last executing test programs: 5.499541487s ago: executing program 2 (id=3604): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/mm/ksm/max_page_sharing\x00', 0x1ab101, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000000), 0xffffffffffffffff) shmget$auto(0x20000003, 0x0, 0xe64) sendmsg$auto_NBD_CMD_DISCONNECT(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000013c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="69592ad86277309212df05958ea731951ba2a38fca4d2259718954c8e03ca35373c240512d48f93244d817c01ff43c0c5cee83fced1f114bde0fb43b8e7b695145605fb762247225100523409fdd577c022cc79bed630cead64512487b502d3647c91e0ab38d4836b5124a21621c8cbe50ca689c7ed02f5e7201cf234efd14045772a500"/143, @ANYRES16=r2, @ANYBLOB="00012dbd7000ffdbdf2502000000"], 0x14}, 0x1, 0x0, 0x0, 0x2000c801}, 0x2000c800) r3 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000001100), 0xa8000, 0x0) ioctl$auto_USB_RAW_IOCTL_EP0_READ(r3, 0xc0085504, &(0x7f0000000180)={0x6, 0x0, 0x5, "5361003b743938f3bfc9a2b32a3d2a5ce40bc2baae59ee25c0f274b7490773cfd950f7161ab3d15ac2c0421fe9b4c559def13d6d71bde7df055545f435162db21a08a33841156edf106c36d2842006b709400938fc4cd0dfc1f3c601ff945f0d446c6b9dbb359976023d7db900be07d79149a84e92e8a191ba884beb5eb7e4e53e679800eb920553193a511532eaa9d8029cf5bb4461f7b92cb3a355acb8028440ff7a534eef23ec32d3e7249fb62ca538ef54b9bdc0b23a8182f9011d117431508cff00014a8e7fa4b19451d5571b82bb7b9d54279adc75abcfda1b787a275e5733c8c5860c5c5a72fbf38bec1118ed617014611e29203f"}) write$auto(r0, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) 4.787526234s ago: executing program 2 (id=3605): prctl$auto(0x41, 0x3, 0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f00000000c0)=""/7, 0x7) socket$nl_generic(0x10, 0x3, 0x10) socket(0xf, 0x3, 0x2) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/midi2\x00', 0x401, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r0 = open(&(0x7f0000000100)='./bus\x00', 0x14d27e, 0x72) socket(0x2, 0x80000, 0x0) r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000240)='/dev/video16\x00', 0x8a240, 0x0) ioctl$auto(r1, 0x5646, r1) read$auto_v4l2_fops_v4l2_dev(r0, 0x0, 0x0) 4.043464509s ago: executing program 3 (id=3608): prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0) ioctl$auto_TCFLSH2(r0, 0x40045431, 0x0) syz_genetlink_get_family_id$auto_macsec(0x0, 0xffffffffffffffff) socket(0x3, 0x3, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x6266633d, 0x9, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/usb/usbmon/9t\x00', 0xa00, 0x0) openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x40200, 0x0) openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x400, 0x0) r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000500)='/dev/sequencer\x00', 0x80102, 0x0) ioctl$auto_SNDCTL_FM_4OP_ENABLE(r2, 0x4004510f, &(0x7f0000000540)="159772c3315a2656706243d971cace22c0997e90bdd386a7b187069f2ec941a7bfc766cd1d9827356d5a7f235b5036e4") openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/bus/usb/037/001\x00', 0x630001, 0x0) openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/tracing/set_event_notrace_pid\x00', 0x100242, 0x0) setsockopt$auto(0xffffffffffffffff, 0x1, 0x1021, 0x0, 0xd) close_range$auto(0x2, 0xa, 0x0) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0) r4 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/all/forwarding\x00', 0x42a81, 0x0) sendfile$auto(r4, r3, 0x0, 0x1000202) ioctl$auto(0x3, 0x541b, 0x38) sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000400)=ANY=[], 0x24}, 0x1, 0x0, 0x0, 0x5c5fd097f751b33e}, 0x80) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x2, 0x0) 4.01818381s ago: executing program 2 (id=3609): unshare$auto(0x40000080) mmap$auto(0x0, 0x20009, 0x4400000000df, 0xc157, 0x101000000000000, 0x7) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) socket(0x1d, 0x2, 0x2) connect$auto(0x3, 0x0, 0x55) socket(0x10, 0x3, 0x6) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) write$auto(0x3, 0x0, 0x5c8) write$auto(0x3, 0x0, 0xffd8) r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xeb83, 0xe2, 0x200000000000ebe, r0, 0x8004) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) socket(0x28, 0x4, 0x6) epoll_create$auto(0x4) mq_open$auto(0x0, 0x6, 0x2, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000840)='/proc/sys/vm/dirty_background_ratio\x00', 0x80000, 0x0) sendmsg$auto_MACSEC_CMD_ADD_RXSA(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x2cb8}, 0x1, 0x0, 0x0, 0x40}, 0x2404c084) close_range$auto(0x2, 0xa, 0x0) socket(0x18, 0xa, 0x1) socket(0xa, 0x2, 0x88) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) mmap$auto(0x0, 0xc, 0xdf, 0xeb1, 0x2000000000006, 0x8000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x5}, 0x4, 0x9) recvmmsg$auto(0xffffffffffffffff, &(0x7f0000000040)={{&(0x7f0000000880)="73c40b46c92c930b8d61ab3ae699bb7b8c372f3df57489ff6f435e9a5fca224dbdb68b2926d936cc450a41814b0ab2f49eacfe4ffb511b30ed8a0a96ef38d4dc17e37072e2db2deeb00a96a149356fa49dc04f8146e2050eede1fbcabcc6e691dbe1538d5001ee8f81e2f3ea794182214b63860885151bffe4efc847d383c89810b5bc14ad197a4e217c102f80a43b79817d9577e0429c190351ec2dfd25dd123757e4a5e039c557417ff647b585249abedabb89e4225d0ae9c4eedb1d6c8caac94a4e0296f7c8f383fd17b99547498c90b6aa5c3305468c9e46c7cb8e5513ab36be86c1dcc5ec9ea5508d407ffb6ba7c5b39ac3457ac1456cc4cf83c31c1cdf0e2bc62cb15dc3d5babfb116e9a5ea86ad25e01ea5672b22a6693b2439c38d04d7615ae576ae6f121a1e7eac28a7afe5f0fd54f66e9dc105643cd4be6a03d3a44c7c801aa9c77bc3581e83ca82deb191dd2b81c7281cae9f126f57a1f362b66cbd5ff440074c1e6b34e339fa47c313399aa4ab532b62a79f4435ec82fbc39916794ad755fd668e828df154ea1dd6a4164a10a91c64ee2ad7129501f2feda2b1e6b179fb8190a197293954b92a53ae8ce3aca290b1be418d6ccc6d0d7c86086079e02ce7556deaf5a5307372020245dbea3171f3e7718006e8b36dba88533b7487b851d19c150bc6a72b258f2c4d7578858a2fb55ece073c1bd0adcc3b59c33d319781d5e266e0bb9121a854b0fdaec767a4494a6896f2d69b0148fcf67f3ab28ae6a9ca43e4fcceb23fce883d9aaa00e056c4d82bafe7ad4eb11bfcf5bdaf83c5ca6dacad2db6c8ab2056b50f433a8192a97afd24b24bfe235dd745382adec2455e9714bf3bb273c01bea93d3baede42a4ec9deab5904c8dae937e99c56911d1f026ced12c622eedaa85b6378caeb837c2779ad2a619977b0d97884323f2b3bbf9ba838cf791dcdae1a8364b276e7fc8dfba99e69b1f1907538e5f07588ccbc3af8e58790d09739ab8c0b14a184b81d16b250a548b71dd93491b4e0aa3e9bc6d745f2ccd57f26622ea9b655c4cc1ac39c610fdfd5b5d69c0bc5fe05517a2ea8edf3c48dc8eb237b440b4529149da36f2add40202808379f47e00f5a3b79b85b5c0c9472a9d5163b067c7ce2517b07f3bde58c7cfaa85db6b31ebc776d8ec55d7cc8b2d2a48a69c202478523ecac681bdf0f66920449421d94e82892f6c1012b744f0c460300ffa7aa1e6f35ef86d339949350816b21fdecea63ce2e300c8b3b5a3fed1139925a366ac2c40a640754f02cf441d3c6fee68932a7e44203a5f5204b44391439922ddef9990610b22d48391e77b82aba8a631ef4a384a29aeddda3c28d4fba032b98a4eea8d89a6cb6cc566685be183dbb4a9b8cfa442ad0db161fa1c427b08bb19f46b859d066ce147ff077e1d7b90bb81c978b7ec8e633677e0175166c8160875cffd5507f28690ff702458084863c0a788037b118b1af1cfe1d5f47c4959e02fdeccfcb52016c7155a29cce007be429ebfeee643705358cff9fac1fb72891f66f04e1e8add8c4e2f75ad7ac8e01a0abb685a2a003c07dafe9a9a360d548f8f504e33f3d4cd980a58878dfbd8964dcf5d79ab8f31b65a51a495e104e5da47657f0a02ca8ebfbb8da1d7b821f1818c1113f98f786bfc9b8039b1aca8aa0ef018db781a9895ce3953e2787d9b6315dd68590512cc0ee3e3b80ef9d97a58c67567d0e233adf47585d88c1f7f29c5bfb0317e4738e169274e10dd3eb58d362d0de60aa2533e86dbce5bc5e82472b6142222529501020ee1295f9403f9c201aa7322985bab21ed38b5d1b53fbfd2eb4c6435217c238cb40f4a125cc320b2b182566c344140c32c5ba36673a14cfbffd0d4cabec327e74abfc4008483ce88f8ad5eb1a9c0aa8a4b9fbc150409c00bbef9cee68926acadffe0f42f38bd54eac2a46fcd416fa80e7c9185e211f0476e3910d5130844cc34e97785348f0e47564202349f320de0735d56cd0bd1df743accb584cd41ea3ced920498a8e379a4434f1bc932ae341d08caaac76202f6a1a211ca538539b4c69d22c43b4a669abd6d5fc346ec62d3a7f9c06cdc50eba8430f836f7895459e89708fd7764e8b42c37efad958d6d4e5f365220f68c35fdf0dfaaa739cfc4e9dccd183a7152eaeca9c6704faae44ff422e92641904fee225eb7444ad53195387a6e36c17e692acf26894cd8b7f1dbf6f67b0155adbb7d8c32b7b93355e0b16ec11e406da6954c86ebd8f76088beebf2949c5edb7a00cff8b01ec048968df7b22779618afd634f51c5a26d3d40143b6877bb49f8570f49f5c165d332565165645ebba99978354c3e6e4c3b792f004f1d4418154003f9a8fb8da285e0145d35f21f423e3b1ae9d05cca070ad55d4ebbe8f08c7cb1f53c71d91f36d246a25849b095e1d44d285c5fc9c2daff7a159a3d36da89b6bbace94d1f3969504ad92a3660d62d8b01bbe80e6cdad28e9cad4f8a04769172f4b6517264464b4ff87eb6ccf645d5e62be90a1750b87b7089b8c78746936619fbcfbf8a72b66007de1620749120f3d7648d212f7bca0433bba1423fc87359a59f1f072b22b1b2d537ebdfe64f851d0d8636bb8f58e5062a8a11b68ad692b97c0d5352f3cece073a3982ade83c02b58a717173410f94d029777ab013b264465cece808b74b4ef4573370a22c0d91330c4ea98ccb7c00ec8df8a929958960818153cfef6f510e1e4948c5caec819bc8b411900c31e5e41d3d5bcb2ef9309ab40c3a0c6b3a6c6d75e697b3c5e116b3d07a7c04e8b85727cb512943767f44417dbafc9b496b5440a66bfcdb461e8a0a19112f0ee5ea2194ad898394dc5b14681c02f7e268f605b0879de6e9716e2dc35fc1cc8f44990ca88b3cfc8ba99a0ed6c27082920929816ae99815c20c62c3b065826da0661926498c6c3c3cec5dbf00bcfaa5398bebb3acb23b2b44f5ac285f7c571cf407bb576a91606ac5592e3585e73e04027ca970288fbd5459d6905793aae3ed503e3f9d954e46d52dc2a20b2528f71ab15f95afb6d92b0ea91ff88e109b07db4612c7edc49bdd1f255ca92278a288b9fa27190e23ba2fd3d95a886697b0ff27f90c664b29f58ec207a1cd712deaa43e225004f1f4a455c3e9c2e120ba0c4ef99d4bbd001edab336bbff3e58d1fdd8d18b4eee79cd0b0db77aa8dacdffeb073321e787d9a07c2f8b0d1a6352922f692528b7d177c41a8dadd0cace6a56a6471de1b2c5c00ccb5cfb35955a6eba3001b6f9012db8338ac1ef54d55a2ff0bb1fa8dee1d2ec5c6a63bdb00f333d5d67112f56ed85528f99d73566634d33ec9bbea68d47f8b6863b5ed87acefa22b9d2610d7e766bf192aa99df11924f640b6c03170e29cd61fba919662bd12d33cdbda6a39ceab0e60dad1c6d05a263c2fefc9d844bd0db6fa3ea94cc40d8e86be7c62a26d27135899099d3b8ef0bac2e3f8638cf65797ffe044e44318a64211b1013be427aecdb2452643f016fefddc036a85c15a1635f99d22e2bd083fd85456706e926f254870bf4660e33d8d80ccf9bee3c826e56baff664af3a6d110324b5f814ec712914895e7e9b4f555e9abff2b5630f9216a9dc595017658dcd9fb692e52e043891c1f2335f35310c116ac0e3f34bc16afa158458394a40565c4199badbba7aaf24a461392c8673ef3ce994d567e962015411f19f0192d6c11c177b54fef83a11f834db93e24223859e8fccd727b9ef0520773147cdfa71588bba126368bfe952037ab384b93ceeb728ea4dda9402b5719b600fa7269d959595351747ff9a1c71027948821df15d9c1fcf147d83ed32e2e9dd8901b0104a9021d4122157d8a3b4c1ef9a87dc1a29e082acbc4c5f4011e80ba8a7062a9495cd401faf2f93dc30d7547031672fd2cc4e07c8ba5e06ee23f39ca324b97c1853390720a7572149836a97754eea9861edcf16976da0c4ea937d378ec729b66abbca7136ac9d9cf945359265c9269fac5502bbdfaa5656d4c7d8f362c2e0df93a1f0fff7f8e0c081637559e2b2540814c2ebe40821976a4fed9927a13e69fc253645967212b6cbf93bed7f6b8d3348dc70e26d02bde6b96fd6553d5435a749b1f57cdb447b70d843297f17fcfb69f4ebefbfad2eba1d14634dd76f31407a2af417eeab5cbf244ba7f7244af08909449af4fcca6973e003e903f0f08de1ac370b790a8cc1fbb1a494c51949a8f6b4aa4e0263b51714c9e189488550970f5519737ce7f356e89726ca7adf931a0881d8f164eff37c4e9ff86b20eee50b6b6f107c97dadd8e8736c0a85b4b06f43d2e57b8a744f3ca049fbaae40db02965693cfdc7a941228496edca812424bead3ed6da781bac74e3916235e535c6b8b03eb095cb495db0f351bc4e844ed2164220940c2d02e70ccf0b6c488a748e108d917044382d3ee09bd19ab57c017adb100bc054c7a94df5564c81adb8b52975bc5de4aae693d822395a214bda86817308894dd7abd07e79c276ebc9aae23959c5434b435424b0047e896d88f12717bd16b6c009de454d73f31260eaea84c353c8f8b9b1b5b101446bd72d83dfafb24cb21c4ee5b90179a5999236b9499e6917af0c3ae1ca68e1ec77a7d88cbdb4b00041bc891072aa5d141307d9adc3c1540a2c22f1f6d86fa250ac44d3a14dc22672d8d88616e18b6aaf10c0a24f38b442890f6ee3fa149c81806eb5b775e6201ca9d1e32aef9bdfd40ce74a9aeed901eeaf3f0fe810374c1d9777eccf25435a8cd9cf233bed5abbc5e966d3c0ae8dce090451e9e2293fbd84f1823120047f33ebd2ff37178f213986b5ca981043fd5f8a575dbb627c016eccb8cf300c160101db86082648aa0b0241c2d79eb77dc969bcad91068277e6bbdfee07ce8f01f0f080647f15d497620265422de53e5c6283a12ba3b689136e37ac6eaf6fc1f4a9c28b8c36fd8670bfec913d12c76e2af93385059736b76e3d86c5b15c972679413b1e28de4e5af9edc54bcd8e58fe0d6a34b7d407e46bda9f5d60190657c2491008705c9ac06c91469516399eac8373d04ccaf49d9c593da78a478a5a2b19fe90cd4ed1e44a13c4104ffe02dcfcde4c0e4b398daf238a62ae0b05329669b7429cc2438f375c9efe6f2673e2817763713431ab3380c03af55b0884be5cc2ee46533e3d5ce747557c9d7efa253b8dec04022f5d513c3c24df38625c1b5ca852a178121e27962485ea87add3a04a3175e15bc7ba9bb4c8bc03f358c3452493ed4bbc9b700ece3512af8addc89ef9640719767f010df5ef5a0cb490f2f113c8aaba5ddd6eb127740b40ccbc2d02bb210d7ab9c33847da1ba86d04880eca87441348a17aa68d9ee50e534eabf088384850c15b7a84d36c2981af1eadd9ba56ebd1ef2471f1de9ad7ee4a2fdcd1532b7742acdde35c39555472225257e97210bc30531392998d10dc72024f212fd11c90e4538cf9e4fdee2f3bee3cf22c75baa5898c00be4b7b3a2843fd1cfb1f183a60077b13e0cc6fa23943676e018720275518b1335ab4840c16d71c80c5a7958eff12170aa5b73cbbcb316a192f0f58eaf2f3d2341ed92f34671bc0af0c7f4365e7972bb356c14d277e44bd26a5455b9d1966b94bd8a179cee0a616cfc9422a28e5326b09c5afd1e8b05e426d1fcf5ad01968864d525200450d7e8b464b56bd99341ca809d824bc6c99e00caf8964ec32c7370e7c9549406e12c5a37f565ae6694eb1dca25e283794116ce51f1e99f856b74a51c1ebdf03f940b0f3b183eff7af95384462c5ad958513eb4", 0x2, &(0x7f0000000000)={&(0x7f00000000c0)="c6f596f9336dbc5320ee394fc498ed72986a89830b3c83abf8914d28c78430a258eab22b33c391919a388cfbacea8b2e3b0b892536f9602e35a7d04157ffcb92773844d67201eca9a0c744b15ccaad8e90e0e5f421055548ea6d84001c098edb2e44987ab86df9f41ba0731dc55b93f022d6d9c7852ced9c9cbb44f15ad1d3a23fdf6e60899c66cb3e39a87c6d3008a9aeaf71c3249f9e5f11f44879efd173b95a9371287193e3cfbc16734fad8cc2d6aa59ab39e3c79ecb6fda256a365e", 0x7d0}, 0x5, &(0x7f0000000180)="f1da8b892d63720fe092a26b90c32ab7f7a569a7e78226cf67ca6c0f7b2e7ad836c6dc0b0d0c2f9c4f3434d7594b48503c05a4f9611d186d5098064a7f89ecf0691b06825af979139aedf48d9ba1dbe2c305cc778943d363715c22b795b899d0ac4d91465a0138e9edccdd837b77d4316a6a097d755a2872d2b4dd022c02bd03f9cb299870adfcda2cba2312ce1f5f65bc20d0dfc7b979b602e9", 0x76d4, 0x2}, 0xffff}, 0x6, 0x5, &(0x7f0000000240)={0x4ed, 0xfffffffffffffc01}) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000340)='/dev/sequencer2\x00', 0x452400, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0xa, 0x3, 0x3, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0x8000]}, 0x0) sched_get_priority_min$auto(0x40) socket(0x2, 0xa, 0x0) 3.946094344s ago: executing program 0 (id=3610): mmap$auto(0x6, 0x20009, 0x7fffffff, 0xebd, 0xffffffffffffffff, 0x8000) mknod$auto(&(0x7f0000000180)=':,\x00', 0xcb, 0xfffffffa) execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NETDEV_CMD_NAPI_GET(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f00000007c0)={&(0x7f0000000780)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="01002dbd7000fbdb9f250b0000000800020003000000"], 0x1c}}, 0x0) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000100), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYRES8=0x0, @ANYRES8=0x0, @ANYRESHEX=r1], 0x1c}, 0x1, 0x0, 0x0, 0x44}, 0xd981) readv$auto(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x7}, 0x8) close_range$auto(r0, r0, 0x0) madvise$auto(0x0, 0xd0, 0x2) openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, 0x0, 0xb4980, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x12bc00, 0x0) faccessat2$auto(0xffffffffffffffff, 0x0, 0x0, 0x7) sendmsg$auto_VDPA_CMD_DEV_CONFIG_GET(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000540)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="01002bbd7000fbdbdf250600000006000d00010400000c001400bb09000000000000a8c78301c686c5851b4d4f6844641a08323426dff0ef0d7baf6c0b21ab426ec657d79151d662be9f25a06fced53155ed489aa42c72d01beaba1052628b8bf0a2f66f98a88b31d8559c4a52fe6cdfe0365324ce318e9a682492be73eb1855590ead0e6283725341fee9d1de187bedeec89af4d2814c101da45a08939d2f12142492c136552f83386b8f7c6e10618a5a6c51229e7ec56db4e6b6c07f750a44226da60385c09dd092802c41d63f91aeb60f40143d86426786d08ced69593f141974b3f400732356"], 0x28}, 0x1, 0x0, 0x0, 0x4000800}, 0x3) read$auto(r2, 0x0, 0x20) r3 = openat$dir(0xffffffffffffff9c, 0x0, 0x2d2802, 0x48) faccessat$auto(r3, 0x0, 0x2) r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000500)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x3) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0xc44c1, 0x0) mmap$auto(0x0, 0x5, 0xfff, 0x44eb2, 0x10006, 0x300000000000) mmap$auto(0x0, 0x9, 0xe3, 0x18, 0xffffffffffffffff, 0x8000) write$auto(0xffffffffffffffff, 0x0, 0x1ff) read$auto_rng_chrdev_ops_core(0xffffffffffffffff, 0x0, 0x0) r5 = openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000040), 0x40, 0x0) mknod$auto(&(0x7f00000003c0)=':,\x00\xbd\x80\xd6\x002\xb37\xff\x1a\x9e99\xda\xd1v\'\xc6\xd2Fw;\x00v\xdce\xad\xf4\xdb\xc7\x946\xe4\f\x9el]L+\x06\x130V\x1b,d\x8f\xa0\xabDUdk\xac\x82\\tyQ\xd8j\a\x1a[\xdb\x96\x1f{2\x04\xc5Y\xc1@\x0e\xeeWZ\x94N\xd4\xc8q=\x9b\xd1\x7fR3\xb6`\x00\xb3\xe5|1\xba\r\x85\x89\xfe\xed\xe1\xad`\x92\xc7\x9c\xd7\xd8\x15\t&\xb7\xfc\x82\xc4\xd3J\xae\x810\x19\x14\t\xc2\xa5V\xaa\x8d\x04\xf5\xf3\xd6\xd1\xe9k\xaf\x1a\xc6u\x96\xf7\xaa\x84\x92\x995m\xf9O\xc0\x1e\xa05\xdb\xa5\xae\r\x06\xe6\xc3\xd0\xf8:\xf7\xc5u\x91\xf8\x91\xee\xd8y\xb8\xc1)\xad\x05\xeb\xe9\xab\r\x9a@\aa(\x1a\xa4\xc1\xcf\\\xf0\xc3~\xbbd\x94\x9c\x02\xd4\xfc\xd2`\xd9\x83{-\x81zY\\\xac!#\xea\xba\x86)\xe9\xbc\x82\xf6\xd2\x7f\xdb\xa1\xd5\x89|\xa0O\xfcqZ\x85@A\x90\"\x11L\xdd\xa5\x9f\xf5', 0x20e9, 0x103) unlink$auto(&(0x7f00000004c0)=':,\x00') ioctl$auto_LOOP_CTL_ADD(r5, 0x4c80, 0xfffffffffffffffd) 3.912102045s ago: executing program 1 (id=3611): open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x130) open(&(0x7f00000000c0)='./file0\x00', 0x40000, 0x31) socket(0xa, 0x801, 0x84) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kmsg_fops_printk(0xffffffffffffff9c, 0x0, 0x20002, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x3, 0x6) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg0\x00', 0x0, 0x0) mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000) socket(0x21, 0x2, 0xa) socket(0xa, 0x801, 0x84) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) inotify_init1$auto(0x3000000000000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) close_range$auto(0x2, 0xffffffffffffffff, 0x0) open(0x0, 0x22240, 0x55) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2, 0x0) ioctl$auto(0x3, 0x80106f53, r0) 3.674328849s ago: executing program 1 (id=3612): r0 = open(&(0x7f0000000080)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0xb5d1af1605322d93) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup.cpu/tasks\x00', 0x63102, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000280)='/proc/sys/net/vrf/strict_mode\x00', 0x80202, 0x0) sendfile$auto(r1, 0x3, 0x0, 0x100000000000009) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/kallsyms\x00', 0x20100, 0x0) pread64$auto(r2, 0x0, 0x8, 0x8000) readv$auto(r2, &(0x7f0000000000)={0x0, 0xffff}, 0x200) write$auto_kernfs_file_fops_kernfs_internal(r0, 0x0, 0x0) mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/system/memory/memory0/phys_device\x00', 0x80000, 0x0) read$auto(r3, 0x0, 0x20) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0x2c, 0x3, 0x0) r4 = epoll_create$auto(0x3e) epoll_ctl$auto(r4, 0x1, 0x8000000000000000, 0x0) 3.183488427s ago: executing program 0 (id=3613): r0 = openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000100), 0x80000, 0x0) ioctl$auto_UBI_IOCDET(r0, 0x40046f41, &(0x7f0000000140)=0xfffffffa) r1 = ioctl$auto_NS_GET_TGID_IN_PIDNS(0xffffffffffffffff, 0x8004b709, &(0x7f0000000000)=0xffffffff) r2 = ioctl$auto_TUNSETVNETLE2(0xffffffffffffffff, 0x400454dc, &(0x7f0000000240)=0x6) r3 = openat$auto_ftrace_event_format_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/tracing/events/vmalloc/free_vmap_area_noflush/format\x00', 0x616000, 0x0) mmap$auto(0x0, 0x9, 0x3ff57696, 0x9b72, 0x2, 0x0) statx$auto(0xffffff9c, 0x0, 0x1000, 0x803, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev5\x00', 0x280, 0x0) ioctl$auto(0x3, 0xc040564a, 0x38) r4 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/debug/block/nbd6/sched/write0_fifo_list\x00', 0x400, 0x0) read$auto_blk_mq_debugfs_fops_blk_mq_debugfs(r4, &(0x7f0000000340)=""/179, 0xb3) socket(0x26, 0x5, 0x9) ioctl$auto(r2, 0x1, r3) process_vm_writev$auto(r1, &(0x7f00000000c0)={&(0x7f0000000040)="9339f823f7d15fe1540d151b42620e383c466f7b565f32f0ca41ee0c35a8fb3d1b359e10832d67019f22639114993da02f594da7dbff6dd8ab8414cc2f13f60fe6e368d17a57e8a3740aab09b17988", 0xdd06}, 0x187, &(0x7f0000000200)={&(0x7f0000000100)="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", 0x9}, 0xfffffffffffffffb, 0x5c26) futex$auto(0x0, 0x7, 0x9, 0x0, 0x0, 0x80000001) 2.957835439s ago: executing program 0 (id=3614): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000080), r0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x15, 0x5, 0x0) ioctl$auto_BLKFLSBUF(0xffffffffffffffff, 0x1261, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x0, 0x0) r2 = openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0) read$auto_rng_chrdev_ops_core(r2, &(0x7f0000000040)=""/4096, 0xfffffe82) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000dc0)={&(0x7f0000002b40)={0x44, r1, 0x1, 0x70bd2a, 0x25dfdbfb, {}, [@HWSIM_ATTR_RADIO_NAME={0x2d, 0x11, '/P\x13jE\f\xf9r\xf5\xa3\xd2\x84y\xf9*\x9b\"\x1c\xa4l-\x19\xfd\xa4\xf4y\x02\xc2\x96\xfa\x84L\x12\xcd\x83\xf7\x12\xd3\xc4\x1e]'}]}, 0x44}, 0x1, 0x0, 0x0, 0x4008040}, 0x40800) 2.90792251s ago: executing program 3 (id=3615): sendmsg$auto_MACSEC_CMD_GET_TXSC(0xffffffffffffffff, 0x0, 0x8014) r0 = openat$auto_event_trigger_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/events/vmalloc/free_vmap_area_noflush/trigger\x00', 0x200, 0x0) ioctl$auto(0xffffffffffffffff, 0x68, r0) write$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, 0x0, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x4) mmap$auto(0x1, 0x8, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) r1 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000000)='/dev/usbmon0\x00', 0x640, 0x0) read$auto_mon_fops_binary_mon_bin(r1, 0x0, 0x0) ioctl$auto_MON_IOCG_STATS(r1, 