last executing test programs: 5m20.749876653s ago: executing program 1 (id=2078): mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/irq/3/smp_affinity_list\x00', 0x2000, 0x0) r0 = getpid() process_vm_readv$auto(r0, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xf}, 0x5b, 0x0) rename$auto(&(0x7f0000000000)='./file0\x00', 0x0) 5m20.522175487s ago: executing program 1 (id=2079): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r0 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0) ioctl$auto_PPPIOCSMRU(r0, 0xc004743e, 0x0) ioctl$auto_PPPIOCSPASS(r0, 0x40107447, &(0x7f0000000040)={0x6, 0x0}) ioctl$auto_PPPIOCSPASS(r0, 0x40107447, &(0x7f00000000c0)={0x9, &(0x7f0000000000)={0x28, 0xf4, 0xd2, @raw=0x89de}}) 5m20.219503031s ago: executing program 1 (id=2082): mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) fstatfs$auto(0x0, 0x0) semctl$auto(0xffff, 0x1000005, 0x13, 0x0) r0 = openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f00000011c0)='/dev/snd/pcmC0D0p\x00', 0x40, 0x0) ioctl$auto_SNDRV_PCM_IOCTL_HW_REFINE_OLD(r0, 0xc1004110, 0x0) 5m19.957287287s ago: executing program 1 (id=2084): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) r0 = socket(0xa, 0x3, 0x3a) close$auto(r0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(r0, 0x8, 0x0, 0x0) 5m19.75758353s ago: executing program 1 (id=2087): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x1, 0x0) futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0xffffffd6) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) tkill$auto(0x1, 0x7) 5m18.335415391s ago: executing program 1 (id=2093): openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_FLOW_CMD_GET(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)={0x1c, r2, 0x1, 0x70bd29, 0x25dfdc02, {}, [@OVS_FLOW_ATTR_PROBE={0x4}, @OVS_FLOW_ATTR_PROBE={0x4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x200400f0}, 0x800) r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), 0xffffffffffffffff) lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x1c, 0x9, 0x63, 0x0, 0x0, 0x0, 0x1000, 0x8, 0x80000000000000a, 0x40000402, 0x9, 0x9, 0xffffffff80000000, 0xd, 0x6, 0x200000100103}) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) mmap$auto(0x0, 0x20009, 0x29b010c0, 0x100000eb1, 0x40000000000a1, 0x8000) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, 0x0, 0x8000) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000000)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) sendmsg$auto_ETHTOOL_MSG_TUNNEL_INFO_GET(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)={0x2c, r4, 0x1, 0x70bd28, 0x25dfdbfe, {}, [@ETHTOOL_A_TUNNEL_INFO_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dummy0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x24000000}, 0x4000000) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/pci0000:00/waiting_for_supplier\x00', 0x80800, 0x0) sendfile$auto(0x1, r5, 0x0, 0x400007ffff000) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) fsopen$auto(0x0, 0x1) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x181482, 0x0) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/LNXSYSTM:00/LNXPWRBN:00/input/input0/inhibited\x00', 0x20b42, 0x0) pwrite64$auto(r6, &(0x7f0000000040)='/sys/devices/LNXSYSTM:00/LNXPWRBN:00/input/input0/inhibited\x00', 0x4, 0x2) mmap$auto(0x0, 0x4, 0x7f, 0x40eb1, 0xffffffffffffffff, 0x300000000000) r7 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/pcmC0D0c\x00', 0x40002, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x82000000) ioctl$auto_TIOCSTI2(r7, 0x545c, 0x0) ioctl$auto_TIOCVHANGUP2(r7, 0x5437, 0x0) mmap$auto(0x27, 0x2000a, 0x4000000000df, 0x40000000000eb2, 0x401, 0x7fff) 5m17.80785667s ago: executing program 32 (id=2093): openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_FLOW_CMD_GET(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)={0x1c, r2, 0x1, 0x70bd29, 0x25dfdc02, {}, [@OVS_FLOW_ATTR_PROBE={0x4}, @OVS_FLOW_ATTR_PROBE={0x4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x200400f0}, 0x800) r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), 0xffffffffffffffff) lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x1c, 0x9, 0x63, 0x0, 0x0, 0x0, 0x1000, 0x8, 0x80000000000000a, 0x40000402, 0x9, 0x9, 0xffffffff80000000, 0xd, 0x6, 0x200000100103}) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) mmap$auto(0x0, 0x20009, 0x29b010c0, 0x100000eb1, 0x40000000000a1, 0x8000) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, 0x0, 0x8000) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000000)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) sendmsg$auto_ETHTOOL_MSG_TUNNEL_INFO_GET(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)={0x2c, r4, 0x1, 0x70bd28, 0x25dfdbfe, {}, [@ETHTOOL_A_TUNNEL_INFO_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dummy0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x24000000}, 0x4000000) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/pci0000:00/waiting_for_supplier\x00', 0x80800, 0x0) sendfile$auto(0x1, r5, 0x0, 0x400007ffff000) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) fsopen$auto(0x0, 0x1) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x181482, 0x0) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/LNXSYSTM:00/LNXPWRBN:00/input/input0/inhibited\x00', 0x20b42, 0x0) pwrite64$auto(r6, &(0x7f0000000040)='/sys/devices/LNXSYSTM:00/LNXPWRBN:00/input/input0/inhibited\x00', 0x4, 0x2) mmap$auto(0x0, 0x4, 0x7f, 0x40eb1, 0xffffffffffffffff, 0x300000000000) r7 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/pcmC0D0c\x00', 0x40002, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x82000000) ioctl$auto_TIOCSTI2(r7, 0x545c, 0x0) ioctl$auto_TIOCVHANGUP2(r7, 0x5437, 0x0) mmap$auto(0x27, 0x2000a, 0x4000000000df, 0x40000000000eb2, 0x401, 0x7fff) 3.896324617s ago: executing program 0 (id=3333): bind$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x3, @loopback}, 0x7c8f) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = getpid() sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4000084}, 0x800) process_vm_readv$auto(r0, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000180)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0) r1 = openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000000200), 0xe0080, 0x0) ioctl$auto_I2C_RDWR(r1, 0x707, 0x0) 3.71116625s ago: executing program 3 (id=3334): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0xa, 0x801, 0x84) io_uring_setup$auto(0x6, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) setsockopt$auto(0x3, 0x10000000084, 0x75, 0x0, 0x8) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) setsockopt$auto(r0, 0x10000000084, 0x77, 0x0, 0x8) 3.705968632s ago: executing program 0 (id=3345): socket(0x2, 0x3, 0xa) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x9, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) mmap$auto(0x0, 0xe983, 0x6, 0xeb1, 0xffffffffffffffff, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) sysfs$auto(0x2, 0x10000000000002d, 0x2) setsockopt$auto(0x3, 0x0, 0xd, 0x0, 0x4) 3.606739777s ago: executing program 4 (id=3335): setrlimit$auto(0x7, &(0x7f0000001380)={0x5, 0x6}) close_range$auto(0x2, 0xa, 0x0) r0 = socket(0xa, 0x2, 0x88) socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'bond0\x00', 0x0}) bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r2, r1, 0x4, 0x1ff, r0, @relative_id=0x13, 0xe600}, 0xf) 3.352900237s ago: executing program 2 (id=3339): openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f00000002c0), 0x1, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/exception_policy\x00', 0xc0080, 0x0) pread64$auto(r0, 0x0, 0xb69d, 0x6) close_range$auto(0x0, 0xfffffffffffff000, 0x2) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000000), 0x141401, 0x0) clock_adjtime$auto(0xfffffffffffffffb, 0x0) 3.352069756s ago: executing program 4 (id=3349): mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) socket(0xa, 0x3, 0x3b) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/self/net/vlan/config\x00', 0x0, 0x0) read$auto(0x3, 0x0, 0xf34) 3.052594822s ago: executing program 2 (id=3340): mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x403, 0x8000) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) r0 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x8a403, 0x0) ioctl$auto_IOCTL_VMCI_VERSION2(r0, 0x7a7, 0x0) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) write$auto(r1, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, 0x6) 3.039971661s ago: executing program 4 (id=3341): mmap$auto(0x0, 0x20009, 0x7, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) close_range$auto(0x2, 0xffffffffffffffff, 0x0) open(0x0, 0x22240, 0x55) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2, 0x0) ioctl$auto(0x3, 0x800c6f40, r0) 2.893088919s ago: executing program 0 (id=3342): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x0, 0x0, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x8) r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0) read$auto(r1, 0x0, 0x20) writev$auto(r0, &(0x7f0000000200)={0x0, 0x7}, 0x3) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) 2.883837783s ago: executing program 3 (id=3343): mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) r0 = openat$auto_iommufd_fops_main(0xffffffffffffff9c, &(0x7f0000000000), 0x80001, 0x0) io_uring_setup$auto(0x85, 0x0) r1 = socket(0xa, 0x1, 0x84) getsockopt$auto(r1, 0x0, 0x487, 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x3b72, 0x0) 2.604730615s ago: executing program 3 (id=3346): openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae89, &(0x7f0000000040)={0x2, 0x0, [{0x40000108, 0x400, 0xc0}]}) 2.530919944s ago: executing program 2 (id=3347): mmap$auto(0x0, 0xe983, 0xa3, 0xeb1, 0xffffffffffffffff, 0x8000) close_range$auto(0x0, 0xffffffffffffffff, 0x4000000000002) socket(0x2, 0x801, 0x106) socketpair$auto(0x1a, 0x9, 0x8000000000000000, 0x0) r0 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000140)='/dev/mtd0ro\x00', 0x0, 0x0) ioctl$auto_BLKPG2(r0, 0x1269, 0x0) 2.193503237s ago: executing program 0 (id=3348): prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/usb/usbmon/9t\x00', 0xa00, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000004400)='/dev/dsp1\x00', 0x1, 0x0) ioctl$auto_SNDCTL_DSP_GETTRIGGER(r2, 0x80045010, &(0x7f0000004440)) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0x20005, 0xdf, 0x12, r0, 0x4) r3 = open_by_handle_at$auto(r1, &(0x7f00000002c0)={0x1b, 0x136a, "8f42b1077e737d4629d7867bca48102625b1c2c21fa15504a19b9a"}, 0x7d) setsockopt$auto(r3, 0x1, 0x1021, 0x0, 0xd) mmap$auto(0x2, 0x400008, 0xdf, 0xfffffffffffffff7, 0x2, 0x8040) r4 = geteuid() keyctl$auto(0x1e, r4, r4, 0x5, 0x8) sendmsg$auto_OVS_CT_LIMIT_CMD_GET(0xffffffffffffffff, &(0x7f0000001ac0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000001a80)={0x0, 0x12c0}, 0x1, 0x0, 0x0, 0x40}, 0x200000c0) mmap$auto(0xfffffffd, 0x8, 0xdf, 0x9b7e, 0x2, 0x8003) close_range$auto(0x2, 0xa, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/platform/vhci_hcd.0/usbip_debug\x00', 0x8002, 0x0) r5 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0) r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) r7 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r7, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000005c0)={0x14, r6, 0x1, 0x70bd2d, 0x25dfdbfe}, 0x14}, 0x1, 0x68, 0x0, 0x24000000}, 0xd0) sendmsg$auto_NL80211_CMD_GET_KEY(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x1c, r6, 0x100, 0x70bd2b, 0x25dfdbfe, {}, [@NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT={0x4}, @NL80211_ATTR_ASSOC_SPP_AMSDU={0x4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x21}, 0x51) read$auto(r5, 0x0, 0xb4d3) write$auto(0x3, 0x0, 0xffd8) unshare$auto(0x20000) unshare$auto(0x20000) bpf$auto(0x0, &(0x7f0000000780)=@link_update={0xa, @new_map_fd=0x5, 0x4007, @old_prog_fd=0x13b}, 0xa3) mmap$auto(0x0, 0x20009, 0x20004000000000df, 0xeb1, 0xffffffffffffffff, 0x9) 2.192704599s ago: executing program 4 (id=3350): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/scsi_mod/parameters/default_dev_flags\x00', 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x29, 0x2, 0x0) read$auto(0x3, 0x0, 0x7) r0 = openat$auto_nsim_dev_max_vfs_fops_dev(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim3/max_vfs\x00', 0x48002, 0x0) write$auto(r0, 0x0, 0x1) 2.191911537s ago: executing program 2 (id=3351): openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_FLOW_CMD_GET(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)={0x1c, r2, 0x1, 0x70bd29, 0x25dfdc02, {}, [@OVS_FLOW_ATTR_PROBE={0x4}, @OVS_FLOW_ATTR_PROBE={0x4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x200400f0}, 0x800) r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), 0xffffffffffffffff) lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x1c, 0x9, 0x63, 0x0, 0x0, 0x0, 0x1000, 0x8, 0x80000000000000a, 0x40000402, 0x9, 0x9, 0xffffffff80000000, 0xd, 0x6, 0x200000100103}) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) mmap$auto(0x0, 0x20009, 0x29b010c0, 0x100000eb1, 0x40000000000a1, 0x8000) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x8000) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000000)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) sendmsg$auto_ETHTOOL_MSG_TUNNEL_INFO_GET(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)={0x2c, r4, 0x1, 0x70bd28, 0x25dfdbfe, {}, [@ETHTOOL_A_TUNNEL_INFO_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dummy0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x24000000}, 0x4000000) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/pci0000:00/waiting_for_supplier\x00', 0x80800, 0x0) sendfile$auto(0x1, r5, 0x0, 0x400007ffff000) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) fsopen$auto(0x0, 0x1) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x181482, 0x0) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/LNXSYSTM:00/LNXPWRBN:00/input/input0/inhibited\x00', 0x20b42, 0x0) pwrite64$auto(r6, &(0x7f0000000040)='/sys/devices/LNXSYSTM:00/LNXPWRBN:00/input/input0/inhibited\x00', 0x4, 0x2) mmap$auto(0x0, 0x4, 0x7f, 0x40eb1, 0xffffffffffffffff, 0x300000000000) r7 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/pcmC0D0c\x00', 0x40002, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x82000000) ioctl$auto_TIOCSTI2(r7, 0x545c, 0x0) ioctl$auto_TIOCVHANGUP2(r7, 0x5437, 0x0) mmap$auto(0x27, 0x2000a, 0x4000000000df, 0x40000000000eb2, 0x401, 0x7fff) 2.092690272s ago: executing program 3 (id=3352): prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/usb/usbmon/9t\x00', 0xa00, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000004400)='/dev/dsp1\x00', 0x1, 0x0) ioctl$auto_SNDCTL_DSP_GETTRIGGER(r2, 0x80045010, &(0x7f0000004440)) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0x20005, 0xdf, 0x12, r0, 0x4) r3 = open_by_handle_at$auto(r1, &(0x7f00000002c0)={0x1b, 0x136a, "8f42b1077e737d4629d7867bca48102625b1c2c21fa15504a19b9a"}, 0x7d) setsockopt$auto(r3, 0x1, 0x1021, 0x0, 0xd) mmap$auto(0x2, 0x400008, 0xdf, 0xfffffffffffffff7, 0x2, 0x8040) r4 = geteuid() keyctl$auto(0x1e, r4, r4, 0x5, 0x8) sendmsg$auto_OVS_CT_LIMIT_CMD_GET(0xffffffffffffffff, &(0x7f0000001ac0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000001a80)={0x0, 0x12c0}, 0x1, 0x0, 0x0, 0x40}, 0x200000c0) mmap$auto(0xfffffffd, 0x8, 0xdf, 0x9b7e, 0x2, 0x8003) close_range$auto(0x2, 0xa, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/platform/vhci_hcd.0/usbip_debug\x00', 0x8002, 0x0) r5 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0) r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) r7 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r7, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000005c0)={0x14, r6, 0x1, 0x70bd2d, 0x25dfdbfe}, 0x14}, 0x1, 0x68, 0x0, 0x24000000}, 0xd0) sendmsg$auto_NL80211_CMD_GET_KEY(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x1c, r6, 0x100, 0x70bd2b, 0x25dfdbfe, {}, [@NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT={0x4}, @NL80211_ATTR_ASSOC_SPP_AMSDU={0x4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x21}, 0x51) read$auto(r5, 0x0, 0xb4d3) write$auto(0x3, 0x0, 0xffd8) unshare$auto(0x20000) unshare$auto(0x20000) bpf$auto(0x0, &(0x7f0000000780)=@link_update={0xa, @new_map_fd=0x5, 0x4007, @old_prog_fd=0x13b}, 0xa3) mmap$auto(0x0, 0x20009, 0x20004000000000df, 0xeb1, 0xffffffffffffffff, 0x9) 1.922028708s ago: executing program 4 (id=3353): prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/usb/usbmon/9t\x00', 0xa00, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000004400)='/dev/dsp1\x00', 0x1, 0x0) ioctl$auto_SNDCTL_DSP_GETTRIGGER(r2, 0x80045010, &(0x7f0000004440)) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0x20005, 0xdf, 0x12, r0, 0x4) r3 = open_by_handle_at$auto(r1, &(0x7f00000002c0)={0x1b, 0x136a, "8f42b1077e737d4629d7867bca48102625b1c2c21fa15504a19b9a"}, 0x7d) setsockopt$auto(r3, 0x1, 0x1021, 0x0, 0xd) mmap$auto(0x2, 0x400008, 0xdf, 0xfffffffffffffff7, 0x2, 0x8040) r4 = geteuid() keyctl$auto(0x1e, r4, r4, 0x5, 0x8) sendmsg$auto_OVS_CT_LIMIT_CMD_GET(0xffffffffffffffff, &(0x7f0000001ac0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000001a80)={0x0, 0x12c0}, 0x1, 0x0, 0x0, 0x40}, 0x200000c0) mmap$auto(0xfffffffd, 0x8, 0xdf, 0x9b7e, 0x2, 0x8003) close_range$auto(0x2, 0xa, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/platform/vhci_hcd.0/usbip_debug\x00', 0x8002, 0x0) r5 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0) r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) r7 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r7, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000005c0)={0x118, r6, 0x1, 0x70bd2d, 0x25dfdbfe, {}, [@NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES={0x78, 0xbe, "2851deffd25c1ad8570b3ccab61efec8b5287da5740b3f69513508f66478fa0a946f3a3d7266145466ac77c9ad2c8c402858f8ff080284b3fc289fccf971e084e9b8aec596b715aec67311f3932a1379544aff4f5b730bb2779cc29c75729120f7b386758524dc5054da379991cb65bc7a3a84c6"}, @NL80211_ATTR_WIPHY_TX_POWER_LEVEL={0x8, 0x62, 0xfffffffc}, @NL80211_ATTR_SAE_PASSWORD={0x84, 0x115, "c3991eff9f839e066026e213626609002100b805414f5b112a44d6875b15c45625a1d8502d7cc067902bf55ce2c5c11d4225f128db3dec1907e02bcf361e22fa649e8610ccef1ef63d274d664ea74441c76891de999e8c4f69131d6669b8c097cab0cf92a7d0c3663de237820b905caf4c1063fc543b92853be961d81dc490ea"}]}, 0x118}, 0x1, 0x68, 0x0, 0x24000000}, 0xd0) sendmsg$auto_NL80211_CMD_GET_KEY(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x1c, r6, 0x100, 0x70bd2b, 0x25dfdbfe, {}, [@NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT={0x4}, @NL80211_ATTR_ASSOC_SPP_AMSDU={0x4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x21}, 0x51) read$auto(r5, 0x0, 0xb4d3) write$auto(0x3, 0x0, 0xffd8) unshare$auto(0x20000) unshare$auto(0x20000) bpf$auto(0x0, &(0x7f0000000780)=@link_update={0xa, @new_map_fd=0x5, 0x4007, @old_prog_fd=0x13b}, 0xa3) mmap$auto(0x0, 0x20009, 0x20004000000000df, 0xeb1, 0xffffffffffffffff, 0x9) 605.718872ms ago: executing program 0 (id=3354): socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae90, &(0x7f0000000300)) 605.506547ms ago: executing program 2 (id=3355): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0xa, 0x801, 