last executing test programs: 13.446893421s ago: executing program 2 (id=586): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000000), r0) sysfs$auto(0x2, 0x100000000000007, 0x0) keyctl$auto(0x2000000000000017, 0x8000, 0x2d, 0xc4, 0x20803) r1 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/block/nbd5/hctx0/cpu1/read_rq_list\x00', 0x2, 0x0) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/bus/pci/00/04.0\x00', 0xc8841, 0x0) r3 = socket(0x2, 0x1, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x20002000000, 0x20009, 0xfffffffffffffff8, 0x13, r3, 0x8000) clone3$auto(0x0, 0x42) write$auto(r2, 0x0, 0x1) write$auto_drm_crtc_crc_control_fops_drm_debugfs_crc(0xffffffffffffffff, &(0x7f0000000040)="2dd443fe29f3185038f47328a5f875c07eb36fedd696b175c46e0c687e8468105a5bec07b8138a8c1f45dee051cd023aa211036cc15802163d194c15bbc5583ea1feac10cbd718f1aa295169b9e7e0123a89e4a6d30f18de7b128913c034fc8f57", 0x61) mmap$auto(0x1, 0x2, 0x9, 0x18, r1, 0x40) openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/dynamic_events\x00', 0x103, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000001040)='/proc/asound/card1/pcm1c/sub7/info\x00', 0x28102, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f00000009c0), 0xffffffffffffffff) sendmsg$auto_IPVS_CMD_SET_SERVICE(r4, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000002a80)={&(0x7f0000005400)={0x1c, r5, 0x1, 0x70bd28, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_SERVICE={0x8, 0x1, 0x0, 0x1, [@nested={0x4, 0x1}]}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4050}, 0x4000000) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0x40000, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D1\x00', 0x1, 0x0) r6 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x4) close_range$auto(0x2, 0x8, 0x0) r7 = socket(0x10, 0x2, 0xc) sendmsg$auto_TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000003780)={0x0, 0x0, &(0x7f0000003740)={&(0x7f0000000000)=ANY=[@ANYBLOB="b1000000", @ANYRES16, @ANYBLOB="0100"], 0x20}, 0x1, 0x0, 0x0, 0x41}, 0x40080) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000", @ANYRES8=r7, @ANYRES8=r6], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x4000050) 11.198478624s ago: executing program 2 (id=589): madvise$auto(0x7fffffffffffffff, 0xd, 0x101) madvise$auto(0xfffffffffffffff7, 0x9, 0x5) unshare$auto(0x40000080) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) socket(0x1e, 0x1, 0x0) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socket(0x11, 0x3, 0x9) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3b, 0x9, 0x2, 0x6]}, 0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'hsr0\x00', 0x0}) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000826bd7000fedbdf250300000008000400b70a0000060007000080000008000200", @ANYRES32=r2, @ANYBLOB="0a0005000180c200000e00000a0001000180c200000e00000a000100000000000000000008000200", @ANYRES32=r2, @ANYBLOB="060003c1e2"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) pread64$auto(0xffffffffffffffff, 0x0, 0x1ff, 0x8800000000) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x7, 0x1ff, 0x7, 0x3, 0x7181, 0x8002, 0x7, 0x3, 0x9, 0x5, 0x80003, 0x4, 0x200000000000, 0xb4, 0x9, 0x8, 0x10006, 0x4000080, 0x0, 0x0, 0xe, 0x22000, 0x200, 0x0, 0xd363, 0x0, 0x0, 0x0, 0x0, 0x3, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1]}, 0x1fe, 0xd) r3 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0) ioctl$auto__ctl_fops_dm_ioctl(r3, 0xfffffffffffffd09, &(0x7f00000001c0)) getpid() 7.880696418s ago: executing program 2 (id=599): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001d80)='/sys/devices/virtual/sound/ctl-led/speaker/card0/attach\x00', 0x1, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000040)="3100001000000000002ca65de95b667827494d", 0x5e) mmap$auto(0x0, 0x7, 0x4000000000e0, 0xeb1, 0x401, 0x400) socket(0x2b, 0x1, 0x1) listen$auto(0x3, 0x81) r1 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0) ioctl$auto_USBDEVFS_IOCTL(r1, 0xc0105512, &(0x7f0000000280)={0x9, 0xffffff93, 0x0}) ioctl$auto(0x3, 0x894b, 0x38) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) ioctl$auto_SNDRV_RAWMIDI_IOCTL_DRAIN(0xffffffffffffffff, 0x40045731, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory12/power/control\x00', 0x100, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) sysfs$auto(0x2, 0xd, 0x0) r3 = fsopen$auto(0x0, 0x1) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) fsconfig$auto(r3, 0x3, &(0x7f0000000000)='Q**\x00', &(0x7f0000000040)="2b24c0bfbf", 0x0) r4 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000100), 0xffffffffffffffff) msgctl$auto_MSG_STAT(0x1, 0xb, &(0x7f00000001c0)={{0x46b5, 0xee01, 0xee01, 0x7f, 0x4, 0x5, 0x200}, &(0x7f0000000140)=0x4, &(0x7f0000000180)=0xa, 0x3, 0x101, 0x1, 0x1ff, 0xffff, 0x31f, 0x3, 0x769c, @inferred, @raw=0x7}) ioctl$auto_XFS_IOC_ALLOCSP(0xffffffffffffffff, 0x4030580a, &(0x7f0000000240)={0x10, 0x6eeb, 0xb157, 0x7, 0x7}) sendmsg$auto_NL802154_CMD_LIST_ASSOCIATIONS(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1ac, r4, 0x480, 0x70bd25, 0x25dfdbfe, {}, [@NL802154_ATTR_SCAN_DURATION={0x5}, @NL802154_ATTR_SUPPORTED_COMMANDS={0x17e, 0x19, 0x0, 0x1, [@generic="b85b7cbcda8777bdbe3fad184d01d1637af2e5905d4498eea99e183793a3d700dbfdec157cfb70ebad1d7cbf0d977b5e6b3358ca58292df2e0fde26bcb8c5e9e2b5806e51d8782d80306af25c55d98b9bd6c5c1bde88be3408", @generic="dfa516e5510bc738a7bb1502704b52e01de2973a4dbc31e75efd2b503815ca3d558f40459a97c3e72ca420f1d326364643451e199873f1be4685dd8849248daec39bd673b420ed204765a8af33", @typed={0xc, 0xba, 0x0, 0x0, @u64=0x6}, @typed={0x8, 0xaf, 0x0, 0x0, @uid=r5}, @typed={0x8, 0x74, 0x0, 0x0, @fd}, @typed={0x36, 0x137, 0x0, 0x0, @str='/sys/devices/system/memory/memory12/power/control\x00'}, @generic="c6bd4cefe6f5ba53e6db8f12a2e89ef7554f9d0cd97aea2159769197a25b2c9c8ac418c3d712d8c16ae369799e42acf1880ea768274311a0c8b47c5c40b76a205838c7243951fdf7e5ed5c87bda625895abc0f096d73d3f7e9e560c325189e4209fce50f9db8c96d8461b21aac97cd4f1b43b67c86968b7e", @typed={0x8, 0xaf, 0x0, 0x0, @ipv4=@private=0xa010101}]}, @NL802154_ATTR_MAX_ASSOCIATIONS={0x8, 0x27, 0x9}, @NL802154_ATTR_BEACON_INTERVAL={0x5, 0x26, 0x4f}]}, 0x1ac}, 0x1, 0x0, 0x0, 0x48004}, 0x0) close_range$auto(0x2, 0x8, 0x0) r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0) ioctl$auto_KVM_CREATE_VM(r6, 0xae01, 0x0) ioctl$auto(0x3, 0x4048aec9, r2) accept4$auto(r1, &(0x7f0000000000)=@l2tp={0x2, 0x0, @remote, 0x3}, &(0x7f0000000080)=0xe8, 0x2) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x20681, 0x0) 7.079036204s ago: executing program 2 (id=610): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001d80)='/sys/devices/virtual/sound/ctl-led/speaker/card0/attach\x00', 0x1, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000040)="3100001000000000002ca65de95b667827494d", 0x5e) mmap$auto(0x0, 0x7, 0x4000000000e0, 0xeb1, 0x401, 0x400) socket(0x2b, 0x1, 0x1) listen$auto(0x3, 0x81) r1 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0) ioctl$auto_USBDEVFS_IOCTL(r1, 0xc0105512, &(0x7f0000000280)={0x9, 0xffffff93, 0x0}) ioctl$auto(0x3, 0x894b, 0x38) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) ioctl$auto_SNDRV_RAWMIDI_IOCTL_DRAIN(0xffffffffffffffff, 0x40045731, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory12/power/control\x00', 0x100, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) sysfs$auto(0x2, 0xd, 0x0) r3 = fsopen$auto(0x0, 0x1) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) fsconfig$auto(r3, 0x3, &(0x7f0000000000)='Q**\x00', &(0x7f0000000040)="2b24c0bfbf", 0x0) r4 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000100), 0xffffffffffffffff) msgctl$auto_MSG_STAT(0x1, 0xb, &(0x7f00000001c0)={{0x46b5, 0xee01, 0xee01, 0x7f, 0x4, 0x5, 0x200}, &(0x7f0000000140)=0x4, &(0x7f0000000180)=0xa, 0x3, 0x101, 0x1, 0x1ff, 0xffff, 0x31f, 0x3, 0x769c, @inferred, @raw=0x7}) ioctl$auto_XFS_IOC_ALLOCSP(0xffffffffffffffff, 0x4030580a, &(0x7f0000000240)={0x10, 0x6eeb, 0xb157, 0x7, 0x7}) sendmsg$auto_NL802154_CMD_LIST_ASSOCIATIONS(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1ac, r4, 0x480, 0x70bd25, 0x25dfdbfe, {}, [@NL802154_ATTR_SCAN_DURATION={0x5}, @NL802154_ATTR_SUPPORTED_COMMANDS={0x17e, 0x19, 0x0, 0x1, [@generic="b85b7cbcda8777bdbe3fad184d01d1637af2e5905d4498eea99e183793a3d700dbfdec157cfb70ebad1d7cbf0d977b5e6b3358ca58292df2e0fde26bcb8c5e9e2b5806e51d8782d80306af25c55d98b9bd6c5c1bde88be3408", @generic="dfa516e5510bc738a7bb1502704b52e01de2973a4dbc31e75efd2b503815ca3d558f40459a97c3e72ca420f1d326364643451e199873f1be4685dd8849248daec39bd673b420ed204765a8af33", @typed={0xc, 0xba, 0x0, 0x0, @u64=0x6}, @typed={0x8, 0xaf, 0x0, 0x0, @uid=r5}, @typed={0x8, 0x74, 0x0, 0x0, @fd}, @typed={0x36, 0x137, 0x0, 0x0, @str='/sys/devices/system/memory/memory12/power/control\x00'}, @generic="c6bd4cefe6f5ba53e6db8f12a2e89ef7554f9d0cd97aea2159769197a25b2c9c8ac418c3d712d8c16ae369799e42acf1880ea768274311a0c8b47c5c40b76a205838c7243951fdf7e5ed5c87bda625895abc0f096d73d3f7e9e560c325189e4209fce50f9db8c96d8461b21aac97cd4f1b43b67c86968b7e", @typed={0x8, 0xaf, 0x0, 0x0, @ipv4=@private=0xa010101}]}, @NL802154_ATTR_MAX_ASSOCIATIONS={0x8, 0x27, 0x9}, @NL802154_ATTR_BEACON_INTERVAL={0x5, 0x26, 0x4f}]}, 0x1ac}, 0x1, 0x0, 0x0, 0x48004}, 0x0) close_range$auto(0x2, 0x8, 0x0) r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0) ioctl$auto_KVM_CREATE_VM(r6, 0xae01, 0x0) ioctl$auto(0x3, 0x4048aec9, r2) accept4$auto(r1, &(0x7f0000000000)=@l2tp={0x2, 0x0, @remote, 0x3}, &(0x7f0000000080)=0xe8, 0x2) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x20681, 0x0) 6.997284699s ago: executing program 1 (id=603): socket(0xa, 0x1, 0x84) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0x1, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) 6.410774154s ago: executing program 3 (id=604): openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000011c0), 0xa2741, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x101302, 0x0) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x1, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000200)='/dev/tty53\x00', 0x200, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/midiC2D0\x00', 0x109302, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0x7, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x0, 0x1a1a, 0x2, 0x3, 0x95f4da0a, 0x7f, 0x20000003, 0x62, 0x80000001, 0x10000000000004, 0x6d40, 0x1, 0x2, 0xfffffffffffffffe]}, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x10, 0x2, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_ETHTOOL_MSG_PLCA_GET_STATUS(r1, &(0x7f00000030c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000000}, 0x40) syz_genetlink_get_family_id$auto_netdev(&(0x7f0000003900), r1) r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), r1) sendmsg$auto_ETHTOOL_MSG_WOL_SET(r0, &(0x7f0000002cc0)={0x0, 0xff9e, &(0x7f0000002c80)={&(0x7f00000003c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010027bd7000fcdbdf250a0000ff15000000140001"], 0x2c}, 0x1, 0x0, 0x0, 0x4801}, 0x0) 6.243807249s ago: executing program 2 (id=605): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r0 = pipe2$auto(0x0, 0x80) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r1 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r1, 0xc0045516, &(0x7f00000001c0)=0x6) unshare$auto(0x40000080) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0180, 0x0) socket(0x1e, 0x1, 0x2000a) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x2020009, 0x8000000003, 0xeb1, r2, 0x8000) r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/neigh/bond_slave_1/ucast_solicit\x00', 0x101202, 0x0) r4 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv6/conf/bond_slave_1/disable_policy\x00', 0x202, 0x0) sendfile$auto(r4, r3, 0x0, 0x48) r5 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)) getdents$auto(r5, 0x0, 0x8) io_pgetevents$auto(0x8, 0xc313, 0x7, 0x0, 0x0, 0xffffffffffffffff) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/devices/platform/vhci_hcd.7/usb24/bDeviceClass\x00', 0x105580, 0x0) unshare$auto(0x40000080) madvise$auto(0x0, 0xffffffffffff0009, 0x13) madvise$auto(0x0, 0xffffffffffff0001, 0x15) ioctl$auto_XFS_IOC_FSINUMBERS(r0, 0xc0205867, &(0x7f00000003c0)={&(0x7f0000000040)=0x5, 0x7, &(0x7f0000000300)="a10e3e656f05d57c21e9a0a8addfffcc341eb06b88a0d0a5d80dfbef850d8cdc79643ec94d26f0e50fdbf8ce4fcb0a37c7580ada5eb45196f32c319b3b0d8cddb629f9770f291f8dbe2fc27619d2bf361ada40427b50e0e58d35a62d468abea25ddeda65e28ae7ff74e7e96f4c4804b5523d62090a2608e3d31a4400d76ce7937f9b60094cfff7800f2b245eee854079555d33ecd25c0cabcbfc42e30c1b8df179086ce56ea65fae18cbce164b01ee3c6b178ea3", &(0x7f0000000080)=0xa3}) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000) r6 = openat$auto_cachefiles_daemon_fops_internal(0xffffffffffffff9c, &(0x7f0000000240), 0x8000, 0x0) poll$auto(&(0x7f0000000280)={r6, 0xf06d, 0x4}, 0x80, 0x5) 5.811014046s ago: executing program 1 (id=607): madvise$auto(0x7fffffffffffffff, 0xd, 0x101) madvise$auto(0xfffffffffffffff7, 0x9, 0x5) unshare$auto(0x40000080) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) socket(0x1e, 0x1, 0x0) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socket(0x11, 0x3, 0x9) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3b, 0x9, 0x2, 0x6]}, 0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'hsr0\x00', 0x0}) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000826bd7000fedbdf250300000008000400b70a0000060007000080000008000200", @ANYRES32=r2, @ANYBLOB="0a0005000180c200000e00000a0001000180c200000e00000a000100000000000000000008000200", @ANYRES32=r2, @ANYBLOB="060003c1e2"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/can/reset_stats\x00', 0x200000, 0x0) pread64$auto(r3, 0x0, 0x1ff, 0x8800000000) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x7, 0x1ff, 0x7, 0x3, 0x7181, 0x8002, 0x7, 0x3, 0x9, 0x5, 0x80003, 0x4, 0x200000000000, 0xb4, 0x9, 0x8, 0x10006, 0x4000080, 0x0, 0x0, 0xe, 0x22000, 0x200, 0x0, 0xd363, 0x0, 0x0, 0x0, 0x0, 0x3, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1]}, 0x1fe, 0xd) r4 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0) ioctl$auto__ctl_fops_dm_ioctl(r4, 0xfffffffffffffd09, &(0x7f00000001c0)) getpid() 5.510267453s ago: executing program 0 (id=608): madvise$auto(0x7fffffffffffffff, 0xd, 0x101) madvise$auto(0xfffffffffffffff7, 0x9, 0x5) unshare$auto(0x40000080) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) socket(0x1e, 0x1, 0x0) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socket(0x11, 0x3, 0x9) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3b, 0x9, 0x2, 0x6]}, 0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'hsr0\x00', 0x0}) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000826bd7000fedbdf250300000008000400b70a0000060007000080000008000200", @ANYRES32=r2, @ANYBLOB="0a0005000180c200000e00000a0001000180c200000e00000a000100000000000000000008000200", @ANYRES32=r2, @ANYBLOB="060003c1e2"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/can/reset_stats\x00', 0x200000, 0x0) pread64$auto(r3, 0x0, 0x1ff, 0x8800000000) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x7, 0x1ff, 0x7, 0x3, 0x7181, 0x8002, 0x7, 0x3, 0x9, 0x5, 0x80003, 0x4, 0x200000000000, 0xb4, 0x9, 0x8, 0x10006, 0x4000080, 0x0, 0x0, 0xe, 0x22000, 0x200, 0x0, 0xd363, 0x0, 0x0, 0x0, 0x0, 0x3, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1]}, 0x1fe, 0xd) r4 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0) ioctl$auto__ctl_fops_dm_ioctl(r4, 0xfffffffffffffd09, &(0x7f00000001c0)) getpid() 5.317135768s ago: executing program 3 (id=609): madvise$auto(0x7fffffffffffffff, 0xd, 0x101) madvise$auto(0xfffffffffffffff7, 0x9, 0x5) unshare$auto(0x40000080) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) socket(0x1e, 0x1, 0x0) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socket(0x11, 0x3, 0x9) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3b, 0x9, 0x2, 0x6]}, 0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'hsr0\x00', 0x0}) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000826bd7000fedbdf250300000008000400b70a0000060007000080000008000200", @ANYRES32=r2, @ANYBLOB="0a0005000180c200000e00000a0001000180c200000e00000a000100000000000000000008000200", @ANYRES32=r2, @ANYBLOB="060003c1e2"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/can/reset_stats\x00', 0x200000, 0x0) pread64$auto(r3, 0x0, 0x1ff, 0x8800000000) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x7, 0x1ff, 0x7, 0x3, 0x7181, 0x8002, 0x7, 0x3, 0x9, 0x5, 0x80003, 0x4, 0x200000000000, 0xb4, 0x9, 0x8, 0x10006, 0x4000080, 0x0, 0x0, 0xe, 0x22000, 0x200, 0x0, 0xd363, 0x0, 0x0, 0x0, 0x0, 0x3, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1]}, 0x1fe, 0xd) r4 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0) ioctl$auto__ctl_fops_dm_ioctl(r4, 0xfffffffffffffd09, &(0x7f00000001c0)) getpid() 4.416597194s ago: executing program 0 (id=611): mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000) r0 = socket(0x2, 0x2, 0x0) r1 = getsockopt$auto(r0, 0x0, 0x1, 0xfffffffffffffffc, 0x0) mmap$auto(0x0, 0x2020007, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x900, 0x0) mmap$auto(0x0, 0x580f, 0x1, 0x8000000008011, 0x3, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) write$auto(0x1, 0x0, 0x80000000) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000abd9) munmap$auto(0x8000, 0xffffffff) 3.595562219s ago: executing program 3 (id=612): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001d80)='/sys/devices/virtual/sound/ctl-led/speaker/card0/attach\x00', 0x1, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000040)="3100001000000000002ca65de95b667827494d", 0x5e) mmap$auto(0x0, 0x7, 0x4000000000e0, 0xeb1, 0x401, 0x400) socket(0x2b, 0x1, 0x1) listen$auto(0x3, 0x81) r1 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0) ioctl$auto_USBDEVFS_IOCTL(r1, 0xc0105512, &(0x7f0000000280)={0x9, 0xffffff93, 0x0}) ioctl$auto(0x3, 0x894b, 0x38) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) ioctl$auto_SNDRV_RAWMIDI_IOCTL_DRAIN(0xffffffffffffffff, 0x40045731, 0x0) r2 = io_uring_setup$auto(0x1, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory12/power/control\x00', 0x100, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) sysfs$auto(0x2, 0xd, 0x0) r4 = fsopen$auto(0x0, 0x1) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) fsconfig$auto(r4, 0x3, &(0x7f0000000000)='Q**\x00', &(0x7f0000000040)="2b24c0bfbf", 0x0) r5 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000100), r2) msgctl$auto_MSG_STAT(0x1, 0xb, &(0x7f00000001c0)={{0x46b5, 0xee01, 0xee01, 0x7f, 0x4, 0x5, 0x200}, &(0x7f0000000140)=0x4, &(0x7f0000000180)=0xa, 0x3, 0x101, 0x1, 0x1ff, 0xffff, 0x31f, 0x3, 0x769c, @inferred, @raw=0x7}) ioctl$auto_XFS_IOC_ALLOCSP(r2, 0x4030580a, &(0x7f0000000240)={0x10, 0x6eeb, 0xb157, 0x7, 0x7}) sendmsg$auto_NL802154_CMD_LIST_ASSOCIATIONS(r2, &(0x7f0000000480)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1ac, r5, 0x480, 0x70bd25, 0x25dfdbfe, {}, [@NL802154_ATTR_SCAN_DURATION={0x5}, @NL802154_ATTR_SUPPORTED_COMMANDS={0x17e, 0x19, 0x0, 0x1, [@generic="b85b7cbcda8777bdbe3fad184d01d1637af2e5905d4498eea99e183793a3d700dbfdec157cfb70ebad1d7cbf0d977b5e6b3358ca58292df2e0fde26bcb8c5e9e2b5806e51d8782d80306af25c55d98b9bd6c5c1bde88be3408", @generic="dfa516e5510bc738a7bb1502704b52e01de2973a4dbc31e75efd2b503815ca3d558f40459a97c3e72ca420f1d326364643451e199873f1be4685dd8849248daec39bd673b420ed204765a8af33", @typed={0xc, 0xba, 0x0, 0x0, @u64=0x6}, @typed={0x8, 0xaf, 0x0, 0x0, @uid=r6}, @typed={0x8, 0x74, 0x0, 0x0, @fd=r2}, @typed={0x36, 0x137, 0x0, 0x0, @str='/sys/devices/system/memory/memory12/power/control\x00'}, @generic="c6bd4cefe6f5ba53e6db8f12a2e89ef7554f9d0cd97aea2159769197a25b2c9c8ac418c3d712d8c16ae369799e42acf1880ea768274311a0c8b47c5c40b76a205838c7243951fdf7e5ed5c87bda625895abc0f096d73d3f7e9e560c325189e4209fce50f9db8c96d8461b21aac97cd4f1b43b67c86968b7e", @typed={0x8, 0xaf, 0x0, 0x0, @ipv4=@private=0xa010101}]}, @NL802154_ATTR_MAX_ASSOCIATIONS={0x8, 0x27, 0x9}, @NL802154_ATTR_BEACON_INTERVAL={0x5, 0x26, 0x4f}]}, 0x1ac}, 0x1, 0x0, 0x0, 0x48004}, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0) ioctl$auto(0x3, 0x4048aec9, r3) 3.352243112s ago: executing program 3 (id=613): openat$auto_tun_fops_tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D3\x00', 0x1, 0x0) getsockopt$auto_SO_ERROR(r0, 0x8, 