last executing test programs: 4m3.045576795s ago: executing program 2 (id=686): r0 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000140)='/dev/cuse\x00', 0x0, 0x0) ioctl$auto_FUSE_DEV_IOC_CLONE(r0, 0x8004e500, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) writev$auto(0x3, 0x0, 0x8009) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_FLOW_CMD_DEL(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000005c0)=ANY=[@ANYBLOB, @ANYBLOB="e388bea156873508fe4320d7f215affde7cb43996a0e289ba1d8ddea38fbe2c6ba05f1ec013ed33955942aff74d7d0d5eb8119526b0c262ed02c3d9843f041e8348fc0e29779fe"], 0x18}, 0x1, 0x0, 0x0, 0x40}, 0x800) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x4, 0x300000000000) mmap$auto(0x3, 0x402000b, 0x2000006, 0xeb1, 0x401, 0xfff) openat$auto_udf_dir_operations_udfdecl(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/bluetooth/hci4\x00', 0x2000, 0x0) mmap$auto(0xffffffffbfffffff, 0x400009, 0xffd, 0x9b72, r0, 0xfffffffffffffffd) lremovexattr$auto(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='\'\x15\'\x00') mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8400) openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r2 = openat$auto_trace_fops_debugfs(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) pread64$auto(r2, 0x0, 0x3, 0xd8) write$auto(r1, &(0x7f0000000240)='//ev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/kallsyms\x00', 0x0, 0x0) pread64$auto(r3, 0x0, 0x8, 0x8000) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x400c058) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) pwritev$auto(0x3, &(0x7f0000001000)={0x0, 0x8}, 0x5, 0x3, 0x9) read$auto(0xffffffffffffffff, &(0x7f0000000300)='/sys/device\a\x00\x00\x00\x00\x00\x00\x00l/net/bod0/bondactive\x00', 0x5) write$auto(0x3, 0x0, 0xffd8) setreuid$auto(0x0, 0xee01) socket(0x6, 0x800, 0x0) 4m2.036328006s ago: executing program 2 (id=690): openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/block/nbd11/sched/async_depth\x00', 0x2000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/wakeup_count\x00', 0xc0082, 0x0) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) r0 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, 0x0, 0x100, 0x0) ioctl$auto_SNDRV_PCM_IOCTL_CHANNEL_INFO2(r0, 0x80184132, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D3\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/LNXSYSTM:00/LNXPWRBN:00/input/input0/inhibited\x00', 0x20b42, 0x0) write$auto(r2, &(0x7f0000000340)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,D\xbf&\x9eb|\n\xee\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbb\xbb\xf9\xcd\xc0\xdd\xdd\xb9o\x1a\xab\xd5\b\xc1\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x1d\x88mr\xfd\xf1\x1b;\xabt\xd1a}\x10\xab\xeb_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL\x15/\xf9\'\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\aA\xe9(\x00\x00\x00\x00\x00N\xb5J\xc8A\xc7m\xbf\x19\xae\x9d\xcaR\x0f\xa8\xdf\xe4M\xe1>k\x93\x01\xe5\xba(\x96K\xc1=d3\xe00u\"`]\xb3\x11a\x1cSn\xe7\x87\x84\x93\xe4\x90]\x86\x10\xe5\xacK\x99\xc1$\x91\x05\x00\x00\x00O\x01xc\xa8\x9a\x1bK\x00\x00\xf6\xa2\x8a\x7f4\f[BLH$6\xfb,\xd8\xd3\xd0\xa1v\x14\xcd\x1a\xbdx\xaed\x9d\\\xd0\xff\xd2Y\xc4\x9fT\xb2\xd5\r\xf1#\xd5\xf2\x9cU\xd1:+\xb63\xae\xc1\xf7\xe1\xd4\x879?\xdd\xd6\xd4\xa3\xc7\xd8 S\xfc:\xe1{\x16\\h\x9d\xbc#KEC\x1a\xf9KH`*\xb2\xff\xe9I\xd1\x82e:_\x9b\xf1\xc1\x8e\xf0\xc46\x98\xd6u\x90\x18\x8f\xe8\xc3%\x8e9\xab\x7f\x0e\n\xb2\xa4\xef\x90\xb16\x04\xbc\xc9\xdc\xad,\xcc\xad}DY\x1d\x1fv\x90\x97u\xa1\xfb\x13\xa93\xb6XJ\x84\xe3\xc1)\x98\xae5q\xa5L\x87\x1aq\x1d0\xf1\xcb\xe5\xf4F\xc2\xea!*\xf9\xb3,w\"\xf2\xd0\xd1Vj\xd0\x06\xcc\xbc\xee0\x98.\xd9dC\x8e9\xfdM\\\xc5&\\\x9b\x81\x88t\xa4\x9f\xd1P\xd2e\x9c\xf9\xd2\xaf', 0xb) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f00000000c0), 0x880, 0x0) syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000000080), 0xffffffffffffffff) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/snd/pcmC1D0p\x00', 0x0, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ram4\x00', 0xdd01, 0x0) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) ioctl$auto_BLKRRPART(r3, 0x125f, 0x700000000000000) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram2\x00', 0x14f602, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/module/usb_storage/parameters/delay_use\x00', 0x181942, 0x0) mmap$auto(0x0, 0x2020009, 0x203, 0xeb1, 0xfffffffffffffffa, 0x8000) r4 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/oom_adj\x00', 0x300, 0x0) read$auto(r4, 0x0, 0x1f40) r5 = socket(0x10, 0x2, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x0, 0x1, 0x9, 0x7, 0x3b, 0x7, 0x1ffde, 0x7, 0x6, 0x2, 0x9, 0x3, 0x6, 0x4, 0xb2, 0x9, 0x2, 0x10000, 0x80, 0x7, 0x5842, 0x7, 0x2000, 0x200, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3]}, 0x202, 0xd) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) sendmmsg$auto(r5, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) 4m0.900079884s ago: executing program 2 (id=691): r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x82000, 0x0) r1 = socket(0x28, 0x1, 0x100) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f00000011c0)='/dev/snd/pcmC1D1c\x00', 0x0, 0x0) ioctl$auto_SNDRV_PCM_IOCTL_HW_PARAMS_OLD2(r2, 0xc1004111, 0x0) getsockopt$auto_SO_RCVPRIORITY(r1, 0x2, 0x52, &(0x7f00000001c0)='/dev/virtual_nci\x00', &(0x7f0000000240)=0x7) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) pread64$auto(r0, 0x0, 0x7fb, 0x400) socket(0x1e, 0x1, 0x0) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000340)={[0x200, 0x7, 0xa, 0x8fd6, 0x400000000000948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x5, 0x3, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x2020006, 0x3, 0x7fff, 0xffffffffffffffff, 0x100029000) r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/fs/cifs/SecurityFlags\x00', 0x48041, 0x0) write$auto(r4, 0x0, 0x4) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) inotify_init1$auto(0x403) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0xa, 0x0) r5 = openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000000), 0x48101, 0x0) write$auto(r5, &(0x7f0000000040)='/sys/kernel/security/integrity/ima/policy\x00', 0xc6) mmap$auto(0x0, 0x200009, 0x2, 0x48eb1, 0xffffffffffffffff, 0x300000000000) madvise$auto(0x200000, 0x20499d, 0x9) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x101000, 0x0) 3m59.319927826s ago: executing program 2 (id=697): openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0) close_range$auto(0xffffffffffffffff, 0x8, 0x2) r0 = openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000007380)='/sys/kernel/tracing/events/vmalloc/filter\x00', 0x109041, 0x0) write$auto(r0, &(0x7f0000008d40)='($}-)#@\x00', 0x3) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/fs/dentry-state\x00', 0x0, 0x0) set_mempolicy$auto(0x3, &(0x7f0000000000)=0x7, 0x9) socket(0x2, 0x3, 0xa) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/tty12\x00', 0x800, 0x0) ioctl$auto(r1, 0x4b4a, r1) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x40000008000) sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc000}, 0x2404c800) kexec_load$auto(0x5, 0x2, &(0x7f0000000040)={@kbuf=0x0, 0x800c000, 0x4800c000, 0x800c000}, 0x4) move_pages$auto(0x0, 0x8, 0x0, 0x0, 0x0, 0x8000000000000000) mmap$auto(0x8, 0x3a02, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000180)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x9, 0x0, 0x4000000000007, 0xa505}, 0x800}, 0x4, 0x4008) r2 = socket(0x1d, 0x2, 0x11) setsockopt$auto(r2, 0x1, 0xc, 0x0, 0x7fffffff) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ttyS0\x00', 0x1, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x7, 0x1, 0x0, 0x2, 0x4) sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x8000}, 0x4000804) mmap$auto(0xd542, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000140), 0x2002, 0x0) openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000040)='/proc/kmsg\x00', 0x20d00, 0x0) lseek$auto(0x3, 0x8, 0x1) 3m58.23682388s ago: executing program 2 (id=699): close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/dummy0/carrier\x00', 0xc2061, 0x0) write$auto(r0, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x4, 0x15) fchdir$auto(0xffffffffffffffff) pselect6$auto(0x3, &(0x7f0000000040)={[0x1000, 0x0, 0x8, 0x7, 0x5, 0x7, 0x3, 0x6, 0x0, 0x9, 0x8, 0x4, 0x6, 0x5, 0x1, 0x100000001]}, &(0x7f00000000c0)={[0x2, 0x9, 0x4, 0x5, 0x1, 0xc53, 0x7, 0x8c8, 0x8, 0xe4, 0x8, 0x4, 0x6, 0x0, 0x1, 0xc]}, &(0x7f0000000140)={[0xca, 0xfffffffffffffffd, 0x6, 0x7, 0x3, 0x20, 0xbb, 0x0, 0x800, 0x0, 0xf67, 0xa, 0x100000000, 0x1, 0x7ff]}, &(0x7f0000000200)={0x40000000000000, 0x2}, &(0x7f0000000240)="76e10d367d2415435f9a38b9c677dec5da964230172cee43529184032e73f06c39eb73d788c449a95e534c88ce7d6d741ed9e816e606dbda8724c0dd52d2d1719326642ed1665c73c18753c92d0404d0a65a4bd9c32222b8ccfca69e92f3a322da9421254d089bba40e01e0d4691bc01e16e4d5a0603ac0375a038c39649b96baed3172ab5138e152667aee1187261f35669cd6b4031a9d314590dad61b3bce9b0b020177a875b7e7f249bb4eb839e4c75b3528f16875021f4a647768c121f1cde19467816caf08e1c74627f97e375854cd53d841209be982702144b2612587c20f56a91c8d4c0fd8df21b0212699f") mkdir$auto(0x0, 0x6) r1 = bpf$auto(0x0, 0x0, 0x6f3) arch_prctl$auto_ARCH_REQ_XCOMP_PERM(0x1023, 0x7) mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) close_range$auto(0x2, 0x8000, 0x0) io_uring_setup$auto(0x6, 0x0) tkill$auto(0x1, 0x7) keyctl$auto_KEYCTL_SESSION_TO_PARENT(0x12, 0x0, 0x0, 0x0, 0x48eafc79) sendmsg$auto_TIPC_NL_BEARER_ADD(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x24004044}, 0x10000000) io_uring_register$auto(0x2, 0x22, &(0x7f0000000100), 0x1) r2 = socket(0xa, 0x2, 0x88) r3 = openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/cgroup\x00', 0x420, 0x0) read$auto_proc_single_file_operations_base(r3, &(0x7f0000000040)=""/9, 0x9) ioctl$auto_USB_RAW_IOCTL_EP_WRITE(r1, 0x40085507, &(0x7f0000000340)={0x5, 0x8, 0x4, "a4cc8d4df580d9e94392f4dae021d6fe496641758443e7cdfc848b9bd2557c0b70948e9cd86d35f999bb13ab08bbf215c47a86a8dee7057561bcffc01fdbf0ec59276003eaaad9538a"}) bpf$auto(0x0, 0x0, 0xa3) mmap$auto(0x5, 0x4020008, 0x1001, 0xeb1, r2, 0x8003) madvise$auto(0x0, 0xffffffffffff0005, 0x19) r4 = socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(r4, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) mmap$auto(0x0, 0x20009, 0x20004000000000df, 0xeb1, 0xffffffffffffffff, 0x8000) setsockopt$auto(0x3, 0x10000000084, 0x78, 0x0, 0x4) 3m57.125708273s ago: executing program 2 (id=703): mmap$auto(0xd, 0x200006, 0x12, 0x18, 0x602, 0x2ffffffffffe) socket(0x18, 0x6, 0x10) socket(0x23, 0x80805, 0x0) fanotify_init$auto(0x5, 0x2000000000002) futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0x80000001) socketcall$auto(0x8000, 0x0) r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x60042, 0x0) ioctl$auto_BLKTRACESETUP2(r0, 0xc0481273, &(0x7f00000000c0)={"67b005c1c2760bd1eeb6eb479d03912acfb5074ad05689c042577e4d145c43b5", 0xaf3, 0xfff, 0x7, 0xc, 0x9fe}) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x0, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0x50000, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/power/resume\x00', 0x189002, 0x0) sendfile$auto(r3, r3, 0x0, 0x3) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000180), 0x480843, 0x0) io_uring_setup$auto(0x3, 0x0) pipe$auto(0x0) read$auto_tracing_buffers_fops_trace(0xffffffffffffffff, &(0x7f00000001c0)=""/98, 0x62) r4 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x40c80, 0x0) read$auto_tracing_buffers_fops_trace(r4, &(0x7f0000000040)=""/163, 0xa3) close_range$auto(0x0, 0xfffffffffffff000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x48140, 0x0) pipe$auto(0x0) read$auto(0xffffffffffffffff, &(0x7f0000000140)='/sys/power/resume\x00', 0x4) r5 = socket(0x2, 0x3, 0xa) ioctl$auto(0x3, 0x89e0, r5) 3m56.529994491s ago: executing program 32 (id=703): mmap$auto(0xd, 0x200006, 0x12, 0x18, 0x602, 0x2ffffffffffe) socket(0x18, 0x6, 0x10) socket(0x23, 0x80805, 0x0) fanotify_init$auto(0x5, 0x2000000000002) futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0x80000001) socketcall$auto(0x8000, 0x0) r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x60042, 0x0) ioctl$auto_BLKTRACESETUP2(r0, 0xc0481273, &(0x7f00000000c0)={"67b005c1c2760bd1eeb6eb479d03912acfb5074ad05689c042577e4d145c43b5", 0xaf3, 0xfff, 0x7, 0xc, 0x9fe}) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x0, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0x50000, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/power/resume\x00', 0x189002, 0x0) sendfile$auto(r3, r3, 0x0, 0x3) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000180), 0x480843, 0x0) io_uring_setup$auto(0x3, 0x0) pipe$auto(0x0) read$auto_tracing_buffers_fops_trace(0xffffffffffffffff, &(0x7f00000001c0)=""/98, 0x62) r4 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x40c80, 0x0) read$auto_tracing_buffers_fops_trace(r4, &(0x7f0000000040)=""/163, 0xa3) close_range$auto(0x0, 0xfffffffffffff000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x48140, 0x0) pipe$auto(0x0) read$auto(0xffffffffffffffff, &(0x7f0000000140)='/sys/power/resume\x00', 0x4) r5 = socket(0x2, 0x3, 0xa) ioctl$auto(0x3, 0x89e0, r5) 1m19.26618112s ago: executing program 1 (id=1433): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000140)='/dev/cuse\x00', 0x0, 0x0) ioctl$auto_FUSE_DEV_IOC_CLONE(r0, 0x8004e500, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) writev$auto(0x3, 0x0, 0x8009) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x4, 0x300000000000) mmap$auto(0x3, 0x402000b, 0x2000006, 0xeb1, 0x401, 0xfff) openat$auto_udf_dir_operations_udfdecl(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/bluetooth/hci4\x00', 0x2000, 0x0) mmap$auto(0xffffffffbfffffff, 0x400009, 0xffd, 0x9b72, r0, 0xfffffffffffffffd) lremovexattr$auto(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='\'\x15\'\x00') mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8400) openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r2 = openat$auto_trace_fops_debugfs(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) pread64$auto(r2, 0x0, 0x3, 0xd8) write$auto(r1, &(0x7f0000000240)='//ev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/kallsyms\x00', 0x0, 0x0) pread64$auto(r3, 0x0, 0x8, 0x8000) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x400c058) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) pwritev$auto(0x3, &(0x7f0000001000)={0x0, 0x8}, 0x5, 0x3, 0x9) read$auto(0xffffffffffffffff, &(0x7f0000000300)='/sys/device\a\x00\x00\x00\x00\x00\x00\x00l/net/bod0/bondactive\x00', 0x5) write$auto(0x3, 0x0, 0xffd8) setreuid$auto(0x0, 0xee01) socket(0x6, 0x800, 0x0) 1m18.530806932s ago: executing program 1 (id=1437): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000000540), r0) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'netdevsim0\x00', 0x0}) sendmsg$auto_NET_SHAPER_CMD_DELETE(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000140)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090027ad7600fbdbdf250180000008000800", @ANYRES32=r3, @ANYBLOB="04000180"], 0x20}, 0x1, 0x0, 0x0, 0x40488d4}, 0xc050) 1m18.455278895s ago: executing program 1 (id=1438): socket(0x2, 0x2, 0x88) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) mmap$auto(0x0, 0x400008, 0xfffffffffffffff9, 0x9b72, 0x2, 0x8000) write$auto(0x3, 0x0, 0xfdf3) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) 1m18.053058319s ago: executing program 1 (id=1440): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'ipvlan1\x00'}) r0 = open(&(0x7f0000000080)='.\x00', 0x400, 0x408) getdents$auto(r0, 0x0, 0x400018) r1 = socket(0x2, 0xa, 0x0) sendmmsg$auto(r1, &(0x7f00000000c0)={{&(0x7f0000000000), 0xd1, &(0x7f0000000040)={0x0, 0x5ea}, 0x1, 0x0, 0x1000, 0x1000af23}, 0x6}, 0x5, 0x1997b23d) 1m17.793739107s ago: executing program 1 (id=1443): rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6) syz_genetlink_get_family_id$auto_ioam6(0x0, 0xffffffffffffffff) fsopen$auto(0x0, 0x6) sendmmsg$auto(0x3, 0x0, 0x3, 0x0) close_range$auto(0x2, 0xffffffffffffffff, 0x0) tkill$auto(0x1, 0x7) 1m17.154021071s ago: executing program 1 (id=1448): mmap$auto(0x0, 0x2a, 0xdf, 0x9b72, 0x1000, 0x28000) close_range$auto(0x2, 0x8, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vbi15\x00', 0x802, 0x0) r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vbi15\x00', 0x42c00, 0x0) ppoll$auto(&(0x7f0000000040)={r0, 0x5, 0xf}, 0x4, 0x0, 0x0, 0x8) ioctl$auto(0x3, 0x40045613, 0x38) 1m16.606723114s ago: executing program 33 (id=1448): mmap$auto(0x0, 0x2a, 0xdf, 0x9b72, 0x1000, 0x28000) close_range$auto(0x2, 0x8, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vbi15\x00', 0x802, 0x0) r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vbi15\x00', 0x42c00, 0x0) ppoll$auto(&(0x7f0000000040)={r0, 0x5, 0xf}, 0x4, 0x0, 0x0, 0x8) ioctl$auto(0x3, 0x40045613, 0x38) 7.79080565s ago: executing program 5 (id=1964): close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/bonding/all_slaves_active\x00', 0xb02, 0x0) r0 = openat$auto_cgwb_debug_stats_fops_(0xffffffffffffff9c, &(0x7f00000010c0)='/sys/kernel/debug/bdi/1:15/wb_stats\x00', 0x40, 0x0) pread64$auto(r0, 0x0, 0x6, 0x9) listen$auto(0xffffffffffffffff, 0x5ed) r1 = open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0x42842, 0x95) read$auto(r1, 0x0, 0x1) write$auto(0x3, 0x0, 0xfdef) 7.730875088s ago: executing program 5 (id=1966): close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) socket(0x2, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0x101000, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_CREATE_VM(r0, 0x8140aecc, 0x0) 7.618231749s ago: executing program 5 (id=1967): mmap$auto(0x0, 0x2020009, 0x5, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000100)={{0x0, 0x10, &(0x7f0000000000)={0x0, 0x10}, 0x2, 0x0, 0xe, 0x4}, 0x8}, 0x200, 0xb07e) socket(0x2, 0x80802, 0x0) socket(0x18, 0xa, 0x1) r0 = socket(0x10, 0x2, 0x9) sendmsg$auto_NL80211_CMD_SET_COALESCE(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000000)=ANY=[@ANYBLOB="1400000053"], 0x5f}, 0x1, 0x0, 0x0, 0x400400d4}, 0x40) socket(0xa, 0x2, 0x0) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 7.27690689s ago: executing program 5 (id=1973): close_range$auto(0x2, 0x8000, 0x0) socket(0x2, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000005c0), 0x40, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_CREATE_VM(r0, 0xaece, 0x0) close_range$auto(0x2, 0xa, 0x0) 6.437837883s ago: executing program 5 (id=1976): futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0x80000001) r0 = socketcall$auto(0x8000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/power/resume\x00', 0x189002, 0x0) sendfile$auto(r2, r2, 0x0, 0x3) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000200), 0x400, 0x0) ioctl$auto(0x3, 0xae41, r0) 3.708983374s ago: executing program 0 (id=1994): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r1 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/controlC2\x00', 0x80, 0x0) ioctl$auto(r1, 0xc10c5541, r0) socket(0x2b, 0x1, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_WRITE(r1, 0xc4c85513, &(0x7f0000000180)={{@raw=0x3, 0x16000000, 0x4, 0x0, "2b99e23897c8e7ae1ba9d82c838ed7da145d43c1b133101bcf06ad60ec28cfe768f7661558891557d4ca6b4a", @raw=0xf}, 0x0, @enumerated=@item_ptr=0x0, "faa2f6e88b3d60cd889bdce2246542f40a986fceab5a5b5345c37cb3e0893236e5a323c081c95e70fc89a6f8d4a0aa229033fca5676629ea02f7e4ff11f5b928cf8d889545811a9a1e7552b24e60765a28e853f08599d0c6e7072bf055ae771ebbf9f83d6758df6f7c2f2465547bcd43f5fb90e873445772902b6082011f85ea"}) openat$auto_nsim_pp_hold_fops_netdev(0xffffffffffffff9c, 0x0, 0x200000, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/icmp\x00', 0xc0880, 0x0) r2 = socket(0x2, 0x2, 0x1) ioctl$auto(r2, 0x890c, r2) 