last executing test programs: 1.240581005s ago: executing program 3 (id=36611): rt_sigaction(0xd, &(0x7f0000000180)={0x0, 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r4, &(0x7f00000007c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) socket(0x10, 0xa, 0x6) 952.699744ms ago: executing program 3 (id=36617): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, 0x0, 0x0, 0x0) r3 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x2f, &(0x7f0000000300)={0x6, {{0x2, 0x0, @multicast2=0xe0000001}}, {{0x2, 0x4e21, @local}}}, 0x108) 952.321254ms ago: executing program 3 (id=36618): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r0, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r0, @ANYRES64], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r0, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) write(0xffffffffffffffff, 0x0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r1, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$packet(0x11, 0x2, 0x300) r4 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000000c0)={'batadv_slave_1\x00', 0x0}) sendto$packet(r4, &(0x7f0000000180)="0b036800e0ff64000200475400f6a13bb1000000", 0x14, 0x0, &(0x7f0000000140)={0x11, 0x0, r5}, 0x14) 313.588389ms ago: executing program 1 (id=36628): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f00000001c0), 0x0, 0x4) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r5, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r6, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) fremovexattr(r6, &(0x7f0000000080)=@known='trusted.overlay.impure\x00') 313.397138ms ago: executing program 1 (id=36629): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000140)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r2, &(0x7f0000000340)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r2, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r5, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r6 = socket$nl_route(0x10, 0x3, 0x0) r7 = socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff) ioctl$ifreq_SIOCGIFINDEX_wireguard(r6, 0x8933, &(0x7f00000002c0)={'wg2\x00', 0x0}) sendmsg$WG_CMD_SET_DEVICE(r7, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="05002abd7000fddbdf2501000000340008803000008024000100d1732899f611cd8994034d7f413dc957630e5493c285aca40065cb6311be696b080003000200000008000100", @ANYRES32=r9], 0x50}, 0x1, 0x0, 0x0, 0x4000}, 0x40) (fail_nth: 1) 260.608034ms ago: executing program 1 (id=36630): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000140)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r3, &(0x7f0000000340)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r3, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r2, 0x0, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r5, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r6 = socket$nl_route(0x10, 0x3, 0x0) r7 = socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff) ioctl$ifreq_SIOCGIFINDEX_wireguard(r6, 0x8933, &(0x7f00000002c0)={'wg2\x00', 0x0}) sendmsg$WG_CMD_SET_DEVICE(r7, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="05002abd7000fddbdf2501000000340008803000008024000100d1732899f611cd8994034d7f413dc957630e5493c285aca40065cb6311be696b080003000200000008000100", @ANYRES32=r9], 0x50}, 0x1, 0x0, 0x0, 0x4000}, 0x40) r10 = socket$inet6_tcp(0xa, 0x1, 0x0) r11 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r11, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r11, @ANYRES64=r10], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r11, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r10, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r12 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r12, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) 260.352664ms ago: executing program 2 (id=36631): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000140)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r2, &(0x7f0000000340)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r2, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r5, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r6 = socket$nl_route(0x10, 0x3, 0x0) r7 = socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff) ioctl$ifreq_SIOCGIFINDEX_wireguard(r6, 0x8933, &(0x7f00000002c0)={'wg2\x00', 0x0}) sendmsg$WG_CMD_SET_DEVICE(r7, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="05002abd7000fddbdf2501000000340008803000008024000100d1732899f611cd8994034d7f413dc957630e5493c285aca40065cb6311be696b080003000200000008000100", @ANYRES32=r9], 0x50}, 0x1, 0x0, 0x0, 0x4000}, 0x40) 260.063184ms ago: executing program 3 (id=36632): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f00000001c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r5, 0x0, 0x0, 0x4) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) fremovexattr(r6, &(0x7f0000000080)=@known='trusted.overlay.impure\x00') 259.069094ms ago: executing program 1 (id=36633): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x0, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r5, &(0x7f00000007c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r7, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r7, @ANYRES64=r6], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r7, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') 256.053834ms ago: executing program 2 (id=36634): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000140)="ca00d1c441ef196ec866400fe2de0fae4e0af2411b1af2466ff00fc01ec422e10399c5c120206343", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) socket$inet6_tcp(0xa, 0x1, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) io_setup(0x2007, &(0x7f0000000980)) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r1, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x2f, &(0x7f0000000300)={0x6, {{0x2, 0x0, @multicast2=0xe0000001}}, {{0x2, 0x4e21, @local}}}, 0x108) 140.223516ms ago: executing program 2 (id=36636): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00), 0x0, 0x4) setrlimit(0xc, 0x0) 91.448241ms ago: executing program 0 (id=36637): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0) fsconfig$FSCONFIG_SET_BINARY(r3, 0x6, 0x0, 0x0, 0x0) r4 = fsmount(r3, 0x0, 0x0) r5 = openat$cgroup_subtree(r4, &(0x7f0000000100), 0x2, 0x0) write$cgroup_subtree(r5, 0x0, 0x0) 91.139671ms ago: executing program 2 (id=36638): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000140)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000540)=ANY=[@ANYRES32, @ANYRES8=r0], 0x118) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r2, &(0x7f0000000340)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r2, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r5, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) socket$nl_route(0x10, 0x3, 0x0) socket$nl_generic(0x10, 0x3, 0x10) rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r7, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r7, @ANYRES64=r6], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r7, 0x0) r8 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r8, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r9 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r9, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) 90.925191ms ago: executing program 0 (id=36639): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r2, &(0x7f0000000340)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r2, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r5, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) sendmmsg$inet6(r0, &(0x7f0000000040)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r6, &(0x7f0000000600)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r7 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) setsockopt$inet_group_source_req(r2, 0x0, 0x2b, &(0x7f00000001c0)={0x7, {{0x2, 0x4e22, @rand_addr=0x64010100}}, {{0x2, 0x4e20, @remote}}}, 0x108) sendmmsg$inet6(r7, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) 52.160345ms ago: executing program 2 (id=36640): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) io_setup(0x9bb1, &(0x7f0000000040)=0x0) io_submit(r4, 0x1, &(0x7f0000000480)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x8, r3, 0x0, 0x0, 0x0, 0x0, 0x4}]) io_submit(r4, 0x0, &(0x7f00000006c0)) 51.893965ms ago: executing program 0 (id=36641): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) write(r0, 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$packet(0x11, 0x2, 0x300) r5 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000000c0)={'batadv_slave_1\x00', 0x0}) sendto$packet(r5, &(0x7f0000000180)="0b036800e0ff64000200475400f6a13bb1000000", 0x14, 0x0, &(0x7f0000000140)={0x11, 0x0, r6}, 0x14) 51.596995ms ago: executing program 3 (id=36642): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r2, &(0x7f0000000340)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r2, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r5, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r6, &(0x7f0000000600)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r7 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r7, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) 50.008905ms ago: executing program 1 (id=36643): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f00000001c0), 0x0, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) fremovexattr(r5, &(0x7f0000000080)=@known='trusted.overlay.impure\x00') 39.266666ms ago: executing program 0 (id=36644): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) write(r4, 0x0, 0x0) openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000040), 0x80001, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) 23.189388ms ago: executing program 1 (id=36645): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r4, &(0x7f00000007c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) socket(0x10, 0xa, 0x6) 22.057398ms ago: executing program 3 (id=36646): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00), 0x0, 0x4) setrlimit(0xc, 0x0) 21.757238ms ago: executing program 0 (id=36647): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r2, &(0x7f0000000340)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r2, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r5, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r6, &(0x7f0000000600)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r7 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r7, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) (fail_nth: 1) 501.29µs ago: executing program 0 (id=36648): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r0, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, 0x0) sendmmsg$inet6(r4, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r5 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_group_source_req(r5, 0x0, 0x2f, &(0x7f0000000300)={0x6, {{0x2, 0x0, @multicast2=0xe0000001}}, {{0x2, 0x4e21, @local}}}, 0x108) 0s ago: executing program 2 (id=36649): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r5, &(0x7f00000007c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r6, 0x0) kernel console output (not intermixed with test programs): ice: -71 [ 957.655685][ T10] usbhid 2-1:0.0: probe with driver usbhid failed with error -71 [ 957.671780][ T10] usb 2-1: USB disconnect, device number 18 [ 959.873046][T31149] 9pnet: Could not find request transport: fd0x000000000000000b [ 961.382511][ T6069] usb 3-1: new high-speed USB device number 12 using dummy_hcd [ 961.542502][ T6069] usb 3-1: Using ep0 maxpacket: 16 [ 961.553835][ T6069] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 961.572500][ T6069] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 961.582409][ T6069] usb 3-1: New USB device found, idVendor=1e7d, idProduct=2c2e, bcdDevice= 0.00 [ 961.601676][ T6069] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 961.623361][ T6069] usb 3-1: config 0 descriptor?? [ 961.836647][ T6069] usbhid 3-1:0.0: can't add hid device: -71 [ 961.853094][ T6069] usbhid 3-1:0.0: probe with driver usbhid failed with error -71 [ 961.873419][ T6069] usb 3-1: USB disconnect, device number 12 [ 964.372634][ T336] usb 1-1: new high-speed USB device number 13 using dummy_hcd [ 964.523010][ T336] usb 1-1: Using ep0 maxpacket: 16 [ 964.543222][ T336] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 964.554256][ T336] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 964.564221][ T336] usb 1-1: New USB device found, idVendor=1e7d, idProduct=2c2e, bcdDevice= 0.00 [ 964.583188][ T336] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 964.592024][ T336] usb 1-1: config 0 descriptor?? [ 964.806937][ T336] usbhid 1-1:0.0: can't add hid device: -71 [ 964.814108][ T336] usbhid 1-1:0.0: probe with driver usbhid failed with error -71 [ 964.832277][ T336] usb 1-1: USB disconnect, device number 13 [ 965.022524][T32475] usb 2-1: new high-speed USB device number 19 using dummy_hcd [ 965.172506][T32475] usb 2-1: Using ep0 maxpacket: 16 [ 965.178841][T32475] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 965.190275][T32475] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 965.200770][T32475] usb 2-1: New USB device found, idVendor=1e7d, idProduct=2c2e, bcdDevice= 0.00 [ 965.210030][T32475] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 965.223162][T32475] usb 2-1: config 0 descriptor?? [ 965.432311][T32475] usbhid 2-1:0.0: can't add hid device: -71 [ 965.442530][T32475] usbhid 2-1:0.0: probe with driver usbhid failed with error -71 [ 965.463697][T32475] usb 2-1: USB disconnect, device number 19 [ 966.322528][T32475] usb 3-1: new high-speed USB device number 13 using dummy_hcd [ 966.472509][T32475] usb 3-1: Using ep0 maxpacket: 16 [ 966.479277][T32475] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 966.491142][T32475] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 966.501303][T32475] usb 3-1: New USB device found, idVendor=1e7d, idProduct=2c2e, bcdDevice= 0.00 [ 966.510734][T32475] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 966.519852][T32475] usb 3-1: config 0 descriptor?? [ 966.730328][T32475] usbhid 3-1:0.0: can't add hid device: -71 [ 966.742790][T32475] usbhid 3-1:0.0: probe with driver usbhid failed with error -71 [ 966.756157][T32475] usb 3-1: USB disconnect, device number 13 [ 976.372519][ T3081] usb 3-1: new high-speed USB device number 14 using dummy_hcd [ 976.527011][ T3081] usb 3-1: Using ep0 maxpacket: 16 [ 976.535441][ T3081] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 976.556528][ T3081] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 976.576799][ T3081] usb 3-1: New USB device found, idVendor=1e7d, idProduct=2c2e, bcdDevice= 0.00 [ 976.596191][ T3081] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 976.621201][ T3081] usb 3-1: config 0 descriptor?? [ 976.854494][ T3081] usbhid 3-1:0.0: can't add hid device: -71 [ 976.861544][ T3081] usbhid 3-1:0.0: probe with driver usbhid failed with error -71 [ 976.871683][ T3081] usb 3-1: USB disconnect, device number 14 [ 983.470069][ T2107] bridge_slave_1: left allmulticast mode [ 983.476174][ T2107] bridge_slave_1: left promiscuous mode [ 983.492123][ T2107] bridge0: port 2(bridge_slave_1) entered disabled state [ 983.500335][ T2107] bridge_slave_0: left allmulticast mode [ 983.512526][ T2107] bridge_slave_0: left promiscuous mode [ 983.528495][ T2107] bridge0: port 1(bridge_slave_0) entered disabled state [ 983.687550][ T2107] veth1_macvtap: left promiscuous mode [ 983.693188][ T2107] veth0_vlan: left promiscuous mode [ 983.780908][T32637] bridge0: port 1(bridge_slave_0) entered blocking state [ 983.789290][T32637] bridge0: port 1(bridge_slave_0) entered disabled state [ 983.796452][T32637] bridge_slave_0: entered allmulticast mode [ 983.812916][T32637] bridge_slave_0: entered promiscuous mode [ 983.819472][T32637] bridge0: port 2(bridge_slave_1) entered blocking state [ 983.826618][T32637] bridge0: port 2(bridge_slave_1) entered disabled state [ 983.845187][T32637] bridge_slave_1: entered allmulticast mode [ 983.851692][T32637] bridge_slave_1: entered promiscuous mode [ 983.947332][T32637] bridge0: port 2(bridge_slave_1) entered blocking state [ 983.954441][T32637] bridge0: port 2(bridge_slave_1) entered forwarding state [ 983.961716][T32637] bridge0: port 1(bridge_slave_0) entered blocking state [ 983.968887][T32637] bridge0: port 1(bridge_slave_0) entered forwarding state [ 983.993400][T14163] bridge0: port 1(bridge_slave_0) entered disabled state [ 984.005410][T14163] bridge0: port 2(bridge_slave_1) entered disabled state [ 984.022933][T31927] bridge0: port 1(bridge_slave_0) entered blocking state [ 984.029984][T31927] bridge0: port 1(bridge_slave_0) entered forwarding state [ 984.043746][T31927] bridge0: port 2(bridge_slave_1) entered blocking state [ 984.050840][T31927] bridge0: port 2(bridge_slave_1) entered forwarding state [ 984.084541][T32637] veth0_vlan: entered promiscuous mode [ 984.097449][T32637] veth1_macvtap: entered promiscuous mode [ 989.925695][ T615] FAULT_INJECTION: forcing a failure. [ 989.925695][ T615] name failslab, interval 1, probability 0, space 0, times 0 [ 989.939015][ T615] CPU: 0 UID: 0 PID: 615 Comm: syz.3.30873 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 989.939049][ T615] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 989.939061][ T615] Call Trace: [ 989.939068][ T615] [ 989.939077][ T615] __dump_stack+0x21/0x30 [ 989.939107][ T615] dump_stack_lvl+0x10c/0x190 [ 989.939130][ T615] ? __cfi_dump_stack_lvl+0x10/0x10 [ 989.939154][ T615] ? __kasan_check_write+0x18/0x20 [ 989.939181][ T615] ? proc_fail_nth_write+0x17e/0x210 [ 989.939205][ T615] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 989.939236][ T615] dump_stack+0x19/0x20 [ 989.939259][ T615] should_fail_ex+0x3d9/0x530 [ 989.939278][ T615] should_failslab+0xac/0x100 [ 989.939299][ T615] kmem_cache_alloc_noprof+0x42/0x430 [ 989.939317][ T615] ? getname_flags+0xc6/0x710 [ 989.939337][ T615] getname_flags+0xc6/0x710 [ 989.939355][ T615] ? build_open_flags+0x487/0x600 [ 989.939379][ T615] getname+0x1b/0x30 [ 989.939397][ T615] do_sys_openat2+0xcb/0x1c0 [ 989.939420][ T615] ? fput+0x1a5/0x240 [ 989.939440][ T615] ? do_sys_open+0x100/0x100 [ 989.939463][ T615] ? ksys_write+0x1ef/0x250 [ 989.939480][ T615] ? __cfi_ksys_write+0x10/0x10 [ 989.939499][ T615] __x64_sys_openat+0x13a/0x170 [ 989.939523][ T615] x64_sys_call+0xe69/0x2ee0 [ 989.939548][ T615] do_syscall_64+0x58/0xf0 [ 989.939572][ T615] ? clear_bhb_loop+0x50/0xa0 [ 989.939593][ T615] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 989.939613][ T615] RIP: 0033:0x7f2b46d8f6c9 [ 989.939630][ T615] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 989.939647][ T615] RSP: 002b:00007f2b47bac038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 989.939669][ T615] RAX: ffffffffffffffda RBX: 00007f2b46fe5fa0 RCX: 00007f2b46d8f6c9 [ 989.939684][ T615] RDX: 000000000000275a RSI: 0000200000000080 RDI: ffffffffffffff9c [ 989.939698][ T615] RBP: 00007f2b47bac090 R08: 0000000000000000 R09: 0000000000000000 [ 989.939711][ T615] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 989.939724][ T615] R13: 00007f2b46fe6038 R14: 00007f2b46fe5fa0 R15: 00007ffe3d41ec28 [ 989.939741][ T615] [ 990.271821][ T629] FAULT_INJECTION: forcing a failure. [ 990.271821][ T629] name failslab, interval 1, probability 0, space 0, times 0 [ 990.284594][ T629] CPU: 1 UID: 0 PID: 629 Comm: syz.2.30880 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 990.284624][ T629] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 990.284634][ T629] Call Trace: [ 990.284641][ T629] [ 990.284648][ T629] __dump_stack+0x21/0x30 [ 990.284674][ T629] dump_stack_lvl+0x10c/0x190 [ 990.284695][ T629] ? __cfi_dump_stack_lvl+0x10/0x10 [ 990.284718][ T629] ? proc_tid_base_lookup+0x2f/0x40 [ 990.284744][ T629] ? do_filp_open+0x1c6/0x3e0 [ 990.284766][ T629] ? do_sys_openat2+0x12c/0x1c0 [ 990.284788][ T629] ? __x64_sys_openat+0x13a/0x170 [ 990.284811][ T629] ? do_syscall_64+0x58/0xf0 [ 990.284835][ T629] dump_stack+0x19/0x20 [ 990.284857][ T629] should_fail_ex+0x3d9/0x530 [ 990.284877][ T629] should_failslab+0xac/0x100 [ 990.284898][ T629] kmem_cache_alloc_noprof+0x42/0x430 [ 990.284916][ T629] ? __asan_memcpy+0x5a/0x80 [ 990.284932][ T629] ? vm_area_dup+0x42/0x570 [ 990.284962][ T629] vm_area_dup+0x42/0x570 [ 990.284980][ T629] __split_vma+0x1bd/0xa80 [ 990.285001][ T629] ? vms_gather_munmap_vmas+0xdd0/0xdd0 [ 990.285021][ T629] ? mas_find+0x3f1/0x5f0 [ 990.285040][ T629] vms_gather_munmap_vmas+0x428/0xdd0 [ 990.285063][ T629] mmap_region+0x598/0x1bc0 [ 990.285082][ T629] ? __cfi_mmap_region+0x10/0x10 [ 990.285101][ T629] ? __cfi_arch_get_unmapped_area_topdown+0x10/0x10 [ 990.285123][ T629] ? __kasan_check_read+0x15/0x20 [ 990.285150][ T629] ? __get_unmapped_area+0x407/0x470 [ 990.285168][ T629] ? file_mmap_ok+0x147/0x1a0 [ 990.285185][ T629] do_mmap+0xb6d/0x13c0 [ 990.285201][ T629] ? __cfi_do_mmap+0x10/0x10 [ 990.285217][ T629] ? down_write_killable+0xe9/0x2d0 [ 990.285237][ T629] ? __cfi_down_write_killable+0x10/0x10 [ 990.285257][ T629] vm_mmap_pgoff+0x38f/0x4e0 [ 990.285276][ T629] ? __cfi_vm_mmap_pgoff+0x10/0x10 [ 990.285294][ T629] ? __fget_files+0x2c5/0x340 [ 990.285316][ T629] ksys_mmap_pgoff+0x166/0x1e0 [ 990.285333][ T629] __x64_sys_mmap+0x121/0x140 [ 990.285360][ T629] x64_sys_call+0x13bf/0x2ee0 [ 990.285385][ T629] do_syscall_64+0x58/0xf0 [ 990.285408][ T629] ? clear_bhb_loop+0x50/0xa0 [ 990.285428][ T629] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 990.285448][ T629] RIP: 0033:0x7fd4ee58f6c9 [ 990.285465][ T629] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 990.285482][ T629] RSP: 002b:00007fd4ef47d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 990.285504][ T629] RAX: ffffffffffffffda RBX: 00007fd4ee7e5fa0 RCX: 00007fd4ee58f6c9 [ 990.285519][ T629] RDX: 88fd537e5c114b6e RSI: 0000000000003000 RDI: 0000200000000000 [ 990.285533][ T629] RBP: 00007fd4ef47d090 R08: 0000000000000009 R09: 0000000000000000 [ 990.285546][ T629] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000001 [ 990.285559][ T629] R13: 00007fd4ee7e6038 R14: 00007fd4ee7e5fa0 R15: 00007fffd4654b28 [ 990.285576][ T629] [ 990.771939][ T651] netlink: 'syz.0.30890': attribute type 4 has an invalid length. [ 990.779912][ T36] audit: type=1400 audit(2000000166.020:255): avc: denied { bind } for pid=648 comm="syz.0.30890" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 992.890519][T14163] bridge_slave_1: left allmulticast mode [ 992.904196][T14163] bridge_slave_1: left promiscuous mode [ 992.921036][T14163] bridge0: port 2(bridge_slave_1) entered disabled state [ 992.932376][T14163] bridge_slave_0: left allmulticast mode [ 992.949731][T14163] bridge_slave_0: left promiscuous mode [ 992.957410][T14163] bridge0: port 1(bridge_slave_0) entered disabled state [ 993.093204][T14163] veth1_macvtap: left promiscuous mode [ 993.098750][T14163] veth0_vlan: left promiscuous mode [ 993.225281][ T746] bridge0: port 1(bridge_slave_0) entered blocking state [ 993.234271][ T746] bridge0: port 1(bridge_slave_0) entered disabled state [ 993.241484][ T746] bridge_slave_0: entered allmulticast mode [ 993.247882][ T746] bridge_slave_0: entered promiscuous mode [ 993.254516][ T746] bridge0: port 2(bridge_slave_1) entered blocking state [ 993.261559][ T746] bridge0: port 2(bridge_slave_1) entered disabled state [ 993.270314][ T746] bridge_slave_1: entered allmulticast mode [ 993.280380][ T746] bridge_slave_1: entered promiscuous mode [ 993.413734][ T746] bridge0: port 2(bridge_slave_1) entered blocking state [ 993.420828][ T746] bridge0: port 2(bridge_slave_1) entered forwarding state [ 993.428164][ T746] bridge0: port 1(bridge_slave_0) entered blocking state [ 993.435232][ T746] bridge0: port 1(bridge_slave_0) entered forwarding state [ 993.463526][T31927] bridge0: port 1(bridge_slave_0) entered disabled state [ 993.471198][T31927] bridge0: port 2(bridge_slave_1) entered disabled state [ 993.485775][T31927] bridge0: port 1(bridge_slave_0) entered blocking state [ 993.492968][T31927] bridge0: port 1(bridge_slave_0) entered forwarding state [ 993.500890][T31927] bridge0: port 2(bridge_slave_1) entered blocking state [ 993.508006][T31927] bridge0: port 2(bridge_slave_1) entered forwarding state [ 993.554169][ T746] veth0_vlan: entered promiscuous mode [ 993.567159][ T746] veth1_macvtap: entered promiscuous mode [ 993.962981][ T787] fuseblk: Bad value for 'fd' [ 993.987390][ T793] netlink: 'syz.3.30955': attribute type 4 has an invalid length. [ 994.799281][ T813] netlink: 'syz.3.30964': attribute type 4 has an invalid length. [ 994.886743][ T36] audit: type=1400 audit(2000000170.140:256): avc: denied { mounton } for pid=819 comm="syz.0.30966" path="/485/file0" dev="tmpfs" ino=2953 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=sock_file permissive=1 [ 994.886798][ T821] 9pnet_fd: Insufficient options for proto=fd [ 996.123103][ T888] netlink: 'syz.3.31002': attribute type 4 has an invalid length. [ 996.311957][ T910] netlink: 'syz.3.31013': attribute type 4 has an invalid length. [ 996.494135][ T930] FAULT_INJECTION: forcing a failure. [ 996.494135][ T930] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 996.507975][ T930] CPU: 0 UID: 0 PID: 930 Comm: syz.2.31023 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 996.508008][ T930] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 996.508020][ T930] Call Trace: [ 996.508026][ T930] [ 996.508034][ T930] __dump_stack+0x21/0x30 [ 996.508063][ T930] dump_stack_lvl+0x10c/0x190 [ 996.508085][ T930] ? __cfi_dump_stack_lvl+0x10/0x10 [ 996.508109][ T930] ? check_stack_object+0x12c/0x140 [ 996.508128][ T930] dump_stack+0x19/0x20 [ 996.508149][ T930] should_fail_ex+0x3d9/0x530 [ 996.508168][ T930] should_fail+0xf/0x20 [ 996.508184][ T930] should_fail_usercopy+0x1e/0x30 [ 996.508203][ T930] _copy_to_user+0x24/0xa0 [ 996.508225][ T930] simple_read_from_buffer+0xed/0x160 [ 996.508248][ T930] proc_fail_nth_read+0x19e/0x210 [ 996.508272][ T930] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 996.508295][ T930] ? bpf_lsm_file_permission+0xd/0x20 [ 996.508319][ T930] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 996.508342][ T930] vfs_read+0x27d/0xc70 [ 996.508357][ T930] ? __cfi_selinux_file_ioctl+0x10/0x10 [ 996.508379][ T930] ? __cfi_vfs_read+0x10/0x10 [ 996.508395][ T930] ? __kasan_check_write+0x18/0x20 [ 996.508420][ T930] ? mutex_lock+0x92/0x1c0 [ 996.508437][ T930] ? __cfi_mutex_lock+0x10/0x10 [ 996.508453][ T930] ? __fget_files+0x2c5/0x340 [ 996.508473][ T930] ksys_read+0x141/0x250 [ 996.508489][ T930] ? __cfi_ksys_read+0x10/0x10 [ 996.508506][ T930] ? __kasan_check_read+0x15/0x20 [ 996.508530][ T930] __x64_sys_read+0x7f/0x90 [ 996.508547][ T930] x64_sys_call+0x2638/0x2ee0 [ 996.508571][ T930] do_syscall_64+0x58/0xf0 [ 996.508600][ T930] ? clear_bhb_loop+0x50/0xa0 [ 996.508620][ T930] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 