
[  586.004585][T18367]  vicodec_open+0x1d0/0xf90
[  586.004611][T18367]  v4l2_open+0x225/0x490
[  586.004625][T18367]  ? __pfx_v4l2_open+0x10/0x10
[  586.004639][T18367]  chrdev_open+0x231/0x6a0
[  586.004656][T18367]  ? __pfx_apparmor_file_open+0x10/0x10
[  586.004678][T18367]  ? __pfx_chrdev_open+0x10/0x10
[  586.004697][T18367]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  586.004716][T18367]  do_dentry_open+0x97f/0x1530
[  586.004734][T18367]  ? __pfx_chrdev_open+0x10/0x10
[  586.004755][T18367]  vfs_open+0x82/0x3f0
[  586.004777][T18367]  path_openat+0x1de4/0x2cb0
[  586.004800][T18367]  ? __pfx_path_openat+0x10/0x10
[  586.004821][T18367]  do_filp_open+0x20b/0x470
[  586.004838][T18367]  ? __pfx_do_filp_open+0x10/0x10
[  586.004867][T18367]  ? alloc_fd+0x471/0x7d0
[  586.004887][T18367]  do_sys_openat2+0x11b/0x1d0
[  586.004907][T18367]  ? __pfx_do_sys_openat2+0x10/0x10
[  586.004935][T18367]  __x64_sys_openat+0x174/0x210
[  586.004956][T18367]  ? __pfx___x64_sys_openat+0x10/0x10
[  586.004993][T18367]  do_syscall_64+0xcd/0x490
[  586.005012][T18367]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  586.005026][T18367] RIP: 0033:0x7f75cbd8ebe9
[  586.005039][T18367] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  586.005053][T18367] RSP: 002b:00007f75c9fee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  586.005067][T18367] RAX: ffffffffffffffda RBX: 00007f75cbfb5fa0 RCX: 00007f75cbd8ebe9
[  586.005077][T18367] RDX: 00000000000c0400 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  586.005086][T18367] RBP: 00007f75cbe11e19 R08: 0000000000000000 R09: 0000000000000000
[  586.005095][T18367] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  586.005103][T18367] R13: 00007f75cbfb6038 R14: 00007f75cbfb5fa0 R15: 00007ffe94681f58
[  586.005122][T18367]  </TASK>
[  586.311145][    C1] vkms_vblank_simulate: vblank timer overrun
[  586.365171][T18369] FAULT_INJECTION: forcing a failure.
[  586.365171][T18369] name fail_futex, interval 1, probability 0, space 0, times 0
[  586.378036][T18369] CPU: 1 UID: 0 PID: 18369 Comm: syz.0.5192 Tainted: G          I         6.16.0-syzkaller-12016-gbec077162bd0 #0 PREEMPT(full) 
[  586.378062][T18369] Tainted: [I]=FIRMWARE_WORKAROUND
[  586.378068][T18369] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  586.378077][T18369] Call Trace:
[  586.378082][T18369]  <TASK>
[  586.378088][T18369]  dump_stack_lvl+0x16c/0x1f0
[  586.378110][T18369]  should_fail_ex+0x512/0x640
[  586.378132][T18369]  should_fail_futex+0x4c/0x60
[  586.378150][T18369]  futex_lock_pi_atomic+0x101/0xd50
[  586.378175][T18369]  futex_lock_pi+0x23f/0x7c0
[  586.378198][T18369]  ? __pfx_futex_lock_pi+0x10/0x10
[  586.378218][T18369]  ? __futex_wait+0x24c/0x2f0
[  586.378247][T18369]  ? lockdep_hardirqs_on+0x7c/0x110
[  586.378273][T18369]  ? futex_private_hash_put+0x18a/0x300
[  586.378292][T18369]  ? __pfx_futex_wake_mark+0x10/0x10
[  586.378317][T18369]  ? ksys_write+0x190/0x250
[  586.378337][T18369]  do_futex+0x11a/0x350
[  586.378354][T18369]  ? __pfx_do_futex+0x10/0x10
[  586.378376][T18369]  __x64_sys_futex+0x1e0/0x4c0
[  586.378394][T18369]  ? fput+0x9b/0xd0
[  586.378412][T18369]  ? __pfx___x64_sys_futex+0x10/0x10
[  586.378429][T18369]  ? xfd_validate_state+0x61/0x180
[  586.378449][T18369]  ? __pfx_ksys_write+0x10/0x10
[  586.378470][T18369]  do_syscall_64+0xcd/0x490
[  586.378487][T18369]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  586.378501][T18369] RIP: 0033:0x7f326618ebe9
[  586.378513][T18369] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  586.378526][T18369] RSP: 002b:00007f3266fbc038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  586.378540][T18369] RAX: ffffffffffffffda RBX: 00007f32663b5fa0 RCX: 00007f326618ebe9
[  586.378550][T18369] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000
[  586.378559][T18369] RBP: 00007f3266211e19 R08: 0000000000000000 R09: 000000008000fff2
[  586.378568][T18369] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  586.378577][T18369] R13: 00007f32663b6038 R14: 00007f32663b5fa0 R15: 00007fff27c9b848
[  586.378596][T18369]  </TASK>
[  586.586069][    C1] vkms_vblank_simulate: vblank timer overrun
[  587.178351][T18392] FAULT_INJECTION: forcing a failure.