0x80089203, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/037/001\x00', 0xa901, 0x0) 2.801530549s ago: executing program 1 (id=3616): mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb2, 0x40000000000a1, 0x8000) r0 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyw5\x00', 0x28341, 0x0) syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), r0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000400)='/dev/amidi2\x00', 0x201, 0x0) ioctl$auto_SNDRV_RAWMIDI_IOCTL_STATUS64(r2, 0xc0385720, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_ID(0xffffffffffffffff, 0x0, 0x4000080) mknod$auto(&(0x7f0000000080)=':,\x00', 0xcb, 0xfffffffa) execve$auto(&(0x7f0000000140)='\xe1\x9eHU\x00', 0x0, 0x0) mknod$auto(&(0x7f0000000280)='X))\x00', 0x63c5, 0x7bf) mknod$auto(&(0x7f0000000340)='\xe1\x9eHU\x00', 0x63c1, 0x7fc) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) mmap$auto(0x0, 0x400005, 0xdb, 0x16, 0x2, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xfffffffff7ff0003, 0x1) setgroups$auto(0xe32, 0x0) madvise$auto(0x0, 0x200007, 0x19) r3 = setfsgid$auto(0xee01) setresgid$auto(r3, 0x0, 0x0) mmap$auto(0x8, 0x400008, 0xdf, 0x111, 0x2, 0x8004) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/nbd5\x00', 0x44c8c1, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) close_range$auto(0xffffffffffffffff, r1, 0x4) socket(0x2, 0x80002, 0x73) r4 = socket(0xa, 0x1, 0x84) bind$auto(0x3, 0x0, 0x6a) connect$auto(0x3, 0x0, 0x54) capset$auto(0x0, 0x0) setsockopt$auto(r4, 0x10000000084, 0x8, 0x0, 0xd) 2.584595682s ago: executing program 2 (id=3617): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000062c0), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_STRSET_GET(r0, &(0x7f0000003400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[@ANYBLOB="18000000", @ANYRES16=r1, @ANYBLOB="01032a1db112a1327d2f12d8146e1dd55345"], 0x18}}, 0x4000) 2.422148937s ago: executing program 3 (id=3618): open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x2) open(&(0x7f00000000c0)='./file0\x00', 0x40000, 0x31) socket(0xa, 0x801, 0x84) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kmsg_fops_printk(0xffffffffffffff9c, 0x0, 0x20002, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x440100, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x3, 0x6) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg0\x00', 0x0, 0x0) mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000) socket(0x21, 0x2, 0xa) socket(0xa, 0x801, 0x84) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ttyx6\x00', 0x101100, 0x0) inotify_init1$auto(0x88) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) close_range$auto(0x2, 0xffffffffffffffff, 0x0) open(0x0, 0x22240, 0x55) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf25030000000800030004020000060007000080000008000200", @ANYRES32=0x0, @ANYBLOB="0a000500dd000000000000000a000100987874e64b8500000a0001007572c85c318e0000060007000a00000008000200", @ANYRES32=0x0, @ANYRES16=r0], 0x68}, 0x1, 0x0, 0x0, 0x18a64d47ddeca1f0}, 0x40090) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2, 0x0) ioctl$auto(0x3, 0x80106f53, r1) 1.939359112s ago: executing program 2 (id=3619): mmap$auto(0x0, 0x40009, 0xdd, 0x9b72, 0x7, 0x28000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/platform/dummy_hcd.3/usb4/devnum\x00', 0x500, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000080)=""/23, 0x17) syncfs$auto(r0) r1 = socket(0x15, 0x5, 0x0) setsockopt$auto(r1, 0x114, 0x8, 0x0, 0x4) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptydc\x00', 0x100, 0x0) close_range$auto(0x0, 0x5, 0x0) r2 = prctl$auto_PR_SET_MM_ARG_END(0x80000000, 0x9, 0x0, 0x8001, 0x100) mkdirat$auto(r2, &(0x7f0000000300)='./file0\x00', 0x5) socket(0x2, 0x1, 0x106) accept$auto(0x3, 0xffffffffffffffff, 0xffffffffffffffff) r3 = socket(0x2, 0x5, 0x0) getsockopt$auto_SO_LOCK_FILTER(r3, 0x0, 0x2c, 0x0, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) r4 = openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f0000000000), 0x80002, 0x0) write$auto_ecryptfs_miscdev_fops_miscdev(r4, &(0x7f0000000040)="981c02c843e084", 0x7) unshare$auto(0x40000080) openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, 0x0, 0x2000, 0x0) r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/igmp\x00', 0x100, 0x0) pread64$auto(r5, 0x0, 0x40000000f42c, 0x585) getsockopt$auto(0xffffffffffffffff, 0x84, 0x70, 0x0, &(0x7f0000000240)=0x10009b) write$auto(0xffffffffffffffff, 0x0, 0x9) 1.906924405s ago: executing program 3 (id=3620): r0 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyw5\x00', 0x28341, 0x0) ioctl$auto_TIOCMGET2(r1, 0x5415, 0x0) syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), r0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000400)='/dev/amidi2\x00', 0x201, 0x0) ioctl$auto_SNDRV_RAWMIDI_IOCTL_STATUS64(r2, 0xc0385720, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_ID(0xffffffffffffffff, 0x0, 0x4000080) mknod$auto(&(0x7f0000000080)=':,\x00', 0xcb, 0xfffffffa) execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0) mknod$auto(&(0x7f0000000280)='X))\x00', 0x63c5, 0x7bf) mknod$auto(&(0x7f0000000340)='\xe1\x9eHU\x00', 0x63c1, 0x7fc) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) mmap$auto(0x0, 0x400005, 0xdb, 0x16, 0x2, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) setgroups$auto(0xe32, 0x0) madvise$auto(0x0, 0x200007, 0x19) (fail_nth: 3) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nbd6\x00', 0x3a3c02, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) close_range$auto(0xffffffffffffffff, r1, 0x4) socket(0x2, 0x80002, 0x73) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) setsockopt$auto(0xffffffffffffffff, 0x10000000084, 0x8, 0x0, 0xd) 1.722044916s ago: executing program 1 (id=3621): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/zram0/mem_used_max\x00', 0xa081, 0x0) write$auto(r0, &(0x7f0000000000)='++!&\x00', 0xb74) 1.65907994s ago: executing program 0 (id=3622): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8400) openat$auto_tap_fops_tap(0xffffffffffffff9c, 0x0, 0x1, 0x0) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/lru_gen_full\x00', 0x8a302, 0x0) socket(0x1a, 0x1, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80802, 0x0) r0 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, 0x0, 0x9, 0x0, 0x1f, 0x9}, 0x800009}, 0x7, 0x20000000) io_uring_setup$auto(0x6, 0x0) setsockopt$auto(0x3, 0x1, 0x2f, 0x0, 0x9) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) mbind$auto(0x2000, 0x100000004, 0x5, 0x0, 0xffffffffffffff39, 0xffffffff) mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) write$auto(0x3, 0x0, 0xfffffdef) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) socket(0x2, 0x5, 0x0) bind$auto(0x3, &(0x7f0000000040)=@generic={0xb, "444cf575c02dd753ff403ac8c6ea"}, 0x6a) shutdown$auto(0x200000003, 0x2) listen$auto(0x3, 0x83) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/rpc/auth.unix.ip/flush\x00', 0x100, 0x0) 1.239599436s ago: executing program 1 (id=3623): prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0) ioctl$auto_TCFLSH2(r0, 0x40045431, 0x0) syz_genetlink_get_family_id$auto_macsec(0x0, 0xffffffffffffffff) socket(0x3, 0x3, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x6266633d, 0x9, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/usb/usbmon/9t\x00', 0xa00, 0x0) openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x40200, 0x0) openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x400, 0x0) r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000500)='/dev/sequencer\x00', 0x80102, 0x0) ioctl$auto_SNDCTL_FM_4OP_ENABLE(r2, 0x4004510f, &(0x7f0000000540)="159772c3315a2656706243d971cace22c0997e90bdd386a7b187069f2ec941a7bfc766cd1d9827356d5a7f235b5036e4") openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/bus/usb/037/001\x00', 0x630001, 0x0) openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/tracing/set_event_notrace_pid\x00', 0x100242, 0x0) setsockopt$auto(0xffffffffffffffff, 0x1, 0x1021, 0x0, 0xd) close_range$auto(0x2, 0xa, 0x0) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0) r4 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/all/forwarding\x00', 0x42a81, 0x0) sendfile$auto(r4, r3, 0x0, 0x1000202) ioctl$auto(0x3, 0x541b, 0x38) sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000400)=ANY=[], 0x24}, 0x1, 0x0, 0x0, 0x5c5fd097f751b33e}, 0x80) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x2, 0x0) 857.956832ms ago: executing program 3 (id=3624): r0 = open(&(0x7f0000000080)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0xb5d1af1605322d93) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup.cpu/tasks\x00', 0x63102, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000280)='/proc/sys/net/vrf/strict_mode\x00', 0x80202, 0x0) sendfile$auto(r1, 0x3, 0x0, 0x100000000000009) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/kallsyms\x00', 0x20100, 0x0) pread64$auto(r2, 0x0, 0x8, 0x8000) readv$auto(r2, &(0x7f0000000000)={0x0, 0xffff}, 0x200) write$auto_kernfs_file_fops_kernfs_internal(r0, 0x0, 0x0) mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/system/memory/memory0/phys_device\x00', 0x80000, 0x0) read$auto(r3, 0x0, 0x20) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0x2c, 0x3, 0x0) r4 = epoll_create$auto(0x3e) epoll_ctl$auto(r4, 0x1, 0x8000000000000000, 0x0) 402.971954ms ago: executing program 2 (id=3625): socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x8000000000000003, 0x40000000000eb1, 0xffffffffffffffff, 0x8000) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), 0xffffffffffffffff) mmap$auto(0x2, 0xaa06, 0xdf, 0xeb1, 0xffffffffffffffff, 0x2) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f0000000040), 0x18000, 0x0) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, 0x0, 0x42c883, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) write$auto(r1, &(0x7f0000000240)='/d\xfd\xff/audio\x9c\b\xfe\xb2u\xe6+.\x0f\xc3\x00', 0x100000a3d9) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) syz_clone3(&(0x7f0000000040)={0x8020000, 0x0, 0x0, 0x0, {0x29}, 0x0, 0x0, 0x0, &(0x7f00000000c0)=[0x0, 0x0, 0x0], 0x3}, 0x58) prctl$auto(0x1000000003b, 0x4, 0x0, 0x9, 0x7) setsockopt$auto_SO_TXTIME(r0, 0x2, 0x3d, &(0x7f0000000200)='/d\xfd\xff/audio\x9c\b\xfe\xb2u\xe6+.\x0f\xc3\x00', 0x8) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) io_getevents$auto(0x1, 0x1ff, 0x9, &(0x7f0000000080)={0xffffffff, 0xc, 0xffffffffffffffff, 0x9}, &(0x7f0000000180)={0x6}) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) writev$auto(0x3, 0x0, 0x8) getsockopt$auto(0xffffffffffffffff, 0x84, 0x1, 0x0, &(0x7f0000000000)=0x98) setsockopt$auto_SO_SELECT_ERR_QUEUE(0xffffffffffffffff, 0x9, 0x2d, &(0x7f00000001c0)='\xf0&}\\:-:b\x00', 0x3) r2 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) write$auto(r2, &(0x7f0000000040)='nbd\x00', 0x4) 223.160488ms ago: executing program 0 (id=3626): close_range$auto(0x0, 0xfffffffffffff000, 0x2) open(&(0x7f0000000800)='./file0\x00', 0x6041, 0x0) r0 = openat$auto_long_retry_limit_ops_(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/ieee80211/phy17/long_retry_limit\x00', 0xa8000, 0x0) ioctl$auto(0xffffffffffffffff, 0x10000, r0) r1 = syz_genetlink_get_family_id$auto_nfc(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$auto_NFC_CMD_DEACTIVATE_TARGET(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400002}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x34, r1, 0x1, 0x70bd2c, 0x25dfdbfb, {}, [@NFC_ATTR_FIRMWARE_NAME={0x7, 0x14, '&/('}, @NFC_ATTR_PROTOCOLS={0x8, 0x3, 0x9}, @NFC_ATTR_LLC_PARAM_LTO={0x5, 0xf, 0xd}, @NFC_ATTR_VENDOR_ID={0x8, 0x1d, 0x8e}]}, 0x34}, 0x1, 0x0, 0x0, 0x40000}, 0x28008001) read$auto_long_retry_limit_ops_(r0, &(0x7f00000001c0)=""/4096, 0x1000) setsockopt$auto(r0, 0x7ff, 0x5, &(0x7f00000011c0)='nfc\x00', 0x2) read$auto_long_retry_limit_ops_(r0, &(0x7f0000001540)=""/145, 0x91) r2 = openat$auto_ptdump_fops_(0xffffffffffffff9c, &(0x7f0000001600), 0x200, 0x0) close_range$auto(r2, r0, 0x8) r3 = fsmount$auto(r2, 0x10000, 0x40) sendmsg$auto_NFC_CMD_STOP_POLL(r3, &(0x7f00000017c0)={&(0x7f0000001700)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000001780)={&(0x7f0000001740)={0x24, r1, 0x2, 0x70bd26, 0x25dfdbff, {}, [@NFC_ATTR_PROTOCOLS={0x8, 0x3, 0x800000}, @NFC_ATTR_COMM_MODE={0x5, 0xa, 0x9}]}, 0x24}, 0x1, 0x0, 0x0, 0x20000000}, 0x24000000) r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000001840), r3) sendmsg$auto_NL80211_CMD_DISCONNECT(r3, &(0x7f0000001c80)={&(0x7f0000001800)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000001c40)={&(0x7f0000001880)={0x384, r4, 0x400, 0x70bd2c, 0x25dfdbfd, {}, [@NL80211_ATTR_FTM_RESPONDER={0x360, 0x10e, 0x0, 0x1, [@NL80211_FTM_RESP_ATTR_LCI={0x8c, 0x2, "0364d43867e7118692bac128e56a4ae7cbafe7cac7d8c3acb68866f43992772b8cbc57533e93bbe4548169838bd29d9b343e688ecb285903ca29684959140c7018c46e451ce1cca0e7e1be62ca293f2ff574217069ff38e09c11bac98371a1f94a4e96531e71937753a9c5dc07cd70e38a1e55d94fe408719d6c9100c35b6a10dd75a0b1044be0ed"}, @NL80211_FTM_RESP_ATTR_CIVICLOC={0xfe, 0x3, "c082ee79a317f6b6d347a3ea6681b305ad8f162ba5aa12eb589c036c7f2df1894755922cc857c4599a84639ba1bea154b0b5a6ab7277a06b4a3d4f39d1c874faae93695ec869db5e0e618a05f33c2dbda72df675d4fc21fe1bbb7a5732e7f1439843b32b84651cd7ecd79e42480cf5dd7d4af811be2ebb5c7d63430456099f031ef406cd712323c489c975afe7195885b72ea1c67ee10bce1e08fe1d9e6421b3e5a5bb06080190196c13ddef30302206e4a03b22c9dcc96969288805d18cea9c85b35aa9944a683e77c5aea47f07b9637e373801f737b48ee96e5d1a06d6d7e3f120e9e7dca23ed0c0c7a989c774f0e7ef7c24dae69ad27a1140"}, @NL80211_FTM_RESP_ATTR_LCI={0xbc, 0x2, "515699d92e0f2cc1f78233487646bc0ba10811835d48305e08fa2f7900c6fb3df746b1350808cd4588675063e7ec5d0c23f612ce81897cbedee9d862a6832a62d90834d41a2cc9f8c4535b841941e2609617b56188759de50edd07f4c1425bdb1ed9ef7794b4b6bbe75186f7708c06aebbd97b1b0959dc1f0ead27bdfbcc413ce3f2c8b04815d0610a32c9027a3e8bda84b8d3749199939687dffcd840dd253e55a8acbc730bf719d3e33501bb07c12b8c9aebff38f53c54"}, @NL80211_FTM_RESP_ATTR_ENABLED={0x4}, @NL80211_FTM_RESP_ATTR_CIVICLOC={0x3f, 0x3, "6f247e548fbbc63c729fe98793107b5beed13286d78aea52a02f2d1f02c8d0fb614571d55153984d026fae783c266f5e222441302c149a118b1c2e"}, @NL80211_FTM_RESP_ATTR_CIVICLOC={0x49, 0x3, "3ba8f42dbdfbcf4d7cbf9bb5bbfbaf14a2b6e5fd72b676b280c3797a829528cd6fc2c4b2eba1c0458b8d9acfa69c8021ee4d43573158d0e72b78d061b389fa192b70e99bbd"}, @NL80211_FTM_RESP_ATTR_CIVICLOC={0x3d, 0x3, "1ffb1a540aafe087c51402644e10bbcd583e48e488f94389a8c7efebf14a7e99897f0d52be53d0b3e8f9d45c41e8a1d2df62f36182a94ee55e"}, @NL80211_FTM_RESP_ATTR_LCI={0x44, 0x2, "51b4600db04303927775ed1e43e3813d50f0a7f4208dd23805fd855234ca7da8de7227b3942a151cf2ffa004deb71f511b0fe113f278190a0362ce9e7f16aab9"}]}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0xffffffff}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x2}]}, 0x384}, 0x1, 0x0, 0x0, 0x1}, 0x4400c005) r5 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000001d00), r3) sendmsg$auto_NL802154_CMD_GET_INTERFACE(r3, &(0x7f0000001f40)={&(0x7f0000001cc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001f00)={&(0x7f0000001d40)={0x184, r5, 0x200, 0x70bd2a, 0x25dfdbfe, {}, [@NL802154_ATTR_CCA_ED_LEVEL={0x8, 0xe, 0x5}, @NL802154_ATTR_MAX_BE={0x5, 0x10, 0x9c}, @NL802154_ATTR_SEC_OUT_LEVEL={0x8, 0x2a, 0x3}, @NL802154_ATTR_ACKREQ_DEFAULT={0x5, 0x1a, 0x2}, @NL802154_ATTR_MAX_BE={0x5, 0x10, 0x7}, @NL802154_ATTR_EXTENDED_ADDR={0xc, 0x17, 0xff}, @NL802154_ATTR_SEC_DEVKEY={0x13c, 0x2f, 0x0, 0x1, [@typed={0x4, 0xc1}, @typed={0x8, 0x0, 0x0, 0x0, @u32=0x9}, @typed={0x8, 0xbd, 0x0, 0x0, @u32=0x10001}, @nested={0xc, 0x13f, 0x0, 0x1, [@nested={0x4, 0xc7}, @nested={0x4, 0x41}]}, @generic="9147c6f2ce1e4dc306328526d7e6a4e01f792b8a50c6d66c9742b9aece08ae5f787db011f0cbb8ec4c799030be3677c04217b4b833f3dd0007ff3ee5af8b27fa17e2e33ecadf9cdb535dfc41bd89fa6a0a3b36cf410dcaa4fb9ad1203f570562ccec498bab9057f06d7ddc62e88c3e41596a9ad99a2f9b9e78f88cafc9d3357532beac6e5e0973d6e4b82bd8d3cb4045a4fa270ee3f8605fc7bc3b6a0c44349f67e6da16ae3f560c14a26a5ee510e890", @typed={0x66, 0x23, 0x0, 0x0, @binary="2d327022b56aad57754c4334f6ca05fd9089d0ba50837a866fb7d440948d31d5bd2493f1c69d48fad15faf15b12a5b6b4dcaeda9bdcc926ae7ec62d5ce0a7f7d55ef44802cb28b9e59b19a0fff9464553c8241f68818a62e2bfe070ac4fc9bc504e8"}]}]}, 0x184}, 0x1, 0x0, 0x0, 0x815}, 0x48800) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) bpf$auto(0x0, &(0x7f00000001c0)=@test={0xffffffffffffffff, 0xffff, 0xfffff0b6, 0xffff, 0x84, 0xac1, 0x2, 0x36242398, 0xfffff5b2, 0x3bb, 0x7, 0xffff, 0x6, 0x81, 0x68198}, 0x6f3) sendmsg$auto_ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000001700)={0x0, 0x0, &(0x7f00000016c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="d4000000", @ANYRES16=0x0, @ANYBLOB="100027bd7000fbdbdf2518000000200001800247eea41fac000014000200766574683100000000000000000000000800070063fbffff0500060001000000840002803d00488013b37090badc49d6dc93876646d25a4d297d01cd3b7da38d12889cc50d505f353dc42d0a3c0a14c7b46428910708003600", @ANYRES32=0x0, @ANYBLOB="0400b3800000003d003b800400a4800c009a00008000000000000004008680c16ab1b1b39dcaa14b6af7dcc011b43cf706e562811c62b28a702b72e0a87126700201000000000000000180080003"], 0xd4}, 0x1, 0x0, 0x0, 0x20000010}, 0x20008000) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) open(0x0, 0x22040, 0x75) r6 = socket(0x10, 0x2, 0x4) sendmsg$auto_ETHTOOL_MSG_WOL_SET(0xffffffffffffffff, &(0x7f0000002cc0)={0x0, 0x0, &(0x7f0000002c80)={&(0x7f0000000180)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYBLOB="010027bd"], 0x2c}, 0x1, 0x0, 0x0, 0x4801}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r6, &(0x7f0000000240)={0x0, 0xfffffffffffffea4, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="12"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/tty/ttyp9/power/runtime_suspended_time\x00', 0x80880, 0x0) ioctl$auto(0xffffffffffffffff, 0x540a, 0xffffffffffffffff) 133.180468ms ago: executing program 1 (id=3627): unshare$auto(0x40000080) mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) r0 = socket(0xa, 0x1, 0x100) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/net/bond0/bonding/primary_reselect\x00', 0x1e2142, 0x0) r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x42, 0x0) select$auto(0x800, 0x0, 0x0, &(0x7f0000000580)={[0xe83, 0x8, 0xfffffffffffffc01, 0x0, 0x1, 0x1, 0x14, 0x0, 0x5, 0x3fe, 0x2, 0x3, 0x3, 0x2, 0x3d]}, 0x0) sendmmsg$auto(r2, &(0x7f00000003c0)={{0x0, 0x8f, 0x0, 0x5, &(0x7f0000000380), 0x100, 0x8}, 0x1a}, 0x3, 0x6) write$auto(r2, 0x0, 0xa3d9) sendfile$auto(r1, r1, 0x0, 0x7fff) setsockopt$auto(0x400000000000003, 0x29, 0x1b, 0x0, 0x56b) ioctl$auto_SNDCTL_DSP_SPEED(0xffffffffffffffff, 0xc0045002, 0x0) r3 = socket(0x0, 0x3, 0x3c) unshare$auto(0x40000080) r4 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x42, 0x0) r5 = syz_genetlink_get_family_id$auto_nlctrl(0x0, 0xffffffffffffffff) sendmsg$auto_CTRL_CMD_GETPOLICY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000140)=ANY=[@ANYBLOB, @ANYRES8=r4, @ANYBLOB="4cb245054f86db27df250a000a"], 0xf8}, 0x1, 0x0, 0x0, 0x46080}, 0x1405805c) sendmsg$auto_CTRL_CMD_GETPOLICY(r0, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x64f4040a6ccda016}, 0xc, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="fffffffd", @ANYRES16=r5, @ANYRES8], 0x5c}, 0x1, 0x0, 0x0, 0x220088c0}, 0x40) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000004540), r6) sendmsg$auto_OVS_VPORT_CMD_DEL(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000340)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r7, @ANYBLOB="010027bd700001dcdf250200000004000a8008000800e9a7b53f2485f46ccc22485281dde61523d29a9daadfe1ffc2633166b9ab2a0db3d87a302b0f05d4b7b759e61a71ba00f76905e54cc089e6deb19ccfc5ab21d28953a4f578769b5053cceadc3ee714", @ANYRES32=0x0, @ANYBLOB], 0x20}, 0x1, 0x0, 0x0, 0x800}, 0x240400c0) openat$auto_urandom_fops_random(0xffffffffffffff9c, &(0x7f0000000000), 0x10902, 0x0) close_range$auto(0x2, 0x8, 0x0) syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x6) mmap$auto(0xfffffffffffffffc, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x2008000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0xffffffffffffffff, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) r8 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x2, 0x0) ioctl$auto(r8, 0x540c, 0xffffffffffffffff) 11.479729ms ago: executing program 0 (id=3628): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(r0, r0, 0x0) r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/video37\x00', 0xa200, 0x0) io_uring_setup$auto(0x1, 0x0) ioctl$auto(r1, 0xc0585611, r1) socket(0xa, 0x3, 0x3a) setsockopt$auto(0x400000000000003, 0x29, 0xc8, 0x0, 0x567) syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x3, 0x1ff, 0x1001, 0x5, 0x717e, 0x0, 0x7, 0x200000000000003, 0xd, 0x2, 0x80003, 0x4, 0x1ffffffffffd, 0xb4, 0xfffffffffffffffe, 0x7, 0x10002, 0x7f, 0x2a2, 0x2, 0xa, 0x22000, 0x200, 0x4, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000000000]}, 0x1fe, 0xd) r2 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f00000003c0), 0x1541, 0x0) ioctl$auto__ctl_fops_dm_ioctl(r2, 0xfffffffffffffd03, &(0x7f00000001c0)) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x8) openat$auto_proc_gid_map_operations_base(0xffffffffffffff9c, 0x0, 0x0, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) r3 = socket$nl_generic(0x10, 0x3, 0x10) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x13, 0x940, 0x1ffe0, 0x3, 0x6, 0x2, 0x9, 0x5, 0x2, 0x7, 0xb0, 0x9, 0x5, 0x3, 0x5, 0x7}, 0x1fe, 0x81) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000003b40)={'veth0_to_hsr\x00', 0x0}) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYRES16=r4], 0x1ac}}, 0x40001) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) setpriority$auto(0x4000000001, 0x100000001, 0x6) openat$auto_wakeup_sources_stats_fops_wakeup(0xffffffffffffff9c, &(0x7f0000000400), 0x8000, 0x0) mmap$auto(0x2000000, 0x400008, 0xdf, 0x9b72, 0x100000000002, 0x8000) pidfd_send_signal$auto_PIDFD_SELF_THREAD(0xffffffffffffd8f0, 0x7, 0x0, 0x0) 0s ago: executing program 3 (id=3629): socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x8000000000000003, 0x40000000000eb1, 0xffffffffffffffff, 0x8000) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), 0xffffffffffffffff) mmap$auto(0x2, 0xaa06, 0xdf, 0xeb1, 0xffffffffffffffff, 0x2) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f0000000040), 0x18000, 0x0) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, 0x0, 0x42c883, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) write$auto(r1, &(0x7f0000000240)='/d\xfd\xff/audio\x9c\b\xfe\xb2u\xe6+.