3.417892s ago: executing program 0 (id=1996): close_range$auto(0x2, 0xa, 0x0) socket$nl_generic(0x10, 0x3, 0x10) memfd_create$auto(&(0x7f0000000000)='\xc4--:\xdd:,./-${\x00', 0x4) mmap$auto(0x0, 0x5, 0xefb, 0x8000000008011, 0x3, 0x2000000000) socket(0xa, 0x1, 0x100) ioctl$auto_SNAPSHOT_ATOMIC_RESTORE(0xffffffffffffffff, 0x3304, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x0, 0x0) r0 = openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0) read$auto_rng_chrdev_ops_core(r0, &(0x7f0000000040)=""/4096, 0xfffffe82) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) 1.986410941s ago: executing program 0 (id=2002): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) preadv2$auto(r0, &(0x7f0000000100)={0x0, 0x80000000}, 0x6, 0xc7e, 0x573, 0x2e) r1 = gettid() rt_sigqueueinfo$auto(r1, 0x1, 0x0) ptrace$auto_PTRACE_POKEUSR(0x6, r1, 0x8001, 0x4) r2 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/oom_adj\x00', 0x300, 0x0) read$auto(r2, 0x0, 0x1f40) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x8002, 0x0) writev$auto(r3, &(0x7f00000000c0)={0x0, 0x7}, 0x3) ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0) 1.52844388s ago: executing program 4 (id=2003): openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) ioctl$auto(0x3, 0x4b34, 0x3) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf25030000000800030004020000060007000080000000"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40090) socket(0x10, 0x2, 0x0) openat$auto(0xffffffffffffffff, 0x0, 0x2, 0x6ce) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x24040840}, 0x94) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) ioctl$auto_UBI_IOCDET(0xffffffffffffffff, 0x40046f41, 0x0) openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/pcmC1D1p\x00', 0x204882, 0x0) ioctl$auto_FBIO_CURSOR(0xffffffffffffffff, 0xc0684608, &(0x7f00000001c0)={0x6, 0x1, 0x600, 0x0, {0x1003, 0x9b72}, {0x7, 0x3, 0x2, 0x9, 0x4, 0x7f, 0x9, 0x0, {0x1fe, 0xffffff7e, 0x0, 0x0, 0x0, 0x0}}}) write$auto(0xca, &(0x7f0000000040)='\x04>\x01\r\xfb\xff\xf6OL\xc8\xbe\x94\xf2\xa2\x00\x00', 0x2d9) 1.491384423s ago: executing program 4 (id=2004): r0 = open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84) close_range$auto(0x0, 0xfffff004, 0x2) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) r1 = socket(0xa, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r2 = socket(0xa, 0x2, 0x88) socket$nl_generic(0x10, 0x3, 0x10) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bond0\x00', 0x0}) bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r4, r3, 0x4, 0xf, r2, @relative_fd, 0xe600}, 0xf) bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, r0, 0x0, 0x3}, 0xc) 1.45782665s ago: executing program 4 (id=2005): mmap$auto(0x0, 0x6, 0x2, 0x40eb2, 0xffffffffffffffff, 0x308000000000) close_range$auto(0x2, 0x8, 0x0) socketpair$auto(0x21, 0x5, 0x7, 0x0) r0 = open(0x0, 0x22240, 0x55) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x2, 0x0) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa}, 0x55) statx$auto(r0, 0x0, 0x2001003, 0x4005, 0x0) setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 1.424841042s ago: executing program 4 (id=2006): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socket(0x2, 0x1, 0x0) r1 = openat$auto_proc_environ_operations_base(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/environ\x00', 0x82a00, 0x0) sendmsg$auto_NCSI_CMD_SEND_CMD(r0, 0x0, 0x20040081) read$auto_proc_environ_operations_base(r1, 0x0, 0x0) r2 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) shutdown$auto(0x200000003, 0x2) listen$auto(r0, 0x7) sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1, 0xb}, 0x800009}, 0x5, 0x2000fdff) 1.087673409s ago: executing program 0 (id=2007): mmap$auto(0x0, 0x400009, 0xfffffffffffffffa, 0x9b72, 0xffffffffffffffff, 0x0) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0) ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r1, 0xc0285700, 0x0) ioctl$auto(0x3, 0xc0303e03, r0) close_range$auto(0x2, 0x8, 0x0) 994.336637ms ago: executing program 5 (id=2008): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) setsockopt$auto(0x3, 0x0, 0xc8, 0xfffffffffffffffc, 0x4) close_range$auto(0x2, 0x8, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/reboot/cpu\x00', 0x1a1842, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x50002, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r0, 0x0, 0xe8) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000001240)='/proc/thread-self/fail-nth\x00', 0xa0302, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, r2, 0x8000) 965.849479ms ago: executing program 0 (id=2009): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_uinput_fops_uinput(0xffffffffffffff9c, 0x0, 0x101001, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) ioctl$auto(0x3, 0x402c542c, 0x38) socket(0x2, 0x1, 0x106) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) setsockopt$auto_SO_MARK(0xffffffffffffffff, 0x6, 0x24, &(0x7f0000000380)='\x00', 0x163fdb7e) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) semctl$auto(0x8, 0x806, 0x13, 0x46) 874.73347ms ago: executing program 4 (id=2011): close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) fanotify_init$auto(0x5, 0x2000000000002) socket(0x2, 0x2, 0x1) socket(0x2, 0x801, 0x106) socket(0x26, 0x80805, 0x0) open(&(0x7f0000000000)='./bus\x00', 0x12ba7e, 0x145) fanotify_mark$auto(0x0, 0x1, 0x9, 0x4, 0x0) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) setrlimit$auto(0x1000000007, 0x0) close_range$auto(0x2, 0xffffffffffffffff, 0x0) readv$auto(0x0, &(0x7f0000000080)={0x0, 0x1e}, 0x3) 732.697984ms ago: executing program 3 (id=2012): r0 = socket(0x2, 0x2, 0x0) mmap$auto(0x0, 0x8, 0x2, 0x9b72, 0x5, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1d, 0x2, 0x7) r1 = socket(0x2, 0x1, 0x0) sysfs$auto(0x2, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r2}, 0x6a) setsockopt$auto(r0, 0x1, 0x6, 0x0, 0xc089) sendmsg$auto_BATADV_CMD_TP_METER(r0, 0x0, 0x4) 634.839179ms ago: executing program 3 (id=2013): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="0700000000000000df250a"], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) recvmmsg$auto(r0, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000080)={&(0x7f0000000040), 0xcb}, 0x3, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x6, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc8}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 472.560758ms ago: executing program 3 (id=2014): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x0) socket(0xa, 0x3, 0x3b) socket(0xa, 0x2, 0x0) socket(0x2c, 0x3, 0x0) socket(0xa, 0x3, 0x100) socketpair$auto(0x8, 0x7, 0x1, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0) ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0) ioctl$auto_TCFLSH2(r0, 0x8924, 0x0) 260.980619ms ago: executing program 3 (id=2015): mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/008/001\x00', 0xa901, 0x0) ioctl$auto_USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000140)={0x0, 0x80805513, 0x0}) mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0x8000000000000003, 0x8000) r1 = socket(0xa, 0x1, 0x84) io_uring_setup$auto(0x401, 0x0) getsockopt$auto(r1, 0x84, 0x76, 0x0, 0x0) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ram0\x00', 0x60782, 0x0) ioctl$auto_BLKZEROOUT(r2, 0x127f, 0x0) r3 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000040), 0x301800, 0x0) ioctl$auto_TUNSETCARRIER(r3, 0x400454e2, &(0x7f0000000080)=0x9d4) 148.184925ms ago: executing program 4 (id=2016): mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) r0 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) r1 = getpid() process_vm_readv$auto(r1, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0) ioctl$auto(r0, 0x400454ca, 0x38) socket(0x29, 0x2, 0x0) io_uring_setup$auto(0xa, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) close_range$auto(0x2, 0xa, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x40, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x400, 0x0) 135.006584ms ago: executing program 3 (id=2017): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) statmount$auto(0x0, &(0x7f0000000180)={0x315, 0xfffffffd, 0x401bf, 0x7352, 0x3c, 0x65f, 0x1ffde, 0x6, 0x3, 0x2, 0x9, 0x2, 0x4000006, 0x4, 0xb6, 0x80000000009, 0x6, 0x10003, 0xb, 0x4, 0x0, 0x7, 0x2000, 0x203, 0x0, 0x84}, 0x1fe, 0xd) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000826bd7000fedbdf25030000000600070008000000060007000080000008000200", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a00010000000000000000000a00010000000000000000000600060040"], 0x6c}, 0x1, 0x0, 0x0, 0x40080}, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) socket(0x2, 0x1, 0x106) setsockopt$auto(0x3, 0x0, 0x7, 0x0, 0x26) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 76.262849ms ago: executing program 0 (id=2018): mmap$auto(0x9, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) write$auto(0xffffffffffffffff, 0x0, 0x2) mremap$auto(0x4000, 0xfee0, 0x3fd6, 0x3, 0xfffff000) mmap$auto(0x0, 0xff, 0xdf, 0x9b71, 0x2, 0x807ffd) close_range$auto(0x0, 0x5, 0x0) pipe$auto(0x0) pipe$auto(0x0) tee$auto(0x2000000000000, 0x3, 0x402, 0xd) r0 = socket(0x11, 0x80003, 0x300) sendfile$auto(0x1, r0, 0x0, 0x8fb5) 0s ago: executing program 3 (id=2019): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) pidfd_open$auto(0x1, 0x0) socket(0x2, 0x80002, 0x73) socket(0x2, 0x1, 0x84) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) socketpair$auto(0x1, 0x1, 0x4, 0x0) close_range$auto(0x2, 0xffffffffffffffff, 0x0) open(0x0, 0x22240, 0x55) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x12de82, 0x0) ioctl$auto(0x3, 0x40106f52, r0) kernel console output (not intermixed with test programs): 00000000000 [ 374.794466][T10285] R13: 00007f27e11e6128 R14: 00007f27e11e6090 R15: 00007fff3a5fa418 [ 374.794502][T10285] [ 375.062127][ C0] vkms_vblank_simulate: vblank timer overrun [ 378.799676][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 378.806171][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 383.245946][T10401] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 383.637904][T10401] netlink: 4 bytes leftover after parsing attributes in process `syz.4.792'. [ 386.300052][T10459] random: crng reseeded on system resumption [ 386.923994][T10467] svc: failed to register nfsdv3 RPC service (errno 111). [ 386.955124][T10467] svc: failed to register nfsaclv3 RPC service (errno 111). [ 387.303400][T10479] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input23 [ 387.880606][T10485] zram: Removed device: zram0 [ 388.664500][T10477] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 389.054995][T10497] ptrace attach of "./syz-executor exec"[10498] was attempted by "./syz-executor exec"[10497] [ 390.799302][ T5866] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260 [ 390.799328][ T5866] Bluetooth: hci1: unexpected subevent 0x0e length: 725 > 15 [ 390.815129][ T5866] Bluetooth: hci1: Unable to find connection for dst 00:a2:f2:94:be:c8 sid 0x4f [ 393.585006][T10593] nfs: Unknown parameter 'ީiʟby7J ؀V{ [ 393.585006][T10593] \9-*;#rRcFGL֍*(ܦ)5&yAlj Lp%Zw}GSιk' [ 396.529997][ T5866] Bluetooth: hci2: unexpected event 0x34 length: 15 > 6 [ 396.688296][T10643] usb usb34: usbfs: process 10643 (syz.0.850) did not claim interface 0 before use [ 397.114595][T10656] usb usb12: usbfs: process 10656 (syz.3.855) did not claim interface 0 before use [ 397.230034][T10659] blktrace: Concurrent blktraces are not allowed on sg0 [ 397.289574][T10660] netlink: 8 bytes leftover after parsing attributes in process `syz.4.854'. [ 403.851801][T10785] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input24 [ 405.236926][T10818] random: crng reseeded on system resumption [ 405.629626][T10824] usb usb36: usbfs: process 10824 (syz.1.911) did not claim interface 0 before use [ 407.093060][T10853] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub [ 408.129693][T10868] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input25 [ 408.312239][T10870] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input26 [ 408.889424][T10887] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 410.697564][T10912] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input27 [ 410.845619][T10917] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input28 [ 411.510303][T10932] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000) [ 412.858989][T10963] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input29 [ 413.251512][T10967] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input30 [ 415.893959][T11012] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input31 [ 416.258806][T11013] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input32 [ 416.389212][T11027] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input33 [ 416.551097][T11028] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input34 [ 416.558762][T11031] blktrace: Concurrent blktraces are not allowed on sg0 [ 417.110376][T11045] FAULT_INJECTION: forcing a failure. [ 417.110376][T11045] name failslab, interval 1, probability 0, space 0, times 0 [ 417.123336][T11045] CPU: 1 UID: 0 PID: 11045 Comm: syz.3.983 Not tainted syzkaller #0 PREEMPT(full) [ 417.123371][T11045] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 417.123387][T11045] Call Trace: [ 417.123396][T11045] [ 417.123405][T11045] dump_stack_lvl+0x16c/0x1f0 [ 417.123449][T11045] should_fail_ex+0x512/0x640 [ 417.123485][T11045] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 417.123520][T11045] should_failslab+0xc2/0x120 [ 417.123552][T11045] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 417.123580][T11045] ? ktime_get_coarse_real_ts64_mg+0x240/0x300 [ 417.123615][T11045] ? __d_alloc+0x32/0xae0 [ 417.123650][T11045] __d_alloc+0x32/0xae0 [ 417.123678][T11045] ? look_up_lock_class+0x59/0x150 [ 417.123717][T11045] d_alloc_pseudo+0x1c/0xc0 [ 417.123753][T11045] alloc_file_pseudo+0xcf/0x230 [ 417.123803][T11045] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 417.123835][T11045] ? __pfx_pipe_lock_cmp_fn+0x10/0x10 [ 417.123874][T11045] create_pipe_files+0x364/0x9a0 [ 417.123908][T11045] do_pipe2+0xaf/0x1c0 [ 417.123937][T11045] ? __pfx_do_pipe2+0x10/0x10 [ 417.123968][T11045] ? xfd_validate_state+0x61/0x180 [ 417.124000][T11045] ? __pfx_ksys_write+0x10/0x10 [ 417.124037][T11045] __x64_sys_pipe+0x33/0x50 [ 417.124068][T11045] do_syscall_64+0xcd/0x4c0 [ 417.124107][T11045] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 417.124132][T11045] RIP: 0033:0x7f17b738eec9 [ 417.124151][T11045] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 417.124175][T11045] RSP: 002b:00007f17b8256038 EFLAGS: 00000246 ORIG_RAX: 0000000000000016 [ 417.124200][T11045] RAX: ffffffffffffffda RBX: 00007f17b75e5fa0 RCX: 00007f17b738eec9 [ 417.124214][T11045] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 417.124226][T11045] RBP: 00007f17b7411f91 R08: 0000000000000000 R09: 0000000000000000 [ 417.124238][T11045] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 417.124250][T11045] R13: 00007f17b75e6038 R14: 00007f17b75e5fa0 R15: 00007ffcbfcf73a8 [ 417.124276][T11045] [ 419.179277][T11074] openvswitch: netlink: IP tunnel dst address not specified [ 419.750813][T11091] blktrace: Concurrent blktraces are not allowed on sg0 [ 420.674956][T11113] netlink: 'syz.1.1005': attribute type 1 has an invalid length. [ 421.836956][T11143] mmap: syz.0.1014 (11143): VmData 45883392 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data. [ 423.409082][T11176] Invalid ELF header len 5 [ 425.345080][T11207] random: crng reseeded on system resumption [ 425.634967][T11217] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1038'. [ 425.815241][T11225] binder: 11224:11225 ioctl c0306201 200000000000 returned -14 [ 426.220868][T11233] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input35 [ 426.300483][T11235] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input36 [ 427.884346][T11258] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input37 [ 428.696629][T11271] binder: 11270:11271 ioctl c0306201 200000000000 returned -11 [ 430.665758][T11304] binder: 11300:11304 ioctl c0306201 200000000000 returned -14 [ 431.307119][T11309] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input38 [ 431.464940][T11314] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input39 [ 431.791350][T11313] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input40 [ 432.610444][T11342] FAULT_INJECTION: forcing a failure. [ 432.610444][T11342] name failslab, interval 1, probability 0, space 0, times 0 [ 432.640752][T11342] CPU: 0 UID: 0 PID: 11342 Comm: syz.0.1075 Not tainted syzkaller #0 PREEMPT(full) [ 432.640789][T11342] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 432.640804][T11342] Call Trace: [ 432.640812][T11342] [ 432.640822][T11342] dump_stack_lvl+0x16c/0x1f0 [ 432.640865][T11342] should_fail_ex+0x512/0x640 [ 432.640909][T11342] should_failslab+0xc2/0x120 [ 432.640943][T11342] __kmalloc_cache_noprof+0x6a/0x3e0 [ 432.640973][T11342] ? proc_thread_self_get_link+0x1c6/0x240 [ 432.641012][T11342] proc_thread_self_get_link+0x1c6/0x240 [ 432.641046][T11342] ? __pfx_proc_thread_self_get_link+0x10/0x10 [ 432.641079][T11342] step_into+0x195b/0x2270 [ 432.641113][T11342] ? __pfx_step_into+0x10/0x10 [ 432.641144][T11342] ? lookup_fast+0x156/0x610 [ 432.641174][T11342] walk_component+0xfc/0x5b0 [ 432.641203][T11342] link_path_walk+0x627/0xe20 [ 432.641245][T11342] path_openat+0x1b0/0x2cb0 [ 432.641271][T11342] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 432.641310][T11342] ? __pfx_path_openat+0x10/0x10 [ 432.641350][T11342] do_filp_open+0x20b/0x470 [ 432.641382][T11342] ? __pfx_do_filp_open+0x10/0x10 [ 432.641442][T11342] ? alloc_fd+0x471/0x7d0 [ 432.641481][T11342] do_sys_openat2+0x11b/0x1d0 [ 432.641528][T11342] ? __pfx_do_sys_openat2+0x10/0x10 [ 432.641582][T11342] __x64_sys_openat+0x174/0x210 [ 432.641607][T11342] ? __pfx___x64_sys_openat+0x10/0x10 [ 432.641629][T11342] ? ksys_write+0x1ac/0x250 [ 432.641671][T11342] do_syscall_64+0xcd/0x4c0 [ 432.641712][T11342] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 432.641737][T11342] RIP: 0033:0x7f27e0f8eec9 [ 432.641759][T11342] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 432.641784][T11342] RSP: 002b:00007f27e1db8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 432.641809][T11342] RAX: ffffffffffffffda RBX: 00007f27e11e5fa0 RCX: 00007f27e0f8eec9 [ 432.641827][T11342] RDX: 0000000000000000 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 432.641844][T11342] RBP: 00007f27e1011f91 R08: 0000000000000000 R09: 0000000000000000 [ 432.641860][T11342] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 432.641875][T11342] R13: 00007f27e11e6038 R14: 00007f27e11e5fa0 R15: 00007fff3a5fa418 [ 432.641910][T11342] [ 432.869674][ C0] vkms_vblank_simulate: vblank timer overrun [ 433.350900][T11349] random: crng reseeded on system resumption [ 433.573010][T11354] blktrace: Concurrent blktraces are not allowed on loop2 [ 433.661696][T11359] binder: 11357:11359 ioctl c0306201 200000000000 returned -11 [ 434.829516][T11379] FAULT_INJECTION: forcing a failure. [ 434.829516][T11379] name failslab, interval 1, probability 0, space 0, times 0 [ 434.894326][T11379] CPU: 0 UID: 0 PID: 11379 Comm: syz.3.1088 Not tainted syzkaller #0 PREEMPT(full) [ 434.894360][T11379] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 434.894376][T11379] Call Trace: [ 434.894386][T11379] [ 434.894397][T11379] dump_stack_lvl+0x16c/0x1f0 [ 434.894441][T11379] should_fail_ex+0x512/0x640 [ 434.894491][T11379] should_failslab+0xc2/0x120 [ 434.894523][T11379] __kmalloc_cache_noprof+0x6a/0x3e0 [ 434.894548][T11379] ? proc_thread_self_get_link+0x1c6/0x240 [ 