last executing test programs: 7.967218106s ago: executing program 0 (id=739): prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd7/queue/max_discard_segments\x00', 0x80000, 0x0) read$auto(r0, 0x0, 0x9) setsockopt$auto(0x3, 0x1, 0x1d, 0x0, 0x9) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88) recvfrom$auto(0x3, 0x0, 0x800000000e, 0xfffff4a4, 0x0, 0xfffffffffffffffd) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) open(&(0x7f0000000100)='.\x00', 0x591002, 0x408) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x1, 0x106) recvmmsg$auto(0x3, 0x0, 0x10000, 0x300, 0x0) mmap$auto(0x0, 0xc, 0x9c0f, 0x44eb2, 0x10006, 0x300000000000) vmsplice$auto(0xffffffffffffffff, 0x0, 0x6, 0x1) ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) write$auto_proc_projid_map_operations_base(0xffffffffffffffff, 0x0, 0x0) 6.81489802s ago: executing program 0 (id=743): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0) set_mempolicy$auto(0x3, 0x0, 0x7) mmap$auto(0x0, 0x400008, 0x1000df, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mmap$auto(0x4, 0x2020009, 0x9, 0xeb1, 0xffffffffffffffff, 0x8000) msync$auto(0x0, 0xe0, 0x6) write$auto(0xffffffffffffffff, &(0x7f0000000100)='\x00\x00\x00\x00\x00\x00\x00x \xec(\x1d\x98\xe9\xc4\xe8\xfc@6=\xab\xf4\x89\x01\x93\xdc\x19\xffv\'\xa1\xd5\x14\x06S\xae\xadB}\xdf]\x99\xc9\x9f4\xbb\xc5\x81\x9d\x8ak\xdeB\xcbd\xd3\x05\xe4P\x84\xcb\xb8#\x13\nYU\'\x95R\xc8\x9d\xb7*\xe0.\xd2\xdf\x1b\x88D\x8c{k\xcec\xe1\xa2j\xec\xc9\xd2\x98\x94I\x102h\x06\x8c\xa2\xc8\x8a7\xb7t', 0x7ef) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, 0x0, 0x82040, 0x0) socket(0x2, 0x1, 0x0) 5.877901011s ago: executing program 3 (id=747): r0 = socket(0x29, 0x2, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) set_mempolicy_home_node$auto(0x81c, 0xc5a, 0x2, 0xf4) r2 = syz_genetlink_get_family_id$auto_tipcv2(0x0, r1) sendmsg$auto_TIPC_NL_MEDIA_SET(r1, &(0x7f000000a4c0)={0x0, 0x0, &(0x7f000000a480)={&(0x7f0000009800)={0x18, r2, 0x1, 0x70bd29, 0x25dfdbff, {}, [@TIPC_NLA_MEDIA={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x4000}, 0x20000048) wait4$auto(0x0, &(0x7f0000000040)=0x9, 0x6, &(0x7f00000000c0)={{0xffffffff, 0x9}, {0x0, 0x5}, 0x6529, 0x0, 0x1000, 0x7fff, 0x1, 0x5, 0x8, 0x9, 0x8, 0x1, 0x3, 0x5, 0x40, 0x6}) waitid$auto(0x4, 0xffffffffffffffff, &(0x7f0000000240)={@siginfo_0_0={0x6, 0x3, 0x17, @_sigsys={&(0x7f0000000180)="9c0644f8029997c1b120f4381fc9b9562b03be9a05601177e78badbb95d38bda1d2cc1d20aed0bad3070860c0e1db65e68d1dde4fea768f0d1ae33e6dcd405546b95022915348a8df9ce879173d47aa03fae7ad0d32b4d56f4b3526d99aa54f1357b527abcc387905324b7a387d2c4f383d1a5a502a1d9f94750d96ed08e480d2fbb260fcf23a91895312ba5b8d8ee53c8f280608ee56feb17", 0x3, 0x100}}}, 0x3, &(0x7f00000002c0)={{0x2, 0x8}, {0x1000, 0x5}, 0x8001, 0x8, 0x5, 0x6, 0x3ff, 0xc48, 0x9, 0x6, 0x503, 0x80000001, 0x5, 0x9, 0x1, 0x4}) sendmsg$auto_TIPC_NL_KEY_FLUSH(r0, &(0x7f0000000580)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000540)={&(0x7f0000000380)={0x18, r2, 0x10, 0x70bd27, 0x25dfdbfc, {}, [@TIPC_NLA_NODE={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x810}, 0x0) mmap$auto(0x0, 0x9, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x80002, 0x0) openat$auto_tracing_readme_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/README\x00', 0x80, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) 5.560104129s ago: executing program 3 (id=748): sendmsg$auto_NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={0x14, 0x0, 0x400, 0x70bd2d, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x20000001}, 0x8040) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) openat$auto_tracing_cpumask_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/tracing_cpumask\x00', 0x8301, 0x0) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) ioctl$auto_SNDRV_TIMER_IOCTL_NEXT_DEVICE(0xffffffffffffffff, 0xc0145401, &(0x7f0000000040)={0x4, 0x0, 0x7, 0x6, 0x800}) 5.123855785s ago: executing program 0 (id=751): prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd7/queue/max_discard_segments\x00', 0x80000, 0x0) read$auto(r0, 0x0, 0x9) setsockopt$auto(0x3, 0x1, 0x1d, 0x0, 0x9) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x787b, 0x7000000) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) open(&(0x7f0000000100)='.\x00', 0x591002, 0x408) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x1, 0x106) recvmmsg$auto(0x3, 0x0, 0x10000, 0x300, 0x0) mmap$auto(0x0, 0xc, 0x9c0f, 0x44eb2, 0x10006, 0x300000000000) vmsplice$auto(0xffffffffffffffff, 0x0, 0x6, 0x1) ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) write$auto_proc_projid_map_operations_base(0xffffffffffffffff, 0x0, 0x0) 5.074663653s ago: executing program 2 (id=752): madvise$auto(0x0, 0x2000040080000004, 0xe) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/numa_maps\x00', 0x20000, 0x0) read$auto_proc_sessionid_operations_base(r1, &(0x7f00000000c0)=""/4096, 0x1000) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio\x00', 0x8080, 0x0) openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000000)='/proc/cmdline\x00', 0x2080, 0x0) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) write$auto(r2, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) close_range$auto(0x0, r2, 0x0) 4.907036168s ago: executing program 3 (id=753): close_range$auto(0x2, 0x8, 0x0) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x88000, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) lseek$auto(0x3, 0x7ffffffffffffffd, 0x2) mmap$auto(0x0, 0x20009, 0x7fffffff, 0xeb1, 0x401, 0x8000) mknod$auto(&(0x7f0000000180)=':,\x00', 0xcb, 0xfffffffa) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r2, 0x0, 0x20) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3) r4 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) rename$auto(&(0x7f00000000c0)=':,\x00', &(0x7f0000000100)=':,\x00') ioctl$auto(r4, 0x4004556e, 0x1f) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_OVS_DP_CMD_NEW(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010026bd7020f8dbdf250100000008000200", @ANYRES32=0x4, @ANYBLOB="089b953395665200080200007f2676942ce030c3a0a4a5f48d8defb1308aca63bc4763f06049c336b0c35525b5b32d64219c80b8ac73c0a30c75b9061d98344592fb134759c40477662456dcdf27f0b6b39ec68075533052bb1f01b17bdef4164f933d1e3c27256237eb9a7c6fe3d350591dd5e93746ac23249bce1035a46265556fdec3353f5fb2af379eb364b1096c8bca0ab1d81e3c6c702a7856e24b526ea855bb9515c50a41b26dcab1d30d12", @ANYRES32=0x9, @ANYBLOB="0800070000010000"], 0x34}, 0x1, 0x0, 0x0, 0x801}, 0x80) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_GET_MSRS(r0, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [{0x198, 0x400, 0x9}]}) socket(0x2, 0x1, 0x106) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x802, 0x0) openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) socket(0xa, 0x1, 0x100) r7 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x100e42, 0x0) write$auto_sg_fops_sg(r7, &(0x7f0000000440)="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", 0x13a) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) 4.084206756s ago: executing program 2 (id=754): r0 = socket(0x2, 0x3, 0xa) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb5, 0x401, 0x300000000000) socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/usb/usbmon/9t\x00', 0x0, 0x0) pread64$auto(r2, 0x0, 0x59, 0x7) r3 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0xa101, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/adsp1\x00', 0x1, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000007c0), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_TUNNEL_INFO_GET(r4, &(0x7f0000000f80)={0x0, 0x0, &(0x7f0000000f40)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000", @ANYRES16=r5, @ANYBLOB="050725bd7000fbdbdf2509"], 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x880) fanotify_init$auto(0x200, 0x2010000000000) openat$auto_split_huge_pages_fops_huge_memory(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0) syz_genetlink_get_family_id$auto_nfc(&(0x7f0000000200), r0) sendfile$auto(0xffffffffffffffff, r1, &(0x7f00000003c0)=0x100, 0x9) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/virtual/block/nbd13/queue/io_timeout\x00', 0x2062, 0x0) sendmsg$auto_NFC_CMD_ENABLE_SE(0xffffffffffffffff, &(0x7f0000001480)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000001440)={&(0x7f00000014c0)=ANY=[@ANYRES8=r3, @ANYRES32=r0, @ANYBLOB="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"], 0x1090}, 0x1, 0x0, 0x0, 0xc054}, 0xc000) kexec_load$auto(0x5, 0x2, &(0x7f0000000240)={@kbuf=&(0x7f0000000280)="95b22447050693adf87ca71e65cd8ab0e6d84691ea27e9827ce63abe2c73a1c0d190e78657412255f71a7dfea0df143a1c759aeba02cedeb35f09dc0a605f4018ce6fa001b89df87e5e2624bbc2cf6e6e4afa625647cc45f10471c41c02a64d07faef0335ace99f0392a3a31c14da9acb7cb3a11addffe4156b280383297d32e8633968527848e3bb01535bfd8cd26ba1acf0c94715bf8ccc6c27a2bbc12de9270f5e6a79ef8969561f36f7d552cb9d97d418df76191f67bda6e5de9bc95cb6b43467ac415675e3284e8b9ea305aabef91fa9ae921c05c2eb38f5758b1efebd3c7fddd49966568", 0x800c000, 0x4800c000, 0x800c000}, 0x4) epoll_create$auto(0x8) 3.909089199s ago: executing program 1 (id=755): sendmsg$auto_OVS_DP_CMD_DEL(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20040c04}, 0x2008c851) r0 = openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) r1 = landlock_create_ruleset$auto(&(0x7f0000000000)={0xd1d, 0x3, 0x7}, 0x0, 0x10000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(r1, r1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000001000) semctl$auto(0x201, 0xfffffffffffffffa, 0x3, 0x0) keyctl$auto(0x2000000000000017, 0x3ff, 0x0, 0x0, 0x3) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0000, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/vm/mmap_min_addr\x00', 0x101302, 0x0) r3 = signalfd$auto(0xffffffff, 0x0, 0x8) socket(0x1d, 0x2, 0x6) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) bpf$auto(0x10000000, &(0x7f0000000300)=@bpf_attr_3={0x1, 0x7, 0x6, 0x0, 0x9, 0x4, 0x7, 0x9, 0x5, "1e9f189a142cb67e12f726e941d3c262", 0x0, 0x546, r2, 0x35, 0x7, 0x3, 0x4, 0x7, 0x9, 0x7, @attach_btf_obj_fd=r3, 0x3, 0x8, 0x9, 0x5, 0x80000000, r1, r0}, 0x7) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_proc_coredump_filter_operations_base(0xffffffffffffff9c, &(0x7f0000000140), 0x141002, 0x0) readv$auto(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x1}, 0x8) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x1000) io_uring_register$auto(0x2, 0x0, 0x0, 0x3) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0xa, 0x0) writev$auto(0x8000, &(0x7f0000000040)={0x0, 0x1000000000004}, 0x2bc) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x16, &(0x7f0000000040), 0x1) 3.719943119s ago: executing program 0 (id=756): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) close_range$auto(0x2, 0x8, 0x0) (async) prctl$auto(0x1000000003b, 0x1, 0x4, 0x6, 0x7) (async) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) (async, rerun: 64) fanotify_init$auto(0x65, 0x2) (async, rerun: 64) statmount$auto(&(0x7f0000000000)={0x7, @raw=0x8, 0x73c, 0xf, 0x1}, &(0x7f0000000180)={0x80000000, 0x8ce, 0x8000, 0xe960, 0x0, 0x972, 0x9, 0x4, 0x0, 0x1, 0x9, 0xfffeffff, 0x3, 0x4, 0x14aa, 0x6, 0x2, 0x5, 0x1ff, 0x1, 0xcb, 0x654, 0x0, 0xfffffffb, 0x4, 0x2c3, 0xfffffffffffffffe, 0x0, 0x7fffffff, 0x3, 0x6, [0x5, 0xd7e1, 0x2, 0x210, 0x100000000, 0x7, 0x9, 0x8, 0x7fff, 0x100000001, 0x3, 0x8, 0x915, 0xffffffffffffffff, 0x5, 0x7, 0x80, 0x3, 0xd0a, 0x100000000, 0xffffffffffffffff, 0x0, 0x82e, 0x8, 0xffffffff00000001, 0x0, 0x7, 0x4, 0x5, 0x6b7, 0x9, 0x6, 0x7, 0xfffffffffffffffc, 0x1c, 0x1, 0x6, 0x8000000000000009, 0xff, 0xffffffff, 0x9, 0x3d7, 0x3800000000], "d28c9a074dce18717372b23c88a3fbcade8aae0631a02b85840e049bafc7e02deb2a7edb768cc278a607d379be83f757dfae4fe538acbf5a5959f61f3bce56a6c258abd25baf4b076669d67ea7b1cd907f620381078b8962fc4a00ebaef66941dfea69"}, 0x401, 0xfffff55f) (async) pipe$auto(0x0) (async) dup2$auto(0x5, 0x4) (async) splice$auto(0x4, 0x0, 0x2, 0x0, 0x80000001, 0x9) close_range$auto(0x2, 0x8, 0x0) (async, rerun: 32) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) (async, rerun: 32) socket(0x2, 0x2, 0x0) (async) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0) (async) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x801, 0x0) (async) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) (async) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x9, 0x8, 0x1, 0x2, 0x4, 0x15f4da0e, 0x3, 0xd08, 0xc, 0x8, 0x4, 0x6d3f, 0x9, 0x2, 0x4000000000000d]}, 0x0) (async) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) (async, rerun: 64) socket(0x2c, 0x1, 0x3) (async, rerun: 64) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) madvise$auto(0x0, 0x20000a, 0x4) (async) madvise$auto(0x0, 0xffffffffffff0005, 0x17) (async) prctl$auto(0x400, 0x7fff, 0x0, 0x10000, 0x100000000000007) (async) bind$auto(0x3, 0x0, 0x6a) (async) mmap$auto(0x4, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) (async) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) (async, rerun: 64) io_uring_setup$auto(0x6, 0x0) (rerun: 64) 3.42347105s ago: executing program 1 (id=757): r0 = socket(0x29, 0x2, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) set_mempolicy_home_node$auto(0x81c, 0xc5a, 0x2, 0xf4) r2 = syz_genetlink_get_family_id$auto_tipcv2(0x0, r1) sendmsg$auto_TIPC_NL_MEDIA_SET(r1, &(0x7f000000a4c0)={0x0, 0x0, &(0x7f000000a480)={&(0x7f0000009800)={0x18, r2, 0x1, 0x70bd29, 0x25dfdbff, {}, [@TIPC_NLA_MEDIA={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x4000}, 0x20000048) r3 = wait4$auto(0x0, &(0x7f0000000040)=0x9, 0x6, &(0x7f00000000c0)={{0xffffffff, 0x9}, {0x0, 0x5}, 0x6529, 0x0, 0x1000, 0x7fff, 0x1, 0x5, 0x8, 0x9, 0x8, 0x1, 0x3, 0x5, 0x40, 0x6}) waitid$auto(0x4, 0xffffffffffffffff, &(0x7f0000000240)={@siginfo_0_0={0x6, 0x3, 0x17, @_sigsys={&(0x7f0000000180)="9c0644f8029997c1b120f4381fc9b9562b03be9a05601177e78badbb95d38bda1d2cc1d20aed0bad3070860c0e1db65e68d1dde4fea768f0d1ae33e6dcd405546b95022915348a8df9ce879173d47aa03fae7ad0d32b4d56f4b3526d99aa54f1357b527abcc387905324b7a387d2c4f383d1a5a502a1d9f94750d96ed08e480d2fbb260fcf23a91895312ba5b8d8ee53c8f280608ee56feb17", 0x3, 0x100}}}, 0x3, &(0x7f00000002c0)={{0x2, 0x8}, {0x1000, 0x5}, 0x8001, 0x8, 0x5, 0x6, 0x3ff, 0xc48, 0x9, 0x6, 0x503, 0x80000001, 0x5, 0x9, 0x1, 0x4}) sendmsg$auto_TIPC_NL_KEY_FLUSH(r0, &(0x7f0000000580)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000540)={&(0x7f0000000380)={0x12c, r2, 0x10, 0x70bd27, 0x25dfdbfc, {}, [@TIPC_NLA_NODE={0x118, 0x6, 0x0, 0x1, [@typed={0x14, 0x1a, 0x0, 0x0, @ipv6=@loopback}, @nested={0xdd, 0x95, 0x0, 0x1, [@typed={0x8, 0x2b, 0x0, 0x0, @pid=r3}, @generic="499c08104054e588fde175c5cd97c36d1affaf0d7711d52b44f076c571728834f0a1dec8121874396a33e573354b50563db4c626297e79e3ba7782d7b5d7b5256094ada715efbba7148f786e0b3efdd03b9e6638f10c40b2968cba9fef8b115ef783ee2756c2531e2c7b2c4c5b291ff9185b166b274fbbe5961f1907a29b20c4e1e72f6c0addbc245ca42ea44ab44d5f4d754efcc9fa62827f19d8afb3d4e61178281c4dde7f967036abab281cf2085b9c242d14e48476351b87c2ba9921516219b7a0d244d496ab95d586e3a4ebabd701"]}, @nested={0x13, 0x8, 0x0, 0x1, [@generic="76d449bfed1ebef70813c61494ab49"]}, @typed={0xc, 0xc3, 0x0, 0x0, @u64=0x8}]}]}, 0x12c}, 0x1, 0x0, 0x0, 0x810}, 0x0) mmap$auto(0x0, 0x9, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x80002, 0x0) openat$auto_tracing_readme_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/README\x00', 0x80, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) 3.042848315s ago: executing program 1 (id=758): prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={0x0}, 0x1, 0x0, 0x0, 0x8810}, 0x40) r1 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0) ioctl$auto_PPPIOCSMRU(r1, 0xc004743e, 0x0) ioctl$auto_PPPIOCSPASS(r1, 0x40107447, &(0x7f0000000040)={0x6, 0x0}) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2062, 0x0) close_range$auto(0x2, 0xa, 0x0) mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x6, 0x0) r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000001bc0)='/dev/sequencer2\x00', 0x1, 0x0) ioctl$auto_SNDCTL_SEQ_OUTOFBAND(r2, 0x40085112, 0x0) ioprio_set$auto(0x2, 0x0, 0x208) mmap$auto(0x0, 0x2020009, 0x200003, 0xeb1, 0xfffffffffffffffa, 0x100000008000) r3 = socket(0x10, 0x2, 0x0) sendmsg$auto_IPVS_CMD_GET_SERVICE(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000500)=ANY=[@ANYRES16=0x0, @ANYBLOB="040026bd7000fcdbdf25", @ANYRES32, @ANYBLOB="1400bd00fc0000000000"], 0x119c}, 0x1, 0x0, 0x0, 0x90}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}, 0x1, 0x0, 0x0, 0x1000c000}, 0x40000) recvmmsg$auto(r3, &(0x7f0000000000)={{0x0, 0x4, &(0x7f0000000080)={0x0, 0x803}, 0x5, 0x0, 0x2, 0x8}, 0x800}, 0x10a, 0x8, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000800)='/sys/devices/virtual/ptp/ptp0/n_vclocks\x00', 0x2400, 0x0) read$auto(r4, 0x0, 0x9) openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f000000e680), 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000840)=ANY=[@ANYBLOB="fb040000", @ANYRES16=0x0, @ANYBLOB="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"], 0x414}, 0x1, 0x0, 0x0, 0x60000010}, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/kernel/ns_last_pid\x00', 0x68000, 0x0) 2.973764208s ago: executing program 3 (id=759): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0) set_mempolicy$auto(0x3, 0x0, 0x7) mmap$auto(0x0, 0x400008, 0x1000df, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mmap$auto(0x4, 0x2020009, 0x9, 0xeb1, 0xffffffffffffffff, 0x8000) msync$auto(0x0, 0xe0, 0x6) write$auto(0xffffffffffffffff, &(0x7f0000000100)='\x00\x00\x00\x00\x00\x00\x00x \xec(\x1d\x98\xe9\xc4\xe8\xfc@6=\xab\xf4\x89\x01\x93\xdc\x19\xffv\'\xa1\xd5\x14\x06S\xae\xadB}\xdf]\x99\xc9\x9f4\xbb\xc5\x81\x9d\x8ak\xdeB\xcbd\xd3\x05\xe4P\x84\xcb\xb8#\x13\nYU\'\x95R\xc8\x9d\xb7*\xe0.\xd2\xdf\x1b\x88D\x8c{k\xcec\xe1\xa2j\xec\xc9\xd2\x98\x94I\x102h\x06\x8c\xa2\xc8\x8a7\xb7t', 0x7ef) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, 0x0, 0x82040, 0x0) socket(0x2, 0x1, 0x0) 1.92778259s ago: executing program 1 (id=760): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socketpair$auto(0x1e, 0x5, 0x80000000, 0x0) socket(0xa, 0x5, 0x0) socket(0xa, 0x801, 0x84) connect$auto(0x3, 0x0, 0x55) listen$auto(0x3, 0x81) setsockopt$auto(0x3, 0x10000000084, 0x81, 0x0, 0x8) r0 = accept$auto(0x3, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, 0x0, 0x4821c0, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r1, 0x0, 0x20) openat$dir(0xffffffffffffff9c, 0x0, 0x2d2802, 0x48) writev$auto(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x7}, 0x3) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0xc44c1, 0x0) mmap$auto(0x5b1, 0x80005, 0xfff, 0x8000000000000011, 0x10006, 0x300000000006) r2 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000400)='/dev/snd/controlC2\x00', 0x880, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_READ(r2, 0xc4c85512, &(0x7f00000004c0)={{@raw=0x1, 0x999c, 0x5, 0x0, "76f006e37ceb76bfbde3245bee4c6625cb0662ccc64e124db4fedbdd228b9ced12ac206f688d4858a0b558db"}, 0x1, @integer=@value=[0x2, 0x7, 0xfffffffffffffff8, 0x4, 0xffffffff, 0x2, 0x7, 0xf52d, 0x8, 0xff, 0x4, 0x1c2, 0x1, 0x92f6, 0x9, 0x3, 0x8, 0xfffffffffffffffd, 0x6, 0x1, 0x1840, 0x1, 0x40, 0x5, 0x7727f3b8, 0x3ff, 0x4, 0x2, 0x6, 0x9, 0x9, 0x6, 0xd7de, 0x0, 0x1, 0x5, 0x2, 0x8, 0x80000008, 0xffffffffffffffff, 0x1000, 0x81, 0x80000000, 0x0, 0x81, 0x101, 0x100, 0x4000, 0xffff, 0x1, 0x2, 0xec00000, 0x185d, 0xe, 0x10000, 0x2, 0xee3, 0x6, 0x0, 0x800b60f, 0xfffffffffffffffa, 0x6, 0x7, 0x7ff, 0x5, 0x7, 0x800, 0x5, 0x27d64140, 0x1ff, 0xffffffffffffffff, 0x8, 0x7, 0x4, 0x0, 0x3, 0x5, 0x2, 0xfffffffffffff800, 0x9, 0x2, 0x208, 0x8003, 0x7, 0x100000000, 0x2, 0x6, 0x8, 0x5, 0x3, 0x200, 0x7, 0x80, 0x3, 0x8001, 0x2, 0xfffffffffffffff9, 0x9, 0x35, 0x5, 0x8, 0x8, 0x2, 0x9, 0xfffffffffffffff9, 0x0, 0x0, 0x7, 0xe4, 0x8000000000000, 0x1190, 0x59, 0x7ffffffffffffffc, 0x4, 0x5, 0xffffffffffffffff, 0x7, 0xfffffffffffffffd, 0x6, 0x0, 0x5, 0x4, 0xc0, 0x1400, 0x800, 0x6, 0x9, 0x3], "6b54dd2e739e95a6f217b84988b4581576aaed11b340e4707992930f9a930325903b0e132daa477100a1107a85f3303896b5ec1e61dfb9c0e2698c93ebcd3e1508428d544319376037341d65bb6fb47a002356928a53d1534d8b947cbfcbfba7c7c74e86dc40dc6bca83c523e1e38c31cabf433dd0e3bc1b1b3128e5cf49b23f"}) openat$auto_nsim_dev_health_break_fops_health(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim2/health/break_health\x00', 0x48081, 0x0) write$auto(r0, 0x0, 0x1fb) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) init_module$auto(0x0, 0xfffff, 0x0) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty0\x00', 0x102, 0x0) write$auto(0x3, 0x0, 0xfffffdef) ioctl$auto(0x3, 0x4b71, 0x38) 1.895986433s ago: executing program 2 (id=761): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_MPP(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000200)={0x18, r1, 0xb01, 0x70bd28, 0x25dfdbfe, {}, [@NL80211_ATTR_HE_CAPABILITY={0x4}]}, 0x18}, 0x1, 0x0, 0x3600, 0x804}, 0x4000890) 1.643042556s ago: executing program 0 (id=762): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, 0x0, 0x2a19c3, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0x40000eb1, 0x401, 0x8000) clone$auto(0x6, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x4000006) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket(0x11, 0x1, 0x87) r2 = syz_genetlink_get_family_id$auto_nfc(&(0x7f0000000100), r1) sendmsg$auto_NFC_CMD_ENABLE_SE(r1, &(0x7f00000003c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000380)={&(0x7f0000000840)=ANY=[@ANYBLOB="44020000", @ANYRES16=r2, @ANYBLOB="040026bd7000fcdbdf25110000000800040003000000e1011380f74f6457281e806894afc92463eda69c8ab78b8418f93f828d1dc1b543dea59a6c79d379defaf313c92cc2ba5f8592dca46d5caad2f0cd2c5b859fe40a31ff929996f10c0fc43b2e7fdeb013bf2144b6c81d83303dee607548a63e2a7df8eaddece92a6b0c004d800400258004006d0018002a800800df00", @ANYRES32, @ANYBLOB="0826ddb67f2bbd681c47a69ab2ce82dcefb554bb8df7d4c9da7f7d30622f363ec8a83e4b773cd0460bc57a2753d55e9978c965c3f5fc5497efa2dfaadfd1dc193042ce2c98ecbe062127d7bf8d2aa73cf04fa13856d4cee0c814a695ff1f2a89033b0000000000", @ANYRES32=0x0, @ANYBLOB="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"], 0x244}, 0x1, 0x0, 0x0, 0x4048000}, 0x48800) sendmsg$auto_NFC_CMD_LLC_GET_PARAMS(r0, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x30003}, 0xc, &(0x7f0000000240)={&(0x7f0000000040)={0x13c, r2, 0x200, 0x70bd2a, 0x25dfdbfc, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, 0x1}, @NFC_ATTR_LLC_SDP={0x118, 0x13, 0x0, 0x1, [@typed={0x14, 0x31, 0x0, 0x0, @ipv6=@mcast1}, @nested={0x89, 0x10e, 0x0, 0x1, [@nested={0x4, 0xd}, @nested={0x4, 0x11f}, @nested={0x4, 0x110}, @typed={0x14, 0x104, 0x0, 0x0, @ipv6=@mcast1}, @nested={0x4, 0x102}, @generic="1e0a35c7958f4f0ee1aca3344abdd8d44254a8ca988f7997d089c984a60afadadfe7406c31aeebf4b9c161d8348b1446f7de487510ebb771004c639b0c23bba9a5dbf2c29743c50a9a895a6c874410150b", @typed={0x8, 0x110, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}, @nested={0x4, 0x134}, @nested={0x4, 0xb4}]}, @generic="4886945f55180800aed0f7971c728e427d950b330d9e962456b9e31f3b760ffefc50525f485596b3b4013e13bf2f65aa1175874704188e26aa76dc553e9b85b8e2ea9e069327460d92a5a14af465405e9816ad40b2266113c57742195dcee190b38f92af7c70d79fa177622d442e3f39dba2b003"]}, @NFC_ATTR_VENDOR_ID={0x8, 0x1d, 0x81}]}, 0x13c}, 0x1, 0x0, 0x0, 0x40}, 0x10) read$auto(0xffffffffffffffff, 0x0, 0x5ff15ff9) r3 = socket(0x10, 0x2, 0xc) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000013c0)=ANY=[@ANYBLOB="18000000", @ANYRES8=r3, @ANYBLOB="01", @ANYRES32], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x80) setresuid$auto(0x0, 0xee01, 0x0) mq_timedsend$auto(0xffffffffffffffff, &(0x7f00000001c0)='@;\x94:IN\x18\xfa7Cl\x108\xcb#\x00\xa1Vq\xc9\x00\xa6=`<\x00\x00\xe7{\x87sN\xaa%\x10h\xc7\xebOi\x88\x8a#\xdf\x9a\xe9\x9f\x06\x0f\x18\x8b\x7f9%\xee\x1cT!