996.508638][ T930] RIP: 0033:0x7f223618e0dc [ 996.508655][ T930] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 996.508671][ T930] RSP: 002b:00007f2237062030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 996.508691][ T930] RAX: ffffffffffffffda RBX: 00007f22363e5fa0 RCX: 00007f223618e0dc [ 996.508706][ T930] RDX: 000000000000000f RSI: 00007f22370620a0 RDI: 0000000000000009 [ 996.508718][ T930] RBP: 00007f2237062090 R08: 0000000000000000 R09: 0000000000000000 [ 996.508730][ T930] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 996.508741][ T930] R13: 00007f22363e6038 R14: 00007f22363e5fa0 R15: 00007ffd80261f98 [ 996.508758][ T930] [ 996.770268][ T938] overlayfs: overlapping lowerdir path [ 996.790158][ T941] FAULT_INJECTION: forcing a failure. [ 996.790158][ T941] name failslab, interval 1, probability 0, space 0, times 0 [ 996.802820][ T941] CPU: 1 UID: 0 PID: 941 Comm: syz.2.31028 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 996.802856][ T941] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 996.802867][ T941] Call Trace: [ 996.802873][ T941] [ 996.802880][ T941] __dump_stack+0x21/0x30 [ 996.802904][ T941] dump_stack_lvl+0x10c/0x190 [ 996.802916][ T941] ? __cfi_dump_stack_lvl+0x10/0x10 [ 996.802929][ T941] ? __kasan_check_write+0x18/0x20 [ 996.802944][ T941] ? proc_fail_nth_write+0x17e/0x210 [ 996.802956][ T941] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 996.802969][ T941] dump_stack+0x19/0x20 [ 996.802981][ T941] should_fail_ex+0x3d9/0x530 [ 996.802991][ T941] should_failslab+0xac/0x100 [ 996.803002][ T941] kmem_cache_alloc_noprof+0x42/0x430 [ 996.803012][ T941] ? getname_flags+0xc6/0x710 [ 996.803022][ T941] getname_flags+0xc6/0x710 [ 996.803032][ T941] ? build_open_flags+0x487/0x600 [ 996.803046][ T941] getname+0x1b/0x30 [ 996.803055][ T941] do_sys_openat2+0xcb/0x1c0 [ 996.803067][ T941] ? fput+0x1a5/0x240 [ 996.803078][ T941] ? do_sys_open+0x100/0x100 [ 996.803090][ T941] ? ksys_write+0x1ef/0x250 [ 996.803099][ T941] ? __cfi_ksys_write+0x10/0x10 [ 996.803113][ T941] __x64_sys_openat+0x13a/0x170 [ 996.803126][ T941] x64_sys_call+0xe69/0x2ee0 [ 996.803139][ T941] do_syscall_64+0x58/0xf0 [ 996.803152][ T941] ? clear_bhb_loop+0x50/0xa0 [ 996.803164][ T941] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 996.803175][ T941] RIP: 0033:0x7f223618df10 [ 996.803185][ T941] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 69 95 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 bc 95 02 00 8b 44 [ 996.803195][ T941] RSP: 002b:00007f2237061f60 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 996.803207][ T941] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f223618df10 [ 996.803215][ T941] RDX: 0000000000000000 RSI: 00007f223621207e RDI: 00000000ffffff9c [ 996.803222][ T941] RBP: 00007f223621207e R08: 0000000000000000 R09: 0000000000000000 [ 996.803229][ T941] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 996.803236][ T941] R13: 00007f22363e6038 R14: 00007f22363e5fa0 R15: 00007ffd80261f98 [ 996.803244][ T941] [ 997.089736][ T958] 9pnet_fd: Insufficient options for proto=fd [ 997.187290][ T964] FAULT_INJECTION: forcing a failure. [ 997.187290][ T964] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 997.200629][ T964] CPU: 1 UID: 0 PID: 964 Comm: syz.2.31040 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 997.200663][ T964] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 997.200676][ T964] Call Trace: [ 997.200682][ T964] [ 997.200691][ T964] __dump_stack+0x21/0x30 [ 997.200720][ T964] dump_stack_lvl+0x10c/0x190 [ 997.200743][ T964] ? __cfi_dump_stack_lvl+0x10/0x10 [ 997.200777][ T964] ? kstrtoull+0x13b/0x1e0 [ 997.200794][ T964] dump_stack+0x19/0x20 [ 997.200816][ T964] should_fail_ex+0x3d9/0x530 [ 997.200836][ T964] should_fail+0xf/0x20 [ 997.200852][ T964] should_fail_usercopy+0x1e/0x30 [ 997.200872][ T964] _copy_from_user+0x22/0xb0 [ 997.200894][ T964] ___sys_sendmsg+0x159/0x2a0 [ 997.200921][ T964] ? __sys_sendmsg+0x280/0x280 [ 997.200946][ T964] ? proc_fail_nth_write+0x17e/0x210 [ 997.200971][ T964] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 997.201000][ T964] __x64_sys_sendmsg+0x1eb/0x2c0 [ 997.201025][ T964] ? fput+0x1a5/0x240 [ 997.201047][ T964] ? __cfi___x64_sys_sendmsg+0x10/0x10 [ 997.201073][ T964] ? ksys_write+0x1ef/0x250 [ 997.201091][ T964] ? __kasan_check_read+0x15/0x20 [ 997.201119][ T964] x64_sys_call+0x2a4c/0x2ee0 [ 997.201144][ T964] do_syscall_64+0x58/0xf0 [ 997.201166][ T964] ? clear_bhb_loop+0x50/0xa0 [ 997.201187][ T964] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 997.201207][ T964] RIP: 0033:0x7f223618f6c9 [ 997.201223][ T964] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 997.201240][ T964] RSP: 002b:00007f2237062038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 997.201261][ T964] RAX: ffffffffffffffda RBX: 00007f22363e5fa0 RCX: 00007f223618f6c9 [ 997.201276][ T964] RDX: 0000000000000000 RSI: 0000200000000ac0 RDI: 000000000000000b [ 997.201289][ T964] RBP: 00007f2237062090 R08: 0000000000000000 R09: 0000000000000000 [ 997.201301][ T964] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 997.201313][ T964] R13: 00007f22363e6038 R14: 00007f22363e5fa0 R15: 00007ffd80261f98 [ 997.201330][ T964] [ 997.564436][ T988] FAULT_INJECTION: forcing a failure. [ 997.564436][ T988] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 997.577887][ T988] CPU: 1 UID: 0 PID: 988 Comm: syz.0.31051 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 997.577918][ T988] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 997.577930][ T988] Call Trace: [ 997.577937][ T988] [ 997.577945][ T988] __dump_stack+0x21/0x30 [ 997.577972][ T988] dump_stack_lvl+0x10c/0x190 [ 997.577993][ T988] ? __cfi_dump_stack_lvl+0x10/0x10 [ 997.578016][ T988] ? kstrtoull+0x13b/0x1e0 [ 997.578032][ T988] dump_stack+0x19/0x20 [ 997.578052][ T988] should_fail_ex+0x3d9/0x530 [ 997.578069][ T988] should_fail+0xf/0x20 [ 997.578083][ T988] should_fail_usercopy+0x1e/0x30 [ 997.578103][ T988] _copy_from_user+0x22/0xb0 [ 997.578124][ T988] ___sys_sendmsg+0x159/0x2a0 [ 997.578149][ T988] ? __sys_sendmsg+0x280/0x280 [ 997.578173][ T988] ? proc_fail_nth_write+0x17e/0x210 [ 997.578196][ T988] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 997.578223][ T988] __x64_sys_sendmsg+0x1eb/0x2c0 [ 997.578247][ T988] ? fput+0x1a5/0x240 [ 997.578268][ T988] ? __cfi___x64_sys_sendmsg+0x10/0x10 [ 997.578293][ T988] ? ksys_write+0x1ef/0x250 [ 997.578311][ T988] ? __kasan_check_read+0x15/0x20 [ 997.578337][ T988] x64_sys_call+0x2a4c/0x2ee0 [ 997.578361][ T988] do_syscall_64+0x58/0xf0 [ 997.578399][ T988] ? clear_bhb_loop+0x50/0xa0 [ 997.578482][ T988] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 997.578501][ T988] RIP: 0033:0x7faf1958f6c9 [ 997.578518][ T988] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 997.578532][ T988] RSP: 002b:00007faf17ff7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 997.578553][ T988] RAX: ffffffffffffffda RBX: 00007faf197e5fa0 RCX: 00007faf1958f6c9 [ 997.578566][ T988] RDX: 0000000000000000 RSI: 0000200000000ac0 RDI: 0000000000000009 [ 997.578577][ T988] RBP: 00007faf17ff7090 R08: 0000000000000000 R09: 0000000000000000 [ 997.578588][ T988] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 997.578599][ T988] R13: 00007faf197e6038 R14: 00007faf197e5fa0 R15: 00007ffc25b4b538 [ 997.578614][ T988] [ 997.608240][ T36] audit: type=1400 audit(2000000172.840:257): avc: denied { mount } for pid=995 comm="syz.3.31056" name="/" dev="ramfs" ino=369437 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1 [ 997.840675][ T1019] netlink: 'syz.1.31066': attribute type 4 has an invalid length. [ 997.994670][ T1030] netlink: 'syz.3.31070': attribute type 4 has an invalid length. [ 998.687138][ T1069] 9pnet_fd: Insufficient options for proto=fd [ 998.713810][ T1074] FAULT_INJECTION: forcing a failure. [ 998.713810][ T1074] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 998.726946][ T1074] CPU: 0 UID: 0 PID: 1074 Comm: syz.2.31088 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 998.726978][ T1074] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 998.726986][ T1074] Call Trace: [ 998.726990][ T1074] [ 998.726995][ T1074] __dump_stack+0x21/0x30 [ 998.727017][ T1074] dump_stack_lvl+0x10c/0x190 [ 998.727029][ T1074] ? __cfi_dump_stack_lvl+0x10/0x10 [ 998.727043][ T1074] ? kstrtoull+0x13b/0x1e0 [ 998.727053][ T1074] dump_stack+0x19/0x20 [ 998.727064][ T1074] should_fail_ex+0x3d9/0x530 [ 998.727075][ T1074] should_fail+0xf/0x20 [ 998.727084][ T1074] should_fail_usercopy+0x1e/0x30 [ 998.727095][ T1074] _copy_from_user+0x22/0xb0 [ 998.727108][ T1074] ___sys_sendmsg+0x159/0x2a0 [ 998.727123][ T1074] ? __sys_sendmsg+0x280/0x280 [ 998.727136][ T1074] ? proc_fail_nth_write+0x17e/0x210 [ 998.727149][ T1074] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 998.727165][ T1074] __x64_sys_sendmsg+0x1eb/0x2c0 [ 998.727178][ T1074] ? fput+0x1a5/0x240 [ 998.727191][ T1074] ? __cfi___x64_sys_sendmsg+0x10/0x10 [ 998.727204][ T1074] ? ksys_write+0x1ef/0x250 [ 998.727214][ T1074] ? __kasan_check_read+0x15/0x20 [ 998.727230][ T1074] x64_sys_call+0x2a4c/0x2ee0 [ 998.727243][ T1074] do_syscall_64+0x58/0xf0 [ 998.727255][ T1074] ? clear_bhb_loop+0x50/0xa0 [ 998.727267][ T1074] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 998.727278][ T1074] RIP: 0033:0x7f223618f6c9 [ 998.727287][ T1074] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 998.727297][ T1074] RSP: 002b:00007f2237062038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 998.727310][ T1074] RAX: ffffffffffffffda RBX: 00007f22363e5fa0 RCX: 00007f223618f6c9 [ 998.727318][ T1074] RDX: 0000000000000040 RSI: 0000200000000340 RDI: 0000000000000009 [ 998.727325][ T1074] RBP: 00007f2237062090 R08: 0000000000000000 R09: 0000000000000000 [ 998.727333][ T1074] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 998.727340][ T1074] R13: 00007f22363e6038 R14: 00007f22363e5fa0 R15: 00007ffd80261f98 [ 998.727348][ T1074] [ 998.959875][ T1079] netlink: 'syz.2.31095': attribute type 4 has an invalid length. [ 998.967798][ T1079] netlink: 17 bytes leftover after parsing attributes in process `syz.2.31095'. [ 999.821101][ T1158] FAULT_INJECTION: forcing a failure. [ 999.821101][ T1158] name failslab, interval 1, probability 0, space 0, times 0 [ 999.833696][ T1158] CPU: 1 UID: 0 PID: 1158 Comm: syz.0.31133 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 999.833718][ T1158] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 999.833731][ T1158] Call Trace: [ 999.833736][ T1158] [ 999.833742][ T1158] __dump_stack+0x21/0x30 [ 999.833761][ T1158] dump_stack_lvl+0x10c/0x190 [ 999.833774][ T1158] ? __cfi_dump_stack_lvl+0x10/0x10 [ 999.833787][ T1158] ? avc_has_perm+0x144/0x220 [ 999.833800][ T1158] dump_stack+0x19/0x20 [ 999.833812][ T1158] should_fail_ex+0x3d9/0x530 [ 999.833824][ T1158] should_failslab+0xac/0x100 [ 999.833835][ T1158] kmem_cache_alloc_noprof+0x42/0x430 [ 999.833845][ T1158] ? inc_rlimit_get_ucounts+0x3fb/0x470 [ 999.833860][ T1158] ? __sigqueue_alloc+0x15e/0x2b0 [ 999.833874][ T1158] __sigqueue_alloc+0x15e/0x2b0 [ 999.833885][ T1158] __send_signal_locked+0x19d/0xb90 [ 999.833896][ T1158] ? __kasan_check_write+0x18/0x20 [ 999.833910][ T1158] ? __task_pid_nr_ns+0x1e2/0x280 [ 999.833922][ T1158] send_signal_locked+0x428/0x5a0 [ 999.833934][ T1158] do_send_sig_info+0xdb/0x220 [ 999.833945][ T1158] send_sig+0x5f/0x70 [ 999.833955][ T1158] sk_stream_error+0xb6/0x130 [ 999.833969][ T1158] tcp_sendmsg_locked+0x42e0/0x4b40 [ 999.833983][ T1158] ? __asan_memcpy+0x5a/0x80 [ 999.833993][ T1158] ? __kasan_check_write+0x18/0x20 [ 999.834006][ T1158] ? _raw_spin_lock_bh+0x90/0x120 [ 999.834019][ T1158] ? __cfi__raw_spin_lock_bh+0x10/0x10 [ 999.834031][ T1158] ? kstrtouint_from_user+0xfb/0x150 [ 999.834041][ T1158] ? x64_sys_call+0xe69/0x2ee0 [ 999.834055][ T1158] ? _raw_spin_unlock_bh+0x54/0x60 [ 999.834066][ T1158] ? lock_sock_nested+0x1f5/0x290 [ 999.834077][ T1158] ? __cfi_tcp_sendmsg_locked+0x10/0x10 [ 999.834090][ T1158] ? __kasan_check_write+0x18/0x20 [ 999.834103][ T1158] ? proc_fail_nth_write+0x17e/0x210 [ 999.834117][ T1158] ? __cfi_tcp_sendmsg+0x10/0x10 [ 999.834129][ T1158] tcp_sendmsg+0x3e/0xe0 [ 999.834140][ T1158] ? __cfi_tcp_sendmsg+0x10/0x10 [ 999.834152][ T1158] inet6_sendmsg+0xb7/0x120 [ 999.834166][ T1158] __sys_sendto+0x446/0x6f0 [ 999.834179][ T1158] ? __cfi___sys_sendto+0x10/0x10 [ 999.834192][ T1158] ? __kasan_check_write+0x18/0x20 [ 999.834206][ T1158] ? __cfi_ksys_write+0x10/0x10 [ 999.834217][ T1158] __x64_sys_sendto+0xe9/0x100 [ 999.834229][ T1158] x64_sys_call+0x2c2c/0x2ee0 [ 999.834243][ T1158] do_syscall_64+0x58/0xf0 [ 999.834255][ T1158] ? clear_bhb_loop+0x50/0xa0 [ 999.834267][ T1158] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 999.834278][ T1158] RIP: 0033:0x7faf1958f6c9 [ 999.834288][ T1158] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 999.834298][ T1158] RSP: 002b:00007faf17ff7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 999.834311][ T1158] RAX: ffffffffffffffda RBX: 00007faf197e5fa0 RCX: 00007faf1958f6c9 [ 999.834319][ T1158] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000008 [ 999.834326][ T1158] RBP: 00007faf17ff7090 R08: 0000000000000000 R09: 0000000000000000 [ 999.834333][ T1158] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001 [ 999.834340][ T1158] R13: 00007faf197e6038 R14: 00007faf197e5fa0 R15: 00007ffc25b4b538 [ 999.834355][ T1158] [ 1000.396455][ T36] audit: type=1326 audit(2000000175.650:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1195 comm="syz.3.31151" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f2b46d8f6c9 code=0x0 [ 1001.353944][ T1261] syz.1.31182 uses obsolete (PF_INET,SOCK_PACKET) [ 1001.428141][ T1273] 9pnet_fd: Insufficient options for proto=fd [ 1001.523685][ T1281] FAULT_INJECTION: forcing a failure. [ 1001.523685][ T1281] name failslab, interval 1, probability 0, space 0, times 0 [ 1001.536355][ T1281] CPU: 1 UID: 0 PID: 1281 Comm: syz.1.31192 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1001.536385][ T1281] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1001.536397][ T1281] Call Trace: [ 1001.536405][ T1281] [ 1001.536414][ T1281] __dump_stack+0x21/0x30 [ 1001.536560][ T1281] dump_stack_lvl+0x10c/0x190 [ 1001.536574][ T1281] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1001.536587][ T1281] ? __kasan_check_write+0x18/0x20 [ 1001.536602][ T1281] ? proc_fail_nth_write+0x17e/0x210 [ 1001.536616][ T1281] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 1001.536629][ T1281] dump_stack+0x19/0x20 [ 1001.536640][ T1281] should_fail_ex+0x3d9/0x530 [ 1001.536652][ T1281] should_failslab+0xac/0x100 [ 1001.536663][ T1281] kmem_cache_alloc_noprof+0x42/0x430 [ 1001.536672][ T1281] ? getname_flags+0xc6/0x710 [ 1001.536683][ T1281] getname_flags+0xc6/0x710 [ 1001.536693][ T1281] ? build_open_flags+0x487/0x600 [ 1001.536706][ T1281] getname+0x1b/0x30 [ 1001.536715][ T1281] do_sys_openat2+0xcb/0x1c0 [ 1001.536730][ T1281] ? fput+0x1a5/0x240 [ 1001.536741][ T1281] ? do_sys_open+0x100/0x100 [ 1001.536753][ T1281] ? ksys_write+0x1ef/0x250 [ 1001.536762][ T1281] ? __cfi_ksys_write+0x10/0x10 [ 1001.536772][ T1281] __x64_sys_openat+0x13a/0x170 [ 1001.536785][ T1281] x64_sys_call+0xe69/0x2ee0 [ 1001.536799][ T1281] do_syscall_64+0x58/0xf0 [ 1001.536813][ T1281] ? clear_bhb_loop+0x50/0xa0 [ 1001.536824][ T1281] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1001.536835][ T1281] RIP: 0033:0x7fa04d58f6c9 [ 1001.536846][ T1281] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1001.536856][ T1281] RSP: 002b:00007fa04e41b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1001.536868][ T1281] RAX: ffffffffffffffda RBX: 00007fa04d7e5fa0 RCX: 00007fa04d58f6c9 [ 1001.536877][ T1281] RDX: 0000000000020400 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 1001.536884][ T1281] RBP: 00007fa04e41b090 R08: 0000000000000000 R09: 0000000000000000 [ 1001.536892][ T1281] R10: 0000000000000020 R11: 0000000000000246 R12: 0000000000000001 [ 1001.536899][ T1281] R13: 00007fa04d7e6038 R14: 00007fa04d7e5fa0 R15: 00007ffee8f6a358 [ 1001.536907][ T1281] [ 1001.833782][T14163] Bluetooth: hci0: Frame reassembly failed (-84) [ 1002.575012][ T1332] FAULT_INJECTION: forcing a failure. [ 1002.575012][ T1332] name failslab, interval 1, probability 0, space 0, times 0 [ 1002.587829][ T1332] CPU: 0 UID: 0 PID: 1332 Comm: syz.2.31214 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1002.587862][ T1332] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1002.587874][ T1332] Call Trace: [ 1002.587881][ T1332] [ 1002.587889][ T1332] __dump_stack+0x21/0x30 [ 1002.587920][ T1332] dump_stack_lvl+0x10c/0x190 [ 1002.587943][ T1332] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1002.587966][ T1332] ? __kasan_check_write+0x18/0x20 [ 1002.587992][ T1332] ? proc_fail_nth_write+0x17e/0x210 [ 1002.588015][ T1332] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 1002.588039][ T1332] dump_stack+0x19/0x20 [ 1002.588062][ T1332] should_fail_ex+0x3d9/0x530 [ 1002.588081][ T1332] should_failslab+0xac/0x100 [ 1002.588102][ T1332] kmem_cache_alloc_noprof+0x42/0x430 [ 1002.588128][ T1332] ? getname_flags+0xc6/0x710 [ 1002.588148][ T1332] getname_flags+0xc6/0x710 [ 1002.588165][ T1332] ? build_open_flags+0x487/0x600 [ 1002.588189][ T1332] getname+0x1b/0x30 [ 1002.588206][ T1332] do_sys_openat2+0xcb/0x1c0 [ 1002.588229][ T1332] ? fput+0x1a5/0x240 [ 1002.588249][ T1332] ? do_sys_open+0x100/0x100 [ 1002.588272][ T1332] ? ksys_write+0x1ef/0x250 [ 1002.588289][ T1332] ? __cfi_ksys_write+0x10/0x10 [ 1002.588307][ T1332] __x64_sys_openat+0x13a/0x170 [ 1002.588331][ T1332] x64_sys_call+0xe69/0x2ee0 [ 1002.588356][ T1332] do_syscall_64+0x58/0xf0 [ 1002.588379][ T1332] ? clear_bhb_loop+0x50/0xa0 [ 1002.588399][ T1332] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1002.588418][ T1332] RIP: 0033:0x7f223618df10 [ 1002.588434][ T1332] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 69 95 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 bc 95 02 00 8b 44 [ 1002.588451][ T1332] RSP: 002b:00007f2237061f10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 1002.588474][ T1332] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f223618df10 [ 1002.588488][ T1332] RDX: 0000000000000002 RSI: 00007f2237061fa0 RDI: 00000000ffffff9c [ 1002.588502][ T1332] RBP: 00007f2237061fa0 R08: 0000000000000000 R09: 0000000000000000 [ 1002.588515][ T1332] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 1002.588528][ T1332] R13: 00007f22363e6038 R14: 00007f22363e5fa0 R15: 00007ffd80261f98 [ 1002.588545][ T1332] [ 1003.012558][ T1357] FAULT_INJECTION: forcing a failure. [ 1003.012558][ T1357] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1003.025775][ T1357] CPU: 1 UID: 0 PID: 1357 Comm: syz.0.31224 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1003.025809][ T1357] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1003.025821][ T1357] Call Trace: [ 1003.025829][ T1357] [ 1003.025837][ T1357] __dump_stack+0x21/0x30 [ 1003.025868][ T1357] dump_stack_lvl+0x10c/0x190 [ 1003.025890][ T1357] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1003.025914][ T1357] ? kernel_text_address+0xa9/0xe0 [ 1003.025937][ T1357] dump_stack+0x19/0x20 [ 1003.025977][ T1357] should_fail_ex+0x3d9/0x530 [ 1003.025998][ T1357] should_fail+0xf/0x20 [ 1003.026015][ T1357] should_fail_usercopy+0x1e/0x30 [ 1003.026035][ T1357] _copy_from_user+0x22/0xb0 [ 1003.026057][ T1357] ___sys_sendmsg+0x159/0x2a0 [ 1003.026084][ T1357] ? __sys_sendmsg+0x280/0x280 [ 1003.026108][ T1357] ? kstrtouint+0x78/0xf0 [ 1003.026131][ T1357] __sys_sendmmsg+0x271/0x470 [ 1003.026157][ T1357] ? __cfi___sys_sendmmsg+0x10/0x10 [ 1003.026186][ T1357] ? __cfi_ksys_write+0x10/0x10 [ 1003.026205][ T1357] __x64_sys_sendmmsg+0xa4/0xc0 [ 1003.026231][ T1357] x64_sys_call+0xfec/0x2ee0 [ 1003.026256][ T1357] do_syscall_64+0x58/0xf0 [ 1003.026280][ T1357] ? clear_bhb_loop+0x50/0xa0 [ 1003.026301][ T1357] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1003.026320][ T1357] RIP: 0033:0x7faf1958f6c9 [ 1003.026346][ T1357] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1003.026362][ T1357] RSP: 002b:00007faf17ff7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 1003.026384][ T1357] RAX: ffffffffffffffda RBX: 00007faf197e5fa0 RCX: 00007faf1958f6c9 [ 1003.026399][ T1357] RDX: 0000000000000001 RSI: 0000200000000500 RDI: 0000000000000008 [ 1003.026412][ T1357] RBP: 00007faf17ff7090 R08: 0000000000000000 R09: 0000000000000000 [ 1003.026425][ T1357] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000001 [ 1003.026438][ T1357] R13: 00007faf197e6038 R14: 00007faf197e5fa0 R15: 00007ffc25b4b538 [ 1003.026454][ T1357] [ 1003.892579][ T1295] Bluetooth: hci0: command 0x1003 tx timeout [ 1003.898699][ T1294] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 1004.605034][ T1409] netlink: 'syz.0.31249': attribute type 4 has an invalid length. [ 1004.980351][ T1437] sit0: entered promiscuous mode [ 1004.999754][ T1437] netlink: 'syz.3.31263': attribute type 1 has an invalid length. [ 1005.022695][ T1437] netlink: 1 bytes leftover after parsing attributes in process `syz.3.31263'. [ 1005.230370][ T1449] FAULT_INJECTION: forcing a failure. [ 1005.230370][ T1449] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1005.262529][ T1449] CPU: 0 UID: 0 PID: 1449 Comm: syz.1.31270 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1005.262565][ T1449] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1005.262578][ T1449] Call Trace: [ 1005.262584][ T1449] [ 1005.262593][ T1449] __dump_stack+0x21/0x30 [ 1005.262622][ T1449] dump_stack_lvl+0x10c/0x190 [ 1005.262646][ T1449] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1005.262670][ T1449] ? check_stack_object+0x107/0x140 [ 1005.262689][ T1449] dump_stack+0x19/0x20 [ 1005.262712][ T1449] should_fail_ex+0x3d9/0x530 [ 1005.262732][ T1449] should_fail+0xf/0x20 [ 1005.262749][ T1449] should_fail_usercopy+0x1e/0x30 [ 1005.262769][ T1449] _copy_from_user+0x22/0xb0 [ 1005.262792][ T1449] copy_clone_args_from_user+0x1ec/0x6a0 [ 1005.262818][ T1449] ? __delayed_free_task+0x40/0x40 [ 1005.262840][ T1449] ? proc_fail_nth_write+0x17e/0x210 [ 1005.262863][ T1449] ? bpf_lsm_file_permission+0xd/0x20 [ 1005.262889][ T1449] __se_sys_clone3+0xf2/0x2d0 [ 1005.262912][ T1449] ? __x64_sys_clone3+0x80/0x80 [ 1005.262939][ T1449] ? __kasan_check_write+0x18/0x20 [ 1005.262964][ T1449] ? fput+0x1a5/0x240 [ 1005.262988][ T1449] ? __kasan_check_read+0x15/0x20 [ 1005.263013][ T1449] __x64_sys_clone3+0x5f/0x80 [ 1005.263035][ T1449] x64_sys_call+0x28fc/0x2ee0 [ 1005.263060][ T1449] do_syscall_64+0x58/0xf0 [ 1005.263084][ T1449] ? clear_bhb_loop+0x50/0xa0 [ 1005.263104][ T1449] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1005.263124][ T1449] RIP: 0033:0x7fa04d58f6c9 [ 1005.263141][ T1449] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1005.263158][ T1449] RSP: 002b:00007fa04e41af08 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1005.263186][ T1449] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fa04d58f6c9 [ 1005.263201][ T1449] RDX: 00007fa04e41af20 RSI: 0000000000000058 RDI: 00007fa04e41af20 [ 1005.263216][ T1449] RBP: 00007fa04e41b090 R08: 0000000000000000 R09: 0000000000000058 [ 1005.263229][ T1449] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1005.263242][ T1449] R13: 00007fa04d7e6038 R14: 00007fa04d7e5fa0 R15: 00007ffee8f6a358 [ 1005.263258][ T1449] [ 1005.497512][ T36] audit: type=1400 audit(2000000180.740:259): avc: denied { bind } for pid=1450 comm="syz.2.31268" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1 [ 1005.581824][ T1470] 9pnet_fd: Insufficient options for proto=fd [ 1005.618947][ T1473] FAULT_INJECTION: forcing a failure. [ 1005.618947][ T1473] name failslab, interval 1, probability 0, space 0, times 0 [ 1005.657923][ T1473] CPU: 1 UID: 0 PID: 1473 Comm: syz.0.31280 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1005.657966][ T1473] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1005.657979][ T1473] Call Trace: [ 1005.657986][ T1473] [ 1005.657994][ T1473] __dump_stack+0x21/0x30 [ 1005.658024][ T1473] dump_stack_lvl+0x10c/0x190 [ 1005.658048][ T1473] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1005.658071][ T1473] ? __kasan_check_write+0x18/0x20 [ 1005.658097][ T1473] ? proc_fail_nth_write+0x17e/0x210 [ 1005.658120][ T1473] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 1005.658143][ T1473] dump_stack+0x19/0x20 [ 1005.658164][ T1473] should_fail_ex+0x3d9/0x530 [ 1005.658181][ T1473] should_failslab+0xac/0x100 [ 1005.658198][ T1473] kmem_cache_alloc_noprof+0x42/0x430 [ 1005.658220][ T1473] ? getname_flags+0xc6/0x710 [ 1005.658239][ T1473] getname_flags+0xc6/0x710 [ 1005.658256][ T1473] ? build_open_flags+0x487/0x600 [ 1005.658280][ T1473] getname+0x1b/0x30 [ 1005.658297][ T1473] do_sys_openat2+0xcb/0x1c0 [ 1005.658319][ T1473] ? fput+0x1a5/0x240 [ 1005.658339][ T1473] ? do_sys_open+0x100/0x100 [ 1005.658361][ T1473] ? ksys_write+0x1ef/0x250 [ 1005.658378][ T1473] ? __cfi_ksys_write+0x10/0x10 [ 1005.658396][ T1473] __x64_sys_openat+0x13a/0x170 [ 1005.658419][ T1473] x64_sys_call+0xe69/0x2ee0 [ 1005.658445][ T1473] do_syscall_64+0x58/0xf0 [ 1005.658467][ T1473] ? clear_bhb_loop+0x50/0xa0 [ 1005.658487][ T1473] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1005.658507][ T1473] RIP: 0033:0x7faf1958f6c9 [ 1005.658524][ T1473] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1005.658540][ T1473] RSP: 002b:00007faf17ff7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1005.658561][ T1473] RAX: ffffffffffffffda RBX: 00007faf197e5fa0 RCX: 00007faf1958f6c9 [ 1005.658577][ T1473] RDX: 0000000000028181 RSI: 0000200000000180 RDI: ffffffffffffff9c [ 1005.658591][ T1473] RBP: 00007faf17ff7090 R08: 0000000000000000 R09: 0000000000000000 [ 1005.658604][ T1473] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1005.658617][ T1473] R13: 00007faf197e6038 R14: 00007faf197e5fa0 R15: 00007ffc25b4b538 [ 1005.658633][ T1473] [ 1006.062814][ T1498] 9pnet_fd: Insufficient options for proto=fd [ 1006.423235][ T1532] netlink: 'syz.0.31308': attribute type 4 has an invalid length. [ 1006.760647][ T1548] netlink: 80 bytes leftover after parsing attributes in process `syz.3.31317'. [ 1008.175189][ T1605] FAULT_INJECTION: forcing a failure. [ 1008.175189][ T1605] name failslab, interval 1, probability 0, space 0, times 0 [ 1008.200030][ T1605] CPU: 1 UID: 0 PID: 1605 Comm: syz.2.31344 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1008.200064][ T1605] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1008.200077][ T1605] Call Trace: [ 1008.200083][ T1605] [ 1008.200092][ T1605] __dump_stack+0x21/0x30 [ 1008.200121][ T1605] dump_stack_lvl+0x10c/0x190 [ 1008.200144][ T1605] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1008.200168][ T1605] ? __kasan_check_write+0x18/0x20 [ 1008.200195][ T1605] dump_stack+0x19/0x20 [ 1008.200217][ T1605] should_fail_ex+0x3d9/0x530 [ 1008.200237][ T1605] should_failslab+0xac/0x100 [ 1008.200257][ T1605] kmem_cache_alloc_noprof+0x42/0x430 [ 1008.200274][ T1605] ? getname_flags+0xc6/0x710 [ 1008.200293][ T1605] ? __cfi_ksys_write+0x10/0x10 [ 1008.200310][ T1605] getname_flags+0xc6/0x710 [ 1008.200328][ T1605] __x64_sys_rename+0x61/0xa0 [ 1008.200353][ T1605] x64_sys_call+0x150b/0x2ee0 [ 1008.200378][ T1605] do_syscall_64+0x58/0xf0 [ 1008.200401][ T1605] ? clear_bhb_loop+0x50/0xa0 [ 1008.200421][ T1605] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1008.200440][ T1605] RIP: 0033:0x7f223618f6c9 [ 1008.200466][ T1605] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1008.200482][ T1605] RSP: 002b:00007f2237062038 EFLAGS: 00000246 ORIG_RAX: 0000000000000052 [ 1008.200504][ T1605] RAX: ffffffffffffffda RBX: 00007f22363e5fa0 RCX: 00007f223618f6c9 [ 1008.200519][ T1605] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000400 [ 1008.200533][ T1605] RBP: 00007f2237062090 R08: 0000000000000000 R09: 0000000000000000 [ 1008.200546][ T1605] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1008.200558][ T1605] R13: 00007f22363e6038 R14: 00007f22363e5fa0 R15: 00007ffd80261f98 [ 1008.200575][ T1605] [ 1008.517519][ T36] audit: type=1400 audit(2000000183.770:260): avc: denied { ioctl } for pid=1628 comm="syz.2.31354" path="socket:[373333]" dev="sockfs" ino=373333 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 1008.582146][T14163] Bluetooth: hci0: Frame reassembly failed (-84) [ 1009.276889][ T1664] netlink: 'syz.2.31372': attribute type 4 has an invalid length. [ 1010.126873][ T36] audit: type=1400 audit(2000000185.380:261): avc: denied { create } for pid=1695 comm="syz.2.31386" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1 [ 1010.157440][ T36] audit: type=1400 audit(2000000185.380:262): avc: denied { setopt } for pid=1695 comm="syz.2.31386" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1 [ 1010.182386][ T1699] 9pnet_fd: Insufficient options for proto=fd [ 1010.612524][ T1295] Bluetooth: hci0: command 0x1003 tx timeout [ 1010.612586][ T1294] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 1011.775197][T14163] bridge_slave_1: left allmulticast mode [ 1011.780886][T14163] bridge_slave_1: left promiscuous mode [ 1011.792772][T14163] bridge0: port 2(bridge_slave_1) entered disabled state [ 1011.810768][T14163] bridge_slave_0: left allmulticast mode [ 1011.822475][T14163] bridge_slave_0: left promiscuous mode [ 1011.832732][T14163] bridge0: port 1(bridge_slave_0) entered disabled state [ 1011.963289][T14163] veth1_macvtap: left promiscuous mode [ 1011.971922][T14163] veth0_vlan: left promiscuous mode [ 1012.136183][ T1747] bridge0: port 1(bridge_slave_0) entered blocking state [ 1012.148887][ T1747] bridge0: port 1(bridge_slave_0) entered disabled state [ 1012.162523][ T1747] bridge_slave_0: entered allmulticast mode [ 1012.168868][ T1747] bridge_slave_0: entered promiscuous mode [ 1012.176602][ T1747] bridge0: port 2(bridge_slave_1) entered blocking state [ 1012.183658][ T1747] bridge0: port 2(bridge_slave_1) entered disabled state [ 1012.190727][ T1747] bridge_slave_1: entered allmulticast mode [ 1012.197506][ T1747] bridge_slave_1: entered promiscuous mode [ 1012.321729][ T1747] bridge0: port 2(bridge_slave_1) entered blocking state [ 1012.328840][ T1747] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1012.336186][ T1747] bridge0: port 1(bridge_slave_0) entered blocking state [ 1012.343249][ T1747] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1012.363376][T14163] bridge0: port 1(bridge_slave_0) entered disabled state [ 1012.370671][T14163] bridge0: port 2(bridge_slave_1) entered disabled state [ 1012.379804][ T2107] bridge0: port 1(bridge_slave_0) entered blocking state [ 1012.386869][ T2107] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1012.398636][ T2107] bridge0: port 2(bridge_slave_1) entered blocking state [ 1012.405736][ T2107] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1012.409419][ T1780] FAULT_INJECTION: forcing a failure. [ 1012.409419][ T1780] name failslab, interval 1, probability 0, space 0, times 0 [ 1012.426587][ T1780] CPU: 0 UID: 0 PID: 1780 Comm: syz.2.31424 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1012.426620][ T1780] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1012.426632][ T1780] Call Trace: [ 1012.426638][ T1780] [ 1012.426646][ T1780] __dump_stack+0x21/0x30 [ 1012.426676][ T1780] dump_stack_lvl+0x10c/0x190 [ 1012.426700][ T1780] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1012.426723][ T1780] ? __kasan_check_write+0x18/0x20 [ 1012.426758][ T1780] ? proc_fail_nth_write+0x17e/0x210 [ 1012.426781][ T1780] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 1012.426805][ T1780] dump_stack+0x19/0x20 [ 1012.426827][ T1780] should_fail_ex+0x3d9/0x530 [ 1012.426846][ T1780] should_failslab+0xac/0x100 [ 1012.426865][ T1780] kmem_cache_alloc_noprof+0x42/0x430 [ 1012.426883][ T1780] ? getname_flags+0xc6/0x710 [ 1012.426903][ T1780] getname_flags+0xc6/0x710 [ 1012.426921][ T1780] ? build_open_flags+0x487/0x600 [ 1012.426943][ T1780] getname+0x1b/0x30 [ 1012.426959][ T1780] do_sys_openat2+0xcb/0x1c0 [ 1012.426980][ T1780] ? fput+0x1a5/0x240 [ 1012.427000][ T1780] ? do_sys_open+0x100/0x100 [ 1012.427021][ T1780] ? ksys_write+0x1ef/0x250 [ 1012.427038][ T1780] ? __cfi_ksys_write+0x10/0x10 [ 1012.427056][ T1780] __x64_sys_openat+0x13a/0x170 [ 1012.427080][ T1780] x64_sys_call+0xe69/0x2ee0 [ 1012.427105][ T1780] do_syscall_64+0x58/0xf0 [ 1012.427128][ T1780] ? clear_bhb_loop+0x50/0xa0 [ 1012.427150][ T1780] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1012.427169][ T1780] RIP: 0033:0x7f223618f6c9 [ 1012.427186][ T1780] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1012.427203][ T1780] RSP: 002b:00007f2237062038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1012.427224][ T1780] RAX: ffffffffffffffda RBX: 00007f22363e5fa0 RCX: 00007f223618f6c9 [ 1012.427240][ T1780] RDX: 000000000000275a RSI: 0000200000000280 RDI: ffffffffffffff9c [ 1012.427255][ T1780] RBP: 00007f2237062090 R08: 0000000000000000 R09: 0000000000000000 [ 1012.427268][ T1780] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1012.427281][ T1780] R13: 00007f22363e6038 R14: 00007f22363e5fa0 R15: 00007ffd80261f98 [ 1012.427299][ T1780] [ 1012.451067][ T1747] veth0_vlan: entered promiscuous mode [ 1012.664981][ T1747] veth1_macvtap: entered promiscuous mode [ 1013.038540][ T1818] 9pnet_fd: Insufficient options for proto=fd [ 1013.100564][ T1822] netlink: 'syz.1.31445': attribute type 4 has an invalid length. [ 1016.332579][ T1964] netlink: 'syz.0.31515': attribute type 4 has an invalid length. [ 1016.395959][ T1970] 9pnet_fd: Insufficient options for proto=fd [ 1017.894379][ T2111] netlink: 'syz.0.31589': attribute type 4 has an invalid length. [ 1018.344485][ T2149] 9pnet_fd: Insufficient options for proto=fd [ 1018.367315][ T2155] FAULT_INJECTION: forcing a failure. [ 1018.367315][ T2155] name failslab, interval 1, probability 0, space 0, times 0 [ 1018.380211][ T2155] CPU: 1 UID: 0 PID: 2155 Comm: syz.1.31609 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1018.380243][ T2155] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1018.380255][ T2155] Call Trace: [ 1018.380261][ T2155] [ 1018.380268][ T2155] __dump_stack+0x21/0x30 [ 1018.380295][ T2155] dump_stack_lvl+0x10c/0x190 [ 1018.380317][ T2155] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1018.380340][ T2155] ? __kasan_check_write+0x18/0x20 [ 1018.380359][ T2155] ? proc_fail_nth_write+0x17e/0x210 [ 1018.380378][ T2155] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 1018.380391][ T2155] dump_stack+0x19/0x20 [ 1018.380403][ T2155] should_fail_ex+0x3d9/0x530 [ 1018.380414][ T2155] should_failslab+0xac/0x100 [ 1018.380425][ T2155] kmem_cache_alloc_noprof+0x42/0x430 [ 1018.380435][ T2155] ? getname_flags+0xc6/0x710 [ 1018.380446][ T2155] getname_flags+0xc6/0x710 [ 1018.380455][ T2155] ? build_open_flags+0x487/0x600 [ 1018.380468][ T2155] getname+0x1b/0x30 [ 1018.380477][ T2155] do_sys_openat2+0xcb/0x1c0 [ 1018.380489][ T2155] ? fput+0x1a5/0x240 [ 1018.380500][ T2155] ? do_sys_open+0x100/0x100 [ 1018.380511][ T2155] ? ksys_write+0x1ef/0x250 [ 1018.380520][ T2155] ? __cfi_ksys_write+0x10/0x10 [ 1018.380529][ T2155] __x64_sys_openat+0x13a/0x170 [ 1018.380542][ T2155] x64_sys_call+0xe69/0x2ee0 [ 1018.380555][ T2155] do_syscall_64+0x58/0xf0 [ 1018.380568][ T2155] ? clear_bhb_loop+0x50/0xa0 [ 1018.380580][ T2155] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1018.380591][ T2155] RIP: 0033:0x7fa04d58df10 [ 1018.380600][ T2155] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 69 95 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 bc 95 02 00 8b 44 [ 1018.380610][ T2155] RSP: 002b:00007fa04e41af10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 1018.380623][ T2155] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007fa04d58df10 [ 1018.380631][ T2155] RDX: 0000000000000002 RSI: 00007fa04e41afa0 RDI: 00000000ffffff9c [ 1018.380639][ T2155] RBP: 00007fa04e41afa0 R08: 0000000000000000 R09: 0000000000000000 [ 1018.380646][ T2155] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 1018.380652][ T2155] R13: 00007fa04d7e6038 R14: 00007fa04d7e5fa0 R15: 00007ffee8f6a358 [ 1018.380661][ T2155] [ 1018.627738][T14163] Bluetooth: hci0: Frame reassembly failed (-84) [ 1019.652603][ T36] audit: type=1400 audit(2000000194.900:263): avc: denied { create } for pid=2238 comm="syz.3.31650" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1 [ 1019.684705][ T36] audit: type=1400 audit(2000000194.930:264): avc: denied { setcurrent } for pid=2238 comm="syz.3.31650" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 1019.750780][ T2247] 9pnet_fd: Insufficient options for proto=fd [ 1020.692477][ T1294] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 1020.692483][ T1295] Bluetooth: hci0: command 0x1003 tx timeout [ 1020.810138][ T2289] 9pnet_fd: Insufficient options for proto=fd [ 1022.237532][ T2357] 9pnet_fd: Insufficient options for proto=fd [ 1022.513244][ T2383] netlink: 'syz.1.31723': attribute type 4 has an invalid length. [ 1023.504493][ T2441] netlink: 'syz.3.31751': attribute type 4 has an invalid length. [ 1024.321991][ T2477] netlink: 'syz.2.31768': attribute type 4 has an invalid length. [ 1025.238272][ T2551] 9pnet_fd: Insufficient options for proto=fd [ 1025.498621][ T36] audit: type=1400 audit(2000000200.750:265): avc: denied { getattr } for pid=2566 comm="syz.0.31811" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 1026.384190][ T2669] bridge0: port 1(bridge_slave_0) entered blocking state [ 1026.391335][ T2669] bridge0: port 1(bridge_slave_0) entered disabled state [ 1026.398704][ T2669] bridge_slave_0: entered allmulticast mode [ 1026.408243][ T2669] bridge_slave_0: entered promiscuous mode [ 1026.417124][ T2669] bridge0: port 2(bridge_slave_1) entered blocking state [ 1026.425617][ T2669] bridge0: port 2(bridge_slave_1) entered disabled state [ 1026.432864][ T2669] bridge_slave_1: entered allmulticast mode [ 1026.439237][ T2669] bridge_slave_1: entered promiscuous mode [ 1026.455279][T14163] bridge_slave_1: left allmulticast mode [ 1026.466087][T14163] bridge_slave_1: left promiscuous mode [ 1026.474565][T14163] bridge0: port 2(bridge_slave_1) entered disabled state [ 1026.482692][T14163] bridge_slave_0: left allmulticast mode [ 1026.488424][T14163] bridge_slave_0: left promiscuous mode [ 1026.494384][T14163] bridge0: port 1(bridge_slave_0) entered disabled state [ 1026.651220][ T2669] bridge0: port 2(bridge_slave_1) entered blocking state [ 1026.658341][ T2669] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1026.665660][ T2669] bridge0: port 1(bridge_slave_0) entered blocking state [ 1026.672712][ T2669] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1026.683471][T14163] veth1_macvtap: left promiscuous mode [ 1026.689072][T14163] veth0_vlan: left promiscuous mode [ 1026.758908][ T2107] bridge0: port 1(bridge_slave_0) entered disabled state [ 1026.766387][ T2107] bridge0: port 2(bridge_slave_1) entered disabled state [ 1026.785280][ T2107] bridge0: port 1(bridge_slave_0) entered blocking state [ 1026.792337][ T2107] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1026.810010][ T2107] bridge0: port 2(bridge_slave_1) entered blocking state [ 1026.817091][ T2107] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1026.843460][ T2669] veth0_vlan: entered promiscuous mode [ 1026.857213][ T2669] veth1_macvtap: entered promiscuous mode [ 1027.063948][ T2718] netlink: 'syz.3.31880': attribute type 4 has an invalid length. [ 1027.656459][ T2738] 9pnet_fd: Insufficient options for proto=fd [ 1028.643657][ T2792] netlink: 'syz.1.31917': attribute type 4 has an invalid length. [ 1028.703222][ T2796] FAULT_INJECTION: forcing a failure. [ 1028.703222][ T2796] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1028.732586][ T2796] CPU: 1 UID: 0 PID: 2796 Comm: syz.1.31920 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1028.732618][ T2796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1028.732629][ T2796] Call Trace: [ 1028.732635][ T2796] [ 1028.732642][ T2796] __dump_stack+0x21/0x30 [ 1028.732668][ T2796] dump_stack_lvl+0x10c/0x190 [ 1028.732690][ T2796] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1028.732715][ T2796] dump_stack+0x19/0x20 [ 1028.732737][ T2796] should_fail_ex+0x3d9/0x530 [ 1028.732758][ T2796] should_fail+0xf/0x20 [ 1028.732774][ T2796] should_fail_usercopy+0x1e/0x30 [ 1028.732794][ T2796] _copy_from_user+0x22/0xb0 [ 1028.732817][ T2796] lo_ioctl+0x52c/0x1d50 [ 1028.732841][ T2796] ? __cfi_lo_ioctl+0x10/0x10 [ 1028.732862][ T2796] ? stack_depot_save_flags+0x38/0x800 [ 1028.732882][ T2796] ? stack_trace_save+0x9d/0xe0 [ 1028.732908][ T2796] ? kasan_save_track+0x4f/0x80 [ 1028.732927][ T2796] ? kasan_save_track+0x3e/0x80 [ 1028.732943][ T2796] ? kasan_save_alloc_info+0x40/0x50 [ 1028.732963][ T2796] ? __kasan_slab_alloc+0x73/0x90 [ 1028.732981][ T2796] ? kmem_cache_alloc_noprof+0x1cb/0x430 [ 1028.732998][ T2796] ? security_inode_alloc+0x51/0x200 [ 1028.733025][ T2796] ? inode_init_always_gfp+0x756/0x9e0 [ 1028.733045][ T2796] ? alloc_inode+0xc5/0x270 [ 1028.733065][ T2796] ? new_inode+0x25/0x1e0 [ 1028.733085][ T2796] ? proc_pid_make_inode+0x25/0x140 [ 1028.733103][ T2796] ? proc_pident_instantiate+0x6d/0x2c0 [ 1028.733123][ T2796] ? proc_pident_lookup+0x1c7/0x270 [ 1028.733143][ T2796] ? proc_tid_base_lookup+0x2f/0x40 [ 1028.733166][ T2796] ? path_openat+0x1301/0x34b0 [ 1028.733187][ T2796] ? do_filp_open+0x1c6/0x3e0 [ 1028.733207][ T2796] ? do_sys_openat2+0x12c/0x1c0 [ 1028.733230][ T2796] ? __x64_sys_openat+0x13a/0x170 [ 1028.733253][ T2796] ? x64_sys_call+0xe69/0x2ee0 [ 1028.733277][ T2796] ? do_syscall_64+0x58/0xf0 [ 1028.733300][ T2796] ? entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1028.733322][ T2796] ? avc_has_perm_noaudit+0x268/0x360 [ 1028.733356][ T2796] ? __asan_memcpy+0x5a/0x80 [ 1028.733372][ T2796] ? avc_has_perm_noaudit+0x286/0x360 [ 1028.733397][ T2796] ? avc_has_perm+0x144/0x220 [ 1028.733420][ T2796] ? __cfi_avc_has_perm+0x10/0x10 [ 1028.733444][ T2796] ? kasan_save_alloc_info+0x40/0x50 [ 1028.733469][ T2796] ? selinux_file_open+0x457/0x610 [ 1028.733489][ T2796] ? __cfi_selinux_file_open+0x10/0x10 [ 1028.733509][ T2796] ? avc_has_extended_perms+0x7c7/0xdd0 [ 1028.733534][ T2796] ? __asan_memcpy+0x5a/0x80 [ 1028.733551][ T2796] ? avc_has_extended_perms+0x921/0xdd0 [ 1028.733577][ T2796] ? do_vfs_ioctl+0xeda/0x1e30 [ 1028.733596][ T2796] ? arch_stack_walk+0x10b/0x170 [ 1028.733613][ T2796] ? __ia32_compat_sys_ioctl+0x850/0x850 [ 1028.733635][ T2796] ? _parse_integer+0x2e/0x40 [ 1028.733662][ T2796] ? blkdev_common_ioctl+0x10e4/0x2810 [ 1028.733688][ T2796] ? blkdev_bszset+0x220/0x220 [ 1028.733712][ T2796] ? has_cap_mac_admin+0xd0/0xd0 [ 1028.733735][ T2796] ? proc_fail_nth_write+0x17e/0x210 [ 1028.733763][ T2796] ? __kasan_check_write+0x18/0x20 [ 1028.733789][ T2796] ? mutex_unlock+0x8b/0x240 [ 1028.733806][ T2796] ? __cfi_mutex_unlock+0x10/0x10 [ 1028.733823][ T2796] ? __fget_files+0x2c5/0x340 [ 1028.733843][ T2796] ? __cfi_lo_ioctl+0x10/0x10 [ 1028.733864][ T2796] blkdev_ioctl+0x546/0x680 [ 1028.733889][ T2796] ? __cfi_blkdev_ioctl+0x10/0x10 [ 1028.733913][ T2796] ? bpf_lsm_file_ioctl+0xd/0x20 [ 1028.733938][ T2796] ? security_file_ioctl+0x34/0xd0 [ 1028.733958][ T2796] ? __cfi_blkdev_ioctl+0x10/0x10 [ 1028.733982][ T2796] __se_sys_ioctl+0x135/0x1b0 [ 1028.734003][ T2796] __x64_sys_ioctl+0x7f/0xa0 [ 1028.734023][ T2796] x64_sys_call+0x1878/0x2ee0 [ 1028.734048][ T2796] do_syscall_64+0x58/0xf0 [ 1028.734070][ T2796] ? clear_bhb_loop+0x50/0xa0 [ 1028.734090][ T2796] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1028.734110][ T2796] RIP: 0033:0x7f3c9798f6c9 [ 1028.734126][ T2796] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1028.734144][ T2796] RSP: 002b:00007f3c98820038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1028.734165][ T2796] RAX: ffffffffffffffda RBX: 00007f3c97be5fa0 RCX: 00007f3c9798f6c9 [ 1028.734180][ T2796] RDX: 00002000000004c0 RSI: 0000000000004c0a RDI: 0000000000000007 [ 1028.734193][ T2796] RBP: 00007f3c98820090 R08: 0000000000000000 R09: 0000000000000000 [ 1028.734206][ T2796] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1028.734219][ T2796] R13: 00007f3c97be6038 R14: 00007f3c97be5fa0 R15: 00007ffc996a5428 [ 1028.734236][ T2796] [ 1029.844782][ T36] audit: type=1400 audit(2000000205.100:266): avc: denied { create } for pid=2888 comm="syz.1.31964" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1 [ 1029.855430][ T2891] loop5: detected capacity change from 0 to 7 [ 1030.207346][ T2927] binder: Unknown parameter 'c' [ 1030.616538][ T2951] FAULT_INJECTION: forcing a failure. [ 1030.616538][ T2951] name failslab, interval 1, probability 0, space 0, times 0 [ 1030.630814][ T2951] CPU: 1 UID: 0 PID: 2951 Comm: syz.0.31992 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1030.630847][ T2951] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1030.630859][ T2951] Call Trace: [ 1030.630865][ T2951] [ 1030.630875][ T2951] __dump_stack+0x21/0x30 [ 1030.630904][ T2951] dump_stack_lvl+0x10c/0x190 [ 1030.630928][ T2951] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1030.630953][ T2951] ? vfs_write+0x93e/0xf30 [ 1030.630971][ T2951] dump_stack+0x19/0x20 [ 1030.630993][ T2951] should_fail_ex+0x3d9/0x530 [ 1030.631013][ T2951] should_failslab+0xac/0x100 [ 1030.631034][ T2951] __kmalloc_cache_noprof+0x41/0x490 [ 1030.631052][ T2951] ? __se_sys_mount+0x15f/0x480 [ 1030.631071][ T2951] ? putname+0x113/0x150 [ 1030.631090][ T2951] __se_sys_mount+0x15f/0x480 [ 1030.631108][ T2951] ? ksys_write+0x1de/0x250 [ 1030.631126][ T2951] ? __x64_sys_mount+0xf0/0xf0 [ 1030.631145][ T2951] __x64_sys_mount+0xc3/0xf0 [ 1030.631163][ T2951] x64_sys_call+0x2021/0x2ee0 [ 1030.631188][ T2951] do_syscall_64+0x58/0xf0 [ 1030.631212][ T2951] ? clear_bhb_loop+0x50/0xa0 [ 1030.631243][ T2951] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1030.631263][ T2951] RIP: 0033:0x7f9ce6f8f6c9 [ 1030.631279][ T2951] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1030.631295][ T2951] RSP: 002b:00007f9ce59e3038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1030.631315][ T2951] RAX: ffffffffffffffda RBX: 00007f9ce71e5fa0 RCX: 00007f9ce6f8f6c9 [ 1030.631330][ T2951] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000000 [ 1030.631342][ T2951] RBP: 00007f9ce59e3090 R08: 0000200000000200 R09: 0000000000000000 [ 1030.631355][ T2951] R10: 0000000002010860 R11: 0000000000000246 R12: 0000000000000001 [ 1030.631368][ T2951] R13: 00007f9ce71e6038 R14: 00007f9ce71e5fa0 R15: 00007fff35a328e8 [ 1030.631385][ T2951] [ 1030.673099][ T36] audit: type=1400 audit(2000000205.890:267): avc: denied { map } for pid=2963 comm="syz.1.32002" path="socket:[381380]" dev="sockfs" ino=381380 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_route_socket permissive=1 [ 1030.846384][ T36] audit: type=1400 audit(2000000205.940:268): avc: denied { accept } for pid=2963 comm="syz.1.32002" path="socket:[381380]" dev="sockfs" ino=381380 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_route_socket permissive=1 [ 1031.309086][ T3035] FAULT_INJECTION: forcing a failure. [ 1031.309086][ T3035] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1031.342498][ T3035] CPU: 1 UID: 0 PID: 3035 Comm: syz.0.32036 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1031.342529][ T3035] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1031.342542][ T3035] Call Trace: [ 1031.342549][ T3035] [ 1031.342556][ T3035] __dump_stack+0x21/0x30 [ 1031.342581][ T3035] dump_stack_lvl+0x10c/0x190 [ 1031.342604][ T3035] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1031.342629][ T3035] ? check_stack_object+0x12c/0x140 [ 1031.342648][ T3035] dump_stack+0x19/0x20 [ 1031.342670][ T3035] should_fail_ex+0x3d9/0x530 [ 1031.342693][ T3035] should_fail+0xf/0x20 [ 1031.342711][ T3035] should_fail_usercopy+0x1e/0x30 [ 1031.342731][ T3035] _copy_to_user+0x24/0xa0 [ 1031.342754][ T3035] simple_read_from_buffer+0xed/0x160 [ 1031.342777][ T3035] proc_fail_nth_read+0x19e/0x210 [ 1031.342801][ T3035] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 1031.342825][ T3035] ? bpf_lsm_file_permission+0xd/0x20 [ 1031.342849][ T3035] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 1031.342871][ T3035] vfs_read+0x27d/0xc70 [ 1031.342887][ T3035] ? __cfi_vfs_read+0x10/0x10 [ 1031.342902][ T3035] ? __kasan_slab_free+0x6a/0x80 [ 1031.342924][ T3035] ? putname+0x113/0x150 [ 1031.342943][ T3035] ? __kasan_check_read+0x15/0x20 [ 1031.342969][ T3035] ksys_read+0x141/0x250 [ 1031.342986][ T3035] ? __cfi_ksys_read+0x10/0x10 [ 1031.343004][ T3035] ? __kasan_check_read+0x15/0x20 [ 1031.343029][ T3035] __x64_sys_read+0x7f/0x90 [ 1031.343046][ T3035] x64_sys_call+0x2638/0x2ee0 [ 1031.343072][ T3035] do_syscall_64+0x58/0xf0 [ 1031.343095][ T3035] ? clear_bhb_loop+0x50/0xa0 [ 1031.343115][ T3035] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1031.343134][ T3035] RIP: 0033:0x7f9ce6f8e0dc [ 1031.343152][ T3035] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 1031.343168][ T3035] RSP: 002b:00007f9ce59e3030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1031.343189][ T3035] RAX: ffffffffffffffda RBX: 00007f9ce71e5fa0 RCX: 00007f9ce6f8e0dc [ 1031.343204][ T3035] RDX: 000000000000000f RSI: 00007f9ce59e30a0 RDI: 0000000000000008 [ 1031.343217][ T3035] RBP: 00007f9ce59e3090 R08: 0000000000000000 R09: 0000000000000000 [ 1031.343239][ T3035] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1031.343251][ T3035] R13: 00007f9ce71e6038 R14: 00007f9ce71e5fa0 R15: 00007fff35a328e8 [ 1031.343267][ T3035] [ 1031.781355][ T3060] FAULT_INJECTION: forcing a failure. [ 1031.781355][ T3060] name failslab, interval 1, probability 0, space 0, times 0 [ 1031.794222][ T3060] CPU: 0 UID: 0 PID: 3060 Comm: syz.0.32048 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1031.794254][ T3060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1031.794266][ T3060] Call Trace: [ 1031.794272][ T3060] [ 1031.794280][ T3060] __dump_stack+0x21/0x30 [ 1031.794310][ T3060] dump_stack_lvl+0x10c/0x190 [ 1031.794333][ T3060] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1031.794358][ T3060] ? avc_has_extended_perms+0x921/0xdd0 [ 1031.794383][ T3060] dump_stack+0x19/0x20 [ 1031.794405][ T3060] should_fail_ex+0x3d9/0x530 [ 1031.794424][ T3060] should_failslab+0xac/0x100 [ 1031.794454][ T3060] __kmalloc_cache_node_noprof+0x46/0x450 [ 1031.794474][ T3060] ? __get_vm_area_node+0x154/0x3a0 [ 1031.794498][ T3060] __get_vm_area_node+0x154/0x3a0 [ 1031.794522][ T3060] __vmalloc_node_range_noprof+0x33c/0x1420 [ 1031.794546][ T3060] ? kvm_dev_ioctl+0x125/0x14d0 [ 1031.794572][ T3060] ? number+0xd21/0xf80 [ 1031.794595][ T3060] ? pointer+0xdd0/0xdd0 [ 1031.794617][ T3060] ? __cfi___vmalloc_node_range_noprof+0x10/0x10 [ 1031.794642][ T3060] ? vsnprintf+0x19b8/0x1aa0 [ 1031.794664][ T3060] ? kvm_dev_ioctl+0x125/0x14d0 [ 1031.794688][ T3060] __vmalloc_noprof+0xfe/0x1d0 [ 1031.794712][ T3060] ? kvm_dev_ioctl+0x125/0x14d0 [ 1031.794736][ T3060] ? alloc_fd+0x4e7/0x5a0 [ 1031.794754][ T3060] ? __cfi___vmalloc_noprof+0x10/0x10 [ 1031.794780][ T3060] kvm_dev_ioctl+0x125/0x14d0 [ 1031.794804][ T3060] ? __fget_files+0x2c5/0x340 [ 1031.794824][ T3060] ? __cfi_kvm_dev_ioctl+0x10/0x10 [ 1031.794849][ T3060] ? bpf_lsm_file_ioctl+0xd/0x20 [ 1031.794873][ T3060] ? security_file_ioctl+0x34/0xd0 [ 1031.794893][ T3060] ? __cfi_kvm_dev_ioctl+0x10/0x10 [ 1031.794917][ T3060] __se_sys_ioctl+0x135/0x1b0 [ 1031.794938][ T3060] __x64_sys_ioctl+0x7f/0xa0 [ 1031.794958][ T3060] x64_sys_call+0x1878/0x2ee0 [ 1031.794983][ T3060] do_syscall_64+0x58/0xf0 [ 1031.795006][ T3060] ? clear_bhb_loop+0x50/0xa0 [ 1031.795026][ T3060] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1031.795046][ T3060] RIP: 0033:0x7f9ce6f8f6c9 [ 1031.795063][ T3060] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1031.795079][ T3060] RSP: 002b:00007f9ce59e3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1031.795100][ T3060] RAX: ffffffffffffffda RBX: 00007f9ce71e5fa0 RCX: 00007f9ce6f8f6c9 [ 1031.795115][ T3060] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000007 [ 1031.795128][ T3060] RBP: 00007f9ce59e3090 R08: 0000000000000000 R09: 0000000000000000 [ 1031.795141][ T3060] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1031.795153][ T3060] R13: 00007f9ce71e6038 R14: 00007f9ce71e5fa0 R15: 00007fff35a328e8 [ 1031.795169][ T3060] [ 1031.795179][ T3060] syz.0.32048: vmalloc error: size 39304, vm_struct allocation failed, mode:0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null),cpuset=syz0,mems_allowed=0 [ 1032.080481][ T3060] CPU: 0 UID: 0 PID: 3060 Comm: syz.0.32048 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1032.080510][ T3060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1032.080522][ T3060] Call Trace: [ 1032.080528][ T3060] [ 1032.080537][ T3060] __dump_stack+0x21/0x30 [ 1032.080565][ T3060] dump_stack_lvl+0x10c/0x190 [ 1032.080587][ T3060] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1032.080610][ T3060] ? _raw_spin_unlock_irqrestore+0x4a/0x70 [ 1032.080635][ T3060] dump_stack+0x19/0x20 [ 1032.080656][ T3060] warn_alloc+0x1bc/0x2a0 [ 1032.080678][ T3060] ? __kasan_kmalloc+0x28/0xb0 [ 1032.080698][ T3060] ? __cfi_warn_alloc+0x10/0x10 [ 1032.080721][ T3060] ? __get_vm_area_node+0x392/0x3a0 [ 1032.080745][ T3060] __vmalloc_node_range_noprof+0x361/0x1420 [ 1032.080769][ T3060] ? number+0xd21/0xf80 [ 1032.080791][ T3060] ? pointer+0xdd0/0xdd0 [ 1032.080813][ T3060] ? __cfi___vmalloc_node_range_noprof+0x10/0x10 [ 1032.080838][ T3060] ? vsnprintf+0x19b8/0x1aa0 [ 1032.080859][ T3060] ? kvm_dev_ioctl+0x125/0x14d0 [ 1032.080884][ T3060] __vmalloc_noprof+0xfe/0x1d0 [ 1032.080906][ T3060] ? kvm_dev_ioctl+0x125/0x14d0 [ 1032.080930][ T3060] ? alloc_fd+0x4e7/0x5a0 [ 1032.080947][ T3060] ? __cfi___vmalloc_noprof+0x10/0x10 [ 1032.080972][ T3060] kvm_dev_ioctl+0x125/0x14d0 [ 1032.080997][ T3060] ? __fget_files+0x2c5/0x340 [ 1032.081015][ T3060] ? __cfi_kvm_dev_ioctl+0x10/0x10 [ 1032.081039][ T3060] ? bpf_lsm_file_ioctl+0xd/0x20 [ 1032.081062][ T3060] ? security_file_ioctl+0x34/0xd0 [ 1032.081082][ T3060] ? __cfi_kvm_dev_ioctl+0x10/0x10 [ 1032.081105][ T3060] __se_sys_ioctl+0x135/0x1b0 [ 1032.081124][ T3060] __x64_sys_ioctl+0x7f/0xa0 [ 1032.081143][ T3060] x64_sys_call+0x1878/0x2ee0 [ 1032.081167][ T3060] do_syscall_64+0x58/0xf0 [ 1032.081189][ T3060] ? clear_bhb_loop+0x50/0xa0 [ 1032.081209][ T3060] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1032.081228][ T3060] RIP: 0033:0x7f9ce6f8f6c9 [ 1032.081243][ T3060] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1032.081258][ T3060] RSP: 002b:00007f9ce59e3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1032.081279][ T3060] RAX: ffffffffffffffda RBX: 00007f9ce71e5fa0 RCX: 00007f9ce6f8f6c9 [ 1032.081292][ T3060] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000007 [ 1032.081304][ T3060] RBP: 00007f9ce59e3090 R08: 0000000000000000 R09: 0000000000000000 [ 1032.081315][ T3060] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1032.081326][ T3060] R13: 00007f9ce71e6038 R14: 00007f9ce71e5fa0 R15: 00007fff35a328e8 [ 1032.081342][ T3060] [ 1032.081350][ T3060] Mem-Info: [ 1032.340416][ T3060] active_anon:14180 inactive_anon:1 isolated_anon:0 [ 1032.340416][ T3060] active_file:23535 inactive_file:2737 isolated_file:0 [ 1032.340416][ T3060] unevictable:0 dirty:277 writeback:0 [ 1032.340416][ T3060] slab_reclaimable:9477 slab_unreclaimable:67953 [ 1032.340416][ T3060] mapped:25253 shmem:9617 pagetables:702 [ 1032.340416][ T3060] sec_pagetables:0 bounce:0 [ 1032.340416][ T3060] kernel_misc_reclaimable:0 [ 1032.340416][ T3060] free:1506664 free_pcp:13259 free_cma:0 [ 1032.385442][ T3060] Node 0 active_anon:30320kB inactive_anon:4kB active_file:94140kB inactive_file:10948kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:101012kB dirty:1108kB writeback:0kB shmem:12068kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:4840kB pagetables:2808kB sec_pagetables:0kB all_unreclaimable? no [ 1032.424360][ T3060] DMA32 free:2960212kB boost:0kB min:19088kB low:23860kB high:28632kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3145324kB managed:2965936kB mlocked:0kB bounce:0kB free_pcp:5724kB local_pcp:5724kB free_cma:0kB [ 1032.454323][ T3060] lowmem_reserve[]: 0 3921 3921 [ 1032.459516][ T3060] Normal free:3066220kB boost:0kB min:25964kB low:32452kB high:38940kB reserved_highatomic:0KB free_highatomic:0KB active_anon:18900kB inactive_anon:4kB active_file:94140kB inactive_file:10948kB unevictable:0kB writepending:1136kB present:5242880kB managed:4016120kB mlocked:0kB bounce:0kB free_pcp:85216kB local_pcp:74656kB free_cma:0kB [ 1032.491760][ T3060] lowmem_reserve[]: 0 0 0 [ 1032.496504][ T3060] DMA32: 5*4kB (M) 4*8kB (M) 4*16kB (M) 5*32kB (M) 3*64kB (M) 3*128kB (M) 4*256kB (M) 4*512kB (M) 5*1024kB (UM) 5*2048kB (M) 718*4096kB (M) = 2960212kB [ 1032.512847][ T3060] Normal: 1294*4kB (UME) 1150*8kB (UME) 1153*16kB (UME) 64*32kB (UME) 480*64kB (UME) 256*128kB (UME) 188*256kB (UME) 138*512kB (UME) 113*1024kB (UME) 46*2048kB (UME) 646*4096kB (UME) = 3073080kB [ 1032.532169][ T3060] 26437 total pagecache pages [ 1032.536905][ T3060] 4 pages in swap cache [ 1032.541658][ T3060] Free swap = 124600kB [ 1032.546347][ T3060] Total swap = 124996kB [ 1032.550652][ T3060] 2097051 pages RAM [ 1032.554754][ T3060] 0 pages HighMem/MovableOnly [ 1032.559787][ T3060] 351537 pages reserved [ 1032.564027][ T3060] 0 pages cma reserved [ 1032.569273][ T3060] Memory allocations: [ 1032.573518][ T3060] 0 B 0 init/main.c:1370 func:do_initcalls [ 1032.580909][ T3060] 0 B 0 init/do_mounts.c:186 func:mount_root_generic [ 1032.589259][ T3060] 0 B 0 init/do_mounts.c:158 func:do_mount_root [ 1032.597393][ T3060] 0 B 0 init/do_mounts.c:352 func:mount_nodev_root [ 1032.605511][ T3060] 0 B 0 init/do_mounts_rd.c:241 func:rd_load_image [ 1032.618835][ T3060] 0 B 0 init/do_mounts_rd.c:72 func:identify_ramdisk_image [ 1032.627712][ T3060] 0 B 0 init/initramfs.c:507 func:unpack_to_rootfs [ 1032.635863][ T3060] 0 B 0 init/initramfs.c:508 func:unpack_to_rootfs [ 1032.644029][ T3060] 0 B 0 init/initramfs.c:509 func:unpack_to_rootfs [ 1032.652092][ T3060] 0 B 0 init/initramfs.c:101 func:find_link [ 1032.853099][T31927] Bluetooth: hci0: Frame reassembly failed (-84) [ 1033.076324][ T3115] loop5: detected capacity change from 0 to 7 [ 1033.273218][ T36] audit: type=1400 audit(2000000208.530:269): avc: denied { getopt } for pid=3124 comm="syz.1.32079" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 1033.362195][ T3139] FAULT_INJECTION: forcing a failure. [ 1033.362195][ T3139] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1033.375740][ T3139] CPU: 1 UID: 0 PID: 3139 Comm: syz.1.32087 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1033.375773][ T3139] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1033.375786][ T3139] Call Trace: [ 1033.375792][ T3139] [ 1033.375798][ T3139] __dump_stack+0x21/0x30 [ 1033.375826][ T3139] dump_stack_lvl+0x10c/0x190 [ 1033.375847][ T3139] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1033.375871][ T3139] ? proc_fail_nth_write+0x17e/0x210 [ 1033.375896][ T3139] ? check_stack_object+0x107/0x140 [ 1033.375914][ T3139] dump_stack+0x19/0x20 [ 1033.375935][ T3139] should_fail_ex+0x3d9/0x530 [ 1033.375955][ T3139] should_fail+0xf/0x20 [ 1033.375971][ T3139] should_fail_usercopy+0x1e/0x30 [ 1033.375990][ T3139] _copy_from_user+0x22/0xb0 [ 1033.376012][ T3139] __tun_chr_ioctl+0x1f2/0x1f10 [ 1033.376033][ T3139] ? __kasan_check_write+0x18/0x20 [ 1033.376059][ T3139] ? tun_flow_create+0x410/0x410 [ 1033.376078][ T3139] ? __fget_files+0x2c5/0x340 [ 1033.376109][ T3139] ? __fget_files+0x2c5/0x340 [ 1033.376129][ T3139] tun_chr_ioctl+0x2e/0x40 [ 1033.376147][ T3139] ? __cfi_tun_chr_ioctl+0x10/0x10 [ 1033.376165][ T3139] __se_sys_ioctl+0x135/0x1b0 [ 1033.376186][ T3139] __x64_sys_ioctl+0x7f/0xa0 [ 1033.376205][ T3139] x64_sys_call+0x1878/0x2ee0 [ 1033.376229][ T3139] do_syscall_64+0x58/0xf0 [ 1033.376251][ T3139] ? clear_bhb_loop+0x50/0xa0 [ 1033.376271][ T3139] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1033.376290][ T3139] RIP: 0033:0x7f3c9798f6c9 [ 1033.376306][ T3139] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1033.376323][ T3139] RSP: 002b:00007f3c98820038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1033.376343][ T3139] RAX: ffffffffffffffda RBX: 00007f3c97be5fa0 RCX: 00007f3c9798f6c9 [ 1033.376357][ T3139] RDX: 00002000000000c0 RSI: 00000000400454ca RDI: 0000000000000008 [ 1033.376371][ T3139] RBP: 00007f3c98820090 R08: 0000000000000000 R09: 0000000000000000 [ 1033.376384][ T3139] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1033.376396][ T3139] R13: 00007f3c97be6038 R14: 00007f3c97be5fa0 R15: 00007ffc996a5428 [ 1033.376412][ T3139] [ 1033.679055][ T3157] loop5: detected capacity change from 0 to 7 [ 1034.085215][ T36] audit: type=1400 audit(2000000209.340:270): avc: denied { ioctl } for pid=3196 comm="syz.3.32115" path="socket:[383049]" dev="sockfs" ino=383049 ioctlcmd=0x8946 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 1034.370333][ T3231] rust_binder: Read failure Err(EAGAIN) in pid:598 [ 1034.701367][ T3269] 9pnet_fd: Insufficient options for proto=fd [ 1034.932525][ T1294] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 1034.938691][ T1295] Bluetooth: hci0: command 0x1003 tx timeout [ 1035.291973][ T3333] 9pnet_fd: Insufficient options for proto=fd [ 1035.337194][ T3339] rust_binder: Read failure Err(EAGAIN) in pid:174 [ 1037.404954][ T3461] 9pnet_fd: Insufficient options for proto=fd [ 1038.269925][ T3492] rust_binder: Read failure Err(EAGAIN) in pid:413 [ 1041.137816][ T3845] rust_binder: Read failure Err(EAGAIN) in pid:549 [ 1041.353508][ T3877] FAULT_INJECTION: forcing a failure. [ 1041.353508][ T3877] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1041.382481][ T3877] CPU: 1 UID: 0 PID: 3877 Comm: syz.1.32451 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1041.382513][ T3877] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1041.382524][ T3877] Call Trace: [ 1041.382530][ T3877] [ 1041.382538][ T3877] __dump_stack+0x21/0x30 [ 1041.382576][ T3877] dump_stack_lvl+0x10c/0x190 [ 1041.382599][ T3877] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1041.382622][ T3877] ? check_stack_object+0x12c/0x140 [ 1041.382639][ T3877] dump_stack+0x19/0x20 [ 1041.382661][ T3877] should_fail_ex+0x3d9/0x530 [ 1041.382680][ T3877] should_fail+0xf/0x20 [ 1041.382697][ T3877] should_fail_usercopy+0x1e/0x30 [ 1041.382717][ T3877] _copy_to_user+0x24/0xa0 [ 1041.382738][ T3877] simple_read_from_buffer+0xed/0x160 [ 1041.382762][ T3877] proc_fail_nth_read+0x19e/0x210 [ 1041.382786][ T3877] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 1041.382809][ T3877] ? bpf_lsm_file_permission+0xd/0x20 [ 1041.382833][ T3877] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 1041.382855][ T3877] vfs_read+0x27d/0xc70 [ 1041.382873][ T3877] ? __cfi_vfs_read+0x10/0x10 [ 1041.382887][ T3877] ? __kasan_check_write+0x18/0x20 [ 1041.382911][ T3877] ? mutex_lock+0x92/0x1c0 [ 1041.382928][ T3877] ? __cfi_mutex_lock+0x10/0x10 [ 1041.382942][ T3877] ? __fget_files+0x2c5/0x340 [ 1041.382962][ T3877] ksys_read+0x141/0x250 [ 1041.382978][ T3877] ? __cfi_ksys_read+0x10/0x10 [ 1041.382995][ T3877] ? __kasan_check_read+0x15/0x20 [ 1041.383015][ T3877] __x64_sys_read+0x7f/0x90 [ 1041.383029][ T3877] x64_sys_call+0x2638/0x2ee0 [ 1041.383049][ T3877] do_syscall_64+0x58/0xf0 [ 1041.383067][ T3877] ? clear_bhb_loop+0x50/0xa0 [ 1041.383084][ T3877] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1041.383100][ T3877] RIP: 0033:0x7f3c9798e0dc [ 1041.383114][ T3877] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 1041.383127][ T3877] RSP: 002b:00007f3c98820030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1041.383145][ T3877] RAX: ffffffffffffffda RBX: 00007f3c97be5fa0 RCX: 00007f3c9798e0dc [ 1041.383157][ T3877] RDX: 000000000000000f RSI: 00007f3c988200a0 RDI: 000000000000000a [ 1041.383167][ T3877] RBP: 00007f3c98820090 R08: 0000000000000000 R09: 0000000000000000 [ 1041.383178][ T3877] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000001 [ 1041.383188][ T3877] R13: 00007f3c97be6038 R14: 00007f3c97be5fa0 R15: 00007ffc996a5428 [ 1041.383201][ T3877] [ 1042.720786][ T3978] rust_binder: Read failure Err(EAGAIN) in pid:267 [ 1043.819655][ T4067] rust_binder: Read failure Err(EAGAIN) in pid:291 [ 1043.953493][ T4089] rust_binder: Read failure Err(EAGAIN) in pid:614 [ 1043.997611][ T4097] 9pnet_fd: Insufficient options for proto=fd [ 1044.118856][ T4111] rust_binder: Read failure Err(EAGAIN) in pid:305 [ 1044.186459][ T4118] 9pnet_fd: Insufficient options for proto=fd [ 1044.282629][ T4125] 9pnet_fd: Insufficient options for proto=fd [ 1044.516847][ T36] audit: type=1400 audit(2000000219.770:271): avc: denied { set_context_mgr } for pid=4148 comm="syz.2.32585" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1 [ 1044.548733][ T36] audit: type=1400 audit(2000000219.770:272): avc: denied { call } for pid=4148 comm="syz.2.32585" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1 [ 1044.571619][ T36] audit: type=1400 audit(2000000219.770:273): avc: denied { transfer } for pid=4148 comm="syz.2.32585" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1 [ 1047.083910][ T4313] 9pnet_fd: Insufficient options for proto=fd [ 1049.137073][ T4365] 9pnet_fd: Insufficient options for proto=fd [ 1049.908346][ T4381] rust_binder: Read failure Err(EAGAIN) in pid:384 [ 1050.487474][ T4411] 9pnet_fd: Insufficient options for proto=fd [ 1051.825766][ T4435] rust_binder: Read failure Err(EAGAIN) in pid:398 [ 1052.026240][ T4453] 9pnet_fd: Insufficient options for proto=fd [ 1052.115222][ T4457] rust_binder: Read failure Err(EAGAIN) in pid:1067 [ 1053.285808][ T4551] 9pnet_fd: Insufficient options for proto=fd [ 1053.485686][ T4570] rust_binder: Read failure Err(EAGAIN) in pid:742 [ 1057.354990][ T4807] 9pnet_fd: Insufficient options for proto=fd [ 1058.021673][ T4857] rust_binder: Read failure Err(EAGAIN) in pid:802 [ 1058.083340][ T4863] 9pnet_fd: Insufficient options for proto=fd [ 1058.238956][ T4880] rust_binder: Read failure Err(EAGAIN) in pid:1147 [ 1058.335162][ T4895] rust_binder: Read failure Err(EAGAIN) in pid:1157 [ 1058.660393][ T4936] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL } [ 1058.667387][ T4936] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:1173 [ 1058.810963][ T4961] 9pnet_fd: Insufficient options for proto=fd [ 1059.822714][ T5009] 9pnet_fd: Insufficient options for proto=fd [ 1060.116186][ T5035] rust_binder: Read failure Err(EAGAIN) in pid:847 [ 1060.152289][ T5041] 9pnet_fd: Insufficient options for proto=fd [ 1060.180827][ T5043] 9pnet_fd: Insufficient options for proto=fd [ 1060.270580][T14163] Bluetooth: hci0: Frame reassembly failed (-84) [ 1060.877469][ T5077] rust_binder: Read failure Err(EAGAIN) in pid:1019 [ 1061.393353][ T5091] 9pnet_fd: Insufficient options for proto=fd [ 1061.720640][ T5131] 9pnet_fd: Insufficient options for proto=fd [ 1061.796258][T14163] bridge_slave_1: left allmulticast mode [ 1061.801934][T14163] bridge_slave_1: left promiscuous mode [ 1061.807798][T14163] bridge0: port 2(bridge_slave_1) entered disabled state [ 1061.815721][T14163] bridge_slave_0: left allmulticast mode [ 1061.821462][T14163] bridge_slave_0: left promiscuous mode [ 1061.827421][T14163] bridge0: port 1(bridge_slave_0) entered disabled state [ 1061.930799][ T5134] bridge0: port 1(bridge_slave_0) entered blocking state [ 1061.939900][ T5134] bridge0: port 1(bridge_slave_0) entered disabled state [ 1061.947158][ T5134] bridge_slave_0: entered allmulticast mode [ 1061.953863][ T5134] bridge_slave_0: entered promiscuous mode [ 1061.960783][T14163] veth1_macvtap: left promiscuous mode [ 1061.966571][T14163] veth0_vlan: left promiscuous mode [ 1062.027715][ T5134] bridge0: port 2(bridge_slave_1) entered blocking state [ 1062.042481][ T5134] bridge0: port 2(bridge_slave_1) entered disabled state [ 1062.059596][ T5134] bridge_slave_1: entered allmulticast mode [ 1062.072284][ T5153] 9pnet_fd: Insufficient options for proto=fd [ 1062.072942][ T5134] bridge_slave_1: entered promiscuous mode [ 1062.193585][ T5134] bridge0: port 2(bridge_slave_1) entered blocking state [ 1062.200661][ T5134] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1062.207988][ T5134] bridge0: port 1(bridge_slave_0) entered blocking state [ 1062.215056][ T5134] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1062.239027][T31927] bridge0: port 1(bridge_slave_0) entered disabled state [ 1062.246488][T31927] bridge0: port 2(bridge_slave_1) entered disabled state [ 1062.255712][ T5177] 9pnet_fd: Insufficient options for proto=fd [ 1062.263147][ T329] bridge0: port 1(bridge_slave_0) entered blocking state [ 1062.270173][ T329] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1062.279844][ T329] bridge0: port 2(bridge_slave_1) entered blocking state [ 1062.286917][ T329] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1062.294879][ T1295] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 1062.327138][ T5134] veth0_vlan: entered promiscuous mode [ 1062.330447][ T5185] rust_binder: Read failure Err(EAGAIN) in pid:855 [ 1062.338925][ T5134] veth1_macvtap: entered promiscuous mode [ 1062.395229][ T5195] FAULT_INJECTION: forcing a failure. [ 1062.395229][ T5195] name failslab, interval 1, probability 0, space 0, times 0 [ 1062.413470][ T5195] CPU: 1 UID: 0 PID: 5195 Comm: syz.2.33096 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1062.413504][ T5195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1062.413516][ T5195] Call Trace: [ 1062.413523][ T5195] [ 1062.413531][ T5195] __dump_stack+0x21/0x30 [ 1062.413560][ T5195] dump_stack_lvl+0x10c/0x190 [ 1062.413583][ T5195] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1062.413605][ T5195] ? __kasan_check_write+0x18/0x20 [ 1062.413629][ T5195] ? proc_fail_nth_write+0x17e/0x210 [ 1062.413652][ T5195] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 1062.413675][ T5195] dump_stack+0x19/0x20 [ 1062.413697][ T5195] should_fail_ex+0x3d9/0x530 [ 1062.413716][ T5195] should_failslab+0xac/0x100 [ 1062.413735][ T5195] kmem_cache_alloc_noprof+0x42/0x430 [ 1062.413751][ T5195] ? getname_flags+0xc6/0x710 [ 1062.413769][ T5195] getname_flags+0xc6/0x710 [ 1062.413786][ T5195] ? build_open_flags+0x487/0x600 [ 1062.413808][ T5195] getname+0x1b/0x30 [ 1062.413824][ T5195] do_sys_openat2+0xcb/0x1c0 [ 1062.413845][ T5195] ? fput+0x1a5/0x240 [ 1062.413864][ T5195] ? do_sys_open+0x100/0x100 [ 1062.413884][ T5195] ? ksys_write+0x1ef/0x250 [ 1062.413900][ T5195] ? __cfi_ksys_write+0x10/0x10 [ 1062.413916][ T5195] __x64_sys_openat+0x13a/0x170 [ 1062.413939][ T5195] x64_sys_call+0xe69/0x2ee0 [ 1062.413961][ T5195] do_syscall_64+0x58/0xf0 [ 1062.413982][ T5195] ? clear_bhb_loop+0x50/0xa0 [ 1062.414002][ T5195] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1062.414020][ T5195] RIP: 0033:0x7f223618f6c9 [ 1062.414036][ T5195] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1062.414052][ T5195] RSP: 002b:00007f2237062038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1062.414074][ T5195] RAX: ffffffffffffffda RBX: 00007f22363e5fa0 RCX: 00007f223618f6c9 [ 1062.414089][ T5195] RDX: 0000000000000000 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 1062.414102][ T5195] RBP: 00007f2237062090 R08: 0000000000000000 R09: 0000000000000000 [ 1062.414114][ T5195] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1062.414124][ T5195] R13: 00007f22363e6038 R14: 00007f22363e5fa0 R15: 00007ffd80261f98 [ 1062.414140][ T5195] [ 1062.484564][ T5209] rust_binder: Read failure Err(EAGAIN) in pid:708 [ 1062.707229][ T5225] 9pnet_fd: Insufficient options for proto=fd [ 1062.828984][ T5241] 9pnet_fd: Insufficient options for proto=fd [ 1062.906683][ T5250] rust_binder: Read failure Err(EAGAIN) in pid:14 [ 1062.984597][ T5260] 9pnet_fd: Insufficient options for proto=fd [ 1063.124344][ T5271] rust_binder: Read failure Err(EAGAIN) in pid:1053 [ 1063.133589][ T5274] overlayfs: missing 'workdir' [ 1063.344734][ T36] audit: type=1400 audit(2000000238.600:274): avc: denied { bind } for pid=5300 comm="syz.3.33150" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 1063.532560][ T5319] rust_binder: Read failure Err(EAGAIN) in pid:1071 [ 1063.566320][ T5321] 9pnet_fd: Insufficient options for proto=fd [ 1063.645092][ T5325] 9pnet_fd: Insufficient options for proto=fd [ 1064.019573][ T5344] FAULT_INJECTION: forcing a failure. [ 1064.019573][ T5344] name failslab, interval 1, probability 0, space 0, times 0 [ 1064.052537][ T5344] CPU: 0 UID: 0 PID: 5344 Comm: syz.2.33171 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1064.052570][ T5344] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1064.052581][ T5344] Call Trace: [ 1064.052588][ T5344] [ 1064.052596][ T5344] __dump_stack+0x21/0x30 [ 1064.052624][ T5344] dump_stack_lvl+0x10c/0x190 [ 1064.052645][ T5344] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1064.052668][ T5344] ? avc_has_extended_perms+0x921/0xdd0 [ 1064.052693][ T5344] dump_stack+0x19/0x20 [ 1064.052714][ T5344] should_fail_ex+0x3d9/0x530 [ 1064.052732][ T5344] should_failslab+0xac/0x100 [ 1064.052749][ T5344] __kmalloc_cache_node_noprof+0x46/0x450 [ 1064.052766][ T5344] ? __get_vm_area_node+0x154/0x3a0 [ 1064.052787][ T5344] __get_vm_area_node+0x154/0x3a0 [ 1064.052804][ T5344] __vmalloc_node_range_noprof+0x33c/0x1420 [ 1064.052826][ T5344] ? kvm_dev_ioctl+0x125/0x14d0 [ 1064.052850][ T5344] ? number+0xd21/0xf80 [ 1064.052875][ T5344] ? pointer+0xdd0/0xdd0 [ 1064.052896][ T5344] ? __cfi___vmalloc_node_range_noprof+0x10/0x10 [ 1064.052921][ T5344] ? vsnprintf+0x19b8/0x1aa0 [ 1064.052942][ T5344] ? kvm_dev_ioctl+0x125/0x14d0 [ 1064.052967][ T5344] __vmalloc_noprof+0xfe/0x1d0 [ 1064.052989][ T5344] ? kvm_dev_ioctl+0x125/0x14d0 [ 1064.053012][ T5344] ? alloc_fd+0x4e7/0x5a0 [ 1064.053029][ T5344] ? __cfi___vmalloc_noprof+0x10/0x10 [ 1064.053054][ T5344] kvm_dev_ioctl+0x125/0x14d0 [ 1064.053079][ T5344] ? __fget_files+0x2c5/0x340 [ 1064.053098][ T5344] ? __cfi_kvm_dev_ioctl+0x10/0x10 [ 1064.053123][ T5344] ? bpf_lsm_file_ioctl+0xd/0x20 [ 1064.053146][ T5344] ? security_file_ioctl+0x34/0xd0 [ 1064.053166][ T5344] ? __cfi_kvm_dev_ioctl+0x10/0x10 [ 1064.053190][ T5344] __se_sys_ioctl+0x135/0x1b0 [ 1064.053211][ T5344] __x64_sys_ioctl+0x7f/0xa0 [ 1064.053230][ T5344] x64_sys_call+0x1878/0x2ee0 [ 1064.053262][ T5344] do_syscall_64+0x58/0xf0 [ 1064.053284][ T5344] ? clear_bhb_loop+0x50/0xa0 [ 1064.053306][ T5344] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1064.053325][ T5344] RIP: 0033:0x7f223618f6c9 [ 1064.053341][ T5344] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1064.053357][ T5344] RSP: 002b:00007f2237062038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1064.053378][ T5344] RAX: ffffffffffffffda RBX: 00007f22363e5fa0 RCX: 00007f223618f6c9 [ 1064.053392][ T5344] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000008 [ 1064.053405][ T5344] RBP: 00007f2237062090 R08: 0000000000000000 R09: 0000000000000000 [ 1064.053417][ T5344] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1064.053430][ T5344] R13: 00007f22363e6038 R14: 00007f22363e5fa0 R15: 00007ffd80261f98 [ 1064.053446][ T5344] [ 1064.053511][ T5344] syz.2.33171: vmalloc error: size 39304, vm_struct allocation failed, mode:0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null),cpuset=syz2,mems_allowed=0 [ 1064.336515][ T5344] CPU: 0 UID: 0 PID: 5344 Comm: syz.2.33171 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1064.336545][ T5344] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1064.336557][ T5344] Call Trace: [ 1064.336564][ T5344] [ 1064.336571][ T5344] __dump_stack+0x21/0x30 [ 1064.336598][ T5344] dump_stack_lvl+0x10c/0x190 [ 1064.336620][ T5344] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1064.336642][ T5344] ? _raw_spin_unlock_irqrestore+0x4a/0x70 [ 1064.336667][ T5344] dump_stack+0x19/0x20 [ 1064.336688][ T5344] warn_alloc+0x1bc/0x2a0 [ 1064.336711][ T5344] ? __kasan_kmalloc+0x28/0xb0 [ 1064.336731][ T5344] ? __cfi_warn_alloc+0x10/0x10 [ 1064.336753][ T5344] ? __get_vm_area_node+0x392/0x3a0 [ 1064.336778][ T5344] __vmalloc_node_range_noprof+0x361/0x1420 [ 1064.336802][ T5344] ? number+0xd21/0xf80 [ 1064.336823][ T5344] ? pointer+0xdd0/0xdd0 [ 1064.336844][ T5344] ? __cfi___vmalloc_node_range_noprof+0x10/0x10 [ 1064.336869][ T5344] ? vsnprintf+0x19b8/0x1aa0 [ 1064.336891][ T5344] ? kvm_dev_ioctl+0x125/0x14d0 [ 1064.336915][ T5344] __vmalloc_noprof+0xfe/0x1d0 [ 1064.336938][ T5344] ? kvm_dev_ioctl+0x125/0x14d0 [ 1064.336961][ T5344] ? alloc_fd+0x4e7/0x5a0 [ 1064.336979][ T5344] ? __cfi___vmalloc_noprof+0x10/0x10 [ 1064.337004][ T5344] kvm_dev_ioctl+0x125/0x14d0 [ 1064.337028][ T5344] ? __fget_files+0x2c5/0x340 [ 1064.337046][ T5344] ? __cfi_kvm_dev_ioctl+0x10/0x10 [ 1064.337079][ T5344] ? bpf_lsm_file_ioctl+0xd/0x20 [ 1064.337102][ T5344] ? security_file_ioctl+0x34/0xd0 [ 1064.337122][ T5344] ? __cfi_kvm_dev_ioctl+0x10/0x10 [ 1064.337144][ T5344] __se_sys_ioctl+0x135/0x1b0 [ 1064.337162][ T5344] __x64_sys_ioctl+0x7f/0xa0 [ 1064.337180][ T5344] x64_sys_call+0x1878/0x2ee0 [ 1064.337204][ T5344] do_syscall_64+0x58/0xf0 [ 1064.337224][ T5344] ? clear_bhb_loop+0x50/0xa0 [ 1064.337243][ T5344] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1064.337260][ T5344] RIP: 0033:0x7f223618f6c9 [ 1064.337275][ T5344] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1064.337291][ T5344] RSP: 002b:00007f2237062038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1064.337312][ T5344] RAX: ffffffffffffffda RBX: 00007f22363e5fa0 RCX: 00007f223618f6c9 [ 1064.337326][ T5344] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000008 [ 1064.337338][ T5344] RBP: 00007f2237062090 R08: 0000000000000000 R09: 0000000000000000 [ 1064.337351][ T5344] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1064.337363][ T5344] R13: 00007f22363e6038 R14: 00007f22363e5fa0 R15: 00007ffd80261f98 [ 1064.337380][ T5344] [ 1064.337388][ T5344] Mem-Info: [ 1064.597597][ T5344] active_anon:10895 inactive_anon:1 isolated_anon:0 [ 1064.597597][ T5344] active_file:23535 inactive_file:2752 isolated_file:0 [ 1064.597597][ T5344] unevictable:0 dirty:122 writeback:0 [ 1064.597597][ T5344] slab_reclaimable:10293 slab_unreclaimable:67424 [ 1064.597597][ T5344] mapped:30176 shmem:6372 pagetables:700 [ 1064.597597][ T5344] sec_pagetables:0 bounce:0 [ 1064.597597][ T5344] kernel_misc_reclaimable:0 [ 1064.597597][ T5344] free:1509820 free_pcp:12530 free_cma:0 [ 1064.643248][ T5344] Node 0 active_anon:53280kB inactive_anon:4kB active_file:94140kB inactive_file:11008kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:130304kB dirty:488kB writeback:0kB shmem:35288kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:4948kB pagetables:2800kB sec_pagetables:0kB all_unreclaimable? no [ 1064.675200][ T5344] DMA32 free:2960212kB boost:0kB min:19088kB low:23860kB high:28632kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3145324kB managed:2965936kB mlocked:0kB bounce:0kB free_pcp:5724kB local_pcp:5724kB free_cma:0kB [ 1064.710197][ T5344] lowmem_reserve[]: 0 3921 3921 [ 1064.715399][ T5344] Normal free:3059408kB boost:0kB min:25964kB low:32452kB high:38940kB reserved_highatomic:0KB free_highatomic:0KB active_anon:65080kB inactive_anon:4kB active_file:94140kB inactive_file:11008kB unevictable:0kB writepending:488kB present:5242880kB managed:4016120kB mlocked:0kB bounce:0kB free_pcp:43192kB local_pcp:39964kB free_cma:0kB [ 1064.746901][ T5344] lowmem_reserve[]: 0 0 0 [ 1064.751435][ T5344] DMA32: 5*4kB (M) 4*8kB (M) 4*16kB (M) 5*32kB (M) 3*64kB (M) 3*128kB (M) 4*256kB (M) 4*512kB (M) 5*1024kB (UM) 5*2048kB (M) 718*4096kB (M) = 2960212kB [ 1064.767188][ T5344] Normal: 83*4kB (E) 618*8kB (UE) 787*16kB (UME) 379*32kB (UME) 371*64kB (UME) 188*128kB (UME) 185*256kB (UME) 131*512kB (UME) 113*1024kB (UME) 46*2048kB (UME) 646*4096kB (UME) = 3048172kB [ 1064.786319][ T5344] 41359 total pagecache pages [ 1064.791349][ T5344] 4 pages in swap cache [ 1064.796147][ T5344] Free swap = 124600kB [ 1064.800408][ T5344] Total swap = 124996kB [ 1064.804732][ T5344] 2097051 pages RAM [ 1064.814545][ T5344] 0 pages HighMem/MovableOnly [ 1064.819336][ T5344] 351537 pages reserved [ 1064.823598][ T5344] 0 pages cma reserved [ 1064.832412][ T5344] Memory allocations: [ 1064.836477][ T5344] 0 B 0 init/main.c:1370 func:do_initcalls [ 