434.894586][T11379] proc_thread_self_get_link+0x1c6/0x240 [ 434.894620][T11379] ? __pfx_proc_thread_self_get_link+0x10/0x10 [ 434.894649][T11379] step_into+0x195b/0x2270 [ 434.894683][T11379] ? __pfx_step_into+0x10/0x10 [ 434.894715][T11379] ? lookup_fast+0x156/0x610 [ 434.894748][T11379] walk_component+0xfc/0x5b0 [ 434.894778][T11379] link_path_walk+0x627/0xe20 [ 434.894818][T11379] path_openat+0x1b0/0x2cb0 [ 434.894847][T11379] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 434.894886][T11379] ? __pfx_path_openat+0x10/0x10 [ 434.894928][T11379] do_filp_open+0x20b/0x470 [ 434.894962][T11379] ? __pfx_do_filp_open+0x10/0x10 [ 434.895021][T11379] ? alloc_fd+0x471/0x7d0 [ 434.895061][T11379] do_sys_openat2+0x11b/0x1d0 [ 434.895110][T11379] ? __pfx_do_sys_openat2+0x10/0x10 [ 434.895164][T11379] __x64_sys_openat+0x174/0x210 [ 434.895189][T11379] ? __pfx___x64_sys_openat+0x10/0x10 [ 434.895228][T11379] do_syscall_64+0xcd/0x4c0 [ 434.895270][T11379] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 434.895295][T11379] RIP: 0033:0x7f17b738eec9 [ 434.895317][T11379] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 434.895343][T11379] RSP: 002b:00007f17b8256038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 434.895368][T11379] RAX: ffffffffffffffda RBX: 00007f17b75e5fa0 RCX: 00007f17b738eec9 [ 434.895387][T11379] RDX: 0000000000000000 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 434.895404][T11379] RBP: 00007f17b7411f91 R08: 0000000000000000 R09: 0000000000000000 [ 434.895420][T11379] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 434.895435][T11379] R13: 00007f17b75e6038 R14: 00007f17b75e5fa0 R15: 00007ffcbfcf73a8 [ 434.895471][T11379] [ 434.972984][T11377] Invalid ELF header magic: != ELF [ 434.976202][ C0] vkms_vblank_simulate: vblank timer overrun [ 435.981448][T11393] random: crng reseeded on system resumption [ 438.181346][T11417] blktrace: Concurrent blktraces are not allowed on loop2 [ 438.958274][T11438] Invalid ELF header magic: != ELF [ 440.006908][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 440.013344][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 442.243063][T11492] Invalid ELF header magic: != ELF [ 442.772298][T11504] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1114'. [ 444.259854][T11521] random: crng reseeded on system resumption [ 446.843447][T11568] FAULT_INJECTION: forcing a failure. [ 446.843447][T11568] name failslab, interval 1, probability 0, space 0, times 0 [ 446.856318][T11568] CPU: 1 UID: 0 PID: 11568 Comm: syz.3.1136 Not tainted syzkaller #0 PREEMPT(full) [ 446.856340][T11568] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 446.856349][T11568] Call Trace: [ 446.856354][T11568] [ 446.856360][T11568] dump_stack_lvl+0x16c/0x1f0 [ 446.856388][T11568] should_fail_ex+0x512/0x640 [ 446.856409][T11568] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 446.856426][T11568] should_failslab+0xc2/0x120 [ 446.856444][T11568] __kmalloc_cache_noprof+0x6a/0x3e0 [ 446.856459][T11568] ? _setid_policy_lookup+0x218/0x3e0 [ 446.856480][T11568] ? alloc_ucounts+0x13d/0x440 [ 446.856500][T11568] alloc_ucounts+0x13d/0x440 [ 446.856517][T11568] ? __pfx_alloc_ucounts+0x10/0x10 [ 446.856539][T11568] set_cred_ucounts+0xcd/0x200 [ 446.856561][T11568] __sys_setuid+0x2b6/0x440 [ 446.856577][T11568] do_syscall_64+0xcd/0x4c0 [ 446.856599][T11568] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 446.856614][T11568] RIP: 0033:0x7f17b738eec9 [ 446.856625][T11568] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 446.856639][T11568] RSP: 002b:00007f17b8256038 EFLAGS: 00000246 ORIG_RAX: 0000000000000069 [ 446.856652][T11568] RAX: ffffffffffffffda RBX: 00007f17b75e5fa0 RCX: 00007f17b738eec9 [ 446.856662][T11568] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000e [ 446.856670][T11568] RBP: 00007f17b7411f91 R08: 0000000000000000 R09: 0000000000000000 [ 446.856678][T11568] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 446.856686][T11568] R13: 00007f17b75e6038 R14: 00007f17b75e5fa0 R15: 00007ffcbfcf73a8 [ 446.856704][T11568] [ 448.711685][T11604] random: crng reseeded on system resumption [ 450.003791][T11612] netlink: 268 bytes leftover after parsing attributes in process `syz.1.1146'. [ 450.964342][T11642] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input43 [ 451.066358][T11642] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input44 [ 452.387592][T11666] random: crng reseeded on system resumption [ 452.874097][T11673] netlink: 268 bytes leftover after parsing attributes in process `syz.0.1164'. [ 455.491098][T11721] netlink: 268 bytes leftover after parsing attributes in process `syz.3.1176'. [ 456.349507][T11746] random: crng reseeded on system resumption [ 458.868300][T11779] svc: failed to register nfsdv3 RPC service (errno 111). [ 458.973748][T11779] svc: failed to register nfsaclv3 RPC service (errno 111). [ 460.413356][T11815] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input45 [ 460.585579][T11817] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input46 [ 462.229832][ T5866] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260 [ 462.229854][ T5866] Bluetooth: hci3: unexpected subevent 0x0e length: 725 > 15 [ 462.245638][ T5866] Bluetooth: hci3: Unable to find connection for dst 00:a2:f2:94:be:c8 sid 0x4f [ 462.632683][T11849] blktrace: Concurrent blktraces are not allowed on sg0 [ 462.833090][T11852] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input47 [ 462.965319][T11858] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input48 [ 464.789279][T11896] FAULT_INJECTION: forcing a failure. [ 464.789279][T11896] name failslab, interval 1, probability 0, space 0, times 0 [ 464.802315][T11896] CPU: 0 UID: 0 PID: 11896 Comm: syz.3.1216 Not tainted syzkaller #0 PREEMPT(full) [ 464.802337][T11896] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 464.802347][T11896] Call Trace: [ 464.802353][T11896] [ 464.802359][T11896] dump_stack_lvl+0x116/0x1f0 [ 464.802387][T11896] should_fail_ex+0x512/0x640 [ 464.802412][T11896] should_failslab+0xc2/0x120 [ 464.802433][T11896] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 464.802451][T11896] ? __send_signal_locked+0x159/0x12c0 [ 464.802466][T11896] ? sig_get_ucounts+0x1c0/0x5b0 [ 464.802486][T11896] __send_signal_locked+0x159/0x12c0 [ 464.802504][T11896] group_send_sig_info+0x2a4/0x300 [ 464.802523][T11896] ? __pfx_group_send_sig_info+0x10/0x10 [ 464.802545][T11896] ? kill_pid_info_type+0x1a/0x2a0 [ 464.802561][T11896] kill_pid_info_type+0x92/0x2a0 [ 464.802580][T11896] kill_proc_info+0x6f/0x1b0 [ 464.802598][T11896] kill_something_info+0x2a2/0x310 [ 464.802614][T11896] ? __task_pid_nr_ns+0x186/0x500 [ 464.802636][T11896] __x64_sys_kill+0xd7/0x140 [ 464.802654][T11896] ? __pfx___x64_sys_kill+0x10/0x10 [ 464.802677][T11896] ? rcu_is_watching+0x12/0xc0 [ 464.802693][T11896] do_syscall_64+0xcd/0x4c0 [ 464.802715][T11896] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 464.802730][T11896] RIP: 0033:0x7f17b738eec9 [ 464.802743][T11896] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 464.802757][T11896] RSP: 002b:00007f17b8256038 EFLAGS: 00000246 ORIG_RAX: 000000000000003e [ 464.802770][T11896] RAX: ffffffffffffffda RBX: 00007f17b75e5fa0 RCX: 00007f17b738eec9 [ 464.802780][T11896] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 00000000000004a9 [ 464.802789][T11896] RBP: 00007f17b7411f91 R08: 0000000000000000 R09: 0000000000000000 [ 464.802798][T11896] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 464.802806][T11896] R13: 00007f17b75e6038 R14: 00007f17b75e5fa0 R15: 00007ffcbfcf73a8 [ 464.802825][T11896] [ 464.998700][ C0] vkms_vblank_simulate: vblank timer overrun [ 465.563949][T11905] Invalid ELF header magic: != ELF [ 465.945195][T11910] blktrace: Concurrent blktraces are not allowed on sg0 [ 466.173692][T11923] random: crng reseeded on system resumption [ 467.079738][T11943] FAULT_INJECTION: forcing a failure. [ 467.079738][T11943] name failslab, interval 1, probability 0, space 0, times 0 [ 467.092707][T11943] CPU: 0 UID: 0 PID: 11943 Comm: syz.3.1229 Not tainted syzkaller #0 PREEMPT(full) [ 467.092729][T11943] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 467.092738][T11943] Call Trace: [ 467.092744][T11943] [ 467.092749][T11943] dump_stack_lvl+0x16c/0x1f0 [ 467.092775][T11943] should_fail_ex+0x512/0x640 [ 467.092796][T11943] ? __kmalloc_noprof+0xbf/0x510 [ 467.092815][T11943] ? lsm_blob_alloc+0x68/0x90 [ 467.092828][T11943] should_failslab+0xc2/0x120 [ 467.092847][T11943] __kmalloc_noprof+0xd2/0x510 [ 467.092867][T11943] lsm_blob_alloc+0x68/0x90 [ 467.092880][T11943] security_prepare_creds+0x30/0x270 [ 467.092901][T11943] prepare_creds+0x56f/0x7d0 [ 467.092923][T11943] __sys_setuid+0x9a/0x440 [ 467.092939][T11943] do_syscall_64+0xcd/0x4c0 [ 467.092961][T11943] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 467.092975][T11943] RIP: 0033:0x7f17b738eec9 [ 467.092987][T11943] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 467.093001][T11943] RSP: 002b:00007f17b8256038 EFLAGS: 00000246 ORIG_RAX: 0000000000000069 [ 467.093014][T11943] RAX: ffffffffffffffda RBX: 00007f17b75e5fa0 RCX: 00007f17b738eec9 [ 467.093024][T11943] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000e [ 467.093031][T11943] RBP: 00007f17b7411f91 R08: 0000000000000000 R09: 0000000000000000 [ 467.093040][T11943] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 467.093047][T11943] R13: 00007f17b75e6038 R14: 00007f17b75e5fa0 R15: 00007ffcbfcf73a8 [ 467.093065][T11943] [ 467.251360][ C0] vkms_vblank_simulate: vblank timer overrun [ 468.208575][T11958] blktrace: Concurrent blktraces are not allowed on sg0 [ 468.935201][T11980] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input49 [ 469.123453][T11985] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input50 [ 469.719966][T12000] random: crng reseeded on system resumption [ 469.804718][T11998] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input51 [ 469.905189][T11998] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input52 [ 470.420258][T12016] FAULT_INJECTION: forcing a failure. [ 470.420258][T12016] name failslab, interval 1, probability 0, space 0, times 0 [ 470.433011][T12016] CPU: 1 UID: 0 PID: 12016 Comm: syz.1.1248 Not tainted syzkaller #0 PREEMPT(full) [ 470.433033][T12016] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 470.433042][T12016] Call Trace: [ 470.433048][T12016] [ 470.433054][T12016] dump_stack_lvl+0x116/0x1f0 [ 470.433080][T12016] should_fail_ex+0x512/0x640 [ 470.433105][T12016] should_failslab+0xc2/0x120 [ 470.433125][T12016] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 470.433143][T12016] ? __send_signal_locked+0x159/0x12c0 [ 470.433157][T12016] ? sig_get_ucounts+0x1c0/0x5b0 [ 470.433179][T12016] __send_signal_locked+0x159/0x12c0 [ 470.433197][T12016] group_send_sig_info+0x2a4/0x300 [ 470.433214][T12016] ? __pfx_group_send_sig_info+0x10/0x10 [ 470.433237][T12016] ? kill_pid_info_type+0x1a/0x2a0 [ 470.433252][T12016] kill_pid_info_type+0x92/0x2a0 [ 470.433272][T12016] kill_proc_info+0x6f/0x1b0 [ 470.433289][T12016] kill_something_info+0x2a2/0x310 [ 470.433306][T12016] ? __task_pid_nr_ns+0x186/0x500 [ 470.433327][T12016] __x64_sys_kill+0xd7/0x140 [ 470.433345][T12016] ? __pfx___x64_sys_kill+0x10/0x10 [ 470.433367][T12016] ? trace_irq_enable.constprop.0+0x2f/0x120 [ 470.433391][T12016] do_syscall_64+0xcd/0x4c0 [ 470.433413][T12016] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 470.433428][T12016] RIP: 0033:0x7f3e13b8eec9 [ 470.433441][T12016] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 470.433454][T12016] RSP: 002b:00007f3e14aad038 EFLAGS: 00000246 ORIG_RAX: 000000000000003e [ 470.433468][T12016] RAX: ffffffffffffffda RBX: 00007f3e13de5fa0 RCX: 00007f3e13b8eec9 [ 470.433478][T12016] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 00000000000004c2 [ 470.433487][T12016] RBP: 00007f3e13c11f91 R08: 0000000000000000 R09: 0000000000000000 [ 470.433496][T12016] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 470.433504][T12016] R13: 00007f3e13de6038 R14: 00007f3e13de5fa0 R15: 00007ffd3ab2d8b8 [ 470.433523][T12016] [ 471.827597][T12036] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input53 [ 472.025122][T12045] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input54 [ 472.482155][T12039] Invalid ELF header magic: != ELF [ 472.721555][ T5873] Bluetooth: hci3: command 0x0406 tx timeout [ 472.872456][T12058] random: crng reseeded on system resumption [ 473.079901][T12065] FAULT_INJECTION: forcing a failure. [ 473.079901][T12065] name failslab, interval 1, probability 0, space 0, times 0 [ 473.093241][T12065] CPU: 1 UID: 0 PID: 12065 Comm: syz.0.1263 Not tainted syzkaller #0 PREEMPT(full) [ 473.093263][T12065] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 473.093273][T12065] Call Trace: [ 473.093278][T12065] [ 473.093284][T12065] dump_stack_lvl+0x16c/0x1f0 [ 473.093311][T12065] should_fail_ex+0x512/0x640 [ 473.093333][T12065] ? __kmalloc_noprof+0xbf/0x510 [ 473.093353][T12065] ? lsm_blob_alloc+0x68/0x90 [ 473.093364][T12065] should_failslab+0xc2/0x120 [ 473.093383][T12065] __kmalloc_noprof+0xd2/0x510 [ 473.093403][T12065] lsm_blob_alloc+0x68/0x90 [ 473.093416][T12065] security_prepare_creds+0x30/0x270 [ 473.093437][T12065] prepare_creds+0x56f/0x7d0 [ 473.093459][T12065] __sys_setuid+0x9a/0x440 [ 473.093476][T12065] do_syscall_64+0xcd/0x4c0 [ 473.093506][T12065] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 473.093522][T12065] RIP: 0033:0x7f27e0f8eec9 [ 473.093534][T12065] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 473.093548][T12065] RSP: 002b:00007f27e1db8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000069 [ 473.093562][T12065] RAX: ffffffffffffffda RBX: 00007f27e11e5fa0 RCX: 00007f27e0f8eec9 [ 473.093572][T12065] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000e [ 473.093579][T12065] RBP: 00007f27e1011f91 R08: 0000000000000000 R09: 0000000000000000 [ 473.093587][T12065] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 473.093595][T12065] R13: 00007f27e11e6038 R14: 00007f27e11e5fa0 R15: 00007fff3a5fa418 [ 473.093614][T12065] [ 473.563416][T12069] FAULT_INJECTION: forcing a failure. [ 473.563416][T12069] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 473.576891][T12069] CPU: 1 UID: 0 PID: 12069 Comm: syz.4.1264 Not tainted syzkaller #0 PREEMPT(full) [ 473.576924][T12069] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 473.576939][T12069] Call Trace: [ 473.576947][T12069] [ 473.576955][T12069] dump_stack_lvl+0x16c/0x1f0 [ 473.576997][T12069] should_fail_ex+0x512/0x640 [ 473.577039][T12069] copy_fpstate_to_sigframe+0x854/0xaf0 [ 473.577079][T12069] ? __pfx_copy_fpstate_to_sigframe+0x10/0x10 [ 473.577120][T12069] ? collect_signal+0x263/0x540 [ 473.577151][T12069] ? x86_task_fpu+0x5f/0x90 [ 473.577179][T12069] get_sigframe+0x4a8/0x9c0 [ 473.577212][T12069] ? __pfx_get_sigframe+0x10/0x10 [ 473.577242][T12069] ? _raw_spin_unlock_irq+0x23/0x50 [ 473.577275][T12069] ? siginfo_layout+0x1d2/0x290 [ 473.577301][T12069] x64_setup_rt_frame+0x12e/0xcf0 [ 473.577329][T12069] ? kill_pid_info_type+0xea/0x2a0 [ 473.577361][T12069] ? __pfx_x64_setup_rt_frame+0x10/0x10 [ 473.577405][T12069] ? kill_pid_info_type+0x102/0x2a0 [ 473.577444][T12069] arch_do_signal_or_restart+0x5b4/0x790 [ 473.577473][T12069] ? __task_pid_nr_ns+0x186/0x500 [ 473.577508][T12069] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 473.577559][T12069] exit_to_user_mode_loop+0x84/0x110 [ 473.577597][T12069] do_syscall_64+0x41c/0x4c0 [ 473.577636][T12069] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 473.577661][T12069] RIP: 0033:0x7ff6c5b8eec9 [ 473.577681][T12069] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 473.577705][T12069] RSP: 002b:00007ff6c69ca038 EFLAGS: 00000246 ORIG_RAX: 000000000000003e [ 473.577729][T12069] RAX: 0000000000000000 RBX: 00007ff6c5de5fa0 RCX: 00007ff6c5b8eec9 [ 473.577746][T12069] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 000000000000016f [ 473.577761][T12069] RBP: 00007ff6c5c11f91 R08: 0000000000000000 R09: 0000000000000000 [ 473.577777][T12069] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 473.577792][T12069] R13: 00007ff6c5de6038 R14: 00007ff6c5de5fa0 R15: 00007fff05defb78 [ 473.577827][T12069] [ 473.818456][T12052] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input55 [ 474.191311][T12061] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input56 [ 475.191625][T12088] Invalid ELF header magic: != ELF [ 475.961438][T12113] random: crng reseeded on system resumption [ 475.964461][T12111] blktrace: Concurrent blktraces are not allowed on sg0 [ 477.047133][T12125] zswap: compressor not available [ 478.233710][T12145] Invalid ELF header magic: != ELF [ 478.357330][T12162] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input57 [ 478.717508][T12163] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input58 [ 478.755795][T12168] blktrace: Concurrent blktraces are not allowed on sg0 [ 478.784596][T12166] CIFS: VFS: Invalid SecurityFlags: 0x00 [ 480.918851][T12215] blktrace: Concurrent blktraces are not allowed on sg0 [ 481.915320][T12238] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input59 [ 482.093816][T12239] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input60 [ 482.307471][T12241] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 482.339804][T12243] CIFS: VFS: Invalid SecurityFlags: 0x00 [ 482.449778][T12249] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input61 [ 482.638369][T12252] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input62 [ 482.736422][T10885] udevd[10885]: setting owner of /dev/input/event4 to uid=0, gid=104 failed: No such file or directory [ 483.083046][T12257] blktrace: Concurrent blktraces are not allowed on sg0 [ 484.457034][T12294] FAULT_INJECTION: forcing a failure. [ 484.457034][T12294] name fail_futex, interval 1, probability 0, space 0, times 0 [ 484.472391][T12294] CPU: 1 UID: 0 PID: 12294 Comm: syz.3.1320 Not tainted syzkaller #0 PREEMPT(full) [ 484.472424][T12294] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 484.472438][T12294] Call Trace: [ 484.472447][T12294] [ 484.472457][T12294] dump_stack_lvl+0x16c/0x1f0 [ 484.472500][T12294] should_fail_ex+0x512/0x640 [ 484.472544][T12294] should_fail_futex+0x4c/0x60 [ 484.472573][T12294] __x64_sys_futex+0x25e/0x4c0 [ 484.472607][T12294] ? fdget_pos+0x2b8/0x370 [ 484.472636][T12294] ? __pfx___x64_sys_futex+0x10/0x10 [ 484.472667][T12294] ? ksys_write+0x1ac/0x250 [ 484.472695][T12294] ? __pfx_ksys_write+0x10/0x10 [ 484.472733][T12294] do_syscall_64+0xcd/0x4c0 [ 484.472768][T12294] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 484.472792][T12294] RIP: 0033:0x7f17b738eec9 [ 484.472812][T12294] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 484.472836][T12294] RSP: 002b:00007f17b8256038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 484.472861][T12294] RAX: ffffffffffffffda RBX: 00007f17b75e5fa0 RCX: 00007f17b738eec9 [ 484.472879][T12294] RDX: 0000000000000004 RSI: 000000000000000d RDI: 0000000000000000 [ 484.472895][T12294] RBP: 00007f17b7411f91 R08: 0000000000000000 R09: 0000000000000008 [ 484.472911][T12294] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000 [ 484.472928][T12294] R13: 00007f17b75e6038 R14: 00007f17b75e5fa0 R15: 00007ffcbfcf73a8 [ 484.472962][T12294] [ 485.772798][T12309] zswap: compressor not available [ 486.766202][T12338] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input63 [ 486.926749][T12343] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input64 [ 487.326075][T12346] openvswitch: netlink: IP tunnel dst address not specified [ 488.846696][T12375] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input65 [ 488.932655][T12379] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input66 [ 490.630038][T12415] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input67 [ 491.388092][T12416] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input68 [ 491.981854][T12436] FAULT_INJECTION: forcing a failure. [ 491.981854][T12436] name failslab, interval 1, probability 0, space 0, times 0 [ 491.995151][T12436] CPU: 0 UID: 0 PID: 12436 Comm: syz.4.1366 Not tainted syzkaller #0 PREEMPT(full) [ 491.995184][T12436] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 491.995199][T12436] Call Trace: [ 491.995208][T12436] [ 491.995217][T12436] dump_stack_lvl+0x16c/0x1f0 [ 491.995256][T12436] should_fail_ex+0x512/0x640 [ 491.995292][T12436] ? __kmalloc_noprof+0xbf/0x510 [ 491.995322][T12436] ? inotify_handle_inode_event+0x1cf/0x6f0 [ 491.995355][T12436] should_failslab+0xc2/0x120 [ 491.995387][T12436] __kmalloc_noprof+0xd2/0x510 [ 491.995411][T12436] ? stack_trace_save+0x8e/0xc0 [ 491.995442][T12436] inotify_handle_inode_event+0x1cf/0x6f0 [ 491.995483][T12436] ? __pfx_inotify_handle_inode_event+0x10/0x10 [ 491.995519][T12436] fsnotify_handle_inode_event.isra.0+0x1df/0x3f0 [ 491.995553][T12436] fsnotify+0x13d6/0x1dc0 [ 491.995589][T12436] ? __pfx_fsnotify+0x10/0x10 [ 491.995629][T12436] __fsnotify_parent+0x7c7/0xc40 [ 491.995673][T12436] ? __pfx___fsnotify_parent+0x10/0x10 [ 491.995712][T12436] ? __pfx___might_resched+0x10/0x10 [ 491.995747][T12436] ? __fput+0x30d/0xb70 [ 491.995777][T12436] __fput+0x30d/0xb70 [ 491.995816][T12436] task_work_run+0x14d/0x240 [ 491.995855][T12436] ? __pfx_task_work_run+0x10/0x10 [ 491.995893][T12436] ? __pfx___do_sys_close_range+0x10/0x10 [ 491.995930][T12436] exit_to_user_mode_loop+0xeb/0x110 [ 491.995968][T12436] do_syscall_64+0x41c/0x4c0 [ 491.996009][T12436] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 491.996033][T12436] RIP: 0033:0x7ff6c5b8eec9 [ 491.996054][T12436] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 491.996080][T12436] RSP: 002b:00007ff6c69ca038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 491.996108][T12436] RAX: 0000000000000000 RBX: 00007ff6c5de5fa0 RCX: 00007ff6c5b8eec9 [ 491.996124][T12436] RDX: 0000000000000000 RSI: 000000000000000a RDI: 0000000000000002 [ 491.996138][T12436] RBP: 00007ff6c5c11f91 R08: 0000000000000000 R09: 0000000000000000 [ 491.996151][T12436] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 491.996164][T12436] R13: 00007ff6c5de6038 R14: 00007ff6c5de5fa0 R15: 00007fff05defb78 [ 491.996198][T12436] [ 492.213303][ C0] vkms_vblank_simulate: vblank timer overrun [ 493.596786][T12472] size and base must be multiples of 4 kiB [ 493.602885][T12472] CPU: 1 UID: 0 PID: 12472 Comm: syz.4.1377 Not tainted syzkaller #0 PREEMPT(full) [ 493.602922][T12472] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 493.602939][T12472] Call Trace: [ 493.602948][T12472] [ 493.602959][T12472] dump_stack_lvl+0x16c/0x1f0 [ 493.603006][T12472] mtrr_del+0xd1/0x110 [ 493.603043][T12472] mtrr_ioctl+0x922/0xcf0 [ 493.603080][T12472] ? __pfx_mtrr_ioctl+0x10/0x10 [ 493.603124][T12472] ? find_held_lock+0x2b/0x80 [ 493.603162][T12472] ? __fget_files+0x20e/0x3c0 [ 493.603192][T12472] ? __pfx_mtrr_ioctl+0x10/0x10 [ 493.603227][T12472] proc_reg_unlocked_ioctl+0x229/0x320 [ 493.603262][T12472] ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10 [ 493.603300][T12472] __x64_sys_ioctl+0x18b/0x210 [ 493.603341][T12472] do_syscall_64+0xcd/0x4c0 [ 493.603382][T12472] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 493.603408][T12472] RIP: 0033:0x7ff6c5b8eec9 [ 493.603429][T12472] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 493.603454][T12472] RSP: 002b:00007ff6c69ca038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 493.603479][T12472] RAX: ffffffffffffffda RBX: 00007ff6c5de5fa0 RCX: 00007ff6c5b8eec9 [ 493.603496][T12472] RDX: 0000000000000004 RSI: 00000000400c4d04 RDI: 0000000000000004 [ 493.603512][T12472] RBP: 00007ff6c5c11f91 R08: 0000000000000000 R09: 0000000000000000 [ 493.603528][T12472] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 493.603551][T12472] R13: 00007ff6c5de6038 R14: 00007ff6c5de5fa0 R15: 00007fff05defb78 [ 493.603587][T12472] [ 493.911212][T12467] zswap: compressor not available [ 494.006583][T12478] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input69 [ 494.378051][T12481] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input70 [ 495.819409][T12513] blktrace: Concurrent blktraces are not allowed on sg0 [ 496.511024][T12528] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input71 [ 496.582832][T12529] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input72 [ 498.304240][T12561] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 498.456923][T12566] random: crng reseeded on system resumption [ 498.564185][T12568] blktrace: Concurrent blktraces are not allowed on sg0 [ 498.800086][T12571] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input73 [ 498.967931][T12583] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input74 [ 499.787305][T12595] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 501.077807][T12621] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input75 [ 501.164459][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 501.170809][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 501.227593][T12622] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input76 [ 501.484286][T12634] size and base must be multiples of 4 kiB [ 501.492176][T12634] CPU: 1 UID: 0 PID: 12634 Comm: syz.1.1424 Not tainted syzkaller #0 PREEMPT(full) [ 501.492210][T12634] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 501.492226][T12634] Call Trace: [ 501.492235][T12634] [ 501.492245][T12634] dump_stack_lvl+0x16c/0x1f0 [ 501.492290][T12634] mtrr_del+0xd1/0x110 [ 501.492325][T12634] mtrr_ioctl+0x922/0xcf0 [ 501.492357][T12634] ? __pfx_mtrr_ioctl+0x10/0x10 [ 501.492399][T12634] ? find_held_lock+0x2b/0x80 [ 501.492438][T12634] ? __fget_files+0x20e/0x3c0 [ 501.492467][T12634] ? __pfx_mtrr_ioctl+0x10/0x10 [ 501.492503][T12634] proc_reg_unlocked_ioctl+0x229/0x320 [ 501.492538][T12634] ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10 [ 501.492578][T12634] __x64_sys_ioctl+0x18b/0x210 [ 501.492619][T12634] do_syscall_64+0xcd/0x4c0 [ 501.492660][T12634] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 501.492684][T12634] RIP: 0033:0x7f3e13b8eec9 [ 501.492704][T12634] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 501.492730][T12634] RSP: 002b:00007f3e14aad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 501.492755][T12634] RAX: ffffffffffffffda RBX: 00007f3e13de5fa0 RCX: 00007f3e13b8eec9 [ 501.492781][T12634] RDX: 0000000000000004 RSI: 00000000400c4d04 RDI: 0000000000000004 [ 501.492797][T12634] RBP: 00007f3e13c11f91 R08: 0000000000000000 R09: 0000000000000000 [ 501.492812][T12634] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 501.492828][T12634] R13: 00007f3e13de6038 R14: 00007f3e13de5fa0 R15: 00007ffd3ab2d8b8 [ 501.492863][T12634] [ 504.091043][T12673] size and base must be multiples of 4 kiB [ 504.098489][T12673] CPU: 0 UID: 0 PID: 12673 Comm: syz.0.1434 Not tainted syzkaller #0 PREEMPT(full) [ 504.098513][T12673] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 504.098522][T12673] Call Trace: [ 504.098529][T12673] [ 504.098535][T12673] dump_stack_lvl+0x16c/0x1f0 [ 504.098563][T12673] mtrr_del+0xd1/0x110 [ 504.098583][T12673] mtrr_ioctl+0x922/0xcf0 [ 504.098603][T12673] ? __pfx_mtrr_ioctl+0x10/0x10 [ 504.098627][T12673] ? find_held_lock+0x2b/0x80 [ 504.098646][T12673] ? __fget_files+0x20e/0x3c0 [ 504.098663][T12673] ? __pfx_mtrr_ioctl+0x10/0x10 [ 504.098681][T12673] proc_reg_unlocked_ioctl+0x229/0x320 [ 504.098706][T12673] ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10 [ 504.098728][T12673] __x64_sys_ioctl+0x18b/0x210 [ 504.098752][T12673] do_syscall_64+0xcd/0x4c0 [ 504.098774][T12673] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 504.098788][T12673] RIP: 0033:0x7f27e0f8eec9 [ 504.098800][T12673] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 504.098813][T12673] RSP: 002b:00007f27e1db8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 504.098827][T12673] RAX: ffffffffffffffda RBX: 00007f27e11e5fa0 RCX: 00007f27e0f8eec9 [ 504.098837][T12673] RDX: 0000000000000004 RSI: 00000000400c4d04 RDI: 0000000000000004 [ 504.098845][T12673] RBP: 00007f27e1011f91 R08: 0000000000000000 R09: 0000000000000000 [ 504.098854][T12673] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 504.098862][T12673] R13: 00007f27e11e6038 R14: 00007f27e11e5fa0 R15: 00007fff3a5fa418 [ 504.098880][T12673] [ 504.258370][ C0] vkms_vblank_simulate: vblank timer overrun [ 505.825972][T12703] random: crng reseeded on system resumption [ 506.414285][ T1335] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 506.572367][ T1335] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 506.865134][ T1335] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 507.193202][ T1335] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 507.930069][T12735] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input77 [ 508.028483][ T5873] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 508.037250][ T5873] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 508.046569][ T5873] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 508.063781][ T5873] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 508.076400][ T5873] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 508.223653][T12736] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input78 [ 508.555133][T12749] FAULT_INJECTION: forcing a failure. [ 508.555133][T12749] name failslab, interval 1, probability 0, space 0, times 0 [ 508.588811][T12749] CPU: 0 UID: 0 PID: 12749 Comm: syz.0.1459 Not tainted syzkaller #0 PREEMPT(full) [ 508.588847][T12749] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 508.588862][T12749] Call Trace: [ 508.588870][T12749] [ 508.588880][T12749] dump_stack_lvl+0x16c/0x1f0 [ 508.588924][T12749] should_fail_ex+0x512/0x640 [ 508.588962][T12749] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 508.589000][T12749] should_failslab+0xc2/0x120 [ 508.589034][T12749] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 508.589075][T12749] ? __d_alloc+0x32/0xae0 [ 508.589114][T12749] __d_alloc+0x32/0xae0 [ 508.589151][T12749] d_alloc_parallel+0x111/0x1480 [ 508.589206][T12749] ? __pfx_d_alloc_parallel+0x10/0x10 [ 508.589249][T12749] ? lockdep_init_map_type+0x5c/0x280 [ 508.589291][T12749] ? lockdep_init_map_type+0x5c/0x280 [ 508.589331][T12749] __lookup_slow+0x193/0x460 [ 508.589371][T12749] ? __pfx___lookup_slow+0x10/0x10 [ 508.589414][T12749] ? perf_trace_mm_compaction_suitable_template+0x110/0x5e0 [ 508.589461][T12749] ? perf_trace_mm_compaction_suitable_template+0x110/0x5e0 [ 508.589499][T12749] ? d_lookup+0xe7/0x190 [ 508.589544][T12749] lookup_noperm+0xe1/0x110 [ 508.589583][T12749] simple_start_creating+0xd1/0x1b0 [ 508.589615][T12749] start_creating.part.0+0x82/0x190 [ 508.589647][T12749] __debugfs_create_file+0xa7/0x6b0 [ 508.589681][T12749] debugfs_create_file_full+0x41/0x60 [ 508.589717][T12749] ref_tracker_dir_debugfs+0x19d/0x290 [ 508.589743][T12749] ? __pfx_ref_tracker_dir_debugfs+0x10/0x10 [ 508.589804][T12749] ? lockdep_init_map_type+0x5c/0x280 [ 508.589845][T12749] preinit_net+0x296/0x8f0 [ 508.589883][T12749] copy_net_ns+0x1da/0x5f0 [ 508.589914][T12749] create_new_namespaces+0x3ea/0xa90 [ 508.589953][T12749] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 508.589986][T12749] ksys_unshare+0x45b/0xa40 [ 508.590021][T12749] ? __pfx_ksys_unshare+0x10/0x10 [ 508.590063][T12749] ? xfd_validate_state+0x61/0x180 [ 508.590112][T12749] __x64_sys_unshare+0x31/0x40 [ 508.590147][T12749] do_syscall_64+0xcd/0x4c0 [ 508.590189][T12749] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 508.590215][T12749] RIP: 0033:0x7f27e0f8eec9 [ 508.590236][T12749] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 508.590262][T12749] RSP: 002b:00007f27e1db8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 508.590287][T12749] RAX: ffffffffffffffda RBX: 00007f27e11e5fa0 RCX: 00007f27e0f8eec9 [ 508.590304][T12749] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 508.590321][T12749] RBP: 00007f27e1011f91 R08: 0000000000000000 R09: 0000000000000000 [ 508.590337][T12749] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 508.590352][T12749] R13: 00007f27e11e6038 R14: 00007f27e11e5fa0 R15: 00007fff3a5fa418 [ 508.590389][T12749] [ 509.895759][ T1335] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 509.913026][ T1335] bond0 (unregistering): Released all slaves [ 510.141007][ T5873] Bluetooth: hci1: command tx timeout [ 511.304861][T12790] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1467'. [ 512.211348][ T5873] Bluetooth: hci1: command tx timeout [ 512.263984][T12734] chnl_net:caif_netlink_parms(): no params data found [ 512.445954][T12826] netlink: 334 bytes leftover after parsing attributes in process `syz.4.1479'. [ 513.053002][ T1335] hsr_slave_0: left promiscuous mode [ 513.287110][ T1335] hsr_slave_1: left promiscuous mode [ 513.299213][ T1335] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 513.320423][ T1335] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 513.424306][ T1335] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 513.595570][ T1335] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 513.789365][ T1335] veth1_macvtap: left promiscuous mode [ 513.802844][ T1335] veth0_macvtap: left promiscuous mode [ 513.818568][ T1335] veth1_vlan: left promiscuous mode [ 513.831447][ T1335] veth0_vlan: left promiscuous mode [ 514.281717][ T5873] Bluetooth: hci1: command tx timeout [ 515.699404][ T1335] team0 (unregistering): Port device team_slave_1 removed [ 515.763808][ T1335] team0 (unregistering): Port device team_slave_0 removed [ 516.362072][ T5873] Bluetooth: hci1: command tx timeout [ 516.378781][T12734] bridge0: port 1(bridge_slave_0) entered blocking state [ 516.393542][T12734] bridge0: port 1(bridge_slave_0) entered disabled state [ 516.400732][T12734] bridge_slave_0: entered allmulticast mode [ 516.424408][T12734] bridge_slave_0: entered promiscuous mode [ 516.457326][T12734] bridge0: port 2(bridge_slave_1) entered blocking state [ 516.472498][T12734] bridge0: port 2(bridge_slave_1) entered disabled state [ 516.517917][T12885] netlink: 334 bytes leftover after parsing attributes in process `syz.0.1492'. [ 516.528700][T12734] bridge_slave_1: entered allmulticast mode [ 516.543253][T12734] bridge_slave_1: entered promiscuous mode [ 516.869545][T12900] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input79 [ 516.926602][T12734] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 517.030252][T12901] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input80 [ 517.035052][T12734] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 517.684537][T12734] team0: Port device team_slave_0 added [ 517.803710][T12734] team0: Port device team_slave_1 added [ 518.248077][T12925] FAULT_INJECTION: forcing a failure. [ 518.248077][T12925] name failslab, interval 1, probability 0, space 0, times 0 [ 518.253039][T12734] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 518.266455][T12925] CPU: 0 UID: 0 PID: 12925 Comm: syz.3.1503 Not tainted syzkaller #0 PREEMPT(full) [ 518.266492][T12925] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 518.266508][T12925] Call Trace: [ 518.266516][T12925] [ 518.266527][T12925] dump_stack_lvl+0x16c/0x1f0 [ 518.266572][T12925] should_fail_ex+0x512/0x640 [ 518.266610][T12925] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 518.266647][T12925] should_failslab+0xc2/0x120 [ 518.266679][T12925] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 518.266711][T12925] ? __d_alloc+0x32/0xae0 [ 518.266745][T12925] __d_alloc+0x32/0xae0 [ 518.266774][T12925] ? file_init_path+0x4fe/0x760 [ 518.266810][T12925] d_alloc_pseudo+0x1c/0xc0 [ 518.266847][T12925] alloc_file_pseudo+0xcf/0x230 [ 518.266885][T12925] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 518.266923][T12925] ? __pfx_unix_socketpair+0x10/0x10 [ 518.266966][T12925] sock_alloc_file+0x50/0x210 [ 518.266991][T12925] __sys_socketpair+0x34e/0x5a0 [ 518.267024][T12925] ? __pfx___sys_socketpair+0x10/0x10 [ 518.267055][T12925] ? __pfx___x64_sys_futex+0x10/0x10 [ 518.267088][T12925] ? __pfx_do_writev+0x10/0x10 [ 518.267120][T12925] __x64_sys_socketpair+0x96/0x100 [ 518.267150][T12925] ? lockdep_hardirqs_on+0x7c/0x110 [ 518.267184][T12925] do_syscall_64+0xcd/0x4c0 [ 518.267224][T12925] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 518.267250][T12925] RIP: 0033:0x7f17b738eec9 [ 518.267270][T12925] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 518.267295][T12925] RSP: 002b:00007f17b8256038 EFLAGS: 00000246 ORIG_RAX: 0000000000000035 [ 518.267318][T12925] RAX: ffffffffffffffda RBX: 00007f17b75e5fa0 RCX: 00007f17b738eec9 [ 518.267336][T12925] RDX: 8000000000000000 RSI: 0000000000000002 RDI: 0000000000000001 [ 518.267352][T12925] RBP: 00007f17b7411f91 R08: 0000000000000000 R09: 0000000000000000 [ 518.267375][T12925] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 518.267390][T12925] R13: 00007f17b75e6038 R14: 00007f17b75e5fa0 R15: 00007ffcbfcf73a8 [ 518.267424][T12925] [ 518.429500][T12929] i2c i2c-0: dvb_frontend_start: failed to start kthread (-4) [ 518.485044][T12734] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 518.535994][T12734] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 518.609020][T12734] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 518.627263][T12734] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 518.653268][ C1] vkms_vblank_simulate: vblank timer overrun [ 518.690029][T12734] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 518.877474][T12734] hsr_slave_0: entered promiscuous mode [ 518.992672][T12949] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input81 [ 519.112867][T12950] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input82 [ 519.146300][T12734] hsr_slave_1: entered promiscuous mode [ 519.219115][T12734] debugfs: 'hsr0' already exists in 'hsr' [ 519.225041][T12734] Cannot create hsr debugfs directory [ 520.392432][T12972] zswap: compressor not available [ 520.725699][T12734] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 520.738747][T12734] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 520.880675][T12734] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 521.014130][T12734] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 521.234709][T12734] 8021q: adding VLAN 0 to HW filter on device bond0 [ 521.290541][T12734] 8021q: adding VLAN 0 to HW filter on device team0 [ 521.394212][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 521.401441][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 521.431858][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 521.439087][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 522.332048][T13025] blktrace: Concurrent blktraces are not allowed on sg0 [ 522.565631][T12734] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 522.872078][T13044] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input83 [ 523.019978][T13049] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input84 [ 523.298298][T12734] veth0_vlan: entered promiscuous mode [ 523.315888][T12734] veth1_vlan: entered promiscuous mode [ 523.412424][T12734] veth0_macvtap: entered promiscuous mode [ 523.429429][T12734] veth1_macvtap: entered promiscuous mode [ 523.894016][T12734] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 523.909901][T12734] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 523.926707][ T1335] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 