\xae>\xf7E\xcc\x95\xf0\x01\x10Z\x00\x00\x00\x00\x00\x00\x00\x00\x00', 0x80, 0x9, 0x0) madvise$auto(0x0, 0x200007, 0x19) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) 1.642732614s ago: executing program 2 (id=763): sendmsg$auto_SMC_NETLINK_REMOVE_UEID(0xffffffffffffffff, 0x0, 0x20000000) connect$auto(0x3, 0x0, 0x54) sendfile$auto(0xffffffffffffffff, 0x3, 0x0, 0x1000003) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb5, 0x401, 0x300000000000) prctl$auto(0x16, 0x2, 0x2, 0x4000000d, 0x100) socket$nl_generic(0x10, 0x3, 0x10) ioctl$auto_SNDCTL_DSP_GETODELAY(0xffffffffffffffff, 0x80045017, &(0x7f0000001180)) io_uring_setup$auto(0x6, 0x0) openat$auto_split_huge_pages_fops_huge_memory(0xffffffffffffff9c, 0x0, 0x800, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x40000008000) symlink$auto(0x0, &(0x7f0000000000)='./file0\x00') readlink$auto(&(0x7f0000000040)='./file0\x00', 0x0, 0x40) readlink$auto(&(0x7f00000000c0)='./file0\x00', 0x0, 0xa03) sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc000}, 0x2404c800) kexec_load$auto(0x5, 0x40, &(0x7f0000000040)={@buf=&(0x7f0000000080)="447dd26b493863f396da7b2f7bbd79a9e2b665481d62", 0x800c000, 0xe, 0x800c000}, 0x4) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0x2000, 0x0) ioctl$auto_EVIOCGMASK(r0, 0x80104592, &(0x7f0000000000)={0x2000, 0x800004, 0x105}) ioctl$auto(0x3, 0x80004509, 0x10000000000402) 1.410841033s ago: executing program 3 (id=764): prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd7/queue/max_discard_segments\x00', 0x80000, 0x0) read$auto(r0, 0x0, 0x9) setsockopt$auto(0x3, 0x1, 0x1d, 0x0, 0x9) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x787b, 0x7000000) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) open(&(0x7f0000000100)='.\x00', 0x591002, 0x408) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x1, 0x106) recvmmsg$auto(0x3, 0x0, 0x10000, 0x300, 0x0) mmap$auto(0x0, 0xc, 0x9c0f, 0x44eb2, 0x10006, 0x300000000000) vmsplice$auto(0xffffffffffffffff, 0x0, 0x6, 0x1) ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) write$auto_proc_projid_map_operations_base(0xffffffffffffffff, 0x0, 0x0) 926.186338ms ago: executing program 1 (id=765): sendmsg$auto_OVS_DP_CMD_DEL(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20040c04}, 0x2008c851) r0 = openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) r1 = landlock_create_ruleset$auto(&(0x7f0000000000)={0xd1d, 0x3, 0x7}, 0x0, 0x10000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(r1, r1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000001000) semctl$auto(0x201, 0xfffffffffffffffa, 0x3, 0x0) keyctl$auto(0x2000000000000017, 0x3ff, 0x0, 0x0, 0x3) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0000, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/vm/mmap_min_addr\x00', 0x101302, 0x0) r3 = signalfd$auto(0xffffffff, 0x0, 0x8) socket(0x1d, 0x2, 0x6) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) bpf$auto(0x10000000, &(0x7f0000000300)=@bpf_attr_3={0x1, 0x7, 0x6, 0x0, 0x9, 0x4, 0x7, 0x9, 0x5, "1e9f189a142cb67e12f726e941d3c262", 0x0, 0x546, r2, 0x35, 0x7, 0x3, 0x4, 0x7, 0x9, 0x7, @attach_btf_obj_fd=r3, 0x3, 0x8, 0x9, 0x5, 0x80000000, r1, r0}, 0x7) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_proc_coredump_filter_operations_base(0xffffffffffffff9c, &(0x7f0000000140), 0x141002, 0x0) readv$auto(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x1}, 0x8) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x1000) io_uring_register$auto(0x2, 0x0, 0x0, 0x3) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0xa, 0x0) writev$auto(0x8000, &(0x7f0000000040)={0x0, 0x1000000000004}, 0x2bc) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x16, &(0x7f0000000040), 0x1) 635.32933ms ago: executing program 2 (id=766): r0 = socket(0x29, 0x2, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) set_mempolicy_home_node$auto(0x81c, 0xc5a, 0x2, 0xf4) r2 = syz_genetlink_get_family_id$auto_tipcv2(0x0, r1) sendmsg$auto_TIPC_NL_MEDIA_SET(r1, &(0x7f000000a4c0)={0x0, 0x0, &(0x7f000000a480)={&(0x7f0000009800)={0x18, r2, 0x1, 0x70bd29, 0x25dfdbff, {}, [@TIPC_NLA_MEDIA={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x4000}, 0x20000048) r3 = wait4$auto(0x0, &(0x7f0000000040)=0x9, 0x6, &(0x7f00000000c0)={{0xffffffff, 0x9}, {0x0, 0x5}, 0x6529, 0x0, 0x1000, 0x7fff, 0x1, 0x5, 0x8, 0x9, 0x8, 0x1, 0x3, 0x5, 0x40, 0x6}) waitid$auto(0x4, 0xffffffffffffffff, &(0x7f0000000240)={@siginfo_0_0={0x6, 0x3, 0x17, @_sigsys={&(0x7f0000000180)="9c0644f8029997c1b120f4381fc9b9562b03be9a05601177e78badbb95d38bda1d2cc1d20aed0bad3070860c0e1db65e68d1dde4fea768f0d1ae33e6dcd405546b95022915348a8df9ce879173d47aa03fae7ad0d32b4d56f4b3526d99aa54f1357b527abcc387905324b7a387d2c4f383d1a5a502a1d9f94750d96ed08e480d2fbb260fcf23a91895312ba5b8d8ee53c8f280608ee56feb17", 0x3, 0x100}}}, 0x3, &(0x7f00000002c0)={{0x2, 0x8}, {0x1000, 0x5}, 0x8001, 0x8, 0x5, 0x6, 0x3ff, 0xc48, 0x9, 0x6, 0x503, 0x80000001, 0x5, 0x9, 0x1, 0x4}) sendmsg$auto_TIPC_NL_KEY_FLUSH(r0, &(0x7f0000000580)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000540)={&(0x7f0000000380)={0x12c, r2, 0x10, 0x70bd27, 0x25dfdbfc, {}, [@TIPC_NLA_NODE={0x118, 0x6, 0x0, 0x1, [@typed={0x14, 0x1a, 0x0, 0x0, @ipv6=@loopback}, @nested={0xdd, 0x95, 0x0, 0x1, [@typed={0x8, 0x2b, 0x0, 0x0, @pid=r3}, @generic="499c08104054e588fde175c5cd97c36d1affaf0d7711d52b44f076c571728834f0a1dec8121874396a33e573354b50563db4c626297e79e3ba7782d7b5d7b5256094ada715efbba7148f786e0b3efdd03b9e6638f10c40b2968cba9fef8b115ef783ee2756c2531e2c7b2c4c5b291ff9185b166b274fbbe5961f1907a29b20c4e1e72f6c0addbc245ca42ea44ab44d5f4d754efcc9fa62827f19d8afb3d4e61178281c4dde7f967036abab281cf2085b9c242d14e48476351b87c2ba9921516219b7a0d244d496ab95d586e3a4ebabd701"]}, @nested={0x13, 0x8, 0x0, 0x1, [@generic="76d449bfed1ebef70813c61494ab49"]}, @typed={0xc, 0xc3, 0x0, 0x0, @u64=0x8}]}]}, 0x12c}, 0x1, 0x0, 0x0, 0x810}, 0x0) mmap$auto(0x0, 0x9, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x80002, 0x0) openat$auto_tracing_readme_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/README\x00', 0x80, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) 623.049837ms ago: executing program 1 (id=767): close_range$auto(0x2, 0x8, 0x0) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x88000, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) lseek$auto(0x3, 0x7ffffffffffffffd, 0x2) mmap$auto(0x0, 0x20009, 0x7fffffff, 0xeb1, 0x401, 0x8000) mknod$auto(&(0x7f0000000180)=':,\x00', 0xcb, 0xfffffffa) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r2, 0x0, 0x20) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3) r4 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) rename$auto(&(0x7f00000000c0)=':,\x00', &(0x7f0000000100)=':,\x00') ioctl$auto(r4, 0x4004556e, 0x1f) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_OVS_DP_CMD_NEW(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010026bd7020f8dbdf250100000008000200", @ANYRES32=0x4, @ANYBLOB="089b953395665200080200007f2676942ce030c3a0a4a5f48d8defb1308aca63bc4763f06049c336b0c35525b5b32d64219c80b8ac73c0a30c75b9061d98344592fb134759c40477662456dcdf27f0b6b39ec68075533052bb1f01b17bdef4164f933d1e3c27256237eb9a7c6fe3d350591dd5e93746ac23249bce1035a46265556fdec3353f5fb2af379eb364b1096c8bca0ab1d81e3c6c702a7856e24b526ea855bb9515c50a41b26dcab1d30d12", @ANYRES32=0x9, @ANYBLOB="0800070000010000"], 0x34}, 0x1, 0x0, 0x0, 0x801}, 0x80) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_GET_MSRS(r0, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [{0x198, 0x400, 0x9}]}) socket(0x2, 0x1, 0x106) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x802, 0x0) openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) socket(0xa, 0x1, 0x100) r7 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x100e42, 0x0) write$auto_sg_fops_sg(r7, &(0x7f0000000440)="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", 0x13a) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) 350.855369ms ago: executing program 2 (id=768): mmap$auto(0x40, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x59) ioctl$auto_XFS_IOC_FREESP64(0xffffffffffffffff, 0x40305825, &(0x7f00000001c0)={0x4, 0x0, 0x8b, 0x10001, 0x4a, 0xffffffffffffffff}) r1 = prctl$auto(0x23, 0x200000000000009, r0, 0x5, 0x0) r2 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000180), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) io_getevents$auto(0x8929, 0x81, 0x0, &(0x7f0000000100)={0x3, 0x6, 0x4, 0x8}, &(0x7f0000000140)={0xffffffffffffffff, 0x1}) socket$nl_generic(0x10, 0x3, 0x10) r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r5) ioctl$auto_KVM_GET_MSRS(r4, 0x4008ae89, &(0x7f00000000c0)={0xdd, 0x0, [{0x40000070, 0x400, 0x2}]}) sendmsg$auto_TIPC_NL_MON_PEER_GET(r3, &(0x7f0000006140)={0x0, 0x9e, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r2, @ANYBLOB="11072cb57000fedbdf25130010000c00098008000200", @ANYRES32=0x0, @ANYBLOB], 0x20}, 0x1, 0x0, 0x0, 0x4405}, 0x4c848) r6 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/afs/addr_prefs\x00', 0x102, 0x0) writev$auto(r6, &(0x7f0000000080)={&(0x7f00000000c0), 0x9}, 0x3) r7 = openat$auto_proc_pid_cmdline_ops_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/cmdline\x00', 0x2000, 0x0) read$auto_proc_pid_cmdline_ops_base(r7, 0x0, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, r1, 0x8000) socket(0x2b, 0x2, 0x0) mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) 329.316605ms ago: executing program 3 (id=769): prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={0x0}, 0x1, 0x0, 0x0, 0x8810}, 0x40) r1 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0) ioctl$auto_PPPIOCSMRU(r1, 0xc004743e, 0x0) ioctl$auto_PPPIOCSPASS(r1, 0x40107447, &(0x7f0000000040)={0x6, 0x0}) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) io_uring_setup$auto(0x2, 0x0) close_range$auto(0x2, 0xa, 0x0) mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x6, 0x0) r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000001bc0)='/dev/sequencer2\x00', 0x1, 0x0) ioctl$auto_SNDCTL_SEQ_OUTOFBAND(r2, 0x40085112, 0x0) ioprio_set$auto(0x2, 0x0, 0x208) mmap$auto(0x0, 0x2020009, 0x200003, 0xeb1, 0xfffffffffffffffa, 0x100000008000) r3 = socket(0x10, 0x2, 0x0) sendmsg$auto_IPVS_CMD_GET_SERVICE(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000500)=ANY=[@ANYRES16=0x0, @ANYBLOB="040026bd7000fcdbdf25", @ANYRES32, @ANYBLOB="1400bd00fc0000000000"], 0x119c}, 0x1, 0x0, 0x0, 0x90}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}, 0x1, 0x0, 0x0, 0x1000c000}, 0x40000) recvmmsg$auto(r3, &(0x7f0000000000)={{0x0, 0x4, &(0x7f0000000080)={0x0, 0x803}, 0x5, 0x0, 0x2, 0x8}, 0x800}, 0x10a, 0x8, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000800)='/sys/devices/virtual/ptp/ptp0/n_vclocks\x00', 0x2400, 0x0) read$auto(r4, 0x0, 0x9) openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f000000e680), 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000840)=ANY=[@ANYBLOB="fb040000", @ANYRES16=0x0, @ANYBLOB="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"], 0x414}, 0x1, 0x0, 0x0, 0x60000010}, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/kernel/ns_last_pid\x00', 0x68000, 0x0) 0s ago: executing program 0 (id=770): r0 = socket(0x2, 0x3, 0xa) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb5, 0x401, 0x300000000000) socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/usb/usbmon/9t\x00', 0x0, 0x0) pread64$auto(r2, 0x0, 0x59, 0x7) r3 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0xa101, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/adsp1\x00', 0x1, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000007c0), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_TUNNEL_INFO_GET(r4, &(0x7f0000000f80)={0x0, 0x0, &(0x7f0000000f40)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000", @ANYRES16=r5, @ANYBLOB="050725bd7000fbdbdf2509"], 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x880) openat$auto_split_huge_pages_fops_huge_memory(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0) syz_genetlink_get_family_id$auto_nfc(&(0x7f0000000200), r0) sendfile$auto(0xffffffffffffffff, r1, &(0x7f00000003c0)=0x100, 0x9) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/virtual/block/nbd13/queue/io_timeout\x00', 0x2062, 0x0) sendmsg$auto_NFC_CMD_ENABLE_SE(0xffffffffffffffff, &(0x7f0000001480)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000001440)={&(0x7f00000014c0)=ANY=[@ANYRES8=r3, @ANYRES32=r0, @ANYBLOB="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"], 0x1090}, 0x1, 0x0, 0x0, 0xc054}, 0xc000) kexec_load$auto(0x5, 0x2, &(0x7f0000000240)={@kbuf=&(0x7f0000000280)="95b22447050693adf87ca71e65cd8ab0e6d84691ea27e9827ce63abe2c73a1c0d190e78657412255f71a7dfea0df143a1c759aeba02cedeb35f09dc0a605f4018ce6fa001b89df87e5e2624bbc2cf6e6e4afa625647cc45f10471c41c02a64d07faef0335ace99f0392a3a31c14da9acb7cb3a11addffe4156b280383297d32e8633968527848e3bb01535bfd8cd26ba1acf0c94715bf8ccc6c27a2bbc12de9270f5e6a79ef8969561f36f7d552cb9d97d418df76191f67bda6e5de9bc95cb6b43467ac415675e3284e8b9ea305aabef91fa9ae921c05c2eb38f5758b1efebd3c7fddd49966568", 0x800c000, 0x4800c000, 0x800c000}, 0x4) epoll_create$auto(0x8) kernel console output (not intermixed with test programs): tack_lvl+0x16c/0x1f0 [ 176.611659][ T7159] should_fail_ex+0x512/0x640 [ 176.611717][ T7159] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 176.611769][ T7159] should_failslab+0xc2/0x120 [ 176.611798][ T7159] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 176.611846][ T7159] ? kvm_arch_vcpu_create+0x4a1/0xb20 [ 176.611892][ T7159] kvm_arch_vcpu_create+0x4a1/0xb20 [ 176.611941][ T7159] kvm_vm_ioctl+0xf6f/0x3dd0 [ 176.612006][ T7159] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 176.612076][ T7159] ? kasan_quarantine_put+0x10a/0x240 [ 176.612130][ T7159] ? lockdep_hardirqs_on+0x7c/0x110 [ 176.612179][ T7159] ? find_held_lock+0x2b/0x80 [ 176.612214][ T7159] ? tomoyo_path_number_perm+0x295/0x580 [ 176.612258][ T7159] ? tomoyo_path_number_perm+0x18d/0x580 [ 176.612298][ T7159] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 176.612334][ T7159] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 176.612384][ T7159] ? do_vfs_ioctl+0x523/0x1a60 [ 176.612421][ T7159] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 176.612483][ T7159] ? find_held_lock+0x2b/0x80 [ 176.612513][ T7159] ? hook_file_ioctl_common+0x145/0x410 [ 176.612556][ T7159] ? __fget_files+0x20e/0x3c0 [ 176.612604][ T7159] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 176.612654][ T7159] __x64_sys_ioctl+0x18e/0x210 [ 176.612693][ T7159] do_syscall_64+0xcd/0x490 [ 176.612742][ T7159] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 176.612774][ T7159] RIP: 0033:0x7f24d1b8e929 [ 176.612797][ T7159] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 176.612828][ T7159] RSP: 002b:00007f24d2ad1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 176.612856][ T7159] RAX: ffffffffffffffda RBX: 00007f24d1db5fa0 RCX: 00007f24d1b8e929 [ 176.612876][ T7159] RDX: 0000000000000002 RSI: 000000000000ae41 RDI: 0000000000000003 [ 176.612895][ T7159] RBP: 00007f24d1c10b39 R08: 0000000000000000 R09: 0000000000000000 [ 176.612913][ T7159] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 176.612932][ T7159] R13: 0000000000000000 R14: 00007f24d1db5fa0 R15: 00007ffceabeb2b8 [ 176.612971][ T7159] [ 176.612982][ T7159] kvm: failed to allocate vcpu's emulator [ 176.735186][ T7160] sg_write: data in/out 1624916139/266 bytes for SCSI command 0x7f-- guessing data in; [ 176.735186][ T7160] program syz.1.281 not setting count and/or reply_len properly [ 177.740455][ T7187] ======================================================= [ 177.740455][ T7187] WARNING: The mand mount option has been deprecated and [ 177.740455][ T7187] and is ignored by this kernel. Remove the mand [ 177.740455][ T7187] option from the mount to silence this warning. [ 177.740455][ T7187] ======================================================= [ 177.851441][ T7142] kexec: Could not allocate control_code_buffer [ 178.859620][ T7206] ima: policy update failed [ 178.903195][ T30] audit: type=1802 audit(1752301930.887:2): pid=7206 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.293" res=0 errno=0 [ 179.237030][ T7218] netlink: 24 bytes leftover after parsing attributes in process `syz.0.297'. [ 179.261968][ T7218] FAULT_INJECTION: forcing a failure. [ 179.261968][ T7218] name failslab, interval 1, probability 0, space 0, times 0 [ 179.275200][ T7218] CPU: 1 UID: 0 PID: 7218 Comm: syz.0.297 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) [ 179.275241][ T7218] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 179.275259][ T7218] Call Trace: [ 179.275269][ T7218] [ 179.275280][ T7218] dump_stack_lvl+0x16c/0x1f0 [ 179.275330][ T7218] should_fail_ex+0x512/0x640 [ 179.275372][ T7218] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 179.275426][ T7218] should_failslab+0xc2/0x120 [ 179.275454][ T7218] __kmalloc_cache_noprof+0x6a/0x3e0 [ 179.275494][ T7218] ? kvm_arch_vcpu_create+0x375/0xb20 [ 179.275537][ T7218] kvm_arch_vcpu_create+0x375/0xb20 [ 179.275582][ T7218] kvm_vm_ioctl+0xf6f/0x3dd0 [ 179.275651][ T7218] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 179.275717][ T7218] ? kasan_quarantine_put+0x10a/0x240 [ 179.275759][ T7218] ? lockdep_hardirqs_on+0x7c/0x110 [ 179.275804][ T7218] ? find_held_lock+0x2b/0x80 [ 179.275835][ T7218] ? tomoyo_path_number_perm+0x295/0x580 [ 179.275876][ T7218] ? tomoyo_path_number_perm+0x18d/0x580 [ 179.275913][ T7218] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 179.275951][ T7218] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 179.275997][ T7218] ? do_vfs_ioctl+0x523/0x1a60 [ 179.276032][ T7218] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 179.276088][ T7218] ? find_held_lock+0x2b/0x80 [ 179.276118][ T7218] ? hook_file_ioctl_common+0x145/0x410 [ 179.276157][ T7218] ? __fget_files+0x20e/0x3c0 [ 179.276202][ T7218] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 179.276249][ T7218] __x64_sys_ioctl+0x18e/0x210 [ 179.276286][ T7218] do_syscall_64+0xcd/0x490 [ 179.276332][ T7218] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 179.276361][ T7218] RIP: 0033:0x7f32a8b8e929 [ 179.276383][ T7218] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 179.276411][ T7218] RSP: 