\x0f\xc3\x00', 0x100000a3d9) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) syz_clone3(&(0x7f0000000040)={0x8020000, 0x0, 0x0, 0x0, {0x29}, 0x0, 0x0, 0x0, &(0x7f00000000c0)=[0x0, 0x0, 0x0], 0x3}, 0x58) prctl$auto(0x1000000003b, 0x4, 0x0, 0x9, 0x7) setsockopt$auto_SO_TXTIME(r0, 0x2, 0x3d, &(0x7f0000000200)='/d\xfd\xff/audio\x9c\b\xfe\xb2u\xe6+.\x0f\xc3\x00', 0x8) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) io_getevents$auto(0x1, 0x1ff, 0x9, &(0x7f0000000080)={0xffffffff, 0xc, 0xffffffffffffffff, 0x9}, &(0x7f0000000180)={0x6}) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) writev$auto(0x3, 0x0, 0x8) getsockopt$auto(0xffffffffffffffff, 0x84, 0x1, 0x0, &(0x7f0000000000)=0x98) setsockopt$auto_SO_SELECT_ERR_QUEUE(0xffffffffffffffff, 0x9, 0x2d, &(0x7f00000001c0)='\xf0&}\\:-:b\x00', 0x3) r2 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) write$auto(r2, &(0x7f0000000040)='nbd\x00', 0x4) (fail_nth: 3) kernel console output (not intermixed with test programs): , probability 0, space 0, times 0 [ 1848.947705][T26588] CPU: 0 UID: 0 PID: 26588 Comm: syz.1.3243 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) [ 1848.947748][T26588] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1848.947764][T26588] Call Trace: [ 1848.947773][T26588] [ 1848.947783][T26588] dump_stack_lvl+0x16c/0x1f0 [ 1848.947837][T26588] should_fail_ex+0x512/0x640 [ 1848.947880][T26588] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 1848.947925][T26588] should_failslab+0xc2/0x120 [ 1848.947954][T26588] __kmalloc_cache_noprof+0x6a/0x3e0 [ 1848.947997][T26588] ? madvise_collapse+0x1cb/0xb20 [ 1848.948037][T26588] madvise_collapse+0x1cb/0xb20 [ 1848.948074][T26588] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 1848.948112][T26588] ? is_bpf_text_address+0x94/0x1a0 [ 1848.948159][T26588] ? __pfx_madvise_collapse+0x10/0x10 [ 1848.948199][T26588] ? mtree_range_walk+0x718/0xc00 [ 1848.948250][T26588] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1848.948298][T26588] madvise_vma_behavior+0x118d/0x2420 [ 1848.948327][T26588] ? mas_prev_setup.constprop.0+0x81/0x830 [ 1848.948368][T26588] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 1848.948398][T26588] ? __pfx_mas_prev+0x10/0x10 [ 1848.948445][T26588] ? find_vma_prev+0xda/0x160 [ 1848.948475][T26588] ? __pfx_find_vma_prev+0x10/0x10 [ 1848.948522][T26588] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 1848.948549][T26588] madvise_walk_vmas+0x1d1/0x2c0 [ 1848.948577][T26588] ? __pfx_madvise_walk_vmas+0x10/0x10 [ 1848.948612][T26588] madvise_do_behavior+0x15d/0x3f0 [ 1848.948644][T26588] ? __pfx_madvise_do_behavior+0x10/0x10 [ 1848.948692][T26588] do_madvise+0x161/0x230 [ 1848.948720][T26588] ? __pfx_do_madvise+0x10/0x10 [ 1848.948762][T26588] ? ksys_write+0x1ac/0x250 [ 1848.948800][T26588] ? __pfx_ksys_write+0x10/0x10 [ 1848.948843][T26588] __x64_sys_madvise+0xa9/0x110 [ 1848.948883][T26588] ? lockdep_hardirqs_on+0x7c/0x110 [ 1848.948919][T26588] do_syscall_64+0xcd/0x490 [ 1848.948961][T26588] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1848.948988][T26588] RIP: 0033:0x7fde0038e929 [ 1848.949009][T26588] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1848.949033][T26588] RSP: 002b:00007fde01258038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 1848.949057][T26588] RAX: ffffffffffffffda RBX: 00007fde005b6080 RCX: 00007fde0038e929 [ 1848.949074][T26588] RDX: 0000000000000019 RSI: 0000000000200007 RDI: 0000000000000000 [ 1848.949089][T26588] RBP: 00007fde01258090 R08: 0000000000000000 R09: 0000000000000000 [ 1848.949105][T26588] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1848.949120][T26588] R13: 0000000000000000 R14: 00007fde005b6080 R15: 00007ffdab121ba8 [ 1848.949152][T26588] [ 1850.078965][T26596] FAULT_INJECTION: forcing a failure. [ 1850.078965][T26596] name failslab, interval 1, probability 0, space 0, times 0 [ 1850.118318][T26596] CPU: 0 UID: 0 PID: 26596 Comm: syz.0.3245 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) [ 1850.118364][T26596] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1850.118386][T26596] Call Trace: [ 1850.118398][T26596] [ 1850.118411][T26596] dump_stack_lvl+0x16c/0x1f0 [ 1850.118469][T26596] should_fail_ex+0x512/0x640 [ 1850.118517][T26596] ? __kmalloc_noprof+0xbf/0x510 [ 1850.118569][T26596] ? ring_buffer_read_prepare+0x171/0x320 [ 1850.118608][T26596] should_failslab+0xc2/0x120 [ 1850.118640][T26596] __kmalloc_noprof+0xd2/0x510 [ 1850.118692][T26596] ? kasan_save_track+0x14/0x30 [ 1850.118745][T26596] ring_buffer_read_prepare+0x171/0x320 [ 1850.118790][T26596] tracing_open+0x925/0xf90 [ 1850.118835][T26596] do_dentry_open+0x744/0x1c10 [ 1850.118884][T26596] ? __pfx_tracing_open+0x10/0x10 [ 1850.118927][T26596] vfs_open+0x82/0x3f0 [ 1850.118967][T26596] path_openat+0x1de4/0x2cb0 [ 1850.119024][T26596] ? __pfx_path_openat+0x10/0x10 [ 1850.119068][T26596] ? __lock_acquire+0xb8a/0x1c90 [ 1850.119109][T26596] do_filp_open+0x20b/0x470 [ 1850.119150][T26596] ? __pfx_do_filp_open+0x10/0x10 [ 1850.119215][T26596] ? alloc_fd+0x471/0x7d0 [ 1850.119261][T26596] do_sys_openat2+0x11b/0x1d0 [ 1850.119291][T26596] ? __pfx_do_sys_openat2+0x10/0x10 [ 1850.119323][T26596] ? __sys_sendmsg+0x18c/0x220 [ 1850.119373][T26596] __x64_sys_openat+0x174/0x210 [ 1850.119404][T26596] ? __pfx___x64_sys_openat+0x10/0x10 [ 1850.119449][T26596] do_syscall_64+0xcd/0x490 [ 1850.119494][T26596] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1850.119522][T26596] RIP: 0033:0x7f1b2f58e929 [ 1850.119544][T26596] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1850.119571][T26596] RSP: 002b:00007f1b30395038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1850.119598][T26596] RAX: ffffffffffffffda RBX: 00007f1b2f7b6080 RCX: 00007f1b2f58e929 [ 1850.119616][T26596] RDX: 0000000000000600 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 1850.119635][T26596] RBP: 00007f1b2f610b39 R08: 0000000000000000 R09: 0000000000000000 [ 1850.119652][T26596] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1850.119668][T26596] R13: 0000000000000000 R14: 00007f1b2f7b6080 R15: 00007fffd856e4f8 [ 1850.119701][T26596] [ 1850.673181][T26594] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888078008000 pfn:0x78008 [ 1850.673250][T26594] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 1850.673270][T26594] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 1850.673302][T26594] raw: 00fff00000000040 0000000000000000 dead000000000122 0000000000000000 [ 1850.673326][T26594] raw: ffff888078008000 0000000000000000 00000001ffffffff 0000000000000000 [ 1850.673349][T26594] head: 00fff00000000040 0000000000000000 dead000000000122 0000000000000000 [ 1850.673372][T26594] head: ffff888078008000 0000000000000000 00000001ffffffff 0000000000000000 [ 1850.673395][T26594] head: 00fff00000000003 ffffea0001e00201 00000000ffffffff 00000000ffffffff [ 1850.673418][T26594] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008 [ 1850.673433][T26594] page dumped because: unmovable page [ 1850.673449][T26594] page_owner tracks the page as allocated [ 1850.673486][T26594] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x528c0(GFP_NOWAIT|__GFP_IO|__GFP_FS|__GFP_NORETRY|__GFP_COMP), pid 26576, tgid 26564 (syz.2.3239), ts 1848525497082, free_ts 1841912478842 [ 1850.673528][T26594] post_alloc_hook+0x1c0/0x230 [ 1850.673562][T26594] get_page_from_freelist+0x1321/0x3890 [ 1850.673596][T26594] __alloc_frozen_pages_noprof+0x261/0x23f0 [ 1850.673632][T26594] alloc_pages_mpol+0x1fb/0x550 [ 1850.673652][T26594] alloc_pages_noprof+0x131/0x390 [ 1850.673673][T26594] skb_page_frag_refill+0x186/0x5a0 [ 1850.673699][T26594] mptcp_sendmsg+0x763/0x1eb0 [ 1850.673741][T26594] inet_sendmsg+0x11c/0x140 [ 1850.673774][T26594] sock_write_iter+0x4aa/0x5b0 [ 1850.673804][T26594] vfs_write+0x6c4/0x1150 [ 1850.673848][T26594] ksys_write+0x1f8/0x250 [ 1850.673887][T26594] do_syscall_64+0xcd/0x490 [ 1850.673923][T26594] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1850.673948][T26594] page last free pid 26491 tgid 26484 stack trace: [ 1850.673962][T26594] __free_frozen_pages+0x7fe/0x1180 [ 1850.673993][T26594] __folio_put+0x329/0x450 [ 1850.674028][T26594] skb_release_data+0x7fb/0x9c0 [ 1850.674063][T26594] __kfree_skb+0x4f/0x70 [ 1850.674083][T26594] mptcp_recvmsg+0x101d/0x2230 [ 1850.674115][T26594] inet_recvmsg+0x46f/0x6a0 [ 1850.674147][T26594] sock_recvmsg+0x1b2/0x250 [ 1850.674176][T26594] __sys_recvfrom+0x203/0x310 [ 1850.674217][T26594] __x64_sys_recvfrom+0xe0/0x1c0 [ 1850.674249][T26594] do_syscall_64+0xcd/0x490 [ 1850.674284][T26594] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1851.177080][ C1] vkms_vblank_simulate: vblank timer overrun [ 1852.567573][T26632] FAULT_INJECTION: forcing a failure. [ 1852.567573][T26632] name failslab, interval 1, probability 0, space 0, times 0 [ 1852.608105][T26632] CPU: 1 UID: 0 PID: 26632 Comm: syz.3.3250 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) [ 1852.608147][T26632] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1852.608166][T26632] Call Trace: [ 1852.608177][T26632] [ 1852.608189][T26632] dump_stack_lvl+0x16c/0x1f0 [ 1852.608242][T26632] should_fail_ex+0x512/0x640 [ 1852.608284][T26632] ? __kmalloc_noprof+0xbf/0x510 [ 1852.608330][T26632] ? trace_parser_get_init+0x30/0xc0 [ 1852.608387][T26632] should_failslab+0xc2/0x120 [ 1852.608418][T26632] __kmalloc_noprof+0xd2/0x510 [ 1852.608462][T26632] ? __lock_acquire+0xb8a/0x1c90 [ 1852.608513][T26632] trace_parser_get_init+0x30/0xc0 [ 1852.608565][T26632] ftrace_event_write+0x177/0x290 [ 1852.608599][T26632] ? __pfx_ftrace_event_write+0x10/0x10 [ 1852.608647][T26632] ? __pfx_ftrace_event_write+0x10/0x10 [ 1852.608678][T26632] vfs_write+0x29d/0x1150 [ 1852.608731][T26632] ? __pfx___mutex_lock+0x10/0x10 [ 1852.608783][T26632] ? __pfx_vfs_write+0x10/0x10 [ 1852.608840][T26632] ? __fget_files+0x20e/0x3c0 [ 1852.608897][T26632] ksys_write+0x12a/0x250 [ 1852.608951][T26632] ? __pfx_ksys_write+0x10/0x10 [ 1852.609009][T26632] do_syscall_64+0xcd/0x490 [ 1852.609064][T26632] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1852.609098][T26632] RIP: 0033:0x7f0dcf78e929 [ 1852.609123][T26632] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1852.609154][T26632] RSP: 002b:00007f0dd060d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1852.609184][T26632] RAX: ffffffffffffffda RBX: 00007f0dcf9b6160 RCX: 00007f0dcf78e929 [ 1852.609204][T26632] RDX: 0000000000000004 RSI: 0000200000000040 RDI: 0000000000000007 [ 1852.609222][T26632] RBP: 00007f0dd060d090 R08: 0000000000000000 R09: 0000000000000000 [ 1852.609240][T26632] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1852.609257][T26632] R13: 0000000000000000 R14: 00007f0dcf9b6160 R15: 00007ffd70d3da38 [ 1852.609298][T26632] [ 1852.813810][ C1] vkms_vblank_simulate: vblank timer overrun [ 1853.173899][T26638] FAULT_INJECTION: forcing a failure. [ 1853.173899][T26638] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1853.267778][T26638] CPU: 0 UID: 0 PID: 26638 Comm: syz.3.3253 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) [ 1853.267809][T26638] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1853.267829][T26638] Call Trace: [ 1853.267839][T26638] [ 1853.267850][T26638] dump_stack_lvl+0x16c/0x1f0 [ 1853.267898][T26638] should_fail_ex+0x512/0x640 [ 1853.267947][T26638] _copy_from_iter+0x29f/0x16f0 [ 1853.267990][T26638] ? __pfx__copy_from_iter+0x10/0x10 [ 1853.268024][T26638] ? rcu_is_watching+0x12/0xc0 [ 1853.268046][T26638] ? trace_kmalloc+0x2b/0xd0 [ 1853.268066][T26638] ? __kmalloc_noprof+0x242/0x510 [ 1853.268103][T26638] kernfs_fop_write_iter+0x19a/0x510 [ 1853.268130][T26638] vfs_write+0x6c4/0x1150 [ 1853.268161][T26638] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 1853.268185][T26638] ? __pfx___mutex_lock+0x10/0x10 [ 1853.268225][T26638] ? __pfx_vfs_write+0x10/0x10 [ 1853.268272][T26638] ksys_write+0x12a/0x250 [ 1853.268302][T26638] ? __pfx_ksys_write+0x10/0x10 [ 1853.268342][T26638] do_syscall_64+0xcd/0x490 [ 1853.268378][T26638] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1853.268399][T26638] RIP: 0033:0x7f0dcf78e929 [ 1853.268417][T26638] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1853.268438][T26638] RSP: 002b:00007f0dd064f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1853.268457][T26638] RAX: ffffffffffffffda RBX: 00007f0dcf9b5fa0 RCX: 00007f0dcf78e929 [ 1853.268472][T26638] RDX: 0000000000000b74 RSI: 0000200000000000 RDI: 0000000000000003 [ 1853.268485][T26638] RBP: 00007f0dd064f090 R08: 0000000000000000 R09: 0000000000000000 [ 1853.268503][T26638] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1853.268517][T26638] R13: 0000000000000000 R14: 00007f0dcf9b5fa0 R15: 00007ffd70d3da38 [ 1853.268544][T26638] [ 1853.677265][T26642] FAULT_INJECTION: forcing a failure. [ 1853.677265][T26642] name failslab, interval 1, probability 0, space 0, times 0 [ 1853.690661][T26642] CPU: 1 UID: 0 PID: 26642 Comm: syz.1.3255 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) [ 1853.690701][T26642] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1853.690728][T26642] Call Trace: [ 1853.690738][T26642] [ 1853.690750][T26642] dump_stack_lvl+0x16c/0x1f0 [ 1853.690802][T26642] should_fail_ex+0x512/0x640 [ 1853.690846][T26642] ? fs_reclaim_acquire+0xae/0x150 [ 1853.690887][T26642] ? tomoyo_encode2+0x100/0x3e0 [ 1853.690929][T26642] should_failslab+0xc2/0x120 [ 1853.690960][T26642] __kmalloc_noprof+0xd2/0x510 [ 1853.691006][T26642] ? d_absolute_path+0x136/0x1a0 [ 1853.691045][T26642] tomoyo_encode2+0x100/0x3e0 [ 1853.691094][T26642] tomoyo_encode+0x29/0x50 [ 1853.691135][T26642] tomoyo_realpath_from_path+0x18f/0x6e0 [ 1853.691192][T26642] tomoyo_path_number_perm+0x245/0x580 [ 1853.691228][T26642] ? tomoyo_path_number_perm+0x237/0x580 [ 1853.691270][T26642] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 1853.691310][T26642] ? find_held_lock+0x2b/0x80 [ 1853.691378][T26642] ? find_held_lock+0x2b/0x80 [ 1853.691407][T26642] ? hook_file_ioctl_common+0x145/0x410 [ 1853.691451][T26642] ? __fget_files+0x20e/0x3c0 [ 1853.691501][T26642] security_file_ioctl+0x9b/0x240 [ 1853.691543][T26642] __x64_sys_ioctl+0xb7/0x210 [ 1853.691584][T26642] do_syscall_64+0xcd/0x490 [ 1853.691637][T26642] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1853.691670][T26642] RIP: 0033:0x7fde0038e929 [ 1853.691695][T26642] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1853.691732][T26642] RSP: 002b:00007fde01279038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1853.691780][T26642] RAX: ffffffffffffffda RBX: 00007fde005b5fa0 RCX: 00007fde0038e929 [ 1853.691802][T26642] RDX: 0000000001000000 RSI: 000000000000125f RDI: 0000000000000003 [ 1853.691822][T26642] RBP: 00007fde01279090 R08: 0000000000000000 R09: 0000000000000000 [ 1853.691843][T26642] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1853.691863][T26642] R13: 0000000000000000 R14: 00007fde005b5fa0 R15: 00007ffdab121ba8 [ 1853.691906][T26642] [ 1853.691932][T26642] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1854.144098][T26651] kafs: addr_prefs: Invalid Command [ 1854.488961][T26658] FAULT_INJECTION: forcing a failure. [ 1854.488961][T26658] name failslab, interval 1, probability 0, space 0, times 0 [ 1854.569074][T26658] CPU: 0 UID: 0 PID: 26658 Comm: syz.2.3259 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) [ 1854.569119][T26658] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1854.569138][T26658] Call Trace: [ 1854.569149][T26658] [ 1854.569162][T26658] dump_stack_lvl+0x16c/0x1f0 [ 1854.569216][T26658] should_fail_ex+0x512/0x640 [ 1854.569262][T26658] ? fs_reclaim_acquire+0xae/0x150 [ 1854.569303][T26658] ? tomoyo_encode2+0x100/0x3e0 [ 1854.569344][T26658] should_failslab+0xc2/0x120 [ 1854.569375][T26658] __kmalloc_noprof+0xd2/0x510 [ 1854.569424][T26658] ? d_absolute_path+0x136/0x1a0 [ 1854.569465][T26658] tomoyo_encode2+0x100/0x3e0 [ 1854.569584][T26658] tomoyo_encode+0x29/0x50 [ 1854.569632][T26658] tomoyo_realpath_from_path+0x18f/0x6e0 [ 1854.569704][T26658] tomoyo_path_number_perm+0x245/0x580 [ 1854.569745][T26658] ? tomoyo_path_number_perm+0x237/0x580 [ 1854.569789][T26658] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 1854.569836][T26658] ? find_held_lock+0x2b/0x80 [ 1854.569922][T26658] ? find_held_lock+0x2b/0x80 [ 1854.569958][T26658] ? hook_file_ioctl_common+0x145/0x410 [ 1854.570006][T26658] ? __fget_files+0x20e/0x3c0 [ 1854.570064][T26658] security_file_ioctl+0x9b/0x240 [ 1854.570111][T26658] __x64_sys_ioctl+0xb7/0x210 [ 1854.570158][T26658] do_syscall_64+0xcd/0x490 [ 1854.570219][T26658] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1854.570258][T26658] RIP: 0033:0x7fc25718e929 [ 1854.570287][T26658] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1854.570323][T26658] RSP: 002b:00007fc257f88038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1854.570358][T26658] RAX: ffffffffffffffda RBX: 00007fc2573b5fa0 RCX: 00007fc25718e929 [ 1854.570408][T26658] RDX: 0000000000000000 RSI: 0000000000005425 RDI: 0000000000000003 [ 1854.570431][T26658] RBP: 00007fc257f88090 R08: 0000000000000000 R09: 0000000000000000 [ 1854.570456][T26658] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1854.570479][T26658] R13: 0000000000000000 R14: 00007fc2573b5fa0 R15: 00007fff49d30318 [ 1854.570529][T26658] [ 1854.570560][T26658] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1855.921372][T26689] ecryptfs_parse_packet_length: Error parsing packet length [ 1855.943298][T26689] ecryptfs_miscdev_write: Error parsing packet length; rc = [-22] [ 1856.400490][T26687] random: crng reseeded on system resumption [ 1856.743886][T26708] Unrecognized hibernate image header format! [ 1856.754650][T26708] PM: hibernation: Image mismatch: architecture specific data [ 1857.968809][T26728] FAULT_INJECTION: forcing a failure. [ 1857.968809][T26728] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1858.036381][T26728] CPU: 1 UID: 0 PID: 26728 Comm: syz.0.3273 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) [ 1858.036413][T26728] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1858.036428][T26728] Call Trace: [ 1858.036435][T26728] [ 1858.036445][T26728] dump_stack_lvl+0x16c/0x1f0 [ 1858.036484][T26728] should_fail_ex+0x512/0x640 [ 1858.036522][T26728] _copy_from_user+0x2e/0xd0 [ 1858.036559][T26728] sctp_setsockopt+0x2045/0xb870 [ 1858.036595][T26728] ? __pfx_sctp_setsockopt+0x10/0x10 [ 1858.036623][T26728] ? __pfx_aa_sk_perm+0x10/0x10 [ 1858.036654][T26728] ? sock_common_setsockopt+0x2e/0xf0 [ 1858.036680][T26728] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 1858.036705][T26728] do_sock_setsockopt+0x221/0x470 [ 1858.036728][T26728] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 1858.036768][T26728] __sys_setsockopt+0x120/0x1a0 [ 1858.036806][T26728] __x64_sys_setsockopt+0xbd/0x160 [ 1858.036838][T26728] ? do_syscall_64+0x91/0x490 [ 1858.036873][T26728] ? lockdep_hardirqs_on+0x7c/0x110 [ 1858.036906][T26728] do_syscall_64+0xcd/0x490 [ 1858.036943][T26728] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1858.036967][T26728] RIP: 0033:0x7f1b2f58e929 [ 1858.036985][T26728] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1858.037008][T26728] RSP: 002b:00007f1b303b6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 1858.037030][T26728] RAX: ffffffffffffffda RBX: 00007f1b2f7b5fa0 RCX: 00007f1b2f58e929 [ 1858.037045][T26728] RDX: 0000000000000081 RSI: 0000010000000084 RDI: 0000000000000003 [ 1858.037060][T26728] RBP: 00007f1b303b6090 R08: 0000000000000008 R09: 0000000000000000 [ 1858.037074][T26728] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1858.037087][T26728] R13: 0000000000000000 R14: 00007f1b2f7b5fa0 R15: 00007fffd856e4f8 [ 1858.037116][T26728] [ 1858.220817][ C1] vkms_vblank_simulate: vblank timer overrun [ 1859.612708][T26747] ecryptfs_parse_packet_length: Error parsing packet length [ 1859.620248][T26747] ecryptfs_miscdev_write: Error parsing packet length; rc = [-22] [ 1859.745295][T26754] FAULT_INJECTION: forcing a failure. [ 1859.745295][T26754] name failslab, interval 1, probability 0, space 0, times 0 [ 1859.767380][T26754] CPU: 1 UID: 0 PID: 26754 Comm: syz.3.3280 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) [ 1859.767429][T26754] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1859.767451][T26754] Call Trace: [ 1859.767462][T26754] [ 1859.767476][T26754] dump_stack_lvl+0x16c/0x1f0 [ 1859.767535][T26754] should_fail_ex+0x512/0x640 [ 1859.767584][T26754] ? __kvmalloc_node_noprof+0x124/0x620 [ 1859.767638][T26754] should_failslab+0xc2/0x120 [ 1859.767670][T26754] __kvmalloc_node_noprof+0x137/0x620 [ 1859.767722][T26754] ? v4l2_ctrl_new+0x97d/0x2180 [ 1859.767771][T26754] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1859.767833][T26754] ? v4l2_ctrl_new+0x97d/0x2180 [ 1859.767881][T26754] v4l2_ctrl_new+0x97d/0x2180 [ 1859.767947][T26754] ? __pfx_v4l2_ctrl_new+0x10/0x10 [ 1859.767995][T26754] ? __pfx_v4l2_ctrl_new+0x10/0x10 [ 1859.768059][T26754] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1859.768116][T26754] v4l2_ctrl_new_std+0x1be/0x290 [ 1859.768183][T26754] ? __pfx_v4l2_ctrl_new_std+0x10/0x10 [ 1859.768234][T26754] ? __pfx_v4l2_ctrl_new_std+0x10/0x10 [ 1859.768300][T26754] ? rcu_is_watching+0x12/0xc0 [ 1859.768335][T26754] ? trace_kmalloc+0x2b/0xd0 [ 1859.768367][T26754] ? __kvmalloc_node_noprof+0x298/0x620 [ 1859.768428][T26754] ? media_request_object_init+0x100/0x180 [ 1859.768477][T26754] vicodec_open+0x1f7/0xf90 [ 1859.768533][T26754] v4l2_open+0x225/0x490 [ 1859.768579][T26754] ? __pfx_v4l2_open+0x10/0x10 [ 1859.768623][T26754] chrdev_open+0x231/0x6a0 [ 1859.768676][T26754] ? __pfx_apparmor_file_open+0x10/0x10 [ 1859.768720][T26754] ? __pfx_chrdev_open+0x10/0x10 [ 1859.768777][T26754] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 1859.768830][T26754] do_dentry_open+0x744/0x1c10 [ 1859.768882][T26754] ? __pfx_chrdev_open+0x10/0x10 [ 1859.768943][T26754] vfs_open+0x82/0x3f0 [ 1859.768985][T26754] path_openat+0x1de4/0x2cb0 [ 1859.769049][T26754] ? __pfx_path_openat+0x10/0x10 [ 1859.769102][T26754] ? __lock_acquire+0xb8a/0x1c90 [ 1859.769152][T26754] do_filp_open+0x20b/0x470 [ 1859.769203][T26754] ? __pfx_do_filp_open+0x10/0x10 [ 1859.769289][T26754] ? alloc_fd+0x471/0x7d0 [ 1859.769348][T26754] do_sys_openat2+0x11b/0x1d0 [ 1859.769385][T26754] ? __pfx_do_sys_openat2+0x10/0x10 [ 1859.769440][T26754] __x64_sys_openat+0x174/0x210 [ 1859.769480][T26754] ? __pfx___x64_sys_openat+0x10/0x10 [ 1859.769538][T26754] do_syscall_64+0xcd/0x490 [ 1859.769591][T26754] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1859.769627][T26754] RIP: 0033:0x7f0dcf78e929 [ 1859.769654][T26754] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1859.769688][T26754] RSP: 002b:00007f0dd062e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1859.769720][T26754] RAX: ffffffffffffffda RBX: 00007f0dcf9b6080 RCX: 00007f0dcf78e929 [ 1859.769744][T26754] RDX: 00000000000c4400 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 1859.769768][T26754] RBP: 00007f0dcf810b39 R08: 0000000000000000 R09: 0000000000000000 [ 1859.769789][T26754] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1859.769809][T26754] R13: 0000000000000000 R14: 00007f0dcf9b6080 R15: 00007ffd70d3da38 [ 1859.769853][T26754] [ 1860.077915][ C1] vkms_vblank_simulate: vblank timer overrun [ 1861.059459][T26766] FAULT_INJECTION: forcing a failure. [ 1861.059459][T26766] name failslab, interval 1, probability 0, space 0, times 0 [ 1861.073870][T26766] CPU: 1 UID: 0 PID: 26766 Comm: syz.2.3282 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) [ 1861.073920][T26766] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1861.073934][T26766] Call Trace: [ 1861.073942][T26766] [ 1861.073951][T26766] dump_stack_lvl+0x16c/0x1f0 [ 1861.073991][T26766] should_fail_ex+0x512/0x640 [ 1861.074024][T26766] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 1861.074063][T26766] should_failslab+0xc2/0x120 [ 1861.074084][T26766] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 1861.074120][T26766] ? sock_alloc_inode+0x25/0x1c0 [ 1861.074147][T26766] ? __pfx_sock_alloc_inode+0x10/0x10 [ 1861.074170][T26766] sock_alloc_inode+0x25/0x1c0 [ 1861.074193][T26766] alloc_inode+0x64/0x240 [ 1861.074216][T26766] sock_alloc+0x40/0x280 [ 1861.074238][T26766] __sock_create+0xc1/0x8d0 [ 1861.074270][T26766] __sys_socket+0x14d/0x260 [ 1861.074297][T26766] ? __pfx___sys_socket+0x10/0x10 [ 1861.074326][T26766] ? do_user_addr_fault+0x843/0x1370 [ 1861.074362][T26766] __x64_sys_socket+0x72/0xb0 [ 1861.074388][T26766] ? lockdep_hardirqs_on+0x7c/0x110 [ 1861.074422][T26766] do_syscall_64+0xcd/0x490 [ 1861.074459][T26766] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1861.074482][T26766] RIP: 0033:0x7fc257190847 [ 1861.074501][T26766] Code: f0 ff ff 77 06 c3 0f 1f 44 00 00 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1861.074524][T26766] RSP: 002b:00007fc257f65fa8 EFLAGS: 00000286 ORIG_RAX: 0000000000000029 [ 1861.074546][T26766] RAX: ffffffffffffffda RBX: 00007fc2573b6080 RCX: 00007fc257190847 [ 1861.074561][T26766] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 1861.074575][T26766] RBP: 00000000ffffffff R08: 0000000000000000 R09: 0000000000000000 [ 1861.074589][T26766] R10: 0000000000000000 R11: 0000000000000286 R12: 0000000000000001 [ 1861.074603][T26766] R13: 0000000000000000 R14: 00007fc2573b6080 R15: 00007fff49d30318 [ 1861.074631][T26766] [ 1861.074642][T26766] socket: no more sockets [ 1862.503215][T26784] netlink: 'syz.1.3286': attribute type 2 has an invalid length. [ 1863.424137][ T1305] ieee802154 phy0 wpan0: encryption failed: -22 [ 1863.437969][ T1305] ieee802154 phy1 wpan1: encryption failed: -22 [ 1863.702476][ T49] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm kworker/u8:3: bg 3: bad block bitmap checksum [ 1863.748250][ T49] EXT4-fs (sda1): Delayed block allocation failed for inode 2029 at logical offset 3191 with max blocks 272 with error 74 [ 1863.767930][ T49] EXT4-fs (sda1): This should not happen!! Data will be lost [ 1863.767930][ T49] [ 1863.841732][ T49] EXT4-fs (sda1): Delayed block allocation failed for inode 2027 at logical offset 3292 with max blocks 9 with error 117 [ 1863.877920][ T49] EXT4-fs (sda1): This should not happen!! Data will be lost [ 1863.877920][ T49] [ 1864.095420][T26817] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3290'. [ 1864.892926][T26814] netlink: 338 bytes leftover after parsing attributes in process `syz.1.3291'. [ 1864.913399][T26803] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 1865.645292][T26837] ecryptfs_parse_packet_length: Error parsing packet length [ 1865.681212][T26837] ecryptfs_miscdev_write: Error parsing packet length; rc = [-22] [ 1870.335366][T26912] ecryptfs_parse_packet_length: Error parsing packet length [ 1870.345238][T26912] ecryptfs_miscdev_write: Error parsing packet length; rc = [-22] [ 1870.836436][T26922] FAULT_INJECTION: forcing a failure. [ 1870.836436][T26922] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1870.877685][T26922] CPU: 0 UID: 0 PID: 26922 Comm: syz.3.3309 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) [ 1870.877726][T26922] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1870.877745][T26922] Call Trace: [ 1870.877754][T26922] [ 1870.877766][T26922] dump_stack_lvl+0x16c/0x1f0 [ 1870.877824][T26922] should_fail_ex+0x512/0x640 [ 1870.877874][T26922] _copy_from_user+0x2e/0xd0 [ 1870.877924][T26922] snd_seq_oss_write+0x397/0x7d0 [ 1870.877979][T26922] ? __pfx_snd_seq_oss_write+0x10/0x10 [ 1870.878025][T26922] ? apparmor_file_permission+0x251/0x400 [ 1870.878062][T26922] ? bpf_lsm_file_permission+0x9/0x10 [ 1870.878100][T26922] ? __pfx_odev_write+0x10/0x10 [ 1870.878126][T26922] odev_write+0x51/0xa0 [ 1870.878155][T26922] vfs_write+0x29d/0x1150 [ 1870.878208][T26922] ? __pfx_vfs_write+0x10/0x10 [ 1870.878350][T26922] ? find_held_lock+0x2b/0x80 [ 1870.878376][T26922] ? __fget_files+0x204/0x3c0 [ 1870.878411][T26922] ? __fget_files+0x20e/0x3c0 [ 1870.878449][T26922] ksys_write+0x12a/0x250 [ 1870.878482][T26922] ? __pfx_ksys_write+0x10/0x10 [ 1870.878522][T26922] do_syscall_64+0xcd/0x490 [ 1870.878560][T26922] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1870.878584][T26922] RIP: 0033:0x7f0dcf78e929 [ 1870.878602][T26922] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1870.878624][T26922] RSP: 002b:00007f0dd062e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1870.878646][T26922] RAX: ffffffffffffffda RBX: 00007f0dcf9b6080 RCX: 00007f0dcf78e929 [ 1870.878661][T26922] RDX: 000000000000a3d9 RSI: 0000200000000200 RDI: 0000000000000003 [ 1870.878675][T26922] RBP: 00007f0dd062e090 R08: 0000000000000000 R09: 0000000000000000 [ 1870.878690][T26922] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1870.878703][T26922] R13: 0000000000000000 R14: 00007f0dcf9b6080 R15: 00007ffd70d3da38 [ 1870.878732][T26922] [ 1871.648714][T26918] mmap: syz.0.3308 (26918) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 1874.293370][T26958] ecryptfs_parse_packet_length: Error parsing packet length [ 1874.314474][T26958] ecryptfs_miscdev_write: Error parsing packet length; rc = [-22] [ 1876.071066][T26993] FAULT_INJECTION: forcing a failure. [ 1876.071066][T26993] name failslab, interval 1, probability 0, space 0, times 0 [ 1876.137324][T26993] CPU: 1 UID: 0 PID: 26993 Comm: syz.2.3325 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) [ 1876.137367][T26993] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1876.137387][T26993] Call Trace: [ 1876.137398][T26993] [ 1876.137410][T26993] dump_stack_lvl+0x16c/0x1f0 [ 1876.137469][T26993] should_fail_ex+0x512/0x640 [ 1876.137522][T26993] should_failslab+0xc2/0x120 [ 1876.137554][T26993] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 1876.137603][T26993] ? dst_alloc+0x99/0x1a0 [ 1876.137649][T26993] dst_alloc+0x99/0x1a0 [ 1876.137695][T26993] rt_dst_alloc+0x35/0x3a0 [ 1876.137734][T26993] ip_route_output_key_hash_rcu+0x87a/0x28f0 [ 1876.137801][T26993] ip_route_output_key_hash+0x137/0x2e0 [ 1876.137861][T26993] ? __pfx_ip_route_output_key_hash+0x10/0x10 [ 1876.137921][T26993] ? find_held_lock+0x2b/0x80 [ 1876.137959][T26993] ip_route_output_flow+0x27/0x150 [ 1876.138010][T26993] raw_sendmsg+0xd70/0x3820 [ 1876.138071][T26993] ? __pfx_raw_sendmsg+0x10/0x10 [ 1876.138118][T26993] ? __lock_acquire+0x622/0x1c90 [ 1876.138169][T26993] ? __lock_acquire+0x622/0x1c90 [ 1876.138231][T26993] ? __pfx___might_resched+0x10/0x10 [ 1876.138265][T26993] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1876.138320][T26993] ? aa_sk_perm+0x2f4/0xb10 [ 1876.138365][T26993] ? __import_iovec+0x1dd/0x650 [ 1876.138415][T26993] ? __might_fault+0xe3/0x190 [ 1876.138460][T26993] ? __might_fault+0x13b/0x190 [ 1876.138525][T26993] ? __pfx_raw_sendmsg+0x10/0x10 [ 1876.138574][T26993] inet_sendmsg+0x11c/0x140 [ 1876.138624][T26993] ____sys_sendmsg+0x973/0xc70 [ 1876.138664][T26993] ? copy_msghdr_from_user+0x10a/0x160 [ 1876.138713][T26993] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1876.138765][T26993] ? __pfx__kstrtoull+0x10/0x10 [ 1876.138813][T26993] ___sys_sendmsg+0x134/0x1d0 [ 1876.138866][T26993] ? __pfx____sys_sendmsg+0x10/0x10 [ 1876.138933][T26993] ? find_held_lock+0x2b/0x80 [ 1876.138991][T26993] __sys_sendmmsg+0x200/0x420 [ 1876.139046][T26993] ? __pfx___sys_sendmmsg+0x10/0x10 [ 1876.139110][T26993] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 1876.139180][T26993] ? fput+0x70/0xf0 [ 1876.139210][T26993] ? ksys_write+0x1ac/0x250 [ 1876.139253][T26993] ? __pfx_ksys_write+0x10/0x10 [ 1876.139303][T26993] __x64_sys_sendmmsg+0x9c/0x100 [ 1876.139351][T26993] ? lockdep_hardirqs_on+0x7c/0x110 [ 1876.139398][T26993] do_syscall_64+0xcd/0x490 [ 1876.139451][T26993] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1876.139480][T26993] RIP: 0033:0x7fc25718e929 [ 1876.139506][T26993] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1876.139538][T26993] RSP: 002b:00007fc257f46038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 1876.139569][T26993] RAX: ffffffffffffffda RBX: 00007fc2573b6160 RCX: 00007fc25718e929 [ 1876.139590][T26993] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000003 [ 1876.139608][T26993] RBP: 00007fc257f46090 R08: 0000000000000000 R09: 0000000000000000 [ 1876.139628][T26993] R10: 0000000007000000 R11: 0000000000000246 R12: 0000000000000001 [ 1876.139646][T26993] R13: 0000000000000001 R14: 00007fc2573b6160 R15: 00007fff49d30318 [ 1876.139686][T26993] [ 1878.451007][T27033] [U]  [ 1878.454103][T27033] [U] [ 1878.456875][T27033] [U] [ 1878.459638][T27033] [U] [ 1878.481490][T27033] [U] [ 1878.484297][T27033] [U] [ 1878.487058][T27033] [U] [ 1878.489854][T27033] [U] [ 1878.494127][T27033] [U] [ 1878.496906][T27033] [U] [ 1878.499666][T27033] [U] [ 1878.502411][T27033] [U] [ 1878.532692][T27033] [U] [ 1878.535483][T27033] [U] [ 1878.538055][T27025] ecryptfs_parse_packet_length: Error parsing packet length [ 1878.538214][T27033] [U] [ 1878.548254][T27033] [U] [ 1878.575182][T27025] ecryptfs_miscdev_write: Error parsing packet length; rc = [-22] [ 1878.598372][T27033] [U] [ 1878.601172][T27033] [U] [ 1878.603929][T27033] [U] [ 1878.606691][T27033] [U] [ 1878.614278][T27033] [U] [ 1878.617072][T27033] [U] [ 1878.619810][T27033] [U] [ 1878.622533][T27033] [U] [ 1878.729687][T27033] [U] [ 1878.732501][T27033] [U] [ 1878.735248][T27033] [U] [ 1878.737967][T27033] [U] [ 1878.834269][T27036] [U] [ 1880.152875][T27066] input: jJǸí¸ü;9ã%vø“û¨lÐQ  J86Ö‘ as /devices/virtual/input/input128 [ 1880.200912][T27067] FAULT_INJECTION: forcing a failure. [ 1880.200912][T27067] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1880.460591][T27067] CPU: 0 UID: 0 PID: 27067 Comm: syz.0.3338 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) [ 1880.460634][T27067] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1880.460652][T27067] Call Trace: [ 1880.460663][T27067] [ 1880.460675][T27067] dump_stack_lvl+0x16c/0x1f0 [ 1880.460728][T27067] should_fail_ex+0x512/0x640 [ 1880.460780][T27067] strncpy_from_user+0x3b/0x2e0 [ 1880.460827][T27067] getname_flags.part.0+0x8f/0x550 [ 1880.460869][T27067] getname_flags+0x93/0xf0 [ 1880.460911][T27067] do_sys_openat2+0xb8/0x1d0 [ 1880.460947][T27067] ? __pfx_do_sys_openat2+0x10/0x10 [ 1880.460987][T27067] ? __fget_files+0x20e/0x3c0 [ 1880.461038][T27067] __x64_sys_openat+0x174/0x210 [ 1880.461075][T27067] ? __pfx___x64_sys_openat+0x10/0x10 [ 1880.461111][T27067] ? ksys_write+0x1ac/0x250 [ 1880.461177][T27067] do_syscall_64+0xcd/0x490 [ 1880.461229][T27067] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1880.461260][T27067] RIP: 0033:0x7f1b2f58e929 [ 1880.461283][T27067] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1880.461314][T27067] RSP: 002b:00007f1b303b6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1880.461344][T27067] RAX: ffffffffffffffda RBX: 00007f1b2f7b5fa0 RCX: 00007f1b2f58e929 [ 1880.461365][T27067] RDX: 00000000000e6e43 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 1880.461383][T27067] RBP: 00007f1b303b6090 R08: 0000000000000000 R09: 0000000000000000 [ 1880.461405][T27067] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1880.461424][T27067] R13: 0000000000000000 R14: 00007f1b2f7b5fa0 R15: 00007fffd856e4f8 [ 1880.461465][T27067] [ 1882.676571][T27082] kexec: Could not allocate control_code_buffer [ 1883.554125][ T59] EXT4-fs (sda1): Delayed block allocation failed for inode 2029 at logical offset 3402 with max blocks 61 with error 117 [ 1883.580271][ T59] EXT4-fs (sda1): This should not happen!! Data will be lost [ 1883.580271][ T59] [ 1883.720132][T27112] FAULT_INJECTION: forcing a failure. [ 1883.720132][T27112] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1883.783571][T27112] CPU: 1 UID: 0 PID: 27112 Comm: syz.0.3347 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) [ 1883.783617][T27112] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1883.783636][T27112] Call Trace: [ 1883.783648][T27112] [ 1883.783661][T27112] dump_stack_lvl+0x16c/0x1f0 [ 1883.783717][T27112] should_fail_ex+0x512/0x640 [ 1883.783772][T27112] _copy_to_iter+0x29f/0x16f0 [ 1883.783829][T27112] ? anon_pipe_read+0x7de/0x1210 [ 1883.783876][T27112] ? __pfx__copy_to_iter+0x10/0x10 [ 1883.783939][T27112] ? __pfx___mutex_lock+0x10/0x10 [ 1883.784008][T27112] copy_page_to_iter+0x12a/0x1e0 [ 1883.784072][T27112] anon_pipe_read+0x47e/0x1210 [ 1883.784136][T27112] ? __pfx_anon_pipe_read+0x10/0x10 [ 1883.784188][T27112] ? __pfx_autoremove_wake_function+0x10/0x10 [ 1883.784229][T27112] ? __pfx_aa_file_perm+0x10/0x10 [ 1883.784279][T27112] ? __lock_acquire+0x622/0x1c90 [ 1883.784325][T27112] fifo_pipe_read+0x1e/0xd0 [ 1883.784372][T27112] do_iter_readv_writev+0x735/0x950 [ 1883.784420][T27112] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 1883.784474][T27112] ? bpf_lsm_file_permission+0x9/0x10 [ 1883.784509][T27112] ? security_file_permission+0x71/0x210 [ 1883.784554][T27112] ? rw_verify_area+0xcf/0x680 [ 1883.784599][T27112] vfs_readv+0x4cb/0x8b0 [ 1883.784650][T27112] ? __pfx_vfs_readv+0x10/0x10 [ 1883.784720][T27112] ? __fget_files+0x20e/0x3c0 [ 1883.784762][T27112] ? __fget_files+0x140/0x3c0 [ 1883.784816][T27112] ? do_readv+0x28c/0x340 [ 1883.784855][T27112] do_readv+0x28c/0x340 [ 1883.784897][T27112] ? __pfx_do_readv+0x10/0x10 [ 1883.784953][T27112] do_syscall_64+0xcd/0x490 [ 1883.785006][T27112] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1883.785047][T27112] RIP: 0033:0x7f1b2f58e929 [ 1883.785071][T27112] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1883.785103][T27112] RSP: 002b:00007f1b30374038 EFLAGS: 00000246 ORIG_RAX: 0000000000000013 [ 1883.785132][T27112] RAX: ffffffffffffffda RBX: 00007f1b2f7b6160 RCX: 00007f1b2f58e929 [ 1883.785152][T27112] RDX: 0000000000000001 RSI: 0000200000000a80 RDI: 0000000000000003 [ 1883.785170][T27112] RBP: 00007f1b30374090 R08: 0000000000000000 R09: 0000000000000000 [ 1883.785188][T27112] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1883.785206][T27112] R13: 0000000000000000 R14: 00007f1b2f7b6160 R15: 00007fffd856e4f8 [ 1883.785247][T27112] [ 1886.407529][T27126] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 1886.654034][T27160] sysfs: cannot create duplicate filename '/class/ieee80211/!PjE ùrõ£Ò„yù*›"¤l-ý¤ôy–ú„L̓÷ÓÄ]' [ 1886.698985][T27160] CPU: 0 UID: 0 PID: 27160 Comm: syz.3.3357 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) [ 1886.699036][T27160] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1886.699057][T27160] Call Trace: [ 1886.699069][T27160] [ 1886.699082][T27160] dump_stack_lvl+0x16c/0x1f0 [ 1886.699140][T27160] sysfs_warn_dup+0x7f/0xa0 [ 1886.699187][T27160] sysfs_do_create_link_sd+0x124/0x140 [ 1886.699240][T27160] sysfs_create_link+0x61/0xc0 [ 1886.699288][T27160] device_add+0x62c/0x1a70 [ 1886.699332][T27160] ? __pfx_device_add+0x10/0x10 [ 1886.699365][T27160] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1886.699422][T27160] ? ieee80211_set_bitrate_flags+0x243/0x6b0 [ 1886.699490][T27160] wiphy_register+0x1c9c/0x2850 [ 1886.699530][T27160] ? netdev_run_todo+0x864/0x1320 [ 1886.699579][T27160] ? __pfx_wiphy_register+0x10/0x10 [ 1886.699634][T27160] ? ieee80211_init_rate_ctrl_alg+0x125/0x6b0 [ 1886.699683][T27160] ieee80211_register_hw+0x24ac/0x4140 [ 1886.699739][T27160] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 1886.699787][T27160] ? find_held_lock+0x2b/0x80 [ 1886.699823][T27160] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1886.699878][T27160] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 1886.699926][T27160] ? __hrtimer_setup+0x176/0x280 [ 1886.699986][T27160] mac80211_hwsim_new_radio+0x3034/0x54d0 [ 1886.700068][T27160] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 1886.700135][T27160] hwsim_new_radio_nl+0xb51/0x12c0 [ 1886.700191][T27160] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 1886.700253][T27160] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 1886.700288][T27160] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 1886.700327][T27160] genl_family_rcv_msg_doit+0x209/0x2f0 [ 1886.700360][T27160] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 1886.700392][T27160] ? trace_cap_capable+0x18d/0x200 [ 1886.700423][T27160] ? bpf_lsm_capable+0x9/0x10 [ 1886.700453][T27160] ? security_capable+0x7e/0x260 [ 1886.700494][T27160] ? ns_capable+0xd7/0x110 [ 1886.700521][T27160] genl_rcv_msg+0x55c/0x800 [ 1886.700556][T27160] ? __pfx_genl_rcv_msg+0x10/0x10 [ 1886.700587][T27160] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 1886.700635][T27160] netlink_rcv_skb+0x158/0x420 [ 1886.700661][T27160] ? __pfx_genl_rcv_msg+0x10/0x10 [ 1886.700693][T27160] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 1886.700733][T27160] ? netlink_deliver_tap+0x1ae/0xd30 [ 1886.700762][T27160] genl_rcv+0x28/0x40 [ 1886.700788][T27160] netlink_unicast+0x53d/0x7f0 [ 1886.700818][T27160] ? __pfx_netlink_unicast+0x10/0x10 [ 1886.700854][T27160] netlink_sendmsg+0x8d1/0xdd0 [ 1886.700886][T27160] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1886.700931][T27160] ____sys_sendmsg+0xa98/0xc70 [ 1886.700960][T27160] ? copy_msghdr_from_user+0x10a/0x160 [ 1886.700998][T27160] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1886.701033][T27160] ? __pfx_futex_wake_mark+0x10/0x10 [ 1886.701073][T27160] ___sys_sendmsg+0x134/0x1d0 [ 1886.701112][T27160] ? __pfx____sys_sendmsg+0x10/0x10 [ 1886.701146][T27160] ? __lock_acquire+0x622/0x1c90 [ 1886.701219][T27160] __sys_sendmsg+0x16d/0x220 [ 1886.701256][T27160] ? __pfx___sys_sendmsg+0x10/0x10 [ 1886.701293][T27160] ? __x64_sys_futex+0x1e0/0x4c0 [ 1886.701341][T27160] do_syscall_64+0xcd/0x490 [ 1886.701381][T27160] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1886.701406][T27160] RIP: 0033:0x7f0dcf78e929 [ 1886.701426][T27160] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1886.701450][T27160] RSP: 002b:00007f0dd062e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1886.701472][T27160] RAX: ffffffffffffffda RBX: 00007f0dcf9b6080 RCX: 00007f0dcf78e929 [ 1886.701489][T27160] RDX: 0000000000040800 RSI: 00002000000000c0 RDI: 0000000000000005 [ 1886.701504][T27160] RBP: 00007f0dcf810b39 R08: 0000000000000000 R09: 0000000000000000 [ 1886.701520][T27160] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1886.701534][T27160] R13: 0000000000000000 R14: 00007f0dcf9b6080 R15: 00007ffd70d3da38 [ 1886.701566][T27160] [ 1887.092264][ C0] vkms_vblank_simulate: vblank timer overrun [ 1888.438874][T27187] FAULT_INJECTION: forcing a failure. [ 1888.438874][T27187] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1888.726595][T27187] CPU: 1 UID: 0 PID: 27187 Comm: syz.1.3361 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) [ 1888.726640][T27187] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1888.726666][T27187] Call Trace: [ 1888.726676][T27187] [ 1888.726689][T27187] dump_stack_lvl+0x16c/0x1f0 [ 1888.726744][T27187] should_fail_ex+0x512/0x640 [ 1888.726796][T27187] _copy_from_iter+0x29f/0x16f0 [ 1888.726858][T27187] ? __pfx__copy_from_iter+0x10/0x10 [ 