[  587.178351][T18392] name failslab, interval 1, probability 0, space 0, times 0
[  587.196285][T18392] CPU: 1 UID: 0 PID: 18392 Comm: syz.3.5203 Tainted: G          I         6.16.0-syzkaller-12016-gbec077162bd0 #0 PREEMPT(full) 
[  587.196311][T18392] Tainted: [I]=FIRMWARE_WORKAROUND
[  587.196318][T18392] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  587.196327][T18392] Call Trace:
[  587.196332][T18392]  <TASK>
[  587.196338][T18392]  dump_stack_lvl+0x16c/0x1f0
[  587.196358][T18392]  should_fail_ex+0x512/0x640
[  587.196377][T18392]  ? kmem_cache_alloc_bulk_noprof+0x6d/0xbc0
[  587.196397][T18392]  should_failslab+0xc2/0x120
[  587.196417][T18392]  kmem_cache_alloc_bulk_noprof+0x85/0xbc0
[  587.196436][T18392]  ? trace_kmem_cache_alloc+0x28/0xc0
[  587.196456][T18392]  ? kmem_cache_alloc_noprof+0x21e/0x3b0
[  587.196473][T18392]  ? mas_alloc_nodes+0x18b/0x8b0
[  587.196488][T18392]  ? mas_alloc_nodes+0x2f1/0x8b0
[  587.196499][T18392]  mas_alloc_nodes+0x2f1/0x8b0
[  587.196516][T18392]  mas_node_count_gfp+0x105/0x130
[  587.196530][T18392]  mas_preallocate+0x7e0/0xde0
[  587.196547][T18392]  ? __memcg_slab_post_alloc_hook+0x482/0x960
[  587.196569][T18392]  ? __pfx_mas_preallocate+0x10/0x10
[  587.196592][T18392]  ? anon_vma_name+0x81/0x2f0
[  587.196615][T18392]  __split_vma+0x34a/0x1070
[  587.196632][T18392]  ? __pfx___split_vma+0x10/0x10
[  587.196646][T18392]  ? __schedule+0x11a3/0x5de0
[  587.196669][T18392]  vma_modify+0x16dc/0x2030
[  587.196686][T18392]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  587.196700][T18392]  ? trace_pid_list_is_set+0x100/0x150
[  587.196718][T18392]  ? __pfx_vma_modify+0x10/0x10
[  587.196734][T18392]  ? event_filter_pid_sched_wakeup_probe_post+0x49/0x270
[  587.196757][T18392]  vma_modify_flags+0x212/0x2d0
[  587.196772][T18392]  ? __pfx_vma_modify_flags+0x10/0x10
[  587.196801][T18392]  mlock_fixup+0x27c/0xe50
[  587.196817][T18392]  ? mas_find+0x156/0x6d0
[  587.196834][T18392]  apply_vma_lock_flags+0x261/0x390
[  587.196851][T18392]  ? __pfx_apply_vma_lock_flags+0x10/0x10
[  587.196875][T18392]  ? __pfx___might_resched+0x10/0x10
[  587.196897][T18392]  ? __pfx_down_write_killable+0x10/0x10
[  587.196916][T18392]  ? do_futex+0x122/0x350
[  587.196936][T18392]  do_mlock+0x2ac/0x810
[  587.196951][T18392]  ? __pfx___might_resched+0x10/0x10
[  587.196966][T18392]  ? __pfx_do_mlock+0x10/0x10
[  587.196980][T18392]  ? __x64_sys_futex+0x1e0/0x4c0
[  587.196996][T18392]  ? __x64_sys_futex+0x1e9/0x4c0
[  587.197013][T18392]  ? __pfx_blkcg_maybe_throttle_current+0x10/0x10
[  587.197030][T18392]  ? xfd_validate_state+0x61/0x180
[  587.197050][T18392]  ? __pfx_do_writev+0x10/0x10
[  587.197068][T18392]  __x64_sys_mlock+0x59/0x80
[  587.197084][T18392]  do_syscall_64+0xcd/0x490
[  587.197101][T18392]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  587.197116][T18392] RIP: 0033:0x7f238478ebe9
[  587.197127][T18392] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  587.197141][T18392] RSP: 002b:00007f23829ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  587.197155][T18392] RAX: ffffffffffffffda RBX: 00007f23849b5fa0 RCX: 00007f238478ebe9
[  587.197164][T18392] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 000000000000fbe8
[  587.197172][T18392] RBP: 00007f2384811e19 R08: 0000000000000000 R09: 0000000000000000
[  587.197180][T18392] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  587.197189][T18392] R13: 00007f23849b6038 R14: 00007f23849b5fa0 R15: 00007ffe35df10f8
[  587.197207][T18392]  </TASK>
[  587.527004][    C1] vkms_vblank_simulate: vblank timer overrun
[  587.563508][T18395] FAULT_INJECTION: forcing a failure.
[  587.563508][T18395] name failslab, interval 1, probability 0, space 0, times 0
[  587.576195][T18395] CPU: 1 UID: 0 PID: 18395 Comm: syz.2.5204 Tainted: G          I         6.16.0-syzkaller-12016-gbec077162bd0 #0 PREEMPT(full) 
[  587.576220][T18395] Tainted: [I]=FIRMWARE_WORKAROUND
[  587.576226][T18395] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  587.576236][T18395] Call Trace:
[  587.576243][T18395]  <TASK>
[  587.576248][T18395]  dump_stack_lvl+0x16c/0x1f0
[  587.576270][T18395]  should_fail_ex+0x512/0x640
[  587.576287][T18395]  ? __kmalloc_noprof+0xbf/0x510
[  587.576306][T18395]  ? handler_new_ref+0x1b0/0xc60
[  587.576323][T18395]  should_failslab+0xc2/0x120
[  587.576342][T18395]  __kmalloc_noprof+0xd2/0x510
[  587.576357][T18395]  ? __asan_memcpy+0x3c/0x60
[  587.576375][T18395]  handler_new_ref+0x1b0/0xc60
[  587.576397][T18395]  v4l2_ctrl_new+0x1963/0x2180
[  587.576420][T18395]  ? __pfx_v4l2_ctrl_new+0x10/0x10
[  587.576442][T18395]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  587.576465][T18395]  v4l2_ctrl_new_std+0x1be/0x290
[  587.576487][T18395]  ? __pfx_v4l2_ctrl_new_std+0x10/0x10
[  587.576506][T18395]  ? rcu_is_watching+0x12/0xc0
[  587.576521][T18395]  ? trace_kmalloc+0x2b/0xd0
[  587.576539][T18395]  ? __kvmalloc_node_noprof+0x298/0x620
[  587.576554][T18395]  ? v4l2_ctrl_handler_init_class+0x1fc/0x340
[  587.576573][T18395]  ? media_request_object_init+0x100/0x180
[  587.576595][T18395]  vicodec_open+0x1d0/0xf90
[  587.576620][T18395]  v4l2_open+0x225/0x490
[  587.576634][T18395]  ? __pfx_v4l2_open+0x10/0x10
[  587.576648][T18395]  chrdev_open+0x231/0x6a0
[  587.576666][T18395]  ? __pfx_apparmor_file_open+0x10/0x10