002b:00007f32a9952038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 179.276437][ T7218] RAX: ffffffffffffffda RBX: 00007f32a8db5fa0 RCX: 00007f32a8b8e929 [ 179.276456][ T7218] RDX: 0000000000000002 RSI: 000000000000ae41 RDI: 0000000000000003 [ 179.276473][ T7218] RBP: 00007f32a8c10b39 R08: 0000000000000000 R09: 0000000000000000 [ 179.276490][ T7218] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 179.276507][ T7218] R13: 0000000000000000 R14: 00007f32a8db5fa0 R15: 00007ffd0b553028 [ 179.276562][ T7218] [ 179.534027][ T7224] sg_write: data in/out 1624916139/266 bytes for SCSI command 0x7f-- guessing data in; [ 179.534027][ T7224] program syz.0.297 not setting count and/or reply_len properly [ 181.185189][ T7222] kexec: Could not allocate control_code_buffer [ 181.977831][ T7282] netlink: 24 bytes leftover after parsing attributes in process `syz.1.310'. [ 182.033866][ T7285] Invalid ELF header magic: != ELF [ 182.049130][ T7282] FAULT_INJECTION: forcing a failure. [ 182.049130][ T7282] name failslab, interval 1, probability 0, space 0, times 0 [ 182.083036][ T7282] CPU: 1 UID: 0 PID: 7282 Comm: syz.1.310 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) [ 182.083075][ T7282] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 182.083096][ T7282] Call Trace: [ 182.083106][ T7282] [ 182.083117][ T7282] dump_stack_lvl+0x16c/0x1f0 [ 182.083165][ T7282] should_fail_ex+0x512/0x640 [ 182.083207][ T7282] ? fs_reclaim_acquire+0xae/0x150 [ 182.083244][ T7282] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 182.083285][ T7282] should_failslab+0xc2/0x120 [ 182.083314][ T7282] __kmalloc_noprof+0xd2/0x510 [ 182.083367][ T7282] tomoyo_realpath_from_path+0xc2/0x6e0 [ 182.083425][ T7282] tomoyo_check_open_permission+0x2ab/0x3c0 [ 182.083463][ T7282] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 182.083538][ T7282] ? do_raw_spin_lock+0x12c/0x2b0 [ 182.083598][ T7282] tomoyo_file_open+0x6b/0x90 [ 182.083645][ T7282] security_file_open+0x84/0x1e0 [ 182.083685][ T7282] do_dentry_open+0x596/0x1c10 [ 182.083740][ T7282] vfs_open+0x82/0x3f0 [ 182.083776][ T7282] path_openat+0x1de4/0x2cb0 [ 182.083831][ T7282] ? __pfx_path_openat+0x10/0x10 [ 182.083876][ T7282] ? __lock_acquire+0xb8a/0x1c90 [ 182.083920][ T7282] do_filp_open+0x20b/0x470 [ 182.083963][ T7282] ? __pfx_do_filp_open+0x10/0x10 [ 182.084033][ T7282] ? alloc_fd+0x471/0x7d0 [ 182.084082][ T7282] do_sys_openat2+0x11b/0x1d0 [ 182.084113][ T7282] ? __pfx_do_sys_openat2+0x10/0x10 [ 182.084147][ T7282] ? find_held_lock+0x2b/0x80 [ 182.084187][ T7282] __x64_sys_openat+0x174/0x210 [ 182.084220][ T7282] ? __pfx___x64_sys_openat+0x10/0x10 [ 182.084268][ T7282] do_syscall_64+0xcd/0x490 [ 182.084315][ T7282] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 182.084343][ T7282] RIP: 0033:0x7f24d1b8e929 [ 182.084365][ T7282] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 182.084392][ T7282] RSP: 002b:00007f24d2ad1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 182.084430][ T7282] RAX: ffffffffffffffda RBX: 00007f24d1db5fa0 RCX: 00007f24d1b8e929 [ 182.084449][ T7282] RDX: 0000000000000802 RSI: 00002000000010c0 RDI: ffffffffffffff9c [ 182.084467][ T7282] RBP: 00007f24d1c10b39 R08: 0000000000000000 R09: 0000000000000000 [ 182.084484][ T7282] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 182.084500][ T7282] R13: 0000000000000000 R14: 00007f24d1db5fa0 R15: 00007ffceabeb2b8 [ 182.084536][ T7282] [ 182.084546][ T7282] ERROR: Out of memory at tomoyo_realpath_from_path. [ 182.254873][ T7288] sg_write: data in/out 1624916139/266 bytes for SCSI command 0x7f-- guessing data in; [ 182.254873][ T7288] program syz.1.310 not setting count and/or reply_len properly [ 184.412496][ T7337] netlink: 24 bytes leftover after parsing attributes in process `syz.1.321'. [ 184.429512][ T7337] FAULT_INJECTION: forcing a failure. [ 184.429512][ T7337] name failslab, interval 1, probability 0, space 0, times 0 [ 184.503802][ T7337] CPU: 1 UID: 0 PID: 7337 Comm: syz.1.321 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) [ 184.503844][ T7337] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 184.503863][ T7337] Call Trace: [ 184.503873][ T7337] [ 184.503884][ T7337] dump_stack_lvl+0x16c/0x1f0 [ 184.503931][ T7337] should_fail_ex+0x512/0x640 [ 184.503971][ T7337] ? fs_reclaim_acquire+0xae/0x150 [ 184.504009][ T7337] should_failslab+0xc2/0x120 [ 184.504036][ T7337] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 184.504082][ T7337] ? security_inode_alloc+0x3b/0x2b0 [ 184.504119][ T7337] security_inode_alloc+0x3b/0x2b0 [ 184.504150][ T7337] inode_init_always_gfp+0xce4/0x1030 [ 184.504184][ T7337] alloc_inode+0x86/0x240 [ 184.504207][ T7337] new_inode+0x22/0x1c0 [ 184.504232][ T7337] __debugfs_create_file+0x11c/0x6b0 [ 184.504263][ T7337] debugfs_create_file_full+0x41/0x60 [ 184.504292][ T7337] kvm_arch_create_vcpu_debugfs+0x34/0x160 [ 184.504320][ T7337] kvm_vm_ioctl+0x3154/0x3dd0 [ 184.504362][ T7337] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 184.504408][ T7337] ? kasan_quarantine_put+0x10a/0x240 [ 184.504437][ T7337] ? lockdep_hardirqs_on+0x7c/0x110 [ 184.504476][ T7337] ? find_held_lock+0x2b/0x80 [ 184.504499][ T7337] ? tomoyo_path_number_perm+0x295/0x580 [ 184.504527][ T7337] ? tomoyo_path_number_perm+0x18d/0x580 [ 184.504553][ T7337] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 184.504577][ T7337] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 184.504610][ T7337] ? do_vfs_ioctl+0x523/0x1a60 [ 184.504643][ T7337] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 184.504700][ T7337] ? find_held_lock+0x2b/0x80 [ 184.504728][ T7337] ? hook_file_ioctl_common+0x145/0x410 [ 184.504777][ T7337] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 184.504825][ T7337] __x64_sys_ioctl+0x18e/0x210 [ 184.504863][ T7337] do_syscall_64+0xcd/0x490 [ 184.504909][ T7337] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 184.504939][ T7337] RIP: 0033:0x7f24d1b8e929 [ 184.504961][ T7337] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 184.504989][ T7337] RSP: 002b:00007f24d2ad1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 184.505016][ T7337] RAX: ffffffffffffffda RBX: 00007f24d1db5fa0 RCX: 00007f24d1b8e929 [ 184.505035][ T7337] RDX: 0000000000000002 RSI: 000000000000ae41 RDI: 0000000000000003 [ 184.505052][ T7337] RBP: 00007f24d1c10b39 R08: 0000000000000000 R09: 0000000000000000 [ 184.505069][ T7337] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 184.505086][ T7337] R13: 0000000000000000 R14: 00007f24d1db5fa0 R15: 00007ffceabeb2b8 [ 184.505123][ T7337] [ 184.538925][ T7337] debugfs: out of free dentries, can not create file 'guest_mode' [ 184.666225][ T7344] sg_write: data in/out 1624916139/266 bytes for SCSI command 0x7f-- guessing data in; [ 184.666225][ T7344] program syz.1.321 not setting count and/or reply_len properly [ 185.397501][ T7305] kexec: Could not allocate control_code_buffer [ 186.262625][ T7374] Invalid ELF header magic: != ELF [ 186.629018][ T7390] netlink: 24 bytes leftover after parsing attributes in process `syz.1.334'. [ 186.662211][ T7390] FAULT_INJECTION: forcing a failure. [ 186.662211][ T7390] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 186.686018][ T7390] CPU: 1 UID: 0 PID: 7390 Comm: syz.1.334 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) [ 186.686068][ T7390] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 186.686087][ T7390] Call Trace: [ 186.686097][ T7390] [ 186.686108][ T7390] dump_stack_lvl+0x16c/0x1f0 [ 186.686160][ T7390] should_fail_ex+0x512/0x640 [ 186.686211][ T7390] should_fail_alloc_page+0xe7/0x130 [ 186.686244][ T7390] prepare_alloc_pages+0x3c2/0x610 [ 186.686287][ T7390] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 186.686342][ T7390] ? find_held_lock+0x2b/0x80 [ 186.686375][ T7390] ? is_bpf_text_address+0x8a/0x1a0 [ 186.686417][ T7390] ? bpf_ksym_find+0x124/0x1c0 [ 186.686453][ T7390] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 186.686499][ T7390] ? is_bpf_text_address+0x94/0x1a0 [ 186.686543][ T7390] ? __lock_acquire+0x622/0x1c90 [ 186.686584][ T7390] ? __kernel_text_address+0xd/0x40 [ 186.686611][ T7390] ? unwind_get_return_address+0x59/0xa0 [ 186.686677][ T7390] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 186.686726][ T7390] ? policy_nodemask+0xea/0x4e0 [ 186.686759][ T7390] alloc_pages_mpol+0x1fb/0x550 [ 186.686790][ T7390] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 186.686817][ T7390] ? kasan_save_stack+0x33/0x60 [ 186.686862][ T7390] ? __kasan_kmalloc+0xaa/0xb0 [ 186.686904][ T7390] ? __get_vm_area_node+0x101/0x330 [ 186.686947][ T7390] alloc_pages_noprof+0x131/0x390 [ 186.686978][ T7390] get_free_pages_noprof+0x10/0xb0 [ 186.687009][ T7390] kasan_populate_vmalloc+0x89/0x1f0 [ 186.687067][ T7390] alloc_vmap_area+0x959/0x29c0 [ 186.687116][ T7390] ? __pfx_alloc_vmap_area+0x10/0x10 [ 186.687161][ T7390] __get_vm_area_node+0x1ca/0x330 [ 186.687204][ T7390] __vmalloc_node_range_noprof+0x271/0x14b0 [ 186.687246][ T7390] ? fpu_alloc_guest_fpstate+0x24/0x450 [ 186.687284][ T7390] ? local_lock_release+0x99/0x140 [ 186.687320][ T7390] ? fpu_alloc_guest_fpstate+0x24/0x450 [ 186.687359][ T7390] ? rcu_read_unlock+0x17/0x60 [ 186.687390][ T7390] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 186.687435][ T7390] ? __memcg_slab_post_alloc_hook+0x4a0/0x960 [ 186.687476][ T7390] ? fpu_alloc_guest_fpstate+0x24/0x450 [ 186.687508][ T7390] __vmalloc_node_noprof+0xad/0xf0 [ 186.687546][ T7390] ? fpu_alloc_guest_fpstate+0x24/0x450 [ 186.687583][ T7390] fpu_alloc_guest_fpstate+0x24/0x450 [ 186.687619][ T7390] kvm_arch_vcpu_create+0x54e/0xb20 [ 186.687667][ T7390] kvm_vm_ioctl+0xf6f/0x3dd0 [ 186.687731][ T7390] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 186.687800][ T7390] ? kasan_quarantine_put+0x10a/0x240 [ 186.687845][ T7390] ? lockdep_hardirqs_on+0x7c/0x110 [ 186.687893][ T7390] ? find_held_lock+0x2b/0x80 [ 186.687927][ T7390] ? tomoyo_path_number_perm+0x295/0x580 [ 186.687970][ T7390] ? tomoyo_path_number_perm+0x18d/0x580 [ 186.688029][ T7390] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 186.688089][ T7390] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 186.688139][ T7390] ? do_vfs_ioctl+0x523/0x1a60 [ 186.688176][ T7390] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 186.688236][ T7390] ? find_held_lock+0x2b/0x80 [ 186.688267][ T7390] ? hook_file_ioctl_common+0x145/0x410 [ 186.688307][ T7390] ? __fget_files+0x20e/0x3c0 [ 186.688355][ T7390] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 186.688408][ T7390] __x64_sys_ioctl+0x18e/0x210 [ 186.688447][ T7390] do_syscall_64+0xcd/0x490 [ 186.688497][ T7390] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 186.688529][ T7390] RIP: 0033:0x7f24d1b8e929 [ 186.688553][ T7390] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 186.688582][ T7390] RSP: 002b:00007f24d2ad1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 186.688612][ T7390] RAX: ffffffffffffffda RBX: 00007f24d1db5fa0 RCX: 00007f24d1b8e929 [ 186.688633][ T7390] RDX: 0000000000000002 RSI: 000000000000ae41 RDI: 0000000000000003 [ 186.688652][ T7390] RBP: 00007f24d1c10b39 R08: 0000000000000000 R09: 0000000000000000 [ 186.688670][ T7390] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 186.688688][ T7390] R13: 0000000000000000 R14: 00007f24d1db5fa0 R15: 00007ffceabeb2b8 [ 186.688727][ T7390] [ 186.688760][ T7390] syz.1.334: vmalloc error: size 896, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null) [ 186.960994][ T7401] sg_write: data in/out 1624916139/266 bytes for SCSI command 0x7f-- guessing data in; [ 186.960994][ T7401] program syz.1.334 not setting count and/or reply_len properly [ 187.160309][ T7390] ,cpuset=/,mems_allowed=0-1 [ 187.175375][ T7390] CPU: 0 UID: 0 PID: 7390 Comm: syz.1.334 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) [ 187.175413][ T7390] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 187.175431][ T7390] Call Trace: [ 187.175439][ T7390] [ 187.175450][ T7390] dump_stack_lvl+0x16c/0x1f0 [ 187.175499][ T7390] warn_alloc+0x248/0x3a0 [ 187.175543][ T7390] ? __pfx_warn_alloc+0x10/0x10 [ 187.175589][ T7390] ? kfree+0x2b4/0x4d0 [ 187.175633][ T7390] ? __get_vm_area_node+0x208/0x330 [ 187.175675][ T7390] __vmalloc_node_range_noprof+0xb2d/0x14b0 [ 187.175719][ T7390] ? local_lock_release+0x99/0x140 [ 187.175753][ T7390] ? fpu_alloc_guest_fpstate+0x24/0x450 [ 187.175790][ T7390] ? rcu_read_unlock+0x17/0x60 [ 187.175819][ T7390] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 187.175868][ T7390] ? __memcg_slab_post_alloc_hook+0x4a0/0x960 [ 187.175911][ T7390] ? fpu_alloc_guest_fpstate+0x24/0x450 [ 187.175944][ T7390] __vmalloc_node_noprof+0xad/0xf0 [ 187.175980][ T7390] ? fpu_alloc_guest_fpstate+0x24/0x450 [ 187.176020][ T7390] fpu_alloc_guest_fpstate+0x24/0x450 [ 187.176054][ T7390] kvm_arch_vcpu_create+0x54e/0xb20 [ 187.176099][ T7390] kvm_vm_ioctl+0xf6f/0x3dd0 [ 187.176160][ T7390] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 187.176223][ T7390] ? kasan_quarantine_put+0x10a/0x240 [ 187.176264][ T7390] ? lockdep_hardirqs_on+0x7c/0x110 [ 187.176309][ T7390] ? find_held_lock+0x2b/0x80 [ 187.176340][ T7390] ? tomoyo_path_number_perm+0x295/0x580 [ 187.176379][ T7390] ? tomoyo_path_number_perm+0x18d/0x580 [ 187.176416][ T7390] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 187.176449][ T7390] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 187.176495][ T7390] ? do_vfs_ioctl+0x523/0x1a60 [ 187.176530][ T7390] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 187.176588][ T7390] ? find_held_lock+0x2b/0x80 [ 187.176617][ T7390] ? hook_file_ioctl_common+0x145/0x410 [ 187.176656][ T7390] ? __fget_files+0x20e/0x3c0 [ 187.176700][ T7390] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 187.176748][ T7390] __x64_sys_ioctl+0x18e/0x210 [ 187.176785][ T7390] do_syscall_64+0xcd/0x490 [ 187.176830][ T7390] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 187.176860][ T7390] RIP: 0033:0x7f24d1b8e929 [ 187.176883][ T7390] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 187.176911][ T7390] RSP: 002b:00007f24d2ad1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 187.176939][ T7390] RAX: ffffffffffffffda RBX: 00007f24d1db5fa0 RCX: 00007f24d1b8e929 [ 187.176957][ T7390] RDX: 0000000000000002 RSI: 000000000000ae41 RDI: 0000000000000003 [ 187.176974][ T7390] RBP: 00007f24d1c10b39 R08: 0000000000000000 R09: 0000000000000000 [ 187.176991][ T7390] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 187.177008][ T7390] R13: 0000000000000000 R14: 00007f24d1db5fa0 R15: 00007ffceabeb2b8 [ 187.177055][ T7390] [ 187.496270][ T7390] Mem-Info: [ 187.541193][ T7390] active_anon:7434 inactive_anon:0 isolated_anon:0 [ 187.541193][ T7390] active_file:16884 inactive_file:40224 isolated_file:0 [ 187.541193][ T7390] unevictable:768 dirty:40 writeback:0 [ 187.541193][ T7390] slab_reclaimable:10215 slab_unreclaimable:93810 [ 187.541193][ T7390] mapped:24621 shmem:1361 pagetables:1088 [ 187.541193][ T7390] sec_pagetables:0 bounce:0 [ 187.541193][ T7390] kernel_misc_reclaimable:0 [ 187.541193][ T7390] free:1308557 free_pcp:31562 free_cma:0 [ 187.599072][ T7390] Node 0 active_anon:30536kB inactive_anon:0kB active_file:67536kB inactive_file:160696kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:99484kB dirty:160kB writeback:0kB shmem:4908kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11372kB pagetables:4084kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 187.671577][ T7390] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:168kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 187.744902][ T7390] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 187.774753][ T7390] lowmem_reserve[]: 0 2480 2482 2482 2482 [ 187.782203][ T7390] Node 0 DMA32 free:1334572kB boost:0kB min:34076kB low:42592kB high:51108kB reserved_highatomic:0KB free_highatomic:0KB active_anon:37704kB inactive_anon:0kB active_file:67536kB inactive_file:159376kB unevictable:1536kB writepending:164kB present:3129332kB managed:2540344kB mlocked:0kB bounce:0kB free_pcp:87880kB local_pcp:53576kB free_cma:0kB [ 187.815862][ T7390] lowmem_reserve[]: 0 0 1 1 1 [ 187.820707][ T7390] Node 0 Normal free:8kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:0kB inactive_file:1320kB unevictable:0kB writepending:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:16kB local_pcp:8kB free_cma:0kB [ 187.893020][ T7390] lowmem_reserve[]: 0 0 0 0 0 [ 187.898907][ T7390] Node 1 Normal free:3888560kB boost:0kB min:55804kB low:69752kB high:83700kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:27064kB local_pcp:15272kB free_cma:0kB [ 187.939317][ T7390] lowmem_reserve[]: 0 0 0 0 0 [ 187.944195][ T7390] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 187.969762][ T7390] Node 0 DMA32: 912*4kB (UME) 713*8kB (UME) 782*16kB (UME) 701*32kB (UME) 457*64kB (UME) 196*128kB (UME) 126*256kB (UME) 59*512kB (UME) 40*1024kB (UM) 13*2048kB (UM) 270*4096kB (UM) = 1334600kB [ 188.034189][ T7390] Node 0 Normal: 0*4kB 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB [ 188.089989][ T7390] Node 1 Normal: 212*4kB (UME) 50*8kB (UME) 49*16kB (UME) 106*32kB (UME) 32*64kB (UME) 9*128kB (UME) 6*256kB (UME) 3*512kB (UME) 0*1024kB 3*2048kB (UME) 945*4096kB (M) = 3888560kB [ 188.192613][ T7390] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 188.386619][ T7390] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 188.409781][ T7390] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 188.518401][ T7390] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 188.547953][ T7390] 58703 total pagecache pages [ 188.562594][ T7390] 0 pages in swap cache [ 188.579113][ T7390] Free swap = 124996kB [ 188.588987][ T7390] Total swap = 124996kB [ 188.601391][ T7390] 2097051 pages RAM [ 188.609786][ T7390] 0 pages HighMem/MovableOnly [ 188.623993][ T7390] 429987 pages reserved [ 188.641288][ T7390] 0 pages cma reserved [ 188.656074][ T7390] kvm: failed to allocate vcpu's fpu [ 190.057683][ T7411] kexec: Could not allocate control_code_buffer [ 190.325866][ T7461] FAULT_INJECTION: forcing a failure. [ 190.325866][ T7461] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 190.342658][ T7461] CPU: 1 UID: 0 PID: 7461 Comm: syz.2.352 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) [ 190.342695][ T7461] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 190.342713][ T7461] Call Trace: [ 190.342722][ T7461] [ 190.342732][ T7461] dump_stack_lvl+0x16c/0x1f0 [ 190.342786][ T7461] should_fail_ex+0x512/0x640 [ 190.342834][ T7461] _copy_from_user+0x2e/0xd0 [ 190.342878][ T7461] copy_msghdr_from_user+0x98/0x160 [ 190.342922][ T7461] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 190.342981][ T7461] ___sys_sendmsg+0xfe/0x1d0 [ 190.343025][ T7461] ? __pfx____sys_sendmsg+0x10/0x10 [ 190.343064][ T7461] ? __lock_acquire+0x622/0x1c90 [ 190.343145][ T7461] __sys_sendmsg+0x16d/0x220 [ 190.343189][ T7461] ? __pfx___sys_sendmsg+0x10/0x10 [ 190.343254][ T7461] do_syscall_64+0xcd/0x490 [ 190.343300][ T7461] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 190.343328][ T7461] RIP: 0033:0x7fdb24f8e929 [ 190.343350][ T7461] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 190.343378][ T7461] RSP: 002b:00007fdb25d0e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 190.343405][ T7461] RAX: ffffffffffffffda RBX: 00007fdb251b5fa0 RCX: 00007fdb24f8e929 [ 190.343423][ T7461] RDX: 0000000004000890 RSI: 00002000000002c0 RDI: 0000000000000003 [ 190.343440][ T7461] RBP: 00007fdb25d0e090 R08: 0000000000000000 R09: 0000000000000000 [ 190.343456][ T7461] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 190.343472][ T7461] R13: 0000000000000000 R14: 00007fdb251b5fa0 R15: 00007ffc31220928 [ 190.343507][ T7461] [ 190.595358][ T7459] netlink: 24 bytes leftover after parsing attributes in process `syz.0.351'. [ 190.606795][ T7459] FAULT_INJECTION: forcing a failure. [ 190.606795][ T7459] name failslab, interval 1, probability 0, space 0, times 0 [ 190.619588][ T7459] CPU: 1 UID: 0 PID: 7459 Comm: syz.0.351 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) [ 190.619636][ T7459] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 190.619651][ T7459] Call Trace: [ 190.619658][ T7459] [ 190.619666][ T7459] dump_stack_lvl+0x16c/0x1f0 [ 190.619706][ T7459] should_fail_ex+0x512/0x640 [ 190.619741][ T7459] ? fs_reclaim_acquire+0xae/0x150 [ 190.619771][ T7459] ? tomoyo_supervisor+0x45b/0x13b0 [ 190.619813][ T7459] should_failslab+0xc2/0x120 [ 190.619836][ T7459] __kmalloc_noprof+0xd2/0x510 [ 190.619869][ T7459] ? tomoyo_profile+0x47/0x60 [ 190.619912][ T7459] tomoyo_supervisor+0x45b/0x13b0 [ 190.619955][ T7459] ? __pfx_tomoyo_supervisor+0x10/0x10 [ 190.619992][ T7459] ? __pfx_vsnprintf+0x10/0x10 [ 190.620038][ T7459] ? tomoyo_encode2+0x329/0x3e0 [ 190.620075][ T7459] ? tomoyo_check_path_number_acl+0xa6/0x2f0 [ 190.620113][ T7459] tomoyo_path_number_perm+0x448/0x580 [ 190.620143][ T7459] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 190.620202][ T7459] ? find_held_lock+0x2b/0x80 [ 190.620226][ T7459] ? hook_file_ioctl_common+0x145/0x410 [ 190.620259][ T7459] ? __fget_files+0x20e/0x3c0 [ 190.620296][ T7459] security_file_ioctl+0x9b/0x240 [ 190.620327][ T7459] __x64_sys_ioctl+0xb7/0x210 [ 190.620357][ T7459] do_syscall_64+0xcd/0x490 [ 190.620395][ T7459] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 190.620420][ T7459] RIP: 0033:0x7f32a8b8e929 [ 190.620438][ T7459] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 190.620462][ T7459] RSP: 002b:00007f32a9952038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 190.620483][ T7459] RAX: ffffffffffffffda RBX: 00007f32a8db5fa0 RCX: 00007f32a8b8e929 [ 190.620500][ T7459] RDX: 0000000000000002 RSI: 000000000000ae41 RDI: 0000000000000003 [ 190.620514][ T7459] RBP: 00007f32a8c10b39 R08: 0000000000000000 R09: 0000000000000000 [ 190.620528][ T7459] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 190.620542][ T7459] R13: 0000000000000000 R14: 00007f32a8db5fa0 R15: 00007ffd0b553028 [ 190.620572][ T7459] [ 190.910200][ T7459] sg_write: data in/out 1624916139/266 bytes for SCSI command 0x7f-- guessing data in; [ 190.910200][ T7459] program syz.0.351 not setting count and/or reply_len properly [ 192.991450][ T7515] FAULT_INJECTION: forcing a failure. [ 192.991450][ T7515] name failslab, interval 1, probability 0, space 0, times 0 [ 193.006031][ T7515] CPU: 1 UID: 0 PID: 7515 Comm: syz.3.365 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) [ 193.006074][ T7515] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 193.006092][ T7515] Call Trace: [ 193.006114][ T7515] [ 193.006124][ T7515] dump_stack_lvl+0x16c/0x1f0 [ 193.006171][ T7515] should_fail_ex+0x512/0x640 [ 193.006213][ T7515] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 193.006262][ T7515] should_failslab+0xc2/0x120 [ 193.006290][ T7515] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 193.006333][ T7515] ? kasan_save_stack+0x42/0x60 [ 193.006374][ T7515] ? kasan_save_stack+0x33/0x60 [ 193.006416][ T7515] ? __d_alloc+0x31/0xaa0 [ 193.006465][ T7515] __d_alloc+0x31/0xaa0 [ 193.006513][ T7515] d_alloc+0x4a/0x1e0 [ 193.006559][ T7515] d_alloc_parallel+0xe3/0x12e0 [ 193.006599][ T7515] ? debug_object_activate+0x2ec/0x4c0 [ 193.006634][ T7515] ? number+0x9aa/0xc70 [ 193.006664][ T7515] ? __pfx_d_alloc_parallel+0x10/0x10 [ 193.006701][ T7515] ? lockdep_init_map_type+0x5c/0x280 [ 193.006746][ T7515] ? lockdep_init_map_type+0x5c/0x280 [ 193.006794][ T7515] __lookup_slow+0x193/0x460 [ 193.006829][ T7515] ? __pfx___lookup_slow+0x10/0x10 [ 193.006874][ T7515] ? pcpu_balance_free+0x720/0xaf0 [ 193.006923][ T7515] ? pcpu_balance_free+0x720/0xaf0 [ 193.006983][ T7515] ? d_lookup+0xe7/0x190 [ 193.007025][ T7515] lookup_noperm+0xe1/0x110 [ 193.007055][ T7515] start_creating.part.0+0x15a/0x3e0 [ 193.007093][ T7515] debugfs_create_dir+0x6c/0x5f0 [ 193.007128][ T7515] kvm_vm_ioctl+0x3125/0x3dd0 [ 193.007181][ T7515] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 193.007239][ T7515] ? kasan_quarantine_put+0x10a/0x240 [ 193.007275][ T7515] ? lockdep_hardirqs_on+0x7c/0x110 [ 193.007315][ T7515] ? find_held_lock+0x2b/0x80 [ 193.007342][ T7515] ? tomoyo_path_number_perm+0x295/0x580 [ 193.007377][ T7515] ? tomoyo_path_number_perm+0x18d/0x580 [ 193.007407][ T7515] ? do_raw_spin_unlock+0xe4/0x230 [ 193.007431][ T7515] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 193.007461][ T7515] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 193.007502][ T7515] ? do_vfs_ioctl+0x523/0x1a60 [ 193.007532][ T7515] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 193.007582][ T7515] ? find_held_lock+0x2b/0x80 [ 193.007608][ T7515] ? hook_file_ioctl_common+0x145/0x410 [ 193.007650][ T7515] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 193.007692][ T7515] __x64_sys_ioctl+0x18e/0x210 [ 193.007724][ T7515] do_syscall_64+0xcd/0x490 [ 193.007764][ T7515] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 193.007790][ T7515] RIP: 0033:0x7fcf7578e929 [ 193.007810][ T7515] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 193.007841][ T7515] RSP: 002b:00007fcf76586038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 193.007866][ T7515] RAX: ffffffffffffffda RBX: 00007fcf759b5fa0 RCX: 00007fcf7578e929 [ 193.007883][ T7515] RDX: 0000000000000002 RSI: 000000000000ae41 RDI: 0000000000000003 [ 193.007898][ T7515] RBP: 00007fcf75810b39 R08: 0000000000000000 R09: 0000000000000000 [ 193.007914][ T7515] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 193.007929][ T7515] R13: 0000000000000000 R14: 00007fcf759b5fa0 R15: 00007ffed6b1f1f8 [ 193.007961][ T7515] [ 193.356210][ T7515] sg_write: data in/out 1624916139/266 bytes for SCSI command 0x7f-- guessing data in; [ 193.356210][ T7515] program syz.3.365 not setting count and/or reply_len properly [ 193.975806][ T7488] kexec: Could not allocate control_code_buffer [ 194.293889][ T7535] FAULT_INJECTION: forcing a failure. [ 194.293889][ T7535] name failslab, interval 1, probability 0, space 0, times 0 [ 194.379065][ T7535] CPU: 1 UID: 0 PID: 7535 Comm: syz.1.371 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) [ 194.379104][ T7535] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 194.379120][ T7535] Call Trace: [ 194.379129][ T7535] [ 194.379140][ T7535] dump_stack_lvl+0x16c/0x1f0 [ 194.379187][ T7535] should_fail_ex+0x512/0x640 [ 194.379229][ T7535] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 194.379271][ T7535] should_failslab+0xc2/0x120 [ 194.379290][ T7535] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 194.379321][ T7535] ? __alloc_skb+0x2b2/0x380 [ 194.379352][ T7535] __alloc_skb+0x2b2/0x380 [ 194.379379][ T7535] ? __pfx___alloc_skb+0x10/0x10 [ 194.379409][ T7535] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 194.379434][ T7535] netlink_alloc_large_skb+0x69/0x130 [ 194.379456][ T7535] netlink_sendmsg+0x6a1/0xdd0 [ 194.379481][ T7535] ? __pfx_netlink_sendmsg+0x10/0x10 [ 194.379511][ T7535] ____sys_sendmsg+0xa95/0xc70 [ 194.379538][ T7535] ? copy_msghdr_from_user+0x10a/0x160 [ 194.379586][ T7535] ? __pfx_____sys_sendmsg+0x10/0x10 [ 194.379625][ T7535] ___sys_sendmsg+0x134/0x1d0 [ 194.379661][ T7535] ? __pfx____sys_sendmsg+0x10/0x10 [ 194.379693][ T7535] ? __lock_acquire+0x622/0x1c90 [ 194.379769][ T7535] __sys_sendmsg+0x16d/0x220 [ 194.379805][ T7535] ? __pfx___sys_sendmsg+0x10/0x10 [ 194.379858][ T7535] do_syscall_64+0xcd/0x490 [ 194.379895][ T7535] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 194.379919][ T7535] RIP: 0033:0x7f24d1b8e929 [ 194.379936][ T7535] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 194.379959][ T7535] RSP: 002b:00007f24d2ad1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 194.379981][ T7535] RAX: ffffffffffffffda RBX: 00007f24d1db5fa0 RCX: 00007f24d1b8e929 [ 194.379997][ T7535] RDX: 0000000004000890 RSI: 00002000000002c0 RDI: 0000000000000003 [ 194.380011][ T7535] RBP: 00007f24d2ad1090 R08: 0000000000000000 R09: 0000000000000000 [ 194.380025][ T7535] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 194.380039][ T7535] R13: 0000000000000000 R14: 00007f24d1db5fa0 R15: 00007ffceabeb2b8 [ 194.380068][ T7535] [ 195.865762][ T7563] FAULT_INJECTION: forcing a failure. [ 195.865762][ T7563] name failslab, interval 1, probability 0, space 0, times 0 [ 195.878678][ T7563] CPU: 1 UID: 0 PID: 7563 Comm: syz.2.377 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) [ 195.878719][ T7563] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 195.878737][ T7563] Call Trace: [ 195.878746][ T7563] [ 195.878757][ T7563] dump_stack_lvl+0x16c/0x1f0 [ 195.878805][ T7563] should_fail_ex+0x512/0x640 [ 195.878846][ T7563] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 195.878895][ T7563] should_failslab+0xc2/0x120 [ 195.878923][ T7563] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 195.878966][ T7563] ? kasan_save_stack+0x42/0x60 [ 195.879007][ T7563] ? kasan_save_stack+0x33/0x60 [ 195.879048][ T7563] ? __d_alloc+0x31/0xaa0 [ 195.879098][ T7563] __d_alloc+0x31/0xaa0 [ 195.879148][ T7563] d_alloc+0x4a/0x1e0 [ 195.879194][ T7563] d_alloc_parallel+0xe3/0x12e0 [ 195.879235][ T7563] ? debug_object_activate+0x2ec/0x4c0 [ 195.879269][ T7563] ? number+0x9aa/0xc70 [ 195.879298][ T7563] ? __pfx_d_alloc_parallel+0x10/0x10 [ 195.879335][ T7563] ? lockdep_init_map_type+0x5c/0x280 [ 195.879380][ T7563] ? lockdep_init_map_type+0x5c/0x280 [ 195.879428][ T7563] __lookup_slow+0x193/0x460 [ 195.879461][ T7563] ? __pfx___lookup_slow+0x10/0x10 [ 195.879498][ T7563] ? pcpu_balance_free+0x720/0xaf0 [ 195.879552][ T7563] ? pcpu_balance_free+0x720/0xaf0 [ 195.879628][ T7563] ? d_lookup+0xe7/0x190 [ 195.879675][ T7563] lookup_noperm+0xe1/0x110 [ 195.879715][ T7563] start_creating.part.0+0x15a/0x3e0 [ 195.879767][ T7563] debugfs_create_dir+0x6c/0x5f0 [ 195.879815][ T7563] kvm_vm_ioctl+0x3125/0x3dd0 [ 195.879886][ T7563] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 195.879965][ T7563] ? kasan_quarantine_put+0x10a/0x240 [ 195.880014][ T7563] ? lockdep_hardirqs_on+0x7c/0x110 [ 195.880068][ T7563] ? find_held_lock+0x2b/0x80 [ 195.880105][ T7563] ? tomoyo_path_number_perm+0x295/0x580 [ 195.880152][ T7563] ? tomoyo_path_number_perm+0x18d/0x580 [ 195.880193][ T7563] ? do_raw_spin_unlock+0xe4/0x230 [ 195.880225][ T7563] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 195.880266][ T7563] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 195.880322][ T7563] ? do_vfs_ioctl+0x523/0x1a60 [ 195.880361][ T7563] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 195.880430][ T7563] ? find_held_lock+0x2b/0x80 [ 195.880472][ T7563] ? hook_file_ioctl_common+0x145/0x410 [ 195.880529][ T7563] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 195.880586][ T7563] __x64_sys_ioctl+0x18e/0x210 [ 195.880639][ T7563] do_syscall_64+0xcd/0x490 [ 195.880700][ T7563] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 195.880734][ T7563] RIP: 0033:0x7fdb24f8e929 [ 195.880760][ T7563] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 195.880806][ T7563] RSP: 002b:00007fdb25d0e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 195.880837][ T7563] RAX: ffffffffffffffda RBX: 00007fdb251b5fa0 RCX: 00007fdb24f8e929 [ 195.880859][ T7563] RDX: 0000000000000002 RSI: 000000000000ae41 RDI: 0000000000000003 [ 195.880879][ T7563] RBP: 00007fdb25010b39 R08: 0000000000000000 R09: 0000000000000000 [ 195.880900][ T7563] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 195.880919][ T7563] R13: 0000000000000000 R14: 00007fdb251b5fa0 R15: 00007ffc31220928 [ 195.880959][ T7563] [ 196.587595][ T7563] sg_write: data in/out 1624916139/266 bytes for SCSI command 0x7f-- guessing data in; [ 196.587595][ T7563] program syz.2.377 not setting count and/or reply_len properly [ 198.360360][ T7561] kexec: Could not allocate control_code_buffer [ 199.053797][ T7612] FAULT_INJECTION: forcing a failure. [ 199.053797][ T7612] name failslab, interval 1, probability 0, space 0, times 0 [ 199.084191][ T7612] CPU: 1 UID: 0 PID: 7612 Comm: syz.2.392 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) [ 199.084235][ T7612] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 199.084254][ T7612] Call Trace: [ 199.084264][ T7612] [ 199.084276][ T7612] dump_stack_lvl+0x16c/0x1f0 [ 199.084327][ T7612] should_fail_ex+0x512/0x640 [ 199.084371][ T7612] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 199.084442][ T7612] should_failslab+0xc2/0x120 [ 199.084473][ T7612] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 199.084522][ T7612] ? kasan_save_stack+0x42/0x60 [ 199.084569][ T7612] ? kasan_save_stack+0x33/0x60 [ 199.084615][ T7612] ? __d_alloc+0x31/0xaa0 [ 199.084672][ T7612] __d_alloc+0x31/0xaa0 [ 199.084728][ T7612] d_alloc+0x4a/0x1e0 [ 199.084781][ T7612] d_alloc_parallel+0xe3/0x12e0 [ 199.084826][ T7612] ? debug_object_activate+0x2ec/0x4c0 [ 199.084865][ T7612] ? number+0x9aa/0xc70 [ 199.084898][ T7612] ? __pfx_d_alloc_parallel+0x10/0x10 [ 199.084942][ T7612] ? lockdep_init_map_type+0x5c/0x280 [ 199.084992][ T7612] ? lockdep_init_map_type+0x5c/0x280 [ 199.085047][ T7612] __lookup_slow+0x193/0x460 [ 199.085084][ T7612] ? __pfx___lookup_slow+0x10/0x10 [ 199.085135][ T7612] ? pcpu_balance_free+0x720/0xaf0 [ 199.085191][ T7612] ? pcpu_balance_free+0x720/0xaf0 [ 199.085238][ T7612] ? d_lookup+0xe7/0x190 [ 199.085282][ T7612] lookup_noperm+0xe1/0x110 [ 199.085330][ T7612] start_creating.part.0+0x15a/0x3e0 [ 199.085376][ T7612] debugfs_create_dir+0x6c/0x5f0 [ 199.085419][ T7612] kvm_vm_ioctl+0x3125/0x3dd0 [ 199.085482][ T7612] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 199.085552][ T7612] ? kasan_quarantine_put+0x10a/0x240 [ 199.085595][ T7612] ? lockdep_hardirqs_on+0x7c/0x110 [ 199.085653][ T7612] ? find_held_lock+0x2b/0x80 [ 199.085684][ T7612] ? tomoyo_path_number_perm+0x295/0x580 [ 199.085724][ T7612] ? tomoyo_path_number_perm+0x18d/0x580 [ 199.085758][ T7612] ? do_raw_spin_unlock+0xe4/0x230 [ 199.085785][ T7612] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 199.085820][ T7612] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 199.085866][ T7612] ? do_vfs_ioctl+0x523/0x1a60 [ 199.085899][ T7612] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 199.085960][ T7612] ? find_held_lock+0x2b/0x80 [ 199.085991][ T7612] ? hook_file_ioctl_common+0x145/0x410 [ 199.086039][ T7612] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 199.086089][ T7612] __x64_sys_ioctl+0x18e/0x210 [ 199.086134][ T7612] do_syscall_64+0xcd/0x490 [ 199.086181][ T7612] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 199.086211][ T7612] RIP: 0033:0x7fdb24f8e929 [ 199.086234][ T7612] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 199.086263][ T7612] RSP: 002b:00007fdb25d0e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 199.086292][ T7612] RAX: ffffffffffffffda RBX: 00007fdb251b5fa0 RCX: 00007fdb24f8e929 [ 199.086311][ T7612] RDX: 0000000000000002 RSI: 000000000000ae41 RDI: 0000000000000003 [ 199.086328][ T7612] RBP: 00007fdb25010b39 R08: 0000000000000000 R09: 0000000000000000 [ 199.086346][ T7612] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 199.086363][ T7612] R13: 0000000000000000 R14: 00007fdb251b5fa0 R15: 00007ffc31220928 [ 199.086399][ T7612] [ 199.405630][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 199.412273][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 199.462315][ T7612] sg_write: data in/out 1624916139/266 bytes for SCSI command 0x7f-- guessing data in; [ 199.462315][ T7612] program syz.2.392 not setting count and/or reply_len properly [ 201.025071][ T7655] netlink: 48 bytes leftover after parsing attributes in process `syz.0.401'. [ 202.001439][ T7627] kexec: Could not allocate control_code_buffer [ 203.018491][ T7676] FAULT_INJECTION: forcing a failure. [ 203.018491][ T7676] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 203.018522][ T7676] CPU: 1 UID: 0 PID: 7676 Comm: syz.2.407 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) [ 203.018549][ T7676] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 203.018561][ T7676] Call Trace: [ 203.018567][ T7676] [ 203.018575][ T7676] dump_stack_lvl+0x16c/0x1f0 [ 203.018610][ T7676] should_fail_ex+0x512/0x640 [ 203.018650][ T7676] _copy_from_iter+0x29f/0x16f0 [ 203.018685][ T7676] ? __alloc_skb+0x200/0x380 [ 203.018719][ T7676] ? __pfx__copy_from_iter+0x10/0x10 [ 203.018754][ T7676] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 203.018784][ T7676] netlink_sendmsg+0x829/0xdd0 [ 203.018809][ T7676] ? __pfx_netlink_sendmsg+0x10/0x10 [ 203.018840][ T7676] ____sys_sendmsg+0xa95/0xc70 [ 203.018864][ T7676] ? copy_msghdr_from_user+0x10a/0x160 [ 203.018897][ T7676] ? __pfx_____sys_sendmsg+0x10/0x10 [ 203.018931][ T7676] ___sys_sendmsg+0x134/0x1d0 [ 203.018962][ T7676] ? __pfx____sys_sendmsg+0x10/0x10 [ 203.018990][ T7676] ? __lock_acquire+0x622/0x1c90 [ 203.019048][ T7676] __sys_sendmsg+0x16d/0x220 [ 203.019078][ T7676] ? __pfx___sys_sendmsg+0x10/0x10 [ 203.019125][ T7676] do_syscall_64+0xcd/0x490 [ 203.019165][ T7676] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 203.019187][ T7676] RIP: 0033:0x7fdb24f8e929 [ 203.019203][ T7676] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 203.019223][ T7676] RSP: 002b:00007fdb25d0e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 203.019242][ T7676] RAX: ffffffffffffffda RBX: 00007fdb251b5fa0 RCX: 00007fdb24f8e929 [ 203.019257][ T7676] RDX: 0000000004000890 RSI: 00002000000002c0 RDI: 0000000000000003 [ 203.019270][ T7676] RBP: 00007fdb25d0e090 R08: 0000000000000000 R09: 0000000000000000 [ 203.019282][ T7676] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 203.019295][ T7676] R13: 0000000000000000 R14: 00007fdb251b5fa0 R15: 00007ffc31220928 [ 203.019321][ T7676] [ 204.016923][ T7689] FAULT_INJECTION: forcing a failure. [ 204.016923][ T7689] name failslab, interval 1, probability 0, space 0, times 0 [ 204.065488][ T7689] CPU: 0 UID: 0 PID: 7689 Comm: syz.3.410 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) [ 204.065544][ T7689] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 204.065557][ T7689] Call Trace: [ 204.065564][ T7689] [ 204.065572][ T7689] dump_stack_lvl+0x16c/0x1f0 [ 204.065608][ T7689] should_fail_ex+0x512/0x640 [ 204.065640][ T7689] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 204.065676][ T7689] should_failslab+0xc2/0x120 [ 204.065696][ T7689] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 204.065733][ T7689] ? lockdep_hardirqs_on+0x7c/0x110 [ 204.065765][ T7689] ? sk_prot_alloc+0x60/0x2a0 [ 204.065787][ T7689] ? rcu_preempt_deferred_qs_irqrestore+0x4f5/0xbc0 [ 204.065824][ T7689] sk_prot_alloc+0x60/0x2a0 [ 204.065847][ T7689] sk_alloc+0x36/0xc20 [ 204.065877][ T7689] inet_create+0x3a1/0x1090 [ 204.065907][ T7689] ? inet_create+0x93/0x1090 [ 204.065943][ T7689] __sock_create+0x338/0x8d0 [ 204.065972][ T7689] __sys_socket+0x14d/0x260 [ 204.065998][ T7689] ? __pfx___sys_socket+0x10/0x10 [ 204.066022][ T7689] ? xfd_validate_state+0x61/0x180 [ 204.066058][ T7689] __x64_sys_socket+0x72/0xb0 [ 204.066082][ T7689] ? lockdep_hardirqs_on+0x7c/0x110 [ 204.066112][ T7689] do_syscall_64+0xcd/0x490 [ 204.066146][ T7689] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 204.066168][ T7689] RIP: 0033:0x7fcf7578e929 [ 204.066184][ T7689] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 204.066205][ T7689] RSP: 002b:00007fcf76586038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 204.066225][ T7689] RAX: ffffffffffffffda RBX: 00007fcf759b5fa0 RCX: 00007fcf7578e929 [ 204.066239][ T7689] RDX: 0000000000000106 RSI: 0000000000000001 RDI: 0000000000000002 [ 204.066252][ T7689] RBP: 00007fcf75810b39 R08: 0000000000000000 R09: 0000000000000000 [ 204.066265][ T7689] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 204.066277][ T7689] R13: 0000000000000000 R14: 00007fcf759b5fa0 R15: 00007ffed6b1f1f8 [ 204.066304][ T7689] [ 204.311041][ T7689] sg_write: data in/out 1624916139/266 bytes for SCSI command 0x7f-- guessing data in; [ 204.311041][ T7689] program syz.3.410 not setting count and/or reply_len properly [ 206.004955][ T7697] kexec: Could not allocate control_code_buffer [ 206.534582][ T7742] FAULT_INJECTION: forcing a failure. [ 206.534582][ T7742] name failslab, interval 1, probability 0, space 0, times 0 [ 206.552926][ T7742] CPU: 1 UID: 0 PID: 7742 Comm: syz.3.425 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) [ 206.552963][ T7742] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 206.552979][ T7742] Call Trace: [ 206.552988][ T7742] [ 206.552999][ T7742] dump_stack_lvl+0x16c/0x1f0 [ 206.553044][ T7742] should_fail_ex+0x512/0x640 [ 206.553090][ T7742] should_failslab+0xc2/0x120 [ 206.553118][ T7742] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 206.553162][ T7742] ? skb_clone+0x190/0x3f0 [ 206.553210][ T7742] skb_clone+0x190/0x3f0 [ 206.553254][ T7742] netlink_deliver_tap+0xabd/0xd30 [ 206.553309][ T7742] netlink_unicast+0x62f/0x850 [ 206.553342][ T7742] ? __pfx_netlink_unicast+0x10/0x10 [ 206.553380][ T7742] netlink_sendmsg+0x8d1/0xdd0 [ 206.553416][ T7742] ? __pfx_netlink_sendmsg+0x10/0x10 [ 206.553458][ T7742] ____sys_sendmsg+0xa95/0xc70 [ 206.553491][ T7742] ? copy_msghdr_from_user+0x10a/0x160 [ 206.553551][ T7742] ? __pfx_____sys_sendmsg+0x10/0x10 [ 206.553613][ T7742] ___sys_sendmsg+0x134/0x1d0 [ 206.553657][ T7742] ? __pfx____sys_sendmsg+0x10/0x10 [ 206.553695][ T7742] ? __lock_acquire+0x622/0x1c90 [ 206.553779][ T7742] __sys_sendmsg+0x16d/0x220 [ 206.553826][ T7742] ? __pfx___sys_sendmsg+0x10/0x10 [ 206.553891][ T7742] do_syscall_64+0xcd/0x490 [ 206.553941][ T7742] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 206.553970][ T7742] RIP: 0033:0x7fcf7578e929 [ 206.553991][ T7742] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 206.554019][ T7742] RSP: 002b:00007fcf76586038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 206.554044][ T7742] RAX: ffffffffffffffda RBX: 00007fcf759b5fa0 RCX: 00007fcf7578e929 [ 206.554062][ T7742] RDX: 0000000004000890 RSI: 00002000000002c0 RDI: 0000000000000003 [ 206.554079][ T7742] RBP: 