523.941107][ T1335] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 524.009889][ T1335] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 524.024227][ T1335] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 524.097300][ T1335] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 524.181320][ T1335] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 524.214728][ T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 524.224003][ T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 524.502482][ T5873] Bluetooth: hci1: unexpected event 0x14 length: 16 > 6 [ 525.192213][T13088] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input86 [ 525.372474][T13091] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input87 [ 526.502496][T13120] FAULT_INJECTION: forcing a failure. [ 526.502496][T13120] name failslab, interval 1, probability 0, space 0, times 0 [ 526.519960][T13120] CPU: 1 UID: 0 PID: 13120 Comm: syz.4.1553 Not tainted syzkaller #0 PREEMPT(full) [ 526.519997][T13120] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 526.520012][T13120] Call Trace: [ 526.520021][T13120] [ 526.520030][T13120] dump_stack_lvl+0x16c/0x1f0 [ 526.520057][T13120] should_fail_ex+0x512/0x640 [ 526.520080][T13120] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 526.520097][T13120] ? __pfx_sc_fop_open+0x10/0x10 [ 526.520117][T13120] should_failslab+0xc2/0x120 [ 526.520135][T13120] __kmalloc_cache_noprof+0x6a/0x3e0 [ 526.520150][T13120] ? __pfx___debugfs_file_get+0x10/0x10 [ 526.520170][T13120] ? sc_common_open+0x46/0x200 [ 526.520189][T13120] ? __pfx_apparmor_file_open+0x10/0x10 [ 526.520205][T13120] ? __pfx_sc_fop_open+0x10/0x10 [ 526.520224][T13120] sc_common_open+0x46/0x200 [ 526.520244][T13120] full_proxy_open_regular+0x1b9/0x360 [ 526.520260][T13120] do_dentry_open+0x97f/0x1530 [ 526.520277][T13120] ? __pfx_full_proxy_open_regular+0x10/0x10 [ 526.520295][T13120] vfs_open+0x82/0x3f0 [ 526.520317][T13120] path_openat+0x1de4/0x2cb0 [ 526.520340][T13120] ? __pfx_path_openat+0x10/0x10 [ 526.520361][T13120] do_filp_open+0x20b/0x470 [ 526.520377][T13120] ? __pfx_do_filp_open+0x10/0x10 [ 526.520406][T13120] ? alloc_fd+0x471/0x7d0 [ 526.520426][T13120] do_sys_openat2+0x11b/0x1d0 [ 526.520446][T13120] ? __pfx_do_sys_openat2+0x10/0x10 [ 526.520473][T13120] __x64_sys_openat+0x174/0x210 [ 526.520486][T13120] ? __pfx___x64_sys_openat+0x10/0x10 [ 526.520506][T13120] do_syscall_64+0xcd/0x4c0 [ 526.520533][T13120] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 526.520548][T13120] RIP: 0033:0x7ff6c5b8eec9 [ 526.520560][T13120] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 526.520574][T13120] RSP: 002b:00007ff6c69ca038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 526.520588][T13120] RAX: ffffffffffffffda RBX: 00007ff6c5de5fa0 RCX: 00007ff6c5b8eec9 [ 526.520604][T13120] RDX: 0000000000088080 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 526.520613][T13120] RBP: 00007ff6c5c11f91 R08: 0000000000000000 R09: 0000000000000000 [ 526.520622][T13120] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 526.520631][T13120] R13: 00007ff6c5de6038 R14: 00007ff6c5de5fa0 R15: 00007fff05defb78 [ 526.520649][T13120] [ 526.752895][ C1] vkms_vblank_simulate: vblank timer overrun [ 527.242684][ T5931] smpboot: CPU 0 is now offline [ 530.486233][T13209] FAULT_INJECTION: forcing a failure. [ 530.486233][T13209] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 530.513205][T13209] CPU: 1 UID: 0 PID: 13209 Comm: syz.0.1588 Not tainted syzkaller #0 PREEMPT(full) [ 530.513229][T13209] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 530.513238][T13209] Call Trace: [ 530.513244][T13209] [ 530.513249][T13209] dump_stack_lvl+0x16c/0x1f0 [ 530.513275][T13209] should_fail_ex+0x512/0x640 [ 530.513300][T13209] _copy_to_iter+0x463/0x1710 [ 530.513320][T13209] ? __pfx__copy_to_iter+0x10/0x10 [ 530.513336][T13209] ? __lock_acquire+0xb97/0x1ce0 [ 530.513354][T13209] ? const_folio_flags+0x5b/0x100 [ 530.513371][T13209] ? folio_mark_accessed+0xc1/0xc00 [ 530.513389][T13209] ? __pfx_folio_mark_accessed+0x10/0x10 [ 530.513412][T13209] copy_page_to_iter+0x12a/0x1e0 [ 530.513429][T13209] filemap_read+0x6b1/0xe40 [ 530.513456][T13209] ? __pfx_filemap_read+0x10/0x10 [ 530.513488][T13209] ? __pfx_down_read+0x10/0x10 [ 530.513503][T13209] ? __pfx_aa_file_perm+0x10/0x10 [ 530.513526][T13209] blkdev_read_iter+0x1ac/0x500 [ 530.513548][T13209] do_iter_readv_writev+0x740/0x9e0 [ 530.513566][T13209] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 530.513584][T13209] ? bpf_lsm_file_permission+0x9/0x10 [ 530.513604][T13209] ? security_file_permission+0x71/0x210 [ 530.513623][T13209] ? rw_verify_area+0xcf/0x6c0 [ 530.513639][T13209] vfs_readv+0x4cb/0x8b0 [ 530.513658][T13209] ? __pfx_vfs_readv+0x10/0x10 [ 530.513686][T13209] ? __fget_files+0x20e/0x3c0 [ 530.513706][T13209] ? do_readv+0x132/0x340 [ 530.513719][T13209] do_readv+0x132/0x340 [ 530.513733][T13209] ? __pfx_do_readv+0x10/0x10 [ 530.513749][T13209] ? xfd_validate_state+0x61/0x180 [ 530.513768][T13209] ? __pfx_do_writev+0x10/0x10 [ 530.513785][T13209] __x64_sys_preadv2+0x11f/0x160 [ 530.513805][T13209] do_syscall_64+0xcd/0x4c0 [ 530.513827][T13209] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 530.513842][T13209] RIP: 0033:0x7f27e0f8eec9 [ 530.513855][T13209] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 530.513868][T13209] RSP: 002b:00007f27e1db8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000147 [ 530.513883][T13209] RAX: ffffffffffffffda RBX: 00007f27e11e5fa0 RCX: 00007f27e0f8eec9 [ 530.513892][T13209] RDX: 0000000000000006 RSI: 0000200000000080 RDI: 0000000000000003 [ 530.513901][T13209] RBP: 00007f27e1011f91 R08: 0000000000000004 R09: 000000000000002e [ 530.513909][T13209] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 530.513917][T13209] R13: 00007f27e11e6038 R14: 00007f27e11e5fa0 R15: 00007fff3a5fa418 [ 530.513935][T13209] [ 531.280419][T13225] i2c i2c-0: delete_device: Can't find device in list [ 531.573941][T13231] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000) [ 532.506934][T13255] FAULT_INJECTION: forcing a failure. [ 532.506934][T13255] name failslab, interval 1, probability 0, space 0, times 0 [ 532.547480][T13255] CPU: 1 UID: 0 PID: 13255 Comm: syz.3.1605 Not tainted syzkaller #0 PREEMPT(full) [ 532.547502][T13255] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 532.547512][T13255] Call Trace: [ 532.547517][T13255] [ 532.547523][T13255] dump_stack_lvl+0x16c/0x1f0 [ 532.547549][T13255] should_fail_ex+0x512/0x640 [ 532.547574][T13255] should_failslab+0xc2/0x120 [ 532.547594][T13255] __kmalloc_cache_noprof+0x6a/0x3e0 [ 532.547609][T13255] ? nfc_genl_rcv_nl_event+0xc1/0x2e0 [ 532.547628][T13255] nfc_genl_rcv_nl_event+0xc1/0x2e0 [ 532.547645][T13255] notifier_call_chain+0xb9/0x410 [ 532.547663][T13255] ? __pfx_nfc_genl_rcv_nl_event+0x10/0x10 [ 532.547682][T13255] blocking_notifier_call_chain+0x69/0xa0 [ 532.547702][T13255] netlink_release+0x189d/0x2060 [ 532.547727][T13255] ? netlink_release+0x1de/0x2060 [ 532.547749][T13255] ? __pfx_netlink_release+0x10/0x10 [ 532.547778][T13255] ? __pfx_locks_remove_file+0x10/0x10 [ 532.547797][T13255] __sock_release+0xb3/0x270 [ 532.547813][T13255] ? __pfx_sock_close+0x10/0x10 [ 532.547825][T13255] sock_close+0x1c/0x30 [ 532.547837][T13255] __fput+0x3ff/0xb70 [ 532.547859][T13255] ? _raw_spin_unlock_irq+0x23/0x50 [ 532.547880][T13255] task_work_run+0x14d/0x240 [ 532.547902][T13255] ? __pfx_task_work_run+0x10/0x10 [ 532.547923][T13255] ? __pfx___do_sys_close_range+0x10/0x10 [ 532.547944][T13255] exit_to_user_mode_loop+0xeb/0x110 [ 532.547966][T13255] do_syscall_64+0x41c/0x4c0 [ 532.547988][T13255] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 532.548003][T13255] RIP: 0033:0x7f17b738eec9 [ 532.548016][T13255] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 532.548030][T13255] RSP: 002b:00007f17b8256038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 532.548044][T13255] RAX: 0000000000000000 RBX: 00007f17b75e5fa0 RCX: 00007f17b738eec9 [ 532.548053][T13255] RDX: 0000000000000000 RSI: 000000000000000a RDI: 0000000000000002 [ 532.548061][T13255] RBP: 00007f17b7411f91 R08: 0000000000000000 R09: 0000000000000000 [ 532.548069][T13255] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 532.548078][T13255] R13: 00007f17b75e6038 R14: 00007f17b75e5fa0 R15: 00007ffcbfcf73a8 [ 532.548097][T13255] [ 534.058687][T13280] FAULT_INJECTION: forcing a failure. [ 534.058687][T13280] name failslab, interval 1, probability 0, space 0, times 0 [ 534.154540][T13280] CPU: 1 UID: 0 PID: 13280 Comm: syz.0.1613 Not tainted syzkaller #0 PREEMPT(full) [ 534.154564][T13280] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 534.154574][T13280] Call Trace: [ 534.154580][T13280] [ 534.154586][T13280] dump_stack_lvl+0x16c/0x1f0 [ 534.154613][T13280] should_fail_ex+0x512/0x640 [ 534.154635][T13280] ? __kmalloc_noprof+0xbf/0x510 [ 534.154654][T13280] ? realloc_user_queue+0x288/0x320 [ 534.154669][T13280] should_failslab+0xc2/0x120 [ 534.154689][T13280] __kmalloc_noprof+0xd2/0x510 [ 534.154709][T13280] realloc_user_queue+0x288/0x320 [ 534.154725][T13280] ? __pfx_snd_timer_user_open+0x10/0x10 [ 534.154741][T13280] snd_timer_user_open+0xfc/0x180 [ 534.154757][T13280] snd_open+0x22d/0x4c0 [ 534.154772][T13280] ? __pfx_snd_open+0x10/0x10 [ 534.154784][T13280] chrdev_open+0x231/0x6a0 [ 534.154802][T13280] ? __pfx_apparmor_file_open+0x10/0x10 [ 534.154818][T13280] ? __pfx_chrdev_open+0x10/0x10 [ 534.154837][T13280] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 534.154865][T13280] do_dentry_open+0x97f/0x1530 [ 534.154885][T13280] ? __pfx_chrdev_open+0x10/0x10 [ 534.154907][T13280] vfs_open+0x82/0x3f0 [ 534.154931][T13280] path_openat+0x1de4/0x2cb0 [ 534.154953][T13280] ? __pfx_path_openat+0x10/0x10 [ 534.154975][T13280] do_filp_open+0x20b/0x470 [ 534.154991][T13280] ? __pfx_do_filp_open+0x10/0x10 [ 534.155020][T13280] ? alloc_fd+0x471/0x7d0 [ 534.155040][T13280] do_sys_openat2+0x11b/0x1d0 [ 534.155060][T13280] ? __pfx_do_sys_openat2+0x10/0x10 [ 534.155088][T13280] __x64_sys_openat+0x174/0x210 [ 534.155100][T13280] ? __pfx___x64_sys_openat+0x10/0x10 [ 534.155120][T13280] do_syscall_64+0xcd/0x4c0 [ 534.155143][T13280] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 534.155158][T13280] RIP: 0033:0x7f27e0f8eec9 [ 534.155170][T13280] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 534.155185][T13280] RSP: 002b:00007f27e1db8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 534.155200][T13280] RAX: ffffffffffffffda RBX: 00007f27e11e5fa0 RCX: 00007f27e0f8eec9 [ 534.155210][T13280] RDX: 0000000000101440 RSI: 0000200000001cc0 RDI: ffffffffffffff9c [ 534.155219][T13280] RBP: 00007f27e1011f91 R08: 0000000000000000 R09: 0000000000000000 [ 534.155227][T13280] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 534.155236][T13280] R13: 00007f27e11e6038 R14: 00007f27e11e5fa0 R15: 00007fff3a5fa418 [ 534.155253][T13280] [ 534.690862][ T5873] Bluetooth: hci3: ISO packet for unknown connection handle 0 [ 535.997459][T13316] sctp: [Deprecated]: syz.0.1624 (pid 13316) Use of int in max_burst socket option. [ 535.997459][T13316] Use struct sctp_assoc_value instead [ 536.883158][T13338] aoe: skb alloc failure [ 536.901063][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 536.919317][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 537.524461][T13356] blktrace: Concurrent blktraces are not allowed on sg0 [ 538.837228][T13404] netlink: 326 bytes leftover after parsing attributes in process `syz.0.1653'. [ 539.088951][T13413] FAULT_INJECTION: forcing a failure. [ 539.088951][T13413] name failslab, interval 1, probability 0, space 0, times 0 [ 539.130283][T13413] CPU: 1 UID: 0 PID: 13413 Comm: syz.0.1657 Not tainted syzkaller #0 PREEMPT(full) [ 539.130306][T13413] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 539.130315][T13413] Call Trace: [ 539.130320][T13413] [ 539.130326][T13413] dump_stack_lvl+0x16c/0x1f0 [ 539.130354][T13413] should_fail_ex+0x512/0x640 [ 539.130375][T13413] ? fs_reclaim_acquire+0xae/0x150 [ 539.130399][T13413] should_failslab+0xc2/0x120 [ 539.130419][T13413] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 539.130437][T13413] ? __kernfs_new_node+0xd2/0x8e0 [ 539.130457][T13413] __kernfs_new_node+0xd2/0x8e0 [ 539.130477][T13413] ? __pfx___kernfs_new_node+0x10/0x10 [ 539.130499][T13413] ? find_held_lock+0x2b/0x80 [ 539.130514][T13413] ? kernfs_root+0xee/0x2a0 [ 539.130534][T13413] kernfs_new_node+0x13c/0x1e0 [ 539.130557][T13413] __kernfs_create_file+0x53/0x350 [ 539.130573][T13413] sysfs_add_file_mode_ns+0x207/0x3c0 [ 539.130594][T13413] internal_create_group+0x578/0xf30 [ 539.130617][T13413] ? __pfx_internal_create_group+0x10/0x10 [ 539.130636][T13413] ? sysfs_create_dir_ns+0x14c/0x2b0 [ 539.130653][T13413] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 539.130669][T13413] ? sysfs_create_dir_ns+0x14c/0x2b0 [ 539.130684][T13413] ? sysfs_create_dir_ns+0x18a/0x2b0 [ 539.130702][T13413] internal_create_groups+0x9d/0x150 [ 539.130722][T13413] kobject_add_internal+0x311/0x9b0 [ 539.130740][T13413] kobject_add+0x16e/0x240 [ 539.130753][T13413] ? __pfx_kobject_add+0x10/0x10 [ 539.130768][T13413] ? __pfx_kobject_add+0x10/0x10 [ 539.130789][T13413] blk_register_queue+0x89/0x4e0 [ 539.130806][T13413] __add_disk+0x74a/0xf00 [ 539.130830][T13413] add_disk_fwnode+0x13f/0x5d0 [ 539.130853][T13413] loop_add+0x903/0xb70 [ 539.130872][T13413] ? __pfx_loop_add+0x10/0x10 [ 539.130901][T13413] ? find_held_lock+0x2b/0x80 [ 539.130917][T13413] loop_control_ioctl+0x13e/0x630 [ 539.130935][T13413] ? __pfx_loop_control_ioctl+0x10/0x10 [ 539.130954][T13413] ? __pfx_loop_control_ioctl+0x10/0x10 [ 539.130972][T13413] __x64_sys_ioctl+0x18b/0x210 [ 539.130995][T13413] do_syscall_64+0xcd/0x4c0 [ 539.131017][T13413] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 539.131031][T13413] RIP: 0033:0x7f27e0f8eec9 [ 539.131044][T13413] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 539.131057][T13413] RSP: 002b:00007f27e1db8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 539.131072][T13413] RAX: ffffffffffffffda RBX: 00007f27e11e5fa0 RCX: 00007f27e0f8eec9 [ 539.131081][T13413] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000005 [ 539.131089][T13413] RBP: 00007f27e1011f91 R08: 0000000000000000 R09: 0000000000000000 [ 539.131098][T13413] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 539.131106][T13413] R13: 00007f27e11e6038 R14: 00007f27e11e5fa0 R15: 00007fff3a5fa418 [ 539.131196][T13413] [ 539.131764][T13413] kobject: kobject_add_internal failed for queue (error: -12 parent: loop0) [ 539.490293][T13416] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 540.279086][T13446] netlink: 'syz.5.1669': attribute type 4 has an invalid length. [ 540.304800][T13446] netlink: 314 bytes leftover after parsing attributes in process `syz.5.1669'. [ 541.307845][ T30] audit: type=1804 audit(4294969697.738:17): pid=13482 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1680" name="/newroot/518/file0" dev="tmpfs" ino=2655 res=1 errno=0 [ 541.728581][T13494] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1686'. [ 542.245781][T13514] blktrace: Concurrent blktraces are not allowed on sg0 [ 542.272624][ T30] audit: type=1804 audit(4294969698.703:18): pid=13515 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1693" name="/newroot/432/file0" dev="tmpfs" ino=2222 res=1 errno=0 [ 542.781744][T13526] bond0: option all_slaves_active: invalid value (20) [ 542.886672][T13521] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input89 [ 542.909737][T13529] FAULT_INJECTION: forcing a failure. [ 542.909737][T13529] name failslab, interval 1, probability 0, space 0, times 0 [ 542.968046][T13529] CPU: 1 UID: 0 PID: 13529 Comm: syz.3.1697 Not tainted syzkaller #0 PREEMPT(full) [ 542.968069][T13529] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 542.968078][T13529] Call Trace: [ 542.968083][T13529] [ 542.968090][T13529] dump_stack_lvl+0x16c/0x1f0 [ 542.968117][T13529] should_fail_ex+0x512/0x640 [ 542.968138][T13529] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 542.968157][T13529] should_failslab+0xc2/0x120 [ 542.968176][T13529] __kmalloc_cache_noprof+0x6a/0x3e0 [ 542.968189][T13529] ? __lock_acquire+0xb97/0x1ce0 [ 542.968208][T13529] ? snd_timer_instance_new+0x47/0x2e0 [ 542.968225][T13529] snd_timer_instance_new+0x47/0x2e0 [ 542.968240][T13529] snd_seq_timer_open+0x1cc/0x600 [ 542.968261][T13529] ? __pfx_snd_seq_timer_open+0x10/0x10 [ 542.968282][T13529] ? find_held_lock+0x2b/0x80 [ 542.968298][T13529] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 542.968317][T13529] ? lockdep_hardirqs_on+0x7c/0x110 [ 542.968337][T13529] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 542.968358][T13529] queue_use+0xe3/0x250 [ 542.968374][T13529] snd_seq_queue_alloc+0x2e5/0x5a0 [ 542.968395][T13529] snd_seq_ioctl_create_queue+0xa9/0x380 [ 542.968418][T13529] snd_seq_kernel_client_ctl+0x107/0x1c0 [ 542.968435][T13529] alloc_seq_queue+0xda/0x180 [ 542.968449][T13529] ? __pfx_alloc_seq_queue+0x10/0x10 [ 542.968474][T13529] ? mark_held_locks+0x49/0x80 [ 542.968491][T13529] ? _raw_spin_unlock_irq+0x23/0x50 [ 542.968511][T13529] snd_seq_oss_open+0x38c/0xa20 [ 542.968529][T13529] odev_open+0x6f/0x90 [ 542.968540][T13529] ? __pfx_odev_open+0x10/0x10 [ 542.968553][T13529] soundcore_open+0x40c/0x580 [ 542.968575][T13529] ? __pfx_soundcore_open+0x10/0x10 [ 542.968596][T13529] chrdev_open+0x231/0x6a0 [ 542.968614][T13529] ? __pfx_apparmor_file_open+0x10/0x10 [ 542.968630][T13529] ? __pfx_chrdev_open+0x10/0x10 [ 542.968649][T13529] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 542.968668][T13529] do_dentry_open+0x97f/0x1530 [ 542.968686][T13529] ? __pfx_chrdev_open+0x10/0x10 [ 542.968707][T13529] vfs_open+0x82/0x3f0 [ 542.968729][T13529] path_openat+0x1de4/0x2cb0 [ 542.968752][T13529] ? __pfx_path_openat+0x10/0x10 [ 542.968774][T13529] do_filp_open+0x20b/0x470 [ 542.968790][T13529] ? __pfx_do_filp_open+0x10/0x10 [ 542.968820][T13529] ? alloc_fd+0x471/0x7d0 [ 542.968848][T13529] do_sys_openat2+0x11b/0x1d0 [ 542.968870][T13529] ? __pfx_do_sys_openat2+0x10/0x10 [ 542.968899][T13529] __x64_sys_openat+0x174/0x210 [ 542.968912][T13529] ? __pfx___x64_sys_openat+0x10/0x10 [ 542.968933][T13529] do_syscall_64+0xcd/0x4c0 [ 542.968956][T13529] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 542.968971][T13529] RIP: 0033:0x7f17b738eec9 [ 542.968984][T13529] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 542.968997][T13529] RSP: 002b:00007f17b8256038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 542.969011][T13529] RAX: ffffffffffffffda RBX: 00007f17b75e5fa0 RCX: 00007f17b738eec9 [ 542.969021][T13529] RDX: 0000000000000042 RSI: 0000200000000140 RDI: ffffffffffffff9c [ 542.969030][T13529] RBP: 00007f17b7411f91 R08: 0000000000000000 R09: 0000000000000000 [ 542.969039][T13529] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 542.969048][T13529] R13: 00007f17b75e6038 R14: 00007f17b75e5fa0 R15: 00007ffcbfcf73a8 [ 542.969067][T13529] [ 543.298195][ C1] vkms_vblank_simulate: vblank timer overrun [ 543.850150][T13532] Invalid ELF header magic: != ELF [ 544.233538][T13531] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input90 [ 544.639331][T13555] FAULT_INJECTION: forcing a failure. [ 544.639331][T13555] name failslab, interval 1, probability 0, space 0, times 0 [ 544.655536][T13555] CPU: 1 UID: 0 PID: 13555 Comm: syz.3.1706 Not tainted syzkaller #0 PREEMPT(full) [ 544.655559][T13555] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 544.655569][T13555] Call Trace: [ 544.655574][T13555] [ 544.655580][T13555] dump_stack_lvl+0x16c/0x1f0 [ 544.655606][T13555] should_fail_ex+0x512/0x640 [ 