0x84) io_uring_setup$auto(0x6, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) setsockopt$auto(0x3, 0x10000000084, 0x75, 0x0, 0x8) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) setsockopt$auto(r0, 0x10000000084, 0x77, 0x0, 0x8) 605.311935ms ago: executing program 3 (id=3356): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/module/sunrpc/parameters/auth_hashtable_size\x00', 0x42002, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000800)='/sys/devices/virtual/bdi/43:384/max_bytes\x00', 0x181482, 0x0) read$auto(r0, 0x0, 0x9) write$auto(0x3, 0x0, 0xfdef) 443.107908ms ago: executing program 3 (id=3357): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x0, 0x0, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x8) r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0) read$auto(r1, 0x0, 0x20) writev$auto(r0, &(0x7f0000000200)={0x0, 0x7}, 0x3) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) 442.297785ms ago: executing program 4 (id=3358): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec29\x00', 0x900, 0x0) sysfs$auto(0x2, 0x23, 0x0) r0 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) write$auto(r0, 0x0, 0x4) write$auto(0x3, 0x0, 0xffd8) 20.735369ms ago: executing program 2 (id=3359): mmap$auto(0x0, 0x20009, 0x7, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) close_range$auto(0x2, 0xffffffffffffffff, 0x0) open(0x0, 0x22240, 0x55) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2, 0x0) ioctl$auto(0x3, 0x800c6f40, r0) 0s ago: executing program 0 (id=3367): openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000340)='/sys/kernel/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x52141, 0x0) socket(0x1b, 0x3, 0x76) madvise$auto(0x0, 0x2000040080000003, 0xe) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r0, &(0x7f0000000040)='//\xf2\x00', 0x80000000) mmap$auto(0x4, 0x8, 0xfff, 0x12, 0x2, 0x7ffd) socket(0x15, 0xa, 0x0) setsockopt$auto(0x3, 0x10000000084, 0x20020, 0x0, 0x4) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, 0x0, 0x121900, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) syz_clone(0x4040400, 0x0, 0x0, 0x0, 0x0, 0x0) socket(0x2, 0x801, 0x106) r2 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/ieee80211/phy0/reset\x00', 0x82, 0x0) write$auto_debugfs_full_proxy_file_operations_internal(r2, 0x0, 0x20) r3 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002240)='/dev/cec8\x00', 0x1a9202, 0x0) ioctl$auto_CEC_DQEVENT(r3, 0xc0506107, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x28, 0x801, 0xffffffff) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/v4l-subdev1\x00', 0x20000, 0x0) mmap$auto(0x0, 0x20009, 0x7, 0x40000000000eb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) symlink$auto(0x0, &(0x7f0000000100)='\xfb\x00') r4 = socket(0x2, 0x801, 0x84) getsockopt$auto(r4, 0x84, 0x2, 0x0, 0x0) kernel console output (not intermixed with test programs): 2.720843][T22161] RSP: 002b:00007f592a240038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 1242.720874][T22161] RAX: ffffffffffffffda RBX: 00007f59295b5fa0 RCX: 00007f592938ebe9 [ 1242.720894][T22161] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 000000000000000e [ 1242.720911][T22161] RBP: 00007f5929411e19 R08: 0000000000000008 R09: 0000000000000000 [ 1242.720927][T22161] R10: 0000000000005eaf R11: 0000000000000246 R12: 0000000000000000 [ 1242.720943][T22161] R13: 00007f59295b6038 R14: 00007f59295b5fa0 R15: 00007ffcb3aab278 [ 1242.720978][T22161] [ 1243.343109][T22183] FAULT_INJECTION: forcing a failure. [ 1243.343109][T22183] name failslab, interval 1, probability 0, space 0, times 0 [ 1243.377510][T22183] CPU: 1 UID: 0 PID: 22183 Comm: syz.2.2911 Tainted: G U syzkaller #0 PREEMPT(full) [ 1243.377563][T22183] Tainted: [U]=USER [ 1243.377572][T22183] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1243.377591][T22183] Call Trace: [ 1243.377602][T22183] [ 1243.377614][T22183] dump_stack_lvl+0x16c/0x1f0 [ 1243.377661][T22183] should_fail_ex+0x512/0x640 [ 1243.377703][T22183] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 1243.377739][T22183] should_failslab+0xc2/0x120 [ 1243.377778][T22183] __kmalloc_cache_noprof+0x6a/0x3e0 [ 1243.377809][T22183] ? lockdep_init_map_type+0x5c/0x280 [ 1243.377849][T22183] ? snd_seq_prioq_new+0x3f/0x110 [ 1243.377895][T22183] snd_seq_prioq_new+0x3f/0x110 [ 1243.377931][T22183] snd_seq_queue_alloc+0x153/0x5a0 [ 1243.377971][T22183] snd_seq_ioctl_create_queue+0xa9/0x380 [ 1243.378017][T22183] snd_seq_kernel_client_ctl+0x107/0x1c0 [ 1243.378070][T22183] alloc_seq_queue+0xda/0x180 [ 1243.378116][T22183] ? __pfx_alloc_seq_queue+0x10/0x10 [ 1243.378196][T22183] ? mark_held_locks+0x49/0x80 [ 1243.378234][T22183] ? _raw_spin_unlock_irq+0x23/0x50 [ 1243.378274][T22183] snd_seq_oss_open+0x38c/0xa20 [ 1243.378331][T22183] odev_open+0x6f/0x90 [ 1243.378372][T22183] ? __pfx_odev_open+0x10/0x10 [ 1243.378414][T22183] soundcore_open+0x40c/0x580 [ 1243.378461][T22183] ? __pfx_soundcore_open+0x10/0x10 [ 1243.378503][T22183] chrdev_open+0x234/0x6a0 [ 1243.378540][T22183] ? __pfx_apparmor_file_open+0x10/0x10 [ 1243.378575][T22183] ? __pfx_chrdev_open+0x10/0x10 [ 1243.378617][T22183] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 1243.378659][T22183] do_dentry_open+0x982/0x1530 [ 1243.378697][T22183] ? __pfx_chrdev_open+0x10/0x10 [ 1243.378744][T22183] vfs_open+0x82/0x3f0 [ 1243.378795][T22183] path_openat+0x1de4/0x2cb0 [ 1243.378844][T22183] ? __pfx_path_openat+0x10/0x10 [ 1243.378892][T22183] do_filp_open+0x20b/0x470 [ 1243.378928][T22183] ? __pfx_do_filp_open+0x10/0x10 [ 1243.378995][T22183] ? alloc_fd+0x471/0x7d0 [ 1243.379040][T22183] do_sys_openat2+0x11b/0x1d0 [ 1243.379087][T22183] ? __pfx_do_sys_openat2+0x10/0x10 [ 1243.379149][T22183] __x64_sys_openat+0x174/0x210 [ 1243.379283][T22183] ? __pfx___x64_sys_openat+0x10/0x10 [ 1243.379335][T22183] do_syscall_64+0xcd/0x490 [ 1243.379375][T22183] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1243.379402][T22183] RIP: 0033:0x7f9aafd8ebe9 [ 1243.379426][T22183] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1243.379454][T22183] RSP: 002b:00007f9ab0b8e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1243.379484][T22183] RAX: ffffffffffffffda RBX: 00007f9aaffb5fa0 RCX: 00007f9aafd8ebe9 [ 1243.379503][T22183] RDX: 0000000000043f00 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 1243.379522][T22183] RBP: 00007f9aafe11e19 R08: 0000000000000000 R09: 0000000000000000 [ 1243.379541][T22183] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1243.379559][T22183] R13: 00007f9aaffb6038 R14: 00007f9aaffb5fa0 R15: 00007ffd6e20d468 [ 1243.379600][T22183] [ 1243.725388][T22188] FAULT_INJECTION: forcing a failure. [ 1243.725388][T22188] name failslab, interval 1, probability 0, space 0, times 0 [ 1243.738813][T22188] CPU: 0 UID: 0 PID: 22188 Comm: syz.4.2913 Tainted: G U syzkaller #0 PREEMPT(full) [ 1243.738866][T22188] Tainted: [U]=USER [ 1243.738875][T22188] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1243.738893][T22188] Call Trace: [ 1243.738902][T22188] [ 1243.738915][T22188] dump_stack_lvl+0x16c/0x1f0 [ 1243.738960][T22188] should_fail_ex+0x512/0x640 [ 1243.739003][T22188] ? __kmalloc_noprof+0xbf/0x510 [ 1243.739042][T22188] ? lsm_blob_alloc+0x68/0x90 [ 1243.739069][T22188] should_failslab+0xc2/0x120 [ 1243.739107][T22188] __kmalloc_noprof+0xd2/0x510 [ 1243.739154][T22188] lsm_blob_alloc+0x68/0x90 [ 1243.739182][T22188] security_sk_alloc+0x30/0x270 [ 1243.739218][T22188] sk_prot_alloc+0xfb/0x2a0 [ 1243.739270][T22188] sk_alloc+0x36/0xc20 [ 1243.739310][T22188] inet_create+0x3a1/0x1040 [ 1243.739343][T22188] ? inet_create+0x93/0x1040 [ 1243.739390][T22188] __sock_create+0x335/0x8d0 [ 1243.739430][T22188] mptcp_subflow_create_socket+0xf5/0xed0 [ 1243.739478][T22188] ? futex_unqueue+0x133/0x2c0 [ 1243.739513][T22188] ? aa_label_sk_perm+0x195/0x600 [ 1243.739558][T22188] ? __pfx_mptcp_subflow_create_socket+0x10/0x10 [ 1243.739607][T22188] ? __pfx_aa_label_sk_perm+0x10/0x10 [ 1243.739646][T22188] ? __futex_wait+0x24c/0x2f0 [ 1243.739698][T22188] __mptcp_nmpc_sk+0x182/0x7d0 [ 1243.739729][T22188] ? __pfx___mptcp_nmpc_sk+0x10/0x10 [ 1243.739771][T22188] mptcp_connect+0x7e/0xae0 [ 1243.739807][T22188] __inet_stream_connect+0x914/0xf60 [ 1243.739848][T22188] ? __pfx___inet_stream_connect+0x10/0x10 [ 1243.739880][T22188] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 1243.739933][T22188] ? __pfx_inet_stream_connect+0x10/0x10 [ 1243.739965][T22188] ? __local_bh_enable_ip+0xa4/0x120 [ 1243.740005][T22188] ? __pfx_inet_stream_connect+0x10/0x10 [ 1243.740034][T22188] inet_stream_connect+0x57/0xa0 [ 1243.740068][T22188] __sys_connect_file+0x141/0x1a0 [ 1243.740107][T22188] __sys_connect+0x13b/0x160 [ 1243.740140][T22188] ? __pfx___sys_connect+0x10/0x10 [ 1243.740189][T22188] ? xfd_validate_state+0x61/0x180 [ 1243.740244][T22188] __x64_sys_connect+0x72/0xb0 [ 1243.740276][T22188] ? lockdep_hardirqs_on+0x7c/0x110 [ 1243.740314][T22188] do_syscall_64+0xcd/0x490 [ 1243.740366][T22188] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1243.740398][T22188] RIP: 0033:0x7f592938ebe9 [ 1243.740423][T22188] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1243.740452][T22188] RSP: 002b:00007f592a240038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 1243.740482][T22188] RAX: ffffffffffffffda RBX: 00007f59295b5fa0 RCX: 00007f592938ebe9 [ 1243.740502][T22188] RDX: 0000000000000054 RSI: 0000000000000000 RDI: 0000000000000003 [ 1243.740521][T22188] RBP: 00007f5929411e19 R08: 0000000000000000 R09: 0000000000000000 [ 1243.740540][T22188] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1243.740559][T22188] R13: 00007f59295b6038 R14: 00007f59295b5fa0 R15: 00007ffcb3aab278 [ 1243.740600][T22188] [ 1244.293762][ T1305] ieee802154 phy0 wpan0: encryption failed: -22 [ 1244.307660][ T1305] ieee802154 phy1 wpan1: encryption failed: -22 [ 1245.183591][T22219] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 1245.386827][T22224] FAULT_INJECTION: forcing a failure. [ 1245.386827][T22224] name failslab, interval 1, probability 0, space 0, times 0 [ 1245.444597][T22226] FAULT_INJECTION: forcing a failure. [ 1245.444597][T22226] name failslab, interval 1, probability 0, space 0, times 0 [ 1245.475200][T22226] CPU: 1 UID: 0 PID: 22226 Comm: syz.2.2922 Tainted: G U syzkaller #0 PREEMPT(full) [ 1245.475253][T22226] Tainted: [U]=USER [ 1245.475263][T22226] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1245.475281][T22226] Call Trace: [ 1245.475292][T22226] [ 1245.475304][T22226] dump_stack_lvl+0x16c/0x1f0 [ 1245.475352][T22226] should_fail_ex+0x512/0x640 [ 1245.475392][T22226] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 1245.475427][T22226] should_failslab+0xc2/0x120 [ 1245.475468][T22226] __kmalloc_cache_noprof+0x6a/0x3e0 [ 1245.475503][T22226] ? uinput_open+0x48/0x160 [ 1245.475548][T22226] uinput_open+0x48/0x160 [ 1245.475583][T22226] ? __pfx_uinput_open+0x10/0x10 [ 1245.475622][T22226] misc_open+0x35d/0x420 [ 1245.475656][T22226] ? __pfx_misc_open+0x10/0x10 [ 1245.475688][T22226] chrdev_open+0x234/0x6a0 [ 1245.475726][T22226] ? __pfx_apparmor_file_open+0x10/0x10 [ 1245.475761][T22226] ? __pfx_chrdev_open+0x10/0x10 [ 1245.475804][T22226] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 1245.475847][T22226] do_dentry_open+0x982/0x1530 [ 1245.475884][T22226] ? __pfx_chrdev_open+0x10/0x10 [ 1245.475934][T22226] vfs_open+0x82/0x3f0 [ 1245.475984][T22226] path_openat+0x1de4/0x2cb0 [ 1245.476033][T22226] ? __pfx_path_openat+0x10/0x10 [ 1245.476081][T22226] do_filp_open+0x20b/0x470 [ 1245.476129][T22226] ? __pfx_do_filp_open+0x10/0x10 [ 1245.476196][T22226] ? alloc_fd+0x471/0x7d0 [ 1245.476242][T22226] do_sys_openat2+0x11b/0x1d0 [ 1245.476288][T22226] ? __pfx_do_sys_openat2+0x10/0x10 [ 1245.476338][T22226] ? __pfx___might_resched+0x10/0x10 [ 1245.476379][T22226] __x64_sys_openat+0x174/0x210 [ 1245.476425][T22226] ? __pfx___x64_sys_openat+0x10/0x10 [ 1245.476499][T22226] do_syscall_64+0xcd/0x490 [ 1245.476544][T22226] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1245.476575][T22226] RIP: 0033:0x7f9aafd8ebe9 [ 1245.476601][T22226] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1245.476631][T22226] RSP: 002b:00007f9ab0b8e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1245.476661][T22226] RAX: ffffffffffffffda RBX: 00007f9aaffb5fa0 RCX: 00007f9aafd8ebe9 [ 1245.476682][T22226] RDX: 0000000000101000 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 1245.476701][T22226] RBP: 00007f9aafe11e19 R08: 0000000000000000 R09: 0000000000000000 [ 1245.476720][T22226] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1245.476738][T22226] R13: 00007f9aaffb6038 R14: 00007f9aaffb5fa0 R15: 00007ffd6e20d468 [ 1245.476779][T22226] [ 1245.483572][T22224] CPU: 0 UID: 0 PID: 22224 Comm: syz.4.2921 Tainted: G U syzkaller #0 PREEMPT(full) [ 1245.483616][T22224] Tainted: [U]=USER [ 1245.483625][T22224] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1245.483640][T22224] Call Trace: [ 1245.483650][T22224] [ 1245.483660][T22224] dump_stack_lvl+0x16c/0x1f0 [ 1245.483701][T22224] should_fail_ex+0x512/0x640 [ 1245.483738][T22224] ? __kmalloc_noprof+0xbf/0x510 [ 1245.483772][T22224] ? vb2_core_allocated_buffers_storage+0x184/0x220 [ 1245.483813][T22224] should_failslab+0xc2/0x120 [ 1245.483849][T22224] __kmalloc_noprof+0xd2/0x510 [ 1245.483888][T22224] vb2_core_allocated_buffers_storage+0x184/0x220 [ 1245.483932][T22224] vb2_core_reqbufs+0x398/0xfe0 [ 1245.483966][T22224] ? __pfx_vb2_core_reqbufs+0x10/0x10 [ 1245.484014][T22224] __vb2_init_fileio+0x3f1/0x1100 [ 1245.484038][T22224] ? lockdep_hardirqs_on+0x7c/0x110 [ 1245.484070][T22224] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 1245.484102][T22224] ? __pollwait+0x271/0x490 [ 1245.484133][T22224] vb2_core_poll+0x5ec/0x700 [ 1245.484234][T22224] vb2_poll+0x33/0x150 [ 1245.484280][T22224] vb2_fop_poll+0x10f/0x2c0 [ 1245.484323][T22224] ? __pfx_vb2_fop_poll+0x10/0x10 [ 1245.484362][T22224] v4l2_poll+0x160/0x320 [ 1245.484397][T22224] ? __pfx_v4l2_poll+0x10/0x10 [ 1245.484438][T22224] do_select+0xd3d/0x17e0 [ 1245.484463][T22224] ? __update_load_avg_cfs_rq+0x600/0x8f0 [ 1245.484539][T22224] ? __pfx_do_select+0x10/0x10 [ 1245.484567][T22224] ? finish_task_switch.isra.0+0x21c/0xc10 [ 1245.484596][T22224] ? __pfx___pollwait+0x10/0x10 [ 1245.484628][T22224] ? __pfx_pollwake+0x10/0x10 [ 1245.484718][T22224] ? find_held_lock+0x2b/0x80 [ 1245.484744][T22224] ? __might_fault+0xe3/0x190 [ 1245.484776][T22224] ? __might_fault+0xe3/0x190 [ 1245.484803][T22224] ? __might_fault+0x13b/0x190 [ 1245.484849][T22224] ? core_sys_select+0x453/0xc10 [ 1245.484876][T22224] core_sys_select+0x453/0xc10 [ 1245.484915][T22224] ? __pfx_core_sys_select+0x10/0x10 [ 1245.484953][T22224] ? futex_wait+0x120/0x380 [ 1245.485022][T22224] ? __pfx_do_futex+0x10/0x10 [ 1245.485054][T22224] ? __fget_files+0x20e/0x3c0 [ 1245.485093][T22224] kern_select+0x15d/0x1e0 [ 1245.485123][T22224] ? __pfx_kern_select+0x10/0x10 [ 1245.485156][T22224] ? xfd_validate_state+0x61/0x180 [ 1245.485202][T22224] __x64_sys_select+0xbd/0x160 [ 1245.485228][T22224] ? do_syscall_64+0x91/0x490 [ 1245.485264][T22224] ? lockdep_hardirqs_on+0x7c/0x110 [ 1245.485298][T22224] do_syscall_64+0xcd/0x490 [ 1245.485338][T22224] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1245.485367][T22224] RIP: 0033:0x7f592938ebe9 [ 1245.485393][T22224] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1245.485473][T22224] RSP: 002b:00007f592a240038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017 [ 1245.485502][T22224] RAX: ffffffffffffffda RBX: 00007f59295b5fa0 RCX: 00007f592938ebe9 [ 1245.485520][T22224] RDX: 0000000000000000 RSI: 0000200000000480 RDI: 0000000000000005 [ 1245.485537][T22224] RBP: 00007f5929411e19 R08: 0000000000000000 R09: 0000000000000000 [ 1245.485554][T22224] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1245.485570][T22224] R13: 00007f59295b6038 R14: 00007f59295b5fa0 R15: 00007ffcb3aab278 [ 1245.485608][T22224] [ 1246.153503][T22234] FAULT_INJECTION: forcing a failure. [ 1246.153503][T22234] name failslab, interval 1, probability 0, space 0, times 0 [ 1246.209491][T22234] CPU: 0 UID: 0 PID: 22234 Comm: syz.0.2923 Tainted: G U syzkaller #0 PREEMPT(full) [ 1246.209543][T22234] Tainted: [U]=USER [ 1246.209554][T22234] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1246.209573][T22234] Call Trace: [ 1246.209583][T22234] [ 1246.209596][T22234] dump_stack_lvl+0x16c/0x1f0 [ 1246.209644][T22234] should_fail_ex+0x512/0x640 [ 1246.209686][T22234] ? __kmalloc_noprof+0xbf/0x510 [ 1246.209725][T22234] ? lsm_blob_alloc+0x68/0x90 [ 1246.209750][T22234] should_failslab+0xc2/0x120 [ 1246.209793][T22234] __kmalloc_noprof+0xd2/0x510 [ 1246.209839][T22234] lsm_blob_alloc+0x68/0x90 [ 1246.209868][T22234] security_sk_alloc+0x30/0x270 [ 1246.209904][T22234] sk_prot_alloc+0xfb/0x2a0 [ 1246.209956][T22234] sk_alloc+0x36/0xc20 [ 1246.209996][T22234] inet_create+0x3a1/0x1040 [ 1246.210029][T22234] ? inet_create+0x93/0x1040 [ 1246.210067][T22234] __sock_create+0x335/0x8d0 [ 1246.210106][T22234] mptcp_subflow_create_socket+0xf5/0xed0 [ 1246.210153][T22234] ? futex_unqueue+0x133/0x2c0 [ 1246.210187][T22234] ? aa_label_sk_perm+0x195/0x600 [ 1246.210231][T22234] ? __pfx_mptcp_subflow_create_socket+0x10/0x10 [ 1246.210279][T22234] ? __pfx_aa_label_sk_perm+0x10/0x10 [ 1246.210328][T22234] ? __futex_wait+0x24c/0x2f0 [ 1246.210381][T22234] __mptcp_nmpc_sk+0x182/0x7d0 [ 1246.210414][T22234] ? __pfx___mptcp_nmpc_sk+0x10/0x10 [ 1246.210458][T22234] mptcp_connect+0x7e/0xae0 [ 1246.210494][T22234] __inet_stream_connect+0x914/0xf60 [ 1246.210537][T22234] ? __pfx___inet_stream_connect+0x10/0x10 [ 1246.210570][T22234] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 1246.210622][T22234] ? __pfx_inet_stream_connect+0x10/0x10 [ 1246.210656][T22234] ? __local_bh_enable_ip+0xa4/0x120 [ 1246.210697][T22234] ? __pfx_inet_stream_connect+0x10/0x10 [ 1246.210726][T22234] inet_stream_connect+0x57/0xa0 [ 1246.210760][T22234] __sys_connect_file+0x141/0x1a0 [ 1246.210801][T22234] __sys_connect+0x13b/0x160 [ 1246.210835][T22234] ? __pfx___sys_connect+0x10/0x10 [ 1246.210885][T22234] ? xfd_validate_state+0x61/0x180 [ 1246.210941][T22234] __x64_sys_connect+0x72/0xb0 [ 1246.210973][T22234] ? lockdep_hardirqs_on+0x7c/0x110 [ 1246.211013][T22234] do_syscall_64+0xcd/0x490 [ 1246.211057][T22234] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1246.211082][T22234] RIP: 0033:0x7f438cb8ebe9 [ 1246.211103][T22234] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1246.211127][T22234] RSP: 002b:00007f438daa1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 1246.211157][T22234] RAX: ffffffffffffffda RBX: 00007f438cdb5fa0 RCX: 00007f438cb8ebe9 [ 1246.211179][T22234] RDX: 0000000000000054 RSI: 0000000000000000 RDI: 0000000000000003 [ 1246.211197][T22234] RBP: 00007f438cc11e19 R08: 0000000000000000 R09: 0000000000000000 [ 1246.211215][T22234] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1246.211234][T22234] R13: 00007f438cdb6038 R14: 00007f438cdb5fa0 R15: 00007ffc7d1da2f8 [ 1246.211275][T22234] [ 1246.979271][ T36] netdevsim netdevsim15 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1247.485939][T22271] FAULT_INJECTION: forcing a failure. [ 1247.485939][T22271] name