[  587.576688][T18395]  ? __pfx_chrdev_open+0x10/0x10
[  587.576706][T18395]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  587.576726][T18395]  do_dentry_open+0x97f/0x1530
[  587.576743][T18395]  ? __pfx_chrdev_open+0x10/0x10
[  587.576764][T18395]  vfs_open+0x82/0x3f0
[  587.576786][T18395]  path_openat+0x1de4/0x2cb0
[  587.576809][T18395]  ? __pfx_path_openat+0x10/0x10
[  587.576838][T18395]  do_filp_open+0x20b/0x470
[  587.576856][T18395]  ? __pfx_do_filp_open+0x10/0x10
[  587.576887][T18395]  ? alloc_fd+0x471/0x7d0
[  587.576909][T18395]  do_sys_openat2+0x11b/0x1d0
[  587.576929][T18395]  ? __pfx_do_sys_openat2+0x10/0x10
[  587.576958][T18395]  __x64_sys_openat+0x174/0x210
[  587.576979][T18395]  ? __pfx___x64_sys_openat+0x10/0x10
[  587.577007][T18395]  do_syscall_64+0xcd/0x490
[  587.577025][T18395]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  587.577040][T18395] RIP: 0033:0x7ff3c6f8ebe9
[  587.577053][T18395] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  587.577066][T18395] RSP: 002b:00007ff3c7e74038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  587.577080][T18395] RAX: ffffffffffffffda RBX: 00007ff3c71b5fa0 RCX: 00007ff3c6f8ebe9
[  587.577089][T18395] RDX: 00000000000c0400 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  587.577099][T18395] RBP: 00007ff3c7011e19 R08: 0000000000000000 R09: 0000000000000000
[  587.577107][T18395] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  587.577116][T18395] R13: 00007ff3c71b6038 R14: 00007ff3c71b5fa0 R15: 00007ffedaa6b1a8
[  587.577134][T18395]  </TASK>
[  587.881221][    C1] vkms_vblank_simulate: vblank timer overrun
[  587.990226][T18398] i2c i2c-0: dvb_frontend_start: failed to start kthread (-4)

syzkaller
syzkaller login: [  589.911348][T18441] FAULT_INJECTION: forcing a failure.
[  589.911348][T18441] name failslab, interval 1, probability 0, space 0, times 0
[  589.936491][T18441] CPU: 1 UID: 0 PID: 18441 Comm: syz.3.5220 Tainted: G          I         6.16.0-syzkaller-12016-gbec077162bd0 #0 PREEMPT(full) 
[  589.936519][T18441] Tainted: [I]=FIRMWARE_WORKAROUND
[  589.936524][T18441] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  589.936534][T18441] Call Trace:
[  589.936539][T18441]  <TASK>
[  589.936546][T18441]  dump_stack_lvl+0x16c/0x1f0
[  589.936567][T18441]  should_fail_ex+0x512/0x640
[  589.936585][T18441]  ? __kmalloc_noprof+0xbf/0x510
[  589.936604][T18441]  ? handler_new_ref+0x1b0/0xc60
[  589.936620][T18441]  should_failslab+0xc2/0x120
[  589.936638][T18441]  __kmalloc_noprof+0xd2/0x510
[  589.936653][T18441]  ? __asan_memcpy+0x3c/0x60
[  589.936671][T18441]  handler_new_ref+0x1b0/0xc60
[  589.936700][T18441]  v4l2_ctrl_new+0x1963/0x2180
[  589.936725][T18441]  ? __pfx_v4l2_ctrl_new+0x10/0x10
[  589.936748][T18441]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  589.936772][T18441]  v4l2_ctrl_new_std+0x1be/0x290
[  589.936796][T18441]  ? __pfx_v4l2_ctrl_new_std+0x10/0x10
[  589.936815][T18441]  ? rcu_is_watching+0x12/0xc0
[  589.936829][T18441]  ? trace_kmalloc+0x2b/0xd0
[  589.936847][T18441]  ? __kvmalloc_node_noprof+0x298/0x620
[  589.936863][T18441]  ? v4l2_ctrl_handler_init_class+0x1fc/0x340
[  589.936881][T18441]  ? media_request_object_init+0x100/0x180
[  589.936904][T18441]  vicodec_open+0x1d0/0xf90
[  589.936929][T18441]  v4l2_open+0x225/0x490
[  589.936943][T18441]  ? __pfx_v4l2_open+0x10/0x10
[  589.936956][T18441]  chrdev_open+0x231/0x6a0
[  589.936974][T18441]  ? __pfx_apparmor_file_open+0x10/0x10
[  589.936997][T18441]  ? __pfx_chrdev_open+0x10/0x10
[  589.937015][T18441]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  589.937035][T18441]  do_dentry_open+0x97f/0x1530
[  589.937052][T18441]  ? __pfx_chrdev_open+0x10/0x10
[  589.937074][T18441]  vfs_open+0x82/0x3f0
[  589.937096][T18441]  path_openat+0x1de4/0x2cb0
[  589.937119][T18441]  ? __pfx_path_openat+0x10/0x10
[  589.937140][T18441]  do_filp_open+0x20b/0x470
[  589.937156][T18441]  ? __pfx_do_filp_open+0x10/0x10
[  589.937186][T18441]  ? alloc_fd+0x471/0x7d0
[  589.937206][T18441]  do_sys_openat2+0x11b/0x1d0
[  589.937226][T18441]  ? __pfx_do_sys_openat2+0x10/0x10
[  589.937254][T18441]  __x64_sys_openat+0x174/0x210
[  589.937276][T18441]  ? __pfx___x64_sys_openat+0x10/0x10
[  589.937304][T18441]  do_syscall_64+0xcd/0x490
[  589.937321][T18441]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  589.937336][T18441] RIP: 0033:0x7f238478ebe9
[  589.937348][T18441] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  589.937361][T18441] RSP: 002b:00007f23829ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  589.937375][T18441] RAX: ffffffffffffffda RBX: 00007f23849b5fa0 RCX: 00007f238478ebe9
[  589.937385][T18441] RDX: 00000000000c0400 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  589.937394][T18441] RBP: 00007f2384811e19 R08: 0000000000000000 R09: 0000000000000000
[  589.937402][T18441] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  589.937411][T18441] R13: 00007f23849b6038 R14: 00007f23849b5fa0 R15: 00007ffe35df10f8
[  589.937430][T18441]  </TASK>
[  590.242145][    C1] vkms_vblank_simulate: vblank timer overrun
[  590.905340][T18450] aoe: skb alloc failure
[  591.050192][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  591.056527][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  591.507713][T18470] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5232'.