1064.843735][ T5344] 0 B 0 init/do_mounts.c:186 func:mount_root_generic [ 1064.851815][ T5344] 0 B 0 init/do_mounts.c:158 func:do_mount_root [ 1064.859843][ T5344] 0 B 0 init/do_mounts.c:352 func:mount_nodev_root [ 1064.867807][ T5344] 0 B 0 init/do_mounts_rd.c:241 func:rd_load_image [ 1064.875848][ T5344] 0 B 0 init/do_mounts_rd.c:72 func:identify_ramdisk_image [ 1064.884565][ T5344] 0 B 0 init/initramfs.c:507 func:unpack_to_rootfs [ 1064.892531][ T5344] 0 B 0 init/initramfs.c:508 func:unpack_to_rootfs [ 1064.912174][ T5344] 0 B 0 init/initramfs.c:509 func:unpack_to_rootfs [ 1064.932502][ T5344] 0 B 0 init/initramfs.c:101 func:find_link [ 1065.169908][ T5388] 9pnet_fd: Insufficient options for proto=fd [ 1065.555249][ T5420] FAULT_INJECTION: forcing a failure. [ 1065.555249][ T5420] name failslab, interval 1, probability 0, space 0, times 0 [ 1065.589754][ T2107] Bluetooth: hci0: Frame reassembly failed (-84) [ 1065.598385][ T5420] CPU: 1 UID: 0 PID: 5420 Comm: syz.0.33209 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1065.598416][ T5420] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1065.598428][ T5420] Call Trace: [ 1065.598435][ T5420] [ 1065.598443][ T5420] __dump_stack+0x21/0x30 [ 1065.598473][ T5420] dump_stack_lvl+0x10c/0x190 [ 1065.598496][ T5420] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1065.598520][ T5420] ? avc_has_extended_perms+0x921/0xdd0 [ 1065.598546][ T5420] dump_stack+0x19/0x20 [ 1065.598568][ T5420] should_fail_ex+0x3d9/0x530 [ 1065.598588][ T5420] should_failslab+0xac/0x100 [ 1065.598609][ T5420] __kmalloc_cache_node_noprof+0x46/0x450 [ 1065.598629][ T5420] ? __get_vm_area_node+0x154/0x3a0 [ 1065.598654][ T5420] __get_vm_area_node+0x154/0x3a0 [ 1065.598677][ T5420] __vmalloc_node_range_noprof+0x33c/0x1420 [ 1065.598702][ T5420] ? kvm_dev_ioctl+0x125/0x14d0 [ 1065.598727][ T5420] ? number+0xd21/0xf80 [ 1065.598750][ T5420] ? pointer+0xdd0/0xdd0 [ 1065.598771][ T5420] ? __cfi___vmalloc_node_range_noprof+0x10/0x10 [ 1065.598797][ T5420] ? vsnprintf+0x19b8/0x1aa0 [ 1065.598819][ T5420] ? kvm_dev_ioctl+0x125/0x14d0 [ 1065.598843][ T5420] __vmalloc_noprof+0xfe/0x1d0 [ 1065.598867][ T5420] ? kvm_dev_ioctl+0x125/0x14d0 [ 1065.598891][ T5420] ? alloc_fd+0x4e7/0x5a0 [ 1065.598909][ T5420] ? __cfi___vmalloc_noprof+0x10/0x10 [ 1065.598943][ T5420] kvm_dev_ioctl+0x125/0x14d0 [ 1065.598969][ T5420] ? __fget_files+0x2c5/0x340 [ 1065.598988][ T5420] ? __cfi_kvm_dev_ioctl+0x10/0x10 [ 1065.599012][ T5420] ? bpf_lsm_file_ioctl+0xd/0x20 [ 1065.599036][ T5420] ? security_file_ioctl+0x34/0xd0 [ 1065.599057][ T5420] ? __cfi_kvm_dev_ioctl+0x10/0x10 [ 1065.599081][ T5420] __se_sys_ioctl+0x135/0x1b0 [ 1065.599101][ T5420] __x64_sys_ioctl+0x7f/0xa0 [ 1065.599121][ T5420] x64_sys_call+0x1878/0x2ee0 [ 1065.599146][ T5420] do_syscall_64+0x58/0xf0 [ 1065.599168][ T5420] ? clear_bhb_loop+0x50/0xa0 [ 1065.599188][ T5420] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1065.599207][ T5420] RIP: 0033:0x7f9ce6f8f6c9 [ 1065.599223][ T5420] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1065.599239][ T5420] RSP: 002b:00007f9ce59e3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1065.599260][ T5420] RAX: ffffffffffffffda RBX: 00007f9ce71e5fa0 RCX: 00007f9ce6f8f6c9 [ 1065.599275][ T5420] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000008 [ 1065.599288][ T5420] RBP: 00007f9ce59e3090 R08: 0000000000000000 R09: 0000000000000000 [ 1065.599300][ T5420] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1065.599312][ T5420] R13: 00007f9ce71e6038 R14: 00007f9ce71e5fa0 R15: 00007fff35a328e8 [ 1065.599328][ T5420] [ 1066.979050][ T5491] rust_binder: Read failure Err(EAGAIN) in pid:802 [ 1067.013018][ T5493] FAULT_INJECTION: forcing a failure. [ 1067.013018][ T5493] name failslab, interval 1, probability 0, space 0, times 0 [ 1067.062521][ T5493] CPU: 1 UID: 0 PID: 5493 Comm: syz.1.33243 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1067.062555][ T5493] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1067.062568][ T5493] Call Trace: [ 1067.062575][ T5493] [ 1067.062584][ T5493] __dump_stack+0x21/0x30 [ 1067.062614][ T5493] dump_stack_lvl+0x10c/0x190 [ 1067.062637][ T5493] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1067.062660][ T5493] ? __kasan_check_write+0x18/0x20 [ 1067.062687][ T5493] ? proc_fail_nth_write+0x17e/0x210 [ 1067.062710][ T5493] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 1067.062733][ T5493] dump_stack+0x19/0x20 [ 1067.062755][ T5493] should_fail_ex+0x3d9/0x530 [ 1067.062774][ T5493] should_failslab+0xac/0x100 [ 1067.062794][ T5493] kmem_cache_alloc_noprof+0x42/0x430 [ 1067.062813][ T5493] ? getname_flags+0xc6/0x710 [ 1067.062832][ T5493] getname_flags+0xc6/0x710 [ 1067.062849][ T5493] ? build_open_flags+0x487/0x600 [ 1067.062873][ T5493] getname+0x1b/0x30 [ 1067.062890][ T5493] do_sys_openat2+0xcb/0x1c0 [ 1067.062911][ T5493] ? fput+0x1a5/0x240 [ 1067.062929][ T5493] ? do_sys_open+0x100/0x100 [ 1067.062948][ T5493] ? ksys_write+0x1ef/0x250 [ 1067.062964][ T5493] ? __cfi_ksys_write+0x10/0x10 [ 1067.062991][ T5493] __x64_sys_openat+0x13a/0x170 [ 1067.063018][ T5493] x64_sys_call+0xe69/0x2ee0 [ 1067.063056][ T5493] do_syscall_64+0x58/0xf0 [ 1067.063079][ T5493] ? clear_bhb_loop+0x50/0xa0 [ 1067.063099][ T5493] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1067.063119][ T5493] RIP: 0033:0x7f3c9798f6c9 [ 1067.063135][ T5493] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1067.063158][ T5493] RSP: 002b:00007f3c98820038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1067.063179][ T5493] RAX: ffffffffffffffda RBX: 00007f3c97be5fa0 RCX: 00007f3c9798f6c9 [ 1067.063195][ T5493] RDX: 000000000000275a RSI: 0000200000000280 RDI: ffffffffffffff9c [ 1067.063208][ T5493] RBP: 00007f3c98820090 R08: 0000000000000000 R09: 0000000000000000 [ 1067.063222][ T5493] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1067.063234][ T5493] R13: 00007f3c97be6038 R14: 00007f3c97be5fa0 R15: 00007ffc996a5428 [ 1067.063250][ T5493] [ 1067.244434][ T5496] rust_binder: Read failure Err(EAGAIN) in pid:81 [ 1067.301352][ T5505] 9pnet_fd: Insufficient options for proto=fd [ 1067.484356][ T5515] FAULT_INJECTION: forcing a failure. [ 1067.484356][ T5515] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1067.498278][ T5515] CPU: 0 UID: 0 PID: 5515 Comm: syz.3.33253 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1067.498312][ T5515] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1067.498324][ T5515] Call Trace: [ 1067.498330][ T5515] [ 1067.498338][ T5515] __dump_stack+0x21/0x30 [ 1067.498367][ T5515] dump_stack_lvl+0x10c/0x190 [ 1067.498389][ T5515] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1067.498414][ T5515] ? check_stack_object+0x12c/0x140 [ 1067.498432][ T5515] dump_stack+0x19/0x20 [ 1067.498454][ T5515] should_fail_ex+0x3d9/0x530 [ 1067.498472][ T5515] should_fail+0xf/0x20 [ 1067.498489][ T5515] should_fail_usercopy+0x1e/0x30 [ 1067.498508][ T5515] _copy_to_user+0x24/0xa0 [ 1067.498530][ T5515] simple_read_from_buffer+0xed/0x160 [ 1067.498553][ T5515] proc_fail_nth_read+0x19e/0x210 [ 1067.498577][ T5515] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 1067.498600][ T5515] ? bpf_lsm_file_permission+0xd/0x20 [ 1067.498622][ T5515] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 1067.498643][ T5515] vfs_read+0x27d/0xc70 [ 1067.498659][ T5515] ? __cfi_vfs_read+0x10/0x10 [ 1067.498674][ T5515] ? __kasan_check_write+0x18/0x20 [ 1067.498699][ T5515] ? mutex_lock+0x92/0x1c0 [ 1067.498716][ T5515] ? __cfi_mutex_lock+0x10/0x10 [ 1067.498733][ T5515] ? __fget_files+0x2c5/0x340 [ 1067.498754][ T5515] ksys_read+0x141/0x250 [ 1067.498791][ T5515] ? __cfi_ksys_read+0x10/0x10 [ 1067.498809][ T5515] ? __kasan_check_read+0x15/0x20 [ 1067.498836][ T5515] __x64_sys_read+0x7f/0x90 [ 1067.498853][ T5515] x64_sys_call+0x2638/0x2ee0 [ 1067.498878][ T5515] do_syscall_64+0x58/0xf0 [ 1067.498901][ T5515] ? clear_bhb_loop+0x50/0xa0 [ 1067.498921][ T5515] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1067.498942][ T5515] RIP: 0033:0x7fe69418e0dc [ 1067.498959][ T5515] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 1067.498976][ T5515] RSP: 002b:00007fe6950d9030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1067.498998][ T5515] RAX: ffffffffffffffda RBX: 00007fe6943e5fa0 RCX: 00007fe69418e0dc [ 1067.499012][ T5515] RDX: 000000000000000f RSI: 00007fe6950d90a0 RDI: 0000000000000007 [ 1067.499025][ T5515] RBP: 00007fe6950d9090 R08: 0000000000000000 R09: 0000000000000000 [ 1067.499038][ T5515] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1067.499050][ T5515] R13: 00007fe6943e6038 R14: 00007fe6943e5fa0 R15: 00007ffcf9244358 [ 1067.499066][ T5515] [ 1067.741102][ T1295] Bluetooth: hci0: command 0x1003 tx timeout [ 1067.747139][ T1294] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 1067.770909][ T5520] rust_binder: Read failure Err(EAGAIN) in pid:1090 [ 1067.797435][ T5525] 9pnet_fd: Insufficient options for proto=fd [ 1069.219273][ T5596] 9pnet_fd: Insufficient options for proto=fd [ 1070.253246][ T5660] FAULT_INJECTION: forcing a failure. [ 1070.253246][ T5660] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1070.278914][ T5660] CPU: 1 UID: 0 PID: 5660 Comm: syz.0.33326 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1070.278947][ T5660] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1070.278958][ T5660] Call Trace: [ 1070.278965][ T5660] [ 1070.278973][ T5660] __dump_stack+0x21/0x30 [ 1070.279002][ T5660] dump_stack_lvl+0x10c/0x190 [ 1070.279024][ T5660] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1070.279048][ T5660] dump_stack+0x19/0x20 [ 1070.279069][ T5660] should_fail_ex+0x3d9/0x530 [ 1070.279088][ T5660] should_fail+0xf/0x20 [ 1070.279103][ T5660] should_fail_usercopy+0x1e/0x30 [ 1070.279121][ T5660] _copy_from_user+0x22/0xb0 [ 1070.279143][ T5660] lo_ioctl+0x52c/0x1d50 [ 1070.279165][ T5660] ? __cfi_lo_ioctl+0x10/0x10 [ 1070.279184][ T5660] ? stack_depot_save_flags+0x38/0x800 [ 1070.279203][ T5660] ? stack_trace_save+0x9d/0xe0 [ 1070.279227][ T5660] ? kasan_save_track+0x4f/0x80 [ 1070.279245][ T5660] ? kasan_save_track+0x3e/0x80 [ 1070.279263][ T5660] ? kasan_save_alloc_info+0x40/0x50 [ 1070.279286][ T5660] ? __kasan_slab_alloc+0x73/0x90 [ 1070.279305][ T5660] ? kmem_cache_alloc_noprof+0x1cb/0x430 [ 1070.279321][ T5660] ? security_inode_alloc+0x51/0x200 [ 1070.279347][ T5660] ? inode_init_always_gfp+0x756/0x9e0 [ 1070.279366][ T5660] ? alloc_inode+0xc5/0x270 [ 1070.279385][ T5660] ? new_inode+0x25/0x1e0 [ 1070.279404][ T5660] ? proc_pid_make_inode+0x25/0x140 [ 1070.279422][ T5660] ? proc_pident_instantiate+0x6d/0x2c0 [ 1070.279442][ T5660] ? proc_pident_lookup+0x1c7/0x270 [ 1070.279462][ T5660] ? proc_tid_base_lookup+0x2f/0x40 [ 1070.279485][ T5660] ? path_openat+0x1301/0x34b0 [ 1070.279506][ T5660] ? do_filp_open+0x1c6/0x3e0 [ 1070.279525][ T5660] ? do_sys_openat2+0x12c/0x1c0 [ 1070.279548][ T5660] ? __x64_sys_openat+0x13a/0x170 [ 1070.279569][ T5660] ? x64_sys_call+0xe69/0x2ee0 [ 1070.279594][ T5660] ? do_syscall_64+0x58/0xf0 [ 1070.279616][ T5660] ? entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1070.279639][ T5660] ? avc_has_perm_noaudit+0x268/0x360 [ 1070.279664][ T5660] ? __asan_memcpy+0x5a/0x80 [ 1070.279681][ T5660] ? avc_has_perm_noaudit+0x286/0x360 [ 1070.279705][ T5660] ? avc_has_perm+0x144/0x220 [ 1070.279727][ T5660] ? __cfi_avc_has_perm+0x10/0x10 [ 1070.279750][ T5660] ? kasan_save_alloc_info+0x40/0x50 [ 1070.279775][ T5660] ? selinux_file_open+0x457/0x610 [ 1070.279796][ T5660] ? __cfi_selinux_file_open+0x10/0x10 [ 1070.279827][ T5660] ? avc_has_extended_perms+0x7c7/0xdd0 [ 1070.279849][ T5660] ? __asan_memcpy+0x5a/0x80 [ 1070.279864][ T5660] ? avc_has_extended_perms+0x921/0xdd0 [ 1070.279893][ T5660] ? do_vfs_ioctl+0xeda/0x1e30 [ 1070.279911][ T5660] ? arch_stack_walk+0x10b/0x170 [ 1070.279928][ T5660] ? __ia32_compat_sys_ioctl+0x850/0x850 [ 1070.279948][ T5660] ? _parse_integer+0x2e/0x40 [ 1070.279973][ T5660] ? blkdev_common_ioctl+0x10e4/0x2810 [ 1070.279997][ T5660] ? blkdev_bszset+0x220/0x220 [ 1070.280019][ T5660] ? has_cap_mac_admin+0xd0/0xd0 [ 1070.280040][ T5660] ? proc_fail_nth_write+0x17e/0x210 [ 1070.280064][ T5660] ? __kasan_check_write+0x18/0x20 [ 1070.280088][ T5660] ? mutex_unlock+0x8b/0x240 [ 1070.280104][ T5660] ? __cfi_mutex_unlock+0x10/0x10 [ 1070.280119][ T5660] ? __fget_files+0x2c5/0x340 [ 1070.280137][ T5660] ? __cfi_lo_ioctl+0x10/0x10 [ 1070.280157][ T5660] blkdev_ioctl+0x546/0x680 [ 1070.280180][ T5660] ? __cfi_blkdev_ioctl+0x10/0x10 [ 1070.280204][ T5660] ? bpf_lsm_file_ioctl+0xd/0x20 [ 1070.280226][ T5660] ? security_file_ioctl+0x34/0xd0 [ 1070.280246][ T5660] ? __cfi_blkdev_ioctl+0x10/0x10 [ 1070.280268][ T5660] __se_sys_ioctl+0x135/0x1b0 [ 1070.280288][ T5660] __x64_sys_ioctl+0x7f/0xa0 [ 1070.280308][ T5660] x64_sys_call+0x1878/0x2ee0 [ 1070.280332][ T5660] do_syscall_64+0x58/0xf0 [ 1070.280354][ T5660] ? clear_bhb_loop+0x50/0xa0 [ 1070.280373][ T5660] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1070.280392][ T5660] RIP: 0033:0x7f9ce6f8f6c9 [ 1070.280408][ T5660] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1070.280423][ T5660] RSP: 002b:00007f9ce59e3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1070.280443][ T5660] RAX: ffffffffffffffda RBX: 00007f9ce71e5fa0 RCX: 00007f9ce6f8f6c9 [ 1070.280456][ T5660] RDX: 00002000000004c0 RSI: 0000000000004c0a RDI: 0000000000000007 [ 1070.280467][ T5660] RBP: 00007f9ce59e3090 R08: 0000000000000000 R09: 0000000000000000 [ 1070.280479][ T5660] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1070.280490][ T5660] R13: 00007f9ce71e6038 R14: 00007f9ce71e5fa0 R15: 00007fff35a328e8 [ 1070.280504][ T5660] [ 1070.775170][ T5678] 9pnet_fd: Insufficient options for proto=fd [ 1070.877163][ T5684] FAULT_INJECTION: forcing a failure. [ 1070.877163][ T5684] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1070.931285][ T5684] CPU: 0 UID: 0 PID: 5684 Comm: syz.1.33337 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1070.931320][ T5684] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1070.931333][ T5684] Call Trace: [ 1070.931340][ T5684] [ 1070.931349][ T5684] __dump_stack+0x21/0x30 [ 1070.931378][ T5684] dump_stack_lvl+0x10c/0x190 [ 1070.931401][ T5684] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1070.931424][ T5684] ? kernel_text_address+0xa9/0xe0 [ 1070.931447][ T5684] dump_stack+0x19/0x20 [ 1070.931468][ T5684] should_fail_ex+0x3d9/0x530 [ 1070.931488][ T5684] should_fail+0xf/0x20 [ 1070.931503][ T5684] should_fail_usercopy+0x1e/0x30 [ 1070.931522][ T5684] _copy_from_user+0x22/0xb0 [ 1070.931544][ T5684] ___sys_sendmsg+0x159/0x2a0 [ 1070.931571][ T5684] ? __sys_sendmsg+0x280/0x280 [ 1070.931595][ T5684] ? kstrtouint+0x78/0xf0 [ 1070.931616][ T5684] __sys_sendmmsg+0x271/0x470 [ 1070.931641][ T5684] ? __cfi___sys_sendmmsg+0x10/0x10 [ 1070.931670][ T5684] ? __cfi_ksys_write+0x10/0x10 [ 1070.931688][ T5684] __x64_sys_sendmmsg+0xa4/0xc0 [ 1070.931713][ T5684] x64_sys_call+0xfec/0x2ee0 [ 1070.931737][ T5684] do_syscall_64+0x58/0xf0 [ 1070.931767][ T5684] ? clear_bhb_loop+0x50/0xa0 [ 1070.931787][ T5684] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1070.931806][ T5684] RIP: 0033:0x7f3c9798f6c9 [ 1070.931822][ T5684] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1070.931837][ T5684] RSP: 002b:00007f3c98820038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 1070.931858][ T5684] RAX: ffffffffffffffda RBX: 00007f3c97be5fa0 RCX: 00007f3c9798f6c9 [ 1070.931873][ T5684] RDX: 0000000000000001 RSI: 0000200000003c00 RDI: 0000000000000009 [ 1070.931886][ T5684] RBP: 00007f3c98820090 R08: 0000000000000000 R09: 0000000000000000 [ 1070.931898][ T5684] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000001 [ 1070.931910][ T5684] R13: 00007f3c97be6038 R14: 00007f3c97be5fa0 R15: 00007ffc996a5428 [ 1070.931926][ T5684] [ 1071.363590][ T36] audit: type=1400 audit(2000000246.620:275): avc: denied { unmount } for pid=2669 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1 [ 1071.416354][ T5696] 9pnet_fd: Insufficient options for proto=fd [ 1073.852488][ T36] audit: type=1400 audit(2000000249.100:276): avc: denied { write } for pid=5715 comm="syz.3.33353" name="/" dev="fuse" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=chr_file permissive=1 [ 1073.906401][ T36] audit: type=1400 audit(2000000249.100:277): avc: denied { mounton } for pid=5715 comm="syz.3.33353" path="/67/file0" dev="fuse" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=chr_file permissive=1 [ 1074.032477][ T5767] rust_binder: Read failure Err(EAGAIN) in pid:1002 [ 1074.098216][ T5778] 9pnet_fd: Insufficient options for proto=fd [ 1074.167465][T14163] Bluetooth: hci0: Frame reassembly failed (-84) [ 1074.174082][T14163] Bluetooth: hci0: Frame reassembly failed (-84) [ 1074.187556][ T5788] 9pnet_fd: Insufficient options for proto=fd [ 1074.473112][ T2107] Bluetooth: hci1: Frame reassembly failed (-84) [ 1076.212577][ T5849] Bluetooth: hci0: command 0x1003 tx timeout [ 1076.212591][ T1294] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 1076.402829][ T5859] 9pnet_fd: Insufficient options for proto=fd [ 1076.532556][ T54] Bluetooth: hci2: Opcode 0x1003 failed: -110 [ 1076.532618][ T1295] Bluetooth: hci1: Opcode 0x1003 failed: -110 [ 1076.538834][ T54] Bluetooth: hci1: command 0x1003 tx timeout [ 1076.660357][ T2107] Bluetooth: hci0: Frame reassembly failed (-84) [ 1076.692826][ T5838] Bluetooth: hci3: Opcode 0x1003 failed: -110 [ 1076.699103][ T54] Bluetooth: hci3: command 0x1003 tx timeout [ 1076.746408][ T36] audit: type=1400 audit(2000000252.000:278): avc: denied { connect } for pid=5909 comm="syz.0.33446" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 1076.773055][ T5914] FAULT_INJECTION: forcing a failure. [ 1076.773055][ T5914] name failslab, interval 1, probability 0, space 0, times 0 [ 1076.785783][ T5914] CPU: 0 UID: 0 PID: 5914 Comm: syz.1.33448 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1076.785815][ T5914] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1076.785827][ T5914] Call Trace: [ 1076.785833][ T5914] [ 1076.785842][ T5914] __dump_stack+0x21/0x30 [ 1076.785871][ T5914] dump_stack_lvl+0x10c/0x190 [ 1076.785894][ T5914] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1076.785917][ T5914] ? __kasan_check_write+0x18/0x20 [ 1076.785943][ T5914] ? proc_fail_nth_write+0x17e/0x210 [ 1076.785966][ T5914] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 1076.785989][ T5914] dump_stack+0x19/0x20 [ 1076.786011][ T5914] should_fail_ex+0x3d9/0x530 [ 1076.786031][ T5914] should_failslab+0xac/0x100 [ 1076.786050][ T5914] kmem_cache_alloc_noprof+0x42/0x430 [ 1076.786067][ T5914] ? getname_flags+0xc6/0x710 [ 1076.786086][ T5914] getname_flags+0xc6/0x710 [ 1076.786103][ T5914] ? build_open_flags+0x487/0x600 [ 1076.786125][ T5914] getname+0x1b/0x30 [ 1076.786142][ T5914] do_sys_openat2+0xcb/0x1c0 [ 1076.786163][ T5914] ? fput+0x1a5/0x240 [ 1076.786183][ T5914] ? do_sys_open+0x100/0x100 [ 1076.786205][ T5914] ? ksys_write+0x1ef/0x250 [ 1076.786221][ T5914] ? __cfi_ksys_write+0x10/0x10 [ 1076.786238][ T5914] __x64_sys_open+0x120/0x150 [ 1076.786260][ T5914] x64_sys_call+0x131a/0x2ee0 [ 1076.786283][ T5914] do_syscall_64+0x58/0xf0 [ 1076.786304][ T5914] ? clear_bhb_loop+0x50/0xa0 [ 1076.786323][ T5914] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1076.786342][ T5914] RIP: 0033:0x7f3c9798f6c9 [ 1076.786364][ T5914] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1076.786379][ T5914] RSP: 002b:00007f3c98820038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 1076.786399][ T5914] RAX: ffffffffffffffda RBX: 00007f3c97be5fa0 RCX: 00007f3c9798f6c9 [ 1076.786413][ T5914] RDX: 0000000000000010 RSI: 0000000000024040 RDI: 0000200000000100 [ 1076.786426][ T5914] RBP: 00007f3c98820090 R08: 0000000000000000 R09: 0000000000000000 [ 1076.786438][ T5914] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1076.786449][ T5914] R13: 00007f3c97be6038 R14: 00007f3c97be5fa0 R15: 00007ffc996a5428 [ 1076.786464][ T5914] [ 1077.018507][ T36] audit: type=1400 audit(2000000252.270:279): avc: denied { setopt } for pid=5925 comm="syz.2.33454" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 1077.711861][ T5986] 9pnet_fd: Insufficient options for proto=fd [ 1077.964225][ T6022] 9pnet_fd: Insufficient options for proto=fd [ 1077.986126][ T6024] FAULT_INJECTION: forcing a failure. [ 1077.986126][ T6024] name failslab, interval 1, probability 0, space 0, times 0 [ 1077.999854][ T6024] CPU: 0 UID: 0 PID: 6024 Comm: syz.0.33503 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1077.999888][ T6024] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1077.999900][ T6024] Call Trace: [ 1077.999906][ T6024] [ 1077.999914][ T6024] __dump_stack+0x21/0x30 [ 1077.999944][ T6024] dump_stack_lvl+0x10c/0x190 [ 1077.999966][ T6024] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1077.999989][ T6024] ? proc_fail_nth_write+0x17e/0x210 [ 1078.000012][ T6024] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 1078.000035][ T6024] dump_stack+0x19/0x20 [ 1078.000056][ T6024] should_fail_ex+0x3d9/0x530 [ 1078.000083][ T6024] should_failslab+0xac/0x100 [ 1078.000103][ T6024] kmem_cache_alloc_noprof+0x42/0x430 [ 1078.000121][ T6024] ? getname_flags+0xc6/0x710 [ 1078.000140][ T6024] getname_flags+0xc6/0x710 [ 1078.000157][ T6024] ? __fget_files+0x2c5/0x340 [ 1078.000177][ T6024] user_path_at+0x2b/0x60 [ 1078.000195][ T6024] __se_sys_mount+0x288/0x480 [ 1078.000212][ T6024] ? ksys_write+0x1ef/0x250 [ 1078.000228][ T6024] ? __x64_sys_mount+0xf0/0xf0 [ 1078.000245][ T6024] __x64_sys_mount+0xc3/0xf0 [ 1078.000263][ T6024] x64_sys_call+0x2021/0x2ee0 [ 1078.000288][ T6024] do_syscall_64+0x58/0xf0 [ 1078.000311][ T6024] ? clear_bhb_loop+0x50/0xa0 [ 1078.000331][ T6024] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1078.000351][ T6024] RIP: 0033:0x7f9ce6f8f6c9 [ 1078.000367][ T6024] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1078.000384][ T6024] RSP: 002b:00007f9ce59e3038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1078.000405][ T6024] RAX: ffffffffffffffda RBX: 00007f9ce71e5fa0 RCX: 00007f9ce6f8f6c9 [ 1078.000420][ T6024] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000000 [ 1078.000433][ T6024] RBP: 00007f9ce59e3090 R08: 0000000000000000 R09: 0000000000000000 [ 1078.000445][ T6024] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1078.000457][ T6024] R13: 00007f9ce71e6038 R14: 00007f9ce71e5fa0 R15: 00007fff35a328e8 [ 1078.000474][ T6024] [ 1078.263772][ T6032] 9pnet_fd: Insufficient options for proto=fd [ 1078.597385][ T6054] fuse: Bad value for 'fd' [ 1078.692495][ T1295] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 1078.692647][ T5838] Bluetooth: hci0: command 0x1003 tx timeout [ 1079.035073][ T2107] Bluetooth: hci0: Frame reassembly failed (-84) [ 1080.347396][ T2107] bridge_slave_1: left allmulticast mode [ 1080.354616][ T2107] bridge_slave_1: left promiscuous mode [ 1080.360283][ T2107] bridge0: port 2(bridge_slave_1) entered disabled state [ 1080.368276][ T2107] bridge_slave_0: left allmulticast mode [ 1080.374049][ T2107] bridge_slave_0: left promiscuous mode [ 1080.379734][ T2107] bridge0: port 1(bridge_slave_0) entered disabled state [ 1080.517107][ T2107] veth1_macvtap: left promiscuous mode [ 1080.532972][ T2107] veth0_vlan: left promiscuous mode [ 1080.623162][ T6158] bridge0: port 1(bridge_slave_0) entered blocking state [ 1080.630223][ T6158] bridge0: port 1(bridge_slave_0) entered disabled state [ 1080.652558][ T6158] bridge_slave_0: entered allmulticast mode [ 1080.659842][ T6158] bridge_slave_0: entered promiscuous mode [ 1080.683220][ T6158] bridge0: port 2(bridge_slave_1) entered blocking state [ 1080.690282][ T6158] bridge0: port 2(bridge_slave_1) entered disabled state [ 1080.702559][ T6158] bridge_slave_1: entered allmulticast mode [ 1080.708923][ T6158] bridge_slave_1: entered promiscuous mode [ 1080.816382][ T6158] bridge0: port 2(bridge_slave_1) entered blocking state [ 1080.823476][ T6158] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1080.830755][ T6158] bridge0: port 1(bridge_slave_0) entered blocking state [ 1080.837836][ T6158] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1080.860874][ T2107] bridge0: port 1(bridge_slave_0) entered disabled state [ 1080.868297][ T2107] bridge0: port 2(bridge_slave_1) entered disabled state [ 1080.878721][ T329] bridge0: port 1(bridge_slave_0) entered blocking state [ 1080.885805][ T329] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1080.895062][ T2107] bridge0: port 2(bridge_slave_1) entered blocking state [ 1080.902146][ T2107] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1080.930338][ T6158] veth0_vlan: entered promiscuous mode [ 1080.942163][ T6158] veth1_macvtap: entered promiscuous mode [ 1081.092520][ T5838] Bluetooth: hci0: command 0x1003 tx timeout [ 1081.092597][ T1295] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 1081.389516][T14163] Bluetooth: hci0: Frame reassembly failed (-84) [ 1081.720179][ T6255] 9pnet_fd: Insufficient options for proto=fd [ 1081.883787][ T54] Bluetooth: hci1: sending frame failed (-49) [ 1081.889990][ T5838] Bluetooth: hci1: Opcode 0x1003 failed: -49 [ 1082.060371][ T36] audit: type=1400 audit(2000000257.310:280): avc: denied { ioctl } for pid=6304 comm="syz.1.33635" path="socket:[398334]" dev="sockfs" ino=398334 ioctlcmd=0x8983 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1 [ 1082.440435][ T6334] 9pnet_fd: Insufficient options for proto=fd [ 1082.626873][T14163] bridge_slave_1: left allmulticast mode [ 1082.632574][T14163] bridge_slave_1: left promiscuous mode [ 1082.638274][T14163] bridge0: port 2(bridge_slave_1) entered disabled state [ 1082.645886][T14163] bridge_slave_0: left allmulticast mode [ 1082.651536][T14163] bridge_slave_0: left promiscuous mode [ 1082.657170][T14163] bridge0: port 1(bridge_slave_0) entered disabled state [ 1082.728914][ T6346] bridge0: port 1(bridge_slave_0) entered blocking state [ 1082.733451][ T6358] 9pnet_fd: Insufficient options for proto=fd [ 1082.736024][ T6346] bridge0: port 1(bridge_slave_0) entered disabled state [ 1082.749148][ T6346] bridge_slave_0: entered allmulticast mode [ 1082.755527][ T6346] bridge_slave_0: entered promiscuous mode [ 1082.763274][T14163] veth1_macvtap: left promiscuous mode [ 1082.771753][T14163] veth0_vlan: left promiscuous mode [ 1082.817871][ T6346] bridge0: port 2(bridge_slave_1) entered blocking state [ 1082.824955][ T6346] bridge0: port 2(bridge_slave_1) entered disabled state [ 1082.832030][ T6346] bridge_slave_1: entered allmulticast mode [ 1082.838323][ T6346] bridge_slave_1: entered promiscuous mode [ 1082.884942][ T6346] bridge0: port 2(bridge_slave_1) entered blocking state [ 1082.891975][ T6346] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1082.899258][ T6346] bridge0: port 1(bridge_slave_0) entered blocking state [ 1082.906309][ T6346] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1082.963705][ T6346] veth0_vlan: entered promiscuous mode [ 1082.977806][ T6346] veth1_macvtap: entered promiscuous mode [ 1083.072136][ T6384] 9pnet_fd: Insufficient options for proto=fd [ 1083.412581][ T1295] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 1083.418735][ T54] Bluetooth: hci0: command 0x1003 tx timeout [ 1083.470618][ T6435] 9pnet_fd: Insufficient options for proto=fd [ 1083.514960][ T6440] FAULT_INJECTION: forcing a failure. [ 1083.514960][ T6440] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1083.538225][ T6440] CPU: 1 UID: 0 PID: 6440 Comm: syz.0.33695 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1083.538260][ T6440] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1083.538272][ T6440] Call Trace: [ 1083.538279][ T6440] [ 1083.538288][ T6440] __dump_stack+0x21/0x30 [ 1083.538317][ T6440] dump_stack_lvl+0x10c/0x190 [ 1083.538339][ T6440] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1083.538364][ T6440] ? kstrtoull+0x13b/0x1e0 [ 1083.538381][ T6440] dump_stack+0x19/0x20 [ 1083.538404][ T6440] should_fail_ex+0x3d9/0x530 [ 1083.538423][ T6440] should_fail+0xf/0x20 [ 1083.538440][ T6440] should_fail_usercopy+0x1e/0x30 [ 1083.538461][ T6440] _copy_from_user+0x22/0xb0 [ 1083.538483][ T6440] ___sys_sendmsg+0x159/0x2a0 [ 1083.538511][ T6440] ? __sys_sendmsg+0x280/0x280 [ 1083.538536][ T6440] ? proc_fail_nth_write+0x17e/0x210 [ 1083.538560][ T6440] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 1083.538589][ T6440] __x64_sys_sendmsg+0x1eb/0x2c0 [ 1083.538614][ T6440] ? fput+0x1a5/0x240 [ 1083.538636][ T6440] ? __cfi___x64_sys_sendmsg+0x10/0x10 [ 1083.538661][ T6440] ? ksys_write+0x1ef/0x250 [ 1083.538677][ T6440] ? __kasan_check_read+0x15/0x20 [ 1083.538704][ T6440] x64_sys_call+0x2a4c/0x2ee0 [ 1083.538729][ T6440] do_syscall_64+0x58/0xf0 [ 1083.538752][ T6440] ? clear_bhb_loop+0x50/0xa0 [ 1083.538772][ T6440] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1083.538791][ T6440] RIP: 0033:0x7f4a6ed8f6c9 [ 1083.538808][ T6440] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1083.538824][ T6440] RSP: 002b:00007f4a6fbcc038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1083.538846][ T6440] RAX: ffffffffffffffda RBX: 00007f4a6efe5fa0 RCX: 00007f4a6ed8f6c9 [ 1083.538861][ T6440] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 000000000000000a [ 1083.538874][ T6440] RBP: 00007f4a6fbcc090 R08: 0000000000000000 R09: 0000000000000000 [ 1083.538887][ T6440] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1083.538899][ T6440] R13: 00007f4a6efe6038 R14: 00007f4a6efe5fa0 R15: 00007ffd97d9ec68 [ 1083.538916][ T6440] [ 1083.913416][ T6457] 9pnet_fd: Insufficient options for proto=fd [ 1083.972512][ T5838] Bluetooth: hci1: Opcode 0x1003 failed: -110 [ 1084.245888][ T6490] 9pnet_fd: Insufficient options for proto=fd [ 1084.318652][T14163] Bluetooth: hci0: Frame reassembly failed (-84) [ 1084.640939][ T6515] fuse: Bad value for 'fd' [ 1084.714912][ T6529] FAULT_INJECTION: forcing a failure. [ 1084.714912][ T6529] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1084.728092][ T6529] CPU: 1 UID: 0 PID: 6529 Comm: syz.0.33741 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1084.728126][ T6529] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1084.728137][ T6529] Call Trace: [ 1084.728144][ T6529] [ 1084.728152][ T6529] __dump_stack+0x21/0x30 [ 1084.728181][ T6529] dump_stack_lvl+0x10c/0x190 [ 1084.728205][ T6529] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1084.728229][ T6529] ? do_vfs_ioctl+0xeda/0x1e30 [ 1084.728250][ T6529] dump_stack+0x19/0x20 [ 1084.728272][ T6529] should_fail_ex+0x3d9/0x530 [ 1084.728292][ T6529] should_fail+0xf/0x20 [ 1084.728309][ T6529] should_fail_usercopy+0x1e/0x30 [ 1084.728328][ T6529] _copy_from_user+0x22/0xb0 [ 1084.728351][ T6529] addrconf_add_ifaddr+0xfa/0x1b0 [ 1084.728375][ T6529] ? __cfi_addrconf_add_ifaddr+0x10/0x10 [ 1084.728399][ T6529] ? ioctl_has_perm+0x384/0x4d0 [ 1084.728421][ T6529] inet6_ioctl+0x139/0x280 [ 1084.728445][ T6529] ? __cfi_inet6_ioctl+0x10/0x10 [ 1084.728469][ T6529] ? proc_fail_nth_write+0x17e/0x210 [ 1084.728493][ T6529] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 1084.728566][ T6529] sock_do_ioctl+0x105/0x330 [ 1084.728650][ T6529] ? sock_show_fdinfo+0xd0/0xd0 [ 1084.728670][ T6529] ? __cfi_vfs_write+0x10/0x10 [ 1084.728688][ T6529] ? __kasan_check_write+0x18/0x20 [ 1084.728714][ T6529] ? mutex_unlock+0x8b/0x240 [ 1084.728732][ T6529] sock_ioctl+0x634/0x7b0 [ 1084.728751][ T6529] ? __cfi_sock_ioctl+0x10/0x10 [ 1084.728769][ T6529] ? __fget_files+0x2c5/0x340 [ 1084.728789][ T6529] ? bpf_lsm_file_ioctl+0xd/0x20 [ 1084.728814][ T6529] ? security_file_ioctl+0x34/0xd0 [ 1084.728835][ T6529] ? __cfi_sock_ioctl+0x10/0x10 [ 1084.728850][ T6529] __se_sys_ioctl+0x135/0x1b0 [ 1084.728870][ T6529] __x64_sys_ioctl+0x7f/0xa0 [ 1084.728889][ T6529] x64_sys_call+0x1878/0x2ee0 [ 1084.728915][ T6529] do_syscall_64+0x58/0xf0 [ 1084.728937][ T6529] ? clear_bhb_loop+0x50/0xa0 [ 1084.728957][ T6529] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1084.728976][ T6529] RIP: 0033:0x7f4a6ed8f6c9 [ 1084.728993][ T6529] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1084.729009][ T6529] RSP: 002b:00007f4a6fbcc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1084.729031][ T6529] RAX: ffffffffffffffda RBX: 00007f4a6efe5fa0 RCX: 00007f4a6ed8f6c9 [ 1084.729046][ T6529] RDX: 00002000000000c0 RSI: 0000000000008916 RDI: 0000000000000006 [ 1084.729059][ T6529] RBP: 00007f4a6fbcc090 R08: 0000000000000000 R09: 0000000000000000 [ 1084.729072][ T6529] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1084.729085][ T6529] R13: 00007f4a6efe6038 R14: 00007f4a6efe5fa0 R15: 00007ffd97d9ec68 [ 1084.729102][ T6529] [ 1085.093744][ T6552] 9pnet_fd: Insufficient options for proto=fd [ 1086.223225][ T6652] fuse: Bad value for 'fd' [ 1086.356059][ T6673] fuse: Bad value for 'fd' [ 1086.372497][ T5838] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 1086.372770][ T1295] Bluetooth: hci0: command 0x1003 tx timeout [ 1086.407324][ T2107] bridge_slave_1: left allmulticast mode [ 1086.413887][ T2107] bridge_slave_1: left promiscuous mode [ 1086.419527][ T2107] bridge0: port 2(bridge_slave_1) entered disabled state [ 1086.429932][ T2107] bridge_slave_0: left allmulticast mode [ 1086.435776][ T2107] bridge_slave_0: left promiscuous mode [ 1086.449626][ T2107] bridge0: port 1(bridge_slave_0) entered disabled state [ 1086.581564][ T6676] bridge0: port 1(bridge_slave_0) entered blocking state [ 1086.588842][ T6676] bridge0: port 1(bridge_slave_0) entered disabled state [ 1086.595997][ T6676] bridge_slave_0: entered allmulticast mode [ 1086.603967][ T6676] bridge_slave_0: entered promiscuous mode [ 1086.610445][ T6676] bridge0: port 2(bridge_slave_1) entered blocking state [ 1086.617922][ T6676] bridge0: port 2(bridge_slave_1) entered disabled state [ 1086.625087][ T6676] bridge_slave_1: entered allmulticast mode [ 1086.631645][ T6676] bridge_slave_1: entered promiscuous mode [ 1086.653653][ T2107] veth1_macvtap: left promiscuous mode [ 1086.659179][ T2107] veth0_vlan: left promiscuous mode [ 1086.684371][ T6707] fuse: Bad value for 'fd' [ 1086.749797][ T6715] FAULT_INJECTION: forcing a failure. [ 1086.749797][ T6715] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1086.762926][ T6715] CPU: 1 UID: 0 PID: 6715 Comm: syz.2.33829 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1086.762956][ T6715] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1086.762968][ T6715] Call Trace: [ 1086.762974][ T6715] [ 1086.762982][ T6715] __dump_stack+0x21/0x30 [ 1086.763011][ T6715] dump_stack_lvl+0x10c/0x190 [ 1086.763034][ T6715] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1086.763058][ T6715] ? check_stack_object+0x107/0x140 [ 1086.763076][ T6715] dump_stack+0x19/0x20 [ 1086.763098][ T6715] should_fail_ex+0x3d9/0x530 [ 1086.763116][ T6715] should_fail+0xf/0x20 [ 1086.763132][ T6715] should_fail_usercopy+0x1e/0x30 [ 1086.763151][ T6715] _copy_from_user+0x22/0xb0 [ 1086.763173][ T6715] __sys_bind+0x1de/0x3f0 [ 1086.763196][ T6715] ? __cfi___sys_bind+0x10/0x10 [ 1086.763220][ T6715] ? __kasan_check_read+0x15/0x20 [ 1086.763246][ T6715] __x64_sys_bind+0x7e/0x90 [ 1086.763267][ T6715] x64_sys_call+0x1ffd/0x2ee0 [ 1086.763291][ T6715] do_syscall_64+0x58/0xf0 [ 1086.763314][ T6715] ? clear_bhb_loop+0x50/0xa0 [ 1086.763334][ T6715] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1086.763354][ T6715] RIP: 0033:0x7efcb618f6c9 [ 1086.763370][ T6715] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1086.763386][ T6715] RSP: 002b:00007efcb6f95038 EFLAGS: 00000246 ORIG_RAX: 0000000000000031 [ 1086.763407][ T6715] RAX: ffffffffffffffda RBX: 00007efcb63e5fa0 RCX: 00007efcb618f6c9 [ 1086.763423][ T6715] RDX: 0000000000000010 RSI: 0000200000000080 RDI: 0000000000000008 [ 1086.763436][ T6715] RBP: 00007efcb6f95090 R08: 0000000000000000 R09: 0000000000000000 [ 1086.763449][ T6715] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1086.763468][ T6715] R13: 00007efcb63e6038 R14: 00007efcb63e5fa0 R15: 00007fffbf67c5a8 [ 1086.763482][ T6715] [ 1087.029623][ T6676] bridge0: port 2(bridge_slave_1) entered blocking state [ 1087.036707][ T6676] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1087.044031][ T6676] bridge0: port 1(bridge_slave_0) entered blocking state [ 1087.051068][ T6676] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1087.074613][T14163] bridge0: port 1(bridge_slave_0) entered disabled state [ 1087.081991][T14163] bridge0: port 2(bridge_slave_1) entered disabled state [ 1087.093591][T31927] bridge0: port 1(bridge_slave_0) entered blocking state [ 1087.100644][T31927] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1087.119861][T31927] bridge0: port 2(bridge_slave_1) entered blocking state [ 1087.127055][T31927] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1087.175004][ T6676] veth0_vlan: entered promiscuous mode [ 1087.201459][ T6676] veth1_macvtap: entered promiscuous mode [ 1087.364573][ T6736] fuse: Bad value for 'fd' [ 1087.383661][ T6737] FAULT_INJECTION: forcing a failure. [ 1087.383661][ T6737] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1087.397464][ T6737] CPU: 1 UID: 0 PID: 6737 Comm: syz.3.33837 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1087.397507][ T6737] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1087.397519][ T6737] Call Trace: [ 1087.397526][ T6737] [ 1087.397534][ T6737] __dump_stack+0x21/0x30 [ 1087.397563][ T6737] dump_stack_lvl+0x10c/0x190 [ 1087.397586][ T6737] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1087.397611][ T6737] ? kstrtoull+0x13b/0x1e0 [ 1087.397629][ T6737] dump_stack+0x19/0x20 [ 1087.397651][ T6737] should_fail_ex+0x3d9/0x530 [ 1087.397671][ T6737] should_fail+0xf/0x20 [ 1087.397688][ T6737] should_fail_usercopy+0x1e/0x30 [ 1087.397708][ T6737] _copy_from_user+0x22/0xb0 [ 1087.397730][ T6737] ___sys_sendmsg+0x159/0x2a0 [ 1087.397755][ T6737] ? __sys_sendmsg+0x280/0x280 [ 1087.397780][ T6737] ? proc_fail_nth_write+0x17e/0x210 [ 1087.397804][ T6737] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 1087.397833][ T6737] __x64_sys_sendmsg+0x1eb/0x2c0 [ 1087.397859][ T6737] ? fput+0x1a5/0x240 [ 1087.397880][ T6737] ? __cfi___x64_sys_sendmsg+0x10/0x10 [ 1087.397906][ T6737] ? ksys_write+0x1ef/0x250 [ 1087.397924][ T6737] ? __kasan_check_read+0x15/0x20 [ 1087.397950][ T6737] x64_sys_call+0x2a4c/0x2ee0 [ 1087.397975][ T6737] do_syscall_64+0x58/0xf0 [ 1087.397997][ T6737] ? clear_bhb_loop+0x50/0xa0 [ 1087.398017][ T6737] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1087.398037][ T6737] RIP: 0033:0x7fe69418f6c9 [ 1087.398053][ T6737] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1087.398069][ T6737] RSP: 002b:00007fe6950d9038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1087.398091][ T6737] RAX: ffffffffffffffda RBX: 00007fe6943e5fa0 RCX: 00007fe69418f6c9 [ 1087.398106][ T6737] RDX: 0000000000040080 RSI: 0000200000000740 RDI: 0000000000000006 [ 1087.398120][ T6737] RBP: 00007fe6950d9090 R08: 0000000000000000 R09: 0000000000000000 [ 1087.398133][ T6737] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1087.398145][ T6737] R13: 00007fe6943e6038 R14: 00007fe6943e5fa0 R15: 00007ffcf9244358 [ 1087.398162][ T6737] [ 1087.572549][ T54] Bluetooth: hci1: Opcode 0x1003 failed: -110 [ 1087.577299][ T5838] Bluetooth: hci1: command 0x1003 tx timeout [ 1087.816643][ T6794] 9pnet_fd: Insufficient options for proto=fd [ 1087.835386][ T6799] fuse: Bad value for 'fd' [ 1087.899178][ T6816] 9pnet_fd: Insufficient options for proto=fd [ 1087.934946][ T36] audit: type=1400 audit(2000000263.190:281): avc: denied { ioctl } for pid=6817 comm="syz.1.33876" path="socket:[402776]" dev="sockfs" ino=402776 ioctlcmd=0x942e scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1 [ 1087.998807][ T6826] fuse: Bad value for 'fd' [ 1088.159807][ T6851] FAULT_INJECTION: forcing a failure. [ 1088.159807][ T6851] name failslab, interval 1, probability 0, space 0, times 0 [ 1088.172737][ T6851] CPU: 1 UID: 0 PID: 6851 Comm: syz.1.33892 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1088.172771][ T6851] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1088.172784][ T6851] Call Trace: [ 1088.172790][ T6851] [ 1088.172798][ T6851] __dump_stack+0x21/0x30 [ 1088.172828][ T6851] dump_stack_lvl+0x10c/0x190 [ 1088.172852][ T6851] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1088.172874][ T6851] ? __kasan_check_write+0x18/0x20 [ 1088.172900][ T6851] ? proc_fail_nth_write+0x17e/0x210 [ 1088.172923][ T6851] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 1088.172943][ T6851] dump_stack+0x19/0x20 [ 1088.172961][ T6851] should_fail_ex+0x3d9/0x530 [ 1088.172978][ T6851] should_failslab+0xac/0x100 [ 1088.172996][ T6851] kmem_cache_alloc_noprof+0x42/0x430 [ 1088.173013][ T6851] ? getname_flags+0xc6/0x710 [ 1088.173030][ T6851] getname_flags+0xc6/0x710 [ 1088.173047][ T6851] ? build_open_flags+0x487/0x600 [ 1088.173071][ T6851] getname+0x1b/0x30 [ 1088.173088][ T6851] do_sys_openat2+0xcb/0x1c0 [ 1088.173109][ T6851] ? fput+0x1a5/0x240 [ 1088.173130][ T6851] ? do_sys_open+0x100/0x100 [ 1088.173152][ T6851] ? ksys_write+0x1ef/0x250 [ 1088.173166][ T6851] ? __cfi_ksys_write+0x10/0x10 [ 1088.173182][ T6851] __x64_sys_openat+0x13a/0x170 [ 1088.173206][ T6851] x64_sys_call+0xe69/0x2ee0 [ 1088.173231][ T6851] do_syscall_64+0x58/0xf0 [ 1088.173254][ T6851] ? clear_bhb_loop+0x50/0xa0 [ 1088.173274][ T6851] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1088.173293][ T6851] RIP: 0033:0x7fa3b4b8df10 [ 1088.173310][ T6851] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 69 95 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 bc 95 02 00 8b 44 [ 1088.173326][ T6851] RSP: 002b:00007fa3b5ac6f10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 1088.173347][ T6851] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007fa3b4b8df10 [ 1088.173361][ T6851] RDX: 0000000000000002 RSI: 00007fa3b5ac6fa0 RDI: 00000000ffffff9c [ 1088.173375][ T6851] RBP: 00007fa3b5ac6fa0 R08: 0000000000000000 R09: 0000000000000000 [ 1088.173387][ T6851] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 1088.173399][ T6851] R13: 00007fa3b4de6038 R14: 00007fa3b4de5fa0 R15: 00007ffe4f4c6048 [ 1088.173424][ T6851] [ 1088.639623][ T6891] FAULT_INJECTION: forcing a failure. [ 1088.639623][ T6891] name failslab, interval 1, probability 0, space 0, times 0 [ 1088.652498][ T6891] CPU: 0 UID: 0 PID: 6891 Comm: syz.2.33912 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1088.652530][ T6891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1088.652542][ T6891] Call Trace: [ 1088.652549][ T6891] [ 1088.652557][ T6891] __dump_stack+0x21/0x30 [ 1088.652585][ T6891] dump_stack_lvl+0x10c/0x190 [ 1088.652612][ T6891] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1088.652637][ T6891] dump_stack+0x19/0x20 [ 1088.652658][ T6891] should_fail_ex+0x3d9/0x530 [ 1088.652677][ T6891] should_failslab+0xac/0x100 [ 1088.652698][ T6891] kmem_cache_alloc_noprof+0x42/0x430 [ 1088.652716][ T6891] ? __khugepaged_enter+0x78/0x330 [ 1088.652736][ T6891] __khugepaged_enter+0x78/0x330 [ 1088.652756][ T6891] khugepaged_enter_vma+0x3ff/0x430 [ 1088.652777][ T6891] hugepage_madvise+0xaf/0xd0 [ 1088.652797][ T6891] madvise_vma_behavior+0x6b4/0x2d40 [ 1088.652823][ T6891] ? __cfi_madvise_vma_behavior+0x10/0x10 [ 1088.652848][ T6891] ? is_bpf_text_address+0x17b/0x1a0 [ 1088.652868][ T6891] ? kernel_text_address+0xa9/0xe0 [ 1088.652890][ T6891] ? __kernel_text_address+0x11/0x40 [ 1088.652911][ T6891] ? unwind_get_return_address+0x51/0x90 [ 1088.652932][ T6891] ? __cfi_stack_trace_consume_entry+0x10/0x10 [ 1088.652958][ T6891] ? arch_stack_walk+0x10b/0x170 [ 1088.652976][ T6891] ? _parse_integer_limit+0x195/0x1e0 [ 1088.653002][ T6891] ? mtree_range_walk+0x573/0x730 [ 1088.653027][ T6891] ? mas_prev_slot+0xab4/0xb60 [ 1088.653047][ T6891] ? mas_prev+0x5f/0xa0 [ 1088.653064][ T6891] ? find_vma_prev+0xfd/0x170 [ 1088.653081][ T6891] ? __cfi_find_vma_prev+0x10/0x10 [ 1088.653099][ T6891] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 1088.653123][ T6891] ? bpf_lsm_file_permission+0xd/0x20 [ 1088.653148][ T6891] madvise_walk_vmas+0x3ec/0x700 [ 1088.653172][ T6891] ? __cfi_madvise_vma_behavior+0x10/0x10 [ 1088.653197][ T6891] ? down_write_killable+0xe9/0x2d0 [ 1088.653216][ T6891] ? madvise_set_anon_name+0x610/0x610 [ 1088.653239][ T6891] ? __asan_memset+0x39/0x50 [ 1088.653253][ T6891] ? blk_start_plug+0x72/0x1c0 [ 1088.653272][ T6891] do_madvise+0x5c0/0xb70 [ 1088.653295][ T6891] ? __cfi_do_madvise+0x10/0x10 [ 1088.653319][ T6891] ? ksys_write+0x1ef/0x250 [ 1088.653336][ T6891] ? __cfi_ksys_write+0x10/0x10 [ 1088.653354][ T6891] __x64_sys_madvise+0xae/0xc0 [ 1088.653378][ T6891] x64_sys_call+0x20c3/0x2ee0 [ 1088.653402][ T6891] do_syscall_64+0x58/0xf0 [ 1088.653431][ T6891] ? clear_bhb_loop+0x50/0xa0 [ 1088.653452][ T6891] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1088.653471][ T6891] RIP: 0033:0x7efcb618f6c9 [ 1088.653487][ T6891] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1088.653503][ T6891] RSP: 002b:00007efcb6f95038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 1088.653524][ T6891] RAX: ffffffffffffffda RBX: 00007efcb63e5fa0 RCX: 00007efcb618f6c9 [ 1088.653536][ T6891] RDX: 000000000000000e RSI: 0000000000004000 RDI: 0000200000a93000 [ 1088.653549][ T6891] RBP: 00007efcb6f95090 R08: 0000000000000000 R09: 0000000000000000 [ 1088.653561][ T6891] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1088.653573][ T6891] R13: 00007efcb63e6038 R14: 00007efcb63e5fa0 R15: 00007fffbf67c5a8 [ 1088.653590][ T6891] [ 1089.081866][ T329] Bluetooth: hci1: Frame reassembly failed (-84) [ 1089.311695][ T6945] 9pnet_fd: Insufficient options for proto=fd [ 1089.732511][ T1295] Bluetooth: hci0: command 0x1003 tx timeout [ 1089.738626][ T54] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 1090.501538][ T6979] fuse: Bad value for 'fd' [ 1091.054768][ T6997] fuse: Bad value for 'fd' [ 1091.092529][ T5838] Bluetooth: hci1: Opcode 0x1003 failed: -110 [ 1091.093992][ T54] Bluetooth: hci1: command 0x1003 tx timeout [ 1091.160554][ T36] audit: type=1400 audit(2000000266.410:282): avc: denied { unmount } for pid=5134 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1 [ 1091.473609][ T7061] netlink: 'syz.1.33993': attribute type 4 has an invalid length. [ 1091.485363][ T7061] netlink: 'syz.1.33993': attribute type 5 has an invalid length. [ 1091.493833][ T7061] netlink: 3657 bytes leftover after parsing attributes in process `syz.1.33993'. [ 1092.254176][ T7087] 9pnet_fd: Insufficient options for proto=fd [ 1093.291976][ T7141] FAULT_INJECTION: forcing a failure. [ 1093.291976][ T7141] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1093.305107][ T7141] CPU: 1 UID: 0 PID: 7141 Comm: syz.1.34034 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1093.305139][ T7141] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1093.305151][ T7141] Call Trace: [ 1093.305158][ T7141] [ 1093.305166][ T7141] __dump_stack+0x21/0x30 [ 1093.305195][ T7141] dump_stack_lvl+0x10c/0x190 [ 1093.305218][ T7141] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1093.305242][ T7141] ? check_stack_object+0x12c/0x140 [ 1093.305260][ T7141] dump_stack+0x19/0x20 [ 1093.305282][ T7141] should_fail_ex+0x3d9/0x530 [ 1093.305302][ T7141] should_fail+0xf/0x20 [ 1093.305320][ T7141] should_fail_usercopy+0x1e/0x30 [ 1093.305339][ T7141] _copy_to_user+0x24/0xa0 [ 1093.305362][ T7141] simple_read_from_buffer+0xed/0x160 [ 1093.305385][ T7141] proc_fail_nth_read+0x19e/0x210 [ 1093.305409][ T7141] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 1093.305432][ T7141] ? bpf_lsm_file_permission+0xd/0x20 [ 1093.305456][ T7141] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 1093.305479][ T7141] vfs_read+0x27d/0xc70 [ 1093.305497][ T7141] ? __cfi_vfs_read+0x10/0x10 [ 1093.305513][ T7141] ? __kasan_check_write+0x18/0x20 [ 1093.305539][ T7141] ? mutex_lock+0x92/0x1c0 [ 1093.305557][ T7141] ? __cfi_mutex_lock+0x10/0x10 [ 1093.305575][ T7141] ? __fget_files+0x2c5/0x340 [ 1093.305595][ T7141] ksys_read+0x141/0x250 [ 1093.305612][ T7141] ? __cfi_ksys_read+0x10/0x10 [ 1093.305629][ T7141] ? __kasan_check_read+0x15/0x20 [ 1093.305655][ T7141] __x64_sys_read+0x7f/0x90 [ 1093.305672][ T7141] x64_sys_call+0x2638/0x2ee0 [ 1093.305697][ T7141] do_syscall_64+0x58/0xf0 [ 1093.305721][ T7141] ? clear_bhb_loop+0x50/0xa0 [ 1093.305741][ T7141] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1093.305760][ T7141] RIP: 0033:0x7fa3b4b8e0dc [ 1093.305777][ T7141] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 1093.305794][ T7141] RSP: 002b:00007fa3b5ac7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1093.305815][ T7141] RAX: ffffffffffffffda RBX: 00007fa3b4de5fa0 RCX: 00007fa3b4b8e0dc [ 1093.305830][ T7141] RDX: 000000000000000f RSI: 00007fa3b5ac70a0 RDI: 000000000000000a [ 1093.305844][ T7141] RBP: 00007fa3b5ac7090 R08: 0000000000000000 R09: 0000000000000000 [ 1093.305857][ T7141] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1093.305869][ T7141] R13: 00007fa3b4de6038 R14: 00007fa3b4de5fa0 R15: 00007ffe4f4c6048 [ 1093.305886][ T7141] [ 1093.372971][ T54] Bluetooth: hci0: command 0x1003 tx timeout [ 1093.382759][ T5838] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 1093.682957][ T7174] 9pnet: Could not find request transport: fd0xffffffffffffffff00000000000000000000 [ 1093.708619][ T7180] fuse: Bad value for 'fd' [ 1093.815415][ T7203] 9pnet_fd: Insufficient options for proto=fd [ 1094.697387][ T7287] 9pnet_fd: Insufficient options for proto=fd [ 1096.052488][ T54] Bluetooth: hci0: command 0x1003 tx timeout [ 1096.052508][ T5838] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 1096.656929][T31927] Bluetooth: hci0: Frame reassembly failed (-84) [ 1097.482509][T32475] usb 3-1: new full-speed USB device number 15 using dummy_hcd [ 1097.643551][T32475] usb 3-1: config 0 has no interfaces? [ 1097.649061][T32475] usb 3-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58 [ 1097.668417][T32475] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1097.687301][T32475] usb 3-1: config 0 descriptor?? [ 1097.730143][T31927] Bluetooth: hci1: Frame reassembly failed (-84) [ 1097.895063][T32475] usb 3-1: USB disconnect, device number 15 [ 1098.692485][ T5838] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 1098.692486][ T1295] Bluetooth: hci0: command 0x1003 tx timeout [ 1099.812549][ T5838] Bluetooth: hci1: command 0x1003 tx timeout [ 1099.812559][ T54] Bluetooth: hci1: Opcode 0x1003 failed: -110 [ 1100.046441][ T7698] 9pnet_fd: Insufficient options for proto=fd [ 1100.477678][ T36] audit: type=1400 audit(2000000275.730:283): avc: denied { map } for pid=7755 comm="syz.3.34339" path="socket:[407877]" dev="sockfs" ino=407877 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 1100.542491][ T36] audit: type=1400 audit(2000000275.780:284): avc: denied { setattr } for pid=7755 comm="syz.3.34339" name="NETLINK" dev="sockfs" ino=407877 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 1101.037525][ T7784] kvm: pic: non byte read [ 1101.046381][ T7784] kvm: pic: non byte read [ 1101.050992][ T7784] kvm: pic: single mode not supported [ 1101.051007][ T7784] kvm: pic: level sensitive irq not supported [ 1101.056806][ T7784] kvm: pic: non byte read [ 1101.067563][ T7784] kvm: pic: single mode not supported [ 1101.067623][ T7784] kvm: pic: non byte read [ 1101.077992][ T7784] kvm: pic: non byte read [ 1101.087646][ T7784] kvm: pic: non byte read [ 1101.097909][ T7784] kvm: pic: single mode not supported [ 1101.097928][ T7784] kvm: pic: level sensitive irq not supported [ 1101.104220][ T7784] kvm: pic: non byte read [ 1101.115059][ T7784] kvm: pic: single mode not supported [ 1101.115119][ T7784] kvm: pic: non byte read [ 1101.125619][ T7784] kvm: pic: non byte read [ 1102.172496][ T36] audit: type=1400 audit(2000000277.420:285): avc: denied { create } for pid=7821 comm="syz.1.34372" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=tcp_socket permissive=1 [ 1104.452500][ T5838] Bluetooth: hci0: command 0x1003 tx timeout [ 1104.452525][ T54] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 1106.146256][ T7996] 9pnet_fd: Insufficient options for proto=fd [ 1107.290694][ T8054] fuse: Bad value for 'fd' [ 1107.585104][ T8074] fuse: Bad value for 'fd' [ 1108.673607][ T8116] fuse: Bad value for 'fd' [ 1110.150640][ T8188] fuse: Bad value for 'fd' [ 1110.171760][ T8190] fuse: Bad value for 'fd' [ 1110.744134][ T8212] fuse: Bad value for 'fd' [ 1110.772484][ T54] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 1110.772497][ T5838] Bluetooth: hci0: command 0x1003 tx timeout [ 1111.008836][ T8238] fuse: Bad value for 'fd' [ 1113.683491][ T8360] fuse: Bad value for 'fd' [ 1113.731525][ T8365] FAULT_INJECTION: forcing a failure. [ 1113.731525][ T8365] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1113.782513][ T8365] CPU: 1 UID: 0 PID: 8365 Comm: syz.0.34643 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1113.782545][ T8365] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1113.782558][ T8365] Call Trace: [ 1113.782565][ T8365] [ 1113.782573][ T8365] __dump_stack+0x21/0x30 [ 1113.782601][ T8365] dump_stack_lvl+0x10c/0x190 [ 1113.782625][ T8365] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1113.782648][ T8365] ? selinux_file_open+0x457/0x610 [ 1113.782671][ T8365] dump_stack+0x19/0x20 [ 1113.782690][ T8365] should_fail_ex+0x3d9/0x530 [ 1113.782709][ T8365] should_fail_alloc_page+0xeb/0x110 [ 1113.782730][ T8365] __alloc_pages_noprof+0x19b/0x7b0 [ 1113.782755][ T8365] ? __cfi___alloc_pages_noprof+0x10/0x10 [ 1113.782784][ T8365] ? is_bpf_text_address+0x17b/0x1a0 [ 1113.782805][ T8365] ? __kernel_text_address+0x11/0x40 [ 1113.782826][ T8365] ? unwind_get_return_address+0x51/0x90 [ 1113.782847][ T8365] ? __cfi_stack_trace_consume_entry+0x10/0x10 [ 1113.782872][ T8365] ? arch_stack_walk+0x10b/0x170 [ 1113.782889][ T8365] __folio_alloc_noprof+0x14/0x80 [ 1113.782923][ T8365] folio_prealloc+0x46/0x240 [ 1113.782944][ T8365] do_pte_missing+0x164c/0x4240 [ 1113.782964][ T8365] ? _parse_integer+0x2e/0x40 [ 1113.782991][ T8365] ? pte_marker_clear+0x1b0/0x1b0 [ 1113.783012][ T8365] ? kstrtouint_from_user+0xfb/0x150 [ 1113.783029][ T8365] ? __x64_sys_openat+0x13a/0x170 [ 1113.783052][ T8365] ? x64_sys_call+0xe69/0x2ee0 [ 1113.783077][ T8365] ? selinux_file_permission+0x309/0xb30 [ 1113.783098][ T8365] ? __pte_offset_map+0x1b0/0x230 [ 1113.783122][ T8365] ? pte_offset_map_rw_nolock+0xba/0x110 [ 1113.783148][ T8365] handle_mm_fault+0x1166/0x1b90 [ 1113.783175][ T8365] ? __cfi_handle_mm_fault+0x10/0x10 [ 1113.783193][ T8365] ? lock_vma_under_rcu+0x49d/0x540 [ 1113.783216][ T8365] ? __kasan_check_write+0x18/0x20 [ 1113.783242][ T8365] do_user_addr_fault+0x96c/0x1200 [ 1113.783265][ T8365] ? __cfi_ksys_write+0x10/0x10 [ 1113.783284][ T8365] exc_page_fault+0x59/0xc0 [ 1113.783303][ T8365] asm_exc_page_fault+0x2b/0x30 [ 1113.783321][ T8365] RIP: 0033:0x7f4a6ec60576 [ 1113.783336][ T8365] Code: 00 00 00 00 41 57 31 c0 41 56 49 89 d6 41 55 49 89 f5 48 89 d6 41 54 49 89 fc 48 8d 3d 0c 2f 1b 00 55 53 48 81 ec 88 20 00 00 <48> 89 0c 24 4c 89 44 24 08 e8 ec d9 fe ff 4d 85 f6 0f 84 46 0a 00 [ 1113.783352][ T8365] RSP: 002b:00007f4a6fbc9f70 EFLAGS: 00010202 [ 1113.783369][ T8365] RAX: 0000000000000000 RBX: 00007f4a6efe5fa0 RCX: 0000000000000000 [ 1113.783382][ T8365] RDX: 0000200000000040 RSI: 0000200000000040 RDI: 00007f4a6ee13479 [ 1113.783396][ T8365] RBP: 00007f4a6fbcc090 R08: 00007f4a6ec4e2f0 R09: 0000000000000000 [ 1113.783408][ T8365] R10: 0000000000000002 R11: 0000200000000040 R12: 0000000000000002 [ 1113.783420][ T8365] R13: 000000000000003f R14: 0000200000000040 R15: 00007ffd97d9ec68 [ 1113.783435][ T8365] [ 1113.783446][ T8365] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF [ 1114.292499][ T31] usb 1-1: new full-speed USB device number 14 using dummy_hcd [ 1114.453734][ T31] usb 1-1: config 0 has no interfaces? [ 1114.459337][ T31] usb 1-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58 [ 1114.475784][ T31] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1114.491693][ T31] usb 1-1: config 0 descriptor?? [ 1114.705588][ T31] usb 1-1: USB disconnect, device number 14 [ 1115.452884][ T8523] FAULT_INJECTION: forcing a failure. [ 1115.452884][ T8523] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1115.476011][ T8523] CPU: 0 UID: 0 PID: 8523 Comm: syz.0.34722 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1115.476043][ T8523] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1115.476056][ T8523] Call Trace: [ 1115.476063][ T8523] [ 1115.476076][ T8523] __dump_stack+0x21/0x30 [ 1115.476105][ T8523] dump_stack_lvl+0x10c/0x190 [ 1115.476129][ T8523] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1115.476153][ T8523] ? vfs_write+0x93e/0xf30 [ 1115.476172][ T8523] dump_stack+0x19/0x20 [ 1115.476194][ T8523] should_fail_ex+0x3d9/0x530 [ 1115.476213][ T8523] should_fail+0xf/0x20 [ 1115.476231][ T8523] should_fail_usercopy+0x1e/0x30 [ 1115.476250][ T8523] _copy_from_user+0x22/0xb0 [ 1115.476273][ T8523] __se_sys_sched_setscheduler+0xbf/0x300 [ 1115.476295][ T8523] ? __kasan_check_write+0x18/0x20 [ 1115.476320][ T8523] ? __x64_sys_sched_setscheduler+0xa0/0xa0 [ 1115.476341][ T8523] ? ksys_write+0x1ef/0x250 [ 1115.476359][ T8523] ? __cfi_ksys_write+0x10/0x10 [ 1115.476377][ T8523] ? __kasan_check_read+0x15/0x20 [ 1115.476402][ T8523] __x64_sys_sched_setscheduler+0x7a/0xa0 [ 1115.476423][ T8523] x64_sys_call+0x20e7/0x2ee0 [ 1115.476448][ T8523] do_syscall_64+0x58/0xf0 [ 1115.476471][ T8523] ? clear_bhb_loop+0x50/0xa0 [ 1115.476491][ T8523] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1115.476511][ T8523] RIP: 0033:0x7f4a6ed8f6c9 [ 1115.476527][ T8523] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1115.476543][ T8523] RSP: 002b:00007f4a6fbcc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000090 [ 1115.476564][ T8523] RAX: ffffffffffffffda RBX: 00007f4a6efe5fa0 RCX: 00007f4a6ed8f6c9 [ 1115.476578][ T8523] RDX: 0000200000000200 RSI: 0000000000000002 RDI: 0000000000000000 [ 1115.476591][ T8523] RBP: 00007f4a6fbcc090 R08: 0000000000000000 R09: 0000000000000000 [ 1115.476604][ T8523] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1115.476624][ T8523] R13: 00007f4a6efe6038 R14: 00007f4a6efe5fa0 R15: 00007ffd97d9ec68 [ 1115.476641][ T8523] [ 1117.054090][T31927] Bluetooth: hci1: Frame reassembly failed (-84) [ 1117.110436][ T8630] fuse: Bad value for 'fd' [ 1117.242693][ T8652] fuse: Bad value for 'fd' [ 1117.336092][ T8674] fuse: Bad value for 'fd' [ 1117.593334][ T8700] FAULT_INJECTION: forcing a failure. [ 1117.593334][ T8700] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1117.606503][ T8700] CPU: 0 UID: 0 PID: 8700 Comm: syz.1.34808 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1117.606534][ T8700] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1117.606545][ T8700] Call Trace: [ 1117.606552][ T8700] [ 1117.606561][ T8700] __dump_stack+0x21/0x30 [ 1117.606587][ T8700] dump_stack_lvl+0x10c/0x190 [ 1117.606608][ T8700] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1117.606631][ T8700] ? do_vfs_ioctl+0xeda/0x1e30 [ 1117.606651][ T8700] ? check_stack_object+0x107/0x140 [ 1117.606668][ T8700] dump_stack+0x19/0x20 [ 1117.606690][ T8700] should_fail_ex+0x3d9/0x530 [ 1117.606710][ T8700] should_fail+0xf/0x20 [ 1117.606726][ T8700] should_fail_usercopy+0x1e/0x30 [ 1117.606747][ T8700] _copy_from_user+0x22/0xb0 [ 1117.606769][ T8700] kvm_vm_ioctl+0x5f7/0xb80 [ 1117.606792][ T8700] ? __cfi_kvm_vm_ioctl+0x10/0x10 [ 1117.606813][ T8700] ? ioctl_has_perm+0x1aa/0x4d0 [ 1117.606834][ T8700] ? __asan_memcpy+0x5a/0x80 [ 1117.606850][ T8700] ? ioctl_has_perm+0x3e0/0x4d0 [ 1117.606872][ T8700] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 1117.606896][ T8700] ? selinux_file_ioctl+0x6e0/0x1360 [ 1117.606915][ T8700] ? vfs_write+0x93e/0xf30 [ 1117.606931][ T8700] ? __cfi_selinux_file_ioctl+0x10/0x10 [ 1117.606952][ T8700] ? __cfi_vfs_write+0x10/0x10 [ 1117.606968][ T8700] ? __kasan_check_write+0x18/0x20 [ 1117.606993][ T8700] ? mutex_unlock+0x8b/0x240 [ 1117.607011][ T8700] ? __cfi_mutex_unlock+0x10/0x10 [ 1117.607027][ T8700] ? __fget_files+0x2c5/0x340 [ 1117.607055][ T8700] ? __fget_files+0x2c5/0x340 [ 1117.607075][ T8700] ? bpf_lsm_file_ioctl+0xd/0x20 [ 1117.607099][ T8700] ? security_file_ioctl+0x34/0xd0 [ 1117.607120][ T8700] ? __cfi_kvm_vm_ioctl+0x10/0x10 [ 1117.607142][ T8700] __se_sys_ioctl+0x135/0x1b0 [ 1117.607162][ T8700] __x64_sys_ioctl+0x7f/0xa0 [ 1117.607180][ T8700] x64_sys_call+0x1878/0x2ee0 [ 1117.607205][ T8700] do_syscall_64+0x58/0xf0 [ 1117.607227][ T8700] ? clear_bhb_loop+0x50/0xa0 [ 1117.607248][ T8700] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1117.607267][ T8700] RIP: 0033:0x7fa3b4b8f6c9 [ 1117.607284][ T8700] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1117.607300][ T8700] RSP: 002b:00007fa3b5ac7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1117.607321][ T8700] RAX: ffffffffffffffda RBX: 00007fa3b4de5fa0 RCX: 00007fa3b4b8f6c9 [ 1117.607336][ T8700] RDX: 0000200000000180 RSI: 000000004020ae46 RDI: 0000000000000007 [ 1117.607349][ T8700] RBP: 00007fa3b5ac7090 R08: 0000000000000000 R09: 0000000000000000 [ 1117.607362][ T8700] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1117.607374][ T8700] R13: 00007fa3b4de6038 R14: 00007fa3b4de5fa0 R15: 00007ffe4f4c6048 [ 1117.607390][ T8700] [ 1117.972520][ T1295] Bluetooth: hci0: command 0x1003 tx timeout [ 1117.978667][ T54] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 1118.107826][ T8758] FAULT_INJECTION: forcing a failure. [ 1118.107826][ T8758] name failslab, interval 1, probability 0, space 0, times 0 [ 1118.120523][ T8758] CPU: 1 UID: 0 PID: 8758 Comm: syz.2.34837 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1118.120552][ T8758] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1118.120563][ T8758] Call Trace: [ 1118.120569][ T8758] [ 1118.120576][ T8758] __dump_stack+0x21/0x30 [ 1118.120605][ T8758] dump_stack_lvl+0x10c/0x190 [ 1118.120628][ T8758] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1118.120651][ T8758] ? __kasan_check_write+0x18/0x20 [ 1118.120676][ T8758] ? proc_fail_nth_write+0x17e/0x210 [ 1118.120704][ T8758] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 1118.120729][ T8758] dump_stack+0x19/0x20 [ 1118.120750][ T8758] should_fail_ex+0x3d9/0x530 [ 1118.120768][ T8758] should_failslab+0xac/0x100 [ 1118.120787][ T8758] kmem_cache_alloc_noprof+0x42/0x430 [ 1118.120802][ T8758] ? getname_flags+0xc6/0x710 [ 1118.120824][ T8758] getname_flags+0xc6/0x710 [ 1118.120841][ T8758] ? build_open_flags+0x487/0x600 [ 1118.120864][ T8758] getname+0x1b/0x30 [ 1118.120878][ T8758] do_sys_openat2+0xcb/0x1c0 [ 1118.120898][ T8758] ? fput+0x1a5/0x240 [ 1118.120915][ T8758] ? do_sys_open+0x100/0x100 [ 1118.120936][ T8758] ? ksys_write+0x1ef/0x250 [ 1118.120953][ T8758] ? __cfi_ksys_write+0x10/0x10 [ 1118.120971][ T8758] __x64_sys_openat+0x13a/0x170 [ 1118.120995][ T8758] x64_sys_call+0xe69/0x2ee0 [ 1118.121020][ T8758] do_syscall_64+0x58/0xf0 [ 1118.121043][ T8758] ? clear_bhb_loop+0x50/0xa0 [ 1118.121064][ T8758] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1118.121084][ T8758] RIP: 0033:0x7efcb618f6c9 [ 1118.121100][ T8758] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1118.121116][ T8758] RSP: 002b:00007efcb6f95038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1118.121153][ T8758] RAX: ffffffffffffffda RBX: 00007efcb63e5fa0 RCX: 00007efcb618f6c9 [ 1118.121175][ T8758] RDX: 0000000000000002 RSI: 0000200000000180 RDI: ffffffffffffff9c [ 1118.121189][ T8758] RBP: 00007efcb6f95090 R08: 0000000000000000 R09: 0000000000000000 [ 1118.121201][ T8758] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1118.121212][ T8758] R13: 00007efcb63e6038 R14: 00007efcb63e5fa0 R15: 00007fffbf67c5a8 [ 1118.121229][ T8758] [ 1118.554771][ T329] Bluetooth: hci0: Frame reassembly failed (-84) [ 1118.857383][ T8823] FAULT_INJECTION: forcing a failure. [ 1118.857383][ T8823] name failslab, interval 1, probability 0, space 0, times 0 [ 1118.870072][ T8823] CPU: 0 UID: 0 PID: 8823 Comm: syz.2.34868 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1118.870106][ T8823] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1118.870118][ T8823] Call Trace: [ 1118.870125][ T8823] [ 1118.870133][ T8823] __dump_stack+0x21/0x30 [ 1118.870161][ T8823] dump_stack_lvl+0x10c/0x190 [ 1118.870184][ T8823] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1118.870208][ T8823] ? __kasan_check_write+0x18/0x20 [ 1118.870234][ T8823] ? proc_fail_nth_write+0x17e/0x210 [ 1118.870258][ T8823] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 1118.870281][ T8823] dump_stack+0x19/0x20 [ 1118.870304][ T8823] should_fail_ex+0x3d9/0x530 [ 1118.870324][ T8823] should_failslab+0xac/0x100 [ 1118.870344][ T8823] kmem_cache_alloc_noprof+0x42/0x430 [ 1118.870362][ T8823] ? getname_flags+0xc6/0x710 [ 1118.870381][ T8823] getname_flags+0xc6/0x710 [ 1118.870398][ T8823] ? build_open_flags+0x487/0x600 [ 1118.870422][ T8823] getname+0x1b/0x30 [ 1118.870439][ T8823] do_sys_openat2+0xcb/0x1c0 [ 1118.870461][ T8823] ? fput+0x1a5/0x240 [ 1118.870483][ T8823] ? do_sys_open+0x100/0x100 [ 1118.870505][ T8823] ? ksys_write+0x1ef/0x250 [ 1118.870522][ T8823] ? __cfi_ksys_write+0x10/0x10 [ 1118.870540][ T8823] __x64_sys_openat+0x13a/0x170 [ 1118.870564][ T8823] x64_sys_call+0xe69/0x2ee0 [ 1118.870588][ T8823] do_syscall_64+0x58/0xf0 [ 1118.870611][ T8823] ? clear_bhb_loop+0x50/0xa0 [ 1118.870639][ T8823] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1118.870659][ T8823] RIP: 0033:0x7efcb618f6c9 [ 1118.870674][ T8823] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1118.870691][ T8823] RSP: 002b:00007efcb6f95038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1118.870712][ T8823] RAX: ffffffffffffffda RBX: 00007efcb63e5fa0 RCX: 00007efcb618f6c9 [ 1118.870727][ T8823] RDX: 0000000000000002 RSI: 0000200000000180 RDI: ffffffffffffff9c [ 1118.870741][ T8823] RBP: 00007efcb6f95090 R08: 0000000000000000 R09: 0000000000000000 [ 1118.870753][ T8823] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1118.870766][ T8823] R13: 00007efcb63e6038 R14: 00007efcb63e5fa0 R15: 00007fffbf67c5a8 [ 1118.870782][ T8823] [ 1119.092546][ T1295] Bluetooth: hci1: command 0x1003 tx timeout [ 1119.092724][ T5838] Bluetooth: hci1: Opcode 0x1003 failed: -110 [ 1119.186448][ T329] Bluetooth: hci1: Frame reassembly failed (-84) [ 1119.835890][ T8892] FAULT_INJECTION: forcing a failure. [ 1119.835890][ T8892] name failslab, interval 1, probability 0, space 0, times 0 [ 1119.848637][ T8892] CPU: 1 UID: 0 PID: 8892 Comm: syz.2.34902 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1119.848666][ T8892] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1119.848678][ T8892] Call Trace: [ 1119.848685][ T8892] [ 1119.848694][ T8892] __dump_stack+0x21/0x30 [ 1119.848715][ T8892] dump_stack_lvl+0x10c/0x190 [ 1119.848727][ T8892] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1119.848740][ T8892] ? __kasan_check_write+0x18/0x20 [ 1119.848755][ T8892] ? proc_fail_nth_write+0x17e/0x210 [ 1119.848769][ T8892] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 1119.848782][ T8892] dump_stack+0x19/0x20 [ 1119.848793][ T8892] should_fail_ex+0x3d9/0x530 [ 1119.848805][ T8892] should_failslab+0xac/0x100 [ 1119.848816][ T8892] kmem_cache_alloc_noprof+0x42/0x430 [ 1119.848826][ T8892] ? getname_flags+0xc6/0x710 [ 1119.848837][ T8892] getname_flags+0xc6/0x710 [ 1119.848846][ T8892] ? build_open_flags+0x487/0x600 [ 1119.848860][ T8892] getname+0x1b/0x30 [ 1119.848869][ T8892] do_sys_openat2+0xcb/0x1c0 [ 1119.848881][ T8892] ? fput+0x1a5/0x240 [ 1119.848892][ T8892] ? do_sys_open+0x100/0x100 [ 1119.848903][ T8892] ? ksys_write+0x1ef/0x250 [ 1119.848912][ T8892] ? __cfi_ksys_write+0x10/0x10 [ 1119.848922][ T8892] __x64_sys_openat+0x13a/0x170 [ 1119.848934][ T8892] x64_sys_call+0xe69/0x2ee0 [ 1119.848947][ T8892] do_syscall_64+0x58/0xf0 [ 1119.848960][ T8892] ? clear_bhb_loop+0x50/0xa0 [ 1119.848971][ T8892] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1119.848982][ T8892] RIP: 0033:0x7efcb618df10 [ 1119.848991][ T8892] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 69 95 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 bc 95 02 00 8b 44 [ 1119.849001][ T8892] RSP: 002b:00007efcb6f94f10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 1119.849013][ T8892] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007efcb618df10 [ 1119.849021][ T8892] RDX: 0000000000000002 RSI: 00007efcb6f94fa0 RDI: 00000000ffffff9c [ 1119.849028][ T8892] RBP: 00007efcb6f94fa0 R08: 0000000000000000 R09: 0000000000000000 [ 1119.849035][ T8892] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 1119.849042][ T8892] R13: 00007efcb63e6038 R14: 00007efcb63e5fa0 R15: 00007fffbf67c5a8 [ 1119.849051][ T8892] [ 1120.393773][ T8916] kvm: pic: non byte read [ 1120.398447][ T8916] kvm: pic: non byte read [ 1120.403206][ T8916] kvm: pic: single mode not supported [ 1120.403222][ T8916] kvm: pic: level sensitive irq not supported [ 1120.408678][ T8916] kvm: pic: non byte read [ 1120.419365][ T8916] kvm: pic: single mode not supported [ 1120.419423][ T8916] kvm: pic: non byte read [ 1120.429461][ T8916] kvm: pic: non byte read [ 1120.434126][ T8916] kvm: pic: non byte read [ 1120.438734][ T8916] kvm: pic: single mode not supported [ 1120.438748][ T8916] kvm: pic: level sensitive irq not supported [ 1120.444532][ T8916] kvm: pic: non byte read [ 1120.455029][ T1294] Bluetooth: hci2: sending frame failed (-49) [ 1120.461235][ T1295] Bluetooth: hci2: Opcode 0x1003 failed: -49 [ 1120.469660][ T8916] kvm: pic: single mode not supported [ 1120.469728][ T8916] kvm: pic: non byte read [ 1120.479878][ T8916] kvm: pic: non byte read [ 1120.612584][ T1295] Bluetooth: hci0: command 0x1003 tx timeout [ 1120.618615][ T54] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 1120.722768][ T8952] FAULT_INJECTION: forcing a failure. [ 1120.722768][ T8952] name failslab, interval 1, probability 0, space 0, times 0 [ 1120.735544][ T8952] CPU: 0 UID: 0 PID: 8952 Comm: syz.0.34931 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1120.735576][ T8952] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1120.735589][ T8952] Call Trace: [ 1120.735595][ T8952] [ 1120.735603][ T8952] __dump_stack+0x21/0x30 [ 1120.735632][ T8952] dump_stack_lvl+0x10c/0x190 [ 1120.735654][ T8952] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1120.735678][ T8952] ? avc_has_perm+0x144/0x220 [ 1120.735703][ T8952] dump_stack+0x19/0x20 [ 1120.735724][ T8952] should_fail_ex+0x3d9/0x530 [ 1120.735741][ T8952] should_failslab+0xac/0x100 [ 1120.735758][ T8952] __kmalloc_cache_noprof+0x41/0x490 [ 1120.735775][ T8952] ? vhost_task_create+0x101/0x350 [ 1120.735793][ T8952] ? __cfi_kvm_nx_huge_page_recovery_worker+0x10/0x10 [ 1120.735814][ T8952] vhost_task_create+0x101/0x350 [ 1120.735832][ T8952] ? __cfi_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10 [ 1120.735854][ T8952] ? __cfi_vhost_task_create+0x10/0x10 [ 1120.735873][ T8952] ? __cfi_vhost_task_fn+0x10/0x10 [ 1120.735891][ T8952] ? __kasan_check_write+0x18/0x20 [ 1120.735916][ T8952] ? mutex_lock+0x92/0x1c0 [ 1120.735933][ T8952] ? __cfi_mutex_lock+0x10/0x10 [ 1120.735950][ T8952] ? kernel_text_address+0xa9/0xe0 [ 1120.735974][ T8952] kvm_mmu_post_init_vm+0x156/0x2d0 [ 1120.735999][ T8952] kvm_arch_vcpu_ioctl_run+0xd7/0x1aa0 [ 1120.736023][ T8952] ? _parse_integer_limit+0x195/0x1e0 [ 1120.736050][ T8952] ? __cfi_kvm_arch_vcpu_ioctl_run+0x10/0x10 [ 1120.736073][ T8952] ? kstrtoull+0x13b/0x1e0 [ 1120.736090][ T8952] ? kstrtouint+0x78/0xf0 [ 1120.736106][ T8952] ? ioctl_has_perm+0x1aa/0x4d0 [ 1120.736127][ T8952] ? __asan_memcpy+0x5a/0x80 [ 1120.736144][ T8952] ? ioctl_has_perm+0x3e0/0x4d0 [ 1120.736165][ T8952] ? has_cap_mac_admin+0xd0/0xd0 [ 1120.736196][ T8952] ? __kasan_check_write+0x18/0x20 [ 1120.736231][ T8952] ? mutex_lock_killable+0x92/0x1c0 [ 1120.736249][ T8952] ? __cfi_mutex_lock_killable+0x10/0x10 [ 1120.736267][ T8952] ? proc_fail_nth_write+0x17e/0x210 [ 1120.736292][ T8952] kvm_vcpu_ioctl+0x96f/0xee0 [ 1120.736310][ T8952] ? __cfi_kvm_vcpu_ioctl+0x10/0x10 [ 1120.736328][ T8952] ? __cfi_vfs_write+0x10/0x10 [ 1120.736346][ T8952] ? __kasan_check_write+0x18/0x20 [ 1120.736371][ T8952] ? mutex_unlock+0x8b/0x240 [ 1120.736388][ T8952] ? __cfi_mutex_unlock+0x10/0x10 [ 1120.736405][ T8952] ? __fget_files+0x2c5/0x340 [ 1120.736426][ T8952] ? __fget_files+0x2c5/0x340 [ 1120.736446][ T8952] ? bpf_lsm_file_ioctl+0xd/0x20 [ 1120.736467][ T8952] ? security_file_ioctl+0x34/0xd0 [ 1120.736486][ T8952] ? __cfi_kvm_vcpu_ioctl+0x10/0x10 [ 1120.736503][ T8952] __se_sys_ioctl+0x135/0x1b0 [ 1120.736523][ T8952] __x64_sys_ioctl+0x7f/0xa0 [ 1120.736542][ T8952] x64_sys_call+0x1878/0x2ee0 [ 1120.736566][ T8952] do_syscall_64+0x58/0xf0 [ 1120.736587][ T8952] ? clear_bhb_loop+0x50/0xa0 [ 1120.736608][ T8952] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1120.736629][ T8952] RIP: 0033:0x7f4a6ed8f6c9 [ 1120.736646][ T8952] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1120.736662][ T8952] RSP: 002b:00007f4a6fbcc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1120.736684][ T8952] RAX: ffffffffffffffda RBX: 00007f4a6efe5fa0 RCX: 00007f4a6ed8f6c9 [ 1120.736699][ T8952] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000008 [ 1120.736712][ T8952] RBP: 00007f4a6fbcc090 R08: 0000000000000000 R09: 0000000000000000 [ 1120.736725][ T8952] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1120.736737][ T8952] R13: 00007f4a6efe6038 R14: 00007f4a6efe5fa0 R15: 00007ffd97d9ec68 [ 1120.736753][ T8952] [ 1121.252485][ T54] Bluetooth: hci1: command 0x1003 tx timeout [ 1121.252482][ T5838] Bluetooth: hci1: Opcode 0x1003 failed: -110 [ 1121.593112][ T9004] FAULT_INJECTION: forcing a failure. [ 1121.593112][ T9004] name failslab, interval 1, probability 0, space 0, times 0 [ 1121.612520][ T9004] CPU: 0 UID: 0 PID: 9004 Comm: syz.3.34957 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1121.612552][ T9004] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1121.612564][ T9004] Call Trace: [ 1121.612571][ T9004] [ 1121.612578][ T9004] __dump_stack+0x21/0x30 [ 1121.612604][ T9004] dump_stack_lvl+0x10c/0x190 [ 1121.612625][ T9004] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1121.612645][ T9004] ? avc_has_extended_perms+0x921/0xdd0 [ 1121.612670][ T9004] dump_stack+0x19/0x20 [ 1121.612691][ T9004] should_fail_ex+0x3d9/0x530 [ 1121.612707][ T9004] should_failslab+0xac/0x100 [ 1121.612726][ T9004] __kmalloc_cache_node_noprof+0x46/0x450 [ 1121.612744][ T9004] ? __get_vm_area_node+0x154/0x3a0 [ 1121.612767][ T9004] __get_vm_area_node+0x154/0x3a0 [ 1121.612790][ T9004] __vmalloc_node_range_noprof+0x33c/0x1420 [ 1121.612812][ T9004] ? kvm_dev_ioctl+0x125/0x14d0 [ 1121.612837][ T9004] ? number+0xd21/0xf80 [ 1121.612859][ T9004] ? pointer+0xdd0/0xdd0 [ 1121.612880][ T9004] ? __cfi___vmalloc_node_range_noprof+0x10/0x10 [ 1121.612905][ T9004] ? vsnprintf+0x19b8/0x1aa0 [ 1121.612926][ T9004] ? kvm_dev_ioctl+0x125/0x14d0 [ 1121.612947][ T9004] __vmalloc_noprof+0xfe/0x1d0 [ 1121.612969][ T9004] ? kvm_dev_ioctl+0x125/0x14d0 [ 1121.612992][ T9004] ? alloc_fd+0x4e7/0x5a0 [ 1121.613009][ T9004] ? __cfi___vmalloc_noprof+0x10/0x10 [ 1121.613034][ T9004] kvm_dev_ioctl+0x125/0x14d0 [ 1121.613058][ T9004] ? __fget_files+0x2c5/0x340 [ 1121.613075][ T9004] ? __cfi_kvm_dev_ioctl+0x10/0x10 [ 1121.613096][ T9004] ? bpf_lsm_file_ioctl+0xd/0x20 [ 1121.613117][ T9004] ? security_file_ioctl+0x34/0xd0 [ 1121.613135][ T9004] ? __cfi_kvm_dev_ioctl+0x10/0x10 [ 1121.613168][ T9004] __se_sys_ioctl+0x135/0x1b0 [ 1121.613186][ T9004] __x64_sys_ioctl+0x7f/0xa0 [ 1121.613204][ T9004] x64_sys_call+0x1878/0x2ee0 [ 1121.613229][ T9004] do_syscall_64+0x58/0xf0 [ 1121.613249][ T9004] ? clear_bhb_loop+0x50/0xa0 [ 1121.613270][ T9004] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1121.613294][ T9004] RIP: 0033:0x7fe69418f6c9 [ 1121.613310][ T9004] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1121.613326][ T9004] RSP: 002b:00007fe6950d9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1121.613347][ T9004] RAX: ffffffffffffffda RBX: 00007fe6943e5fa0 RCX: 00007fe69418f6c9 [ 1121.613362][ T9004] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000007 [ 1121.613375][ T9004] RBP: 00007fe6950d9090 R08: 0000000000000000 R09: 0000000000000000 [ 1121.613387][ T9004] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1121.613400][ T9004] R13: 00007fe6943e6038 R14: 00007fe6943e5fa0 R15: 00007ffcf9244358 [ 1121.613416][ T9004] [ 1121.613426][ T9004] warn_alloc: 1 callbacks suppressed [ 1121.613436][ T9004] syz.3.34957: vmalloc error: size 39304, vm_struct allocation failed, mode:0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null) [ 1121.683360][ T9012] FAULT_INJECTION: forcing a failure. [ 1121.683360][ T9012] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1121.712491][ T9004] ,cpuset= [ 1121.733155][ T9012] CPU: 1 UID: 0 PID: 9012 Comm: syz.2.34961 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1121.733188][ T9012] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1121.733200][ T9012] Call Trace: [ 1121.733209][ T9012] [ 1121.733217][ T9012] __dump_stack+0x21/0x30 [ 1121.733245][ T9012] dump_stack_lvl+0x10c/0x190 [ 1121.733267][ T9012] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1121.733292][ T9012] dump_stack+0x19/0x20 [ 1121.733312][ T9012] should_fail_ex+0x3d9/0x530 [ 1121.733331][ T9012] should_fail+0xf/0x20 [ 1121.733347][ T9012] should_fail_usercopy+0x1e/0x30 [ 1121.733366][ T9012] _copy_from_user+0x22/0xb0 [ 1121.733388][ T9012] get_user_ifreq+0x71/0x180 [ 1121.733407][ T9012] sock_ioctl+0x6fb/0x7b0 [ 1121.733425][ T9012] ? __cfi_sock_ioctl+0x10/0x10 [ 1121.733443][ T9012] ? bpf_lsm_file_ioctl+0xd/0x20 [ 1121.733470][ T9012] ? security_file_ioctl+0x34/0xd0 [ 1121.733489][ T9012] ? __cfi_sock_ioctl+0x10/0x10 [ 1121.733507][ T9012] __se_sys_ioctl+0x135/0x1b0 [ 1121.733526][ T9012] __x64_sys_ioctl+0x7f/0xa0 [ 1121.733544][ T9012] x64_sys_call+0x1878/0x2ee0 [ 1121.733568][ T9012] do_syscall_64+0x58/0xf0 [ 1121.733589][ T9012] ? clear_bhb_loop+0x50/0xa0 [ 1121.733609][ T9012] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1121.733628][ T9012] RIP: 0033:0x7efcb618f6c9 [ 1121.733644][ T9012] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1121.733660][ T9012] RSP: 002b:00007efcb6f95038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1121.733680][ T9012] RAX: ffffffffffffffda RBX: 00007efcb63e5fa0 RCX: 00007efcb618f6c9 [ 1121.733694][ T9012] RDX: 0000200000000940 RSI: 00000000000089f3 RDI: 0000000000000008 [ 1121.733707][ T9012] RBP: 00007efcb6f95090 R08: 0000000000000000 R09: 0000000000000000 [ 1121.733719][ T9012] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1121.733731][ T9012] R13: 00007efcb63e6038 R14: 00007efcb63e5fa0 R15: 00007fffbf67c5a8 [ 1121.733747][ T9012] [ 1122.112540][ T9004] syz3,mems_allowed=0 [ 1122.122500][ T9004] CPU: 1 UID: 0 PID: 9004 Comm: syz.3.34957 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1122.122526][ T9004] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1122.122537][ T9004] Call Trace: [ 1122.122542][ T9004] [ 1122.122548][ T9004] __dump_stack+0x21/0x30 [ 1122.122575][ T9004] dump_stack_lvl+0x10c/0x190 [ 1122.122594][ T9004] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1122.122618][ T9004] dump_stack+0x19/0x20 [ 1122.122637][ T9004] warn_alloc+0x1bc/0x2a0 [ 1122.122658][ T9004] ? __kasan_kmalloc+0x28/0xb0 [ 1122.122676][ T9004] ? __cfi_warn_alloc+0x10/0x10 [ 1122.122697][ T9004] ? __get_vm_area_node+0x392/0x3a0 [ 1122.122719][ T9004] __vmalloc_node_range_noprof+0x361/0x1420 [ 1122.122743][ T9004] ? number+0xd21/0xf80 [ 1122.122762][ T9004] ? pointer+0xdd0/0xdd0 [ 1122.122783][ T9004] ? __cfi___vmalloc_node_range_noprof+0x10/0x10 [ 1122.122807][ T9004] ? vsnprintf+0x19b8/0x1aa0 [ 1122.122826][ T9004] ? kvm_dev_ioctl+0x125/0x14d0 [ 1122.122851][ T9004] __vmalloc_noprof+0xfe/0x1d0 [ 1122.122873][ T9004] ? kvm_dev_ioctl+0x125/0x14d0 [ 1122.122894][ T9004] ? alloc_fd+0x4e7/0x5a0 [ 1122.122912][ T9004] ? __cfi___vmalloc_noprof+0x10/0x10 [ 1122.122937][ T9004] kvm_dev_ioctl+0x125/0x14d0 [ 1122.122962][ T9004] ? __fget_files+0x2c5/0x340 [ 1122.122980][ T9004] ? __cfi_kvm_dev_ioctl+0x10/0x10 [ 1122.123005][ T9004] ? bpf_lsm_file_ioctl+0xd/0x20 [ 1122.123029][ T9004] ? security_file_ioctl+0x34/0xd0 [ 1122.123048][ T9004] ? __cfi_kvm_dev_ioctl+0x10/0x10 [ 1122.123083][ T9004] __se_sys_ioctl+0x135/0x1b0 [ 1122.123104][ T9004] __x64_sys_ioctl+0x7f/0xa0 [ 1122.123124][ T9004] x64_sys_call+0x1878/0x2ee0 [ 1122.123149][ T9004] do_syscall_64+0x58/0xf0 [ 1122.123170][ T9004] ? clear_bhb_loop+0x50/0xa0 [ 1122.123190][ T9004] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1122.123209][ T9004] RIP: 0033:0x7fe69418f6c9 [ 1122.123224][ T9004] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1122.123239][ T9004] RSP: 002b:00007fe6950d9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1122.123257][ T9004] RAX: ffffffffffffffda RBX: 00007fe6943e5fa0 RCX: 00007fe69418f6c9 [ 1122.123271][ T9004] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000007 [ 1122.123283][ T9004] RBP: 00007fe6950d9090 R08: 0000000000000000 R09: 0000000000000000 [ 1122.123296][ T9004] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1122.123307][ T9004] R13: 00007fe6943e6038 R14: 00007fe6943e5fa0 R15: 00007ffcf9244358 [ 1122.123320][ T9004] [ 1122.123332][ T9004] Mem-Info: [ 1122.386179][ T9004] active_anon:5936 inactive_anon:1 isolated_anon:0 [ 1122.386179][ T9004] active_file:23651 inactive_file:2779 isolated_file:0 [ 1122.386179][ T9004] unevictable:0 dirty:353 writeback:0 [ 1122.386179][ T9004] slab_reclaimable:10960 slab_unreclaimable:69244 [ 1122.386179][ T9004] mapped:25483 shmem:996 pagetables:661 [ 1122.386179][ T9004] sec_pagetables:0 bounce:0 [ 1122.386179][ T9004] kernel_misc_reclaimable:0 [ 1122.386179][ T9004] free:1513407 free_pcp:11733 free_cma:0 [ 1122.434174][ T9004] Node 0 active_anon:20444kB inactive_anon:4kB active_file:94604kB inactive_file:11116kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:101932kB dirty:1412kB writeback:0kB shmem:684kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:5040kB pagetables:2844kB sec_pagetables:0kB all_unreclaimable? no [ 1122.478727][ T9004] DMA32 free:2960212kB boost:0kB min:19088kB low:23860kB high:28632kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3145324kB managed:2965936kB mlocked:0kB bounce:0kB free_pcp:5724kB local_pcp:0kB free_cma:0kB [ 1122.509200][ T9004] lowmem_reserve[]: 0 3921 3921 [ 1122.516186][ T9004] Normal free:3100476kB boost:0kB min:25964kB low:32452kB high:38940kB reserved_highatomic:0KB free_highatomic:0KB active_anon:32844kB inactive_anon:4kB active_file:94604kB inactive_file:11116kB unevictable:0kB writepending:1412kB present:5242880kB managed:4016120kB mlocked:0kB bounce:0kB free_pcp:24180kB local_pcp:16948kB free_cma:0kB [ 1122.548753][ T9004] lowmem_reserve[]: 0 0 0 [ 1122.553238][ T9004] DMA32: 5*4kB (M) 4*8kB (M) 4*16kB (M) 5*32kB (M) 3*64kB (M) 3*128kB (M) 4*256kB (M) 4*512kB (M) 5*1024kB (UM) 5*2048kB (M) 718*4096kB (M) = 2960212kB [ 1122.602479][ T9004] Normal: 474*4kB (UME) 157*8kB (UE) 492*16kB (UME) 1020*32kB (UM) 703*64kB (UME) 230*128kB (UME) 188*256kB (UME) 137*512kB (UME) 114*1024kB (UME) 47*2048kB (UME) 645*4096kB (UM) = 3091280kB [ 1122.641896][ T9004] 38426 total pagecache pages [ 1122.652487][ T9004] 4 pages in swap cache [ 1122.656661][ T9004] Free swap = 124600kB [ 1122.670943][ T9004] Total swap = 124996kB [ 1122.675171][ T9004] 2097051 pages RAM [ 1122.678969][ T9004] 0 pages HighMem/MovableOnly [ 1122.692475][ T9004] 351537 pages reserved [ 1122.702481][ T9004] 0 pages cma reserved [ 1122.714125][ T9004] Memory allocations: [ 1122.722487][ T9004] 0 B 0 init/main.c:1370 func:do_initcalls [ 1122.739835][ T9004] 0 B 0 init/do_mounts.c:186 func:mount_root_generic [ 1122.752485][ T9004] 0 B 0 init/do_mounts.c:158 func:do_mount_root [ 1122.770258][ T9004] 0 B 0 init/do_mounts.c:352 func:mount_nodev_root [ 1122.782490][ T9004] 0 B 0 init/do_mounts_rd.c:241 func:rd_load_image [ 1122.800586][ T9004] 0 B 0 init/do_mounts_rd.c:72 func:identify_ramdisk_image [ 1122.819367][ T9004] 0 B 0 init/initramfs.c:507 func:unpack_to_rootfs [ 1122.832498][ T9004] 0 B 0 init/initramfs.c:508 func:unpack_to_rootfs [ 1122.850660][ T9004] 0 B 0 init/initramfs.c:509 func:unpack_to_rootfs [ 1122.868823][ T9004] 0 B 0 init/initramfs.c:101 func:find_link [ 1123.062907][ T9055] FAULT_INJECTION: forcing a failure. [ 1123.062907][ T9055] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1123.096439][ T9055] CPU: 1 UID: 0 PID: 9055 Comm: syz.3.34981 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1123.096475][ T9055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1123.096487][ T9055] Call Trace: [ 1123.096493][ T9055] [ 1123.096502][ T9055] __dump_stack+0x21/0x30 [ 1123.096531][ T9055] dump_stack_lvl+0x10c/0x190 [ 1123.096554][ T9055] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1123.096577][ T9055] ? check_stack_object+0x107/0x140 [ 1123.096595][ T9055] dump_stack+0x19/0x20 [ 1123.096617][ T9055] should_fail_ex+0x3d9/0x530 [ 1123.096636][ T9055] should_fail+0xf/0x20 [ 1123.096653][ T9055] should_fail_usercopy+0x1e/0x30 [ 1123.096673][ T9055] _copy_from_user+0x22/0xb0 [ 1123.096711][ T9055] __sys_connect+0x136/0x440 [ 1123.096735][ T9055] ? __cfi___sys_connect+0x10/0x10 [ 1123.096760][ T9055] ? __kasan_check_read+0x15/0x20 [ 1123.096787][ T9055] __x64_sys_connect+0x7e/0x90 [ 1123.096809][ T9055] x64_sys_call+0x1c2f/0x2ee0 [ 1123.096834][ T9055] do_syscall_64+0x58/0xf0 [ 1123.096856][ T9055] ? clear_bhb_loop+0x50/0xa0 [ 1123.096877][ T9055] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1123.096896][ T9055] RIP: 0033:0x7fe69418f6c9 [ 1123.096913][ T9055] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1123.096930][ T9055] RSP: 002b:00007fe6950d9038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 1123.096953][ T9055] RAX: ffffffffffffffda RBX: 00007fe6943e5fa0 RCX: 00007fe69418f6c9 [ 1123.096968][ T9055] RDX: 0000000000000010 RSI: 0000200000000040 RDI: 0000000000000007 [ 1123.096982][ T9055] RBP: 00007fe6950d9090 R08: 0000000000000000 R09: 0000000000000000 [ 1123.096995][ T9055] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1123.097008][ T9055] R13: 00007fe6943e6038 R14: 00007fe6943e5fa0 R15: 00007ffcf9244358 [ 1123.097025][ T9055] [ 1123.554510][ T36] audit: type=1400 audit(2000000298.810:286): avc: denied { unmount } for pid=9076 comm="syz.1.34992" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 1123.765260][ T329] Bluetooth: hci0: Frame reassembly failed (-84) [ 1125.556356][ T36] audit: type=1400 audit(2000000300.810:287): avc: denied { ioctl } for pid=9200 comm="syz.2.35054" path="socket:[416279]" dev="sockfs" ino=416279 ioctlcmd=0x7437 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 1125.637262][ T36] audit: type=1400 audit(2000000300.890:288): avc: denied { read } for pid=9212 comm="syz.1.35059" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 1125.812557][ T5838] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 1125.812771][ T54] Bluetooth: hci0: command 0x1003 tx timeout [ 1125.830053][ T36] audit: type=1400 audit(2000000301.080:289): avc: denied { create } for pid=9244 comm="syz.2.35076" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=user_namespace permissive=1 [ 1125.902509][ T36] audit: type=1400 audit(2000000301.080:290): avc: denied { associate } for pid=9246 comm="syz.2.35076" name="core" scontext=root:object_r:etc_runtime_t tcontext=system_u:object_r:root_t tclass=filesystem permissive=1 [ 1126.230002][ T9302] FAULT_INJECTION: forcing a failure. [ 1126.230002][ T9302] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1126.243160][ T9302] CPU: 0 UID: 0 PID: 9302 Comm: syz.3.35103 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1126.243193][ T9302] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1126.243205][ T9302] Call Trace: [ 1126.243211][ T9302] [ 1126.243218][ T9302] __dump_stack+0x21/0x30 [ 1126.243246][ T9302] dump_stack_lvl+0x10c/0x190 [ 1126.243269][ T9302] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1126.243292][ T9302] ? check_stack_object+0x107/0x140 [ 1126.243312][ T9302] dump_stack+0x19/0x20 [ 1126.243334][ T9302] should_fail_ex+0x3d9/0x530 [ 1126.243352][ T9302] should_fail+0xf/0x20 [ 1126.243368][ T9302] should_fail_usercopy+0x1e/0x30 [ 1126.243386][ T9302] _copy_from_user+0x22/0xb0 [ 1126.243406][ T9302] __sys_bind+0x1de/0x3f0 [ 1126.243428][ T9302] ? __cfi___sys_bind+0x10/0x10 [ 1126.243450][ T9302] ? __kasan_check_read+0x15/0x20 [ 1126.243473][ T9302] __x64_sys_bind+0x7e/0x90 [ 1126.243490][ T9302] x64_sys_call+0x1ffd/0x2ee0 [ 1126.243513][ T9302] do_syscall_64+0x58/0xf0 [ 1126.243533][ T9302] ? clear_bhb_loop+0x50/0xa0 [ 1126.243554][ T9302] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1126.243573][ T9302] RIP: 0033:0x7fe69418f6c9 [ 1126.243589][ T9302] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1126.243604][ T9302] RSP: 002b:00007fe6950d9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000031 [ 1126.243623][ T9302] RAX: ffffffffffffffda RBX: 00007fe6943e5fa0 RCX: 00007fe69418f6c9 [ 1126.243637][ T9302] RDX: 0000000000000010 RSI: 0000200000000080 RDI: 0000000000000007 [ 1126.243649][ T9302] RBP: 00007fe6950d9090 R08: 0000000000000000 R09: 0000000000000000 [ 1126.243660][ T9302] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1126.243671][ T9302] R13: 00007fe6943e6038 R14: 00007fe6943e5fa0 R15: 00007ffcf9244358 [ 1126.243687][ T9302] [ 1126.504024][ T9316] fuse: Bad value for 'fd' [ 1126.591525][ T9326] FAULT_INJECTION: forcing a failure. [ 1126.591525][ T9326] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1126.618975][ T9328] FAULT_INJECTION: forcing a failure. [ 1126.618975][ T9328] name failslab, interval 1, probability 0, space 0, times 0 [ 1126.631697][ T9326] CPU: 1 UID: 0 PID: 9326 Comm: syz.3.35115 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1126.631729][ T9326] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1126.631741][ T9326] Call Trace: [ 1126.631749][ T9326] [ 1126.631757][ T9326] __dump_stack+0x21/0x30 [ 1126.631786][ T9326] dump_stack_lvl+0x10c/0x190 [ 1126.631823][ T9326] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1126.631848][ T9326] ? check_stack_object+0x12c/0x140 [ 1126.631868][ T9326] dump_stack+0x19/0x20 [ 1126.631890][ T9326] should_fail_ex+0x3d9/0x530 [ 1126.631910][ T9326] should_fail+0xf/0x20 [ 1126.631927][ T9326] should_fail_usercopy+0x1e/0x30 [ 1126.631947][ T9326] _copy_to_user+0x24/0xa0 [ 1126.631969][ T9326] simple_read_from_buffer+0xed/0x160 [ 1126.631992][ T9326] proc_fail_nth_read+0x19e/0x210 [ 1126.632017][ T9326] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 1126.632041][ T9326] ? bpf_lsm_file_permission+0xd/0x20 [ 1126.632064][ T9326] ? __cfi_proc_fail_nth_read+0x10/0x10 [ 1126.632088][ T9326] vfs_read+0x27d/0xc70 [ 1126.632105][ T9326] ? __cfi_vfs_read+0x10/0x10 [ 1126.632121][ T9326] ? __kasan_check_write+0x18/0x20 [ 1126.632147][ T9326] ? mutex_lock+0x92/0x1c0 [ 1126.632164][ T9326] ? __cfi_mutex_lock+0x10/0x10 [ 1126.632181][ T9326] ? __fget_files+0x2c5/0x340 [ 1126.632202][ T9326] ksys_read+0x141/0x250 [ 1126.632219][ T9326] ? __cfi_ksys_read+0x10/0x10 [ 1126.632237][ T9326] ? __kasan_check_read+0x15/0x20 [ 1126.632263][ T9326] __x64_sys_read+0x7f/0x90 [ 1126.632280][ T9326] x64_sys_call+0x2638/0x2ee0 [ 1126.632305][ T9326] do_syscall_64+0x58/0xf0 [ 1126.632328][ T9326] ? clear_bhb_loop+0x50/0xa0 [ 1126.632349][ T9326] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1126.632368][ T9326] RIP: 0033:0x7fe69418e0dc [ 1126.632385][ T9326] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 1126.632401][ T9326] RSP: 002b:00007fe6950d9030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1126.632422][ T9326] RAX: ffffffffffffffda RBX: 00007fe6943e5fa0 RCX: 00007fe69418e0dc [ 1126.632437][ T9326] RDX: 000000000000000f RSI: 00007fe6950d90a0 RDI: 000000000000000b [ 1126.632454][ T9326] RBP: 00007fe6950d9090 R08: 0000000000000000 R09: 0000000000000000 [ 1126.632465][ T9326] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1126.632476][ T9326] R13: 00007fe6943e6038 R14: 00007fe6943e5fa0 R15: 00007ffcf9244358 [ 1126.632490][ T9326] [ 1126.870300][ T9328] CPU: 1 UID: 0 PID: 9328 Comm: syz.0.35116 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1126.870327][ T9328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1126.870338][ T9328] Call Trace: [ 1126.870344][ T9328] [ 1126.870351][ T9328] __dump_stack+0x21/0x30 [ 1126.870379][ T9328] dump_stack_lvl+0x10c/0x190 [ 1126.870402][ T9328] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1126.870425][ T9328] ? release_sock+0x171/0x1f0 [ 1126.870452][ T9328] dump_stack+0x19/0x20 [ 1126.870473][ T9328] should_fail_ex+0x3d9/0x530 [ 1126.870492][ T9328] should_failslab+0xac/0x100 [ 1126.870514][ T9328] kmem_cache_alloc_node_noprof+0x45/0x440 [ 1126.870532][ T9328] ? netlink_data_ready+0x20/0x20 [ 1126.870556][ T9328] ? __alloc_skb+0x10c/0x370 [ 1126.870578][ T9328] __alloc_skb+0x10c/0x370 [ 1126.870599][ T9328] netlink_alloc_large_skb+0xf7/0x1b0 [ 1126.870622][ T9328] netlink_sendmsg+0x586/0xaf0 [ 1126.870648][ T9328] ? __cfi_netlink_sendmsg+0x10/0x10 [ 1126.870672][ T9328] ? __asan_memcpy+0x5a/0x80 [ 1126.870688][ T9328] ? bpf_lsm_socket_sendmsg+0xd/0x20 [ 1126.870710][ T9328] ? security_socket_sendmsg+0x33/0xd0 [ 1126.870729][ T9328] sock_write_iter+0x49c/0x4f0 [ 1126.870747][ T9328] ? __cfi_sock_write_iter+0x10/0x10 [ 1126.870768][ T9328] do_iter_readv_writev+0x628/0x810 [ 1126.870797][ T9328] ? vfs_iter_read+0x5f0/0x5f0 [ 1126.870814][ T9328] ? bpf_lsm_file_permission+0xd/0x20 [ 1126.870838][ T9328] vfs_writev+0x485/0xcf0 [ 1126.870860][ T9328] ? do_writev+0x2d0/0x2d0 [ 1126.870879][ T9328] ? vfs_write+0x93e/0xf30 [ 1126.870899][ T9328] do_writev+0x14d/0x2d0 [ 1126.870920][ T9328] ? vfs_readv+0xa50/0xa50 [ 1126.870940][ T9328] ? __kasan_check_read+0x15/0x20 [ 1126.870964][ T9328] __x64_sys_writev+0x81/0x90 [ 1126.870982][ T9328] x64_sys_call+0x1fbb/0x2ee0 [ 1126.871007][ T9328] do_syscall_64+0x58/0xf0 [ 1126.871028][ T9328] ? clear_bhb_loop+0x50/0xa0 [ 1126.871048][ T9328] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1126.871067][ T9328] RIP: 0033:0x7f4a6ed8f6c9 [ 1126.871082][ T9328] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1126.871098][ T9328] RSP: 002b:00007f4a6fbcc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 1126.871119][ T9328] RAX: ffffffffffffffda RBX: 00007f4a6efe5fa0 RCX: 00007f4a6ed8f6c9 [ 1126.871133][ T9328] RDX: 0000000000000001 RSI: 00002000000001c0 RDI: 0000000000000007 [ 1126.871146][ T9328] RBP: 00007f4a6fbcc090 R08: 0000000000000000 R09: 0000000000000000 [ 1126.871159][ T9328] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1126.871171][ T9328] R13: 00007f4a6efe6038 R14: 00007f4a6efe5fa0 R15: 00007ffd97d9ec68 [ 1126.871187][ T9328] [ 1127.174276][ T9339] FAULT_INJECTION: forcing a failure. [ 1127.174276][ T9339] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1127.191026][T31927] Bluetooth: hci0: Frame reassembly failed (-84) [ 1127.199544][ T9339] CPU: 0 UID: 0 PID: 9339 Comm: syz.0.35123 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1127.199576][ T9339] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1127.199588][ T9339] Call Trace: [ 1127.199595][ T9339] [ 1127.199604][ T9339] __dump_stack+0x21/0x30 [ 1127.199633][ T9339] dump_stack_lvl+0x10c/0x190 [ 1127.199657][ T9339] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1127.199681][ T9339] ? __ia32_compat_sys_ioctl+0x850/0x850 [ 1127.199704][ T9339] dump_stack+0x19/0x20 [ 1127.199735][ T9339] should_fail_ex+0x3d9/0x530 [ 1127.199755][ T9339] should_fail+0xf/0x20 [ 1127.199772][ T9339] should_fail_usercopy+0x1e/0x30 [ 1127.199793][ T9339] _copy_from_user+0x22/0xb0 [ 1127.199816][ T9339] get_user_ifreq+0x71/0x180 [ 1127.199835][ T9339] inet_ioctl+0x396/0x4d0 [ 1127.199853][ T9339] ? __cfi_inet_ioctl+0x10/0x10 [ 1127.199873][ T9339] ? __cfi_proc_fail_nth_write+0x10/0x10 [ 1127.199899][ T9339] sock_do_ioctl+0x105/0x330 [ 1127.199919][ T9339] ? sock_show_fdinfo+0xd0/0xd0 [ 1127.199939][ T9339] ? __cfi_vfs_write+0x10/0x10 [ 1127.199957][ T9339] ? __kasan_check_write+0x18/0x20 [ 1127.199984][ T9339] ? mutex_unlock+0x8b/0x240 [ 1127.200003][ T9339] sock_ioctl+0x634/0x7b0 [ 1127.200022][ T9339] ? __cfi_sock_ioctl+0x10/0x10 [ 1127.200040][ T9339] ? __fget_files+0x2c5/0x340 [ 1127.200061][ T9339] ? bpf_lsm_file_ioctl+0xd/0x20 [ 1127.200085][ T9339] ? security_file_ioctl+0x34/0xd0 [ 1127.200106][ T9339] ? __cfi_sock_ioctl+0x10/0x10 [ 1127.200124][ T9339] __se_sys_ioctl+0x135/0x1b0 [ 1127.200145][ T9339] __x64_sys_ioctl+0x7f/0xa0 [ 1127.200165][ T9339] x64_sys_call+0x1878/0x2ee0 [ 1127.200190][ T9339] do_syscall_64+0x58/0xf0 [ 1127.200212][ T9339] ? clear_bhb_loop+0x50/0xa0 [ 1127.200233][ T9339] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1127.200253][ T9339] RIP: 0033:0x7f4a6ed8f6c9 [ 1127.200269][ T9339] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1127.200286][ T9339] RSP: 002b:00007f4a6fbcc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1127.200307][ T9339] RAX: ffffffffffffffda RBX: 00007f4a6efe5fa0 RCX: 00007f4a6ed8f6c9 [ 1127.200322][ T9339] RDX: 0000200000000080 RSI: 0000000000008916 RDI: 000000000000000a [ 1127.200336][ T9339] RBP: 00007f4a6fbcc090 R08: 0000000000000000 R09: 0000000000000000 [ 1127.200349][ T9339] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1127.200362][ T9339] R13: 00007f4a6efe6038 R14: 00007f4a6efe5fa0 R15: 00007ffd97d9ec68 [ 1127.200378][ T9339] [ 1127.544098][ T9381] FAULT_INJECTION: forcing a failure. [ 1127.544098][ T9381] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1127.557297][ T9381] CPU: 0 UID: 0 PID: 9381 Comm: syz.0.35141 Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 1127.557329][ T9381] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1127.557342][ T9381] Call Trace: [ 1127.557348][ T9381] [ 1127.557356][ T9381] __dump_stack+0x21/0x30 [ 1127.557386][ T9381] dump_stack_lvl+0x10c/0x190 [ 1127.557410][ T9381] ? __cfi_dump_stack_lvl+0x10/0x10 [ 1127.557435][ T9381] ? __kasan_check_write+0x18/0x20 [ 1127.557461][ T9381] ? check_stack_object+0x107/0x140 [ 1127.557479][ T9381] dump_stack+0x19/0x20 [ 1127.557501][ T9381] should_fail_ex+0x3d9/0x530 [ 1127.557520][ T9381] should_fail+0xf/0x20 [ 1127.557537][ T9381] should_fail_usercopy+0x1e/0x30 [ 1127.557557][ T9381] _copy_from_user+0x22/0xb0 [ 1127.557595][ T9381] __sys_sendto+0x29e/0x6f0 [ 1127.557621][ T9381] ? __cfi___sys_sendto+0x10/0x10 [ 1127.557645][ T9381] ? __kasan_check_write+0x18/0x20 [ 1127.557671][ T9381] ? __cfi_ksys_write+0x10/0x10 [ 1127.557689][ T9381] __x64_sys_sendto+0xe9/0x100 [ 1127.557713][ T9381] x64_sys_call+0x2c2c/0x2ee0 [ 1127.557738][ T9381] do_syscall_64+0x58/0xf0 [ 1127.557767][ T9381] ? clear_bhb_loop+0x50/0xa0 [ 1127.557787][ T9381] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 1127.557807][ T9381] RIP: 0033:0x7f4a6ed8f6c9 [ 1127.557824][ T9381] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1127.557840][ T9381] RSP: 002b:00007f4a6fbcc038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1127.557861][ T9381] RAX: ffffffffffffffda RBX: 00007f4a6efe5fa0 RCX: 00007f4a6ed8f6c9 [ 1127.557876][ T9381] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000008 [ 1127.557888][ T9381] RBP: 00007f4a6fbcc090 R08: 0000200000e68000 R09: 0000000000000010 [ 1127.557902][ T9381] R10: 00000000200007fd R11: 0000000000000246 R12: 0000000000000001 [ 1127.557914][ T9381] R13: 00007f4a6efe6038 R14: 00007f4a6efe5fa0 R15: 00007ffd97d9ec68 [ 1127.557931][ T9381] [ 1128.552672][ T9458] netlink: 'syz.2.35181': attribute type 4 has an invalid length. [ 1128.560526][ T9458] netlink: 'syz.2.35181': attribute type 5 has an invalid length. [ 1128.582577][ T9458] netlink: 3657 bytes leftover after parsing attributes in process `syz.2.35181'. [ 1129.252498][ T5838] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 1129.252522][ T54] Bluetooth: hci0: command 0x1003 tx timeout [ 1129.522477][ T36] audit: type=1400 audit(2000000304.770:291): avc: denied { sqpoll } for pid=9495 comm="syz.1.35195" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1 [ 1131.032741][ T9766] 9pnet_fd: Insufficient options for proto=fd [ 1133.308690][ T9966] SELinux: security_context_str_to_sid (system_u) failed with errno=-22 [ 1133.328395][ T9966] overlayfs: missing 'workdir' [ 1143.668785][T31927] bridge_slave_1: left allmulticast mode [ 1143.674483][T31927] bridge_slave_1: left promiscuous mode [ 1143.680156][T31927] bridge0: port 2(bridge_slave_1) entered disabled state [ 1143.693000][T31927] bridge_slave_0: left allmulticast mode [ 1143.698666][T31927] bridge_slave_0: left promiscuous mode [ 1143.704350][T31927] bridge0: port 1(bridge_slave_0) entered disabled state [ 1143.861460][T31927] veth1_macvtap: left promiscuous mode [ 1143.872522][T31927] veth0_vlan: left promiscuous mode [ 1144.038692][T10781] bridge0: port 1(bridge_slave_0) entered blocking state [ 1144.052485][T10781] bridge0: port 1(bridge_slave_0) entered disabled state [ 1144.069759][T10781] bridge_slave_0: entered allmulticast mode [ 1144.080240][T10781] bridge_slave_0: entered promiscuous mode [ 1144.092510][T10781] bridge0: port 2(bridge_slave_1) entered blocking state [ 1144.099627][T10781] bridge0: port 2(bridge_slave_1) entered disabled state [ 1144.107054][T10781] bridge_slave_1: entered allmulticast mode [ 1144.113390][T10781] bridge_slave_1: entered promiscuous mode [ 1144.256371][T10781] bridge0: port 2(bridge_slave_1) entered blocking state [ 1144.263464][T10781] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1144.270755][T10781] bridge0: port 1(bridge_slave_0) entered blocking state [ 1144.277813][T10781] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1144.333495][T31927] bridge0: port 1(bridge_slave_0) entered disabled state [ 1144.340750][T31927] bridge0: port 2(bridge_slave_1) entered disabled state [ 1144.353449][ T329] bridge0: port 1(bridge_slave_0) entered blocking state [ 1144.360501][ T329] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1144.383441][ T329] bridge0: port 2(bridge_slave_1) entered blocking state [ 1144.390502][ T329] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1144.467692][T10781] veth0_vlan: entered promiscuous mode [ 1144.489992][T10781] veth1_macvtap: entered promiscuous mode [ 1146.332557][T10932] bridge0: port 1(bridge_slave_0) entered blocking state [ 1146.339629][T10932] bridge0: port 1(bridge_slave_0) entered disabled state [ 1146.347311][T10932] bridge_slave_0: entered allmulticast mode [ 1146.353966][T10932] bridge_slave_0: entered promiscuous mode [ 1146.362286][T10932] bridge0: port 2(bridge_slave_1) entered blocking state [ 1146.370985][T10932] bridge0: port 2(bridge_slave_1) entered disabled state [ 1146.378365][T10932] bridge_slave_1: entered allmulticast mode [ 1146.384872][T10932] bridge_slave_1: entered promiscuous mode [ 1146.463867][T10932] bridge0: port 2(bridge_slave_1) entered blocking state [ 1146.470948][T10932] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1146.478263][T10932] bridge0: port 1(bridge_slave_0) entered blocking state [ 1146.485306][T10932] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1146.531179][ T2107] bridge0: port 1(bridge_slave_0) entered disabled state [ 1146.539697][ T2107] bridge0: port 2(bridge_slave_1) entered disabled state [ 1146.558053][ T329] bridge0: port 1(bridge_slave_0) entered blocking state [ 1146.565148][ T329] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1146.573093][ T329] bridge0: port 2(bridge_slave_1) entered blocking state [ 1146.580129][ T329] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1146.615504][T10932] veth0_vlan: entered promiscuous mode [ 1146.629368][T10932] veth1_macvtap: entered promiscuous mode [ 1150.342074][T11149] bridge0: port 1(bridge_slave_0) entered blocking state [ 1150.351482][T11149] bridge0: port 1(bridge_slave_0) entered disabled state [ 1150.358831][T11149] bridge_slave_0: entered allmulticast mode [ 1150.365553][T11149] bridge_slave_0: entered promiscuous mode [ 1150.372107][T11149] bridge0: port 2(bridge_slave_1) entered blocking state [ 1150.379279][T11149] bridge0: port 2(bridge_slave_1) entered disabled state [ 1150.386667][T11149] bridge_slave_1: entered allmulticast mode [ 1150.395571][T11149] bridge_slave_1: entered promiscuous mode [ 1150.513266][T11149] bridge0: port 2(bridge_slave_1) entered blocking state [ 1150.520326][T11149] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1150.527656][T11149] bridge0: port 1(bridge_slave_0) entered blocking state [ 1150.534711][T11149] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1150.600258][ T2107] bridge0: port 1(bridge_slave_0) entered disabled state [ 1150.607740][ T2107] bridge0: port 2(bridge_slave_1) entered disabled state [ 1150.626893][ T329] bridge0: port 1(bridge_slave_0) entered blocking state [ 1150.633974][ T329] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1150.655899][ T2107] bridge0: port 2(bridge_slave_1) entered blocking state [ 1150.663068][ T2107] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1150.716718][T11149] veth0_vlan: entered promiscuous mode [ 1150.745646][T11149] veth1_macvtap: entered promiscuous mode [ 1153.012556][ T54] Bluetooth: hci0: command 0x1003 tx timeout [ 1153.012568][ T5838] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 1155.652292][T31927] Bluetooth: hci0: Frame reassembly failed (-84) [ 1157.652492][ T5838] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 1159.892493][ T5838] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 1159.897323][ T54] Bluetooth: hci0: command 0x1003 tx timeout [ 1160.501787][T11913] bridge0: port 1(bridge_slave_0) entered blocking state [ 1160.512485][T11913] bridge0: port 1(bridge_slave_0) entered disabled state [ 1160.519876][T11913] bridge_slave_0: entered allmulticast mode [ 1160.540560][T11913] bridge_slave_0: entered promiscuous mode [ 1160.551475][T11913] bridge0: port 2(bridge_slave_1) entered blocking state [ 1160.567190][T11913] bridge0: port 2(bridge_slave_1) entered disabled state [ 1160.578196][T11913] bridge_slave_1: entered allmulticast mode [ 1160.588378][T11913] bridge_slave_1: entered promiscuous mode [ 1160.719398][T11913] bridge0: port 2(bridge_slave_1) entered blocking state [ 1160.726496][T11913] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1160.733822][T11913] bridge0: port 1(bridge_slave_0) entered blocking state [ 1160.740857][T11913] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1160.810562][T31927] bridge0: port 1(bridge_slave_0) entered disabled state [ 1160.832873][T31927] bridge0: port 2(bridge_slave_1) entered disabled state [ 1160.851594][ T2107] bridge0: port 1(bridge_slave_0) entered blocking state [ 1160.858669][ T2107] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1160.887928][ T2107] bridge0: port 2(bridge_slave_1) entered blocking state [ 1160.895012][ T2107] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1160.957362][T11913] veth0_vlan: entered promiscuous mode [ 1160.987953][T11913] veth1_macvtap: entered promiscuous mode [ 1169.253446][T12531] overlayfs: missing 'lowerdir'