failslab, interval 1, probability 0, space 0, times 0 [ 1247.503378][T22271] CPU: 1 UID: 0 PID: 22271 Comm: syz.0.2936 Tainted: G U syzkaller #0 PREEMPT(full) [ 1247.503429][T22271] Tainted: [U]=USER [ 1247.503439][T22271] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1247.503457][T22271] Call Trace: [ 1247.503467][T22271] [ 1247.503479][T22271] dump_stack_lvl+0x16c/0x1f0 [ 1247.503524][T22271] should_fail_ex+0x512/0x640 [ 1247.503567][T22271] ? __kmalloc_noprof+0xbf/0x510 [ 1247.503606][T22271] ? lsm_blob_alloc+0x68/0x90 [ 1247.503631][T22271] should_failslab+0xc2/0x120 [ 1247.503672][T22271] __kmalloc_noprof+0xd2/0x510 [ 1247.503719][T22271] lsm_blob_alloc+0x68/0x90 [ 1247.503748][T22271] security_sk_alloc+0x30/0x270 [ 1247.503784][T22271] sk_prot_alloc+0xfb/0x2a0 [ 1247.503836][T22271] sk_alloc+0x36/0xc20 [ 1247.503874][T22271] inet_create+0x3a1/0x1040 [ 1247.503906][T22271] ? inet_create+0x93/0x1040 [ 1247.503942][T22271] __sock_create+0x335/0x8d0 [ 1247.503979][T22271] mptcp_subflow_create_socket+0xf5/0xed0 [ 1247.504020][T22271] ? futex_unqueue+0x133/0x2c0 [ 1247.504046][T22271] ? aa_label_sk_perm+0x195/0x600 [ 1247.504072][T22271] ? __pfx_mptcp_subflow_create_socket+0x10/0x10 [ 1247.504103][T22271] ? __pfx_aa_label_sk_perm+0x10/0x10 [ 1247.504125][T22271] ? __futex_wait+0x24c/0x2f0 [ 1247.504158][T22271] __mptcp_nmpc_sk+0x182/0x7d0 [ 1247.504177][T22271] ? __pfx___mptcp_nmpc_sk+0x10/0x10 [ 1247.504201][T22271] mptcp_connect+0x7e/0xae0 [ 1247.504237][T22271] __inet_stream_connect+0x914/0xf60 [ 1247.504262][T22271] ? __pfx___inet_stream_connect+0x10/0x10 [ 1247.504281][T22271] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 1247.504312][T22271] ? __pfx_inet_stream_connect+0x10/0x10 [ 1247.504331][T22271] ? __local_bh_enable_ip+0xa4/0x120 [ 1247.504362][T22271] ? __pfx_inet_stream_connect+0x10/0x10 [ 1247.504379][T22271] inet_stream_connect+0x57/0xa0 [ 1247.504399][T22271] __sys_connect_file+0x141/0x1a0 [ 1247.504422][T22271] __sys_connect+0x13b/0x160 [ 1247.504442][T22271] ? __pfx___sys_connect+0x10/0x10 [ 1247.504469][T22271] ? xfd_validate_state+0x61/0x180 [ 1247.504501][T22271] __x64_sys_connect+0x72/0xb0 [ 1247.504521][T22271] ? lockdep_hardirqs_on+0x7c/0x110 [ 1247.504544][T22271] do_syscall_64+0xcd/0x490 [ 1247.504569][T22271] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1247.504591][T22271] RIP: 0033:0x7f438cb8ebe9 [ 1247.504607][T22271] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1247.504624][T22271] RSP: 002b:00007f438daa1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 1247.504643][T22271] RAX: ffffffffffffffda RBX: 00007f438cdb5fa0 RCX: 00007f438cb8ebe9 [ 1247.504655][T22271] RDX: 0000000000000054 RSI: 0000000000000000 RDI: 0000000000000003 [ 1247.504665][T22271] RBP: 00007f438cc11e19 R08: 0000000000000000 R09: 0000000000000000 [ 1247.504675][T22271] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1247.504686][T22271] R13: 00007f438cdb6038 R14: 00007f438cdb5fa0 R15: 00007ffc7d1da2f8 [ 1247.504707][T22271] [ 1248.291256][T22277] FAULT_INJECTION: forcing a failure. [ 1248.291256][T22277] name failslab, interval 1, probability 0, space 0, times 0 [ 1248.314141][T22275] FAULT_INJECTION: forcing a failure. [ 1248.314141][T22275] name failslab, interval 1, probability 0, space 0, times 0 [ 1248.327193][T22277] CPU: 1 UID: 0 PID: 22277 Comm: syz.3.2937 Tainted: G U syzkaller #0 PREEMPT(full) [ 1248.327225][T22277] Tainted: [U]=USER [ 1248.327231][T22277] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1248.327241][T22277] Call Trace: [ 1248.327248][T22277] [ 1248.327256][T22277] dump_stack_lvl+0x16c/0x1f0 [ 1248.327286][T22277] should_fail_ex+0x512/0x640 [ 1248.327313][T22277] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 1248.327336][T22277] should_failslab+0xc2/0x120 [ 1248.327360][T22277] __kmalloc_cache_noprof+0x6a/0x3e0 [ 1248.327400][T22277] ? uinput_open+0x48/0x160 [ 1248.327441][T22277] uinput_open+0x48/0x160 [ 1248.327476][T22277] ? __pfx_uinput_open+0x10/0x10 [ 1248.327504][T22277] misc_open+0x35d/0x420 [ 1248.327524][T22277] ? __pfx_misc_open+0x10/0x10 [ 1248.327542][T22277] chrdev_open+0x234/0x6a0 [ 1248.327565][T22277] ? __pfx_apparmor_file_open+0x10/0x10 [ 1248.327585][T22277] ? __pfx_chrdev_open+0x10/0x10 [ 1248.327609][T22277] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 1248.327634][T22277] do_dentry_open+0x982/0x1530 [ 1248.327656][T22277] ? __pfx_chrdev_open+0x10/0x10 [ 1248.327683][T22277] vfs_open+0x82/0x3f0 [ 1248.327712][T22277] path_openat+0x1de4/0x2cb0 [ 1248.327740][T22277] ? __pfx_path_openat+0x10/0x10 [ 1248.327767][T22277] do_filp_open+0x20b/0x470 [ 1248.327789][T22277] ? __pfx_do_filp_open+0x10/0x10 [ 1248.327825][T22277] ? alloc_fd+0x471/0x7d0 [ 1248.327850][T22277] do_sys_openat2+0x11b/0x1d0 [ 1248.327877][T22277] ? __pfx_do_sys_openat2+0x10/0x10 [ 1248.327906][T22277] ? __pfx___might_resched+0x10/0x10 [ 1248.327930][T22277] __x64_sys_openat+0x174/0x210 [ 1248.327957][T22277] ? __pfx___x64_sys_openat+0x10/0x10 [ 1248.327994][T22277] do_syscall_64+0xcd/0x490 [ 1248.328020][T22277] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1248.328038][T22277] RIP: 0033:0x7f14bc18ebe9 [ 1248.328054][T22277] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1248.328072][T22277] RSP: 002b:00007f14bcf58038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1248.328089][T22277] RAX: ffffffffffffffda RBX: 00007f14bc3b5fa0 RCX: 00007f14bc18ebe9 [ 1248.328100][T22277] RDX: 0000000000101000 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 1248.328112][T22277] RBP: 00007f14bc211e19 R08: 0000000000000000 R09: 0000000000000000 [ 1248.328126][T22277] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1248.328140][T22277] R13: 00007f14bc3b6038 R14: 00007f14bc3b5fa0 R15: 00007ffdd20bebd8 [ 1248.328173][T22277] [ 1248.588160][T22275] CPU: 1 UID: 0 PID: 22275 Comm: syz.0.2938 Tainted: G U syzkaller #0 PREEMPT(full) [ 1248.588210][T22275] Tainted: [U]=USER [ 1248.588219][T22275] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1248.588236][T22275] Call Trace: [ 1248.588247][T22275] [ 1248.588258][T22275] dump_stack_lvl+0x16c/0x1f0 [ 1248.588305][T22275] should_fail_ex+0x512/0x640 [ 1248.588358][T22275] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 1248.588400][T22275] should_failslab+0xc2/0x120 [ 1248.588440][T22275] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 1248.588475][T22275] ? __x64_sys_futex+0x1e0/0x4c0 [ 1248.588520][T22275] ? __x64_sys_futex+0x1e9/0x4c0 [ 1248.588556][T22275] ? prepare_creds+0x2c/0x7d0 [ 1248.588606][T22275] prepare_creds+0x2c/0x7d0 [ 1248.588654][T22275] keyctl_set_reqkey_keyring+0x8e/0x1c0 [ 1248.588692][T22275] __do_sys_keyctl+0x6d/0x590 [ 1248.588728][T22275] do_syscall_64+0xcd/0x490 [ 1248.588773][T22275] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1248.588806][T22275] RIP: 0033:0x7f438cb8ebe9 [ 1248.588831][T22275] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1248.588860][T22275] RSP: 002b:00007f438daa1038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 1248.588889][T22275] RAX: ffffffffffffffda RBX: 00007f438cdb5fa0 RCX: 00007f438cb8ebe9 [ 1248.588908][T22275] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 000000000000000e [ 1248.588926][T22275] RBP: 00007f438cc11e19 R08: 0000000000000008 R09: 0000000000000000 [ 1248.588944][T22275] R10: 0000000000005eaf R11: 0000000000000246 R12: 0000000000000000 [ 1248.588961][T22275] R13: 00007f438cdb6038 R14: 00007f438cdb5fa0 R15: 00007ffc7d1da2f8 [ 1248.589001][T22275] [ 1249.562403][T22302] FAULT_INJECTION: forcing a failure. [ 1249.562403][T22302] name failslab, interval 1, probability 0, space 0, times 0 [ 1249.575851][T22302] CPU: 1 UID: 0 PID: 22302 Comm: syz.3.2954 Tainted: G U syzkaller #0 PREEMPT(full) [ 1249.575902][T22302] Tainted: [U]=USER [ 1249.575912][T22302] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1249.575930][T22302] Call Trace: [ 1249.575941][T22302] [ 1249.575953][T22302] dump_stack_lvl+0x16c/0x1f0 [ 1249.575999][T22302] should_fail_ex+0x512/0x640 [ 1249.576041][T22302] ? __kmalloc_noprof+0xbf/0x510 [ 1249.576080][T22302] ? vb2_core_allocated_buffers_storage+0x184/0x220 [ 1249.576139][T22302] should_failslab+0xc2/0x120 [ 1249.576178][T22302] __kmalloc_noprof+0xd2/0x510 [ 1249.576225][T22302] vb2_core_allocated_buffers_storage+0x184/0x220 [ 1249.576282][T22302] vb2_core_reqbufs+0x398/0xfe0 [ 1249.576321][T22302] ? __pfx_vb2_core_reqbufs+0x10/0x10 [ 1249.576372][T22302] __vb2_init_fileio+0x3f1/0x1100 [ 1249.576398][T22302] ? lockdep_hardirqs_on+0x7c/0x110 [ 1249.576435][T22302] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 1249.576472][T22302] ? __pollwait+0x271/0x490 [ 1249.576507][T22302] vb2_core_poll+0x5ec/0x700 [ 1249.576541][T22302] vb2_poll+0x33/0x150 [ 1249.576587][T22302] vb2_fop_poll+0x10f/0x2c0 [ 1249.576637][T22302] ? __pfx_vb2_fop_poll+0x10/0x10 [ 1249.576682][T22302] v4l2_poll+0x160/0x320 [ 1249.576720][T22302] ? __pfx_v4l2_poll+0x10/0x10 [ 1249.576754][T22302] do_select+0xd3d/0x17e0 [ 1249.576820][T22302] ? __pfx_do_select+0x10/0x10 [ 1249.576853][T22302] ? finish_task_switch.isra.0+0x21c/0xc10 [ 1249.576887][T22302] ? __pfx___pollwait+0x10/0x10 [ 1249.576923][T22302] ? __pfx_pollwake+0x10/0x10 [ 1249.577020][T22302] ? find_held_lock+0x2b/0x80 [ 1249.577048][T22302] ? __might_fault+0xe3/0x190 [ 1249.577092][T22302] ? __might_fault+0xe3/0x190 [ 1249.577125][T22302] ? __might_fault+0x13b/0x190 [ 1249.577178][T22302] ? core_sys_select+0x453/0xc10 [ 1249.577207][T22302] core_sys_select+0x453/0xc10 [ 1249.577251][T22302] ? __pfx_core_sys_select+0x10/0x10 [ 1249.577294][T22302] ? futex_wait+0x120/0x380 [ 1249.577370][T22302] ? __pfx_do_futex+0x10/0x10 [ 1249.577407][T22302] ? __fget_files+0x20e/0x3c0 [ 1249.577450][T22302] kern_select+0x15d/0x1e0 [ 1249.577483][T22302] ? __pfx_kern_select+0x10/0x10 [ 1249.577519][T22302] ? xfd_validate_state+0x61/0x180 [ 1249.577573][T22302] __x64_sys_select+0xbd/0x160 [ 1249.577604][T22302] ? do_syscall_64+0x91/0x490 [ 1249.577644][T22302] ? lockdep_hardirqs_on+0x7c/0x110 [ 1249.577683][T22302] do_syscall_64+0xcd/0x490 [ 1249.577727][T22302] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1249.577757][T22302] RIP: 0033:0x7f14bc18ebe9 [ 1249.577783][T22302] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1249.577813][T22302] RSP: 002b:00007f14bcf58038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017 [ 1249.577843][T22302] RAX: ffffffffffffffda RBX: 00007f14bc3b5fa0 RCX: 00007f14bc18ebe9 [ 1249.577863][T22302] RDX: 0000000000000000 RSI: 0000200000000480 RDI: 0000000000000005 [ 1249.577881][T22302] RBP: 00007f14bc211e19 R08: 0000000000000000 R09: 0000000000000000 [ 1249.577900][T22302] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1249.577917][T22302] R13: 00007f14bc3b6038 R14: 00007f14bc3b5fa0 R15: 00007ffdd20bebd8 [ 1249.577958][T22302] [ 1250.178233][T22307] FAULT_INJECTION: forcing a failure. [ 1250.178233][T22307] name failslab, interval 1, probability 0, space 0, times 0 [ 1250.212371][T22307] CPU: 0 UID: 0 PID: 22307 Comm: syz.3.2949 Tainted: G U syzkaller #0 PREEMPT(full) [ 1250.212418][T22307] Tainted: [U]=USER [ 1250.212427][T22307] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1250.212442][T22307] Call Trace: [ 1250.212452][T22307] [ 1250.212464][T22307] dump_stack_lvl+0x16c/0x1f0 [ 1250.212508][T22307] should_fail_ex+0x512/0x640 [ 1250.212553][T22307] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 1250.212591][T22307] should_failslab+0xc2/0x120 [ 1250.212626][T22307] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 1250.212659][T22307] ? __x64_sys_futex+0x1e0/0x4c0 [ 1250.212695][T22307] ? __x64_sys_futex+0x1e9/0x4c0 [ 1250.212730][T22307] ? prepare_creds+0x2c/0x7d0 [ 1250.212778][T22307] prepare_creds+0x2c/0x7d0 [ 1250.212823][T22307] keyctl_set_reqkey_keyring+0x8e/0x1c0 [ 1250.212857][T22307] __do_sys_keyctl+0x6d/0x590 [ 1250.212886][T22307] do_syscall_64+0xcd/0x490 [ 1250.212926][T22307] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1250.212954][T22307] RIP: 0033:0x7f14bc18ebe9 [ 1250.212979][T22307] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1250.213005][T22307] RSP: 002b:00007f14bcf58038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 1250.213026][T22307] RAX: ffffffffffffffda RBX: 00007f14bc3b5fa0 RCX: 00007f14bc18ebe9 [ 1250.213038][T22307] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 000000000000000e [ 1250.213048][T22307] RBP: 00007f14bc211e19 R08: 0000000000000008 R09: 0000000000000000 [ 1250.213058][T22307] R10: 0000000000005eaf R11: 0000000000000246 R12: 0000000000000000 [ 1250.213068][T22307] R13: 00007f14bc3b6038 R14: 00007f14bc3b5fa0 R15: 00007ffdd20bebd8 [ 1250.213091][T22307] [ 1250.595178][T22313] FAULT_INJECTION: forcing a failure. [ 1250.595178][T22313] name failslab, interval 1, probability 0, space 0, times 0 [ 1250.608713][T22313] CPU: 0 UID: 0 PID: 22313 Comm: syz.0.2950 Tainted: G U syzkaller #0 PREEMPT(full) [ 1250.608764][T22313] Tainted: [U]=USER [ 1250.608774][T22313] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1250.608792][T22313] Call Trace: [ 1250.608803][T22313] [ 1250.608816][T22313] dump_stack_lvl+0x16c/0x1f0 [ 1250.608865][T22313] should_fail_ex+0x512/0x640 [ 1250.608909][T22313] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 1250.608946][T22313] should_failslab+0xc2/0x120 [ 1250.608987][T22313] __kmalloc_cache_noprof+0x6a/0x3e0 [ 1250.609021][T22313] ? uinput_open+0x48/0x160 [ 1250.609068][T22313] uinput_open+0x48/0x160 [ 1250.609103][T22313] ? __pfx_uinput_open+0x10/0x10 [ 1250.609142][T22313] misc_open+0x35d/0x420 [ 1250.609174][T22313] ? __pfx_misc_open+0x10/0x10 [ 1250.609201][T22313] chrdev_open+0x234/0x6a0 [ 1250.609238][T22313] ? __pfx_apparmor_file_open+0x10/0x10 [ 1250.609273][T22313] ? __pfx_chrdev_open+0x10/0x10 [ 1250.609316][T22313] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 1250.609369][T22313] do_dentry_open+0x982/0x1530 [ 1250.609409][T22313] ? __pfx_chrdev_open+0x10/0x10 [ 1250.609458][T22313] vfs_open+0x82/0x3f0 [ 1250.609510][T22313] path_openat+0x1de4/0x2cb0 [ 1250.609562][T22313] ? __pfx_path_openat+0x10/0x10 [ 1250.609607][T22313] do_filp_open+0x20b/0x470 [ 1250.609645][T22313] ? __pfx_do_filp_open+0x10/0x10 [ 1250.609710][T22313] ? alloc_fd+0x471/0x7d0 [ 1250.609756][T22313] do_sys_openat2+0x11b/0x1d0 [ 1250.609803][T22313] ? __pfx_do_sys_openat2+0x10/0x10 [ 1250.609854][T22313] ? __pfx___might_resched+0x10/0x10 [ 1250.609897][T22313] __x64_sys_openat+0x174/0x210 [ 1250.609946][T22313] ? __pfx___x64_sys_openat+0x10/0x10 [ 1250.610012][T22313] do_syscall_64+0xcd/0x490 [ 1250.610057][T22313] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1250.610087][T22313] RIP: 0033:0x7f438cb8ebe9 [ 1250.610111][T22313] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1250.610142][T22313] RSP: 002b:00007f438daa1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1250.610172][T22313] RAX: ffffffffffffffda RBX: 00007f438cdb5fa0 RCX: 00007f438cb8ebe9 [ 1250.610193][T22313] RDX: 0000000000101000 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 1250.610212][T22313] RBP: 00007f438cc11e19 R08: 0000000000000000 R09: 0000000000000000 [ 1250.610230][T22313] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1250.610248][T22313] R13: 00007f438cdb6038 R14: 00007f438cdb5fa0 R15: 00007ffc7d1da2f8 [ 1250.610289][T22313] [ 1251.755445][T22334] random: crng reseeded on system resumption [ 1251.879340][T22324] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1251.889074][T22324] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1252.372383][T22344] block nbd7: not configured, cannot reconfigure [ 1253.815052][T22386] random: crng reseeded on system resumption [ 1253.950551][T22380] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1254.007864][T22380] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1255.385441][T22414] random: crng reseeded on system resumption [ 1255.482820][T22417] FAULT_INJECTION: forcing a failure. [ 1255.482820][T22417] name failslab, interval 1, probability 0, space 0, times 0 [ 1255.502514][T22417] CPU: 1 UID: 0 PID: 22417 Comm: syz.2.2983 Tainted: G U syzkaller #0 PREEMPT(full) [ 1255.502573][T22417] Tainted: [U]=USER [ 1255.502584][T22417] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1255.502601][T22417] Call Trace: [ 1255.502611][T22417] [ 1255.502623][T22417] dump_stack_lvl+0x16c/0x1f0 [ 1255.502667][T22417] should_fail_ex+0x512/0x640 [ 1255.502710][T22417] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 1255.502748][T22417] should_failslab+0xc2/0x120 [ 1255.502788][T22417] __kmalloc_cache_noprof+0x6a/0x3e0 [ 1255.502822][T22417] ? tty_alloc_file+0x3f/0xa0 [ 1255.502864][T22417] ? __pfx_ptmx_open+0x10/0x10 [ 1255.502900][T22417] tty_alloc_file+0x3f/0xa0 [ 1255.502941][T22417] ptmx_open+0x61/0x360 [ 1255.502976][T22417] ? __pfx_ptmx_open+0x10/0x10 [ 1255.503011][T22417] chrdev_open+0x234/0x6a0 [ 1255.503046][T22417] ? __pfx_apparmor_file_open+0x10/0x10 [ 1255.503078][T22417] ? __pfx_chrdev_open+0x10/0x10 [ 1255.503115][T22417] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 1255.503169][T22417] do_dentry_open+0x982/0x1530 [ 1255.503210][T22417] ? __pfx_chrdev_open+0x10/0x10 [ 1255.503252][T22417] vfs_open+0x82/0x3f0 [ 1255.503302][T22417] path_openat+0x1de4/0x2cb0 [ 1255.503352][T22417] ? __pfx_path_openat+0x10/0x10 [ 1255.503400][T22417] do_filp_open+0x20b/0x470 [ 1255.503438][T22417] ? __pfx_do_filp_open+0x10/0x10 [ 1255.503504][T22417] ? alloc_fd+0x471/0x7d0 [ 1255.503551][T22417] do_sys_openat2+0x11b/0x1d0 [ 1255.503599][T22417] ? __pfx_do_sys_openat2+0x10/0x10 [ 1255.503661][T22417] __x64_sys_openat+0x174/0x210 [ 1255.503709][T22417] ? __pfx___x64_sys_openat+0x10/0x10 [ 1255.503770][T22417] do_syscall_64+0xcd/0x490 [ 1255.503816][T22417] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1255.503848][T22417] RIP: 0033:0x7f9aafd8ebe9 [ 1255.503873][T22417] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1255.503904][T22417] RSP: 002b:00007f9ab0b8e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1255.503936][T22417] RAX: ffffffffffffffda RBX: 00007f9aaffb5fa0 RCX: 00007f9aafd8ebe9 [ 1255.503958][T22417] RDX: 0000000000040001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 1255.503978][T22417] RBP: 00007f9aafe11e19 R08: 0000000000000000 R09: 0000000000000000 [ 1255.503997][T22417] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1255.504016][T22417] R13: 00007f9aaffb6038 R14: 00007f9aaffb5fa0 R15: 00007ffd6e20d468 [ 1255.504056][T22417] [ 1255.527602][T22418] FAULT_INJECTION: forcing a failure. [ 1255.527602][T22418] name failslab, interval 1, probability 0, space 0, times 0 [ 1255.773950][T22418] CPU: 1 UID: 0 PID: 22418 Comm: syz.0.2984 Tainted: G U syzkaller #0 PREEMPT(full) [ 1255.774002][T22418] Tainted: [U]=USER [ 1255.774013][T22418] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1255.774041][T22418] Call Trace: [ 1255.774055][T22418] [ 1255.774070][T22418] dump_stack_lvl+0x16c/0x1f0 [ 1255.774118][T22418] should_fail_ex+0x512/0x640 [ 1255.774160][T22418] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 1255.774203][T22418] should_failslab+0xc2/0x120 [ 1255.774245][T22418] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 