[  591.559754][T18470] netlink: 25 bytes leftover after parsing attributes in process `syz.1.5232'.
[  591.726075][T18472] netlink: 342 bytes leftover after parsing attributes in process `syz.2.5233'.
[  592.180132][T18485] futex_wake_op: syz.0.5236 tries to shift op by -2048; fix this program
[  592.274630][T18485] futex_wake_op: syz.0.5236 tries to shift op by -2048; fix this program
[  592.515300][T18491] FAULT_INJECTION: forcing a failure.
[  592.515300][T18491] name fail_futex, interval 1, probability 0, space 0, times 0
[  592.734444][T18504] ima: policy update failed
[  592.749766][   T30] audit: type=1802 audit(4294968501.331:20): pid=18504 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.5244" res=0 errno=0
[  592.802656][T18491] CPU: 1 UID: 0 PID: 18491 Comm: syz.0.5236 Tainted: G          I         6.16.0-syzkaller-12016-gbec077162bd0 #0 PREEMPT(full) 
[  592.802683][T18491] Tainted: [I]=FIRMWARE_WORKAROUND
[  592.802689][T18491] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  592.802698][T18491] Call Trace:
[  592.802703][T18491]  <TASK>
[  592.802709][T18491]  dump_stack_lvl+0x16c/0x1f0
[  592.802730][T18491]  should_fail_ex+0x512/0x640
[  592.802750][T18491]  get_futex_key+0x1d0/0x1560
[  592.802771][T18491]  ? __pfx_get_futex_key+0x10/0x10
[  592.802786][T18491]  ? find_held_lock+0x2b/0x80
[  592.802807][T18491]  futex_wait_setup+0x9d/0x550
[  592.802834][T18491]  __futex_wait+0x194/0x2f0
[  592.802854][T18491]  ? __pfx___futex_wait+0x10/0x10
[  592.802874][T18491]  ? __pfx___mutex_trylock_common+0x10/0x10
[  592.802895][T18491]  ? __pfx_futex_wake_mark+0x10/0x10
[  592.802917][T18491]  ? futex_hash+0x2c5/0x380
[  592.802934][T18491]  ? futex_hash+0x2c/0x380
[  592.802948][T18491]  ? futex_hash+0x2cf/0x380
[  592.802965][T18491]  futex_wait+0xe8/0x380
[  592.802984][T18491]  ? __pfx_futex_wait+0x10/0x10
[  592.803011][T18491]  ? futex_hash_allocate+0x225/0x1020
[  592.803028][T18491]  do_futex+0x229/0x350
[  592.803046][T18491]  ? __pfx_do_futex+0x10/0x10
[  592.803064][T18491]  ? cap_task_prctl+0x2af/0xa80
[  592.803087][T18491]  __x64_sys_futex+0x1e0/0x4c0
[  592.803107][T18491]  ? __pfx___x64_sys_futex+0x10/0x10
[  592.803125][T18491]  ? xfd_validate_state+0x61/0x180
[  592.803145][T18491]  ? __pfx___do_sys_prctl+0x10/0x10
[  592.803172][T18491]  do_syscall_64+0xcd/0x490
[  592.803189][T18491]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  592.803203][T18491] RIP: 0033:0x7f326618ebe9
[  592.803215][T18491] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  592.803229][T18491] RSP: 002b:00007f3266f9b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  592.803243][T18491] RAX: ffffffffffffffda RBX: 00007f32663b6098 RCX: 00007f326618ebe9
[  592.803252][T18491] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f32663b6098
[  592.803260][T18491] RBP: 00007f32663b6090 R08: 0000000000000000 R09: 0000000000000000
[  592.803268][T18491] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  592.803277][T18491] R13: 00007f32663b6128 R14: 00007fff27c9b760 R15: 00007fff27c9b848
[  592.803294][T18491]  </TASK>
[  593.365486][T18510] FAULT_INJECTION: forcing a failure.