544.655628][T13555] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 544.655646][T13555] should_failslab+0xc2/0x120 [ 544.655664][T13555] __kmalloc_cache_noprof+0x6a/0x3e0 [ 544.655679][T13555] ? mark_held_locks+0x49/0x80 [ 544.655696][T13555] ? ovs_ct_limit_cmd_set+0x30a/0xa90 [ 544.655715][T13555] ovs_ct_limit_cmd_set+0x30a/0xa90 [ 544.655734][T13555] ? __pfx_ovs_ct_limit_cmd_set+0x10/0x10 [ 544.655751][T13555] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 544.655767][T13555] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 544.655787][T13555] genl_family_rcv_msg_doit+0x209/0x2f0 [ 544.655803][T13555] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 544.655824][T13555] ? bpf_lsm_capable+0x9/0x10 [ 544.655838][T13555] ? security_capable+0x7e/0x260 [ 544.655853][T13555] ? ns_capable+0xd7/0x110 [ 544.655870][T13555] genl_rcv_msg+0x55c/0x800 [ 544.655896][T13555] ? __pfx_genl_rcv_msg+0x10/0x10 [ 544.655911][T13555] ? __pfx_ovs_ct_limit_cmd_set+0x10/0x10 [ 544.655935][T13555] netlink_rcv_skb+0x158/0x420 [ 544.655956][T13555] ? __pfx_genl_rcv_msg+0x10/0x10 [ 544.655973][T13555] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 544.656003][T13555] ? netlink_deliver_tap+0x1ae/0xd30 [ 544.656025][T13555] genl_rcv+0x28/0x40 [ 544.656038][T13555] netlink_unicast+0x5a7/0x870 [ 544.656061][T13555] ? __pfx_netlink_unicast+0x10/0x10 [ 544.656080][T13555] ? __asan_memset+0x23/0x50 [ 544.656094][T13555] ? __build_skb_around+0x278/0x3b0 [ 544.656112][T13555] ? is_vmalloc_addr+0x86/0xa0 [ 544.656130][T13555] netlink_sendmsg+0x8d1/0xdd0 [ 544.656154][T13555] ? __pfx_netlink_sendmsg+0x10/0x10 [ 544.656177][T13555] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 544.656195][T13555] ____sys_sendmsg+0xa98/0xc70 [ 544.656212][T13555] ? copy_msghdr_from_user+0x10a/0x160 [ 544.656231][T13555] ? __pfx_____sys_sendmsg+0x10/0x10 [ 544.656252][T13555] ? __pfx_futex_wake_mark+0x10/0x10 [ 544.656275][T13555] ___sys_sendmsg+0x134/0x1d0 [ 544.656296][T13555] ? __pfx____sys_sendmsg+0x10/0x10 [ 544.656340][T13555] __sys_sendmsg+0x16d/0x220 [ 544.656360][T13555] ? __pfx___sys_sendmsg+0x10/0x10 [ 544.656379][T13555] ? __x64_sys_futex+0x1e0/0x4c0 [ 544.656408][T13555] do_syscall_64+0xcd/0x4c0 [ 544.656430][T13555] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 544.656444][T13555] RIP: 0033:0x7f17b738eec9 [ 544.656456][T13555] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 544.656471][T13555] RSP: 002b:00007f17b8256038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 544.656485][T13555] RAX: ffffffffffffffda RBX: 00007f17b75e5fa0 RCX: 00007f17b738eec9 [ 544.656494][T13555] RDX: 0000000000000004 RSI: 0000200000000100 RDI: 0000000000000005 [ 544.656502][T13555] RBP: 00007f17b7411f91 R08: 0000000000000000 R09: 0000000000000000 [ 544.656510][T13555] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 544.656518][T13555] R13: 00007f17b75e6038 R14: 00007f17b75e5fa0 R15: 00007ffcbfcf73a8 [ 544.656537][T13555] [ 544.980101][ C1] vkms_vblank_simulate: vblank timer overrun [ 545.091106][T13561] blktrace: Concurrent blktraces are not allowed on sg0 [ 546.080749][ T5866] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260 [ 546.080772][ T5866] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260 [ 546.096718][ T5866] Bluetooth: hci2: Unknown advertising packet type: 0x7f [ 546.096770][ T5866] Bluetooth: hci2: Unknown advertising packet type: 0x3d [ 546.105115][ T5866] Bluetooth: hci2: Malformed LE Event: 0x0d [ 546.349763][T13604] block nbd8: shutting down sockets [ 547.096776][T13627] netlink: 504 bytes leftover after parsing attributes in process `syz.3.1728'. [ 548.609694][T13665] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1738'. [ 548.970881][T13679] FAULT_INJECTION: forcing a failure. [ 548.970881][T13679] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 548.990741][T13679] CPU: 1 UID: 0 PID: 13679 Comm: syz.0.1745 Not tainted syzkaller #0 PREEMPT(full) [ 548.990763][T13679] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 548.990773][T13679] Call Trace: [ 548.990778][T13679] [ 548.990784][T13679] dump_stack_lvl+0x16c/0x1f0 [ 548.990811][T13679] should_fail_ex+0x512/0x640 [ 548.990836][T13679] core_sys_select+0x9ca/0xc10 [ 548.990857][T13679] ? __pfx_core_sys_select+0x10/0x10 [ 548.990875][T13679] ? futex_wait+0x120/0x380 [ 548.990909][T13679] ? __pfx_do_futex+0x10/0x10 [ 548.990930][T13679] kern_select+0x15d/0x1e0 [ 548.990945][T13679] ? __pfx_kern_select+0x10/0x10 [ 548.990961][T13679] ? xfd_validate_state+0x61/0x180 [ 548.990985][T13679] __x64_sys_select+0xbd/0x160 [ 548.990998][T13679] ? do_syscall_64+0x91/0x4c0 [ 548.991018][T13679] ? lockdep_hardirqs_on+0x7c/0x110 [ 548.991038][T13679] do_syscall_64+0xcd/0x4c0 [ 548.991059][T13679] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 548.991074][T13679] RIP: 0033:0x7f27e0f8eec9 [ 548.991085][T13679] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 548.991100][T13679] RSP: 002b:00007f27e1db8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017 [ 548.991124][T13679] RAX: ffffffffffffffda RBX: 00007f27e11e5fa0 RCX: 00007f27e0f8eec9 [ 548.991134][T13679] RDX: 0000200000000100 RSI: 0000000000000000 RDI: 0000000000000005 [ 548.991143][T13679] RBP: 00007f27e1011f91 R08: 0000000000000000 R09: 0000000000000000 [ 548.991151][T13679] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 548.991160][T13679] R13: 00007f27e11e6038 R14: 00007f27e11e5fa0 R15: 00007fff3a5fa418 [ 548.991186][T13679] [ 551.216539][T13728] pci 0000:00:00.0: MSI/MSI-X allowed for future drivers [ 552.606336][T13750] ERROR: Out of memory at tomoyo_memory_ok. [ 554.639719][T13810] __vm_enough_memory: pid: 13810, comm: syz.4.1793, bytes: 4398046511104 not enough memory for the allocation [ 555.899195][T13812] kexec: Could not allocate control_code_buffer [ 557.694389][T13867] FAULT_INJECTION: forcing a failure. [ 557.694389][T13867] name failslab, interval 1, probability 0, space 0, times 0 [ 557.831310][T13867] CPU: 1 UID: 0 PID: 13867 Comm: syz.5.1818 Not tainted syzkaller #0 PREEMPT(full) [ 557.831333][T13867] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 557.831342][T13867] Call Trace: [ 557.831348][T13867] [ 557.831354][T13867] dump_stack_lvl+0x16c/0x1f0 [ 557.831380][T13867] should_fail_ex+0x512/0x640 [ 557.831402][T13867] ? __kmalloc_noprof+0xbf/0x510 [ 557.831428][T13867] ? lsm_blob_alloc+0x68/0x90 [ 557.831441][T13867] should_failslab+0xc2/0x120 [ 557.831461][T13867] __kmalloc_noprof+0xd2/0x510 [ 557.831481][T13867] lsm_blob_alloc+0x68/0x90 [ 557.831494][T13867] security_sk_alloc+0x30/0x270 [ 557.831511][T13867] sk_prot_alloc+0xfb/0x2a0 [ 557.831528][T13867] sk_alloc+0x36/0xc20 [ 557.831547][T13867] rxrpc_create+0x116/0x8d0 [ 557.831566][T13867] __sock_create+0x338/0x8d0 [ 557.831586][T13867] __sys_socket+0x14d/0x260 [ 557.831602][T13867] ? __pfx___sys_socket+0x10/0x10 [ 557.831618][T13867] ? xfd_validate_state+0x61/0x180 [ 557.831638][T13867] ? __sys_setsockopt+0x140/0x1a0 [ 557.831660][T13867] __x64_sys_socket+0x72/0xb0 [ 557.831675][T13867] ? lockdep_hardirqs_on+0x7c/0x110 [ 557.831694][T13867] do_syscall_64+0xcd/0x4c0 [ 557.831716][T13867] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 557.831730][T13867] RIP: 0033:0x7f3177d8eec9 [ 557.831742][T13867] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 557.831756][T13867] RSP: 002b:00007f3178cd0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 557.831769][T13867] RAX: ffffffffffffffda RBX: 00007f3177fe5fa0 RCX: 00007f3177d8eec9 [ 557.831779][T13867] RDX: 0000000000000002 RSI: 0000000000000002 RDI: 0000000000000021 [ 557.831787][T13867] RBP: 00007f3177e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 557.831795][T13867] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 557.831803][T13867] R13: 00007f3177fe6038 R14: 00007f3177fe5fa0 R15: 00007fff9fad4d88 [ 557.831820][T13867] [ 558.907246][T13893] FAULT_INJECTION: forcing a failure. [ 558.907246][T13893] name failslab, interval 1, probability 0, space 0, times 0 [ 559.001287][T13893] CPU: 1 UID: 0 PID: 13893 Comm: syz.4.1831 Not tainted syzkaller #0 PREEMPT(full) [ 559.001311][T13893] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 559.001321][T13893] Call Trace: [ 559.001326][T13893] [ 559.001332][T13893] dump_stack_lvl+0x16c/0x1f0 [ 559.001366][T13893] should_fail_ex+0x512/0x640 [ 559.001391][T13893] should_failslab+0xc2/0x120 [ 559.001414][T13893] __kmalloc_cache_noprof+0x6a/0x3e0 [ 559.001429][T13893] ? __pfx___might_resched+0x10/0x10 [ 559.001444][T13893] ? bdi_split_work_to_wbs+0x2bd/0xf90 [ 559.001469][T13893] bdi_split_work_to_wbs+0x2bd/0xf90 [ 559.001492][T13893] ? __pfx_bdi_split_work_to_wbs+0x10/0x10 [ 559.001517][T13893] ? lockdep_unlock+0x64/0xe0 [ 559.001530][T13893] ? __lock_acquire+0x107f/0x1ce0 [ 559.001552][T13893] __writeback_inodes_sb_nr+0x1cf/0x270 [ 559.001573][T13893] ? __pfx___writeback_inodes_sb_nr+0x10/0x10 [ 559.001599][T13893] ? get_nr_dirty_inodes+0x170/0x1e0 [ 559.001622][T13893] ? __pfx_fs_bdev_sync+0x10/0x10 [ 559.001637][T13893] sync_filesystem+0xbb/0x290 [ 559.001653][T13893] ? __pfx_fs_bdev_sync+0x10/0x10 [ 559.001666][T13893] fs_bdev_sync+0x2c/0x40 [ 559.001680][T13893] blkdev_common_ioctl+0xf01/0x2470 [ 559.001699][T13893] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 559.001719][T13893] ? __pfx_blkdev_common_ioctl+0x10/0x10 [ 559.001739][T13893] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 559.001761][T13893] ? do_vfs_ioctl+0x128/0x14f0 [ 559.001782][T13893] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 559.001808][T13893] ? find_held_lock+0x2b/0x80 [ 559.001825][T13893] blkdev_ioctl+0x1cb/0x6d0 [ 559.001842][T13893] ? __pfx_blkdev_ioctl+0x10/0x10 [ 559.001862][T13893] ? __pfx_blkdev_ioctl+0x10/0x10 [ 559.001880][T13893] __x64_sys_ioctl+0x18b/0x210 [ 559.001903][T13893] do_syscall_64+0xcd/0x4c0 [ 559.001925][T13893] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 559.001939][T13893] RIP: 0033:0x7ff6c5b8eec9 [ 559.001952][T13893] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 559.001966][T13893] RSP: 002b:00007ff6c69ca038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 559.001980][T13893] RAX: ffffffffffffffda RBX: 00007ff6c5de5fa0 RCX: 00007ff6c5b8eec9 [ 559.001989][T13893] RDX: 0700000000000000 RSI: 0000000000001261 RDI: 0000000000000000 [ 559.001998][T13893] RBP: 00007ff6c5c11f91 R08: 0000000000000000 R09: 0000000000000000 [ 559.002006][T13893] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 559.002014][T13893] R13: 00007ff6c5de6038 R14: 00007ff6c5de5fa0 R15: 00007fff05defb78 [ 559.002033][T13893] [ 559.806642][T13905] mkiss: ax0: crc mode is auto. [ 560.298562][T13919] netlink: 'syz.3.1841': attribute type 1 has an invalid length. [ 560.316887][T13919] netlink: 'syz.3.1841': attribute type 6 has an invalid length. [ 560.391262][T13921] FAULT_INJECTION: forcing a failure. [ 560.391262][T13921] name failslab, interval 1, probability 0, space 0, times 0 [ 560.412369][T13921] CPU: 1 UID: 0 PID: 13921 Comm: syz.3.1842 Not tainted syzkaller #0 PREEMPT(full) [ 560.412391][T13921] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 560.412401][T13921] Call Trace: [ 560.412406][T13921] [ 560.412411][T13921] dump_stack_lvl+0x16c/0x1f0 [ 560.412439][T13921] should_fail_ex+0x512/0x640 [ 560.412460][T13921] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 560.412478][T13921] should_failslab+0xc2/0x120 [ 560.412497][T13921] __kmalloc_cache_noprof+0x6a/0x3e0 [ 560.412512][T13921] ? io_uring_setup+0x24f/0x20c0 [ 560.412534][T13921] io_uring_setup+0x24f/0x20c0 [ 560.412555][T13921] ? __pfx_io_uring_setup+0x10/0x10 [ 560.412573][T13921] ? do_futex+0x122/0x350 [ 560.412592][T13921] ? __pfx_do_futex+0x10/0x10 [ 560.412612][T13921] ? find_held_lock+0x2b/0x80 [ 560.412633][T13921] ? xfd_validate_state+0x61/0x180 [ 560.412658][T13921] __x64_sys_io_uring_setup+0xc2/0x170 [ 560.412678][T13921] do_syscall_64+0xcd/0x4c0 [ 560.412700][T13921] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 560.412714][T13921] RIP: 0033:0x7f17b738eec9 [ 560.412726][T13921] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 560.412740][T13921] RSP: 002b:00007f17b8256038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 560.412754][T13921] RAX: ffffffffffffffda RBX: 00007f17b75e5fa0 RCX: 00007f17b738eec9 [ 560.412763][T13921] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006 [ 560.412771][T13921] RBP: 00007f17b7411f91 R08: 0000000000000000 R09: 0000000000000000 [ 560.412779][T13921] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 560.412787][T13921] R13: 00007f17b75e6038 R14: 00007f17b75e5fa0 R15: 00007ffcbfcf73a8 [ 560.412805][T13921] [ 561.299897][T13937] kvm: kvm [13936]: vcpu2, guest rIP: 0xfff0 Unhandled WRMSR(0x11e) = 0x9 [ 562.299212][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 562.305707][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 562.349130][T13964] netlink: 290 bytes leftover after parsing attributes in process `syz.0.1862'. [ 562.636223][T13976] FAULT_INJECTION: forcing a failure. [ 562.636223][T13976] name failslab, interval 1, probability 0, space 0, times 0 [ 562.659243][T13976] CPU: 1 UID: 0 PID: 13976 Comm: syz.0.1866 Not tainted syzkaller #0 PREEMPT(full) [ 562.659265][T13976] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 562.659274][T13976] Call Trace: [ 562.659280][T13976] [ 562.659286][T13976] dump_stack_lvl+0x16c/0x1f0 [ 562.659312][T13976] should_fail_ex+0x512/0x640 [ 562.659334][T13976] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 562.659351][T13976] should_failslab+0xc2/0x120 [ 562.659370][T13976] __kmalloc_cache_noprof+0x6a/0x3e0 [ 562.659385][T13976] ? snd_card_file_add+0x52/0x340 [ 562.659402][T13976] ? __pfx_snd_ctl_open+0x10/0x10 [ 562.659422][T13976] snd_card_file_add+0x52/0x340 [ 562.659436][T13976] ? __pfx_snd_ctl_open+0x10/0x10 [ 562.659455][T13976] ? __pfx_snd_ctl_open+0x10/0x10 [ 562.659475][T13976] snd_ctl_open+0x9d/0x5f0 [ 562.659495][T13976] ? __pfx_snd_ctl_open+0x10/0x10 [ 562.659518][T13976] snd_open+0x22d/0x4c0 [ 562.659531][T13976] ? __pfx_snd_open+0x10/0x10 [ 562.659544][T13976] chrdev_open+0x231/0x6a0 [ 562.659562][T13976] ? __pfx_apparmor_file_open+0x10/0x10 [ 562.659578][T13976] ? __pfx_chrdev_open+0x10/0x10 [ 562.659597][T13976] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 562.659616][T13976] do_dentry_open+0x97f/0x1530 [ 562.659633][T13976] ? __pfx_chrdev_open+0x10/0x10 [ 562.659654][T13976] vfs_open+0x82/0x3f0 [ 562.659676][T13976] path_openat+0x1de4/0x2cb0 [ 562.659698][T13976] ? __pfx_path_openat+0x10/0x10 [ 562.659719][T13976] do_filp_open+0x20b/0x470 [ 562.659736][T13976] ? __pfx_do_filp_open+0x10/0x10 [ 562.659765][T13976] ? alloc_fd+0x471/0x7d0 [ 562.659785][T13976] do_sys_openat2+0x11b/0x1d0 [ 562.659805][T13976] ? __pfx_do_sys_openat2+0x10/0x10 [ 562.659832][T13976] __x64_sys_openat+0x174/0x210 [ 562.659844][T13976] ? __pfx___x64_sys_openat+0x10/0x10 [ 562.659864][T13976] do_syscall_64+0xcd/0x4c0 [ 562.659887][T13976] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 562.659901][T13976] RIP: 0033:0x7f27e0f8eec9 [ 562.659913][T13976] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 562.659935][T13976] RSP: 002b:00007f27e1db8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 562.659950][T13976] RAX: ffffffffffffffda RBX: 00007f27e11e5fa0 RCX: 00007f27e0f8eec9 [ 562.659959][T13976] RDX: 0000000000000802 RSI: 00002000000010c0 RDI: ffffffffffffff9c [ 562.659968][T13976] RBP: 00007f27e1011f91 R08: 0000000000000000 R09: 0000000000000000 [ 562.659977][T13976] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 562.659985][T13976] R13: 00007f27e11e6038 R14: 00007f27e11e5fa0 R15: 00007fff3a5fa418 [ 562.660004][T13976] [ 563.072730][T13982] netlink: 146 bytes leftover after parsing attributes in process `syz.5.1869'. [ 563.290781][T13986] FAULT_INJECTION: forcing a failure. [ 563.290781][T13986] name failslab, interval 1, probability 0, space 0, times 0 [ 563.311709][T13986] CPU: 1 UID: 0 PID: 13986 Comm: syz.0.1870 Not tainted syzkaller #0 PREEMPT(full) [ 563.311733][T13986] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 563.311742][T13986] Call Trace: [ 563.311747][T13986] [ 563.311754][T13986] dump_stack_lvl+0x16c/0x1f0 [ 563.311780][T13986] should_fail_ex+0x512/0x640 [ 563.311806][T13986] should_failslab+0xc2/0x120 [ 563.311826][T13986] __kmalloc_cache_noprof+0x6a/0x3e0 [ 563.311849][T13986] ? __pfx___might_resched+0x10/0x10 [ 563.311864][T13986] ? bdi_split_work_to_wbs+0x2bd/0xf90 [ 563.311889][T13986] bdi_split_work_to_wbs+0x2bd/0xf90 [ 563.311914][T13986] ? __pfx_bdi_split_work_to_wbs+0x10/0x10 [ 563.311940][T13986] ? __lock_acquire+0xb97/0x1ce0 [ 563.311963][T13986] __writeback_inodes_sb_nr+0x1cf/0x270 [ 563.311989][T13986] ? __pfx___writeback_inodes_sb_nr+0x10/0x10 [ 563.312021][T13986] ? get_nr_dirty_inodes+0x170/0x1e0 [ 563.312045][T13986] ? __pfx_fs_bdev_sync+0x10/0x10 [ 563.312061][T13986] sync_filesystem+0xbb/0x290 [ 563.312079][T13986] ? __pfx_fs_bdev_sync+0x10/0x10 [ 563.312092][T13986] fs_bdev_sync+0x2c/0x40 [ 563.312106][T13986] blkdev_common_ioctl+0xf01/0x2470 [ 563.312124][T13986] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 563.312144][T13986] ? __pfx_blkdev_common_ioctl+0x10/0x10 [ 563.312164][T13986] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 563.312186][T13986] ? do_vfs_ioctl+0x128/0x14f0 [ 563.312207][T13986] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 563.312234][T13986] ? find_held_lock+0x2b/0x80 [ 563.312251][T13986] blkdev_ioctl+0x1cb/0x6d0 [ 563.312268][T13986] ? __pfx_blkdev_ioctl+0x10/0x10 [ 563.312288][T13986] ? __pfx_blkdev_ioctl+0x10/0x10 [ 563.312305][T13986] __x64_sys_ioctl+0x18b/0x210 [ 563.312328][T13986] do_syscall_64+0xcd/0x4c0 [ 563.312351][T13986] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 563.312365][T13986] RIP: 0033:0x7f27e0f8eec9 [ 563.312377][T13986] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 563.312391][T13986] RSP: 002b:00007f27e1db8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 563.312405][T13986] RAX: ffffffffffffffda RBX: 00007f27e11e5fa0 RCX: 00007f27e0f8eec9 [ 563.312414][T13986] RDX: 0700000000000000 RSI: 0000000000001261 RDI: 0000000000000000 [ 563.312423][T13986] RBP: 00007f27e1011f91 R08: 0000000000000000 R09: 0000000000000000 [ 563.312431][T13986] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 563.312439][T13986] R13: 00007f27e11e6038 R14: 00007f27e11e5fa0 R15: 00007fff3a5fa418 [ 563.312458][T13986] [ 563.933634][T13994] ALUA lu_gp_id: 393216 exceeds maximum: 0x0000ffff [ 563.945401][ T30] audit: type=1800 audit(4294969720.467:19): pid=13994 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1873" name="lu_gp_id" dev="configfs" ino=42920 res=0 errno=0 [ 564.318370][T14005] FAULT_INJECTION: forcing a failure. [ 564.318370][T14005] name failslab, interval 1, probability 0, space 0, times 0 [ 564.342998][T14005] CPU: 1 UID: 0 PID: 14005 Comm: syz.3.1879 Not tainted syzkaller #0 PREEMPT(full) [ 564.343025][T14005] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 564.343035][T14005] Call Trace: [ 564.343040][T14005] [ 564.343046][T14005] dump_stack_lvl+0x16c/0x1f0 [ 564.343073][T14005] should_fail_ex+0x512/0x640 [ 564.343095][T14005] ? __kmalloc_noprof+0xbf/0x510 [ 564.343116][T14005] ? drm_atomic_state_init+0x17b/0x320 [ 564.343132][T14005] should_failslab+0xc2/0x120 [ 564.343151][T14005] __kmalloc_noprof+0xd2/0x510 [ 564.343172][T14005] drm_atomic_state_init+0x17b/0x320 [ 564.343188][T14005] ? __kasan_kmalloc+0xaa/0xb0 [ 564.343204][T14005] drm_atomic_state_alloc+0xd3/0x120 [ 564.343221][T14005] drm_client_modeset_commit_atomic+0xcc/0x7e0 [ 564.343239][T14005] ? __pfx___might_resched+0x10/0x10 [ 564.343259][T14005] ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10 [ 564.343276][T14005] ? __mutex_lock+0x1c5/0x1060 [ 564.343296][T14005] ? rcu_is_watching+0x12/0xc0 [ 564.343329][T14005] drm_client_modeset_commit_locked+0x14d/0x580 [ 564.343350][T14005] drm_client_modeset_commit+0x4f/0x80 [ 564.343367][T14005] __drm_fb_helper_restore_fbdev_mode_unlocked+0x19f/0x200 [ 564.343385][T14005] ? __pfx_drm_fbdev_client_restore+0x10/0x10 [ 564.343407][T14005] drm_fbdev_client_restore+0x2c/0x40 [ 564.343435][T14005] drm_client_dev_restore+0x1f3/0x2a0 [ 564.343460][T14005] drm_release+0x2c4/0x360 [ 564.343478][T14005] ? __pfx_drm_release+0x10/0x10 [ 564.343492][T14005] __fput+0x3ff/0xb70 [ 564.343516][T14005] task_work_run+0x14d/0x240 [ 564.343539][T14005] ? __pfx_task_work_run+0x10/0x10 [ 564.343559][T14005] ? __pfx___do_sys_close_range+0x10/0x10 [ 564.343582][T14005] exit_to_user_mode_loop+0xeb/0x110 [ 564.343603][T14005] do_syscall_64+0x41c/0x4c0 [ 564.343626][T14005] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 564.343640][T14005] RIP: 0033:0x7f17b738eec9 [ 564.343652][T14005] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 564.343666][T14005] RSP: 002b:00007f17b8256038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 564.343681][T14005] RAX: 0000000000000000 RBX: 00007f17b75e5fa0 RCX: 00007f17b738eec9 [ 564.343689][T14005] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 564.343697][T14005] RBP: 00007f17b7411f91 R08: 0000000000000000 R09: 0000000000000000 [ 564.343705][T14005] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 564.343723][T14005] R13: 00007f17b75e6038 R14: 00007f17b75e5fa0 R15: 00007ffcbfcf73a8 [ 564.343743][T14005] [ 565.192415][T14017] mkiss: ax0: crc mode is auto. [ 565.728269][T14019] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input92 [ 565.857329][T14033] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input93 [ 565.899617][ T5220] ERROR: Out of memory at tomoyo_memory_ok. [ 567.269192][T14068] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input94 [ 567.471974][T14076] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1906'. [ 567.807343][T14087] FAULT_INJECTION: forcing a failure. [ 567.807343][T14087] name failslab, interval 1, probability 0, space 0, times 0 [ 567.828054][T14087] CPU: 1 UID: 0 PID: 14087 Comm: syz.0.1912 Not tainted syzkaller #0 PREEMPT(full) [ 567.828076][T14087] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 567.828085][T14087] Call Trace: [ 567.828090][T14087] [ 567.828096][T14087] dump_stack_lvl+0x16c/0x1f0 [ 567.828123][T14087] should_fail_ex+0x512/0x640 [ 567.828144][T14087] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 567.828161][T14087] should_failslab+0xc2/0x120 [ 567.828180][T14087] __kmalloc_cache_noprof+0x6a/0x3e0 [ 567.828195][T14087] ? v4l2_fh_open+0x4c/0xc0 [ 567.828210][T14087] v4l2_fh_open+0x4c/0xc0 [ 567.828223][T14087] v4l2_open+0x225/0x490 [ 567.828242][T14087] ? __pfx_v4l2_open+0x10/0x10 [ 567.828260][T14087] chrdev_open+0x231/0x6a0 [ 567.828278][T14087] ? __pfx_apparmor_file_open+0x10/0x10 [ 567.828294][T14087] ? __pfx_chrdev_open+0x10/0x10 [ 567.828312][T14087] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 567.828331][T14087] do_dentry_open+0x97f/0x1530 [ 567.828348][T14087] ? __pfx_chrdev_open+0x10/0x10 [ 567.828369][T14087] vfs_open+0x82/0x3f0 [ 567.828392][T14087] path_openat+0x1de4/0x2cb0 [ 567.828424][T14087] ? __pfx_path_openat+0x10/0x10 [ 567.828445][T14087] do_filp_open+0x20b/0x470 [ 567.828463][T14087] ? __pfx_do_filp_open+0x10/0x10 [ 567.828493][T14087] ? alloc_fd+0x471/0x7d0 [ 567.828514][T14087] do_sys_openat2+0x11b/0x1d0 [ 567.828535][T14087] ? __pfx_do_sys_openat2+0x10/0x10 [ 567.828563][T14087] __x64_sys_openat+0x174/0x210 [ 567.828575][T14087] ? __pfx___x64_sys_openat+0x10/0x10 [ 567.828595][T14087] do_syscall_64+0xcd/0x4c0 [ 567.828617][T14087] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 567.828632][T14087] RIP: 0033:0x7f27e0f8eec9 [ 567.828644][T14087] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 567.828657][T14087] RSP: 002b:00007f27e1db8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 567.828671][T14087] RAX: ffffffffffffffda RBX: 00007f27e11e5fa0 RCX: 00007f27e0f8eec9 [ 567.828680][T14087] RDX: 000000000008a240 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 567.828689][T14087] RBP: 00007f27e1011f91 R08: 0000000000000000 R09: 0000000000000000 [ 567.828697][T14087] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 567.828706][T14087] R13: 00007f27e11e6038 R14: 00007f27e11e5fa0 R15: 00007fff3a5fa418 [ 567.828724][T14087] [ 568.067097][ C1] vkms_vblank_simulate: vblank timer overrun [ 568.263331][T14095] FAULT_INJECTION: forcing a failure. [ 568.263331][T14095] name failslab, interval 1, probability 0, space 0, times 0 [ 568.276118][T14095] CPU: 1 UID: 0 PID: 14095 Comm: syz.5.1915 Not tainted syzkaller #0 PREEMPT(full) [ 568.276140][T14095] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 568.276150][T14095] Call Trace: [ 568.276156][T14095] [ 568.276161][T14095] dump_stack_lvl+0x16c/0x1f0 [ 568.276189][T14095] should_fail_ex+0x512/0x640 [ 568.276210][T14095] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 568.276231][T14095] should_failslab+0xc2/0x120 [ 568.276250][T14095] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 568.276268][T14095] ? chrdev_open+0x231/0x6a0 [ 568.276286][T14095] ? do_dentry_open+0x97f/0x1530 [ 568.276302][T14095] ? vfs_open+0x82/0x3f0 [ 568.276320][T14095] ? kasprintf+0xc7/0x100 [ 568.276337][T14095] kvasprintf+0xbc/0x160 [ 568.276367][T14095] ? __pfx_kvasprintf+0x10/0x10 [ 568.276390][T14095] kasprintf+0xc7/0x100 [ 568.276406][T14095] ? __pfx_kasprintf+0x10/0x10 [ 568.276424][T14095] ? aa_get_newest_label+0xd2/0x250 [ 568.276440][T14095] ? lockdep_init_map_type+0x5c/0x280 [ 568.276465][T14095] drm_debugfs_clients_add+0x48/0x200 [ 568.276480][T14095] drm_file_alloc+0x5c6/0xb40 [ 568.276499][T14095] drm_open_helper+0x204/0x550 [ 568.276516][T14095] drm_open+0x1a0/0x3e0 [ 568.276531][T14095] ? __pfx_drm_open+0x10/0x10 [ 568.276546][T14095] drm_stub_open+0x20c/0x380 [ 568.276561][T14095] ? __pfx_drm_stub_open+0x10/0x10 [ 568.276576][T14095] chrdev_open+0x231/0x6a0 [ 568.276593][T14095] ? __pfx_apparmor_file_open+0x10/0x10 [ 568.276608][T14095] ? __pfx_chrdev_open+0x10/0x10 [ 568.276626][T14095] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 568.276645][T14095] do_dentry_open+0x97f/0x1530 [ 568.276662][T14095] ? __pfx_chrdev_open+0x10/0x10 [ 568.276683][T14095] vfs_open+0x82/0x3f0 [ 568.276705][T14095] path_openat+0x1de4/0x2cb0 [ 568.276727][T14095] ? __pfx_path_openat+0x10/0x10 [ 568.276748][T14095] do_filp_open+0x20b/0x470 [ 568.276765][T14095] ? __pfx_do_filp_open+0x10/0x10 [ 568.276793][T14095] ? alloc_fd+0x471/0x7d0 [ 568.276814][T14095] do_sys_openat2+0x11b/0x1d0 [ 568.276834][T14095] ? __pfx_do_sys_openat2+0x10/0x10 [ 568.276861][T14095] __x64_sys_openat+0x174/0x210 [ 568.276874][T14095] ? __pfx___x64_sys_openat+0x10/0x10 [ 568.276893][T14095] do_syscall_64+0xcd/0x4c0 [ 568.276916][T14095] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 568.276931][T14095] RIP: 0033:0x7f3177d8eec9 [ 568.276944][T14095] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 568.276957][T14095] RSP: 002b:00007f3178cd0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 568.276972][T14095] RAX: ffffffffffffffda RBX: 00007f3177fe5fa0 RCX: 00007f3177d8eec9 [ 568.276982][T14095] RDX: 0000000000129843 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 568.276991][T14095] RBP: 00007f3177e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 568.277001][T14095] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 568.277010][T14095] R13: 00007f3177fe6038 R14: 00007f3177fe5fa0 R15: 00007fff9fad4d88 [ 568.277028][T14095] [ 568.578326][ C1] vkms_vblank_simulate: vblank timer overrun [ 569.734071][ T30] audit: type=1800 audit(4294969726.307:20): pid=14125 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1926" name="lu_gp_id" dev="configfs" ino=44508 res=0 errno=0 [ 569.757286][T14125] ALUA LU Group already has a valid ID, ignoring request [ 569.843723][T14127] sd 0:0:1:0: PR command failed: 1026 [ 569.850761][T14127] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 569.883014][T14127] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 570.186286][T14138] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input95 [ 570.547220][T14140] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input96 [ 573.978955][T14196] input: f as /devices/virtual/input/input97 [ 574.577557][T14216] netlink: 'syz.0.1959': attribute type 7 has an invalid length. [ 574.587886][T14216] netlink: 5 bytes leftover after parsing attributes in process `syz.0.1959'. [ 574.619116][T14216] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1959'. [ 574.863223][T14223] FAULT_INJECTION: forcing a failure. [ 574.863223][T14223] name failslab, interval 1, probability 0, space 0, times 0 [ 575.054279][T14223] CPU: 1 UID: 0 PID: 14223 Comm: syz.4.1958 Not tainted syzkaller #0 PREEMPT(full) [ 575.054305][T14223] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 575.054315][T14223] Call Trace: [ 575.054321][T14223] [ 575.054327][T14223] dump_stack_lvl+0x16c/0x1f0 [ 575.054352][T14223] should_fail_ex+0x512/0x640 [ 575.054374][T14223] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 575.054397][T14223] should_failslab+0xc2/0x120 [ 575.054415][T14223] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 575.054432][T14223] ? chrdev_open+0x231/0x6a0 [ 575.054449][T14223] ? do_dentry_open+0x97f/0x1530 [ 575.054465][T14223] ? vfs_open+0x82/0x3f0 [ 575.054483][T14223] ? kasprintf+0xc7/0x100 [ 575.054500][T14223] kvasprintf+0xbc/0x160 [ 575.054514][T14223] ? __pfx_kvasprintf+0x10/0x10 [ 575.054536][T14223] kasprintf+0xc7/0x100 [ 575.054550][T14223] ? __pfx_kasprintf+0x10/0x10 [ 575.054567][T14223] ? aa_get_newest_label+0xd2/0x250 [ 575.054583][T14223] ? lockdep_init_map_type+0x5c/0x280 [ 575.054606][T14223] drm_debugfs_clients_add+0x48/0x200 [ 575.054622][T14223] drm_file_alloc+0x5c6/0xb40 [ 575.054640][T14223] drm_open_helper+0x204/0x550 [ 575.054658][T14223] drm_open+0x1a0/0x3e0 [ 575.054673][T14223] ? __pfx_drm_open+0x10/0x10 [ 575.054688][T14223] drm_stub_open+0x20c/0x380 [ 575.054710][T14223] ? __pfx_drm_stub_open+0x10/0x10 [ 575.054725][T14223] chrdev_open+0x231/0x6a0 [ 575.054751][T14223] ? __pfx_apparmor_file_open+0x10/0x10 [ 575.054768][T14223] ? __pfx_chrdev_open+0x10/0x10 [ 575.054789][T14223] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 575.054811][T14223] do_dentry_open+0x97f/0x1530 [ 575.054833][T14223] ? __pfx_chrdev_open+0x10/0x10 [ 575.054858][T14223] vfs_open+0x82/0x3f0 [ 575.054883][T14223] path_openat+0x1de4/0x2cb0 [ 575.054908][T14223] ? __pfx_path_openat+0x10/0x10 [ 575.054929][T14223] do_filp_open+0x20b/0x470 [ 575.054948][T14223] ? __pfx_do_filp_open+0x10/0x10 [ 575.054977][T14223] ? alloc_fd+0x471/0x7d0 [ 575.054997][T14223] do_sys_openat2+0x11b/0x1d0 [ 575.055017][T14223] ? __pfx_do_sys_openat2+0x10/0x10 [ 575.055044][T14223] __x64_sys_openat+0x174/0x210 [ 575.055056][T14223] ? __pfx___x64_sys_openat+0x10/0x10 [ 575.055076][T14223] do_syscall_64+0xcd/0x4c0 [ 575.055099][T14223] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 575.055113][T14223] RIP: 0033:0x7ff6c5b8eec9 [ 575.055126][T14223] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 575.055140][T14223] RSP: 002b:00007ff6c69ca038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 575.055154][T14223] RAX: ffffffffffffffda RBX: 00007ff6c5de5fa0 RCX: 00007ff6c5b8eec9 [ 575.055163][T14223] RDX: 0000000000129843 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 575.055172][T14223] RBP: 00007ff6c5c11f91 R08: 0000000000000000 R09: 0000000000000000 [ 575.055180][T14223] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 575.055188][T14223] R13: 00007ff6c5de6038 R14: 00007ff6c5de5fa0 R15: 00007fff05defb78 [ 575.055207][T14223] [ 575.353455][ C1] vkms_vblank_simulate: vblank timer overrun [ 575.615038][T14239] i2c i2c-0: dvb_frontend_start: failed to start kthread (-4) [ 575.958747][T14250] FAULT_INJECTION: forcing a failure. [ 575.958747][T14250] name failslab, interval 1, probability 0, space 0, times 0 [ 576.023287][T14250] CPU: 1 UID: 0 PID: 14250 Comm: syz.3.1972 Not tainted syzkaller #0 PREEMPT(full) [ 576.023311][T14250] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 576.023320][T14250] Call Trace: [ 576.023325][T14250] [ 576.023331][T14250] dump_stack_lvl+0x16c/0x1f0 [ 576.023358][T14250] should_fail_ex+0x512/0x640 [ 576.023380][T14250] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 576.023407][T14250] should_failslab+0xc2/0x120 [ 576.023428][T14250] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 576.023445][T14250] ? security_file_alloc+0x34/0x2b0 [ 576.023468][T14250] security_file_alloc+0x34/0x2b0 [ 576.023487][T14250] init_file+0x93/0x4c0 [ 576.023507][T14250] alloc_empty_file+0x73/0x1e0 [ 576.023527][T14250] alloc_file_pseudo+0x13a/0x230 [ 576.023548][T14250] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 576.023574][T14250] ioctx_alloc+0x5ab/0x2120 [ 576.023597][T14250] ? find_held_lock+0x2b/0x80 [ 576.023612][T14250] ? __pfx_ioctx_alloc+0x10/0x10 [ 576.023626][T14250] ? __might_fault+0x13b/0x190 [ 576.023654][T14250] __x64_sys_io_setup+0xc9/0x210 [ 576.023672][T14250] do_syscall_64+0xcd/0x4c0 [ 576.023697][T14250] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 576.023711][T14250] RIP: 0033:0x7f17b738eec9 [ 576.023723][T14250] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 576.023736][T14250] RSP: 002b:00007f17b8256038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce [ 576.023750][T14250] RAX: ffffffffffffffda RBX: 00007f17b75e5fa0 RCX: 00007f17b738eec9 [ 576.023759][T14250] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 000000000000ffff [ 576.023770][T14250] RBP: 00007f17b7411f91 R08: 0000000000000000 R09: 0000000000000000 [ 576.023778][T14250] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 576.023786][T14250] R13: 00007f17b75e6038 R14: 00007f17b75e5fa0 R15: 00007ffcbfcf73a8 [ 576.023804][T14250] [ 576.222091][ C1] vkms_vblank_simulate: vblank timer overrun [ 576.301718][T14255] FAULT_INJECTION: forcing a failure. [ 576.301718][T14255] name failslab, interval 1, probability 0, space 0, times 0 [ 576.314427][T14255] CPU: 1 UID: 0 PID: 14255 Comm: syz.4.1970 Not tainted syzkaller #0 PREEMPT(full) [ 576.314449][T14255] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 576.314459][T14255] Call Trace: [ 576.314466][T14255] [ 576.314473][T14255] dump_stack_lvl+0x16c/0x1f0 [ 576.314500][T14255] should_fail_ex+0x512/0x640 [ 576.314522][T14255] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 576.314540][T14255] should_failslab+0xc2/0x120 [ 576.314559][T14255] __kmalloc_cache_noprof+0x6a/0x3e0 [ 576.314575][T14255] ? do_eventfd+0x67/0x2c0 [ 576.314597][T14255] do_eventfd+0x67/0x2c0 [ 576.314615][T14255] ? rcu_is_watching+0x12/0xc0 [ 576.314636][T14255] __x64_sys_eventfd+0x32/0x50 [ 576.314657][T14255] do_syscall_64+0xcd/0x4c0 [ 576.314681][T14255] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 576.314695][T14255] RIP: 0033:0x7ff6c5b8eec9 [ 576.314708][T14255] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 576.314721][T14255] RSP: 002b:00007ff6c69ca038 EFLAGS: 00000246 ORIG_RAX: 000000000000011c [ 576.314735][T14255] RAX: ffffffffffffffda RBX: 00007ff6c5de5fa0 RCX: 00007ff6c5b8eec9 [ 576.314744][T14255] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006 [ 576.314752][T14255] RBP: 00007ff6c5c11f91 R08: 0000000000000000 R09: 0000000000000000 [ 576.314761][T14255] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 576.314770][T14255] R13: 00007ff6c5de6038 R14: 00007ff6c5de5fa0 R15: 00007fff05defb78 [ 576.314789][T14255] [ 576.475097][ C1] vkms_vblank_simulate: vblank timer overrun [ 576.932561][T14268] FAULT_INJECTION: forcing a failure. [ 576.932561][T14268] name failslab, interval 1, probability 0, space 0, times 0 [ 576.954572][T14268] CPU: 1 UID: 0 PID: 14268 Comm: syz.0.1978 Not tainted syzkaller #0 PREEMPT(full) [ 576.954594][T14268] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 576.954611][T14268] Call Trace: [ 576.954617][T14268] [ 576.954624][T14268] dump_stack_lvl+0x16c/0x1f0 [ 576.954651][T14268] should_fail_ex+0x512/0x640 [ 576.954674][T14268] ? __kmalloc_noprof+0xbf/0x510 [ 576.954693][T14268] ? __netif_set_xps_queue+0x80f/0x22d0 [ 576.954706][T14268] should_failslab+0xc2/0x120 [ 576.954725][T14268] __kmalloc_noprof+0xd2/0x510 [ 576.954746][T14268] __netif_set_xps_queue+0x80f/0x22d0 [ 576.954773][T14268] xps_rxqs_store+0x238/0x320 [ 576.954795][T14268] ? __pfx_xps_rxqs_store+0x10/0x10 [ 576.954813][T14268] netdev_queue_attr_store+0x61/0x90 [ 576.954827][T14268] ? __pfx_netdev_queue_attr_store+0x10/0x10 [ 576.954842][T14268] sysfs_kf_write+0xef/0x150 [ 576.954860][T14268] kernfs_fop_write_iter+0x3ac/0x570 [ 576.954880][T14268] ? __pfx_sysfs_kf_write+0x10/0x10 [ 576.954898][T14268] do_iter_readv_writev+0x662/0x9e0 [ 576.954915][T14268] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 576.954940][T14268] vfs_writev+0x35f/0xde0 [ 576.954961][T14268] ? __pfx_vfs_writev+0x10/0x10 [ 576.954991][T14268] ? __fget_files+0x20e/0x3c0 [ 576.955012][T14268] ? do_pwritev+0x1a6/0x270 [ 576.955026][T14268] do_pwritev+0x1a6/0x270 [ 576.955042][T14268] ? __pfx_do_pwritev+0x10/0x10 [ 576.955063][T14268] do_syscall_64+0xcd/0x4c0 [ 576.955089][T14268] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 576.955105][T14268] RIP: 0033:0x7f27e0f8eec9 [ 576.955117][T14268] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 576.955132][T14268] RSP: 002b:00007f27e1db8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000128 [ 576.955147][T14268] RAX: ffffffffffffffda RBX: 00007f27e11e5fa0 RCX: 00007f27e0f8eec9 [ 576.955156][T14268] RDX: 0000000000000005 RSI: 0000200000001000 RDI: 0000000000000003 [ 576.955164][T14268] RBP: 00007f27e1011f91 R08: 0000000000000009 R09: 0000000000000000 [ 576.955172][T14268] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 576.955180][T14268] R13: 00007f27e11e6038 R14: 00007f27e11e5fa0 R15: 00007fff3a5fa418 [ 576.955200][T14268] [ 577.174983][ C1] vkms_vblank_simulate: vblank timer overrun [ 577.270699][T14274] ERROR: Out of memory at tomoyo_memory_ok. [ 577.276920][T14274] ERROR: Domain ' /sbin/init /etc/init.d/rcS /etc/init.d/S50sshd /sbin/start-stop-daemon /usr/sbin/sshd /usr/libexec/sshd-session /bin/sh /root/syz-executor /root/syz-executor /newroot/591/file0' not defined. [ 577.297974][ C1] vkms_vblank_simulate: vblank timer overrun [ 577.487704][T14278] FAULT_INJECTION: forcing a failure. [ 577.487704][T14278] name failslab, interval 1, probability 0, space 0, times 0 [ 577.505496][T14278] CPU: 1 UID: 0 PID: 14278 Comm: syz.0.1981 Not tainted syzkaller #0 PREEMPT(full) [ 577.505519][T14278] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 577.505528][T14278] Call Trace: [ 577.505533][T14278] [ 577.505539][T14278] dump_stack_lvl+0x16c/0x1f0 [ 577.505571][T14278] should_fail_ex+0x512/0x640 [ 577.505592][T14278] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 577.505612][T14278] should_failslab+0xc2/0x120 [ 577.505631][T14278] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 577.505647][T14278] ? can_rx_register+0x582/0x6f0 [ 577.505668][T14278] can_rx_register+0x582/0x6f0 [ 577.505685][T14278] ? __pfx_raw_rcv+0x10/0x10 [ 577.505706][T14278] ? __pfx_can_rx_register+0x10/0x10 [ 577.505732][T14278] raw_enable_filters+0xe0/0x210 [ 577.505756][T14278] raw_enable_allfilters+0x8b/0x2b0 [ 577.505776][T14278] ? __local_bh_enable_ip+0xa4/0x120 [ 577.505794][T14278] raw_bind+0x48a/0xe50 [ 577.505814][T14278] ? apparmor_socket_bind+0x105/0x200 [ 