1888.726909][T27187] ? rcu_is_watching+0x12/0xc0 [ 1888.726942][T27187] ? trace_kmalloc+0x2b/0xd0 [ 1888.726974][T27187] ? __kmalloc_noprof+0x242/0x510 [ 1888.727032][T27187] kernfs_fop_write_iter+0x19a/0x510 [ 1888.727074][T27187] vfs_write+0x6c4/0x1150 [ 1888.727122][T27187] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 1888.727177][T27187] ? __pfx___mutex_lock+0x10/0x10 [ 1888.727227][T27187] ? __pfx_vfs_write+0x10/0x10 [ 1888.727298][T27187] ksys_write+0x12a/0x250 [ 1888.727343][T27187] ? __pfx_ksys_write+0x10/0x10 [ 1888.727400][T27187] do_syscall_64+0xcd/0x490 [ 1888.727475][T27187] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1888.727509][T27187] RIP: 0033:0x7fde0038e929 [ 1888.727535][T27187] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1888.727566][T27187] RSP: 002b:00007fde01216038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1888.727596][T27187] RAX: ffffffffffffffda RBX: 00007fde005b6240 RCX: 00007fde0038e929 [ 1888.727618][T27187] RDX: 000000000000cd04 RSI: 0000200000000140 RDI: 0000000000000005 [ 1888.727639][T27187] RBP: 00007fde01216090 R08: 0000000000000000 R09: 0000000000000000 [ 1888.727665][T27187] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1888.727685][T27187] R13: 0000000000000000 R14: 00007fde005b6240 R15: 00007ffdab121ba8 [ 1888.727727][T27187] [ 1889.739082][T27206] FAULT_INJECTION: forcing a failure. [ 1889.739082][T27206] name failslab, interval 1, probability 0, space 0, times 0 [ 1889.787995][T27206] CPU: 1 UID: 0 PID: 27206 Comm: syz.1.3365 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) [ 1889.788046][T27206] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1889.788065][T27206] Call Trace: [ 1889.788077][T27206] [ 1889.788089][T27206] dump_stack_lvl+0x16c/0x1f0 [ 1889.788144][T27206] should_fail_ex+0x512/0x640 [ 1889.788190][T27206] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 1889.788243][T27206] should_failslab+0xc2/0x120 [ 1889.788280][T27206] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 1889.788330][T27206] ? copy_process+0x4b6/0x76a0 [ 1889.788369][T27206] ? _raw_spin_unlock_irq+0x23/0x50 [ 1889.788419][T27206] copy_process+0x4b6/0x76a0 [ 1889.788475][T27206] ? __pfx_copy_process+0x10/0x10 [ 1889.788528][T27206] ? _copy_from_user+0x59/0xd0 [ 1889.788585][T27206] kernel_clone+0xfc/0x960 [ 1889.788622][T27206] ? get_pid_task+0xfc/0x250 [ 1889.788667][T27206] ? __pfx_kernel_clone+0x10/0x10 [ 1889.788731][T27206] __do_sys_clone3+0x212/0x290 [ 1889.788770][T27206] ? __pfx___do_sys_clone3+0x10/0x10 [ 1889.788821][T27206] ? __fget_files+0x20e/0x3c0 [ 1889.788882][T27206] do_syscall_64+0xcd/0x490 [ 1889.788928][T27206] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1889.788955][T27206] RIP: 0033:0x7fde0038e929 [ 1889.788977][T27206] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1889.789005][T27206] RSP: 002b:00007fde01278f08 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1889.789030][T27206] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fde0038e929 [ 1889.789049][T27206] RDX: 00007fde01278f20 RSI: 0000000000000058 RDI: 00007fde01278f20 [ 1889.789067][T27206] RBP: 00007fde01279090 R08: 0000000000000000 R09: 0000000000000058 [ 1889.789084][T27206] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1889.789101][T27206] R13: 0000000000000000 R14: 00007fde005b5fa0 R15: 00007ffdab121ba8 [ 1889.789135][T27206] [ 1891.275937][T27159] kexec: Could not allocate control_code_buffer [ 1894.538082][T27252] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888078008000 pfn:0x78008 [ 1894.594899][ T30] audit: type=1326 audit(4294969998.055:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27272 comm="syz.1.3381" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fde0038e929 code=0x0 [ 1894.616741][ C1] vkms_vblank_simulate: vblank timer overrun [ 1894.642149][T27252] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 1894.652055][T27252] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 1894.664958][T27252] raw: 00fff00000000040 0000000000000000 dead000000000122 0000000000000000 [ 1894.674809][T27252] raw: ffff888078008000 0000000000000000 00000001ffffffff 0000000000000000 [ 1894.689721][T27252] head: 00fff00000000040 0000000000000000 dead000000000122 0000000000000000 [ 1894.700265][T27252] head: ffff888078008000 0000000000000000 00000001ffffffff 0000000000000000 [ 1894.710150][T27252] head: 00fff00000000003 ffffea0001e00201 00000000ffffffff 00000000ffffffff [ 1894.719323][T27252] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008 [ 1894.728241][T27252] page dumped because: unmovable page [ 1894.733869][T27252] page_owner tracks the page as allocated [ 1894.740870][T27252] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x528c0(GFP_NOWAIT|__GFP_IO|__GFP_FS|__GFP_NORETRY|__GFP_COMP), pid 26576, tgid 26564 (syz.2.3239), ts 1848525497082, free_ts 1841912478842 [ 1894.768048][T27252] post_alloc_hook+0x1c0/0x230 [ 1894.773153][T27252] get_page_from_freelist+0x1321/0x3890 [ 1894.804142][T27252] __alloc_frozen_pages_noprof+0x261/0x23f0 [ 1894.900568][T27252] alloc_pages_mpol+0x1fb/0x550 [ 1894.906260][T27252] alloc_pages_noprof+0x131/0x390 [ 1894.912305][T27252] skb_page_frag_refill+0x186/0x5a0 [ 1894.919273][T27252] mptcp_sendmsg+0x763/0x1eb0 [ 1894.925896][T27252] inet_sendmsg+0x11c/0x140 [ 1894.935442][T27252] sock_write_iter+0x4aa/0x5b0 [ 1894.943269][T27252] vfs_write+0x6c4/0x1150 [ 1894.948867][T27252] ksys_write+0x1f8/0x250 [ 1894.954497][T27252] do_syscall_64+0xcd/0x490 [ 1894.961177][T27252] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1894.969170][T27252] page last free pid 26491 tgid 26484 stack trace: [ 1894.977034][T27252] __free_frozen_pages+0x7fe/0x1180 [ 1894.983662][T27252] __folio_put+0x329/0x450 [ 1894.991390][T27252] skb_release_data+0x7fb/0x9c0 [ 1894.999266][T27252] __kfree_skb+0x4f/0x70 [ 1895.004841][T27252] mptcp_recvmsg+0x101d/0x2230 [ 1895.011552][T27252] inet_recvmsg+0x46f/0x6a0 [ 1895.016742][T27252] sock_recvmsg+0x1b2/0x250 [ 1895.028991][T27252] __sys_recvfrom+0x203/0x310 [ 1895.034967][T27252] __x64_sys_recvfrom+0xe0/0x1c0 [ 1895.103696][T27252] do_syscall_64+0xcd/0x490 [ 1895.132358][T27252] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1895.718999][T27290] ecryptfs_parse_packet_length: Error parsing packet length [ 1895.734693][T27290] ecryptfs_miscdev_write: Error parsing packet length; rc = [-22] [ 1895.789021][T27282] FAULT_INJECTION: forcing a failure. [ 1895.789021][T27282] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1895.829050][T27282] CPU: 1 UID: 0 PID: 27282 Comm: syz.2.3382 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) [ 1895.829108][T27282] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1895.829128][T27282] Call Trace: [ 1895.829139][T27282] [ 1895.829152][T27282] dump_stack_lvl+0x16c/0x1f0 [ 1895.829205][T27282] should_fail_ex+0x512/0x640 [ 1895.829268][T27282] core_sys_select+0x4c5/0xc10 [ 1895.829323][T27282] ? __pfx_core_sys_select+0x10/0x10 [ 1895.829375][T27282] ? proc_fail_nth_write+0x9f/0x250 [ 1895.829449][T27282] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 1895.829512][T27282] kern_select+0x15d/0x1e0 [ 1895.829549][T27282] ? __pfx_kern_select+0x10/0x10 [ 1895.829584][T27282] ? __pfx_ksys_write+0x10/0x10 [ 1895.829621][T27282] __x64_sys_select+0xbd/0x160 [ 1895.829650][T27282] ? do_syscall_64+0x91/0x490 [ 1895.829684][T27282] ? lockdep_hardirqs_on+0x7c/0x110 [ 1895.829717][T27282] do_syscall_64+0xcd/0x490 [ 1895.829755][T27282] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1895.829778][T27282] RIP: 0033:0x7fc25718e929 [ 1895.829797][T27282] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1895.829821][T27282] RSP: 002b:00007fc257f88038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017 [ 1895.829843][T27282] RAX: ffffffffffffffda RBX: 00007fc2573b5fa0 RCX: 00007fc25718e929 [ 1895.829859][T27282] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000e [ 1895.829873][T27282] RBP: 00007fc257f88090 R08: 0000000000000000 R09: 0000000000000000 [ 1895.829887][T27282] R10: 00002000000002c0 R11: 0000000000000246 R12: 0000000000000001 [ 1895.829902][T27282] R13: 0000000000000000 R14: 00007fc2573b5fa0 R15: 00007fff49d30318 [ 1895.829931][T27282] [ 1896.009742][ C1] vkms_vblank_simulate: vblank timer overrun [ 1896.157627][T27293] bond0: option all_slaves_active: invalid value () [ 1896.593405][T27306] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3387'. [ 1896.875646][ T12] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 3259 with max blocks 57 with error 117 [ 1896.902825][ T12] EXT4-fs (sda1): This should not happen!! Data will be lost [ 1896.902825][ T12] [ 1898.030032][T27317] FAULT_INJECTION: forcing a failure. [ 1898.030032][T27317] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1898.044193][T27317] CPU: 0 UID: 0 PID: 27317 Comm: syz.3.3390 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) [ 1898.044233][T27317] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1898.044250][T27317] Call Trace: [ 1898.044261][T27317] [ 1898.044273][T27317] dump_stack_lvl+0x16c/0x1f0 [ 1898.044324][T27317] should_fail_ex+0x512/0x640 [ 1898.044374][T27317] core_sys_select+0x4c5/0xc10 [ 1898.044428][T27317] ? __pfx_core_sys_select+0x10/0x10 [ 1898.044477][T27317] ? proc_fail_nth_write+0x9f/0x250 [ 1898.044549][T27317] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 1898.044609][T27317] kern_select+0x15d/0x1e0 [ 1898.044651][T27317] ? __pfx_kern_select+0x10/0x10 [ 1898.044700][T27317] ? __pfx_ksys_write+0x10/0x10 [ 1898.044752][T27317] __x64_sys_select+0xbd/0x160 [ 1898.044792][T27317] ? do_syscall_64+0x91/0x490 [ 1898.044839][T27317] ? lockdep_hardirqs_on+0x7c/0x110 [ 1898.044894][T27317] do_syscall_64+0xcd/0x490 [ 1898.044946][T27317] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1898.044978][T27317] RIP: 0033:0x7f0dcf78e929 [ 1898.045003][T27317] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1898.045033][T27317] RSP: 002b:00007f0dd062e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017 [ 1898.045061][T27317] RAX: ffffffffffffffda RBX: 00007f0dcf9b6080 RCX: 00007f0dcf78e929 [ 1898.045081][T27317] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000e [ 1898.045099][T27317] RBP: 00007f0dd062e090 R08: 0000000000000000 R09: 0000000000000000 [ 1898.045117][T27317] R10: 00002000000002c0 R11: 0000000000000246 R12: 0000000000000001 [ 1898.045135][T27317] R13: 0000000000000000 R14: 00007f0dcf9b6080 R15: 00007ffd70d3da38 [ 1898.045173][T27317] [ 1899.459927][T27340] ecryptfs_parse_packet_length: Error parsing packet length [ 1899.467540][T27340] ecryptfs_miscdev_write: Error parsing packet length; rc = [-22] [ 1900.527594][T27364] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 3229 with max blocks 87 with error 117 [ 1900.566828][T27364] EXT4-fs (sda1): This should not happen!! Data will be lost [ 1900.566828][T27364] [ 1901.553130][T27370] ecryptfs_parse_packet_length: Error parsing packet length [ 1901.553261][T27374] netlink: 'syz.0.3401': attribute type 1 has an invalid length. [ 1901.565089][T27370] ecryptfs_miscdev_write: Error parsing packet length; rc = [-22] [ 1901.649919][T27374] netlink: 306 bytes leftover after parsing attributes in process `syz.0.3401'. [ 1903.232821][T27394] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3404'. [ 1903.864730][T27397] vivid-007: ================= START STATUS ================= [ 1903.895433][T27397] vivid-007: Generate PTS: true [ 1903.996162][T27397] vivid-007: Generate SCR: true [ 1904.478032][T27397] tpg source WxH: 320x240 (Y'CbCr) [ 1904.560864][T27397] tpg field: 1 [ 1904.564282][T27397] tpg crop: (0,0)/320x240 [ 1904.614128][T27397] tpg compose: (0,0)/320x240 [ 1904.669155][T27397] tpg colorspace: 8 [ 1904.725832][T27397] tpg transfer function: 0/0 [ 1904.750101][T27397] tpg Y'CbCr encoding: 0/0 [ 1904.778847][T27397] tpg quantization: 0/0 [ 1904.788306][T27397] tpg RGB range: 0/2 [ 1904.792237][T27397] vivid-007: ================== END STATUS ================== [ 1904.825301][T27399] ecryptfs_parse_packet_length: Error parsing packet length [ 1904.849101][T27399] ecryptfs_miscdev_write: Error parsing packet length; rc = [-22] [ 1904.945058][T27394] team0: Port device team_slave_1 removed [ 1905.210243][T27409] FAULT_INJECTION: forcing a failure. [ 1905.210243][T27409] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1905.246140][T27409] CPU: 0 UID: 0 PID: 27409 Comm: syz.3.3409 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) [ 1905.246182][T27409] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1905.246200][T27409] Call Trace: [ 1905.246210][T27409] [ 1905.246223][T27409] dump_stack_lvl+0x16c/0x1f0 [ 1905.246269][T27409] should_fail_ex+0x512/0x640 [ 1905.246304][T27409] _copy_to_user+0x32/0xd0 [ 1905.246338][T27409] simple_read_from_buffer+0xcb/0x170 [ 1905.246367][T27409] proc_fail_nth_read+0x197/0x270 [ 1905.246393][T27409] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1905.246419][T27409] ? rw_verify_area+0xcf/0x680 [ 1905.246445][T27409] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1905.246469][T27409] vfs_read+0x1e4/0xc60 [ 1905.246500][T27409] ? __pfx___mutex_lock+0x10/0x10 [ 1905.246532][T27409] ? __pfx_vfs_read+0x10/0x10 [ 1905.246568][T27409] ? __fget_files+0x20e/0x3c0 [ 1905.246603][T27409] ksys_read+0x12a/0x250 [ 1905.246631][T27409] ? __pfx_ksys_read+0x10/0x10 [ 1905.246667][T27409] do_syscall_64+0xcd/0x490 [ 1905.246701][T27409] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1905.246722][T27409] RIP: 0033:0x7f0dcf78d33c [ 1905.246739][T27409] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 1905.246760][T27409] RSP: 002b:00007f0dd064f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1905.246780][T27409] RAX: ffffffffffffffda RBX: 00007f0dcf9b5fa0 RCX: 00007f0dcf78d33c [ 1905.246795][T27409] RDX: 000000000000000f RSI: 00007f0dd064f0a0 RDI: 0000000000000004 [ 1905.246808][T27409] RBP: 00007f0dd064f090 R08: 0000000000000000 R09: 0000000000000000 [ 1905.246822][T27409] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1905.246834][T27409] R13: 0000000000000000 R14: 00007f0dcf9b5fa0 R15: 00007ffd70d3da38 [ 1905.246861][T27409] [ 1905.449771][T27412] vivid-007: ================= START STATUS ================= [ 1905.458020][T27412] vivid-007: Generate PTS: true [ 1905.462911][T27412] vivid-007: Generate SCR: true [ 1905.498165][T27412] tpg source WxH: 320x240 (Y'CbCr) [ 1905.503366][T27412] tpg field: 1 [ 1905.506743][T27412] tpg crop: (0,0)/320x240 [ 1905.511265][T27412] tpg compose: (0,0)/320x240 [ 1905.516163][T27412] tpg colorspace: 8 [ 1905.520043][T27412] tpg transfer function: 0/0 [ 1905.524641][T27412] tpg Y'CbCr encoding: 0/0 [ 1905.529206][T27412] tpg quantization: 0/0 [ 1905.533370][T27412] tpg RGB range: 0/2 [ 1905.537273][T27412] vivid-007: ================== END STATUS ================== [ 1906.191905][T27425] sysfs: cannot create duplicate filename '/class/ieee80211/!PjE ùrõ£Ò„yù*›"¤l-ý¤ôy–ú„L̓÷ÓÄ]' [ 1906.248123][T27425] CPU: 0 UID: 0 PID: 27425 Comm: syz.2.3414 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) [ 1906.248174][T27425] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1906.248194][T27425] Call Trace: [ 1906.248206][T27425] [ 1906.248219][T27425] dump_stack_lvl+0x16c/0x1f0 [ 1906.248279][T27425] sysfs_warn_dup+0x7f/0xa0 [ 1906.248326][T27425] sysfs_do_create_link_sd+0x124/0x140 [ 1906.248379][T27425] sysfs_create_link+0x61/0xc0 [ 1906.248429][T27425] device_add+0x62c/0x1a70 [ 1906.248473][T27425] ? __pfx_device_add+0x10/0x10 [ 1906.248511][T27425] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1906.248569][T27425] ? ieee80211_set_bitrate_flags+0x243/0x6b0 [ 1906.248640][T27425] wiphy_register+0x1c9c/0x2850 [ 1906.248682][T27425] ? netdev_run_todo+0x864/0x1320 [ 1906.248731][T27425] ? __pfx_wiphy_register+0x10/0x10 [ 1906.248789][T27425] ? ieee80211_init_rate_ctrl_alg+0x125/0x6b0 [ 1906.248835][T27425] ieee80211_register_hw+0x24ac/0x4140 [ 1906.248893][T27425] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 1906.248940][T27425] ? find_held_lock+0x2b/0x80 [ 1906.248976][T27425] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1906.249033][T27425] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 1906.249082][T27425] ? __hrtimer_setup+0x176/0x280 [ 1906.249144][T27425] mac80211_hwsim_new_radio+0x3034/0x54d0 [ 1906.249222][T27425] ? __kmalloc_node_track_caller_noprof+0x23e/0x510 [ 1906.249283][T27425] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 1906.249341][T27425] ? __asan_memcpy+0x3c/0x60 [ 1906.249396][T27425] hwsim_new_radio_nl+0xb51/0x12c0 [ 1906.249454][T27425] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 1906.249521][T27425] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 1906.249571][T27425] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 1906.249632][T27425] genl_family_rcv_msg_doit+0x209/0x2f0 [ 1906.249683][T27425] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 1906.249730][T27425] ? trace_cap_capable+0x18d/0x200 [ 1906.249777][T27425] ? bpf_lsm_capable+0x9/0x10 [ 1906.249819][T27425] ? security_capable+0x7e/0x260 [ 1906.249879][T27425] ? ns_capable+0xd7/0x110 [ 1906.249920][T27425] genl_rcv_msg+0x55c/0x800 [ 1906.249971][T27425] ? __pfx_genl_rcv_msg+0x10/0x10 [ 1906.250015][T27425] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 1906.250096][T27425] netlink_rcv_skb+0x158/0x420 [ 1906.250136][T27425] ? __pfx_genl_rcv_msg+0x10/0x10 [ 1906.250186][T27425] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 1906.250243][T27425] ? netlink_deliver_tap+0x1ae/0xd30 [ 1906.250285][T27425] genl_rcv+0x28/0x40 [ 1906.250323][T27425] netlink_unicast+0x53d/0x7f0 [ 1906.250366][T27425] ? __pfx_netlink_unicast+0x10/0x10 [ 1906.250417][T27425] netlink_sendmsg+0x8d1/0xdd0 [ 1906.250465][T27425] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1906.250522][T27425] ____sys_sendmsg+0xa98/0xc70 [ 1906.250564][T27425] ? copy_msghdr_from_user+0x10a/0x160 [ 1906.250621][T27425] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1906.250670][T27425] ? __pfx_futex_wake_mark+0x10/0x10 [ 1906.250730][T27425] ___sys_sendmsg+0x134/0x1d0 [ 1906.250787][T27425] ? __pfx____sys_sendmsg+0x10/0x10 [ 1906.250838][T27425] ? __lock_acquire+0x622/0x1c90 [ 1906.250941][T27425] __sys_sendmsg+0x16d/0x220 [ 1906.251000][T27425] ? __pfx___sys_sendmsg+0x10/0x10 [ 1906.251068][T27425] ? __x64_sys_futex+0x1e0/0x4c0 [ 1906.251141][T27425] do_syscall_64+0xcd/0x490 [ 1906.251202][T27425] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1906.251239][T27425] RIP: 0033:0x7fc25718e929 [ 1906.251268][T27425] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1906.251302][T27425] RSP: 002b:00007fc257f88038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1906.251348][T27425] RAX: ffffffffffffffda RBX: 00007fc2573b5fa0 RCX: 00007fc25718e929 [ 1906.251372][T27425] RDX: 0000000000040800 RSI: 00002000000000c0 RDI: 0000000000000003 [ 1906.251392][T27425] RBP: 00007fc257210b39 R08: 0000000000000000 R09: 0000000000000000 [ 1906.251411][T27425] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1906.251430][T27425] R13: 0000000000000000 R14: 00007fc2573b5fa0 R15: 00007fff49d30318 [ 1906.251471][T27425] [ 1907.361608][T27431] sysfs: cannot create duplicate filename '/class/ieee80211/!PjE ùrõ£Ò„yù*›"¤l-ý¤ôy–ú„L̓÷ÓÄ]' [ 1907.390966][T27431] CPU: 0 UID: 0 PID: 27431 Comm: syz.1.3415 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) [ 1907.391014][T27431] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1907.391035][T27431] Call Trace: [ 1907.391046][T27431] [ 1907.391059][T27431] dump_stack_lvl+0x16c/0x1f0 [ 1907.391116][T27431] sysfs_warn_dup+0x7f/0xa0 [ 1907.391160][T27431] sysfs_do_create_link_sd+0x124/0x140 [ 1907.391208][T27431] sysfs_create_link+0x61/0xc0 [ 1907.391252][T27431] device_add+0x62c/0x1a70 [ 1907.391290][T27431] ? __pfx_device_add+0x10/0x10 [ 1907.391322][T27431] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1907.391374][T27431] ? ieee80211_set_bitrate_flags+0x243/0x6b0 [ 1907.391436][T27431] wiphy_register+0x1c9c/0x2850 [ 1907.391473][T27431] ? netdev_run_todo+0x864/0x1320 [ 1907.391517][T27431] ? __pfx_wiphy_register+0x10/0x10 [ 1907.391567][T27431] ? ieee80211_init_rate_ctrl_alg+0x125/0x6b0 [ 1907.391608][T27431] ieee80211_register_hw+0x24ac/0x4140 [ 1907.391660][T27431] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 1907.391703][T27431] ? find_held_lock+0x2b/0x80 [ 1907.391752][T27431] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1907.391838][T27431] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 1907.391880][T27431] ? __hrtimer_setup+0x176/0x280 [ 1907.391942][T27431] mac80211_hwsim_new_radio+0x3034/0x54d0 [ 1907.392020][T27431] ? __kmalloc_node_track_caller_noprof+0x23e/0x510 [ 1907.392081][T27431] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 1907.392138][T27431] ? __asan_memcpy+0x3c/0x60 [ 1907.392193][T27431] hwsim_new_radio_nl+0xb51/0x12c0 [ 1907.392252][T27431] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 1907.392320][T27431] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 1907.392369][T27431] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 1907.392430][T27431] genl_family_rcv_msg_doit+0x209/0x2f0 [ 1907.392481][T27431] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 1907.392528][T27431] ? trace_cap_capable+0x18d/0x200 [ 1907.392576][T27431] ? bpf_lsm_capable+0x9/0x10 [ 1907.392619][T27431] ? security_capable+0x7e/0x260 [ 1907.392679][T27431] ? ns_capable+0xd7/0x110 [ 1907.392720][T27431] genl_rcv_msg+0x55c/0x800 [ 1907.392771][T27431] ? __pfx_genl_rcv_msg+0x10/0x10 [ 1907.392829][T27431] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 1907.392901][T27431] netlink_rcv_skb+0x158/0x420 [ 1907.392941][T27431] ? __pfx_genl_rcv_msg+0x10/0x10 [ 1907.392988][T27431] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 