1255.774280][T22418] ? is_bad_inode+0xd/0x40 [ 1255.774308][T22418] ? ima_d_path+0xbd/0x2a0 [ 1255.774351][T22418] ima_d_path+0xbd/0x2a0 [ 1255.774384][T22418] ? vfs_getxattr_alloc+0xec/0x340 [ 1255.774419][T22418] ? __pfx_ima_d_path+0x10/0x10 [ 1255.774463][T22418] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 1255.774504][T22418] process_measurement+0x1d86/0x23e0 [ 1255.774552][T22418] ? __pfx_process_measurement+0x10/0x10 [ 1255.774597][T22418] ? find_held_lock+0x2b/0x80 [ 1255.774631][T22418] ? rcu_read_unlock+0x17/0x60 [ 1255.774708][T22418] ? seq_open+0x116/0x170 [ 1255.774751][T22418] ? inode_to_bdi+0x9e/0x160 [ 1255.774799][T22418] ima_file_check+0xc5/0x110 [ 1255.774831][T22418] ? __pfx_ima_file_check+0x10/0x10 [ 1255.774894][T22418] security_file_post_open+0x8e/0x210 [ 1255.774937][T22418] path_openat+0x1404/0x2cb0 [ 1255.774989][T22418] ? __pfx_path_openat+0x10/0x10 [ 1255.775046][T22418] do_filp_open+0x20b/0x470 [ 1255.775084][T22418] ? __pfx_do_filp_open+0x10/0x10 [ 1255.775153][T22418] ? alloc_fd+0x471/0x7d0 [ 1255.775198][T22418] do_sys_openat2+0x11b/0x1d0 [ 1255.775245][T22418] ? __pfx_do_sys_openat2+0x10/0x10 [ 1255.775307][T22418] __x64_sys_openat+0x174/0x210 [ 1255.775356][T22418] ? __pfx___x64_sys_openat+0x10/0x10 [ 1255.775421][T22418] do_syscall_64+0xcd/0x490 [ 1255.775466][T22418] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1255.775499][T22418] RIP: 0033:0x7f438cb8ebe9 [ 1255.775525][T22418] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1255.775556][T22418] RSP: 002b:00007f438daa1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1255.775586][T22418] RAX: ffffffffffffffda RBX: 00007f438cdb5fa0 RCX: 00007f438cb8ebe9 [ 1255.775606][T22418] RDX: 0000000000080400 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 1255.775626][T22418] RBP: 00007f438cc11e19 R08: 0000000000000000 R09: 0000000000000000 [ 1255.775646][T22418] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1255.775664][T22418] R13: 00007f438cdb6038 R14: 00007f438cdb5fa0 R15: 00007ffc7d1da2f8 [ 1255.775706][T22418] [ 1256.103451][T22411] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1256.112271][T22411] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1257.023354][T22437] FAULT_INJECTION: forcing a failure. [ 1257.023354][T22437] name failslab, interval 1, probability 0, space 0, times 0 [ 1257.036870][T22437] CPU: 0 UID: 0 PID: 22437 Comm: syz.0.2992 Tainted: G U syzkaller #0 PREEMPT(full) [ 1257.036924][T22437] Tainted: [U]=USER [ 1257.036936][T22437] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1257.036955][T22437] Call Trace: [ 1257.036967][T22437] [ 1257.036980][T22437] dump_stack_lvl+0x16c/0x1f0 [ 1257.037030][T22437] should_fail_ex+0x512/0x640 [ 1257.037073][T22437] ? fs_reclaim_acquire+0xae/0x150 [ 1257.037121][T22437] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 1257.037167][T22437] should_failslab+0xc2/0x120 [ 1257.037210][T22437] __kmalloc_noprof+0xd2/0x510 [ 1257.037260][T22437] tomoyo_realpath_from_path+0xc2/0x6e0 [ 1257.037312][T22437] ? tomoyo_profile+0x47/0x60 [ 1257.037356][T22437] tomoyo_path2_perm+0x2a1/0x710 [ 1257.037394][T22437] ? tomoyo_path2_perm+0x293/0x710 [ 1257.037451][T22437] ? __pfx_tomoyo_path2_perm+0x10/0x10 [ 1257.037511][T22437] ? look_up_lock_class+0x59/0x150 [ 1257.037594][T22437] ? do_raw_spin_lock+0x12c/0x2b0 [ 1257.037656][T22437] ? find_held_lock+0x2b/0x80 [ 1257.037706][T22437] tomoyo_path_rename+0xfc/0x1a0 [ 1257.037756][T22437] ? __pfx_tomoyo_path_rename+0x10/0x10 [ 1257.037803][T22437] ? _raw_spin_unlock+0x28/0x50 [ 1257.037857][T22437] security_path_rename+0x18e/0x3c0 [ 1257.037902][T22437] do_renameat2+0x735/0xc50 [ 1257.037958][T22437] ? __pfx_do_renameat2+0x10/0x10 [ 1257.038005][T22437] ? find_held_lock+0x2b/0x80 [ 1257.038035][T22437] ? __might_fault+0xe3/0x190 [ 1257.038072][T22437] ? __might_fault+0x13b/0x190 [ 1257.038128][T22437] ? getname_flags.part.0+0x1c5/0x550 [ 1257.038186][T22437] __x64_sys_rename+0x7d/0xa0 [ 1257.038230][T22437] do_syscall_64+0xcd/0x490 [ 1257.038277][T22437] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1257.038311][T22437] RIP: 0033:0x7f438cb8ebe9 [ 1257.038338][T22437] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1257.038379][T22437] RSP: 002b:00007f438daa1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000052 [ 1257.038412][T22437] RAX: ffffffffffffffda RBX: 00007f438cdb5fa0 RCX: 00007f438cb8ebe9 [ 1257.038434][T22437] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000440 [ 1257.038454][T22437] RBP: 00007f438cc11e19 R08: 0000000000000000 R09: 0000000000000000 [ 1257.038473][T22437] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1257.038493][T22437] R13: 00007f438cdb6038 R14: 00007f438cdb5fa0 R15: 00007ffc7d1da2f8 [ 1257.038535][T22437] [ 1257.038558][T22437] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1258.841695][T22473] FAULT_INJECTION: forcing a failure. [ 1258.841695][T22473] name failslab, interval 1, probability 0, space 0, times 0 [ 1258.898839][T22473] CPU: 0 UID: 0 PID: 22473 Comm: syz.2.3004 Tainted: G U syzkaller #0 PREEMPT(full) [ 1258.898888][T22473] Tainted: [U]=USER [ 1258.898898][T22473] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1258.898916][T22473] Call Trace: [ 1258.898927][T22473] [ 1258.898940][T22473] dump_stack_lvl+0x16c/0x1f0 [ 1258.898988][T22473] should_fail_ex+0x512/0x640 [ 1258.899028][T22473] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 1258.899064][T22473] should_failslab+0xc2/0x120 [ 1258.899100][T22473] __kmalloc_cache_noprof+0x6a/0x3e0 [ 1258.899131][T22473] ? copy_time_ns+0xf6/0x580 [ 1258.899168][T22473] copy_time_ns+0xf6/0x580 [ 1258.899196][T22473] ? copy_cgroup_ns+0x71/0x700 [ 1258.899232][T22473] create_new_namespaces+0x48a/0xa90 [ 1258.899277][T22473] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 1258.899317][T22473] ksys_unshare+0x45b/0xa40 [ 1258.899370][T22473] ? __pfx_ksys_unshare+0x10/0x10 [ 1258.899414][T22473] ? xfd_validate_state+0x61/0x180 [ 1258.899470][T22473] __x64_sys_unshare+0x31/0x40 [ 1258.899512][T22473] do_syscall_64+0xcd/0x490 [ 1258.899556][T22473] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1258.899589][T22473] RIP: 0033:0x7f9aafd8ebe9 [ 1258.899615][T22473] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1258.899645][T22473] RSP: 002b:00007f9ab0b8e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 1258.899678][T22473] RAX: ffffffffffffffda RBX: 00007f9aaffb5fa0 RCX: 00007f9aafd8ebe9 [ 1258.899699][T22473] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000080 [ 1258.899718][T22473] RBP: 00007f9aafe11e19 R08: 0000000000000000 R09: 0000000000000000 [ 1258.899737][T22473] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1258.899755][T22473] R13: 00007f9aaffb6038 R14: 00007f9aaffb5fa0 R15: 00007ffd6e20d468 [ 1258.899795][T22473] [ 1259.183452][T22465] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1259.199465][T22465] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1259.546035][T22486] FAULT_INJECTION: forcing a failure. [ 1259.546035][T22486] name failslab, interval 1, probability 0, space 0, times 0 [ 1259.613851][T22486] CPU: 0 UID: 0 PID: 22486 Comm: syz.4.3017 Tainted: G U syzkaller #0 PREEMPT(full) [ 1259.613884][T22486] Tainted: [U]=USER [ 1259.613891][T22486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1259.613902][T22486] Call Trace: [ 1259.613908][T22486] [ 1259.613916][T22486] dump_stack_lvl+0x16c/0x1f0 [ 1259.613946][T22486] should_fail_ex+0x512/0x640 [ 1259.613972][T22486] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 1259.613995][T22486] should_failslab+0xc2/0x120 [ 1259.614022][T22486] __kmalloc_cache_noprof+0x6a/0x3e0 [ 1259.614044][T22486] ? tty_alloc_file+0x3f/0xa0 [ 1259.614070][T22486] ? __pfx_ptmx_open+0x10/0x10 [ 1259.614092][T22486] tty_alloc_file+0x3f/0xa0 [ 1259.614116][T22486] ptmx_open+0x61/0x360 [ 1259.614136][T22486] ? __pfx_ptmx_open+0x10/0x10 [ 1259.614160][T22486] chrdev_open+0x234/0x6a0 [ 1259.614184][T22486] ? __pfx_apparmor_file_open+0x10/0x10 [ 1259.614205][T22486] ? __pfx_chrdev_open+0x10/0x10 [ 1259.614229][T22486] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 1259.614254][T22486] do_dentry_open+0x982/0x1530 [ 1259.614285][T22486] ? __pfx_chrdev_open+0x10/0x10 [ 1259.614313][T22486] vfs_open+0x82/0x3f0 [ 1259.614342][T22486] path_openat+0x1de4/0x2cb0 [ 1259.614371][T22486] ? __pfx_path_openat+0x10/0x10 [ 1259.614398][T22486] do_filp_open+0x20b/0x470 [ 1259.614420][T22486] ? __pfx_do_filp_open+0x10/0x10 [ 1259.614457][T22486] ? alloc_fd+0x471/0x7d0 [ 1259.614483][T22486] do_sys_openat2+0x11b/0x1d0 [ 1259.614510][T22486] ? __pfx_do_sys_openat2+0x10/0x10 [ 1259.614546][T22486] __x64_sys_openat+0x174/0x210 [ 1259.614575][T22486] ? __pfx___x64_sys_openat+0x10/0x10 [ 1259.614613][T22486] do_syscall_64+0xcd/0x490 [ 1259.614639][T22486] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1259.614658][T22486] RIP: 0033:0x7f592938ebe9 [ 1259.614674][T22486] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1259.614692][T22486] RSP: 002b:00007f592a240038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1259.614711][T22486] RAX: ffffffffffffffda RBX: 00007f59295b5fa0 RCX: 00007f592938ebe9 [ 1259.614723][T22486] RDX: 0000000000040001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 1259.614734][T22486] RBP: 00007f5929411e19 R08: 0000000000000000 R09: 0000000000000000 [ 1259.614746][T22486] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1259.614756][T22486] R13: 00007f59295b6038 R14: 00007f59295b5fa0 R15: 00007ffcb3aab278 [ 1259.614778][T22486] [ 1260.611741][T22503] FAULT_INJECTION: forcing a failure. [ 1260.611741][T22503] name failslab, interval 1, probability 0, space 0, times 0 [ 1260.626069][T22503] CPU: 0 UID: 0 PID: 22503 Comm: syz.3.3014 Tainted: G U syzkaller #0 PREEMPT(full) [ 1260.626103][T22503] Tainted: [U]=USER [ 1260.626109][T22503] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1260.626120][T22503] Call Trace: [ 1260.626130][T22503] [ 1260.626142][T22503] dump_stack_lvl+0x16c/0x1f0 [ 1260.626172][T22503] should_fail_ex+0x512/0x640 [ 1260.626202][T22503] should_failslab+0xc2/0x120 [ 1260.626228][T22503] __kmalloc_cache_noprof+0x6a/0x3e0 [ 1260.626248][T22503] ? __pfx_sctp_get_port_local+0x10/0x10 [ 1260.626272][T22503] ? sctp_bind_addr_match+0x193/0x300 [ 1260.626293][T22503] ? sctp_add_bind_addr+0xae/0x3f0 [ 1260.626321][T22503] sctp_add_bind_addr+0xae/0x3f0 [ 1260.626347][T22503] sctp_do_bind+0x2d6/0x700 [ 1260.626377][T22503] sctp_connect_new_asoc+0x5e7/0x770 [ 1260.626406][T22503] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 1260.626435][T22503] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1260.626467][T22503] __sctp_connect+0x3f3/0xc60 [ 1260.626496][T22503] ? do_raw_spin_lock+0x12c/0x2b0 [ 1260.626526][T22503] ? __pfx___sctp_connect+0x10/0x10 [ 1260.626554][T22503] ? __pfx_sctp_inet_connect+0x10/0x10 [ 1260.626581][T22503] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1260.626610][T22503] ? __pfx_sctp_inet_connect+0x10/0x10 [ 1260.626635][T22503] sctp_inet_connect+0x15f/0x200 [ 1260.626664][T22503] __sys_connect_file+0x141/0x1a0 [ 1260.626688][T22503] __sys_connect+0x13b/0x160 [ 1260.626709][T22503] ? __pfx___sys_connect+0x10/0x10 [ 1260.626760][T22503] ? xfd_validate_state+0x61/0x180 [ 1260.626794][T22503] __x64_sys_connect+0x72/0xb0 [ 1260.626816][T22503] ? lockdep_hardirqs_on+0x7c/0x110 [ 1260.626859][T22503] do_syscall_64+0xcd/0x490 [ 1260.626887][T22503] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1260.626906][T22503] RIP: 0033:0x7f14bc18ebe9 [ 1260.626923][T22503] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1260.626941][T22503] RSP: 002b:00007f14bcf58038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 1260.626959][T22503] RAX: ffffffffffffffda RBX: 00007f14bc3b5fa0 RCX: 00007f14bc18ebe9 [ 1260.626971][T22503] RDX: 0000000000000054 RSI: 0000200000000080 RDI: 0000000000000003 [ 1260.626983][T22503] RBP: 00007f14bc211e19 R08: 0000000000000000 R09: 0000000000000000 [ 1260.626994][T22503] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1260.627005][T22503] R13: 00007f14bc3b6038 R14: 00007f14bc3b5fa0 R15: 00007ffdd20bebd8 [ 1260.627028][T22503] [ 1261.284457][T22514] FAULT_INJECTION: forcing a failure. [ 1261.284457][T22514] name failslab, interval 1, probability 0, space 0, times 0 [ 1261.350701][T22514] CPU: 1 UID: 0 PID: 22514 Comm: syz.3.3016 Tainted: G U syzkaller #0 PREEMPT(full) [ 1261.350734][T22514] Tainted: [U]=USER [ 1261.350740][T22514] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1261.350751][T22514] Call Trace: [ 1261.350758][T22514] [ 1261.350767][T22514] dump_stack_lvl+0x16c/0x1f0 [ 1261.350797][T22514] should_fail_ex+0x512/0x640 [ 1261.350822][T22514] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 1261.350845][T22514] should_failslab+0xc2/0x120 [ 1261.350869][T22514] __kmalloc_cache_noprof+0x6a/0x3e0 [ 1261.350889][T22514] ? copy_time_ns+0xf6/0x580 [ 1261.350910][T22514] copy_time_ns+0xf6/0x580 [ 1261.350927][T22514] ? copy_cgroup_ns+0x71/0x700 [ 1261.350949][T22514] create_new_namespaces+0x48a/0xa90 [ 1261.350977][T22514] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 1261.351000][T22514] ksys_unshare+0x45b/0xa40 [ 1261.351025][T22514] ? __pfx_ksys_unshare+0x10/0x10 [ 1261.351051][T22514] ? xfd_validate_state+0x61/0x180 [ 1261.351265][T22514] __x64_sys_unshare+0x31/0x40 [ 1261.351297][T22514] do_syscall_64+0xcd/0x490 [ 1261.351327][T22514] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1261.351348][T22514] RIP: 0033:0x7f14bc18ebe9 [ 1261.351366][T22514] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1261.351385][T22514] RSP: 002b:00007f14bcf58038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 1261.351404][T22514] RAX: ffffffffffffffda RBX: 00007f14bc3b5fa0 RCX: 00007f14bc18ebe9 [ 1261.351416][T22514] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000080 [ 1261.351427][T22514] RBP: 00007f14bc211e19 R08: 0000000000000000 R09: 0000000000000000 [ 1261.351438][T22514] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1261.351449][T22514] R13: 00007f14bc3b6038 R14: 00007f14bc3b5fa0 R15: 00007ffdd20bebd8 [ 1261.351472][T22514] [ 1261.763657][T22516] netlink: 330 bytes leftover after parsing attributes in process `syz.0.3018'. [ 1261.964521][T22519] FAULT_INJECTION: forcing a failure. [ 1261.964521][T22519] name failslab, interval 1, probability 0, space 0, times 0 [ 1262.029904][T22519] CPU: 0 UID: 0 PID: 22519 Comm: syz.2.3019 Tainted: G U syzkaller #0 PREEMPT(full) [ 1262.029941][T22519] Tainted: [U]=USER [ 1262.029947][T22519] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1262.029959][T22519] Call Trace: [ 1262.029966][T22519] [ 1262.029974][T22519] dump_stack_lvl+0x16c/0x1f0 [ 1262.030005][T22519] should_fail_ex+0x512/0x640 [ 1262.030031][T22519] ? fs_reclaim_acquire+0xae/0x150 [ 1262.030063][T22519] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 1262.030089][T22519] should_failslab+0xc2/0x120 [ 1262.030113][T22519] __kmalloc_noprof+0xd2/0x510 [ 1262.030140][T22519] tomoyo_realpath_from_path+0xc2/0x6e0 [ 1262.030169][T22519] ? tomoyo_profile+0x47/0x60 [ 1262.030188][T22519] tomoyo_path2_perm+0x2a1/0x710 [ 1262.030209][T22519] ? tomoyo_path2_perm+0x293/0x710 [ 1262.030232][T22519] ? __pfx_tomoyo_path2_perm+0x10/0x10 [ 1262.030256][T22519] ? look_up_lock_class+0x59/0x150 [ 1262.030313][T22519] ? do_raw_spin_lock+0x12c/0x2b0 [ 1262.030341][T22519] ? find_held_lock+0x2b/0x80 [ 1262.030363][T22519] tomoyo_path_rename+0xfc/0x1a0 [ 1262.030391][T22519] ? __pfx_tomoyo_path_rename+0x10/0x10 [ 1262.030418][T22519] ? _raw_spin_unlock+0x28/0x50 [ 1262.030449][T22519] security_path_rename+0x18e/0x3c0 [ 1262.030474][T22519] do_renameat2+0x735/0xc50 [ 1262.030506][T22519] ? __pfx_do_renameat2+0x10/0x10 [ 1262.030531][T22519] ? find_held_lock+0x2b/0x80 [ 1262.030548][T22519] ? __might_fault+0xe3/0x190 [ 1262.030569][T22519] ? __might_fault+0x13b/0x190 [ 1262.030601][T22519] ? getname_flags.part.0+0x1c5/0x550 [ 1262.030633][T22519] __x64_sys_rename+0x7d/0xa0 [ 1262.030658][T22519] do_syscall_64+0xcd/0x490 [ 1262.030684][T22519] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1262.030703][T22519] RIP: 0033:0x7f9aafd8ebe9 [ 1262.030719][T22519] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1262.030737][T22519] RSP: 002b:00007f9ab0b8e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000052 [ 1262.030756][T22519] RAX: ffffffffffffffda RBX: 00007f9aaffb5fa0 RCX: 00007f9aafd8ebe9 [ 1262.030768][T22519] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000440 [ 1262.030779][T22519] RBP: 00007f9aafe11e19 R08: 0000000000000000 R09: 0000000000000000 [ 1262.030790][T22519] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1262.030801][T22519] R13: 00007f9aaffb6038 R14: 00007f9aaffb5fa0 R15: 00007ffd6e20d468 [ 1262.030823][T22519] [ 1262.030831][T22519] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1263.153970][T22549] bond0: option all_slaves_active: invalid value (20) [ 1263.831009][T22559] FAULT_INJECTION: forcing a failure. [ 1263.831009][T22559] name failslab, interval 1, probability 0, space 0, times 0 [ 1263.888777][T22559] CPU: 1 UID: 0 PID: 22559 Comm: syz.3.3031 Tainted: G U syzkaller #0 PREEMPT(full) [ 1263.888830][T22559] Tainted: [U]=USER [ 1263.888841][T22559] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1263.888860][T22559] Call Trace: [ 1263.888872][T22559] [ 1263.888886][T22559] dump_stack_lvl+0x16c/0x1f0 [ 1263.888950][T22559] should_fail_ex+0x512/0x640 [ 1263.888994][T22559] ? fs_reclaim_acquire+0xae/0x150 [ 1263.889046][T22559] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 1263.889081][T22559] should_failslab+0xc2/0x120 [ 1263.889114][T22559] __kmalloc_noprof+0xd2/0x510 [ 1263.889159][T22559] tomoyo_realpath_from_path+0xc2/0x6e0 [ 1263.889206][T22559] ? tomoyo_profile+0x47/0x60 [ 1263.889241][T22559] tomoyo_path2_perm+0x2a1/0x710 [ 1263.889275][T22559] ? tomoyo_path2_perm+0x293/0x710 [ 1263.889326][T22559] ? __pfx_tomoyo_path2_perm+0x10/0x10 [ 1263.889369][T22559] ? look_up_lock_class+0x59/0x150 [ 1263.889452][T22559] ? do_raw_spin_lock+0x12c/0x2b0 [ 1263.889500][T22559] ? find_held_lock+0x2b/0x80 [ 1263.889539][T22559] tomoyo_path_rename+0xfc/0x1a0 [ 1263.889587][T22559] ? __pfx_tomoyo_path_rename+0x10/0x10 [ 1263.889631][T22559] ? _raw_spin_unlock+0x28/0x50 [ 1263.889683][T22559] security_path_rename+0x18e/0x3c0 [ 1263.889726][T22559] do_renameat2+0x735/0xc50 [ 1263.889780][T22559] ? __pfx_do_renameat2+0x10/0x10 [ 1263.889826][T22559] ? find_held_lock+0x2b/0x80 [ 1263.889855][T22559] ? __might_fault+0xe3/0x190 [ 1263.889890][T22559] ? __might_fault+0x13b/0x190 [ 1263.889958][T22559] ? getname_flags.part.0+0x1c5/0x550 [ 1263.890016][T22559] __x64_sys_rename+0x7d/0xa0 [ 1263.890058][T22559] do_syscall_64+0xcd/0x490 [ 1263.890103][T22559] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1263.890135][T22559] RIP: 0033:0x7f14bc18ebe9 [ 1263.890160][T22559] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1263.890190][T22559] RSP: 002b:00007f14bcf58038 EFLAGS: 00000246 ORIG_RAX: 0000000000000052 [ 1263.890220][T22559] RAX: ffffffffffffffda RBX: 00007f14bc3b5fa0 RCX: 00007f14bc18ebe9 [ 1263.890241][T22559] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000440 [ 1263.890260][T22559] RBP: 00007f14bc211e19 R08: 0000000000000000 R09: 0000000000000000 [ 1263.890279][T22559] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1263.890305][T22559] R13: 00007f14bc3b6038 R14: 00007f14bc3b5fa0 R15: 00007ffdd20bebd8 [ 1263.890346][T22559] [ 1263.890421][T22559] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1264.606098][T22571] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 1265.225968][T22588] netlink: 'syz.3.3041': attribute type 21 has an invalid length. [ 1265.312860][T22588] netlink: 334 bytes leftover after parsing attributes in process `syz.3.3041'. [ 1265.456137][T22590] bond0: option all_slaves_active: invalid value (20) [ 1265.699763][T22596] FAULT_INJECTION: forcing a failure. [ 1265.699763][T22596] name failslab, interval 1, probability 0, space 0, times 0 [ 1265.735159][T22596] CPU: 1 UID: 0 PID: 22596 Comm: syz.3.3043 Tainted: G U syzkaller #0 PREEMPT(full) [ 1265.735196][T22596] Tainted: [U]=USER [ 1265.735203][T22596] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1265.735215][T22596] Call Trace: [ 1265.735222][T22596] [ 1265.735229][T22596] dump_stack_lvl+0x16c/0x1f0 [ 1265.735259][T22596] should_fail_ex+0x512/0x640 [ 1265.735285][T22596] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 1265.735310][T22596] should_failslab+0xc2/0x120 [ 1265.735335][T22596] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 1265.735358][T22596] ? seq_open+0x55/0x170 [ 1265.735387][T22596] seq_open+0x55/0x170 [ 1265.735413][T22596] ftrace_event_set_npid_open+0x13a/0x270 [ 1265.735448][T22596] do_dentry_open+0x982/0x1530 [ 1265.735481][T22596] ? __pfx_ftrace_event_set_npid_open+0x10/0x10 [ 1265.735531][T22596] vfs_open+0x82/0x3f0 [ 1265.735577][T22596] path_openat+0x1de4/0x2cb0 [ 1265.735623][T22596] ? __pfx_path_openat+0x10/0x10 [ 1265.735655][T22596] do_filp_open+0x20b/0x470 [ 1265.735677][T22596] ? __pfx_do_filp_open+0x10/0x10 [ 1265.735714][T22596] ? alloc_fd+0x471/0x7d0 [ 1265.735739][T22596] do_sys_openat2+0x11b/0x1d0 [ 1265.735767][T22596] ? __pfx_do_sys_openat2+0x10/0x10 [ 1265.735802][T22596] __x64_sys_openat+0x174/0x210 [ 1265.735830][T22596] ? __pfx___x64_sys_openat+0x10/0x10 [ 1265.735866][T22596] do_syscall_64+0xcd/0x490 [ 1265.735893][T22596] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1265.735912][T22596] RIP: 0033:0x7f14bc18ebe9 [ 1265.735928][T22596] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1265.735956][T22596] RSP: 002b:00007f14bcf58038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1265.735975][T22596] RAX: ffffffffffffffda RBX: 00007f14bc3b5fa0 RCX: 00007f14bc18ebe9 [ 1265.735989][T22596] RDX: 0000000000080400 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 1265.736001][T22596] RBP: 00007f14bc211e19 R08: 0000000000000000 R09: 0000000000000000 [ 1265.736012][T22596] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1265.736024][T22596] R13: 00007f14bc3b6038 R14: 00007f14bc3b5fa0 R15: 00007ffdd20bebd8 [ 1265.736046][T22596] [ 1267.982034][T22633] FAULT_INJECTION: forcing a failure. [ 1267.982034][T22633] name failslab, interval 1, probability 0, space 0, times 0 [ 1268.027643][T22633] CPU: 1 UID: 0 PID: 22633 Comm: syz.2.3056 Tainted: G U syzkaller #0 PREEMPT(full) [ 1268.027695][T22633] Tainted: [U]=USER [ 1268.027705][T22633] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1268.027722][T22633] Call Trace: [ 1268.027732][T22633] [ 1268.027744][T22633] dump_stack_lvl+0x16c/0x1f0 [ 1268.027786][T22633] should_fail_ex+0x512/0x640 [ 1268.027823][T22633] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 1268.027864][T22633] should_failslab+0xc2/0x120 [ 1268.027902][T22633] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 1268.027941][T22633] ? trace_kmem_cache_alloc+0x28/0xc0 [ 1268.027985][T22633] ? key_alloc+0xc4d/0x1330 [ 1268.028027][T22633] kmemdup_noprof+0x29/0x60 [ 1268.028063][T22633] key_alloc+0xc4d/0x1330 [ 1268.028118][T22633] ? __pfx_key_alloc+0x10/0x10 [ 1268.028152][T22633] ? __asan_memcpy+0x3c/0x60 [ 1268.028193][T22633] keyring_alloc+0x44/0xc0 [ 1268.028242][T22633] keyctl_get_persistent+0x750/0x8c0 [ 1268.028301][T22633] ? __pfx_keyctl_get_persistent+0x10/0x10 [ 1268.028352][T22633] ? __x64_sys_futex+0x1e0/0x4c0 [ 1268.028391][T22633] ? __x64_sys_futex+0x1e9/0x4c0 [ 1268.028437][T22633] ? xfd_validate_state+0x61/0x180 [ 1268.028490][T22633] __do_sys_keyctl+0x1a9/0x590 [ 1268.028528][T22633] do_syscall_64+0xcd/0x490 [ 1268.028574][T22633] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1268.028607][T22633] RIP: 0033:0x7f9aafd8ebe9 [ 1268.028633][T22633] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1268.028662][T22633] RSP: 002b:00007f9ab0b8e038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 1268.028692][T22633] RAX: ffffffffffffffda RBX: 00007f9aaffb5fa0 RCX: 00007f9aafd8ebe9 [ 1268.028713][T22633] RDX: fffffffffffffffd RSI: fffffffffffffffc RDI: 0000000000000016 [ 1268.028733][T22633] RBP: 00007f9aafe11e19 R08: 0000000000000001 R09: 0000000000000000 [ 1268.028752][T22633] R10: fffffffffffffffd R11: 0000000000000246 R12: 0000000000000000 [ 1268.028772][T22633] R13: 00007f9aaffb6038 R14: 00007f9aaffb5fa0 R15: 00007ffd6e20d468 [ 1268.028813][T22633] [ 1270.089831][T22670] netlink: 'syz.2.3074': attribute type 21 has an invalid length. [ 1270.123277][T22670] netlink: 334 bytes leftover after parsing attributes in process `syz.2.3074'. [ 1270.582986][T22679] FAULT_INJECTION: forcing a failure. [ 1270.582986][T22679] name failslab, interval 1, probability 0, space 0, times 0 [ 1270.620885][T22679] CPU: 1 UID: 0 PID: 22679 Comm: syz.3.3066 Tainted: G U syzkaller #0 PREEMPT(full) [ 1270.620930][T22679] Tainted: [U]=USER [ 1270.620937][T22679] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1270.620948][T22679] Call Trace: [ 1270.620955][T22679] [ 1270.620963][T22679] dump_stack_lvl+0x16c/0x1f0 [ 1270.620992][T22679] should_fail_ex+0x512/0x640 [ 1270.621019][T22679] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 1270.621047][T22679] should_failslab+0xc2/0x120 [ 1270.621072][T22679] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 1270.621097][T22679] ? trace_kmem_cache_alloc+0x28/0xc0 [ 1270.621122][T22679] ? key_alloc+0xc4d/0x1330 [ 1270.621150][T22679] kmemdup_noprof+0x29/0x60 [ 1270.621176][T22679] key_alloc+0xc4d/0x1330 [ 1270.621207][T22679] ? __pfx_key_alloc+0x10/0x10 [ 1270.621229][T22679] ? __asan_memcpy+0x3c/0x60 [ 1270.621253][T22679] keyring_alloc+0x44/0xc0 [ 1270.621282][T22679] keyctl_get_persistent+0x750/0x8c0 [ 1270.621310][T22679] ? __pfx_keyctl_get_persistent+0x10/0x10 [ 1270.621339][T22679] ? __x64_sys_futex+0x1e0/0x4c0 [ 1270.621363][T22679] ? __x64_sys_futex+0x1e9/0x4c0 [ 1270.621389][T22679] ? xfd_validate_state+0x61/0x180 [ 1270.621420][T22679] __do_sys_keyctl+0x1a9/0x590 [ 1270.621442][T22679] do_syscall_64+0xcd/0x490 [ 1270.621469][T22679] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1270.621487][T22679] RIP: 0033:0x7f14bc18ebe9 [ 1270.621503][T22679] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1270.621521][T22679] RSP: 002b:00007f14bcf58038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 1270.621539][T22679] RAX: ffffffffffffffda RBX: 00007f14bc3b5fa0 RCX: 00007f14bc18ebe9 [ 1270.621551][T22679] RDX: fffffffffffffffd RSI: fffffffffffffffc RDI: 0000000000000016 [ 1270.621562][T22679] RBP: 00007f14bc211e19 R08: 0000000000000001 R09: 0000000000000000 [ 1270.621574][T22679] R10: fffffffffffffffd R11: 0000000000000246 R12: 0000000000000000 [ 1270.621585][T22679] R13: 00007f14bc3b6038 R14: 00007f14bc3b5fa0 R15: 00007ffdd20bebd8 [ 1270.621608][T22679] [ 1271.347094][T22687] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 1272.205897][T22704] nvme_fabrics: missing parameter 'transport=%s' [ 1272.217921][T22704] nvme_fabrics: missing parameter 'nqn=%s' [ 1273.274538][T22727] FAULT_INJECTION: forcing a failure. [ 1273.274538][T22727] name failslab, interval 1, probability 0, space 0, times 0 [ 1273.289736][T22727] CPU: 0 UID: 0 PID: 22727 Comm: syz.4.3080 Tainted: G U syzkaller #0 PREEMPT(full) [ 1273.289789][T22727] Tainted: [U]=USER [ 1273.289800][T22727] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1273.289819][T22727] Call Trace: [ 1273.289832][T22727] [ 1273.289845][T22727] dump_stack_lvl+0x16c/0x1f0 [ 1273.289893][T22727] should_fail_ex+0x512/0x640 [ 1273.289937][T22727] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 1273.289983][T22727] should_failslab+0xc2/0x120 [ 1273.290025][T22727] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 1273.290068][T22727] ? trace_kmem_cache_alloc+0x28/0xc0 [ 1273.290126][T22727] ? key_alloc+0xc4d/0x1330 [ 1273.290175][T22727] kmemdup_noprof+0x29/0x60 [ 1273.290214][T22727] key_alloc+0xc4d/0x1330 [ 1273.290280][T22727] ? __pfx_key_alloc+0x10/0x10 [ 1273.290318][T22727] ? __asan_memcpy+0x3c/0x60 [ 1273.290363][T22727] keyring_alloc+0x44/0xc0 [ 1273.290415][T22727] keyctl_get_persistent+0x750/0x8c0 [ 1273.290465][T22727] ? __pfx_keyctl_get_persistent+0x10/0x10 [ 1273.290518][T22727] ? __x64_sys_futex+0x1e0/0x4c0 [ 1273.290558][T22727] ? __x64_sys_futex+0x1e9/0x4c0 [ 1273.290614][T22727] ? xfd_validate_state+0x61/0x180 [ 1273.290669][T22727] __do_sys_keyctl+0x1a9/0x590 [ 1273.290707][T22727] do_syscall_64+0xcd/0x490 [ 1273.290753][T22727] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1273.290786][T22727] RIP: 0033:0x7f592938ebe9 [ 1273.290812][T22727] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1273.290843][T22727] RSP: 002b:00007f592a240038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 1273.290874][T22727] RAX: ffffffffffffffda RBX: 00007f59295b5fa0 RCX: 00007f592938ebe9 [ 1273.290895][T22727] RDX: fffffffffffffffd RSI: fffffffffffffffc RDI: 0000000000000016 [ 1273.290916][T22727] RBP: 00007f5929411e19 R08: 0000000000000001 R09: 0000000000000000 [ 1273.290935][T22727] R10: fffffffffffffffd R11: 0000000000000246 R12: 0000000000000000 [ 1273.290955][T22727] R13: 00007f59295b6038 R14: 00007f59295b5fa0 R15: 00007ffcb3aab278 [ 1273.290996][T22727] [ 1275.131958][T22762] kfence: disabled [ 1275.157856][T22762] kfence: re-enabled [ 1275.875916][T22776] netlink: 330 bytes leftover after parsing attributes in process `syz.3.3095'. [ 1277.105363][T22804] FAULT_INJECTION: forcing a failure. [ 1277.105363][T22804] name failslab, interval 1, probability 0, space 0, times 0 [ 1277.220069][T22804] CPU: 0 UID: 0 PID: 22804 Comm: syz.4.3105 Tainted: G U syzkaller #0 PREEMPT(full) [ 1277.220104][T22804] Tainted: [U]=USER [ 1277.220111][T22804] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1277.220121][T22804] Call Trace: [ 1277.220129][T22804] [ 1277.220139][T22804] dump_stack_lvl+0x16c/0x1f0 [ 1277.220169][T22804] should_fail_ex+0x512/0x640 [ 1277.220196][T22804] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 1277.220222][T22804] should_failslab+0xc2/0x120 [ 1277.220246][T22804] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 1277.220267][T22804] ? kasan_save_track+0x14/0x30 [ 1277.220287][T22804] ? __kasan_kmalloc+0xaa/0xb0 [ 1277.220307][T22804] ? __d_alloc+0x32/0xae0 [ 1277.220330][T22804] ? drm_file_alloc+0x5c6/0xb40 [ 1277.220350][T22804] __d_alloc+0x32/0xae0 [ 1277.220371][T22804] ? put_dec_trunc8+0x28b/0x370 [ 1277.220390][T22804] d_alloc_parallel+0x111/0x1480 [ 1277.220423][T22804] ? __pfx_number+0x10/0x10 [ 1277.220443][T22804] ? __pfx_d_alloc_parallel+0x10/0x10 [ 1277.220473][T22804] ? lockdep_init_map_type+0x5c/0x280 [ 1277.220509][T22804] ? lockdep_init_map_type+0x5c/0x280 [ 1277.220538][T22804] __lookup_slow+0x193/0x460 [ 1277.220567][T22804] ? __pfx___lookup_slow+0x10/0x10 [ 1277.220599][T22804] ? perf_trace_mm_compaction_suitable_template+0x410/0x5e0 [ 1277.220632][T22804] ? perf_trace_mm_compaction_suitable_template+0x410/0x5e0 [ 1277.220660][T22804] ? d_lookup+0xe7/0x190 [ 1277.220691][T22804] lookup_noperm+0xe1/0x110 [ 1277.220720][T22804] simple_start_creating+0xd1/0x1b0 [ 1277.220742][T22804] start_creating.part.0+0x82/0x190 [ 1277.220765][T22804] debugfs_create_dir+0x6c/0x5f0 [ 1277.220788][T22804] drm_debugfs_clients_add+0x6f/0x200 [ 1277.220816][T22804] drm_file_alloc+0x5c6/0xb40 [ 1277.220837][T22804] drm_open_helper+0x204/0x550 [ 1277.220858][T22804] drm_open+0x1a0/0x3e0 [ 1277.220875][T22804] ? __pfx_drm_open+0x10/0x10 [ 1277.220899][T22804] drm_stub_open+0x20c/0x380 [ 1277.220918][T22804] ? __pfx_drm_stub_open+0x10/0x10 [ 1277.220935][T22804] chrdev_open+0x234/0x6a0 [ 1277.220958][T22804] ? __pfx_apparmor_file_open+0x10/0x10 [ 1277.220980][T22804] ? __pfx_chrdev_open+0x10/0x10 [ 1277.221005][T22804] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 1277.221031][T22804] do_dentry_open+0x982/0x1530 [ 1277.221055][T22804] ? __pfx_chrdev_open+0x10/0x10 [ 1277.221089][T22804] vfs_open+0x82/0x3f0 [ 1277.221119][T22804] path_openat+0x1de4/0x2cb0 [ 1277.221151][T22804] ? __pfx_path_openat+0x10/0x10 [ 1277.221179][T22804] do_filp_open+0x20b/0x470 [ 1277.221201][T22804] ? __pfx_do_filp_open+0x10/0x10 [ 1277.221239][T22804] ? alloc_fd+0x471/0x7d0 [ 1277.221265][T22804] do_sys_openat2+0x11b/0x1d0 [ 1277.221293][T22804] ? __pfx_do_sys_openat2+0x10/0x10 [ 1277.221330][T22804] __x64_sys_openat+0x174/0x210 [ 1277.221359][T22804] ? __pfx___x64_sys_openat+0x10/0x10 [ 1277.221396][T22804] do_syscall_64+0xcd/0x490 [ 1277.221434][T22804] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1277.221454][T22804] RIP: 0033:0x7f592938ebe9 [ 1277.221471][T22804] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1277.221490][T22804] RSP: 002b:00007f592a240038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1277.221509][T22804] RAX: ffffffffffffffda RBX: 00007f59295b5fa0 RCX: 00007f592938ebe9 [ 1277.221522][T22804] RDX: 0000000000129800 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 1277.221533][T22804] RBP: 00007f5929411e19 R08: 0000000000000000 R09: 0000000000000000 [ 1277.221545][T22804] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1277.221557][T22804] R13: 00007f59295b6038 R14: 00007f59295b5fa0 R15: 00007ffcb3aab278 [ 1277.221581][T22804] [ 1278.201497][T22816] netlink: 330 bytes leftover after parsing attributes in process `syz.4.3107'. [ 1279.095002][T22850] FAULT_INJECTION: forcing a failure. [ 1279.095002][T22850] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1279.113066][T22850] CPU: 0 UID: 0 PID: 22850 Comm: syz.2.3115 Tainted: G U syzkaller #0 PREEMPT(full) [ 1279.113118][T22850] Tainted: [U]=USER [ 1279.113131][T22850] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1279.113150][T22850] Call Trace: [ 1279.113161][T22850] [ 1279.113175][T22850] dump_stack_lvl+0x16c/0x1f0 [ 1279.113225][T22850] should_fail_ex+0x512/0x640 [ 1279.113276][T22850] should_fail_alloc_page+0xe7/0x130 [ 1279.113322][T22850] prepare_alloc_pages+0x3c2/0x610 [ 1279.113378][T22850] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 1279.113417][T22850] ? arch_stack_walk+0xa6/0x100 [ 1279.113468][T22850] ? stack_trace_save+0x8e/0xc0 [ 1279.113504][T22850] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1279.113541][T22850] ? rcu_is_watching+0x12/0xc0 [ 1279.113587][T22850] ? kasan_save_track+0x14/0x30 [ 1279.113622][T22850] ? __kasan_slab_alloc+0x89/0x90 [ 1279.113659][T22850] ? kmem_cache_alloc_noprof+0x1cb/0x3b0 [ 1279.113696][T22850] ? __pmd_alloc+0xbf/0x930 [ 1279.113741][T22850] ? __handle_mm_fault+0xa06/0x2a50 [ 1279.113771][T22850] ? handle_mm_fault+0x589/0xd10 [ 1279.113801][T22850] ? __get_user_pages+0x551/0x34a0 [ 1279.113845][T22850] ? interleave_nodes+0x16b/0x410 [ 1279.113893][T22850] ? policy_nodemask+0xea/0x4e0 [ 1279.113947][T22850] alloc_pages_mpol+0x1fb/0x550 [ 1279.113993][T22850] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1279.114047][T22850] alloc_pages_noprof+0x131/0x390 [ 1279.114092][T22850] pte_alloc_one+0x1c/0x3a0 [ 1279.114129][T22850] __pte_alloc+0x6d/0x3c0 [ 1279.114170][T22850] ? __pfx___pte_alloc+0x10/0x10 [ 1279.114216][T22850] ? do_raw_spin_lock+0x12c/0x2b0 [ 1279.114270][T22850] do_pte_missing+0x285a/0x3ba0 [ 1279.114304][T22850] ? do_raw_spin_unlock+0x172/0x230 [ 1279.114353][T22850] ? _raw_spin_unlock+0x28/0x50 [ 1279.114390][T22850] ? __pmd_alloc+0x3fb/0x930 [ 1279.114440][T22850] __handle_mm_fault+0x152a/0x2a50 [ 1279.114487][T22850] ? __pfx___handle_mm_fault+0x10/0x10 [ 1279.114557][T22850] handle_mm_fault+0x589/0xd10 [ 1279.114601][T22850] __get_user_pages+0x551/0x34a0 [ 1279.114666][T22850] ? __pfx___get_user_pages+0x10/0x10 [ 1279.114727][T22850] populate_vma_page_range+0x267/0x3f0 [ 1279.114781][T22850] ? __pfx_populate_vma_page_range+0x10/0x10 [ 1279.114830][T22850] ? __pfx_find_vma_intersection+0x10/0x10 [ 1279.114879][T22850] ? do_mmap+0x69c/0x1210 [ 1279.114940][T22850] __mm_populate+0x1d8/0x380 [ 1279.114992][T22850] ? __pfx___mm_populate+0x10/0x10 [ 1279.115046][T22850] ? up_write+0x1b2/0x520 [ 1279.115098][T22850] vm_mmap_pgoff+0x37f/0x470 [ 1279.115148][T22850] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 1279.115203][T22850] ? __x64_sys_futex+0x1e0/0x4c0 [ 1279.115242][T22850] ? __x64_sys_futex+0x1e9/0x4c0 [ 1279.115289][T22850] ksys_mmap_pgoff+0x7d/0x5c0 [ 1279.115332][T22850] ? xfd_validate_state+0x61/0x180 [ 1279.115377][T22850] ? __pfx_ksys_write+0x10/0x10 [ 1279.115420][T22850] __x64_sys_mmap+0x125/0x190 [ 1279.115474][T22850] do_syscall_64+0xcd/0x490 [ 1279.115522][T22850] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1279.115554][T22850] RIP: 0033:0x7f9aafd8ebe9 [ 1279.115582][T22850] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1279.115615][T22850] RSP: 002b:00007f9ab0b8e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1279.115647][T22850] RAX: ffffffffffffffda RBX: 00007f9aaffb5fa0 RCX: 00007f9aafd8ebe9 [ 1279.115669][T22850] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 1279.115689][T22850] RBP: 00007f9aafe11e19 R08: 0000000000000002 R09: 0000000000008000 [ 1279.115709][T22850] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 1279.115728][T22850] R13: 00007f9aaffb6038 R14: 00007f9aaffb5fa0 R15: 00007ffd6e20d468 [ 1279.115771][T22850] [ 1279.493144][ C0] vkms_vblank_simulate: vblank timer overrun [ 1279.568981][T22853] random: crng reseeded on system resumption [ 1279.732931][T22848] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1279.746570][T22848] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1281.116615][T22871] netlink: 330 bytes leftover after parsing attributes in process `syz.2.3119'. [ 1281.441870][T22879] kfence: disabled [ 1281.461671][T22879] kfence: re-enabled [ 1282.361053][T22904] FAULT_INJECTION: forcing a failure. [ 1282.361053][T22904] name failslab, interval 1, probability 0, space 0, times 0 [ 1282.386745][T22904] CPU: 1 UID: 0 PID: 22904 Comm: syz.4.3134 Tainted: G U syzkaller #0 PREEMPT(full) [ 1282.386778][T22904] Tainted: [U]=USER [ 1282.386784][T22904] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1282.386796][T22904] Call Trace: [ 1282.386803][T22904] [ 1282.386811][T22904] dump_stack_lvl+0x16c/0x1f0 [ 1282.386841][T22904] should_fail_ex+0x512/0x640 [ 1282.386875][T22904] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 1282.386897][T22904] should_failslab+0xc2/0x120 [ 1282.386921][T22904] __kmalloc_cache_noprof+0x6a/0x3e0 [ 1282.386942][T22904] ? input_allocate_device+0x44/0x350 [ 1282.386975][T22904] input_allocate_device+0x44/0x350 [ 1282.387005][T22904] uinput_write+0x9cc/0xff0 [ 1282.387037][T22904] ? __pfx_uinput_write+0x10/0x10 [ 1282.387060][T22904] ? common_file_perm+0x1a9/0x340 [ 1282.387085][T22904] ? bpf_lsm_file_permission+0x9/0x10 [ 1282.387114][T22904] ? security_file_permission+0x71/0x210 [ 1282.387140][T22904] ? rw_verify_area+0xcf/0x6c0 [ 1282.387160][T22904] ? __pfx_uinput_write+0x10/0x10 [ 1282.387182][T22904] vfs_write+0x2a0/0x11d0 [ 1282.387208][T22904] ? __pfx_vfs_write+0x10/0x10 [ 1282.387227][T22904] ? find_held_lock+0x2b/0x80 [ 1282.387246][T22904] ? __fget_files+0x204/0x3c0 [ 1282.387269][T22904] ? __fget_files+0x20e/0x3c0 [ 1282.387294][T22904] ksys_write+0x1f8/0x250 [ 1282.387316][T22904] ? __pfx_ksys_write+0x10/0x10 [ 1282.387335][T22904] ? syscall_user_dispatch+0x78/0x140 [ 1282.387369][T22904] do_syscall_64+0xcd/0x490 [ 1282.387396][T22904] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1282.387415][T22904] RIP: 0033:0x7f592938ebe9 [ 1282.387431][T22904] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1282.387449][T22904] RSP: 002b:00007f592a240038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1282.387468][T22904] RAX: ffffffffffffffda RBX: 00007f59295b5fa0 RCX: 00007f592938ebe9 [ 1282.387480][T22904] RDX: 000000000000045c RSI: 0000000000000000 RDI: 0000000000000003 [ 1282.387490][T22904] RBP: 00007f5929411e19 R08: 0000000000000000 R09: 0000000000000000 [ 1282.387501][T22904] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1282.387512][T22904] R13: 00007f59295b6038 R14: 00007f59295b5fa0 R15: 00007ffcb3aab278 [ 1282.387535][T22904] [ 1283.355937][T22924] FAULT_INJECTION: forcing a failure. [ 1283.355937][T22924] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1283.420456][T22924] CPU: 1 UID: 0 PID: 22924 Comm: syz.3.3142 Tainted: G U syzkaller #0 PREEMPT(full) [ 1283.420509][T22924] Tainted: [U]=USER [ 1283.420520][T22924] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1283.420539][T22924] Call Trace: [ 1283.420550][T22924] [ 1283.420562][T22924] dump_stack_lvl+0x16c/0x1f0 [ 1283.420609][T22924] should_fail_ex+0x512/0x640 [ 1283.420658][T22924] should_fail_alloc_page+0xe7/0x130 [ 1283.420703][T22924] prepare_alloc_pages+0x3c2/0x610 [ 1283.420756][T22924] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 1283.420794][T22924] ? arch_stack_walk+0xa6/0x100 [ 1283.420845][T22924] ? stack_trace_save+0x8e/0xc0 [ 1283.420880][T22924] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1283.420917][T22924] ? rcu_is_watching+0x12/0xc0 [ 1283.421058][T22924] ? kasan_save_track+0x14/0x30 [ 1283.421093][T22924] ? __kasan_slab_alloc+0x89/0x90 [ 1283.421128][T22924] ? kmem_cache_alloc_noprof+0x1cb/0x3b0 [ 1283.421162][T22924] ? __pmd_alloc+0xbf/0x930 [ 1283.421204][T22924] ? __handle_mm_fault+0xa06/0x2a50 [ 1283.421233][T22924] ? handle_mm_fault+0x589/0xd10 [ 1283.421261][T22924] ? __get_user_pages+0x551/0x34a0 [ 1283.421305][T22924] ? interleave_nodes+0x16b/0x410 [ 1283.421352][T22924] ? policy_nodemask+0xea/0x4e0 [ 1283.421396][T22924] alloc_pages_mpol+0x1fb/0x550 [ 1283.421439][T22924] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1283.421492][T22924] alloc_pages_noprof+0x131/0x390 [ 1283.421535][T22924] pte_alloc_one+0x1c/0x3a0 [ 1283.421569][T22924] __pte_alloc+0x6d/0x3c0 [ 1283.421611][T22924] ? __pfx___pte_alloc+0x10/0x10 [ 1283.421657][T22924] ? do_raw_spin_lock+0x12c/0x2b0 [ 1283.421709][T22924] do_pte_missing+0x285a/0x3ba0 [ 1283.421743][T22924] ? do_raw_spin_unlock+0x172/0x230 [ 1283.421792][T22924] ? _raw_spin_unlock+0x28/0x50 [ 1283.421826][T22924] ? __pmd_alloc+0x3fb/0x930 [ 1283.421876][T22924] __handle_mm_fault+0x152a/0x2a50 [ 1283.421933][T22924] ? __pfx___handle_mm_fault+0x10/0x10 [ 1283.422002][T22924] handle_mm_fault+0x589/0xd10 [ 1283.422042][T22924] __get_user_pages+0x551/0x34a0 [ 1283.422105][T22924] ? __pfx___get_user_pages+0x10/0x10 [ 1283.422163][T22924] populate_vma_page_range+0x267/0x3f0 [ 1283.422213][T22924] ? __pfx_populate_vma_page_range+0x10/0x10 [ 1283.422260][T22924] ? __pfx_find_vma_intersection+0x10/0x10 [ 1283.422307][T22924] ? do_mmap+0x69c/0x1210 [ 1283.422355][T22924] __mm_populate+0x1d8/0x380 [ 1283.422405][T22924] ? __pfx___mm_populate+0x10/0x10 [ 1283.422457][T22924] ? up_write+0x1b2/0x520 [ 1283.422506][T22924] vm_mmap_pgoff+0x37f/0x470 [ 1283.422556][T22924] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 1283.422604][T22924] ? __x64_sys_futex+0x1e0/0x4c0 [ 1283.422640][T22924] ? __x64_sys_futex+0x1e9/0x4c0 [ 1283.422685][T22924] ksys_mmap_pgoff+0x7d/0x5c0 [ 1283.422727][T22924] ? xfd_validate_state+0x61/0x180 [ 1283.422772][T22924] ? __pfx_ksys_write+0x10/0x10 [ 1283.422813][T22924] __x64_sys_mmap+0x125/0x190 [ 1283.422867][T22924] do_syscall_64+0xcd/0x490 [ 1283.422908][T22924] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1283.422953][T22924] RIP: 0033:0x7f14bc18ebe9 [ 1283.422981][T22924] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1283.423012][T22924] RSP: 002b:00007f14bcf58038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1283.423043][T22924] RAX: ffffffffffffffda RBX: 00007f14bc3b5fa0 RCX: 00007f14bc18ebe9 [ 1283.423065][T22924] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 1283.423086][T22924] RBP: 00007f14bc211e19 R08: 0000000000000002 R09: 0000000000008000 [ 1283.423108][T22924] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 1283.423128][T22924] R13: 00007f14bc3b6038 R14: 00007f14bc3b5fa0 R15: 00007ffdd20bebd8 [ 1283.423171][T22924] [ 1286.436216][T23003] FAULT_INJECTION: forcing a failure. [ 1286.436216][T23003] name failslab, interval 1, probability 0, space 0, times 0 [ 1286.450916][T23003] CPU: 0 UID: 0 PID: 23003 Comm: syz.3.3163 Tainted: G U syzkaller #0 PREEMPT(full) [ 1286.450969][T23003] Tainted: [U]=USER [ 1286.450980][T23003] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1286.450998][T23003] Call Trace: [ 1286.451009][T23003] [ 1286.451022][T23003] dump_stack_lvl+0x16c/0x1f0 [ 1286.451068][T23003] should_fail_ex+0x512/0x640 [ 1286.451113][T23003] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 1286.451155][T23003] should_failslab+0xc2/0x120 [ 1286.451196][T23003] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 1286.451235][T23003] ? security_file_alloc+0x34/0x2b0 [ 1286.451286][T23003] security_file_alloc+0x34/0x2b0 [ 1286.451329][T23003] init_file+0x93/0x4c0 [ 1286.451377][T23003] alloc_empty_file+0x73/0x1e0 [ 1286.451425][T23003] path_openat+0xda/0x2cb0 [ 1286.451460][T23003] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1286.451506][T23003] ? __pfx_path_openat+0x10/0x10 [ 1286.451555][T23003] do_filp_open+0x20b/0x470 [ 1286.451594][T23003] ? __pfx_do_filp_open+0x10/0x10 [ 1286.451662][T23003] ? alloc_fd+0x471/0x7d0 [ 1286.451707][T23003] do_sys_openat2+0x11b/0x1d0 [ 1286.451755][T23003] ? __pfx_do_sys_openat2+0x10/0x10 [ 1286.451827][T23003] __x64_sys_openat+0x174/0x210 [ 1286.451873][T23003] ? __pfx___x64_sys_openat+0x10/0x10 [ 1286.451929][T23003] do_syscall_64+0xcd/0x490 [ 1286.451968][T23003] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1286.451996][T23003] RIP: 0033:0x7f14bc18ebe9 [ 1286.452022][T23003] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1286.452063][T23003] RSP: 002b:00007f14bcf58038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1286.452095][T23003] RAX: ffffffffffffffda RBX: 00007f14bc3b5fa0 RCX: 00007f14bc18ebe9 [ 1286.452116][T23003] RDX: 0000000000000802 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 1286.452136][T23003] RBP: 00007f14bc211e19 R08: 0000000000000000 R09: 0000000000000000 [ 1286.452155][T23003] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1286.452175][T23003] R13: 00007f14bc3b6038 R14: 00007f14bc3b5fa0 R15: 00007ffdd20bebd8 [ 1286.452222][T23003] [ 1287.263401][T23013] FAULT_INJECTION: forcing a failure. [ 1287.263401][T23013] name failslab, interval 1, probability 0, space 0, times 0 [ 1287.306766][T23013] CPU: 0 UID: 0 PID: 23013 Comm: syz.3.3167 Tainted: G U syzkaller #0 PREEMPT(full) [ 1287.306799][T23013] Tainted: [U]=USER [ 1287.306806][T23013] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1287.306817][T23013] Call Trace: [ 1287.306825][T23013] [ 1287.306833][T23013] dump_stack_lvl+0x16c/0x1f0 [ 1287.306873][T23013] should_fail_ex+0x512/0x640 [ 1287.306899][T23013] ? __kmalloc_noprof+0xbf/0x510 [ 1287.306923][T23013] ? __seq_open_private+0x22/0xd0 [ 1287.306951][T23013] should_failslab+0xc2/0x120 [ 1287.306982][T23013] __kmalloc_noprof+0xd2/0x510 [ 1287.307003][T23013] ? __pfx_apparmor_file_open+0x10/0x10 [ 1287.307033][T23013] __seq_open_private+0x22/0xd0 [ 1287.307062][T23013] proc_timers_open+0x27/0x150 [ 1287.307092][T23013] do_dentry_open+0x982/0x1530 [ 1287.307119][T23013] ? __pfx_proc_timers_open+0x10/0x10 [ 1287.307153][T23013] vfs_open+0x82/0x3f0 [ 1287.307183][T23013] path_openat+0x1de4/0x2cb0 [ 1287.307212][T23013] ? __pfx_path_openat+0x10/0x10 [ 1287.307240][T23013] do_filp_open+0x20b/0x470 [ 1287.307262][T23013] ? __pfx_do_filp_open+0x10/0x10 [ 1287.307292][T23013] ? __pfx_kfree_link+0x10/0x10 [ 1287.307325][T23013] ? alloc_fd+0x471/0x7d0 [ 1287.307351][T23013] do_sys_openat2+0x11b/0x1d0 [ 1287.307379][T23013] ? __pfx_do_sys_openat2+0x10/0x10 [ 1287.307416][T23013] __x64_sys_openat+0x174/0x210 [ 1287.307444][T23013] ? __pfx___x64_sys_openat+0x10/0x10 [ 1287.307482][T23013] do_syscall_64+0xcd/0x490 [ 1287.307507][T23013] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1287.307527][T23013] RIP: 0033:0x7f14bc18ebe9 [ 1287.307543][T23013] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1287.307561][T23013] RSP: 002b:00007f14bcf58038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1287.307580][T23013] RAX: ffffffffffffffda RBX: 00007f14bc3b5fa0 RCX: 00007f14bc18ebe9 [ 1287.307592][T23013] RDX: 0000000000000040 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 1287.307603][T23013] RBP: 00007f14bc211e19 R08: 0000000000000000 R09: 0000000000000000 [ 1287.307614][T23013] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1287.307625][T23013] R13: 00007f14bc3b6038 R14: 00007f14bc3b5fa0 R15: 00007ffdd20bebd8 [ 1287.307647][T23013] [ 1289.721608][T23076] random: crng reseeded on system resumption [ 1289.869962][T23065] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1289.880293][T23065] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1290.696032][T23087] FAULT_INJECTION: forcing a failure. [ 1290.696032][T23087] name failslab, interval 1, probability 0, space 0, times 0 [ 1290.741550][T23087] CPU: 1 UID: 0 PID: 23087 Comm: syz.0.3194 Tainted: G U syzkaller #0 PREEMPT(full) [ 1290.741604][T23087] Tainted: [U]=USER [ 1290.741616][T23087] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1290.741636][T23087] Call Trace: [ 1290.741647][T23087] [ 1290.741660][T23087] dump_stack_lvl+0x16c/0x1f0 [ 1290.741708][T23087] should_fail_ex+0x512/0x640 [ 1290.741752][T23087] ? __kvmalloc_node_noprof+0x124/0x620 [ 1290.741813][T23087] should_failslab+0xc2/0x120 [ 1290.741856][T23087] __kvmalloc_node_noprof+0x137/0x620 [ 1290.741894][T23087] ? v4l2_ctrl_new+0x97d/0x2180 [ 1290.741938][T23087] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1290.741992][T23087] ? v4l2_ctrl_new+0x97d/0x2180 [ 1290.742035][T23087] v4l2_ctrl_new+0x97d/0x2180 [ 1290.742094][T23087] ? __pfx_v4l2_ctrl_new+0x10/0x10 [ 1290.742136][T23087] ? __pfx_v4l2_ctrl_new+0x10/0x10 [ 1290.742193][T23087] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1290.742243][T23087] v4l2_ctrl_new_std+0x1be/0x290 [ 1290.742302][T23087] ? __pfx_v4l2_ctrl_new_std+0x10/0x10 [ 1290.742346][T23087] ? __pfx_v4l2_ctrl_new_std+0x10/0x10 [ 1290.742396][T23087] ? rcu_is_watching+0x12/0xc0 [ 1290.742429][T23087] ? trace_kmalloc+0x2b/0xd0 [ 1290.742470][T23087] ? __kvmalloc_node_noprof+0x298/0x620 [ 1290.742521][T23087] ? media_request_object_init+0x100/0x180 [ 1290.742571][T23087] vim2m_open+0x184/0x8a0 [ 1290.742616][T23087] v4l2_open+0x225/0x490 [ 1290.742656][T23087] ? __pfx_v4l2_open+0x10/0x10 [ 1290.742694][T23087] chrdev_open+0x234/0x6a0 [ 1290.742727][T23087] ? __pfx_apparmor_file_open+0x10/0x10 [ 1290.742759][T23087] ? __pfx_chrdev_open+0x10/0x10 [ 1290.742810][T23087] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 1290.742855][T23087] do_dentry_open+0x982/0x1530 [ 1290.742896][T23087] ? __pfx_chrdev_open+0x10/0x10 [ 1290.742942][T23087] vfs_open+0x82/0x3f0 [ 1290.742992][T23087] path_openat+0x1de4/0x2cb0 [ 1290.743044][T23087] ? __pfx_path_openat+0x10/0x10 [ 1290.743093][T23087] do_filp_open+0x20b/0x470 [ 1290.743130][T23087] ? __pfx_do_filp_open+0x10/0x10 [ 1290.743212][T23087] ? alloc_fd+0x471/0x7d0 [ 1290.743260][T23087] do_sys_openat2+0x11b/0x1d0 [ 1290.743308][T23087] ? __pfx_do_sys_openat2+0x10/0x10 [ 1290.743371][T23087] __x64_sys_openat+0x174/0x210 [ 1290.743412][T23087] ? __pfx___x64_sys_openat+0x10/0x10 [ 1290.743478][T23087] do_syscall_64+0xcd/0x490 [ 1290.743521][T23087] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1290.743554][T23087] RIP: 0033:0x7f438cb8ebe9 [ 1290.743580][T23087] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1290.743611][T23087] RSP: 002b:00007f438daa1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1290.743643][T23087] RAX: ffffffffffffffda RBX: 00007f438cdb5fa0 RCX: 00007f438cb8ebe9 [ 1290.743664][T23087] RDX: 000000000010b000 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 1290.743684][T23087] RBP: 00007f438cc11e19 R08: 0000000000000000 R09: 0000000000000000 [ 1290.743703][T23087] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1290.743723][T23087] R13: 00007f438cdb6038 R14: 00007f438cdb5fa0 R15: 00007ffc7d1da2f8 [ 1290.743763][T23087] [ 1292.614695][T17511] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1297.490552][T23230] FAULT_INJECTION: forcing a failure. [ 1297.490552][T23230] name failslab, interval 1, probability 0, space 0, times 0 [ 1297.546136][T23230] CPU: 0 UID: 0 PID: 23230 Comm: syz.2.3235 Tainted: G U syzkaller #0 PREEMPT(full) [ 1297.546168][T23230] Tainted: [U]=USER [ 1297.546175][T23230] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1297.546187][T23230] Call Trace: [ 1297.546193][T23230] [ 1297.546201][T23230] dump_stack_lvl+0x16c/0x1f0 [ 1297.546231][T23230] should_fail_ex+0x512/0x640 [ 1297.546257][T23230] ? fs_reclaim_acquire+0xae/0x150 [ 1297.546287][T23230] ? tomoyo_encode2+0x100/0x3e0 [ 1297.546312][T23230] should_failslab+0xc2/0x120 [ 1297.546336][T23230] __kmalloc_noprof+0xd2/0x510 [ 1297.546363][T23230] tomoyo_encode2+0x100/0x3e0 [ 1297.546392][T23230] tomoyo_encode+0x29/0x50 [ 1297.546416][T23230] tomoyo_realpath_from_path+0x18f/0x6e0 [ 1297.546448][T23230] tomoyo_check_open_permission+0x2ab/0x3c0 [ 1297.546470][T23230] ? __d_add+0x403/0xa50 [ 1297.546495][T23230] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 1297.546539][T23230] ? do_raw_spin_lock+0x12c/0x2b0 [ 1297.546573][T23230] tomoyo_file_open+0x6b/0x90 [ 1297.546591][T23230] security_file_open+0x84/0x1e0 [ 1297.546638][T23230] do_dentry_open+0x596/0x1530 [ 1297.546668][T23230] vfs_open+0x82/0x3f0 [ 1297.546698][T23230] path_openat+0x1de4/0x2cb0 [ 1297.546729][T23230] ? __pfx_path_openat+0x10/0x10 [ 1297.546756][T23230] do_filp_open+0x20b/0x470 [ 1297.546778][T23230] ? __pfx_do_filp_open+0x10/0x10 [ 1297.546808][T23230] ? __pfx_kfree_link+0x10/0x10 [ 1297.546841][T23230] ? alloc_fd+0x471/0x7d0 [ 1297.546867][T23230] do_sys_openat2+0x11b/0x1d0 [ 1297.546894][T23230] ? __pfx_do_sys_openat2+0x10/0x10 [ 1297.546931][T23230] __x64_sys_openat+0x174/0x210 [ 1297.546959][T23230] ? __pfx___x64_sys_openat+0x10/0x10 [ 1297.546996][T23230] do_syscall_64+0xcd/0x490 [ 1297.547030][T23230] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1297.547049][T23230] RIP: 0033:0x7f9aafd8ebe9 [ 1297.547064][T23230] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1297.547083][T23230] RSP: 002b:00007f9ab0b8e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1297.547102][T23230] RAX: ffffffffffffffda RBX: 00007f9aaffb5fa0 RCX: 00007f9aafd8ebe9 [ 1297.547114][T23230] RDX: 0000000000000040 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 1297.547125][T23230] RBP: 00007f9aafe11e19 R08: 0000000000000000 R09: 0000000000000000 [ 1297.547136][T23230] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1297.547147][T23230] R13: 00007f9aaffb6038 R14: 00007f9aaffb5fa0 R15: 00007ffd6e20d468 [ 1297.547170][T23230] [ 1297.547188][T23230] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1298.500145][T23243] FAULT_INJECTION: forcing a failure. [ 1298.500145][T23243] name failslab, interval 1, probability 0, space 0, times 0 [ 1298.529969][T23243] CPU: 0 UID: 0 PID: 23243 Comm: syz.2.3238 Tainted: G U syzkaller #0 PREEMPT(full) [ 1298.530023][T23243] Tainted: [U]=USER [ 1298.530035][T23243] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1298.530052][T23243] Call Trace: [ 1298.530064][T23243] [ 1298.530079][T23243] dump_stack_lvl+0x16c/0x1f0 [ 1298.530128][T23243] should_fail_ex+0x512/0x640 [ 1298.530173][T23243] ? __kmalloc_noprof+0xbf/0x510 [ 1298.530213][T23243] ? get_modalias+0xbb/0x380 [ 1298.530242][T23243] should_failslab+0xc2/0x120 [ 1298.530284][T23243] __kmalloc_noprof+0xd2/0x510 [ 1298.530321][T23243] ? get_modalias+0x20f/0x380 [ 1298.530360][T23243] get_modalias+0xbb/0x380 [ 1298.530399][T23243] ? __pfx_sys_dmi_modalias_show+0x10/0x10 [ 1298.530430][T23243] sys_dmi_modalias_show+0x1f/0xb0 [ 1298.530464][T23243] dev_attr_show+0x53/0xe0 [ 1298.530515][T23243] ? __pfx_dev_attr_show+0x10/0x10 [ 1298.530559][T23243] sysfs_kf_seq_show+0x216/0x3e0 [ 1298.530604][T23243] seq_read_iter+0x509/0x12c0 [ 1298.530637][T23243] ? __mutex_trylock_common+0xe9/0x250 [ 1298.530694][T23243] kernfs_fop_read_iter+0x40f/0x5a0 [ 1298.530725][T23243] ? rw_verify_area+0xcf/0x6c0 [ 1298.530847][T23243] vfs_read+0x8bc/0xcf0 [ 1298.530892][T23243] ? __pfx___mutex_lock+0x10/0x10 [ 1298.530937][T23243] ? __pfx_vfs_read+0x10/0x10 [ 1298.531002][T23243] ksys_read+0x12a/0x250 [ 1298.531036][T23243] ? __pfx_ksys_read+0x10/0x10 [ 1298.531085][T23243] do_syscall_64+0xcd/0x490 [ 1298.531130][T23243] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1298.531162][T23243] RIP: 0033:0x7f9aafd8ebe9 [ 1298.531188][T23243] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1298.531213][T23243] RSP: 002b:00007f9ab0b8e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1298.531242][T23243] RAX: ffffffffffffffda RBX: 00007f9aaffb5fa0 RCX: 00007f9aafd8ebe9 [ 1298.531261][T23243] RDX: 0000000000001016 RSI: 0000200000000000 RDI: 0000000000000003 [ 1298.531279][T23243] RBP: 00007f9aafe11e19 R08: 0000000000000000 R09: 0000000000000000 [ 1298.531297][T23243] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1298.531315][T23243] R13: 00007f9aaffb6038 R14: 00007f9aaffb5fa0 R15: 00007ffd6e20d468 [ 1298.531357][T23243] [ 1298.854519][T23246] FAULT_INJECTION: forcing a failure. [ 1298.854519][T23246] name failslab, interval 1, probability 0, space 0, times 0 [ 1298.867550][T23246] CPU: 0 UID: 0 PID: 23246 Comm: syz.3.3239 Tainted: G U syzkaller #0 PREEMPT(full) [ 1298.867603][T23246] Tainted: [U]=USER [ 1298.867615][T23246] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1298.867635][T23246] Call Trace: [ 1298.867646][T23246] [ 