[  593.365486][T18510] name failslab, interval 1, probability 0, space 0, times 0
[  593.409726][T18510] CPU: 1 UID: 0 PID: 18510 Comm: syz.1.5246 Tainted: G          I         6.16.0-syzkaller-12016-gbec077162bd0 #0 PREEMPT(full) 
[  593.409754][T18510] Tainted: [I]=FIRMWARE_WORKAROUND
[  593.409760][T18510] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  593.409768][T18510] Call Trace:
[  593.409774][T18510]  <TASK>
[  593.409779][T18510]  dump_stack_lvl+0x16c/0x1f0
[  593.409800][T18510]  should_fail_ex+0x512/0x640
[  593.409818][T18510]  ? __kmalloc_noprof+0xbf/0x510
[  593.409837][T18510]  ? inotify_handle_inode_event+0x1cf/0x6f0
[  593.409857][T18510]  should_failslab+0xc2/0x120
[  593.409875][T18510]  __kmalloc_noprof+0xd2/0x510
[  593.409891][T18510]  ? stack_trace_save+0x8e/0xc0
[  593.409910][T18510]  inotify_handle_inode_event+0x1cf/0x6f0
[  593.409932][T18510]  ? __pfx_inotify_handle_inode_event+0x10/0x10
[  593.409951][T18510]  fsnotify_handle_inode_event.isra.0+0x1e2/0x3f0
[  593.409970][T18510]  fsnotify+0x13d6/0x1dc0
[  593.409990][T18510]  ? __pfx_fsnotify+0x10/0x10
[  593.410013][T18510]  __fsnotify_parent+0x7c7/0xc40
[  593.410033][T18510]  ? __pfx___fsnotify_parent+0x10/0x10
[  593.410052][T18510]  ? __pfx___might_resched+0x10/0x10
[  593.410069][T18510]  ? __fput+0x30d/0xb70
[  593.410088][T18510]  __fput+0x30d/0xb70
[  593.410111][T18510]  task_work_run+0x150/0x240
[  593.410133][T18510]  ? __pfx_task_work_run+0x10/0x10
[  593.410154][T18510]  ? __pfx___do_sys_close_range+0x10/0x10
[  593.410182][T18510]  exit_to_user_mode_loop+0xeb/0x110
[  593.410205][T18510]  do_syscall_64+0x3f6/0x490
[  593.410223][T18510]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  593.410238][T18510] RIP: 0033:0x7f75cbd8ebe9
[  593.410251][T18510] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  593.410264][T18510] RSP: 002b:00007f75c9fee038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  593.410278][T18510] RAX: 0000000000000000 RBX: 00007f75cbfb5fa0 RCX: 00007f75cbd8ebe9
[  593.410295][T18510] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  593.410304][T18510] RBP: 00007f75cbe11e19 R08: 0000000000000000 R09: 0000000000000000
[  593.410313][T18510] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  593.410322][T18510] R13: 00007f75cbfb6038 R14: 00007f75cbfb5fa0 R15: 00007ffe94681f58
[  593.410340][T18510]  </TASK>
[  594.562284][T18521] netlink: 334 bytes leftover after parsing attributes in process `syz.2.5250'.
[  594.615994][T18521] netlink: 334 bytes leftover after parsing attributes in process `syz.2.5250'.
[  595.099233][T18525] netlink: 330 bytes leftover after parsing attributes in process `syz.2.5251'.
[  595.279470][T18527] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5253'.
[  595.470683][T18532] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed
[  595.525069][T18532] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff)
[  596.158807][T18549] FAULT_INJECTION: forcing a failure.
[  596.158807][T18549] name failslab, interval 1, probability 0, space 0, times 0
[  596.387960][T18549] CPU: 1 UID: 0 PID: 18549 Comm: syz.2.5263 Tainted: G          I         6.16.0-syzkaller-12016-gbec077162bd0 #0 PREEMPT(full) 
[  596.387988][T18549] Tainted: [I]=FIRMWARE_WORKAROUND
[  596.387994][T18549] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  596.388003][T18549] Call Trace:
[  596.388008][T18549]  <TASK>
[  596.388014][T18549]  dump_stack_lvl+0x16c/0x1f0
[  596.388034][T18549]  should_fail_ex+0x512/0x640
[  596.388059][T18549]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  596.388080][T18549]  should_failslab+0xc2/0x120
[  596.388099][T18549]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  596.388121][T18549]  ? alloc_vmap_area+0x58e/0x29c0
[  596.388141][T18549]  ? alloc_vmap_area+0x645/0x29c0
[  596.388164][T18549]  alloc_vmap_area+0x645/0x29c0
[  596.388192][T18549]  ? __pfx_alloc_vmap_area+0x10/0x10
[  596.388217][T18549]  __get_vm_area_node+0x1ca/0x330
[  596.388243][T18549]  __vmalloc_node_range_noprof+0x271/0x14b0
[  596.388257][T18549]  ? kernel_clone+0xfc/0x930
[  596.388275][T18549]  ? local_lock_release+0x99/0x140
[  596.388299][T18549]  ? kernel_clone+0xfc/0x930
[  596.388315][T18549]  ? rcu_read_unlock+0x17/0x60
[  596.388336][T18549]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  596.388355][T18549]  ? kernel_clone+0xfc/0x930
[  596.388372][T18549]  __vmalloc_node_noprof+0xad/0xf0
[  596.388385][T18549]  ? kernel_clone+0xfc/0x930
[  596.388407][T18549]  copy_process+0x2c70/0x7690
[  596.388424][T18549]  ? __pfx___futex_wait+0x10/0x10
[  596.388451][T18549]  ? __pfx_copy_process+0x10/0x10
[  596.388467][T18549]  ? futex_private_hash_put+0x176/0x300
[  596.388486][T18549]  ? futex_private_hash_put+0x18a/0x300
[  596.388505][T18549]  kernel_clone+0xfc/0x930
[  596.388523][T18549]  ? __pfx_kernel_clone+0x10/0x10
[  596.388555][T18549]  __do_sys_clone+0xce/0x120
[  596.388572][T18549]  ? __pfx___do_sys_clone+0x10/0x10
[  596.388598][T18549]  ? xfd_validate_state+0x61/0x180
[  596.388620][T18549]  ? __pfx_ksys_write+0x10/0x10
[  596.388645][T18549]  do_syscall_64+0xcd/0x490
[  596.388662][T18549]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  596.388677][T18549] RIP: 0033:0x7ff3c6f8ebe9