1907.393057][T27431] ? netlink_deliver_tap+0x1ae/0xd30 [ 1907.393098][T27431] genl_rcv+0x28/0x40 [ 1907.393135][T27431] netlink_unicast+0x53d/0x7f0 [ 1907.393179][T27431] ? __pfx_netlink_unicast+0x10/0x10 [ 1907.393230][T27431] netlink_sendmsg+0x8d1/0xdd0 [ 1907.393276][T27431] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1907.393331][T27431] ____sys_sendmsg+0xa98/0xc70 [ 1907.393373][T27431] ? copy_msghdr_from_user+0x10a/0x160 [ 1907.393426][T27431] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1907.393478][T27431] ? __pfx_futex_wake_mark+0x10/0x10 [ 1907.393535][T27431] ___sys_sendmsg+0x134/0x1d0 [ 1907.393591][T27431] ? __pfx____sys_sendmsg+0x10/0x10 [ 1907.393642][T27431] ? __lock_acquire+0x622/0x1c90 [ 1907.393744][T27431] __sys_sendmsg+0x16d/0x220 [ 1907.393798][T27431] ? __pfx___sys_sendmsg+0x10/0x10 [ 1907.393864][T27431] ? __x64_sys_futex+0x1e0/0x4c0 [ 1907.393936][T27431] do_syscall_64+0xcd/0x490 [ 1907.393995][T27431] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1907.394031][T27431] RIP: 0033:0x7fde0038e929 [ 1907.394060][T27431] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1907.394095][T27431] RSP: 002b:00007fde01279038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1907.394127][T27431] RAX: ffffffffffffffda RBX: 00007fde005b5fa0 RCX: 00007fde0038e929 [ 1907.394150][T27431] RDX: 0000000000040800 RSI: 00002000000000c0 RDI: 0000000000000003 [ 1907.394170][T27431] RBP: 00007fde00410b39 R08: 0000000000000000 R09: 0000000000000000 [ 1907.394190][T27431] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1907.394208][T27431] R13: 0000000000000000 R14: 00007fde005b5fa0 R15: 00007ffdab121ba8 [ 1907.394250][T27431] [ 1908.083061][T27432] FAULT_INJECTION: forcing a failure. [ 1908.083061][T27432] name failslab, interval 1, probability 0, space 0, times 0 [ 1908.150019][T27432] CPU: 1 UID: 0 PID: 27432 Comm: syz.2.3417 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) [ 1908.150062][T27432] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1908.150082][T27432] Call Trace: [ 1908.150093][T27432] [ 1908.150105][T27432] dump_stack_lvl+0x16c/0x1f0 [ 1908.150158][T27432] should_fail_ex+0x512/0x640 [ 1908.150202][T27432] ? __kmalloc_noprof+0xbf/0x510 [ 1908.150253][T27432] ? __register_sysctl_table+0xea2/0x1900 [ 1908.150303][T27432] should_failslab+0xc2/0x120 [ 1908.150334][T27432] __kmalloc_noprof+0xd2/0x510 [ 1908.150378][T27432] ? __register_sysctl_table+0xe8e/0x1900 [ 1908.150438][T27432] __register_sysctl_table+0xea2/0x1900 [ 1908.150497][T27432] ? __pfx___register_sysctl_table+0x10/0x10 [ 1908.150546][T27432] ? is_module_address+0x69/0xf0 [ 1908.150590][T27432] ? register_net_sysctl_sz+0x228/0x3e0 [ 1908.150632][T27432] __devinet_sysctl_register+0x1b9/0x360 [ 1908.150678][T27432] ? __pfx___devinet_sysctl_register+0x10/0x10 [ 1908.150721][T27432] ? devinet_init_net+0xeb/0x910 [ 1908.150761][T27432] ? __asan_memcpy+0x3c/0x60 [ 1908.150806][T27432] devinet_init_net+0x315/0x910 [ 1908.150847][T27432] ? __pfx_devinet_init_net+0x10/0x10 [ 1908.150886][T27432] ops_init+0x1df/0x5f0 [ 1908.150924][T27432] setup_net+0x1ff/0x510 [ 1908.150952][T27432] ? lockdep_init_map_type+0x5c/0x280 [ 1908.150996][T27432] ? __pfx_setup_net+0x10/0x10 [ 1908.151029][T27432] ? debug_mutex_init+0x37/0x70 [ 1908.151068][T27432] copy_net_ns+0x2a6/0x5f0 [ 1908.151105][T27432] create_new_namespaces+0x3ea/0xa90 [ 1908.151149][T27432] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 1908.151187][T27432] ksys_unshare+0x45b/0xa40 [ 1908.151230][T27432] ? __pfx_ksys_unshare+0x10/0x10 [ 1908.151273][T27432] ? xfd_validate_state+0x61/0x180 [ 1908.151325][T27432] __x64_sys_unshare+0x31/0x40 [ 1908.151366][T27432] do_syscall_64+0xcd/0x490 [ 1908.151418][T27432] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1908.151449][T27432] RIP: 0033:0x7fc25718e929 [ 1908.151474][T27432] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1908.151504][T27432] RSP: 002b:00007fc257f88038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 1908.151535][T27432] RAX: ffffffffffffffda RBX: 00007fc2573b5fa0 RCX: 00007fc25718e929 [ 1908.151556][T27432] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 1908.151576][T27432] RBP: 00007fc257210b39 R08: 0000000000000000 R09: 0000000000000000 [ 1908.151596][T27432] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1908.151614][T27432] R13: 0000000000000000 R14: 00007fc2573b5fa0 R15: 00007fff49d30318 [ 1908.151655][T27432] [ 1908.417382][ C1] vkms_vblank_simulate: vblank timer overrun [ 1908.438355][T27432] sysctl could not get directory: /net/ipv4 -12 [ 1908.460302][T27430] ecryptfs_parse_packet_length: Error parsing packet length [ 1908.467695][T27430] ecryptfs_miscdev_write: Error parsing packet length; rc = [-22] [ 1908.484725][T27441] blktrace: Concurrent blktraces are not allowed on loop2 [ 1908.828488][T27448] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 1908.839301][T27448] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1908.845644][T27448] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 1908.870476][T27448] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1908.899920][ T30] audit: type=1326 audit(4294970012.365:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27449 comm="syz.2.3419" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fc25718e929 code=0x0 [ 1909.596441][T27468] netlink: 'syz.1.3423': attribute type 10 has an invalid length. [ 1909.621114][T27468] netlink: 230 bytes leftover after parsing attributes in process `syz.1.3423'. [ 1909.658711][T27468] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check. [ 1909.846379][T27470] ecryptfs_parse_packet_length: Error parsing packet length [ 1909.883245][T27470] ecryptfs_miscdev_write: Error parsing packet length; rc = [-22] [ 1910.858050][ T5151] Bluetooth: hci2: command 0x0406 tx timeout [ 1910.864207][ T5151] Bluetooth: hci0: command 0x0406 tx timeout [ 1910.871018][ T5151] Bluetooth: hci4: command 0x0406 tx timeout [ 1910.945999][T27489] Bluetooth: hci1: command 0x0406 tx timeout [ 1913.156111][T27517] [U]  [ 1913.159011][T27517] [U] [ 1913.161768][T27517] [U] [ 1913.164545][T27517] [U] [ 1913.168397][T27517] [U] [ 1913.171167][T27517] [U] [ 1913.173901][T27517] [U] [ 1913.176636][T27517] [U] [ 1913.192073][T27517] [U] [ 1913.194875][T27517] [U] [ 1913.197643][T27517] [U] [ 1913.200406][T27517] [U] [ 1913.206469][T27517] [U] [ 1913.209249][T27517] [U] [ 1913.211982][T27517] [U] [ 1913.214696][T27517] [U] [ 1913.260950][T27518] [U] [ 1913.314828][T27515] ecryptfs_parse_packet_length: Error parsing packet length [ 1913.356837][T27515] ecryptfs_miscdev_write: Error parsing packet length; rc = [-22] [ 1913.710911][T27522] FAULT_INJECTION: forcing a failure. [ 1913.710911][T27522] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1913.724271][T27522] CPU: 1 UID: 0 PID: 27522 Comm: syz.2.3437 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) [ 1913.724313][T27522] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1913.724331][T27522] Call Trace: [ 1913.724343][T27522] [ 1913.724355][T27522] dump_stack_lvl+0x16c/0x1f0 [ 1913.724410][T27522] should_fail_ex+0x512/0x640 [ 1913.724463][T27522] _copy_to_user+0x32/0xd0 [ 1913.724517][T27522] simple_read_from_buffer+0xcb/0x170 [ 1913.724561][T27522] proc_fail_nth_read+0x197/0x270 [ 1913.724601][T27522] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1913.724641][T27522] ? rw_verify_area+0xcf/0x680 [ 1913.724681][T27522] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1913.724730][T27522] vfs_read+0x1e4/0xc60 [ 1913.724796][T27522] ? __pfx___mutex_lock+0x10/0x10 [ 1913.724845][T27522] ? __pfx_vfs_read+0x10/0x10 [ 1913.724900][T27522] ? __fget_files+0x20e/0x3c0 [ 1913.724954][T27522] ksys_read+0x12a/0x250 [ 1913.724997][T27522] ? __pfx_ksys_read+0x10/0x10 [ 1913.725053][T27522] do_syscall_64+0xcd/0x490 [ 1913.725105][T27522] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1913.725137][T27522] RIP: 0033:0x7fc25718d33c [ 1913.725163][T27522] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 1913.725193][T27522] RSP: 002b:00007fc257f88030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1913.725222][T27522] RAX: ffffffffffffffda RBX: 00007fc2573b5fa0 RCX: 00007fc25718d33c [ 1913.725249][T27522] RDX: 000000000000000f RSI: 00007fc257f880a0 RDI: 0000000000000004 [ 1913.725269][T27522] RBP: 00007fc257f88090 R08: 0000000000000000 R09: 0000000000000000 [ 1913.725289][T27522] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1913.725308][T27522] R13: 0000000000000000 R14: 00007fc2573b5fa0 R15: 00007fff49d30318 [ 1913.725347][T27522] [ 1913.984776][T27524] FAULT_INJECTION: forcing a failure. [ 1913.984776][T27524] name fail_futex, interval 1, probability 0, space 0, times 1 [ 1914.051395][T27524] CPU: 1 UID: 0 PID: 27524 Comm: syz.1.3438 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) [ 1914.051441][T27524] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1914.051460][T27524] Call Trace: [ 1914.051471][T27524] [ 1914.051484][T27524] dump_stack_lvl+0x16c/0x1f0 [ 1914.051539][T27524] should_fail_ex+0x512/0x640 [ 1914.051594][T27524] get_futex_key+0x1d0/0x1540 [ 1914.051639][T27524] ? __pfx_get_futex_key+0x10/0x10 [ 1914.051682][T27524] ? mmap_region+0x1ee/0x3f0 [ 1914.051732][T27524] ? __get_unmapped_area+0x267/0x440 [ 1914.051781][T27524] futex_wake+0xea/0x530 [ 1914.051853][T27524] ? __pfx_futex_wake+0x10/0x10 [ 1914.051911][T27524] ? up_write+0x1b2/0x520 [ 1914.051967][T27524] do_futex+0x1e3/0x350 [ 1914.052013][T27524] ? __pfx_do_futex+0x10/0x10 [ 1914.052067][T27524] __x64_sys_futex+0x1e0/0x4c0 [ 1914.052117][T27524] ? __pfx___x64_sys_futex+0x10/0x10 [ 1914.052158][T27524] ? ksys_mmap_pgoff+0x85/0x5c0 [ 1914.052200][T27524] ? xfd_validate_state+0x61/0x180 [ 1914.052244][T27524] ? __pfx_ksys_read+0x10/0x10 [ 1914.052305][T27524] do_syscall_64+0xcd/0x490 [ 1914.052361][T27524] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1914.052396][T27524] RIP: 0033:0x7fde0038e929 [ 1914.052424][T27524] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1914.052460][T27524] RSP: 002b:00007fde012790e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1914.052494][T27524] RAX: ffffffffffffffda RBX: 00007fde005b5fa8 RCX: 00007fde0038e929 [ 1914.052517][T27524] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fde005b5fac [ 1914.052538][T27524] RBP: 00007fde005b5fa0 R08: 00007fde0127a000 R09: 0000000000000000 [ 1914.052559][T27524] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fde005b5fac [ 1914.052580][T27524] R13: 0000000000000000 R14: 00007ffdab121ac0 R15: 00007ffdab121ba8 [ 1914.052623][T27524] [ 1914.940227][T27489] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 1915.339656][T27531] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 1915.405688][T27531] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1915.418864][T27531] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 1915.425835][T27531] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 1915.471855][T27531] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1916.664837][T27579] vivid-003: ================= START STATUS ================= [ 1916.676638][T27579] vivid-003: Radio HW Seek Mode: Bounded [ 1916.688355][T27579] vivid-003: Radio Programmable HW Seek: false [ 1916.694713][T27579] vivid-003: RDS Rx I/O Mode: Block I/O [ 1916.709528][T27579] vivid-003: Generate RBDS Instead of RDS: false [ 1916.726494][T27579] vivid-003: RDS Reception: true [ 1916.734810][T27579] vivid-003: RDS Program Type: 0 inactive [ 1916.744688][T27579] vivid-003: RDS PS Name: inactive [ 1916.750634][T27579] vivid-003: RDS Radio Text: inactive [ 1916.756586][T27579] vivid-003: RDS Traffic Announcement: false inactive [ 1916.769500][T27579] vivid-003: RDS Traffic Program: false inactive [ 1916.775944][T27579] vivid-003: RDS Music: false inactive [ 1916.787377][T27489] Bluetooth: hci1: SCO packet for unknown connection handle 0 [ 1916.788517][T27579] vivid-003: ================== END STATUS ================== [ 1916.919645][T27588] FAULT_INJECTION: forcing a failure. [ 1916.919645][T27588] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1916.941684][T27588] CPU: 0 UID: 0 PID: 27588 Comm: syz.1.3456 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) [ 1916.941721][T27588] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1916.941739][T27588] Call Trace: [ 1916.941749][T27588] [ 1916.941760][T27588] dump_stack_lvl+0x16c/0x1f0 [ 1916.941829][T27588] should_fail_ex+0x512/0x640 [ 1916.941883][T27588] _copy_from_user+0x2e/0xd0 [ 1916.941934][T27588] video_usercopy+0x723/0x1440 [ 1916.941983][T27588] ? __pfx___video_do_ioctl+0x10/0x10 [ 1916.942031][T27588] ? __pfx_video_usercopy+0x10/0x10 [ 1916.942096][T27588] ? __fget_files+0x20e/0x3c0 [ 1916.942155][T27588] v4l2_ioctl+0x1bd/0x250 [ 1916.942198][T27588] ? __pfx_v4l2_ioctl+0x10/0x10 [ 1916.942244][T27588] __x64_sys_ioctl+0x18b/0x210 [ 1916.942286][T27588] do_syscall_64+0xcd/0x490 [ 1916.942341][T27588] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1916.942374][T27588] RIP: 0033:0x7fde0038e929 [ 1916.942397][T27588] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1916.942431][T27588] RSP: 002b:00007fde01279038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1916.942463][T27588] RAX: ffffffffffffffda RBX: 00007fde005b5fa0 RCX: 00007fde0038e929 [ 1916.942485][T27588] RDX: 0000000000000038 RSI: 000000004020565a RDI: 0000000000000003 [ 1916.942504][T27588] RBP: 00007fde01279090 R08: 0000000000000000 R09: 0000000000000000 [ 1916.942524][T27588] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1916.942541][T27588] R13: 0000000000000000 R14: 00007fde005b5fa0 R15: 00007ffdab121ba8 [ 1916.942583][T27588] [ 1917.115260][T27489] Bluetooth: hci4: command 0x0406 tx timeout [ 1917.173480][T27580] ecryptfs_parse_packet_length: Error parsing packet length [ 1917.181569][T27580] ecryptfs_miscdev_write: Error parsing packet length; rc = [-22] [ 1917.498767][T27489] Bluetooth: hci2: command 0x0406 tx timeout [ 1917.504877][T27489] Bluetooth: hci0: command 0x0406 tx timeout [ 1917.511588][ T5846] Bluetooth: hci1: command 0x0406 tx timeout [ 1917.951423][T27613] FAULT_INJECTION: forcing a failure. [ 1917.951423][T27613] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1917.980205][T27613] CPU: 1 UID: 0 PID: 27613 Comm: syz.2.3462 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) [ 1917.980238][T27613] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1917.980252][T27613] Call Trace: [ 1917.980260][T27613] [ 1917.980269][T27613] dump_stack_lvl+0x16c/0x1f0 [ 1917.980308][T27613] should_fail_ex+0x512/0x640 [ 1917.980346][T27613] _copy_to_user+0x32/0xd0 [ 1917.980384][T27613] simple_read_from_buffer+0xcb/0x170 [ 1917.980416][T27613] proc_fail_nth_read+0x197/0x270 [ 1917.980444][T27613] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1917.980473][T27613] ? rw_verify_area+0xcf/0x680 [ 1917.980502][T27613] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1917.980529][T27613] vfs_read+0x1e4/0xc60 [ 1917.980564][T27613] ? __pfx___mutex_lock+0x10/0x10 [ 1917.980608][T27613] ? __pfx_vfs_read+0x10/0x10 [ 1917.980652][T27613] ? __fget_files+0x20e/0x3c0 [ 1917.980692][T27613] ksys_read+0x12a/0x250 [ 1917.980731][T27613] ? __pfx_ksys_read+0x10/0x10 [ 1917.980771][T27613] do_syscall_64+0xcd/0x490 [ 1917.980811][T27613] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1917.980839][T27613] RIP: 0033:0x7fc25718d33c [ 1917.980857][T27613] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 1917.980880][T27613] RSP: 002b:00007fc257f88030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1917.980902][T27613] RAX: ffffffffffffffda RBX: 00007fc2573b5fa0 RCX: 00007fc25718d33c [ 1917.980917][T27613] RDX: 000000000000000f RSI: 00007fc257f880a0 RDI: 0000000000000004 [ 1917.980931][T27613] RBP: 00007fc257f88090 R08: 0000000000000000 R09: 0000000000000000 [ 1917.980948][T27613] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1917.980962][T27613] R13: 0000000000000000 R14: 00007fc2573b5fa0 R15: 00007fff49d30318 [ 1917.980994][T27613] [ 1918.206864][T27609] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3459'. [ 1919.079121][T27625] FAULT_INJECTION: forcing a failure. [ 1919.079121][T27625] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1919.117220][T27625] CPU: 1 UID: 0 PID: 27625 Comm: syz.3.3465 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) [ 1919.117261][T27625] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1919.117281][T27625] Call Trace: [ 1919.117291][T27625] [ 1919.117304][T27625] dump_stack_lvl+0x16c/0x1f0 [ 1919.117358][T27625] should_fail_ex+0x512/0x640 [ 1919.117409][T27625] should_fail_alloc_page+0xe7/0x130 [ 1919.117444][T27625] prepare_alloc_pages+0x3c2/0x610 [ 1919.117488][T27625] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 1919.117544][T27625] ? __pfx_stack_trace_save+0x10/0x10 [ 1919.117578][T27625] ? stack_depot_save_flags+0x28/0xa40 [ 1919.117631][T27625] ? look_up_lock_class+0x59/0x150 [ 1919.117681][T27625] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1919.117734][T27625] ? ima_match_policy+0x7f9/0x22e0 [ 1919.117794][T27625] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1919.117844][T27625] ? policy_nodemask+0xea/0x4e0 [ 1919.117901][T27625] alloc_pages_mpol+0x1fb/0x550 [ 1919.117941][T27625] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1919.117984][T27625] alloc_pages_noprof+0x131/0x390 [ 1919.118017][T27625] __pmd_alloc+0x3b/0x930 [ 1919.118051][T27625] ? find_held_lock+0x2b/0x80 [ 1919.118086][T27625] __handle_mm_fault+0xaac/0x5490 [ 1919.118141][T27625] ? __pfx___handle_mm_fault+0x10/0x10 [ 1919.118182][T27625] ? __pfx_mt_find+0x10/0x10 [ 1919.118236][T27625] ? find_vma+0xbf/0x140 [ 1919.118267][T27625] ? __pfx_find_vma+0x10/0x10 [ 1919.118304][T27625] handle_mm_fault+0x589/0xd10 [ 1919.118348][T27625] ? __pkru_allows_pkey+0x41/0xb0 [ 1919.118394][T27625] do_user_addr_fault+0x7a6/0x1370 [ 1919.118444][T27625] ? rcu_is_watching+0x12/0xc0 [ 1919.118481][T27625] exc_page_fault+0x5c/0xb0 [ 1919.118529][T27625] asm_exc_page_fault+0x26/0x30 [ 1919.118560][T27625] RIP: 0010:rep_movs_alternative+0x11/0x90 [ 1919.118600][T27625] Code: c3 cc cc cc cc 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 83 f9 40 73 44 83 f9 08 73 25 85 c9 74 0f 8a 06 <88> 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 bd 10 04 00 66 66 2e 0f [ 1919.118630][T27625] RSP: 0018:ffffc90011457af0 EFLAGS: 00050202 [ 1919.118654][T27625] RAX: 0000000000000030 RBX: 0000000000000002 RCX: 0000000000000002 [ 1919.118672][T27625] RDX: ffffed10061e7c01 RSI: ffff888030f3e000 RDI: 0000000000000000 [ 1919.118692][T27625] RBP: 0000000000000000 R08: 0000000000000000 R09: ffffed10061e7c00 [ 1919.118710][T27625] R10: ffff888030f3e001 R11: 0000000000000001 R12: ffffc90011457da0 [ 1919.118729][T27625] R13: 0000000000000002 R14: ffff888030f3e000 R15: 00007ffffffff000 [ 1919.118771][T27625] _copy_to_iter+0x383/0x16f0 [ 1919.118824][T27625] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 1919.118876][T27625] ? enable_show+0x27/0x80 [ 1919.118920][T27625] ? __pfx__copy_to_iter+0x10/0x10 [ 1919.118979][T27625] ? kernfs_seq_stop+0xcd/0x120 [ 1919.119020][T27625] ? kernfs_put_active+0x86/0xe0 [ 1919.119074][T27625] seq_read_iter+0xcf8/0x12c0 [ 1919.119131][T27625] kernfs_fop_read_iter+0x40f/0x5a0 [ 1919.119164][T27625] ? rw_verify_area+0xcf/0x680 [ 1919.119209][T27625] vfs_read+0x8bc/0xc60 [ 1919.119259][T27625] ? __pfx___mutex_lock+0x10/0x10 [ 1919.119308][T27625] ? __pfx_vfs_read+0x10/0x10 [ 1919.119382][T27625] ksys_read+0x12a/0x250 [ 1919.119426][T27625] ? __pfx_ksys_read+0x10/0x10 [ 1919.119483][T27625] do_syscall_64+0xcd/0x490 [ 1919.119537][T27625] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1919.119570][T27625] RIP: 0033:0x7f0dcf78e929 [ 1919.119595][T27625] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1919.119625][T27625] RSP: 002b:00007f0dd064f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1919.119653][T27625] RAX: ffffffffffffffda RBX: 00007f0dcf9b5fa0 RCX: 00007f0dcf78e929 [ 1919.119675][T27625] RDX: 0000000000001f40 RSI: 0000000000000000 RDI: 0000000000000003 [ 1919.119693][T27625] RBP: 00007f0dd064f090 R08: 0000000000000000 R09: 0000000000000000 [ 1919.119713][T27625] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1919.119731][T27625] R13: 0000000000000000 R14: 00007f0dcf9b5fa0 R15: 00007ffd70d3da38 [ 1919.119770][T27625] [ 1919.173480][T27627] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3466'. [ 1919.177692][ C1] vkms_vblank_simulate: vblank timer overrun [ 1919.499458][T27632] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3466'. [ 1919.581878][T27597] Bluetooth: hci2: command 0x0406 tx timeout [ 1919.848945][T27627] geneve1: entered promiscuous mode [ 1919.854343][T27627] geneve1: entered allmulticast mode [ 1920.381474][T27645] ecryptfs_parse_packet_length: Error parsing packet length [ 1920.391055][T27645] ecryptfs_miscdev_write: Error parsing packet length; rc = [-22] [ 1921.523201][T27666] FAULT_INJECTION: forcing a failure. [ 1921.523201][T27666] name failslab, interval 1, probability 0, space 0, times 0 [ 1921.608465][T27666] CPU: 0 UID: 0 PID: 27666 Comm: syz.2.3477 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) [ 1921.608511][T27666] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1921.608532][T27666] Call Trace: [ 1921.608543][T27666] [ 1921.608556][T27666] dump_stack_lvl+0x16c/0x1f0 [ 1921.608610][T27666] should_fail_ex+0x512/0x640 [ 1921.608658][T27666] ? fs_reclaim_acquire+0xae/0x150 [ 1921.608711][T27666] ? tomoyo_encode2+0x100/0x3e0 [ 1921.608752][T27666] should_failslab+0xc2/0x120 [ 1921.608789][T27666] __kmalloc_noprof+0xd2/0x510 [ 1921.608835][T27666] ? d_absolute_path+0x136/0x1a0 [ 1921.608875][T27666] tomoyo_encode2+0x100/0x3e0 [ 1921.608923][T27666] tomoyo_encode+0x29/0x50 [ 