1298.867659][T23246] dump_stack_lvl+0x16c/0x1f0 [ 1298.867707][T23246] should_fail_ex+0x512/0x640 [ 1298.867750][T23246] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 1298.867788][T23246] should_failslab+0xc2/0x120 [ 1298.867838][T23246] __kmalloc_cache_noprof+0x6a/0x3e0 [ 1298.867872][T23246] ? pty_common_install+0x10e/0xb30 [ 1298.867917][T23246] pty_common_install+0x10e/0xb30 [ 1298.867960][T23246] ? __pfx_pty_install+0x10/0x10 [ 1298.867998][T23246] tty_init_dev.part.0+0x99/0x500 [ 1298.868047][T23246] tty_open+0xa50/0xf90 [ 1298.868098][T23246] ? __pfx_tty_open+0x10/0x10 [ 1298.868143][T23246] ? chrdev_open+0x10b/0x6a0 [ 1298.868190][T23246] ? __pfx_tty_open+0x10/0x10 [ 1298.868234][T23246] chrdev_open+0x234/0x6a0 [ 1298.868273][T23246] ? __pfx_apparmor_file_open+0x10/0x10 [ 1298.868309][T23246] ? __pfx_chrdev_open+0x10/0x10 [ 1298.868352][T23246] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 1298.868396][T23246] do_dentry_open+0x982/0x1530 [ 1298.868436][T23246] ? __pfx_chrdev_open+0x10/0x10 [ 1298.868485][T23246] vfs_open+0x82/0x3f0 [ 1298.868537][T23246] path_openat+0x1de4/0x2cb0 [ 1298.868589][T23246] ? __pfx_path_openat+0x10/0x10 [ 1298.868638][T23246] do_filp_open+0x20b/0x470 [ 1298.868676][T23246] ? __pfx_do_filp_open+0x10/0x10 [ 1298.868746][T23246] ? alloc_fd+0x471/0x7d0 [ 1298.868793][T23246] do_sys_openat2+0x11b/0x1d0 [ 1298.868849][T23246] ? __pfx_do_sys_openat2+0x10/0x10 [ 1298.868914][T23246] __x64_sys_openat+0x174/0x210 [ 1298.868964][T23246] ? __pfx___x64_sys_openat+0x10/0x10 [ 1298.869030][T23246] do_syscall_64+0xcd/0x490 [ 1298.869075][T23246] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1298.869106][T23246] RIP: 0033:0x7f14bc18ebe9 [ 1298.869133][T23246] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1298.869163][T23246] RSP: 002b:00007f14bcf58038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1298.869194][T23246] RAX: ffffffffffffffda RBX: 00007f14bc3b5fa0 RCX: 00007f14bc18ebe9 [ 1298.869215][T23246] RDX: 0000000000101e81 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 1298.869236][T23246] RBP: 00007f14bc211e19 R08: 0000000000000000 R09: 0000000000000000 [ 1298.869256][T23246] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1298.869275][T23246] R13: 00007f14bc3b6038 R14: 00007f14bc3b5fa0 R15: 00007ffdd20bebd8 [ 1298.869318][T23246] [ 1299.239005][T23252] FAULT_INJECTION: forcing a failure. [ 1299.239005][T23252] name failslab, interval 1, probability 0, space 0, times 0 [ 1299.261605][T23252] CPU: 0 UID: 0 PID: 23252 Comm: syz.0.3241 Tainted: G U syzkaller #0 PREEMPT(full) [ 1299.261660][T23252] Tainted: [U]=USER [ 1299.261671][T23252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1299.261691][T23252] Call Trace: [ 1299.261702][T23252] [ 1299.261716][T23252] dump_stack_lvl+0x16c/0x1f0 [ 1299.261776][T23252] should_fail_ex+0x512/0x640 [ 1299.261818][T23252] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 1299.261856][T23252] should_failslab+0xc2/0x120 [ 1299.261897][T23252] __kmalloc_cache_noprof+0x6a/0x3e0 [ 1299.261931][T23252] ? _raw_spin_unlock+0x28/0x50 [ 1299.261965][T23252] ? snd_ctl_open+0x174/0x5f0 [ 1299.262008][T23252] snd_ctl_open+0x174/0x5f0 [ 1299.262049][T23252] ? __pfx_snd_ctl_open+0x10/0x10 [ 1299.262088][T23252] snd_open+0x22d/0x4c0 [ 1299.262134][T23252] ? __pfx_snd_open+0x10/0x10 [ 1299.262179][T23252] chrdev_open+0x234/0x6a0 [ 1299.262220][T23252] ? __pfx_apparmor_file_open+0x10/0x10 [ 1299.262255][T23252] ? __pfx_chrdev_open+0x10/0x10 [ 1299.262296][T23252] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 1299.262340][T23252] do_dentry_open+0x982/0x1530 [ 1299.262381][T23252] ? __pfx_chrdev_open+0x10/0x10 [ 1299.262429][T23252] vfs_open+0x82/0x3f0 [ 1299.262480][T23252] path_openat+0x1de4/0x2cb0 [ 1299.262534][T23252] ? __pfx_path_openat+0x10/0x10 [ 1299.262581][T23252] do_filp_open+0x20b/0x470 [ 1299.262615][T23252] ? __pfx_do_filp_open+0x10/0x10 [ 1299.262674][T23252] ? alloc_fd+0x471/0x7d0 [ 1299.262711][T23252] do_sys_openat2+0x11b/0x1d0 [ 1299.262766][T23252] ? __pfx_do_sys_openat2+0x10/0x10 [ 1299.262822][T23252] __x64_sys_openat+0x174/0x210 [ 1299.262864][T23252] ? __pfx___x64_sys_openat+0x10/0x10 [ 1299.262926][T23252] do_syscall_64+0xcd/0x490 [ 1299.262965][T23252] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1299.262994][T23252] RIP: 0033:0x7f438cb8ebe9 [ 1299.263019][T23252] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1299.263049][T23252] RSP: 002b:00007f438daa1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1299.263078][T23252] RAX: ffffffffffffffda RBX: 00007f438cdb5fa0 RCX: 00007f438cb8ebe9 [ 1299.263097][T23252] RDX: 0000000000000000 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 1299.263116][T23252] RBP: 00007f438cc11e19 R08: 0000000000000000 R09: 0000000000000000 [ 1299.263134][T23252] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1299.263152][T23252] R13: 00007f438cdb6038 R14: 00007f438cdb5fa0 R15: 00007ffc7d1da2f8 [ 1299.263191][T23252] [ 1302.873046][T23321] FAULT_INJECTION: forcing a failure. [ 1302.873046][T23321] name failslab, interval 1, probability 0, space 0, times 0 [ 1302.922678][T23321] CPU: 1 UID: 0 PID: 23321 Comm: syz.2.3268 Tainted: G U syzkaller #0 PREEMPT(full) [ 1302.922742][T23321] Tainted: [U]=USER [ 1302.922754][T23321] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1302.922774][T23321] Call Trace: [ 1302.922785][T23321] [ 1302.922797][T23321] dump_stack_lvl+0x16c/0x1f0 [ 1302.922843][T23321] should_fail_ex+0x512/0x640 [ 1302.922885][T23321] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 1302.922928][T23321] should_failslab+0xc2/0x120 [ 1302.922969][T23321] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 1302.923006][T23321] ? vm_area_dup+0x27/0x8d0 [ 1302.923044][T23321] vm_area_dup+0x27/0x8d0 [ 1302.923086][T23321] copy_vma+0x4fa/0xaa0 [ 1302.923130][T23321] ? __pfx_copy_vma+0x10/0x10 [ 1302.923165][T23321] ? __lock_acquire+0xb97/0x1ce0 [ 1302.923215][T23321] ? register_lock_class+0x41/0x4c0 [ 1302.923277][T23321] ? rcu_is_watching+0x12/0xc0 [ 1302.923307][T23321] ? finish_task_switch.isra.0+0x221/0xc10 [ 1302.923344][T23321] copy_vma_and_data+0x1cf/0x790 [ 1302.923383][T23321] ? __pfx_copy_vma_and_data+0x10/0x10 [ 1302.923431][T23321] ? __vma_enter_locked+0x163/0x3f0 [ 1302.923466][T23321] ? find_held_lock+0x2b/0x80 [ 1302.923499][T23321] ? move_vma+0x536/0x1780 [ 1302.923543][T23321] move_vma+0x548/0x1780 [ 1302.923586][T23321] ? __pfx_move_vma+0x10/0x10 [ 1302.923619][T23321] ? mm_get_unmapped_area+0x95/0xe0 [ 1302.923665][T23321] ? shmem_get_unmapped_area+0x170/0xa00 [ 1302.923697][T23321] ? cap_mmap_addr+0x4b/0x120 [ 1302.923737][T23321] ? bpf_lsm_mmap_addr+0x9/0x10 [ 1302.923781][T23321] ? security_mmap_addr+0x6c/0x1e0 [ 1302.923823][T23321] ? __get_unmapped_area+0x267/0x440 [ 1302.923872][T23321] ? vrm_set_new_addr+0x208/0x290 [ 1302.923910][T23321] mremap_to+0x1b7/0x450 [ 1302.923949][T23321] do_mremap+0x13a3/0x2010 [ 1302.923995][T23321] ? __pfx_do_mremap+0x10/0x10 [ 1302.924035][T23321] ? up_write+0x1b2/0x520 [ 1302.924090][T23321] __do_sys_mremap+0x119/0x170 [ 1302.924125][T23321] ? __pfx___do_sys_mremap+0x10/0x10 [ 1302.924172][T23321] ? __x64_sys_futex+0x1e0/0x4c0 [ 1302.924237][T23321] do_syscall_64+0xcd/0x490 [ 1302.924283][T23321] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1302.924316][T23321] RIP: 0033:0x7f9aafd8ebe9 [ 1302.924343][T23321] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1302.924374][T23321] RSP: 002b:00007f9ab0b8e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019 [ 1302.924405][T23321] RAX: ffffffffffffffda RBX: 00007f9aaffb5fa0 RCX: 00007f9aafd8ebe9 [ 1302.924426][T23321] RDX: 0000000000000008 RSI: 0000000000000002 RDI: 0000000000000000 [ 1302.924444][T23321] RBP: 00007f9aafe11e19 R08: 00007effffffb000 R09: 0000000000000000 [ 1302.924463][T23321] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 1302.924481][T23321] R13: 00007f9aaffb6038 R14: 00007f9aaffb5fa0 R15: 00007ffd6e20d468 [ 1302.924521][T23321] [ 1305.723059][ T1305] ieee802154 phy0 wpan0: encryption failed: -22 [ 1305.729765][ T1305] ieee802154 phy1 wpan1: encryption failed: -22 [ 1308.050900][T23390] FAULT_INJECTION: forcing a failure. [ 1308.050900][T23390] name failslab, interval 1, probability 0, space 0, times 0 [ 1308.083615][T23390] CPU: 1 UID: 0 PID: 23390 Comm: syz.2.3301 Tainted: G U syzkaller #0 PREEMPT(full) [ 1308.083671][T23390] Tainted: [U]=USER [ 1308.083682][T23390] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1308.083702][T23390] Call Trace: [ 1308.083714][T23390] [ 1308.083728][T23390] dump_stack_lvl+0x16c/0x1f0 [ 1308.083787][T23390] should_fail_ex+0x512/0x640 [ 1308.083831][T23390] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 1308.083869][T23390] should_failslab+0xc2/0x120 [ 1308.083912][T23390] __kmalloc_cache_noprof+0x6a/0x3e0 [ 1308.083947][T23390] ? nci_allocate_device+0x105/0x430 [ 1308.083988][T23390] nci_allocate_device+0x105/0x430 [ 1308.084025][T23390] virtual_ncidev_open+0x6f/0x220 [ 1308.084059][T23390] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 1308.084095][T23390] misc_open+0x35d/0x420 [ 1308.084129][T23390] ? __pfx_misc_open+0x10/0x10 [ 1308.084161][T23390] chrdev_open+0x234/0x6a0 [ 1308.084208][T23390] ? __pfx_apparmor_file_open+0x10/0x10 [ 1308.084243][T23390] ? __pfx_chrdev_open+0x10/0x10 [ 1308.084286][T23390] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 1308.084331][T23390] do_dentry_open+0x982/0x1530 [ 1308.084378][T23390] ? __pfx_chrdev_open+0x10/0x10 [ 1308.084426][T23390] vfs_open+0x82/0x3f0 [ 1308.084478][T23390] path_openat+0x1de4/0x2cb0 [ 1308.084530][T23390] ? __pfx_path_openat+0x10/0x10 [ 1308.084579][T23390] do_filp_open+0x20b/0x470 [ 1308.084617][T23390] ? __pfx_do_filp_open+0x10/0x10 [ 1308.084684][T23390] ? alloc_fd+0x471/0x7d0 [ 1308.084729][T23390] do_sys_openat2+0x11b/0x1d0 [ 1308.084786][T23390] ? __pfx_do_sys_openat2+0x10/0x10 [ 1308.084851][T23390] __x64_sys_openat+0x174/0x210 [ 1308.084902][T23390] ? __pfx___x64_sys_openat+0x10/0x10 [ 1308.084971][T23390] do_syscall_64+0xcd/0x490 [ 1308.085019][T23390] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1308.085050][T23390] RIP: 0033:0x7f9aafd8ebe9 [ 1308.085077][T23390] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1308.085109][T23390] RSP: 002b:00007f9ab0b8e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1308.085142][T23390] RAX: ffffffffffffffda RBX: 00007f9aaffb5fa0 RCX: 00007f9aafd8ebe9 [ 1308.085164][T23390] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 1308.085185][T23390] RBP: 00007f9aafe11e19 R08: 0000000000000000 R09: 0000000000000000 [ 1308.085204][T23390] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1308.085223][T23390] R13: 00007f9aaffb6038 R14: 00007f9aaffb5fa0 R15: 00007ffd6e20d468 [ 1308.085266][T23390] [ 1309.215079][T23410] FAULT_INJECTION: forcing a failure. [ 1309.215079][T23410] name failslab, interval 1, probability 0, space 0, times 0 [ 1309.232367][T23410] CPU: 0 UID: 0 PID: 23410 Comm: syz.2.3298 Tainted: G U syzkaller #0 PREEMPT(full) [ 1309.232419][T23410] Tainted: [U]=USER [ 1309.232432][T23410] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1309.232451][T23410] Call Trace: [ 1309.232463][T23410] [ 1309.232476][T23410] dump_stack_lvl+0x16c/0x1f0 [ 1309.232527][T23410] should_fail_ex+0x512/0x640 [ 1309.232566][T23410] ? fs_reclaim_acquire+0xae/0x150 [ 1309.232616][T23410] ? security_inode_init_security+0x13f/0x390 [ 1309.232667][T23410] should_failslab+0xc2/0x120 [ 1309.232710][T23410] __kmalloc_noprof+0xd2/0x510 [ 1309.232767][T23410] security_inode_init_security+0x13f/0x390 [ 1309.232819][T23410] ? __pfx_shmem_initxattrs+0x10/0x10 [ 1309.232866][T23410] ? __pfx_security_inode_init_security+0x10/0x10 [ 1309.232915][T23410] ? shmem_get_inode+0x73a/0xfb0 [ 1309.232972][T23410] shmem_tmpfile+0x93/0x180 [ 1309.233029][T23410] vfs_tmpfile+0x2be/0x890 [ 1309.233079][T23410] path_openat+0x1683/0x2cb0 [ 1309.233114][T23410] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1309.233172][T23410] ? __pfx_path_openat+0x10/0x10 [ 1309.233212][T23410] ? __lock_acquire+0xb97/0x1ce0 [ 1309.233257][T23410] do_filp_open+0x20b/0x470 [ 1309.233296][T23410] ? __pfx_do_filp_open+0x10/0x10 [ 1309.233362][T23410] ? _raw_spin_unlock+0x28/0x50 [ 1309.233396][T23410] ? alloc_fd+0x471/0x7d0 [ 1309.233441][T23410] do_sys_openat2+0x11b/0x1d0 [ 1309.233488][T23410] ? __pfx_do_sys_openat2+0x10/0x10 [ 1309.233550][T23410] __x64_sys_open+0x153/0x1e0 [ 1309.233598][T23410] ? __pfx___x64_sys_open+0x10/0x10 [ 1309.233655][T23410] ? rcu_is_watching+0x12/0xc0 [ 1309.233691][T23410] do_syscall_64+0xcd/0x490 [ 1309.233737][T23410] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1309.233779][T23410] RIP: 0033:0x7f9aafd8ebe9 [ 1309.233804][T23410] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1309.233835][T23410] RSP: 002b:00007f9ab0b8e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 1309.233865][T23410] RAX: ffffffffffffffda RBX: 00007f9aaffb5fa0 RCX: 00007f9aafd8ebe9 [ 1309.233887][T23410] RDX: 0000000000000408 RSI: 0000000000591002 RDI: 0000200000000100 [ 1309.233906][T23410] RBP: 00007f9aafe11e19 R08: 0000000000000000 R09: 0000000000000000 [ 1309.233926][T23410] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1309.233945][T23410] R13: 00007f9aaffb6038 R14: 00007f9aaffb5fa0 R15: 00007ffd6e20d468 [ 1309.233988][T23410] [ 1310.337595][T23430] FAULT_INJECTION: forcing a failure. [ 1310.337595][T23430] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1310.382782][T23430] CPU: 0 UID: 0 PID: 23430 Comm: syz.0.3303 Tainted: G U syzkaller #0 PREEMPT(full) [ 1310.382830][T23430] Tainted: [U]=USER [ 1310.382841][T23430] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1310.382860][T23430] Call Trace: [ 1310.382872][T23430] [ 1310.382885][T23430] dump_stack_lvl+0x16c/0x1f0 [ 1310.382933][T23430] should_fail_ex+0x512/0x640 [ 1310.382984][T23430] should_fail_alloc_page+0xe7/0x130 [ 1310.383039][T23430] prepare_alloc_pages+0x3c2/0x610 [ 1310.383093][T23430] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 1310.383141][T23430] ? finish_fault+0x738/0x1110 [ 1310.383201][T23430] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1310.383245][T23430] ? folio_unlock+0x7d/0xd0 [ 1310.383275][T23430] ? do_pte_missing+0x56d/0x3ba0 [ 1310.383325][T23430] ? __handle_mm_fault+0x14fd/0x2a50 [ 1310.383371][T23430] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1310.383422][T23430] ? policy_nodemask+0xea/0x4e0 [ 1310.383469][T23430] alloc_pages_mpol+0x1fb/0x550 [ 1310.383514][T23430] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1310.383570][T23430] folio_alloc_mpol_noprof+0x36/0x2f0 [ 1310.383620][T23430] shmem_alloc_folio+0x135/0x160 [ 1310.383670][T23430] shmem_alloc_and_add_folio+0x499/0xc20 [ 1310.383716][T23430] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 1310.383757][T23430] ? shmem_allowable_huge_orders+0xcb/0x2f0 [ 1310.383800][T23430] shmem_get_folio_gfp+0x67f/0x1600 [ 1310.383841][T23430] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 1310.383884][T23430] shmem_write_begin+0x160/0x300 [ 1310.383924][T23430] ? __pfx_shmem_write_begin+0x10/0x10 [ 1310.383964][T23430] ? balance_dirty_pages_ratelimited_flags+0x92/0x1260 [ 1310.384042][T23430] generic_perform_write+0x3c2/0x900 [ 1310.384091][T23430] ? __pfx_generic_perform_write+0x10/0x10 [ 1310.384133][T23430] ? generic_update_time+0xcf/0xf0 [ 1310.384174][T23430] ? mnt_put_write_access_file+0x45/0xf0 [ 1310.384214][T23430] shmem_file_write_iter+0x10e/0x140 [ 1310.384260][T23430] do_iter_readv_writev+0x65f/0x9e0 [ 1310.384297][T23430] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 1310.384374][T23430] vfs_writev+0x35f/0xde0 [ 1310.384422][T23430] ? __pfx_vfs_writev+0x10/0x10 [ 1310.384453][T23430] ? __mutex_lock+0x1c5/0x1060 [ 1310.384509][T23430] ? __pfx___mutex_lock+0x10/0x10 [ 1310.384567][T23430] ? __fget_files+0x20e/0x3c0 [ 1310.384611][T23430] ? do_writev+0x132/0x340 [ 1310.384641][T23430] do_writev+0x132/0x340 [ 1310.384675][T23430] ? __pfx_do_writev+0x10/0x10 [ 1310.384722][T23430] do_syscall_64+0xcd/0x490 [ 1310.384767][T23430] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1310.384798][T23430] RIP: 0033:0x7f438cb8ebe9 [ 1310.384824][T23430] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1310.384855][T23430] RSP: 002b:00007f438daa1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 1310.384885][T23430] RAX: ffffffffffffffda RBX: 00007f438cdb5fa0 RCX: 00007f438cb8ebe9 [ 1310.384906][T23430] RDX: 0000000000000008 RSI: 0000200000000100 RDI: 0000000000000003 [ 1310.384925][T23430] RBP: 00007f438cc11e19 R08: 0000000000000000 R09: 0000000000000000 [ 1310.384944][T23430] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1310.384963][T23430] R13: 00007f438cdb6038 R14: 00007f438cdb5fa0 R15: 00007ffc7d1da2f8 [ 1310.385006][T23430] [ 1310.894000][T23424] ima: policy update failed [ 1310.924691][ T30] audit: type=1802 audit(4294967584.770:9): pid=23424 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.3302" res=0 errno=0 [ 1313.056521][T13822] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1314.303512][T23505] FAULT_INJECTION: forcing a failure. [ 1314.303512][T23505] name failslab, interval 1, probability 0, space 0, times 0 [ 1314.350540][T23505] CPU: 1 UID: 0 PID: 23505 Comm: syz.0.3327 Tainted: G U syzkaller #0 PREEMPT(full) [ 1314.350591][T23505] Tainted: [U]=USER [ 1314.350602][T23505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1314.350620][T23505] Call Trace: [ 1314.350631][T23505] [ 1314.350644][T23505] dump_stack_lvl+0x16c/0x1f0 [ 1314.350696][T23505] should_fail_ex+0x512/0x640 [ 1314.350735][T23505] ? __kmalloc_noprof+0xbf/0x510 [ 1314.350771][T23505] ? sk_prot_alloc+0x1a8/0x2a0 [ 1314.350812][T23505] should_failslab+0xc2/0x120 [ 1314.350849][T23505] __kmalloc_noprof+0xd2/0x510 [ 1314.350892][T23505] sk_prot_alloc+0x1a8/0x2a0 [ 1314.350938][T23505] sk_alloc+0x36/0xc20 [ 1314.350982][T23505] tap_open+0x2f0/0x1170 [ 1314.351017][T23505] ? __pfx_tap_open+0x10/0x10 [ 1314.351049][T23505] chrdev_open+0x234/0x6a0 [ 1314.351086][T23505] ? __pfx_apparmor_file_open+0x10/0x10 [ 1314.351129][T23505] ? __pfx_chrdev_open+0x10/0x10 [ 1314.351169][T23505] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 1314.351212][T23505] do_dentry_open+0x982/0x1530 [ 1314.351248][T23505] ? __pfx_chrdev_open+0x10/0x10 [ 1314.351291][T23505] vfs_open+0x82/0x3f0 [ 1314.351336][T23505] path_openat+0x1de4/0x2cb0 [ 1314.351384][T23505] ? __pfx_path_openat+0x10/0x10 [ 1314.351430][T23505] do_filp_open+0x20b/0x470 [ 1314.351464][T23505] ? __pfx_do_filp_open+0x10/0x10 [ 1314.351522][T23505] ? alloc_fd+0x471/0x7d0 [ 1314.351570][T23505] do_sys_openat2+0x11b/0x1d0 [ 1314.351623][T23505] ? __pfx_do_sys_openat2+0x10/0x10 [ 1314.351683][T23505] __x64_sys_openat+0x174/0x210 [ 1314.351741][T23505] ? __pfx___x64_sys_openat+0x10/0x10 [ 1314.351803][T23505] do_syscall_64+0xcd/0x490 [ 1314.351848][T23505] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1314.351878][T23505] RIP: 0033:0x7f438cb8ebe9 [ 1314.351902][T23505] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1314.351930][T23505] RSP: 002b:00007f438daa1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1314.351959][T23505] RAX: ffffffffffffffda RBX: 00007f438cdb5fa0 RCX: 00007f438cb8ebe9 [ 1314.351979][T23505] RDX: 0000000000000002 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 1314.351998][T23505] RBP: 00007f438cc11e19 R08: 0000000000000000 R09: 0000000000000000 [ 1314.352015][T23505] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1314.352033][T23505] R13: 00007f438cdb6038 R14: 00007f438cdb5fa0 R15: 00007ffc7d1da2f8 [ 1314.352074][T23505] [ 1321.030152][T23573] random: crng reseeded on system resumption [ 1321.346167][T23576] FAULT_INJECTION: forcing a failure. [ 1321.346167][T23576] name failslab, interval 1, probability 0, space 0, times 0 [ 1321.369449][T23576] CPU: 1 UID: 0 PID: 23576 Comm: syz.2.3340 Tainted: G U syzkaller #0 PREEMPT(full) [ 1321.369501][T23576] Tainted: [U]=USER [ 1321.369512][T23576] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1321.369528][T23576] Call Trace: [ 1321.369538][T23576] [ 1321.369550][T23576] dump_stack_lvl+0x16c/0x1f0 [ 1321.369597][T23576] should_fail_ex+0x512/0x640 [ 1321.369644][T23576] ? vmci_handle_arr_create+0x67/0x140 [ 1321.369679][T23576] should_failslab+0xc2/0x120 [ 1321.369728][T23576] __kmalloc_noprof+0xd2/0x510 [ 1321.369761][T23576] ? lockdep_init_map_type+0x5c/0x280 [ 1321.369802][T23576] ? lockdep_init_map_type+0x5c/0x280 [ 1321.369844][T23576] vmci_handle_arr_create+0x67/0x140 [ 1321.369879][T23576] vmci_ctx_create+0x22a/0x740 [ 1321.369914][T23576] vmci_host_unlocked_ioctl+0x1ad8/0x2040 [ 1321.369956][T23576] ? __pfx_vmci_host_unlocked_ioctl+0x10/0x10 [ 1321.369997][T23576] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1321.370048][T23576] ? do_vfs_ioctl+0x128/0x14f0 [ 1321.370090][T23576] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 1321.370146][T23576] ? find_held_lock+0x2b/0x80 [ 1321.370175][T23576] ? hook_file_ioctl_common+0x145/0x410 [ 1321.370226][T23576] ? __fget_files+0x20e/0x3c0 [ 1321.370267][T23576] ? __pfx_vmci_host_unlocked_ioctl+0x10/0x10 [ 1321.370313][T23576] __x64_sys_ioctl+0x18e/0x210 [ 1321.370360][T23576] do_syscall_64+0xcd/0x490 [ 1321.370407][T23576] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1321.370446][T23576] RIP: 0033:0x7f9aafd8ebe9 [ 1321.370473][T23576] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1321.370506][T23576] RSP: 002b:00007f9ab0b8e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1321.370536][T23576] RAX: ffffffffffffffda RBX: 00007f9aaffb5fa0 RCX: 00007f9aafd8ebe9 [ 1321.370556][T23576] RDX: 0000000000000006 RSI: 00000000000007a0 RDI: 0000000000000005 [ 1321.370574][T23576] RBP: 00007f9aafe11e19 R08: 0000000000000000 R09: 0000000000000000 [ 1321.370592][T23576] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1321.370609][T23576] R13: 00007f9aaffb6038 R14: 00007f9aaffb5fa0 R15: 00007ffd6e20d468 [ 1321.370648][T23576] [ 1321.770902][T23584] FAULT_INJECTION: forcing a failure. [ 1321.770902][T23584] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1321.788727][T23584] CPU: 1 UID: 0 PID: 23584 Comm: syz.0.3342 Tainted: G U syzkaller #0 PREEMPT(full) [ 1321.788778][T23584] Tainted: [U]=USER [ 1321.788789][T23584] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1321.788808][T23584] Call Trace: [ 1321.788819][T23584] [ 1321.788833][T23584] dump_stack_lvl+0x16c/0x1f0 [ 1321.788879][T23584] should_fail_ex+0x512/0x640 [ 1321.788931][T23584] get_futex_key+0x1d0/0x1560 [ 1321.788974][T23584] ? __pfx_get_futex_key+0x10/0x10 [ 1321.789026][T23584] futex_wake+0xea/0x530 [ 1321.789072][T23584] ? rcu_is_watching+0x12/0xc0 [ 1321.789106][T23584] ? __pfx_futex_wake+0x10/0x10 [ 1321.789155][T23584] ? kmem_cache_free+0x2d1/0x4d0 [ 1321.789188][T23584] ? find_held_lock+0x2b/0x80 [ 1321.789216][T23584] ? putname+0x154/0x1a0 [ 1321.789259][T23584] ? do_sys_openat2+0x1b0/0x1d0 [ 1321.789312][T23584] do_futex+0x1e3/0x350 [ 1321.789354][T23584] ? __pfx_do_futex+0x10/0x10 [ 1321.789406][T23584] __x64_sys_futex+0x1e0/0x4c0 [ 1321.789448][T23584] ? __x64_sys_openat+0x174/0x210 [ 1321.789495][T23584] ? __pfx___x64_sys_futex+0x10/0x10 [ 1321.789533][T23584] ? xfd_validate_state+0x61/0x180 [ 1321.789592][T23584] do_syscall_64+0xcd/0x490 [ 1321.789647][T23584] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1321.789679][T23584] RIP: 0033:0x7f438cb8ebe9 [ 1321.789704][T23584] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1321.789735][T23584] RSP: 002b:00007f438daa10e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1321.789766][T23584] RAX: ffffffffffffffda RBX: 00007f438cdb5fa8 RCX: 00007f438cb8ebe9 [ 1321.789787][T23584] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f438cdb5fac [ 1321.789808][T23584] RBP: 00007f438cdb5fa0 R08: 00007f438daa2000 R09: 0000000000000000 [ 1321.789828][T23584] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 1321.789847][T23584] R13: 00007f438cdb6038 R14: 00007ffc7d1da210 R15: 00007ffc7d1da2f8 [ 1321.789886][T23584] [ 1323.901476][T23623] FAULT_INJECTION: forcing a failure. [ 1323.901476][T23623] name failslab, interval 1, probability 0, space 0, times 0 [ 1323.919124][T23623] CPU: 0 UID: 0 PID: 23623 Comm: syz.3.3357 Tainted: G U syzkaller #0 PREEMPT(full) [ 1323.919174][T23623] Tainted: [U]=USER [ 1323.919185][T23623] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1323.919202][T23623] Call Trace: [ 1323.919213][T23623] [ 1323.919224][T23623] dump_stack_lvl+0x16c/0x1f0 [ 1323.919268][T23623] should_fail_ex+0x512/0x640 [ 1323.919305][T23623] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 1323.919349][T23623] should_failslab+0xc2/0x120 [ 1323.919387][T23623] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 1323.919428][T23623] ? __kthread_create_on_node+0x186/0x3f0 [ 1323.919476][T23623] kvasprintf+0xbc/0x160 [ 1323.919505][T23623] ? __pfx_kvasprintf+0x10/0x10 [ 1323.919550][T23623] ? __pfx_dvb_frontend_thread+0x10/0x10 [ 1323.919592][T23623] __kthread_create_on_node+0x186/0x3f0 [ 1323.919635][T23623] ? __pfx___kthread_create_on_node+0x10/0x10 [ 1323.919702][T23623] ? __lock_acquire+0xb97/0x1ce0 [ 1323.919743][T23623] ? __pfx_dvb_frontend_thread+0x10/0x10 [ 1323.919785][T23623] kthread_create_on_node+0xc7/0x100 [ 1323.919826][T23623] ? __pfx_kthread_create_on_node+0x10/0x10 [ 1323.919877][T23623] ? mark_held_locks+0x49/0x80 [ 1323.919917][T23623] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 1323.919954][T23623] ? lockdep_hardirqs_on+0x7c/0x110 [ 1323.920002][T23623] dvb_frontend_open+0xf47/0x1730 [ 1323.920058][T23623] ? __pfx_dvb_frontend_open+0x10/0x10 [ 1323.920116][T23623] dvb_device_open+0x270/0x3b0 [ 1323.920164][T23623] ? __pfx_dvb_device_open+0x10/0x10 [ 1323.920210][T23623] chrdev_open+0x234/0x6a0 [ 1323.920252][T23623] ? __pfx_apparmor_file_open+0x10/0x10 [ 1323.920288][T23623] ? __pfx_chrdev_open+0x10/0x10 [ 1323.920332][T23623] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 1323.920378][T23623] do_dentry_open+0x982/0x1530 [ 1323.920418][T23623] ? __pfx_chrdev_open+0x10/0x10 [ 1323.920468][T23623] vfs_open+0x82/0x3f0 [ 1323.920520][T23623] path_openat+0x1de4/0x2cb0 [ 1323.920572][T23623] ? __pfx_path_openat+0x10/0x10 [ 1323.920623][T23623] do_filp_open+0x20b/0x470 [ 1323.920663][T23623] ? __pfx_do_filp_open+0x10/0x10 [ 1323.920743][T23623] ? alloc_fd+0x471/0x7d0 [ 1323.920790][T23623] do_sys_openat2+0x11b/0x1d0 [ 1323.920840][T23623] ? __pfx_do_sys_openat2+0x10/0x10 [ 1323.920907][T23623] __x64_sys_openat+0x174/0x210 [ 1323.920955][T23623] ? __pfx___x64_sys_openat+0x10/0x10 [ 1323.921022][T23623] do_syscall_64+0xcd/0x490 [ 1323.921068][T23623] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1323.921101][T23623] RIP: 0033:0x7f14bc18ebe9 [ 1323.921128][T23623] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1323.921161][T23623] RSP: 002b:00007f14bcf58038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1323.921192][T23623] RAX: ffffffffffffffda RBX: 00007f14bc3b5fa0 RCX: 00007f14bc18ebe9 [ 1323.921214][T23623] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 1323.921234][T23623] RBP: 00007f14bc211e19 R08: 0000000000000000 R09: 0000000000000000 [ 1323.921254][T23623] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1323.921274][T23623] R13: 00007f14bc3b6038 R14: 00007f14bc3b5fa0 R15: 00007ffdd20bebd8 [ 1323.921316][T23623] [ 1323.921360][T23623] i2c i2c-0: dvb_frontend_start: failed to start kthread (-12) [ 1324.305369][T23626] ================================================================== [ 1324.313941][T23626] BUG: KASAN: slab-use-after-free in dvb_device_open+0x36a/0x3b0 [ 1324.322126][T23626] Read of size 8 at addr ffff88802a5df418 by task syz.2.3359/23626 [ 1324.330420][T23626] [ 1324.332967][T23626] CPU: 0 UID: 0 PID: 23626 Comm: syz.2.3359 Tainted: G U syzkaller #0 PREEMPT(full) [ 1324.333014][T23626] Tainted: [U]=USER [ 1324.333025][T23626] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1324.333043][T23626] Call Trace: [ 1324.333056][T23626] [ 1324.333068][T23626] dump_stack_lvl+0x116/0x1f0 [ 1324.333109][T23626] print_report+0xcd/0x630 [ 1324.333145][T23626] ? __virt_addr_valid+0x81/0x610 [ 1324.333179][T23626] ? __phys_addr+0xe8/0x180 [ 1324.333212][T23626] ? dvb_device_open+0x36a/0x3b0 [ 1324.333250][T23626] kasan_report+0xe0/0x110 [ 1324.333287][T23626] ? dvb_device_open+0x36a/0x3b0 [ 1324.333326][T23626] ? __pfx_dvb_device_open+0x10/0x10 [ 1324.333363][T23626] dvb_device_open+0x36a/0x3b0 [ 1324.333400][T23626] ? __pfx_dvb_device_open+0x10/0x10 [ 1324.333437][T23626] chrdev_open+0x234/0x6a0 [ 1324.333470][T23626] ? __pfx_apparmor_file_open+0x10/0x10 [ 1324.333501][T23626] ? __pfx_chrdev_open+0x10/0x10 [ 1324.333536][T23626] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 1324.333571][T23626] do_dentry_open+0x982/0x1530 [ 1324.333603][T23626] ? __pfx_chrdev_open+0x10/0x10 [ 1324.333650][T23626] vfs_open+0x82/0x3f0 [ 1324.333693][T23626] path_openat+0x1de4/0x2cb0 [ 1324.333731][T23626] ? __pfx_path_openat+0x10/0x10 [ 1324.333767][T23626] do_filp_open+0x20b/0x470 [ 1324.333798][T23626] ? __pfx_do_filp_open+0x10/0x10 [ 1324.333842][T23626] ? alloc_fd+0x471/0x7d0 [ 1324.333878][T23626] do_sys_openat2+0x11b/0x1d0 [ 1324.333919][T23626] ? __pfx_do_sys_openat2+0x10/0x10 [ 1324.333961][T23626] ? __pfx_do_sys_openat2+0x10/0x10 [ 1324.334008][T23626] ? __pfx___might_resched+0x10/0x10 [ 1324.334046][T23626] __x64_sys_openat+0x174/0x210 [ 1324.334094][T23626] ? __pfx___x64_sys_openat+0x10/0x10 [ 1324.334149][T23626] do_syscall_64+0xcd/0x490 [ 1324.334189][T23626] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1324.334222][T23626] RIP: 0033:0x7f9aafd8ebe9 [ 1324.334247][T23626] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1324.334276][T23626] RSP: 002b:00007f9ab0b8e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1324.334305][T23626] RAX: ffffffffffffffda RBX: 00007f9aaffb5fa0 RCX: 00007f9aafd8ebe9 [ 1324.334326][T23626] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 1324.334347][T23626] RBP: 00007f9aafe11e19 R08: 0000000000000000 R09: 0000000000000000 [ 1324.334365][T23626] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1324.334384][T23626] R13: 00007f9aaffb6038 R14: 00007f9aaffb5fa0 R15: 00007ffd6e20d468 [ 1324.334413][T23626] [ 1324.334424][T23626] [ 1324.599776][T23626] Allocated by task 1: [ 1324.603889][T23626] kasan_save_stack+0x33/0x60 [ 1324.608770][T23626] kasan_save_track+0x14/0x30 [ 1324.613472][T23626] __kasan_kmalloc+0xaa/0xb0 [ 1324.618090][T23626] dvb_register_device+0x1e4/0x2370 [ 1324.623325][T23626] dvb_register_frontend+0x5a6/0x880 [ 1324.628738][T23626] vidtv_bridge_probe+0x459/0xa90 [ 1324.633822][T23626] platform_probe+0x106/0x1d0 [ 1324.638665][T23626] really_probe+0x23e/0xa90 [ 1324.643361][T23626] __driver_probe_device+0x1de/0x440 [ 1324.648721][T23626] driver_probe_device+0x4c/0x1b0 [ 1324.653869][T23626] __driver_attach+0x283/0x580 [ 1324.658838][T23626] bus_for_each_dev+0x13b/0x1d0 [ 1324.664301][T23626] bus_add_driver+0x2e9/0x690 [ 1324.669119][T23626] driver_register+0x15c/0x4b0 [ 1324.673966][T23626] vidtv_bridge_init+0x45/0x80 [ 1324.679158][T23626] do_one_initcall+0x120/0x6e0 [ 1324.684059][T23626] kernel_init_freeable+0x5c2/0x910 [ 1324.689296][T23626] kernel_init+0x1c/0x2b0 [ 1324.693761][T23626] ret_from_fork+0x5d4/0x6f0 [ 1324.698574][T23626] ret_from_fork_asm+0x1a/0x30 [ 1324.703649][T23626] [ 1324.706128][T23626] Freed by task 23623: [ 1324.710497][T23626] kasan_save_stack+0x33/0x60 [ 1324.715222][T23626] kasan_save_track+0x14/0x30 [ 1324.720112][T23626] kasan_save_free_info+0x3b/0x60 [ 1324.725460][T23626] __kasan_slab_free+0x60/0x70 [ 1324.730441][T23626] kfree+0x2b4/0x4d0 [ 1324.734495][T23626] dvb_device_put.part.0+0x60/0x90 [ 1324.739680][T23626] dvb_device_open+0x2a4/0x3b0 [ 1324.745030][T23626] chrdev_open+0x234/0x6a0 [ 1324.749506][T23626] do_dentry_open+0x982/0x1530 [ 1324.754937][T23626] vfs_open+0x82/0x3f0 [ 1324.759521][T23626] path_openat+0x1de4/0x2cb0 [ 1324.764174][T23626] do_filp_open+0x20b/0x470 [ 1324.768732][T23626] do_sys_openat2+0x11b/0x1d0 [ 1324.773830][T23626] __x64_sys_openat+0x174/0x210 [ 1324.778804][T23626] do_syscall_64+0xcd/0x490 [ 1324.783338][T23626] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1324.789608][T23626] [ 1324.792042][T23626] The buggy address belongs to the object at ffff88802a5df400 [ 1324.792042][T23626] which belongs to the cache kmalloc-256 of size 256 [ 1324.806468][T23626] The buggy address is located 24 bytes inside of [ 1324.806468][T23626] freed 256-byte region [ffff88802a5df400, ffff88802a5df500) [ 1324.820337][T23626] [ 1324.822770][T23626] The buggy address belongs to the physical page: [ 1324.829632][T23626] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x2a5de [ 1324.838498][T23626] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 1324.847279][T23626] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 1324.855045][T23626] page_type: f5(slab) [ 1324.859066][T23626] raw: 00fff00000000040 ffff88801b841b40 dead000000000122 0000000000000000 [ 1324.867882][T23626] raw: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000 [ 1324.876578][T23626] head: 00fff00000000040 ffff88801b841b40 dead000000000122 0000000000000000 [ 1324.885275][T23626] head: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000 [ 1324.894230][T23626] head: 00fff00000000001 ffffea0000a97781 00000000ffffffff 00000000ffffffff [ 1324.903094][T23626] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002 [ 1324.911772][T23626] page dumped because: kasan: bad access detected [ 1324.918204][T23626] page_owner tracks the page as allocated [ 1324.923938][T23626] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 1, tgid 1 (swapper/0), ts 23144548496, free_ts 0 [ 1324.944192][T23626] post_alloc_hook+0x1c0/0x230 [ 1324.949061][T23626] get_page_from_freelist+0x132b/0x38e0 [ 1324.954739][T23626] __alloc_frozen_pages_noprof+0x261/0x23f0 [ 1324.960896][T23626] alloc_pages_mpol+0x1fb/0x550 [ 1324.965962][T23626] new_slab+0x247/0x330 [ 1324.970234][T23626] ___slab_alloc+0xcf2/0x1740 [ 1324.974942][T23626] __slab_alloc.constprop.0+0x56/0xb0 [ 1324.980427][T23626] __kmalloc_cache_noprof+0xfb/0x3e0 [ 1324.985759][T23626] bus_add_driver+0x92/0x690 [ 1324.990370][T23626] driver_register+0x15c/0x4b0 [ 1324.995161][T23626] usb_register_driver+0x216/0x4d0 [ 1325.000298][T23626] do_one_initcall+0x120/0x6e0 [ 1325.005085][T23626] kernel_init_freeable+0x5c2/0x910 [ 1325.010297][T23626] kernel_init+0x1c/0x2b0 [ 1325.014637][T23626] ret_from_fork+0x5d4/0x6f0 [ 1325.019253][T23626] ret_from_fork_asm+0x1a/0x30 [ 1325.024117][T23626] page_owner free stack trace missing [ 1325.029572][T23626] [ 1325.031986][T23626] Memory state around the buggy address: [ 1325.037616][T23626] ffff88802a5df300: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 1325.045776][T23626] ffff88802a5df380: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 1325.054052][T23626] >ffff88802a5df400: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 1325.062113][T23626] ^ [ 1325.067510][T23626] ffff88802a5df480: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 1325.076031][T23626] ffff88802a5df500: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 1325.084719][T23626] ================================================================== [ 1325.122852][T23626] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 1325.130490][T23626] CPU: 1 UID: 0 PID: 23626 Comm: syz.2.3359 Tainted: G U syzkaller #0 PREEMPT(full) [ 1325.141585][T23626] Tainted: [U]=USER [ 1325.145428][T23626] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1325.155690][T23626] Call Trace: [ 1325.159190][T23626] [ 1325.162307][T23626] dump_stack_lvl+0x3d/0x1f0 [ 1325.167016][T23626] vpanic+0x6e8/0x7a0 [ 1325.171211][T23626] ? __pfx_vpanic+0x10/0x10 [ 1325.176189][T23626] ? __pfx_vprintk_emit+0x10/0x10 [ 1325.181231][T23626] ? dvb_device_open+0x36a/0x3b0 [ 1325.186554][T23626] panic+0xca/0xd0 [ 1325.190333][T23626] ? __pfx_panic+0x10/0x10 [ 1325.195231][T23626] ? dvb_device_open+0x36a/0x3b0 [ 1325.200192][T23626] ? preempt_schedule_common+0x44/0xc0 [ 1325.205678][T23626] ? preempt_schedule_thunk+0x16/0x30 [ 1325.211525][T23626] check_panic_on_warn+0xab/0xb0 [ 1325.217662][T23626] end_report+0x107/0x170 [ 1325.222113][T23626] kasan_report+0xee/0x110 [ 1325.226562][T23626] ? dvb_device_open+0x36a/0x3b0 [ 1325.231808][T23626] ? __pfx_dvb_device_open+0x10/0x10 [ 1325.237487][T23626] dvb_device_open+0x36a/0x3b0 [ 1325.242282][T23626] ? __pfx_dvb_device_open+0x10/0x10 [ 1325.247757][T23626] chrdev_open+0x234/0x6a0 [ 1325.252215][T23626] ? __pfx_apparmor_file_open+0x10/0x10 [ 1325.257789][T23626] ? __pfx_chrdev_open+0x10/0x10 [ 1325.263093][T23626] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 1325.269732][T23626] do_dentry_open+0x982/0x1530 [ 1325.274623][T23626] ? __pfx_chrdev_open+0x10/0x10 [ 1325.279691][T23626] vfs_open+0x82/0x3f0 [ 1325.283992][T23626] path_openat+0x1de4/0x2cb0 [ 1325.288824][T23626] ? __pfx_path_openat+0x10/0x10 [ 1325.294410][T23626] do_filp_open+0x20b/0x470 [ 1325.299078][T23626] ? __pfx_do_filp_open+0x10/0x10 [ 1325.304296][T23626] ? alloc_fd+0x471/0x7d0 [ 1325.308729][T23626] do_sys_openat2+0x11b/0x1d0 [ 1325.313705][T23626] ? __pfx_do_sys_openat2+0x10/0x10 [ 1325.319128][T23626] ? __pfx_do_sys_openat2+0x10/0x10 [ 1325.324536][T23626] ? __pfx___might_resched+0x10/0x10 [ 1325.330401][T23626] __x64_sys_openat+0x174/0x210 [ 1325.335674][T23626] ? __pfx___x64_sys_openat+0x10/0x10 [ 1325.341712][T23626] do_syscall_64+0xcd/0x490 [ 1325.346538][T23626] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1325.357327][T23626] RIP: 0033:0x7f9aafd8ebe9 [ 1325.362070][T23626] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1325.387458][T23626] RSP: 002b:00007f9ab0b8e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1325.397173][T23626] RAX: ffffffffffffffda RBX: 00007f9aaffb5fa0 RCX: 00007f9aafd8ebe9 [ 1325.405582][T23626] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 1325.414755][T23626] RBP: 00007f9aafe11e19 R08: 0000000000000000 R09: 0000000000000000 [ 1325.423099][T23626] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1325.431267][T23626] R13: 00007f9aaffb6038 R14: 00007f9aaffb5fa0 R15: 00007ffd6e20d468 [ 1325.439378][T23626] [ 1325.442912][T23626] Kernel Offset: disabled [ 1325.447411][T23626] Rebooting in 86400 seconds..