00007fcf76586090 R08: 0000000000000000 R09: 0000000000000000 [ 206.554096][ T7742] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 206.554113][ T7742] R13: 0000000000000000 R14: 00007fcf759b5fa0 R15: 00007ffed6b1f1f8 [ 206.554149][ T7742] [ 207.135371][ T7747] FAULT_INJECTION: forcing a failure. [ 207.135371][ T7747] name failslab, interval 1, probability 0, space 0, times 0 [ 207.150645][ T7747] CPU: 0 UID: 0 PID: 7747 Comm: syz.1.426 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) [ 207.150677][ T7747] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 207.150692][ T7747] Call Trace: [ 207.150699][ T7747] [ 207.150708][ T7747] dump_stack_lvl+0x16c/0x1f0 [ 207.150768][ T7747] should_fail_ex+0x512/0x640 [ 207.150814][ T7747] ? fs_reclaim_acquire+0xae/0x150 [ 207.150841][ T7747] ? tomoyo_encode2+0x100/0x3e0 [ 207.150869][ T7747] should_failslab+0xc2/0x120 [ 207.150889][ T7747] __kmalloc_noprof+0xd2/0x510 [ 207.150928][ T7747] tomoyo_encode2+0x100/0x3e0 [ 207.150961][ T7747] tomoyo_encode+0x29/0x50 [ 207.150988][ T7747] tomoyo_realpath_from_path+0x18f/0x6e0 [ 207.151022][ T7747] ? tomoyo_profile+0x47/0x60 [ 207.151057][ T7747] tomoyo_path_number_perm+0x245/0x580 [ 207.151081][ T7747] ? tomoyo_path_number_perm+0x237/0x580 [ 207.151106][ T7747] ? do_raw_spin_unlock+0xe4/0x230 [ 207.151127][ T7747] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 207.151179][ T7747] ? find_held_lock+0x2b/0x80 [ 207.151201][ T7747] ? hook_file_ioctl_common+0x145/0x410 [ 207.151230][ T7747] ? __fget_files+0x20e/0x3c0 [ 207.151264][ T7747] security_file_ioctl+0x9b/0x240 [ 207.151291][ T7747] __x64_sys_ioctl+0xb7/0x210 [ 207.151318][ T7747] do_syscall_64+0xcd/0x490 [ 207.151353][ T7747] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 207.151375][ T7747] RIP: 0033:0x7f24d1b8e929 [ 207.151391][ T7747] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 207.151412][ T7747] RSP: 002b:00007f24d2ad1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 207.151432][ T7747] RAX: ffffffffffffffda RBX: 00007f24d1db5fa0 RCX: 00007f24d1b8e929 [ 207.151446][ T7747] RDX: 0000200000000040 RSI: 00000000c008ae88 RDI: 0000000000000003 [ 207.151460][ T7747] RBP: 00007f24d1c10b39 R08: 0000000000000000 R09: 0000000000000000 [ 207.151473][ T7747] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 207.151485][ T7747] R13: 0000000000000000 R14: 00007f24d1db5fa0 R15: 00007ffceabeb2b8 [ 207.151512][ T7747] [ 207.151529][ T7747] ERROR: Out of memory at tomoyo_realpath_from_path. [ 207.401516][ T7747] sg_write: data in/out 1624916139/266 bytes for SCSI command 0x7f-- guessing data in; [ 207.401516][ T7747] program syz.1.426 not setting count and/or reply_len properly [ 209.797110][ T7761] kexec: Could not allocate control_code_buffer [ 210.041003][ T7798] FAULT_INJECTION: forcing a failure. [ 210.041003][ T7798] name failslab, interval 1, probability 0, space 0, times 0 [ 210.056115][ T7798] CPU: 1 UID: 0 PID: 7798 Comm: syz.3.442 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) [ 210.056153][ T7798] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 210.056170][ T7798] Call Trace: [ 210.056178][ T7798] [ 210.056190][ T7798] dump_stack_lvl+0x16c/0x1f0 [ 210.056237][ T7798] should_fail_ex+0x512/0x640 [ 210.056289][ T7798] ? fs_reclaim_acquire+0xae/0x150 [ 210.056326][ T7798] ? tomoyo_init_log+0x1385/0x2140 [ 210.056363][ T7798] should_failslab+0xc2/0x120 [ 210.056391][ T7798] __kmalloc_noprof+0xd2/0x510 [ 210.056431][ T7798] ? __pfx_from_kuid+0x10/0x10 [ 210.056484][ T7798] tomoyo_init_log+0x1385/0x2140 [ 210.056543][ T7798] ? __pfx_tomoyo_init_log+0x10/0x10 [ 210.056581][ T7798] ? tomoyo_profile+0x47/0x60 [ 210.056625][ T7798] ? tomoyo_domain_quota_is_ok+0x2f6/0x5a0 [ 210.056665][ T7798] tomoyo_supervisor+0x302/0x13b0 [ 210.056717][ T7798] ? __pfx_tomoyo_supervisor+0x10/0x10 [ 210.056761][ T7798] ? __pfx_vsnprintf+0x10/0x10 [ 210.056818][ T7798] ? tomoyo_encode2+0x329/0x3e0 [ 210.056862][ T7798] ? tomoyo_check_path_number_acl+0xa6/0x2f0 [ 210.056909][ T7798] tomoyo_path_number_perm+0x448/0x580 [ 210.056944][ T7798] ? do_raw_spin_unlock+0xe4/0x230 [ 210.056971][ T7798] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 210.057043][ T7798] ? find_held_lock+0x2b/0x80 [ 210.057072][ T7798] ? hook_file_ioctl_common+0x145/0x410 [ 210.057112][ T7798] ? __fget_files+0x20e/0x3c0 [ 210.057158][ T7798] security_file_ioctl+0x9b/0x240 [ 210.057196][ T7798] __x64_sys_ioctl+0xb7/0x210 [ 210.057234][ T7798] do_syscall_64+0xcd/0x490 [ 210.057289][ T7798] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 210.057319][ T7798] RIP: 0033:0x7fcf7578e929 [ 210.057342][ T7798] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 210.057370][ T7798] RSP: 002b:00007fcf76586038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 210.057397][ T7798] RAX: ffffffffffffffda RBX: 00007fcf759b5fa0 RCX: 00007fcf7578e929 [ 210.057417][ T7798] RDX: 0000200000000040 RSI: 00000000c008ae88 RDI: 0000000000000003 [ 210.057435][ T7798] RBP: 00007fcf75810b39 R08: 0000000000000000 R09: 0000000000000000 [ 210.057452][ T7798] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 210.057469][ T7798] R13: 0000000000000000 R14: 00007fcf759b5fa0 R15: 00007ffed6b1f1f8 [ 210.057506][ T7798] [ 210.062676][ T7798] sg_write: data in/out 1624916139/266 bytes for SCSI command 0x7f-- guessing data in; [ 210.062676][ T7798] program syz.3.442 not setting count and/or reply_len properly [ 210.540869][ T7809] FAULT_INJECTION: forcing a failure. [ 210.540869][ T7809] name failslab, interval 1, probability 0, space 0, times 0 [ 210.617879][ T7809] CPU: 1 UID: 0 PID: 7809 Comm: syz.0.445 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) [ 210.617916][ T7809] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 210.617933][ T7809] Call Trace: [ 210.617942][ T7809] [ 210.617952][ T7809] dump_stack_lvl+0x16c/0x1f0 [ 210.617998][ T7809] should_fail_ex+0x512/0x640 [ 210.618039][ T7809] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 210.618080][ T7809] should_failslab+0xc2/0x120 [ 210.618107][ T7809] __kmalloc_cache_noprof+0x6a/0x3e0 [ 210.618143][ T7809] ? genl_start+0x1e8/0x980 [ 210.618180][ T7809] genl_start+0x1e8/0x980 [ 210.618216][ T7809] __netlink_dump_start+0x60e/0x990 [ 210.618250][ T7809] genl_family_rcv_msg_dumpit+0x1e2/0x2e0 [ 210.618288][ T7809] ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10 [ 210.618334][ T7809] ? __pfx_genl_start+0x10/0x10 [ 210.618364][ T7809] ? __pfx_genl_dumpit+0x10/0x10 [ 210.618393][ T7809] ? __pfx_genl_done+0x10/0x10 [ 210.618427][ T7809] ? bpf_lsm_capable+0x9/0x10 [ 210.618460][ T7809] ? security_capable+0x7e/0x260 [ 210.618489][ T7809] ? ns_capable+0xd7/0x110 [ 210.618522][ T7809] genl_rcv_msg+0x46e/0x800 [ 210.618567][ T7809] ? __pfx_genl_rcv_msg+0x10/0x10 [ 210.618602][ T7809] ? __pfx_nl80211_dump_mpp+0x10/0x10 [ 210.618653][ T7809] netlink_rcv_skb+0x155/0x420 [ 210.618681][ T7809] ? __pfx_genl_rcv_msg+0x10/0x10 [ 210.618716][ T7809] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 210.618761][ T7809] ? netlink_deliver_tap+0x1ae/0xd30 [ 210.618813][ T7809] genl_rcv+0x28/0x40 [ 210.618841][ T7809] netlink_unicast+0x58d/0x850 [ 210.618879][ T7809] ? __pfx_netlink_unicast+0x10/0x10 [ 210.618929][ T7809] netlink_sendmsg+0x8d1/0xdd0 [ 210.618963][ T7809] ? __pfx_netlink_sendmsg+0x10/0x10 [ 210.619006][ T7809] ____sys_sendmsg+0xa95/0xc70 [ 210.619039][ T7809] ? copy_msghdr_from_user+0x10a/0x160 [ 210.619081][ T7809] ? __pfx_____sys_sendmsg+0x10/0x10 [ 210.619128][ T7809] ___sys_sendmsg+0x134/0x1d0 [ 210.619172][ T7809] ? __pfx____sys_sendmsg+0x10/0x10 [ 210.619210][ T7809] ? __lock_acquire+0x622/0x1c90 [ 210.619294][ T7809] __sys_sendmsg+0x16d/0x220 [ 210.619336][ T7809] ? __pfx___sys_sendmsg+0x10/0x10 [ 210.619401][ T7809] do_syscall_64+0xcd/0x490 [ 210.619447][ T7809] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 210.619475][ T7809] RIP: 0033:0x7f32a8b8e929 [ 210.619495][ T7809] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 210.619522][ T7809] RSP: 002b:00007f32a9952038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 210.619552][ T7809] RAX: ffffffffffffffda RBX: 00007f32a8db5fa0 RCX: 00007f32a8b8e929 [ 210.619575][ T7809] RDX: 0000000004000890 RSI: 00002000000002c0 RDI: 0000000000000003 [ 210.619593][ T7809] RBP: 00007f32a9952090 R08: 0000000000000000 R09: 0000000000000000 [ 210.619628][ T7809] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 210.619648][ T7809] R13: 0000000000000000 R14: 00007f32a8db5fa0 R15: 00007ffd0b553028 [ 210.619691][ T7809] [ 211.233283][ T7815] netlink: 28 bytes leftover after parsing attributes in process `syz.0.447'. [ 212.563633][ T7850] FAULT_INJECTION: forcing a failure. [ 212.563633][ T7850] name failslab, interval 1, probability 0, space 0, times 0 [ 212.609683][ T7850] CPU: 1 UID: 0 PID: 7850 Comm: syz.1.455 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) [ 212.609734][ T7850] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 212.609756][ T7850] Call Trace: [ 212.609767][ T7850] [ 212.609779][ T7850] dump_stack_lvl+0x16c/0x1f0 [ 212.609837][ T7850] should_fail_ex+0x512/0x640 [ 212.609888][ T7850] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 212.609947][ T7850] should_failslab+0xc2/0x120 [ 212.609981][ T7850] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 212.610035][ T7850] ? alloc_inode+0x61/0x240 [ 212.610084][ T7850] ? __pfx_debugfs_alloc_inode+0x10/0x10 [ 212.610126][ T7850] alloc_inode+0x61/0x240 [ 212.610162][ T7850] new_inode+0x22/0x1c0 [ 212.610202][ T7850] __debugfs_create_file+0x11c/0x6b0 [ 212.610253][ T7850] debugfs_create_file_full+0x41/0x60 [ 212.610304][ T7850] kvm_arch_create_vcpu_debugfs+0x34/0x160 [ 212.610352][ T7850] kvm_vm_ioctl+0x3154/0x3dd0 [ 212.610429][ T7850] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 212.610509][ T7850] ? kasan_quarantine_put+0x10a/0x240 [ 212.610559][ T7850] ? lockdep_hardirqs_on+0x7c/0x110 [ 212.610613][ T7850] ? find_held_lock+0x2b/0x80 [ 212.610650][ T7850] ? tomoyo_path_number_perm+0x295/0x580 [ 212.610699][ T7850] ? tomoyo_path_number_perm+0x18d/0x580 [ 212.610751][ T7850] ? do_raw_spin_unlock+0xe4/0x230 [ 212.610798][ T7850] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 212.610835][ T7850] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 212.610885][ T7850] ? do_vfs_ioctl+0x523/0x1a60 [ 212.610922][ T7850] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 212.610984][ T7850] ? find_held_lock+0x2b/0x80 [ 212.611017][ T7850] ? hook_file_ioctl_common+0x145/0x410 [ 212.611074][ T7850] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 212.611127][ T7850] __x64_sys_ioctl+0x18e/0x210 [ 212.611167][ T7850] do_syscall_64+0xcd/0x490 [ 212.611217][ T7850] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 212.611249][ T7850] RIP: 0033:0x7f24d1b8e929 [ 212.611273][ T7850] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 212.611303][ T7850] RSP: 002b:00007f24d2ad1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 212.611333][ T7850] RAX: ffffffffffffffda RBX: 00007f24d1db5fa0 RCX: 00007f24d1b8e929 [ 212.611353][ T7850] RDX: 0000000000000002 RSI: 000000000000ae41 RDI: 0000000000000003 [ 212.611371][ T7850] RBP: 00007f24d1c10b39 R08: 0000000000000000 R09: 0000000000000000 [ 212.611389][ T7850] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 212.611406][ T7850] R13: 0000000000000000 R14: 00007f24d1db5fa0 R15: 00007ffceabeb2b8 [ 212.611444][ T7850] [ 212.612346][ T7850] debugfs: out of free dentries, can not create file 'guest_mode' [ 213.033472][ T7850] sg_write: data in/out 1624916139/266 bytes for SCSI command 0x7f-- guessing data in; [ 213.033472][ T7850] program syz.1.455 not setting count and/or reply_len properly [ 213.681964][ T7845] kexec: Could not allocate control_code_buffer [ 213.832480][ T7872] FAULT_INJECTION: forcing a failure. [ 213.832480][ T7872] name failslab, interval 1, probability 0, space 0, times 0 [ 213.873717][ T7872] CPU: 1 UID: 0 PID: 7872 Comm: syz.0.462 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) [ 213.873756][ T7872] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 213.873772][ T7872] Call Trace: [ 213.873781][ T7872] [ 213.873791][ T7872] dump_stack_lvl+0x16c/0x1f0 [ 213.873838][ T7872] should_fail_ex+0x512/0x640 [ 213.873879][ T7872] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 213.873926][ T7872] should_failslab+0xc2/0x120 [ 213.873954][ T7872] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 213.874000][ T7872] ? netlink_rcv_skb+0x155/0x420 [ 213.874027][ T7872] ? genl_rcv+0x28/0x40 [ 213.874054][ T7872] ? __alloc_skb+0x2b2/0x380 [ 213.874098][ T7872] __alloc_skb+0x2b2/0x380 [ 213.874138][ T7872] ? __pfx___alloc_skb+0x10/0x10 [ 213.874191][ T7872] netlink_dump+0x192/0xd00 [ 213.874241][ T7872] ? __pfx_netlink_dump+0x10/0x10 [ 213.874299][ T7872] ? __asan_memset+0x23/0x50 [ 213.874337][ T7872] ? genl_start+0x67f/0x980 [ 213.874373][ T7872] __netlink_dump_start+0x6d6/0x990 [ 213.874406][ T7872] genl_family_rcv_msg_dumpit+0x1e2/0x2e0 [ 213.874445][ T7872] ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10 [ 213.874492][ T7872] ? __pfx_genl_start+0x10/0x10 [ 213.874521][ T7872] ? __pfx_genl_dumpit+0x10/0x10 [ 213.874551][ T7872] ? __pfx_genl_done+0x10/0x10 [ 213.874585][ T7872] ? bpf_lsm_capable+0x9/0x10 [ 213.874619][ T7872] ? security_capable+0x7e/0x260 [ 213.874647][ T7872] ? ns_capable+0xd7/0x110 [ 213.874681][ T7872] genl_rcv_msg+0x46e/0x800 [ 213.874719][ T7872] ? __pfx_genl_rcv_msg+0x10/0x10 [ 213.874759][ T7872] ? __pfx_nl80211_dump_mpp+0x10/0x10 [ 213.874810][ T7872] netlink_rcv_skb+0x155/0x420 [ 213.874839][ T7872] ? __pfx_genl_rcv_msg+0x10/0x10 [ 213.874874][ T7872] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 213.874919][ T7872] ? netlink_deliver_tap+0x1ae/0xd30 [ 213.874976][ T7872] genl_rcv+0x28/0x40 [ 213.875005][ T7872] netlink_unicast+0x58d/0x850 [ 213.875039][ T7872] ? __pfx_netlink_unicast+0x10/0x10 [ 213.875078][ T7872] netlink_sendmsg+0x8d1/0xdd0 [ 213.875113][ T7872] ? __pfx_netlink_sendmsg+0x10/0x10 [ 213.875156][ T7872] ____sys_sendmsg+0xa95/0xc70 [ 213.875190][ T7872] ? copy_msghdr_from_user+0x10a/0x160 [ 213.875231][ T7872] ? __pfx_____sys_sendmsg+0x10/0x10 [ 213.875280][ T7872] ___sys_sendmsg+0x134/0x1d0 [ 213.875324][ T7872] ? __pfx____sys_sendmsg+0x10/0x10 [ 213.875363][ T7872] ? __lock_acquire+0x622/0x1c90 [ 213.875447][ T7872] __sys_sendmsg+0x16d/0x220 [ 213.875490][ T7872] ? __pfx___sys_sendmsg+0x10/0x10 [ 213.875557][ T7872] do_syscall_64+0xcd/0x490 [ 213.875602][ T7872] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 213.875631][ T7872] RIP: 0033:0x7f32a8b8e929 [ 213.875653][ T7872] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 213.875681][ T7872] RSP: 002b:00007f32a9952038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 213.875707][ T7872] RAX: ffffffffffffffda RBX: 00007f32a8db5fa0 RCX: 00007f32a8b8e929 [ 213.875725][ T7872] RDX: 0000000004000890 RSI: 00002000000002c0 RDI: 0000000000000003 [ 213.875742][ T7872] RBP: 00007f32a9952090 R08: 0000000000000000 R09: 0000000000000000 [ 213.875759][ T7872] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 213.875775][ T7872] R13: 0000000000000000 R14: 00007f32a8db5fa0 R15: 00007ffd0b553028 [ 213.875811][ T7872] [ 214.715891][ T7889] netlink: 4 bytes leftover after parsing attributes in process `syz.2.464'. [ 215.118679][ T7900] FAULT_INJECTION: forcing a failure. [ 215.118679][ T7900] name failslab, interval 1, probability 0, space 0, times 0 [ 215.229913][ T7900] CPU: 1 UID: 0 PID: 7900 Comm: syz.3.468 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) [ 215.229962][ T7900] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 215.229977][ T7900] Call Trace: [ 215.229985][ T7900] [ 215.229994][ T7900] dump_stack_lvl+0x16c/0x1f0 [ 215.230035][ T7900] should_fail_ex+0x512/0x640 [ 215.230070][ T7900] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 215.230111][ T7900] should_failslab+0xc2/0x120 [ 215.230139][ T7900] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 215.230177][ T7900] ? __d_alloc+0x31/0xaa0 [ 215.230219][ T7900] __d_alloc+0x31/0xaa0 [ 215.230254][ T7900] ? __pfx_stack_trace_save+0x10/0x10 [ 215.230286][ T7900] d_alloc+0x4a/0x1e0 [ 215.230324][ T7900] d_alloc_parallel+0xe3/0x12e0 [ 215.230350][ T7900] ? kasan_save_stack+0x33/0x60 [ 215.230385][ T7900] ? __kasan_slab_alloc+0x89/0x90 [ 215.230426][ T7900] ? kmem_cache_alloc_noprof+0x1cb/0x3b0 [ 215.230461][ T7900] ? inode_init_always_gfp+0xce4/0x1030 [ 215.230494][ T7900] ? alloc_inode+0x86/0x240 [ 215.230515][ T7900] ? new_inode+0x22/0x1c0 [ 215.230538][ T7900] ? kvm_vm_ioctl+0x3125/0x3dd0 [ 215.230574][ T7900] ? __x64_sys_ioctl+0x18e/0x210 [ 215.230600][ T7900] ? do_syscall_64+0xcd/0x490 [ 215.230634][ T7900] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 215.230661][ T7900] ? __pfx_d_alloc_parallel+0x10/0x10 [ 215.230692][ T7900] ? lockdep_init_map_type+0x5c/0x280 [ 215.230728][ T7900] ? lockdep_init_map_type+0x5c/0x280 [ 215.230768][ T7900] __lookup_slow+0x193/0x460 [ 215.230818][ T7900] ? __pfx___lookup_slow+0x10/0x10 [ 215.230845][ T7900] ? pcpu_balance_free+0x720/0xaf0 [ 215.230881][ T7900] ? pcpu_balance_free+0x720/0xaf0 [ 215.230912][ T7900] ? d_lookup+0xe7/0x190 [ 215.230940][ T7900] lookup_noperm+0xe1/0x110 [ 215.230965][ T7900] start_creating.part.0+0x15a/0x3e0 [ 215.230997][ T7900] __debugfs_create_file+0xa7/0x6b0 [ 215.231028][ T7900] debugfs_create_file_full+0x41/0x60 [ 215.231059][ T7900] kvm_vm_ioctl+0x3149/0x3dd0 [ 215.231112][ T7900] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 215.231163][ T7900] ? kasan_quarantine_put+0x10a/0x240 [ 215.231192][ T7900] ? lockdep_hardirqs_on+0x7c/0x110 [ 215.231224][ T7900] ? find_held_lock+0x2b/0x80 [ 215.231246][ T7900] ? tomoyo_path_number_perm+0x295/0x580 [ 215.231275][ T7900] ? tomoyo_path_number_perm+0x18d/0x580 [ 215.231298][ T7900] ? do_raw_spin_unlock+0xe4/0x230 [ 215.231317][ T7900] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 215.231341][ T7900] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 215.231373][ T7900] ? do_vfs_ioctl+0x523/0x1a60 [ 215.231397][ T7900] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 215.231436][ T7900] ? find_held_lock+0x2b/0x80 [ 215.231456][ T7900] ? hook_file_ioctl_common+0x145/0x410 [ 215.231489][ T7900] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 215.231523][ T7900] __x64_sys_ioctl+0x18e/0x210 [ 215.231548][ T7900] do_syscall_64+0xcd/0x490 [ 215.231580][ T7900] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 215.231601][ T7900] RIP: 0033:0x7fcf7578e929 [ 215.231616][ T7900] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 215.231636][ T7900] RSP: 002b:00007fcf76586038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 215.231655][ T7900] RAX: ffffffffffffffda RBX: 00007fcf759b5fa0 RCX: 00007fcf7578e929 [ 215.231668][ T7900] RDX: 0000000000000002 RSI: 000000000000ae41 RDI: 0000000000000003 [ 215.231680][ T7900] RBP: 00007fcf75810b39 R08: 0000000000000000 R09: 0000000000000000 [ 215.231693][ T7900] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 215.231704][ T7900] R13: 0000000000000000 R14: 00007fcf759b5fa0 R15: 00007ffed6b1f1f8 [ 215.231729][ T7900] [ 215.693736][ T7900] sg_write: data in/out 1624916139/266 bytes for SCSI command 0x7f-- guessing data in; [ 215.693736][ T7900] program syz.3.468 not setting count and/or reply_len properly [ 216.058144][ T7912] netlink: 8 bytes leftover after parsing attributes in process `syz.0.471'. [ 216.649194][ T5854] Bluetooth: hci0: command 0x0406 tx timeout [ 216.655631][ T5854] Bluetooth: hci2: command 0x0406 tx timeout [ 216.661852][ T5854] Bluetooth: hci1: command 0x0406 tx timeout [ 217.344936][ T7915] kexec: Could not allocate control_code_buffer [ 217.932704][ T7946] FAULT_INJECTION: forcing a failure. [ 217.932704][ T7946] name failslab, interval 1, probability 0, space 0, times 0 [ 217.932750][ T7946] CPU: 1 UID: 0 PID: 7946 Comm: syz.1.481 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) [ 217.932787][ T7946] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 217.932804][ T7946] Call Trace: [ 217.932814][ T7946] [ 217.932825][ T7946] dump_stack_lvl+0x16c/0x1f0 [ 217.932871][ T7946] should_fail_ex+0x512/0x640 [ 217.932912][ T7946] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 217.932962][ T7946] should_failslab+0xc2/0x120 [ 217.932990][ T7946] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 217.933035][ T7946] ? alloc_inode+0x61/0x240 [ 217.933072][ T7946] ? __pfx_debugfs_alloc_inode+0x10/0x10 [ 217.933105][ T7946] alloc_inode+0x61/0x240 [ 217.933134][ T7946] new_inode+0x22/0x1c0 [ 217.933167][ T7946] __debugfs_create_file+0x11c/0x6b0 [ 217.933209][ T7946] debugfs_create_file_full+0x41/0x60 [ 217.933250][ T7946] kvm_vm_ioctl+0x3149/0x3dd0 [ 217.933311][ T7946] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 217.933370][ T7946] ? kasan_quarantine_put+0x10a/0x240 [ 217.933413][ T7946] ? lockdep_hardirqs_on+0x7c/0x110 [ 217.933468][ T7946] ? find_held_lock+0x2b/0x80 [ 217.933502][ T7946] ? tomoyo_path_number_perm+0x295/0x580 [ 217.933548][ T7946] ? tomoyo_path_number_perm+0x18d/0x580 [ 217.933589][ T7946] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 217.933627][ T7946] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 217.933680][ T7946] ? do_vfs_ioctl+0x523/0x1a60 [ 217.933727][ T7946] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 217.933792][ T7946] ? find_held_lock+0x2b/0x80 [ 217.933825][ T7946] ? hook_file_ioctl_common+0x145/0x410 [ 217.933881][ T7946] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 217.933935][ T7946] __x64_sys_ioctl+0x18e/0x210 [ 217.933975][ T7946] do_syscall_64+0xcd/0x490 [ 217.934028][ T7946] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 217.934060][ T7946] RIP: 0033:0x7f24d1b8e929 [ 217.934085][ T7946] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 217.934117][ T7946] RSP: 002b:00007f24d2ad1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 217.934148][ T7946] RAX: ffffffffffffffda RBX: 00007f24d1db5fa0 RCX: 00007f24d1b8e929 [ 217.934170][ T7946] RDX: 0000000000000002 RSI: 000000000000ae41 RDI: 0000000000000003 [ 217.934189][ T7946] RBP: 00007f24d1c10b39 R08: 0000000000000000 R09: 0000000000000000 [ 217.934210][ T7946] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 217.934229][ T7946] R13: 0000000000000000 R14: 00007f24d1db5fa0 R15: 00007ffceabeb2b8 [ 217.934271][ T7946] [ 217.941005][ T7946] debugfs: out of free dentries, can not create file 'pid' [ 218.281263][ T7946] sg_write: data in/out 1624916139/266 bytes for SCSI command 0x7f-- guessing data in; [ 218.281263][ T7946] program syz.1.481 not setting count and/or reply_len properly [ 220.548159][ T7981] ubi0: attaching mtd0 [ 220.556963][ T7981] ubi0: scanning is finished [ 220.561810][ T7981] ubi0: empty MTD device detected [ 220.658057][ T7990] netlink: 24 bytes leftover after parsing attributes in process `syz.1.493'. [ 220.719158][ T7990] FAULT_INJECTION: forcing a failure. [ 220.719158][ T7990] name failslab, interval 1, probability 0, space 0, times 0 [ 220.744101][ T7964] kexec: Could not allocate control_code_buffer [ 220.769593][ T7981] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB) [ 220.822634][ T7990] CPU: 0 UID: 0 PID: 7990 Comm: syz.1.493 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) [ 220.822662][ T7990] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 220.822675][ T7990] Call Trace: [ 220.822681][ T7990] [ 220.822689][ T7990] dump_stack_lvl+0x16c/0x1f0 [ 220.822724][ T7990] should_fail_ex+0x512/0x640 [ 220.822754][ T7990] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 220.822788][ T7990] should_failslab+0xc2/0x120 [ 220.822807][ T7990] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 220.822837][ T7990] ? d_instantiate+0x77/0x90 [ 220.822854][ T7990] ? alloc_empty_file+0x55/0x1e0 [ 220.822879][ T7990] alloc_empty_file+0x55/0x1e0 [ 220.822901][ T7990] alloc_file_pseudo+0x13a/0x230 [ 220.822924][ T7990] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 220.822947][ T7990] ? _raw_spin_unlock+0x28/0x50 [ 220.822972][ T7990] ? alloc_fd+0x471/0x7d0 [ 220.823001][ T7990] __anon_inode_getfile+0xe8/0x280 [ 220.823033][ T7990] anon_inode_getfd+0x52/0xb0 [ 220.823062][ T7990] kvm_vm_ioctl+0x3000/0x3dd0 [ 220.823105][ T7990] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 220.823151][ T7990] ? kasan_quarantine_put+0x10a/0x240 [ 220.823180][ T7990] ? lockdep_hardirqs_on+0x7c/0x110 [ 220.823212][ T7990] ? find_held_lock+0x2b/0x80 [ 220.823234][ T7990] ? tomoyo_path_number_perm+0x295/0x580 [ 220.823263][ T7990] ? tomoyo_path_number_perm+0x18d/0x580 [ 220.823289][ T7990] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 220.823312][ T7990] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 220.823345][ T7990] ? do_vfs_ioctl+0x523/0x1a60 [ 220.823369][ T7990] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 220.823409][ T7990] ? find_held_lock+0x2b/0x80 [ 220.823429][ T7990] ? hook_file_ioctl_common+0x145/0x410 [ 220.823465][ T7990] ? __fget_files+0x20e/0x3c0 [ 220.823496][ T7990] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 220.823530][ T7990] __x64_sys_ioctl+0x18e/0x210 [ 220.823556][ T7990] do_syscall_64+0xcd/0x490 [ 220.823589][ T7990] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 220.823610][ T7990] RIP: 0033:0x7f24d1b8e929 [ 220.823626][ T7990] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 220.823646][ T7990] RSP: 002b:00007f24d2ad1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 220.823665][ T7990] RAX: ffffffffffffffda RBX: 00007f24d1db5fa0 RCX: 00007f24d1b8e929 [ 220.823678][ T7990] RDX: 0000000000000002 RSI: 000000000000ae41 RDI: 0000000000000003 [ 220.823690][ T7990] RBP: 00007f24d1c10b39 R08: 0000000000000000 R09: 0000000000000000 [ 220.823703][ T7990] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 220.823715][ T7990] R13: 0000000000000000 R14: 00007f24d1db5fa0 R15: 00007ffceabeb2b8 [ 220.823740][ T7990] [ 220.825502][ T7981] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes [ 221.186143][ T7990] sg_write: data in/out 1624916139/266 bytes for SCSI command 0x7f-- guessing data in; [ 221.186143][ T7990] program syz.1.493 not setting count and/or reply_len properly [ 221.211167][ T7981] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1 [ 221.230018][ T7981] ubi0: VID header offset: 64 (aligned 64), data offset: 128 [ 221.328871][ T7981] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0 [ 221.328916][ T7981] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23 [ 221.328944][ T7981] ubi0: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 581615827 [ 221.328975][ T7981] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0 [ 221.332865][ T7992] ubi0: background thread "ubi_bgt0d" started, PID 7992 [ 221.457430][ T7994] syz.0.490 (7994) used obsolete PPPIOCDETACH ioctl [ 221.766010][ T5168] Bluetooth: hci3: command 0x0406 tx timeout [ 223.443794][ T8037] FAULT_INJECTION: forcing a failure. [ 223.443794][ T8037] name failslab, interval 1, probability 0, space 0, times 0 [ 223.537631][ T8037] CPU: 1 UID: 0 PID: 8037 Comm: syz.0.504 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) [ 223.537671][ T8037] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 223.537688][ T8037] Call Trace: [ 223.537696][ T8037] [ 223.537706][ T8037] dump_stack_lvl+0x16c/0x1f0 [ 223.537750][ T8037] should_fail_ex+0x512/0x640 [ 223.537787][ T8037] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 223.537828][ T8037] should_failslab+0xc2/0x120 [ 223.537854][ T8037] __kmalloc_cache_noprof+0x6a/0x3e0 [ 223.537892][ T8037] ? nl80211_prepare_wdev_dump+0x3f6/0x740 [ 223.537935][ T8037] nl80211_prepare_wdev_dump+0x3f6/0x740 [ 223.537979][ T8037] nl80211_dump_mpp+0x158/0x7e0 [ 223.538026][ T8037] ? rcu_is_watching+0x12/0xc0 [ 223.538055][ T8037] ? __pfx_nl80211_dump_mpp+0x10/0x10 [ 223.538088][ T8037] ? __kmalloc_node_track_caller_noprof+0x23e/0x510 [ 223.538133][ T8037] ? __alloc_skb+0x166/0x380 [ 223.538197][ T8037] genl_dumpit+0x122/0x230 [ 223.538240][ T8037] netlink_dump+0x52d/0xd00 [ 223.538290][ T8037] ? __pfx_netlink_dump+0x10/0x10 [ 223.538345][ T8037] ? __asan_memset+0x23/0x50 [ 223.538381][ T8037] ? genl_start+0x67f/0x980 [ 223.538417][ T8037] __netlink_dump_start+0x6d6/0x990 [ 223.538451][ T8037] genl_family_rcv_msg_dumpit+0x1e2/0x2e0 [ 223.538490][ T8037] ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10 [ 223.538552][ T8037] ? __pfx_genl_start+0x10/0x10 [ 223.538584][ T8037] ? __pfx_genl_dumpit+0x10/0x10 [ 223.538615][ T8037] ? __pfx_genl_done+0x10/0x10 [ 223.538651][ T8037] ? bpf_lsm_capable+0x9/0x10 [ 223.538687][ T8037] ? security_capable+0x7e/0x260 [ 223.538716][ T8037] ? ns_capable+0xd7/0x110 [ 223.538750][ T8037] genl_rcv_msg+0x46e/0x800 [ 223.538791][ T8037] ? __pfx_genl_rcv_msg+0x10/0x10 [ 223.538838][ T8037] ? __pfx_nl80211_dump_mpp+0x10/0x10 [ 223.538906][ T8037] netlink_rcv_skb+0x155/0x420 [ 223.538936][ T8037] ? __pfx_genl_rcv_msg+0x10/0x10 [ 223.538974][ T8037] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 223.539022][ T8037] ? netlink_deliver_tap+0x1ae/0xd30 [ 223.539077][ T8037] genl_rcv+0x28/0x40 [ 223.539123][ T8037] netlink_unicast+0x58d/0x850 [ 223.539165][ T8037] ? __pfx_netlink_unicast+0x10/0x10 [ 223.539207][ T8037] netlink_sendmsg+0x8d1/0xdd0 [ 223.539250][ T8037] ? __pfx_netlink_sendmsg+0x10/0x10 [ 223.539296][ T8037] ____sys_sendmsg+0xa95/0xc70 [ 223.539330][ T8037] ? copy_msghdr_from_user+0x10a/0x160 [ 223.539375][ T8037] ? __pfx_____sys_sendmsg+0x10/0x10 [ 223.539426][ T8037] ___sys_sendmsg+0x134/0x1d0 [ 223.539472][ T8037] ? __pfx____sys_sendmsg+0x10/0x10 [ 223.539520][ T8037] ? __lock_acquire+0x622/0x1c90 [ 223.539627][ T8037] __sys_sendmsg+0x16d/0x220 [ 223.539680][ T8037] ? __pfx___sys_sendmsg+0x10/0x10 [ 223.539756][ T8037] do_syscall_64+0xcd/0x490 [ 223.539811][ T8037] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 223.539844][ T8037] RIP: 0033:0x7f32a8b8e929 [ 223.539869][ T8037] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 223.539900][ T8037] RSP: 002b:00007f32a9952038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 223.539931][ T8037] RAX: ffffffffffffffda RBX: 00007f32a8db5fa0 RCX: 00007f32a8b8e929 [ 223.539953][ T8037] RDX: 0000000004000890 RSI: 00002000000002c0 RDI: 0000000000000003 [ 223.539972][ T8037] RBP: 00007f32a9952090 R08: 0000000000000000 R09: 0000000000000000 [ 223.539992][ T8037] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 223.540011][ T8037] R13: 0000000000000000 R14: 00007f32a8db5fa0 R15: 00007ffd0b553028 [ 223.540052][ T8037] [ 224.383803][ T8039] netlink: 24 bytes leftover after parsing attributes in process `syz.3.505'. [ 224.432617][ T8039] FAULT_INJECTION: forcing a failure. [ 224.432617][ T8039] name fail_futex, interval 1, probability 0, space 0, times 1 [ 224.481199][ T8039] CPU: 0 UID: 0 PID: 8039 Comm: syz.3.505 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) [ 224.481237][ T8039] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 224.481256][ T8039] Call Trace: [ 224.481265][ T8039] [ 224.481276][ T8039] dump_stack_lvl+0x16c/0x1f0 [ 224.481324][ T8039] should_fail_ex+0x512/0x640 [ 224.481373][ T8039] get_futex_key+0x1d0/0x1540 [ 224.481419][ T8039] ? __pfx_get_futex_key+0x10/0x10 [ 224.481444][ T8039] ? tomoyo_path_number_perm+0x295/0x580 [ 224.481473][ T8039] ? tomoyo_path_number_perm+0x18d/0x580 [ 224.481501][ T8039] futex_wake+0xe7/0x4e0 [ 224.481532][ T8039] ? __pfx_futex_wake+0x10/0x10 [ 224.481571][ T8039] do_futex+0x1e3/0x350 [ 224.481596][ T8039] ? __pfx_do_futex+0x10/0x10 [ 224.481622][ T8039] ? find_held_lock+0x2b/0x80 [ 224.481646][ T8039] __x64_sys_futex+0x1e0/0x4c0 [ 224.481674][ T8039] ? __pfx___x64_sys_futex+0x10/0x10 [ 224.481703][ T8039] ? fput+0x70/0xf0 [ 224.481726][ T8039] do_syscall_64+0xcd/0x490 [ 224.481759][ T8039] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 224.481779][ T8039] RIP: 0033:0x7fcf7578e929 [ 224.481795][ T8039] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 224.481815][ T8039] RSP: 002b:00007fcf765860e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 224.481833][ T8039] RAX: ffffffffffffffda RBX: 00007fcf759b5fa8 RCX: 00007fcf7578e929 [ 224.481847][ T8039] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fcf759b5fac [ 224.481859][ T8039] RBP: 00007fcf759b5fa0 R08: 00007fcf76587000 R09: 0000000000000000 [ 224.481872][ T8039] R10: 0000000000000008 R11: 0000000000000246 R12: 00007fcf759b5fac [ 224.481884][ T8039] R13: 0000000000000000 R14: 00007ffed6b1f110 R15: 00007ffed6b1f1f8 [ 224.481909][ T8039] [ 224.760266][ T8039] sg_write: data in/out 1624916139/266 bytes for SCSI command 0x7f-- guessing data in; [ 224.760266][ T8039] program syz.3.505 not setting count and/or reply_len properly [ 226.532667][ T8030] kexec: Could not allocate control_code_buffer [ 227.485780][ T8081] netlink: 24 bytes leftover after parsing attributes in process `syz.3.518'. [ 227.526606][ T8081] FAULT_INJECTION: forcing a failure. [ 227.526606][ T8081] name failslab, interval 1, probability 0, space 0, times 0 [ 227.544849][ T8081] CPU: 0 UID: 0 PID: 8081 Comm: syz.3.518 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) [ 227.544892][ T8081] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 227.544911][ T8081] Call Trace: [ 227.544922][ T8081] [ 227.544934][ T8081] dump_stack_lvl+0x16c/0x1f0 [ 227.544987][ T8081] should_fail_ex+0x512/0x640 [ 227.545033][ T8081] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 227.545085][ T8081] should_failslab+0xc2/0x120 [ 227.545115][ T8081] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 227.545178][ T8081] ? security_file_alloc+0x34/0x2b0 [ 227.545224][ T8081] security_file_alloc+0x34/0x2b0 [ 227.545262][ T8081] init_file+0x93/0x4c0 [ 227.545291][ T8081] alloc_empty_file+0x73/0x1e0 [ 227.545323][ T8081] alloc_file_pseudo+0x13a/0x230 [ 227.545357][ T8081] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 227.545391][ T8081] ? _raw_spin_unlock+0x28/0x50 [ 227.545427][ T8081] ? alloc_fd+0x471/0x7d0 [ 227.545469][ T8081] __anon_inode_getfile+0xe8/0x280 [ 227.545515][ T8081] anon_inode_getfd+0x52/0xb0 [ 227.545557][ T8081] kvm_vm_ioctl+0x3000/0x3dd0 [ 227.545619][ T8081] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 227.545685][ T8081] ? kasan_quarantine_put+0x10a/0x240 [ 227.545726][ T8081] ? lockdep_hardirqs_on+0x7c/0x110 [ 227.545771][ T8081] ? find_held_lock+0x2b/0x80 [ 227.545803][ T8081] ? tomoyo_path_number_perm+0x295/0x580 [ 227.545844][ T8081] ? tomoyo_path_number_perm+0x18d/0x580 [ 227.545882][ T8081] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 227.545922][ T8081] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 227.545970][ T8081] ? do_vfs_ioctl+0x523/0x1a60 [ 227.546005][ T8081] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 227.546064][ T8081] ? find_held_lock+0x2b/0x80 [ 227.546093][ T8081] ? hook_file_ioctl_common+0x145/0x410 [ 227.546133][ T8081] ? __fget_files+0x20e/0x3c0 [ 227.546184][ T8081] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 227.546234][ T8081] __x64_sys_ioctl+0x18e/0x210 [ 227.546271][ T8081] do_syscall_64+0xcd/0x490 [ 227.546318][ T8081] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 227.546347][ T8081] RIP: 0033:0x7fcf7578e929 [ 227.546370][ T8081] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 227.546399][ T8081] RSP: 002b:00007fcf76586038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 227.546426][ T8081] RAX: ffffffffffffffda RBX: 00007fcf759b5fa0 RCX: 00007fcf7578e929 [ 227.546445][ T8081] RDX: 0000000000000002 RSI: 000000000000ae41 RDI: 0000000000000003 [ 227.546463][ T8081] RBP: 00007fcf75810b39 R08: 0000000000000000 R09: 0000000000000000 [ 227.546480][ T8081] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 227.546496][ T8081] R13: 0000000000000000 R14: 00007fcf759b5fa0 R15: 00007ffed6b1f1f8 [ 227.546533][ T8081] [ 227.911213][ T8081] sg_write: data in/out 1624916139/266 bytes for SCSI command 0x7f-- guessing data in; [ 227.911213][ T8081] program syz.3.518 not setting count and/or reply_len properly [ 230.070109][ T8112] kexec: Could not allocate control_code_buffer [ 230.615737][ T8141] netlink: 24 bytes leftover after parsing attributes in process `syz.1.534'. [ 230.653755][ T8141] FAULT_INJECTION: forcing a failure. [ 230.653755][ T8141] name failslab, interval 1, probability 0, space 0, times 0 [ 230.682860][ T8141] CPU: 1 UID: 0 PID: 8141 Comm: syz.1.534 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) [ 230.682908][ T8141] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 230.682928][ T8141] Call Trace: [ 230.682938][ T8141] [ 230.682950][ T8141] dump_stack_lvl+0x16c/0x1f0 [ 230.683003][ T8141] should_fail_ex+0x512/0x640 [ 230.683048][ T8141] ? fs_reclaim_acquire+0xae/0x150 [ 230.683087][ T8141] should_failslab+0xc2/0x120 [ 230.683117][ T8141] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 230.683165][ T8141] ? security_inode_alloc+0x3b/0x2b0 [ 230.683205][ T8141] security_inode_alloc+0x3b/0x2b0 [ 230.683250][ T8141] inode_init_always_gfp+0xce4/0x1030 [ 230.683298][ T8141] alloc_inode+0x86/0x240 [ 230.683328][ T8141] new_inode+0x22/0x1c0 [ 230.683361][ T8141] debugfs_create_dir+0xdd/0x5f0 [ 230.683418][ T8141] kvm_vm_ioctl+0x3125/0x3dd0 [ 230.683492][ T8141] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 230.683556][ T8141] ? kasan_quarantine_put+0x10a/0x240 [ 230.683597][ T8141] ? lockdep_hardirqs_on+0x7c/0x110 [ 230.683641][ T8141] ? find_held_lock+0x2b/0x80 [ 230.683670][ T8141] ? tomoyo_path_number_perm+0x295/0x580 [ 230.683717][ T8141] ? tomoyo_path_number_perm+0x18d/0x580 [ 230.683752][ T8141] ? do_raw_spin_unlock+0xe4/0x230 [ 230.683779][ T8141] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 230.683814][ T8141] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 230.683860][ T8141] ? do_vfs_ioctl+0x523/0x1a60 [ 230.683894][ T8141] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 230.683951][ T8141] ? find_held_lock+0x2b/0x80 [ 230.683979][ T8141] ? hook_file_ioctl_common+0x145/0x410 [ 230.684028][ T8141] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 230.684075][ T8141] __x64_sys_ioctl+0x18e/0x210 [ 230.684111][ T8141] do_syscall_64+0xcd/0x490 [ 230.684156][ T8141] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 230.684185][ T8141] RIP: 0033:0x7f24d1b8e929 [ 230.684207][ T8141] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 230.684236][ T8141] RSP: 002b:00007f24d2ad1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 230.684264][ T8141] RAX: ffffffffffffffda RBX: 00007f24d1db5fa0 RCX: 00007f24d1b8e929 [ 230.684282][ T8141] RDX: 0000000000000002 RSI: 000000000000ae41 RDI: 0000000000000003 [ 230.684299][ T8141] RBP: 00007f24d1c10b39 R08: 0000000000000000 R09: 0000000000000000 [ 230.684317][ T8141] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 230.684333][ T8141] R13: 0000000000000000 R14: 00007f24d1db5fa0 R15: 00007ffceabeb2b8 [ 230.684389][ T8141] [ 230.684980][ T8141] debugfs: out of free dentries, can not create directory 'vcpu2' [ 230.826825][ T8149] sg_write: data in/out 1624916139/266 bytes for SCSI command 0x7f-- guessing data in; [ 230.826825][ T8149] program syz.1.534 not setting count and/or reply_len properly [ 231.780024][ T8165] FAULT_INJECTION: forcing a failure. [ 231.780024][ T8165] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 231.780107][ T8165] CPU: 0 UID: 0 PID: 8165 Comm: syz.0.540 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) [ 231.780147][ T8165] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 231.780166][ T8165] Call Trace: [ 231.780177][ T8165] [ 231.780189][ T8165] dump_stack_lvl+0x16c/0x1f0 [ 231.780244][ T8165] should_fail_ex+0x512/0x640 [ 231.780298][ T8165] _copy_to_user+0x32/0xd0 [ 231.780358][ T8165] simple_read_from_buffer+0xcb/0x170 [ 231.780405][ T8165] proc_fail_nth_read+0x197/0x270 [ 231.780446][ T8165] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 231.780489][ T8165] ? rw_verify_area+0xcf/0x680 [ 231.780530][ T8165] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 231.780570][ T8165] vfs_read+0x1e1/0xc60 [ 231.780621][ T8165] ? __pfx___mutex_lock+0x10/0x10 [ 231.780672][ T8165] ? __pfx_vfs_read+0x10/0x10 [ 231.780730][ T8165] ? __fget_files+0x20e/0x3c0 [ 231.780789][ T8165] ksys_read+0x12a/0x250 [ 231.780853][ T8165] ? __pfx_ksys_read+0x10/0x10 [ 231.780920][ T8165] do_syscall_64+0xcd/0x490 [ 231.780977][ T8165] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 231.781006][ T8165] RIP: 0033:0x7f32a8b8d33c [ 231.781027][ T8165] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 231.781055][ T8165] RSP: 002b:00007f32a9952030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 231.781080][ T8165] RAX: ffffffffffffffda RBX: 00007f32a8db5fa0 RCX: 00007f32a8b8d33c [ 231.781099][ T8165] RDX: 000000000000000f RSI: 00007f32a99520a0 RDI: 0000000000000004 [ 231.781115][ T8165] RBP: 00007f32a9952090 R08: 0000000000000000 R09: 0000000000000000 [ 231.781132][ T8165] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 231.781149][ T8165] R13: 0000000000000000 R14: 00007f32a8db5fa0 R15: 00007ffd0b553028 [ 231.781185][ T8165] [ 233.396469][ T8191] netlink: 4 bytes leftover after parsing attributes in process `syz.1.545'. [ 233.442337][ T8194] netlink: 24 bytes leftover after parsing attributes in process `syz.0.546'. [ 233.454356][ T8194] FAULT_INJECTION: forcing a failure. [ 233.454356][ T8194] name failslab, interval 1, probability 0, space 0, times 0 [ 233.472795][ T8194] CPU: 1 UID: 0 PID: 8194 Comm: syz.0.546 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) [ 233.472836][ T8194] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 233.472853][ T8194] Call Trace: [ 233.472863][ T8194] [ 233.472875][ T8194] dump_stack_lvl+0x16c/0x1f0 [ 233.472937][ T8194] should_fail_ex+0x512/0x640 [ 233.472979][ T8194] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 233.473030][ T8194] should_failslab+0xc2/0x120 [ 233.473057][ T8194] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 