last executing test programs: 13.905828347s ago: executing program 2 (id=8405): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ila(&(0x7f0000000440), 0xffffffffffffffff) sendmsg$auto_ILA_CMD_ADD(r0, &(0x7f0000000340)={0x0, 0xf0ff, &(0x7f0000000300)={&(0x7f0000000480)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010026bd7004feb1df250100"], 0x20}, 0x1, 0x0, 0x0, 0x20040880}, 0x4) 13.254672977s ago: executing program 2 (id=8408): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4ea2, @remote}, 0x6a) r1 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/security/tomoyo/stat\x00', 0x40802, 0x0) read$auto(r1, 0x0, 0xb4d3) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x2a}}, 0x54) socketpair$auto(0xfffffffd, 0x5, 0xffffffff, 0x0) write$auto(0x3, 0x0, 0xffd8) setsockopt$auto(0x3, 0x10000000084, 0x11, 0x0, 0x8) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0xc0400, 0x0) getrandom$auto(0x0, 0x6000000, 0x3) setsockopt$auto(0x3, 0x1, 0x23, 0x0, 0x9) mmap$auto(0x0, 0x40009, 0xdf, 0x2000000009b72, 0x7, 0x27ffc) recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r2 = socket(0x10, 0x2, 0x0) recvmmsg$auto(r2, 0x0, 0x7, 0x6, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$auto_XFS_IOC_GETBMAPX(r3, 0xc0205838, 0x0) r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/self/net/tcp\x00', 0x181800, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000100)='/dev/bus/usb/037/001\x00', 0x20200, 0x0) pread64$auto(r4, &(0x7f0000000000)='/proc/thread-self/net/tcp6\x00\xd2)\x8e\x892\x82\x19\xfd\x03\xc3\x8d\xd7D\bz\xde5u4\xddS\xe6\x1a\x8a`\xad0\x98|\xbc\x00\x98\b\x0ey\xcb`\x9b\x91r\xd5\x13\x9e\xdd4\xe7\xb7\x94P\x8fBlm\x04eAW\xbc0\x9b\xbd\x8f\xf5];\x94\x18\xf0\v\xd7\xf4P\xd3\x9e,Q\xd8\x16\x989l\x03\a\xcc\x1e\xb9\xe9{\xeeS\xa9\xc60\x00\xb5&\x9e\xdbk{F\x18\xa8\xba*G\xd3\x80\xb1G.\xec1\x96uP\x97\x8co\xf1\xa6\xd5\xea\xc8L3|a\xb3\xaa\x90~Y\xb19\xad\xdc\x05o\x98g\xd4\x10]5\x95\xd0\xabJC\x06\xd0c\xd1Ra\xf7\xc4n\xdf\xe4\xc7\x03\x19x\xbb\v\x00\t\xde\xf5\x93\xfb\xfb#\xbd\xc0S\f57\x83\xdd\xaa\xf0\x9c\xd3G\xe1\x00'/232, 0x3ef, 0xb) r5 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000180)='/dev/bus/usb/036/001\x00', 0xa901, 0x0) ioctl$auto_USBDEVFS_SUBMITURB(r5, 0x8038550a, &(0x7f0000000240)={0x2, 0x81, 0x5b, 0x4, &(0x7f0000000300), 0x9, 0xeb90, 0x2, @stream_id=0x100, 0x7, 0x476, 0x0}) 11.587887246s ago: executing program 2 (id=8417): openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/afs/addr_prefs\x00', 0x8104, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2202, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) r1 = open(0x0, 0x261c2, 0x84) close_range$auto(0x2, 0x8000, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8000, 0x0) r3 = socket(0xa, 0x2, 0x88) socket$nl_generic(0x10, 0x3, 0x10) r4 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000280)={'wg0\x00', 0x0}) bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r5, r4, 0x4, 0x401, r3, @relative_id=0x13, 0xe600}, 0xf) bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, r1, 0x0, 0x3}, 0xc) (fail_nth: 6) bpf$auto(0x2, &(0x7f0000000500)=@bpf_attr_11={0x5, 0x8000000000000001, 0x9, 0x5, 0xf870e9f, 0x7, 0x8}, 0x9) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) ioctl$auto(0xffffffffffffffff, 0x2271, 0x38) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/system/cpu/cpu1/hotplug/target\x00', 0x800, 0x0) read$auto(r6, 0x0, 0x7) r7 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r7, &(0x7f0000000200)={0x0, 0x7}, 0x3) getsockopt$auto_SO_PEERSEC(r0, 0x3, 0x1f, 0x0, 0x0) sendmsg$auto_HWSIM_CMD_REPORT_PMSR(0xffffffffffffffff, 0x0, 0x0) r8 = socket$nl_generic(0x10, 0x3, 0x10) r9 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000280), r8) sendmsg$auto_HWSIM_CMD_REGISTER(r8, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000002c0)={0x14, r9, 0x1, 0x70bd28, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x880) openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/pagemap\x00', 0x101440, 0x0) unshare$auto(0x40000080) 10.147776581s ago: executing program 3 (id=8420): r0 = socket(0x2, 0x1, 0x106) bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) r1 = open(&(0x7f00000000c0)='./file0\x00', 0x161342, 0x130) fallocate$auto(0x8000000000000003, 0x0, 0x9, 0x4cbd5d) fchmod$auto(r1, 0xa) write$auto(0xffffffffffffffff, 0x0, 0x100000a3d9) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000200), 0xffffffffffffffff) sendmsg$auto_NBD_CMD_STATUS(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x14, r3, 0x1, 0x70bd2b, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x40}, 0x40) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) capset$auto(&(0x7f0000000340)={0x19980330}, 0x0) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0xff1, 0x8000) r4 = io_uring_setup$auto(0x1, 0x0) bpf$auto(0x5, 0x0, 0x102) r5 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$auto_RTC_SET_TIME(r5, 0x4024700a, 0x0) openat$auto_lowpan_control_fops_6lowpan(0xffffffffffffff9c, &(0x7f0000000000), 0x901, 0x0) r6 = socket(0xa, 0x3, 0x3b) getsockopt$auto(r6, 0x29, 0x3d, 0x0, 0x0) r7 = syz_genetlink_get_family_id$auto_smbd_genl(&(0x7f0000000140), r4) sendmsg$auto_KSMBD_EVENT_LOGIN_RESPONSE(r6, &(0x7f0000000380)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x14, r7, 0x300, 0x70bd29, 0x25dfdbfb, {}, [""]}, 0x14}}, 0x40080) close_range$auto(0x2, 0x8, 0x0) 9.980673524s ago: executing program 3 (id=8422): prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2) r0 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec18\x00', 0x900, 0x0) ioctl$auto_CEC_S_MODE(r0, 0x40046109, &(0x7f0000002c40)=0x7) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/usbip-vudc.0/udc/usbip-vudc.0/is_a_peripheral\x00', 0x381c84707a2e8fa2, 0x0) read$auto(r2, &(0x7f00000000c0)='/\x91\xecsys/dfices/platfm/vhci_hcd.7/usb\fQ3{\x04\x7f23/23-0:1.0/ep_81/int\x00\x0fS\xe6x\x13\xbaCSJUkZ7\xcf\x9b-\xd7%\xae\x15\xf2\xd4\x93G\xf4\x9e.\xb52\xdd\x8e\x16>\x86Nl\x16\xeb', 0x3) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f0000000280)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc\x06\xddQ\xd4g\x89\xf81>\xc5c\x14\xe2\xfb[\x84v\xe4\x10\x83\xa2\xf8\x913\xac\b\xa2\x8b\xeb\xe8\x8e\xac\xd1\x0el\x86-=\xf9\xcab\x9f-j!\xca2\xacuM*\xb6I\xe0a}c\t\xc2\xea\x1d}\xc3\xab\x83\x87$\x92\x96\x180\f\xc1\x92c\xbd\xc4\xcf\xf6\xf8\xc3\x83\xed\xca\xc3\xc4\x90\xbe\xdar\xcb;\x1f\xfao\xf6m\x1a\x8b\x9e\xe4syHk\x94\x8a;;\xb3\v6b\xc1,\xf0h\x1a\xa0\xe6\xb3f\x01AKP\a\xf7\x88\xa4\x1a\x8c*\x9d\xb4\x81e\xbf\xd2\xdf7\x8cA\xc0\xe0\xfd\xdd\x9e\x14\x9c\x88\x14\xf9\xf8\v\x89\xe3)\xaa\xd4\xdaVr_r+\x94\x98]}\xc3\xe3\x98\xd6\xea\xe9\x8aAZ\'\xa6Y\xf0s\xc7[\xb0\xae\xb2\xe1\xdc\xdaa\x86\xc2|\xdd?\x99\xe4\x00Zu\xba\x9b\xae\x85\x10', 0x10100000a3d7) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0) write$auto(r3, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) write$auto(r3, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x4, 0x15) r4 = open(&(0x7f0000000000)='./cgroup\x00', 0x0, 0x64) fchdir$auto(r4) mkdir$auto(&(0x7f0000000480)='./cgroup\x00', 0x6) bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x6, 0xa, 0x1000009, 0x5f, 0x0, 0x3}, 0x6f3) r6 = socket(0xa, 0x2, 0x88) bpf$auto(0x4, &(0x7f0000000000)=@link_update={r6, @new_map_fd=r3, 0x4, @old_map_fd=r5}, 0xa3) mmap$auto(0x5, 0x4020008, 0x100000000, 0xeb1, r6, 0x8003) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb3, 0xffffffffffffffff, 0x200000000000000) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp1\x00', 0x20b42, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) madvise$auto(0xc5b, 0xffffffffffff0005, 0x17) mremap$auto(0x4fff, 0xb8, 0x13fd4, 0x3, 0xfffff000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x21, 0x7, 0x1, 0x0) r7 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video52\x00', 0x0, 0x0) ioctl$auto(r7, 0xc0285628, r7) 8.658692431s ago: executing program 1 (id=8427): mmap$auto(0x0, 0x9f, 0xde, 0x9b72, 0xffffffffffffffff, 0x8000) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000500)='/dev/bus/usb/023/001\x00', 0x201, 0x0) mmap$auto(0x0, 0xe983, 0x6, 0xeb1, 0xffffffffffffffff, 0x8000) r0 = openat$auto_iommufd_fops_main(0xffffffffffffff9c, &(0x7f0000000000), 0x80001, 0x0) io_uring_setup$auto(0x85, 0x0) r1 = socket(0xa, 0x1, 0x84) getsockopt$auto(r1, 0x0, 0x487, 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x3b71, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socketpair$auto(0xfffffffd, 0x5, 0xffffffff, 0x0) unshare$auto(0x40000080) setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd) r2 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) read$auto(r2, 0x0, 0x7) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r3, &(0x7f0000000200)={0x0, 0x9}, 0x3) sendmsg$auto_NL80211_CMD_GET_REG(r1, 0x0, 0x44801) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1f, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0xe3a7) 6.055148568s ago: executing program 3 (id=8430): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(r0, r1, 0x2) open_by_handle_at$auto(r1, &(0x7f00000004c0)={0x1, 0x0, "ed"}, 0xffffffff) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) r2 = socket(0x2, 0x3, 0xa) connect$auto(r2, &(0x7f0000000080)=@hci={0x1f, 0x4, 0x2}, 0x54) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) fchown$auto(0xffffffffffffffff, 0xee00, 0x0) keyctl$auto(0x7, 0x0, 0x0, 0x0, 0x5) r3 = setfsuid$auto(0xee00) setreuid$auto(r3, 0x0) getegid() stat$auto(&(0x7f0000002dc0)='./file0\x00', &(0x7f0000002e00)={0x8, 0x3, 0x0, 0x2, 0xee00, 0xee01, 0x0, 0x6, 0xff, 0x3, 0x0, 0x1, 0x4b1, 0x6, 0x4, 0xfffffffffffffff8, 0x9a}) lstat$auto(&(0x7f0000002ec0)='./file0\x00', &(0x7f0000002f00)={0x8, 0x1, 0xd, 0x1, 0xee00, 0xee00, 0x0, 0xfff, 0x3, 0x9, 0x3, 0x2, 0xc, 0x7, 0xc3b, 0x1, 0x8}) statmount$auto(0x0, &(0x7f0000000180)={0x315, 0xfffffffd, 0x401bf, 0x7352, 0x3c, 0x65f, 0x1ffde, 0x6, 0x3, 0x2, 0x9, 0x2, 0x4000006, 0x4, 0xb6, 0x80000000009, 0x6, 0x10003, 0xb, 0x4, 0x0, 0x7, 0x2000, 0x203, 0x0, 0x84}, 0x1fe, 0xd) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB, @ANYRES16=0x0, @ANYBLOB="000826bd7000fedbdf25030000000600070008000000060007000080000008000200", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a00010000000000000000000a0001000000000000000000"], 0x6c}, 0x1, 0x0, 0x0, 0x40080}, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 4.60439503s ago: executing program 1 (id=8433): prctl$auto(0x23, 0xe, 0x0, 0x68, 0x0) r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snd/controlC1\x00', 0x20040, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/amidi2\x00', 0x402000, 0x0) statmount$auto(&(0x7f0000000040)={0x10000, @raw=0x57, 0x3ff, 0x4, 0x1f}, &(0x7f0000000300)={0x0, 0x1000, 0x5, 0x7fc0000, 0x1, 0x2, 0x6, 0x7f, 0x1, 0x100, 0x2, 0xff, 0x57b, 0x1, 0x9, 0x0, 0x268, 0x1a, 0x6b7f, 0xff, 0x9, 0x40, 0x1, 0x10001, 0x9, 0x9, 0x4, 0x6, 0xfffffffe, 0x5, 0x48, [0x909c, 0x1ff, 0x1, 0x6, 0x3, 0x30000000000000, 0x4, 0x0, 0x0, 0xc72, 0x1, 0x4, 0x4, 0x101, 0x0, 0x6, 0x1000, 0x7fffffff, 0x800, 0x4, 0x0, 0x80000000, 0x9ce0, 0x200, 0x4, 0x3, 0x5, 0x9, 0x200, 0x0, 0x8, 0xfffffffffffff415, 0x8, 0x3, 0x4000000000001000, 0xff, 0x407, 0x2, 0xfffffffffffffff7, 0x1, 0x26f55c8d, 0x8, 0xfffffffffffffffd], "206433b80872022f653d3a78cc3f2da9fca8585cf4f2bc717f857be2f1164fd974d5774bc1db66517847ae20e1fac08aec476ff5d5128e802c16e22b5aea7d52f71a2715f773e5"}, 0x502, 0x1000) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/net/nr14/proto_down\x00', 0x82942, 0x0) r2 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card0\x00', 0x129a00, 0x0) ioctl$auto(r2, 0x900064b5, 0xc14) sendfile$auto(r1, r1, 0x0, 0x200) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_REPLACE(r0, 0xc1105518, &(0x7f00000001c0)={{@inferred, 0x4, 0x10001, 0xb, "58a732e4f73a26bf0d5924b32c7f641b870461318add2e31420cdc66f14f4a240781b1b1800084506f73bc9d", @raw=0x80}, 0x2, 0xffff, 0x7, @inferred, @reserved="38375c405233ea8084784ddb1ace232c64399d87d409eb2f36d9f5448c1a43dc0bc791e19ab07197dc0632c073769fc9ed53676560dcc714f73920aadc483b09c3db58638027c9a49fc0e13e708b5345bab5d2778d3d93c3603302c831a6ed35975cb34dec29bd40216793a5fa5f100f4ca171b9b25d1a79a874213d41233f2e", "7f7b9de47b25a51c538a7d273180a5557f2fee0f40bee5d4326cf95d0fdf2bfd6619bf3854e89bbbc59a3196305de800cf9c54a11afb0c248781267baa0ea51f"}) keyctl$auto_KEYCTL_INSTANTIATE(0xc, 0x9, 0x5, 0x90000000, 0xfffffffffffffff7) ioctl$auto_NS_GET_TGID_IN_PIDNS(0xffffffffffffffff, 0x8004b709, &(0x7f0000000000)=0x8) r3 = open(&(0x7f0000000080)='./file0\x00', 0x26ac2, 0x5d745cb200ae4d7b) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) open(&(0x7f0000000180)='./file0\x00', 0x400000, 0xb) ioctl$IOCTL_GET_NCIDEV_IDX(r3, 0x0, &(0x7f0000000580)) socket$nl_generic(0x10, 0x3, 0x10) mknod$auto(0x0, 0x1001, 0x804) socket(0x1f, 0x6, 0x0) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, 0x0, 0xa8200, 0x0) mmap$auto(0x0, 0x400, 0xdf, 0xeb1, 0x1272, 0x8000) execve$auto(&(0x7f0000000040)='./file0\x00', &(0x7f0000001180)=&(0x7f0000001140)='/dev/btrfs-control\x00', &(0x7f0000001200)=0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x4) r4 = socket(0x1d, 0x2, 0x7) r5 = socket(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) r7 = openat$auto_btrfs_ctl_fops_super(0xffffffffffffff9c, &(0x7f0000000100), 0x28000, 0x0) ioctl$auto_BTRFS_IOC_DEVICES_READY(r7, 0x90009427, &(0x7f0000000140)={@inferred, "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"}) bind$auto(r4, &(0x7f0000000000)=@can={0x1d, r6}, 0x6a) socket$nl_generic(0x10, 0x3, 0x10) 4.474380754s ago: executing program 3 (id=8434): r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_SNDCTL_TMR_CONTINUE(r0, 0x5404, &(0x7f0000000180)="697d37cbf26e92f6363e") mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) open(&(0x7f0000000040)='./cgroup.cpu/cgroup.procs\x00', 0x101040, 0x33903f3ada88772b) r1 = getpid() process_vm_readv$auto(r1, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000040), 0x40000100000001}, 0x6, 0x0) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x40001, 0x0) r3 = syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000600), 0xffffffffffffffff) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r4 = socket(0xa, 0x1, 0x84) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x4) setresgid$auto(0x0, 0xee01, 0xffffffffffffffff) setregid$auto(0x0, 0x0) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r5 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) pipe$auto(0x0) setsockopt$auto(0x3, 0x1, 0x10, 0x0, 0x9) recvmmsg$auto(r4, &(0x7f0000000100)={{0x0, 0xbb, 0x0, 0x8, &(0x7f0000000040), 0x81, 0x9}, 0xfffffffb}, 0x5, 0x6586, 0x0) clock_gettime$auto(0x3, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) r6 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_IOAM6_CMD_DEL_NAMESPACE(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)={0x1c, r3, 0x9, 0x70bd2c, 0x25dfdbfb, {}, [@IOAM6_ATTR_NS_ID={0x6, 0x1, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x808) (fail_nth: 2) r7 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0) ioctl$auto_TCFLSH2(r7, 0x80045439, 0x0) ioctl$auto_TIOCSETD2(r2, 0x5423, 0x0) ioctl$auto(r2, 0x89f2, r2) 4.33985673s ago: executing program 2 (id=8436): r0 = socket(0x11, 0x80003, 0x300) r1 = syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_IEEE802154_ADD_IFACE(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x800, 0x70bd25, 0x25dfdbfe, {}, [@IEEE802154_ATTR_DEST_PAN_ID={0x6, 0x10, 0x401}]}, 0x1c}, 0x1, 0x0, 0x0, 0x810}, 0x24000040) sendmsg$auto_IEEE802154_LLSEC_ADD_DEVKEY(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="00082dbd7000ffdbdf25f767000005001500070000001a3e9dd3064316c206000b00030000002a0808000000000000001f005d282d2b25000000080014d2c9ab2b00"], 0x40}, 0x1, 0x0, 0x0, 0x800}, 0x4000) timer_create$auto(0x7, &(0x7f0000000000)={@sival_ptr=0x0, @inferred, 0x1, @_tid=0xffffffffffffffff}, &(0x7f0000000040)=0x200) timer_settime$auto(0x0, 0x3b4, &(0x7f0000000040)={{0x0, 0xd3}, {0x200001005, 0x6}}, 0x0) timer_gettime$auto(0x0, &(0x7f0000000080)={{0x5, 0x8}, {0x7f, 0x10000}}) r2 = openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000004ec0)='/dev/snd/pcmC1D0p\x00', 0x2100, 0x0) ioctl$auto___SNDRV_PCM_IOCTL_SYNC_PTR32(r2, 0xc0844123, &(0x7f0000004f00)={0x0, @status={0x7, 0x0, 0x4, 0xad, 0x6, 0xffffffff, 0x3, 0x4}, @reserved="3c862f6b3e17462fa54c8b3cad90945f513b5fe7312734b3e391ef01c640631b0b01623f1e3d9f642ff78c75066215149532e5f7bc683c32a77b5811c58d8824"}) setsockopt$auto(r0, 0x107, 0x11, 0x0, 0x9) 3.539759769s ago: executing program 1 (id=8438): r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = prctl$auto(0x41, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0x8, 0x0) sendmsg$auto(r1, &(0x7f0000001480)={&(0x7f0000000200)="522fd8398433ea730d30377c3764ebe9ae58009d58ba6f43f29037985c0bd104436c091faedc69101178b1c58f09f18031be0fe6f4907c05fda79d987cd56aab3728a7e9d4e215e4ad9426741bc9dff3212571f5f4035b7d69dd4895259a8ae4a38facdd3f2444ad0489ee4363fe2b2ab8da76586e1ae3b85b50f067985aa84fa653f7679dff5f54be62deff511ae1e60da7d1cfd59eb3469306fc1bdc7ad77cef8e154126fbc38bdb51f5d7784d80c4c701c3999046536f", 0x7, &(0x7f00000003c0)={&(0x7f00000002c0)="63588048dd7cf866b021fab7740244ee2f04925082edd673c0bbacef4e5827a8d6c63d62579b6540ba67e0421d4f897923b991a46897ab0df89061aefb9f18f3eea3790998f688d5c08e97597735e2dff80bedc0e9f4b60f1d7f1e98273e67232fa3bf964b1083af692e81fa70ff92ddcef4d558093428519fe77aa47850e593e3025ff539c94f9b2d8f9310859e244bfd95d155c09e8292abb5a7ec0a3714ac52a3532a47d4fa266d9a3a6067e2ad580b67c3316fc9f8702088c1073e8f9928071603520a0933b31dd2788b3d9e89b593be0e76ca155004e2e5360f9c5f4297305d7bdb48", 0x1a7b}, 0x10, &(0x7f0000000480)="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", 0x1}, 0x2) mbind$auto(0xf1, 0x2091d2, 0x4, 0x0, 0x6, 0x2) ioctl$auto(0xffffffffffffffff, 0x4b3a, 0x1) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/midiC2D0\x00', 0x20001, 0x0) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x2000, 0x0) select$auto(0x10, 0x0, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x40008, 0xe1, 0x9b71, 0xffffffffffffffff, 0x28000) mmap$auto(0x0, 0x4, 0x4000000000df, 0x78, 0xffffffffffffffff, 0x300000000000) r2 = socket(0x9, 0x6, 0x64dd) getsockopt$auto_SO_NOFCS(r2, 0x5, 0x2b, 0x0, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nbd1\x00', 0x14f602, 0x0) write$auto(r0, 0x0, 0x2040000000002) mmap$auto(0x840, 0x40000a, 0xb6a, 0x9b7f, 0x2, 0x5) socket(0x1e, 0x80000, 0xffff) socket(0xa, 0x2, 0x88) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/block2mtd/parameters/block2mtd\x00', 0x601, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000140)="e7696e5891a9bccbf2a814c2b1c2da6a4642e71e423e55bb3bdfb80fb3496c6bac2c4769", 0x24) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/loop11/queue/scheduler\x00', 0x9c2342, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000000100)=""/127, 0x7f) r5 = socket(0x1d, 0x2, 0x6) setsockopt$auto(r5, 0x6a, 0x3, 0x0, 0x4) shmat$auto(0x0, &(0x7f0000000580)='(\x00', 0xfffffffa) shmdt$auto(0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/self/net/ip6_flowlabel\x00', 0xc0000, 0x0) 3.264217103s ago: executing program 0 (id=8439): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000005c0)='/sys/devices/virtual/workqueue/iscsi_conn_cleanup/nice\x00', 0x1e2142, 0x0) r1 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/smaps_rollup\x00', 0x9a0, 0x0) pwrite64$auto(r1, &(0x7f0000000340)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x88d\x11\x00\xba\xae\xb8-\x14\xe4\x00\x00\x00\xfd\xfd\xd3\xd3\x1d\'\x03\x00\x00\x9f\x1e\xf6\xa4*\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e#\xae\xa9\xc5\x93\x1dD\x811\xb9_\xdd*j\xfd\xeb\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;\x9e\x83\x120\x81\x11\x9a?g`sFh\x00\x00\xda,\x93\xba\x88\x93\xc6!