0x4, &(0x7f0000000080)='/dev/snd/midiC2D3\x00', &(0x7f0000000100)=0x3) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/dev/audio1\x00', 0x100000a3d9) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, 0x0, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = socket(0x2, 0x2, 0x0) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(r1, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) ioperm$auto(0x3, 0x8001, 0x2000000000000149) kexec_load$auto(0x6, 0x0, 0x0, 0x4) r2 = socket$nl_generic(0x10, 0x3, 0x10) shmctl$auto(0xa0000000, 0x6, &(0x7f00000002c0)={{0x3, 0x0, 0x0, 0x0, 0x7, 0xd, 0xff}, 0x2, 0xffffffff80000001, 0x3ff, 0x800, @raw=0x61a, @inferred=0xffffffffffffffff, 0x7, 0x0, 0x0, &(0x7f00000001c0)}) sendmsg$auto_IPVS_CMD_GET_DAEMON(r1, 0x0, 0x20000000) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x201, 0x0) io_setup$auto(0x7ffe, &(0x7f0000000000)) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) execve$auto(0x0, 0x0, 0x0) adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffff7fffffffffd, 0xd1, 0x3, 0x6, 0x0, 0x1, 0x368e, 0x2, {0x100000000, 0x10000}, 0x5, 0x31, 0xfffffffffffffffd, 0x1008000, 0x0, 0x80000004, 0x81, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x804}) sendmsg$auto_ILA_CMD_ADD(r2, &(0x7f0000003fc0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000003f80)={0x0}}, 0x4000010) socket$nl_generic(0x10, 0x3, 0x10) r3 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000000), 0x109002, 0x0) sendfile$auto(r3, r3, 0x0, 0x10000800000003) 3.191399198s ago: executing program 0 (id=614): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001d80)='/sys/devices/virtual/sound/ctl-led/speaker/card0/attach\x00', 0x1, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000040)="3100001000000000002ca65de95b667827494d", 0x5e) mmap$auto(0x0, 0x7, 0x4000000000e0, 0xeb1, 0x401, 0x400) socket(0x2b, 0x1, 0x1) listen$auto(0x3, 0x81) r1 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0) ioctl$auto_USBDEVFS_IOCTL(r1, 0xc0105512, &(0x7f0000000280)={0x9, 0xffffff93, 0x0}) ioctl$auto(0x3, 0x894b, 0x38) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) ioctl$auto_SNDRV_RAWMIDI_IOCTL_DRAIN(0xffffffffffffffff, 0x40045731, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory12/power/control\x00', 0x100, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) sysfs$auto(0x2, 0xd, 0x0) r3 = fsopen$auto(0x0, 0x1) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) fsconfig$auto(r3, 0x3, &(0x7f0000000000)='Q**\x00', &(0x7f0000000040)="2b24c0bfbf", 0x0) r4 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000100), 0xffffffffffffffff) msgctl$auto_MSG_STAT(0x1, 0xb, &(0x7f00000001c0)={{0x46b5, 0xee01, 0xee01, 0x7f, 0x4, 0x5, 0x200}, &(0x7f0000000140)=0x4, &(0x7f0000000180)=0xa, 0x3, 0x101, 0x1, 0x1ff, 0xffff, 0x31f, 0x3, 0x769c, @inferred, @raw=0x7}) ioctl$auto_XFS_IOC_ALLOCSP(0xffffffffffffffff, 0x4030580a, &(0x7f0000000240)={0x10, 0x6eeb, 0xb157, 0x7, 0x7}) sendmsg$auto_NL802154_CMD_LIST_ASSOCIATIONS(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1ac, r4, 0x480, 0x70bd25, 0x25dfdbfe, {}, [@NL802154_ATTR_SCAN_DURATION={0x5}, @NL802154_ATTR_SUPPORTED_COMMANDS={0x17e, 0x19, 0x0, 0x1, [@generic="b85b7cbcda8777bdbe3fad184d01d1637af2e5905d4498eea99e183793a3d700dbfdec157cfb70ebad1d7cbf0d977b5e6b3358ca58292df2e0fde26bcb8c5e9e2b5806e51d8782d80306af25c55d98b9bd6c5c1bde88be3408", @generic="dfa516e5510bc738a7bb1502704b52e01de2973a4dbc31e75efd2b503815ca3d558f40459a97c3e72ca420f1d326364643451e199873f1be4685dd8849248daec39bd673b420ed204765a8af33", @typed={0xc, 0xba, 0x0, 0x0, @u64=0x6}, @typed={0x8, 0xaf, 0x0, 0x0, @uid=r5}, @typed={0x8, 0x74, 0x0, 0x0, @fd}, @typed={0x36, 0x137, 0x0, 0x0, @str='/sys/devices/system/memory/memory12/power/control\x00'}, @generic="c6bd4cefe6f5ba53e6db8f12a2e89ef7554f9d0cd97aea2159769197a25b2c9c8ac418c3d712d8c16ae369799e42acf1880ea768274311a0c8b47c5c40b76a205838c7243951fdf7e5ed5c87bda625895abc0f096d73d3f7e9e560c325189e4209fce50f9db8c96d8461b21aac97cd4f1b43b67c86968b7e", @typed={0x8, 0xaf, 0x0, 0x0, @ipv4=@private=0xa010101}]}, @NL802154_ATTR_MAX_ASSOCIATIONS={0x8, 0x27, 0x9}, @NL802154_ATTR_BEACON_INTERVAL={0x5, 0x26, 0x4f}]}, 0x1ac}, 0x1, 0x0, 0x0, 0x48004}, 0x0) close_range$auto(0x2, 0x8, 0x0) r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0) ioctl$auto_KVM_CREATE_VM(r6, 0xae01, 0x0) ioctl$auto(0x3, 0x4048aec9, r2) accept4$auto(r1, &(0x7f0000000000)=@l2tp={0x2, 0x0, @remote, 0x3}, &(0x7f0000000080)=0xe8, 0x2) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x20681, 0x0) 3.165065443s ago: executing program 1 (id=615): mmap$auto(0xfffffffffffffffd, 0xc37, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0x6, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x103e81, 0x0) ioctl$auto_TIOCGWINSZ2(r0, 0x5413, &(0x7f0000000000)) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty10\x00', 0x48140, 0x0) ioctl$auto_TIOCSTI2(r1, 0x5412, &(0x7f0000000140)) r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio1\x00', 0x20b42, 0x0) r3 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000080), 0xffffffffffffffff) r4 = socket(0x10, 0x2, 0xf) sendmsg$auto_NFSD_CMD_THREADS_SET(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x14, r3, 0xfffffffffffffffe, 0x70bd2d, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x40000021}, 0x8004) acct$auto(&(0x7f0000000040)='/dev/mtd0\x00') mmap$auto(0x0, 0x2, 0xffffffffffffffff, 0x40eb1, 0x602, 0x300000000000) move_pages$auto(0x0, 0x1002, 0x0, &(0x7f0000001140), 0x0, 0x2) sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x5) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) r5 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0xc00, 0x0) ioctl$auto_EVIOCSMASK(r5, 0x40104593, 0x0) close_range$auto(r0, r4, 0xfffffffd) openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x6d2fc1, 0x0) ioctl$auto_SNDCTL_DSP_RESET(r2, 0x5000, 0x0) fanotify_init$auto(0x65, 0x2) pipe$auto(0x0) r6 = openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f0000000180), 0x101002, 0x0) write$auto(r6, 0x0, 0xc3) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r7 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0) ioctl$auto_PAGEMAP_SCAN(r7, 0xc0606610, &(0x7f0000000100)={0x60, 0x800000000000000, 0x100000, 0x7fffffffefff, 0xfffffffffffffffe, 0x1, 0x6, 0x50b301a, 0x0, 0x2, 0x0, 0x2}) 2.21242747s ago: executing program 0 (id=616): mmap$auto(0x0, 0x100000000, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc2481, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/mm/ksm/full_scans\x00', 0x8400, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000b40)=""/4096, 0x1000) syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x382, 0x0) unshare$auto(0x40000080) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40800) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sysfs$auto(0x2, 0x7, 0x0) r1 = fsopen$auto(0x0, 0x1) fsconfig$auto(r1, 0x8, 0x0, 0x0, 0x0) close_range$auto(0x2, 0xffffffffffffffff, 0x0) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0) r2 = openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/tracing/trace_pipe\x00', 0x0, 0x0) ppoll$auto(&(0x7f0000000040)={r2, 0x4, 0xa7}, 0x1c, 0x0, 0x0, 0x8) read$auto_drm_debugfs_entry_fops_drm_debugfs(r3, 0x0, 0x0) r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r5) ioctl$auto_KVM_GET_MSRS(r4, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [{0x40000118, 0x400, 0x9}]}) r6 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0) ioctl$auto(r6, 0xc0185502, r6) close_range$auto(0x2, 0x8, 0xfffffff5) 1.732209916s ago: executing program 1 (id=617): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2, 0x1, 0x0) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/fb0\x00', 0x20401, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) r1 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) ioctl$auto(r0, 0x541c, r1) mmap$auto(0x0, 0xd, 0xdb, 0x9b72, 0x5, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) r2 = openat$auto_tracing_free_buffer_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/free_buffer\x00', 0x80c01, 0x0) pwritev$auto(r2, &(0x7f0000000080)={0x0, 0x10001}, 0xd, 0x1000000000000002, 0x4f) 1.730328889s ago: executing program 3 (id=618): openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000011c0), 0xa2741, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x101302, 0x0) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x1, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000200)='/dev/tty53\x00', 0x200, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/midiC2D0\x00', 0x109302, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0x7, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x0, 0x1a1a, 0x2, 0x3, 0x95f4da0a, 0x7f, 0x20000003, 0x62, 0x80000001, 0x10000000000004, 0x6d40, 0x1, 0x2, 0xfffffffffffffffe]}, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x10, 0x2, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_ETHTOOL_MSG_PLCA_GET_STATUS(r1, &(0x7f00000030c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000000}, 0x40) syz_genetlink_get_family_id$auto_netdev(&(0x7f0000003900), r1) r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), r1) sendmsg$auto_ETHTOOL_MSG_WOL_SET(r0, &(0x7f0000002cc0)={0x0, 0xff9e, &(0x7f0000002c80)={&(0x7f00000003c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010027bd7000fcdbdf250a0000ff15000000140001"], 0x2c}, 0x1, 0x0, 0x0, 0x4801}, 0x0) 1.465781423s ago: executing program 2 (id=619): madvise$auto(0x7fffffffffffffff, 0xd, 0x101) madvise$auto(0xfffffffffffffff7, 0x9, 0x5) unshare$auto(0x40000080) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) socket(0x1e, 0x1, 0x0) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socket(0x11, 0x3, 0x9) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3b, 0x9, 0x2, 0x6]}, 0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'hsr0\x00', 0x0}) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000826bd7000fedbdf250300000008000400b70a0000060007000080000008000200", @ANYRES32=r2, @ANYBLOB="0a0005000180c200000e00000a0001000180c200000e00000a000100000000000000000008000200", @ANYRES32=r2, @ANYBLOB="060003c1e2"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/can/reset_stats\x00', 0x200000, 0x0) pread64$auto(r3, 0x0, 0x1ff, 0x8800000000) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x7, 0x1ff, 0x7, 0x3, 0x7181, 0x8002, 0x7, 0x3, 0x9, 0x5, 0x80003, 0x4, 0x200000000000, 0xb4, 0x9, 0x8, 0x10006, 0x4000080, 0x0, 0x0, 0xe, 0x22000, 0x200, 0x0, 0xd363, 0x0, 0x0, 0x0, 0x0, 0x3, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1]}, 0x1fe, 0xd) r4 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0) ioctl$auto__ctl_fops_dm_ioctl(r4, 0xfffffffffffffd09, &(0x7f00000001c0)) getpid() 1.20268017s ago: executing program 1 (id=620): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2, 0x1, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) r1 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) ioctl$auto(r0, 0x541c, r1) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x4604, 0x0) 446.939464ms ago: executing program 3 (id=621): unshare$auto(0x200) mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x90}, 0x20000081) mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x5, 0x20009, 0x6, 0xeb1, 0x401, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000280), 0xffffffffffffffff) sendmsg$auto_OVS_CT_LIMIT_CMD_DEL(r1, &(0x7f0000001740)={0x0, 0x0, &(0x7f0000001700)={&(0x7f0000000400)=ANY=[@ANYBLOB="30e61b464bf57aaf8f68d6ebc78807000000", @ANYRES16=r2, @ANYBLOB="01022cbd7000ffdbdf2502000000040001801c000180150039800400eb8008002d00", @ANYRES32, @ANYBLOB="5ecb8698ec000000"], 0x34}, 0x1, 0x0, 0x0, 0x44000}, 0x4000048) r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000300)='/proc/asound/card1/pcm1p/sub3/hw_params\x00', 0x1900, 0x0) pread64$auto(r3, 0x0, 0xe, 0x100000000007) read$auto(r0, 0x0, 0xe8) r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000001240)='/proc/thread-self/fail-nth\x00', 0xa0302, 0x0) writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x3) r5 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000280)='/dev/ram7\x00', 0xc0440, 0x0) ioctl$auto_BLKTRACESETUP(r5, 0xc0481273, &(0x7f00000000c0)={"2252f65ca1b92f72a92538725b0694521629e8c3e6ba91c62e2e9d42cf4aef15", 0x4, 0x3, 0x8000, 0x6, 0xff}) read$auto_mousedev_fops_mousedev(0xffffffffffffffff, &(0x7f0000000340)=""/167, 0xa7) close_range$auto(0x2, 0x8, 0x0) r6 = socket(0xa, 0x801, 0x84) sendmsg$auto_SMC_PNETID_FLUSH(r6, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000826bd7000fbdbdf2504000000190103002f6465762f6275303031005ee50000000d0003005c267b2e2f7d3a2c000000000d0003002f6465762f6b766d"], 0x50}}, 0x4) migrate_pages$auto(0x0, 0x99, 0x0, &(0x7f00000001c0)=0x7b) r7 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80502, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000300)='/proc/mtrr\x00', 0x8f3b7a51b80ebd01, 0x0) ioctl$auto_SNDCTL_DSP_SPEED(r7, 0xc0045002, &(0x7f00000000c0)) openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/kvm/notify_window_exits\x00', 0x202, 0x0) ioctl$auto_SNDCTL_DSP_CHANNELS(r7, 0xc0045006, &(0x7f00000001c0)) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x4) 398.647396ms ago: executing program 0 (id=622): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000680), r0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000006c0)={'batadv0\x00', 0x0}) sendmsg$auto_BATADV_CMD_GET_NEIGHBORS(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000380)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="110b27bd7000fbdbdf250900000008000300", @ANYRES32=r3], 0x24}, 0x1, 0x0, 0xf0, 0x4001}, 0x9800) 106.044492ms ago: executing program 1 (id=623): close_range$auto(0x2, 0x8, 0x0) syz_clone3(&(0x7f0000000100)={0x2000000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x1, 0x0) io_uring_setup$auto(0x2, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "abe6de3d6468fe8000c0fe00"}, 0x55) write$auto(0x3, 0x0, 0x3) socket(0x2000000000000021, 0x2, 0x10000000000002) socket(0x15, 0x5, 0x0) bind$auto(0x3, 0x0, 0x6b) close_range$auto(0x2, 0xa, 0x0) socket(0xa, 0x2, 0x0) r0 = socket(0xa, 0x3, 0xff) connect$auto(r0, &(0x7f00000018c0)=@generic={0xa}, 0x55) 0s ago: executing program 0 (id=624): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001d80)='/sys/devices/virtual/sound/ctl-led/speaker/card0/attach\x00', 0x1, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000040)="3100001000000000002ca65de95b667827494d", 0x5e) mmap$auto(0x0, 0x7, 0x4000000000e0, 0xeb1, 0x401, 0x400) socket(0x2b, 0x1, 0x1) listen$auto(0x3, 0x81) r1 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0) ioctl$auto_USBDEVFS_IOCTL(r1, 0xc0105512, &(0x7f0000000280)={0x9, 0xffffff93, 0x0}) ioctl$auto(0x3, 0x894b, 0x38) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r2 = io_uring_setup$auto(0x1, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory12/power/control\x00', 0x100, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) sysfs$auto(0x2, 0xd, 0x0) r4 = fsopen$auto(0x0, 0x1) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) fsconfig$auto(r4, 0x3, &(0x7f0000000000)='Q**\x00', &(0x7f0000000040)="2b24c0bfbf", 0x0) r5 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000100), r2) msgctl$auto_MSG_STAT(0x1, 0xb, &(0x7f00000001c0)={{0x46b5, 0xee01, 0xee01, 0x7f, 0x4, 0x5, 0x200}, &(0x7f0000000140)=0x4, &(0x7f0000000180)=0xa, 0x3, 0x101, 0x1, 0x1ff, 0xffff, 0x31f, 0x3, 0x769c, @inferred, @raw=0x7}) ioctl$auto_XFS_IOC_ALLOCSP(r2, 0x4030580a, &(0x7f0000000240)={0x10, 0x6eeb, 0xb157, 0x7, 0x7}) sendmsg$auto_NL802154_CMD_LIST_ASSOCIATIONS(r2, &(0x7f0000000480)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1ac, r5, 0x480, 0x70bd25, 0x25dfdbfe, {}, [@NL802154_ATTR_SCAN_DURATION={0x5}, @NL802154_ATTR_SUPPORTED_COMMANDS={0x17e, 0x19, 0x0, 0x1, [@generic="b85b7cbcda8777bdbe3fad184d01d1637af2e5905d4498eea99e183793a3d700dbfdec157cfb70ebad1d7cbf0d977b5e6b3358ca58292df2e0fde26bcb8c5e9e2b5806e51d8782d80306af25c55d98b9bd6c5c1bde88be3408", @generic="dfa516e5510bc738a7bb1502704b52e01de2973a4dbc31e75efd2b503815ca3d558f40459a97c3e72ca420f1d326364643451e199873f1be4685dd8849248daec39bd673b420ed204765a8af33", @typed={0xc, 0xba, 0x0, 0x0, @u64=0x6}, @typed={0x8, 0xaf, 0x0, 0x0, @uid=r6}, @typed={0x8, 0x74, 0x0, 0x0, @fd=r2}, @typed={0x36, 0x137, 0x0, 0x0, @str='/sys/devices/system/memory/memory12/power/control\x00'}, @generic="c6bd4cefe6f5ba53e6db8f12a2e89ef7554f9d0cd97aea2159769197a25b2c9c8ac418c3d712d8c16ae369799e42acf1880ea768274311a0c8b47c5c40b76a205838c7243951fdf7e5ed5c87bda625895abc0f096d73d3f7e9e560c325189e4209fce50f9db8c96d8461b21aac97cd4f1b43b67c86968b7e", @typed={0x8, 0xaf, 0x0, 0x0, @ipv4=@private=0xa010101}]}, @NL802154_ATTR_MAX_ASSOCIATIONS={0x8, 0x27, 0x9}, @NL802154_ATTR_BEACON_INTERVAL={0x5, 0x26, 0x4f}]}, 0x1ac}, 0x1, 0x0, 0x0, 0x48004}, 0x0) close_range$auto(0x2, 0x8, 0x0) r7 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0) ioctl$auto_KVM_CREATE_VM(r7, 0xae01, 0x0) ioctl$auto(0x3, 0x4048aec9, r3) accept4$auto(r1, &(0x7f0000000000)=@l2tp={0x2, 0x0, @remote, 0x3}, &(0x7f0000000080)=0xe8, 0x2) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x20681, 0x0) kernel console output (not intermixed with test programs): .792054][ T6716] R13: 0000000000000000 R14: 00007fa00f1b5fa0 R15: 00007ffe19c20f88 [ 149.792093][ T6716] [ 153.041829][ T6795] FAULT_INJECTION: forcing a failure. [ 153.041829][ T6795] name failslab, interval 1, probability 0, space 0, times 0 [ 153.055274][ T6795] CPU: 0 UID: 0 PID: 6795 Comm: syz.1.203 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 153.055311][ T6795] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 153.055324][ T6795] Call Trace: [ 153.055333][ T6795] [ 153.055344][ T6795] dump_stack_lvl+0x16c/0x1f0 [ 153.055392][ T6795] should_fail_ex+0x512/0x640 [ 153.055430][ T6795] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 153.055485][ T6795] should_failslab+0xc2/0x120 [ 153.055512][ T6795] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 153.055553][ T6795] ? __thp_vma_allowable_orders+0x1c5/0xb10 [ 153.055582][ T6795] ? ptlock_alloc+0x1f/0x70 [ 153.055623][ T6795] ptlock_alloc+0x1f/0x70 [ 153.055657][ T6795] pte_alloc_one+0x82/0x3a0 [ 153.055700][ T6795] __handle_mm_fault+0x3a68/0x5490 [ 153.055750][ T6795] ? __pfx___handle_mm_fault+0x10/0x10 [ 153.055783][ T6795] ? __pfx_mt_find+0x10/0x10 [ 153.055839][ T6795] ? find_vma+0xbf/0x140 [ 153.055865][ T6795] ? __pfx_find_vma+0x10/0x10 [ 153.055899][ T6795] handle_mm_fault+0x589/0xd10 [ 153.055937][ T6795] ? __pkru_allows_pkey+0x41/0xb0 [ 153.055978][ T6795] do_user_addr_fault+0x7a6/0x1370 [ 153.056020][ T6795] ? rcu_is_watching+0x12/0xc0 [ 153.056055][ T6795] exc_page_fault+0x5c/0xb0 [ 153.056096][ T6795] asm_exc_page_fault+0x26/0x30 [ 153.056123][ T6795] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 153.056156][ T6795] Code: 10 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 e9 8f 10 04 00 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 153.056182][ T6795] RSP: 0018:ffffc9000fee77d0 EFLAGS: 00050206 [ 153.056203][ T6795] RAX: 0000000000000001 RBX: 00000000000000c4 RCX: 00000000000000c4 [ 153.056220][ T6795] RDX: ffffed100b778951 RSI: 0000000000000000 RDI: ffff88805bbc49c0 [ 153.056237][ T6795] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffed100b778950 [ 153.056253][ T6795] R10: ffff88805bbc4a83 R11: 0000000000000000 R12: ffffc9000fee7d60 [ 153.056270][ T6795] R13: 00000000000000c4 R14: ffff88805bbc49c0 R15: 00007ffffffff000 [ 153.056310][ T6795] _copy_from_iter+0x383/0x16f0 [ 153.056357][ T6795] ? __alloc_skb+0x200/0x380 [ 153.056397][ T6795] ? __pfx__copy_from_iter+0x10/0x10 [ 153.056443][ T6795] ? __lock_acquire+0xb8a/0x1c90 [ 153.056495][ T6795] netlink_sendmsg+0x829/0xdd0 [ 153.056530][ T6795] ? __pfx_netlink_sendmsg+0x10/0x10 [ 153.056574][ T6795] ____sys_sendmsg+0xa95/0xc70 [ 153.056607][ T6795] ? copy_msghdr_from_user+0x10a/0x160 [ 153.056646][ T6795] ? __pfx_____sys_sendmsg+0x10/0x10 [ 153.056684][ T6795] ? __pfx__kstrtoull+0x10/0x10 [ 153.056724][ T6795] ___sys_sendmsg+0x134/0x1d0 [ 153.056768][ T6795] ? __pfx____sys_sendmsg+0x10/0x10 [ 153.056827][ T6795] ? find_held_lock+0x2b/0x80 [ 153.056880][ T6795] __sys_sendmmsg+0x200/0x420 [ 153.056929][ T6795] ? __pfx___sys_sendmmsg+0x10/0x10 [ 153.056984][ T6795] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 