233.473104][ T8194] ? alloc_inode+0x61/0x240 [ 233.473138][ T8194] ? __pfx_debugfs_alloc_inode+0x10/0x10 [ 233.473173][ T8194] alloc_inode+0x61/0x240 [ 233.473203][ T8194] new_inode+0x22/0x1c0 [ 233.473237][ T8194] debugfs_create_dir+0xdd/0x5f0 [ 233.473279][ T8194] kvm_vm_ioctl+0x3125/0x3dd0 [ 233.473342][ T8194] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 233.473408][ T8194] ? kasan_quarantine_put+0x10a/0x240 [ 233.473450][ T8194] ? lockdep_hardirqs_on+0x7c/0x110 [ 233.473496][ T8194] ? find_held_lock+0x2b/0x80 [ 233.473528][ T8194] ? tomoyo_path_number_perm+0x295/0x580 [ 233.473570][ T8194] ? tomoyo_path_number_perm+0x18d/0x580 [ 233.473607][ T8194] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 233.473641][ T8194] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 233.473688][ T8194] ? do_vfs_ioctl+0x523/0x1a60 [ 233.473729][ T8194] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 233.473791][ T8194] ? find_held_lock+0x2b/0x80 [ 233.473819][ T8194] ? hook_file_ioctl_common+0x145/0x410 [ 233.473868][ T8194] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 233.473917][ T8194] __x64_sys_ioctl+0x18e/0x210 [ 233.473954][ T8194] do_syscall_64+0xcd/0x490 [ 233.474001][ T8194] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 233.474031][ T8194] RIP: 0033:0x7f32a8b8e929 [ 233.474054][ T8194] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 233.474083][ T8194] RSP: 002b:00007f32a9952038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 233.474110][ T8194] RAX: ffffffffffffffda RBX: 00007f32a8db5fa0 RCX: 00007f32a8b8e929 [ 233.474129][ T8194] RDX: 0000000000000002 RSI: 000000000000ae41 RDI: 0000000000000003 [ 233.474146][ T8194] RBP: 00007f32a8c10b39 R08: 0000000000000000 R09: 0000000000000000 [ 233.474164][ T8194] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 233.474181][ T8194] R13: 0000000000000000 R14: 00007f32a8db5fa0 R15: 00007ffd0b553028 [ 233.474217][ T8194] [ 233.475382][ T8194] debugfs: out of free dentries, can not create directory 'vcpu2' [ 233.781677][ T8194] sg_write: data in/out 1624916139/266 bytes for SCSI command 0x7f-- guessing data in; [ 233.781677][ T8194] program syz.0.546 not setting count and/or reply_len properly [ 233.882506][ T8163] kexec: Could not allocate control_code_buffer [ 234.679429][ T8216] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input52 [ 235.647114][ T8232] netlink: 24 bytes leftover after parsing attributes in process `syz.2.556'. [ 235.649459][ T8232] FAULT_INJECTION: forcing a failure. [ 235.649459][ T8232] name failslab, interval 1, probability 0, space 0, times 0 [ 235.649498][ T8232] CPU: 0 UID: 0 PID: 8232 Comm: syz.2.556 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) [ 235.649524][ T8232] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 235.649537][ T8232] Call Trace: [ 235.649544][ T8232] [ 235.649552][ T8232] dump_stack_lvl+0x16c/0x1f0 [ 235.649606][ T8232] should_fail_ex+0x512/0x640 [ 235.649640][ T8232] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 235.649682][ T8232] should_failslab+0xc2/0x120 [ 235.649704][ T8232] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 235.649739][ T8232] ? kasan_save_stack+0x42/0x60 [ 235.649773][ T8232] ? kasan_save_stack+0x33/0x60 [ 235.649807][ T8232] ? __d_alloc+0x31/0xaa0 [ 235.649847][ T8232] __d_alloc+0x31/0xaa0 [ 235.649887][ T8232] d_alloc+0x4a/0x1e0 [ 235.649925][ T8232] d_alloc_parallel+0xe3/0x12e0 [ 235.649958][ T8232] ? debug_object_activate+0x2ec/0x4c0 [ 235.649986][ T8232] ? number+0x9aa/0xc70 [ 235.650010][ T8232] ? __pfx_d_alloc_parallel+0x10/0x10 [ 235.650041][ T8232] ? lockdep_init_map_type+0x5c/0x280 [ 235.650078][ T8232] ? lockdep_init_map_type+0x5c/0x280 [ 235.650118][ T8232] __lookup_slow+0x193/0x460 [ 235.650145][ T8232] ? __pfx___lookup_slow+0x10/0x10 [ 235.650176][ T8232] ? pcpu_balance_free+0x720/0xaf0 [ 235.650217][ T8232] ? pcpu_balance_free+0x720/0xaf0 [ 235.650250][ T8232] ? d_lookup+0xe7/0x190 [ 235.650282][ T8232] lookup_noperm+0xe1/0x110 [ 235.650309][ T8232] start_creating.part.0+0x15a/0x3e0 [ 235.650353][ T8232] debugfs_create_dir+0x6c/0x5f0 [ 235.650386][ T8232] kvm_vm_ioctl+0x3125/0x3dd0 [ 235.650442][ T8232] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 235.650520][ T8232] ? kasan_quarantine_put+0x10a/0x240 [ 235.650571][ T8232] ? lockdep_hardirqs_on+0x7c/0x110 [ 235.650627][ T8232] ? find_held_lock+0x2b/0x80 [ 235.650664][ T8232] ? tomoyo_path_number_perm+0x295/0x580 [ 235.650710][ T8232] ? tomoyo_path_number_perm+0x18d/0x580 [ 235.650755][ T8232] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 235.650816][ T8232] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 235.650864][ T8232] ? do_vfs_ioctl+0x523/0x1a60 [ 235.650898][ T8232] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 235.650958][ T8232] ? find_held_lock+0x2b/0x80 [ 235.650988][ T8232] ? hook_file_ioctl_common+0x145/0x410 [ 235.651036][ T8232] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 235.651085][ T8232] __x64_sys_ioctl+0x18e/0x210 [ 235.651123][ T8232] do_syscall_64+0xcd/0x490 [ 235.651170][ T8232] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 235.651199][ T8232] RIP: 0033:0x7fdb24f8e929 [ 235.651221][ T8232] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 235.651249][ T8232] RSP: 002b:00007fdb25d0e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 235.651276][ T8232] RAX: ffffffffffffffda RBX: 00007fdb251b5fa0 RCX: 00007fdb24f8e929 [ 235.651295][ T8232] RDX: 0000000000000002 RSI: 000000000000ae41 RDI: 0000000000000003 [ 235.651319][ T8232] RBP: 00007fdb25010b39 R08: 0000000000000000 R09: 0000000000000000 [ 235.651338][ T8232] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 235.651355][ T8232] R13: 0000000000000000 R14: 00007fdb251b5fa0 R15: 00007ffc31220928 [ 235.651392][ T8232] [ 235.697314][ T8232] sg_write: data in/out 1624916139/266 bytes for SCSI command 0x7f-- guessing data in; [ 235.697314][ T8232] program syz.2.556 not setting count and/or reply_len properly [ 236.725472][ T8248] netlink: 338 bytes leftover after parsing attributes in process `syz.3.561'. [ 236.725842][ T8248] netlink: 338 bytes leftover after parsing attributes in process `syz.3.561'. [ 236.872547][ T8248] netlink: 338 bytes leftover after parsing attributes in process `syz.3.561'. [ 236.872887][ T8248] netlink: 338 bytes leftover after parsing attributes in process `syz.3.561'. [ 236.885085][ T8248] netlink: 338 bytes leftover after parsing attributes in process `syz.3.561'. [ 236.885303][ T8248] netlink: 338 bytes leftover after parsing attributes in process `syz.3.561'. [ 236.885539][ T8248] netlink: 338 bytes leftover after parsing attributes in process `syz.3.561'. [ 238.061575][ T8234] kexec: Could not allocate control_code_buffer [ 238.312803][ T8271] FAULT_INJECTION: forcing a failure. [ 238.312803][ T8271] name failslab, interval 1, probability 0, space 0, times 0 [ 238.376567][ T8271] CPU: 1 UID: 0 PID: 8271 Comm: syz.0.567 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) [ 238.376609][ T8271] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 238.376628][ T8271] Call Trace: [ 238.376638][ T8271] [ 238.376650][ T8271] dump_stack_lvl+0x16c/0x1f0 [ 238.376697][ T8271] should_fail_ex+0x512/0x640 [ 238.376739][ T8271] ? fs_reclaim_acquire+0xae/0x150 [ 238.376777][ T8271] should_failslab+0xc2/0x120 [ 238.376804][ T8271] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 238.376849][ T8271] ? security_inode_alloc+0x3b/0x2b0 [ 238.376884][ T8271] security_inode_alloc+0x3b/0x2b0 [ 238.376916][ T8271] inode_init_always_gfp+0xce4/0x1030 [ 238.376961][ T8271] alloc_inode+0x86/0x240 [ 238.376992][ T8271] new_inode+0x22/0x1c0 [ 238.377022][ T8271] __debugfs_create_file+0x11c/0x6b0 [ 238.377066][ T8271] debugfs_create_file_full+0x41/0x60 [ 238.377110][ T8271] kvm_arch_create_vcpu_debugfs+0x55/0x160 [ 238.377151][ T8271] kvm_vm_ioctl+0x3154/0x3dd0 [ 238.377198][ T8273] sg_write: data in/out 1624916139/266 bytes for SCSI command 0x7f-- guessing data in; [ 238.377198][ T8273] program syz.0.567 not setting count and/or reply_len properly [ 238.377210][ T8271] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 238.377270][ T8271] ? kasan_quarantine_put+0x10a/0x240 [ 238.377327][ T8271] ? lockdep_hardirqs_on+0x7c/0x110 [ 238.377384][ T8271] ? find_held_lock+0x2b/0x80 [ 238.377420][ T8271] ? tomoyo_path_number_perm+0x295/0x580 [ 238.377465][ T8271] ? tomoyo_path_number_perm+0x18d/0x580 [ 238.377505][ T8271] ? do_raw_spin_unlock+0xe4/0x230 [ 238.377533][ T8271] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 238.377570][ T8271] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 238.377622][ T8271] ? do_vfs_ioctl+0x523/0x1a60 [ 238.377661][ T8271] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 238.377725][ T8271] ? find_held_lock+0x2b/0x80 [ 238.377758][ T8271] ? hook_file_ioctl_common+0x145/0x410 [ 238.377810][ T8271] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 238.377864][ T8271] __x64_sys_ioctl+0x18e/0x210 [ 238.377905][ T8271] do_syscall_64+0xcd/0x490 [ 238.377972][ T8271] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 238.378024][ T8271] RIP: 0033:0x7f32a8b8e929 [ 238.378051][ T8271] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 238.378083][ T8271] RSP: 002b:00007f32a9952038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 238.378116][ T8271] RAX: ffffffffffffffda RBX: 00007f32a8db5fa0 RCX: 00007f32a8b8e929 [ 238.378139][ T8271] RDX: 0000000000000002 RSI: 000000000000ae41 RDI: 0000000000000003 [ 238.378160][ T8271] RBP: 00007f32a8c10b39 R08: 0000000000000000 R09: 0000000000000000 [ 238.378181][ T8271] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 238.378202][ T8271] R13: 0000000000000000 R14: 00007f32a8db5fa0 R15: 00007ffd0b553028 [ 238.378245][ T8271] [ 238.378288][ T8271] debugfs: out of free dentries, can not create file 'tsc-offset' [ 240.849438][ T8322] __nla_validate_parse: 27 callbacks suppressed [ 240.849463][ T8322] netlink: 24 bytes leftover after parsing attributes in process `syz.0.580'. [ 240.932764][ T8322] FAULT_INJECTION: forcing a failure. [ 240.932764][ T8322] name failslab, interval 1, probability 0, space 0, times 0 [ 240.975566][ T8322] CPU: 0 UID: 0 PID: 8322 Comm: syz.0.580 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) [ 240.975610][ T8322] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 240.975628][ T8322] Call Trace: [ 240.975637][ T8322] [ 240.975648][ T8322] dump_stack_lvl+0x16c/0x1f0 [ 240.975697][ T8322] should_fail_ex+0x512/0x640 [ 240.975738][ T8322] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 240.975781][ T8322] should_failslab+0xc2/0x120 [ 240.975809][ T8322] __kmalloc_cache_noprof+0x6a/0x3e0 [ 240.975848][ T8322] ? snd_card_file_add+0x52/0x330 [ 240.975878][ T8322] ? __pfx_snd_ctl_open+0x10/0x10 [ 240.975921][ T8322] snd_card_file_add+0x52/0x330 [ 240.975948][ T8322] ? __pfx_snd_ctl_open+0x10/0x10 [ 240.975987][ T8322] ? __pfx_snd_ctl_open+0x10/0x10 [ 240.976024][ T8322] snd_ctl_open+0x9d/0x5e0 [ 240.976063][ T8322] ? __pfx_snd_ctl_open+0x10/0x10 [ 240.976100][ T8322] snd_open+0x201/0x450 [ 240.976152][ T8322] ? __pfx_snd_open+0x10/0x10 [ 240.976196][ T8322] chrdev_open+0x234/0x6a0 [ 240.976239][ T8322] ? __pfx_apparmor_file_open+0x10/0x10 [ 240.976276][ T8322] ? __pfx_chrdev_open+0x10/0x10 [ 240.976323][ T8322] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 240.976369][ T8322] do_dentry_open+0x741/0x1c10 [ 240.976414][ T8322] ? __pfx_chrdev_open+0x10/0x10 [ 240.976465][ T8322] vfs_open+0x82/0x3f0 [ 240.976499][ T8322] path_openat+0x1de4/0x2cb0 [ 240.976551][ T8322] ? __pfx_path_openat+0x10/0x10 [ 240.976595][ T8322] ? __lock_acquire+0xb8a/0x1c90 [ 240.976638][ T8322] do_filp_open+0x20b/0x470 [ 240.976679][ T8322] ? __pfx_do_filp_open+0x10/0x10 [ 240.976747][ T8322] ? alloc_fd+0x471/0x7d0 [ 240.976795][ T8322] do_sys_openat2+0x11b/0x1d0 [ 240.976826][ T8322] ? __pfx_do_sys_openat2+0x10/0x10 [ 240.976872][ T8322] __x64_sys_openat+0x174/0x210 [ 240.976905][ T8322] ? __pfx___x64_sys_openat+0x10/0x10 [ 240.976954][ T8322] do_syscall_64+0xcd/0x490 [ 240.977001][ T8322] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 240.977030][ T8322] RIP: 0033:0x7f32a8b8e929 [ 240.977052][ T8322] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 240.977081][ T8322] RSP: 002b:00007f32a9952038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 240.977108][ T8322] RAX: ffffffffffffffda RBX: 00007f32a8db5fa0 RCX: 00007f32a8b8e929 [ 240.977133][ T8322] RDX: 0000000000000802 RSI: 00002000000010c0 RDI: ffffffffffffff9c [ 240.977152][ T8322] RBP: 00007f32a8c10b39 R08: 0000000000000000 R09: 0000000000000000 [ 240.977170][ T8322] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 240.977186][ T8322] R13: 0000000000000000 R14: 00007f32a8db5fa0 R15: 00007ffd0b553028 [ 240.977222][ T8322] [ 241.247750][ T8324] sg_write: data in/out 1624916139/266 bytes for SCSI command 0x7f-- guessing data in; [ 241.247750][ T8324] program syz.0.580 not setting count and/or reply_len properly [ 241.779969][ T8304] kexec: Could not allocate control_code_buffer [ 243.234944][ T8353] Invalid ELF header magic: != ELF [ 243.321959][ T8357] netlink: 24 bytes leftover after parsing attributes in process `syz.2.591'. [ 243.381445][ T8357] FAULT_INJECTION: forcing a failure. [ 243.381445][ T8357] name failslab, interval 1, probability 0, space 0, times 0 [ 243.439940][ T8357] CPU: 0 UID: 0 PID: 8357 Comm: syz.2.591 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) [ 243.439974][ T8357] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 243.439990][ T8357] Call Trace: [ 243.439998][ T8357] [ 243.440009][ T8357] dump_stack_lvl+0x16c/0x1f0 [ 243.440050][ T8357] should_fail_ex+0x512/0x640 [ 243.440084][ T8357] ? fs_reclaim_acquire+0xae/0x150 [ 243.440115][ T8357] should_failslab+0xc2/0x120 [ 243.440138][ T8357] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 243.440176][ T8357] ? security_inode_alloc+0x3b/0x2b0 [ 243.440206][ T8357] security_inode_alloc+0x3b/0x2b0 [ 243.440233][ T8357] inode_init_always_gfp+0xce4/0x1030 [ 243.440272][ T8357] alloc_inode+0x86/0x240 [ 243.440296][ T8357] new_inode+0x22/0x1c0 [ 243.440322][ T8357] __debugfs_create_file+0x11c/0x6b0 [ 243.440357][ T8357] debugfs_create_file_full+0x41/0x60 [ 243.440392][ T8357] kvm_arch_create_vcpu_debugfs+0x34/0x160 [ 243.440426][ T8357] kvm_vm_ioctl+0x3154/0x3dd0 [ 243.440476][ T8357] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 243.440529][ T8357] ? kasan_quarantine_put+0x10a/0x240 [ 243.440564][ T8357] ? lockdep_hardirqs_on+0x7c/0x110 [ 243.440601][ T8357] ? find_held_lock+0x2b/0x80 [ 243.440626][ T8357] ? tomoyo_path_number_perm+0x295/0x580 [ 243.440661][ T8357] ? tomoyo_path_number_perm+0x18d/0x580 [ 243.440712][ T8357] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 243.440755][ T8357] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 243.440810][ T8357] ? do_vfs_ioctl+0x523/0x1a60 [ 243.440836][ T8357] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 243.440880][ T8357] ? find_held_lock+0x2b/0x80 [ 243.440901][ T8357] ? hook_file_ioctl_common+0x145/0x410 [ 243.440937][ T8357] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 243.440973][ T8357] __x64_sys_ioctl+0x18e/0x210 [ 243.441000][ T8357] do_syscall_64+0xcd/0x490 [ 243.441034][ T8357] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 243.441067][ T8357] RIP: 0033:0x7fdb24f8e929 [ 243.441083][ T8357] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 243.441121][ T8357] RSP: 002b:00007fdb25d0e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 243.441141][ T8357] RAX: ffffffffffffffda RBX: 00007fdb251b5fa0 RCX: 00007fdb24f8e929 [ 243.441155][ T8357] RDX: 0000000000000002 RSI: 000000000000ae41 RDI: 0000000000000003 [ 243.441168][ T8357] RBP: 00007fdb25010b39 R08: 0000000000000000 R09: 0000000000000000 [ 243.441181][ T8357] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 243.441194][ T8357] R13: 0000000000000000 R14: 00007fdb251b5fa0 R15: 00007ffc31220928 [ 243.441220][ T8357] [ 243.441245][ T8357] debugfs: out of free dentries, can not create file 'guest_mode' [ 243.758594][ T8361] sg_write: data in/out 1624916139/266 bytes for SCSI command 0x7f-- guessing data in; [ 243.758594][ T8361] program syz.2.591 not setting count and/or reply_len properly [ 243.935829][ T8371] random: crng reseeded on system resumption [ 245.990722][ T8385] kexec: Could not allocate control_code_buffer [ 246.323565][ T8410] netlink: 24 bytes leftover after parsing attributes in process `syz.3.602'. [ 246.355398][ T8410] sg_write: data in/out 1624916139/266 bytes for SCSI command 0x7f-- guessing data in; [ 246.355398][ T8410] program syz.3.602 not setting count and/or reply_len properly [ 248.018587][ T8406] kexec: Could not allocate control_code_buffer [ 248.846795][ T8446] netlink: 24 bytes leftover after parsing attributes in process `syz.0.613'. [ 250.083901][ T8437] kexec: Could not allocate control_code_buffer [ 251.485732][ T8488] netlink: 24 bytes leftover after parsing attributes in process `syz.3.623'. [ 251.508785][ T8488] sg_write: data in/out 1624916139/266 bytes for SCSI command 0x7f-- guessing data in; [ 251.508785][ T8488] program syz.3.623 not setting count and/or reply_len properly [ 252.000177][ T8507] random: crng reseeded on system resumption [ 253.812971][ T8513] kexec: Could not allocate control_code_buffer [ 254.177102][ T8532] netlink: 24 bytes leftover after parsing attributes in process `syz.2.635'. [ 254.200541][ T8532] sg_write: data in/out 1624916139/266 bytes for SCSI command 0x7f-- guessing data in; [ 254.200541][ T8532] program syz.2.635 not setting count and/or reply_len properly [ 257.703363][ T8587] netlink: 24 bytes leftover after parsing attributes in process `syz.0.649'. [ 257.725553][ T8587] sg_write: data in/out 1624916139/266 bytes for SCSI command 0x7f-- guessing data in; [ 257.725553][ T8587] program syz.0.649 not setting count and/or reply_len properly [ 258.270907][ T8569] kexec: Could not allocate control_code_buffer [ 260.441533][ T8627] netlink: 24 bytes leftover after parsing attributes in process `syz.2.661'. [ 260.456717][ T8627] sg_write: data in/out 1624916139/266 bytes for SCSI command 0x7f-- guessing data in; [ 260.456717][ T8627] program syz.2.661 not setting count and/or reply_len properly [ 260.651335][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 260.657811][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 262.641781][ T8629] kexec: Could not allocate control_code_buffer [ 263.197869][ T8680] netlink: 24 bytes leftover after parsing attributes in process `syz.2.674'. [ 263.357988][ T8685] sg_write: data in/out 1624916139/266 bytes for SCSI command 0x7f-- guessing data in; [ 263.357988][ T8685] program syz.2.674 not setting count and/or reply_len properly [ 263.534719][ T8683] can: request_module (can-proto-0) failed. [ 265.342354][ T8717] netlink: 24 bytes leftover after parsing attributes in process `syz.2.686'. [ 265.378116][ T8717] sg_write: data in/out 1624916139/266 bytes for SCSI command 0x7f-- guessing data in; [ 265.378116][ T8717] program syz.2.686 not setting count and/or reply_len properly [ 266.099809][ T8703] kexec: Could not allocate control_code_buffer [ 267.673611][ T8767] netlink: 24 bytes leftover after parsing attributes in process `syz.2.697'. [ 267.796289][ T8767] sg_write: data in/out 1624916139/266 bytes for SCSI command 0x7f-- guessing data in; [ 267.796289][ T8767] program syz.2.697 not setting count and/or reply_len properly [ 269.277512][ T8770] kexec: Could not allocate control_code_buffer [ 269.375181][ T8792] ecryptfs_miscdev_write: Invalid packet size [0] [ 269.680142][ T8808] netlink: 24 bytes leftover after parsing attributes in process `syz.2.710'. [ 269.696064][ T8808] sg_write: data in/out 1624916139/266 bytes for SCSI command 0x7f-- guessing data in; [ 269.696064][ T8808] program syz.2.710 not setting count and/or reply_len properly [ 271.294406][ T8836] Invalid ELF header magic: != ELF [ 271.336092][ T8837] netlink: 24 bytes leftover after parsing attributes in process `syz.0.719'. [ 271.490939][ T8837] sg_write: data in/out 1624916139/266 bytes for SCSI command 0x7f-- guessing data in; [ 271.490939][ T8837] program syz.0.719 not setting count and/or reply_len properly [ 272.412787][ T8838] kexec: Could not allocate control_code_buffer [ 273.412427][ T8886] netlink: 24 bytes leftover after parsing attributes in process `syz.0.732'. [ 273.421177][ T8886] sg_write: data in/out 1624916139/266 bytes for SCSI command 0x7f-- guessing data in; [ 273.421177][ T8886] program syz.0.732 not setting count and/or reply_len properly [ 274.089724][ T8891] Invalid ELF header magic: != ELF [ 275.781707][ T8923] netlink: 24 bytes leftover after parsing attributes in process `syz.1.742'. [ 275.848232][ T8923] FAULT_INJECTION: forcing a failure. [ 275.848232][ T8923] name failslab, interval 1, probability 0, space 0, times 0 [ 275.882051][ T8923] CPU: 1 UID: 0 PID: 