\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xdex\xd8\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00'/222, 0xfdf1, 0x2) r2 = socket(0x1d, 0x3, 0x1) setsockopt$auto(r2, 0x65, 0x1, 0x0, 0x800) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_REQ_SET_REG(r3, &(0x7f0000002140)={0x0, 0x0, &(0x7f0000002100)={&(0x7f0000000100)={0x14, r4, 0x1, 0x70bd2a, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x40) sendmsg$auto_NL80211_CMD_GET_KEY(r2, &(0x7f0000000240)={&(0x7f0000000080), 0xc, &(0x7f0000000200)={&(0x7f00000000c0)={0x110, r4, 0x800, 0x70bd26, 0x25dfdbfc, {}, [@NL80211_ATTR_SAR_SPEC={0xc, 0x12c, 0x0, 0x1, [@NL80211_SAR_ATTR_TYPE={0x8, 0x1, 0x5}]}, @NL80211_ATTR_TDLS_PEER_CAPABILITY={0x8, 0xcb, 0x3}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "6b9688c6f94927294442d6451ab079f9f0277fd2211f9ecc"}, @NL80211_ATTR_MNTR_FLAGS={0x11, 0x17, "1dd6435efd20a7770247a3c23a"}, @NL80211_ATTR_MAC_MASK={0xaa, 0xd7, "17f92a063df552d886becd9fd3be6b9ff7122b8cfbfb3157263fa28cda6ec84842f0a66f1056b0f3d0ab22e8fe01486e6cdfa169dbbe863d61cbfc42f6e3f38058a856eeb95bc378ca02a3233c3cd7984a53672d7a762e6e28c57a4dd918cd026d9b86d76b790d962eb048a051c1c88d9152af7dc9f40426785bb6e8afc30fcf12a5a35a4804de1b3cdc2426027c4e46109057b228e60b75970f85ced421f38038540fb16c22"}, @NL80211_ATTR_STA_AID={0x6, 0x10, 0xfffd}, @NL80211_ATTR_CONTROL_PORT_OVER_NL80211={0x4}]}, 0x110}, 0x1, 0x0, 0x0, 0x20040004}, 0x5) sendfile$auto(r1, r0, 0x0, 0x4) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) 3.100587058s ago: executing program 0 (id=8440): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyx3\x00', 0x42880, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/graphics/fbcon/rotate\x00', 0x10b842, 0x0) mmap$auto(0x2, 0x2020009, 0xffffffffffffffff, 0xeb1, 0xffffffffffffffff, 0x8000) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYRES8=r0, @ANYBLOB="0000df45"], 0x1ac}}, 0x8100) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) recvmmsg$auto(r0, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000000)={&(0x7f0000000040), 0xcb}, 0x3, 0x0, 0x80000000, 0x5}, 0x9}, 0x16d, 0x6, 0x0) r1 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0xfffffdc1, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYRES16=r1], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x0, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x400000000, 0x9}, 0x6}, 0x3, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x7000000) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ram15\x00', 0x700, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000) move_pages$auto(0x0, 0x91, 0x0, 0x0, 0x0, 0x0) socket(0x10, 0x2, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x101040, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xe2400, 0x0) openat$auto_kmsg_fops_printk(0xffffffffffffff9c, 0x0, 0x800, 0x0) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) r3 = socket(0xa, 0x1, 0x84) getsockopt$auto(r3, 0x0, 0x53, 0x0, &(0x7f0000000040)=0x28) ioctl$auto_BLKSECTGET(r2, 0x1267, 0x0) r4 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv6/conf/veth0/accept_ra_pinfo\x00', 0x2000, 0x0) read$auto(r4, 0x0, 0x1ff) write$auto(0x3, 0x0, 0x7ffffffff000) 2.928419175s ago: executing program 0 (id=8441): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) statmount$auto(0x0, 0x0, 0x800, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB="00022abd7000dddbdf25020001000800030000000000080015"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="01002cbd7000fbdbdf250a"], 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x20008810) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="19"], 0x1ac}}, 0x40000) sendmmsg$auto(r0, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f0000000140)={0x0, 0xc3}, 0x6, 0x0, 0x0, 0x504}, 0x1}, 0x2, 0x0) 2.791836473s ago: executing program 2 (id=8442): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(r0, r1, 0x2) open_by_handle_at$auto(r1, &(0x7f00000004c0)={0x1, 0x0, "ed"}, 0xffffffff) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) r2 = socket(0x2, 0x3, 0xa) connect$auto(r2, &(0x7f0000000080)=@hci={0x1f, 0x4, 0x2}, 0x54) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) fchown$auto(0xffffffffffffffff, 0xee00, 0x0) keyctl$auto(0x7, 0x0, 0x0, 0x0, 0x5) r3 = setfsuid$auto(0xee00) setreuid$auto(r3, 0x0) getegid() stat$auto(&(0x7f0000002dc0)='./file0\x00', &(0x7f0000002e00)={0x8, 0x3, 0x0, 0x2, 0xee00, 0xee01, 0x0, 0x6, 0xff, 0x3, 0x0, 0x1, 0x4b1, 0x6, 0x4, 0xfffffffffffffff8, 0x9a}) lstat$auto(&(0x7f0000002ec0)='./file0\x00', &(0x7f0000002f00)={0x8, 0x1, 0xd, 0x1, 0xee00, 0xee00, 0x0, 0xfff, 0x3, 0x9, 0x3, 0x2, 0xc, 0x7, 0xc3b, 0x1, 0x8}) statmount$auto(0x0, &(0x7f0000000180)={0x315, 0xfffffffd, 0x401bf, 0x7352, 0x3c, 0x65f, 0x1ffde, 0x6, 0x3, 0x2, 0x9, 0x2, 0x4000006, 0x4, 0xb6, 0x80000000009, 0x6, 0x10003, 0xb, 0x4, 0x0, 0x7, 0x2000, 0x203, 0x0, 0x84}, 0x1fe, 0xd) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB, @ANYRES16=0x0, @ANYBLOB="000826bd7000fedbdf25030000000600070008000000060007000080000008000200", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a00010000000000000000000a0001000000000000000000"], 0x6c}, 0x1, 0x0, 0x0, 0x40080}, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 2.738764532s ago: executing program 3 (id=8443): mmap$auto(0x0, 0x9f, 0xde, 0x9b72, 0xffffffffffffffff, 0x8000) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000500)='/dev/bus/usb/023/001\x00', 0x201, 0x0) mmap$auto(0x0, 0xe983, 0x6, 0xeb1, 0xffffffffffffffff, 0x8000) r0 = openat$auto_iommufd_fops_main(0xffffffffffffff9c, &(0x7f0000000000), 0x80001, 0x0) io_uring_setup$auto(0x85, 0x0) r1 = socket(0xa, 0x1, 0x84) getsockopt$auto(r1, 0x0, 0x487, 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x3b71, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socketpair$auto(0xfffffffd, 0x5, 0xffffffff, 0x0) unshare$auto(0x40000080) setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd) r2 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) read$auto(r2, 0x0, 0x7) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r3, &(0x7f0000000200)={0x0, 0x9}, 0x3) sendmsg$auto_NL80211_CMD_GET_REG(r1, 0x0, 0x44801) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1f, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0xe3a7) 2.609460697s ago: executing program 0 (id=8444): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000001f00), 0xffffffffffffffff) socket(0x2, 0x1, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(r2, r2, 0x2) landlock_create_ruleset$auto(&(0x7f0000000000)={0xd1d, 0x3, 0x7}, 0x9, 0x0) landlock_restrict_self$auto(r2, 0x1) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) sendmsg$auto_SMC_PNETID_ADD(r0, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f00000006c0)={0x20, r1, 0x100, 0x70bd2c, 0x25dfdc01, {}, [@SMC_PNETID_NAME={0xb, 0x1, 'netdev\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x840}, 0x40d0) 2.331480204s ago: executing program 0 (id=8445): mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) r0 = getpgrp(0xffffffffffffffff) r1 = prctl$auto(0x1000000003b, 0x1, r0, 0x3, 0x2a) write$auto(0xca, &(0x7f0000000000)='\x0462\x0f\x00\x00\x96\x18am\xea\xf4\x1b\xf8', 0x7e) sendmsg$auto_NL80211_CMD_SET_WIPHY(r1, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000380)={&(0x7f00000002c0)={0x8c, 0x0, 0x400, 0x70bd26, 0x25dfdbfe, {}, [@NL80211_ATTR_CONTROL_PORT={0x4}, @NL80211_ATTR_REKEY_DATA={0x33, 0x7a, 0x0, 0x1, [@nested={0x8, 0xf6, 0x0, 0x1, [@nested={0x4, 0xc8}]}, @typed={0x1a, 0x147, 0x0, 0x0, @binary="cfd8a9a29a48c3f853212bb53222474e471ca03eafd5"}, @generic="e8764b27ea9281", @typed={0x4, 0x143}]}, @NL80211_ATTR_MBSSID_CONFIG={0x40, 0x132, 0x0, 0x1, [@NL80211_MBSSID_CONFIG_ATTR_INDEX={0x5}, @NL80211_MBSSID_CONFIG_ATTR_EMA={0x4}, @NL80211_MBSSID_CONFIG_ATTR_MAX_INTERFACES={0x5, 0x1, 0x34}, @NL80211_MBSSID_CONFIG_ATTR_MAX_EMA_PROFILE_PERIODICITY={0x5, 0x2, 0x8}, @NL80211_MBSSID_CONFIG_ATTR_INDEX={0x5, 0x3, 0x5}, @NL80211_MBSSID_CONFIG_ATTR_MAX_EMA_PROFILE_PERIODICITY={0x5, 0x2, 0x6}, @NL80211_MBSSID_CONFIG_ATTR_MAX_INTERFACES={0x5, 0x1, 0x3}, @NL80211_MBSSID_CONFIG_ATTR_MAX_EMA_PROFILE_PERIODICITY={0x5, 0x2, 0x7}]}]}, 0x8c}, 0x1, 0x0, 0x0, 0x20000001}, 0x4000000) madvise$auto(0xfffffffffffffffc, 0xffffffffffff0001, 0x15) mlockall$auto(0x7) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = pipe$auto(&(0x7f0000000080)=0xe7da) select$auto(0x8, &(0x7f0000000240)={[0x8, 0x8, 0x3, 0x4, 0xffffffffffff7fff, 0x8000, 0x4, 0x5, 0xd3b, 0x34, 0x5, 0x0, 0x5, 0x5, 0x3, 0x5]}, 0x0, 0x0, 0x0) dup2$auto(0x0, 0x4) listxattrat$auto(r2, &(0x7f0000000180)='./file0\x00', 0xc354, &(0x7f00000001c0)='\x00', 0x0) write$auto_force_suspend_fops_hci_vhci(r3, &(0x7f00000000c0)="5d958a00f78d6a90a1ec1a54dbd517f51dfb7296f430b1ccdf5d624f1b4b858f05ae7b0424fc8ed9268b09991e2e4fee2b77c7de64fab9a49d363d93e8d63016c8ed2f70325f6f1e29cbaa1226852599ba2547375800cdd3292d30b3b116279fd830d4cc3ec60d21baa221c8840b2a90d86472431c27946157a9aca1304664d1686520", 0x83) unshare$auto(0x40000080) pipe$auto(&(0x7f0000000040)=r1) mq_timedsend$auto(0xffffffffffffffff, 0x0, 0x1, 0x8, 0x0) 2.189206724s ago: executing program 1 (id=8446): r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/keys\x00', 0x1c9802, 0x0) pread64$auto(r0, &(0x7f0000000200)='/proc/scsi/sg/devices\x00', 0x100000001, 0xfd) 1.377701373s ago: executing program 1 (id=8447): r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/keys\x00', 0x1c9802, 0x0) pread64$auto(r0, &(0x7f0000000200)='/proc/scsi/sg/devices\x00', 0x100000001, 0xfd) (fail_nth: 1) 1.372427955s ago: executing program 2 (id=8448): mmap$auto(0x0, 0x400008, 0x8000df, 0x9b72, 0xffffffffffffffff, 0x8000) unshare$auto(0x40000080) r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) msgctl$auto_IPC_RMID(0x4, 0x0, &(0x7f0000000440)={{0x0, 0xffffffffffffffff, 0xee00, 0x6, 0x2, 0x2, 0x4}, &(0x7f00000001c0)=0x6, &(0x7f0000000200)=0x1, 0xe8e0, 0xfff, 0x400, 0x7, 0xf, 0x4, 0x1, 0xf, @raw=0x5, @raw=0x9}) unshare$auto(0x1ff) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/devices/system/cpu/cpu0/hotplug/fail\x00', 0x828a82, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) write$auto(0x3, 0x0, 0xfffffdef) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$auto(0x3, 0x541b, 0x7f) writev$auto(0xffffffffffffffff, 0x0, 0x8) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb0;\x80\x00\x00\x00/\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\x00\x00\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z\x93`\xa4m!c\x17\x05\x1c\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x4000100000a3d8) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty38\x00', 0x0, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_psample(&(0x7f0000007a40), 0xffffffffffffffff) sendmsg$auto_PSAMPLE_CMD_GET_GROUP(r3, &(0x7f0000007b00)={0x0, 0x0, &(0x7f0000007ac0)={&(0x7f0000007a80)={0x14, r4, 0x1, 0x70bd29, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0xe0}, 0x10) close_range$auto(r1, r3, 0x8001) openat2$auto(r2, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000180)={0x4, 0x9, 0x401}, 0x5) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r5 = openat$auto_event_inject_fops_trace(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/tracing/events/vmalloc/purge_vmap_area_lazy/inject\x00', 0x40482, 0x0) writev$auto(r5, &(0x7f0000000000)={0x0, 0x4}, 0x2) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x400008, 0xdf, 0x9b7c, 0x2, 0x8000) shmget$auto(0x8, 0x10565, 0x7ff) shmat$auto(0x0, &(0x7f0000000000)='\xfb\x83/\xf2!\xdb\xcf4A\xb9\xf8\x1b\xcd\xb8}\xb85', 0xfffbfffa) utime$auto(0x0, &(0x7f0000000740)={0x7f, 0xb}) socket(0x2a, 0xa, 0x122) rseq$auto(&(0x7f00000005c0)={0x10, 0x401, 0x0, 0x7, 0x3, 0x10000, "43e177566c786f3e14402210a07354920ed74d91a556d84635beab2815241f5b2fc2166a5167b97bc9001bb94783a3c35002b350d9dd6bbda70d70ceb4f596353a4ed091ebfc096b6698fd8211309c40b2aa62a94b8f06f8ab312d869221a323cc92c45da2cdfbb2b658b6e6c3e977c15b84de51908da66ed3d73dfb51b8b13d542fb1684e95725db7e280fea34642c97ee3cec3c6e0ef700ecb7fe4a253983cb56e11629227534fecd76ee1b7623503b9661d57d013a618c00cba762ca374"}, 0x8007, 0x0, 0x1000) 427.784797ms ago: executing program 1 (id=8449): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000000), 0xffffffffffffffff) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r3 = socket(0x848000000015, 0x5, 0x0) bind$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0xfd}}, 0x6b) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0xff, 0x0}}, 0x55) sendmsg$auto_NL80211_CMD_GET_MPATH(r3, &(0x7f0000000d80)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x20004000}, 0x100000) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x60042, 0x0) migrate_pages$auto(0x0, 0x99, 0x0, &(0x7f00000001c0)=0x7b) r4 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80e42, 0x0) ioctl$auto_SNDCTL_DSP_CHANNELS(r4, 0xc0045006, &(0x7f00000001c0)) r5 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SYNC(r5, 0x5001, 0x0) read$auto(r4, 0x0, 0x1000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) write$auto(0x3, 0x0, 0x100082) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/trace_pipe\x00', 0x20c01, 0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) sendmsg$auto_NL80211_CMD_REQ_SET_REG(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000040), 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x24, 0x0, 0x400, 0x70bd2a, 0x25dfdbfd, {}, [@NL80211_ATTR_SCHED_SCAN_RELATIVE_RSSI={0x5, 0xf6, 0xd9}, @NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0xfffff0c4}]}, 0x24}, 0x1, 0x0, 0x0, 0x30044000}, 0x1) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x10000000000001ff, 0x7, 0xd3e, 0x20, 0x9687, 0x100000000000003, 0x95f4da0a, 0x6, 0x3, 0x62, 0x8, 0x7, 0x6d3f, 0x9, 0x6, 0xfffffffffffffffe]}, 0x0) socket$nl_generic(0x10, 0x3, 0x10) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x4, 0x3, 0x3, 0x3, 0x3, 0x3, 0x8000000000000000, 0x2, 0x6d3c, 0x3, 0x2, 0x8000000000000006]}, 0x0) sendmsg$auto_MACSEC_CMD_UPD_RXSA(r0, &(0x7f0000006200)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000440)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="23002bbd7000fedbdf25090000000c000380050081800300000004fe699b6e1e1577", @ANYRES32=0x0, @ANYBLOB], 0x2c}, 0x1, 0x0, 0x0, 0x4044058}, 0x4000854) 35.577579ms ago: executing program 3 (id=8450): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyx3\x00', 0x42880, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/graphics/fbcon/rotate\x00', 0x10b842, 0x0) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv6/conf/veth0/accept_ra_pinfo\x00', 0x2000, 0x0) read$auto(r0, 0x0, 0x1ff) write$auto(0x3, 0x0, 0x7) (fail_nth: 3) 0s ago: executing program 0 (id=8451): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyx3\x00', 0x42880, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/graphics/fbcon/rotate\x00', 0x10b842, 0x0) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv6/conf/veth0/accept_ra_pinfo\x00', 0x2000, 0x0) quotactl$auto(0x100, &(0x7f0000000140)='/dev/ram7\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x1ff) write$auto(0x3, 0x0, 0x7) kernel console output (not intermixed with test programs): wake_mark+0x10/0x10 [ 2370.378380][ T7012] ___sys_sendmsg+0x134/0x1d0 [ 2370.378404][ T7012] ? futex_private_hash_put+0x176/0x300 [ 2370.378446][ T7012] ? __pfx____sys_sendmsg+0x10/0x10 [ 2370.378470][ T7012] ? __lock_acquire+0x622/0x1c90 [ 2370.378531][ T7012] __sys_sendmsg+0x16d/0x220 [ 2370.378558][ T7012] ? __pfx___sys_sendmsg+0x10/0x10 [ 2370.378584][ T7012] ? __x64_sys_futex+0x1e0/0x4c0 [ 2370.378626][ T7012] do_syscall_64+0xcd/0xfa0 [ 2370.378659][ T7012] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2370.378684][ T7012] RIP: 0033:0x7f887898efc9 [ 2370.378704][ T7012] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2370.378729][ T7012] RSP: 002b:00007f8879821038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2370.378752][ T7012] RAX: ffffffffffffffda RBX: 00007f8878be6090 RCX: 00007f887898efc9 [ 2370.378768][ T7012] RDX: 0000000020040000 RSI: 0000200000000500 RDI: 000000000000000a [ 2370.378783][ T7012] RBP: 00007f8878a11f91 R08: 0000000000000000 R09: 0000000000000000 [ 2370.378798][ T7012] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2370.378812][ T7012] R13: 00007f8878be6128 R14: 00007f8878be6090 R15: 00007ffe0195d928 [ 2370.378843][ T7012] [ 2371.231053][ T7012] nbd: failed to add new device [ 2371.574548][ T7025] ubi31: attaching mtd0 [ 2371.602466][ T7025] ubi31 error: validate_ec_hdr: bad VID header offset 64, expected 514 [ 2371.661300][ T7025] ubi31 error: validate_ec_hdr: bad EC header [ 2371.695775][ T7025] Erase counter header dump: [ 2371.725842][ T7025] magic 0x55424923 [ 2371.761383][ T7025] version 1 [ 2371.781024][ T7025] ec 2 [ 2371.797023][ T7025] vid_hdr_offset 64 [ 2371.830491][ T7025] data_offset 128 [ 2371.855002][ T7025] image_seq -1421343692 [ 2371.901269][ T7025] hdr_crc 0x5741553b [ 2371.934100][ T7025] erase counter header hexdump: [ 2371.956022][ T7025] CPU: 0 UID: 0 PID: 7025 Comm: syz.3.8161 Tainted: G U syzkaller #0 PREEMPT(full) [ 2371.956056][ T7025] Tainted: [U]=USER [ 2371.956065][ T7025] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 2371.956080][ T7025] Call Trace: [ 2371.956088][ T7025] [ 2371.956097][ T7025] dump_stack_lvl+0x16c/0x1f0 [ 2371.956139][ T7025] validate_ec_hdr+0x28c/0x330 [ 2371.956178][ T7025] ubi_io_read_ec_hdr+0x63b/0x6c0 [ 2371.956218][ T7025] ubi_attach+0x601/0x4be0 [ 2371.956256][ T7025] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 2371.956286][ T7025] ? __pfx_ubi_msg+0x10/0x10 [ 2371.956312][ T7025] ? __pfx_ubi_attach+0x10/0x10 [ 2371.956341][ T7025] ? ubi_attach_mtd_dev+0x155b/0x35d0 [ 2371.956368][ T7025] ? __vmalloc_node_noprof+0xad/0xf0 [ 2371.956394][ T7025] ? ubi_attach_mtd_dev+0x155b/0x35d0 [ 2371.956425][ T7025] ubi_attach_mtd_dev+0x15a7/0x35d0 [ 2371.956468][ T7025] ? __pfx_ubi_attach_mtd_dev+0x10/0x10 [ 2371.956495][ T7025] ? __pfx_get_mtd_device+0x10/0x10 [ 2371.956539][ T7025] ctrl_cdev_ioctl+0x337/0x3d0 [ 2371.956567][ T7025] ? __pfx_ctrl_cdev_ioctl+0x10/0x10 [ 2371.956606][ T7025] ? __pfx_ctrl_cdev_ioctl+0x10/0x10 [ 2371.956648][ T7025] __x64_sys_ioctl+0x18e/0x210 [ 2371.956678][ T7025] do_syscall_64+0xcd/0xfa0 [ 2371.956709][ T7025] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2371.956733][ T7025] RIP: 0033:0x7f246298efc9 [ 2371.956770][ T7025] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2371.956794][ T7025] RSP: 002b:00007f2460bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 2371.956817][ T7025] RAX: ffffffffffffffda RBX: 00007f2462be5fa0 RCX: 00007f246298efc9 [ 2371.956833][ T7025] RDX: 0000200000000080 RSI: 0000000040186f40 RDI: 0000000000000003 [ 2371.956849][ T7025] RBP: 00007f2462a11f91 R08: 0000000000000000 R09: 0000000000000000 [ 2371.956864][ T7025] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2371.956878][ T7025] R13: 00007f2462be6038 R14: 00007f2462be5fa0 R15: 00007ffc7b94adc8 [ 2371.956909][ T7025] [ 2372.171296][ T7025] ubi31 error: ubi_io_read_ec_hdr: validation failed for PEB 0 [ 2372.487283][ T7025] ubi31 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 2372.744703][ T7046] FAULT_INJECTION: forcing a failure. [ 2372.744703][ T7046] name failslab, interval 1, probability 393216, space 0, times 0 [ 2372.776511][ T7045] input: f¬ as /devices/virtual/input/input78 [ 2372.831942][ T7046] CPU: 0 UID: 0 PID: 7046 Comm: syz.0.8164 Tainted: G U syzkaller #0 PREEMPT(full) [ 2372.831980][ T7046] Tainted: [U]=USER [ 2372.831988][ T7046] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 2372.832004][ T7046] Call Trace: [ 2372.832012][ T7046] [ 2372.832022][ T7046] dump_stack_lvl+0x16c/0x1f0 [ 2372.832063][ T7046] should_fail_ex+0x512/0x640 [ 2372.832087][ T7046] ? kmem_cache_alloc_node_noprof+0x65/0x770 [ 2372.832125][ T7046] should_failslab+0xc2/0x120 [ 2372.832150][ T7046] kmem_cache_alloc_node_noprof+0x78/0x770 [ 2372.832184][ T7046] ? ___sys_sendmsg+0x134/0x1d0 [ 2372.832209][ T7046] ? __alloc_skb+0x2b2/0x380 [ 2372.832230][ T7046] ? __x64_sys_sendmmsg+0x9c/0x100 [ 2372.832262][ T7046] ? __alloc_skb+0x2b2/0x380 [ 2372.832282][ T7046] __alloc_skb+0x2b2/0x380 [ 2372.832305][ T7046] ? __pfx___alloc_skb+0x10/0x10 [ 2372.832340][ T7046] _sctp_make_chunk+0x51/0x270 [ 2372.832369][ T7046] sctp_make_datafrag_empty+0x16f/0x240 [ 2372.832400][ T7046] ? __pfx_sctp_make_datafrag_empty+0x10/0x10 [ 2372.832439][ T7046] sctp_datamsg_from_user+0x595/0x1330 [ 2372.832479][ T7046] sctp_sendmsg_to_asoc+0xae2/0x1bd0 [ 2372.832526][ T7046] ? __pfx_sctp_sendmsg_to_asoc+0x10/0x10 [ 2372.832561][ T7046] ? do_raw_spin_lock+0x12c/0x2b0 [ 2372.832592][ T7046] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 2372.832629][ T7046] ? sctp_sendmsg_check_sflags+0x176/0x320 [ 2372.832664][ T7046] sctp_sendmsg+0xe99/0x1e00 [ 2372.832711][ T7046] ? __pfx_sctp_sendmsg+0x10/0x10 [ 2372.832746][ T7046] ? __pfx___might_resched+0x10/0x10 [ 2372.832786][ T7046] ? aa_sk_perm+0x2f4/0xb10 [ 2372.832823][ T7046] ? __pfx_aa_sk_perm+0x10/0x10 [ 2372.832852][ T7046] ? import_ubuf+0x1b6/0x220 [ 2372.832882][ T7046] ? __pfx_sctp_sendmsg+0x10/0x10 [ 2372.832922][ T7046] inet_sendmsg+0x11c/0x140 [ 2372.832967][ T7046] ____sys_sendmsg+0x973/0xc70 [ 2372.833002][ T7046] ? copy_msghdr_from_user+0x10a/0x160 [ 2372.833028][ T7046] ? __pfx_____sys_sendmsg+0x10/0x10 [ 2372.833065][ T7046] ? lockdep_hardirqs_on+0x7c/0x110 [ 2372.833100][ T7046] ? kfree+0x2b8/0x6d0 [ 2372.833127][ T7046] ? ___sys_sendmsg+0x141/0x1d0 [ 2372.833159][ T7046] ___sys_sendmsg+0x134/0x1d0 [ 2372.833187][ T7046] ? __pfx____sys_sendmsg+0x10/0x10 [ 2372.833241][ T7046] ? __pfx___might_resched+0x10/0x10 [ 2372.833281][ T7046] __sys_sendmmsg+0x200/0x420 [ 2372.833311][ T7046] ? __pfx___sys_sendmmsg+0x10/0x10 [ 2372.833346][ T7046] ? __pfx_do_futex+0x10/0x10 [ 2372.833371][ T7046] ? fput+0x9b/0xd0 [ 2372.833408][ T7046] ? xfd_validate_state+0x61/0x180 [ 2372.833442][ T7046] __x64_sys_sendmmsg+0x9c/0x100 [ 2372.833468][ T7046] ? lockdep_hardirqs_on+0x7c/0x110 [ 2372.833498][ T7046] do_syscall_64+0xcd/0xfa0 [ 2372.833530][ T7046] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2372.833555][ T7046] RIP: 0033:0x7f68f9b8efc9 [ 2372.833574][ T7046] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2372.833598][ T7046] RSP: 002b:00007f68f7df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 2372.833621][ T7046] RAX: ffffffffffffffda RBX: 00007f68f9de6180 RCX: 00007f68f9b8efc9 [ 2372.833637][ T7046] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 2372.833651][ T7046] RBP: 00007f68f9c11f91 R08: 0000000000000000 R09: 0000000000000000 [ 2372.833666][ T7046] R10: 000000000000e3a7 R11: 0000000000000246 R12: 0000000000000000 [ 2372.833680][ T7046] R13: 00007f68f9de6218 R14: 00007f68f9de6180 R15: 00007ffee2b35f78 [ 2372.833711][ T7046] [ 2373.410940][ T7054] netlink: 28 bytes leftover after parsing attributes in process `syz.2.8167'. [ 2373.846154][ T7056] netlink: 342 bytes leftover after parsing attributes in process `syz.0.8168'. [ 2374.051201][ T7058] netlink: 342 bytes leftover after parsing attributes in process `syz.0.8169'. [ 2374.783776][ T7060] zswap: compressor not available [ 2374.968315][ T7073] usb usb36: usbfs: process 7073 (syz.3.8172) did not claim interface 0 before use [ 2375.518538][ T7091] netlink: 342 bytes leftover after parsing attributes in process `syz.1.8178'. [ 2378.909470][ T7128] can: request_module (can-proto-0) failed. [ 2379.124130][ T7139] FAULT_INJECTION: forcing a failure. [ 2379.124130][ T7139] name failslab, interval 1, probability 393216, space 0, times 0 [ 2379.193511][ T7139] CPU: 0 UID: 0 PID: 7139 Comm: syz.1.8189 Tainted: G U syzkaller #0 PREEMPT(full) [ 2379.193549][ T7139] Tainted: [U]=USER [ 2379.193557][ T7139] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 2379.193573][ T7139] Call Trace: [ 2379.193581][ T7139] [ 2379.193591][ T7139] dump_stack_lvl+0x16c/0x1f0 [ 2379.193625][ T7139] should_fail_ex+0x512/0x640 [ 2379.193647][ T7139] ? __kvmalloc_node_noprof+0x12e/0x9c0 [ 2379.193689][ T7139] should_failslab+0xc2/0x120 [ 2379.193713][ T7139] __kvmalloc_node_noprof+0x141/0x9c0 [ 2379.193749][ T7139] ? __lock_acquire+0xb8a/0x1c90 [ 2379.193775][ T7139] ? seq_read_iter+0x830/0x12d0 [ 2379.193810][ T7139] ? seq_read_iter+0x830/0x12d0 [ 2379.193842][ T7139] seq_read_iter+0x830/0x12d0 [ 2379.193869][ T7139] ? __mutex_trylock_common+0xe9/0x250 [ 2379.193908][ T7139] proc_reg_read_iter+0x220/0x310 [ 2379.193935][ T7139] vfs_read+0x8bf/0xcf0 [ 2379.193973][ T7139] ? __pfx___mutex_lock+0x10/0x10 [ 2379.194005][ T7139] ? __pfx_vfs_read+0x10/0x10 [ 2379.194058][ T7139] ksys_read+0x12a/0x250 [ 2379.194092][ T7139] ? __pfx_ksys_read+0x10/0x10 [ 2379.194135][ T7139] do_syscall_64+0xcd/0xfa0 [ 2379.194167][ T7139] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2379.194195][ T7139] RIP: 0033:0x7f123af8efc9 [ 2379.194214][ T7139] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2379.194238][ T7139] RSP: 002b:00007f123bd43038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 2379.194260][ T7139] RAX: ffffffffffffffda RBX: 00007f123b1e5fa0 RCX: 00007f123af8efc9 [ 2379.194276][ T7139] RDX: 00000000000000bd RSI: 0000200000000380 RDI: 0000000000000004 [ 2379.194291][ T7139] RBP: 00007f123bd43090 R08: 0000000000000000 R09: 0000000000000000 [ 2379.194305][ T7139] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2379.194320][ T7139] R13: 00007f123b1e6038 R14: 00007f123b1e5fa0 R15: 00007ffc4835b5a8 [ 2379.194351][ T7139] [ 2379.910851][ T7156] netlink: 334 bytes leftover after parsing attributes in process `syz.0.8191'. [ 2380.374933][ T7168] FAULT_INJECTION: forcing a failure. [ 2380.374933][ T7168] name failslab, interval 1, probability 393216, space 0, times 0 [ 2380.611796][ T7168] CPU: 0 UID: 0 PID: 7168 Comm: syz.1.8194 Tainted: G U syzkaller #0 PREEMPT(full) [ 2380.611834][ T7168] Tainted: [U]=USER [ 2380.611842][ T7168] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 2380.611859][ T7168] Call Trace: [ 2380.611867][ T7168] [ 2380.611877][ T7168] dump_stack_lvl+0x16c/0x1f0 [ 2380.611910][ T7168] should_fail_ex+0x512/0x640 [ 2380.611937][ T7168] ? __kvmalloc_node_noprof+0x12e/0x9c0 [ 2380.611981][ T7168] should_failslab+0xc2/0x120 [ 2380.612005][ T7168] __kvmalloc_node_noprof+0x141/0x9c0 [ 2380.612042][ T7168] ? find_held_lock+0x2b/0x80 [ 2380.612076][ T7168] ? seq_read_iter+0x830/0x12d0 [ 2380.612104][ T7168] ? aa_file_perm+0x28f/0x12e0 [ 2380.612146][ T7168] ? seq_read_iter+0x830/0x12d0 [ 2380.612173][ T7168] seq_read_iter+0x830/0x12d0 [ 2380.612207][ T7168] ? __pfx_aa_file_perm+0x10/0x10 [ 2380.612249][ T7168] seq_read+0x3a3/0x570 [ 2380.612277][ T7168] ? __pfx_seq_read+0x10/0x10 [ 2380.612322][ T7168] ? rw_verify_area+0xcf/0x6c0 [ 2380.612353][ T7168] ? __pfx_seq_read+0x10/0x10 [ 2380.612381][ T7168] vfs_read+0x1e4/0xcf0 [ 2380.612419][ T7168] ? __pfx___mutex_lock+0x10/0x10 [ 2380.612451][ T7168] ? __pfx_vfs_read+0x10/0x10 [ 2380.612492][ T7168] ? __fget_files+0x20e/0x3c0 [ 2380.612543][ T7168] ksys_read+0x12a/0x250 [ 2380.612577][ T7168] ? __pfx_ksys_read+0x10/0x10 [ 2380.612619][ T7168] do_syscall_64+0xcd/0xfa0 [ 2380.612651][ T7168] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2380.612676][ T7168] RIP: 0033:0x7f123af8efc9 [ 2380.612694][ T7168] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2380.612718][ T7168] RSP: 002b:00007f12391d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 2380.612741][ T7168] RAX: ffffffffffffffda RBX: 00007f123b1e6180 RCX: 00007f123af8efc9 [ 2380.612757][ T7168] RDX: 0000000000001000 RSI: 0000200000000900 RDI: 0000000000000003 [ 2380.612771][ T7168] RBP: 00007f12391d5090 R08: 0000000000000000 R09: 0000000000000000 [ 2380.612785][ T7168] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2380.612799][ T7168] R13: 00007f123b1e6218 R14: 00007f123b1e6180 R15: 00007ffc4835b5a8 [ 2380.612830][ T7168] [ 2382.438209][ T7176] hub 8-0:1.0: USB hub found [ 2382.490615][ T7176] hub 8-0:1.0: 1 port detected [ 2382.814658][ T7199] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 2383.696820][ T7207] FAULT_INJECTION: forcing a failure. [ 2383.696820][ T7207] name failslab, interval 1, probability 393216, space 0, times 0 [ 2383.799550][ T7207] CPU: 0 UID: 0 PID: 7207 Comm: syz.2.8205 Tainted: G U syzkaller #0 PREEMPT(full) [ 2383.799590][ T7207] Tainted: [U]=USER [ 2383.799598][ T7207] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 2383.799614][ T7207] Call Trace: [ 2383.799622][ T7207] [ 2383.799632][ T7207] dump_stack_lvl+0x16c/0x1f0 [ 2383.799667][ T7207] should_fail_ex+0x512/0x640 [ 2383.799690][ T7207] ? kmem_cache_alloc_node_noprof+0x65/0x770 [ 2383.799728][ T7207] should_failslab+0xc2/0x120 [ 2383.799753][ T7207] kmem_cache_alloc_node_noprof+0x78/0x770 [ 2383.799787][ T7207] ? ___sys_sendmsg+0x134/0x1d0 [ 2383.799812][ T7207] ? __alloc_skb+0x2b2/0x380 [ 2383.799833][ T7207] ? __x64_sys_sendmmsg+0x9c/0x100 [ 2383.799865][ T7207] ? __alloc_skb+0x2b2/0x380 [ 2383.799886][ T7207] __alloc_skb+0x2b2/0x380 [ 2383.799913][ T7207] ? __pfx___alloc_skb+0x10/0x10 [ 2383.799948][ T7207] _sctp_make_chunk+0x51/0x270 [ 2383.799977][ T7207] sctp_make_datafrag_empty+0x16f/0x240 [ 2383.800008][ T7207] ? __pfx_sctp_make_datafrag_empty+0x10/0x10 [ 2383.800048][ T7207] sctp_datamsg_from_user+0x595/0x1330 [ 2383.800088][ T7207] sctp_sendmsg_to_asoc+0xae2/0x1bd0 [ 2383.800134][ T7207] ? __pfx_sctp_sendmsg_to_asoc+0x10/0x10 [ 2383.800168][ T7207] ? do_raw_spin_lock+0x12c/0x2b0 [ 2383.800200][ T7207] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 2383.800237][ T7207] ? sctp_sendmsg_check_sflags+0x176/0x320 [ 2383.800279][ T7207] sctp_sendmsg+0xe99/0x1e00 [ 2383.800326][ T7207] ? __pfx_sctp_sendmsg+0x10/0x10 [ 2383.800362][ T7207] ? __pfx___might_resched+0x10/0x10 [ 2383.800404][ T7207] ? aa_sk_perm+0x2f4/0xb10 [ 2383.800439][ T7207] ? __pfx_aa_sk_perm+0x10/0x10 [ 2383.800470][ T7207] ? import_ubuf+0x1b6/0x220 [ 2383.800500][ T7207] ? __pfx_sctp_sendmsg+0x10/0x10 [ 2383.800540][ T7207] inet_sendmsg+0x11c/0x140 [ 2383.800580][ T7207] ____sys_sendmsg+0x973/0xc70 [ 2383.800614][ T7207] ? copy_msghdr_from_user+0x10a/0x160 [ 2383.800640][ T7207] ? __pfx_____sys_sendmsg+0x10/0x10 [ 2383.800672][ T7207] ? lockdep_hardirqs_on+0x7c/0x110 [ 2383.800706][ T7207] ? kfree+0x2b8/0x6d0 [ 2383.800733][ T7207] ? ___sys_sendmsg+0x141/0x1d0 [ 2383.800764][ T7207] ___sys_sendmsg+0x134/0x1d0 [ 2383.800793][ T7207] ? __pfx____sys_sendmsg+0x10/0x10 [ 2383.800856][ T7207] ? __pfx___might_resched+0x10/0x10 [ 2383.800897][ T7207] __sys_sendmmsg+0x200/0x420 [ 2383.800928][ T7207] ? __pfx___sys_sendmmsg+0x10/0x10 [ 2383.800964][ T7207] ? __pfx_do_futex+0x10/0x10 [ 2383.800989][ T7207] ? fput+0x9b/0xd0 [ 2383.801027][ T7207] ? xfd_validate_state+0x61/0x180 [ 2383.801060][ T7207] __x64_sys_sendmmsg+0x9c/0x100 [ 2383.801100][ T7207] ? lockdep_hardirqs_on+0x7c/0x110 [ 2383.801128][ T7207] do_syscall_64+0xcd/0xfa0 [ 2383.801159][ T7207] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2383.801182][ T7207] RIP: 0033:0x7f887898efc9 [ 2383.801201][ T7207] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2383.801224][ T7207] RSP: 002b:00007f8879842038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 2383.801250][ T7207] RAX: ffffffffffffffda RBX: 00007f8878be5fa0 RCX: 00007f887898efc9 [ 2383.801266][ T7207] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 2383.801281][ T7207] RBP: 00007f8878a11f91 R08: 0000000000000000 R09: 0000000000000000 [ 2383.801295][ T7207] R10: 000000000000e3a7 R11: 0000000000000246 R12: 0000000000000000 [ 2383.801310][ T7207] R13: 00007f8878be6038 R14: 00007f8878be5fa0 R15: 00007ffe0195d928 [ 2383.801341][ T7207] [ 2384.323852][ T7218] netlink: 342 bytes leftover after parsing attributes in process `syz.0.8207'. [ 2384.460560][ T7224] FAULT_INJECTION: forcing a failure. [ 2384.460560][ T7224] name failslab, interval 1, probability 393216, space 0, times 0 [ 2384.474025][ T7224] CPU: 0 UID: 0 PID: 7224 Comm: syz.3.8210 Tainted: G U syzkaller #0 PREEMPT(full) [ 2384.474060][ T7224] Tainted: [U]=USER [ 2384.474068][ T7224] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 2384.474081][ T7224] Call Trace: [ 2384.474089][ T7224] [ 2384.474098][ T7224] dump_stack_lvl+0x16c/0x1f0 [ 2384.474130][ T7224] should_fail_ex+0x512/0x640 [ 2384.474152][ T7224] ? __kmalloc_cache_noprof+0x5f/0x780 [ 2384.474186][ T7224] should_failslab+0xc2/0x120 [ 2384.474209][ T7224] __kmalloc_cache_noprof+0x72/0x780 [ 2384.474240][ T7224] ? sctp_association_new+0xbb/0x2a00 [ 2384.474285][ T7224] ? sctp_association_new+0xbb/0x2a00 [ 2384.474318][ T7224] sctp_association_new+0xbb/0x2a00 [ 2384.474355][ T7224] ? sctp_v4_scope+0x171/0x1a0 [ 2384.474382][ T7224] sctp_connect_new_asoc+0x1a8/0x770 [ 2384.474421][ T7224] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 2384.474459][ T7224] ? sctp_endpoint_lookup_assoc+0x15c/0x2a0 [ 2384.474495][ T7224] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 2384.474530][ T7224] sctp_sendmsg+0x1557/0x1e00 [ 2384.474574][ T7224] ? __pfx_sctp_sendmsg+0x10/0x10 [ 2384.474609][ T7224] ? __pfx___might_resched+0x10/0x10 [ 2384.474648][ T7224] ? aa_sk_perm+0x2f4/0xb10 [ 2384.474682][ T7224] ? __pfx_aa_sk_perm+0x10/0x10 [ 2384.474710][ T7224] ? __might_fault+0xe3/0x190 [ 2384.474749][ T7224] ? __pfx_sctp_sendmsg+0x10/0x10 [ 2384.474786][ T7224] inet_sendmsg+0x11c/0x140 [ 2384.474825][ T7224] __sys_sendto+0x43c/0x520 [ 2384.474848][ T7224] ? __pfx___sys_sendto+0x10/0x10 [ 2384.474893][ T7224] ? ksys_write+0x1ac/0x250 [ 2384.474927][ T7224] ? __pfx_ksys_write+0x10/0x10 [ 2384.474983][ T7224] __x64_sys_sendto+0xe0/0x1c0 [ 2384.475005][ T7224] ? do_syscall_64+0x91/0xfa0 [ 2384.475034][ T7224] ? lockdep_hardirqs_on+0x7c/0x110 [ 2384.475063][ T7224] do_syscall_64+0xcd/0xfa0 [ 2384.475095][ T7224] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2384.475119][ T7224] RIP: 0033:0x7f246298efc9 [ 2384.475139][ T7224] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2384.475163][ T7224] RSP: 002b:00007f2460bd5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 2384.475185][ T7224] RAX: ffffffffffffffda RBX: 00007f2462be6090 RCX: 00007f246298efc9 [ 2384.475202][ T7224] RDX: 000000000002000f RSI: 0000000000000000 RDI: 0000000000000003 [ 2384.475217][ T7224] RBP: 00007f2460bd5090 R08: 0000200000000000 R09: 000000000000001c [ 2384.475231][ T7224] R10: 000000000000013f R11: 0000000000000246 R12: 0000000000000001 [ 2384.475246][ T7224] R13: 00007f2462be6128 R14: 00007f2462be6090 R15: 00007ffc7b94adc8 [ 2384.475283][ T7224] [ 2385.658905][ T7241] bridge0: port 3(dummy0) entered blocking state [ 2385.697814][ T7241] bridge0: port 3(dummy0) entered disabled state [ 2385.728982][ T7241] dummy0: entered allmulticast mode [ 2385.760482][ T7241] dummy0: entered promiscuous mode [ 2385.773145][ T7241] bridge0: port 3(dummy0) entered blocking state [ 2385.779656][ T7241] bridge0: port 3(dummy0) entered forwarding state [ 2386.058477][ T7255] netlink: 342 bytes leftover after parsing attributes in process `syz.0.8217'. [ 2386.599412][ T7260] FAULT_INJECTION: forcing a failure. [ 2386.599412][ T7260] name failslab, interval 1, probability 393216, space 0, times 0 [ 2386.663947][ T7260] CPU: 0 UID: 0 PID: 7260 Comm: syz.0.8219 Tainted: G U syzkaller #0 PREEMPT(full) [ 2386.663983][ T7260] Tainted: [U]=USER [ 2386.663992][ T7260] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 2386.664006][ T7260] Call Trace: [ 2386.664015][ T7260] [ 2386.664024][ T7260] dump_stack_lvl+0x16c/0x1f0 [ 2386.664059][ T7260] should_fail_ex+0x512/0x640 [ 2386.664121][ T7260] ? kmem_cache_alloc_node_noprof+0x65/0x770 [ 2386.664159][ T7260] should_failslab+0xc2/0x120 [ 2386.664184][ T7260] kmem_cache_alloc_node_noprof+0x78/0x770 [ 2386.664217][ T7260] ? __alloc_skb+0x2b2/0x380 [ 2386.664246][ T7260] ? __alloc_skb+0x2b2/0x380 [ 2386.664266][ T7260] ? __pfx_netlink_insert+0x10/0x10 [ 2386.664291][ T7260] __alloc_skb+0x2b2/0x380 [ 2386.664314][ T7260] ? __pfx___alloc_skb+0x10/0x10 [ 2386.664338][ T7260] ? netlink_autobind.isra.0+0x158/0x370 [ 2386.664373][ T7260] netlink_alloc_large_skb+0x69/0x140 [ 2386.664403][ T7260] netlink_sendmsg+0x698/0xdd0 [ 2386.664435][ T7260] ? __pfx_netlink_sendmsg+0x10/0x10 [ 2386.664467][ T7260] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 2386.664499][ T7260] ____sys_sendmsg+0xa98/0xc70 [ 2386.664533][ T7260] ? copy_msghdr_from_user+0x10a/0x160 [ 2386.664562][ T7260] ? __pfx_____sys_sendmsg+0x10/0x10 [ 2386.664600][ T7260] ? __pfx__kstrtoull+0x10/0x10 [ 2386.664638][ T7260] ___sys_sendmsg+0x134/0x1d0 [ 2386.664666][ T7260] ? __pfx____sys_sendmsg+0x10/0x10 [ 2386.664706][ T7260] ? find_held_lock+0x2b/0x80 [ 2386.664757][ T7260] __sys_sendmmsg+0x200/0x420 [ 2386.664787][ T7260] ? __pfx___sys_sendmmsg+0x10/0x10 [ 2386.664823][ T7260] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 2386.664867][ T7260] ? fput+0x9b/0xd0 [ 2386.664890][ T7260] ? ksys_write+0x1ac/0x250 [ 2386.664925][ T7260] ? __pfx_ksys_write+0x10/0x10 [ 2386.664964][ T7260] __x64_sys_sendmmsg+0x9c/0x100 [ 2386.664990][ T7260] ? lockdep_hardirqs_on+0x7c/0x110 [ 2386.665019][ T7260] do_syscall_64+0xcd/0xfa0 [ 2386.665051][ T7260] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2386.665075][ T7260] RIP: 0033:0x7f68f9b8efc9 [ 2386.665098][ T7260] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2386.665121][ T7260] RSP: 002b:00007f68fa977038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 2386.665144][ T7260] RAX: ffffffffffffffda RBX: 00007f68f9de5fa0 RCX: 00007f68f9b8efc9 [ 2386.665161][ T7260] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 2386.665176][ T7260] RBP: 00007f68fa977090 R08: 0000000000000000 R09: 0000000000000000 [ 2386.665191][ T7260] R10: 0000000000000700 R11: 0000000000000246 R12: 0000000000000001 [ 2386.665206][ T7260] R13: 00007f68f9de6038 R14: 00007f68f9de5fa0 R15: 00007ffee2b35f78 [ 2386.665237][ T7260] [ 2387.331212][ T30] audit: type=1107 audit(4294967524.712:18): pid=7265 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='ppo' [ 2389.215525][ T7297] FAULT_INJECTION: forcing a failure. [ 2389.215525][ T7297] name failslab, interval 1, probability 393216, space 0, times 0 [ 2389.435503][ T7297] CPU: 0 UID: 0 PID: 7297 Comm: syz.0.8227 Tainted: G U syzkaller #0 PREEMPT(full) [ 2389.435541][ T7297] Tainted: [U]=USER [ 2389.435549][ T7297] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 2389.435564][ T7297] Call Trace: [ 2389.435572][ T7297] [ 2389.435581][ T7297] dump_stack_lvl+0x16c/0x1f0 [ 2389.435614][ T7297] should_fail_ex+0x512/0x640 [ 2389.435637][ T7297] ? __kmalloc_cache_noprof+0x5f/0x780 [ 2389.435672][ T7297] should_failslab+0xc2/0x120 [ 2389.435697][ T7297] __kmalloc_cache_noprof+0x72/0x780 [ 2389.435728][ T7297] ? kvm_dev_ioctl+0xa8a/0x1a80 [ 2389.435769][ T7297] ? kvm_dev_ioctl+0xa8a/0x1a80 [ 2389.435805][ T7297] kvm_dev_ioctl+0xa8a/0x1a80 [ 2389.435846][ T7297] ? find_held_lock+0x2b/0x80 [ 2389.435879][ T7297] ? hook_file_ioctl_common+0x145/0x410 [ 2389.435919][ T7297] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 2389.435959][ T7297] ? __fget_files+0x20e/0x3c0 [ 2389.435996][ T7297] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 2389.436034][ T7297] __x64_sys_ioctl+0x18e/0x210 [ 2389.436064][ T7297] do_syscall_64+0xcd/0xfa0 [ 2389.436097][ T7297] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2389.436121][ T7297] RIP: 0033:0x7f68f9b8efc9 [ 2389.436139][ T7297] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2389.436162][ T7297] RSP: 002b:00007f68f7df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 2389.436185][ T7297] RAX: ffffffffffffffda RBX: 00007f68f9de6180 RCX: 00007f68f9b8efc9 [ 2389.436201][ T7297] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000008 [ 2389.436215][ T7297] RBP: 00007f68f7df6090 R08: 0000000000000000 R09: 0000000000000000 [ 2389.436230][ T7297] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2389.436245][ T7297] R13: 00007f68f9de6218 R14: 00007f68f9de6180 R15: 00007ffee2b35f78 [ 2389.436276][ T7297] [ 2390.148819][ T7301] zswap: compressor not available [ 2390.174201][ T7319] netlink: 326 bytes leftover after parsing attributes in process `syz.2.8233'. [ 2390.649695][ T7329] FAULT_INJECTION: forcing a failure. [ 2390.649695][ T7329] name failslab, interval 1, probability 393216, space 0, times 0 [ 2390.781797][ T7329] CPU: 0 UID: 0 PID: 7329 Comm: syz.3.8234 Tainted: G U syzkaller #0 PREEMPT(full) [ 2390.781835][ T7329] Tainted: [U]=USER [ 2390.781843][ T7329] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 2390.781858][ T7329] Call Trace: [ 2390.781866][ T7329] [ 2390.781875][ T7329] dump_stack_lvl+0x16c/0x1f0 [ 2390.781908][ T7329] should_fail_ex+0x512/0x640 [ 2390.781931][ T7329] ? kmem_cache_alloc_node_noprof+0x65/0x770 [ 2390.781969][ T7329] should_failslab+0xc2/0x120 [ 2390.781993][ T7329] kmem_cache_alloc_node_noprof+0x78/0x770 [ 2390.782025][ T7329] ? ___sys_sendmsg+0x134/0x1d0 [ 2390.782050][ T7329] ? __alloc_skb+0x2b2/0x380 [ 2390.782070][ T7329] ? __x64_sys_sendmmsg+0x9c/0x100 [ 2390.782101][ T7329] ? __alloc_skb+0x2b2/0x380 [ 2390.782121][ T7329] __alloc_skb+0x2b2/0x380 [ 2390.782143][ T7329] ? __pfx___alloc_skb+0x10/0x10 [ 2390.782177][ T7329] _sctp_make_chunk+0x51/0x270 [ 2390.782205][ T7329] sctp_make_datafrag_empty+0x16f/0x240 [ 2390.782235][ T7329] ? __pfx_sctp_make_datafrag_empty+0x10/0x10 [ 2390.782272][ T7329] sctp_datamsg_from_user+0x595/0x1330 [ 2390.782311][ T7329] sctp_sendmsg_to_asoc+0xae2/0x1bd0 [ 2390.782355][ T7329] ? __pfx_sctp_sendmsg_to_asoc+0x10/0x10 [ 2390.782388][ T7329] ? do_raw_spin_lock+0x12c/0x2b0 [ 2390.782418][ T7329] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 2390.782454][ T7329] ? sctp_sendmsg_check_sflags+0x176/0x320 [ 2390.782487][ T7329] sctp_sendmsg+0xe99/0x1e00 [ 2390.782532][ T7329] ? __pfx_sctp_sendmsg+0x10/0x10 [ 2390.782567][ T7329] ? __pfx___might_resched+0x10/0x10 [ 2390.782598][ T7329] ? irqentry_exit+0x3b/0x90 [ 2390.782633][ T7329] ? aa_sk_perm+0x2f4/0xb10 [ 2390.782667][ T7329] ? __pfx_aa_sk_perm+0x10/0x10 [ 2390.782696][ T7329] ? import_ubuf+0x1b6/0x220 [ 2390.782733][ T7329] ? __pfx_sctp_sendmsg+0x10/0x10 [ 2390.782772][ T7329] inet_sendmsg+0x11c/0x140 [ 2390.782830][ T7329] ____sys_sendmsg+0x973/0xc70 [ 2390.782868][ T7329] ? copy_msghdr_from_user+0x10a/0x160 [ 2390.782894][ T7329] ? __pfx_____sys_sendmsg+0x10/0x10 [ 2390.782926][ T7329] ? lockdep_hardirqs_on+0x7c/0x110 [ 2390.782959][ T7329] ? kfree+0x2b8/0x6d0 [ 2390.782986][ T7329] ? ___sys_sendmsg+0x141/0x1d0 [ 2390.783018][ T7329] ___sys_sendmsg+0x134/0x1d0 [ 2390.783046][ T7329] ? __pfx____sys_sendmsg+0x10/0x10 [ 2390.783100][ T7329] ? __pfx___might_resched+0x10/0x10 [ 2390.783139][ T7329] __sys_sendmmsg+0x200/0x420 [ 2390.783170][ T7329] ? __pfx___sys_sendmmsg+0x10/0x10 [ 2390.783218][ T7329] ? __pfx_do_futex+0x10/0x10 [ 2390.783243][ T7329] ? fput+0x9b/0xd0 [ 2390.783279][ T7329] ? xfd_validate_state+0x61/0x180 [ 2390.783311][ T7329] __x64_sys_sendmmsg+0x9c/0x100 [ 2390.783337][ T7329] ? lockdep_hardirqs_on+0x7c/0x110 [ 2390.783365][ T7329] do_syscall_64+0xcd/0xfa0 [ 2390.783396][ T7329] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2390.783420][ T7329] RIP: 0033:0x7f246298efc9 [ 2390.783438][ T7329] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2390.783461][ T7329] RSP: 002b:00007f2460791038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 2390.783484][ T7329] RAX: ffffffffffffffda RBX: 00007f2462be6270 RCX: 00007f246298efc9 [ 2390.783500][ T7329] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 2390.783514][ T7329] RBP: 00007f2462a11f91 R08: 0000000000000000 R09: 0000000000000000 [ 2390.783528][ T7329] R10: 000000000000e3a7 R11: 0000000000000246 R12: 0000000000000000 [ 2390.783543][ T7329] R13: 00007f2462be6308 R14: 00007f2462be6270 R15: 00007ffc7b94adc8 [ 2390.783573][ T7329] [ 2392.047447][ T7344] netlink: 342 bytes leftover after parsing attributes in process `syz.3.8239'. [ 2394.365748][ T7384] sysfs: cannot create duplicate filename '/fs/nfs/net' [ 2394.388521][ T7385] FAULT_INJECTION: forcing a failure. [ 2394.388521][ T7385] name failslab, interval 1, probability 393216, space 0, times 0 [ 2394.401994][ T7384] CPU: 0 UID: 0 PID: 7384 Comm: syz.2.8249 Tainted: G U syzkaller #0 PREEMPT(full) [ 2394.402031][ T7384] Tainted: [U]=USER [ 2394.402040][ T7384] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 2394.402056][ T7384] Call Trace: [ 2394.402064][ T7384] [ 2394.402073][ T7384] dump_stack_lvl+0x16c/0x1f0 [ 2394.402107][ T7384] sysfs_warn_dup+0x7f/0xa0 [ 2394.402146][ T7384] sysfs_create_dir_ns+0x24b/0x2b0 [ 2394.402185][ T7384] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 2394.402224][ T7384] ? find_held_lock+0x2b/0x80 [ 2394.402263][ T7384] ? nfs_netns_namespace+0xd/0x40 [ 2394.402290][ T7384] kobject_add_internal+0x2c4/0x9b0 [ 2394.402332][ T7384] kobject_init_and_add+0x11b/0x190 [ 2394.402368][ T7384] ? __pfx_kobject_init_and_add+0x10/0x10 [ 2394.402434][ T7384] nfs_netns_sysfs_setup+0xf9/0x1f0 [ 2394.402462][ T7384] nfs_net_init+0x10a/0x340 [ 2394.402488][ T7384] ? __pfx_nfs_net_init+0x10/0x10 [ 2394.402511][ T7384] ops_init+0x1e2/0x5f0 [ 2394.402542][ T7384] setup_net+0x100/0x390 [ 2394.402575][ T7384] ? __pfx_setup_net+0x10/0x10 [ 2394.402604][ T7384] ? debug_mutex_init+0x37/0x70 [ 2394.402642][ T7384] copy_net_ns+0x2f8/0x690 [ 2394.402676][ T7384] create_new_namespaces+0x3ea/0xa90 [ 2394.402720][ T7384] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 2394.402760][ T7384] ksys_unshare+0x45b/0xa40 [ 2394.402785][ T7384] ? __pfx_ksys_unshare+0x10/0x10 [ 2394.402812][ T7384] ? xfd_validate_state+0x61/0x180 [ 2394.402848][ T7384] __x64_sys_unshare+0x31/0x40 [ 2394.402872][ T7384] do_syscall_64+0xcd/0xfa0 [ 2394.402905][ T7384] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2394.402929][ T7384] RIP: 0033:0x7f887898efc9 [ 2394.402949][ T7384] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2394.402973][ T7384] RSP: 002b:00007f8879842038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 2394.402996][ T7384] RAX: ffffffffffffffda RBX: 00007f8878be5fa0 RCX: 00007f887898efc9 [ 2394.403013][ T7384] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 2394.403028][ T7384] RBP: 00007f8878a11f91 R08: 0000000000000000 R09: 0000000000000000 [ 2394.403043][ T7384] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2394.403058][ T7384] R13: 00007f8878be6038 R14: 00007f8878be5fa0 R15: 00007ffe0195d928 [ 2394.403090][ T7384] [ 2394.403115][ T7384] kobject: kobject_add_internal failed for net with -EEXIST, don't try to register things with the same name in the same directory. [ 2394.712300][ T7385] CPU: 0 UID: 0 PID: 7385 Comm: syz.1.8248 Tainted: G U syzkaller #0 PREEMPT(full) [ 2394.712338][ T7385] Tainted: [U]=USER [ 2394.712346][ T7385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 2394.712361][ T7385] Call Trace: [ 2394.712369][ T7385] [ 2394.712378][ T7385] dump_stack_lvl+0x16c/0x1f0 [ 2394.712412][ T7385] should_fail_ex+0x512/0x640 [ 2394.712435][ T7385] ? kmem_cache_alloc_node_noprof+0x65/0x770 [ 2394.712473][ T7385] should_failslab+0xc2/0x120 [ 2394.712505][ T7385] kmem_cache_alloc_node_noprof+0x78/0x770 [ 2394.712537][ T7385] ? ___sys_sendmsg+0x134/0x1d0 [ 2394.712562][ T7385] ? __alloc_skb+0x2b2/0x380 [ 2394.712582][ T7385] ? __x64_sys_sendmmsg+0x9c/0x100 [ 2394.712614][ T7385] ? __alloc_skb+0x2b2/0x380 [ 2394.712634][ T7385] __alloc_skb+0x2b2/0x380 [ 2394.712656][ T7385] ? __pfx___alloc_skb+0x10/0x10 [ 2394.712689][ T7385] _sctp_make_chunk+0x51/0x270 [ 2394.712718][ T7385] sctp_make_datafrag_empty+0x16f/0x240 [ 2394.712748][ T7385] ? __pfx_sctp_make_datafrag_empty+0x10/0x10 [ 2394.712786][ T7385] sctp_datamsg_from_user+0x595/0x1330 [ 2394.712825][ T7385] sctp_sendmsg_to_asoc+0xae2/0x1bd0 [ 2394.712869][ T7385] ? __pfx_sctp_sendmsg_to_asoc+0x10/0x10 [ 2394.712901][ T7385] ? do_raw_spin_lock+0x12c/0x2b0 [ 2394.712932][ T7385] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 2394.712967][ T7385] ? sctp_sendmsg_check_sflags+0x176/0x320 [ 2394.713001][ T7385] sctp_sendmsg+0xe99/0x1e00 [ 2394.713046][ T7385] ? __pfx_sctp_sendmsg+0x10/0x10 [ 2394.713081][ T7385] ? __pfx___might_resched+0x10/0x10 [ 2394.713120][ T7385] ? aa_sk_perm+0x2f4/0xb10 [ 2394.713155][ T7385] ? __pfx_aa_sk_perm+0x10/0x10 [ 2394.713183][ T7385] ? import_ubuf+0x1b6/0x220 [ 2394.713213][ T7385] ? __pfx_sctp_sendmsg+0x10/0x10 [ 2394.713251][ T7385] inet_sendmsg+0x11c/0x140 [ 2394.713289][ T7385] ____sys_sendmsg+0x973/0xc70 [ 2394.713323][ T7385] ? copy_msghdr_from_user+0x10a/0x160 [ 2394.713351][ T7385] ? __pfx_____sys_sendmsg+0x10/0x10 [ 2394.713382][ T7385] ? lockdep_hardirqs_on+0x7c/0x110 [ 2394.713415][ T7385] ? kfree+0x2b8/0x6d0 [ 2394.713440][ T7385] ? ___sys_sendmsg+0x141/0x1d0 [ 2394.713471][ T7385] ___sys_sendmsg+0x134/0x1d0 [ 2394.713504][ T7385] ? __pfx____sys_sendmsg+0x10/0x10 [ 2394.713556][ T7385] ? __pfx___might_resched+0x10/0x10 [ 2394.713615][ T7385] __sys_sendmmsg+0x200/0x420 [ 2394.713645][ T7385] ? __pfx___sys_sendmmsg+0x10/0x10 [ 2394.713680][ T7385] ? __pfx_do_futex+0x10/0x10 [ 2394.713706][ T7385] ? fput+0x9b/0xd0 [ 2394.713744][ T7385] ? xfd_validate_state+0x61/0x180 [ 2394.713777][ T7385] __x64_sys_sendmmsg+0x9c/0x100 [ 2394.713803][ T7385] ? lockdep_hardirqs_on+0x7c/0x110 [ 2394.713833][ T7385] do_syscall_64+0xcd/0xfa0 [ 2394.713865][ T7385] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2394.713890][ T7385] RIP: 0033:0x7f123af8efc9 [ 2394.713909][ T7385] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2394.713934][ T7385] RSP: 002b:00007f1238db2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 2394.713957][ T7385] RAX: ffffffffffffffda RBX: 00007f123b1e6270 RCX: 00007f123af8efc9 [ 2394.713974][ T7385] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 2394.713989][ T7385] RBP: 00007f123b011f91 R08: 0000000000000000 R09: 0000000000000000 [ 2394.714003][ T7385] R10: 000000000000e3a7 R11: 0000000000000246 R12: 0000000000000000 [ 2394.714018][ T7385] R13: 00007f123b1e6308 R14: 00007f123b1e6270 R15: 00007ffc4835b5a8 [ 2394.714050][ T7385] [ 2395.136644][ T7389] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 2395.236399][ T7388] sd 0:0:1:0: PR command failed: 1026 [ 2395.241925][ T7388] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 2395.248633][ T7388] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 2397.440826][ T7429] binder: 7427:7429 ioctl c0306201 0 returned -14 [ 2397.505795][ T7430] FAULT_INJECTION: forcing a failure. [ 2397.505795][ T7430] name failslab, interval 1, probability 393216, space 0, times 0 [ 2397.560484][ T7430] CPU: 0 UID: 0 PID: 7430 Comm: syz.2.8260 Tainted: G U syzkaller #0 PREEMPT(full) [ 2397.560522][ T7430] Tainted: [U]=USER [ 2397.560531][ T7430] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 2397.560546][ T7430] Call Trace: [ 2397.560554][ T7430] [ 2397.560564][ T7430] dump_stack_lvl+0x16c/0x1f0 [ 2397.560598][ T7430] should_fail_ex+0x512/0x640 [ 2397.560622][ T7430] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 2397.560659][ T7430] should_failslab+0xc2/0x120 [ 2397.560688][ T7430] kmem_cache_alloc_noprof+0x75/0x6e0 [ 2397.560721][ T7430] ? __proc_create+0x2ce/0x8e0 [ 2397.560755][ T7430] ? __proc_create+0x2ce/0x8e0 [ 2397.560779][ T7430] __proc_create+0x2ce/0x8e0 [ 2397.560808][ T7430] ? __pfx___proc_create+0x10/0x10 [ 2397.560838][ T7430] ? _raw_write_unlock+0x28/0x50 [ 2397.560867][ T7430] ? proc_register+0x559/0x8b0 [ 2397.560899][ T7430] proc_create_reg+0x7d/0x180 [ 2397.560928][ T7430] ? __pfx_rt_acct_proc_show+0x10/0x10 [ 2397.560964][ T7430] proc_create_single_data+0x86/0x130 [ 2397.560995][ T7430] ? __pfx_proc_create_single_data+0x10/0x10 [ 2397.561026][ T7430] ? __pfx_nl_fib_input+0x10/0x10 [ 2397.561066][ T7430] ? __pfx_ip_rt_do_proc_init+0x10/0x10 [ 2397.561099][ T7430] ip_rt_do_proc_init+0xf4/0x1b0 [ 2397.561133][ T7430] ops_init+0x1e2/0x5f0 [ 2397.561164][ T7430] setup_net+0x100/0x390 [ 2397.561192][ T7430] ? __pfx_setup_net+0x10/0x10 [ 2397.561221][ T7430] ? debug_mutex_init+0x37/0x70 [ 2397.561258][ T7430] copy_net_ns+0x2f8/0x690 [ 2397.561292][ T7430] create_new_namespaces+0x3ea/0xa90 [ 2397.561341][ T7430] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 2397.561382][ T7430] ksys_unshare+0x45b/0xa40 [ 2397.561406][ T7430] ? __pfx_ksys_unshare+0x10/0x10 [ 2397.561432][ T7430] ? xfd_validate_state+0x61/0x180 [ 2397.561467][ T7430] __x64_sys_unshare+0x31/0x40 [ 2397.561491][ T7430] do_syscall_64+0xcd/0xfa0 [ 2397.561536][ T7430] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2397.561559][ T7430] RIP: 0033:0x7f887898efc9 [ 2397.561578][ T7430] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2397.561601][ T7430] RSP: 002b:00007f8879842038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 2397.561623][ T7430] RAX: ffffffffffffffda RBX: 00007f8878be5fa0 RCX: 00007f887898efc9 [ 2397.561639][ T7430] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 2397.561653][ T7430] RBP: 00007f8878a11f91 R08: 0000000000000000 R09: 0000000000000000 [ 2397.561668][ T7430] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2397.561682][ T7430] R13: 00007f8878be6038 R14: 00007f8878be5fa0 R15: 00007ffe0195d928 [ 2397.561713][ T7430] [ 2398.605428][ T7456] netlink: 342 bytes leftover after parsing attributes in process `syz.3.8266'. [ 2399.550377][ T7477] netlink: Conntrack attr has 16 unknown bytes [ 2400.467125][ T7500] FAULT_INJECTION: forcing a failure. [ 2400.467125][ T7500] name failslab, interval 1, probability 393216, space 0, times 0 [ 2400.544019][ T7500] CPU: 0 UID: 0 PID: 7500 Comm: syz.0.8275 Tainted: G U syzkaller #0 PREEMPT(full) [ 2400.544060][ T7500] Tainted: [U]=USER [ 2400.544069][ T7500] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 2400.544083][ T7500] Call Trace: [ 2400.544091][ T7500] [ 2400.544100][ T7500] dump_stack_lvl+0x16c/0x1f0 [ 2400.544134][ T7500] should_fail_ex+0x512/0x640 [ 2400.544156][ T7500] ? __kmalloc_noprof+0xca/0x880 [ 2400.544189][ T7500] should_failslab+0xc2/0x120 [ 2400.544213][ T7500] __kmalloc_noprof+0xdd/0x880 [ 2400.544243][ T7500] ? acpi_ns_internalize_name+0x161/0x2e0 [ 2400.544283][ T7500] ? acpi_ns_internalize_name+0x161/0x2e0 [ 2400.544318][ T7500] acpi_ns_internalize_name+0x161/0x2e0 [ 2400.544353][ T7500] ? __pfx_acpi_ns_internalize_name+0x10/0x10 [ 2400.544389][ T7500] ? acpi_ut_trace_ptr+0x1d2/0x2a0 [ 2400.544417][ T7500] ? kasan_save_stack+0x33/0x60 [ 2400.544451][ T7500] ? kasan_save_track+0x14/0x30 [ 2400.544486][ T7500] ? __kasan_kmalloc+0xaa/0xb0 [ 2400.544519][ T7500] ? acpi_evaluate_object+0xf5/0xdf0 [ 2400.544553][ T7500] ? acpi_evaluate_integer+0xdd/0x200 [ 2400.544582][ T7500] ? status_show+0xa0/0x120 [ 2400.544621][ T7500] acpi_ns_get_node_unlocked+0x180/0x4f0 [ 2400.544659][ T7500] ? __pfx_acpi_ns_get_node_unlocked+0x10/0x10 [ 2400.544698][ T7500] ? mark_held_locks+0x49/0x80 [ 2400.544730][ T7500] ? acpi_os_wait_semaphore+0x212/0x3f0 [ 2400.544762][ T7500] ? acpi_ns_get_node+0x6c/0xf0 [ 2400.544795][ T7500] acpi_ns_get_node+0x6c/0xf0 [ 2400.544831][ T7500] acpi_ns_evaluate+0xcd5/0x16d0 [ 2400.544867][ T7500] acpi_evaluate_object+0x4ca/0xdf0 [ 2400.544910][ T7500] ? __pfx_acpi_evaluate_object+0x10/0x10 [ 2400.544948][ T7500] ? __mutex_trylock_common+0xe9/0x250 [ 2400.544979][ T7500] acpi_evaluate_integer+0xdd/0x200 [ 2400.545010][ T7500] ? __pfx_acpi_evaluate_integer+0x10/0x10 [ 2400.545060][ T7500] ? __pfx_status_show+0x10/0x10 [ 2400.545096][ T7500] status_show+0xa0/0x120 [ 2400.545132][ T7500] ? __pfx_status_show+0x10/0x10 [ 2400.545176][ T7500] dev_attr_show+0x56/0xe0 [ 2400.545199][ T7500] ? __pfx_dev_attr_show+0x10/0x10 [ 2400.545219][ T7500] sysfs_kf_seq_show+0x216/0x3e0 [ 2400.545260][ T7500] seq_read_iter+0x50e/0x12d0 [ 2400.545303][ T7500] kernfs_fop_read_iter+0x46c/0x610 [ 2400.545335][ T7500] ? rw_verify_area+0xcf/0x6c0 [ 2400.545368][ T7500] vfs_read+0x8bf/0xcf0 [ 2400.545409][ T7500] ? __pfx___mutex_lock+0x10/0x10 [ 2400.545459][ T7500] ? __pfx_vfs_read+0x10/0x10 [ 2400.545513][ T7500] ksys_read+0x12a/0x250 [ 2400.545548][ T7500] ? __pfx_ksys_read+0x10/0x10 [ 2400.545593][ T7500] do_syscall_64+0xcd/0xfa0 [ 2400.545625][ T7500] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2400.545650][ T7500] RIP: 0033:0x7f68f9b8efc9 [ 2400.545670][ T7500] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2400.545695][ T7500] RSP: 002b:00007f68fa977038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 2400.545717][ T7500] RAX: ffffffffffffffda RBX: 00007f68f9de5fa0 RCX: 00007f68f9b8efc9 [ 2400.545733][ T7500] RDX: 000000000000007a RSI: 0000200000000140 RDI: 000000000000000a [ 2400.545748][ T7500] RBP: 00007f68f9c11f91 R08: 0000000000000000 R09: 0000000000000000 [ 2400.545763][ T7500] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2400.545778][ T7500] R13: 00007f68f9de6038 R14: 00007f68f9de5fa0 R15: 00007ffee2b35f78 [ 2400.545810][ T7500] [ 2401.208841][ T7500] i2c i2c-0: dvb_frontend_start: failed to start kthread (-4) [ 2401.279824][ T7510] netlink: 342 bytes leftover after parsing attributes in process `syz.2.8277'. [ 2401.710208][ T7525] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0] [ 2403.016399][ T7542] FAULT_INJECTION: forcing a failure. [ 2403.016399][ T7542] name failslab, interval 1, probability 393216, space 0, times 0 [ 2403.161292][ T7542] CPU: 0 UID: 0 PID: 7542 Comm: syz.0.8284 Tainted: G U syzkaller #0 PREEMPT(full) [ 2403.161331][ T7542] Tainted: [U]=USER [ 2403.161339][ T7542] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 2403.161355][ T7542] Call Trace: [ 2403.161363][ T7542] [ 2403.161372][ T7542] dump_stack_lvl+0x16c/0x1f0 [ 2403.161407][ T7542] should_fail_ex+0x512/0x640 [ 2403.161430][ T7542] ? kmem_cache_alloc_node_noprof+0x65/0x770 [ 2403.161469][ T7542] should_failslab+0xc2/0x120 [ 2403.161494][ T7542] kmem_cache_alloc_node_noprof+0x78/0x770 [ 2403.161528][ T7542] ? ___sys_sendmsg+0x134/0x1d0 [ 2403.161552][ T7542] ? __alloc_skb+0x2b2/0x380 [ 2403.161574][ T7542] ? __x64_sys_sendmmsg+0x9c/0x100 [ 2403.161606][ T7542] ? __alloc_skb+0x2b2/0x380 [ 2403.161627][ T7542] __alloc_skb+0x2b2/0x380 [ 2403.161650][ T7542] ? __pfx___alloc_skb+0x10/0x10 [ 2403.161685][ T7542] _sctp_make_chunk+0x51/0x270 [ 2403.161713][ T7542] sctp_make_datafrag_empty+0x16f/0x240 [ 2403.161745][ T7542] ? __pfx_sctp_make_datafrag_empty+0x10/0x10 [ 2403.161784][ T7542] sctp_datamsg_from_user+0x595/0x1330 [ 2403.161824][ T7542] sctp_sendmsg_to_asoc+0xae2/0x1bd0 [ 2403.161876][ T7542] ? __pfx_sctp_sendmsg_to_asoc+0x10/0x10 [ 2403.161910][ T7542] ? do_raw_spin_lock+0x12c/0x2b0 [ 2403.161942][ T7542] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 2403.161979][ T7542] ? sctp_sendmsg_check_sflags+0x176/0x320 [ 2403.162014][ T7542] sctp_sendmsg+0xe99/0x1e00 [ 2403.162061][ T7542] ? __pfx_sctp_sendmsg+0x10/0x10 [ 2403.162097][ T7542] ? __pfx___might_resched+0x10/0x10 [ 2403.162138][ T7542] ? aa_sk_perm+0x2f4/0xb10 [ 2403.162173][ T7542] ? __pfx_aa_sk_perm+0x10/0x10 [ 2403.162203][ T7542] ? import_ubuf+0x1b6/0x220 [ 2403.162234][ T7542] ? __pfx_sctp_sendmsg+0x10/0x10 [ 2403.162274][ T7542] inet_sendmsg+0x11c/0x140 [ 2403.162319][ T7542] ____sys_sendmsg+0x973/0xc70 [ 2403.162354][ T7542] ? copy_msghdr_from_user+0x10a/0x160 [ 2403.162381][ T7542] ? __pfx_____sys_sendmsg+0x10/0x10 [ 2403.162413][ T7542] ? lockdep_hardirqs_on+0x7c/0x110 [ 2403.162447][ T7542] ? kfree+0x2b8/0x6d0 [ 2403.162474][ T7542] ? ___sys_sendmsg+0x141/0x1d0 [ 2403.162506][ T7542] ___sys_sendmsg+0x134/0x1d0 [ 2403.162534][ T7542] ? __pfx____sys_sendmsg+0x10/0x10 [ 2403.162588][ T7542] ? __pfx___might_resched+0x10/0x10 [ 2403.162628][ T7542] __sys_sendmmsg+0x200/0x420 [ 2403.162658][ T7542] ? __pfx___sys_sendmmsg+0x10/0x10 [ 2403.162694][ T7542] ? __pfx_do_futex+0x10/0x10 [ 2403.162719][ T7542] ? fput+0x9b/0xd0 [ 2403.162757][ T7542] ? xfd_validate_state+0x61/0x180 [ 2403.162790][ T7542] __x64_sys_sendmmsg+0x9c/0x100 [ 2403.162816][ T7542] ? lockdep_hardirqs_on+0x7c/0x110 [ 2403.162846][ T7542] do_syscall_64+0xcd/0xfa0 [ 2403.162882][ T7542] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2403.162907][ T7542] RIP: 0033:0x7f68f9b8efc9 [ 2403.162926][ T7542] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2403.162950][ T7542] RSP: 002b:00007f68f7df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 2403.162972][ T7542] RAX: ffffffffffffffda RBX: 00007f68f9de6180 RCX: 00007f68f9b8efc9 [ 2403.162988][ T7542] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 2403.163003][ T7542] RBP: 00007f68f9c11f91 R08: 0000000000000000 R09: 0000000000000000 [ 2403.163018][ T7542] R10: 000000000000e3a7 R11: 0000000000000246 R12: 0000000000000000 [ 2403.163033][ T7542] R13: 00007f68f9de6218 R14: 00007f68f9de6180 R15: 00007ffee2b35f78 [ 2403.163065][ T7542] [ 2404.141395][ T7555] netlink: 342 bytes leftover after parsing attributes in process `syz.3.8288'. [ 2404.811044][ T7565] random: crng reseeded on system resumption [ 2405.459088][ T7577] netlink: 'syz.0.8296': attribute type 2 has an invalid length. [ 2405.503533][ T7577] netlink: 8 bytes leftover after parsing attributes in process `syz.0.8296'. [ 2406.483637][ T7597] FAULT_INJECTION: forcing a failure. [ 