[  596.388690][T18549] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  596.388704][T18549] RSP: 002b:00007ff3c7e74038 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  596.388718][T18549] RAX: ffffffffffffffda RBX: 00007ff3c71b5fa0 RCX: 00007ff3c6f8ebe9
[  596.388728][T18549] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000020003b46
[  596.388736][T18549] RBP: 00007ff3c7011e19 R08: 0000000010000002 R09: 0000000000000000
[  596.388745][T18549] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  596.388753][T18549] R13: 00007ff3c71b6038 R14: 00007ff3c71b5fa0 R15: 00007ffedaa6b1a8
[  596.388772][T18549]  </TASK>
[  596.816454][T18549] syz.2.5263: vmalloc error: size 32768, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  596.831535][T18549] CPU: 1 UID: 0 PID: 18549 Comm: syz.2.5263 Tainted: G          I         6.16.0-syzkaller-12016-gbec077162bd0 #0 PREEMPT(full) 
[  596.831561][T18549] Tainted: [I]=FIRMWARE_WORKAROUND
[  596.831567][T18549] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  596.831576][T18549] Call Trace:
[  596.831582][T18549]  <TASK>
[  596.831587][T18549]  dump_stack_lvl+0x16c/0x1f0
[  596.831609][T18549]  warn_alloc+0x248/0x3a0
[  596.831628][T18549]  ? __pfx_warn_alloc+0x10/0x10
[  596.831646][T18549]  ? kfree+0x2b4/0x4d0
[  596.831664][T18549]  ? __get_vm_area_node+0x208/0x330
[  596.831689][T18549]  __vmalloc_node_range_noprof+0xb2d/0x14b0
[  596.831704][T18549]  ? local_lock_release+0x99/0x140
[  596.831729][T18549]  ? kernel_clone+0xfc/0x930
[  596.831746][T18549]  ? rcu_read_unlock+0x17/0x60
[  596.831767][T18549]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  596.831787][T18549]  ? kernel_clone+0xfc/0x930
[  596.831803][T18549]  __vmalloc_node_noprof+0xad/0xf0
[  596.831816][T18549]  ? kernel_clone+0xfc/0x930
[  596.831834][T18549]  copy_process+0x2c70/0x7690
[  596.831851][T18549]  ? __pfx___futex_wait+0x10/0x10
[  596.831878][T18549]  ? __pfx_copy_process+0x10/0x10
[  596.831895][T18549]  ? futex_private_hash_put+0x176/0x300
[  596.831914][T18549]  ? futex_private_hash_put+0x18a/0x300
[  596.831933][T18549]  kernel_clone+0xfc/0x930
[  596.831951][T18549]  ? __pfx_kernel_clone+0x10/0x10
[  596.831986][T18549]  __do_sys_clone+0xce/0x120
[  596.832004][T18549]  ? __pfx___do_sys_clone+0x10/0x10
[  596.832031][T18549]  ? xfd_validate_state+0x61/0x180
[  596.832051][T18549]  ? __pfx_ksys_write+0x10/0x10
[  596.832073][T18549]  do_syscall_64+0xcd/0x490
[  596.832091][T18549]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  596.832105][T18549] RIP: 0033:0x7ff3c6f8ebe9
[  596.832117][T18549] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  596.832131][T18549] RSP: 002b:00007ff3c7e74038 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  596.832144][T18549] RAX: ffffffffffffffda RBX: 00007ff3c71b5fa0 RCX: 00007ff3c6f8ebe9
[  596.832153][T18549] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000020003b46
[  596.832161][T18549] RBP: 00007ff3c7011e19 R08: 0000000010000002 R09: 0000000000000000
[  596.832170][T18549] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  596.832178][T18549] R13: 00007ff3c71b6038 R14: 00007ff3c71b5fa0 R15: 00007ffedaa6b1a8
[  596.832196][T18549]  </TASK>
[  596.832202][T18549] Mem-Info:
[  597.112776][T18557] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5266'.
[  597.132516][T18557] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5266'.
[  597.595496][T18569] ==================================================================
[  597.603571][T18569] BUG: KASAN: slab-use-after-free in dvb_device_open+0x36a/0x3b0
[  597.611300][T18569] Read of size 8 at addr ffff88802aa53c18 by task syz.3.5272/18569
[  597.619168][T18569] 
[  597.621477][T18569] CPU: 1 UID: 0 PID: 18569 Comm: syz.3.5272 Tainted: G          I         6.16.0-syzkaller-12016-gbec077162bd0 #0 PREEMPT(full) 
[  597.621501][T18569] Tainted: [I]=FIRMWARE_WORKAROUND
[  597.621507][T18569] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  597.621516][T18569] Call Trace:
[  597.621522][T18569]  <TASK>
[  597.621528][T18569]  dump_stack_lvl+0x116/0x1f0
[  597.621548][T18569]  print_report+0xcd/0x630
[  597.621567][T18569]  ? __virt_addr_valid+0x81/0x610
[  597.621585][T18569]  ? __phys_addr+0xe8/0x180
[  597.621602][T18569]  ? dvb_device_open+0x36a/0x3b0
[  597.621617][T18569]  kasan_report+0xe0/0x110
[  597.621635][T18569]  ? dvb_device_open+0x36a/0x3b0
[  597.621652][T18569]  ? __pfx_dvb_device_open+0x10/0x10
[  597.621668][T18569]  dvb_device_open+0x36a/0x3b0
[  597.621684][T18569]  ? __pfx_dvb_device_open+0x10/0x10
[  597.621700][T18569]  chrdev_open+0x231/0x6a0
[  597.621717][T18569]  ? __pfx_apparmor_file_open+0x10/0x10
[  597.621739][T18569]  ? __pfx_chrdev_open+0x10/0x10
[  597.621756][T18569]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  597.621774][T18569]  do_dentry_open+0x97f/0x1530
[  597.621791][T18569]  ? __pfx_chrdev_open+0x10/0x10
[  597.621809][T18569]  vfs_open+0x82/0x3f0
[  597.621829][T18569]  path_openat+0x1de4/0x2cb0
[  597.621848][T18569]  ? __pfx_path_openat+0x10/0x10
[  597.621865][T18569]  do_filp_open+0x20b/0x470
[  597.621881][T18569]  ? __pfx_do_filp_open+0x10/0x10
[  597.621903][T18569]  ? alloc_fd+0x471/0x7d0
[  597.621919][T18569]  do_sys_openat2+0x11b/0x1d0
[  597.621939][T18569]  ? __pfx_do_sys_openat2+0x10/0x10
[  597.621959][T18569]  ? __pfx_do_sys_openat2+0x10/0x10
[  597.621982][T18569]  __x64_sys_openat+0x174/0x210
[  597.622002][T18569]  ? __pfx___x64_sys_openat+0x10/0x10