8923 Comm: syz.1.742 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) [ 275.882079][ T8923] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 275.882091][ T8923] Call Trace: [ 275.882098][ T8923] [ 275.882106][ T8923] dump_stack_lvl+0x16c/0x1f0 [ 275.882141][ T8923] should_fail_ex+0x512/0x640 [ 275.882171][ T8923] ? fs_reclaim_acquire+0xae/0x150 [ 275.882197][ T8923] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 275.882226][ T8923] should_failslab+0xc2/0x120 [ 275.882245][ T8923] __kmalloc_noprof+0xd2/0x510 [ 275.882282][ T8923] tomoyo_realpath_from_path+0xc2/0x6e0 [ 275.882317][ T8923] tomoyo_check_open_permission+0x2ab/0x3c0 [ 275.882343][ T8923] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 275.882393][ T8923] ? do_raw_spin_lock+0x12c/0x2b0 [ 275.882432][ T8923] tomoyo_file_open+0x6b/0x90 [ 275.882473][ T8923] security_file_open+0x84/0x1e0 [ 275.882500][ T8923] do_dentry_open+0x596/0x1c10 [ 275.882539][ T8923] vfs_open+0x82/0x3f0 [ 275.882564][ T8923] path_openat+0x1de4/0x2cb0 [ 275.882601][ T8923] ? __pfx_path_openat+0x10/0x10 [ 275.882632][ T8923] ? __lock_acquire+0xb8a/0x1c90 [ 275.882662][ T8923] do_filp_open+0x20b/0x470 [ 275.882692][ T8923] ? __pfx_do_filp_open+0x10/0x10 [ 275.882739][ T8923] ? alloc_fd+0x471/0x7d0 [ 275.882773][ T8923] do_sys_openat2+0x11b/0x1d0 [ 275.882795][ T8923] ? __pfx_do_sys_openat2+0x10/0x10 [ 275.882828][ T8923] __x64_sys_openat+0x174/0x210 [ 275.882851][ T8923] ? __pfx___x64_sys_openat+0x10/0x10 [ 275.882884][ T8923] do_syscall_64+0xcd/0x490 [ 275.882917][ T8923] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 275.882937][ T8923] RIP: 0033:0x7f24d1b8e929 [ 275.882953][ T8923] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 275.882973][ T8923] RSP: 002b:00007f24d2ad1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 275.882991][ T8923] RAX: ffffffffffffffda RBX: 00007f24d1db5fa0 RCX: 00007f24d1b8e929 [ 275.883005][ T8923] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 275.883017][ T8923] RBP: 00007f24d1c10b39 R08: 0000000000000000 R09: 0000000000000000 [ 275.883030][ T8923] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 275.883042][ T8923] R13: 0000000000000000 R14: 00007f24d1db5fa0 R15: 00007ffceabeb2b8 [ 275.883070][ T8923] [ 275.885327][ T8923] ERROR: Out of memory at tomoyo_realpath_from_path. [ 276.058459][ T8930] sg_write: data in/out 1624916139/266 bytes for SCSI command 0x7f-- guessing data in; [ 276.058459][ T8930] program syz.1.742 not setting count and/or reply_len properly [ 276.545752][ T8893] kexec: Could not allocate control_code_buffer [ 276.985533][ T8945] Invalid ELF header magic: != ELF [ 278.296786][ T8962] FAULT_INJECTION: forcing a failure. [ 278.296786][ T8962] name failslab, interval 1, probability 0, space 0, times 0 [ 278.498038][ T8962] CPU: 1 UID: 0 PID: 8962 Comm: syz.2.752 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) [ 278.498069][ T8962] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 278.498081][ T8962] Call Trace: [ 278.498088][ T8962] [ 278.498095][ T8962] dump_stack_lvl+0x16c/0x1f0 [ 278.498131][ T8962] should_fail_ex+0x512/0x640 [ 278.498160][ T8962] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 278.498192][ T8962] should_failslab+0xc2/0x120 [ 278.498211][ T8962] __kmalloc_cache_noprof+0x6a/0x3e0 [ 278.498240][ T8962] ? snd_pcm_oss_change_params_locked+0x247/0x3a30 [ 278.498265][ T8962] ? kasan_save_track+0x14/0x30 [ 278.498298][ T8962] snd_pcm_oss_change_params_locked+0x247/0x3a30 [ 278.498323][ T8962] ? rcu_is_watching+0x12/0xc0 [ 278.498346][ T8962] ? __mutex_lock+0x1ca/0xb90 [ 278.498379][ T8962] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 278.498403][ T8962] ? __pfx___mutex_lock+0x10/0x10 [ 278.498439][ T8962] ? __fsnotify_parent+0x24b/0xc40 [ 278.498473][ T8962] snd_pcm_oss_make_ready+0xe6/0x1b0 [ 278.498496][ T8962] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 278.498517][ T8962] snd_pcm_oss_sync+0x1de/0x840 [ 278.498541][ T8962] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 278.498563][ T8962] snd_pcm_oss_release+0x28b/0x310 [ 278.498585][ T8962] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 278.498606][ T8962] __fput+0x402/0xb70 [ 278.498632][ T8962] task_work_run+0x150/0x240 [ 278.498665][ T8962] ? __pfx_task_work_run+0x10/0x10 [ 278.498697][ T8962] ? __pfx___do_sys_close_range+0x10/0x10 [ 278.498733][ T8962] exit_to_user_mode_loop+0xeb/0x110 [ 278.498767][ T8962] do_syscall_64+0x3f6/0x490 [ 278.498801][ T8962] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 278.498822][ T8962] RIP: 0033:0x7fdb24f8e929 [ 278.498838][ T8962] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 278.498858][ T8962] RSP: 002b:00007fdb22df6038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 278.498877][ T8962] RAX: 0000000000000000 RBX: 00007fdb251b6080 RCX: 00007fdb24f8e929 [ 278.498890][ T8962] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000000 [ 278.498902][ T8962] RBP: 00007fdb25010b39 R08: 0000000000000000 R09: 0000000000000000 [ 278.498914][ T8962] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 278.498926][ T8962] R13: 0000000000000000 R14: 00007fdb251b6080 R15: 00007ffc31220928 [ 278.498950][ T8962] [ 279.091780][ T8966] FAULT_INJECTION: forcing a failure. [ 279.091780][ T8966] name failslab, interval 1, probability 0, space 0, times 0 [ 279.135593][ T8966] CPU: 1 UID: 0 PID: 8966 Comm: syz.3.753 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) [ 279.135638][ T8966] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 279.135656][ T8966] Call Trace: [ 279.135667][ T8966] [ 279.135675][ T8966] dump_stack_lvl+0x16c/0x1f0 [ 279.135712][ T8966] should_fail_ex+0x512/0x640 [ 279.135743][ T8966] ? fs_reclaim_acquire+0xae/0x150 [ 279.135771][ T8966] should_failslab+0xc2/0x120 [ 279.135791][ T8966] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 279.135825][ T8966] ? security_inode_alloc+0x3b/0x2b0 [ 279.135853][ T8966] security_inode_alloc+0x3b/0x2b0 [ 279.135877][ T8966] inode_init_always_gfp+0xce4/0x1030 [ 279.135928][ T8966] alloc_inode+0x86/0x240 [ 279.135968][ T8966] sock_alloc+0x40/0x280 [ 279.135997][ T8966] __sock_create+0xc1/0x8d0 [ 279.136041][ T8966] smc_create_clcsk+0x37/0xd0 [ 279.136070][ T8966] ? __pfx_smc_inet_init_sock+0x10/0x10 [ 279.136106][ T8966] inet6_create+0xb2d/0x1300 [ 279.136142][ T8966] ? inet6_create+0x7f/0x1300 [ 279.136179][ T8966] __sock_create+0x338/0x8d0 [ 279.136209][ T8966] __sys_socket+0x14d/0x260 [ 279.136232][ T8966] ? __x64_sys_openat+0x174/0x210 [ 279.136257][ T8966] ? __pfx___sys_socket+0x10/0x10 [ 279.136281][ T8966] ? xfd_validate_state+0x61/0x180 [ 279.136317][ T8966] __x64_sys_socket+0x72/0xb0 [ 279.136340][ T8966] ? lockdep_hardirqs_on+0x7c/0x110 [ 279.136371][ T8966] do_syscall_64+0xcd/0x490 [ 279.136405][ T8966] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 279.136427][ T8966] RIP: 0033:0x7fcf7578e929 [ 279.136444][ T8966] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 279.136465][ T8966] RSP: 002b:00007fcf76586038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 279.136485][ T8966] RAX: ffffffffffffffda RBX: 00007fcf759b5fa0 RCX: 00007fcf7578e929 [ 279.136499][ T8966] RDX: 0000000000000100 RSI: 0000000000000001 RDI: 000000000000000a [ 279.136512][ T8966] RBP: 00007fcf75810b39 R08: 0000000000000000 R09: 0000000000000000 [ 279.136525][ T8966] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 279.136538][ T8966] R13: 0000000000000000 R14: 00007fcf759b5fa0 R15: 00007ffed6b1f1f8 [ 279.136565][ T8966] [ 279.428914][ T8968] sg_write: data in/out 1624916139/266 bytes for SCSI command 0x7f-- guessing data in; [ 279.428914][ T8968] program syz.3.753 not setting count and/or reply_len properly [ 279.486535][ T8966] socket: no more sockets [ 281.060995][ T8970] kexec: Could not allocate control_code_buffer [ 281.391596][ T9009] Invalid ELF header magic: != ELF [ 282.502379][ T9019] netlink: 4 bytes leftover after parsing attributes in process `syz.0.762'. [ 282.806353][ T9033] netlink: 24 bytes leftover after parsing attributes in process `syz.1.767'. [ 282.843186][ T9033] FAULT_INJECTION: forcing a failure. [ 282.843186][ T9033] name failslab, interval 1, probability 0, space 0, times 0 [ 282.868657][ T9033] CPU: 0 UID: 0 PID: 9033 Comm: syz.1.767 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) [ 282.868699][ T9033] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 282.868717][ T9033] Call Trace: [ 282.868727][ T9033] [ 282.868737][ T9033] dump_stack_lvl+0x16c/0x1f0 [ 282.868786][ T9033] should_fail_ex+0x512/0x640 [ 282.868828][ T9033] ? fs_reclaim_acquire+0xae/0x150 [ 282.868867][ T9033] should_failslab+0xc2/0x120 [ 282.868894][ T9033] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 282.868948][ T9033] ? security_inode_alloc+0x3b/0x2b0 [ 282.868984][ T9033] security_inode_alloc+0x3b/0x2b0 [ 282.869017][ T9033] inode_init_always_gfp+0xce4/0x1030 [ 282.869063][ T9033] alloc_inode+0x86/0x240 [ 282.869093][ T9033] new_inode+0x22/0x1c0 [ 282.869128][ T9033] debugfs_create_dir+0xdd/0x5f0 [ 282.869170][ T9033] kvm_vm_ioctl+0x3125/0x3dd0 [ 282.869219][ T9037] sg_write: data in/out 1624916139/266 bytes for SCSI command 0x7f-- guessing data in; [ 282.869219][ T9037] program syz.1.767 not setting count and/or reply_len properly [ 282.869231][ T9033] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 282.869294][ T9033] ? kasan_quarantine_put+0x10a/0x240 [ 282.869342][ T9033] ? lockdep_hardirqs_on+0x7c/0x110 [ 282.869395][ T9033] ? find_held_lock+0x2b/0x80 [ 282.869430][ T9033] ? tomoyo_path_number_perm+0x295/0x580 [ 282.869477][ T9033] ? tomoyo_path_number_perm+0x18d/0x580 [ 282.869517][ T9033] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 282.869554][ T9033] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 282.869633][ T9033] ? do_vfs_ioctl+0x523/0x1a60 [ 282.869676][ T9033] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 282.869751][ T9033] ? find_held_lock+0x2b/0x80 [ 282.869789][ T9033] ? hook_file_ioctl_common+0x145/0x410 [ 282.869852][ T9033] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 282.869924][ T9033] __x64_sys_ioctl+0x18e/0x210 [ 282.869972][ T9033] do_syscall_64+0xcd/0x490 [ 282.870035][ T9033] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 282.870073][ T9033] RIP: 0033:0x7f24d1b8e929 [ 282.870102][ T9033] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 282.870140][ T9033] RSP: 002b:00007f24d2ad1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 282.870175][ T9033] RAX: ffffffffffffffda RBX: 00007f24d1db5fa0 RCX: 00007f24d1b8e929 [ 282.870201][ T9033] RDX: 0000000000000002 RSI: 000000000000ae41 RDI: 0000000000000003 [ 282.870223][ T9033] RBP: 00007f24d1c10b39 R08: 0000000000000000 R09: 0000000000000000 [ 282.870247][ T9033] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 282.870269][ T9033] R13: 0000000000000000 R14: 00007f24d1db5fa0 R15: 00007ffceabeb2b8 [ 282.870316][ T9033] [ 282.870352][ T9033] debugfs: out of free dentries, can not create directory 'vcpu2' [ 283.148708][ T9036] ================================================================== [ 283.156815][ T9036] BUG: KASAN: slab-out-of-bounds in afs_proc_addr_prefs_write+0x13a9/0x15f0 [ 283.165505][ T9036] Read of size 1 at addr ffff88805c2f50ea by task syz.2.768/9036 [ 283.173241][ T9036] [ 283.175575][ T9036] CPU: 1 UID: 0 PID: 9036 Comm: syz.2.768 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) [ 283.175609][ T9036] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 283.175623][ T9036] Call Trace: [ 283.175634][ T9036] [ 283.175642][ T9036] dump_stack_lvl+0x116/0x1f0 [ 283.175678][ T9036] print_report+0xcd/0x680 [ 283.175697][ T9036] ? __virt_addr_valid+0x81/0x610 [ 283.175722][ T9036] ? __phys_addr+0xe8/0x180 [ 283.175745][ T9036] ? afs_proc_addr_prefs_write+0x13a9/0x15f0 [ 283.175769][ T9036] kasan_report+0xe0/0x110 [ 283.175793][ T9036] ? afs_proc_addr_prefs_write+0x13a9/0x15f0 [ 283.175821][ T9036] afs_proc_addr_prefs_write+0x13a9/0x15f0 [ 283.175844][ T9036] ? __lock_acquire+0xb8a/0x1c90 [ 283.175878][ T9036] ? __pfx_afs_proc_addr_prefs_write+0x10/0x10 [ 283.175912][ T9036] ? find_held_lock+0x2b/0x80 [ 283.175940][ T9036] ? __might_fault+0xe3/0x190 [ 283.175979][ T9036] ? __might_fault+0xe3/0x190 [ 283.176008][ T9036] ? __might_fault+0x13b/0x190 [ 283.176046][ T9036] ? proc_simple_write+0x117/0x1b0 [ 283.176066][ T9036] proc_simple_write+0x117/0x1b0 [ 283.176088][ T9036] ? __pfx_proc_simple_write+0x10/0x10 [ 283.176110][ T9036] proc_reg_write+0x23d/0x330 [ 283.176143][ T9036] ? __pfx_proc_reg_write+0x10/0x10 [ 283.176173][ T9036] vfs_writev+0x5df/0xde0 [ 283.176201][ T9036] ? __pfx___mutex_trylock_common+0x10/0x10 [ 283.176236][ T9036] ? __pfx_vfs_writev+0x10/0x10 [ 283.176264][ T9036] ? __mutex_lock+0x1ca/0xb90 [ 283.176295][ T9036] ? kmem_cache_free+0x2d1/0x4d0 [ 283.176339][ T9036] ? __pfx___mutex_lock+0x10/0x10 [ 283.176375][ T9036] ? __fget_files+0x20e/0x3c0 [ 283.176406][ T9036] ? do_writev+0x132/0x340 [ 283.176430][ T9036] do_writev+0x132/0x340 [ 283.176456][ T9036] ? __pfx_do_writev+0x10/0x10 [ 283.176486][ T9036] do_syscall_64+0xcd/0x490 [ 283.176517][ T9036] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 283.176538][ T9036] RIP: 0033:0x7fdb24f8e929 [ 283.176554][ T9036] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 283.176575][ T9036] RSP: 002b:00007fdb25d0e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 283.176593][ T9036] RAX: ffffffffffffffda RBX: 00007fdb251b5fa0 RCX: 00007fdb24f8e929 [ 283.176607][ T9036] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000005 [ 283.176620][ T9036] RBP: 00007fdb25010b39 R08: 0000000000000000 R09: 0000000000000000 [ 283.176638][ T9036] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 283.176650][ T9036] R13: 0000000000000000 R14: 00007fdb251b5fa0 R15: 00007ffc31220928 [ 283.176670][ T9036] [ 283.176677][ T9036] [ 283.436638][ T9036] Allocated by task 9036: [ 283.440968][ T9036] kasan_save_stack+0x33/0x60 [ 283.445689][ T9036] kasan_save_track+0x14/0x30 [ 283.450391][ T9036] __kasan_kmalloc+0xaa/0xb0 [ 283.455013][ T9036] __kmalloc_node_track_caller_noprof+0x221/0x510 [ 283.461450][ T9036] memdup_user_nul+0x2b/0x120 [ 283.466138][ T9036] proc_simple_write+0xc7/0x1b0 [ 283.470998][ T9036] proc_reg_write+0x23d/0x330 [ 283.475708][ T9036] vfs_writev+0x5df/0xde0 [ 283.480054][ T9036] do_writev+0x132/0x340 [ 283.484310][ T9036] do_syscall_64+0xcd/0x490 [ 283.488823][ T9036] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 283.494720][ T9036] [ 283.497044][ T9036] The buggy address belongs to the object at ffff88805c2f50e0 [ 283.497044][ T9036] which belongs to the cache kmalloc-16 of size 16 [ 283.510963][ T9036] The buggy address is located 0 bytes to the right of [ 283.510963][ T9036] allocated 10-byte region [ffff88805c2f50e0, ffff88805c2f50ea) [ 283.525476][ T9036] [ 283.527819][ T9036] The buggy address belongs to the physical page: [ 283.534238][ T9036] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x5c2f5 [ 283.543005][ T9036] anon flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 283.550551][ T9036] page_type: f5(slab) [ 283.554585][ T9036] raw: 00fff00000000000 ffff88801b841640 0000000000000000 dead000000000001 [ 283.563203][ T9036] raw: 0000000000000000 0000000080800080 00000000f5000000 0000000000000000 [ 283.571784][ T9036] page dumped because: kasan: bad access detected [ 283.578193][ T9036] page_owner tracks the page as allocated [ 283.583934][ T9036] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x252800(GFP_NOWAIT|__GFP_NORETRY|__GFP_COMP|__GFP_THISNODE), pid 5844, tgid 5844 (syz-executor), ts 262987846665, free_ts 262987783782 [ 283.603662][ T9036] post_alloc_hook+0x1c0/0x230 [ 283.608451][ T9036] get_page_from_freelist+0x1321/0x3890 [ 283.614017][ T9036] __alloc_frozen_pages_noprof+0x261/0x23f0 [ 283.619938][ T9036] new_slab+0x94/0x330 [ 283.624024][ T9036] ___slab_alloc+0xd9c/0x1940 [ 283.628717][ T9036] __slab_alloc.constprop.0+0x56/0xb0 [ 283.634109][ T9036] __kvmalloc_node_noprof+0x3b1/0x620 [ 283.639500][ T9036] xt_replace_table+0x1e3/0x950 [ 283.644368][ T9036] __do_replace+0x1cf/0x9f0 [ 283.648890][ T9036] do_ip6t_set_ctl+0x806/0xa70 [ 283.653674][ T9036] nf_setsockopt+0x8d/0xf0 [ 283.658207][ T9036] ipv6_setsockopt+0x135/0x170 [ 283.663008][ T9036] tcp_setsockopt+0xa7/0x100 [ 283.667627][ T9036] do_sock_setsockopt+0x221/0x470 [ 283.672661][ T9036] __sys_setsockopt+0x120/0x1a0 [ 283.677526][ T9036] __x64_sys_setsockopt+0xbd/0x160 [ 283.682651][ T9036] page last free pid 5844 tgid 5844 stack trace: [ 283.688980][ T9036] __free_frozen_pages+0x7fe/0x1180 [ 283.694187][ T9036] kasan_populate_vmalloc+0x18c/0x1f0 [ 283.699581][ T9036] alloc_vmap_area+0x959/0x29c0 [ 283.704462][ T9036] __get_vm_area_node+0x1ca/0x330 [ 283.709587][ T9036] __vmalloc_node_range_noprof+0x271/0x14b0 [ 283.715525][ T9036] __vmalloc_node_noprof+0xad/0xf0 [ 283.720649][ T9036] xt_counters_alloc+0x4c/0x70 [ 283.725424][ T9036] __do_replace+0x97/0x9f0 [ 283.729852][ T9036] do_ip6t_set_ctl+0x806/0xa70 [ 283.734631][ T9036] nf_setsockopt+0x8d/0xf0 [ 283.739049][ T9036] ipv6_setsockopt+0x135/0x170 [ 283.743814][ T9036] tcp_setsockopt+0xa7/0x100 [ 283.748419][ T9036] do_sock_setsockopt+0x221/0x470 [ 283.753450][ T9036] __sys_setsockopt+0x120/0x1a0 [ 283.758317][ T9036] __x64_sys_setsockopt+0xbd/0x160 [ 283.763450][ T9036] do_syscall_64+0xcd/0x490 [ 283.767970][ T9036] [ 283.770301][ T9036] Memory state around the buggy address: [ 283.775944][ T9036] ffff88805c2f4f80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 283.784008][ T9036] ffff88805c2f5000: 00 00 fc fc 00 00 fc fc fa fb fc fc fa fb fc fc [ 283.792067][ T9036] >ffff88805c2f5080: fa fb fc fc 00 06 fc fc 00 00 fc fc 00 02 fc fc [ 283.800131][ T9036] ^ [ 283.807613][ T9036] ffff88805c2f5100: fa fb fc fc fa fb fc fc fa fb fc fc fa fb fc fc [ 283.815717][ T9036] ffff88805c2f5180: 00 00 fc fc 00 00 fc fc 00 00 fc fc 00 00 fc fc [ 283.823774][ T9036] ================================================================== [ 283.857028][ T9036] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 283.864283][ T9036] CPU: 0 UID: 0 PID: 9036 Comm: syz.2.768 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) [ 283.876187][ T9036] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 283.886261][ T9036] Call Trace: [ 283.889543][ T9036] [ 283.892475][ T9036] dump_stack_lvl+0x3d/0x1f0 [ 283.897082][ T9036] panic+0x71c/0x800 [ 283.901034][ T9036] ? __pfx_panic+0x10/0x10 [ 283.905475][ T9036] ? mark_held_locks+0x49/0x80 [ 283.910260][ T9036] ? preempt_schedule_thunk+0x16/0x30 [ 283.915652][ T9036] ? afs_proc_addr_prefs_write+0x13a9/0x15f0 [ 283.921649][ T9036] ? preempt_schedule_common+0x44/0xc0 [ 283.927123][ T9036] ? afs_proc_addr_prefs_write+0x13a9/0x15f0 [ 283.933108][ T9036] check_panic_on_warn+0xab/0xb0 [ 283.938061][ T9036] end_report+0x107/0x170 [ 283.942391][ T9036] kasan_report+0xee/0x110 [ 283.946814][ T9036] ? afs_proc_addr_prefs_write+0x13a9/0x15f0 [ 283.952809][ T9036] afs_proc_addr_prefs_write+0x13a9/0x15f0 [ 283.958626][ T9036] ? __lock_acquire+0xb8a/0x1c90 [ 283.963577][ T9036] ? __pfx_afs_proc_addr_prefs_write+0x10/0x10 [ 283.969747][ T9036] ? find_held_lock+0x2b/0x80 [ 283.974449][ T9036] ? __might_fault+0xe3/0x190 [ 283.979165][ T9036] ? __might_fault+0xe3/0x190 [ 283.983866][ T9036] ? __might_fault+0x13b/0x190 [ 283.988654][ T9036] ? proc_simple_write+0x117/0x1b0 [ 283.993769][ T9036] proc_simple_write+0x117/0x1b0 [ 283.998709][ T9036] ? __pfx_proc_simple_write+0x10/0x10 [ 284.004175][ T9036] proc_reg_write+0x23d/0x330 [ 284.008869][ T9036] ? __pfx_proc_reg_write+0x10/0x10 [ 284.014082][ T9036] vfs_writev+0x5df/0xde0 [ 284.018427][ T9036] ? __pfx___mutex_trylock_common+0x10/0x10 [ 284.024340][ T9036] ? __pfx_vfs_writev+0x10/0x10 [ 284.029200][ T9036] ? __mutex_lock+0x1ca/0xb90 [ 284.033894][ T9036] ? kmem_cache_free+0x2d1/0x4d0 [ 284.038869][ T9036] ? __pfx___mutex_lock+0x10/0x10 [ 284.043911][ T9036] ? __fget_files+0x20e/0x3c0 [ 284.048618][ T9036] ? do_writev+0x132/0x340 [ 284.053071][ T9036] do_writev+0x132/0x340 [ 284.057340][ T9036] ? __pfx_do_writev+0x10/0x10 [ 284.062134][ T9036] do_syscall_64+0xcd/0x490 [ 284.066682][ T9036] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 284.072605][ T9036] RIP: 0033:0x7fdb24f8e929 [ 284.077036][ T9036] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 284.096666][ T9036] RSP: 002b:00007fdb25d0e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 284.105104][ T9036] RAX: ffffffffffffffda RBX: 00007fdb251b5fa0 RCX: 00007fdb24f8e929 [ 284.113094][ T9036] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000005 [ 284.121078][ T9036] RBP: 00007fdb25010b39 R08: 0000000000000000 R09: 0000000000000000 [ 284.129061][ T9036] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 284.137041][ T9036] R13: 0000000000000000 R14: 00007fdb251b5fa0 R15: 00007ffc31220928 [ 284.145037][ T9036] [ 284.148465][ T9036] Kernel Offset: disabled [ 284.152811][ T9036] Rebooting in 86400 seconds..