1921.608963][T27666] tomoyo_realpath_from_path+0x18f/0x6e0 [ 1921.609020][T27666] tomoyo_path_number_perm+0x245/0x580 [ 1921.609055][T27666] ? tomoyo_path_number_perm+0x237/0x580 [ 1921.609096][T27666] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 1921.609137][T27666] ? find_held_lock+0x2b/0x80 [ 1921.609204][T27666] ? find_held_lock+0x2b/0x80 [ 1921.609234][T27666] ? hook_file_ioctl_common+0x145/0x410 [ 1921.609277][T27666] ? __fget_files+0x20e/0x3c0 [ 1921.609328][T27666] security_file_ioctl+0x9b/0x240 [ 1921.609368][T27666] __x64_sys_ioctl+0xb7/0x210 [ 1921.609408][T27666] do_syscall_64+0xcd/0x490 [ 1921.609460][T27666] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1921.609493][T27666] RIP: 0033:0x7fc25718e929 [ 1921.609518][T27666] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1921.609548][T27666] RSP: 002b:00007fc257f88038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1921.609579][T27666] RAX: ffffffffffffffda RBX: 00007fc2573b5fa0 RCX: 00007fc25718e929 [ 1921.609601][T27666] RDX: 00002000000001c0 RSI: fffffffffffffd03 RDI: 0000000000000005 [ 1921.609620][T27666] RBP: 00007fc257f88090 R08: 0000000000000000 R09: 0000000000000000 [ 1921.609639][T27666] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1921.609656][T27666] R13: 0000000000000000 R14: 00007fc2573b5fa0 R15: 00007fff49d30318 [ 1921.609698][T27666] [ 1921.609831][T27666] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1922.171907][T27671] [U]  [ 1922.174777][T27671] [U] [ 1922.177519][T27671] [U] [ 1922.180263][T27671] [U] [ 1922.203127][T27671] [U] [ 1922.205936][T27671] [U] [ 1922.208692][T27671] [U] [ 1922.211436][T27671] [U] [ 1922.219648][T27671] [U] [ 1922.222455][T27671] [U] [ 1922.225228][T27671] [U] [ 1922.228008][T27671] [U] [ 1922.245641][T27671] [U] [ 1922.248517][T27671] [U] [ 1922.251286][T27671] [U] [ 1922.254037][T27671] [U] [ 1922.291693][T27672] [U] [ 1922.404361][T27678] [U]  [ 1922.407266][T27678] [U] [ 1922.410039][T27678] [U] [ 1922.412805][T27678] [U] [ 1922.440788][T27678] [U] [ 1922.443568][T27678] [U] [ 1922.446308][T27678] [U] [ 1922.449045][T27678] [U] [ 1922.453108][T27678] [U] [ 1922.455892][T27678] [U] [ 1922.458663][T27678] [U] [ 1922.461425][T27678] [U] [ 1922.490092][T27678] [U] [ 1922.492965][T27678] [U] [ 1922.495709][T27678] [U] [ 1922.498434][T27678] [U] [ 1922.619638][T27680] [U] [ 1922.923446][T27689] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3481'. [ 1923.594050][T27693] ecryptfs_parse_packet_length: Error parsing packet length [ 1923.614932][T27693] ecryptfs_miscdev_write: Error parsing packet length; rc = [-22] [ 1924.238664][T27713] FAULT_INJECTION: forcing a failure. [ 1924.238664][T27713] name failslab, interval 1, probability 0, space 0, times 0 [ 1924.310600][T27717] FAULT_INJECTION: forcing a failure. [ 1924.310600][T27717] name failslab, interval 1, probability 0, space 0, times 0 [ 1924.327970][T27713] CPU: 1 UID: 0 PID: 27713 Comm: syz.2.3486 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) [ 1924.328011][T27713] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1924.328029][T27713] Call Trace: [ 1924.328039][T27713] [ 1924.328051][T27713] dump_stack_lvl+0x16c/0x1f0 [ 1924.328107][T27713] should_fail_ex+0x512/0x640 [ 1924.328152][T27713] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 1924.328207][T27713] should_failslab+0xc2/0x120 [ 1924.328238][T27713] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 1924.328288][T27713] ? hugetlbfs_alloc_inode+0x8c/0x1d0 [ 1924.328334][T27713] hugetlbfs_alloc_inode+0x8c/0x1d0 [ 1924.328364][T27713] ? __pfx_hugetlbfs_alloc_inode+0x10/0x10 [ 1924.328397][T27713] alloc_inode+0x64/0x240 [ 1924.328430][T27713] new_inode+0x22/0x1c0 [ 1924.328467][T27713] hugetlbfs_get_inode+0x354/0x730 [ 1924.328498][T27713] ? __fget_files+0x20e/0x3c0 [ 1924.328560][T27713] hugetlb_file_setup+0x15b/0x620 [ 1924.328597][T27713] ksys_mmap_pgoff+0x189/0x5c0 [ 1924.328637][T27713] __x64_sys_mmap+0x125/0x190 [ 1924.328685][T27713] do_syscall_64+0xcd/0x490 [ 1924.328734][T27713] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1924.328765][T27713] RIP: 0033:0x7fc25718e929 [ 1924.328789][T27713] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1924.328819][T27713] RSP: 002b:00007fc257f25038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1924.328847][T27713] RAX: ffffffffffffffda RBX: 00007fc2573b6240 RCX: 00007fc25718e929 [ 1924.328868][T27713] RDX: 00004000000000df RSI: 000000000000000c RDI: 0000000000000000 [ 1924.328886][T27713] RBP: 00007fc257f25090 R08: 0000000000010006 R09: 0000300000000000 [ 1924.328906][T27713] R10: 0000000000044eb2 R11: 0000000000000246 R12: 0000000000000001 [ 1924.328925][T27713] R13: 0000000000000001 R14: 00007fc2573b6240 R15: 00007fff49d30318 [ 1924.328962][T27713] [ 1924.618067][T27717] CPU: 0 UID: 0 PID: 27717 Comm: syz.0.3488 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) [ 1924.618110][T27717] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1924.618129][T27717] Call Trace: [ 1924.618140][T27717] [ 1924.618152][T27717] dump_stack_lvl+0x16c/0x1f0 [ 1924.618207][T27717] should_fail_ex+0x512/0x640 [ 1924.618254][T27717] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 1924.618307][T27717] should_failslab+0xc2/0x120 [ 1924.618351][T27717] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 1924.618399][T27717] ? copy_net_ns+0xe8/0x5f0 [ 1924.618459][T27717] copy_net_ns+0xe8/0x5f0 [ 1924.618491][T27717] ? copy_cgroup_ns+0x71/0x700 [ 1924.618537][T27717] create_new_namespaces+0x3ea/0xa90 [ 1924.618584][T27717] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 1924.618624][T27717] ksys_unshare+0x45b/0xa40 [ 1924.618669][T27717] ? __pfx_ksys_unshare+0x10/0x10 [ 1924.618712][T27717] ? ksys_write+0x1ac/0x250 [ 1924.618772][T27717] __x64_sys_unshare+0x31/0x40 [ 1924.618814][T27717] do_syscall_64+0xcd/0x490 [ 1924.618868][T27717] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1924.618903][T27717] RIP: 0033:0x7f1b2f58e929 [ 1924.618928][T27717] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1924.618960][T27717] RSP: 002b:00007f1b303b6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 1924.618990][T27717] RAX: ffffffffffffffda RBX: 00007f1b2f7b5fa0 RCX: 00007f1b2f58e929 [ 1924.619011][T27717] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 1924.619030][T27717] RBP: 00007f1b303b6090 R08: 0000000000000000 R09: 0000000000000000 [ 1924.619049][T27717] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1924.619067][T27717] R13: 0000000000000001 R14: 00007f1b2f7b5fa0 R15: 00007fffd856e4f8 [ 1924.619108][T27717] [ 1924.873879][ T1305] ieee802154 phy0 wpan0: encryption failed: -22 [ 1924.880334][ T1305] ieee802154 phy1 wpan1: encryption failed: -22 [ 1926.364485][T27743] [U]  [ 1926.367368][T27743] [U] [ 1926.370108][T27743] [U] [ 1926.372826][T27743] [U] [ 1926.411321][T27743] [U] [ 1926.414151][T27743] [U] [ 1926.416919][T27743] [U] [ 1926.419691][T27743] [U] [ 1926.481061][T27743] [U] [ 1926.483868][T27743] [U] [ 1926.486636][T27743] [U] [ 1926.489397][T27743] [U] [ 1926.494475][T27743] [U] [ 1926.497267][T27743] [U] [ 1926.500005][T27743] [U] [ 1926.502726][T27743] [U] [ 1926.509308][T27747] [U] [ 1928.368962][T27768] random: crng reseeded on system resumption [ 1929.662393][T27785] ecryptfs_parse_packet_length: Error parsing packet length [ 1929.691960][T27785] ecryptfs_miscdev_write: Error parsing packet length; rc = [-22] [ 1930.489077][T27810] netlink: 326 bytes leftover after parsing attributes in process `syz.2.3499'. [ 1930.940898][T27821] [U]  [ 1930.943748][T27821] [U] [ 1930.946468][T27821] [U] [ 1930.949210][T27821] [U] [ 1931.088553][T27821] [U] [ 1931.091488][T27821] [U] [ 1931.094280][T27821] [U] [ 1931.097050][T27821] [U] [ 1931.148453][T27821] [U] [ 1931.151334][T27821] [U] [ 1931.154121][T27821] [U] [ 1931.156898][T27821] [U] [ 1931.168150][T27821] [U] [ 1931.170982][T27821] [U] [ 1931.173716][T27821] [U] [ 1931.176433][T27821] [U] [ 1931.202190][T27827] FAULT_INJECTION: forcing a failure. [ 1931.202190][T27827] name failslab, interval 1, probability 0, space 0, times 0 [ 1931.215102][T27827] CPU: 0 UID: 0 PID: 27827 Comm: syz.1.3503 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) [ 1931.215141][T27827] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1931.215160][T27827] Call Trace: [ 1931.215171][T27827] [ 1931.215182][T27827] dump_stack_lvl+0x16c/0x1f0 [ 1931.215234][T27827] should_fail_ex+0x512/0x640 [ 1931.215278][T27827] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 1931.215332][T27827] should_failslab+0xc2/0x120 [ 1931.215362][T27827] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 1931.215412][T27827] ? hugetlbfs_alloc_inode+0x8c/0x1d0 [ 1931.215447][T27827] hugetlbfs_alloc_inode+0x8c/0x1d0 [ 1931.215471][T27827] ? __pfx_hugetlbfs_alloc_inode+0x10/0x10 [ 1931.215498][T27827] alloc_inode+0x64/0x240 [ 1931.215526][T27827] new_inode+0x22/0x1c0 [ 1931.215555][T27827] hugetlbfs_get_inode+0x354/0x730 [ 1931.215579][T27827] ? __fget_files+0x20e/0x3c0 [ 1931.215634][T27827] hugetlb_file_setup+0x15b/0x620 [ 1931.215666][T27827] ksys_mmap_pgoff+0x189/0x5c0 [ 1931.215700][T27827] __x64_sys_mmap+0x125/0x190 [ 1931.215741][T27827] do_syscall_64+0xcd/0x490 [ 1931.215784][T27827] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1931.215811][T27827] RIP: 0033:0x7fde0038e929 [ 1931.215831][T27827] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1931.215860][T27827] RSP: 002b:00007fde01279038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1931.215886][T27827] RAX: ffffffffffffffda RBX: 00007fde005b5fa0 RCX: 00007fde0038e929 [ 1931.215904][T27827] RDX: 00004000000000df RSI: 0000000000000004 RDI: 0000000000000000 [ 1931.215920][T27827] RBP: 00007fde01279090 R08: 0000000000000401 R09: 0000300000000000 [ 1931.215938][T27827] R10: 0000000000040eb1 R11: 0000000000000246 R12: 0000000000000001 [ 1931.215955][T27827] R13: 0000000000000001 R14: 00007fde005b5fa0 R15: 00007ffdab121ba8 [ 1931.215988][T27827] [ 1931.308146][T27821] [U] [ 1932.436917][ T49] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 3192 with max blocks 124 with error 117 [ 1932.755004][ T49] EXT4-fs (sda1): This should not happen!! Data will be lost [ 1932.755004][ T49] [ 1932.963201][ T49] EXT4-fs (sda1): Delayed block allocation failed for inode 2029 at logical offset 3274 with max blocks 189 with error 117 [ 1933.023431][ T49] EXT4-fs (sda1): This should not happen!! Data will be lost [ 1933.023431][ T49] [ 1933.191067][ T49] EXT4-fs (sda1): Delayed block allocation failed for inode 2034 at logical offset 3221 with max blocks 62 with error 117 [ 1933.311799][ T49] EXT4-fs (sda1): This should not happen!! Data will be lost [ 1933.311799][ T49] [ 1933.498984][T27857] ecryptfs_parse_packet_length: Error parsing packet length [ 1933.506436][T27857] ecryptfs_miscdev_write: Error parsing packet length; rc = [-22] [ 1935.375974][T27884] Invalid ELF header magic: != ELF [ 1935.396600][T27884] Invalid ELF header magic: != ELF [ 1935.435000][T27884] Invalid ELF header magic: != ELF [ 1935.881112][T27884] Invalid ELF header magic: != ELF [ 1936.279008][T27884] Invalid ELF header magic: != ELF [ 1936.367854][T27884] Invalid ELF header magic: != ELF [ 1936.436713][T27878] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3513'. [ 1936.464781][T27884] Invalid ELF header magic: != ELF [ 1936.551474][T27878] hsr_slave_0: left promiscuous mode [ 1936.561463][T27878] hsr_slave_1: left promiscuous mode [ 1936.604488][T27884] Invalid ELF header magic: != ELF [ 1936.741695][T27884] Invalid ELF header magic: != ELF syzkaller syzkaller login: [ 1937.340431][T27911] vhci_hcd: invalid port number 16 [ 1937.345643][T27911] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub [ 1938.175059][T27922] ecryptfs_parse_packet_length: Error parsing packet length [ 1938.206460][T27922] ecryptfs_miscdev_write: Error parsing packet length; rc = [-22] [ 1938.461372][ T59] EXT4-fs (sda1): Delayed block allocation failed for inode 2033 at logical offset 5 with max blocks 2 with error 117 [ 1938.499925][ T59] EXT4-fs (sda1): This should not happen!! Data will be lost [ 1938.499925][ T59] [ 1940.060891][T27957] ref_tracker: memory allocation failure, unreliable refcount tracker. [ 1940.272162][T27950] FAULT_INJECTION: forcing a failure. [ 1940.272162][T27950] name failslab, interval 1, probability 0, space 0, times 0 [ 1940.300419][T27950] CPU: 0 UID: 0 PID: 27950 Comm: syz.0.3528 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) [ 1940.300460][T27950] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1940.300477][T27950] Call Trace: [ 1940.300487][T27950] [ 1940.300499][T27950] dump_stack_lvl+0x16c/0x1f0 [ 1940.300549][T27950] should_fail_ex+0x512/0x640 [ 1940.300592][T27950] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 1940.300636][T27950] should_failslab+0xc2/0x120 [ 1940.300664][T27950] __kmalloc_cache_noprof+0x6a/0x3e0 [ 1940.300705][T27950] ? snd_seq_port_connect+0x61/0x550 [ 1940.300763][T27950] snd_seq_port_connect+0x61/0x550 [ 1940.300813][T27950] ? _raw_read_unlock+0x28/0x50 [ 1940.300857][T27950] ? check_subscription_permission.isra.0+0xf5/0x240 [ 1940.300894][T27950] snd_seq_ioctl_subscribe_port+0x211/0x450 [ 1940.300933][T27950] ? __pfx_snd_seq_ioctl_subscribe_port+0x10/0x10 [ 1940.300981][T27950] snd_seq_kernel_client_ctl+0x10a/0x1c0 [ 1940.301018][T27950] snd_seq_oss_midi_open+0x564/0x660 [ 1940.301070][T27950] ? __pfx_snd_seq_oss_midi_open+0x10/0x10 [ 1940.301125][T27950] ? rcu_is_watching+0x12/0xc0 [ 1940.301158][T27950] ? trace_contention_end+0xdd/0x130 [ 1940.301209][T27950] snd_seq_oss_synth_reset+0x437/0x880 [ 1940.301255][T27950] ? __pfx_snd_seq_oss_synth_reset+0x10/0x10 [ 1940.301299][T27950] ? __pfx___fsnotify_parent+0x10/0x10 [ 1940.301351][T27950] snd_seq_oss_reset+0x73/0x290 [ 1940.301387][T27950] ? __pfx_odev_release+0x10/0x10 [ 1940.301416][T27950] snd_seq_oss_release+0x7c/0x180 [ 1940.301452][T27950] odev_release+0x4c/0x70 [ 1940.301480][T27950] __fput+0x402/0xb70 [ 1940.301522][T27950] task_work_run+0x14d/0x240 [ 1940.301574][T27950] ? __pfx_task_work_run+0x10/0x10 [ 1940.301625][T27950] ? __pfx___do_sys_close_range+0x10/0x10 [ 1940.301683][T27950] exit_to_user_mode_loop+0xeb/0x110 [ 1940.301736][T27950] do_syscall_64+0x3f6/0x490 [ 1940.301790][T27950] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1940.301823][T27950] RIP: 0033:0x7f1b2f58e929 [ 1940.301867][T27950] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1940.301900][T27950] RSP: 002b:00007f1b303b6038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 1940.301931][T27950] RAX: 0000000000000000 RBX: 00007f1b2f7b5fa0 RCX: 00007f1b2f58e929 [ 1940.301953][T27950] RDX: 0000000000000000 RSI: 000000000000000a RDI: 0000000000000002 [ 1940.301972][T27950] RBP: 00007f1b303b6090 R08: 0000000000000000 R09: 0000000000000000 [ 1940.301991][T27950] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1940.302008][T27950] R13: 0000000000000000 R14: 00007f1b2f7b5fa0 R15: 00007fffd856e4f8 [ 1940.302061][T27950] [ 1941.149134][T27962] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3530'. [ 1942.520299][ C0] vcan0: j1939_tp_rxtimer: 0xffff8880590ae800: rx timeout, send abort [ 1942.530005][ C0] vcan0: j1939_xtp_rx_abort_one: 0xffff8880590ae800: 0x00000: (3) A timeout occurred and this is the connection abort to close the session. [ 1943.928699][T27992] ecryptfs_parse_packet_length: Error parsing packet length [ 1943.936048][T27992] ecryptfs_miscdev_write: Error parsing packet length; rc = [-22] [ 1948.561008][ T59] EXT4-fs (sda1): Delayed block allocation failed for inode 2029 at logical offset 3406 with max blocks 57 with error 117 [ 1948.649925][ T59] EXT4-fs (sda1): This should not happen!! Data will be lost [ 1948.649925][ T59] [ 1948.715521][T28056] FAULT_INJECTION: forcing a failure. [ 1948.715521][T28056] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1948.730273][T28056] CPU: 0 UID: 0 PID: 28056 Comm: syz.3.3549 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) [ 1948.730313][T28056] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1948.730333][T28056] Call Trace: [ 1948.730343][T28056] [ 1948.730356][T28056] dump_stack_lvl+0x16c/0x1f0 [ 1948.730410][T28056] should_fail_ex+0x512/0x640 [ 1948.730462][T28056] _copy_to_iter+0x29f/0x16f0 [ 1948.730520][T28056] ? anon_pipe_read+0x7de/0x1210 [ 1948.730566][T28056] ? __pfx__copy_to_iter+0x10/0x10 [ 1948.730616][T28056] ? __pfx___mutex_lock+0x10/0x10 [ 1948.730685][T28056] copy_page_to_iter+0x12a/0x1e0 [ 1948.730741][T28056] anon_pipe_read+0x47e/0x1210 [ 1948.730803][T28056] ? __pfx_anon_pipe_read+0x10/0x10 [ 1948.730855][T28056] ? __pfx_autoremove_wake_function+0x10/0x10 [ 1948.730895][T28056] ? __pfx_aa_file_perm+0x10/0x10 [ 1948.730928][T28056] ? __lock_acquire+0x622/0x1c90 [ 1948.730961][T28056] fifo_pipe_read+0x1e/0xd0 [ 1948.730993][T28056] do_iter_readv_writev+0x735/0x950 [ 1948.731026][T28056] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 1948.731068][T28056] ? bpf_lsm_file_permission+0x9/0x10 [ 1948.731113][T28056] ? security_file_permission+0x71/0x210 [ 1948.731145][T28056] ? rw_verify_area+0xcf/0x680 [ 1948.731177][T28056] vfs_readv+0x4cb/0x8b0 [ 1948.731215][T28056] ? __pfx_vfs_readv+0x10/0x10 [ 1948.731267][T28056] ? __fget_files+0x20e/0x3c0 [ 1948.731299][T28056] ? __fget_files+0x140/0x3c0 [ 1948.731337][T28056] ? do_readv+0x28c/0x340 [ 1948.731364][T28056] do_readv+0x28c/0x340 [ 1948.731393][T28056] ? __pfx_do_readv+0x10/0x10 [ 1948.731431][T28056] do_syscall_64+0xcd/0x490 [ 1948.731469][T28056] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1948.731492][T28056] RIP: 0033:0x7f0dcf78e929 [ 1948.731518][T28056] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1948.731543][T28056] RSP: 002b:00007f0dd060d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000013 [ 1948.731565][T28056] RAX: ffffffffffffffda RBX: 00007f0dcf9b6160 RCX: 00007f0dcf78e929 [ 1948.731581][T28056] RDX: 0000000000000001 RSI: 0000200000000a80 RDI: 0000000000000003 [ 1948.731596][T28056] RBP: 00007f0dd060d090 R08: 0000000000000000 R09: 0000000000000000 [ 1948.731611][T28056] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1948.731625][T28056] R13: 0000000000000000 R14: 00007f0dcf9b6160 R15: 00007ffd70d3da38 [ 1948.731655][T28056] [ 1949.276278][T28062] ecryptfs_parse_packet_length: Error parsing packet length [ 1949.324899][T28062] ecryptfs_miscdev_write: Error parsing packet length; rc = [-22] [ 1950.820751][T28090] [U]  [ 1950.823617][T28090] [U] [ 1950.826353][T28090] [U] [ 1950.829080][T28090] [U] [ 1950.835839][T28090] [U] [ 1950.838635][T28090] [U] [ 1950.841386][T28090] [U] [ 1950.844150][T28090] [U] [ 1950.847993][T28090] [U] [ 1950.850767][T28090] [U] [ 1950.853530][T28090] [U] [ 1950.856277][T28090] [U] [ 1950.859920][T28090] [U] [ 1950.862693][T28090] [U] [ 1950.865479][T28090] [U] [ 1950.868245][T28090] [U] [ 1950.878609][T28090] [U] [ 1950.881390][T28090] [U] [ 1950.884142][T28090] [U] [ 1950.887990][T28090] [U] [ 1950.888912][T28090] [U] [ 1950.888990][T28090] [U] [ 1950.889051][T28090] [U] [ 1950.889118][T28090] [U] [ 1950.889382][T28090] [U] [ 1950.889443][T28090] [U] [ 1950.889504][T28090] [U] [ 1950.889565][T28090] [U] [ 1950.889831][T28090] [U] [ 1950.889892][T28090] [U] [ 1950.889952][T28090] [U] [ 1950.890012][T28090] [U] [ 1950.890379][T28090] [U] [ 1950.928220][T28090] [U] [ 1950.930956][T28090] [U] [ 1950.933683][T28090] [U] [ 1950.948995][T28086] [U] [ 1952.278579][T28113] FAULT_INJECTION: forcing a failure. [ 1952.278579][T28113] name failslab, interval 1, probability 0, space 0, times 0 [ 1952.297862][T28113] CPU: 0 UID: 0 PID: 28113 Comm: syz.0.3561 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) [ 1952.297907][T28113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1952.297926][T28113] Call Trace: [ 1952.297938][T28113] [ 1952.297950][T28113] dump_stack_lvl+0x16c/0x1f0 [ 1952.298014][T28113] should_fail_ex+0x512/0x640 [ 1952.298062][T28113] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 1952.298117][T28113] should_failslab+0xc2/0x120 [ 1952.298150][T28113] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 1952.298203][T28113] ? ioctx_alloc+0x1a4/0x2120 [ 1952.298254][T28113] ioctx_alloc+0x1a4/0x2120 [ 1952.298313][T28113] ? find_held_lock+0x2b/0x80 [ 1952.298346][T28113] ? __pfx_ioctx_alloc+0x10/0x10 [ 1952.298387][T28113] ? __might_fault+0x13b/0x190 [ 1952.298449][T28113] __x64_sys_io_setup+0xc9/0x210 [ 1952.298497][T28113] do_syscall_64+0xcd/0x490 [ 1952.298555][T28113] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1952.298589][T28113] RIP: 0033:0x7f1b2f58e929 [ 1952.298617][T28113] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1952.298652][T28113] RSP: 002b:00007f1b303b6038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce [ 1952.298685][T28113] RAX: ffffffffffffffda RBX: 00007f1b2f7b5fa0 RCX: 00007f1b2f58e929 [ 1952.298708][T28113] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 000000000000ffff [ 1952.298731][T28113] RBP: 00007f1b2f610b39 R08: 0000000000000000 R09: 0000000000000000 [ 1952.298752][T28113] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1952.298774][T28113] R13: 0000000000000000 R14: 00007f1b2f7b5fa0 R15: 00007fffd856e4f8 [ 1952.298817][T28113] [ 1953.004510][T28110] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3560'. [ 1953.900705][T28137] FAULT_INJECTION: forcing a failure. [ 1953.900705][T28137] name failslab, interval 1, probability 0, space 0, times 0 [ 1953.962577][T28137] CPU: 0 UID: 0 PID: 28137 Comm: syz.3.3565 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) [ 1953.962620][T28137] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1953.962639][T28137] Call Trace: [ 1953.962650][T28137] [ 1953.962663][T28137] dump_stack_lvl+0x16c/0x1f0 [ 1953.962720][T28137] should_fail_ex+0x512/0x640 [ 