153.057042][ T6795] ? fput+0x70/0xf0 [ 153.057068][ T6795] ? ksys_write+0x1ac/0x250 [ 153.057107][ T6795] ? __pfx_ksys_write+0x10/0x10 [ 153.057153][ T6795] __x64_sys_sendmmsg+0x9c/0x100 [ 153.057192][ T6795] ? lockdep_hardirqs_on+0x7c/0x110 [ 153.057232][ T6795] do_syscall_64+0xcd/0x490 [ 153.057277][ T6795] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 153.057304][ T6795] RIP: 0033:0x7fe43278e929 [ 153.057326][ T6795] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 153.057351][ T6795] RSP: 002b:00007fe4335dc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 153.057376][ T6795] RAX: ffffffffffffffda RBX: 00007fe4329b5fa0 RCX: 00007fe43278e929 [ 153.057394][ T6795] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 153.057410][ T6795] RBP: 00007fe4335dc090 R08: 0000000000000000 R09: 0000000000000000 [ 153.057427][ T6795] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 153.057442][ T6795] R13: 0000000000000000 R14: 00007fe4329b5fa0 R15: 00007fffe8168f48 [ 153.057491][ T6795] [ 154.422925][ T6808] random: crng reseeded on system resumption [ 154.549712][ T6810] FAULT_INJECTION: forcing a failure. [ 154.549712][ T6810] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 154.573789][ T6810] CPU: 1 UID: 0 PID: 6810 Comm: syz.0.206 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 154.573821][ T6810] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 154.573830][ T6810] Call Trace: [ 154.573837][ T6810] [ 154.573843][ T6810] dump_stack_lvl+0x16c/0x1f0 [ 154.573873][ T6810] should_fail_ex+0x512/0x640 [ 154.573900][ T6810] should_fail_alloc_page+0xe7/0x130 [ 154.573918][ T6810] prepare_alloc_pages+0x3c2/0x610 [ 154.573938][ T6810] ? rcu_is_watching+0x12/0xc0 [ 154.573958][ T6810] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 154.573988][ T6810] ? __lock_acquire+0x622/0x1c90 [ 154.574012][ T6810] ? xas_create+0x1d7/0x1460 [ 154.574029][ T6810] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 154.574056][ T6810] ? lock_acquire+0x179/0x350 [ 154.574077][ T6810] ? rcu_is_watching+0x12/0xc0 [ 154.574100][ T6810] ? __lock_acquire+0x622/0x1c90 [ 154.574120][ T6810] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 154.574147][ T6810] ? policy_nodemask+0xea/0x4e0 [ 154.574176][ T6810] alloc_pages_mpol+0x1fb/0x550 [ 154.574198][ T6810] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 154.574216][ T6810] ? filemap_get_entry+0x1a7/0x3b0 [ 154.574235][ T6810] folio_alloc_noprof+0x20/0x2d0 [ 154.574254][ T6810] filemap_alloc_folio_noprof+0x3a1/0x470 [ 154.574277][ T6810] ? __pfx_filemap_alloc_folio_noprof+0x10/0x10 [ 154.574299][ T6810] ? rcu_is_watching+0x12/0xc0 [ 154.574320][ T6810] __filemap_get_folio+0x5e1/0xc30 [ 154.574341][ T6810] ioctx_alloc+0x761/0x2120 [ 154.574372][ T6810] ? __pfx_ioctx_alloc+0x10/0x10 [ 154.574391][ T6810] ? __might_fault+0x13b/0x190 [ 154.574420][ T6810] __x64_sys_io_setup+0xc9/0x210 [ 154.574444][ T6810] do_syscall_64+0xcd/0x490 [ 154.574476][ T6810] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 154.574498][ T6810] RIP: 0033:0x7f68af78e929 [ 154.574516][ T6810] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 154.574538][ T6810] RSP: 002b:00007f68b057c038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce [ 154.574554][ T6810] RAX: ffffffffffffffda RBX: 00007f68af9b5fa0 RCX: 00007f68af78e929 [ 154.574565][ T6810] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 000000000000ffff [ 154.574574][ T6810] RBP: 00007f68b057c090 R08: 0000000000000000 R09: 0000000000000000 [ 154.574584][ T6810] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 154.574593][ T6810] R13: 0000000000000000 R14: 00007f68af9b5fa0 R15: 00007ffe1a28cb88 [ 154.574614][ T6810] [ 155.368173][ T6815] mmap: syz.3.208 (6815) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 157.222853][ T6849] FAULT_INJECTION: forcing a failure. [ 157.222853][ T6849] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 157.280637][ T6849] CPU: 1 UID: 0 PID: 6849 Comm: syz.0.218 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 157.280677][ T6849] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 157.280700][ T6849] Call Trace: [ 157.280710][ T6849] [ 157.280720][ T6849] dump_stack_lvl+0x16c/0x1f0 [ 157.280767][ T6849] should_fail_ex+0x512/0x640 [ 157.280813][ T6849] should_fail_alloc_page+0xe7/0x130 [ 157.280842][ T6849] prepare_alloc_pages+0x3c2/0x610 [ 157.280882][ T6849] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 157.280934][ T6849] ? __lock_acquire+0x622/0x1c90 [ 157.280983][ T6849] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 157.281050][ T6849] ? find_held_lock+0x2b/0x80 [ 157.281079][ T6849] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 157.281122][ T6849] ? policy_nodemask+0xea/0x4e0 [ 157.281171][ T6849] alloc_pages_mpol+0x1fb/0x550 [ 157.281202][ T6849] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 157.281244][ T6849] folio_alloc_mpol_noprof+0x36/0x2f0 [ 157.281278][ T6849] shmem_alloc_folio+0x135/0x160 [ 157.281315][ T6849] shmem_alloc_and_add_folio+0x499/0xc20 [ 157.281366][ T6849] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 157.281411][ T6849] ? shmem_allowable_huge_orders+0xcb/0x2f0 [ 157.281459][ T6849] shmem_get_folio_gfp+0x67f/0x1600 [ 157.281508][ T6849] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 157.281552][ T6849] ? filemap_map_pages+0xf6f/0x1680 [ 157.281600][ T6849] shmem_fault+0x1fe/0xa30 [ 157.281637][ T6849] ? __lock_acquire+0x622/0x1c90 [ 157.281673][ T6849] ? __pfx_shmem_fault+0x10/0x10 [ 157.281723][ T6849] ? rcu_is_watching+0x12/0xc0 [ 157.281752][ T6849] ? __pfx_filemap_map_pages+0x10/0x10 [ 157.281807][ T6849] __do_fault+0x10d/0x490 [ 157.281853][ T6849] __handle_mm_fault+0x3c2a/0x5490 [ 157.281901][ T6849] ? __pfx___handle_mm_fault+0x10/0x10 [ 157.281934][ T6849] ? __pfx_mt_find+0x10/0x10 [ 157.281982][ T6849] ? find_vma+0xbf/0x140 [ 157.282014][ T6849] ? __pfx_find_vma+0x10/0x10 [ 157.282045][ T6849] handle_mm_fault+0x589/0xd10 [ 157.282082][ T6849] ? __pkru_allows_pkey+0x41/0xb0 [ 157.282121][ T6849] do_user_addr_fault+0x7a6/0x1370 [ 157.282162][ T6849] ? rcu_is_watching+0x12/0xc0 [ 157.282193][ T6849] exc_page_fault+0x5c/0xb0 [ 157.282234][ T6849] asm_exc_page_fault+0x26/0x30 [ 157.282258][ T6849] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 157.282292][ T6849] Code: 10 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 e9 8f 10 04 00 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 157.282319][ T6849] RSP: 0018:ffffc9000feb77d0 EFLAGS: 00050206 [ 157.282342][ T6849] RAX: 0000000000000001 RBX: 00000000000000c4 RCX: 00000000000000c4 [ 157.282358][ T6849] RDX: ffffed100b6aa359 RSI: 0000000000000000 RDI: ffff88805b551a00 [ 157.282375][ T6849] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffed100b6aa358 [ 157.282391][ T6849] R10: ffff88805b551ac3 R11: 0000000000000000 R12: ffffc9000feb7d60 [ 157.282408][ T6849] R13: 00000000000000c4 R14: ffff88805b551a00 R15: 00007ffffffff000 [ 157.282449][ T6849] _copy_from_iter+0x383/0x16f0 [ 157.282497][ T6849] ? __alloc_skb+0x200/0x380 [ 157.282537][ T6849] ? __pfx__copy_from_iter+0x10/0x10 [ 157.282586][ T6849] ? __lock_acquire+0xb8a/0x1c90 [ 157.282634][ T6849] netlink_sendmsg+0x829/0xdd0 [ 157.282673][ T6849] ? __pfx_netlink_sendmsg+0x10/0x10 [ 157.282730][ T6849] ____sys_sendmsg+0xa95/0xc70 [ 157.282764][ T6849] ? copy_msghdr_from_user+0x10a/0x160 [ 157.282805][ T6849] ? __pfx_____sys_sendmsg+0x10/0x10 [ 157.282845][ T6849] ? __pfx__kstrtoull+0x10/0x10 [ 157.282887][ T6849] ___sys_sendmsg+0x134/0x1d0 [ 157.282931][ T6849] ? __pfx____sys_sendmsg+0x10/0x10 [ 157.282996][ T6849] ? find_held_lock+0x2b/0x80 [ 157.283051][ T6849] __sys_sendmmsg+0x200/0x420 [ 157.283097][ T6849] ? __pfx___sys_sendmmsg+0x10/0x10 [ 157.283151][ T6849] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 157.283211][ T6849] ? fput+0x70/0xf0 [ 157.283239][ T6849] ? ksys_write+0x1ac/0x250 [ 157.283277][ T6849] ? __pfx_ksys_write+0x10/0x10 [ 157.283323][ T6849] __x64_sys_sendmmsg+0x9c/0x100 [ 157.283363][ T6849] ? lockdep_hardirqs_on+0x7c/0x110 [ 157.283402][ T6849] do_syscall_64+0xcd/0x490 [ 157.283444][ T6849] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 157.283471][ T6849] RIP: 0033:0x7f68af78e929 [ 157.283493][ T6849] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 157.283518][ T6849] RSP: 002b:00007f68b057c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 157.283543][ T6849] RAX: ffffffffffffffda RBX: 00007f68af9b5fa0 RCX: 00007f68af78e929 [ 157.283560][ T6849] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 157.283576][ T6849] RBP: 00007f68b057c090 R08: 0000000000000000 R09: 0000000000000000 [ 157.283591][ T6849] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 157.283606][ T6849] R13: 0000000000000000 R14: 00007f68af9b5fa0 R15: 00007ffe1a28cb88 [ 157.283642][ T6849] [ 158.240639][ T6858] FAULT_INJECTION: forcing a failure. [ 158.240639][ T6858] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 158.254564][ T6858] CPU: 1 UID: 0 PID: 6858 Comm: syz.0.221 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 158.254588][ T6858] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 158.254598][ T6858] Call Trace: [ 158.254604][ T6858] [ 158.254611][ T6858] dump_stack_lvl+0x16c/0x1f0 [ 158.254643][ T6858] should_fail_ex+0x512/0x640 [ 158.254670][ T6858] should_fail_alloc_page+0xe7/0x130 [ 158.254688][ T6858] prepare_alloc_pages+0x3c2/0x610 [ 158.254708][ T6858] ? rcu_is_watching+0x12/0xc0 [ 158.254728][ T6858] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 158.254775][ T6858] ? __lock_acquire+0x622/0x1c90 [ 158.254809][ T6858] ? xas_create+0x1d7/0x1460 [ 158.254835][ T6858] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 158.254873][ T6858] ? lock_acquire+0x179/0x350 [ 158.254895][ T6858] ? rcu_is_watching+0x12/0xc0 [ 158.254918][ T6858] ? __lock_acquire+0x622/0x1c90 [ 158.254938][ T6858] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 158.254965][ T6858] ? policy_nodemask+0xea/0x4e0 [ 158.254994][ T6858] alloc_pages_mpol+0x1fb/0x550 [ 158.255011][ T6858] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 158.255028][ T6858] ? filemap_get_entry+0x1a7/0x3b0 [ 158.255048][ T6858] folio_alloc_noprof+0x20/0x2d0 [ 158.255067][ T6858] filemap_alloc_folio_noprof+0x3a1/0x470 [ 158.255091][ T6858] ? __pfx_filemap_alloc_folio_noprof+0x10/0x10 [ 158.255113][ T6858] ? rcu_is_watching+0x12/0xc0 [ 158.255134][ T6858] __filemap_get_folio+0x5e1/0xc30 [ 158.255155][ T6858] ioctx_alloc+0x761/0x2120 [ 158.255186][ T6858] ? __pfx_ioctx_alloc+0x10/0x10 [ 158.255205][ T6858] ? __might_fault+0x13b/0x190 [ 158.255235][ T6858] __x64_sys_io_setup+0xc9/0x210 [ 158.255258][ T6858] do_syscall_64+0xcd/0x490 [ 158.255285][ T6858] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 158.255302][ T6858] RIP: 0033:0x7f68af78e929 [ 158.255316][ T6858] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 158.255332][ T6858] RSP: 002b:00007f68b057c038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce [ 158.255348][ T6858] RAX: ffffffffffffffda RBX: 00007f68af9b5fa0 RCX: 00007f68af78e929 [ 158.255359][ T6858] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 000000000000ffff [ 158.255369][ T6858] RBP: 00007f68b057c090 R08: 0000000000000000 R09: 0000000000000000 [ 158.255378][ T6858] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 158.255396][ T6858] R13: 0000000000000000 R14: 00007f68af9b5fa0 R15: 00007ffe1a28cb88 [ 158.255416][ T6858] [ 160.648712][ T6911] FAULT_INJECTION: forcing a failure. [ 160.648712][ T6911] name fail_futex, interval 1, probability 0, space 0, times 0 [ 160.668645][ T6911] CPU: 0 UID: 0 PID: 6911 Comm: syz.0.232 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 160.668695][ T6911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 160.668712][ T6911] Call Trace: [ 160.668722][ T6911] [ 160.668733][ T6911] dump_stack_lvl+0x16c/0x1f0 [ 160.668782][ T6911] should_fail_ex+0x512/0x640 [ 160.668823][ T6911] ? key_user_put+0x5f/0x70 [ 160.668863][ T6911] get_futex_key+0x1d0/0x1540 [ 160.668904][ T6911] ? __pfx_get_futex_key+0x10/0x10 [ 160.668955][ T6911] futex_wake+0xea/0x530 [ 160.669003][ T6911] ? __pfx_futex_wake+0x10/0x10 [ 160.669050][ T6911] ? rcu_is_watching+0x12/0xc0 [ 160.669078][ T6911] ? kasan_quarantine_put+0x10a/0x240 [ 160.669120][ T6911] ? lockdep_hardirqs_on+0x7c/0x110 [ 160.669170][ T6911] do_futex+0x1e3/0x350 [ 160.669206][ T6911] ? __pfx_do_futex+0x10/0x10 [ 160.669245][ T6911] ? key_user_put+0x5f/0x70 [ 160.669287][ T6911] __x64_sys_futex+0x1e0/0x4c0 [ 160.669330][ T6911] ? __pfx___x64_sys_futex+0x10/0x10 [ 160.669366][ T6911] ? xfd_validate_state+0x61/0x180 [ 160.669418][ T6911] do_syscall_64+0xcd/0x490 [ 160.669466][ T6911] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 160.669496][ T6911] RIP: 0033:0x7f68af78e929 [ 160.669519][ T6911] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 160.669546][ T6911] RSP: 002b:00007f68b057c0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 160.669573][ T6911] RAX: ffffffffffffffda RBX: 00007f68af9b5fa8 RCX: 00007f68af78e929 [ 160.669592][ T6911] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f68af9b5fac [ 160.669609][ T6911] RBP: 00007f68af9b5fa0 R08: 00007f68b057d000 R09: 0000000000000000 [ 160.669626][ T6911] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f68af9b5fac [ 160.669643][ T6911] R13: 0000000000000000 R14: 00007ffe1a28caa0 R15: 00007ffe1a28cb88 [ 160.669693][ T6911] [ 160.870828][ C0] vkms_vblank_simulate: vblank timer overrun [ 161.616130][ T6927] FAULT_INJECTION: forcing a failure. [ 161.616130][ T6927] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 161.664077][ T6927] CPU: 0 UID: 0 PID: 6927 Comm: syz.3.237 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 161.664116][ T6927] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 161.664132][ T6927] Call Trace: [ 161.664141][ T6927] [ 161.664151][ T6927] dump_stack_lvl+0x16c/0x1f0 [ 161.664196][ T6927] should_fail_ex+0x512/0x640 [ 161.664240][ T6927] _copy_from_user+0x2e/0xd0 [ 161.664283][ T6927] kstrtouint_from_user+0xd6/0x1d0 [ 161.664315][ T6927] ? __pfx_kstrtouint_from_user+0x10/0x10 [ 161.664346][ T6927] ? __lock_acquire+0xb8a/0x1c90 [ 161.664413][ T6927] proc_fail_nth_write+0x83/0x250 [ 161.664447][ T6927] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 161.664493][ T6927] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 161.664522][ T6927] vfs_write+0x29d/0x1150 [ 161.664574][ T6927] ? __pfx___mutex_lock+0x10/0x10 [ 161.664614][ T6927] ? __pfx_vfs_write+0x10/0x10 [ 161.664666][ T6927] ? __fget_files+0x20e/0x3c0 [ 161.664715][ T6927] ksys_write+0x12a/0x250 [ 161.664753][ T6927] ? __pfx_ksys_write+0x10/0x10 [ 161.664802][ T6927] do_syscall_64+0xcd/0x490 [ 161.664847][ T6927] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 161.664875][ T6927] RIP: 0033:0x7fbe5498d3df [ 161.664897][ T6927] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48 [ 161.664922][ T6927] RSP: 002b:00007fbe55892030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 161.664949][ T6927] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 00007fbe5498d3df [ 161.664966][ T6927] RDX: 0000000000000002 RSI: 00007fbe55892090 RDI: 0000000000000007 [ 161.664982][ T6927] RBP: 00007fbe55892090 R08: 0000000000000000 R09: 00007fbe55891df6 [ 161.664999][ T6927] R10: 0000000000000000 R11: 0000000000000293 R12: 000000000000002f [ 161.665015][ T6927] R13: 0000000000000000 R14: 00007fbe54bb5fa0 R15: 00007fff53f1e2b8 [ 161.665053][ T6927] [ 161.856864][ C0] vkms_vblank_simulate: vblank timer overrun [ 162.719232][ T6944] FAULT_INJECTION: forcing a failure. [ 162.719232][ T6944] name failslab, interval 1, probability 0, space 0, times 0 [ 162.809358][ T6944] CPU: 0 UID: 0 PID: 6944 Comm: syz.1.244 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 162.809415][ T6944] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 162.809433][ T6944] Call Trace: [ 162.809444][ T6944] [ 162.809455][ T6944] dump_stack_lvl+0x16c/0x1f0 [ 162.809507][ T6944] should_fail_ex+0x512/0x640 [ 162.809549][ T6944] ? __kmalloc_noprof+0xbf/0x510 [ 162.809596][ T6944] ? lsm_blob_alloc+0x68/0x90 [ 162.809638][ T6944] should_failslab+0xc2/0x120 [ 162.809665][ T6944] __kmalloc_noprof+0xd2/0x510 [ 162.809720][ T6944] lsm_blob_alloc+0x68/0x90 [ 162.809765][ T6944] security_prepare_creds+0x30/0x270 [ 162.809810][ T6944] prepare_creds+0x56f/0x7d0 [ 162.809857][ T6944] lookup_user_key+0x399/0x1300 [ 162.809895][ T6944] ? __pfx_futex_wait+0x10/0x10 [ 162.809938][ T6944] ? __pfx_lookup_user_key+0x10/0x10 [ 162.809986][ T6944] ? __pfx_lookup_user_key_possessed+0x10/0x10 [ 162.810027][ T6944] ? do_futex+0x122/0x350 [ 162.810076][ T6944] keyctl_chown_key+0x1c9/0xfb0 [ 162.810108][ T6944] ? __x64_sys_futex+0x1e0/0x4c0 [ 162.810142][ T6944] ? __x64_sys_futex+0x1e9/0x4c0 [ 162.810178][ T6944] ? __pfx_keyctl_chown_key+0x10/0x10 [ 162.810209][ T6944] ? xfd_validate_state+0x61/0x180 [ 162.810251][ T6944] __do_sys_keyctl+0x283/0x590 [ 162.810285][ T6944] do_syscall_64+0xcd/0x490 [ 162.810333][ T6944] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 162.810363][ T6944] RIP: 0033:0x7fe43278e929 [ 162.810389][ T6944] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 162.810428][ T6944] RSP: 002b:00007fe4335dc038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 162.810456][ T6944] RAX: ffffffffffffffda RBX: 00007fe4329b5fa0 RCX: 00007fe43278e929 [ 162.810475][ T6944] RDX: 0000000000000000 RSI: fffff7ffffffffff RDI: 0000000000000004 [ 162.810493][ T6944] RBP: 00007fe432810b39 R08: 0000000000000008 R09: 0000000000000000 [ 162.810510][ T6944] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000 [ 162.810527][ T6944] R13: 0000000000000000 R14: 00007fe4329b5fa0 R15: 00007fffe8168f48 [ 162.810565][ T6944] [ 163.031530][ C0] vkms_vblank_simulate: vblank timer overrun [ 163.969930][ T6964] FAULT_INJECTION: forcing a failure. [ 163.969930][ T6964] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 164.002702][ T6964] CPU: 0 UID: 0 PID: 6964 Comm: syz.3.250 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 164.002756][ T6964] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 164.002772][ T6964] Call Trace: [ 164.002781][ T6964] [ 164.002792][ T6964] dump_stack_lvl+0x16c/0x1f0 [ 164.002840][ T6964] should_fail_ex+0x512/0x640 [ 164.002892][ T6964] _copy_from_user+0x2e/0xd0 [ 164.002936][ T6964] copy_msghdr_from_user+0x98/0x160 [ 164.002978][ T6964] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 164.003027][ T6964] ? kfree+0x24f/0x4d0 [ 164.003058][ T6964] ? __pfx__kstrtoull+0x10/0x10 [ 164.003098][ T6964] ___sys_sendmsg+0xfe/0x1d0 [ 164.003141][ T6964] ? __pfx____sys_sendmsg+0x10/0x10 [ 164.003218][ T6964] ? __pfx___might_resched+0x10/0x10 [ 164.003256][ T6964] __sys_sendmmsg+0x200/0x420 [ 164.003302][ T6964] ? __pfx___sys_sendmmsg+0x10/0x10 [ 164.003356][ T6964] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 164.003414][ T6964] ? fput+0x70/0xf0 [ 164.003441][ T6964] ? ksys_write+0x1ac/0x250 [ 164.003477][ T6964] ? __pfx_ksys_write+0x10/0x10 [ 164.003523][ T6964] __x64_sys_sendmmsg+0x9c/0x100 [ 164.003563][ T6964] ? lockdep_hardirqs_on+0x7c/0x110 [ 164.003603][ T6964] do_syscall_64+0xcd/0x490 [ 164.003646][ T6964] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 164.003682][ T6964] RIP: 0033:0x7fbe5498e929 [ 164.003705][ T6964] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 164.003728][ T6964] RSP: 002b:00007fbe55892038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 164.003753][ T6964] RAX: ffffffffffffffda RBX: 00007fbe54bb5fa0 RCX: 00007fbe5498e929 [ 164.003770][ T6964] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 164.003786][ T6964] RBP: 00007fbe55892090 R08: 0000000000000000 R09: 0000000000000000 [ 164.003802][ T6964] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 164.003817][ T6964] R13: 0000000000000000 R14: 00007fbe54bb5fa0 R15: 00007fff53f1e2b8 [ 164.003851][ T6964] [ 164.211637][ C0] vkms_vblank_simulate: vblank timer overrun [ 165.618666][ T6983] FAULT_INJECTION: forcing a failure. [ 165.618666][ T6983] name failslab, interval 1, probability 0, space 0, times 0 [ 165.713802][ T6983] CPU: 0 UID: 0 PID: 6983 Comm: syz.2.255 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 