[  597.622026][T18569]  do_syscall_64+0xcd/0x490
[  597.622042][T18569]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  597.622056][T18569] RIP: 0033:0x7f238478ebe9
[  597.622069][T18569] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  597.622084][T18569] RSP: 002b:00007f23829ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  597.622098][T18569] RAX: ffffffffffffffda RBX: 00007f23849b5fa0 RCX: 00007f238478ebe9
[  597.622108][T18569] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  597.622118][T18569] RBP: 00007f2384811e19 R08: 0000000000000000 R09: 0000000000000000
[  597.622127][T18569] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  597.622136][T18569] R13: 00007f23849b6038 R14: 00007f23849b5fa0 R15: 00007ffe35df10f8
[  597.622149][T18569]  </TASK>
[  597.622155][T18569] 
[  597.875731][T18569] Allocated by task 1:
[  597.879781][T18569]  kasan_save_stack+0x33/0x60
[  597.884441][T18569]  kasan_save_track+0x14/0x30
[  597.889115][T18569]  __kasan_kmalloc+0xaa/0xb0
[  597.893699][T18569]  dvb_register_device+0x1e4/0x2370
[  597.898882][T18569]  dvb_register_frontend+0x5a6/0x880
[  597.904152][T18569]  vidtv_bridge_probe+0x459/0xa90
[  597.909155][T18569]  platform_probe+0x103/0x1d0
[  597.913808][T18569]  really_probe+0x241/0xa90
[  597.918299][T18569]  __driver_probe_device+0x1de/0x440
[  597.923562][T18569]  driver_probe_device+0x4c/0x1b0
[  597.928566][T18569]  __driver_attach+0x283/0x580
[  597.933306][T18569]  bus_for_each_dev+0x13e/0x1d0
[  597.938142][T18569]  bus_add_driver+0x2e9/0x690
[  597.942794][T18569]  driver_register+0x15c/0x4b0
[  597.947537][T18569]  vidtv_bridge_init+0x45/0x80
[  597.952278][T18569]  do_one_initcall+0x120/0x6e0
[  597.957027][T18569]  kernel_init_freeable+0x5c2/0x910
[  597.962381][T18569]  kernel_init+0x1c/0x2b0
[  597.966692][T18569]  ret_from_fork+0x5d7/0x6f0
[  597.971266][T18569]  ret_from_fork_asm+0x1a/0x30
[  597.976005][T18569] 
[  597.978303][T18569] Freed by task 18398:
[  597.982343][T18569]  kasan_save_stack+0x33/0x60
[  597.987000][T18569]  kasan_save_track+0x14/0x30
[  597.991654][T18569]  kasan_save_free_info+0x3b/0x60
[  597.996651][T18569]  __kasan_slab_free+0x60/0x70
[  598.001395][T18569]  kfree+0x2b4/0x4d0
[  598.005269][T18569]  dvb_device_put.part.0+0x60/0x90
[  598.010546][T18569]  dvb_device_open+0x2a4/0x3b0
[  598.015299][T18569]  chrdev_open+0x231/0x6a0
[  598.019693][T18569]  do_dentry_open+0x97f/0x1530
[  598.024447][T18569]  vfs_open+0x82/0x3f0
[  598.028498][T18569]  path_openat+0x1de4/0x2cb0
[  598.033065][T18569]  do_filp_open+0x20b/0x470
[  598.037544][T18569]  do_sys_openat2+0x11b/0x1d0
[  598.042203][T18569]  __x64_sys_openat+0x174/0x210
[  598.047036][T18569]  do_syscall_64+0xcd/0x490
[  598.051530][T18569]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  598.057399][T18569] 
[  598.059710][T18569] The buggy address belongs to the object at ffff88802aa53c00
[  598.059710][T18569]  which belongs to the cache kmalloc-256 of size 256
[  598.073737][T18569] The buggy address is located 24 bytes inside of
[  598.073737][T18569]  freed 256-byte region [ffff88802aa53c00, ffff88802aa53d00)
[  598.087433][T18569] 
[  598.089744][T18569] The buggy address belongs to the physical page:
[  598.096125][T18569] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x2aa52
[  598.104858][T18569] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  598.113328][T18569] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  598.120855][T18569] page_type: f5(slab)
[  598.124813][T18569] raw: 00fff00000000040 ffff88801b841b40 dead000000000122 0000000000000000
[  598.133370][T18569] raw: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[  598.141929][T18569] head: 00fff00000000040 ffff88801b841b40 dead000000000122 0000000000000000
[  598.150573][T18569] head: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[  598.159218][T18569] head: 00fff00000000001 ffffea0000aa9481 00000000ffffffff 00000000ffffffff
[  598.167861][T18569] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002
[  598.176510][T18569] page dumped because: kasan: bad access detected
[  598.182903][T18569] page_owner tracks the page as allocated
[  598.188786][T18569] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 1, tgid 1 (swapper/0), ts 19408758359, free_ts 0
[  598.208469][T18569]  post_alloc_hook+0x1c0/0x230
[  598.213212][T18569]  get_page_from_freelist+0x132b/0x38e0
[  598.218734][T18569]  __alloc_frozen_pages_noprof+0x261/0x23f0
[  598.224605][T18569]  alloc_pages_mpol+0x1fb/0x550
[  598.229434][T18569]  new_slab+0x247/0x330
[  598.233564][T18569]  ___slab_alloc+0xcf2/0x1740
[  598.238215][T18569]  __slab_alloc.constprop.0+0x56/0xb0
[  598.243560][T18569]  __kmalloc_cache_noprof+0xfb/0x3e0
[  598.248831][T18569]  bus_add_driver+0x92/0x690
[  598.253395][T18569]  driver_register+0x15c/0x4b0
[  598.258148][T18569]  usb_register_driver+0x216/0x4d0
[  598.263264][T18569]  do_one_initcall+0x120/0x6e0
[  598.268031][T18569]  kernel_init_freeable+0x5c2/0x910
[  598.273208][T18569]  kernel_init+0x1c/0x2b0
[  598.277516][T18569]  ret_from_fork+0x5d7/0x6f0
[  598.282095][T18569]  ret_from_fork_asm+0x1a/0x30
[  598.286834][T18569] page_owner free stack trace missing
[  598.292176][T18569] 
[  598.294474][T18569] Memory state around the buggy address:
[  598.300079][T18569]  ffff88802aa53b00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  598.308114][T18569]  ffff88802aa53b80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  598.316147][T18569] >ffff88802aa53c00: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  598.324181][T18569]                             ^
[  598.329001][T18569]  ffff88802aa53c80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  598.337038][T18569]  ffff88802aa53d00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  598.345081][T18569] ==================================================================
[  598.364763][T18549] active_anon:3656 inactive_anon:49234 isolated_anon:0
[  598.364763][T18549]  active_file:22237 inactive_file:37402 isolated_file:0
[  598.364763][T18549]  unevictable:768 dirty:483 writeback:0
[  598.364763][T18549]  slab_reclaimable:12024 slab_unreclaimable:98480
[  598.364763][T18549]  mapped:26787 shmem:41874 pagetables:1646
[  598.364763][T18549]  sec_pagetables:0 bounce:0
[  598.364763][T18549]  kernel_misc_reclaimable:0
[  598.364763][T18549]  free:1238817 free_pcp:43110 free_cma:0
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  598.429817][T18549] Node 0 active_anon:14624kB inactive_anon:196868kB active_file:88896kB inactive_file:149480kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:107100kB dirty:1932kB writeback:0kB shmem:165960kB shmem_thp:4096kB shmem_pmdmapped:2048kB anon_thp:26624kB kernel_stack:12272kB pagetables:6512kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  598.501665][T18549] Node 1 active_anon:0kB inactive_anon:0kB active_file:52kB inactive_file:128kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:48kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:48kB pagetables:124kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  598.989933][T18549] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  599.364566][T18549] lowmem_reserve[]: 0 2480 2481 2481 2481
[  599.459508][T18549] Node 0 DMA32 free:1157576kB boost:0kB min:34320kB low:42900kB high:51480kB reserved_highatomic:0KB free_highatomic:0KB active_anon:11672kB inactive_anon:203096kB active_file:91672kB inactive_file:145432kB unevictable:1536kB writepending:1936kB present:3129332kB managed:2539660kB mlocked:0kB bounce:0kB free_pcp:109296kB local_pcp:109296kB free_cma:0kB
[  599.514302][T18569] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  599.521531][T18569] CPU: 1 UID: 0 PID: 18569 Comm: syz.3.5272 Tainted: G          I         6.16.0-syzkaller-12016-gbec077162bd0 #0 PREEMPT(full) 
[  599.534791][T18569] Tainted: [I]=FIRMWARE_WORKAROUND
[  599.539879][T18569] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  599.549930][T18569] Call Trace:
[  599.553199][T18569]  <TASK>
[  599.556110][T18569]  dump_stack_lvl+0x3d/0x1f0
[  599.560686][T18569]  vpanic+0x6e8/0x7a0
[  599.564653][T18569]  ? __pfx_vpanic+0x10/0x10
[  599.569150][T18569]  ? __pfx_vprintk_emit+0x10/0x10
[  599.574168][T18569]  ? dvb_device_open+0x36a/0x3b0
[  599.579101][T18569]  panic+0xca/0xd0
[  599.582820][T18569]  ? __pfx_panic+0x10/0x10
[  599.587231][T18569]  ? dvb_device_open+0x36a/0x3b0
[  599.592162][T18569]  ? preempt_schedule_common+0x44/0xc0
[  599.597618][T18569]  ? preempt_schedule_thunk+0x16/0x30
[  599.602984][T18569]  check_panic_on_warn+0xab/0xb0
[  599.607910][T18569]  end_report+0x107/0x170
[  599.612229][T18569]  kasan_report+0xee/0x110
[  599.616632][T18569]  ? dvb_device_open+0x36a/0x3b0
[  599.621557][T18569]  ? __pfx_dvb_device_open+0x10/0x10
[  599.626826][T18569]  dvb_device_open+0x36a/0x3b0
[  599.631573][T18569]  ? __pfx_dvb_device_open+0x10/0x10
[  599.636843][T18569]  chrdev_open+0x231/0x6a0
[  599.641276][T18569]  ? __pfx_apparmor_file_open+0x10/0x10
[  599.646812][T18569]  ? __pfx_chrdev_open+0x10/0x10
[  599.651733][T18569]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  599.658047][T18569]  do_dentry_open+0x97f/0x1530
[  599.662793][T18569]  ? __pfx_chrdev_open+0x10/0x10
[  599.667716][T18569]  vfs_open+0x82/0x3f0
[  599.671774][T18569]  path_openat+0x1de4/0x2cb0
[  599.676346][T18569]  ? __pfx_path_openat+0x10/0x10
[  599.681266][T18569]  do_filp_open+0x20b/0x470
[  599.685752][T18569]  ? __pfx_do_filp_open+0x10/0x10
[  599.690764][T18569]  ? alloc_fd+0x471/0x7d0
[  599.695075][T18569]  do_sys_openat2+0x11b/0x1d0
[  599.699757][T18569]  ? __pfx_do_sys_openat2+0x10/0x10
[  599.704937][T18569]  ? __pfx_do_sys_openat2+0x10/0x10
[  599.710137][T18569]  __x64_sys_openat+0x174/0x210
[  599.714973][T18569]  ? __pfx___x64_sys_openat+0x10/0x10
[  599.720331][T18569]  do_syscall_64+0xcd/0x490
[  599.724816][T18569]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  599.730687][T18569] RIP: 0033:0x7f238478ebe9
[  599.735080][T18569] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  599.754752][T18569] RSP: 002b:00007f23829ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  599.763143][T18569] RAX: ffffffffffffffda RBX: 00007f23849b5fa0 RCX: 00007f238478ebe9
[  599.771094][T18569] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  599.779041][T18569] RBP: 00007f2384811e19 R08: 0000000000000000 R09: 0000000000000000
[  599.786989][T18569] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  599.794938][T18569] R13: 00007f23849b6038 R14: 00007f23849b5fa0 R15: 00007ffe35df10f8
[  599.802895][T18569]  </TASK>
[  599.805962][T18569] Kernel Offset: disabled
[  599.810268][T18569] Rebooting in 86400 seconds..