1953.962768][T28137] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 1953.962823][T28137] should_failslab+0xc2/0x120 [ 1953.962863][T28137] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 1953.962911][T28137] ? rcu_is_watching+0x12/0xc0 [ 1953.962944][T28137] ? get_random_u64+0x57c/0x7d0 [ 1953.962982][T28137] ? prepare_creds+0x2c/0x7d0 [ 1953.963035][T28137] prepare_creds+0x2c/0x7d0 [ 1953.963098][T28137] copy_creds+0xa7/0xa50 [ 1953.963149][T28137] copy_process+0xff6/0x76a0 [ 1953.963206][T28137] ? __pfx_copy_process+0x10/0x10 [ 1953.963257][T28137] ? _copy_from_user+0x59/0xd0 [ 1953.963313][T28137] kernel_clone+0xfc/0x960 [ 1953.963351][T28137] ? get_pid_task+0xfc/0x250 [ 1953.963394][T28137] ? __pfx_kernel_clone+0x10/0x10 [ 1953.963458][T28137] __do_sys_clone3+0x212/0x290 [ 1953.963499][T28137] ? __pfx___do_sys_clone3+0x10/0x10 [ 1953.963560][T28137] ? __fget_files+0x20e/0x3c0 [ 1953.963633][T28137] do_syscall_64+0xcd/0x490 [ 1953.963688][T28137] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1953.963722][T28137] RIP: 0033:0x7f0dcf78e929 [ 1953.963747][T28137] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1953.963779][T28137] RSP: 002b:00007f0dd064ef08 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1953.963809][T28137] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007f0dcf78e929 [ 1953.963844][T28137] RDX: 00007f0dd064ef20 RSI: 0000000000000058 RDI: 00007f0dd064ef20 [ 1953.963865][T28137] RBP: 00007f0dd064f090 R08: 0000000000000000 R09: 0000000000000058 [ 1953.963886][T28137] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1953.963904][T28137] R13: 0000000000000000 R14: 00007f0dcf9b5fa0 R15: 00007ffd70d3da38 [ 1953.963942][T28137] [ 1954.655143][T28144] [U]  [ 1954.658050][T28144] [U] [ 1954.660794][T28144] [U] [ 1954.663529][T28144] [U] [ 1954.688298][T28144] [U] [ 1954.691101][T28144] [U] [ 1954.693876][T28144] [U] [ 1954.696637][T28144] [U] [ 1954.714883][T28149] [U] [ 1955.021651][T28143] ecryptfs_parse_packet_length: Error parsing packet length [ 1955.037906][T28143] ecryptfs_miscdev_write: Error parsing packet length; rc = [-22] [ 1955.976896][ T30] audit: type=1326 audit(4294967313.292:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28165 comm="syz.3.3572" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f0dcf78e929 code=0x0 [ 1958.802119][T28194] [U]  [ 1958.804972][T28194] [U] [ 1958.807693][T28194] [U] [ 1958.810431][T28194] [U] [ 1958.834319][T28194] [U] [ 1958.837072][T28194] [U] [ 1958.839789][T28194] [U] [ 1958.842509][T28194] [U] [ 1958.889880][T28198] [U] [ 1959.232974][T28202] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78008 [ 1959.302260][T28202] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 1959.353387][T28202] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 1959.377846][T28202] page_type: f5(slab) [ 1959.383077][T28202] raw: 00fff00000000040 ffff88801b842140 dead000000000122 0000000000000000 [ 1959.401664][T28202] raw: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000 [ 1959.412839][T28202] head: 00fff00000000040 ffff88801b842140 dead000000000122 0000000000000000 [ 1959.428770][T28202] head: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000 [ 1959.448234][T28202] head: 00fff00000000003 ffffea0001e00201 00000000ffffffff 00000000ffffffff [ 1959.457599][T28202] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008 [ 1959.468452][T28202] page dumped because: unmovable page [ 1959.474183][T28202] page_owner tracks the page as allocated [ 1959.488250][T28202] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 1110, tgid 1110 (kworker/u8:8), ts 1944068626113, free_ts 1943961471395 [ 1959.547758][T28202] post_alloc_hook+0x1c0/0x230 [ 1959.556532][T28202] get_page_from_freelist+0x1321/0x3890 [ 1959.575196][T28202] __alloc_frozen_pages_noprof+0x261/0x23f0 [ 1959.591219][T28202] alloc_pages_mpol+0x1fb/0x550 [ 1959.597882][T28202] new_slab+0x23b/0x330 [ 1959.603408][T28202] ___slab_alloc+0xd9c/0x1940 [ 1959.610102][T28202] __slab_alloc.constprop.0+0x56/0xb0 [ 1959.616654][T28202] __kmalloc_node_track_caller_noprof+0x2ee/0x510 [ 1959.626776][T28202] kmalloc_reserve+0xef/0x2c0 [ 1959.634514][T28202] __alloc_skb+0x166/0x380 [ 1959.641331][T28202] nsim_dev_trap_report_work+0x2b1/0xcf0 [ 1959.650866][T28202] process_one_work+0x9cf/0x1b70 [ 1959.671534][T28202] worker_thread+0x6c8/0xf10 [ 1959.676195][T28202] kthread+0x3c5/0x780 [ 1959.711414][T28202] ret_from_fork+0x5d4/0x6f0 [ 1959.726198][T28202] ret_from_fork_asm+0x1a/0x30 [ 1959.736352][T28202] page last free pid 27986 tgid 27979 stack trace: [ 1959.751243][T28202] __free_frozen_pages+0x7fe/0x1180 [ 1959.775172][T28202] __put_partials+0x16d/0x1c0 [ 1959.780880][T28202] qlist_free_all+0x4d/0x120 [ 1959.786833][T28202] kasan_quarantine_reduce+0x195/0x1e0 [ 1959.793501][T28202] __kasan_slab_alloc+0x69/0x90 [ 1959.800228][T28202] kmem_cache_alloc_node_noprof+0x1d5/0x3b0 [ 1959.808015][T28202] __alloc_skb+0x2b2/0x380 [ 1959.816870][T28202] __ip_append_data+0x3128/0x4240 [ 1959.824637][T28202] ip_append_data+0x10f/0x1a0 [ 1959.832556][T28202] raw_sendmsg+0xf01/0x3820 [ 1959.839253][T28202] inet_sendmsg+0x11c/0x140 [ 1959.845907][T28202] ____sys_sendmsg+0x973/0xc70 [ 1959.852543][T28202] ___sys_sendmsg+0x134/0x1d0 [ 1959.859172][T28202] __sys_sendmmsg+0x200/0x420 [ 1959.865825][T28202] __x64_sys_sendmmsg+0x9c/0x100 [ 1959.872615][T28202] do_syscall_64+0xcd/0x490 [ 1961.928016][T28227] ecryptfs_miscdev_write: Acceptable packet size range is [6-531], but amount of data written is [65007]. [ 1963.373775][T28242] [U]  [ 1963.376625][T28242] [U] [ 1963.379350][T28242] [U] [ 1963.382074][T28242] [U] [ 1963.394913][T28242] [U] [ 1963.397732][T28242] [U] [ 1963.400479][T28242] [U] [ 1963.403211][T28242] [U] [ 1963.423167][T28242] [U] [ 1963.425966][T28242] [U] [ 1963.428738][T28242] [U] [ 1963.431509][T28242] [U] [ 1963.458382][T28242] [U] [ 1963.461187][T28242] [U] [ 1963.463954][T28242] [U] [ 1963.466728][T28242] [U] [ 1963.482438][T28243] [U] [ 1964.165203][T28250] zswap: compressor 000 not available [ 1967.128738][T28302] [U]  [ 1967.131585][T28302] [U] [ 1967.134303][T28302] [U] [ 1967.137024][T28302] [U] [ 1967.221005][T28302] [U] [ 1967.223772][T28302] [U] [ 1967.226507][T28302] [U] [ 1967.229262][T28302] [U] [ 1967.324655][T28302] [U] [ 1967.327438][T28302] [U] [ 1967.330162][T28302] [U] [ 1967.332886][T28302] [U] [ 1967.487711][T28305] [U] [ 1968.304577][T28313] ecryptfs_parse_packet_length: Error parsing packet length [ 1968.424733][T28313] ecryptfs_miscdev_write: Error parsing packet length; rc = [-22] [ 1969.342258][T28327] vivid-002: ================= START STATUS ================= [ 1969.373220][T28327] vivid-002: Enable Output Cropping: true [ 1969.404884][T28327] vivid-002: Enable Output Composing: true [ 1969.417334][T28327] vivid-002: Enable Output Scaler: true [ 1969.452368][T28327] vivid-002: Tx RGB Quantization Range: Automatic [ 1969.477932][T28327] vivid-002: Transmit Mode: HDMI [ 1969.491334][T28327] vivid-002: Hotplug Present: 0x00000000 [ 1969.507843][T28327] vivid-002: RxSense Present: 0x00000000 [ 1969.539081][T28327] vivid-002: EDID Present: 0x00000000 [ 1969.546461][T28327] vivid-002: ================== END STATUS ================== [ 1970.071793][T28338] FAULT_INJECTION: forcing a failure. [ 1970.071793][T28338] name failslab, interval 1, probability 0, space 0, times 0 [ 1970.088706][T28338] CPU: 1 UID: 0 PID: 28338 Comm: syz.0.3610 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) [ 1970.088752][T28338] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1970.088772][T28338] Call Trace: [ 1970.088782][T28338] [ 1970.088794][T28338] dump_stack_lvl+0x16c/0x1f0 [ 1970.088843][T28338] should_fail_ex+0x512/0x640 [ 1970.088881][T28338] ? __kmalloc_cache_node_noprof+0x5a/0x420 [ 1970.088923][T28338] should_failslab+0xc2/0x120 [ 1970.088947][T28338] __kmalloc_cache_node_noprof+0x6d/0x420 [ 1970.088984][T28338] ? sbitmap_init_node+0x2ca/0x770 [ 1970.089009][T28338] ? sbitmap_queue_init_node+0x341/0x560 [ 1970.089040][T28338] sbitmap_queue_init_node+0x341/0x560 [ 1970.089073][T28338] blk_mq_init_tags+0x12d/0x2b0 [ 1970.089115][T28338] blk_mq_alloc_map_and_rqs+0x237/0xf60 [ 1970.089154][T28338] ? blk_mq_map_queues+0x211/0x410 [ 1970.089187][T28338] __blk_mq_alloc_map_and_rqs+0x128/0x1f0 [ 1970.089226][T28338] blk_mq_alloc_tag_set+0x778/0x1260 [ 1970.089271][T28338] loop_add+0x3b9/0xb70 [ 1970.089298][T28338] ? do_vfs_ioctl+0x523/0x1a60 [ 1970.089327][T28338] ? __pfx_loop_add+0x10/0x10 [ 1970.089351][T28338] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 1970.089406][T28338] ? find_held_lock+0x2b/0x80 [ 1970.089436][T28338] loop_control_ioctl+0x13e/0x630 [ 1970.089467][T28338] ? __pfx_loop_control_ioctl+0x10/0x10 [ 1970.089501][T28338] ? __pfx_loop_control_ioctl+0x10/0x10 [ 1970.089533][T28338] __x64_sys_ioctl+0x18b/0x210 [ 1970.089565][T28338] do_syscall_64+0xcd/0x490 [ 1970.089608][T28338] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1970.089633][T28338] RIP: 0033:0x7f1b2f58e929 [ 1970.089654][T28338] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1970.089681][T28338] RSP: 002b:00007f1b303b6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1970.089706][T28338] RAX: ffffffffffffffda RBX: 00007f1b2f7b5fa0 RCX: 00007f1b2f58e929 [ 1970.089722][T28338] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000006 [ 1970.089738][T28338] RBP: 00007f1b2f610b39 R08: 0000000000000000 R09: 0000000000000000 [ 1970.089754][T28338] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1970.089771][T28338] R13: 0000000000000000 R14: 00007f1b2f7b5fa0 R15: 00007fffd856e4f8 [ 1970.089803][T28338] [ 1970.090028][T28338] blk-mq: reduced tag depth (128 -> 64) [ 1972.198654][T28382] FAULT_INJECTION: forcing a failure. [ 1972.198654][T28382] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1972.230373][T28382] CPU: 1 UID: 0 PID: 28382 Comm: syz.3.3620 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) [ 1972.230419][T28382] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1972.230438][T28382] Call Trace: [ 1972.230450][T28382] [ 1972.230463][T28382] dump_stack_lvl+0x16c/0x1f0 [ 1972.230517][T28382] should_fail_ex+0x512/0x640 [ 1972.230572][T28382] _copy_to_user+0x32/0xd0 [ 1972.230626][T28382] simple_read_from_buffer+0xcb/0x170 [ 1972.230672][T28382] proc_fail_nth_read+0x197/0x270 [ 1972.230711][T28382] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1972.230753][T28382] ? rw_verify_area+0xcf/0x680 [ 1972.230793][T28382] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1972.230833][T28382] vfs_read+0x1e4/0xc60 [ 1972.230883][T28382] ? __pfx___mutex_lock+0x10/0x10 [ 1972.230934][T28382] ? __pfx_vfs_read+0x10/0x10 [ 1972.230992][T28382] ? __fget_files+0x20e/0x3c0 [ 1972.231049][T28382] ksys_read+0x12a/0x250 [ 1972.231102][T28382] ? __pfx_ksys_read+0x10/0x10 [ 1972.231161][T28382] do_syscall_64+0xcd/0x490 [ 1972.231215][T28382] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1972.231249][T28382] RIP: 0033:0x7f0dcf78d33c [ 1972.231274][T28382] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 1972.231306][T28382] RSP: 002b:00007f0dd062e030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1972.231336][T28382] RAX: ffffffffffffffda RBX: 00007f0dcf9b6080 RCX: 00007f0dcf78d33c [ 1972.231357][T28382] RDX: 000000000000000f RSI: 00007f0dd062e0a0 RDI: 0000000000000005 [ 1972.231376][T28382] RBP: 00007f0dd062e090 R08: 0000000000000000 R09: 0000000000000000 [ 1972.231394][T28382] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1972.231413][T28382] R13: 0000000000000000 R14: 00007f0dcf9b6080 R15: 00007ffd70d3da38 [ 1972.231454][T28382] [ 1972.464338][T28380] ecryptfs_parse_packet_length: Error parsing packet length [ 1972.475130][T28380] ecryptfs_miscdev_write: Error parsing packet length; rc = [-22] [ 1974.848500][T28419] FAULT_INJECTION: forcing a failure. [ 1974.848500][T28419] name failslab, interval 1, probability 0, space 0, times 0 [ 1974.867909][T28419] CPU: 0 UID: 0 PID: 28419 Comm: syz.3.3629 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) [ 1974.867953][T28419] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1974.867971][T28419] Call Trace: [ 1974.867983][T28419] [ 1974.867994][T28419] dump_stack_lvl+0x16c/0x1f0 [ 1974.868047][T28419] should_fail_ex+0x512/0x640 [ 1974.868092][T28419] ? __kmalloc_noprof+0xbf/0x510 [ 1974.868140][T28419] ? tracepoint_add_func+0x2a6/0xea0 [ 1974.868186][T28419] should_failslab+0xc2/0x120 [ 1974.868210][T28419] __kmalloc_noprof+0xd2/0x510 [ 1974.868247][T28419] ? __pfx_probe_sched_wakeup+0x10/0x10 [ 1974.868281][T28419] tracepoint_add_func+0x2a6/0xea0 [ 1974.868319][T28419] ? __pfx_probe_sched_wakeup+0x10/0x10 [ 1974.868358][T28419] ? __pfx_probe_sched_wakeup+0x10/0x10 [ 1974.868390][T28419] tracepoint_probe_register+0xbf/0x100 [ 1974.868426][T28419] ? __pfx_tracepoint_probe_register+0x10/0x10 [ 1974.868461][T28419] ? __pfx_probe_sched_wakeup+0x10/0x10 [ 1974.868502][T28419] tracing_start_sched_switch+0xdc/0x1e0 [ 1974.868534][T28419] __ftrace_event_enable_disable+0x670/0x8b0 [ 1974.868575][T28419] __ftrace_set_clr_event_nolock+0x390/0xb70 [ 1974.868622][T28419] ftrace_set_clr_event+0x16e/0x330 [ 1974.868646][T28419] ? __pfx_ftrace_set_clr_event+0x10/0x10 [ 1974.868678][T28419] ftrace_event_write+0x243/0x290 [ 1974.868701][T28419] ? __pfx_ftrace_event_write+0x10/0x10 [ 1974.868734][T28419] ? __pfx_ftrace_event_write+0x10/0x10 [ 1974.868763][T28419] vfs_write+0x29d/0x1150 [ 1974.868800][T28419] ? __pfx___mutex_lock+0x10/0x10 [ 1974.868835][T28419] ? __pfx_vfs_write+0x10/0x10 [ 1974.868875][T28419] ? __fget_files+0x20e/0x3c0 [ 1974.868915][T28419] ksys_write+0x12a/0x250 [ 1974.868946][T28419] ? __pfx_ksys_write+0x10/0x10 [ 1974.868987][T28419] do_syscall_64+0xcd/0x490 [ 1974.869027][T28419] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1974.869050][T28419] RIP: 0033:0x7f0dcf78e929 [ 1974.869069][T28419] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1974.869092][T28419] RSP: 002b:00007f0dd062e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1974.869113][T28419] RAX: ffffffffffffffda RBX: 00007f0dcf9b6080 RCX: 00007f0dcf78e929 [ 1974.869129][T28419] RDX: 0000000000000004 RSI: 0000200000000040 RDI: 0000000000000007 [ 1974.869143][T28419] RBP: 00007f0dd062e090 R08: 0000000000000000 R09: 0000000000000000 [ 1974.869158][T28419] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1974.869171][T28419] R13: 0000000000000000 R14: 00007f0dcf9b6080 R15: 00007ffd70d3da38 [ 1974.869200][T28419] [ 1974.877898][T28419] wakeup trace: Couldn't activate tracepoint probe to kernel_sched_wakeup_new [ 1975.307069][T28408] ------------[ cut here ]------------ [ 1975.313576][T28408] WARNING: CPU: 1 PID: 28408 at kernel/tracepoint.c:358 tracepoint_probe_unregister+0x894/0xd70 [ 1975.324505][T28408] Modules linked in: [ 1975.329417][T28408] CPU: 1 UID: 0 PID: 28408 Comm: syz.2.3625 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) [ 1975.340389][T28408] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1975.351050][T28408] RIP: 0010:tracepoint_probe_unregister+0x894/0xd70 [ 1975.357708][T28408] Code: 41 5e 41 5f c3 cc cc cc cc e8 e8 27 fe ff 48 c7 c6 10 54 bd 81 48 89 df e8 e9 c4 e4 ff eb 9f bb fe ff ff ff e8 cd 27 fe ff 90 <0f> 0b 90 eb 91 e8 c2 27 fe ff 48 89 da 48 b8 00 00 00 00 00 fc ff [ 1975.377690][T28408] RSP: 0018:ffffc90004a578a0 EFLAGS: 00010202 [ 1975.384101][T28408] RAX: 0000000000000003 RBX: 00000000fffffffe RCX: ffffffff81bd62af [ 1975.393229][T28408] RDX: ffff888027f69e00 RSI: ffffffff81bd6553 RDI: 000000000000688c [ 1975.402169][T28408] RBP: ffffffff8f528e20 R08: 0000000000000005 R09: 0000000000000000 [ 1975.410622][T28408] R10: 0000000000000001 R11: 000000000001a22c R12: ffffffff81c34cf0 [ 1975.419388][T28408] R13: ffff88801c283048 R14: 0000000000000002 R15: ffff88801c283000 [ 1975.428409][T28408] FS: 00007fc257f676c0(0000) GS:ffff88812485f000(0000) knlGS:0000000000000000 [ 1975.438010][T28408] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1975.444664][T28408] CR2: 00007fde011d4d58 CR3: 000000005b3a8000 CR4: 00000000003526f0 [ 1975.453485][T28408] Call Trace: [ 1975.456824][T28408] [ 1975.460418][T28408] ? __pfx_tracepoint_probe_unregister+0x10/0x10 [ 1975.467285][T28408] tracing_stop_cmdline_record+0x66/0xa0 [ 1975.473623][T28408] __ftrace_event_enable_disable+0x762/0x8b0 [ 1975.480368][T28408] ftrace_event_set_open+0x232/0x380 [ 1975.485751][T28408] do_dentry_open+0x744/0x1c10 [ 1975.491210][T28408] ? __pfx_ftrace_event_set_open+0x10/0x10 [ 1975.497845][T28408] vfs_open+0x82/0x3f0 [ 1975.501986][T28408] path_openat+0x1de4/0x2cb0 [ 1975.506641][T28408] ? __pfx_path_openat+0x10/0x10 [ 1975.512354][T28408] ? __lock_acquire+0xb8a/0x1c90 [ 1975.517369][T28408] do_filp_open+0x20b/0x470 [ 1975.522006][T28408] ? __pfx_do_filp_open+0x10/0x10 [ 1975.527093][T28408] ? alloc_fd+0x471/0x7d0 [ 1975.531496][T28408] do_sys_openat2+0x11b/0x1d0 [ 1975.536199][T28408] ? __pfx_do_sys_openat2+0x10/0x10 [ 1975.541448][T28408] ? __fget_files+0x204/0x3c0 [ 1975.546169][T28408] __x64_sys_openat+0x174/0x210 [ 1975.551073][T28408] ? __pfx___x64_sys_openat+0x10/0x10 [ 1975.556488][T28408] do_syscall_64+0xcd/0x490 [ 1975.561076][T28408] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1975.566994][T28408] RIP: 0033:0x7fc25718e929 [ 1975.571490][T28408] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1975.591184][T28408] RSP: 002b:00007fc257f67038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1975.600175][T28408] RAX: ffffffffffffffda RBX: 00007fc2573b6080 RCX: 00007fc25718e929 [ 1975.608568][T28408] RDX: 0000000000020201 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 1975.616580][T28408] RBP: 00007fc257210b39 R08: 0000000000000000 R09: 0000000000000000 [ 1975.624618][T28408] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1975.632653][T28408] R13: 0000000000000000 R14: 00007fc2573b6080 R15: 00007fff49d30318 [ 1975.640711][T28408] [ 1975.643745][T28408] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 1975.651052][T28408] CPU: 1 UID: 0 PID: 28408 Comm: syz.2.3625 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) [ 1975.661397][T28408] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1975.671470][T28408] Call Trace: [ 1975.674762][T28408] [ 1975.677720][T28408] dump_stack_lvl+0x3d/0x1f0 [ 1975.682369][T28408] panic+0x71c/0x800 [ 1975.686296][T28408] ? __pfx_panic+0x10/0x10 [ 1975.690759][T28408] ? show_trace_log_lvl+0x29b/0x3e0 [ 1975.696008][T28408] ? check_panic_on_warn+0x1f/0xb0 [ 1975.701165][T28408] ? tracepoint_probe_unregister+0x894/0xd70 [ 1975.707186][T28408] check_panic_on_warn+0xab/0xb0 [ 1975.712166][T28408] __warn+0xf6/0x3c0 [ 1975.716098][T28408] ? tracepoint_probe_unregister+0x894/0xd70 [ 1975.722120][T28408] report_bug+0x3c3/0x580 [ 1975.726481][T28408] ? tracepoint_probe_unregister+0x894/0xd70 [ 1975.732497][T28408] handle_bug+0x184/0x210 [ 1975.736863][T28408] exc_invalid_op+0x17/0x50 [ 1975.741406][T28408] asm_exc_invalid_op+0x1a/0x20 [ 1975.746286][T28408] RIP: 0010:tracepoint_probe_unregister+0x894/0xd70 [ 1975.752937][T28408] Code: 41 5e 41 5f c3 cc cc cc cc e8 e8 27 fe ff 48 c7 c6 10 54 bd 81 48 89 df e8 e9 c4 e4 ff eb 9f bb fe ff ff ff e8 cd 27 fe ff 90 <0f> 0b 90 eb 91 e8 c2 27 fe ff 48 89 da 48 b8 00 00 00 00 00 fc ff [ 1975.772579][T28408] RSP: 0018:ffffc90004a578a0 EFLAGS: 00010202 [ 1975.778671][T28408] RAX: 0000000000000003 RBX: 00000000fffffffe RCX: ffffffff81bd62af [ 1975.786658][T28408] RDX: ffff888027f69e00 RSI: ffffffff81bd6553 RDI: 000000000000688c [ 1975.794661][T28408] RBP: ffffffff8f528e20 R08: 0000000000000005 R09: 0000000000000000 [ 1975.802663][T28408] R10: 0000000000000001 R11: 000000000001a22c R12: ffffffff81c34cf0 [ 1975.810667][T28408] R13: ffff88801c283048 R14: 0000000000000002 R15: ffff88801c283000 [ 1975.818702][T28408] ? __pfx_probe_sched_switch+0x10/0x10 [ 1975.824291][T28408] ? tracepoint_probe_unregister+0x5ef/0xd70 [ 1975.830343][T28408] ? tracepoint_probe_unregister+0x893/0xd70 [ 1975.836463][T28408] ? __pfx_tracepoint_probe_unregister+0x10/0x10 [ 1975.842831][T28408] tracing_stop_cmdline_record+0x66/0xa0 [ 1975.848505][T28408] __ftrace_event_enable_disable+0x762/0x8b0 [ 1975.854524][T28408] ftrace_event_set_open+0x232/0x380 [ 1975.859838][T28408] do_dentry_open+0x744/0x1c10 [ 1975.864643][T28408] ? __pfx_ftrace_event_set_open+0x10/0x10 [ 1975.870514][T28408] vfs_open+0x82/0x3f0 [ 1975.874607][T28408] path_openat+0x1de4/0x2cb0 [ 1975.879237][T28408] ? __pfx_path_openat+0x10/0x10 [ 1975.884208][T28408] ? __lock_acquire+0xb8a/0x1c90 [ 1975.889258][T28408] do_filp_open+0x20b/0x470 [ 1975.893798][T28408] ? __pfx_do_filp_open+0x10/0x10 [ 1975.898882][T28408] ? alloc_fd+0x471/0x7d0 [ 1975.903248][T28408] do_sys_openat2+0x11b/0x1d0 [ 1975.907946][T28408] ? __pfx_do_sys_openat2+0x10/0x10 [ 1975.913163][T28408] ? __fget_files+0x204/0x3c0 [ 1975.917893][T28408] __x64_sys_openat+0x174/0x210 [ 1975.922793][T28408] ? __pfx___x64_sys_openat+0x10/0x10 [ 1975.928196][T28408] do_syscall_64+0xcd/0x490 [ 1975.932742][T28408] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1975.938754][T28408] RIP: 0033:0x7fc25718e929 [ 1975.943200][T28408] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1975.962840][T28408] RSP: 002b:00007fc257f67038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1975.971295][T28408] RAX: ffffffffffffffda RBX: 00007fc2573b6080 RCX: 00007fc25718e929 [ 1975.979324][T28408] RDX: 0000000000020201 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 1975.987372][T28408] RBP: 00007fc257210b39 R08: 0000000000000000 R09: 0000000000000000 [ 1975.995370][T28408] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1976.003365][T28408] R13: 0000000000000000 R14: 00007fc2573b6080 R15: 00007fff49d30318 [ 1976.011383][T28408] [ 1976.014813][T28408] Kernel Offset: disabled [ 1976.019175][T28408] Rebooting in 86400 seconds..