2406.483637][ T7597] name failslab, interval 1, probability 393216, space 0, times 0 [ 2406.583935][ T7597] CPU: 0 UID: 0 PID: 7597 Comm: syz.3.8301 Tainted: G U syzkaller #0 PREEMPT(full) [ 2406.583974][ T7597] Tainted: [U]=USER [ 2406.583983][ T7597] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 2406.583998][ T7597] Call Trace: [ 2406.584007][ T7597] [ 2406.584016][ T7597] dump_stack_lvl+0x16c/0x1f0 [ 2406.584051][ T7597] should_fail_ex+0x512/0x640 [ 2406.584075][ T7597] ? kmem_cache_alloc_node_noprof+0x65/0x770 [ 2406.584114][ T7597] should_failslab+0xc2/0x120 [ 2406.584139][ T7597] kmem_cache_alloc_node_noprof+0x78/0x770 [ 2406.584172][ T7597] ? ___sys_sendmsg+0x134/0x1d0 [ 2406.584197][ T7597] ? __alloc_skb+0x2b2/0x380 [ 2406.584218][ T7597] ? __x64_sys_sendmmsg+0x9c/0x100 [ 2406.584250][ T7597] ? __alloc_skb+0x2b2/0x380 [ 2406.584270][ T7597] __alloc_skb+0x2b2/0x380 [ 2406.584294][ T7597] ? __pfx___alloc_skb+0x10/0x10 [ 2406.584328][ T7597] _sctp_make_chunk+0x51/0x270 [ 2406.584359][ T7597] sctp_make_datafrag_empty+0x16f/0x240 [ 2406.584394][ T7597] ? __pfx_sctp_make_datafrag_empty+0x10/0x10 [ 2406.584433][ T7597] sctp_datamsg_from_user+0x595/0x1330 [ 2406.584473][ T7597] sctp_sendmsg_to_asoc+0xae2/0x1bd0 [ 2406.584521][ T7597] ? __pfx_sctp_sendmsg_to_asoc+0x10/0x10 [ 2406.584555][ T7597] ? do_raw_spin_lock+0x12c/0x2b0 [ 2406.584587][ T7597] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 2406.584631][ T7597] ? sctp_sendmsg_check_sflags+0x176/0x320 [ 2406.584670][ T7597] sctp_sendmsg+0xe99/0x1e00 [ 2406.584717][ T7597] ? __pfx_sctp_sendmsg+0x10/0x10 [ 2406.584753][ T7597] ? __pfx___might_resched+0x10/0x10 [ 2406.584794][ T7597] ? aa_sk_perm+0x2f4/0xb10 [ 2406.584829][ T7597] ? __pfx_aa_sk_perm+0x10/0x10 [ 2406.584859][ T7597] ? import_ubuf+0x1b6/0x220 [ 2406.584890][ T7597] ? __pfx_sctp_sendmsg+0x10/0x10 [ 2406.584929][ T7597] inet_sendmsg+0x11c/0x140 [ 2406.584969][ T7597] ____sys_sendmsg+0x973/0xc70 [ 2406.585003][ T7597] ? copy_msghdr_from_user+0x10a/0x160 [ 2406.585030][ T7597] ? __pfx_____sys_sendmsg+0x10/0x10 [ 2406.585061][ T7597] ? lockdep_hardirqs_on+0x7c/0x110 [ 2406.585095][ T7597] ? kfree+0x2b8/0x6d0 [ 2406.585121][ T7597] ? ___sys_sendmsg+0x141/0x1d0 [ 2406.585153][ T7597] ___sys_sendmsg+0x134/0x1d0 [ 2406.585181][ T7597] ? __pfx____sys_sendmsg+0x10/0x10 [ 2406.585234][ T7597] ? __pfx___might_resched+0x10/0x10 [ 2406.585274][ T7597] __sys_sendmmsg+0x200/0x420 [ 2406.585305][ T7597] ? __pfx___sys_sendmmsg+0x10/0x10 [ 2406.585340][ T7597] ? __pfx_do_futex+0x10/0x10 [ 2406.585366][ T7597] ? fput+0x9b/0xd0 [ 2406.585409][ T7597] ? xfd_validate_state+0x61/0x180 [ 2406.585443][ T7597] __x64_sys_sendmmsg+0x9c/0x100 [ 2406.585470][ T7597] ? lockdep_hardirqs_on+0x7c/0x110 [ 2406.585499][ T7597] do_syscall_64+0xcd/0xfa0 [ 2406.585531][ T7597] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2406.585556][ T7597] RIP: 0033:0x7f246298efc9 [ 2406.585575][ T7597] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2406.585599][ T7597] RSP: 002b:00007f2460bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 2406.585627][ T7597] RAX: ffffffffffffffda RBX: 00007f2462be5fa0 RCX: 00007f246298efc9 [ 2406.585643][ T7597] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 2406.585658][ T7597] RBP: 00007f2462a11f91 R08: 0000000000000000 R09: 0000000000000000 [ 2406.585674][ T7597] R10: 000000000000e3a7 R11: 0000000000000246 R12: 0000000000000000 [ 2406.585689][ T7597] R13: 00007f2462be6038 R14: 00007f2462be5fa0 R15: 00007ffc7b94adc8 [ 2406.585721][ T7597] [ 2407.214077][ T7617] FAULT_INJECTION: forcing a failure. [ 2407.214077][ T7617] name failslab, interval 1, probability 393216, space 0, times 0 [ 2407.227298][ T7617] CPU: 0 UID: 0 PID: 7617 Comm: syz.1.8305 Tainted: G U syzkaller #0 PREEMPT(full) [ 2407.227335][ T7617] Tainted: [U]=USER [ 2407.227343][ T7617] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 2407.227358][ T7617] Call Trace: [ 2407.227366][ T7617] [ 2407.227375][ T7617] dump_stack_lvl+0x16c/0x1f0 [ 2407.227409][ T7617] should_fail_ex+0x512/0x640 [ 2407.227436][ T7617] should_failslab+0xc2/0x120 [ 2407.227461][ T7617] kmem_cache_alloc_noprof+0x75/0x6e0 [ 2407.227494][ T7617] ? do_raw_spin_lock+0x12c/0x2b0 [ 2407.227523][ T7617] ? dst_alloc+0x99/0x1a0 [ 2407.227555][ T7617] ? dst_alloc+0x99/0x1a0 [ 2407.227573][ T7617] dst_alloc+0x99/0x1a0 [ 2407.227597][ T7617] rt_dst_alloc+0x35/0x3a0 [ 2407.227630][ T7617] ip_route_output_key_hash_rcu+0x87a/0x28e0 [ 2407.227679][ T7617] ip_route_output_key_hash+0x10f/0x2b0 [ 2407.227718][ T7617] ? __pfx_ip_route_output_key_hash+0x10/0x10 [ 2407.227766][ T7617] ? find_held_lock+0x2b/0x80 [ 2407.227803][ T7617] ip_route_output_flow+0x27/0x150 [ 2407.227827][ T7617] raw_sendmsg+0xd5b/0x38b0 [ 2407.227859][ T7617] ? __pfx_raw_sendmsg+0x10/0x10 [ 2407.227881][ T7617] ? __lock_acquire+0x622/0x1c90 [ 2407.227911][ T7617] ? __lock_acquire+0x622/0x1c90 [ 2407.227970][ T7617] ? __pfx_raw_sendmsg+0x10/0x10 [ 2407.227993][ T7617] inet_sendmsg+0x11c/0x140 [ 2407.228032][ T7617] ____sys_sendmsg+0x973/0xc70 [ 2407.228066][ T7617] ? copy_msghdr_from_user+0x10a/0x160 [ 2407.228093][ T7617] ? __pfx_____sys_sendmsg+0x10/0x10 [ 2407.228131][ T7617] ? __pfx__kstrtoull+0x10/0x10 [ 2407.228169][ T7617] ___sys_sendmsg+0x134/0x1d0 [ 2407.228197][ T7617] ? __pfx____sys_sendmsg+0x10/0x10 [ 2407.228238][ T7617] ? find_held_lock+0x2b/0x80 [ 2407.228289][ T7617] __sys_sendmmsg+0x200/0x420 [ 2407.228319][ T7617] ? __pfx___sys_sendmmsg+0x10/0x10 [ 2407.228355][ T7617] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 2407.228399][ T7617] ? fput+0x9b/0xd0 [ 2407.228424][ T7617] ? ksys_write+0x1ac/0x250 [ 2407.228458][ T7617] ? __pfx_ksys_write+0x10/0x10 [ 2407.228498][ T7617] __x64_sys_sendmmsg+0x9c/0x100 [ 2407.228524][ T7617] ? lockdep_hardirqs_on+0x7c/0x110 [ 2407.228559][ T7617] do_syscall_64+0xcd/0xfa0 [ 2407.228591][ T7617] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2407.228616][ T7617] RIP: 0033:0x7f123af8efc9 [ 2407.228635][ T7617] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2407.228658][ T7617] RSP: 002b:00007f123bd43038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 2407.228681][ T7617] RAX: ffffffffffffffda RBX: 00007f123b1e5fa0 RCX: 00007f123af8efc9 [ 2407.228696][ T7617] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000003 [ 2407.228710][ T7617] RBP: 00007f123bd43090 R08: 0000000000000000 R09: 0000000000000000 [ 2407.228724][ T7617] R10: 000000000000e000 R11: 0000000000000246 R12: 0000000000000001 [ 2407.228738][ T7617] R13: 00007f123b1e6038 R14: 00007f123b1e5fa0 R15: 00007ffc4835b5a8 [ 2407.228769][ T7617] [ 2408.679118][ T7642] usb usb28: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 2408.921534][ T7645] netlink: 326 bytes leftover after parsing attributes in process `syz.2.8312'. [ 2409.387453][ T7653] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8315'. [ 2409.503453][ T7653] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8315'. [ 2409.563309][ T7653] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8315'. [ 2409.615774][ T7653] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8315'. [ 2409.666704][ T7653] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8315'. [ 2409.700289][ T7653] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8315'. [ 2409.741092][ T7653] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8315'. [ 2409.791430][ T7653] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8315'. [ 2409.841727][ T7653] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8315'. [ 2409.903991][ T7653] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8315'. [ 2410.012871][ T7660] FAULT_INJECTION: forcing a failure. [ 2410.012871][ T7660] name failslab, interval 1, probability 393216, space 0, times 0 [ 2410.094290][ T7660] CPU: 0 UID: 0 PID: 7660 Comm: syz.3.8316 Tainted: G U syzkaller #0 PREEMPT(full) [ 2410.094329][ T7660] Tainted: [U]=USER [ 2410.094344][ T7660] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 2410.094359][ T7660] Call Trace: [ 2410.094367][ T7660] [ 2410.094377][ T7660] dump_stack_lvl+0x16c/0x1f0 [ 2410.094411][ T7660] should_fail_ex+0x512/0x640 [ 2410.094434][ T7660] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 2410.094470][ T7660] should_failslab+0xc2/0x120 [ 2410.094494][ T7660] kmem_cache_alloc_noprof+0x75/0x6e0 [ 2410.094527][ T7660] ? alloc_empty_file+0x55/0x1e0 [ 2410.094558][ T7660] ? alloc_empty_file+0x55/0x1e0 [ 2410.094582][ T7660] alloc_empty_file+0x55/0x1e0 [ 2410.094609][ T7660] path_openat+0xda/0x2cb0 [ 2410.094653][ T7660] ? __pfx_path_openat+0x10/0x10 [ 2410.094689][ T7660] ? __lock_acquire+0xb8a/0x1c90 [ 2410.094718][ T7660] do_filp_open+0x20b/0x470 [ 2410.094753][ T7660] ? __pfx_do_filp_open+0x10/0x10 [ 2410.094809][ T7660] ? alloc_fd+0x471/0x7d0 [ 2410.094849][ T7660] do_sys_openat2+0x11b/0x1d0 [ 2410.094877][ T7660] ? __pfx_do_sys_openat2+0x10/0x10 [ 2410.094907][ T7660] ? __fget_files+0x20e/0x3c0 [ 2410.094944][ T7660] __x64_sys_openat+0x174/0x210 [ 2410.094972][ T7660] ? __pfx___x64_sys_openat+0x10/0x10 [ 2410.094999][ T7660] ? ksys_write+0x1ac/0x250 [ 2410.095043][ T7660] do_syscall_64+0xcd/0xfa0 [ 2410.095075][ T7660] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2410.095099][ T7660] RIP: 0033:0x7f246298efc9 [ 2410.095117][ T7660] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2410.095141][ T7660] RSP: 002b:00007f2460bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 2410.095163][ T7660] RAX: ffffffffffffffda RBX: 00007f2462be5fa0 RCX: 00007f246298efc9 [ 2410.095180][ T7660] RDX: 0000000000000600 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 2410.095195][ T7660] RBP: 00007f2460bf6090 R08: 0000000000000000 R09: 0000000000000000 [ 2410.095210][ T7660] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2410.095225][ T7660] R13: 00007f2462be6038 R14: 00007f2462be5fa0 R15: 00007ffc7b94adc8 [ 2410.095256][ T7660] [ 2410.668524][ T7662] FAULT_INJECTION: forcing a failure. [ 2410.668524][ T7662] name failslab, interval 1, probability 393216, space 0, times 0 [ 2410.715868][ T7662] CPU: 0 UID: 0 PID: 7662 Comm: syz.2.8317 Tainted: G U syzkaller #0 PREEMPT(full) [ 2410.715908][ T7662] Tainted: [U]=USER [ 2410.715916][ T7662] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 2410.715931][ T7662] Call Trace: [ 2410.715939][ T7662] [ 2410.715949][ T7662] dump_stack_lvl+0x16c/0x1f0 [ 2410.715983][ T7662] should_fail_ex+0x512/0x640 [ 2410.716007][ T7662] ? fs_reclaim_acquire+0xae/0x150 [ 2410.716033][ T7662] should_failslab+0xc2/0x120 [ 2410.716059][ T7662] kmem_cache_alloc_noprof+0x75/0x6e0 [ 2410.716092][ T7662] ? __pfx_map_id_range_down+0x10/0x10 [ 2410.716123][ T7662] ? security_inode_alloc+0x3b/0x2b0 [ 2410.716157][ T7662] ? security_inode_alloc+0x3b/0x2b0 [ 2410.716184][ T7662] security_inode_alloc+0x3b/0x2b0 [ 2410.716214][ T7662] inode_init_always_gfp+0xce4/0x1030 [ 2410.716253][ T7662] alloc_inode+0x86/0x240 [ 2410.716286][ T7662] sock_alloc+0x40/0x280 [ 2410.716317][ T7662] __sock_create+0xc1/0x8d0 [ 2410.716358][ T7662] __sys_socket+0x14d/0x260 [ 2410.716393][ T7662] ? __pfx___sys_socket+0x10/0x10 [ 2410.716428][ T7662] ? xfd_validate_state+0x61/0x180 [ 2410.716462][ T7662] __x64_sys_socket+0x72/0xb0 [ 2410.716495][ T7662] ? lockdep_hardirqs_on+0x7c/0x110 [ 2410.716526][ T7662] do_syscall_64+0xcd/0xfa0 [ 2410.716557][ T7662] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2410.716582][ T7662] RIP: 0033:0x7f887898efc9 [ 2410.716602][ T7662] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2410.716626][ T7662] RSP: 002b:00007f8879842038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 2410.716648][ T7662] RAX: ffffffffffffffda RBX: 00007f8878be5fa0 RCX: 00007f887898efc9 [ 2410.716664][ T7662] RDX: 0000000000000106 RSI: 0000000000000001 RDI: 0000000000000002 [ 2410.716679][ T7662] RBP: 00007f8878a11f91 R08: 0000000000000000 R09: 0000000000000000 [ 2410.716693][ T7662] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2410.716707][ T7662] R13: 00007f8878be6038 R14: 00007f8878be5fa0 R15: 00007ffe0195d928 [ 2410.716737][ T7662] [ 2410.716766][ T7662] socket: no more sockets [ 2412.041438][ T7692] FAULT_INJECTION: forcing a failure. [ 2412.041438][ T7692] name failslab, interval 1, probability 393216, space 0, times 0 [ 2412.068192][ T7689] FAULT_INJECTION: forcing a failure. [ 2412.068192][ T7689] name failslab, interval 1, probability 393216, space 0, times 0 [ 2412.172406][ T7689] CPU: 0 UID: 0 PID: 7689 Comm: syz.1.8324 Tainted: G U syzkaller #0 PREEMPT(full) [ 2412.172442][ T7689] Tainted: [U]=USER [ 2412.172450][ T7689] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 2412.172464][ T7689] Call Trace: [ 2412.172472][ T7689] [ 2412.172481][ T7689] dump_stack_lvl+0x16c/0x1f0 [ 2412.172514][ T7689] should_fail_ex+0x512/0x640 [ 2412.172536][ T7689] ? __kmalloc_cache_noprof+0x5f/0x780 [ 2412.172570][ T7689] should_failslab+0xc2/0x120 [ 2412.172593][ T7689] __kmalloc_cache_noprof+0x72/0x780 [ 2412.172624][ T7689] ? snd_pcm_hw_param_near.constprop.0+0xbc/0x8e0 [ 2412.172677][ T7689] ? snd_pcm_hw_param_near.constprop.0+0xbc/0x8e0 [ 2412.172710][ T7689] snd_pcm_hw_param_near.constprop.0+0xbc/0x8e0 [ 2412.172747][ T7689] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 2412.172800][ T7689] ? snd_pcm_oss_change_params_locked+0x958/0x3a30 [ 2412.172843][ T7689] snd_pcm_oss_change_params_locked+0x9cd/0x3a30 [ 2412.172891][ T7689] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 2412.172948][ T7689] snd_pcm_oss_make_ready_locked+0xb7/0x130 [ 2412.172985][ T7689] snd_pcm_oss_sync+0x32e/0x840 [ 2412.173023][ T7689] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 2412.173057][ T7689] snd_pcm_oss_release+0x28b/0x310 [ 2412.173093][ T7689] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 2412.173126][ T7689] __fput+0x402/0xb70 [ 2412.173156][ T7689] task_work_run+0x150/0x240 [ 2412.173188][ T7689] ? __pfx_task_work_run+0x10/0x10 [ 2412.173217][ T7689] ? __pfx___do_sys_close_range+0x10/0x10 [ 2412.173257][ T7689] exit_to_user_mode_loop+0xec/0x130 [ 2412.173292][ T7689] do_syscall_64+0x426/0xfa0 [ 2412.173324][ T7689] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2412.173348][ T7689] RIP: 0033:0x7f123af8efc9 [ 2412.173366][ T7689] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2412.173389][ T7689] RSP: 002b:00007ffc4835b708 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 2412.173411][ T7689] RAX: 0000000000000000 RBX: 000000000024cd4f RCX: 00007f123af8efc9 [ 2412.173426][ T7689] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003 [ 2412.173440][ T7689] RBP: 00007f123b1e7da0 R08: 0000000000000001 R09: 0000001a4835b9ff [ 2412.173455][ T7689] R10: 0000001b2ca20000 R11: 0000000000000246 R12: 00007f123b1e5fac [ 2412.173471][ T7689] R13: 00007f123b1e5fa0 R14: ffffffffffffffff R15: 00007ffc4835b820 [ 2412.173501][ T7689] [ 2412.717525][ T7692] CPU: 0 UID: 0 PID: 7692 Comm: syz.3.8322 Tainted: G U syzkaller #0 PREEMPT(full) [ 2412.717565][ T7692] Tainted: [U]=USER [ 2412.717574][ T7692] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 2412.717588][ T7692] Call Trace: [ 2412.717597][ T7692] [ 2412.717606][ T7692] dump_stack_lvl+0x16c/0x1f0 [ 2412.717641][ T7692] should_fail_ex+0x512/0x640 [ 2412.717665][ T7692] ? kmem_cache_alloc_node_noprof+0x65/0x770 [ 2412.717702][ T7692] should_failslab+0xc2/0x120 [ 2412.717728][ T7692] kmem_cache_alloc_node_noprof+0x78/0x770 [ 2412.717761][ T7692] ? ___sys_sendmsg+0x134/0x1d0 [ 2412.717786][ T7692] ? __alloc_skb+0x2b2/0x380 [ 2412.717807][ T7692] ? __x64_sys_sendmmsg+0x9c/0x100 [ 2412.717839][ T7692] ? __alloc_skb+0x2b2/0x380 [ 2412.717860][ T7692] __alloc_skb+0x2b2/0x380 [ 2412.717883][ T7692] ? __pfx___alloc_skb+0x10/0x10 [ 2412.717917][ T7692] _sctp_make_chunk+0x51/0x270 [ 2412.717947][ T7692] sctp_make_datafrag_empty+0x16f/0x240 [ 2412.717978][ T7692] ? __pfx_sctp_make_datafrag_empty+0x10/0x10 [ 2412.718017][ T7692] sctp_datamsg_from_user+0x595/0x1330 [ 2412.718058][ T7692] sctp_sendmsg_to_asoc+0xae2/0x1bd0 [ 2412.718104][ T7692] ? __pfx_sctp_sendmsg_to_asoc+0x10/0x10 [ 2412.718138][ T7692] ? do_raw_spin_lock+0x12c/0x2b0 [ 2412.718176][ T7692] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 2412.718213][ T7692] ? sctp_sendmsg_check_sflags+0x176/0x320 [ 2412.718256][ T7692] sctp_sendmsg+0xe99/0x1e00 [ 2412.718304][ T7692] ? __pfx_sctp_sendmsg+0x10/0x10 [ 2412.718340][ T7692] ? __pfx___might_resched+0x10/0x10 [ 2412.718382][ T7692] ? aa_sk_perm+0x2f4/0xb10 [ 2412.718418][ T7692] ? __pfx_aa_sk_perm+0x10/0x10 [ 2412.718448][ T7692] ? import_ubuf+0x1b6/0x220 [ 2412.718482][ T7692] ? __pfx_sctp_sendmsg+0x10/0x10 [ 2412.718522][ T7692] inet_sendmsg+0x11c/0x140 [ 2412.718561][ T7692] ____sys_sendmsg+0x973/0xc70 [ 2412.718596][ T7692] ? copy_msghdr_from_user+0x10a/0x160 [ 2412.718622][ T7692] ? __pfx_____sys_sendmsg+0x10/0x10 [ 2412.718654][ T7692] ? lockdep_hardirqs_on+0x7c/0x110 [ 2412.718688][ T7692] ? kfree+0x2b8/0x6d0 [ 2412.718714][ T7692] ? ___sys_sendmsg+0x141/0x1d0 [ 2412.718746][ T7692] ___sys_sendmsg+0x134/0x1d0 [ 2412.718774][ T7692] ? __pfx____sys_sendmsg+0x10/0x10 [ 2412.718827][ T7692] ? __pfx___might_resched+0x10/0x10 [ 2412.718868][ T7692] __sys_sendmmsg+0x200/0x420 [ 2412.718898][ T7692] ? __pfx___sys_sendmmsg+0x10/0x10 [ 2412.718933][ T7692] ? __pfx_do_futex+0x10/0x10 [ 2412.718958][ T7692] ? fput+0x9b/0xd0 [ 2412.718997][ T7692] ? xfd_validate_state+0x61/0x180 [ 2412.719030][ T7692] __x64_sys_sendmmsg+0x9c/0x100 [ 2412.719057][ T7692] ? lockdep_hardirqs_on+0x7c/0x110 [ 2412.719086][ T7692] do_syscall_64+0xcd/0xfa0 [ 2412.719118][ T7692] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2412.719142][ T7692] RIP: 0033:0x7f246298efc9 [ 2412.719162][ T7692] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2412.719186][ T7692] RSP: 002b:00007f2460791038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 2412.719208][ T7692] RAX: ffffffffffffffda RBX: 00007f2462be6270 RCX: 00007f246298efc9 [ 2412.719225][ T7692] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 2412.719240][ T7692] RBP: 00007f2462a11f91 R08: 0000000000000000 R09: 0000000000000000 [ 2412.719261][ T7692] R10: 000000000000e3a7 R11: 0000000000000246 R12: 0000000000000000 [ 2412.719277][ T7692] R13: 00007f2462be6308 R14: 00007f2462be6270 R15: 00007ffc7b94adc8 [ 2412.719309][ T7692] [ 2415.532464][ T7744] FAULT_INJECTION: forcing a failure. [ 2415.532464][ T7744] name failslab, interval 1, probability 393216, space 0, times 0 [ 2415.597217][ T7744] CPU: 0 UID: 0 PID: 7744 Comm: syz.2.8336 Tainted: G U syzkaller #0 PREEMPT(full) [ 2415.597255][ T7744] Tainted: [U]=USER [ 2415.597264][ T7744] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 2415.597278][ T7744] Call Trace: [ 2415.597286][ T7744] [ 2415.597295][ T7744] dump_stack_lvl+0x16c/0x1f0 [ 2415.597329][ T7744] should_fail_ex+0x512/0x640 [ 2415.597352][ T7744] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 2415.597388][ T7744] should_failslab+0xc2/0x120 [ 2415.597413][ T7744] kmem_cache_alloc_noprof+0x75/0x6e0 [ 2415.597445][ T7744] ? __pfx_acpi_ut_track_stack_ptr+0x10/0x10 [ 2415.597471][ T7744] ? acpi_ut_create_thread_state+0x6d/0x170 [ 2415.597500][ T7744] ? acpi_ut_create_thread_state+0x6d/0x170 [ 2415.597522][ T7744] acpi_ut_create_thread_state+0x6d/0x170 [ 2415.597547][ T7744] acpi_ps_parse_aml+0x12e/0x1170 [ 2415.597570][ T7744] ? acpi_ut_ptr_exit+0xfe/0x180 [ 2415.597600][ T7744] acpi_ps_execute_method+0x5c4/0xe90 [ 2415.597634][ T7744] acpi_ns_evaluate+0x98c/0x16d0 [ 2415.597670][ T7744] acpi_evaluate_object+0x4ca/0xdf0 [ 2415.597713][ T7744] ? __pfx_acpi_evaluate_object+0x10/0x10 [ 2415.597750][ T7744] ? __mutex_trylock_common+0xe9/0x250 [ 2415.597783][ T7744] acpi_evaluate_integer+0xdd/0x200 [ 2415.597814][ T7744] ? __pfx_acpi_evaluate_integer+0x10/0x10 [ 2415.597857][ T7744] ? __pfx_status_show+0x10/0x10 [ 2415.597893][ T7744] status_show+0xa0/0x120 [ 2415.597928][ T7744] ? __pfx_status_show+0x10/0x10 [ 2415.597992][ T7744] dev_attr_show+0x56/0xe0 [ 2415.598022][ T7744] ? __pfx_dev_attr_show+0x10/0x10 [ 2415.598043][ T7744] sysfs_kf_seq_show+0x216/0x3e0 [ 2415.598086][ T7744] seq_read_iter+0x50e/0x12d0 [ 2415.598130][ T7744] kernfs_fop_read_iter+0x46c/0x610 [ 2415.598163][ T7744] ? rw_verify_area+0xcf/0x6c0 [ 2415.598197][ T7744] vfs_read+0x8bf/0xcf0 [ 2415.598236][ T7744] ? __pfx___mutex_lock+0x10/0x10 [ 2415.598268][ T7744] ? __pfx_vfs_read+0x10/0x10 [ 2415.598323][ T7744] ksys_read+0x12a/0x250 [ 2415.598357][ T7744] ? __pfx_ksys_read+0x10/0x10 [ 2415.598401][ T7744] do_syscall_64+0xcd/0xfa0 [ 2415.598434][ T7744] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2415.598458][ T7744] RIP: 0033:0x7f887898efc9 [ 2415.598478][ T7744] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2415.598502][ T7744] RSP: 002b:00007f8879842038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 2415.598524][ T7744] RAX: ffffffffffffffda RBX: 00007f8878be5fa0 RCX: 00007f887898efc9 [ 2415.598541][ T7744] RDX: 000000000000007a RSI: 0000200000000140 RDI: 0000000000000003 [ 2415.598556][ T7744] RBP: 00007f8878a11f91 R08: 0000000000000000 R09: 0000000000000000 [ 2415.598571][ T7744] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2415.598584][ T7744] R13: 00007f8878be6038 R14: 00007f8878be5fa0 R15: 00007ffe0195d928 [ 2415.598617][ T7744] [ 2415.598692][ T7744] ACPI Error: [ 2416.045926][ T7733] kexec: Could not allocate control_code_buffer [ 2416.377173][ T7759] __nla_validate_parse: 24 callbacks suppressed [ 2416.377193][ T7759] netlink: 342 bytes leftover after parsing attributes in process `syz.1.8339'. [ 2416.711785][ T7766] FAULT_INJECTION: forcing a failure. [ 2416.711785][ T7766] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2416.767373][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 2416.775726][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 2416.784583][ T7766] CPU: 0 UID: 0 PID: 7766 Comm: syz.1.8340 Tainted: G U syzkaller #0 PREEMPT(full) [ 2416.784618][ T7766] Tainted: [U]=USER [ 2416.784626][ T7766] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 2416.784641][ T7766] Call Trace: [ 2416.784649][ T7766] [ 2416.784659][ T7766] dump_stack_lvl+0x16c/0x1f0 [ 2416.784693][ T7766] should_fail_ex+0x512/0x640 [ 2416.784721][ T7766] should_fail_alloc_page+0xe7/0x130 [ 2416.784748][ T7766] prepare_alloc_pages+0x3c2/0x610 [ 2416.784776][ T7766] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 2416.784809][ T7766] ? stack_trace_save+0x8e/0xc0 [ 2416.784845][ T7766] ? __pfx_stack_trace_save+0x10/0x10 [ 2416.784882][ T7766] ? stack_depot_save_flags+0x29/0x9c0 [ 2416.784911][ T7766] ? kasan_save_stack+0x42/0x60 [ 2416.784953][ T7766] ? kasan_save_stack+0x33/0x60 [ 2416.784987][ T7766] ? kasan_save_track+0x14/0x30 [ 2416.785021][ T7766] ? __kasan_slab_alloc+0x89/0x90 [ 2416.785043][ T7766] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 2416.785076][ T7766] ? __walk_page_range+0x163/0x820 [ 2416.785109][ T7766] ? madvise_vma_behavior+0xa54/0x2d50 [ 2416.785135][ T7766] ? madvise_do_behavior+0x1e2/0x530 [ 2416.785160][ T7766] ? do_madvise+0x176/0x240 [ 2416.785183][ T7766] ? __x64_sys_madvise+0xa9/0x110 [ 2416.785207][ T7766] ? do_syscall_64+0xcd/0xfa0 [ 2416.785235][ T7766] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2416.785272][ T7766] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 2416.785306][ T7766] ? policy_nodemask+0xea/0x4e0 [ 2416.785332][ T7766] alloc_pages_mpol+0x1fb/0x550 [ 2416.785357][ T7766] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 2416.785389][ T7766] alloc_pages_noprof+0x131/0x390 [ 2416.785417][ T7766] pte_alloc_one+0x1e/0x350 [ 2416.785453][ T7766] __pte_alloc+0x6d/0x380 [ 2416.785492][ T7766] ? __pfx___pte_alloc+0x10/0x10 [ 2416.785514][ T7766] ? _raw_spin_unlock+0x28/0x50 [ 2416.785539][ T7766] ? __pmd_alloc+0x64f/0x8b0 [ 2416.785570][ T7766] walk_pgd_range+0xb84/0x1f50 [ 2416.785608][ T7766] ? __pfx_guard_install_set_pte+0x10/0x10 [ 2416.785633][ T7766] ? __pfx_guard_install_pte_entry+0x10/0x10 [ 2416.785661][ T7766] ? __pfx_guard_install_set_pte+0x10/0x10 [ 2416.785690][ T7766] ? __pfx_guard_install_set_pte+0x10/0x10 [ 2416.785715][ T7766] ? __pfx_guard_install_set_pte+0x10/0x10 [ 2416.785742][ T7766] ? __pfx_walk_pgd_range+0x10/0x10 [ 2416.785781][ T7766] ? __lock_acquire+0xb8a/0x1c90 [ 2416.785809][ T7766] __walk_page_range+0x163/0x820 [ 2416.785847][ T7766] ? find_vma+0xbf/0x140 [ 2416.785884][ T7766] ? __pfx_find_vma+0x10/0x10 [ 2416.785931][ T7766] ? walk_page_test+0x9b/0x180 [ 2416.785966][ T7766] walk_page_range_mm+0x461/0xb40 [ 2416.786007][ T7766] ? __pfx_walk_page_range_mm+0x10/0x10 [ 2416.786051][ T7766] ? __anon_vma_prepare+0x2e2/0x5e0 [ 2416.786086][ T7766] madvise_vma_behavior+0xa54/0x2d50 [ 2416.786117][ T7766] ? mas_prev_setup.constprop.0+0xb6/0x9d0 [ 2416.786148][ T7766] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 2416.786176][ T7766] ? mas_prev+0x9b/0xf0 [ 2416.786207][ T7766] ? __pfx_mas_prev+0x10/0x10 [ 2416.786246][ T7766] ? find_vma_prev+0xd3/0x150 [ 2416.786267][ T7766] ? find_held_lock+0x2b/0x80 [ 2416.786300][ T7766] ? __pfx_find_vma_prev+0x10/0x10 [ 2416.786333][ T7766] ? __futex_wait+0x24b/0x2f0 [ 2416.786368][ T7766] madvise_walk_vmas+0x31f/0x9c0 [ 2416.786401][ T7766] ? __pfx_madvise_walk_vmas+0x10/0x10 [ 2416.786436][ T7766] madvise_do_behavior+0x1e2/0x530 [ 2416.786463][ T7766] ? futex_private_hash_put+0x18a/0x300 [ 2416.786504][ T7766] ? __pfx_madvise_do_behavior+0x10/0x10 [ 2416.786533][ T7766] ? down_read+0x13d/0x480 [ 2416.786581][ T7766] do_madvise+0x176/0x240 [ 2416.786607][ T7766] ? __pfx_do_madvise+0x10/0x10 [ 2416.786633][ T7766] ? do_futex+0x122/0x350 [ 2416.786677][ T7766] ? xfd_validate_state+0x61/0x180 [ 2416.786702][ T7766] ? __pfx_ksys_write+0x10/0x10 [ 2416.786743][ T7766] __x64_sys_madvise+0xa9/0x110 [ 2416.786769][ T7766] ? lockdep_hardirqs_on+0x7c/0x110 [ 2416.786798][ T7766] do_syscall_64+0xcd/0xfa0 [ 2416.786831][ T7766] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2416.786855][ T7766] RIP: 0033:0x7f123af8efc9 [ 2416.786875][ T7766] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2416.786898][ T7766] RSP: 002b:00007f12391f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 2416.786926][ T7766] RAX: ffffffffffffffda RBX: 00007f123b1e6090 RCX: 00007f123af8efc9 [ 2416.786943][ T7766] RDX: 0000000000000066 RSI: 0000000002021000 RDI: 0000000000000000 [ 2416.786958][ T7766] RBP: 00007f123b011f91 R08: 0000000000000000 R09: 0000000000000000 [ 2416.786973][ T7766] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2416.786987][ T7766] R13: 00007f123b1e6128 R14: 00007f123b1e6090 R15: 00007ffc4835b5a8 [ 2416.787019][ T7766] [ 2417.416323][ T7744] ffff88805af0b000 walk still has a scope list (20250807/dswstate-694) [ 2417.517689][ T7771] netlink: 338 bytes leftover after parsing attributes in process `syz.0.8341'. [ 2418.096346][ T7777] FAULT_INJECTION: forcing a failure. [ 2418.096346][ T7777] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2418.157241][ T7777] CPU: 0 UID: 0 PID: 7777 Comm: syz.2.8343 Tainted: G U syzkaller #0 PREEMPT(full) [ 2418.157279][ T7777] Tainted: [U]=USER [ 2418.157288][ T7777] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 2418.157302][ T7777] Call Trace: [ 2418.157310][ T7777] [ 2418.157319][ T7777] dump_stack_lvl+0x16c/0x1f0 [ 2418.157353][ T7777] should_fail_ex+0x512/0x640 [ 2418.157381][ T7777] _copy_from_user+0x2e/0xd0 [ 2418.157407][ T7777] copy_msghdr_from_user+0x98/0x160 [ 2418.157435][ T7777] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 2418.157466][ T7777] ? __pfx__kstrtoull+0x10/0x10 [ 2418.157504][ T7777] ___sys_sendmsg+0xfe/0x1d0 [ 2418.157531][ T7777] ? __pfx____sys_sendmsg+0x10/0x10 [ 2418.157571][ T7777] ? find_held_lock+0x2b/0x80 [ 2418.157623][ T7777] __sys_sendmmsg+0x200/0x420 [ 2418.157653][ T7777] ? __pfx___sys_sendmmsg+0x10/0x10 [ 2418.157689][ T7777] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 2418.157738][ T7777] ? fput+0x9b/0xd0 [ 2418.157762][ T7777] ? ksys_write+0x1ac/0x250 [ 2418.157797][ T7777] ? __pfx_ksys_write+0x10/0x10 [ 2418.157837][ T7777] __x64_sys_sendmmsg+0x9c/0x100 [ 2418.157863][ T7777] ? lockdep_hardirqs_on+0x7c/0x110 [ 2418.157892][ T7777] do_syscall_64+0xcd/0xfa0 [ 2418.157924][ T7777] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2418.157948][ T7777] RIP: 0033:0x7f887898efc9 [ 2418.157967][ T7777] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2418.157990][ T7777] RSP: 002b:00007f8879821038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 2418.158013][ T7777] RAX: ffffffffffffffda RBX: 00007f8878be6090 RCX: 00007f887898efc9 [ 2418.158029][ T7777] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 2418.158045][ T7777] RBP: 00007f8879821090 R08: 0000000000000000 R09: 0000000000000000 [ 2418.158060][ T7777] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2418.158074][ T7777] R13: 00007f8878be6128 R14: 00007f8878be6090 R15: 00007ffe0195d928 [ 2418.158105][ T7777] [ 2419.129146][ T7788] FAULT_INJECTION: forcing a failure. [ 2419.129146][ T7788] name failslab, interval 1, probability 393216, space 0, times 0 [ 2419.183258][ T7788] CPU: 0 UID: 0 PID: 7788 Comm: syz.3.8346 Tainted: G U syzkaller #0 PREEMPT(full) [ 2419.183295][ T7788] Tainted: [U]=USER [ 2419.183303][ T7788] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 2419.183317][ T7788] Call Trace: [ 2419.183324][ T7788] [ 2419.183333][ T7788] dump_stack_lvl+0x16c/0x1f0 [ 2419.183385][ T7788] should_fail_ex+0x512/0x640 [ 2419.183417][ T7788] should_failslab+0xc2/0x120 [ 2419.183442][ T7788] kmem_cache_alloc_lru_noprof+0x79/0x6e0 [ 2419.183477][ T7788] ? xas_split_alloc+0x11c/0x490 [ 2419.183513][ T7788] ? xas_split_alloc+0x11c/0x490 [ 2419.183541][ T7788] xas_split_alloc+0x11c/0x490 [ 2419.183579][ T7788] __folio_split+0xd73/0x4d80 [ 2419.183623][ T7788] ? __pfx_try_to_unmap_one+0x10/0x10 [ 2419.183656][ T7788] ? __mem_cgroup_try_charge_swap+0x8c/0x400 [ 2419.183687][ T7788] ? __pfx___folio_split+0x10/0x10 [ 2419.183733][ T7788] ? folio_alloc_swap+0x8af/0xd00 [ 2419.183759][ T7788] split_folio_to_list+0x9b/0x180 [ 2419.183792][ T7788] shmem_writeout+0x42e/0x1140 [ 2419.183829][ T7788] ? __pfx_shmem_writeout+0x10/0x10 [ 2419.183858][ T7788] ? __pfx_try_to_unmap+0x10/0x10 [ 2419.183888][ T7788] ? find_held_lock+0x2b/0x80 [ 2419.183922][ T7788] ? inode_to_bdi+0x9e/0x160 [ 2419.183959][ T7788] ? folio_clear_dirty_for_io+0x112/0x790 [ 2419.183988][ T7788] shrink_folio_list+0x2f45/0x4800 [ 2419.184027][ T7788] ? __pfx_shrink_folio_list+0x10/0x10 [ 2419.184056][ T7788] ? __kernel_text_address+0xd/0x40 [ 2419.184087][ T7788] ? unwind_get_return_address+0x59/0xa0 [ 2419.184122][ T7788] ? arch_stack_walk+0xa6/0x100 [ 2419.184168][ T7788] ? __pfx_stack_trace_save+0x10/0x10 [ 2419.184242][ T7788] reclaim_folio_list+0xda/0x5d0 [ 2419.184270][ T7788] ? __pfx_css_rstat_updated+0x10/0x10 [ 2419.184310][ T7788] ? __pfx_reclaim_folio_list+0x10/0x10 [ 2419.184351][ T7788] ? lru_gen_update_size+0x543/0xe10 [ 2419.184386][ T7788] ? lru_gen_del_folio+0x32b/0x540 [ 2419.184416][ T7788] reclaim_pages+0x3ec/0x570 [ 2419.184450][ T7788] ? __pfx_reclaim_pages+0x10/0x10 [ 2419.184480][ T7788] ? madvise_cold_or_pageout_pte_range+0x1e2f/0x20d0 [ 2419.184516][ T7788] madvise_cold_or_pageout_pte_range+0x14d1/0x20d0 [ 2419.184557][ T7788] ? __pfx_madvise_cold_or_pageout_pte_range+0x10/0x10 [ 2419.184587][ T7788] ? __lock_acquire+0x622/0x1c90 [ 2419.184614][ T7788] ? __pfx_stack_trace_save+0x10/0x10 [ 2419.184651][ T7788] ? stack_depot_save_flags+0x29/0x9c0 [ 2419.184676][ T7788] ? __pfx_madvise_cold_or_pageout_pte_range+0x10/0x10 [ 2419.184713][ T7788] walk_pgd_range+0xc05/0x1f50 [ 2419.184768][ T7788] ? __pfx_walk_pgd_range+0x10/0x10 [ 2419.184810][ T7788] __walk_page_range+0x163/0x820 [ 2419.184850][ T7788] ? __lock_acquire+0xb8a/0x1c90 [ 2419.184881][ T7788] walk_page_range_vma+0x2c7/0xa20 [ 2419.184920][ T7788] ? __pfx_walk_page_range_vma+0x10/0x10 [ 2419.184956][ T7788] ? find_held_lock+0x2b/0x80 [ 2419.185001][ T7788] madvise_pageout+0x257/0x540 [ 2419.185027][ T7788] ? __pfx_madvise_pageout+0x10/0x10 [ 2419.185074][ T7788] madvise_vma_behavior+0xb14/0x2d50 [ 2419.185105][ T7788] ? mas_prev_setup.constprop.0+0xb6/0x9d0 [ 2419.185135][ T7788] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 2419.185163][ T7788] ? mas_prev+0x9b/0xf0 [ 2419.185193][ T7788] ? __pfx_mas_prev+0x10/0x10 [ 2419.185231][ T7788] ? find_vma_prev+0xd3/0x150 [ 2419.185255][ T7788] ? __pfx_find_vma_prev+0x10/0x10 [ 2419.185289][ T7788] ? __lock_acquire+0x622/0x1c90 [ 2419.185317][ T7788] madvise_walk_vmas+0x31f/0x9c0 [ 2419.185348][ T7788] ? __pfx_madvise_walk_vmas+0x10/0x10 [ 2419.185384][ T7788] madvise_do_behavior+0x1e2/0x530 [ 2419.185417][ T7788] ? __pfx_madvise_do_behavior+0x10/0x10 [ 2419.185445][ T7788] ? down_read+0x13d/0x480 [ 2419.185493][ T7788] do_madvise+0x176/0x240 [ 2419.185518][ T7788] ? __pfx_do_madvise+0x10/0x10 [ 2419.185543][ T7788] ? __mutex_unlock_slowpath+0x161/0x7b0 [ 2419.185583][ T7788] ? __fget_files+0x20e/0x3c0 [ 2419.185627][ T7788] ? syscall_user_dispatch+0x78/0x140 [ 2419.185664][ T7788] __x64_sys_madvise+0xa9/0x110 [ 2419.185692][ T7788] do_syscall_64+0xcd/0xfa0 [ 2419.185728][ T7788] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2419.185752][ T7788] RIP: 0033:0x7f246298efc9 [ 2419.185770][ T7788] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2419.185794][ T7788] RSP: 002b:00007f2460bf6038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 2419.185817][ T7788] RAX: ffffffffffffffda RBX: 00007f2462be5fa0 RCX: 00007f246298efc9 [ 2419.185833][ T7788] RDX: 0000000000000015 RSI: 00000000002003f2 RDI: 0000000000000000 [ 2419.185847][ T7788] RBP: 00007f2460bf6090 R08: 0000000000000000 R09: 0000000000000000 [ 2419.185861][ T7788] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2419.185875][ T7788] R13: 00007f2462be6038 R14: 00007f2462be5fa0 R15: 00007ffc7b94adc8 [ 2419.185906][ T7788] [ 2420.584604][ T7810] FAULT_INJECTION: forcing a failure. [ 2420.584604][ T7810] name failslab, interval 1, probability 393216, space 0, times 0 [ 2420.645776][ T7810] CPU: 0 UID: 0 PID: 7810 Comm: syz.2.8350 Tainted: G U syzkaller #0 PREEMPT(full) [ 2420.645816][ T7810] Tainted: [U]=USER [ 2420.645824][ T7810] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 2420.645839][ T7810] Call Trace: [ 2420.645847][ T7810] [ 2420.645857][ T7810] dump_stack_lvl+0x16c/0x1f0 [ 2420.645893][ T7810] should_fail_ex+0x512/0x640 [ 2420.645917][ T7810] ? __kvmalloc_node_noprof+0x12e/0x9c0 [ 2420.645958][ T7810] should_failslab+0xc2/0x120 [ 2420.645983][ T7810] __kvmalloc_node_noprof+0x141/0x9c0 [ 2420.646023][ T7810] ? io_alloc_cache_init+0x38/0x170 [ 2420.646055][ T7810] ? io_alloc_cache_init+0x38/0x170 [ 2420.646079][ T7810] io_alloc_cache_init+0x38/0x170 [ 2420.646106][ T7810] io_uring_setup+0x661/0x20e0 [ 2420.646146][ T7810] ? __pfx_io_uring_setup+0x10/0x10 [ 2420.646183][ T7810] ? do_futex+0x122/0x350 [ 2420.646208][ T7810] ? __pfx_do_futex+0x10/0x10 [ 2420.646249][ T7810] ? xfd_validate_state+0x61/0x180 [ 2420.646275][ T7810] ? __pfx_do_writev+0x10/0x10 [ 2420.646314][ T7810] __x64_sys_io_uring_setup+0xc2/0x170 [ 2420.646354][ T7810] do_syscall_64+0xcd/0xfa0 [ 2420.646386][ T7810] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2420.646411][ T7810] RIP: 0033:0x7f887898efc9 [ 2420.646429][ T7810] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2420.646453][ T7810] RSP: 002b:00007f8879842038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 2420.646476][ T7810] RAX: ffffffffffffffda RBX: 00007f8878be5fa0 RCX: 00007f887898efc9 [ 2420.646492][ T7810] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000a [ 2420.646506][ T7810] RBP: 00007f8878a11f91 R08: 0000000000000000 R09: 0000000000000000 [ 2420.646520][ T7810] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2420.646534][ T7810] R13: 00007f8878be6038 R14: 00007f8878be5fa0 R15: 00007ffe0195d928 [ 2420.646572][ T7810] [ 2420.964628][ T7811] zswap: compressor not available [ 2421.035682][ T7821] block nbd14: the capability attribute has been deprecated. [ 2421.266207][ T7824] 0x000200000001-0xa29656a63616329 : "" [ 2421.291233][ T7824] mtd: partition "" is out of reach -- disabled [ 2421.457306][ T7824] ftl_cs: FTL header not found. [ 2422.216492][ T7831] mkiss: ax0: crc mode is auto. [ 2422.618654][ T7841] netlink: 186 bytes leftover after parsing attributes in process `syz.2.8360'. [ 2425.428581][ T7897] FAULT_INJECTION: forcing a failure. [ 2425.428581][ T7897] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2425.503894][ T7897] CPU: 0 UID: 0 PID: 7897 Comm: syz.0.8373 Tainted: G U syzkaller #0 PREEMPT(full) [ 2425.503933][ T7897] Tainted: [U]=USER [ 2425.503941][ T7897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 2425.503956][ T7897] Call Trace: [ 2425.503964][ T7897] [ 2425.503974][ T7897] dump_stack_lvl+0x16c/0x1f0 [ 2425.504008][ T7897] should_fail_ex+0x512/0x640 [ 2425.504035][ T7897] _copy_to_user+0x32/0xd0 [ 2425.504063][ T7897] simple_read_from_buffer+0xcb/0x170 [ 2425.504095][ T7897] proc_fail_nth_read+0x197/0x240 [ 2425.504131][ T7897] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 2425.504167][ T7897] ? rw_verify_area+0xcf/0x6c0 [ 2425.504197][ T7897] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 2425.504232][ T7897] vfs_read+0x1e4/0xcf0 [ 2425.504269][ T7897] ? __pfx___mutex_lock+0x10/0x10 [ 2425.504302][ T7897] ? __pfx_vfs_read+0x10/0x10 [ 2425.504343][ T7897] ? __fget_files+0x20e/0x3c0 [ 2425.504384][ T7897] ksys_read+0x12a/0x250 [ 2425.504417][ T7897] ? __pfx_ksys_read+0x10/0x10 [ 2425.504460][ T7897] do_syscall_64+0xcd/0xfa0 [ 2425.504497][ T7897] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2425.504522][ T7897] RIP: 0033:0x7f68f9b8d9dc [ 2425.504540][ T7897] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 2425.504563][ T7897] RSP: 002b:00007f68fa956030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 2425.504585][ T7897] RAX: ffffffffffffffda RBX: 00007f68f9de6090 RCX: 00007f68f9b8d9dc [ 2425.504601][ T7897] RDX: 000000000000000f RSI: 00007f68fa9560a0 RDI: 0000000000000008 [ 2425.504616][ T7897] RBP: 00007f68fa956090 R08: 0000000000000000 R09: 0000000000000000 [ 2425.504631][ T7897] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2425.504646][ T7897] R13: 00007f68f9de6128 R14: 00007f68f9de6090 R15: 00007ffee2b35f78 [ 2425.504677][ T7897] [ 2426.362507][ T7912] FAULT_INJECTION: forcing a failure. [ 2426.362507][ T7912] name failslab, interval 1, probability 393216, space 0, times 0 [ 2426.524902][ T7912] CPU: 0 UID: 0 PID: 7912 Comm: syz.2.8376 Tainted: G U syzkaller #0 PREEMPT(full) [ 2426.524940][ T7912] Tainted: [U]=USER [ 2426.524948][ T7912] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 2426.524962][ T7912] Call Trace: [ 2426.524970][ T7912] [ 2426.524979][ T7912] dump_stack_lvl+0x16c/0x1f0 [ 2426.525014][ T7912] should_fail_ex+0x512/0x640 [ 2426.525037][ T7912] ? __kvmalloc_node_noprof+0x12e/0x9c0 [ 2426.525086][ T7912] should_failslab+0xc2/0x120 [ 2426.525110][ T7912] __kvmalloc_node_noprof+0x141/0x9c0 [ 2426.525149][ T7912] ? io_alloc_cache_init+0x38/0x170 [ 2426.525181][ T7912] ? io_alloc_cache_init+0x38/0x170 [ 2426.525207][ T7912] io_alloc_cache_init+0x38/0x170 [ 2426.525234][ T7912] io_uring_setup+0x62f/0x20e0 [ 2426.525279][ T7912] ? __pfx_io_uring_setup+0x10/0x10 [ 2426.525314][ T7912] ? do_futex+0x122/0x350 [ 2426.525339][ T7912] ? __pfx_do_futex+0x10/0x10 [ 2426.525379][ T7912] ? xfd_validate_state+0x61/0x180 [ 2426.525408][ T7912] ? __pfx_do_writev+0x10/0x10 [ 2426.525445][ T7912] __x64_sys_io_uring_setup+0xc2/0x170 [ 2426.525503][ T7912] do_syscall_64+0xcd/0xfa0 [ 2426.525536][ T7912] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2426.525560][ T7912] RIP: 0033:0x7f887898efc9 [ 2426.525580][ T7912] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2426.525604][ T7912] RSP: 002b:00007f8879842038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 2426.525626][ T7912] RAX: ffffffffffffffda RBX: 00007f8878be5fa0 RCX: 00007f887898efc9 [ 2426.525642][ T7912] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000a [ 2426.525656][ T7912] RBP: 00007f8878a11f91 R08: 0000000000000000 R09: 0000000000000000 [ 2426.525671][ T7912] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2426.525685][ T7912] R13: 00007f8878be6038 R14: 00007f8878be5fa0 R15: 00007ffe0195d928 [ 2426.525716][ T7912] [ 2428.007046][ T7938] FAULT_INJECTION: forcing a failure. [ 2428.007046][ T7938] name failslab, interval 1, probability 393216, space 0, times 0 [ 2428.080071][ T7938] CPU: 0 UID: 0 PID: 7938 Comm: syz.3.8383 Tainted: G U syzkaller #0 PREEMPT(full) [ 2428.080110][ T7938] Tainted: [U]=USER [ 2428.080118][ T7938] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 2428.080132][ T7938] Call Trace: [ 2428.080140][ T7938] [ 2428.080150][ T7938] dump_stack_lvl+0x16c/0x1f0 [ 2428.080185][ T7938] should_fail_ex+0x512/0x640 [ 2428.080208][ T7938] ? __kmalloc_cache_noprof+0x5f/0x780 [ 2428.080243][ T7938] should_failslab+0xc2/0x120 [ 2428.080268][ T7938] __kmalloc_cache_noprof+0x72/0x780 [ 2428.080301][ T7938] ? sctp_datamsg_from_user+0x8d/0x1330 [ 2428.080327][ T7938] ? __lock_acquire+0x622/0x1c90 [ 2428.080356][ T7938] ? sctp_datamsg_from_user+0x8d/0x1330 [ 2428.080381][ T7938] sctp_datamsg_from_user+0x8d/0x1330 [ 2428.080415][ T7938] ? find_held_lock+0x2b/0x80 [ 2428.080448][ T7938] ? __genradix_ptr+0x148/0x1a0 [ 2428.080476][ T7938] sctp_sendmsg_to_asoc+0xae2/0x1bd0 [ 2428.080522][ T7938] ? __pfx_sctp_sendmsg_to_asoc+0x10/0x10 [ 2428.080556][ T7938] ? do_raw_spin_lock+0x12c/0x2b0 [ 2428.080587][ T7938] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 2428.080623][ T7938] ? sctp_sendmsg_check_sflags+0x176/0x320 [ 2428.080659][ T7938] sctp_sendmsg+0xe99/0x1e00 [ 2428.080705][ T7938] ? __pfx_sctp_sendmsg+0x10/0x10 [ 2428.080741][ T7938] ? __pfx___might_resched+0x10/0x10 [ 2428.080782][ T7938] ? aa_sk_perm+0x2f4/0xb10 [ 2428.080818][ T7938] ? __pfx_aa_sk_perm+0x10/0x10 [ 2428.080848][ T7938] ? import_ubuf+0x1b6/0x220 [ 2428.080878][ T7938] ? __pfx_sctp_sendmsg+0x10/0x10 [ 2428.080918][ T7938] inet_sendmsg+0x11c/0x140 [ 2428.080958][ T7938] ____sys_sendmsg+0x973/0xc70 [ 2428.080994][ T7938] ? copy_msghdr_from_user+0x10a/0x160 [ 2428.081021][ T7938] ? __pfx_____sys_sendmsg+0x10/0x10 [ 2428.081064][ T7938] ? lockdep_hardirqs_on+0x7c/0x110 [ 2428.081098][ T7938] ? kfree+0x2b8/0x6d0 [ 2428.081125][ T7938] ? ___sys_sendmsg+0x141/0x1d0 [ 2428.081157][ T7938] ___sys_sendmsg+0x134/0x1d0 [ 2428.081186][ T7938] ? __pfx____sys_sendmsg+0x10/0x10 [ 2428.081240][ T7938] ? __pfx___might_resched+0x10/0x10 [ 2428.081280][ T7938] __sys_sendmmsg+0x200/0x420 [ 2428.081311][ T7938] ? __pfx___sys_sendmmsg+0x10/0x10 [ 2428.081346][ T7938] ? __pfx_do_futex+0x10/0x10 [ 2428.081371][ T7938] ? fput+0x9b/0xd0 [ 2428.081409][ T7938] ? xfd_validate_state+0x61/0x180 [ 2428.081442][ T7938] __x64_sys_sendmmsg+0x9c/0x100 [ 2428.081468][ T7938] ? lockdep_hardirqs_on+0x7c/0x110 [ 2428.081497][ T7938] do_syscall_64+0xcd/0xfa0 [ 2428.081529][ T7938] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2428.081554][ T7938] RIP: 0033:0x7f246298efc9 [ 2428.081573][ T7938] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2428.081597][ T7938] RSP: 002b:00007f2460bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 2428.081621][ T7938] RAX: ffffffffffffffda RBX: 00007f2462be5fa0 RCX: 00007f246298efc9 [ 2428.081637][ T7938] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 2428.081652][ T7938] RBP: 00007f2462a11f91 R08: 0000000000000000 R09: 0000000000000000 [ 2428.081666][ T7938] R10: 000000000000e3a7 R11: 0000000000000246 R12: 0000000000000000 [ 2428.081681][ T7938] R13: 00007f2462be6038 R14: 00007f2462be5fa0 R15: 00007ffc7b94adc8 [ 2428.081712][ T7938] [ 2428.398081][ C0] vkms_vblank_simulate: vblank timer overrun [ 2430.924055][T25674] Bluetooth: hci1: unexpected event 0x35 length: 13 > 6 [ 2430.934118][ T7969] FAULT_INJECTION: forcing a failure. [ 2430.934118][ T7969] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2431.051064][ T7969] CPU: 0 UID: 0 PID: 7969 Comm: syz.2.8389 Tainted: G U syzkaller #0 PREEMPT(full) [ 2431.051108][ T7969] Tainted: [U]=USER [ 2431.051117][ T7969] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 2431.051131][ T7969] Call Trace: [ 2431.051140][ T7969] [ 2431.051149][ T7969] dump_stack_lvl+0x16c/0x1f0 [ 2431.051183][ T7969] should_fail_ex+0x512/0x640 [ 2431.051210][ T7969] should_fail_alloc_page+0xe7/0x130 [ 2431.051237][ T7969] prepare_alloc_pages+0x3c2/0x610 [ 2431.051266][ T7969] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 2431.051299][ T7969] ? __alloc_frozen_pages_noprof+0x292/0x2470 [ 2431.051333][ T7969] ? css_rstat_updated+0x1c2/0x510 [ 2431.051378][ T7969] ? find_held_lock+0x2b/0x80 [ 2431.051410][ T7969] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 2431.051443][ T7969] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 2431.051487][ T7969] ? __alloc_frozen_pages_noprof+0x292/0x2470 [ 2431.051524][ T7969] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 2431.051557][ T7969] ? policy_nodemask+0xea/0x4e0 [ 2431.051584][ T7969] alloc_pages_mpol+0x1fb/0x550 [ 2431.051609][ T7969] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 2431.051632][ T7969] ? do_raw_spin_lock+0x12c/0x2b0 [ 2431.051660][ T7969] ? find_held_lock+0x2b/0x80 [ 2431.051697][ T7969] alloc_pages_noprof+0x131/0x390 [ 2431.051722][ T7969] __pmd_alloc+0x3b/0x8b0 [ 2431.051744][ T7969] ? __pud_alloc+0x51f/0x6b0 [ 2431.051770][ T7969] walk_to_pmd+0x3a6/0x4c0 [ 2431.051805][ T7969] __get_locked_pte+0x25/0xc0 [ 2431.051832][ T7969] map_ldt_struct+0x3b0/0xa60 [ 2431.051873][ T7969] ? __pfx_map_ldt_struct+0x10/0x10 [ 2431.051905][ T7969] ? alloc_pages_noprof+0x23c/0x390 [ 2431.051935][ T7969] write_ldt+0x8fa/0xd20 [ 2431.051972][ T7969] ? __pfx_write_ldt+0x10/0x10 [ 2431.052002][ T7969] ? fput+0x9b/0xd0 [ 2431.052028][ T7969] ? __pfx_ksys_write+0x10/0x10 [ 2431.052069][ T7969] __x64_sys_modify_ldt+0xb1/0x170 [ 2431.052102][ T7969] do_syscall_64+0xcd/0xfa0 [ 2431.052134][ T7969] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2431.052157][ T7969] RIP: 0033:0x7f887898efc9 [ 2431.052176][ T7969] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2431.052200][ T7969] RSP: 002b:00007f8879842038 EFLAGS: 00000246 ORIG_RAX: 000000000000009a [ 2431.052222][ T7969] RAX: ffffffffffffffda RBX: 00007f8878be5fa0 RCX: 00007f887898efc9 [ 2431.052238][ T7969] RDX: 0000000000000010 RSI: 00002000000001c0 RDI: 0000000000000001 [ 2431.052253][ T7969] RBP: 00007f8878a11f91 R08: 0000000000000000 R09: 0000000000000000 [ 2431.052268][ T7969] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2431.052282][ T7969] R13: 00007f8878be6038 R14: 00007f8878be5fa0 R15: 00007ffe0195d928 [ 2431.052313][ T7969] [ 2431.320258][ C0] vkms_vblank_simulate: vblank timer overrun [ 2431.357241][ T7972] FAULT_INJECTION: forcing a failure. [ 2431.357241][ T7972] name failslab, interval 1, probability 393216, space 0, times 0 [ 2431.370461][ T7972] CPU: 0 UID: 0 PID: 7972 Comm: syz.0.8391 Tainted: G U syzkaller #0 PREEMPT(full) [ 2431.370497][ T7972] Tainted: [U]=USER [ 2431.370505][ T7972] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 2431.370519][ T7972] Call Trace: [ 2431.370527][ T7972] [ 2431.370537][ T7972] dump_stack_lvl+0x16c/0x1f0 [ 2431.370570][ T7972] should_fail_ex+0x512/0x640 [ 2431.370593][ T7972] ? __pfx_ref_tracker_alloc+0x10/0x10 [ 2431.370620][ T7972] should_failslab+0xc2/0x120 [ 2431.370644][ T7972] kmem_cache_alloc_noprof+0x75/0x6e0 [ 2431.370676][ T7972] ? skb_clone+0x190/0x3f0 [ 2431.370706][ T7972] ? skb_clone+0x190/0x3f0 [ 2431.370728][ T7972] skb_clone+0x190/0x3f0 [ 2431.370754][ T7972] netlink_deliver_tap+0xabd/0xd30 [ 2431.370786][ T7972] netlink_unicast+0x64c/0x870 [ 2431.370817][ T7972] ? __pfx_netlink_unicast+0x10/0x10 [ 2431.370842][ T7972] ? __asan_memset+0x23/0x50 [ 2431.370880][ T7972] ? __build_skb_around+0x278/0x3b0 [ 2431.370916][ T7972] ? is_vmalloc_addr+0x86/0xa0 [ 2431.370951][ T7972] netlink_sendmsg+0x8c8/0xdd0 [ 2431.370982][ T7972] ? __pfx_netlink_sendmsg+0x10/0x10 [ 2431.371013][ T7972] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 2431.371044][ T7972] ____sys_sendmsg+0xa98/0xc70 [ 2431.371079][ T7972] ? __pfx_____sys_sendmsg+0x10/0x10 [ 2431.371120][ T7972] ? __pfx__kstrtoull+0x10/0x10 [ 2431.371157][ T7972] ___sys_sendmsg+0x134/0x1d0 [ 2431.371184][ T7972] ? __pfx____sys_sendmsg+0x10/0x10 [ 2431.371222][ T7972] ? find_held_lock+0x2b/0x80 [ 2431.371283][ T7972] __sys_sendmmsg+0x200/0x420 [ 2431.371312][ T7972] ? __pfx___sys_sendmmsg+0x10/0x10 [ 2431.371347][ T7972] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 2431.371390][ T7972] ? fput+0x9b/0xd0 [ 2431.371432][ T7972] ? ksys_write+0x1ac/0x250 [ 2431.371466][ T7972] ? __pfx_ksys_write+0x10/0x10 [ 2431.371506][ T7972] __x64_sys_sendmmsg+0x9c/0x100 [ 2431.371532][ T7972] ? lockdep_hardirqs_on+0x7c/0x110 [ 2431.371562][ T7972] do_syscall_64+0xcd/0xfa0 [ 2431.371594][ T7972] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2431.371619][ T7972] RIP: 0033:0x7f68f9b8efc9 [ 2431.371637][ T7972] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2431.371661][ T7972] RSP: 002b:00007f68fa977038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 2431.371684][ T7972] RAX: ffffffffffffffda RBX: 00007f68f9de5fa0 RCX: 00007f68f9b8efc9 [ 2431.371700][ T7972] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000003 [ 2431.371715][ T7972] RBP: 00007f68fa977090 R08: 0000000000000000 R09: 0000000000000000 [ 2431.371730][ T7972] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000001 [ 2431.371745][ T7972] R13: 00007f68f9de6038 R14: 00007f68f9de5fa0 R15: 00007ffee2b35f78 [ 2431.371777][ T7972] [ 2431.640728][ C0] vkms_vblank_simulate: vblank timer overrun [ 2431.892913][ T7979] bond0: invalid ARP target specified [ 2432.267442][ T7986] FAULT_INJECTION: forcing a failure. [ 2432.267442][ T7986] name failslab, interval 1, probability 393216, space 0, times 0 [ 2432.359331][ T7986] CPU: 0 UID: 0 PID: 7986 Comm: syz.0.8395 Tainted: G U syzkaller #0 PREEMPT(full) [ 2432.359370][ T7986] Tainted: [U]=USER [ 2432.359379][ T7986] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 2432.359394][ T7986] Call Trace: [ 2432.359402][ T7986] [ 2432.359411][ T7986] dump_stack_lvl+0x16c/0x1f0 [ 2432.359446][ T7986] should_fail_ex+0x512/0x640 [ 2432.359468][ T7986] ? kmem_cache_alloc_node_noprof+0x65/0x770 [ 2432.359507][ T7986] should_failslab+0xc2/0x120 [ 2432.359532][ T7986] kmem_cache_alloc_node_noprof+0x78/0x770 [ 2432.359565][ T7986] ? ___sys_sendmsg+0x134/0x1d0 [ 2432.359591][ T7986] ? __alloc_skb+0x2b2/0x380 [ 2432.359611][ T7986] ? __x64_sys_sendmmsg+0x9c/0x100 [ 2432.359644][ T7986] ? __alloc_skb+0x2b2/0x380 [ 2432.359664][ T7986] __alloc_skb+0x2b2/0x380 [ 2432.359688][ T7986] ? __pfx___alloc_skb+0x10/0x10 [ 2432.359722][ T7986] _sctp_make_chunk+0x51/0x270 [ 2432.359752][ T7986] sctp_make_datafrag_empty+0x16f/0x240 [ 2432.359783][ T7986] ? __pfx_sctp_make_datafrag_empty+0x10/0x10 [ 2432.359826][ T7986] sctp_datamsg_from_user+0x595/0x1330 [ 2432.359867][ T7986] sctp_sendmsg_to_asoc+0xae2/0x1bd0 [ 2432.359913][ T7986] ? __pfx_sctp_sendmsg_to_asoc+0x10/0x10 [ 2432.359947][ T7986] ? do_raw_spin_lock+0x12c/0x2b0 [ 2432.359985][ T7986] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 2432.360023][ T7986] ? sctp_sendmsg_check_sflags+0x176/0x320 [ 2432.360058][ T7986] sctp_sendmsg+0xe99/0x1e00 [ 2432.360105][ T7986] ? __pfx_sctp_sendmsg+0x10/0x10 [ 2432.360141][ T7986] ? __pfx___might_resched+0x10/0x10 [ 2432.360181][ T7986] ? aa_sk_perm+0x2f4/0xb10 [ 2432.360217][ T7986] ? __pfx_aa_sk_perm+0x10/0x10 [ 2432.360247][ T7986] ? import_ubuf+0x1b6/0x220 [ 2432.360277][ T7986] ? __pfx_sctp_sendmsg+0x10/0x10 [ 2432.360317][ T7986] inet_sendmsg+0x11c/0x140 [ 2432.360357][ T7986] ____sys_sendmsg+0x973/0xc70 [ 2432.360392][ T7986] ? copy_msghdr_from_user+0x10a/0x160 [ 2432.360418][ T7986] ? __pfx_____sys_sendmsg+0x10/0x10 [ 2432.360450][ T7986] ? lockdep_hardirqs_on+0x7c/0x110 [ 2432.360484][ T7986] ? kfree+0x2b8/0x6d0 [ 2432.360511][ T7986] ? ___sys_sendmsg+0x141/0x1d0 [ 2432.360543][ T7986] ___sys_sendmsg+0x134/0x1d0 [ 2432.360571][ T7986] ? __pfx____sys_sendmsg+0x10/0x10 [ 2432.360625][ T7986] ? __pfx___might_resched+0x10/0x10 [ 2432.360665][ T7986] __sys_sendmmsg+0x200/0x420 [ 2432.360695][ T7986] ? __pfx___sys_sendmmsg+0x10/0x10 [ 2432.360730][ T7986] ? __pfx_do_futex+0x10/0x10 [ 2432.360755][ T7986] ? fput+0x9b/0xd0 [ 2432.360793][ T7986] ? xfd_validate_state+0x61/0x180 [ 2432.360826][ T7986] __x64_sys_sendmmsg+0x9c/0x100 [ 2432.360853][ T7986] ? lockdep_hardirqs_on+0x7c/0x110 [ 2432.360882][ T7986] do_syscall_64+0xcd/0xfa0 [ 2432.360914][ T7986] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2432.360939][ T7986] RIP: 0033:0x7f68f9b8efc9 [ 2432.360959][ T7986] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2432.360991][ T7986] RSP: 002b:00007f68fa977038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 2432.361014][ T7986] RAX: ffffffffffffffda RBX: 00007f68f9de5fa0 RCX: 00007f68f9b8efc9 [ 2432.361031][ T7986] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 2432.361046][ T7986] RBP: 00007f68f9c11f91 R08: 0000000000000000 R09: 0000000000000000 [ 2432.361060][ T7986] R10: 000000000000e3a7 R11: 0000000000000246 R12: 0000000000000000 [ 2432.361075][ T7986] R13: 00007f68f9de6038 R14: 00007f68f9de5fa0 R15: 00007ffee2b35f78 [ 2432.361107][ T7986] [ 2432.698404][ C0] vkms_vblank_simulate: vblank timer overrun [ 2432.821458][ T7993] FAULT_INJECTION: forcing a failure. [ 2432.821458][ T7993] name failslab, interval 1, probability 393216, space 0, times 0 [ 2432.834614][ T7993] CPU: 0 UID: 0 PID: 7993 Comm: syz.1.8398 Tainted: G U syzkaller #0 PREEMPT(full) [ 2432.834650][ T7993] Tainted: [U]=USER [ 2432.834658][ T7993] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 2432.834673][ T7993] Call Trace: [ 2432.834682][ T7993] [ 2432.834692][ T7993] dump_stack_lvl+0x16c/0x1f0 [ 2432.834727][ T7993] should_fail_ex+0x512/0x640 [ 2432.834750][ T7993] ? __kvmalloc_node_noprof+0x12e/0x9c0 [ 2432.834791][ T7993] should_failslab+0xc2/0x120 [ 2432.834816][ T7993] __kvmalloc_node_noprof+0x141/0x9c0 [ 2432.834852][ T7993] ? bpf_lsm_capable+0x9/0x10 [ 2432.834876][ T7993] ? security_capable+0x7e/0x260 [ 2432.834900][ T7993] ? proc_sys_call_handler+0x286/0x570 [ 2432.834926][ T7993] ? ns_capable_noaudit+0xda/0x110 [ 2432.834970][ T7993] ? proc_sys_call_handler+0x286/0x570 [ 2432.834996][ T7993] proc_sys_call_handler+0x286/0x570 [ 2432.835024][ T7993] ? __pfx_proc_sys_call_handler+0x10/0x10 [ 2432.835051][ T7993] ? copy_splice_read+0x1a8/0xc20 [ 2432.835088][ T7993] copy_splice_read+0x618/0xc20 [ 2432.835125][ T7993] ? __pfx_copy_splice_read+0x10/0x10 [ 2432.835160][ T7993] ? look_up_lock_class+0x59/0x150 [ 2432.835194][ T7993] ? lockdep_init_map_type+0x5c/0x280 [ 2432.835222][ T7993] ? __pfx_pipe_lock_cmp_fn+0x10/0x10 [ 2432.835259][ T7993] ? __pfx_copy_splice_read+0x10/0x10 [ 2432.835290][ T7993] do_splice_read+0x285/0x370 [ 2432.835324][ T7993] splice_direct_to_actor+0x2a1/0xa30 [ 2432.835358][ T7993] ? __pfx_direct_splice_actor+0x10/0x10 [ 2432.835396][ T7993] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 2432.835429][ T7993] ? get_pid_task+0xfc/0x250 [ 2432.835462][ T7993] do_splice_direct+0x174/0x240 [ 2432.835495][ T7993] ? __pfx_do_splice_direct+0x10/0x10 [ 2432.835528][ T7993] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 2432.835564][ T7993] ? rw_verify_area+0xcf/0x6c0 [ 2432.835597][ T7993] do_sendfile+0xb06/0xe50 [ 2432.835635][ T7993] ? __pfx_do_sendfile+0x10/0x10 [ 2432.835669][ T7993] ? __fget_files+0x20e/0x3c0 [ 2432.835709][ T7993] __x64_sys_sendfile64+0x1d8/0x220 [ 2432.835732][ T7993] ? ksys_write+0x1ac/0x250 [ 2432.835766][ T7993] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 2432.835798][ T7993] do_syscall_64+0xcd/0xfa0 [ 2432.835830][ T7993] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2432.835855][ T7993] RIP: 0033:0x7f123af8efc9 [ 2432.835874][ T7993] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2432.835898][ T7993] RSP: 002b:00007f123bd43038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 2432.835921][ T7993] RAX: ffffffffffffffda RBX: 00007f123b1e5fa0 RCX: 00007f123af8efc9 [ 2432.835938][ T7993] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003 [ 2432.835957][ T7993] RBP: 00007f123bd43090 R08: 0000000000000000 R09: 0000000000000000 [ 2432.835972][ T7993] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001 [ 2432.835986][ T7993] R13: 00007f123b1e6038 R14: 00007f123b1e5fa0 R15: 00007ffc4835b5a8 [ 2432.836018][ T7993] [ 2433.132828][ C0] vkms_vblank_simulate: vblank timer overrun [ 2433.824133][ T8003] Console: switching to colour frame buffer device 4x6 [ 2434.080585][ T8009] netlink: 334 bytes leftover after parsing attributes in process `syz.3.8403'. [ 2434.675082][ T8019] netlink: 12 bytes leftover after parsing attributes in process `syz.2.8405'. [ 2435.710722][ T8042] netlink: 334 bytes leftover after parsing attributes in process `syz.0.8412'. [ 2436.412696][ T8036] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 2436.588113][ T8053] FAULT_INJECTION: forcing a failure. [ 2436.588113][ T8053] name failslab, interval 1, probability 393216, space 0, times 0 [ 2436.703127][ T8053] CPU: 0 UID: 0 PID: 8053 Comm: syz.0.8415 Tainted: G U syzkaller #0 PREEMPT(full) [ 2436.703166][ T8053] Tainted: [U]=USER [ 2436.703174][ T8053] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 2436.703189][ T8053] Call Trace: [ 2436.703197][ T8053] [ 2436.703207][ T8053] dump_stack_lvl+0x16c/0x1f0 [ 2436.703242][ T8053] should_fail_ex+0x512/0x640 [ 2436.703265][ T8053] ? __kmalloc_cache_noprof+0x5f/0x780 [ 2436.703300][ T8053] should_failslab+0xc2/0x120 [ 2436.703325][ T8053] __kmalloc_cache_noprof+0x72/0x780 [ 2436.703358][ T8053] ? sctp_datamsg_from_user+0x8d/0x1330 [ 2436.703384][ T8053] ? __lock_acquire+0x622/0x1c90 [ 2436.703419][ T8053] ? sctp_datamsg_from_user+0x8d/0x1330 [ 2436.703445][ T8053] sctp_datamsg_from_user+0x8d/0x1330 [ 2436.703479][ T8053] ? find_held_lock+0x2b/0x80 [ 2436.703511][ T8053] ? __genradix_ptr+0x148/0x1a0 [ 2436.703540][ T8053] sctp_sendmsg_to_asoc+0xae2/0x1bd0 [ 2436.703587][ T8053] ? __pfx_sctp_sendmsg_to_asoc+0x10/0x10 [ 2436.703621][ T8053] ? do_raw_spin_lock+0x12c/0x2b0 [ 2436.703652][ T8053] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 2436.703689][ T8053] ? sctp_sendmsg_check_sflags+0x176/0x320 [ 2436.703725][ T8053] sctp_sendmsg+0xe99/0x1e00 [ 2436.703771][ T8053] ? __pfx_sctp_sendmsg+0x10/0x10 [ 2436.703807][ T8053] ? __pfx___might_resched+0x10/0x10 [ 2436.703848][ T8053] ? aa_sk_perm+0x2f4/0xb10 [ 2436.703884][ T8053] ? __pfx_aa_sk_perm+0x10/0x10 [ 2436.703914][ T8053] ? import_ubuf+0x1b6/0x220 [ 2436.703944][ T8053] ? __pfx_sctp_sendmsg+0x10/0x10 [ 2436.703984][ T8053] inet_sendmsg+0x11c/0x140 [ 2436.704024][ T8053] ____sys_sendmsg+0x973/0xc70 [ 2436.704060][ T8053] ? copy_msghdr_from_user+0x10a/0x160 [ 2436.704087][ T8053] ? __pfx_____sys_sendmsg+0x10/0x10 [ 2436.704118][ T8053] ? lockdep_hardirqs_on+0x7c/0x110 [ 2436.704158][ T8053] ? kfree+0x2b8/0x6d0 [ 2436.704185][ T8053] ? ___sys_sendmsg+0x141/0x1d0 [ 2436.704216][ T8053] ___sys_sendmsg+0x134/0x1d0 [ 2436.704245][ T8053] ? __pfx____sys_sendmsg+0x10/0x10 [ 2436.704299][ T8053] ? __pfx___might_resched+0x10/0x10 [ 2436.704339][ T8053] __sys_sendmmsg+0x200/0x420 [ 2436.704370][ T8053] ? __pfx___sys_sendmmsg+0x10/0x10 [ 2436.704411][ T8053] ? __pfx_do_futex+0x10/0x10 [ 2436.704436][ T8053] ? fput+0x9b/0xd0 [ 2436.704474][ T8053] ? xfd_validate_state+0x61/0x180 [ 2436.704508][ T8053] __x64_sys_sendmmsg+0x9c/0x100 [ 2436.704534][ T8053] ? lockdep_hardirqs_on+0x7c/0x110 [ 2436.704564][ T8053] do_syscall_64+0xcd/0xfa0 [ 2436.704596][ T8053] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2436.704620][ T8053] RIP: 0033:0x7f68f9b8efc9 [ 2436.704640][ T8053] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2436.704664][ T8053] RSP: 002b:00007f68f7df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 2436.704687][ T8053] RAX: ffffffffffffffda RBX: 00007f68f9de6180 RCX: 00007f68f9b8efc9 [ 2436.704703][ T8053] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 2436.704718][ T8053] RBP: 00007f68f9c11f91 R08: 0000000000000000 R09: 0000000000000000 [ 2436.704733][ T8053] R10: 000000000000e3a7 R11: 0000000000000246 R12: 0000000000000000 [ 2436.704747][ T8053] R13: 00007f68f9de6218 R14: 00007f68f9de6180 R15: 00007ffee2b35f78 [ 2436.704779][ T8053] [ 2437.027512][ C0] vkms_vblank_simulate: vblank timer overrun [ 2437.997282][ T8072] Invalid ELF header magic: != ELF [ 2438.529003][ T8081] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input79 [ 2440.071878][ T8106] netlink: 318 bytes leftover after parsing attributes in process `syz.0.8428'. [ 2440.176986][ T8084] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input80 [ 2440.471472][ T8115] FAULT_INJECTION: forcing a failure. [ 2440.471472][ T8115] name failslab, interval 1, probability 393216, space 0, times 0 [ 2440.615464][ T8115] CPU: 0 UID: 0 PID: 8115 Comm: syz.1.8427 Tainted: G U syzkaller #0 PREEMPT(full) [ 2440.615503][ T8115] Tainted: [U]=USER [ 2440.615512][ T8115] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 2440.615527][ T8115] Call Trace: [ 2440.615535][ T8115] [ 2440.615545][ T8115] dump_stack_lvl+0x16c/0x1f0 [ 2440.615578][ T8115] should_fail_ex+0x512/0x640 [ 2440.615602][ T8115] ? __kmalloc_cache_noprof+0x5f/0x780 [ 2440.615638][ T8115] should_failslab+0xc2/0x120 [ 2440.615663][ T8115] __kmalloc_cache_noprof+0x72/0x780 [ 2440.615695][ T8115] ? sctp_datamsg_from_user+0x8d/0x1330 [ 2440.615722][ T8115] ? __lock_acquire+0x622/0x1c90 [ 2440.615750][ T8115] ? sctp_datamsg_from_user+0x8d/0x1330 [ 2440.615775][ T8115] sctp_datamsg_from_user+0x8d/0x1330 [ 2440.615809][ T8115] ? find_held_lock+0x2b/0x80 [ 2440.615841][ T8115] ? __genradix_ptr+0x148/0x1a0 [ 2440.615878][ T8115] sctp_sendmsg_to_asoc+0xae2/0x1bd0 [ 2440.615925][ T8115] ? __pfx_sctp_sendmsg_to_asoc+0x10/0x10 [ 2440.615960][ T8115] ? do_raw_spin_lock+0x12c/0x2b0 [ 2440.615992][ T8115] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 2440.616028][ T8115] ? sctp_sendmsg_check_sflags+0x176/0x320 [ 2440.616064][ T8115] sctp_sendmsg+0xe99/0x1e00 [ 2440.616165][ T8115] ? __pfx_sctp_sendmsg+0x10/0x10 [ 2440.616202][ T8115] ? __pfx___might_resched+0x10/0x10 [ 2440.616244][ T8115] ? aa_sk_perm+0x2f4/0xb10 [ 2440.616280][ T8115] ? __pfx_aa_sk_perm+0x10/0x10 [ 2440.616310][ T8115] ? import_ubuf+0x1b6/0x220 [ 2440.616340][ T8115] ? __pfx_sctp_sendmsg+0x10/0x10 [ 2440.616380][ T8115] inet_sendmsg+0x11c/0x140 [ 2440.616421][ T8115] ____sys_sendmsg+0x973/0xc70 [ 2440.616461][ T8115] ? copy_msghdr_from_user+0x10a/0x160 [ 2440.616489][ T8115] ? __pfx_____sys_sendmsg+0x10/0x10 [ 2440.616521][ T8115] ? lockdep_hardirqs_on+0x7c/0x110 [ 2440.616555][ T8115] ? kfree+0x2b8/0x6d0 [ 2440.616582][ T8115] ? ___sys_sendmsg+0x141/0x1d0 [ 2440.616614][ T8115] ___sys_sendmsg+0x134/0x1d0 [ 2440.616642][ T8115] ? __pfx____sys_sendmsg+0x10/0x10 [ 2440.616696][ T8115] ? __pfx___might_resched+0x10/0x10 [ 2440.616736][ T8115] __sys_sendmmsg+0x200/0x420 [ 2440.616767][ T8115] ? __pfx___sys_sendmmsg+0x10/0x10 [ 2440.616802][ T8115] ? __pfx_do_futex+0x10/0x10 [ 2440.616844][ T8115] ? xfd_validate_state+0x61/0x180 [ 2440.616878][ T8115] __x64_sys_sendmmsg+0x9c/0x100 [ 2440.616904][ T8115] ? lockdep_hardirqs_on+0x7c/0x110 [ 2440.616934][ T8115] do_syscall_64+0xcd/0xfa0 [ 2440.616966][ T8115] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2440.616991][ T8115] RIP: 0033:0x7f123af8efc9 [ 2440.617010][ T8115] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2440.617035][ T8115] RSP: 002b:00007f1238db2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 2440.617058][ T8115] RAX: ffffffffffffffda RBX: 00007f123b1e6270 RCX: 00007f123af8efc9 [ 2440.617074][ T8115] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 2440.617089][ T8115] RBP: 00007f123b011f91 R08: 0000000000000000 R09: 0000000000000000 [ 2440.617109][ T8115] R10: 000000000000e3a7 R11: 0000000000000246 R12: 0000000000000000 [ 2440.617124][ T8115] R13: 00007f123b1e6308 R14: 00007f123b1e6270 R15: 00007ffc4835b5a8 [ 2440.617155][ T8115] [ 2440.938076][ T8100] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 2444.048977][ T8168] FAULT_INJECTION: forcing a failure. [ 2444.048977][ T8168] name failslab, interval 1, probability 393216, space 0, times 0 [ 2444.131315][ T8168] CPU: 0 UID: 0 PID: 8168 Comm: syz.3.8434 Tainted: G U syzkaller #0 PREEMPT(full) [ 2444.131352][ T8168] Tainted: [U]=USER [ 2444.131360][ T8168] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 2444.131374][ T8168] Call Trace: [ 2444.131382][ T8168] [ 2444.131392][ T8168] dump_stack_lvl+0x16c/0x1f0 [ 2444.131426][ T8168] should_fail_ex+0x512/0x640 [ 2444.131448][ T8168] ? kmem_cache_alloc_node_noprof+0x65/0x770 [ 2444.131484][ T8168] should_failslab+0xc2/0x120 [ 2444.131507][ T8168] kmem_cache_alloc_node_noprof+0x78/0x770 [ 2444.131540][ T8168] ? __alloc_skb+0x2b2/0x380 [ 2444.131567][ T8168] ? __alloc_skb+0x2b2/0x380 [ 2444.131587][ T8168] ? __pfx_netlink_insert+0x10/0x10 [ 2444.131611][ T8168] __alloc_skb+0x2b2/0x380 [ 2444.131636][ T8168] ? __pfx___alloc_skb+0x10/0x10 [ 2444.131659][ T8168] ? netlink_autobind.isra.0+0x158/0x370 [ 2444.131693][ T8168] netlink_alloc_large_skb+0x69/0x140 [ 2444.131721][ T8168] netlink_sendmsg+0x698/0xdd0 [ 2444.131753][ T8168] ? __pfx_netlink_sendmsg+0x10/0x10 [ 2444.131784][ T8168] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 2444.131814][ T8168] ____sys_sendmsg+0xa98/0xc70 [ 2444.131847][ T8168] ? copy_msghdr_from_user+0x10a/0x160 [ 2444.131872][ T8168] ? __pfx_____sys_sendmsg+0x10/0x10 [ 2444.131922][ T8168] ___sys_sendmsg+0x134/0x1d0 [ 2444.131949][ T8168] ? __pfx____sys_sendmsg+0x10/0x10 [ 2444.131972][ T8168] ? __lock_acquire+0x622/0x1c90 [ 2444.132030][ T8168] __sys_sendmsg+0x16d/0x220 [ 2444.132055][ T8168] ? __pfx___sys_sendmsg+0x10/0x10 [ 2444.132098][ T8168] do_syscall_64+0xcd/0xfa0 [ 2444.132129][ T8168] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2444.132153][ T8168] RIP: 0033:0x7f246298efc9 [ 2444.132171][ T8168] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2444.132194][ T8168] RSP: 002b:00007f2460bf6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2444.132216][ T8168] RAX: ffffffffffffffda RBX: 00007f2462be5fa0 RCX: 00007f246298efc9 [ 2444.132231][ T8168] RDX: 0000000000000808 RSI: 0000200000000040 RDI: 0000000000000006 [ 2444.132246][ T8168] RBP: 00007f2460bf6090 R08: 0000000000000000 R09: 0000000000000000 [ 2444.132259][ T8168] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2444.132273][ T8168] R13: 00007f2462be6038 R14: 00007f2462be5fa0 R15: 00007ffc7b94adc8 [ 2444.132302][ T8168] [ 2445.066167][ T8178] block2mtd: error: cannot open device çinX‘©¼Ëò¨±ÂÚjFBçB>U»;߸³Ilk¬ [ 2445.534970][ T8186] netlink: 318 bytes leftover after parsing attributes in process `syz.0.8441'. [ 2446.005143][ T8190] FAULT_INJECTION: forcing a failure. [ 2446.005143][ T8190] name failslab, interval 1, probability 393216, space 0, times 0 [ 2446.095433][T25674] Bluetooth: hci1: unexpected event 0x36 length: 123 > 7 [ 2446.138865][ T8190] CPU: 0 UID: 0 PID: 8190 Comm: syz.3.8443 Tainted: G U syzkaller #0 PREEMPT(full) [ 2446.138904][ T8190] Tainted: [U]=USER [ 2446.138912][ T8190] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 2446.138926][ T8190] Call Trace: [ 2446.138934][ T8190] [ 2446.138945][ T8190] dump_stack_lvl+0x16c/0x1f0 [ 2446.138980][ T8190] should_fail_ex+0x512/0x640 [ 2446.139004][ T8190] ? __kmalloc_cache_noprof+0x5f/0x780 [ 2446.139039][ T8190] should_failslab+0xc2/0x120 [ 2446.139064][ T8190] __kmalloc_cache_noprof+0x72/0x780 [ 2446.139096][ T8190] ? sctp_datamsg_from_user+0x8d/0x1330 [ 2446.139124][ T8190] ? __lock_acquire+0x622/0x1c90 [ 2446.139152][ T8190] ? sctp_datamsg_from_user+0x8d/0x1330 [ 2446.139178][ T8190] sctp_datamsg_from_user+0x8d/0x1330 [ 2446.139213][ T8190] ? find_held_lock+0x2b/0x80 [ 2446.139245][ T8190] ? __genradix_ptr+0x148/0x1a0 [ 2446.139273][ T8190] sctp_sendmsg_to_asoc+0xae2/0x1bd0 [ 2446.139320][ T8190] ? __pfx_sctp_sendmsg_to_asoc+0x10/0x10 [ 2446.139354][ T8190] ? do_raw_spin_lock+0x12c/0x2b0 [ 2446.139385][ T8190] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 2446.139421][ T8190] ? sctp_sendmsg_check_sflags+0x176/0x320 [ 2446.139457][ T8190] sctp_sendmsg+0xe99/0x1e00 [ 2446.139503][ T8190] ? __pfx_sctp_sendmsg+0x10/0x10 [ 2446.139539][ T8190] ? __pfx___might_resched+0x10/0x10 [ 2446.139580][ T8190] ? aa_sk_perm+0x2f4/0xb10 [ 2446.139616][ T8190] ? __pfx_aa_sk_perm+0x10/0x10 [ 2446.139646][ T8190] ? import_ubuf+0x1b6/0x220 [ 2446.139676][ T8190] ? __pfx_sctp_sendmsg+0x10/0x10 [ 2446.139716][ T8190] inet_sendmsg+0x11c/0x140 [ 2446.139763][ T8190] ____sys_sendmsg+0x973/0xc70 [ 2446.139800][ T8190] ? copy_msghdr_from_user+0x10a/0x160 [ 2446.139827][ T8190] ? __pfx_____sys_sendmsg+0x10/0x10 [ 2446.139859][ T8190] ? lockdep_hardirqs_on+0x7c/0x110 [ 2446.139897][ T8190] ? kfree+0x2b8/0x6d0 [ 2446.139924][ T8190] ? ___sys_sendmsg+0x141/0x1d0 [ 2446.139956][ T8190] ___sys_sendmsg+0x134/0x1d0 [ 2446.139984][ T8190] ? __pfx____sys_sendmsg+0x10/0x10 [ 2446.140038][ T8190] ? __pfx___might_resched+0x10/0x10 [ 2446.140078][ T8190] __sys_sendmmsg+0x200/0x420 [ 2446.140109][ T8190] ? __pfx___sys_sendmmsg+0x10/0x10 [ 2446.140144][ T8190] ? __pfx_do_futex+0x10/0x10 [ 2446.140186][ T8190] ? xfd_validate_state+0x61/0x180 [ 2446.140220][ T8190] __x64_sys_sendmmsg+0x9c/0x100 [ 2446.140247][ T8190] ? lockdep_hardirqs_on+0x7c/0x110 [ 2446.140276][ T8190] do_syscall_64+0xcd/0xfa0 [ 2446.140308][ T8190] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2446.140334][ T8190] RIP: 0033:0x7f246298efc9 [ 2446.140353][ T8190] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2446.140378][ T8190] RSP: 002b:00007f2460bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 2446.140400][ T8190] RAX: ffffffffffffffda RBX: 00007f2462be5fa0 RCX: 00007f246298efc9 [ 2446.140416][ T8190] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 2446.140431][ T8190] RBP: 00007f2462a11f91 R08: 0000000000000000 R09: 0000000000000000 [ 2446.140445][ T8190] R10: 000000000000e3a7 R11: 0000000000000246 R12: 0000000000000000 [ 2446.140460][ T8190] R13: 00007f2462be6038 R14: 00007f2462be5fa0 R15: 00007ffc7b94adc8 [ 2446.140491][ T8190] [ 2446.999207][ T8204] FAULT_INJECTION: forcing a failure. [ 2446.999207][ T8204] name failslab, interval 1, probability 393216, space 0, times 0 [ 2447.029492][ T8204] CPU: 0 UID: 0 PID: 8204 Comm: syz.1.8447 Tainted: G U syzkaller #0 PREEMPT(full) [ 2447.029530][ T8204] Tainted: [U]=USER [ 2447.029539][ T8204] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 2447.029552][ T8204] Call Trace: [ 2447.029560][ T8204] [ 2447.029569][ T8204] dump_stack_lvl+0x16c/0x1f0 [ 2447.029602][ T8204] should_fail_ex+0x512/0x640 [ 2447.029624][ T8204] ? __kvmalloc_node_noprof+0x12e/0x9c0 [ 2447.029673][ T8204] should_failslab+0xc2/0x120 [ 2447.029697][ T8204] __kvmalloc_node_noprof+0x141/0x9c0 [ 2447.029735][ T8204] ? traverse.part.0.constprop.0+0x397/0x650 [ 2447.029772][ T8204] ? traverse.part.0.constprop.0+0x397/0x650 [ 2447.029801][ T8204] traverse.part.0.constprop.0+0x397/0x650 [ 2447.029839][ T8204] seq_read_iter+0x93c/0x12d0 [ 2447.029879][ T8204] proc_reg_read_iter+0x220/0x310 [ 2447.029906][ T8204] vfs_read+0x8bf/0xcf0 [ 2447.029944][ T8204] ? __pfx_vfs_read+0x10/0x10 [ 2447.029975][ T8204] ? find_held_lock+0x2b/0x80 [ 2447.030025][ T8204] __x64_sys_pread64+0x1eb/0x250 [ 2447.030060][ T8204] ? __pfx___x64_sys_pread64+0x10/0x10 [ 2447.030104][ T8204] do_syscall_64+0xcd/0xfa0 [ 2447.030135][ T8204] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2447.030159][ T8204] RIP: 0033:0x7f123af8efc9 [ 2447.030178][ T8204] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2447.030200][ T8204] RSP: 002b:00007f123bd43038 EFLAGS: 00000246 ORIG_RAX: 0000000000000011 [ 2447.030222][ T8204] RAX: ffffffffffffffda RBX: 00007f123b1e5fa0 RCX: 00007f123af8efc9 [ 2447.030237][ T8204] RDX: 0000000100000001 RSI: 0000200000000200 RDI: 0000000000000003 [ 2447.030252][ T8204] RBP: 00007f123bd43090 R08: 0000000000000000 R09: 0000000000000000 [ 2447.030266][ T8204] R10: 00000000000000fd R11: 0000000000000246 R12: 0000000000000001 [ 2447.030280][ T8204] R13: 00007f123b1e6038 R14: 00007f123b1e5fa0 R15: 00007ffc4835b5a8 [ 2447.030310][ T8204] [ 2447.257876][ T30] audit: type=1800 audit(4294967584.652:19): pid=8207 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.8448" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0 [ 2448.413425][ T8220] FAULT_INJECTION: forcing a failure. [ 2448.413425][ T8220] name failslab, interval 1, probability 393216, space 0, times 0 [ 2448.413487][ T8220] CPU: 0 UID: 0 PID: 8220 Comm: syz.3.8450 Tainted: G U syzkaller #0 PREEMPT(full) [ 2448.413521][ T8220] Tainted: [U]=USER [ 2448.413528][ T8220] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 2448.413543][ T8220] Call Trace: [ 2448.413550][ T8220] [ 2448.413559][ T8220] dump_stack_lvl+0x16c/0x1f0 [ 2448.413592][ T8220] should_fail_ex+0x512/0x640 [ 2448.413622][ T8220] ? __kmalloc_noprof+0xca/0x880 [ 2448.413656][ T8220] should_failslab+0xc2/0x120 [ 2448.413680][ T8220] __kmalloc_noprof+0xdd/0x880 [ 2448.413710][ T8220] ? vc_do_resize+0x1de/0x10e0 [ 2448.413741][ T8220] ? vc_do_resize+0x1de/0x10e0 [ 2448.413764][ T8220] ? is_console_locked+0x9/0x20 [ 2448.413787][ T8220] vc_do_resize+0x1de/0x10e0 [ 2448.413816][ T8220] ? fb_match_mode+0x2a1/0x350 [ 2448.413843][ T8220] ? __pfx_fb_match_mode+0x10/0x10 [ 2448.413872][ T8220] ? __pfx_vc_do_resize+0x10/0x10 [ 2448.413897][ T8220] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 2448.413940][ T8220] fbcon_modechanged+0x334/0x6b0 [ 2448.413982][ T8220] rotate_store+0x258/0x2f0 [ 2448.414020][ T8220] ? __pfx_rotate_store+0x10/0x10 [ 2448.414060][ T8220] dev_attr_store+0x58/0x80 [ 2448.414098][ T8220] ? __pfx_dev_attr_store+0x10/0x10 [ 2448.414135][ T8220] sysfs_kf_write+0xf2/0x150 [ 2448.414173][ T8220] kernfs_fop_write_iter+0x3af/0x570 [ 2448.414202][ T8220] ? __pfx_sysfs_kf_write+0x10/0x10 [ 2448.414240][ T8220] vfs_write+0x7d3/0x11d0 [ 2448.414276][ T8220] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 2448.414308][ T8220] ? __pfx___mutex_lock+0x10/0x10 [ 2448.414343][ T8220] ? __pfx_vfs_write+0x10/0x10 [ 2448.414398][ T8220] ksys_write+0x12a/0x250 [ 2448.414432][ T8220] ? __pfx_ksys_write+0x10/0x10 [ 2448.414481][ T8220] do_syscall_64+0xcd/0xfa0 [ 2448.414513][ T8220] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2448.414537][ T8220] RIP: 0033:0x7f246298efc9 [ 2448.414555][ T8220] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2448.414579][ T8220] RSP: 002b:00007f2460bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 2448.414601][ T8220] RAX: ffffffffffffffda RBX: 00007f2462be5fa0 RCX: 00007f246298efc9 [ 2448.414621][ T8220] RDX: 0000000000000007 RSI: 0000000000000000 RDI: 0000000000000003 [ 2448.414636][ T8220] RBP: 00007f2460bf6090 R08: 0000000000000000 R09: 0000000000000000 [ 2448.414651][ T8220] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2448.414665][ T8220] R13: 00007f2462be6038 R14: 00007f2462be5fa0 R15: 00007ffc7b94adc8 [ 2448.414698][ T8220] [ 2448.453230][ T8220] BUG: unable to handle page fault for address: fffff5200468d1fc [ 2448.453252][ T8220] #PF: supervisor read access in kernel mode [ 2448.453266][ T8220] #PF: error_code(0x0000) - not-present page [ 2448.453278][ T8220] PGD 23ffed067 P4D 23ffed067 PUD 1baac067 PMD 43e37067 PTE 0 [ 2448.453322][ T8220] Oops: Oops: 0000 [#1] SMP KASAN PTI [ 2448.453347][ T8220] CPU: 0 UID: 0 PID: 8220 Comm: syz.3.8450 Tainted: G U syzkaller #0 PREEMPT(full) [ 2448.453380][ T8220] Tainted: [U]=USER [ 2448.453389][ T8220] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 2448.453403][ T8220] RIP: 0010:sys_imageblit+0x15bc/0x1e60 [ 2448.453437][ T8220] Code: 31 c5 48 89 d8 48 c1 e8 03 42 80 3c 38 00 0f 85 64 06 00 00 48 89 2b e9 d1 f3 ff ff e8 dd 76 c5 fc 48 8b 44 24 10 48 c1 e8 03 <42> 80 3c 38 00 0f 85 1a 08 00 00 48 8b 44 24 10 0f b6 4c 24 20 48 [ 2448.453460][ T8220] RSP: 0018:ffffc9000b4376a8 EFLAGS: 00010a06 [ 2448.453479][ T8220] RAX: 1ffff9200468d1fc RBX: 0000000000000020 RCX: ffffffff84f7374d [ 2448.453495][ T8220] RDX: ffff888057010000 RSI: ffffffff84f74323 RDI: 0000000000000005 [ 2448.453510][ T8220] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000 [ 2448.453524][ T8220] R10: 0000000000000020 R11: 0000000000000001 R12: ffff888142799830 [ 2448.453539][ T8220] R13: 0000000000000008 R14: 0000000000000000 R15: dffffc0000000000 [ 2448.453554][ T8220] FS: 00007f2460bf66c0(0000) GS:ffff8881249d8000(0000) knlGS:0000000000000000 [ 2448.453576][ T8220] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2448.453592][ T8220] CR2: fffff5200468d1fc CR3: 000000005adaa000 CR4: 00000000003526f0 [ 2448.453608][ T8220] Call Trace: [ 2448.453621][ T8220] [ 2448.453634][ T8220] ? __pfx_sys_imageblit+0x10/0x10 [ 2448.453665][ T8220] ? do_raw_spin_lock+0x12c/0x2b0 [ 2448.453695][ T8220] ? find_held_lock+0x2b/0x80 [ 2448.453730][ T8220] ? queue_work_on+0x12a/0x1f0 [ 2448.453759][ T8220] ? lockdep_hardirqs_on+0x7c/0x110 [ 2448.453788][ T8220] ? queue_work_on+0x8b/0x1f0 [ 2448.453817][ T8220] drm_fbdev_shmem_defio_imageblit+0x20/0x130 [ 2448.453847][ T8220] cw_putcs+0x917/0xbb0 [ 2448.453879][ T8220] ? __pfx_cw_putcs+0x10/0x10 [ 2448.453906][ T8220] ? fb_get_color_depth+0x120/0x250 [ 2448.453942][ T8220] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 2448.453976][ T8220] ? __pfx_cw_putcs+0x10/0x10 [ 2448.453999][ T8220] fbcon_putcs+0x387/0x450 [ 2448.454035][ T8220] do_update_region+0x2e9/0x3f0 [ 2448.454073][ T8220] redraw_screen+0x63f/0x760 [ 2448.454098][ T8220] ? __pfx_redraw_screen+0x10/0x10 [ 2448.454124][ T8220] ? fbcon_set_palette+0x401/0x5f0 [ 2448.454160][ T8220] fbcon_modechanged+0x456/0x6b0 [ 2448.454196][ T8220] rotate_store+0x258/0x2f0 [ 2448.454230][ T8220] ? __pfx_rotate_store+0x10/0x10 [ 2448.454265][ T8220] dev_attr_store+0x58/0x80 [ 2448.454300][ T8220] ? __pfx_dev_attr_store+0x10/0x10 [ 2448.454336][ T8220] sysfs_kf_write+0xf2/0x150 [ 2448.454370][ T8220] kernfs_fop_write_iter+0x3af/0x570 [ 2448.454399][ T8220] ? __pfx_sysfs_kf_write+0x10/0x10 [ 2448.454434][ T8220] vfs_write+0x7d3/0x11d0 [ 2448.454467][ T8220] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 2448.454497][ T8220] ? __pfx___mutex_lock+0x10/0x10 [ 2448.454528][ T8220] ? __pfx_vfs_write+0x10/0x10 [ 2448.454569][ T8220] ksys_write+0x12a/0x250 [ 2448.454601][ T8220] ? __pfx_ksys_write+0x10/0x10 [ 2448.454643][ T8220] do_syscall_64+0xcd/0xfa0 [ 2448.454671][ T8220] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2448.454695][ T8220] RIP: 0033:0x7f246298efc9 [ 2448.454712][ T8220] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2448.454735][ T8220] RSP: 002b:00007f2460bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 2448.454756][ T8220] RAX: ffffffffffffffda RBX: 00007f2462be5fa0 RCX: 00007f246298efc9 [ 2448.454772][ T8220] RDX: 0000000000000007 RSI: 0000000000000000 RDI: 0000000000000003 [ 2448.454786][ T8220] RBP: 00007f2460bf6090 R08: 0000000000000000 R09: 0000000000000000 [ 2448.454800][ T8220] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2448.454814][ T8220] R13: 00007f2462be6038 R14: 00007f2462be5fa0 R15: 00007ffc7b94adc8 [ 2448.454837][ T8220] [ 2448.454845][ T8220] Modules linked in: [ 2448.454859][ T8220] CR2: fffff5200468d1fc [ 2448.454874][ T8220] ---[ end trace 0000000000000000 ]--- [ 2448.454884][ T8220] RIP: 0010:sys_imageblit+0x15bc/0x1e60 [ 2448.454914][ T8220] Code: 31 c5 48 89 d8 48 c1 e8 03 42 80 3c 38 00 0f 85 64 06 00 00 48 89 2b e9 d1 f3 ff ff e8 dd 76 c5 fc 48 8b 44 24 10 48 c1 e8 03 <42> 80 3c 38 00 0f 85 1a 08 00 00 48 8b 44 24 10 0f b6 4c 24 20 48 [ 2448.454937][ T8220] RSP: 0018:ffffc9000b4376a8 EFLAGS: 00010a06 [ 2448.454954][ T8220] RAX: 1ffff9200468d1fc RBX: 0000000000000020 RCX: ffffffff84f7374d [ 2448.454970][ T8220] RDX: ffff888057010000 RSI: ffffffff84f74323 RDI: 0000000000000005 [ 2448.454985][ T8220] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000 [ 2448.454999][ T8220] R10: 0000000000000020 R11: 0000000000000001 R12: ffff888142799830 [ 2448.455014][ T8220] R13: 0000000000000008 R14: 0000000000000000 R15: dffffc0000000000 [ 2448.455029][ T8220] FS: 00007f2460bf66c0(0000) GS:ffff8881249d8000(0000) knlGS:0000000000000000 [ 2448.455051][ T8220] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2448.455066][ T8220] CR2: fffff5200468d1fc CR3: 000000005adaa000 CR4: 00000000003526f0 [ 2448.455083][ T8220] Kernel panic - not syncing: Fatal exception [ 2448.455147][ T8220] Kernel Offset: disabled