577.505832][T14278] __sys_bind+0x1a4/0x260 [ 577.505850][T14278] ? __pfx___sys_bind+0x10/0x10 [ 577.505873][T14278] ? xfd_validate_state+0x61/0x180 [ 577.505893][T14278] ? __sys_setsockopt+0x140/0x1a0 [ 577.505915][T14278] __x64_sys_bind+0x72/0xb0 [ 577.505931][T14278] ? lockdep_hardirqs_on+0x7c/0x110 [ 577.505950][T14278] do_syscall_64+0xcd/0x4c0 [ 577.505973][T14278] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 577.505987][T14278] RIP: 0033:0x7f27e0f8eec9 [ 577.505999][T14278] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 577.506013][T14278] RSP: 002b:00007f27e1db8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000031 [ 577.506026][T14278] RAX: ffffffffffffffda RBX: 00007f27e11e5fa0 RCX: 00007f27e0f8eec9 [ 577.506035][T14278] RDX: 000000000000006a RSI: 0000200000000040 RDI: 0000000000000003 [ 577.506044][T14278] RBP: 00007f27e1011f91 R08: 0000000000000000 R09: 0000000000000000 [ 577.506052][T14278] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 577.506059][T14278] R13: 00007f27e11e6038 R14: 00007f27e11e5fa0 R15: 00007fff3a5fa418 [ 577.506078][T14278] [ 577.724145][ C1] vkms_vblank_simulate: vblank timer overrun [ 578.377746][T14290] FAULT_INJECTION: forcing a failure. [ 578.377746][T14290] name failslab, interval 1, probability 0, space 0, times 0 [ 578.433992][T14290] CPU: 1 UID: 0 PID: 14290 Comm: syz.0.1985 Not tainted syzkaller #0 PREEMPT(full) [ 578.434014][T14290] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 578.434023][T14290] Call Trace: [ 578.434029][T14290] [ 578.434035][T14290] dump_stack_lvl+0x16c/0x1f0 [ 578.434061][T14290] should_fail_ex+0x512/0x640 [ 578.434082][T14290] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 578.434100][T14290] should_failslab+0xc2/0x120 [ 578.434118][T14290] __kmalloc_cache_noprof+0x6a/0x3e0 [ 578.434133][T14290] ? ptp_open+0xe4/0x550 [ 578.434152][T14290] ptp_open+0xe4/0x550 [ 578.434169][T14290] ? __pfx_ptp_open+0x10/0x10 [ 578.434190][T14290] ? __pfx_ptp_open+0x10/0x10 [ 578.434206][T14290] posix_clock_open+0x17b/0x290 [ 578.434224][T14290] ? __pfx_posix_clock_open+0x10/0x10 [ 578.434239][T14290] chrdev_open+0x231/0x6a0 [ 578.434257][T14290] ? __pfx_apparmor_file_open+0x10/0x10 [ 578.434273][T14290] ? __pfx_chrdev_open+0x10/0x10 [ 578.434291][T14290] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 578.434311][T14290] do_dentry_open+0x97f/0x1530 [ 578.434329][T14290] ? __pfx_chrdev_open+0x10/0x10 [ 578.434351][T14290] vfs_open+0x82/0x3f0 [ 578.434373][T14290] path_openat+0x1de4/0x2cb0 [ 578.434405][T14290] ? __pfx_path_openat+0x10/0x10 [ 578.434427][T14290] do_filp_open+0x20b/0x470 [ 578.434445][T14290] ? __pfx_do_filp_open+0x10/0x10 [ 578.434476][T14290] ? alloc_fd+0x471/0x7d0 [ 578.434498][T14290] do_sys_openat2+0x11b/0x1d0 [ 578.434518][T14290] ? __pfx_do_sys_openat2+0x10/0x10 [ 578.434545][T14290] __x64_sys_openat+0x174/0x210 [ 578.434558][T14290] ? __pfx___x64_sys_openat+0x10/0x10 [ 578.434578][T14290] do_syscall_64+0xcd/0x4c0 [ 578.434601][T14290] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 578.434615][T14290] RIP: 0033:0x7f27e0f8eec9 [ 578.434627][T14290] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 578.434640][T14290] RSP: 002b:00007f27e1d97038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 578.434654][T14290] RAX: ffffffffffffffda RBX: 00007f27e11e6090 RCX: 00007f27e0f8eec9 [ 578.434663][T14290] RDX: 0000000000000440 RSI: 0000200000000280 RDI: ffffffffffffff9c [ 578.434672][T14290] RBP: 00007f27e1011f91 R08: 0000000000000000 R09: 0000000000000000 [ 578.434680][T14290] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 578.434689][T14290] R13: 00007f27e11e6128 R14: 00007f27e11e6090 R15: 00007fff3a5fa418 [ 578.434708][T14290] [ 578.681812][ C1] vkms_vblank_simulate: vblank timer overrun [ 578.822849][T14295] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input98 [ 579.374751][T14305] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1991'. [ 579.626625][T14313] netlink: 302 bytes leftover after parsing attributes in process `syz.4.1993'. [ 580.553125][T14306] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 580.619353][T14306] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 580.785560][T14306] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 580.838429][T14306] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 580.927098][T14306] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 580.973489][T14306] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 581.033691][T14306] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 581.101525][T14306] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 581.144290][T14306] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 581.174263][T14306] CPU0 is offline. [ 581.277567][T14337] FAULT_INJECTION: forcing a failure. [ 581.277567][T14337] name failslab, interval 1, probability 0, space 0, times 0 [ 581.327142][T14337] CPU: 1 UID: 0 PID: 14337 Comm: syz.3.2001 Not tainted syzkaller #0 PREEMPT(full) [ 581.327171][T14337] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 581.327181][T14337] Call Trace: [ 581.327186][T14337] [ 581.327192][T14337] dump_stack_lvl+0x16c/0x1f0 [ 581.327219][T14337] should_fail_ex+0x512/0x640 [ 581.327241][T14337] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 581.327261][T14337] should_failslab+0xc2/0x120 [ 581.327280][T14337] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 581.327297][T14337] ? sk_prot_alloc+0x60/0x2a0 [ 581.327316][T14337] sk_prot_alloc+0x60/0x2a0 [ 581.327332][T14337] sk_alloc+0x36/0xc20 [ 581.327351][T14337] inet_create+0x3a1/0x1040 [ 581.327369][T14337] ? inet_create+0x93/0x1040 [ 581.327388][T14337] __sock_create+0x338/0x8d0 [ 581.327408][T14337] udp_sock_create4+0xa6/0x450 [ 581.327423][T14337] ? __pfx_udp_sock_create4+0x10/0x10 [ 581.327440][T14337] ? lockdep_hardirqs_on+0x7c/0x110 [ 581.327461][T14337] ? crng_make_state+0x48e/0x6d0 [ 581.327478][T14337] rxrpc_open_socket+0x4f5/0x6b0 [ 581.327492][T14337] ? __pfx_rxrpc_open_socket+0x10/0x10 [ 581.327514][T14337] ? __pfx_rxrpc_client_conn_reap_timeout+0x10/0x10 [ 581.327537][T14337] ? rcu_is_watching+0x12/0xc0 [ 581.327555][T14337] rxrpc_lookup_local+0xa01/0x1220 [ 581.327572][T14337] ? __pfx_rxrpc_lookup_local+0x10/0x10 [ 581.327588][T14337] ? __local_bh_enable_ip+0xa4/0x120 [ 581.327607][T14337] rxrpc_sendmsg+0x37e/0x680 [ 581.327624][T14337] sock_write_iter+0x4fc/0x5b0 [ 581.327640][T14337] ? __pfx_sock_write_iter+0x10/0x10 [ 581.327662][T14337] ? bpf_lsm_file_permission+0x9/0x10 [ 581.327682][T14337] ? security_file_permission+0x71/0x210 [ 581.327702][T14337] ? rw_verify_area+0xcf/0x6c0 [ 581.327718][T14337] vfs_write+0x7d3/0x11d0 [ 581.327735][T14337] ? __pfx_sock_write_iter+0x10/0x10 [ 581.327752][T14337] ? __pfx_vfs_write+0x10/0x10 [ 581.327766][T14337] ? find_held_lock+0x2b/0x80 [ 581.327792][T14337] ksys_write+0x1f8/0x250 [ 581.327808][T14337] ? __pfx_ksys_write+0x10/0x10 [ 581.327829][T14337] do_syscall_64+0xcd/0x4c0 [ 581.327852][T14337] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 581.327866][T14337] RIP: 0033:0x7f17b738eec9 [ 581.327879][T14337] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 581.327893][T14337] RSP: 002b:00007f17b8256038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 581.327907][T14337] RAX: ffffffffffffffda RBX: 00007f17b75e5fa0 RCX: 00007f17b738eec9 [ 581.327916][T14337] RDX: 000000007fffffff RSI: 0000000000000000 RDI: 0000000000000003 [ 581.327924][T14337] RBP: 00007f17b7411f91 R08: 0000000000000000 R09: 0000000000000000 [ 581.327933][T14337] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 581.327942][T14337] R13: 00007f17b75e6038 R14: 00007f17b75e5fa0 R15: 00007ffcbfcf73a8 [ 581.327961][T14337] [ 581.912662][ T5866] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260 [ 581.912687][ T5866] Bluetooth: hci3: unexpected subevent 0x0d length: 725 > 260 [ 581.929996][ T5866] Bluetooth: hci3: Unknown advertising packet type: 0x7f [ 581.930016][ T5866] Bluetooth: hci3: adv larger than maximum supported [ 581.938127][ T5866] Bluetooth: hci3: Unknown advertising packet type: 0x70 [ 581.945377][ T5866] Bluetooth: hci3: Malformed LE Event: 0x0d [ 581.960227][ T5866] Bluetooth: hci0: command 0x0406 tx timeout [ 582.637877][T14366] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2013'. [ 582.672876][T14366] netlink: 274 bytes leftover after parsing attributes in process `syz.3.2013'. [ 582.827391][T14368] sp0: Synchronizing with TNC [ 582.832372][ T5873] Bluetooth: hci2: command 0x0406 tx timeout [ 582.986895][ T5873] Bluetooth: hci3: command 0x0406 tx timeout [ 583.069745][ T5873] Bluetooth: hci1: command 0x0c1a tx timeout [ 583.134099][T14372] netlink: 338 bytes leftover after parsing attributes in process `syz.3.2017'. [ 583.165003][T14372] macsec0: entered allmulticast mode [ 583.180329][T14372] veth1_macvtap: entered allmulticast mode [ 583.263501][T14378] ================================================================== [ 583.271574][T14378] BUG: KASAN: slab-use-after-free in dvb_device_open+0x36a/0x3b0 [ 583.279280][T14378] Read of size 8 at addr ffff88814536dc18 by task syz.3.2019/14378 [ 583.287150][T14378] [ 583.289458][T14378] CPU: 1 UID: 0 PID: 14378 Comm: syz.3.2019 Not tainted syzkaller #0 PREEMPT(full) [ 583.289477][T14378] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 583.289486][T14378] Call Trace: [ 583.289493][T14378] [ 583.289499][T14378] dump_stack_lvl+0x116/0x1f0 [ 583.289523][T14378] print_report+0xcd/0x630 [ 583.289542][T14378] ? __virt_addr_valid+0x81/0x610 [ 583.289560][T14378] ? __phys_addr+0xe8/0x180 [ 583.289577][T14378] ? dvb_device_open+0x36a/0x3b0 [ 583.289590][T14378] kasan_report+0xe0/0x110 [ 583.289607][T14378] ? dvb_device_open+0x36a/0x3b0 [ 583.289620][T14378] ? __pfx_dvb_device_open+0x10/0x10 [ 583.289633][T14378] dvb_device_open+0x36a/0x3b0 [ 583.289645][T14378] ? __pfx_dvb_device_open+0x10/0x10 [ 583.289657][T14378] chrdev_open+0x231/0x6a0 [ 583.289675][T14378] ? __pfx_apparmor_file_open+0x10/0x10 [ 583.289691][T14378] ? __pfx_chrdev_open+0x10/0x10 [ 583.289708][T14378] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 583.289726][T14378] do_dentry_open+0x97f/0x1530 [ 583.289742][T14378] ? __pfx_chrdev_open+0x10/0x10 [ 583.289761][T14378] vfs_open+0x82/0x3f0 [ 583.289781][T14378] path_openat+0x1de4/0x2cb0 [ 583.289800][T14378] ? __pfx_path_openat+0x10/0x10 [ 583.289817][T14378] do_filp_open+0x20b/0x470 [ 583.289833][T14378] ? __pfx_do_filp_open+0x10/0x10 [ 583.289854][T14378] ? alloc_fd+0x471/0x7d0 [ 583.289871][T14378] do_sys_openat2+0x11b/0x1d0 [ 583.289891][T14378] ? __pfx_do_sys_openat2+0x10/0x10 [ 583.289910][T14378] ? __pfx_do_sys_openat2+0x10/0x10 [ 583.289931][T14378] ? __pfx___might_resched+0x10/0x10 [ 583.289947][T14378] __x64_sys_openat+0x174/0x210 [ 583.289959][T14378] ? __pfx___x64_sys_openat+0x10/0x10 [ 583.289975][T14378] do_syscall_64+0xcd/0x4c0 [ 583.290002][T14378] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 583.290018][T14378] RIP: 0033:0x7f17b738eec9 [ 583.290031][T14378] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 583.290046][T14378] RSP: 002b:00007f17b8256038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 583.290060][T14378] RAX: ffffffffffffffda RBX: 00007f17b75e5fa0 RCX: 00007f17b738eec9 [ 583.290069][T14378] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 583.290078][T14378] RBP: 00007f17b7411f91 R08: 0000000000000000 R09: 0000000000000000 [ 583.290088][T14378] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 583.290097][T14378] R13: 00007f17b75e6038 R14: 00007f17b75e5fa0 R15: 00007ffcbfcf73a8 [ 583.290110][T14378] [ 583.290115][T14378] [ 583.539682][T14378] Allocated by task 1: [ 583.543726][T14378] kasan_save_stack+0x33/0x60 [ 583.548386][T14378] kasan_save_track+0x14/0x30 [ 583.553065][T14378] __kasan_kmalloc+0xaa/0xb0 [ 583.557652][T14378] dvb_register_device+0x1e4/0x2370 [ 583.562840][T14378] dvb_register_frontend+0x5a6/0x880 [ 583.568116][T14378] vidtv_bridge_probe+0x459/0xa90 [ 583.573137][T14378] platform_probe+0x106/0x1d0 [ 583.577795][T14378] really_probe+0x23e/0xa90 [ 583.582278][T14378] __driver_probe_device+0x1de/0x440 [ 583.587561][T14378] driver_probe_device+0x4c/0x1b0 [ 583.592584][T14378] __driver_attach+0x283/0x580 [ 583.597355][T14378] bus_for_each_dev+0x13b/0x1d0 [ 583.602188][T14378] bus_add_driver+0x2e9/0x690 [ 583.606850][T14378] driver_register+0x15c/0x4b0 [ 583.611596][T14378] vidtv_bridge_init+0x45/0x80 [ 583.616348][T14378] do_one_initcall+0x120/0x6e0 [ 583.621095][T14378] kernel_init_freeable+0x5c2/0x910 [ 583.626370][T14378] kernel_init+0x1c/0x2b0 [ 583.630688][T14378] ret_from_fork+0x56d/0x730 [ 583.635272][T14378] ret_from_fork_asm+0x1a/0x30 [ 583.640032][T14378] [ 583.642337][T14378] Freed by task 14239: [ 583.646383][T14378] kasan_save_stack+0x33/0x60 [ 583.651051][T14378] kasan_save_track+0x14/0x30 [ 583.655724][T14378] kasan_save_free_info+0x3b/0x60 [ 583.660747][T14378] __kasan_slab_free+0x60/0x70 [ 583.665502][T14378] kfree+0x2b4/0x4d0 [ 583.669386][T14378] dvb_device_put.part.0+0x60/0x90 [ 583.674494][T14378] dvb_device_open+0x2a4/0x3b0 [ 583.679238][T14378] chrdev_open+0x231/0x6a0 [ 583.683642][T14378] do_dentry_open+0x97f/0x1530 [ 583.688409][T14378] vfs_open+0x82/0x3f0 [ 583.692476][T14378] path_openat+0x1de4/0x2cb0 [ 583.697057][T14378] do_filp_open+0x20b/0x470 [ 583.701552][T14378] do_sys_openat2+0x11b/0x1d0 [ 583.706220][T14378] __x64_sys_openat+0x174/0x210 [ 583.711080][T14378] do_syscall_64+0xcd/0x4c0 [ 583.715577][T14378] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 583.721458][T14378] [ 583.723765][T14378] The buggy address belongs to the object at ffff88814536dc00 [ 583.723765][T14378] which belongs to the cache kmalloc-256 of size 256 [ 583.737794][T14378] The buggy address is located 24 bytes inside of [ 583.737794][T14378] freed 256-byte region [ffff88814536dc00, ffff88814536dd00) [ 583.751484][T14378] [ 583.753792][T14378] The buggy address belongs to the physical page: [ 583.760186][T14378] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x14536c [ 583.769012][T14378] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 583.777487][T14378] flags: 0x57ff00000000040(head|node=1|zone=2|lastcpupid=0x7ff) [ 583.785113][T14378] page_type: f5(slab) [ 583.789077][T14378] raw: 057ff00000000040 ffff88801b841b40 dead000000000122 0000000000000000 [ 583.797641][T14378] raw: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000 [ 583.806218][T14378] head: 057ff00000000040 ffff88801b841b40 dead000000000122 0000000000000000 [ 583.814872][T14378] head: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000 [ 583.823534][T14378] head: 057ff00000000001 ffffea000514db01 00000000ffffffff 00000000ffffffff [ 583.832190][T14378] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002 [ 583.840839][T14378] page dumped because: kasan: bad access detected [ 583.847318][T14378] page_owner tracks the page as allocated [ 583.853027][T14378] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 1, tgid 1 (swapper/0), ts 19190525654, free_ts 0 [ 583.872731][T14378] post_alloc_hook+0x1c0/0x230 [ 583.877489][T14378] get_page_from_freelist+0x132b/0x38e0 [ 583.883014][T14378] __alloc_frozen_pages_noprof+0x261/0x23f0 [ 583.888926][T14378] alloc_pages_mpol+0x1fb/0x550 [ 583.893758][T14378] new_slab+0x247/0x330 [ 583.897934][T14378] ___slab_alloc+0xcf2/0x1750 [ 583.902604][T14378] __slab_alloc.constprop.0+0x56/0xb0 [ 583.907953][T14378] __kmalloc_cache_noprof+0xfb/0x3e0 [ 583.913215][T14378] bus_add_driver+0x92/0x690 [ 583.917794][T14378] driver_register+0x15c/0x4b0 [ 583.922541][T14378] usb_register_driver+0x216/0x4d0 [ 583.927630][T14378] do_one_initcall+0x120/0x6e0 [ 583.932380][T14378] kernel_init_freeable+0x5c2/0x910 [ 583.937564][T14378] kernel_init+0x1c/0x2b0 [ 583.941909][T14378] ret_from_fork+0x56d/0x730 [ 583.946487][T14378] ret_from_fork_asm+0x1a/0x30 [ 583.951231][T14378] page_owner free stack trace missing [ 583.956579][T14378] [ 583.958881][T14378] Memory state around the buggy address: [ 583.964488][T14378] ffff88814536db00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 583.972528][T14378] ffff88814536db80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 583.980599][T14378] >ffff88814536dc00: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 583.988649][T14378] ^ [ 583.993475][T14378] ffff88814536dc80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 584.001512][T14378] ffff88814536dd00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 584.009575][T14378] ================================================================== SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 584.067736][ T5217] ERROR: Out of memory at tomoyo_memory_ok. [ 584.075342][ T5873] Bluetooth: hci0: command 0x0406 tx timeout [ 584.197065][T14378] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 584.204279][T14378] CPU: 1 UID: 0 PID: 14378 Comm: syz.3.2019 Not tainted syzkaller #0 PREEMPT(full) [ 584.213630][T14378] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 584.223665][T14378] Call Trace: [ 584.226938][T14378] [ 584.229849][T14378] dump_stack_lvl+0x3d/0x1f0 [ 584.234428][T14378] vpanic+0x6e8/0x7a0 [ 584.238397][T14378] ? __pfx_vpanic+0x10/0x10 [ 584.242883][T14378] ? __pfx_vprintk_emit+0x10/0x10 [ 584.247890][T14378] ? dvb_device_open+0x36a/0x3b0 [ 584.252809][T14378] panic+0xca/0xd0 [ 584.256517][T14378] ? __pfx_panic+0x10/0x10 [ 584.260919][T14378] ? dvb_device_open+0x36a/0x3b0 [ 584.265835][T14378] ? preempt_schedule_common+0x44/0xc0 [ 584.271279][T14378] ? preempt_schedule_thunk+0x16/0x30 [ 584.276642][T14378] check_panic_on_warn+0xab/0xb0 [ 584.281579][T14378] end_report+0x107/0x170 [ 584.285895][T14378] kasan_report+0xee/0x110 [ 584.290296][T14378] ? dvb_device_open+0x36a/0x3b0 [ 584.295233][T14378] ? __pfx_dvb_device_open+0x10/0x10 [ 584.300494][T14378] dvb_device_open+0x36a/0x3b0 [ 584.305237][T14378] ? __pfx_dvb_device_open+0x10/0x10 [ 584.310498][T14378] chrdev_open+0x231/0x6a0 [ 584.314895][T14378] ? __pfx_apparmor_file_open+0x10/0x10 [ 584.320423][T14378] ? __pfx_chrdev_open+0x10/0x10 [ 584.325360][T14378] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 584.331678][T14378] do_dentry_open+0x97f/0x1530 [ 584.336429][T14378] ? __pfx_chrdev_open+0x10/0x10 [ 584.341367][T14378] vfs_open+0x82/0x3f0 [ 584.345423][T14378] path_openat+0x1de4/0x2cb0 [ 584.350032][T14378] ? __pfx_path_openat+0x10/0x10 [ 584.354978][T14378] do_filp_open+0x20b/0x470 [ 584.359477][T14378] ? __pfx_do_filp_open+0x10/0x10 [ 584.364508][T14378] ? alloc_fd+0x471/0x7d0 [ 584.368853][T14378] do_sys_openat2+0x11b/0x1d0 [ 584.373673][T14378] ? __pfx_do_sys_openat2+0x10/0x10 [ 584.378875][T14378] ? __pfx_do_sys_openat2+0x10/0x10 [ 584.384071][T14378] ? __pfx___might_resched+0x10/0x10 [ 584.389352][T14378] __x64_sys_openat+0x174/0x210 [ 584.394205][T14378] ? __pfx___x64_sys_openat+0x10/0x10 [ 584.399577][T14378] do_syscall_64+0xcd/0x4c0 [ 584.404082][T14378] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 584.409960][T14378] RIP: 0033:0x7f17b738eec9 [ 584.414359][T14378] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 584.433981][T14378] RSP: 002b:00007f17b8256038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 584.442495][T14378] RAX: ffffffffffffffda RBX: 00007f17b75e5fa0 RCX: 00007f17b738eec9 [ 584.450450][T14378] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 584.458401][T14378] RBP: 00007f17b7411f91 R08: 0000000000000000 R09: 0000000000000000 [ 584.466372][T14378] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 584.474335][T14378] R13: 00007f17b75e6038 R14: 00007f17b75e5fa0 R15: 00007ffcbfcf73a8 [ 584.482298][T14378] [ 584.485351][T14378] Kernel Offset: disabled [ 584.489668][T14378] Rebooting in 86400 seconds..