165.713828][ T6983] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 165.713838][ T6983] Call Trace: [ 165.713845][ T6983] [ 165.713852][ T6983] dump_stack_lvl+0x16c/0x1f0 [ 165.713882][ T6983] should_fail_ex+0x512/0x640 [ 165.713906][ T6983] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 165.713933][ T6983] should_failslab+0xc2/0x120 [ 165.713949][ T6983] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 165.713973][ T6983] ? rcu_is_watching+0x12/0xc0 [ 165.713989][ T6983] ? key_alloc+0x3e0/0x1330 [ 165.714012][ T6983] key_alloc+0x3e0/0x1330 [ 165.714037][ T6983] ? trace_kmalloc+0x2b/0xd0 [ 165.714052][ T6983] ? __kmalloc_noprof+0x242/0x510 [ 165.714076][ T6983] ? __pfx_key_alloc+0x10/0x10 [ 165.714101][ T6983] keyring_alloc+0x44/0xc0 [ 165.714125][ T6983] lookup_user_key+0xc51/0x1300 [ 165.714148][ T6983] ? __pfx_lookup_user_key+0x10/0x10 [ 165.714172][ T6983] ? __pfx_lookup_user_key_possessed+0x10/0x10 [ 165.714193][ T6983] ? do_futex+0x122/0x350 [ 165.714218][ T6983] keyctl_chown_key+0x1c9/0xfb0 [ 165.714235][ T6983] ? __x64_sys_futex+0x1e0/0x4c0 [ 165.714252][ T6983] ? __x64_sys_futex+0x1e9/0x4c0 [ 165.714273][ T6983] ? __pfx_keyctl_chown_key+0x10/0x10 [ 165.714290][ T6983] ? xfd_validate_state+0x61/0x180 [ 165.714315][ T6983] __do_sys_keyctl+0x283/0x590 [ 165.714333][ T6983] do_syscall_64+0xcd/0x490 [ 165.714360][ T6983] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 165.714379][ T6983] RIP: 0033:0x7fa00ef8e929 [ 165.714393][ T6983] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 165.714408][ T6983] RSP: 002b:00007fa00fd60038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 165.714424][ T6983] RAX: ffffffffffffffda RBX: 00007fa00f1b5fa0 RCX: 00007fa00ef8e929 [ 165.714435][ T6983] RDX: 0000000000000000 RSI: fffff7ffffffffff RDI: 0000000000000004 [ 165.714444][ T6983] RBP: 00007fa00f010b39 R08: 0000000000000008 R09: 0000000000000000 [ 165.714454][ T6983] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000 [ 165.714463][ T6983] R13: 0000000000000000 R14: 00007fa00f1b5fa0 R15: 00007ffe19c20f88 [ 165.714483][ T6983] [ 165.942510][ C0] vkms_vblank_simulate: vblank timer overrun [ 172.994006][ T7107] program syz.1.279 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 173.003727][ T7107] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 175.123760][ T7156] FAULT_INJECTION: forcing a failure. [ 175.123760][ T7156] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 175.148969][ T7156] CPU: 0 UID: 0 PID: 7156 Comm: syz.1.295 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 175.149010][ T7156] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 175.149024][ T7156] Call Trace: [ 175.149034][ T7156] [ 175.149043][ T7156] dump_stack_lvl+0x16c/0x1f0 [ 175.149089][ T7156] should_fail_ex+0x512/0x640 [ 175.149133][ T7156] _copy_to_user+0x32/0xd0 [ 175.149177][ T7156] tomoyo_flush+0x161/0x520 [ 175.149224][ T7156] tomoyo_set_string+0xaf/0xe0 [ 175.149262][ T7156] tomoyo_io_printf+0x26c/0x2e0 [ 175.149304][ T7156] ? __pfx_tomoyo_io_printf+0x10/0x10 [ 175.149338][ T7156] ? __pfx_tomoyo_addprintf+0x10/0x10 [ 175.149394][ T7156] ? tomoyo_print_number_union_nospace.part.0+0x183/0x2a0 [ 175.149442][ T7156] tomoyo_print_number_union_nospace.part.0+0x1e0/0x2a0 [ 175.149486][ T7156] ? __pfx_tomoyo_print_number_union_nospace.part.0+0x10/0x10 [ 175.149556][ T7156] tomoyo_print_entry+0x2025/0x2710 [ 175.149605][ T7156] ? find_held_lock+0x2b/0x80 [ 175.149630][ T7156] ? __pfx_tomoyo_print_entry+0x10/0x10 [ 175.149668][ T7156] ? __might_fault+0xe3/0x190 [ 175.149703][ T7156] ? __might_fault+0x13b/0x190 [ 175.149752][ T7156] ? _copy_to_user+0x48/0xd0 [ 175.149803][ T7156] tomoyo_read_domain2+0xa3/0x380 [ 175.149848][ T7156] tomoyo_read_domain+0x3e1/0x9e0 [ 175.149899][ T7156] tomoyo_read_control+0x299/0x540 [ 175.149944][ T7156] ? __pfx_tomoyo_read+0x10/0x10 [ 175.149988][ T7156] vfs_read+0x1e4/0xc60 [ 175.150032][ T7156] ? __pfx___mutex_lock+0x10/0x10 [ 175.150072][ T7156] ? __pfx_vfs_read+0x10/0x10 [ 175.150120][ T7156] ? __fget_files+0x20e/0x3c0 [ 175.150167][ T7156] ksys_read+0x12a/0x250 [ 175.150203][ T7156] ? __pfx_ksys_read+0x10/0x10 [ 175.150251][ T7156] do_syscall_64+0xcd/0x490 [ 175.150295][ T7156] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 175.150321][ T7156] RIP: 0033:0x7fe43278e929 [ 175.150348][ T7156] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 175.150373][ T7156] RSP: 002b:00007fe4335dc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 175.150398][ T7156] RAX: ffffffffffffffda RBX: 00007fe4329b5fa0 RCX: 00007fe43278e929 [ 175.150415][ T7156] RDX: 000000000000b4d3 RSI: 0000000000000000 RDI: 0000000000000005 [ 175.150429][ T7156] RBP: 00007fe4335dc090 R08: 0000000000000000 R09: 0000000000000000 [ 175.150444][ T7156] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 175.150459][ T7156] R13: 0000000000000000 R14: 00007fe4329b5fa0 R15: 00007fffe8168f48 [ 175.150499][ T7156] [ 175.455994][ T7151] FAULT_INJECTION: forcing a failure. [ 175.455994][ T7151] name fail_futex, interval 1, probability 0, space 0, times 0 [ 175.488058][ T7151] CPU: 1 UID: 0 PID: 7151 Comm: syz.2.293 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 175.488101][ T7151] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 175.488118][ T7151] Call Trace: [ 175.488127][ T7151] [ 175.488138][ T7151] dump_stack_lvl+0x16c/0x1f0 [ 175.488187][ T7151] should_fail_ex+0x512/0x640 [ 175.488226][ T7151] ? key_user_put+0x5f/0x70 [ 175.488274][ T7151] get_futex_key+0x1d0/0x1540 [ 175.488319][ T7151] ? __pfx_get_futex_key+0x10/0x10 [ 175.488364][ T7151] futex_wake+0xea/0x530 [ 175.488407][ T7151] ? __pfx_futex_wake+0x10/0x10 [ 175.488451][ T7151] ? rcu_is_watching+0x12/0xc0 [ 175.488478][ T7151] ? kasan_quarantine_put+0x10a/0x240 [ 175.488515][ T7151] ? lockdep_hardirqs_on+0x7c/0x110 [ 175.488559][ T7151] do_futex+0x1e3/0x350 [ 175.488596][ T7151] ? __pfx_do_futex+0x10/0x10 [ 175.488630][ T7151] ? key_user_put+0x5f/0x70 [ 175.488665][ T7151] __x64_sys_futex+0x1e0/0x4c0 [ 175.488706][ T7151] ? __pfx___x64_sys_futex+0x10/0x10 [ 175.488739][ T7151] ? xfd_validate_state+0x61/0x180 [ 175.488787][ T7151] do_syscall_64+0xcd/0x490 [ 175.488835][ T7151] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 175.488864][ T7151] RIP: 0033:0x7fa00ef8e929 [ 175.488889][ T7151] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 175.488916][ T7151] RSP: 002b:00007fa00fd600e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 175.488945][ T7151] RAX: ffffffffffffffda RBX: 00007fa00f1b5fa8 RCX: 00007fa00ef8e929 [ 175.488963][ T7151] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fa00f1b5fac [ 175.488979][ T7151] RBP: 00007fa00f1b5fa0 R08: 00007fa00fd61000 R09: 0000000000000000 [ 175.488996][ T7151] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa00f1b5fac [ 175.489010][ T7151] R13: 0000000000000000 R14: 00007ffe19c20ea0 R15: 00007ffe19c20f88 [ 175.489046][ T7151] [ 177.503405][ T7198] FAULT_INJECTION: forcing a failure. [ 177.503405][ T7198] name failslab, interval 1, probability 0, space 0, times 0 [ 177.516858][ T7198] CPU: 0 UID: 0 PID: 7198 Comm: syz.3.306 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 177.516896][ T7198] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 177.516912][ T7198] Call Trace: [ 177.516921][ T7198] [ 177.516931][ T7198] dump_stack_lvl+0x16c/0x1f0 [ 177.516976][ T7198] should_fail_ex+0x512/0x640 [ 177.517021][ T7198] should_failslab+0xc2/0x120 [ 177.517048][ T7198] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 177.517090][ T7198] ? skb_clone+0x190/0x3f0 [ 177.517138][ T7198] skb_clone+0x190/0x3f0 [ 177.517180][ T7198] netlink_deliver_tap+0xabd/0xd30 [ 177.517218][ T7198] netlink_unicast+0x5df/0x7f0 [ 177.517253][ T7198] ? __pfx_netlink_unicast+0x10/0x10 [ 177.517295][ T7198] netlink_sendmsg+0x8d1/0xdd0 [ 177.517332][ T7198] ? __pfx_netlink_sendmsg+0x10/0x10 [ 177.517374][ T7198] ____sys_sendmsg+0xa95/0xc70 [ 177.517407][ T7198] ? copy_msghdr_from_user+0x10a/0x160 [ 177.517448][ T7198] ? __pfx_____sys_sendmsg+0x10/0x10 [ 177.517486][ T7198] ? kfree+0x24f/0x4d0 [ 177.517516][ T7198] ? __pfx__kstrtoull+0x10/0x10 [ 177.517555][ T7198] ___sys_sendmsg+0x134/0x1d0 [ 177.517607][ T7198] ? __pfx____sys_sendmsg+0x10/0x10 [ 177.517695][ T7198] ? __pfx___might_resched+0x10/0x10 [ 177.517734][ T7198] __sys_sendmmsg+0x200/0x420 [ 177.517781][ T7198] ? __pfx___sys_sendmmsg+0x10/0x10 [ 177.517835][ T7198] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 177.517895][ T7198] ? fput+0x70/0xf0 [ 177.517921][ T7198] ? ksys_write+0x1ac/0x250 [ 177.517960][ T7198] ? __pfx_ksys_write+0x10/0x10 [ 177.518006][ T7198] __x64_sys_sendmmsg+0x9c/0x100 [ 177.518047][ T7198] ? lockdep_hardirqs_on+0x7c/0x110 [ 177.518086][ T7198] do_syscall_64+0xcd/0x490 [ 177.518131][ T7198] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 177.518158][ T7198] RIP: 0033:0x7fbe5498e929 [ 177.518180][ T7198] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 177.518206][ T7198] RSP: 002b:00007fbe55892038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 177.518233][ T7198] RAX: ffffffffffffffda RBX: 00007fbe54bb5fa0 RCX: 00007fbe5498e929 [ 177.518251][ T7198] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 177.518268][ T7198] RBP: 00007fbe55892090 R08: 0000000000000000 R09: 0000000000000000 [ 177.518284][ T7198] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 177.518300][ T7198] R13: 0000000000000000 R14: 00007fbe54bb5fa0 R15: 00007fff53f1e2b8 [ 177.518343][ T7198] [ 177.537553][ T7196] Invalid ELF header magic: != ELF [ 177.762766][ T7206] Per memcg swappiness does not exist in cgroup v2. See memory.reclaim or memory.swap.max there [ 177.762766][ T7206] [ 179.346473][ T7236] warning: `syz.1.315' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 179.425049][ T7237] FAULT_INJECTION: forcing a failure. [ 179.425049][ T7237] name failslab, interval 1, probability 0, space 0, times 0 [ 179.438202][ T7237] CPU: 0 UID: 0 PID: 7237 Comm: syz.1.315 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 179.438245][ T7237] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 179.438263][ T7237] Call Trace: [ 179.438272][ T7237] [ 179.438284][ T7237] dump_stack_lvl+0x16c/0x1f0 [ 179.438337][ T7237] should_fail_ex+0x512/0x640 [ 179.438376][ T7237] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 179.438421][ T7237] should_failslab+0xc2/0x120 [ 179.438450][ T7237] __kmalloc_cache_noprof+0x6a/0x3e0 [ 179.438488][ T7237] ? lockdep_hardirqs_on+0x7c/0x110 [ 179.438527][ T7237] ? snd_seq_fifo_new+0x42/0x260 [ 179.438572][ T7237] ? seq_create_client1+0x420/0x5e0 [ 179.438612][ T7237] ? __pfx_snd_seq_open+0x10/0x10 [ 179.438655][ T7237] snd_seq_fifo_new+0x42/0x260 [ 179.438690][ T7237] snd_seq_open+0x15c/0x550 [ 179.438737][ T7237] ? __pfx_snd_seq_open+0x10/0x10 [ 179.438778][ T7237] snd_open+0x1fe/0x450 [ 179.438822][ T7237] ? __pfx_snd_open+0x10/0x10 [ 179.438866][ T7237] chrdev_open+0x231/0x6a0 [ 179.438909][ T7237] ? __pfx_apparmor_file_open+0x10/0x10 [ 179.438946][ T7237] ? __pfx_chrdev_open+0x10/0x10 [ 179.438992][ T7237] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 179.439036][ T7237] do_dentry_open+0x744/0x1c10 [ 179.439074][ T7237] ? __pfx_chrdev_open+0x10/0x10 [ 179.439115][ T7237] vfs_open+0x82/0x3f0 [ 179.439142][ T7237] path_openat+0x1de4/0x2cb0 [ 179.439184][ T7237] ? __pfx_path_openat+0x10/0x10 [ 179.439218][ T7237] ? __lock_acquire+0xb8a/0x1c90 [ 179.439252][ T7237] do_filp_open+0x20b/0x470 [ 179.439284][ T7237] ? __pfx_do_filp_open+0x10/0x10 [ 179.439340][ T7237] ? alloc_fd+0x471/0x7d0 [ 179.439378][ T7237] do_sys_openat2+0x11b/0x1d0 [ 179.439403][ T7237] ? __pfx_do_sys_openat2+0x10/0x10 [ 179.439440][ T7237] __x64_sys_openat+0x174/0x210 [ 179.439466][ T7237] ? __pfx___x64_sys_openat+0x10/0x10 [ 179.439504][ T7237] do_syscall_64+0xcd/0x490 [ 179.439541][ T7237] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 179.439571][ T7237] RIP: 0033:0x7fe43278e929 [ 179.439592][ T7237] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 179.439613][ T7237] RSP: 002b:00007fe4335bb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 179.439636][ T7237] RAX: ffffffffffffffda RBX: 00007fe4329b6080 RCX: 00007fe43278e929 [ 179.439651][ T7237] RDX: 0000000000040a40 RSI: 0000200000001d40 RDI: ffffffffffffff9c [ 179.439666][ T7237] RBP: 00007fe432810b39 R08: 0000000000000000 R09: 0000000000000000 [ 179.439681][ T7237] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 179.439694][ T7237] R13: 0000000000000000 R14: 00007fe4329b6080 R15: 00007fffe8168f48 [ 179.439726][ T7237] [ 179.924603][ T7247] FAULT_INJECTION: forcing a failure. [ 179.924603][ T7247] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 179.938939][ T7247] CPU: 0 UID: 0 PID: 7247 Comm: syz.0.319 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 179.938965][ T7247] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 179.938976][ T7247] Call Trace: [ 179.938983][ T7247] [ 179.938989][ T7247] dump_stack_lvl+0x16c/0x1f0 [ 179.939019][ T7247] should_fail_ex+0x512/0x640 [ 179.939046][ T7247] should_fail_alloc_page+0xe7/0x130 [ 179.939066][ T7247] prepare_alloc_pages+0x3c2/0x610 [ 179.939085][ T7247] ? rcu_is_watching+0x12/0xc0 [ 179.939105][ T7247] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 179.939133][ T7247] ? rcu_is_watching+0x12/0xc0 [ 179.939150][ T7247] ? trace_mm_page_alloc+0x11f/0x1a0 [ 179.939169][ T7247] ? __alloc_frozen_pages_noprof+0x294/0x23f0 [ 179.939194][ T7247] ? stack_trace_save+0x8e/0xc0 [ 179.939213][ T7247] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 179.939255][ T7247] ? kmem_cache_alloc_node_noprof+0x1d5/0x3b0 [ 179.939278][ T7247] ? __get_vm_area_node+0x1ca/0x330 [ 179.939296][ T7247] ? vmap+0x135/0x320 [ 179.939312][ T7247] ? relay_open_buf.part.0+0x445/0xc80 [ 179.939332][ T7247] ? relay_open+0x653/0xad0 [ 179.939350][ T7247] ? do_blk_trace_setup+0x503/0xb50 [ 179.939366][ T7247] ? blk_trace_setup+0xed/0x1b0 [ 179.939382][ T7247] ? blk_trace_ioctl+0x146/0x280 [ 179.939399][ T7247] ? blkdev_ioctl+0x108/0x6d0 [ 179.939425][ T7247] alloc_pages_bulk_noprof+0x71c/0x1410 [ 179.939449][ T7247] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 179.939474][ T7247] ? policy_nodemask+0xea/0x4e0 [ 179.939503][ T7247] ? __pfx_alloc_pages_bulk_noprof+0x10/0x10 [ 179.939528][ T7247] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 179.939553][ T7247] kasan_populate_vmalloc+0xf1/0x1f0 [ 179.939580][ T7247] alloc_vmap_area+0x959/0x29c0 [ 179.939607][ T7247] ? __pfx_alloc_vmap_area+0x10/0x10 [ 179.939631][ T7247] __get_vm_area_node+0x1ca/0x330 [ 179.939652][ T7247] ? relay_open_buf.part.0+0x445/0xc80 [ 179.939673][ T7247] get_vm_area_caller+0x71/0xa0 [ 179.939691][ T7247] ? relay_open_buf.part.0+0x445/0xc80 [ 179.939713][ T7247] vmap+0x135/0x320 [ 179.939731][ T7247] ? __pfx_vmap+0x10/0x10 [ 179.939747][ T7247] ? trace_kmem_cache_alloc+0xc0/0xc0 [ 179.939764][ T7247] ? relay_open_buf.part.0+0x194/0xc80 [ 179.939789][ T7247] relay_open_buf.part.0+0x445/0xc80 [ 179.939817][ T7247] relay_open+0x653/0xad0 [ 179.939838][ T7247] ? debugfs_create_file_full+0x41/0x60 [ 179.939862][ T7247] do_blk_trace_setup+0x503/0xb50 [ 179.939882][ T7247] blk_trace_setup+0xed/0x1b0 [ 179.939901][ T7247] ? __pfx_blk_trace_setup+0x10/0x10 [ 179.939918][ T7247] ? __pfx_snprintf+0x10/0x10 [ 179.939951][ T7247] blk_trace_ioctl+0x146/0x280 [ 179.939970][ T7247] ? __pfx_blk_trace_ioctl+0x10/0x10 [ 179.939991][ T7247] ? find_held_lock+0x2b/0x80 [ 179.940007][ T7247] ? hook_file_ioctl_common+0x145/0x410 [ 179.940027][ T7247] blkdev_ioctl+0x108/0x6d0 [ 179.940046][ T7247] ? __pfx_blkdev_ioctl+0x10/0x10 [ 179.940067][ T7247] ? __pfx_blkdev_ioctl+0x10/0x10 [ 179.940086][ T7247] __x64_sys_ioctl+0x18b/0x210 [ 179.940107][ T7247] do_syscall_64+0xcd/0x490 [ 179.940133][ T7247] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 179.940150][ T7247] RIP: 0033:0x7f68af78e929 [ 179.940164][ T7247] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 179.940180][ T7247] RSP: 002b:00007f68b057c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 179.940196][ T7247] RAX: ffffffffffffffda RBX: 00007f68af9b5fa0 RCX: 00007f68af78e929 [ 179.940206][ T7247] RDX: 00002000000000c0 RSI: 00000000c0481273 RDI: 0000000000000008 [ 179.940216][ T7247] RBP: 00007f68af810b39 R08: 0000000000000000 R09: 0000000000000000 [ 179.940225][ T7247] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 179.940241][ T7247] R13: 0000000000000000 R14: 00007f68af9b5fa0 R15: 00007ffe1a28cb88 [ 179.940263][ T7247] [ 180.560992][ T7250] netlink: 28 bytes leftover after parsing attributes in process `syz.2.320'. [ 180.914226][ T7250] netlink: 4 bytes leftover after parsing attributes in process `syz.2.320'. [ 180.926631][ T7257] hub 8-0:1.0: USB hub found [ 180.933248][ T7257] hub 8-0:1.0: 1 port detected [ 181.156034][ T7260] FAULT_INJECTION: forcing a failure. [ 181.156034][ T7260] name failslab, interval 1, probability 0, space 0, times 0 [ 181.190552][ T7262] program syz.0.323 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 181.248446][ T7260] CPU: 1 UID: 0 PID: 7260 Comm: syz.3.322 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 181.248491][ T7260] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 181.248508][ T7260] Call Trace: [ 181.248517][ T7260] [ 181.248528][ T7260] dump_stack_lvl+0x16c/0x1f0 [ 181.248572][ T7260] should_fail_ex+0x512/0x640 [ 181.248604][ T7260] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 181.248642][ T7260] should_failslab+0xc2/0x120 [ 181.248664][ T7260] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 181.248694][ T7260] ? rcu_is_watching+0x12/0xc0 [ 181.248718][ T7260] ? getname_flags.part.0+0x4c/0x550 [ 181.248749][ T7260] getname_flags.part.0+0x4c/0x550 [ 181.248778][ T7260] getname_flags+0x93/0xf0 [ 181.248807][ T7260] do_sys_openat2+0xb8/0x1d0 [ 181.248831][ T7260] ? __pfx_do_sys_openat2+0x10/0x10 [ 181.248858][ T7260] ? __pfx___might_resched+0x10/0x10 [ 181.248891][ T7260] __x64_sys_openat+0x174/0x210 [ 181.248916][ T7260] ? __pfx___x64_sys_openat+0x10/0x10 [ 181.248957][ T7260] do_syscall_64+0xcd/0x490 [ 181.248995][ T7260] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 181.249022][ T7260] RIP: 0033:0x7fbe5498e929 [ 181.249042][ T7260] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 181.249064][ T7260] RSP: 002b:00007fbe55892038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 181.249086][ T7260] RAX: ffffffffffffffda RBX: 00007fbe54bb5fa0 RCX: 00007fbe5498e929 [ 181.249100][ T7260] RDX: 0000000000000802 RSI: 00002000000010c0 RDI: ffffffffffffff9c [ 181.249113][ T7260] RBP: 00007fbe54a10b39 R08: 0000000000000000 R09: 0000000000000000 [ 181.249126][ T7260] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 181.249139][ T7260] R13: 0000000000000000 R14: 00007fbe54bb5fa0 R15: 00007fff53f1e2b8 [ 181.249167][ T7260] [ 181.960418][ T5151] Bluetooth: hci3: ACL packet too small [ 181.966917][ T5151] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18 [ 181.975628][ T5151] Bluetooth: hci3: Invalid handle: 0xe200 > 0x0eff [ 183.307889][ T7300] FAULT_INJECTION: forcing a failure. [ 183.307889][ T7300] name failslab, interval 1, probability 0, space 0, times 0 [ 183.366130][ T7300] CPU: 0 UID: 0 PID: 7300 Comm: syz.3.331 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 183.366171][ T7300] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 183.366188][ T7300] Call Trace: [ 183.366198][ T7300] [ 183.366209][ T7300] dump_stack_lvl+0x16c/0x1f0 [ 183.366266][ T7300] should_fail_ex+0x512/0x640 [ 183.366305][ T7300] ? __kmalloc_noprof+0xbf/0x510 [ 183.366349][ T7300] ? bpf_sk_storage_diag_alloc+0xa0/0x6c0 [ 183.366386][ T7300] should_failslab+0xc2/0x120 [ 183.366414][ T7300] __kmalloc_noprof+0xd2/0x510 [ 183.366455][ T7300] ? bpf_lsm_capable+0x9/0x10 [ 183.366498][ T7300] bpf_sk_storage_diag_alloc+0xa0/0x6c0 [ 183.366542][ T7300] __inet_diag_dump_start+0x3c0/0x7f0 [ 183.366585][ T7300] __netlink_dump_start+0x60b/0x990 [ 183.366622][ T7300] inet_diag_rcv_msg_compat+0x275/0x2d0 [ 183.366654][ T7300] ? __pfx_inet_diag_rcv_msg_compat+0x10/0x10 [ 183.366685][ T7300] ? __pfx_inet_diag_dump_start_compat+0x10/0x10 [ 183.366715][ T7300] ? __pfx_inet_diag_dump_compat+0x10/0x10 [ 183.366743][ T7300] ? __pfx_inet_diag_dump_done+0x10/0x10 [ 183.366779][ T7300] ? sock_diag_rcv_msg+0x315/0x790 [ 183.366820][ T7300] sock_diag_rcv_msg+0x34a/0x790 [ 183.366863][ T7300] netlink_rcv_skb+0x158/0x420 [ 183.366893][ T7300] ? __pfx_sock_diag_rcv_msg+0x10/0x10 [ 183.366934][ T7300] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 183.366979][ T7300] ? netlink_deliver_tap+0x1ae/0xd30 [ 183.367016][ T7300] netlink_unicast+0x53a/0x7f0 [ 183.367051][ T7300] ? __pfx_netlink_unicast+0x10/0x10 [ 183.367093][ T7300] netlink_sendmsg+0x8d1/0xdd0 [ 183.367130][ T7300] ? __pfx_netlink_sendmsg+0x10/0x10 [ 183.367181][ T7300] ____sys_sendmsg+0xa95/0xc70 [ 183.367215][ T7300] ? copy_msghdr_from_user+0x10a/0x160 [ 183.367265][ T7300] ? __pfx_____sys_sendmsg+0x10/0x10 [ 183.367305][ T7300] ? kfree+0x24f/0x4d0 [ 183.367336][ T7300] ? __pfx__kstrtoull+0x10/0x10 [ 183.367380][ T7300] ___sys_sendmsg+0x134/0x1d0 [ 183.367426][ T7300] ? __pfx____sys_sendmsg+0x10/0x10 [ 183.367514][ T7300] ? __pfx___might_resched+0x10/0x10 [ 183.367555][ T7300] __sys_sendmmsg+0x200/0x420 [ 183.367605][ T7300] ? __pfx___sys_sendmmsg+0x10/0x10 [ 183.367666][ T7300] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 183.367730][ T7300] ? fput+0x70/0xf0 [ 183.367759][ T7300] ? ksys_write+0x1ac/0x250 [ 183.367797][ T7300] ? __pfx_ksys_write+0x10/0x10 [ 183.367846][ T7300] __x64_sys_sendmmsg+0x9c/0x100 [ 183.367888][ T7300] ? lockdep_hardirqs_on+0x7c/0x110 [ 183.367929][ T7300] do_syscall_64+0xcd/0x490 [ 183.367974][ T7300] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 183.368002][ T7300] RIP: 0033:0x7fbe5498e929 [ 183.368024][ T7300] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 183.368046][ T7300] RSP: 002b:00007fbe55892038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 183.368072][ T7300] RAX: ffffffffffffffda RBX: 00007fbe54bb5fa0 RCX: 00007fbe5498e929 [ 183.368090][ T7300] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 183.368106][ T7300] RBP: 00007fbe55892090 R08: 0000000000000000 R09: 0000000000000000 [ 183.368122][ T7300] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 183.368137][ T7300] R13: 0000000000000000 R14: 00007fbe54bb5fa0 R15: 00007fff53f1e2b8 [ 183.368174][ T7300] [ 183.693845][ C0] vkms_vblank_simulate: vblank timer overrun [ 184.236721][ T7313] FAULT_INJECTION: forcing a failure. [ 184.236721][ T7313] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 184.259497][ T7313] CPU: 1 UID: 0 PID: 7313 Comm: syz.0.334 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 184.259538][ T7313] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 184.259554][ T7313] Call Trace: [ 184.259563][ T7313] [ 184.259575][ T7313] dump_stack_lvl+0x16c/0x1f0 [ 184.259622][ T7313] should_fail_ex+0x512/0x640 [ 184.259669][ T7313] _copy_to_user+0x32/0xd0 [ 184.259715][ T7313] tomoyo_flush+0x161/0x520 [ 184.259763][ T7313] tomoyo_set_string+0xaf/0xe0 [ 184.259804][ T7313] tomoyo_print_entry+0x1661/0x2710 [ 184.259856][ T7313] ? find_held_lock+0x2b/0x80 [ 184.259884][ T7313] ? __pfx_tomoyo_print_entry+0x10/0x10 [ 184.259922][ T7313] ? __might_fault+0xe3/0x190 [ 184.259955][ T7313] ? __might_fault+0x13b/0x190 [ 184.260004][ T7313] ? _copy_to_user+0x48/0xd0 [ 184.260057][ T7313] tomoyo_read_domain2+0xa3/0x380 [ 184.260105][ T7313] tomoyo_read_domain+0x3e1/0x9e0 [ 184.260158][ T7313] tomoyo_read_control+0x299/0x540 [ 184.260205][ T7313] ? __pfx_tomoyo_read+0x10/0x10 [ 184.260245][ T7313] vfs_read+0x1e4/0xc60 [ 184.260289][ T7313] ? __pfx___mutex_lock+0x10/0x10 [ 184.260331][ T7313] ? __pfx_vfs_read+0x10/0x10 [ 184.260381][ T7313] ? __fget_files+0x20e/0x3c0 [ 184.260439][ T7313] ksys_read+0x12a/0x250 [ 184.260479][ T7313] ? __pfx_ksys_read+0x10/0x10 [ 184.260529][ T7313] do_syscall_64+0xcd/0x490 [ 184.260574][ T7313] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 184.260604][ T7313] RIP: 0033:0x7f68af78e929 [ 184.260628][ T7313] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 184.260654][ T7313] RSP: 002b:00007f68b057c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 184.260681][ T7313] RAX: ffffffffffffffda RBX: 00007f68af9b5fa0 RCX: 00007f68af78e929 [ 184.260699][ T7313] RDX: 000000000000b4d3 RSI: 0000000000000000 RDI: 0000000000000005 [ 184.260716][ T7313] RBP: 00007f68b057c090 R08: 0000000000000000 R09: 0000000000000000 [ 184.260732][ T7313] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 184.260749][ T7313] R13: 0000000000000000 R14: 00007f68af9b5fa0 R15: 00007ffe1a28cb88 [ 184.260790][ T7313] [ 184.318710][ T7315] FAULT_INJECTION: forcing a failure. [ 184.318710][ T7315] name failslab, interval 1, probability 0, space 0, times 0 [ 184.434269][ C0] vkms_vblank_simulate: vblank timer overrun [ 184.527796][ T7315] CPU: 0 UID: 0 PID: 7315 Comm: syz.1.335 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 184.527842][ T7315] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 184.527860][ T7315] Call Trace: [ 184.527870][ T7315] [ 184.527882][ T7315] dump_stack_lvl+0x16c/0x1f0 [ 184.527932][ T7315] should_fail_ex+0x512/0x640 [ 184.527973][ T7315] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 184.528028][ T7315] should_failslab+0xc2/0x120 [ 184.528056][ T7315] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 184.528105][ T7315] ? trace_kmem_cache_alloc+0x28/0xc0 [ 184.528135][ T7315] ? key_alloc+0x43e/0x1330 [ 184.528179][ T7315] kmemdup_noprof+0x29/0x60 [ 184.528224][ T7315] key_alloc+0x43e/0x1330 [ 184.528281][ T7315] ? trace_kmalloc+0x2b/0xd0 [ 184.528315][ T7315] ? __kmalloc_noprof+0x242/0x510 [ 184.528353][ T7315] ? __pfx_key_alloc+0x10/0x10 [ 184.528394][ T7315] keyring_alloc+0x44/0xc0 [ 184.528434][ T7315] lookup_user_key+0xc51/0x1300 [ 184.528471][ T7315] ? __pfx_lookup_user_key+0x10/0x10 [ 184.528497][ T7315] ? __pfx_futex_wake+0x10/0x10 [ 184.528542][ T7315] ? __pfx_lookup_user_key_possessed+0x10/0x10 [ 184.528576][ T7315] ? do_futex+0x122/0x350 [ 184.528618][ T7315] keyctl_chown_key+0x1c9/0xfb0 [ 184.528645][ T7315] ? __x64_sys_futex+0x1e0/0x4c0 [ 184.528675][ T7315] ? __x64_sys_futex+0x1e9/0x4c0 [ 184.528711][ T7315] ? __pfx_keyctl_chown_key+0x10/0x10 [ 184.528737][ T7315] ? xfd_validate_state+0x61/0x180 [ 184.528780][ T7315] __do_sys_keyctl+0x283/0x590 [ 184.528812][ T7315] do_syscall_64+0xcd/0x490 [ 184.528857][ T7315] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 184.528886][ T7315] RIP: 0033:0x7fe43278e929 [ 184.528910][ T7315] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 184.528935][ T7315] RSP: 002b:00007fe4335bb038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 184.528961][ T7315] RAX: ffffffffffffffda RBX: 00007fe4329b6080 RCX: 00007fe43278e929 [ 184.528978][ T7315] RDX: 0000000000000000 RSI: fffff7ffffffffff RDI: 0000000000000004 [ 184.528993][ T7315] RBP: 00007fe432810b39 R08: 0000000000000008 R09: 0000000000000000 [ 184.529007][ T7315] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000 [ 184.529021][ T7315] R13: 0000000000000000 R14: 00007fe4329b6080 R15: 00007fffe8168f48 [ 184.529056][ T7315] [ 184.765122][ C0] vkms_vblank_simulate: vblank timer overrun [ 187.621294][ T7369] FAULT_INJECTION: forcing a failure. [ 187.621294][ T7369] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 187.688260][ T7369] CPU: 1 UID: 0 PID: 7369 Comm: syz.3.350 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 187.688299][ T7369] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 187.688320][ T7369] Call Trace: [ 187.688328][ T7369] [ 187.688338][ T7369] dump_stack_lvl+0x16c/0x1f0 [ 187.688385][ T7369] should_fail_ex+0x512/0x640 [ 187.688431][ T7369] _copy_to_user+0x32/0xd0 [ 187.688478][ T7369] tomoyo_flush+0x161/0x520 [ 187.688532][ T7369] tomoyo_set_string+0xaf/0xe0 [ 187.688572][ T7369] tomoyo_print_name_union+0x22/0x150 [ 187.688614][ T7369] tomoyo_print_entry+0x1703/0x2710 [ 187.688664][ T7369] ? find_held_lock+0x2b/0x80 [ 187.688690][ T7369] ? __pfx_tomoyo_print_entry+0x10/0x10 [ 187.688727][ T7369] ? __might_fault+0xe3/0x190 [ 187.688763][ T7369] ? __might_fault+0x13b/0x190 [ 187.688810][ T7369] ? _copy_to_user+0x48/0xd0 [ 187.688862][ T7369] tomoyo_read_domain2+0xa3/0x380 [ 187.688909][ T7369] tomoyo_read_domain+0x3e1/0x9e0 [ 187.688961][ T7369] tomoyo_read_control+0x299/0x540 [ 187.689008][ T7369] ? __pfx_tomoyo_read+0x10/0x10 [ 187.689046][ T7369] vfs_read+0x1e4/0xc60 [ 187.689092][ T7369] ? __pfx___mutex_lock+0x10/0x10 [ 187.689170][ T7369] ? __pfx_vfs_read+0x10/0x10 [ 187.689220][ T7369] ? __fget_files+0x20e/0x3c0 [ 187.689269][ T7369] ksys_read+0x12a/0x250 [ 187.689313][ T7369] ? __pfx_ksys_read+0x10/0x10 [ 187.689360][ T7369] do_syscall_64+0xcd/0x490 [ 187.689406][ T7369] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 187.689435][ T7369] RIP: 0033:0x7fbe5498e929 [ 187.689458][ T7369] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 187.689484][ T7369] RSP: 002b:00007fbe55892038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 187.689519][ T7369] RAX: ffffffffffffffda RBX: 00007fbe54bb5fa0 RCX: 00007fbe5498e929 [ 187.689538][ T7369] RDX: 000000000000b4d3 RSI: 0000000000000000 RDI: 0000000000000005 [ 187.689553][ T7369] RBP: 00007fbe55892090 R08: 0000000000000000 R09: 0000000000000000 [ 187.689569][ T7369] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 187.689585][ T7369] R13: 0000000000000000 R14: 00007fbe54bb5fa0 R15: 00007fff53f1e2b8 [ 187.689624][ T7369] [ 188.529172][ T7385] FAULT_INJECTION: forcing a failure. [ 188.529172][ T7385] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 188.563511][ T7385] CPU: 0 UID: 0 PID: 7385 Comm: syz.3.355 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 188.563550][ T7385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 188.563565][ T7385] Call Trace: [ 188.563573][ T7385] [ 188.563583][ T7385] dump_stack_lvl+0x16c/0x1f0 [ 188.563631][ T7385] should_fail_ex+0x512/0x640 [ 188.563677][ T7385] _copy_from_iter+0x29f/0x16f0 [ 188.563725][ T7385] ? anon_pipe_write+0x15d/0x1a70 [ 188.563768][ T7385] ? __pfx__copy_from_iter+0x10/0x10 [ 188.563809][ T7385] ? __pfx___mutex_lock+0x10/0x10 [ 188.563869][ T7385] copy_page_from_iter+0xde/0x180 [ 188.563918][ T7385] anon_pipe_write+0xbe7/0x1a70 [ 188.563976][ T7385] ? __pfx_anon_pipe_write+0x10/0x10 [ 188.564021][ T7385] ? apparmor_file_permission+0x251/0x400 [ 188.564054][ T7385] ? bpf_lsm_file_permission+0x9/0x10 [ 188.564083][ T7385] ? security_file_permission+0x71/0x210 [ 188.564121][ T7385] ? rw_verify_area+0xcf/0x680 [ 188.564160][ T7385] vfs_write+0x6c7/0x1150 [ 188.564202][ T7385] ? __pfx_anon_pipe_write+0x10/0x10 [ 188.564262][ T7385] ? __pfx_vfs_write+0x10/0x10 [ 188.564298][ T7385] ? find_held_lock+0x2b/0x80 [ 188.564353][ T7385] ksys_write+0x1f8/0x250 [ 188.564393][ T7385] ? __pfx_ksys_write+0x10/0x10 [ 188.564445][ T7385] do_syscall_64+0xcd/0x490 [ 188.564491][ T7385] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 188.564521][ T7385] RIP: 0033:0x7fbe5498e929 [ 188.564544][ T7385] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 188.564570][ T7385] RSP: 002b:00007fbe55892038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 188.564598][ T7385] RAX: ffffffffffffffda RBX: 00007fbe54bb5fa0 RCX: 00007fbe5498e929 [ 188.564616][ T7385] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 188.564632][ T7385] RBP: 00007fbe55892090 R08: 0000000000000000 R09: 0000000000000000 [ 188.564648][ T7385] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 188.564664][ T7385] R13: 0000000000000000 R14: 00007fbe54bb5fa0 R15: 00007fff53f1e2b8 [ 188.564702][ T7385] [ 188.779967][ C0] vkms_vblank_simulate: vblank timer overrun [ 192.866457][ T7455] netlink: 28 bytes leftover after parsing attributes in process `syz.1.371'. [ 193.022069][ T7455] bond0: (slave bond_slave_0): Releasing backup interface [ 194.479038][ T7481] FAULT_INJECTION: forcing a failure. [ 194.479038][ T7481] name fail_futex, interval 1, probability 0, space 0, times 0 [ 194.482097][ T7488] FAULT_INJECTION: forcing a failure. [ 194.482097][ T7488] name failslab, interval 1, probability 0, space 0, times 0 [ 194.541101][ T7481] CPU: 1 UID: 0 PID: 7481 Comm: syz.3.377 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 194.541143][ T7481] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 194.541158][ T7481] Call Trace: [ 194.541166][ T7481] [ 194.541176][ T7481] dump_stack_lvl+0x16c/0x1f0 [ 194.541220][ T7481] should_fail_ex+0x512/0x640 [ 194.541262][ T7481] get_futex_key+0x1d0/0x1540 [ 194.541296][ T7481] ? __pfx_get_futex_key+0x10/0x10 [ 194.541321][ T7481] ? is_bpf_text_address+0x94/0x1a0 [ 194.541355][ T7481] ? kernel_text_address+0x8d/0x100 [ 194.541403][ T7481] ? __kernel_text_address+0xd/0x40 [ 194.541439][ T7481] ? unwind_get_return_address+0x59/0xa0 [ 194.541479][ T7481] ? arch_stack_walk+0xa6/0x100 [ 194.541521][ T7481] futex_wait_setup+0x9d/0x550 [ 194.541569][ T7481] __futex_wait+0x194/0x2f0 [ 194.541609][ T7481] ? __pfx___futex_wait+0x10/0x10 [ 194.541651][ T7481] ? __pfx_futex_wake_mark+0x10/0x10 [ 194.541709][ T7481] futex_wait+0xe8/0x380 [ 194.541747][ T7481] ? __pfx_futex_wait+0x10/0x10 [ 194.541798][ T7481] ? find_ucounts+0x222/0x3e0 [ 194.541837][ T7481] do_futex+0x229/0x350 [ 194.541870][ T7481] ? __pfx_do_futex+0x10/0x10 [ 194.541903][ T7481] ? dec_rlimit_ucounts+0x114/0x170 [ 194.541945][ T7481] __x64_sys_futex+0x1e0/0x4c0 [ 194.541983][ T7481] ? __pfx___x64_sys_futex+0x10/0x10 [ 194.542022][ T7481] ? __sys_setreuid+0x4cd/0xaf0 [ 194.542055][ T7481] do_syscall_64+0xcd/0x490 [ 194.542098][ T7481] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 194.542127][ T7481] RIP: 0033:0x7fbe5498e929 [ 194.542158][ T7481] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 194.542186][ T7481] RSP: 002b:00007fbe558920e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 194.542215][ T7481] RAX: ffffffffffffffda RBX: 00007fbe54bb5fa8 RCX: 00007fbe5498e929 [ 194.542234][ T7481] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fbe54bb5fa8 [ 194.542252][ T7481] RBP: 00007fbe54bb5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 194.542270][ T7481] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbe54bb5fac [ 194.542288][ T7481] R13: 0000000000000000 R14: 00007fff53f1e1d0 R15: 00007fff53f1e2b8 [ 194.542328][ T7481] [ 194.773192][ T7488] CPU: 0 UID: 0 PID: 7488 Comm: syz.1.379 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 194.773232][ T7488] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 194.773247][ T7488] Call Trace: [ 194.773256][ T7488] [ 194.773267][ T7488] dump_stack_lvl+0x16c/0x1f0 [ 194.773314][ T7488] should_fail_ex+0x512/0x640 [ 194.773360][ T7488] should_failslab+0xc2/0x120 [ 194.773397][ T7488] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 194.773437][ T7488] ? skb_clone+0x190/0x3f0 [ 194.773485][ T7488] skb_clone+0x190/0x3f0 [ 194.773529][ T7488] netlink_deliver_tap+0xabd/0xd30 [ 194.773565][ T7488] netlink_unicast+0x6b2/0x7f0 [ 194.773599][ T7488] ? __pfx_netlink_unicast+0x10/0x10 [ 194.773629][ T7488] ? __pfx_inet_diag_dump_start_compat+0x10/0x10 [ 194.773659][ T7488] ? __pfx_inet_diag_dump_compat+0x10/0x10 [ 194.773686][ T7488] ? __pfx_inet_diag_dump_done+0x10/0x10 [ 194.773723][ T7488] netlink_ack+0x696/0xb80 [ 194.773763][ T7488] netlink_rcv_skb+0x332/0x420 [ 194.773793][ T7488] ? __pfx_sock_diag_rcv_msg+0x10/0x10 [ 194.773834][ T7488] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 194.773878][ T7488] ? netlink_deliver_tap+0x1ae/0xd30 [ 194.773913][ T7488] netlink_unicast+0x53a/0x7f0 [ 194.773945][ T7488] ? __pfx_netlink_unicast+0x10/0x10 [ 194.773985][ T7488] netlink_sendmsg+0x8d1/0xdd0 [ 194.774020][ T7488] ? __pfx_netlink_sendmsg+0x10/0x10 [ 194.774064][ T7488] ____sys_sendmsg+0xa95/0xc70 [ 194.774096][ T7488] ? copy_msghdr_from_user+0x10a/0x160 [ 194.774135][ T7488] ? __pfx_____sys_sendmsg+0x10/0x10 [ 194.774171][ T7488] ? kfree+0x24f/0x4d0 [ 194.774202][ T7488] ? __pfx__kstrtoull+0x10/0x10 [ 194.774243][ T7488] ___sys_sendmsg+0x134/0x1d0 [ 194.774288][ T7488] ? __pfx____sys_sendmsg+0x10/0x10 [ 194.774366][ T7488] ? __pfx___might_resched+0x10/0x10 [ 194.774415][ T7488] __sys_sendmmsg+0x200/0x420 [ 194.774462][ T7488] ? __pfx___sys_sendmmsg+0x10/0x10 [ 194.774517][ T7488] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 194.774578][ T7488] ? fput+0x70/0xf0 [ 194.774604][ T7488] ? ksys_write+0x1ac/0x250 [ 194.774640][ T7488] ? __pfx_ksys_write+0x10/0x10 [ 194.774687][ T7488] __x64_sys_sendmmsg+0x9c/0x100 [ 194.774728][ T7488] ? lockdep_hardirqs_on+0x7c/0x110 [ 194.774766][ T7488] do_syscall_64+0xcd/0x490 [ 194.774810][ T7488] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 194.774839][ T7488] RIP: 0033:0x7fe43278e929 [ 194.774863][ T7488] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 194.774889][ T7488] RSP: 002b:00007fe4335dc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 194.774916][ T7488] RAX: ffffffffffffffda RBX: 00007fe4329b5fa0 RCX: 00007fe43278e929 [ 194.774934][ T7488] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 194.774952][ T7488] RBP: 00007fe4335dc090 R08: 0000000000000000 R09: 0000000000000000 [ 194.774969][ T7488] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 194.774985][ T7488] R13: 0000000000000000 R14: 00007fe4329b5fa0 R15: 00007fffe8168f48 [ 194.775023][ T7488] [ 196.177575][ T7514] FAULT_INJECTION: forcing a failure. [ 196.177575][ T7514] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 196.216802][ T7514] CPU: 1 UID: 0 PID: 7514 Comm: syz.1.385 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 196.216842][ T7514] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 196.216856][ T7514] Call Trace: [ 196.216865][ T7514] [ 196.216875][ T7514] dump_stack_lvl+0x16c/0x1f0 [ 196.216920][ T7514] should_fail_ex+0x512/0x640 [ 196.216963][ T7514] _copy_to_user+0x32/0xd0 [ 196.217006][ T7514] tomoyo_flush+0x161/0x520 [ 196.217049][ T7514] tomoyo_set_string+0xaf/0xe0 [ 196.217086][ T7514] tomoyo_print_entry+0x1712/0x2710 [ 196.217133][ T7514] ? find_held_lock+0x2b/0x80 [ 196.217160][ T7514] ? __pfx_tomoyo_print_entry+0x10/0x10 [ 196.217197][ T7514] ? __might_fault+0xe3/0x190 [ 196.217241][ T7514] ? __might_fault+0x13b/0x190 [ 196.217293][ T7514] ? _copy_to_user+0x48/0xd0 [ 196.217343][ T7514] tomoyo_read_domain2+0xa3/0x380 [ 196.217391][ T7514] tomoyo_read_domain+0x3e1/0x9e0 [ 196.217443][ T7514] tomoyo_read_control+0x299/0x540 [ 196.217488][ T7514] ? __pfx_tomoyo_read+0x10/0x10 [ 196.217525][ T7514] vfs_read+0x1e4/0xc60 [ 196.217568][ T7514] ? __pfx___mutex_lock+0x10/0x10 [ 196.217606][ T7514] ? __pfx_vfs_read+0x10/0x10 [ 196.217653][ T7514] ? __fget_files+0x20e/0x3c0 [ 196.217701][ T7514] ksys_read+0x12a/0x250 [ 196.217735][ T7514] ? __pfx_ksys_read+0x10/0x10 [ 196.217786][ T7514] do_syscall_64+0xcd/0x490 [ 196.217830][ T7514] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 196.217856][ T7514] RIP: 0033:0x7fe43278e929 [ 196.217878][ T7514] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 196.217902][ T7514] RSP: 002b:00007fe4335dc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 196.217928][ T7514] RAX: ffffffffffffffda RBX: 00007fe4329b5fa0 RCX: 00007fe43278e929 [ 196.217945][ T7514] RDX: 000000000000b4d3 RSI: 0000000000000000 RDI: 0000000000000005 [ 196.217962][ T7514] RBP: 00007fe4335dc090 R08: 0000000000000000 R09: 0000000000000000 [ 196.217978][ T7514] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 196.217993][ T7514] R13: 0000000000000000 R14: 00007fe4329b5fa0 R15: 00007fffe8168f48 [ 196.218032][ T7514] [ 197.116138][ T7525] FAULT_INJECTION: forcing a failure. [ 197.116138][ T7525] name failslab, interval 1, probability 0, space 0, times 0 [ 197.223670][ T7525] CPU: 1 UID: 0 PID: 7525 Comm: syz.3.389 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 197.223712][ T7525] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 197.223728][ T7525] Call Trace: [ 197.223738][ T7525] [ 197.223748][ T7525] dump_stack_lvl+0x16c/0x1f0 [ 197.223795][ T7525] should_fail_ex+0x512/0x640 [ 197.223834][ T7525] ? fs_reclaim_acquire+0xae/0x150 [ 197.223871][ T7525] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 197.223909][ T7525] should_failslab+0xc2/0x120 [ 197.223938][ T7525] __kmalloc_noprof+0xd2/0x510 [ 197.223984][ T7525] tomoyo_realpath_from_path+0xc2/0x6e0 [ 197.224033][ T7525] tomoyo_check_open_permission+0x2ab/0x3c0 [ 197.224067][ T7525] ? init_file+0x93/0x4c0 [ 197.224092][ T7525] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 197.224133][ T7525] ? do_sys_openat2+0x11b/0x1d0 [ 197.224165][ T7525] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 197.224232][ T7525] ? do_raw_spin_lock+0x12c/0x2b0 [ 197.224287][ T7525] tomoyo_file_open+0x6b/0x90 [ 197.224332][ T7525] security_file_open+0x84/0x1e0 [ 197.224366][ T7525] do_dentry_open+0x596/0x1c10 [ 197.224414][ T7525] vfs_open+0x82/0x3f0 [ 197.224449][ T7525] path_openat+0x1de4/0x2cb0 [ 197.224502][ T7525] ? __pfx_path_openat+0x10/0x10 [ 197.224550][ T7525] do_filp_open+0x20b/0x470 [ 197.224592][ T7525] ? __pfx_do_filp_open+0x10/0x10 [ 197.224662][ T7525] ? _raw_spin_unlock+0x28/0x50 [ 197.224698][ T7525] ? alloc_fd+0x471/0x7d0 [ 197.224749][ T7525] do_sys_openat2+0x11b/0x1d0 [ 197.224781][ T7525] ? __pfx_do_sys_openat2+0x10/0x10 [ 197.224830][ T7525] __x64_sys_open+0x153/0x1e0 [ 197.224863][ T7525] ? __pfx___x64_sys_open+0x10/0x10 [ 197.224911][ T7525] do_syscall_64+0xcd/0x490 [ 197.224959][ T7525] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 197.224988][ T7525] RIP: 0033:0x7fbe5498e929 [ 197.225011][ T7525] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 197.225037][ T7525] RSP: 002b:00007fbe55892038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 197.225065][ T7525] RAX: ffffffffffffffda RBX: 00007fbe54bb5fa0 RCX: 00007fbe5498e929 [ 197.225083][ T7525] RDX: 0000000000000110 RSI: 0000000000000000 RDI: 0000200000000100 [ 197.225099][ T7525] RBP: 00007fbe54a10b39 R08: 0000000000000000 R09: 0000000000000000 [ 197.225114][ T7525] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 197.225140][ T7525] R13: 0000000000000000 R14: 00007fbe54bb5fa0 R15: 00007fff53f1e2b8 [ 197.225182][ T7525] [ 197.225194][ T7525] ERROR: Out of memory at tomoyo_realpath_from_path. [ 197.913825][ T7536] FAULT_INJECTION: forcing a failure. [ 197.913825][ T7536] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 197.958530][ T7536] CPU: 0 UID: 0 PID: 7536 Comm: syz.3.391 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 197.958570][ T7536] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 197.958584][ T7536] Call Trace: [ 197.958594][ T7536] [ 197.958604][ T7536] dump_stack_lvl+0x16c/0x1f0 [ 197.958637][ T7536] should_fail_ex+0x512/0x640 [ 197.958665][ T7536] _copy_from_iter+0x29f/0x16f0 [ 197.958691][ T7536] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 197.958720][ T7536] ? __pfx__copy_from_iter+0x10/0x10 [ 197.958746][ T7536] ? alloc_pages_mpol+0x25a/0x550 [ 197.958764][ T7536] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 197.958785][ T7536] copy_page_from_iter+0xde/0x180 [ 197.958813][ T7536] anon_pipe_write+0xbe7/0x1a70 [ 197.958847][ T7536] ? __pfx_anon_pipe_write+0x10/0x10 [ 197.958874][ T7536] ? apparmor_file_permission+0x251/0x400 [ 197.958894][ T7536] ? bpf_lsm_file_permission+0x9/0x10 [ 197.958911][ T7536] ? security_file_permission+0x71/0x210 [ 197.958934][ T7536] ? rw_verify_area+0xcf/0x680 [ 197.958957][ T7536] vfs_write+0x6c7/0x1150 [ 197.958980][ T7536] ? __pfx_anon_pipe_write+0x10/0x10 [ 197.959007][ T7536] ? __pfx_vfs_write+0x10/0x10 [ 197.959029][ T7536] ? find_held_lock+0x2b/0x80 [ 197.959059][ T7536] ksys_write+0x1f8/0x250 [ 197.959082][ T7536] ? __pfx_ksys_write+0x10/0x10 [ 197.959111][ T7536] do_syscall_64+0xcd/0x490 [ 197.959138][ T7536] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 197.959156][ T7536] RIP: 0033:0x7fbe5498e929 [ 197.959170][ T7536] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 197.959187][ T7536] RSP: 002b:00007fbe55892038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 197.959203][ T7536] RAX: ffffffffffffffda RBX: 00007fbe54bb5fa0 RCX: 00007fbe5498e929 [ 197.959214][ T7536] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 197.959224][ T7536] RBP: 00007fbe55892090 R08: 0000000000000000 R09: 0000000000000000 [ 197.959234][ T7536] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 197.959243][ T7536] R13: 0000000000000000 R14: 00007fbe54bb5fa0 R15: 00007fff53f1e2b8 [ 197.959264][ T7536] [ 199.673565][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 199.680219][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 199.687420][ T7559] FAULT_INJECTION: forcing a failure. [ 199.687420][ T7559] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 199.700842][ T7559] CPU: 1 UID: 0 PID: 7559 Comm: syz.0.398 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 199.700886][ T7559] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 199.700905][ T7559] Call Trace: [ 199.700915][ T7559] [ 199.700927][ T7559] dump_stack_lvl+0x16c/0x1f0 [ 199.700979][ T7559] should_fail_ex+0x512/0x640 [ 199.701028][ T7559] strncpy_from_user+0x3b/0x2e0 [ 199.701073][ T7559] getname_flags.part.0+0x8f/0x550 [ 199.701113][ T7559] getname_flags+0x93/0xf0 [ 199.701162][ T7559] do_sys_openat2+0xb8/0x1d0 [ 199.701193][ T7559] ? __pfx_do_sys_openat2+0x10/0x10 [ 199.701229][ T7559] ? key_user_put+0x5f/0x70 [ 199.701281][ T7559] __x64_sys_openat+0x174/0x210 [ 199.701316][ T7559] ? __pfx___x64_sys_openat+0x10/0x10 [ 199.701368][ T7559] do_syscall_64+0xcd/0x490 [ 199.701415][ T7559] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 199.701446][ T7559] RIP: 0033:0x7f68af78e929 [ 199.701470][ T7559] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 199.701497][ T7559] RSP: 002b:00007f68b055b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 199.701527][ T7559] RAX: ffffffffffffffda RBX: 00007f68af9b6080 RCX: 00007f68af78e929 [ 199.701548][ T7559] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 199.701567][ T7559] RBP: 00007f68af810b39 R08: 0000000000000000 R09: 0000000000000000 [ 199.701585][ T7559] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 199.701601][ T7559] R13: 0000000000000000 R14: 00007f68af9b6080 R15: 00007ffe1a28cb88 [ 199.701639][ T7559] [ 200.396275][ T7569] FAULT_INJECTION: forcing a failure. [ 200.396275][ T7569] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 200.446104][ T7569] CPU: 0 UID: 0 PID: 7569 Comm: syz.0.402 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 200.446150][ T7569] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 200.446166][ T7569] Call Trace: [ 200.446175][ T7569] [ 200.446185][ T7569] dump_stack_lvl+0x16c/0x1f0 [ 200.446232][ T7569] should_fail_ex+0x512/0x640 [ 200.446277][ T7569] _copy_to_user+0x32/0xd0 [ 200.446324][ T7569] tomoyo_flush+0x161/0x520 [ 200.446373][ T7569] tomoyo_set_string+0xaf/0xe0 [ 200.446414][ T7569] tomoyo_io_printf+0x26c/0x2e0 [ 200.446466][ T7569] ? __pfx_tomoyo_io_printf+0x10/0x10 [ 200.446502][ T7569] ? __pfx_tomoyo_addprintf+0x10/0x10 [ 200.446554][ T7569] ? tomoyo_print_number_union_nospace.part.0+0x183/0x2a0 [ 200.446605][ T7569] tomoyo_print_number_union_nospace.part.0+0x1e0/0x2a0 [ 200.446652][ T7569] ? __pfx_tomoyo_print_number_union_nospace.part.0+0x10/0x10 [ 200.446725][ T7569] tomoyo_print_entry+0x2025/0x2710 [ 200.446777][ T7569] ? find_held_lock+0x2b/0x80 [ 200.446805][ T7569] ? __pfx_tomoyo_print_entry+0x10/0x10 [ 200.446845][ T7569] ? __might_fault+0xe3/0x190 [ 200.446882][ T7569] ? __might_fault+0x13b/0x190 [ 200.446934][ T7569] ? _copy_to_user+0x48/0xd0 [ 200.446988][ T7569] tomoyo_read_domain2+0xa3/0x380 [ 200.447036][ T7569] tomoyo_read_domain+0x3e1/0x9e0 [ 200.447089][ T7569] tomoyo_read_control+0x299/0x540 [ 200.447136][ T7569] ? __pfx_tomoyo_read+0x10/0x10 [ 200.447175][ T7569] vfs_read+0x1e4/0xc60 [ 200.447218][ T7569] ? __pfx___mutex_lock+0x10/0x10 [ 200.447260][ T7569] ? __pfx_vfs_read+0x10/0x10 [ 200.447309][ T7569] ? __fget_files+0x20e/0x3c0 [ 200.447359][ T7569] ksys_read+0x12a/0x250 [ 200.447397][ T7569] ? __pfx_ksys_read+0x10/0x10 [ 200.447455][ T7569] do_syscall_64+0xcd/0x490 [ 200.447500][ T7569] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 200.447528][ T7569] RIP: 0033:0x7f68af78e929 [ 200.447550][ T7569] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 200.447576][ T7569] RSP: 002b:00007f68b057c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 200.447603][ T7569] RAX: ffffffffffffffda RBX: 00007f68af9b5fa0 RCX: 00007f68af78e929 [ 200.447621][ T7569] RDX: 000000000000b4d3 RSI: 0000000000000000 RDI: 0000000000000005 [ 200.447638][ T7569] RBP: 00007f68b057c090 R08: 0000000000000000 R09: 0000000000000000 [ 200.447654][ T7569] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 200.447671][ T7569] R13: 0000000000000000 R14: 00007f68af9b5fa0 R15: 00007ffe1a28cb88 [ 200.447709][ T7569] [ 201.177385][ T7580] netlink: 28 bytes leftover after parsing attributes in process `syz.3.406'. [ 201.264689][ T7584] FAULT_INJECTION: forcing a failure. [ 201.264689][ T7584] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 201.299693][ T7584] CPU: 0 UID: 0 PID: 7584 Comm: syz.1.407 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 201.299730][ T7584] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 201.299744][ T7584] Call Trace: [ 201.299753][ T7584] [ 201.299763][ T7584] dump_stack_lvl+0x16c/0x1f0 [ 201.299811][ T7584] should_fail_ex+0x512/0x640 [ 201.299856][ T7584] _copy_from_user+0x2e/0xd0 [ 201.299896][ T7584] move_addr_to_kernel+0x65/0x170 [ 201.299932][ T7584] __copy_msghdr+0x386/0x470 [ 201.299973][ T7584] copy_msghdr_from_user+0xc1/0x160 [ 201.300012][ T7584] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 201.300061][ T7584] ? kfree+0x24f/0x4d0 [ 201.300087][ T7584] ? __pfx__kstrtoull+0x10/0x10 [ 201.300124][ T7584] ___sys_sendmsg+0xfe/0x1d0 [ 201.300172][ T7584] ? __pfx____sys_sendmsg+0x10/0x10 [ 201.300250][ T7584] ? __pfx___might_resched+0x10/0x10 [ 201.300286][ T7584] __sys_sendmmsg+0x200/0x420 [ 201.300329][ T7584] ? __pfx___sys_sendmmsg+0x10/0x10 [ 201.300376][ T7584] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 201.300427][ T7584] ? fput+0x70/0xf0 [ 201.300448][ T7584] ? ksys_write+0x1ac/0x250 [ 201.300482][ T7584] ? __pfx_ksys_write+0x10/0x10 [ 201.300523][ T7584] __x64_sys_sendmmsg+0x9c/0x100 [ 201.300560][ T7584] ? lockdep_hardirqs_on+0x7c/0x110 [ 201.300597][ T7584] do_syscall_64+0xcd/0x490 [ 201.300637][ T7584] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 201.300663][ T7584] RIP: 0033:0x7fe43278e929 [ 201.300684][ T7584] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 201.300708][ T7584] RSP: 002b:00007fe4335dc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 201.300735][ T7584] RAX: ffffffffffffffda RBX: 00007fe4329b5fa0 RCX: 00007fe43278e929 [ 201.300753][ T7584] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 201.300770][ T7584] RBP: 00007fe4335dc090 R08: 0000000000000000 R09: 0000000000000000 [ 201.300787][ T7584] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 201.300803][ T7584] R13: 0000000000000000 R14: 00007fe4329b5fa0 R15: 00007fffe8168f48 [ 201.300840][ T7584] [ 201.302247][ T7580] bond0: (slave bond_slave_0): Releasing backup interface [ 203.400382][ T7611] FAULT_INJECTION: forcing a failure. [ 203.400382][ T7611] name fail_futex, interval 1, probability 0, space 0, times 0 [ 203.421342][ T7611] CPU: 0 UID: 0 PID: 7611 Comm: syz.1.414 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 203.421370][ T7611] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 203.421381][ T7611] Call Trace: [ 203.421388][ T7611] [ 203.421396][ T7611] dump_stack_lvl+0x16c/0x1f0 [ 203.421427][ T7611] should_fail_ex+0x512/0x640 [ 203.421451][ T7611] ? key_user_put+0x5f/0x70 [ 203.421474][ T7611] get_futex_key+0x1d0/0x1540 [ 203.421497][ T7611] ? __pfx_get_futex_key+0x10/0x10 [ 203.421530][ T7611] futex_wake+0xea/0x530 [ 203.421560][ T7611] ? __pfx_futex_wake+0x10/0x10 [ 203.421586][ T7611] ? rcu_is_watching+0x12/0xc0 [ 203.421603][ T7611] ? kasan_quarantine_put+0x10a/0x240 [ 203.421628][ T7611] ? lockdep_hardirqs_on+0x7c/0x110 [ 203.421655][ T7611] do_futex+0x1e3/0x350 [ 203.421675][ T7611] ? __pfx_do_futex+0x10/0x10 [ 203.421696][ T7611] ? key_user_put+0x5f/0x70 [ 203.421721][ T7611] __x64_sys_futex+0x1e0/0x4c0 [ 203.421748][ T7611] ? __pfx___x64_sys_futex+0x10/0x10 [ 203.421768][ T7611] ? xfd_validate_state+0x61/0x180 [ 203.421796][ T7611] do_syscall_64+0xcd/0x490 [ 203.421822][ T7611] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 203.421839][ T7611] RIP: 0033:0x7fe43278e929 [ 203.421853][ T7611] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 203.421869][ T7611] RSP: 002b:00007fe4335bb0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 203.421885][ T7611] RAX: ffffffffffffffda RBX: 00007fe4329b6088 RCX: 00007fe43278e929 [ 203.421896][ T7611] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fe4329b608c [ 203.421906][ T7611] RBP: 00007fe4329b6080 R08: 00007fe4335dd000 R09: 0000000000000000 [ 203.421915][ T7611] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fe4329b608c [ 203.421925][ T7611] R13: 0000000000000000 R14: 00007fffe8168e60 R15: 00007fffe8168f48 [ 203.421953][ T7611] [ 206.223334][ T7653] FAULT_INJECTION: forcing a failure. [ 206.223334][ T7653] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 206.266116][ T7653] CPU: 0 UID: 0 PID: 7653 Comm: syz.0.425 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 206.266157][ T7653] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 206.266172][ T7653] Call Trace: [ 206.266180][ T7653] [ 206.266191][ T7653] dump_stack_lvl+0x16c/0x1f0 [ 206.266236][ T7653] should_fail_ex+0x512/0x640 [ 206.266280][ T7653] _copy_from_iter+0x29f/0x16f0 [ 206.266324][ T7653] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 206.266369][ T7653] ? __pfx__copy_from_iter+0x10/0x10 [ 206.266423][ T7653] ? alloc_pages_mpol+0x25a/0x550 [ 206.266454][ T7653] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 206.266492][ T7653] copy_page_from_iter+0xde/0x180 [ 206.266539][ T7653] anon_pipe_write+0xbe7/0x1a70 [ 206.266596][ T7653] ? __pfx_anon_pipe_write+0x10/0x10 [ 206.266640][ T7653] ? apparmor_file_permission+0x251/0x400 [ 206.266673][ T7653] ? bpf_lsm_file_permission+0x9/0x10 [ 206.266702][ T7653] ? security_file_permission+0x71/0x210 [ 206.266740][ T7653] ? rw_verify_area+0xcf/0x680 [ 206.266780][ T7653] vfs_write+0x6c7/0x1150 [ 206.266821][ T7653] ? __pfx_anon_pipe_write+0x10/0x10 [ 206.266868][ T7653] ? __pfx_vfs_write+0x10/0x10 [ 206.266903][ T7653] ? find_held_lock+0x2b/0x80 [ 206.266957][ T7653] ksys_write+0x1f8/0x250 [ 206.266996][ T7653] ? __pfx_ksys_write+0x10/0x10 [ 206.267048][ T7653] do_syscall_64+0xcd/0x490 [ 206.267094][ T7653] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 206.267123][ T7653] RIP: 0033:0x7f68af78e929 [ 206.267145][ T7653] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 206.267170][ T7653] RSP: 002b:00007f68b057c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 206.267197][ T7653] RAX: ffffffffffffffda RBX: 00007f68af9b5fa0 RCX: 00007f68af78e929 [ 206.267214][ T7653] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 206.267231][ T7653] RBP: 00007f68b057c090 R08: 0000000000000000 R09: 0000000000000000 [ 206.267248][ T7653] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 206.267264][ T7653] R13: 0000000000000000 R14: 00007f68af9b5fa0 R15: 00007ffe1a28cb88 [ 206.267302][ T7653] [ 207.255166][ T7668] random: crng reseeded on system resumption [ 207.654956][ T7673] netlink: 8 bytes leftover after parsing attributes in process `syz.1.429'. [ 208.107253][ T7673] UHID_CREATE from different security context by process 421 (syz.1.429), this is not allowed. [ 209.297594][ T7688] netlink: 338 bytes leftover after parsing attributes in process `syz.1.433'. [ 211.606238][ T7718] netlink: 28 bytes leftover after parsing attributes in process `syz.0.440'. [ 211.652521][ T7718] caif0: entered promiscuous mode [ 211.837115][ T7734] netlink: 338 bytes leftover after parsing attributes in process `syz.3.444'. [ 214.520047][ T7770] netlink: 8 bytes leftover after parsing attributes in process `syz.0.452'. [ 214.648719][ T7777] usb usb24: check_ctrlrecip: process 7777 (syz.2.451) requesting ep 01 but needs 81 [ 214.685316][ T7777] usb usb24: usbfs: process 7777 (syz.2.451) did not claim interface 0 before use [ 215.181134][ T7791] netlink: 338 bytes leftover after parsing attributes in process `syz.1.454'. [ 216.519179][ T7804] netlink: 28 bytes leftover after parsing attributes in process `syz.2.458'. [ 216.560755][ T7804] caif0: entered promiscuous mode [ 217.368162][ T7814] FAULT_INJECTION: forcing a failure. [ 217.368162][ T7814] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 217.415079][ T7814] CPU: 1 UID: 0 PID: 7814 Comm: syz.1.462 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 217.415117][ T7814] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 217.415131][ T7814] Call Trace: [ 217.415140][ T7814] [ 217.415150][ T7814] dump_stack_lvl+0x16c/0x1f0 [ 217.415192][ T7814] should_fail_ex+0x512/0x640 [ 217.415234][ T7814] _copy_from_iter+0x29f/0x16f0 [ 217.415275][ T7814] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 217.415317][ T7814] ? __pfx__copy_from_iter+0x10/0x10 [ 217.415366][ T7814] ? alloc_pages_mpol+0x25a/0x550 [ 217.415394][ T7814] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 217.415427][ T7814] copy_page_from_iter+0xde/0x180 [ 217.415473][ T7814] anon_pipe_write+0xbe7/0x1a70 [ 217.415528][ T7814] ? __pfx_anon_pipe_write+0x10/0x10 [ 217.415571][ T7814] ? apparmor_file_permission+0x251/0x400 [ 217.415602][ T7814] ? bpf_lsm_file_permission+0x9/0x10 [ 217.415630][ T7814] ? security_file_permission+0x71/0x210 [ 217.415665][ T7814] ? rw_verify_area+0xcf/0x680 [ 217.415702][ T7814] vfs_write+0x6c7/0x1150 [ 217.415739][ T7814] ? __pfx_anon_pipe_write+0x10/0x10 [ 217.415781][ T7814] ? __pfx_vfs_write+0x10/0x10 [ 217.415813][ T7814] ? find_held_lock+0x2b/0x80 [ 217.415864][ T7814] ksys_write+0x1f8/0x250 [ 217.415898][ T7814] ? __pfx_ksys_write+0x10/0x10 [ 217.415946][ T7814] do_syscall_64+0xcd/0x490 [ 217.415986][ T7814] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 217.416012][ T7814] RIP: 0033:0x7fe43278e929 [ 217.416033][ T7814] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 217.416059][ T7814] RSP: 002b:00007fe4335dc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 217.416084][ T7814] RAX: ffffffffffffffda RBX: 00007fe4329b5fa0 RCX: 00007fe43278e929 [ 217.416101][ T7814] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 217.416117][ T7814] RBP: 00007fe4335dc090 R08: 0000000000000000 R09: 0000000000000000 [ 217.416133][ T7814] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 217.416148][ T7814] R13: 0000000000000000 R14: 00007fe4329b5fa0 R15: 00007fffe8168f48 [ 217.416185][ T7814] [ 217.634016][ C1] vkms_vblank_simulate: vblank timer overrun [ 219.201784][ T7832] netlink: 338 bytes leftover after parsing attributes in process `syz.0.469'. [ 220.348534][ T30] audit: type=1107 audit(4294968739.863:8): pid=7856 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 220.424834][ T30] audit: type=1107 audit(4294968739.863:9): pid=7856 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 220.565815][ T7855] netlink: 338 bytes leftover after parsing attributes in process `syz.0.472'. [ 222.238406][ T5843] Bluetooth: hci0: command 0x0406 tx timeout [ 222.244609][ T5843] Bluetooth: hci3: command 0x0406 tx timeout [ 222.250125][ T5844] Bluetooth: hci1: command 0x0406 tx timeout [ 222.253435][ T5843] Bluetooth: hci2: command 0x0406 tx timeout [ 222.712398][ T7890] netlink: 4 bytes leftover after parsing attributes in process `syz.3.478'. [ 223.380246][ T7901] netlink: 338 bytes leftover after parsing attributes in process `syz.0.480'. [ 224.673718][ T7914] FAULT_INJECTION: forcing a failure. [ 224.673718][ T7914] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 224.709825][ T7914] CPU: 0 UID: 0 PID: 7914 Comm: syz.2.485 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 224.709867][ T7914] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 224.709884][ T7914] Call Trace: [ 224.709892][ T7914] [ 224.709903][ T7914] dump_stack_lvl+0x16c/0x1f0 [ 224.709949][ T7914] should_fail_ex+0x512/0x640 [ 224.709993][ T7914] should_fail_alloc_page+0xe7/0x130 [ 224.710023][ T7914] prepare_alloc_pages+0x3c2/0x610 [ 224.710056][ T7914] ? rcu_is_watching+0x12/0xc0 [ 224.710088][ T7914] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 224.710131][ T7914] ? __lock_acquire+0xb8a/0x1c90 [ 224.710172][ T7914] ? __lock_acquire+0xb8a/0x1c90 [ 224.710225][ T7914] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 224.710272][ T7914] ? __might_fault+0xe3/0x190 [ 224.710309][ T7914] ? __might_fault+0xe3/0x190 [ 224.710346][ T7914] ? __might_fault+0x13b/0x190 [ 224.710399][ T7914] ? _copy_from_iter+0x15d/0x16f0 [ 224.710444][ T7914] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 224.710488][ T7914] ? policy_nodemask+0xea/0x4e0 [ 224.710538][ T7914] alloc_pages_mpol+0x1fb/0x550 [ 224.710569][ T7914] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 224.710611][ T7914] alloc_pages_noprof+0x131/0x390 [ 224.710641][ T7914] anon_pipe_write+0xbc2/0x1a70 [ 224.710704][ T7914] ? __pfx_anon_pipe_write+0x10/0x10 [ 224.710750][ T7914] ? apparmor_file_permission+0x251/0x400 [ 224.710783][ T7914] ? bpf_lsm_file_permission+0x9/0x10 [ 224.710812][ T7914] ? security_file_permission+0x71/0x210 [ 224.710849][ T7914] ? rw_verify_area+0xcf/0x680 [ 224.710887][ T7914] vfs_write+0x6c7/0x1150 [ 224.710926][ T7914] ? __pfx_anon_pipe_write+0x10/0x10 [ 224.710971][ T7914] ? __pfx_vfs_write+0x10/0x10 [ 224.711000][ T7914] ? find_held_lock+0x2b/0x80 [ 224.711051][ T7914] ksys_write+0x1f8/0x250 [ 224.711089][ T7914] ? __pfx_ksys_write+0x10/0x10 [ 224.711140][ T7914] do_syscall_64+0xcd/0x490 [ 224.711185][ T7914] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 224.711212][ T7914] RIP: 0033:0x7fa00ef8e929 [ 224.711242][ T7914] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 224.711266][ T7914] RSP: 002b:00007fa00fd60038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 224.711289][ T7914] RAX: ffffffffffffffda RBX: 00007fa00f1b5fa0 RCX: 00007fa00ef8e929 [ 224.711306][ T7914] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 224.711322][ T7914] RBP: 00007fa00fd60090 R08: 0000000000000000 R09: 0000000000000000 [ 224.711336][ T7914] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 224.711351][ T7914] R13: 0000000000000000 R14: 00007fa00f1b5fa0 R15: 00007ffe19c20f88 [ 224.711388][ T7914] [ 225.095638][ T51] Bluetooth: hci1: unexpected event 0x3d length: 726 > 14 [ 227.069944][ T7953] netlink: 338 bytes leftover after parsing attributes in process `syz.2.491'. [ 228.776583][ T7975] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(6) [ 228.788020][ T7974] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(6) [ 228.844645][ T7974] FAULT_INJECTION: forcing a failure. [ 228.844645][ T7974] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 228.899591][ T7974] CPU: 0 UID: 0 PID: 7974 Comm: syz.2.495 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 228.899631][ T7974] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 228.899647][ T7974] Call Trace: [ 228.899656][ T7974] [ 228.899667][ T7974] dump_stack_lvl+0x16c/0x1f0 [ 228.899715][ T7974] should_fail_ex+0x512/0x640 [ 228.899761][ T7974] should_fail_alloc_page+0xe7/0x130 [ 228.899792][ T7974] prepare_alloc_pages+0x3c2/0x610 [ 228.899826][ T7974] ? rcu_is_watching+0x12/0xc0 [ 228.899860][ T7974] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 228.899905][ T7974] ? kasan_save_stack+0x42/0x60 [ 228.899949][ T7974] ? __lock_acquire+0x622/0x1c90 [ 228.899989][ T7974] ? __vmf_anon_prepare+0x11c/0x240 [ 228.900025][ T7974] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 228.900067][ T7974] ? __lock_acquire+0x622/0x1c90 [ 228.900121][ T7974] ? __lock_acquire+0x622/0x1c90 [ 228.900160][ T7974] ? __lock_acquire+0x622/0x1c90 [ 228.900194][ T7974] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 228.900258][ T7974] ? policy_nodemask+0xea/0x4e0 [ 228.900308][ T7974] alloc_pages_mpol+0x1fb/0x550 [ 228.900337][ T7974] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 228.900379][ T7974] folio_alloc_mpol_noprof+0x36/0x2f0 [ 228.900415][ T7974] vma_alloc_folio_noprof+0xed/0x1e0 [ 228.900444][ T7974] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 228.900474][ T7974] ? find_held_lock+0x2b/0x80 [ 228.900503][ T7974] ? __handle_mm_fault+0x1092/0x5490 [ 228.900547][ T7974] __handle_mm_fault+0x2f21/0x5490 [ 228.900604][ T7974] ? __pfx___handle_mm_fault+0x10/0x10 [ 228.900642][ T7974] ? __pte_offset_map_lock+0x174/0x310 [ 228.900682][ T7974] ? find_held_lock+0x2b/0x80 [ 228.900708][ T7974] ? find_held_lock+0x2b/0x80 [ 228.900749][ T7974] ? follow_page_pte+0x3af/0x14c0 [ 228.900793][ T7974] handle_mm_fault+0x589/0xd10 [ 228.900850][ T7974] __get_user_pages+0x589/0x3b80 [ 228.900913][ T7974] ? __pfx_mt_find+0x10/0x10 [ 228.900955][ T7974] ? __pfx___get_user_pages+0x10/0x10 [ 228.901005][ T7974] populate_vma_page_range+0x278/0x3a0 [ 228.901042][ T7974] ? __pfx_populate_vma_page_range+0x10/0x10 [ 228.901075][ T7974] ? __pfx_find_vma_intersection+0x10/0x10 [ 228.901109][ T7974] ? do_mmap+0x69c/0x1210 [ 228.901145][ T7974] __mm_populate+0x1d8/0x380 [ 228.901182][ T7974] ? __pfx___mm_populate+0x10/0x10 [ 228.901226][ T7974] ? up_write+0x1b2/0x520 [ 228.901272][ T7974] vm_mmap_pgoff+0x362/0x450 [ 228.901308][ T7974] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 228.901349][ T7974] ? __x64_sys_futex+0x1e0/0x4c0 [ 228.901380][ T7974] ? __x64_sys_futex+0x1e9/0x4c0 [ 228.901421][ T7974] ksys_mmap_pgoff+0x7d/0x5c0 [ 228.901450][ T7974] ? xfd_validate_state+0x61/0x180 [ 228.901494][ T7974] __x64_sys_mmap+0x125/0x190 [ 228.901539][ T7974] do_syscall_64+0xcd/0x490 [ 228.901586][ T7974] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 228.901614][ T7974] RIP: 0033:0x7fa00ef8e929 [ 228.901638][ T7974] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 228.901665][ T7974] RSP: 002b:00007fa00fd3f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 228.901692][ T7974] RAX: ffffffffffffffda RBX: 00007fa00f1b6080 RCX: 00007fa00ef8e929 [ 228.901711][ T7974] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 228.901727][ T7974] RBP: 00007fa00f010b39 R08: 0000000000000002 R09: 0000000000008000 [ 228.901743][ T7974] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 228.901758][ T7974] R13: 0000000000000000 R14: 00007fa00f1b6080 R15: 00007ffe19c20f88 [ 228.901792][ T7974] [ 230.012662][ T51] Bluetooth: hci1: unexpected subevent 0x01 length: 4 < 18 [ 230.119211][ T30] audit: type=1800 audit(4294968757.644:10): pid=7979 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.497" name="dbroot" dev="configfs" ino=17860 res=0 errno=0 [ 231.453336][ T7989] netlink: 19 bytes leftover after parsing attributes in process `syz.2.499'. [ 231.465913][ T30] audit: type=1107 audit(4294968758.994:11): pid=7988 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 231.501822][ T30] audit: type=1107 audit(4294968759.014:12): pid=7988 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 231.763796][ T7990] FAULT_INJECTION: forcing a failure. [ 231.763796][ T7990] name fail_futex, interval 1, probability 0, space 0, times 0 [ 231.781574][ T7990] CPU: 1 UID: 0 PID: 7990 Comm: syz.1.500 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 231.781616][ T7990] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 231.781633][ T7990] Call Trace: [ 231.781642][ T7990] [ 231.781653][ T7990] dump_stack_lvl+0x16c/0x1f0 [ 231.781700][ T7990] should_fail_ex+0x512/0x640 [ 231.781747][ T7990] get_futex_key+0x1d0/0x1540 [ 231.781784][ T7990] ? find_held_lock+0x2b/0x80 [ 231.781812][ T7990] ? __pfx_get_futex_key+0x10/0x10 [ 231.781846][ T7990] ? __mutex_trylock_common+0xe9/0x250 [ 231.781893][ T7990] futex_wake+0xea/0x530 [ 231.781937][ T7990] ? __pfx_futex_wake+0x10/0x10 [ 231.781973][ T7990] ? __lock_acquire+0xb8a/0x1c90 [ 231.782042][ T7990] do_futex+0x1e3/0x350 [ 231.782079][ T7990] ? __pfx_do_futex+0x10/0x10 [ 231.782109][ T7990] ? __might_fault+0xe3/0x190 [ 231.782162][ T7990] mm_release+0x24e/0x300 [ 231.782195][ T7990] do_exit+0x68b/0x2bd0 [ 231.782239][ T7990] ? __pfx_do_exit+0x10/0x10 [ 231.782274][ T7990] ? do_raw_spin_lock+0x12c/0x2b0 [ 231.782315][ T7990] ? find_held_lock+0x2b/0x80 [ 231.782349][ T7990] do_group_exit+0xd3/0x2a0 [ 231.782390][ T7990] get_signal+0x2673/0x26d0 [ 231.782436][ T7990] ? __pfx_get_signal+0x10/0x10 [ 231.782466][ T7990] ? do_futex+0x122/0x350 [ 231.782501][ T7990] ? __pfx_do_futex+0x10/0x10 [ 231.782539][ T7990] arch_do_signal_or_restart+0x8f/0x790 [ 231.782573][ T7990] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 231.782616][ T7990] ? xfd_validate_state+0x61/0x180 [ 231.782651][ T7990] ? __pfx___do_sys_close_range+0x10/0x10 [ 231.782701][ T7990] exit_to_user_mode_loop+0x84/0x110 [ 231.782746][ T7990] do_syscall_64+0x3f6/0x490 [ 231.782792][ T7990] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 231.782821][ T7990] RIP: 0033:0x7fe43278e929 [ 231.782845][ T7990] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 231.782872][ T7990] RSP: 002b:00007fe4335dc0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 231.782900][ T7990] RAX: fffffffffffffe00 RBX: 00007fe4329b5fa8 RCX: 00007fe43278e929 [ 231.782918][ T7990] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fe4329b5fa8 [ 231.782935][ T7990] RBP: 00007fe4329b5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 231.782952][ T7990] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fe4329b5fac [ 231.782969][ T7990] R13: 0000000000000000 R14: 00007fffe8168e60 R15: 00007fffe8168f48 [ 231.783021][ T7990] [ 232.034038][ C1] vkms_vblank_simulate: vblank timer overrun [ 232.439491][ T8004] netlink: 330 bytes leftover after parsing attributes in process `syz.2.503'. [ 234.406820][ T51] Bluetooth: hci3: unexpected subevent 0x01 length: 4 < 18 [ 234.489284][ T8042] openvswitch: netlink: Tunnel attr 242 out of range max 16 [ 234.774259][ T30] audit: type=1800 audit(4294968770.299:13): pid=8036 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.507" name="dbroot" dev="configfs" ino=18679 res=0 errno=0 [ 235.608723][ T8026] netlink: 8 bytes leftover after parsing attributes in process `syz.1.506'. [ 236.482720][ T8061] netlink: 19 bytes leftover after parsing attributes in process `syz.3.512'. [ 239.732330][ T8104] openvswitch: netlink: Tunnel attr 242 out of range max 16 [ 241.351076][ T8108] FAULT_INJECTION: forcing a failure. [ 241.351076][ T8108] name failslab, interval 1, probability 0, space 0, times 0 [ 241.415293][ T8108] CPU: 1 UID: 0 PID: 8108 Comm: syz.1.521 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 241.415339][ T8108] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 241.415354][ T8108] Call Trace: [ 241.415364][ T8108] [ 241.415376][ T8108] dump_stack_lvl+0x16c/0x1f0 [ 241.415423][ T8108] should_fail_ex+0x512/0x640 [ 241.415464][ T8108] ? __kmalloc_noprof+0xbf/0x510 [ 241.415508][ T8108] ? lsm_blob_alloc+0x68/0x90 [ 241.415549][ T8108] should_failslab+0xc2/0x120 [ 241.415579][ T8108] __kmalloc_noprof+0xd2/0x510 [ 241.415632][ T8108] lsm_blob_alloc+0x68/0x90 [ 241.415677][ T8108] security_prepare_creds+0x30/0x270 [ 241.415722][ T8108] prepare_creds+0x56f/0x7d0 [ 241.415768][ T8108] lookup_user_key+0x399/0x1300 [ 241.415805][ T8108] ? __pfx_futex_wait+0x10/0x10 [ 241.415847][ T8108] ? __pfx_lookup_user_key+0x10/0x10 [ 241.415893][ T8108] ? __pfx_lookup_user_key_possessed+0x10/0x10 [ 241.415934][ T8108] ? do_futex+0x122/0x350 [ 241.415978][ T8108] keyctl_chown_key+0x1c9/0xfb0 [ 241.416010][ T8108] ? __x64_sys_futex+0x1e0/0x4c0 [ 241.416044][ T8108] ? __x64_sys_futex+0x1e9/0x4c0 [ 241.416083][ T8108] ? __pfx_keyctl_chown_key+0x10/0x10 [ 241.416114][ T8108] ? xfd_validate_state+0x61/0x180 [ 241.416159][ T8108] __do_sys_keyctl+0x283/0x590 [ 241.416193][ T8108] do_syscall_64+0xcd/0x490 [ 241.416253][ T8108] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 241.416282][ T8108] RIP: 0033:0x7fe43278e929 [ 241.416305][ T8108] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 241.416334][ T8108] RSP: 002b:00007fe4335dc038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 241.416361][ T8108] RAX: ffffffffffffffda RBX: 00007fe4329b5fa0 RCX: 00007fe43278e929 [ 241.416380][ T8108] RDX: 0000000000000000 RSI: fffff7ffffffffff RDI: 0000000000000004 [ 241.416398][ T8108] RBP: 00007fe432810b39 R08: 0000000000000008 R09: 0000000000000000 [ 241.416415][ T8108] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000 [ 241.416430][ T8108] R13: 0000000000000000 R14: 00007fe4329b5fa0 R15: 00007fffe8168f48 [ 241.416467][ T8108] [ 244.805783][ T8169] FAULT_INJECTION: forcing a failure. [ 244.805783][ T8169] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 244.861771][ T8169] CPU: 0 UID: 0 PID: 8169 Comm: syz.0.538 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 244.861814][ T8169] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 244.861831][ T8169] Call Trace: [ 244.861841][ T8169] [ 244.861851][ T8169] dump_stack_lvl+0x16c/0x1f0 [ 244.861897][ T8169] should_fail_ex+0x512/0x640 [ 244.861943][ T8169] _copy_from_iter+0x29f/0x16f0 [ 244.861988][ T8169] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 244.862035][ T8169] ? __pfx__copy_from_iter+0x10/0x10 [ 244.862079][ T8169] ? alloc_pages_mpol+0x25a/0x550 [ 244.862116][ T8169] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 244.862151][ T8169] copy_page_from_iter+0xde/0x180 [ 244.862200][ T8169] anon_pipe_write+0xbe7/0x1a70 [ 244.862256][ T8169] ? __pfx_anon_pipe_write+0x10/0x10 [ 244.862300][ T8169] ? apparmor_file_permission+0x251/0x400 [ 244.862332][ T8169] ? bpf_lsm_file_permission+0x9/0x10 [ 244.862361][ T8169] ? security_file_permission+0x71/0x210 [ 244.862398][ T8169] ? rw_verify_area+0xcf/0x680 [ 244.862435][ T8169] vfs_write+0x6c7/0x1150 [ 244.862473][ T8169] ? __pfx_anon_pipe_write+0x10/0x10 [ 244.862518][ T8169] ? __pfx_vfs_write+0x10/0x10 [ 244.862552][ T8169] ? find_held_lock+0x2b/0x80 [ 244.862602][ T8169] ksys_write+0x1f8/0x250 [ 244.862639][ T8169] ? __pfx_ksys_write+0x10/0x10 [ 244.862675][ T8169] ? 0xffffffffff600000 [ 244.862707][ T8169] do_syscall_64+0xcd/0x490 [ 244.862750][ T8169] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 244.862777][ T8169] RIP: 0033:0x7f68af78e929 [ 244.862798][ T8169] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 244.862824][ T8169] RSP: 002b:00007f68b057c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 244.862850][ T8169] RAX: ffffffffffffffda RBX: 00007f68af9b5fa0 RCX: 00007f68af78e929 [ 244.862867][ T8169] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 244.862882][ T8169] RBP: 00007f68b057c090 R08: 0000000000000000 R09: 0000000000000000 [ 244.862897][ T8169] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 244.862913][ T8169] R13: 0000000000000000 R14: 00007f68af9b5fa0 R15: 00007ffe1a28cb88 [ 244.862948][ T8169] [ 247.353256][ T8185] FAULT_INJECTION: forcing a failure. [ 247.353256][ T8185] name failslab, interval 1, probability 0, space 0, times 0 [ 247.487768][ T8185] CPU: 1 UID: 0 PID: 8185 Comm: syz.1.548 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 247.487813][ T8185] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 247.487831][ T8185] Call Trace: [ 247.487840][ T8185] [ 247.487851][ T8185] dump_stack_lvl+0x16c/0x1f0 [ 247.487903][ T8185] should_fail_ex+0x512/0x640 [ 247.487945][ T8185] ? __kmalloc_noprof+0xbf/0x510 [ 247.487993][ T8185] ? lsm_blob_alloc+0x68/0x90 [ 247.488035][ T8185] should_failslab+0xc2/0x120 [ 247.488065][ T8185] __kmalloc_noprof+0xd2/0x510 [ 247.488130][ T8185] lsm_blob_alloc+0x68/0x90 [ 247.488175][ T8185] security_prepare_creds+0x30/0x270 [ 247.488221][ T8185] prepare_creds+0x56f/0x7d0 [ 247.488269][ T8185] lookup_user_key+0x399/0x1300 [ 247.488309][ T8185] ? __pfx_futex_wait+0x10/0x10 [ 247.488347][ T8185] ? __pfx_lookup_user_key+0x10/0x10 [ 247.488393][ T8185] ? __pfx_lookup_user_key_possessed+0x10/0x10 [ 247.488432][ T8185] ? do_futex+0x122/0x350 [ 247.488479][ T8185] keyctl_chown_key+0x1c9/0xfb0 [ 247.488510][ T8185] ? __x64_sys_futex+0x1e0/0x4c0 [ 247.488544][ T8185] ? __x64_sys_futex+0x1e9/0x4c0 [ 247.488584][ T8185] ? __pfx_keyctl_chown_key+0x10/0x10 [ 247.488615][ T8185] ? xfd_validate_state+0x61/0x180 [ 247.488662][ T8185] __do_sys_keyctl+0x283/0x590 [ 247.488697][ T8185] do_syscall_64+0xcd/0x490 [ 247.488746][ T8185] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 247.488778][ T8185] RIP: 0033:0x7fe43278e929 [ 247.488803][ T8185] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 247.488832][ T8185] RSP: 002b:00007fe4335dc038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 247.488860][ T8185] RAX: ffffffffffffffda RBX: 00007fe4329b5fa0 RCX: 00007fe43278e929 [ 247.488879][ T8185] RDX: 0000000000000000 RSI: fffff7ffffffffff RDI: 0000000000000004 [ 247.488897][ T8185] RBP: 00007fe432810b39 R08: 0000000000000008 R09: 0000000000000000 [ 247.488915][ T8185] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000 [ 247.488932][ T8185] R13: 0000000000000000 R14: 00007fe4329b5fa0 R15: 00007fffe8168f48 [ 247.488970][ T8185] [ 247.704929][ T8186] netlink: 338 bytes leftover after parsing attributes in process `syz.0.541'. [ 248.092790][ T8203] FAULT_INJECTION: forcing a failure. [ 248.092790][ T8203] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 248.121467][ T8203] CPU: 1 UID: 0 PID: 8203 Comm: syz.2.551 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 248.121513][ T8203] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 248.121531][ T8203] Call Trace: [ 248.121540][ T8203] [ 248.121552][ T8203] dump_stack_lvl+0x16c/0x1f0 [ 248.121602][ T8203] should_fail_ex+0x512/0x640 [ 248.121651][ T8203] strncpy_from_user+0x3b/0x2e0 [ 248.121696][ T8203] getname_flags.part.0+0x8f/0x550 [ 248.121736][ T8203] getname_flags+0x93/0xf0 [ 248.121776][ T8203] do_sys_openat2+0xb8/0x1d0 [ 248.121810][ T8203] ? __pfx_do_sys_openat2+0x10/0x10 [ 248.121844][ T8203] ? key_user_put+0x5f/0x70 [ 248.121896][ T8203] __x64_sys_openat+0x174/0x210 [ 248.121940][ T8203] ? __pfx___x64_sys_openat+0x10/0x10 [ 248.121989][ T8203] do_syscall_64+0xcd/0x490 [ 248.122039][ T8203] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 248.122071][ T8203] RIP: 0033:0x7fa00ef8e929 [ 248.122095][ T8203] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 248.122124][ T8203] RSP: 002b:00007fa00fd60038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 248.122152][ T8203] RAX: ffffffffffffffda RBX: 00007fa00f1b5fa0 RCX: 00007fa00ef8e929 [ 248.122171][ T8203] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 248.122186][ T8203] RBP: 00007fa00f010b39 R08: 0000000000000000 R09: 0000000000000000 [ 248.122203][ T8203] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 248.122220][ T8203] R13: 0000000000000000 R14: 00007fa00f1b5fa0 R15: 00007ffe19c20f88 [ 248.122259][ T8203] [ 250.180655][ T8231] FAULT_INJECTION: forcing a failure. [ 250.180655][ T8231] name failslab, interval 1, probability 0, space 0, times 0 [ 250.200330][ T8231] CPU: 0 UID: 0 PID: 8231 Comm: syz.3.549 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 250.200370][ T8231] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 250.200386][ T8231] Call Trace: [ 250.200396][ T8231] [ 250.200406][ T8231] dump_stack_lvl+0x16c/0x1f0 [ 250.200452][ T8231] should_fail_ex+0x512/0x640 [ 250.200491][ T8231] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 250.200535][ T8231] should_failslab+0xc2/0x120 [ 250.200562][ T8231] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 250.200602][ T8231] ? d_instantiate+0x77/0x90 [ 250.200643][ T8231] ? alloc_empty_file+0x55/0x1e0 [ 250.200676][ T8231] alloc_empty_file+0x55/0x1e0 [ 250.200706][ T8231] alloc_file_pseudo+0x13a/0x230 [ 250.200736][ T8231] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 250.200765][ T8231] ? alloc_fd+0x471/0x7d0 [ 250.200805][ T8231] sock_alloc_file+0x50/0x210 [ 250.200833][ T8231] __sys_socket+0x1c0/0x260 [ 250.200861][ T8231] ? fput+0x70/0xf0 [ 250.200885][ T8231] ? __pfx___sys_socket+0x10/0x10 [ 250.200916][ T8231] ? xfd_validate_state+0x61/0x180 [ 250.200958][ T8231] ? __pfx_ksys_write+0x10/0x10 [ 250.201003][ T8231] __x64_sys_socket+0x72/0xb0 [ 250.201025][ T8231] ? lockdep_hardirqs_on+0x7c/0x110 [ 250.201050][ T8231] do_syscall_64+0xcd/0x490 [ 250.201076][ T8231] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 250.201094][ T8231] RIP: 0033:0x7fbe5498e929 [ 250.201108][ T8231] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 250.201125][ T8231] RSP: 002b:00007fbe55892038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 250.201142][ T8231] RAX: ffffffffffffffda RBX: 00007fbe54bb5fa0 RCX: 00007fbe5498e929 [ 250.201152][ T8231] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000002 [ 250.201162][ T8231] RBP: 00007fbe54a10b39 R08: 0000000000000000 R09: 0000000000000000 [ 250.201172][ T8231] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 250.201181][ T8231] R13: 0000000000000000 R14: 00007fbe54bb5fa0 R15: 00007fff53f1e2b8 [ 250.201202][ T8231] [ 250.800945][ T8239] netlink: 338 bytes leftover after parsing attributes in process `syz.0.546'. [ 251.570975][ T8252] FAULT_INJECTION: forcing a failure. [ 251.570975][ T8252] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 251.591935][ T8252] CPU: 0 UID: 0 PID: 8252 Comm: syz.0.552 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 251.591977][ T8252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 251.591993][ T8252] Call Trace: [ 251.592002][ T8252] [ 251.592013][ T8252] dump_stack_lvl+0x16c/0x1f0 [ 251.592058][ T8252] should_fail_ex+0x512/0x640 [ 251.592113][ T8252] should_fail_alloc_page+0xe7/0x130 [ 251.592144][ T8252] prepare_alloc_pages+0x3c2/0x610 [ 251.592177][ T8252] ? rcu_is_watching+0x12/0xc0 [ 251.592212][ T8252] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 251.592256][ T8252] ? __lock_acquire+0xb8a/0x1c90 [ 251.592299][ T8252] ? __lock_acquire+0xb8a/0x1c90 [ 251.592345][ T8252] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 251.592392][ T8252] ? __might_fault+0xe3/0x190 [ 251.592430][ T8252] ? __might_fault+0xe3/0x190 [ 251.592465][ T8252] ? __might_fault+0x13b/0x190 [ 251.592519][ T8252] ? _copy_from_iter+0x15d/0x16f0 [ 251.592564][ T8252] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 251.592609][ T8252] ? policy_nodemask+0xea/0x4e0 [ 251.592656][ T8252] alloc_pages_mpol+0x1fb/0x550 [ 251.592685][ T8252] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 251.592727][ T8252] alloc_pages_noprof+0x131/0x390 [ 251.592757][ T8252] anon_pipe_write+0xbc2/0x1a70 [ 251.592836][ T8252] ? __pfx_anon_pipe_write+0x10/0x10 [ 251.592883][ T8252] ? apparmor_file_permission+0x251/0x400 [ 251.592917][ T8252] ? bpf_lsm_file_permission+0x9/0x10 [ 251.592946][ T8252] ? security_file_permission+0x71/0x210 [ 251.592984][ T8252] ? rw_verify_area+0xcf/0x680 [ 251.593025][ T8252] vfs_write+0x6c7/0x1150 [ 251.593065][ T8252] ? __pfx_anon_pipe_write+0x10/0x10 [ 251.593120][ T8252] ? __pfx_vfs_write+0x10/0x10 [ 251.593155][ T8252] ? find_held_lock+0x2b/0x80 [ 251.593216][ T8252] ksys_write+0x1f8/0x250 [ 251.593253][ T8252] ? __pfx_ksys_write+0x10/0x10 [ 251.593302][ T8252] do_syscall_64+0xcd/0x490 [ 251.593345][ T8252] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 251.593372][ T8252] RIP: 0033:0x7f68af78e929 [ 251.593393][ T8252] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 251.593419][ T8252] RSP: 002b:00007f68b057c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 251.593444][ T8252] RAX: ffffffffffffffda RBX: 00007f68af9b5fa0 RCX: 00007f68af78e929 [ 251.593463][ T8252] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 251.593479][ T8252] RBP: 00007f68b057c090 R08: 0000000000000000 R09: 0000000000000000 [ 251.593496][ T8252] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 251.593512][ T8252] R13: 0000000000000000 R14: 00007f68af9b5fa0 R15: 00007ffe1a28cb88 [ 251.593551][ T8252] [ 252.844284][ T8265] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input12 [ 254.190929][ T8266] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input13 [ 255.279614][ T8291] netlink: 338 bytes leftover after parsing attributes in process `syz.0.561'. [ 261.123998][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 261.132368][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 261.766852][ T8369] FAULT_INJECTION: forcing a failure. [ 261.766852][ T8369] name failslab, interval 1, probability 0, space 0, times 0 [ 261.787048][ T8369] CPU: 0 UID: 0 PID: 8369 Comm: syz.0.580 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 261.787093][ T8369] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 261.787111][ T8369] Call Trace: [ 261.787122][ T8369] [ 261.787134][ T8369] dump_stack_lvl+0x16c/0x1f0 [ 261.787185][ T8369] should_fail_ex+0x512/0x640 [ 261.787227][ T8369] ? __kmalloc_noprof+0xbf/0x510 [ 261.787271][ T8369] ? lsm_blob_alloc+0x68/0x90 [ 261.787309][ T8369] should_failslab+0xc2/0x120 [ 261.787338][ T8369] __kmalloc_noprof+0xd2/0x510 [ 261.787389][ T8369] lsm_blob_alloc+0x68/0x90 [ 261.787435][ T8369] security_prepare_creds+0x30/0x270 [ 261.787479][ T8369] prepare_creds+0x56f/0x7d0 [ 261.787525][ T8369] lookup_user_key+0x399/0x1300 [ 261.787562][ T8369] ? __pfx_futex_wait+0x10/0x10 [ 261.787606][ T8369] ? __pfx_lookup_user_key+0x10/0x10 [ 261.787651][ T8369] ? __pfx_lookup_user_key_possessed+0x10/0x10 [ 261.787692][ T8369] ? do_futex+0x122/0x350 [ 261.787738][ T8369] keyctl_chown_key+0x1c9/0xfb0 [ 261.787783][ T8369] ? __x64_sys_futex+0x1e0/0x4c0 [ 261.787818][ T8369] ? __x64_sys_futex+0x1e9/0x4c0 [ 261.787859][ T8369] ? __pfx_keyctl_chown_key+0x10/0x10 [ 261.787892][ T8369] ? xfd_validate_state+0x61/0x180 [ 261.787941][ T8369] __do_sys_keyctl+0x283/0x590 [ 261.787977][ T8369] do_syscall_64+0xcd/0x490 [ 261.788024][ T8369] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 261.788055][ T8369] RIP: 0033:0x7f68af78e929 [ 261.788080][ T8369] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 261.788110][ T8369] RSP: 002b:00007f68b057c038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 261.788140][ T8369] RAX: ffffffffffffffda RBX: 00007f68af9b5fa0 RCX: 00007f68af78e929 [ 261.788160][ T8369] RDX: 0000000000000000 RSI: fffff7ffffffffff RDI: 0000000000000004 [ 261.788177][ T8369] RBP: 00007f68af810b39 R08: 0000000000000008 R09: 0000000000000000 [ 261.788194][ T8369] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000 [ 261.788212][ T8369] R13: 0000000000000000 R14: 00007f68af9b5fa0 R15: 00007ffe1a28cb88 [ 261.788250][ T8369] [ 263.480181][ T8382] netlink: 338 bytes leftover after parsing attributes in process `syz.1.584'. [ 263.569604][ T8386] could not allocate digest TFM handle binfmt_misc [ 264.552092][ T8386] netlink: 'syz.2.586': attribute type 1 has an invalid length. [ 265.777259][ T8413] netlink: 338 bytes leftover after parsing attributes in process `syz.0.590'. [ 266.723320][ T8445] netlink: 338 bytes leftover after parsing attributes in process `syz.3.595'. [ 266.787616][ T8421] netlink: 338 bytes leftover after parsing attributes in process `syz.2.589'. [ 266.981779][ T8446] FAULT_INJECTION: forcing a failure. [ 266.981779][ T8446] name failslab, interval 1, probability 0, space 0, times 0 [ 267.026621][ T8446] CPU: 1 UID: 0 PID: 8446 Comm: syz.1.594 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 267.026665][ T8446] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 267.026682][ T8446] Call Trace: [ 267.026692][ T8446] [ 267.026704][ T8446] dump_stack_lvl+0x16c/0x1f0 [ 267.026753][ T8446] should_fail_ex+0x512/0x640 [ 267.026801][ T8446] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 267.026844][ T8446] should_failslab+0xc2/0x120 [ 267.026872][ T8446] __kmalloc_cache_noprof+0x6a/0x3e0 [ 267.026912][ T8446] ? alloc_info_private+0xc4/0x1b0 [ 267.026948][ T8446] alloc_info_private+0xc4/0x1b0 [ 267.026978][ T8446] snd_info_text_entry_open+0xae/0x2a0 [ 267.027009][ T8446] ? __pfx_snd_info_text_entry_open+0x10/0x10 [ 267.027038][ T8446] ? trace_kmem_cache_alloc+0x28/0xc0 [ 267.027068][ T8446] ? __pfx_apparmor_file_open+0x10/0x10 [ 267.027105][ T8446] ? proc_reg_open+0x21d/0x610 [ 267.027146][ T8446] ? __pfx_snd_info_text_entry_open+0x10/0x10 [ 267.027178][ T8446] proc_reg_open+0x286/0x610 [ 267.027224][ T8446] do_dentry_open+0x744/0x1c10 [ 267.027268][ T8446] ? __pfx_proc_reg_open+0x10/0x10 [ 267.027316][ T8446] vfs_open+0x82/0x3f0 [ 267.027354][ T8446] path_openat+0x1de4/0x2cb0 [ 267.027409][ T8446] ? __pfx_path_openat+0x10/0x10 [ 267.027451][ T8446] ? __lock_acquire+0xb8a/0x1c90 [ 267.027495][ T8446] do_filp_open+0x20b/0x470 [ 267.027534][ T8446] ? __pfx_do_filp_open+0x10/0x10 [ 267.027609][ T8446] ? alloc_fd+0x471/0x7d0 [ 267.027659][ T8446] do_sys_openat2+0x11b/0x1d0 [ 267.027690][ T8446] ? __pfx_do_sys_openat2+0x10/0x10 [ 267.027739][ T8446] __x64_sys_openat+0x174/0x210 [ 267.027781][ T8446] ? __pfx___x64_sys_openat+0x10/0x10 [ 267.027834][ T8446] do_syscall_64+0xcd/0x490 [ 267.027881][ T8446] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 267.027911][ T8446] RIP: 0033:0x7fe43278e929 [ 267.027935][ T8446] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 267.027964][ T8446] RSP: 002b:00007fe43359a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 267.027994][ T8446] RAX: ffffffffffffffda RBX: 00007fe4329b6160 RCX: 00007fe43278e929 [ 267.028012][ T8446] RDX: 0000000000109500 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 267.028030][ T8446] RBP: 00007fe432810b39 R08: 0000000000000000 R09: 0000000000000000 [ 267.028046][ T8446] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 267.028062][ T8446] R13: 0000000000000000 R14: 00007fe4329b6160 R15: 00007fffe8168f48 [ 267.028100][ T8446] [ 267.071986][ T8454] FAULT_INJECTION: forcing a failure. [ 267.071986][ T8454] name fail_futex, interval 1, probability 0, space 0, times 0 [ 267.464613][ T8454] CPU: 1 UID: 0 PID: 8454 Comm: syz.0.596 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 267.464657][ T8454] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 267.464674][ T8454] Call Trace: [ 267.464683][ T8454] [ 267.464690][ T8454] dump_stack_lvl+0x16c/0x1f0 [ 267.464721][ T8454] should_fail_ex+0x512/0x640 [ 267.464748][ T8454] get_futex_key+0x1d0/0x1540 [ 267.464772][ T8454] ? __pfx_get_futex_key+0x10/0x10 [ 267.464805][ T8454] futex_wake+0xea/0x530 [ 267.464826][ T8454] ? futex_wait+0x120/0x380 [ 267.464849][ T8454] ? __pfx_futex_wait+0x10/0x10 [ 267.464872][ T8454] ? __pfx_futex_wake+0x10/0x10 [ 267.464899][ T8454] ? __lock_acquire+0x622/0x1c90 [ 267.464926][ T8454] do_futex+0x1e3/0x350 [ 267.464946][ T8454] ? __pfx_do_futex+0x10/0x10 [ 267.464967][ T8454] ? find_held_lock+0x2b/0x80 [ 267.464986][ T8454] __x64_sys_futex+0x1e0/0x4c0 [ 267.465007][ T8454] ? __fget_files+0x20e/0x3c0 [ 267.465030][ T8454] ? __pfx___x64_sys_futex+0x10/0x10 [ 267.465055][ T8454] ? fdget+0x187/0x210 [ 267.465080][ T8454] do_syscall_64+0xcd/0x490 [ 267.465107][ T8454] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 267.465124][ T8454] RIP: 0033:0x7f68af78e929 [ 267.465138][ T8454] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 267.465154][ T8454] RSP: 002b:00007f68b053a0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 267.465171][ T8454] RAX: ffffffffffffffda RBX: 00007f68af9b6168 RCX: 00007f68af78e929 [ 267.465182][ T8454] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f68af9b616c [ 267.465192][ T8454] RBP: 00007f68af9b6160 R08: 00007f68b057d000 R09: 0000000000000000 [ 267.465202][ T8454] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007f68af9b616c [ 267.465212][ T8454] R13: 0000000000000000 R14: 00007ffe1a28caa0 R15: 00007ffe1a28cb88 [ 267.465233][ T8454] [ 271.169200][ T8508] netlink: 338 bytes leftover after parsing attributes in process `syz.0.608'. [ 275.086775][ T8556] netlink: 338 bytes leftover after parsing attributes in process `syz.2.619'. [ 275.912338][ T8563] FAULT_INJECTION: forcing a failure. [ 275.912338][ T8563] name failslab, interval 1, probability 0, space 0, times 0 [ 275.968426][ T8563] CPU: 1 UID: 0 PID: 8563 Comm: syz.3.621 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 275.968472][ T8563] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 275.968490][ T8563] Call Trace: [ 275.968500][ T8563] [ 275.968511][ T8563] dump_stack_lvl+0x16c/0x1f0 [ 275.968559][ T8563] should_fail_ex+0x512/0x640 [ 275.968599][ T8563] ? __kmalloc_noprof+0xbf/0x510 [ 275.968644][ T8563] ? tracepoint_add_func+0x2a6/0xea0 [ 275.968686][ T8563] should_failslab+0xc2/0x120 [ 275.968714][ T8563] __kmalloc_noprof+0xd2/0x510 [ 275.968765][ T8563] ? __pfx_blk_add_trace_rq_insert+0x10/0x10 [ 275.968803][ T8563] tracepoint_add_func+0x2a6/0xea0 [ 275.968843][ T8563] ? __pfx_blk_add_trace_rq_insert+0x10/0x10 [ 275.968890][ T8563] ? __pfx_blk_add_trace_rq_insert+0x10/0x10 [ 275.968926][ T8563] tracepoint_probe_register+0xbf/0x100 [ 275.968981][ T8563] ? __pfx_tracepoint_probe_register+0x10/0x10 [ 275.969026][ T8563] ? __pfx_blk_add_trace_rq_insert+0x10/0x10 [ 275.969063][ T8563] ? relay_open+0x62e/0xad0 [ 275.969107][ T8563] blk_register_tracepoints+0x1b/0x380 [ 275.969150][ T8563] do_blk_trace_setup+0x933/0xb50 [ 275.969187][ T8563] blk_trace_setup+0xed/0x1b0 [ 275.969220][ T8563] ? __pfx_blk_trace_setup+0x10/0x10 [ 275.969252][ T8563] ? __pfx_snprintf+0x10/0x10 [ 275.969316][ T8563] blk_trace_ioctl+0x146/0x280 [ 275.969351][ T8563] ? __pfx_blk_trace_ioctl+0x10/0x10 [ 275.969392][ T8563] ? find_held_lock+0x2b/0x80 [ 275.969419][ T8563] ? hook_file_ioctl_common+0x145/0x410 [ 275.969455][ T8563] blkdev_ioctl+0x108/0x6d0 [ 275.969485][ T8563] ? __pfx_blkdev_ioctl+0x10/0x10 [ 275.969522][ T8563] ? __pfx_blkdev_ioctl+0x10/0x10 [ 275.969558][ T8563] __x64_sys_ioctl+0x18b/0x210 [ 275.969597][ T8563] do_syscall_64+0xcd/0x490 [ 275.969645][ T8563] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 275.969675][ T8563] RIP: 0033:0x7fbe5498e929 [ 275.969700][ T8563] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 275.969728][ T8563] RSP: 002b:00007fbe55892038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 275.969756][ T8563] RAX: ffffffffffffffda RBX: 00007fbe54bb5fa0 RCX: 00007fbe5498e929 [ 275.969782][ T8563] RDX: 00002000000000c0 RSI: 00000000c0481273 RDI: 0000000000000008 [ 275.969799][ T8563] RBP: 00007fbe54a10b39 R08: 0000000000000000 R09: 0000000000000000 [ 275.969815][ T8563] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 275.969832][ T8563] R13: 0000000000000000 R14: 00007fbe54bb5fa0 R15: 00007fff53f1e2b8 [ 275.969878][ T8563] [ 275.980496][ T8563] ------------[ cut here ]------------ [ 276.246847][ T8563] WARNING: CPU: 0 PID: 8563 at kernel/trace/blktrace.c:1078 blk_register_tracepoints+0x2b0/0x380 [ 276.257589][ T8563] Modules linked in: [ 276.261653][ T8563] CPU: 0 UID: 0 PID: 8563 Comm: syz.3.621 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 276.273576][ T8563] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 276.283725][ T8563] RIP: 0010:blk_register_tracepoints+0x2b0/0x380 [ 276.290265][ T8563] Code: c7 c7 40 6f 94 90 e8 7f 05 fa ff 31 ff 89 c3 89 c6 e8 c4 12 f8 ff 85 db 0f 85 ca 00 00 00 5b e9 76 17 f8 ff e8 71 17 f8 ff 90 <0f> 0b 90 e9 76 fd ff ff e8 63 17 f8 ff 90 0f 0b 90 e9 95 fd ff ff [ 276.310044][ T8563] RSP: 0018:ffffc90003267c28 EFLAGS: 00010287 [ 276.316127][ T8563] RAX: 000000000002c405 RBX: 00000000fffffff4 RCX: ffffc9000d11c000 [ 276.324308][ T8563] RDX: 0000000000080000 RSI: ffffffff81c3755f RDI: 0000000000000005 [ 276.332308][ T8563] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000 [ 276.340606][ T8563] R10: 00000000fffffff4 R11: 0000000000000001 R12: 00000000000000ff [ 276.348790][ T8563] R13: 0000000000002000 R14: ffff888025e2c478 R15: ffffc90003267cf4 [ 276.356777][ T8563] FS: 00007fbe558926c0(0000) GS:ffff88812475e000(0000) knlGS:0000000000000000 [ 276.365748][ T8563] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 276.372370][ T8563] CR2: 00007fbe55870f98 CR3: 000000006f880000 CR4: 00000000003526f0 [ 276.380396][ T8563] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 276.388811][ T8563] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 276.396789][ T8563] Call Trace: [ 276.400126][ T8563] [ 276.403064][ T8563] do_blk_trace_setup+0x933/0xb50 [ 276.408103][ T8563] blk_trace_setup+0xed/0x1b0 [ 276.412817][ T8563] ? __pfx_blk_trace_setup+0x10/0x10 [ 276.418196][ T8563] ? __pfx_snprintf+0x10/0x10 [ 276.422949][ T8563] blk_trace_ioctl+0x146/0x280 [ 276.427728][ T8563] ? __pfx_blk_trace_ioctl+0x10/0x10 [ 276.433067][ T8563] ? find_held_lock+0x2b/0x80 [ 276.437992][ T8563] ? hook_file_ioctl_common+0x145/0x410 [ 276.443707][ T8563] blkdev_ioctl+0x108/0x6d0 [ 276.448223][ T8563] ? __pfx_blkdev_ioctl+0x10/0x10 [ 276.453296][ T8563] ? __pfx_blkdev_ioctl+0x10/0x10 [ 276.458537][ T8563] __x64_sys_ioctl+0x18b/0x210 [ 276.463513][ T8563] do_syscall_64+0xcd/0x490 [ 276.468379][ T8563] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 276.474373][ T8563] RIP: 0033:0x7fbe5498e929 [ 276.478832][ T8563] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 276.498600][ T8563] RSP: 002b:00007fbe55892038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 276.507023][ T8563] RAX: ffffffffffffffda RBX: 00007fbe54bb5fa0 RCX: 00007fbe5498e929 [ 276.515111][ T8563] RDX: 00002000000000c0 RSI: 00000000c0481273 RDI: 0000000000000008 [ 276.523283][ T8563] RBP: 00007fbe54a10b39 R08: 0000000000000000 R09: 0000000000000000 [ 276.531287][ T8563] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 276.539313][ T8563] R13: 0000000000000000 R14: 00007fbe54bb5fa0 R15: 00007fff53f1e2b8 [ 276.547651][ T8563] [ 276.551303][ T8563] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 276.558636][ T8563] CPU: 0 UID: 0 PID: 8563 Comm: syz.3.621 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) [ 276.570566][ T8563] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 276.580728][ T8563] Call Trace: [ 276.584028][ T8563] [ 276.586979][ T8563] dump_stack_lvl+0x3d/0x1f0 [ 276.591619][ T8563] panic+0x71c/0x800 [ 276.595631][ T8563] ? __pfx_panic+0x10/0x10 [ 276.600076][ T8563] ? show_trace_log_lvl+0x29b/0x3e0 [ 276.605435][ T8563] ? blk_register_tracepoints+0x2b0/0x380 [ 276.611197][ T8563] check_panic_on_warn+0xab/0xb0 [ 276.616188][ T8563] __warn+0xf6/0x3c0 [ 276.620114][ T8563] ? blk_register_tracepoints+0x2b0/0x380 [ 276.625889][ T8563] report_bug+0x3c3/0x580 [ 276.630253][ T8563] ? blk_register_tracepoints+0x2b0/0x380 [ 276.636029][ T8563] handle_bug+0x184/0x210 [ 276.640404][ T8563] exc_invalid_op+0x17/0x50 [ 276.644940][ T8563] asm_exc_invalid_op+0x1a/0x20 [ 276.649827][ T8563] RIP: 0010:blk_register_tracepoints+0x2b0/0x380 [ 276.656287][ T8563] Code: c7 c7 40 6f 94 90 e8 7f 05 fa ff 31 ff 89 c3 89 c6 e8 c4 12 f8 ff 85 db 0f 85 ca 00 00 00 5b e9 76 17 f8 ff e8 71 17 f8 ff 90 <0f> 0b 90 e9 76 fd ff ff e8 63 17 f8 ff 90 0f 0b 90 e9 95 fd ff ff [ 276.675942][ T8563] RSP: 0018:ffffc90003267c28 EFLAGS: 00010287 [ 276.682046][ T8563] RAX: 000000000002c405 RBX: 00000000fffffff4 RCX: ffffc9000d11c000 [ 276.690045][ T8563] RDX: 0000000000080000 RSI: ffffffff81c3755f RDI: 0000000000000005 [ 276.698148][ T8563] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000 [ 276.706177][ T8563] R10: 00000000fffffff4 R11: 0000000000000001 R12: 00000000000000ff [ 276.714182][ T8563] R13: 0000000000002000 R14: ffff888025e2c478 R15: ffffc90003267cf4 [ 276.722185][ T8563] ? blk_register_tracepoints+0x2af/0x380 [ 276.727951][ T8563] ? blk_register_tracepoints+0x2af/0x380 [ 276.733797][ T8563] do_blk_trace_setup+0x933/0xb50 [ 276.739120][ T8563] blk_trace_setup+0xed/0x1b0 [ 276.743824][ T8563] ? __pfx_blk_trace_setup+0x10/0x10 [ 276.749567][ T8563] ? __pfx_snprintf+0x10/0x10 [ 276.754295][ T8563] blk_trace_ioctl+0x146/0x280 [ 276.759087][ T8563] ? __pfx_blk_trace_ioctl+0x10/0x10 [ 276.764404][ T8563] ? find_held_lock+0x2b/0x80 [ 276.769105][ T8563] ? hook_file_ioctl_common+0x145/0x410 [ 276.774680][ T8563] blkdev_ioctl+0x108/0x6d0 [ 276.779214][ T8563] ? __pfx_blkdev_ioctl+0x10/0x10 [ 276.784440][ T8563] ? __pfx_blkdev_ioctl+0x10/0x10 [ 276.789495][ T8563] __x64_sys_ioctl+0x18b/0x210 [ 276.794287][ T8563] do_syscall_64+0xcd/0x490 [ 276.798829][ T8563] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 276.804743][ T8563] RIP: 0033:0x7fbe5498e929 [ 276.809184][ T8563] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 276.828840][ T8563] RSP: 002b:00007fbe55892038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 276.837276][ T8563] RAX: ffffffffffffffda RBX: 00007fbe54bb5fa0 RCX: 00007fbe5498e929 [ 276.845266][ T8563] RDX: 00002000000000c0 RSI: 00000000c0481273 RDI: 0000000000000008 [ 276.853262][ T8563] RBP: 00007fbe54a10b39 R08: 0000000000000000 R09: 0000000000000000 [ 276.861260][ T8563] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 276.869252][ T8563] R13: 0000000000000000 R14: 00007fbe54bb5fa0 R15: 00007fff53f1e2b8 [ 276.877364][ T8563] [ 276.880704][ T8563] Kernel Offset: disabled [ 276.885037][ T8563] Rebooting in 86400 seconds..